3c4ff6fb9f
Cluster-local object store for build artifacts (CLI binaries etc.) so Docker builds don't depend on flaky external downloads. - Single-node Garage v1.0.1 StatefulSet (LMDB, replication=1) - Metadata on longhorn-nvme (1Gi), data on longhorn HDD (20Gi) - S3 API at garage.platform.svc:3900 - External ingress at s3.coreworlds.io (internal-only) - SealedSecret for admin token and RPC secret
23 lines
483 B
YAML
23 lines
483 B
YAML
apiVersion: traefik.io/v1alpha1
|
|
kind: IngressRoute
|
|
metadata:
|
|
name: garage-s3
|
|
namespace: platform
|
|
annotations:
|
|
cert-manager.io/cluster-issuer: letsencrypt-production
|
|
spec:
|
|
entryPoints:
|
|
- websecure
|
|
routes:
|
|
- match: Host(`s3.coreworlds.io`)
|
|
kind: Rule
|
|
middlewares:
|
|
- name: internal-only
|
|
namespace: platform
|
|
services:
|
|
- name: garage
|
|
namespace: platform
|
|
port: 3900
|
|
tls:
|
|
secretName: garage-s3-tls
|