diff --git a/deploy/drone/deploy.yaml b/deploy/drone/deploy.yaml index cde2f91..5e3b94e 100644 --- a/deploy/drone/deploy.yaml +++ b/deploy/drone/deploy.yaml @@ -1,18 +1,3 @@ -apiVersion: v1 -kind: PersistentVolumeClaim -metadata: - name: drone-pv - namespace: drone - labels: - name: drone-server -spec: - storageClassName: longhorn - accessModes: - - ReadWriteOnce - resources: - requests: - storage: 20Gi ---- apiVersion: apps/v1 kind: Deployment metadata: @@ -30,36 +15,34 @@ spec: spec: containers: - name: drone-server - image: drone/drone:2.26.0 + image: drone/drone:2 imagePullPolicy: Always env: - - name: "DRONE_GITHUB_CLIENT_ID" - value: Ov23liTTrc709dX7YetV - - name: "DRONE_GITHUB_CLIENT_SECRET" - value: 7373d79bce815b380d503fb39c9373a53599897a + - name: "DRONE_GITEA_CLIENT_ID" + value: e6a4fb3b-e6b1-43dd-8f45-4def94742609 + - name: "DRONE_GITEA_CLIENT_SECRET" + value: gto_4ggtzkrukdzsmheoa2b4wz5cza2jif6gpf7wunbrtxa74senlykq + - name: "DRONE_GITEA_SERVER" + value: https://git.beatrice.wtf + - name: "DRONE_GIT_ALWAYS_AUTH" + value: "false" - name: "DRONE_RPC_SECRET" - value: f2ae9e7aea06ef9897a30c5e2b27f17c + value: 26a2221fd8090ea38720fc445eca6a45a39a63fcce3ba30712e7153b855f8 + - name: "DRONE_WEBHOOK_SECRET" + value: 9329e50de8f250dc3c997571f395d09e - name: "DRONE_SERVER_HOST" - value: drone.diveedi.dev + value: drone.panic.haus - name: "DRONE_SERVER_PROTO" value: https - name: "DRONE_SERVER_PORT" value: :80 - - name: "DRONE_USER_CREATE" - value: "username:nicolag97,admin:true" - - name: "DRONE_USER_FILTER" - value: "ticketag,diveedi-lab" - - name: "DRONE_DATABASE_DRIVER" - value: "postgres" - - name: "DRONE_DATABASE_DATASOURCE" - value: "postgres://drone:be1932a990ec0d4a9720@postgres-rw.db:5432/drone?sslmode=disable" volumeMounts: - mountPath: /var/lib/drone name: drone-lib volumes: - name: drone-lib persistentVolumeClaim: - claimName: drone-pv + claimName: drone-pvc --- apiVersion: v1 kind: Service @@ -76,30 +59,3 @@ spec: targetPort: 80 selector: name: drone-server ---- -apiVersion: networking.k8s.io/v1 -kind: Ingress -metadata: - name: drone-ingress - namespace: drone - annotations: - cert-manager.io/cluster-issuer: "letsencrypt-prod" - nginx.ingress.kubernetes.io/force-ssl-redirect: "true" -spec: - ingressClassName: nginx - tls: - - hosts: - - drone.panic.haus - secretName: drone-tls - - rules: - - host: drone.panic.haus - http: - paths: - - path: / - pathType: Prefix - backend: - service: - name: drone-server - port: - number: 80 diff --git a/deploy/drone/drone-ingress.yaml b/deploy/drone/drone-ingress.yaml new file mode 100644 index 0000000..ea72988 --- /dev/null +++ b/deploy/drone/drone-ingress.yaml @@ -0,0 +1,26 @@ +apiVersion: networking.k8s.io/v1 +kind: Ingress +metadata: + name: drone-ingress + namespace: drone + annotations: + cert-manager.io/cluster-issuer: "letsencrypt-prod" + nginx.ingress.kubernetes.io/force-ssl-redirect: "true" +spec: + ingressClassName: nginx + tls: + - hosts: + - drone.panic.haus + secretName: drone-tls + + rules: + - host: drone.panic.haus + http: + paths: + - path: / + pathType: Prefix + backend: + service: + name: drone-server + port: + number: 80 diff --git a/deploy/drone/drone-pvc.yaml b/deploy/drone/drone-pvc.yaml new file mode 100644 index 0000000..e911553 --- /dev/null +++ b/deploy/drone/drone-pvc.yaml @@ -0,0 +1,14 @@ +apiVersion: v1 +kind: PersistentVolumeClaim +metadata: + name: drone-pv + namespace: drone + labels: + name: drone-server +spec: + storageClassName: longhorn + accessModes: + - ReadWriteOnce + resources: + requests: + storage: 20Gi diff --git a/deploy/drone/kustomization.yaml b/deploy/drone/kustomization.yaml index d240ef2..d1bb330 100644 --- a/deploy/drone/kustomization.yaml +++ b/deploy/drone/kustomization.yaml @@ -1,2 +1,4 @@ resources: - deploy.yaml + - drone-ingress.yaml + - drone-pvc.yaml