From 5d5a5801eafa27d779329269e1b3c8e808590977 Mon Sep 17 00:00:00 2001 From: Andrey Kartashov Date: Fri, 18 Feb 2022 19:02:45 +0700 Subject: [PATCH] remove oauth2-proxy, sealed-secrets, minecraft --- apps/minecraft/Chart.yaml | 3 - apps/minecraft/requirements.yaml | 4 - apps/minecraft/templates/volume.yaml | 11 - apps/minecraft/templates/volumeclaim.yaml | 12 - apps/minecraft/values.yaml | 14 -- apps/system/oauth2-proxy/.gitignore | 2 - apps/system/oauth2-proxy/Chart.yaml | 1 - apps/system/oauth2-proxy/requirements.yaml | 4 - apps/system/oauth2-proxy/values.yaml | 27 --- apps/system/sealed-secrets/controller.yaml | 222 ------------------ apps/system/sealed-secrets/kustomization.yaml | 11 - apps/system/sealed-secrets/namespace.yaml | 4 - main/apps/minecraft.yaml | 19 -- main/apps/oauth2-proxy.yaml | 26 -- 14 files changed, 360 deletions(-) delete mode 100644 apps/minecraft/Chart.yaml delete mode 100644 apps/minecraft/requirements.yaml delete mode 100644 apps/minecraft/templates/volume.yaml delete mode 100644 apps/minecraft/templates/volumeclaim.yaml delete mode 100644 apps/minecraft/values.yaml delete mode 100644 apps/system/oauth2-proxy/.gitignore delete mode 100644 apps/system/oauth2-proxy/Chart.yaml delete mode 100644 apps/system/oauth2-proxy/requirements.yaml delete mode 100644 apps/system/oauth2-proxy/values.yaml delete mode 100644 apps/system/sealed-secrets/controller.yaml delete mode 100644 apps/system/sealed-secrets/kustomization.yaml delete mode 100644 apps/system/sealed-secrets/namespace.yaml delete mode 100644 main/apps/minecraft.yaml delete mode 100644 main/apps/oauth2-proxy.yaml diff --git a/apps/minecraft/Chart.yaml b/apps/minecraft/Chart.yaml deleted file mode 100644 index eb769be..0000000 --- a/apps/minecraft/Chart.yaml +++ /dev/null @@ -1,3 +0,0 @@ -name: minecraft -version: 1.0 - diff --git a/apps/minecraft/requirements.yaml b/apps/minecraft/requirements.yaml deleted file mode 100644 index 85a5c86..0000000 --- a/apps/minecraft/requirements.yaml +++ /dev/null @@ -1,4 +0,0 @@ -dependencies: -- name: minecraft - version: 2.0.7 - repository: 'https://itzg.github.io/minecraft-server-charts/' \ No newline at end of file diff --git a/apps/minecraft/templates/volume.yaml b/apps/minecraft/templates/volume.yaml deleted file mode 100644 index 44d352d..0000000 --- a/apps/minecraft/templates/volume.yaml +++ /dev/null @@ -1,11 +0,0 @@ -apiVersion: v1 -kind: PersistentVolume -metadata: - name: minecraft -spec: - capacity: - storage: 1Gi - accessModes: - - ReadWriteOnce - hostPath: - path: /data/minecraft diff --git a/apps/minecraft/templates/volumeclaim.yaml b/apps/minecraft/templates/volumeclaim.yaml deleted file mode 100644 index 04e3990..0000000 --- a/apps/minecraft/templates/volumeclaim.yaml +++ /dev/null @@ -1,12 +0,0 @@ -apiVersion: v1 -kind: PersistentVolumeClaim -metadata: - name: minecraft -spec: - accessModes: - - ReadWriteOnce - resources: - requests: - storage: 1Gi - volumeMode: Filesystem - volumeName: minecraft diff --git a/apps/minecraft/values.yaml b/apps/minecraft/values.yaml deleted file mode 100644 index b8a98f7..0000000 --- a/apps/minecraft/values.yaml +++ /dev/null @@ -1,14 +0,0 @@ -minecraft: - minecraftServer: - eula: "TRUE" - pvp: true - onlineMode: false - serviceType: NodePort - rcon: - enabled: true - password: "CHANGE_IN_ARGOCD" - serviceType: NodePort - persistence: - dataDir: - enabled: true - existingClaim: minecraft \ No newline at end of file diff --git a/apps/system/oauth2-proxy/.gitignore b/apps/system/oauth2-proxy/.gitignore deleted file mode 100644 index 719aed9..0000000 --- a/apps/system/oauth2-proxy/.gitignore +++ /dev/null @@ -1,2 +0,0 @@ -requirements.lock -charts/ diff --git a/apps/system/oauth2-proxy/Chart.yaml b/apps/system/oauth2-proxy/Chart.yaml deleted file mode 100644 index 8d1467e..0000000 --- a/apps/system/oauth2-proxy/Chart.yaml +++ /dev/null @@ -1 +0,0 @@ -name: oauth2-proxy diff --git a/apps/system/oauth2-proxy/requirements.yaml b/apps/system/oauth2-proxy/requirements.yaml deleted file mode 100644 index f62ac87..0000000 --- a/apps/system/oauth2-proxy/requirements.yaml +++ /dev/null @@ -1,4 +0,0 @@ -dependencies: -- name: oauth2-proxy - version: '3.2.3' - repository: '@stable' diff --git a/apps/system/oauth2-proxy/values.yaml b/apps/system/oauth2-proxy/values.yaml deleted file mode 100644 index bb990ef..0000000 --- a/apps/system/oauth2-proxy/values.yaml +++ /dev/null @@ -1,27 +0,0 @@ -oauth2-proxy: - config: - existingSecret: oauth2-proxy - configFile: |- - email_domains = [] - upstreams = [ "file:///dev/null" ] - extraArgs: - provider: github - cookie-domain: .gorilych.ru - whitelist-domain: .gorilych.ru - set-xauthrequest: true - authenticatedEmailsFile: - enabled: true - restricted_access: |- - gorilych@gmail.com - ingress: - enabled: true - annotations: - kubernetes.io/ingress.class: nginx - cert-manager.io/cluster-issuer: letsencrypt - hosts: - - oauth2.gorilych.ru - tls: - - hosts: - - oauth2.gorilych.ru - secretName: oauth2-gorilych-ru-tls - diff --git a/apps/system/sealed-secrets/controller.yaml b/apps/system/sealed-secrets/controller.yaml deleted file mode 100644 index 80f927b..0000000 --- a/apps/system/sealed-secrets/controller.yaml +++ /dev/null @@ -1,222 +0,0 @@ ---- -apiVersion: apps/v1 -kind: Deployment -metadata: - annotations: {} - labels: - name: sealed-secrets-controller - name: sealed-secrets-controller - namespace: kube-system -spec: - minReadySeconds: 30 - replicas: 1 - revisionHistoryLimit: 10 - selector: - matchLabels: - name: sealed-secrets-controller - strategy: - rollingUpdate: - maxSurge: 25% - maxUnavailable: 25% - type: RollingUpdate - template: - metadata: - annotations: {} - labels: - name: sealed-secrets-controller - spec: - containers: - - args: [] - command: - - controller - env: [] - image: quay.io/bitnami/sealed-secrets-controller:v0.9.2 - imagePullPolicy: Always - livenessProbe: - httpGet: - path: /healthz - port: http - name: sealed-secrets-controller - ports: - - containerPort: 8080 - name: http - readinessProbe: - httpGet: - path: /healthz - port: http - securityContext: - readOnlyRootFilesystem: true - runAsNonRoot: true - runAsUser: 1001 - stdin: false - tty: false - volumeMounts: - - mountPath: /tmp - name: tmp - imagePullSecrets: [] - initContainers: [] - serviceAccountName: sealed-secrets-controller - terminationGracePeriodSeconds: 30 - volumes: - - emptyDir: {} - name: tmp ---- -apiVersion: apiextensions.k8s.io/v1beta1 -kind: CustomResourceDefinition -metadata: - name: sealedsecrets.bitnami.com -spec: - group: bitnami.com - names: - kind: SealedSecret - listKind: SealedSecretList - plural: sealedsecrets - singular: sealedsecret - scope: Namespaced - version: v1alpha1 ---- -apiVersion: v1 -kind: Service -metadata: - annotations: {} - labels: - name: sealed-secrets-controller - name: sealed-secrets-controller - namespace: kube-system -spec: - ports: - - port: 8080 - targetPort: 8080 - selector: - name: sealed-secrets-controller - type: ClusterIP ---- -apiVersion: rbac.authorization.k8s.io/v1beta1 -kind: RoleBinding -metadata: - annotations: {} - labels: - name: sealed-secrets-service-proxier - name: sealed-secrets-service-proxier - namespace: kube-system -roleRef: - apiGroup: rbac.authorization.k8s.io - kind: Role - name: sealed-secrets-service-proxier -subjects: -- apiGroup: rbac.authorization.k8s.io - kind: Group - name: system:authenticated ---- -apiVersion: rbac.authorization.k8s.io/v1beta1 -kind: Role -metadata: - annotations: {} - labels: - name: sealed-secrets-service-proxier - name: sealed-secrets-service-proxier - namespace: kube-system -rules: -- apiGroups: - - "" - resourceNames: - - 'http:sealed-secrets-controller:' - - sealed-secrets-controller - resources: - - services/proxy - verbs: - - create - - get ---- -apiVersion: rbac.authorization.k8s.io/v1beta1 -kind: Role -metadata: - annotations: {} - labels: - name: sealed-secrets-key-admin - name: sealed-secrets-key-admin - namespace: kube-system -rules: -- apiGroups: - - "" - resources: - - secrets - verbs: - - create - - list ---- -apiVersion: v1 -kind: ServiceAccount -metadata: - annotations: {} - labels: - name: sealed-secrets-controller - name: sealed-secrets-controller - namespace: kube-system ---- -apiVersion: rbac.authorization.k8s.io/v1beta1 -kind: RoleBinding -metadata: - annotations: {} - labels: - name: sealed-secrets-controller - name: sealed-secrets-controller - namespace: kube-system -roleRef: - apiGroup: rbac.authorization.k8s.io - kind: Role - name: sealed-secrets-key-admin -subjects: -- kind: ServiceAccount - name: sealed-secrets-controller - namespace: kube-system ---- -apiVersion: rbac.authorization.k8s.io/v1beta1 -kind: ClusterRoleBinding -metadata: - annotations: {} - labels: - name: sealed-secrets-controller - name: sealed-secrets-controller -roleRef: - apiGroup: rbac.authorization.k8s.io - kind: ClusterRole - name: secrets-unsealer -subjects: -- kind: ServiceAccount - name: sealed-secrets-controller - namespace: kube-system ---- -apiVersion: rbac.authorization.k8s.io/v1beta1 -kind: ClusterRole -metadata: - annotations: {} - labels: - name: secrets-unsealer - name: secrets-unsealer -rules: -- apiGroups: - - bitnami.com - resources: - - sealedsecrets - verbs: - - get - - list - - watch - - update -- apiGroups: - - "" - resources: - - secrets - verbs: - - get - - create - - update - - delete -- apiGroups: - - "" - resources: - - events - verbs: - - create - - patch diff --git a/apps/system/sealed-secrets/kustomization.yaml b/apps/system/sealed-secrets/kustomization.yaml deleted file mode 100644 index 4094b71..0000000 --- a/apps/system/sealed-secrets/kustomization.yaml +++ /dev/null @@ -1,11 +0,0 @@ -apiVersion: kustomize.config.k8s.io/v1beta1 -kind: Kustomization -namespace: sealedsecrets -commonLabels: - app.kubernetes.io/name: sealedsecrets - app.kubernetes.io/version: 0.9.2 - app.kubernetes.io/managed-by: argocd -resources: -- namespace.yaml -# from https://github.com/bitnami-labs/sealed-secrets/releases/download/v0.9.2/controller.yaml -- controller.yaml diff --git a/apps/system/sealed-secrets/namespace.yaml b/apps/system/sealed-secrets/namespace.yaml deleted file mode 100644 index f105649..0000000 --- a/apps/system/sealed-secrets/namespace.yaml +++ /dev/null @@ -1,4 +0,0 @@ -apiVersion: v1 -kind: Namespace -metadata: - name: sealedsecrets diff --git a/main/apps/minecraft.yaml b/main/apps/minecraft.yaml deleted file mode 100644 index e548094..0000000 --- a/main/apps/minecraft.yaml +++ /dev/null @@ -1,19 +0,0 @@ -apiVersion: argoproj.io/v1alpha1 -kind: Application -metadata: - name: minecraft - namespace: argocd -spec: - destination: - namespace: minecraft - server: https://kubernetes.default.svc - project: default - source: - path: apps/minecraft - repoURL: git@github.com:amkartashov/gf-k8s - syncPolicy: - syncOptions: - - CreateNamespace=true - automated: - prune: true - selfHeal: true diff --git a/main/apps/oauth2-proxy.yaml b/main/apps/oauth2-proxy.yaml deleted file mode 100644 index 5b52664..0000000 --- a/main/apps/oauth2-proxy.yaml +++ /dev/null @@ -1,26 +0,0 @@ -apiVersion: argoproj.io/v1alpha1 -kind: Application -metadata: - name: oauth2-proxy - namespace: argocd - finalizers: - - resources-finalizer.argocd.argoproj.io -spec: - destination: - namespace: oauth2-proxy - server: https://kubernetes.default.svc - project: default - source: - path: apps/system/oauth2-proxy - repoURL: git@github.com:amkartashov/gf-k8s - syncPolicy: - syncOptions: - - CreateNamespace=true - automated: - prune: true - selfHeal: true - ignoreDifferences: - - group: apiextensions.k8s.io - kind: CustomResourceDefinition - jsonPointers: - - /status