From 5e626289bf59c003ea52b56f5fb852d9e0436176 Mon Sep 17 00:00:00 2001
From: Patrick Spek <p.spek@tyil.nl>
Date: Fri, 4 Aug 2023 08:25:03 +0200
Subject: Make lldap runnable from any node

---
 .../oolah/auth-system/lldap/deployment.yaml        | 13 ++++++-----
 .../auth-system/lldap/persistent-volume-claim.yaml | 20 +++++++++++++++++
 .../oolah/auth-system/lldap/persistent-volume.yaml | 26 ++++++++++++++++++++++
 3 files changed, 54 insertions(+), 5 deletions(-)
 create mode 100644 data.d/k3s-master/manifests.d/oolah/auth-system/lldap/persistent-volume-claim.yaml
 create mode 100644 data.d/k3s-master/manifests.d/oolah/auth-system/lldap/persistent-volume.yaml

(limited to 'data.d/k3s-master/manifests.d/oolah/auth-system/lldap')

diff --git a/data.d/k3s-master/manifests.d/oolah/auth-system/lldap/deployment.yaml b/data.d/k3s-master/manifests.d/oolah/auth-system/lldap/deployment.yaml
index 8952e69..9cee89f 100644
--- a/data.d/k3s-master/manifests.d/oolah/auth-system/lldap/deployment.yaml
+++ b/data.d/k3s-master/manifests.d/oolah/auth-system/lldap/deployment.yaml
@@ -10,7 +10,7 @@ metadata:
     app.kubernetes.io/name: lldap
     app.kubernetes.io/part-of: auth-system
 spec:
-  replicas: 1
+  replicas: 2
   selector:
     matchLabels:
       app.kubernetes.io/created-by: tyil
@@ -27,7 +27,6 @@ spec:
         app.kubernetes.io/name: lldap
         app.kubernetes.io/part-of: auth-system
     spec:
-      nodeName: "oolah.tyil.net"
       containers:
       - env:
         - name: GID
@@ -45,10 +44,14 @@ spec:
         volumeMounts:
         - mountPath: /data
           name: data
+        resources:
+          requests:
+            memory: 32Mi
+          limits:
+            memory: 128Mi
       restartPolicy: Always
       volumes:
       - name: data
-        hostPath:
-          path: /etc/lldap
-          type: DirectoryOrCreate
+        persistentVolumeClaim:
+          claimName: lldap
 ...
diff --git a/data.d/k3s-master/manifests.d/oolah/auth-system/lldap/persistent-volume-claim.yaml b/data.d/k3s-master/manifests.d/oolah/auth-system/lldap/persistent-volume-claim.yaml
new file mode 100644
index 0000000..17a812b
--- /dev/null
+++ b/data.d/k3s-master/manifests.d/oolah/auth-system/lldap/persistent-volume-claim.yaml
@@ -0,0 +1,20 @@
+---
+apiVersion: v1
+kind: PersistentVolumeClaim
+metadata:
+  name: lldap
+  namespace: auth-system
+  labels:
+    app.kubernetes.io/created-by: tyil
+    app.kubernetes.io/managed-by: manual
+    app.kubernetes.io/name: lldap
+    app.kubernetes.io/part-of: auth-system
+spec:
+  storageClassName: nfs
+  volumeName: lldap
+  accessModes:
+  - ReadWriteMany
+  resources:
+    requests:
+      storage: 1Gi
+...
diff --git a/data.d/k3s-master/manifests.d/oolah/auth-system/lldap/persistent-volume.yaml b/data.d/k3s-master/manifests.d/oolah/auth-system/lldap/persistent-volume.yaml
new file mode 100644
index 0000000..4501e8f
--- /dev/null
+++ b/data.d/k3s-master/manifests.d/oolah/auth-system/lldap/persistent-volume.yaml
@@ -0,0 +1,26 @@
+---
+apiVersion: v1
+kind: PersistentVolume
+metadata:
+  name: lldap
+  namespace: auth-system
+  labels:
+    app.kubernetes.io/created-by: tyil
+    app.kubernetes.io/managed-by: manual
+    app.kubernetes.io/name: lldap
+    app.kubernetes.io/part-of: auth-system
+spec:
+  storageClassName: nfs
+  persistentVolumeReclaimPolicy: Recycle
+  volumeMode: Filesystem
+  capacity:
+    storage: 1Gi
+  accessModes:
+  - ReadWriteMany
+  nfs:
+    path: /lldap
+    server: 10.57.101.10
+  mountOptions:
+  - hard
+  - nfsvers=4.2
+...
-- 
cgit v1.1