diff --git a/README.md b/README.md index bcae83d..a1b809f 100644 --- a/README.md +++ b/README.md @@ -14,12 +14,9 @@ Déploie l'usine logiciel dans Kubernetes. - vscode -- un registre docker (plus tard) [registry docker](https://github.com/cesanta/docker_auth/tree/main/chart/docker-auth) - -- [chartmuseum](https://artifacthub.io/packages/helm/chartmuseum/chartmuseum) (Manque l'authentification sur l'API) +- un registre docker (plus tard) - un scanner de vulnérabilité (plus tard aussi) [clair](https://github.com/quay/clair) avec [klar](https://github.com/optiopay/klar) - [How To: Build Your Own Clair and Docker Registry Environment!](https://www.x-cellent.com/blog/build-your-own-clair-registry/) - CoreOS Clair [part 1](https://medium.com/paloit/container-image-scanning-with-coreos-clair-part-1-17152d6a8421) et [part 2](https://medium.com/paloit/coreos-clair-part-2-installation-integration-558ec664cece) - - [gitleak](https://github.com/zricethezav/gitleaks) - - [notary](https://github.com/theupdateframework/notary) ? \ No newline at end of file + - [gitleak](https://github.com/zricethezav/gitleaks) \ No newline at end of file diff --git a/defaults/main.yml b/defaults/main.yml index 77740c0..db81688 100644 --- a/defaults/main.yml +++ b/defaults/main.yml @@ -1,16 +1,10 @@ my_context: minikube #traefik_version: "2.1" #traefik_namespace: traefik -gitea_namespace: gitea -#gitea_storage_classname: -#gitea_certificate: certificate_secret_name - -drone_namespace: "drone" -#drone_version: "2" -drone_runner_namespace: "drone-runner" #drone_certificate: certificate_secret_name #drone_storage_classname: +#gitea_certificate: certificate_secret_name +#drone_storage_classname: trivy_namespace: trivy -trivy_version: 0.19.1 -#trivy_storage_classname: -chartmuseum_namespace: chartmuseum +trivy_version: 0.16.0 +#trivy_storage_classname: \ No newline at end of file diff --git a/drone-runner-values.yaml b/drone-runner-values.yaml new file mode 100644 index 0000000..15da3ca --- /dev/null +++ b/drone-runner-values.yaml @@ -0,0 +1,221 @@ +$ANSIBLE_VAULT;1.1;AES256 +65656239666162373131373932353435663036346233326463386462613766653664343265373630 +3737343132653733326335623636333830306639303163340a333436633539303737306261666461 +36303264343933393133336264373631376664396433396536363865653239363033396432373830 +3361616533633531320a306663626162303533656532313436316433303662383033633137613764 +32306237653463646166313361363332303232346363353462393264376439323964666636383234 +63663339343765666566663239616231666638373138623966613566653130366336316565373634 +31666361303533346464366432366133306237333862343661303936326131613833336266343130 +62363635623564363165376363643766366335633737353861623936633233366432663564636131 +62336461326365303430623465616136383334306236356566356130343037363366313738613863 +63666139393563333763633965343536306338626235666466363834393437303965336430383264 +38353061613062386633313833386634356361656562626230623935653235336133323538656238 +33633937343433373563653938363133353262653735643532333865313435313034333031636139 +35316639306137316435666637613861336633613964303361326635313434656261666133633963 +32366461363032356337626330313030346331616531353166323038386662346162616135383664 +65373333356230313334323234653863373963336131306533613664356134343334313131633630 +31346163633432653561633932626563353937303162623534356661336438633034303162366639 +66373033353532363564376563633831323165306439336361646266646264363437636133636266 +61383261373435383431316266363234346235323765383264313937303430343133316162653562 +35346537323262336138653131353439613262373334356533363333643432353331643134306166 +31643031633538663935393365326438353062636665366562613834643163623361303737353638 +38316532313336306536366432356535666430383265313539336134643234386664636362363930 +38663064643666313366666335396466636530663430336239323930383463326663643837393338 +32333161393861396235393735353535306331636637626139653062663263363937393531303463 +66303430653730383039376138343338623039363133376134343834336238386465333239626365 +64303464343962373762343933383766663263623236366465383563313037666261653234346236 +30383562666263653439616239633862626166306230643833336432623062353038616465623332 +66353664396635303630623366383866313632666338356664373233653362323237316236303838 +63343962366435616436396538313862653237643037626133633630636561376437343465646534 +64303732326266653661343763363438636662363762373665363931353537633630353036636336 +35383733363565376363383032613730363239646230333263383232663034323232376530643337 +38313932383437613436323932373934346462326465323838613563626631396634373932343961 +36653134356632313435343561376666393630623535323930343431643666303132333166393965 +66633732316238393961643731336230643234333533393134353566386264326366383362393136 +65366535396632353731333737653738356434363138346132313633663330636133383732643435 +33663532353634653161656630326266333966323932356636373234323766633462316133623466 +36643266616332353736393432333362623135306437643435353939363433633936393165333863 +38623236373566386137353764353731326335356433303139656637353435353536376330623065 +64333731633437303934616661383961363838356138376162326465323835623061656530386331 +63333362636630626635613138336663303135613765303438376563656138626165616638373762 +30326539353337346430343937373965636461663433323339656231623431613864366663356231 +37323761373938343662333438383232636230313730333030643965333365623535366461333065 +38333531363963626438613665313534393363333537643637653965643232343561623131313164 +32303462376264343535393466393239396163313237633338633635663765393638373838376337 +64303639316262313166333134623836316366363663376261396661343061373936646563333861 +62313863643865353637373739323863353864343031366338306261616664333165613437353036 +31656662363632616565383739613332313437303231313530313034626237343239616464356563 +66393764306661363865393031623336626231633361363035643864336465643832656236353233 +34633838323536393435333031646331316638623864356336666532613930653337376431393237 +35393664383862633966316130323362666666396565633636313537393238663432396432326530 +32626436373439363037393938393436343436376430366363303065646336363464626166633239 +63383830666639333365376566336639656437373737656439643834393638616638653032666132 +30666364363732396432346537333930633161663866663933636564383435376135383237386639 +38386561343935343062643565356364316464353238333161653933366462333963366234626333 +39323364623433303366643431666235613331313763616634366262363434643035656337356661 +32306633333937383537373836306334623966353663313833366238626539303463356634376365 +64663265383266613662623630356435626630643030363830643462666336386461363065626630 +31306639323733303639363761633565643934633364366639303432616137373039666538343237 +35313039366337363731386137383762303230303935343231343965366337663963313762393665 +61616131376362383666653238383634316235313734333161613435353632343937383735393065 +66363434323639343034333134656365646534366566336363363266633939376565613636393337 +31613063383062313666313138373738623266326562383433623161373535396636356332656563 +66356266323031373434626631616638333839643562326337366465316138663031666261373864 +62653164346436363262626561636539343930316663383433306235656562363934386162346334 +66626236393866373263303537653038353535653765623161303236373363383839613235663464 +32313161636537633336653037323836346134616462623433323664366231313836666238613334 +30383734313437653233386665306465613763656538393764363062633863343533616264653563 +63353662626331363230303866613463623439343336313539373235613533346333353365316339 +36393937646432383934373930326238633436393135316631346138373561613731366535383031 +61646262383333386233373063373036326233613965376438646236636363306531313266623134 +61666339303038643162336366373331653261343461343539653135303664373065663439353836 +61343637353235386338383935316461653663623963336662306433656332326335323139313231 +38313965363363316438333231393264653438643131356439386264623336373632646262323162 +38343261623739316336373939313739616330623266383062376531626437346666373564396434 +34626230656439326335636236626430646238623665386565626366356361313938363861303930 +65313330366161373931633037666431346164616363323732376233343962656535353864613339 +62616465373161653131376462326665396330313231636137376661356532343334366666653938 +64303965373031333864336662306338656634346462383933653136303834373439396535623938 +33326163313732366533316537383033636534363061303432646662663762333664636531343234 +65646434313764633832333563653561373664356433383837656535626637396165376535373735 +64363936396465653539356635353366666637326338333263633465623563343130663064363239 +30633536643737353265353164303137303039613966623134386264383133373438313863386638 +64643435366333303134636366643836656265636239633733373530383838623134393565366535 +66386666643731386635366434656661653331386466373739343839613563343730346536663934 +39376136653534313866616136646366386432376137396563303162346336326261383265656438 +32363630353866343633656537643165626165616264643261656136363734643166323961626236 +36316538393936383764656464613766326664613061356634663635353432393134643065373536 +38323164633030393239653435616533353865303163373131653038363566616166353933343365 +35633561343636303263663133626531303733343662363530323835313663376434323239313463 +33353363633839323633626565646234393234363933336336326636656564373730346265343065 +39336637323366613166643862326566623432333362313661636337306434376631356632396634 +34646364353831646535633431363836383339616537656163623939613764353762383432633037 +62313464613434623131383664356636626665326634303837316666393030656536376234616638 +61333738346635656232333635383732333034643261613861613130656134613965663238376533 +62366365616566633239373463666632306437636264366638633865613636653734656463376430 +66303835663638373338373931336134653833666339656537643432633665643130643963396230 +33613036396335366135616136646235316137313463646461363335363835323339346533623938 +64383365313835313437633136333631666630353237383235353938326430336164303934336261 +39653561363636333337613037316239386166633339626137633933316563663636663939636238 +31313063616135653066303062353264363362376331343561363634643134383166613939366465 +32313838666333616166363931333036633336666563613831373762353431306534373436366165 +32333231663538303030383766323933313766656230626563386363653665656366376362373535 +62656265383962666234323864643330376436613262343931333131613737656631613033363931 +39326261353565313032323137613836353963616435396530663737386632353433323136613061 +61383833373466306332316433323465323434393466616133613965383139386632376130346239 +36356464666339363238353839303533386336363732373561333961643636613531366330643537 +32383061303561393133616134356663303039313263346137366438356238336366363538623864 +36653764373063316339373265366263656338383738656464663464613761306263313364393138 +32626635633933383337643838633632306138316235393061636264653865636563613766333837 +39666536393233393435666232633433313030313733326265316439373532626235313564313739 +38633264323934363065383966353761633466373339366430653465306364353562356531613330 +61643833643663383663613965653166616437656232306663393862336637363266646437396135 +36323433386139376365393965396334373038336530623534313530616330386637333463623234 +32623665386432316163313863623666316431366130366234363965363864613633383665343862 +34383331626634393833613535386138643066363033386535393737376331343730613835333831 +35343038306661343362333330396232353763646265346264333736363330383863316532366439 +66636135626330383864626563353437306338313530323935663761363265653837343634333334 +30653735613232383930363035653561333963653161353634386233373133383333356430623466 +39613166393336386364613734366632303435356639623033303239326166383561343130643663 +61303466393130646337653339663837656138666337646562336134323161393133613931343462 +38323965643639323531633364616131633132666531333139653462313736626334316266363362 +30373439363164323533393238336430386530663937623236363131333939316362356461613365 +65376130396530356132616138643666643862656536336564346631656135636137336164353230 +37663930653765616534343032633131376366343361303964323166623935383530626165633837 +62366362353764326261373432313635373861623931346662656139333639373935646664376137 +66303463383134366538643833383034643430396636373631303061396634616533383637393463 +65653363623961366366303430633066333033623462613535386161616361623735386331373536 +63396133613230303932346335616661393430343238396234663163303737613565313630383365 +35333738346565633862393566313036303334343236343639373036623561376630613963363430 +62336465383765353364626139383734393135336436366366373438656530663930383363333163 +35663833313231376430333566303338343837326265323036386463613138313665313966373464 +37333162626462333561383335333161373236383835323834616635376337353963356263356666 +37336334303864343834303536653464613034646133343038393463363939386637356162366430 +32323439613133633361363039643936613337363765653963343261613166643739356231383466 +31666530393930633963346563656637393662636338613538633764633061313234396530333539 +38663531353463326138666166663362653630636336306133303438336138353162313831393030 +35373633613632633235356533393631343532376461383230376537646237653833326665623161 +62626162323337333937353331326265303234623264353163646136613066306366303631333434 +62656533643831313838393334383031313232383632396232336566626133336362613261303563 +35613663323864626235623036386236633133386138613466663633653933393762373933636537 +64383731306637376364313136326433373066393365353263363835616564656461336666646530 +35613963313863323633363134313230313964646438353232323035316331343761333630343939 +64626664663062613165336633393036393264613136376631333266306462343630326438356666 +35383136636264623166336333303437386135373435356535323939626133363035666664613364 +30353738656330386637306130306430643562613932363739353635646462363136316231303138 +31306539666362626532643639316563393237653239303165363736386336623137613736663530 +38353734323038373236373666613835343263353335323963616234633930313132363630373865 +63313536336633396437393934643734336635393862356466306635613039373636613038343930 +38323532346433646133373732616162373766366331393435663432366335623837613765353162 +66643733383265353364363462616665373861343939346162666139666161633765643066623336 +61353165373437616132303561306130643664353539383735633838656235376432343038386430 +66663866323365653264396161653834323438643435353163363730646532323962623238323539 +39623636666561633962326566633533393161336266326362663538363536353036303132356330 +36366663663561376561393138313938643666363464303738306261376132323739643438313039 +38353162643261386362363739613533346538306262656239396636353263363265666430383335 +62633063356236353863653761373333663332323331313261386332313839386433383730653635 +65363132363535643931323434623934666561613935613639383935343766366431333735613835 +33643235333130623834656237303336653463613735616333313665363530366631373562316233 +38366335643762666166653261393032326164316663376364343637333034636534313132653666 +34333434336365336535653162633233343038613334306132343166613732376363666233326237 +36363463373833666162303163353737343764333162616430346132623163393837366362343161 +64613736346465333239323161343966333661626232643765366263613735343932613034663435 +36383836306335363463646135383466356164333465353663663632366135373931373834653830 +32633063653431383363646432306434663831346437363634383961323931626365336239663733 +62623065646263333765383438356337613762613931333238623263623832396131666666303230 +38663333626232383235393133636431623533393166323466396161653731633063396566393930 +34386631306434613639666365616238363736376632663635366231386138613363666664353930 +31316237393432353935386331386561373132376439613865656335303739663665383861626633 +30663431363062333565343638363738613337313935326434323837343734353939623338373365 +65393666373336363966346435383936633137666164613366623232323235613934373633306531 +31363438613136626461376533343262343630356364326430306234356234616639363865316236 +63316437643135623130646233653363313632633239643664643134306139323731323636643862 +34303832616238313961303163373234323261623736306266343934323039363536316165326361 +31313434366334616461333663386536393834366565666461326661383661356164303361666330 +66333839346338663161666666376361393832366331613733646439346535396361306464656466 +38643964393866613439323064376261613232373930316665313564626461636231633237656633 +65643238626636636263626338303362313464643661363863646162396435393666373333306435 +34373165613936353939653966653661326536393565306537316466623830313731613832326138 +38353536633130393461383963626134616664303864656538323166393332666338643063393763 +33626364323237666238353436643533343132633636666663333535656637303533653663373236 +30326639336163376638636132313461303837383164383263306132643839643261663566666439 +62383935636661386462346339343133636266666361396162373365393435653035613534353364 +61653733343163373364353231326237363937356365623630646633373235316635376638346135 +63653464363537393338383535623238663762623430343336303833633335343561643661643539 +38343862363562316532616134616137373736353434663038396332626633636335396532363332 +36353033656632393138336330376366356235343333373666386661646235663035323237653337 +30326636343936336262623530663566383535393861316237353666306365623165376436313333 +33633261393939386665343266306436666331643231333866613434323262653230656233626135 +33343465326462386366636362366535346234303437383532656463636161623563306531626533 +61303030653737393436643230616330326538323731353365633738663633383365346433323935 +35383138663930653030323964336630636139336166623864336136383861626332356431306164 +65306137616533353332373238383932396664333462643763306335386130383631653461323166 +39646535643463303665366439623333356361653136343036616237613237366633303861623261 +36336530313366666631303365623137373064363336653763336134393266353734336266633230 +35663232313364636633646435323239613062623230643362323630363638336331346538356561 +36323134653233316234626338366562623330396531313036333265623764666139303737646363 +30316333643133346535646339306635313335613966346533343833323332323663623632376333 +30313835623163336437373730643439386335353530623833383565363330396261326366373565 +61653934636535356561643730323231303432336633393232333262373662363365626235623261 +33623465646431646439626135393262336566646632313863303139653136643231373562313663 +63376434353734323066303433653534613761663837313461373839326230346463326365613632 +38333963613033383062336461303133656665316133323336323530643666336365616566336138 +34383639663033363261356163646232613435383062376165343032633537306562326237393765 +30373761376337303030393237623665363035303433633039633966396332323164343933343638 +64306431316435376532306235323263353565396430343439653762396466346537306665623330 +35636438353839633239346565663733383264643263376434386564613839313931616633613431 +61376661343065366366393731633536383330316538663031323036636238306464386261653730 +65303835373735336538623933343232306165373735316265373864386563656337373630626337 +32303431313166313262376166373238636364616664383031383661643462636232383763383631 +30343666326139313034373138633763306335313862366337333865383634303362373964313165 +33316232303862366363373034396632623938313139313234363466396330383330313565636337 +65383632643533373735303734663331613362616562306534386131663835303866656238346130 +64353432373761663532623438666639353436303064616261633664383862623065633337333961 +37343033623136643131366538643266383665653365393266323931373931353339323037386333 +33333432646634616537346535326262316365376332343661643766343565663330653734353338 +65626465306363656332373937303038333761656135643238323936646532383538653433386238 +62333135666531313532353236363062383539663938643765616632663861326333346433353931 +31376262613639363430386562366430323237613938353638626438396662623862383262316263 +32356562316565363931646363336563643032653362653261373666363263623362643364303035 +64393661316237666364376337336361316634626439323635383862323365376438666333356138 +66316663643536373762 diff --git a/drone-values.yaml b/drone-values.yaml new file mode 100644 index 0000000..bbf7281 --- /dev/null +++ b/drone-values.yaml @@ -0,0 +1,406 @@ +$ANSIBLE_VAULT;1.1;AES256 +33333338336366333761363663653363366434306661383233633136346336616336383938306164 +6238383064313537653031643166336330646461356366370a386461636339623135636438373931 +65333539343030623465326437306639383033636138656363643132393831623064333164393636 +6530386566323837340a653531346538376561383162306432363264373466366635313539623463 +63303437626465316132626537313936363065326638343533303637363335623163616538616537 +35363664353135376137386462353832653036616138383230666563336566323466613736333663 +30646263653464626437636532656464643535326366303066316663643464653164373661643531 +37373639656362393962323764396166366564613130363631623262666238363063333534613537 +34626231336266383632336135346662643966316233323162643166656561343336356364336363 +39326131333337333936333831643030366338613430393564613639633530646265303331363962 +61653766663532363539656634363933666531663937356236666365666233643561643934303635 +63616134343333623264396236633934633865373363393465623937663031303330353733373034 +35323136653666333738633832346364383439356236343537316163323132393930343737363732 +35613730333136633262313133353730363239366264396639356135373362373935393663623039 +33353038636465326538656336303836316365333930303663373861623236386662333339613332 +61346434663431383933613530636463306636373038616263636532303561613935613138666135 +62366463393430623131646461313264613363313034363430306662353464396561393535646162 +31613163376136303032663662666563616430373163343436343931653536636162376639616632 +34393765336262393465623061636238623463303333346535343931616338313638373466306532 +36313333326365383833343234646138646134393433396339303536363265653032666332623861 +34363865393330313233613334353633376137636237636562393764663533316561633135646461 +33626435326435376238363661643464663136633635633735646239383837383964336464366431 +38316564316463366636313463366238363936306430666432316235346264336461343266313032 +36363165353263303762336230363863393864326532326531393264306337623239373035316263 +38636464646230626536393836623062636136346438363932663364646462663831653536356466 +30326664646532396162323462306464636463623934633432353936336437623362656637643565 +66323838313536363131343638356139313939386431326362323436386130663133666365353634 +63356131333164306463393265343037663435613564636166616439326236356563636332633531 +34303162383537386538366661393933376563386162313833393838663361663633393232363837 +37343537323634633134343531343230643764353233303730383933343736373230373764653166 +34323939363864623039623035313535323331303731623535313431393537303530653662386434 +66363332363661316664666634316436343032313762613539336438643036336236313930313530 +38663762306337346464303265656238376130316236626530656166366137636364626331313564 +34393035643736373632326231656330646636326238616633356462386662373461646231643164 +66386333633232373730356230666638353436313365643262656135373262316632326131623233 +61303535643663326133633538623239363765353566306334333561653332333632653136313461 +36646162663134396638376430646633316361623336343930383365656465636538346164386438 +66613538346530356436613331313635383632396336653061393863643635626130616266393034 +63623330353135353934623839646664663663363132636234316330616164343337653439613464 +36623261363363393533616539663564343133653733653338623334376564393161636134616138 +64383063666131626439303031643238643033303462343134646236353635623933393238663263 +31623762346634633161303762366238326366646439343737343238353863393839303735646530 +37303163333433323033313666343339343964346163323538373335316330346632363635636363 +65353434663134366336353633313333383037396362353765323230623937616361653539613432 +36333262626461643433616561663862656431303930643937376166393562636439386262666366 +31353833366465613034376131313338623461343130383465336265316463323066396639623533 +37643661373738643764363535323538613937376161623038393539636430376266393532363736 +36383831313165346230613537356330336337653961656535303333643265386135353465376433 +34366563393966656631323437636531623333613337346163366363616334616561313930653065 +63663566343663376361666333313236633435663336626432343537643462393932643866336666 +33376366656431333137306230346235313931313639386166383830613961643761333932306531 +38323030373064663739316534653731393137346165323465613938626539333638356538666135 +33376564666439333634303936643735626631663736323236613233366230343339336232366338 +61373331376639616566646237353332626561353331353261383464343161343561633233336563 +61646666653433623531393435393833323762396139326463356430666661626266643634613135 +66336431383435366462393833663731353064376439336239623662393665343064333630313630 +62656363316134303838613331333033666333636163366465316237393839643239363261353036 +65623437393932326664303630633863636637366662303932613732343632366331613465656630 +36303564636131313761616534613832666436623761373063366563333337353233613034613964 +65396364626430653564623634306335653664346438663536623236336435346136613763663934 +30366331343563396632663765316639396636633430376134633561363465663436326566346531 +39333537306333643034303234613532663238353263636465353836656531666261613639343564 +63373565656537346261633130336131623335653433386234303439393933616161353066316462 +34633363643562393733376333323732646139653830623735393164666363653035353730336338 +37373662333565336364646336356262303137306231343161303763313038316662316562343332 +34336230316162313863616265303930366232363966343334393430356137626265626331366534 +33366433303231306235393063623431663062306636613439366565363435336530343232326630 +33376661626233646362363564386231303263313936313265373433616163363266656563363035 +31643535323936633865393639363136366534346433393439376165366563663838303835616538 +62373338333836613364663736663261336262313639633266663337383837626230633233363761 +38303033643535663839303936393634373832386563353339373462393462383631393233656632 +38653966653434376631636262353032373130343633343237393766373966353033343839366438 +66653230386134633762623766353865653639383036313964633439306538383236623261653830 +37623934313866356563393336643434363536643365383234323032383738383465336637626134 +66303866366335313264356663363735646534376164343138616438343861666361396530393563 +33373638353331303834366534393636333438356663666461373563363334623262623136303331 +64353034653166346238643263313830343261666134623364376133366266356435343132393837 +62643439656262303930623163363139393631663834656331666532626261323435343262636438 +30623033643133396466363262333837623338633832616332383166653462326365646264646438 +63636530623163653365333831353861313036306431313536653237666137383134323463333438 +31326661333863653730643066633335393234376133323634383438393432393036646666363435 +31306433636433366364373165333964313763656337623731636135373438383762373761626561 +32373863313163326437363232353330346530343866323163323166313131616239346662613563 +30303432363033633535613238363538306164353732653064353361326661303963393131373030 +30643836373562653761643164653831316332623563343066366166333834343738393164393364 +61336133333434613333343738333439633733616539363638613235626633393566333266343361 +37303835646332613332323961633461373638393765613839373833383164626331643166393233 +61303138623532396539323966326465323166636431643061643061663534666137623636366231 +36626330306433313863323563623838343531346531613037396538666432373431323865313738 +36326264336632323231653030383032656438356661633361666562623963643938643465333965 +62313133366430323333663335313930383164623861383439313663393730633563323336656530 +64306338343062656665356666356566643165366231626536303062666163343466616464366435 +64613761336563383465333165363263613335313633663436346265613330633839656435643162 +64313163363163663464373139396139343161363664313132356162316562396165626463613932 +36383564303233636234356130316231306662306461303565653137353630313734613861356633 +62306637623534313062383332356433303132343536613464316439663730353030313438313861 +39393435666164383034383636393061656333313835313237653431396465643034633764323939 +32326639396162366438386163383637356662353131656565313034623837306466323663363537 +37636135343463373961353866613065336239353763303933613734393135353365363364363634 +30653133303265316664363638313966633833396462646436323762616534656365656539313832 +61323565316538353030303232303639643065383730333135353537333235333864303832613661 +31633832646634306531313532393665313933393065333666663831636131343832636136333261 +31653065323162616462613235633961336331366634396633363339363564326632613561383131 +63643765613665663463373165613664393565653331653965303437363434616338383835623766 +38356263396366666464613163383831376334333763336630396139663131616633366534393666 +35363665306538363431626662623263623966323265316566346563376332633130633131616131 +35666566623633396365623136323634373565623564366365373161333464326366333933303137 +34346339313833373435323366633933323365323031623530343162313834663439613338356239 +36613736323232663836666433396164366666343861646661323066616532383232353563633762 +37666330306630373130363839303035613066653366633031376465383531383830653132343463 +31326635616565383932383830383562343533373466656639643436346530653739623135333564 +66356336366665616564393232633030656662633162656562326164363566383539613666663632 +33326265363662646364366333316437323462636535636135626663656632353735323164653938 +63373864383735363662353435663437663333653032666461356336373065306133353061663437 +61653937363138643861356438356532653331373535303930623233663835643130313338313063 +34353865323739643762666233613739643764316238336533656138393665376339636638373237 +61353166633865396637303734326334376137633031373135303230363066336232303833303434 +61626530383532333837336330303832653739643530393531666539393739653938616438663031 +30396534373462396534313266626332353838386235626265653633323161353236306137666563 +31323936383262366562626363653965313534633930303163353438353030386564386532663334 +62396335346534633234633632326533653334636362383363316438656130623430633336356461 +38393465353737346363656664656436626462396265303136363636373264383762326564633866 +66316165363264303537666561616335393838666166333162366663316163653031313862353432 +33616461653537633435313632613631333962646632653038303435383136346339313333636135 +66303637383831396430653566633963663866666665633230316263353937323965633066383931 +36363861623662393633376332333638396339333766386630313864326330666237613235613836 +33653161303161303630326330353731353961663964653733316332616434326335656432633661 +65643136386331623161663064373265323165616430663538313135653666633064346366376233 +31346636373730396262313930346439393432616132666234393530636630363636663533313565 +62656164393763316235373065313634316561303061616632666431656661373262356363306135 +37613239386566393364343835643338376463663634363366356365346435363964656363386666 +66393730306532356465336632626330376664353138636435323638643836656663336666373037 +61323063653366333438653864326437303133326161366332373565653231613839316266653431 +61326538303633613635373564366331303731333335376236323032336566613662666362316161 +65333932633233386666393966643539616232326333343039323765303337646261333534373339 +62356531613338656361313131346661386663613536633338663936623265343464653537376535 +32323431323064313566616330363764646161336332653862373161386132323131633138376439 +32333638343632616538313933616638613966656237666335353235643836663163376539626435 +33303535663163336162613736623732633830313566653337373237323730366561316233646365 +39396439636437353063656338323432343735313236366362366339623162646239353438383130 +61663635636633646135373235623239633937623637323433303738613338663935316462653563 +37613536313934623236376663353533393162363236323836323736326333316262356632623936 +30303632616161386263663235376232613331303735386163383130303634376335386236633862 +66396230306262613235643063653163616337323464386364326632303933383139366434613631 +62666337643234643964636538666435613735363266333561326261356434656135313365653734 +66356663643832333662626664333536663763393838323738303564353234303339623264663838 +65326639323139386532303634306161316465643837396534663262623237663236386336323530 +35333839363138386163646666316463396163393037623063623233316234636164366430643239 +34303838373865663362653262366466386436616131633561396466356634373463366663306563 +37663937343461383037313761396330373338386265393836636439653162333562376438623337 +66633163393165333930353765393237323432623264393834316438346432383635326234313736 +37323364653536313530366562636538386433316637613436333639323338323732363439313232 +36356237376337313630663639323461616165366366613863356338333333343061616361333138 +32653534313032333162663362333030316261343066643239396661356533633366303332343938 +61303235636266333062323762313136316339636433633230633236326464373338366263373566 +33656532373534373338323231313937316663303138343236393566633633356664363034626334 +32383530303435316134623363303233316636616466326538643233316431363662373439376565 +63323831376635643331643962393738306335343134613565643232393737626437333364346363 +33333934663562326230616565313762653631653839376631633437623166393365313964626662 +65663764393462613339383836346535356435663431663361326462386339326262363962313161 +64363363653134663333396566366161663334616230343862363431623238663433376437623036 +63363038633262316638623934373936353331393436643738626662333564363430633364376232 +63366534373139343730626135333265383431313264643837373131346436333834366164323831 +65666635623735383463393461336261653436373563376430383865393630366334323761363464 +37646265623432333339626661316162663663363862323730366331663862343330393537663164 +38346531613237363035626639623863366535363439396636376361393538626535623339663738 +39316339313337373536396138313635353365303061336338633763613161323539656639623163 +36633166343961306261663638353864323739623431316438383864386266613564636631313366 +39353066613233386232616534653834633930343964613639656338623537343631343639653264 +32343763346533616462323535623361303837373464366434363762353966626633396162336362 +62316136303730363936613336363230346366373133656361366233666337353730636135393630 +61623737666139653036636138643134656333326563326463393236643531643537343861393261 +30366133613134363435393739616166323633326330393739313038636138333539616265376439 +64623366643961353539663061633165323035666532373761373938666431616230613161383138 +61303436633630656137613063613835383034613166346134366161363933316330663132623162 +39636461616136383163316361373430326633393935666266316232343437613837303565313637 +35643032356138336565333862616165653335323039666461336365306235313638636330633932 +66303932363837323962306438323532376236303461306462623538663561656635353436646464 +33363331663463323930393963633630363538376433626664343935323039663933653336383139 +36646536633836666533326534326133353430663063656636336336626534663933326364343234 +35643430663635626535393564343932346138363866626331663861613965326235343234323337 +61623466383564373533396234373139383966383662306532323531323239623266303038346365 +35643766393266636537393533303739656365653564323235326564633639643635316135393162 +63313138323237303766373739613739646537373034306231633933313763333866653333633163 +39366633303031393666353362386563643131343036306139626135316535323933303563343762 +66383130363536633538303266643937333134326435626438616261666431643235623437323630 +35303464353762323063333735663435626462396233346439396364613263303666353439346133 +62396661363437313435363764626463353938323462353834353633633335353437333961366362 +30306563346562333836633930666462363734376362613362396636303234653861653835653362 +61343065636166613263623231303066323363353866313566343961313133366262366361393732 +30613031653664323765366332346461666639373435373036646235336266636137316438653861 +65666264383431346361616533323065663066643536343239353235313738353932393533313964 +61316466303933333430366166346137323535613863646363393335373866323134333437666535 +61626236623361383237353932313966643762366338343635376439336338626531643038653961 +64623031643561386433386538313262313237373633653430346637356561626538336335336233 +37636236633333376230346462356564316662656661326638393535356133646134396362636337 +30366534626537623239663231393132666433376631643539393137333631336137633737626463 +35353865383434363235346332316133393036633365363461333263326638643335656666393365 +31343032336539663331363462366565323463666238343930393036346330373436656436326161 +35393638656263303132633766383566303338386631666231336236663838383731393865393335 +39633662633837383961343536633064623334613431363437346165303437303565656234323037 +33306337306463623835636637336237653066303837313739386138333365393863373365393730 +33386633346331646537323964343837383232396234343231613731623933313631616437653134 +39363762303238663132666665306538386435653461396331373739353764303337363965363766 +30326231333266643437616537306433633739646130373132326535623531333737343530303337 +36396561393034356230386337343762653130373833363262623765353238356538356431663863 +39323964373539623532373963333639396363633031636132343433346635663837306336666265 +62623662623530393836303130346264653162363938626461623035656634646230653638643765 +64303233356331386563633739633330633034333362623366646463303135323663346261653338 +36303863306132386338343961616434643038643739646637343830333036343431626561323338 +63613530333961333836333131636135613035653134326664613337333530306661343638633335 +33353632626466303065643539303666333866343238356435323438653866363065376334383035 +32346332343637326135396134346631343430656365313035306530643139626630616637333032 +33326665636630303736333635333639393265643634633235353331376434363930616138353039 +31393062396337613338353563353266376637353131373833613666633732383166393938613065 +39646533613130383534353534393732326335303462396332316530396238366436326639343637 +36656136396235643965353831633436306261623462626235646139393038363364623135653938 +37663366636466376233623531663539376431303836313635353665656535636438383432356461 +61353737623162613835653533313035353238373131616662373732303533343331333539333366 +63653735663738633538306333303635643738626264626639656562363037656636653231383366 +33396635616536386631666631666230616232626535666138313938306134663332666162663235 +66323730613536363063643433343834323632353162353665336131643233626563663265646462 +61323064666364633066326364326134316562336364383030353932323763353036363735626261 +32643538353737616530653362353432396130653038613665636136366230383463336662316134 +63363631636238366262656535316364316166613433346131386139653863393337636362373364 +36303636303232626235643964383362313931613330656337346662653330376533313930376137 +66333765333533653066343035373132373438393865306536363834366161613934393532336165 +36623739363338393736366639393330363338623739653333383032343666366435393630636232 +36636534626462616132366639613064643363323834383337626166636337363331393465636536 +38393562646437323263346339343031383061663662326436383131353661356236393563666532 +65393362313133323563376636613131303834633435393538343234663831313231346239363231 +37643931616362306462646632353237623461363638656463306230643266666438326237356431 +65363030303133643634306164316461353933353766643938626139376264306461303935613737 +32613732366661656161393533666561326633336463663834396535326163363262343565636439 +34636438653963396630653565666333643738626465383164363639316431616331633665303965 +35613238626231666565373238353534626261393534633332653239303336633761313266323138 +63366333366363646463323862613537626638613062363732643661633134323131393466306435 +65373866613137616135363266356430333364656461303835346161663632343531343261613632 +61623833376437313966333064623763333231623964623835376236656366373664356237616363 +61313034643261333836326331323532643332313761653937623730663231366535336562653638 +64663461616430663336366238363534396466386664316435626266646532326166396238363964 +33653466643262336232383837363366613833616663646561393566343464356438646366653337 +64316633373666626438323232353539646533653633653361643239303462643166303461623730 +36656665356635363234626137363630623365333063356461613131323238323933353831316532 +65306266343338373961303864383839326134303438396136303430363666356563323665623930 +39376636383933636663613436383330383031343065303935613531646538376532653232643138 +30626335346566653336353539616637616362636361623436636564386130666565346437633266 +61323461333236613632376530326637656533363439633261613064363438323163363065373031 +38623062343066333733353130393862306566663963333964376137633638346162663831383737 +39623531303964373464396663386530616434383534343337663661623238343038633033643036 +66363738653435336331633539353031613432303033386633376162613431393262306564313565 +37636237303733643166643630373434626664646538623762383464336537323531613461336537 +66333961653766646661386265386264633139373038363266353934343361353061623565306436 +61656131393833643333386361323866343661666162316139353137636436656466303834613639 +33383661666532663933333634613936333765306164316339323065373736656631386466656361 +36396538613339613161393438346637383835323435656434666333613735623461643866656336 +33643865333461613465393738646531323962656365383665636534333162333264396131313565 +35663865353833333634363734353063343239323963666463303630653938313738306633316464 +39336534303437303834653339623530623333633033666339613536376266646236383532633338 +31353763613961313963633639313336626365613766363831306164353365623030343566626633 +35396139626232623932326663616662656239383335383765653834613437633436303432333064 +35393833313235613730613534383032633461373062323033613438323866303539353466623866 +39656137386631623361616635393161323363306561366233623365343035653934396437623336 +34393535393931366366646238333237373635373462376637326337363137383230313962393336 +62343964363437323365666235376439663361373738623264363765303236346265396264346134 +32636239373865613664386663663538356364636537343330656239626166356261616164323135 +36306638323165336334653231396261303964353739353661623433336636336663633434386533 +37313361323838633332386238376632383038663235366365633865356636366336626262303032 +31313639623630613866643332633034326234356365376135313862653039646532616463626239 +30343262323136346361313539666235336234623363343535373365376162303364333434306130 +61663932646132323764356463323537373733346135303736356564353664653731313733326233 +33303662623664663761373039336237396662323831633338303337306564623535303836646333 +37333732336366376632366162346163383631363264303836363132333036633332363135656330 +61343032356331643633366235613739376532366335313938386131636665616232303236643862 +35623561383234623930666431393333633331326363663736616664306463636335626237396632 +63613963666264626337383632636366666539663532636464353537653938303833313136636661 +66633564353230303263373537366262376235373334323338366232353735313136313139336565 +30336561333635326433326333373633626435643134356164326363343633306563336530363539 +36643763613836636631306364646461343035323061616265393565663536376136303631643835 +62383361313535353464336263646261636631313862353335386662353539616664356562633763 +39636432393462626239633733363364636235636365396361313432626163363838343465383737 +37383766313762353361396139613935613366336137636563626662396465383539373161396630 +66656338636636363064336266343237333332656631333434623562323935343332373736383465 +62356231326238313431336162353138313334323434663264363161626533363739353535366563 +31333963633937393638636432336337366261303934363766306664643634313034666538653533 +64396437363664623065363634316262333266343230393634333863356366313638613561333132 +30363338613833363863623031386238383038643437356639663133613536303636343963303730 +65366264316535653462343437633937653533626132663766326431353862306666343636643665 +39666339313235343831333638646138663436336665633463386364353264353662376439636363 +63303037636530646632656431653062323831626130653862323433306164653165653531393662 +38383664666232306433356632623430643837653031653138323830373562656265613335633664 +65333065366162363263666662643130303263306532643762666535333233363238623137383363 +33313561613035343034356333393666663131643135626636333536383161313961393432343939 +37653832313063363235326330393962306338613537616663396333656336323231633836663337 +61663761313563313436376663383333636166313361653637353939303061346235306664663330 +30356231306262333332373065616539636664653634343062396666306433666665346164363437 +61303466663063363063656663616135643261613430633137373466396638376538376462653365 +61333661633930613839643634303564386539393536363466666263383834356134393563643463 +31386663666131643539336136353966376534326339353531353037626664313932343238666333 +38643537636638636634336265306437303566653964396638366165386139656135306565376365 +34326339653865333232366234633836326230353137643466666133623239653334316166383839 +63636664653763323366353133333364323132633332663964343233633032303534383263316434 +63666461636332626633386631666236653132356230316437616134316232613332616335313232 +64323264313934633639316533663531303861663966396466396231356438643966373962613262 +64326134613232343135616334366564636230383261303361656663663838393962333930326463 +30356130366561363230666461383736336634633232376538333864316436323139396231373263 +39313739653865346465303933333030326265353736623032366633633465353562346561626564 +34613433656366663234323762613366303130643136313262623331313732646336613738663665 +64363261633330343838623536383162613761633439633461363532323131656432373230306238 +36363764323566326166323962653635353831333263616638353264383033373337633861393936 +31323739666435393865633237363732303837386461616566323136623033333961313637336337 +35333730363435636530626463626535393564376639363237336366613730643233346365626334 +64636664363932373661613763636236633234666234333336626362386433313838303763326261 +66623031646661363236386263346437376436313235383834366536323235653665306436653566 +66346562363963626233323636323661363231363230353637623961613233336161613764336662 +34396261336166643664653638643066643539633161393366396265363531613362396633353932 +32386139313166336163343234346264356336316363313363323537333430626662363466346331 +33656666613134663161656638643361363966376531613833376663396361396538643234633436 +37333637383864666663616362393237656365373531343230616139393264373837623761393064 +39353164623666373133653362636262346230366637343731313837383936643434663332666337 +33333966366435303736346132623638373736313461653335333733323733656162336639656534 +65393763376261303633653363323031653038343436326463643232633263626236373332626366 +63363637353563306466323832356165653438353336623235656363653534393238306430366364 +65363136633734303466336637316430326332383364623934656264303336313261373764353936 +37323262353664653862316433633963633666613764656530336262356232656365666538636566 +65613139363862343037666437613738346138613233633766313063346461333633383330306131 +63383531386335373866336633343763623536323835653864633032646130323932306535623765 +36653334653030333566623539656664343633326662353137376335303063383232316362656561 +37323362313861633230636136656431346666653461383563343133336461346264623135396331 +38613861623936313364323763306662613966653733356464313761303637363861396633656131 +35323432616330643834313435353262663463626563616630623965366233656339376633306339 +39633238656166666239333732303130333834316361653738323135366439633133303734316537 +36303438363362613639363334386339306636633039343761343639343265656236303832663235 +63323462346535626130363161653037363132346633643462646639383831663162333031326237 +34383566363663636639333931613933623437376437373163646533396630313166316331633339 +37366432633436346336353432363236386461373561316631626361363965313732343333333231 +36663162623662313166306333656237316631363232646364346466306165623163366165353263 +34353862616565663134373037343138666265643239643063393838663437646233636264623138 +63343130623830376438646263356434383530656433343565353232656565653831623361616362 +39373763663765656562333463623566346537303062616230303231653536336464646537343665 +61363132373661303964663836653435356434333165626230636334626235373338353839323433 +63663661316462663361383863616537396430396234306434646633343862323331353430656364 +65383661303138376166663865353332663665326463653934393666633731386533356332396232 +61653763396637313565393939386662346166363266376230346531366264373464326438326330 +61353538656466626164363830623532333966663133373865313536646662373833333039373333 +31643936663961663763386330343333343931613838393139353139343434646537316165623362 +64393162313834653632646330393764313563313530366338363633653165366533643230616661 +63393439333463623966316330343434653630333035646233303134343537613164323439366161 +64666164323432353637666433343233386564316531396634313734356535333166333564666631 +61636431653330303664333166353534633232643666373730383861356331653765356432633961 +62336466663735336439663339303562373661333034626637383836633663383733643635626232 +33363537343165376664356237343533303130383266306233376365393338303438313663336563 +38646431316363323437303134386463386363363438623264356538643863623866343434643061 +66303865363832366130616439633763383261363031336238326432643336373439663036363963 +31306664616162383339376663613039386236383663613662393666656232373230373831656134 +37616235303065636230386532613061356466613333393064663161343535383930656561386435 +30353466393139643539386635316537656631623537376539646630613035653630613235376530 +34656135623065613832383033303035646536363961303061333831626633646139356231396336 +38393436343862333231356165643939613138333933643436643864393936326338363237303035 +66383937653336353937356265366562663632353530316136373761383363356235643164356230 +36613331653139393130616230353164376631666661616633376639656536646331633865333561 +65303631313964326535313166303636306138383234653766636364653935376436396663343833 +33656363343634343064306638346565383136366336663231653561393134336230303937316465 +34633664323339316366643061616330633930636366626430623038666639323062323036303539 +35333164636639366536363664656563393939623564353231366433633137373666626231626635 +31666433613963636334633231353366656332613135323862393538356564663937353339316566 +62643262363762656337383863356561393465343838333538396630383032616633323365376533 +63316330333634333464313135656261343930303839333764306534336665353231313738636438 +31353638623162663935626462653034376463353763363764633266383535336436623065303632 +35643435373237633063353135396464383633326266386264373363316264643930646438666436 +62356635383039303136653732643831313535663834373632366661336535366536653761343133 +37626231626637666333333062653864356230626564653438383330653331346134326435643561 +64383464353633313566663538666634656234363366343134626431623038646638396635663838 +37353234313162386537393237366266653938613838376437306531316138353762323231646366 +65393166636464343832613930643265666134346339666463383232636238653939343936323634 +66646236366436633963363263633930386638643162643562346664613562613833613061643266 +39653433653137376363326639346633313335363063643838643961363662633966396535383564 +30353837303930386364306236353831323035356363646663323933623861646335383532623432 +62373863656461313965343133383632363166663066313432383138316634353064376166646563 +63396436336134356136373838366534323465383938313263336632333636616263656361393532 +66643634653834653564316132343965386537376239326361626633643334376632343038646664 +39663066326637393739653732393735663166626334396463323665383837643236656230313730 +35613134343536653036303839316464346137316137353866303537656164616464616333656364 +34303964323338613230393566303962356635333138656166616237626431336437383063356564 +31306137373433623333313263363165613463343630653136336535363533633636393939626263 +30366166626534306136643663396166626565633532653231316638663138653437646463646336 +35633866636563363364393863643537626133663531336561333664386139376632636438346330 +36626466303833323136643261633137643935663136646661666637333335643361303064343438 +35653136616266346434373139393862633835366136396430363863623762373937333831633132 +61353762396662316138646530346433333964313137646330353264393337636238386636623030 +64333664633932616161373236303536356262376434363339663534663233616132393938663966 +65313765633462306632666639313337633232633061383330643063653263306138663761656434 +36383264326530643531333035636265393638613834666333306630643432623330373566393962 +32643937303561313565666133376237306431326565363934343830623832626634333031653164 +65626635313634313734383833313330643736313136643262613530336235353332336262636530 +32373630383965663632616339303864663766363037353737393239386230636434653733623138 +64336235336363346635336165343566326636613637303761643864376536383962343131326462 +62653738663933396666316639636633353866336463646532353465616463316362373033313161 +39373061363163623562393535396562656561363166666136356631636665666334323762316534 +65663836303730343563663331356435376138333136663235303936363538373630626362396339 +38316466386139356666383666323838623862383037613632383565316637303936396632616363 +62643035353436656165663232623562363632663862666261623038633931623137313335653661 +64393333303833303363633436643862653739353931353866346561346135323236636338643137 +30383565623565303438313766666466653834323539626434373062646136326637343664376637 +6232 diff --git a/files/drone-runner/drone-runner-ConfigMap.yaml b/files/drone-runner/drone-runner-ConfigMap.yaml new file mode 100644 index 0000000..4177069 --- /dev/null +++ b/files/drone-runner/drone-runner-ConfigMap.yaml @@ -0,0 +1,20 @@ +# Source: drone-runner-kube/templates/configmap.yaml +apiVersion: v1 +kind: ConfigMap +metadata: + name: drone-runner-kube + namespace: drone + labels: + helm.sh/chart: drone-runner-kube-0.1.2 + app.kubernetes.io/name: drone-runner-kube + app.kubernetes.io/instance: drone + app.kubernetes.io/component: drone-runner-kube + app.kubernetes.io/version: "1.0.0-beta.1" + app.kubernetes.io/managed-by: Helm +data: + DRONE_RPC_HOST: "drone.reslinger.net" + DRONE_RPC_PROTO: "https" + DRONE_UI_DISABLE: "true" + DRONE_RUNNER_CAPACITY: "2" + DRONE_NAMESPACE_DEFAULT: "drone-runner" +# DRONE_SERVICE_ACCOUNT_DEFAULT: "drone-runner" \ No newline at end of file diff --git a/files/drone-runner/drone-runner-Namespace.yaml b/files/drone-runner/drone-runner-Namespace.yaml new file mode 100644 index 0000000..da57401 --- /dev/null +++ b/files/drone-runner/drone-runner-Namespace.yaml @@ -0,0 +1,5 @@ +apiVersion: v1 +kind: Namespace +metadata: + name: drone-runner + diff --git a/files/drone-runner/drone-runner-Role.yaml b/files/drone-runner/drone-runner-Role.yaml new file mode 100644 index 0000000..c66f93b --- /dev/null +++ b/files/drone-runner/drone-runner-Role.yaml @@ -0,0 +1,33 @@ +# Source: drone-runner-kube/templates/rbac.yaml +kind: Role +apiVersion: rbac.authorization.k8s.io/v1 +metadata: + name: drone-runner-kube + namespace: "drone-runner" + labels: + helm.sh/chart: drone-runner-kube-0.1.2 + app.kubernetes.io/name: drone-runner-kube + app.kubernetes.io/instance: drone + app.kubernetes.io/component: drone-runner-kube + app.kubernetes.io/version: "1.0.0-beta.1" + app.kubernetes.io/managed-by: Helm +rules: + - apiGroups: + - "" + resources: + - secrets + verbs: + - create + - delete + - apiGroups: + - "" + resources: + - pods + - pods/log + verbs: + - get + - create + - delete + - list + - watch + - update diff --git a/files/drone-runner/drone-runner-RoleBinding.yaml b/files/drone-runner/drone-runner-RoleBinding.yaml new file mode 100644 index 0000000..dac6e35 --- /dev/null +++ b/files/drone-runner/drone-runner-RoleBinding.yaml @@ -0,0 +1,21 @@ +# Source: drone-runner-kube/templates/rbac.yaml +kind: RoleBinding +apiVersion: rbac.authorization.k8s.io/v1 +metadata: + name: drone-runner-kube + namespace: "drone-runner" + labels: + helm.sh/chart: drone-runner-kube-0.1.2 + app.kubernetes.io/name: drone-runner-kube + app.kubernetes.io/instance: drone + app.kubernetes.io/component: drone-runner-kube + app.kubernetes.io/version: "1.0.0-beta.1" + app.kubernetes.io/managed-by: Helm +subjects: + - kind: ServiceAccount + name: drone-runner-kube + namespace: drone +roleRef: + kind: Role + name: drone-runner-kube + apiGroup: rbac.authorization.k8s.io diff --git a/files/drone-runner/drone-runner-Service.yaml b/files/drone-runner/drone-runner-Service.yaml new file mode 100644 index 0000000..a22afa8 --- /dev/null +++ b/files/drone-runner/drone-runner-Service.yaml @@ -0,0 +1,24 @@ +# Source: drone-runner-kube/templates/service.yaml +apiVersion: v1 +kind: Service +metadata: + name: drone-runner-kube + namespace: drone + labels: + helm.sh/chart: drone-runner-kube-0.1.2 + app.kubernetes.io/name: drone-runner-kube + app.kubernetes.io/instance: drone + app.kubernetes.io/component: drone-runner-kube + app.kubernetes.io/version: "1.0.0-beta.1" + app.kubernetes.io/managed-by: Helm +spec: + type: ClusterIP + ports: + - port: 3000 + targetPort: http + protocol: TCP + name: http + selector: + app.kubernetes.io/name: drone-runner-kube + app.kubernetes.io/instance: drone + app.kubernetes.io/component: drone-runner-kube diff --git a/files/drone-runner/drone-runner-ServiceAccount.yaml b/files/drone-runner/drone-runner-ServiceAccount.yaml new file mode 100644 index 0000000..4103fba --- /dev/null +++ b/files/drone-runner/drone-runner-ServiceAccount.yaml @@ -0,0 +1,13 @@ +# Source: drone-runner-kube/templates/rbac.yaml +apiVersion: v1 +kind: ServiceAccount +metadata: + name: drone-runner-kube + namespace: drone + labels: + helm.sh/chart: drone-runner-kube-0.1.2 + app.kubernetes.io/name: drone-runner-kube + app.kubernetes.io/instance: drone + app.kubernetes.io/component: drone-runner-kube + app.kubernetes.io/version: "1.0.0-beta.1" + app.kubernetes.io/managed-by: Helm diff --git a/files/drone-runner/drone-runner.yaml b/files/drone-runner/drone-runner.yaml new file mode 100644 index 0000000..76edea6 --- /dev/null +++ b/files/drone-runner/drone-runner.yaml @@ -0,0 +1,60 @@ +# Source: drone-runner-kube/templates/deployment.yaml +apiVersion: apps/v1 +kind: Deployment +metadata: + name: drone-runner-kube + namespace: drone + labels: + helm.sh/chart: drone-runner-kube-0.1.2 + app.kubernetes.io/name: drone-runner-kube + app.kubernetes.io/instance: drone + app.kubernetes.io/component: drone-runner-kube + app.kubernetes.io/version: "1.0.0-beta.1" + app.kubernetes.io/managed-by: Helm +spec: + replicas: 1 + selector: + matchLabels: + app.kubernetes.io/name: drone-runner-kube + app.kubernetes.io/instance: drone + app.kubernetes.io/component: drone-runner-kube + template: + metadata: + labels: + app.kubernetes.io/name: drone-runner-kube + app.kubernetes.io/instance: drone + app.kubernetes.io/component: drone-runner-kube + annotations: + checksum/secrets: b814aeaecb42fa8651875d365b7bd4251112dc6fde7b1c82a41a5f37cdb9f34a + spec: + serviceAccountName: drone-runner-kube + securityContext: + fsGroup: 2000 + terminationGracePeriodSeconds: 3600 + containers: + - name: server + securityContext: + capabilities: + drop: + - ALL + readOnlyRootFilesystem: true + runAsNonRoot: true + runAsUser: 1000 + image: "drone/drone-runner-kube:1.0.0-beta.1" + imagePullPolicy: IfNotPresent + ports: + - name: http + containerPort: 3000 + protocol: TCP + resources: + limits: + cpu: 100m + memory: 128Mi + requests: + cpu: 100m + memory: 128Mi + envFrom: + - configMapRef: + name: drone-runner-kube + - secretRef: + name: drone-runner diff --git a/files/drone/drone-ConfigMap.yaml b/files/drone/drone-ConfigMap.yaml new file mode 100644 index 0000000..2563a01 --- /dev/null +++ b/files/drone/drone-ConfigMap.yaml @@ -0,0 +1,18 @@ +# Source: drone/templates/configmap.yaml +apiVersion: v1 +kind: ConfigMap +metadata: + name: drone + namespace: drone + labels: + helm.sh/chart: drone-0.1.5 + app.kubernetes.io/name: drone + app.kubernetes.io/instance: drone + app.kubernetes.io/component: server + app.kubernetes.io/version: "1.6.5" + app.kubernetes.io/managed-by: Helm +data: + DRONE_SERVER_HOST: "drone.reslinger.net" + DRONE_SERVER_PROTO: "https" + DRONE_SERVER_PORT: ":3000" + DRONE_GITEA_SERVER: "https://gitea.reslinger.net" diff --git a/files/drone/drone-Deployment.yaml b/files/drone/drone-Deployment.yaml new file mode 100644 index 0000000..97e4e45 --- /dev/null +++ b/files/drone/drone-Deployment.yaml @@ -0,0 +1,78 @@ +# Source: drone/templates/deployment.yaml +apiVersion: apps/v1 +kind: Deployment +metadata: + name: drone + namespace: drone + labels: + helm.sh/chart: drone-0.1.5 + app.kubernetes.io/name: drone + app.kubernetes.io/instance: drone + app.kubernetes.io/component: server + app.kubernetes.io/version: "1.6.5" + app.kubernetes.io/managed-by: Helm +spec: + + replicas: 1 + selector: + matchLabels: + app.kubernetes.io/name: drone + app.kubernetes.io/instance: drone + app.kubernetes.io/component: server + strategy: + {} + template: + metadata: + labels: + app.kubernetes.io/name: drone + app.kubernetes.io/instance: drone + app.kubernetes.io/component: server + annotations: + checksum/secrets: f04829730411ff67dd00ecc2a6f709ad9b067e2731b5164841e93bac8beb071e + + prometheus.io/port: "3000" + prometheus.io/scrape: "true" + spec: + automountServiceAccountToken: false + securityContext: + fsGroup: 2000 + containers: + - name: server + securityContext: + capabilities: + drop: + - ALL + readOnlyRootFilesystem: true + runAsNonRoot: true + runAsUser: 1000 + image: "drone/drone:1.6.5" + imagePullPolicy: IfNotPresent + ports: + - name: http + containerPort: 3000 + protocol: TCP + livenessProbe: + httpGet: + path: / + port: http + resources: + limits: + cpu: 100m + memory: 128Mi + requests: + cpu: 100m + memory: 128Mi + envFrom: + - configMapRef: + name: drone + - secretRef: + name: drone + volumeMounts: + - name: storage-volume + mountPath: /data + subPath: "" + volumes: + + - name: storage-volume + persistentVolumeClaim: + claimName: drone diff --git a/files/drone/drone-Service.yaml b/files/drone/drone-Service.yaml new file mode 100644 index 0000000..b9ef1c4 --- /dev/null +++ b/files/drone/drone-Service.yaml @@ -0,0 +1,24 @@ +# Source: drone/templates/service.yaml +apiVersion: v1 +kind: Service +metadata: + name: drone + namespace: drone + labels: + helm.sh/chart: drone-0.1.5 + app.kubernetes.io/name: drone + app.kubernetes.io/instance: drone + app.kubernetes.io/component: server + app.kubernetes.io/version: "1.6.5" + app.kubernetes.io/managed-by: Helm +spec: + type: ClusterIP + ports: + - port: 3000 + targetPort: http + protocol: TCP + name: http + selector: + app.kubernetes.io/name: drone + app.kubernetes.io/instance: drone + app.kubernetes.io/component: server diff --git a/files/drone_0.7.yml b/files/drone_0.7.yml new file mode 100644 index 0000000..9632941 --- /dev/null +++ b/files/drone_0.7.yml @@ -0,0 +1,81 @@ +apiVersion: extensions/v1beta1 +kind: Deployment +metadata: + name: server +spec: + replicas: 1 + template: + metadata: + labels: + name: server + spec: + containers: + - name: server + image: drone/drone:0.7 + imagePullPolicy: Always + env: + - name: "DRONE_HOST" + value: CHANGE_ME + - name: "DRONE_OPEN" + value: CHANGE_ME + - name: "DRONE_GITHUB" + value: CHANGE_ME + - name: "DRONE_GITHUB_CLIENT" + value: CHANGE_ME + - name: "DRONE_GITHUB_SECRET" + value: CHANGE_ME + - name: "DRONE_SECRET" + value: CHANGE_ME + volumeMounts: + - mountPath: /var/lib/drone + name: drone-lib + volumes: + - name: drone-lib + hostPath: + path: /var/lib/drone +--- +apiVersion: v1 +kind: Service +metadata: + name: server + labels: + name: server +spec: + type: LoadBalancer + ports: + - protocol: TCP + port: 80 + targetPort: 8000 + selector: + name: server +--- +apiVersion: extensions/v1beta1 +kind: Deployment +metadata: + name: agent +spec: + replicas: 1 + template: + metadata: + labels: + name: agent + spec: + containers: + - name: agent + image: drone/drone:0.7 + imagePullPolicy: Always + command: + - "/drone" + - "agent" + volumeMounts: + - mountPath: /var/run/docker.sock + name: docker-socket + env: + - name: "DRONE_SERVER" + value: ws://$(SERVER_SERVICE_HOST):$(SERVER_SERVICE_PORT)/ws/broker + - name: "DRONE_SECRET" + value: CHANGE_ME + volumes: + - name: docker-socket + hostPath: + path: /var/run/docker.sock \ No newline at end of file diff --git a/tasks/main.yml b/tasks/main.yml index 842f601..f0c1f43 100644 --- a/tasks/main.yml +++ b/tasks/main.yml @@ -12,89 +12,105 @@ - gitea-pvc.yml.j2 - gitea-IngressRoute.yml.j2 # - gitea-IngressRouteTCP.yml.j2 -# - name: Install Gitea static files -# k8s: -# state: present -# context: "{{ my_context }}" -# merge_type: merge -# resource_definition: "{{ lookup('file', 'gitea/' + item) | from_yaml }}" -# with_items: -# - gitea-ConfigMap.yaml -# - gitea-Deployment.yaml -# - gitea-Service.yaml - - - name: Defined gitea repository - kubernetes.core.helm_repository: - name: gitea-charts - repo_url: "https://dl.gitea.io/charts" - - name: Deploy latest version of Gitea - kubernetes.core.helm: + - name: Install Gitea static files + k8s: + state: present context: "{{ my_context }}" - name: gitea - chart_ref: gitea-charts/gitea - release_namespace: "{{ gitea_namespace }}" - values: "{{ lookup('template', 'gitea/helm-value.yaml.j2') | from_yaml }}" + merge_type: merge + resource_definition: "{{ lookup('file', 'gitea/' + item) | from_yaml }}" + with_items: + - gitea-ConfigMap.yaml + - gitea-Deployment.yaml + - gitea-Service.yaml tags: - gitea - name: Drone setup block: - - name: Defined drone repository - kubernetes.core.helm_repository: - name: drone - repo_url: "https://charts.drone.io" + - name: Configure environnement + k8s: + state: present + context: "{{ my_context }}" + merge_type: merge + resource_definition: "{{ lookup('template', item) | from_yaml }}" + with_items: + - drone-Namespace.yaml.j2 tags: - drone-server - drone-runner - - drone - - name: Drone install - kubernetes.core.helm: - context: "{{ my_context }}" - name: drone - chart_ref: drone/drone - release_namespace: "{{ drone_namespace }}" - create_namespace: yes - values: "{{ lookup('template', 'drone-helm-value.yaml.j2') | from_yaml }}" + - name: Drone Server install + block: + - name: Install Drone dynamic files + k8s: + state: present + context: "{{ my_context }}" + merge_type: merge + resource_definition: "{{ lookup('template', item) | from_yaml }}" + with_items: + - drone/drone-PersistentVolumeClaim.yml.j2 + - drone/drone-Secret.yaml.j2 + - drone/drone-IngressRoute.yml.j2 + - name: Install Drone Static files + k8s: + state: present + context: "{{ my_context }}" + merge_type: merge + resource_definition: "{{ lookup('file', item) | from_yaml }}" + with_items: + - drone/drone-ConfigMap.yaml + - drone/drone-Deployment.yaml + - drone/drone-Service.yaml tags: - drone-server - - drone - name: Drone Runner install - kubernetes.core.helm: - context: "{{ my_context }}" - name: drone - chart_ref: drone/drone-runner-kube - release_namespace: "{{ drone_runner_namespace }}" - create_namespace: yes - values: "{{ lookup('template', 'drone-runner-helm-value.yaml.j2') | from_yaml }}" + block: + - name: Install Drone Runner dynamic files + k8s: + state: present + context: "{{ my_context }}" + merge_type: merge + resource_definition: "{{ lookup('template', item) | from_yaml }}" + with_items: + - drone-runner/drone-runner-Secret.yaml.j2 + - name: Install Drone Runner static files + k8s: + state: present + context: "{{ my_context }}" + merge_type: merge + resource_definition: "{{ lookup('file', item) | from_yaml }}" + with_items: + - drone-runner/drone-runner-Namespace.yaml + - drone-runner/drone-runner-ServiceAccount.yaml + - drone-runner/drone-runner-Role.yaml + - drone-runner/drone-runner-RoleBinding.yaml + - drone-runner/drone-runner-ConfigMap.yaml + - drone-runner/drone-runner-Service.yaml + - drone-runner/drone-runner.yaml tags: - drone-runner - - drone + tags: + - drone # https://github.com/aquasecurity/trivy/tree/main/helm/trivy - name: Trivy Setup block: -# - name: Git clone stable repo on HEAD -# ansible.builtin.git: -# repo: "https://github.com/aquasecurity/trivy.git" -# dest: tmp/trivy -# version: "{{ trivy_version }}" - - name: Defined trivy repository - kubernetes.core.helm_repository: - name: aquasecurity - repo_url: "https://aquasecurity.github.io/helm-charts/" - - name: Deploy trivy chart - kubernetes.core.helm: + - name: Git clone stable repo on HEAD + ansible.builtin.git: + repo: "https://github.com/aquasecurity/trivy.git" + dest: tmp/trivy + - name: Deploy trivy chart from local path + community.kubernetes.helm: state: present name: trivy context: "{{ my_context }}" - chart_ref: aquasecurity/trivy + chart_ref: tmp/trivy/helm/trivy release_namespace: "{{ trivy_namespace }}" create_namespace: true -# values: -# image: -# tag: "{{ trivy_version }}" + values: + image: + tag: "{{ trivy_version }}" # persistence: # storageClass: "{{ trivy_storage_classname }}" # trivy: @@ -106,62 +122,9 @@ # ingress: # enabled: false # annotations: {} -# # kubernetes.io/ingress.class: traefik +# # kubernetes.io/ingress.class: nginx # hosts: # - host: trivy.{{ traefik_domain }} tags: - trivy - -#- name: Registry setup -# block: -# - name: Defined Registry repository -# kubernetes.core.helm_repository: -# name: cesanta -# repo_url: "https://cesanta.github.io/docker_auth/" -# - name: Deploy latest version of Registry -# kubernetes.core.helm: -# context: "{{ my_context }}" -# name: docker-auth -# chart_ref: cesanta/docker-auth -# release_namespace: "{{ registry_namespace }}" -# values: "{{ lookup('template', 'helm-value.yaml.j2') | from_yaml }}" -# tags: -# - registry - -# https://github.com/helm/chartmuseum -# https://artifacthub.io/packages/helm/chartmuseum/chartmuseum -- name: ChartMuseum Setup - block: - - name: Defined ChartMuseum repository - kubernetes.core.helm_repository: - name: chartmuseum - repo_url: "https://chartmuseum.github.io/charts" - - name: Deploy trivy chart from local path - kubernetes.core.helm: - state: present - name: chartmuseum - context: "{{ my_context }}" - chart_ref: chartmuseum/chartmuseum - release_namespace: "{{ chartmuseum_namespace }}" - create_namespace: true - values: - persistence: - enabled: true -# path: "/storage" -# storageClass: - accessMode: ReadWriteOnce - size: 2Gi - env: - open: - STORAGE: local - extraArgs: [] - ingress: - enabled: true - annotations: {} - labels: {} - hosts[0]: - name: chartmuseum.{{ traefik_domain }} - - tags: - - chartmuseum diff --git a/templates/drone-Namespace.yaml.j2 b/templates/drone-Namespace.yaml.j2 new file mode 100644 index 0000000..be1620d --- /dev/null +++ b/templates/drone-Namespace.yaml.j2 @@ -0,0 +1,5 @@ +apiVersion: v1 +kind: Namespace +metadata: + name: drone + diff --git a/templates/drone-helm-value.yaml.j2 b/templates/drone-helm-value.yaml.j2 deleted file mode 100644 index 9e9ed4f..0000000 --- a/templates/drone-helm-value.yaml.j2 +++ /dev/null @@ -1,250 +0,0 @@ -{% if drone_version is defined %} -image: -# repository: drone/drone - tag: "{{ drone_version }}" -# pullPolicy: IfNotPresent -{% endif %} - -## If you need to pull images from a private Docker image repository, pass in the name -## of a Kubernetes Secret that contains the needed secret. For more details, see: -## Ref: https://kubernetes.io/docs/tasks/configure-pod-container/pull-image-private-registry/ -## -imagePullSecrets: [] -# - name: "image-pull-secret" - -nameOverride: "" -fullnameOverride: "" - -# Drone server does not interact with the Kubernetes API server -automountServiceAccountToken: false - -podSecurityContext: - fsGroup: 2000 - -securityContext: - capabilities: - drop: - - ALL - readOnlyRootFilesystem: true - runAsNonRoot: true - runAsUser: 1000 - -## Add extra annotations to the Drone server pods here. See below example for -## Prometheus scrape annotations. -## -podAnnotations: - prometheus.io/scrape: "true" - prometheus.io/port: "80" - -updateStrategy: {} - -service: - type: ClusterIP - port: 80 - -ingress: - enabled: true - annotations: - kubernetes.io/ingress.class: traefik - # kubernetes.io/tls-acme: "true" - cert-manager.io/cluster-issuer: letsencrypt-prod - traefik.ingress.kubernetes.io/router.entrypoints: web,websecure - traefik.ingress.kubernetes.io/router.middlewares: security_headers@file - hosts: - - host: drone.{{ traefik_domain }} - paths: - - "/" - tls: - - secretName: drone.{{ traefik_domain }} - hosts: - - drone.{{ traefik_domain }} - -resources: - limits: - cpu: 100m - memory: 128Mi - requests: - cpu: 100m - memory: 128Mi - -## If you'd like to force the Drone server to run on a specific node or set of nodes, -## set a selector here. -## -nodeSelector: {} - -tolerations: [] - -affinity: {} - -## If you'd like to make additional files or volumes available to Drone, declare additional -## Volumes here per the Pod spec's "volumes" section. -## Ref: https://kubernetes.io/docs/concepts/storage/volumes/ -## -extraVolumes: [] -## If you have declared extra volumes, mount them here, per the Pod Container's -## "volumeMounts" section. -## -extraVolumeMounts: [] - -persistentVolume: - ## If you are using SQLite as your DB for Drone, it is recommended to enable persistence. If - ## enabled, the Chart will create a PersistentVolumeClaim to store its state in. If you are - ## using a DB other than SQLite, set this to false to avoid allocating unused storage. - ## If set to false, Drone will use an emptyDir instead, which is ephemeral. - ## - enabled: true - - ## Drone server data Persistent Volume access modes - ## Must match those of existing PV or dynamic provisioner - ## Ref: http://kubernetes.io/docs/user-guide/persistent-volumes/ - ## - accessModes: - - ReadWriteOnce - - ## Drone server data Persistent Volume annotations - ## - annotations: {} - - ## If you'd like to bring your own PVC for persisting Drone state, pass the name of the - ## created + ready PVC here. If set, this Chart will not create the default PVC. - ## Requires server.persistentVolume.enabled: true - ## - existingClaim: "" - - ## Drone server data Persistent Volume mount root path - ## - mountPath: /data - - ## Drone server data Persistent Volume size - ## - size: 8Gi - - ## Drone server data Persistent Volume Storage Class - ## If defined, storageClassName: - ## If set to "-", storageClassName: "", which disables dynamic provisioning - ## If undefined (the default) or set to null, no storageClassName spec is - ## set, choosing the default provisioner. (gp2 on AWS, standard on - ## GKE, AWS & OpenStack) - ## -{% if drone_storage_classname is defined %} - storageClass: "{{ drone_storage_classname }}" -{% else %} - storageClass: "" -{% endif %} - - ## Drone server data Persistent Volume Binding Mode - ## If defined, volumeMode: - ## If empty (the default) or set to null, no volumeBindingMode spec is - ## set, choosing the default mode. - ## - volumeMode: "" - - ## Subdirectory of Drone server data Persistent Volume to mount - ## Useful if the volume's root directory is not empty - ## - subPath: "" - -## If persistentVolume.enabled is set to false, Drone will mount an emptyDir instead of -## a PVC for any state that it needs to persist. -## -emptyDir: - ## Total space to request for the emptyDir. An empty value here means no limit. - sizeLimit: "" - -## If you'd like to provide your own Kubernetes Secret object instead of passing your values -## in un-encrypted, pass in the name of a created + populated Secret in the same Namespace -## as the Drone server. All secrets within this configmap will be mounted as environment -## variables, with each key/value mapping to a corresponding environment variable on the -## Drone server. -## -extraSecretNamesForEnvFrom: [] -#- drone - -## The keys within the "env" map are mounted as environment variables on the Drone server pod. -## See the full reference of Drone server environment variables here: -## Ref: https://docs.drone.io/installation/reference/ -## -env: - ## REQUIRED: Set the user-visible Drone hostname, sans protocol. - ## Ref: https://docs.drone.io/installation/reference/drone-server-host/ - ## - DRONE_SERVER_HOST: "drone.{{ traefik_domain }}" - ## The protocol to pair with the value in DRONE_SERVER_HOST (http or https). - ## Ref: https://docs.drone.io/installation/reference/drone-server-proto/ - ## - DRONE_SERVER_PROTO: https - - DRONE_SERVER_PORT: ":3000" - - ## REQUIRED: Set the secret secret token that the Drone server and its Runners will use - ## to authenticate. This is commented out in order to leave you the ability to set the - ## key via a separately provisioned secret (see existingSecretName above). - ## Ref: https://docs.drone.io/installation/reference/drone-rpc-secret/ - ## - DRONE_RPC_SECRET: {{ drone_rpc_secret }} - - ## If you'd like to use a DB other than SQLite (the default), set a driver + DSN here. - ## Ref: https://docs.drone.io/installation/storage/database/ - ## - # DRONE_DATABASE_DRIVER: - # DRONE_DATABASE_DATASOURCE: - - ## If you are going to store build secrets in the Drone database, it is suggested that - ## you set a database encryption secret. This must be set before any secrets are stored - ## in the database. - ## Ref: https://docs.drone.io/installation/storage/encryption/ - ## - DRONE_DATABASE_SECRET: "{{ drone_secret }}" - - ## If you are using self-hosted GitHub or GitLab, you'll need to set this to true. - ## Ref: https://docs.drone.io/installation/reference/drone-git-always-auth/ - ## - # DRONE_GIT_ALWAYS_AUTH: false - - ## =================================================================================== - ## Provider Directives (select ONE) - ## ----------------------------------------------------------------------------------- - ## Select one provider (and only one). Refer to the corresponding documentation link - ## before filling the values in. Also note that you can use the 'secretMounts' value - ## if you'd rather not have secrets in Kubernetes Secret instead of a ConfigMap. - ## =================================================================================== - - ## GitHub-specific variables. See the provider docs here: - ## Ref: https://docs.drone.io/installation/providers/github/ - ## - # DRONE_GITHUB_CLIENT_ID: - # DRONE_GITHUB_CLIENT_SECRET: - - ## GitLab-specific variables. See the provider docs here: - ## Ref: https://docs.drone.io/installation/providers/gitlab/ - ## - # DRONE_GITLAB_CLIENT_ID: - # DRONE_GITLAB_CLIENT_SECRET: - # DRONE_GITLAB_SERVER: - - ## Bitbucket Cloud-specific variables. See the provider docs here: - ## Ref: https://docs.drone.io/installation/providers/bitbucket-cloud/ - ## - # DRONE_BITBUCKET_CLIENT_ID: - # DRONE_BITBUCKET_CLIENT_SECRET: - - ## Bitbucket-specific variables. See the provider docs here: - ## Ref: https://docs.drone.io/installation/providers/bitbucket-server/ - ## - # DRONE_GIT_USERNAME: - # DRONE_GIT_PASSWORD: - # DRONE_STASH_CONSUMER_KEY: - # DRONE_STASH_PRIVATE_KEY: - # DRONE_STASH_SERVER: - - ## Gitea-specific variables. See the provider docs here: - ## Ref: https://docs.drone.io/installation/providers/gitea/ - ## - DRONE_GITEA_CLIENT_ID: "{{ drone_gitea_client_id }}" - DRONE_GITEA_CLIENT_SECRET: "{{ drone_gitea_client_secret }}" - DRONE_GITEA_SERVER: "https://gitea.{{ traefik_domain }}" - - ## Gogs-specific variables. See the provider docs here: - ## Ref: https://docs.drone.io/installation/providers/gogs/ - ## - # DRONE_GOGS_SERVER: diff --git a/templates/drone-runner-helm-value.yaml.j2 b/templates/drone-runner-helm-value.yaml.j2 deleted file mode 100644 index 680301f..0000000 --- a/templates/drone-runner-helm-value.yaml.j2 +++ /dev/null @@ -1,131 +0,0 @@ -#image: -# repository: drone/drone-runner-kube -# tag: 1.0.0-beta.6 -# pullPolicy: IfNotPresent - -## If you need to pull images from a private Docker image repository, pass in the name -## of a Kubernetes Secret that contains the needed secret. For more details, see: -## Ref: https://kubernetes.io/docs/tasks/configure-pod-container/pull-image-private-registry/ -## -imagePullSecrets: [] -# - name: "image-pull-secret" - -## For small or experimental deployments of the Kubernetes runner, 1 replica will suffice. -## For production cases, 2-3 are recommended. This does not grant additional parallelism, -## but does ensure that upgrades, config changes, and disruptions are handled more gracefully. -replicaCount: 1 - -## When the runner receives a SIGTERM/SIGINT (config update, upgrade, etc), it will wait until -## all jobs that particular pod has spawned complete. It is for this reason that you'll want -## to make sure that this value is longer than your longest job. -terminationGracePeriodSeconds: 3600 - -nameOverride: "" -fullnameOverride: "" - -podSecurityContext: - fsGroup: 2000 - -securityContext: - capabilities: - drop: - - ALL - readOnlyRootFilesystem: true - runAsNonRoot: true - runAsUser: 1000 - -## Add extra annotations to the Kubernetes runner pods here. -## -podAnnotations: {} - -service: - type: ClusterIP - port: 3000 - -ingress: - enabled: false - annotations: {} - # kubernetes.io/ingress.class: nginx - # kubernetes.io/tls-acme: "true" - hosts: - - host: chart-example.local - paths: - - "/" - tls: [] - # - secretName: chart-example-tls - # hosts: - # - chart-example.local - -resources: - limits: - cpu: 100m - memory: 128Mi - requests: - cpu: 100m - memory: 128Mi - -## If you'd like to force the Drone runner to run on a specific node or set of nodes, -## set a selector here. -## -nodeSelector: {} - -tolerations: [] - -affinity: {} - -## If you'd like to make additional files or volumes available to the runner, declare additional -## Volumes here per the Pod spec's "volumes" section. -## Ref: https://kubernetes.io/docs/concepts/storage/volumes/ -## -extraVolumes: [] -## If you have declared extra volumes, mount them here, per the Pod Container's -## "volumeMounts" section. -## -extraVolumeMounts: [] - -## If you'd like to provide your own Kubernetes Secret object instead of passing your values -## in un-encrypted, pass in the name of a created + populated Secret in the same Namespace -## as the Kubernetes runner. All secrets within this configmap will be mounted as environment -## variables, with each key/value mapping to a corresponding environment variable on the -## Kubernetes runner. -## -extraSecretNamesForEnvFrom: [] -#- drone-runner - -## Each namespace listed below will be configured such that the runner can run build Pods in -## it. This comes in the form of a Role and a RoleBinding. If you change env.DRONE_NAMESPACE_DEFAULT -## or the other DRONE_NAMESPACE_* variables, make sure to update this list to include all -## namespaces. -rbac: - buildNamespaces: - - drone-runner - -## The keys within the "env" map are mounted as environment variables on the Kubernetes runner pod. -## See the full reference of Kubernetes runner environment variables here: -## Ref: https://kube-runner.docs.drone.io/installation/reference/ -## -env: - ## REQUIRED: Set the secret secret token that the Kubernetes runner and its runners will use - ## to authenticate. This is commented out in order to leave you the ability to set the - ## key via a separately provisioned secret (see existingSecretName above). - ## Ref: https://kube-runner.docs.drone.io/installation/reference/drone-rpc-secret/ - ## - DRONE_RPC_SECRET: {{ drone_rpc_secret }} - - ## The hostname/IP (and optionally the port) for your Kubernetes runner. Defaults to the "drone" - ## service that the drone server Chart creates by default. - ## Ref: https://kube-runner.docs.drone.io/installation/reference/drone-rpc-host/ - ## - DRONE_RPC_HOST: drone.{{ traefik_domain }} - - ## The protocol to use for communication with Drone server. - ## Ref: https://kube-runner.docs.drone.io/installation/reference/drone-rpc-proto/ - ## - DRONE_RPC_PROTO: https - - ## Determines the default Kubernetes namespace for Drone builds to run in. - ## Ref: https://kube-runner.docs.drone.io/installation/reference/drone-namespace-default/ - ## - DRONE_NAMESPACE_DEFAULT: drone-runner - DRONE_UI_DISABLE: "true" - DRONE_RUNNER_CAPACITY: "2" diff --git a/templates/drone-runner/drone-runner-Secret.yaml.j2 b/templates/drone-runner/drone-runner-Secret.yaml.j2 new file mode 100644 index 0000000..4c5b6ed --- /dev/null +++ b/templates/drone-runner/drone-runner-Secret.yaml.j2 @@ -0,0 +1,8 @@ +apiVersion: v1 +kind: Secret +metadata: + name: drone-runner + namespace: drone +type: Opaque +stringData: + DRONE_RPC_SECRET: {{ drone_rpc_secret }} diff --git a/templates/drone/drone-IngressRoute.yml.j2 b/templates/drone/drone-IngressRoute.yml.j2 new file mode 100644 index 0000000..3434700 --- /dev/null +++ b/templates/drone/drone-IngressRoute.yml.j2 @@ -0,0 +1,53 @@ +apiVersion: traefik.containo.us/v1alpha1 +kind: IngressRoute +metadata: + name: drone + namespace: drone + labels: + app.kubernetes.io/name: drone + app.kubernetes.io/instance: drone + app.kubernetes.io/component: server + annotations: + kubernetes.io/ingress.class: "traefik" +spec: + entryPoints: + - https + routes: + # Match is the rule corresponding to an underlying router. + # Later on, match could be the simple form of a path prefix, e.g. just "/bar", + # but for now we only support a traefik style matching rule. + - match: Host(`drone.{{ traefik_domain }}`) + # kind could eventually be one of "Rule", "Path", "Host", "Method", "Header", + # "Parameter", etc, to support simpler forms of rule matching, but for now we + # only support "Rule". + kind: Rule + # (optional) Priority disambiguates rules of the same length, for route matching. + priority: 12 +{% if basic_auth is defined or ingress_whitelist is defined %} + middlewares: +{% if ingress_whitelist is defined %} + - name: traefik-ipwhitelist +{% endif %} +{% if basic_auth is defined %} + - name: basic-auth +{% endif %} +{% endif %} + services: + - name: drone + port: 3000 + # (default 1) A weight used by the weighted round-robin strategy (WRR). + weight: 1 + # (default true) PassHostHeader controls whether to leave the request's Host + # Header as it was before it reached the proxy, or whether to let the proxy set it + # to the destination (backend) host. + passHostHeader: true + responseForwarding: + # (default 100ms) Interval between flushes of the buffered response body to the client. + flushInterval: 100ms + tls: +{% if drone_certificate is defined %} + secretName: {{ drone_certificate }} +{% endif %} + options: + name: default + namespace: {{ traefik_namespace }} \ No newline at end of file diff --git a/templates/drone/drone-PersistentVolumeClaim.yml.j2 b/templates/drone/drone-PersistentVolumeClaim.yml.j2 new file mode 100644 index 0000000..0033a8b --- /dev/null +++ b/templates/drone/drone-PersistentVolumeClaim.yml.j2 @@ -0,0 +1,32 @@ +# Source: drone/templates/pvc.yaml +apiVersion: v1 +kind: PersistentVolumeClaim +metadata: + labels: + helm.sh/chart: drone-0.1.5 + app.kubernetes.io/name: drone + app.kubernetes.io/instance: drone + app.kubernetes.io/component: server + app.kubernetes.io/version: "1.6.5" + app.kubernetes.io/managed-by: Helm + name: drone + namespace: drone +spec: +{% if drone_storage_classname is defined %} +{% if drone_storage_classname == "manual" %} + storageClassName: manual +{% elif drone_storage_classname == "local" %} + storageClassName: local-path +{% elif drone_storage_classname == "do-block-storage" %} + storageClassName: do-block-storage +{% elif drone_storage_classname == "linode-block-storage" %} + storageClassName: linode-block-storage +{% elif drone_storage_classname == "nfs" %} + storageClassName: nfs +{% endif %} +{% endif %} + accessModes: + - ReadWriteOnce + resources: + requests: + storage: "8Gi" diff --git a/templates/drone/drone-Secret.yaml.j2 b/templates/drone/drone-Secret.yaml.j2 new file mode 100644 index 0000000..f1c8fdf --- /dev/null +++ b/templates/drone/drone-Secret.yaml.j2 @@ -0,0 +1,11 @@ +apiVersion: v1 +kind: Secret +metadata: + name: drone + namespace: drone +type: Opaque +stringData: + DRONE_RPC_SECRET: {{ drone_rpc_secret }} + DRONE_DATABASE_SECRET: {{ drone_secret }} + DRONE_GITEA_CLIENT_ID: {{ drone_gitea_client_id }} + DRONE_GITEA_CLIENT_SECRET: {{ drone_gitea_client_secret }}