3c4ff6fb9f
Cluster-local object store for build artifacts (CLI binaries etc.) so Docker builds don't depend on flaky external downloads. - Single-node Garage v1.0.1 StatefulSet (LMDB, replication=1) - Metadata on longhorn-nvme (1Gi), data on longhorn HDD (20Gi) - S3 API at garage.platform.svc:3900 - External ingress at s3.coreworlds.io (internal-only) - SealedSecret for admin token and RPC secret
78 lines
1.4 KiB
YAML
78 lines
1.4 KiB
YAML
apiVersion: cert-manager.io/v1
|
|
kind: Certificate
|
|
metadata:
|
|
name: argocd-tls
|
|
namespace: platform
|
|
spec:
|
|
secretName: argocd-tls
|
|
issuerRef:
|
|
name: letsencrypt-production
|
|
kind: ClusterIssuer
|
|
dnsNames:
|
|
- argocd.coreworlds.io
|
|
---
|
|
apiVersion: cert-manager.io/v1
|
|
kind: Certificate
|
|
metadata:
|
|
name: grafana-tls
|
|
namespace: platform
|
|
spec:
|
|
secretName: grafana-tls
|
|
issuerRef:
|
|
name: letsencrypt-production
|
|
kind: ClusterIssuer
|
|
dnsNames:
|
|
- grafana.coreworlds.io
|
|
---
|
|
apiVersion: cert-manager.io/v1
|
|
kind: Certificate
|
|
metadata:
|
|
name: longhorn-tls
|
|
namespace: platform
|
|
spec:
|
|
secretName: longhorn-tls
|
|
issuerRef:
|
|
name: letsencrypt-production
|
|
kind: ClusterIssuer
|
|
dnsNames:
|
|
- longhorn.coreworlds.io
|
|
---
|
|
apiVersion: cert-manager.io/v1
|
|
kind: Certificate
|
|
metadata:
|
|
name: harness-tls
|
|
namespace: platform
|
|
spec:
|
|
secretName: harness-tls
|
|
issuerRef:
|
|
name: letsencrypt-production
|
|
kind: ClusterIssuer
|
|
dnsNames:
|
|
- harness.coreworlds.io
|
|
---
|
|
apiVersion: cert-manager.io/v1
|
|
kind: Certificate
|
|
metadata:
|
|
name: gitea-tls
|
|
namespace: platform
|
|
spec:
|
|
secretName: gitea-tls
|
|
issuerRef:
|
|
name: letsencrypt-production
|
|
kind: ClusterIssuer
|
|
dnsNames:
|
|
- gitea.coreworlds.io
|
|
---
|
|
apiVersion: cert-manager.io/v1
|
|
kind: Certificate
|
|
metadata:
|
|
name: garage-s3-tls
|
|
namespace: platform
|
|
spec:
|
|
secretName: garage-s3-tls
|
|
issuerRef:
|
|
name: letsencrypt-production
|
|
kind: ClusterIssuer
|
|
dnsNames:
|
|
- s3.coreworlds.io
|