moved secrets.yaml

TO-DO: deployment.yaml and dockerfile adaptations

manifests/deployment.yaml

@@ -17,61 +17,36 @@ spec:
         app: clawdbox
     spec:
       containers:
-      - name: clawdbox
+        - name: clawdbox
-        image: image-registry.openshift-image-registry.svc:5000/park/clawdbox:latest
+          image: image-registry.openshift-image-registry.svc:5000/clawdbox/clawdbox:latest
-        imagePullPolicy: Always
+          imagePullPolicy: Always
-        ports:
+          ports:
-        - containerPort: 2222
+            - containerPort: 2222
-          name: ssh
+              name: ssh
-        volumeMounts:
+          volumeMounts:
-        - mountPath: /data
+            - mountPath: /data
-          name: data-volume
+              name: data-volume
-        - mountPath: /home/claw/.ssh
+            - mountPath: /home/claw/.ssh
-          name: ssh-keys
+              name: ssh-keys
-        resources:
+          resources:
-          limits:
+            limits:
-            memory: "2Gi"
+              memory: "2Gi"
-            cpu: "1000m"
+              cpu: "1000m"
-          requests:
+            requests:
-            memory: "512Mi"
+              memory: "512Mi"
-            cpu: "250m"
+              cpu: "250m"
-        securityContext:
+          securityContext:
-          allowPrivilegeEscalation: false
+            allowPrivilegeEscalation: false
-          capabilities:
+            capabilities:
-            drop: ["ALL"]
+              drop: ["ALL"]
-          runAsNonRoot: true
+            runAsNonRoot: true
-          seccompProfile:
+            seccompProfile:
-            type: RuntimeDefault
+              type: RuntimeDefault
       volumes:
-      - name: data-volume
+        - name: data-volume
-        persistentVolumeClaim:
+          persistentVolumeClaim:
-          claimName: clawdbox-pvc
+            claimName: clawdbox-pvc
-      - name: ssh-keys
+        - name: ssh-keys
-        secret:
+          secret:
-          secretName: clawdbox-ssh-keys
+            secretName: clawdbox-ssh-keys
-          defaultMode: 0600
+            defaultMode: 0600
----
-apiVersion: v1
-kind: Service
-metadata:
-  name: clawdbox
-  labels:
-    app: clawdbox
-spec:
-  ports:
-  - port: 2222
-    targetPort: 2222
-    name: ssh
-  selector:
-    app: clawdbox
----
-apiVersion: v1
-kind: PersistentVolumeClaim
-metadata:
-  name: clawdbox-pvc
-spec:
-  accessModes:
-    - ReadWriteOnce
-  resources:
-    requests:
-      storage: 10Gi

manifests/namespace.yaml

@@ -0,0 +1,7 @@
+apiVersion: v1
+kind: Namespace
+metadata:
+  name: clawdbox
+  labels:
+    app.kubernetes.io/name: clawdbox
+    app.kubernetes.io/part-of: clawdbox

manifests/pvc.yaml

@@ -0,0 +1,11 @@
+apiVersion: v1
+kind: PersistentVolumeClaim
+metadata:
+  name: clawdbox-pvc
+  namespace: clawdbox
+spec:
+  accessModes:
+    - ReadWriteOnce
+  resources:
+    requests:
+      storage: 10Gi

manifests/secret.yaml

@@ -0,0 +1,8 @@
+apiVersion: v1
+data:
+  authorized_keys: c3NoLWVkMjU1MTkgQUFBQUMzTnphQzFsWkRJMU5URTVBQUFBSU1GVTQySlNuUTFwaW81eGFFSWd0SDNMaEd6dy9yTjNLY2FHRUhheFNOUG8gY29uYW5ATWluaU1lLmxvY2FsCg==
+kind: Secret
+metadata:
+  name: clawdbox-ssh-keys
+  namespace: clawdbox
+type: Opaque

manifests/service.yaml

@@ -0,0 +1,14 @@
+apiVersion: v1
+kind: Service
+metadata:
+  name: clawdbox
+  namespace: clawdbox
+  labels:
+    app: clawdbox
+spec:
+  ports:
+    - port: 2222
+      targetPort: 2222
+      name: ssh
+  selector:
+    app: clawdbox