P129679/molgenis-ops-docker-helm
1
0
Fork 0
Code Releases Activity

Compare commits

base: P129679:chore/jenkins-gitsource
Branches Tags
P129679:master P129679:fix/links P129679:chore/pipeline P129679:revert/nodeSelector P129679:chore/nodeSelector P129679:chore/jenkins-gitsource P129679:fix/75 P129679:chore/upgrade-jenkins P129679:feature/molgenis-it P129679:feat/helm-in-jenkins P129679:doc/helm-role P129679:feature/helm-role P129679:feature/s3 P129679:chore/remove-secrets P129679:feature/vault P129679:deploy-test
..
compare: P129679:chore/nodeSelector
Branches Tags
P129679:fix/links P129679:master P129679:chore/pipeline P129679:revert/nodeSelector P129679:chore/nodeSelector P129679:chore/jenkins-gitsource P129679:fix/75 P129679:chore/upgrade-jenkins P129679:feature/molgenis-it P129679:feat/helm-in-jenkins P129679:doc/helm-role P129679:feature/helm-role P129679:feature/s3 P129679:chore/remove-secrets P129679:feature/vault P129679:deploy-test

15 Commits
chore/jenk ... chore/node

Author SHA1 Message Date
Fleur Kelpin
d8b8bd9a22 chore: add nodeSelectors to the charts 2018-09-28 14:26:42 +02:00
Sido Haakma
2a1e9eacbb Merge branch 'master' of p281392/molgenis-ops-docker-helm into master 2018-09-28 08:34:19 +02:00
sido
395292cf37 updated nexus chart to 0.4.2 2018-09-28 08:33:35 +02:00
Sido Haakma
62bba3fcdd Merge branch 'master' of p281392/molgenis-ops-docker-helm into master 2018-09-28 08:32:51 +02:00
sido
beeb59bbb3 updated probes 2018-09-28 08:31:29 +02:00
Sido Haakma
4b5f7deb16 Merge branch 'master' of p281392/molgenis-ops-docker-helm into master 2018-09-28 08:20:44 +02:00
sido
a3d8adcdde version bump to 0.4.1 2018-09-28 08:19:36 +02:00
Sido Haakma
d0c02147b8 Merge branch 'master' of p281392/molgenis-ops-docker-helm into master 2018-09-28 08:19:08 +02:00
sido
24781ff4ff updated label in ingress 2018-09-28 08:17:50 +02:00
Sido Haakma
9435220896 Merge branch 'master' of p281392/molgenis-ops-docker-helm into master 2018-09-28 08:03:38 +02:00
sido
e220cb736e bumped version 2018-09-28 08:01:51 +02:00
Fleur Kelpin
3e78e896a3 Merge branch 'add-init-container' of p281392/molgenis-ops-docker-helm into master 2018-09-27 16:31:42 +02:00
Sido Haakma
dfd8872e58 Merge branch 'chore/jenkins-gitsource' of P129679/molgenis-ops-docker-helm into master 2018-09-27 16:28:20 +02:00
sido
7048bf3655 updated backup documnentation 2018-09-27 16:19:58 +02:00
sido
fd86066cee added init container and chown for nexus files 2018-09-27 16:17:35 +02:00
12 changed files with 107 additions and 46 deletions
Expand all files Collapse all files

14
molgenis-jenkins/values.yaml
View File

@ -1,5 +1,7 @@
jenkins:
Master:
NodeSelector:
deployPod: "true"
HostName: jenkins.molgenis.org
ServiceType: ClusterIP
InstallPlugins:
@ -489,7 +491,9 @@ jenkins:
Command: cat
WorkingDir: /home/jenkins
TTY: true
NodeSelector: {}
NodeSelector: {
deployPod: "true"
}
node:
Label: node-carbon
NodeUsageMode: EXCLUSIVE
@ -519,7 +523,9 @@ jenkins:
key: VAULT_ADDR
secretName: molgenis-pipeline-vault-secret
secretKey: addr
NodeSelector: {}
NodeSelector: {
deployPod: "true"
}
molgenis-it:
InheritFrom: molgenis
Label: molgenis-it
@ -581,7 +587,9 @@ jenkins:
limits:
cpu: "1"
memory: "512Mi"
NodeSelector: {}
NodeSelector: {
deployPod: "true"
}
#secret contains configuration for the kubernetes secrets that jenkins can access
secret:

2
molgenis-nexus/Chart.yaml
View File

@ -2,7 +2,7 @@ apiVersion: v1
appVersion: "1.0"
description: Nexus stack for MOLGENIS
name: molgenis-nexus
version: 0.3.0
version: 0.4.2
sources:
- https://git.webhosting.rug.nl/molgenis/molgenis-ops-docker-helm.git
icon: https://git.webhosting.rug.nl/molgenis/molgenis-ops-docker-helm/raw/master/molgenis-nexus/catalogIcon-molgenis-nexus.svg

38
molgenis-nexus/README.md
View File

@ -6,8 +6,44 @@ NEXUS repository for kubernetes to deploy on a kubernetes cluster with NFS-share
This chart will deploy:
- 1 NEXUS-nfs initialization container
We need this container to avoid permission issues on the NEXUS docker
- 1 NEXUS container
- 1 MOLGENIS-httpd container ()to proxy the registry and docker to one domain)
- 1 MOLGENIS-httpd container (to proxy the registry and docker to one domain)
## Backup restore
There are two steps in restoring the NEXUS.
- Database
- Blobstore
### Restore the database
Go to the commandline:
```bash
kubectl get pv
```
```bash
| NAME | CAPACITY | ACCESS | MODES | RECLAIM | POLICY | STATUS | CLAIM | STORAGECLASS | REASON | AGE |
| ---- | -------- | ------ | ----- | ------- | ------ | ------ | ----- | ------------ | ------ | --- |
| pvc-45988f55-900f-11e8-a0b4-005056a51744 | 30G | RWX | | Retain | Bound | molgenis-nexus/molgenis-nfs-claim | nfs-provisioner-retain | | | 33d |
| pvc-3984723d-220f-14e8-a98a-skjhf88823kk | 30G | RWO | | Delete | Bound | molgenis-test/molgenis-nfs-claim | nfs-provisioner | | | 33d |
```
The persistent volume is the one in the molgenis-nexus namespace.
Go to the NFS-provisioner to the path of the persistent volume:
```bash
ls -t --full-time | head -7 | xargs cp ../restore-from-backup/
```
### Restore the blobstore
You can copy the directory ```blobs``` to the target persistent volume ```/ blobs```.
You can now bring the NEXUS back up.
## Installing the Chart

57
molgenis-nexus/templates/deployments/nexus-deployment.yaml
View File

@ -20,32 +20,39 @@ spec:
creationTimestamp: null
spec:
restartPolicy: {{ .Values.nexus.restartPolicy }}
initContainers:
- name: nexus-nfs
image: busybox
command: ["sh", "-c", "chown -R 200:200 /nexus-data"]
volumeMounts:
- name: molgenis-nexus-nfs
mountPath: "/nexus-data"
containers:
- name: {{ .Values.nexus.name }}
image: "{{ .Values.nexus.image.repository }}:{{ .Values.nexus.image.tag }}"
imagePullPolicy: {{ .Values.nexus.image.pullPolicy }}
ports:
- containerPort: {{ .Values.nexus.port.ui }}
- containerPort: {{ .Values.nexus.port.docker }}
volumeMounts:
- name: molgenis-nexus-nfs
mountPath: "/nexus-data"
livenessProbe:
httpGet:
path: /
port: {{ .Values.nexus.port.ui }}
initialDelaySeconds: 90
periodSeconds: 20
failureThreshold: 5
successThreshold: 1
readinessProbe:
httpGet:
path: /
port: {{ .Values.nexus.port.ui }}
initialDelaySeconds: 90
periodSeconds: 5
failureThreshold: 5
successThreshold: 1
- name: {{ .Values.nexus.name }}
image: "{{ .Values.nexus.image.repository }}:{{ .Values.nexus.image.tag }}"
imagePullPolicy: {{ .Values.nexus.image.pullPolicy }}
ports:
- containerPort: {{ .Values.nexus.port.ui }}
- containerPort: {{ .Values.nexus.port.docker }}
volumeMounts:
- name: molgenis-nexus-nfs
mountPath: /nexus-data
livenessProbe:
httpGet:
path: /
port: {{ .Values.nexus.port.ui }}
initialDelaySeconds: 120
periodSeconds: 20
failureThreshold: 15
successThreshold: 1
readinessProbe:
httpGet:
path: /
port: {{ .Values.nexus.port.ui }}
initialDelaySeconds: 120
periodSeconds: 20
failureThreshold: 15
successThreshold: 1
volumes:
- name: molgenis-nexus-nfs

10
molgenis-nexus/templates/deployments/nexusProxy-deployment.yaml
View File

@ -36,17 +36,17 @@ spec:
httpGet:
path: /
port: {{ .Values.nexusProxy.port }}
initialDelaySeconds: 90
periodSeconds: 5
initialDelaySeconds: 1500
periodSeconds: 20
failureThreshold: 5
successThreshold: 1
readinessProbe:
httpGet:
path: /
port: {{ .Values.nexusProxy.port }}
initialDelaySeconds: 90
periodSeconds: 5
failureThreshold: 5
initialDelaySeconds: 150
periodSeconds: 20
failureThreshold: 15
successThreshold: 1
{{- with .Values.nodeSelector }}

2
molgenis-nexus/templates/ingress.yaml
View File

@ -5,7 +5,7 @@ kind: Ingress
metadata:
name: "{{ $.Release.Name }}-ingress"
labels:
app: httpd
app: {{ $.Values.nexusProxy.name }}
chart: "{{ $.Chart.Name }}-{{ $.Chart.Version }}"
release: "{{ $.Release.Name }}"
heritage: "{{ $.Release.Service }}"

6
molgenis-nexus/values.yaml
View File

@ -13,7 +13,7 @@ nexus:
selector: nexus
restartPolicy: Always
image:
repository: sonatype/nexus3
repository: molgenis/nexus3
tag: latest
pullPolicy: Always
port:
@ -32,8 +32,8 @@ nexusProxy:
selector: nexus-proxy
restartPolicy: Always
image:
repository: registry.webhosting.rug.nl/molgenis/httpd
tag: lts
repository: molgenis/httpd
tag: latest
pullPolicy: Always
port: 80
service:

6
molgenis-opencpu/templates/deployment.yaml
View File

@ -31,5 +31,7 @@ spec:
ports:
- containerPort: {{ .service.port }}
{{- end }}
{{- with .Values.nodeSelector }}
nodeSelector:
{{ toYaml . | indent 8 }}
{{- end }}

4
molgenis-opencpu/values.yaml
View File

@ -34,7 +34,9 @@ ingress:
- name: opencpu.molgenis.org
tls: []
nodeSelector: {}
nodeSelector: {
deployPod: "true"
}
tolerations: []

2
molgenis-vault/README.md
View File

@ -38,7 +38,7 @@ Parameter | Description | Default
`ui.image.repository` | Vault UI container image repository | `djenriquez/vault-ui`
`ui.image.tag` | Vault UI container image tag | `latest`
`ui.resources` | Vault UI pod resource requests & limits | `{}`
`ui.nodeSelector` | node labels for Vault UI pod assignment | `{}`
`ui.nodeSelector` | node labels for Vault UI pod assignment | `{deployPod: "true"}`
`ui.ingress.enabled` | If true, Vault UI Ingress will be created | `true`
`ui.ingress.annotations` | Vault UI Ingress annotations | `{}`
`ui.ingress.host` | Vault UI Ingress hostname | `vault.molgenis.org`

9
molgenis-vault/values.yaml
View File

@ -18,6 +18,10 @@ backupJob:
# schedule gives the cron schedule for the backup job
schedule: "0 12 * * 1"
vault-operator:
nodeSelector:
deployPod: "true"
###
# All of the config variables related to setting up the etcd-operator
# If you want more information about the variables exposed, please visit:
@ -44,6 +48,8 @@ etcd-operator:
restoreOperator:
image:
tag: v0.9.2
nodeSelector:
deployPod: "true"
ui:
name: "vault-ui"
@ -73,7 +79,8 @@ ui:
#requests:
# cpu: 100m
# memory: 128Mi
nodeSelector: {}
nodeSelector:
deployPod: "true"
vault:
auth: GITHUB
url: https://vault.vault-operator:8200

3
molgenis/values.yaml
View File

@ -94,9 +94,8 @@ persistence:
enabled: true
retain: false
nodeSelector: {
nodeSelector:
deployPod: "true"
}
tolerations: []