10 changed files with 560 additions and 0 deletions
@ -0,0 +1,23 @@ |
|||
# Patterns to ignore when building packages. |
|||
# This supports shell glob matching, relative path matching, and |
|||
# negation (prefixed with !). Only one pattern per line. |
|||
.DS_Store |
|||
# Common VCS dirs |
|||
.git/ |
|||
.gitignore |
|||
.bzr/ |
|||
.bzrignore |
|||
.hg/ |
|||
.hgignore |
|||
.svn/ |
|||
# Common backup files |
|||
*.swp |
|||
*.bak |
|||
*.tmp |
|||
*.orig |
|||
*~ |
|||
# Various IDEs |
|||
.project |
|||
.idea/ |
|||
*.tmproj |
|||
.vscode/ |
|||
@ -0,0 +1,23 @@ |
|||
# Patterns to ignore when building packages. |
|||
# This supports shell glob matching, relative path matching, and |
|||
# negation (prefixed with !). Only one pattern per line. |
|||
.DS_Store |
|||
# Common VCS dirs |
|||
.git/ |
|||
.gitignore |
|||
.bzr/ |
|||
.bzrignore |
|||
.hg/ |
|||
.hgignore |
|||
.svn/ |
|||
# Common backup files |
|||
*.swp |
|||
*.bak |
|||
*.tmp |
|||
*.orig |
|||
*~ |
|||
# Various IDEs |
|||
.project |
|||
.idea/ |
|||
*.tmproj |
|||
.vscode/ |
|||
@ -0,0 +1,16 @@ |
|||
apiVersion: v2 |
|||
name: emailleg |
|||
description: Correio eletrônico para Casas Legislativas |
|||
|
|||
type: application |
|||
|
|||
# This is the chart version. This version number should be incremented each time you make changes |
|||
# to the chart and its templates, including the app version. |
|||
# Versions are expected to follow Semantic Versioning (https://semver.org/) |
|||
version: 1.4.0 |
|||
|
|||
# This is the version number of the application being deployed. This version number should be |
|||
# incremented each time you make changes to the application. Versions are not expected to |
|||
# follow Semantic Versioning. They should reflect the version the application is using. |
|||
# It is recommended to use it with quotes. |
|||
appVersion: "1.4.0" |
|||
@ -0,0 +1,22 @@ |
|||
1. Get the application URL by running these commands: |
|||
{{- if .Values.ingress.enabled }} |
|||
{{- range $host := .Values.ingress.hosts }} |
|||
{{- range .paths }} |
|||
http{{ if $.Values.ingress.tls }}s{{ end }}://{{ $host.host }}{{ .path }} |
|||
{{- end }} |
|||
{{- end }} |
|||
{{- else if contains "NodePort" .Values.service.type }} |
|||
export NODE_PORT=$(kubectl get --namespace {{ .Release.Namespace }} -o jsonpath="{.spec.ports[0].nodePort}" services {{ include "emailleg.fullname" . }}) |
|||
export NODE_IP=$(kubectl get nodes --namespace {{ .Release.Namespace }} -o jsonpath="{.items[0].status.addresses[0].address}") |
|||
echo http://$NODE_IP:$NODE_PORT |
|||
{{- else if contains "LoadBalancer" .Values.service.type }} |
|||
NOTE: It may take a few minutes for the LoadBalancer IP to be available. |
|||
You can watch the status of by running 'kubectl get --namespace {{ .Release.Namespace }} svc -w {{ include "emailleg.fullname" . }}' |
|||
export SERVICE_IP=$(kubectl get svc --namespace {{ .Release.Namespace }} {{ include "emailleg.fullname" . }} --template "{{"{{ range (index .status.loadBalancer.ingress 0) }}{{.}}{{ end }}"}}") |
|||
echo http://$SERVICE_IP:{{ .Values.service.port }} |
|||
{{- else if contains "ClusterIP" .Values.service.type }} |
|||
export POD_NAME=$(kubectl get pods --namespace {{ .Release.Namespace }} -l "app.kubernetes.io/name={{ include "emailleg.name" . }},app.kubernetes.io/instance={{ .Release.Name }}" -o jsonpath="{.items[0].metadata.name}") |
|||
export CONTAINER_PORT=$(kubectl get pod --namespace {{ .Release.Namespace }} $POD_NAME -o jsonpath="{.spec.containers[0].ports[0].containerPort}") |
|||
echo "Visit http://127.0.0.1:8080 to use your application" |
|||
kubectl --namespace {{ .Release.Namespace }} port-forward $POD_NAME 8080:$CONTAINER_PORT |
|||
{{- end }} |
|||
@ -0,0 +1,62 @@ |
|||
{{/* |
|||
Expand the name of the chart. |
|||
*/}} |
|||
{{- define "emailleg.name" -}} |
|||
{{- default .Chart.Name .Values.nameOverride | trunc 63 | trimSuffix "-" }} |
|||
{{- end }} |
|||
|
|||
{{/* |
|||
Create a default fully qualified app name. |
|||
We truncate at 63 chars because some Kubernetes name fields are limited to this (by the DNS naming spec). |
|||
If release name contains chart name it will be used as a full name. |
|||
*/}} |
|||
{{- define "emailleg.fullname" -}} |
|||
{{- if .Values.fullnameOverride }} |
|||
{{- .Values.fullnameOverride | trunc 63 | trimSuffix "-" }} |
|||
{{- else }} |
|||
{{- $name := default .Chart.Name .Values.nameOverride }} |
|||
{{- if contains $name .Release.Name }} |
|||
{{- .Release.Name | trunc 63 | trimSuffix "-" }} |
|||
{{- else }} |
|||
{{- printf "%s-%s" .Release.Name $name | trunc 63 | trimSuffix "-" }} |
|||
{{- end }} |
|||
{{- end }} |
|||
{{- end }} |
|||
|
|||
{{/* |
|||
Create chart name and version as used by the chart label. |
|||
*/}} |
|||
{{- define "emailleg.chart" -}} |
|||
{{- printf "%s-%s" .Chart.Name .Chart.Version | replace "+" "_" | trunc 63 | trimSuffix "-" }} |
|||
{{- end }} |
|||
|
|||
{{/* |
|||
Common labels |
|||
*/}} |
|||
{{- define "emailleg.labels" -}} |
|||
helm.sh/chart: {{ include "emailleg.chart" . }} |
|||
{{ include "emailleg.selectorLabels" . }} |
|||
{{- if .Chart.AppVersion }} |
|||
app.kubernetes.io/version: {{ .Chart.AppVersion | quote }} |
|||
{{- end }} |
|||
app.kubernetes.io/managed-by: {{ .Release.Service }} |
|||
{{- end }} |
|||
|
|||
{{/* |
|||
Selector labels |
|||
*/}} |
|||
{{- define "emailleg.selectorLabels" -}} |
|||
app.kubernetes.io/name: {{ include "emailleg.name" . }} |
|||
app.kubernetes.io/instance: {{ .Release.Name }} |
|||
{{- end }} |
|||
|
|||
{{/* |
|||
Create the name of the service account to use |
|||
*/}} |
|||
{{- define "emailleg.serviceAccountName" -}} |
|||
{{- if .Values.serviceAccount.create }} |
|||
{{- default (include "emailleg.fullname" .) .Values.serviceAccount.name }} |
|||
{{- else }} |
|||
{{- default "default" .Values.serviceAccount.name }} |
|||
{{- end }} |
|||
{{- end }} |
|||
@ -0,0 +1,196 @@ |
|||
apiVersion: apps/v1 |
|||
kind: Deployment |
|||
metadata: |
|||
name: {{ include "emailleg.fullname" . }} |
|||
labels: |
|||
{{- include "emailleg.labels" . | nindent 4 }} |
|||
spec: |
|||
replicas: 1 |
|||
selector: |
|||
matchLabels: |
|||
{{- include "emailleg.selectorLabels" . | nindent 6 }} |
|||
template: |
|||
metadata: |
|||
{{- with .Values.podAnnotations }} |
|||
annotations: |
|||
{{- toYaml . | nindent 8 }} |
|||
{{- end }} |
|||
labels: |
|||
{{- include "emailleg.selectorLabels" . | nindent 8 }} |
|||
spec: |
|||
{{- with .Values.imagePullSecrets }} |
|||
imagePullSecrets: |
|||
{{- toYaml . | nindent 8 }} |
|||
{{- end }} |
|||
securityContext: |
|||
{{- toYaml .Values.podSecurityContext | nindent 8 }} |
|||
containers: |
|||
- name: imap |
|||
securityContext: |
|||
{{- toYaml .Values.securityContext | nindent 12 }} |
|||
image: "{{ .Values.imap.image.repository }}:{{ .Values.imap.image.tag }}" |
|||
imagePullPolicy: {{ .Values.imap.image.pullPolicy }} |
|||
env: |
|||
- name: HOSTNAMES |
|||
value: "mail.{{ .Values.mail.domain }}" |
|||
- name: DOMAIN |
|||
value: {{ .Values.mail.domain }} |
|||
- name: POSTMASTER |
|||
value: "admin" |
|||
ports: |
|||
- name: imap |
|||
containerPort: 143 |
|||
protocol: TCP |
|||
- name: pop |
|||
containerPort: 110 |
|||
protocol: TCP |
|||
livenessProbe: |
|||
tcpSocket: |
|||
port: 143 |
|||
initialDelaySeconds: 10 |
|||
periodSeconds: 5 |
|||
readinessProbe: |
|||
tcpSocket: |
|||
port: 143 |
|||
initialDelaySeconds: 10 |
|||
periodSeconds: 5 |
|||
volumeMounts: |
|||
- mountPath: /data |
|||
subPath: data |
|||
name: mailvol |
|||
- mountPath: /mail |
|||
subPath: mail |
|||
name: mailvol |
|||
- mountPath: /certs |
|||
subPath: certs |
|||
name: mailvol |
|||
resources: |
|||
{{- toYaml .Values.imap.resources | nindent 12 }} |
|||
- name: smtp |
|||
securityContext: |
|||
{{- toYaml .Values.securityContext | nindent 12 }} |
|||
image: "{{ .Values.smtp.image.repository }}:{{ .Values.smtp.image.tag }}" |
|||
imagePullPolicy: {{ .Values.smtp.image.pullPolicy }} |
|||
env: |
|||
- name: HOSTNAMES |
|||
value: "mail.{{ .Values.mail.domain }}" |
|||
- name: DOMAIN |
|||
value: {{ .Values.mail.domain }} |
|||
- name: POSTMASTER |
|||
value: "admin" |
|||
- name: MESSAGE_SIZE_LIMIT |
|||
value: {{ .Values.mail.messageSizeLimit }} |
|||
- name: RELAYNETS |
|||
value: {{ .Values.mail.relayNets }} |
|||
- name: RELAYHOST |
|||
value: {{ .Values.mail.relayHost }} |
|||
ports: |
|||
- name: smtp |
|||
containerPort: 25 |
|||
protocol: TCP |
|||
livenessProbe: |
|||
tcpSocket: |
|||
port: 25 |
|||
initialDelaySeconds: 10 |
|||
periodSeconds: 5 |
|||
readinessProbe: |
|||
tcpSocket: |
|||
port: 25 |
|||
initialDelaySeconds: 10 |
|||
periodSeconds: 5 |
|||
volumeMounts: |
|||
- mountPath: /data |
|||
subPath: data |
|||
name: mailvol |
|||
- mountPath: /certs |
|||
subPath: certs |
|||
name: mailvol |
|||
resources: |
|||
{{- toYaml .Values.smtp.resources | nindent 12 }} |
|||
- name: admin |
|||
securityContext: |
|||
{{- toYaml .Values.securityContext | nindent 12 }} |
|||
image: "{{ .Values.admin.image.repository }}:{{ .Values.admin.image.tag }}" |
|||
imagePullPolicy: {{ .Values.admin.image.pullPolicy }} |
|||
env: |
|||
- name: SECRET_KEY |
|||
value: {{ .Values.mail.secretKey }} |
|||
- name: DOMAIN |
|||
value: {{ .Values.mail.domain }} |
|||
- name: ENABLE_CERTBOT |
|||
value: false |
|||
- name: BABEL_DEFAULT_LOCALE |
|||
value: pt |
|||
- name: WEB_WEBMAIL |
|||
value: {{ .Values.mail.webmailAddr }} |
|||
- name: WEBSITE |
|||
value: {{ .Values.mail.website }} |
|||
- name: SITENAME |
|||
value: {{ .Values.mail.siteName }} |
|||
ports: |
|||
- name: http |
|||
containerPort: 80 |
|||
protocol: TCP |
|||
livenessProbe: |
|||
httpGet: |
|||
path: / |
|||
port: 80 |
|||
initialDelaySeconds: 10 |
|||
periodSeconds: 5 |
|||
readinessProbe: |
|||
httpGet: |
|||
path: / |
|||
port: 80 |
|||
initialDelaySeconds: 10 |
|||
periodSeconds: 5 |
|||
volumeMounts: |
|||
- mountPath: /data |
|||
subPath: data |
|||
name: mailvol |
|||
- mountPath: /certs |
|||
subPath: certs |
|||
name: mailvol |
|||
resources: |
|||
{{- toYaml .Values.admin.resources | nindent 12 }} |
|||
- name: redis |
|||
securityContext: |
|||
{{- toYaml .Values.securityContext | nindent 12 }} |
|||
image: "{{ .Values.redis.image.repository }}:{{ .Values.redis.image.tag }}" |
|||
imagePullPolicy: {{ .Values.redis.image.pullPolicy }} |
|||
ports: |
|||
- name: redis |
|||
containerPort: 6379 |
|||
protocol: TCP |
|||
livenessProbe: |
|||
tcpSocket: |
|||
port: 6379 |
|||
initialDelaySeconds: 10 |
|||
periodSeconds: 5 |
|||
readinessProbe: |
|||
tcpSocket: |
|||
port: 6379 |
|||
initialDelaySeconds: 10 |
|||
periodSeconds: 5 |
|||
volumeMounts: |
|||
- mountPath: /data |
|||
subPath: redis |
|||
name: mailvol |
|||
resources: |
|||
{{- toYaml .Values.redis.resources | nindent 12 }} |
|||
|
|||
volumes: |
|||
- name: mailvol |
|||
persistentVolumeClaim: |
|||
claimName: {{ include "emailleg.fullname" . }}-mailvol |
|||
{{- with .Values.nodeSelector }} |
|||
nodeSelector: |
|||
{{- toYaml . | nindent 8 }} |
|||
{{- end }} |
|||
{{- with .Values.affinity }} |
|||
affinity: |
|||
{{- toYaml . | nindent 8 }} |
|||
{{- end }} |
|||
{{- with .Values.tolerations }} |
|||
tolerations: |
|||
{{- toYaml . | nindent 8 }} |
|||
{{- end }} |
|||
@ -0,0 +1,61 @@ |
|||
{{- if .Values.ingress.enabled -}} |
|||
{{- $fullName := include "emailleg.fullname" . -}} |
|||
{{- $svcPort := .Values.service.port -}} |
|||
{{- if and .Values.ingress.className (not (semverCompare ">=1.18-0" .Capabilities.KubeVersion.GitVersion)) }} |
|||
{{- if not (hasKey .Values.ingress.annotations "kubernetes.io/ingress.class") }} |
|||
{{- $_ := set .Values.ingress.annotations "kubernetes.io/ingress.class" .Values.ingress.className}} |
|||
{{- end }} |
|||
{{- end }} |
|||
{{- if semverCompare ">=1.19-0" .Capabilities.KubeVersion.GitVersion -}} |
|||
apiVersion: networking.k8s.io/v1 |
|||
{{- else if semverCompare ">=1.14-0" .Capabilities.KubeVersion.GitVersion -}} |
|||
apiVersion: networking.k8s.io/v1beta1 |
|||
{{- else -}} |
|||
apiVersion: extensions/v1beta1 |
|||
{{- end }} |
|||
kind: Ingress |
|||
metadata: |
|||
name: {{ $fullName }} |
|||
labels: |
|||
{{- include "emailleg.labels" . | nindent 4 }} |
|||
{{- with .Values.ingress.annotations }} |
|||
annotations: |
|||
{{- toYaml . | nindent 4 }} |
|||
{{- end }} |
|||
spec: |
|||
{{- if and .Values.ingress.className (semverCompare ">=1.18-0" .Capabilities.KubeVersion.GitVersion) }} |
|||
ingressClassName: {{ .Values.ingress.className }} |
|||
{{- end }} |
|||
{{- if .Values.ingress.tls }} |
|||
tls: |
|||
{{- range .Values.ingress.tls }} |
|||
- hosts: |
|||
{{- range .hosts }} |
|||
- {{ . | quote }} |
|||
{{- end }} |
|||
secretName: {{ .secretName }} |
|||
{{- end }} |
|||
{{- end }} |
|||
rules: |
|||
{{- range .Values.ingress.hosts }} |
|||
- host: {{ .host | quote }} |
|||
http: |
|||
paths: |
|||
{{- range .paths }} |
|||
- path: {{ .path }} |
|||
{{- if and .pathType (semverCompare ">=1.18-0" $.Capabilities.KubeVersion.GitVersion) }} |
|||
pathType: {{ .pathType }} |
|||
{{- end }} |
|||
backend: |
|||
{{- if semverCompare ">=1.19-0" $.Capabilities.KubeVersion.GitVersion }} |
|||
service: |
|||
name: {{ $fullName }} |
|||
port: |
|||
number: {{ $svcPort }} |
|||
{{- else }} |
|||
serviceName: {{ $fullName }} |
|||
servicePort: {{ $svcPort }} |
|||
{{- end }} |
|||
{{- end }} |
|||
{{- end }} |
|||
{{- end }} |
|||
@ -0,0 +1,19 @@ |
|||
apiVersion: v1 |
|||
kind: PersistentVolumeClaim |
|||
metadata: |
|||
name: {{ include "emailleg.fullname" . }}-mailvol |
|||
labels: |
|||
{{- include "emailleg.labels" . | nindent 4 }} |
|||
spec: |
|||
accessModes: |
|||
- {{ .Values.persistence.accessMode }} |
|||
resources: |
|||
requests: |
|||
storage: {{ .Values.persistence.size }} |
|||
{{- if .Values.persistence.storageClass }} |
|||
{{- if (eq "-" .Values.persistence.storageClass) }} |
|||
storageClassName: "" |
|||
{{- else }} |
|||
storageClassName: "{{ .Values.persistence.storageClass }}" |
|||
{{- end }} |
|||
{{- end }} |
|||
@ -0,0 +1,15 @@ |
|||
apiVersion: v1 |
|||
kind: Service |
|||
metadata: |
|||
name: {{ include "emailleg.fullname" . }} |
|||
labels: |
|||
{{- include "emailleg.labels" . | nindent 4 }} |
|||
spec: |
|||
type: {{ .Values.service.type }} |
|||
ports: |
|||
- port: {{ .Values.service.port }} |
|||
targetPort: http |
|||
protocol: TCP |
|||
name: http |
|||
selector: |
|||
{{- include "emailleg.selectorLabels" . | nindent 4 }} |
|||
@ -0,0 +1,123 @@ |
|||
# Default values for emailleg. |
|||
|
|||
imap: |
|||
image: |
|||
repository: porto.interlegis.leg.br/seit/mailu-dovecot |
|||
pullPolicy: IfNotPresent |
|||
tag: "1.5.2" |
|||
resources: {} |
|||
# limits: |
|||
# cpu: 100m |
|||
# memory: 128Mi |
|||
# requests: |
|||
# cpu: 100m |
|||
# memory: 128Mi |
|||
|
|||
smtp: |
|||
image: |
|||
repository: porto.interlegis.leg.br/seit/mailu-postfix |
|||
pullPolicy: IfNotPresent |
|||
tag: "1.5.1" |
|||
resources: {} |
|||
# limits: |
|||
# cpu: 100m |
|||
# memory: 128Mi |
|||
# requests: |
|||
# cpu: 100m |
|||
# memory: 128Mi |
|||
|
|||
admin: |
|||
image: |
|||
repository: porto.interlegis.leg.br/seit/mailu-admin |
|||
pullPolicy: IfNotPresent |
|||
tag: "1.5.6" |
|||
resources: {} |
|||
# limits: |
|||
# cpu: 100m |
|||
# memory: 128Mi |
|||
# requests: |
|||
# cpu: 100m |
|||
# memory: 128Mi |
|||
|
|||
config: |
|||
image: |
|||
repository: porto.interlegis.leg.br/seit/mailu-admin-ilconfig |
|||
pullPolicy: IfNotPresent |
|||
tag: "0.1.0" |
|||
resources: {} |
|||
# limits: |
|||
# cpu: 100m |
|||
# memory: 128Mi |
|||
# requests: |
|||
# cpu: 100m |
|||
# memory: 128Mi |
|||
|
|||
redis: |
|||
image: |
|||
repository: redis |
|||
pullPolicy: IfNotPresent |
|||
tag: "4.0.11-alpine" |
|||
resources: {} |
|||
# limits: |
|||
# cpu: 100m |
|||
# memory: 128Mi |
|||
# requests: |
|||
# cpu: 100m |
|||
# memory: 128Mi |
|||
|
|||
mail: |
|||
domain: teste.df.leg.br |
|||
messageSizeLimit: 50000000 |
|||
relayNets: 10.42.0.0/16 |
|||
relayHost: postfix.mtaout.rancher.internal |
|||
secretKey: 2YCnTI7MjFN3uZgk |
|||
webmailUrl: https://correio.interlegis.leg.br |
|||
website: http://www.interlegis.leg.br |
|||
siteName: E-mail Legislativo |
|||
managerPW: secretPw |
|||
|
|||
persistence: |
|||
#storageClass: "" |
|||
accessMode: ReadWriteOnce |
|||
size: 100Gi |
|||
|
|||
imagePullSecrets: [] |
|||
|
|||
podAnnotations: {} |
|||
|
|||
podSecurityContext: {} |
|||
# fsGroup: 2000 |
|||
|
|||
securityContext: {} |
|||
# capabilities: |
|||
# drop: |
|||
# - ALL |
|||
# readOnlyRootFilesystem: true |
|||
# runAsNonRoot: true |
|||
# runAsUser: 1000 |
|||
|
|||
service: |
|||
type: ClusterIP |
|||
port: 80 |
|||
|
|||
ingress: |
|||
enabled: false |
|||
className: "" |
|||
annotations: {} |
|||
# kubernetes.io/ingress.class: nginx |
|||
# kubernetes.io/tls-acme: "true" |
|||
hosts: |
|||
- host: chart-example.local |
|||
paths: |
|||
- path: / |
|||
pathType: ImplementationSpecific |
|||
tls: [] |
|||
# - secretName: chart-example-tls |
|||
# hosts: |
|||
# - chart-example.local |
|||
|
|||
nodeSelector: {} |
|||
|
|||
tolerations: [] |
|||
|
|||
affinity: {} |
|||
Loading…
Reference in new issue