Infrastructure/ansible
1
0
Fork 0
Code Issues Pull requests 6 Projects Releases Packages Wiki Activity Actions

W2FM: setup FASJSON access

Browse source 
Signed-off-by: Aurélien Bompard <aurelien@bompard.org>
This commit is contained in:
Aurélien Bompard 2024-08-13 11:11:48 +02:00
parent c6db9c2120
commit 5bbdd6c420
No known key found for this signature in database
GPG key ID: 31584CFEB9BF64AD
2 changed files with 27 additions and 0 deletions
Download patch file Download diff file Expand all files Collapse all files

11
playbooks/openshift-apps/webhook2fedmsg.yml
View file

@ -84,6 +84,7 @@
file: service.yml
objectname: service.yml
# Routes
- role: openshift/route
app: webhook2fedmsg
routename: web
@ -97,6 +98,16 @@
serviceport: web
servicename: web
# FASJSON access
- role: openshift/ipa-client
app: webhook2fedmsg
- role: openshift/keytab
app: webhook2fedmsg
key: service.keytab
secret_name: keytab
service: webhook2fedmsg
# Deployment config
- role: openshift/object
app: webhook2fedmsg
template: deploymentconfig.yml

16
roles/openshift-apps/webhook2fedmsg/templates/deploymentconfig.yml
View file

@ -35,6 +35,10 @@ spec:
value: "/etc/webhook-to-fedora-messaging/webhook-to-fedora-messaging.cfg"
- name: APP_SCRIPT
value: "/opt/app-root/bin/uvicorn --host 0.0.0.0 --port 8080 --log-config /etc/webhook-to-fedora-messaging/logging.yaml --factory webhook_to_fedora_messaging.main:create_app"
- name: KRB5_CONFIG
value: /etc/ipa/krb5.conf
- name: KRB5_CLIENT_KTNAME
value: /etc/keytabs/service.keytab
ports:
- containerPort: 8080
protocol: TCP
@ -42,6 +46,12 @@ spec:
- name: config
mountPath: "/etc/webhook-to-fedora-messaging"
readOnly: true
- name: ipa-config-volume
mountPath: /etc/ipa
readOnly: true
- name: keytab-volume
mountPath: /etc/keytabs
readOnly: true
- name: fedora-messaging-config
mountPath: "/etc/fedora-messaging"
readOnly: true
@ -75,6 +85,12 @@ spec:
- name: config
configMap:
name: config
- name: ipa-config-volume
configMap:
name: ipa-client-config
- name: keytab-volume
secret:
secretName: keytab
- name: fedora-messaging-config
configMap:
name: fedora-messaging-config