Vault Ppd & Env

2023-04-07 14:08:40 +02:00 · 2023-04-07 14:08:40 +02:00 · 30f9848264
commit 30f9848264
parent 0c8b1971e3
2 changed files with 44 additions and 0 deletions
--- a/devops/ppd.values.yaml
+++ b/devops/ppd.values.yaml
@ -0,0 +1,44 @@
+dockerPullSecret: secret/data/minteed-ppd/config/dockerpullsecret
+
+namespace: lecoffre
+
+lecoffreBack:
+  serviceAccountName: lecoffre-back-sa
+  command: "'sh', '-c', '. /vault/secrets/envs-api && npm run api:start'" 
+  vault:
+    role : custom_lecoffre-back_injector_rol
+    server: https://vault-ppd.smart-chain.fr
+    annotations: 
+      vault.hashicorp.com/agent-pre-populate-only: "true"
+      vault.hashicorp.com/agent-inject: "true"
+      vault.hashicorp.com/agent-inject-secret-envs-api: secret/data/lecoffre-back-ppd/config/envs-api
+      vault.hashicorp.com/role: custom_lecoffre-back_injector_rol
+      vault.hashicorp.com/agent-inject-template-envs-api: |    
+        {{ with secret "secret/data/lecoffre-back-ppd/config/envs-api" }}
+          {{ range $k, $v := .Data.data }}
+              export {{ $k }}="{{ $v }}"
+          {{ end }}
+        {{ end }}
+  imagePullSecrets:
+    - name: docker-pull-secret
+  image:
+    pullPolicy: Always
+    repository: "rg.fr-par.scw.cloud/lecoffre/back" 
+  resources:
+    requests:
+      cpu: 200m
+      memory: 1Gi
+    limits:
+      memory: 2Gi
+  ingress: 
+    host: api.ppd.lecoffre.smart-chain.fr
+    tls:
+      hosts: 
+      - api.ppd.lecoffre.smart-chain.fr 
+      secretName: api-tls
+    annotations:
+      kubernetes.io/ingress.class: nginx
+      cert-manager.io/cluster-issuer: letsencrypt-prod 
+      nginx.ingress.kubernetes.io/from-to-www-redirect: "true"
+      nginx.ingress.kubernetes.io/force-ssl-redirect: "true"
+
--- a/devops/stg.values.yaml
+++ b/devops/stg.values.yaml