diff --git a/k8s/base/deployment.yaml b/k8s/base/deployment.yaml new file mode 100644 index 0000000000..05777d819f --- /dev/null +++ b/k8s/base/deployment.yaml @@ -0,0 +1,81 @@ +apiVersion: apps/v1 +kind: Deployment +metadata: + name: zitadel + labels: + app: zitadel +spec: + replicas: 3 + selector: + matchLabels: + app: zitadel + version: v1 + template: + metadata: + labels: + app: zitadel + version: v1 + spec: + containers: + - name: zitadel + image: docker.pkg.github.com/caos/zitadel/zitadel:latest + imagePullPolicy: IfNotPresent + args: ["-login=false", "-console=false"] + ports: + - name: management-rest + containerPort: 60021 + - name: management-grpc + containerPort: 60020 + - name: auth-rest + containerPort: 60051 + - name: issuer-rest + containerPort: 60052 + - name: auth-grpc + containerPort: 60050 + - name: admin-rest + containerPort: 60091 + - name: admin-grpc + containerPort: 60090 + - name: console-http + containerPort: 9090 + - name: accounts-http + containerPort: 61121 + env: + - name: ZITADEL_GOOGLE_CHAT_URL + valueFrom: + secretKeyRef: + name: zitadel-secrets-vars + key: ZITADEL_GOOGLE_CHAT_URL + - name: ZITADEL_TWILIO_AUTH_TOKEN + valueFrom: + secretKeyRef: + name: zitadel-secrets-vars + key: ZITADEL_TWILIO_AUTH_TOKEN + - name: ZITADEL_TWILIO_SID + valueFrom: + secretKeyRef: + name: zitadel-secrets-vars + key: ZITADEL_TWILIO_SID + - name: ZITADEL_EMAILAPPKEY + valueFrom: + secretKeyRef: + name: zitadel-secrets-vars + key: ZITADEL_EMAILAPPKEY + envFrom: + - configMapRef: + name: zitadel-vars + volumeMounts: + - name: zitadel-secret + mountPath: /secret + - name: console-config + mountPath: /app/console/dist/assets/environment.json + subPath: environment.json + imagePullSecrets: + - name: githubsecret + volumes: + - name: zitadel-secret + secret: + secretName: zitadel-secret + - name: console-config + configMap: + name: console-config diff --git a/k8s/base/flow.yaml b/k8s/base/flow.yaml new file mode 100644 index 0000000000..eccd3587fa --- /dev/null +++ b/k8s/base/flow.yaml @@ -0,0 +1,18 @@ +apiVersion: logging.banzaicloud.io/v1beta1 +kind: Flow +metadata: + name: flow-zitadel +spec: + filters: + - parser: + remove_key_name_field: true + reserve_data: true + parse: + type: logfmt + - tag_normaliser: + metadata: ${namespace}.${container}.${pod} + metadata_name: ${namespace_name}.${container_name}.${pod_name} + selectors: + app: zitadel + outputRefs: + - output-loki \ No newline at end of file diff --git a/k8s/base/kustomization.yaml b/k8s/base/kustomization.yaml new file mode 100644 index 0000000000..4bb37c1f08 --- /dev/null +++ b/k8s/base/kustomization.yaml @@ -0,0 +1,12 @@ +apiVersion: kustomize.config.k8s.io/v1beta1 +kind: Kustomization + +namespace: zitadel + +resources: +- deployment.yaml +- service-accounts.yaml +- service-api-admin.yaml +- service-api-auth.yaml +- service-api-mangagement.yaml +- service-console.yaml diff --git a/k8s/base/output.yaml b/k8s/base/output.yaml new file mode 100644 index 0000000000..9a8a103c41 --- /dev/null +++ b/k8s/base/output.yaml @@ -0,0 +1,13 @@ + +apiVersion: logging.banzaicloud.io/v1beta1 +kind: Output +metadata: + name: output-loki +spec: + loki: + buffer: + timekey: 1m + timekey_use_utc: true + timekey_wait: 30s + configure_kubernetes_labels: true + url: http://loki.caos-system:3100 diff --git a/k8s/base/service-accounts.yaml b/k8s/base/service-accounts.yaml new file mode 100644 index 0000000000..c272d7d3a6 --- /dev/null +++ b/k8s/base/service-accounts.yaml @@ -0,0 +1,13 @@ +--- +apiVersion: v1 +kind: Service +metadata: + name: accounts-v1 +spec: + ports: + - name: http + port: 80 + targetPort: accounts-http + selector: + app: zitadel + version: v1 diff --git a/k8s/base/service-api-admin.yaml b/k8s/base/service-api-admin.yaml new file mode 100644 index 0000000000..019670d253 --- /dev/null +++ b/k8s/base/service-api-admin.yaml @@ -0,0 +1,16 @@ +--- +apiVersion: v1 +kind: Service +metadata: + name: api-admin-v1 +spec: + ports: + - name: rest + port: 80 + targetPort: admin-rest + - name: grpc + port: 8080 + targetPort: admin-grpc + selector: + app: zitadel + version: v1 diff --git a/k8s/base/service-api-auth.yaml b/k8s/base/service-api-auth.yaml new file mode 100644 index 0000000000..d9fce7b340 --- /dev/null +++ b/k8s/base/service-api-auth.yaml @@ -0,0 +1,19 @@ +--- +apiVersion: v1 +kind: Service +metadata: + name: api-auth-v1 +spec: + ports: + - name: rest + port: 80 + targetPort: auth-rest + - name: issuer + port: 7070 + targetPort: issuer-rest + - name: grpc + port: 8080 + targetPort: auth-grpc + selector: + app: zitadel + version: v1 diff --git a/k8s/base/service-api-mangagement.yaml b/k8s/base/service-api-mangagement.yaml new file mode 100644 index 0000000000..86990edfd6 --- /dev/null +++ b/k8s/base/service-api-mangagement.yaml @@ -0,0 +1,16 @@ +--- +apiVersion: v1 +kind: Service +metadata: + name: api-management-v1 +spec: + ports: + - name: rest + port: 80 + targetPort: management-rest + - name: grpc + port: 8080 + targetPort: management-grpc + selector: + app: zitadel + version: v1 \ No newline at end of file diff --git a/k8s/base/service-console.yaml b/k8s/base/service-console.yaml new file mode 100644 index 0000000000..add413f196 --- /dev/null +++ b/k8s/base/service-console.yaml @@ -0,0 +1,13 @@ +--- +apiVersion: v1 +kind: Service +metadata: + name: console-v1 +spec: + ports: + - name: http + port: 80 + targetPort: console-http + selector: + app: zitadel + version: v1