kpt instance

ed300715 · joshwolf · bd5c69da · ed300715 · ed300715 · ed300715
Commit ed300715 authored 4 years ago by joshwolf
--- a/instance/flux-system/kustomizations/cert-manager.yaml
+++ b/instance/flux-system/kustomizations/cert-manager.yaml
+apiVersion: kustomize.toolkit.fluxcd.io/v1beta1
+kind: Kustomization
+metadata:
+  name: bigbang-cert-manager
+spec:
+  path: './instance/cert-manager'
+  healthChecks:
+    - kind: HelmRelease
+      apiVersion: helm.toolkit.fluxcd.io/v2beta1
+      name: cert-manager
+      namespace: cert-manager
\ No newline at end of file
--- a/instance/flux-system/kustomizations/flux.yaml
+++ b/instance/flux-system/kustomizations/flux.yaml
+apiVersion: kustomize.toolkit.fluxcd.io/v1beta1
+kind: Kustomization
+metadata:
+  name: bigbang-flux
+spec:
+  path: './instance/flux-system'
\ No newline at end of file
--- a/instance/flux-system/kustomizations/gatekeeper.yaml
+++ b/instance/flux-system/kustomizations/gatekeeper.yaml
+apiVersion: kustomize.toolkit.fluxcd.io/v1beta1
+kind: Kustomization
+metadata:
+  name: bigbang-gatekeeper
+spec:
+  path: './instance/gatekeeper-system'
--- a/instance/flux-system/kustomizations/istio.yaml
+++ b/instance/flux-system/kustomizations/istio.yaml
+---
+apiVersion: kustomize.toolkit.fluxcd.io/v1beta1
+kind: Kustomization
+metadata:
+  name: bigbang-istio-operator
+spec:
+  path: './instance/istio-operator'
+
+---
+apiVersion: kustomize.toolkit.fluxcd.io/v1beta1
+kind: Kustomization
+metadata:
+  name: bigbang-istio-system
+spec:
+  path: './instance/istio-system'
+  dependsOn:
+    - name: bigbang-istio-operator
+      namespace: flux-system
+  healthChecks:
+    - kind: Deployment
+      apiVersion: apps/v1
+      name: istiod
+      namespace: istio-system
--- a/instance/flux-system/kustomizations/kustomization.yaml
+++ b/instance/flux-system/kustomizations/kustomization.yaml
+namespace: flux-system
+
+resources:
+  - istio.yaml
+  - flux.yaml
+  - cert-manager.yaml
+  - logging.yaml
+  - monitoring.yaml
+  - gatekeeper.yaml
+
+patches:
+  - target:
+      kind: Kustomization
+      group: kustomize.toolkit.fluxcd.io
+    patch: |
+      apiVersion: kustomize.toolkit.fluxcd.io/v1beta1
+      kind: Kustomization
+      metadata:
+        name: bigbang-apps
+      spec:
+        interval: 2m
+        sourceRef:
+          kind: GitRepository
+          name: this
+        prune: true
+        timeout: 2m
\ No newline at end of file
--- a/instance/flux-system/kustomizations/logging.yaml
+++ b/instance/flux-system/kustomizations/logging.yaml
+---
+apiVersion: kustomize.toolkit.fluxcd.io/v1beta1
+kind: Kustomization
+metadata:
+  name: bigbang-eck-operator
+spec:
+  path: './instance/elastic-system'
+
+---
+apiVersion: kustomize.toolkit.fluxcd.io/v1beta1
+kind: Kustomization
+metadata:
+  name: bigbang-logging
+spec:
+  path: './instance/logging'
+  dependsOn:
+    - name: bigbang-istio-system
+      namespace: flux-system
\ No newline at end of file
--- a/instance/flux-system/kustomizations/monitoring.yaml
+++ b/instance/flux-system/kustomizations/monitoring.yaml
+---
+apiVersion: kustomize.toolkit.fluxcd.io/v1beta1
+kind: Kustomization
+metadata:
+  name: bigbang-monitoring
+spec:
+  path: './instance/monitoring'
+  healthChecks:
+    - kind: HelmRelease
+      apiVersion: helm.toolkit.fluxcd.io/v2beta1
+      name: monitoring
+      namespace: monitoring
\ No newline at end of file
--- a/instance/gatekeeper-system/kustomization.yaml
+++ b/instance/gatekeeper-system/kustomization.yaml
+namespace: gatekeeper-system
+
+resources:
+  - ../../base/gatekeeper
\ No newline at end of file
--- a/instance/istio-operator/kustomization.yaml
+++ b/instance/istio-operator/kustomization.yaml
+namespace: istio-operator
+
+resources:
+- ../../base/istio/istio-operator
--- a/instance/istio-system/Kptfile
+++ b/instance/istio-system/Kptfile
+apiVersion: kpt.dev/v1alpha1
+kind: Kptfile
+metadata:
+  name: istio
+packageMetadata:
+  shortDescription: sample description
+openAPI:
+  definitions:
+    io.k8s.cli.setters.hostname:
+      x-k8s-cli:
+        setter:
+          name: hostname
+          value: hostname
+          required: true
+    io.k8s.cli.substitutions.gateway-hostname:
+      x-k8s-cli:
+        substitution:
+          name: gateway-hostname
+          pattern: '*.${hostname}'
+          values:
+          - marker: ${hostname}
+            ref: '#/definitions/io.k8s.cli.setters.hostname'
+    io.k8s.cli.setters.gateway-tls-secret:
+      x-k8s-cli:
+        setter:
+          name: gateway-tls-secret
+          value: wildcard-cert
--- a/stack/base/istio/istio-system/gateway.yaml
+++ b/stack/base/istio/istio-system/gateway.yaml
---
 apiVersion: networking.istio.io/v1alpha3
 kind: Gateway
 metadata:
@@ -8,20 +7,20 @@ spec:
  selector:
    istio: ingressgateway
  servers:
-    - port:
-        number: 80
-        name: http
-        protocol: HTTP
-      hosts:
-        - '*'
-      # tls:
-      #   httpsRedirect: true
-    - port:
-        number: 443
-        name: https
-        protocol: HTTPS
-      hosts:
-        - '*.$(hostname)'
-      tls:
-        mode: SIMPLE
-        credentialName: wildcard-cert
+  - port:
+      number: 80
+      name: http
+      protocol: HTTP
+    hosts:
+    - '*'
+    # tls:
+    #   httpsRedirect: true
+  - port:
+      number: 443
+      name: https
+      protocol: HTTPS
+    hosts:
+    - '*.hostname' # {"$kpt-set":"gateway-hostname"}
+    tls:
+      mode: SIMPLE
+      credentialName: wildcard-cert # {"$kpt-set":"gateway-tls-secret"}
--- a/instance/istio-system/kustomization.yaml
+++ b/instance/istio-system/kustomization.yaml
+namespace: istio-system
+
+resources:
+- ../../base/istio/istio-system
+
+- gateway.yaml
--- a/instance/logging/Kptfile
+++ b/instance/logging/Kptfile
+apiVersion: kpt.dev/v1alpha1
+kind: Kptfile
+metadata:
+  name: logging
+packageMetadata:
+  shortDescription: sample description
+openAPI:
+  definitions:
+    io.k8s.cli.setters.hostname:
+      x-k8s-cli:
+        setter:
+          name: hostname
+          value: kibana.hostname
+    io.k8s.cli.substitutions.kibana-hostname:
+      x-k8s-cli:
+        substitution:
+          name: kibana-hostname
+          pattern: kibana.${hostname}
+          values:
+          - marker: ${hostname}
+            ref: '#/definitions/io.k8s.cli.setters.hostname'
--- a/instance/logging/README.md
+++ b/instance/logging/README.md
+# logging
+
+## Description
+sample description
+
+## Usage
+
+### Fetch the package
+`kpt pkg get REPO_URI[.git]/PKG_PATH[@VERSION] logging`
+Details: https://googlecontainertools.github.io/kpt/reference/pkg/get/
+
+### View package content
+`kpt cfg tree logging`
+Details: https://googlecontainertools.github.io/kpt/reference/cfg/tree/
+
+### List setters
+`kpt cfg list-setters logging`
+Details: https://googlecontainertools.github.io/kpt/reference/cfg/list-setters/
+
+### Set a value
+`kpt cfg set logging NAME VALUE`
+Details: https://googlecontainertools.github.io/kpt/reference/cfg/set/
+
+### Apply the package
+```
+kpt live init logging
+kpt live apply logging --reconcile-timeout=2m --output=table
+```
+Details: https://googlecontainertools.github.io/kpt/reference/live/
--- a/instance/logging/ingress/kibana-vs.yaml
+++ b/instance/logging/ingress/kibana-vs.yaml
+apiVersion: networking.istio.io/v1alpha3
+kind: VirtualService
+metadata:
+  name: kibana
+spec:
+  hosts:
+  - "kibana.hostname" # {"$kpt-set":"kibana-hostname"}
+  gateways:
+  - main.istio-system.svc.cluster.local
+  http:
+  - route:
+    - destination:
+        port:
+          number: 5601
+        host: kibana-kb-http
--- a/instance/logging/ingress/kustomization.yaml
+++ b/instance/logging/ingress/kustomization.yaml
+resources:
+- kibana-vs.yaml
--- a/instance/logging/kustomization.yaml
+++ b/instance/logging/kustomization.yaml
+namespace: logging
+
+resources:
+- ../../base/logging/efk
+
+- ingress
--- a/instance/monitoring/Kptfile
+++ b/instance/monitoring/Kptfile
+apiVersion: kpt.dev/v1alpha1
+kind: Kptfile
+metadata:
+  name: monitoring
+packageMetadata:
+  shortDescription: sample description
+openAPI:
+  definitions:
+    io.k8s.cli.setters.hostname:
+      x-k8s-cli:
+        setter:
+          name: hostname
+          value: hostname
+    io.k8s.cli.substitutions.alertmanager-hostname:
+      x-k8s-cli:
+        substitution:
+          name: alertmanager-hostname
+          pattern: alerts.${hostname}
+          values:
+          - marker: ${hostname}
+            ref: '#/definitions/io.k8s.cli.setters.hostname'
+    io.k8s.cli.substitutions.prometheus-hostname:
+      x-k8s-cli:
+        substitution:
+          name: prometheus-hostname
+          pattern: prometheus.${hostname}
+          values:
+          - marker: ${hostname}
+            ref: '#/definitions/io.k8s.cli.setters.hostname'
+    io.k8s.cli.substitutions.grafana-hostname:
+      x-k8s-cli:
+        substitution:
+          name: grafana-hostname
+          pattern: grafana.${hostname}
+          values:
+          - marker: ${hostname}
+            ref: '#/definitions/io.k8s.cli.setters.hostname'
--- a/instance/monitoring/helmrelease.yaml
+++ b/instance/monitoring/helmrelease.yaml
+---
+apiVersion: helm.toolkit.fluxcd.io/v2beta1
+kind: HelmRelease
+metadata:
+  name: monitoring
+  namespace: monitoring
--- a/stack/base/observability/monitoring/alertmanager-vs.yaml
+++ b/stack/base/observability/monitoring/alertmanager-vs.yaml
---
 apiVersion: networking.istio.io/v1alpha3
 kind: VirtualService
 metadata:
  name: alert-manager
-  namespace: observability
 spec:
  hosts:
-    - "alerts.$(hostname)"
+  - "alerts.hostname" # {"$kpt-set":"alertmanager-hostname"}
  gateways:
-    - main.istio-system.svc.cluster.local
+  - main.istio-system.svc.cluster.local
  http:
-    - route:
-        - destination:
-            port:
-              number: 9093
-            host: monitoring-alertmanager.observability.svc.cluster.local
+  - route:
+    - destination:
+        port:
+          number: 9093
+        host: monitoring-alertmanager