| # 0.token-server-base.yaml |
| |
| #################################################### |
| # harbor private docker registry |
| #################################################### |
| --- |
| apiVersion: v1 |
| kind: Secret |
| type: kubernetes.io/dockerconfigjson |
| metadata: |
| name: harbor-registry |
| namespace: token-server |
| data: |
| # 修改harbor仓库配置,并使用 base64 工具进行编码 |
| # {"auths":{"harbor.supwisdom.com":{"password":"PWMgP85qiLFC","username":"rancher.devops"}}} |
| .dockerconfigjson: eyJhdXRocyI6eyJoYXJib3Iuc3Vwd2lzZG9tLmNvbSI6eyJwYXNzd29yZCI6IlBXTWdQODVxaUxGQyIsInVzZXJuYW1lIjoicmFuY2hlci5kZXZvcHMifX19 |
| |
| |
| #################################################### |
| # redis-server |
| #################################################### |
| --- |
| apiVersion: v1 |
| kind: Secret |
| metadata: |
| labels: |
| app: redis |
| release: redis-server |
| name: redis-server |
| namespace: token-server |
| type: Opaque |
| data: |
| REDIS_PASSWORD: OEt1d29zbE9pdXc3SA== |
| --- |
| apiVersion: v1 |
| kind: Service |
| metadata: |
| labels: |
| app: redis |
| release: redis-server |
| name: redis-server |
| namespace: token-server |
| spec: |
| ports: |
| - name: redis |
| port: 6379 |
| protocol: TCP |
| targetPort: redis |
| selector: |
| app: redis |
| release: redis-server |
| role: master |
| type: ClusterIP |
| --- |
| apiVersion: apps/v1 |
| kind: StatefulSet |
| metadata: |
| labels: |
| app: redis |
| release: redis-server |
| name: redis-server |
| namespace: token-server |
| spec: |
| podManagementPolicy: OrderedReady |
| replicas: 1 |
| revisionHistoryLimit: 10 |
| selector: |
| matchLabels: |
| app: redis |
| release: redis-server |
| role: master |
| serviceName: redis-master |
| template: |
| metadata: |
| labels: |
| app: redis |
| release: redis-server |
| role: master |
| spec: |
| containers: |
| - name: redis-server |
| env: |
| - name: REDIS_DISABLE_COMMANDS |
| value: FLUSHDB,FLUSHALL |
| - name: REDIS_REPLICATION_MODE |
| value: master |
| - name: REDIS_PASSWORD |
| valueFrom: |
| secretKeyRef: |
| name: redis-server |
| key: REDIS_PASSWORD |
| # 若使用了学校搭设的私有仓库,请修改 |
| image: bitnami/redis:4.0 |
| # 若使用了学校搭设的私有仓库,请修改 为 Always |
| imagePullPolicy: IfNotPresent |
| # imagePullPolicy: Always |
| livenessProbe: |
| exec: |
| command: |
| - redis-cli |
| - ping |
| failureThreshold: 5 |
| initialDelaySeconds: 30 |
| periodSeconds: 10 |
| successThreshold: 1 |
| timeoutSeconds: 5 |
| ports: |
| - containerPort: 6379 |
| name: redis |
| protocol: TCP |
| readinessProbe: |
| exec: |
| command: |
| - redis-cli |
| - ping |
| failureThreshold: 5 |
| initialDelaySeconds: 5 |
| periodSeconds: 10 |
| successThreshold: 1 |
| timeoutSeconds: 1 |
| volumeMounts: |
| - mountPath: /bitnami/redis/data |
| name: redis-data |
| dnsPolicy: ClusterFirst |
| restartPolicy: Always |
| securityContext: |
| fsGroup: 0 |
| # fsGroup: 1001 |
| # runAsUser: 1001 |
| # https://github.com/bitnami/bitnami-docker-redis/issues/106#issuecomment-388884372 |
| runAsUser: 0 |
| terminationGracePeriodSeconds: 30 |
| volumes: |
| - emptyDir: {} |
| name: redis-data |
| # 若使用了学校搭设的私有仓库,请增加以下配置(取消注释即可) |
| # imagePullSecrets: |
| # - name: harbor-registry |
| updateStrategy: |
| rollingUpdate: |
| partition: 0 |
| type: RollingUpdate |
| |