Skip to content
This repository has been archived by the owner on Mar 21, 2024. It is now read-only.

K8S rework #147

Draft
wants to merge 1 commit into
base: main
Choose a base branch
from
Draft

K8S rework #147

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
1 commit
Select commit
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
1 change: 1 addition & 0 deletions .gitignore
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -9,6 +9,7 @@ docker-compose.override.yml
kubernetes/kubectl/configmap.yaml
kubernetes/kubectl/couchdb-pv.yaml
kubernetes/kubectl/ingress.yaml
kubernetes/kubectl/mediator.yaml
kubernetes/istio/istio-gateway.yaml
kubernetes/chart/gameon-system/values.yaml
slackin
Expand Down
17 changes: 0 additions & 17 deletions kubernetes/.template.kubectl.configmap.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -10,30 +10,13 @@ data:
PLAYER_SERVICE_URL: http://player.gameon-system.svc.cluster.local:9080/players/v1/accounts
RECROOM_SERVICE_URL: wss://GAME_FRONT_DOOR/rooms
# Global: Common backing services
COUCHDB_USER: mapUser
COUCHDB_PASSWORD: myCouchDBSecret
COUCHDB_SERVICE_URL: http://couchdb.gameon-system.svc.cluster.local:5984
COUCHDB_HOST_AND_PORT: couchdb.gameon-system.svc.cluster.local:5984
KAFKA_SERVICE_URL: kafka.gameon-system.svc.cluster.local:9092
MESSAGEHUB_USER: ''
MESSAGEHUB_PASSWORD: ''
# Global configuration vars for running locally
GAMEON_MODE: development
TARGET_PLATFORM: local
SYSTEM_ID: game-on.org
ADMIN_PASSWORD: admin
MAP_KEY: fish
SWEEP_ID: sweep
SWEEP_SECRET: sweepSecret
# Auth service environment variables
FACEBOOK_APP_ID: ''
FACEBOOK_APP_SECRET: ''
GITHUB_APP_ID: ''
GITHUB_APP_SECRET: ''
GOOGLE_APP_ID: ''
GOOGLE_APP_SECRET: ''
TWITTER_CONSUMER_KEY: ''
TWITTER_CONSUMER_SECRET: ''
FRONT_END_SUCCESS_CALLBACK: https://GAME_FRONT_DOOR/#/login/callback
FRONT_END_FAIL_CALLBACK: https://GAME_FRONT_DOOR/#/login?login_failed
FRONT_END_AUTH_URL: https://GAME_FRONT_DOOR/auth
4 changes: 4 additions & 0 deletions kubernetes/kubectl/mediator.yaml → kubernetes/.template.kubectl.mediator.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -25,6 +25,8 @@ spec:
metadata:
labels:
app: gameon-mediator
annotations:
traffic.sidecar.istio.io/includeOutboundIPRanges: 10.0.0.1/24
spec:
volumes:
- name: certificate
Expand All @@ -48,3 +50,5 @@ spec:
envFrom:
- configMapRef:
name: global-config
- secretRef:
name: global-secret
24 changes: 24 additions & 0 deletions kubernetes/.template.kubectl.secret.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,24 @@
apiVersion: v1
kind: Secret
metadata:
name: global-secret
namespace: gameon-system
stringData:
COUCHDB_USER: mapUser
COUCHDB_PASSWORD: myCouchDBSecret
MESSAGEHUB_USER: ''
MESSAGEHUB_PASSWORD: ''
SYSTEM_ID: game-on.org
ADMIN_PASSWORD: admin
MAP_KEY: fish
SWEEP_ID: sweep
SWEEP_SECRET: sweepSecret
# Auth service environment variables
FACEBOOK_APP_ID: ''
FACEBOOK_APP_SECRET: ''
GITHUB_APP_ID: ''
GITHUB_APP_SECRET: ''
GOOGLE_APP_ID: ''
GOOGLE_APP_SECRET: ''
TWITTER_CONSUMER_KEY: ''
TWITTER_CONSUMER_SECRET: ''
12 changes: 8 additions & 4 deletions kubernetes/.template.values.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -2,22 +2,26 @@ global:
frontDoor: GAME_FRONT_DOOR
frontDoorHost: GAMEON_INGRESS
mode: development
includeIPRanges: GAMEON_INTERNAL_IPRANGE
data:
# Global: interservice communication
MAP_SERVICE_URL: http://map.gameon-system.svc.cluster.local:9080/map/v1/sites
MAP_HEALTH_SERVICE_URL: http://map.gameon-system.svc.cluster.local:9080/map/v1/health
PLAYER_SERVICE_URL: http://player.gameon-system.svc.cluster.local:9080/players/v1/accounts
RECROOM_SERVICE_URL: wss://GAME_FRONT_DOOR/rooms
# Global: Common backing services
COUCHDB_USER: mapUser
COUCHDB_PASSWORD: myCouchDBSecret
COUCHDB_SERVICE_URL: http://couchdb.gameon-system.svc.cluster.local:5984
COUCHDB_HOST_AND_PORT: couchdb.gameon-system.svc.cluster.local:5984
KAFKA_SERVICE_URL: kafka.gameon-system.svc.cluster.local:9092
MESSAGEHUB_USER: ''
MESSAGEHUB_PASSWORD: ''
# Global configuration vars for running locally
TARGET_PLATFORM: local

globalsecrets:
data:
COUCHDB_USER: mapUser
COUCHDB_PASSWORD: myCouchDBSecret
MESSAGEHUB_USER: ''
MESSAGEHUB_PASSWORD: ''
SYSTEM_ID: game-on.org
ADMIN_PASSWORD: admin
MAP_KEY: fish
Expand Down
4 changes: 2 additions & 2 deletions kubernetes/chart/gameon-system/templates/configmap/auth-config.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -1,11 +1,11 @@
apiVersion: v1
kind: ConfigMap
kind: Secret
metadata:
name: {{ .Chart.Name }}-auth-config
namespace: gameon-system
labels:
{{- include "gameon-system.labels" . }}
data:
stringData:
# Auth service environment variables
{{- range $key, $val := .Values.auth.data }}
{{ $key }}: {{ $val | quote }}
Expand Down
11 changes: 11 additions & 0 deletions kubernetes/chart/gameon-system/templates/configmap/global-secrets.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,11 @@
apiVersion: v1
kind: Secret
metadata:
name: {{ .Chart.Name }}-global-secret
namespace: gameon-system
labels:
{{- include "gameon-system.labels" . }}
stringData:
{{- range $key, $val := .Values.globalsecrets.data }}
{{ $key }}: {{ $val | quote }}
{{- end }}
7 changes: 7 additions & 0 deletions kubernetes/chart/gameon-system/templates/coredeployment.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -1,3 +1,4 @@
{{- $iprange := .Values.global.includeIPRanges }}
{{- range .Values.coreServices }}
apiVersion: extensions/v1beta1
kind: Deployment
Expand All @@ -10,6 +11,10 @@ metadata:
spec:
template:
metadata:
{{- if eq .serviceName "mediator" }}
annotations:
traffic.sidecar.istio.io/includeOutboundIPRanges: {{ $iprange }}
{{- end }}
labels:
app: {{ $.Chart.Name }}-{{ .serviceName }}
spec:
Expand Down Expand Up @@ -37,6 +42,8 @@ spec:
- name: certificate
mountPath: /etc/cert
envFrom:
- secretRef:
name: gameon-system-global-secret
- configMapRef:
name: gameon-system-global-config
{{- if .configMapRef }}
Expand Down
9 changes: 9 additions & 0 deletions kubernetes/k8s-functions
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -103,6 +103,7 @@ reset_go() {
rm -f .gameontext.*.pem
rm -f kubernetes/kubectl/ingress.yaml
rm -f kubernetes/kubectl/configmap.yaml
rm -f kubernetes/kubectl/secret.yaml
rm -f kubernetes/chart/gameon-system/values.yaml
echo '' > .gameontext.kubernetes
unset GAMEON_KUBECTL_CONTEXT
Expand Down Expand Up @@ -137,6 +138,7 @@ prepare() {

# create new files from templates if they don't already exist
cp -n kubernetes/.template.kubectl.configmap.yaml kubernetes/kubectl/configmap.yaml
cp -n kubernetes/.template.kubectl.secret.yaml kubernetes/kubectl/secret.yaml
cp -n kubernetes/.template.values.yaml kubernetes/chart/gameon-system/values.yaml

init_namespace
Expand Down Expand Up @@ -239,6 +241,13 @@ init_namespace() {

create_certificate

# Add internal ip range to kubectl yaml (using # not / to avoid having to escape /24 in range)
cp -n kubernetes/.template.kubectl.mediator.yaml kubernetes/kubectl/mediator.yaml
sed_file "s#includeOutboundIPRanges: .*#includeOutboundIPRanges: ${GAMEON_INTERNAL_IPRANGE}#" kubernetes/kubectl/mediator.yaml

# Add internal ip range to chart (using # not / to avoid having to escape /24 in range)
sed_file "s#includeIPRanges: .*#includeIPRanges: ${GAMEON_INTERNAL_IPRANGE}#" kubernetes/chart/gameon-system/values.yaml

# Ingress Secret
sed_file "s/secretName: .*$/secretName: ${GAMEON_INGRESS_SECRET}/" kubernetes/chart/gameon-system/values.yaml
sed_file "s/secretName: .*$/secretName: ${GAMEON_INGRESS_SECRET}/" kubernetes/kubectl/ingress.yaml
Expand Down
2 changes: 2 additions & 0 deletions kubernetes/kubectl/auth.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -48,3 +48,5 @@ spec:
envFrom:
- configMapRef:
name: global-config
- secretRef:
name: global-secret
2 changes: 2 additions & 0 deletions kubernetes/kubectl/map.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -48,3 +48,5 @@ spec:
envFrom:
- configMapRef:
name: global-config
- secretRef:
name: global-secret
2 changes: 2 additions & 0 deletions kubernetes/kubectl/player.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -48,3 +48,5 @@ spec:
envFrom:
- configMapRef:
name: global-config
- secretRef:
name: global-secret
2 changes: 2 additions & 0 deletions kubernetes/kubectl/room.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -48,3 +48,5 @@ spec:
envFrom:
- configMapRef:
name: global-config
- secretRef:
name: global-secret