155 lines
3.2 KiB
YAML
155 lines
3.2 KiB
YAML
---
|
|
apiVersion: v1
|
|
kind: Namespace
|
|
metadata:
|
|
name: demo
|
|
---
|
|
apiVersion: v1
|
|
kind: Secret
|
|
metadata:
|
|
namespace: demo
|
|
name: demo-chap-secret
|
|
type: "kubernetes.io/iscsi-chap"
|
|
data:
|
|
discovery.sendtargets.auth.username: ZGVtbw==
|
|
discovery.sendtargets.auth.password: VHJtK1lZaXZvMUNZSGszcGFGVWMrcTdCMmdJPQo=
|
|
node.session.auth.username: ZGVtbw==
|
|
node.session.auth.password: VHJtK1lZaXZvMUNZSGszcGFGVWMrcTdCMmdJPQo=
|
|
---
|
|
apiVersion: v1
|
|
kind: PersistentVolume
|
|
metadata:
|
|
name: demo-pv
|
|
namespace: demo
|
|
spec:
|
|
storageClassName: manual
|
|
capacity:
|
|
storage: 50Mi
|
|
accessModes:
|
|
- ReadWriteOnce
|
|
iscsi:
|
|
targetPortal: 192.168.1.159
|
|
iqn: iqn.2020-08.raid5:demo
|
|
lun: 1
|
|
fsType: ext4
|
|
readOnly: false
|
|
chapAuthDiscovery: true
|
|
chapAuthSession: true
|
|
secretRef:
|
|
name: demo-chap-secret
|
|
---
|
|
apiVersion: v1
|
|
kind: PersistentVolumeClaim
|
|
metadata:
|
|
name: demo-pvc
|
|
namespace: demo
|
|
spec:
|
|
storageClassName: manual
|
|
accessModes:
|
|
- ReadWriteOnce
|
|
resources:
|
|
requests:
|
|
storage: 50Mi
|
|
---
|
|
apiVersion: v1
|
|
kind: ServiceAccount
|
|
metadata:
|
|
name: backupsession-creator
|
|
namespace: demo
|
|
labels:
|
|
app: backupsession-creator
|
|
---
|
|
apiVersion: rbac.authorization.k8s.io/v1beta1
|
|
kind: ClusterRole
|
|
metadata:
|
|
name: backup-listener
|
|
labels:
|
|
app: backup-listener
|
|
rules:
|
|
- apiGroups: ["formol.desmojim.fr"]
|
|
resources: ["backupsessions", "backupconfigurations"]
|
|
verbs: ["get", "list", "watch"]
|
|
- apiGroups: ["formol.desmojim.fr"]
|
|
resources: ["backupsessions/status"]
|
|
verbs: ["update"]
|
|
---
|
|
apiVersion: rbac.authorization.k8s.io/v1beta1
|
|
kind: Role
|
|
metadata:
|
|
name: backupsession-creator
|
|
namespace: demo
|
|
labels:
|
|
app: backupsession-creator
|
|
rules:
|
|
- apiGroups: ["formol.desmojim.fr"]
|
|
resources: ["backupsessions"]
|
|
verbs: ["get", "list", "create", "delete"]
|
|
- apiGroups: ["formol.desmojim.fr"]
|
|
resources: ["backupconfigurations"]
|
|
verbs: ["get", "list", "watch"]
|
|
---
|
|
apiVersion: rbac.authorization.k8s.io/v1beta1
|
|
kind: RoleBinding
|
|
metadata:
|
|
name: backupsession-creator
|
|
namespace: demo
|
|
labels:
|
|
app: backupsession-creator
|
|
roleRef:
|
|
apiGroup: rbac.authorization.k8s.io
|
|
kind: Role
|
|
name: backupsession-creator
|
|
subjects:
|
|
- name: backupsession-creator
|
|
kind: ServiceAccount
|
|
---
|
|
apiVersion: rbac.authorization.k8s.io/v1beta1
|
|
kind: ClusterRoleBinding
|
|
metadata:
|
|
name: backup-listener
|
|
labels:
|
|
app: backup-listener
|
|
roleRef:
|
|
apiGroup: rbac.authorization.k8s.io
|
|
kind: ClusterRole
|
|
name: backup-listener
|
|
subjects:
|
|
- name: default
|
|
namespace: demo
|
|
kind: ServiceAccount
|
|
---
|
|
apiVersion: rbac.authorization.k8s.io/v1beta1
|
|
kind: RoleBinding
|
|
metadata:
|
|
name: demo-viewer
|
|
namespace: demo
|
|
roleRef:
|
|
apiGroup: rbac.authorization.k8s.io
|
|
kind: ClusterRole
|
|
name: view
|
|
subjects:
|
|
- name: default
|
|
kind: ServiceAccount
|
|
---
|
|
apiVersion: v1
|
|
kind: Secret
|
|
metadata:
|
|
name: secret-minio
|
|
namespace: demo
|
|
data:
|
|
RESTIC_PASSWORD: bHIyOXhtOTU=
|
|
AWS_ACCESS_KEY_ID: OWFTSXZBSEVzWlNVMmkyTU9zVGxWSk1lL1NjPQ==
|
|
AWS_SECRET_ACCESS_KEY: WVN5ck9ncVllcjBWNFNLdlVOcmx2OGhjTllhZGZuN2xaNjBIaXRlL3djWT0=
|
|
---
|
|
apiVersion: formol.desmojim.fr/v1alpha1
|
|
kind: Repo
|
|
metadata:
|
|
name: repo-minio
|
|
namespace: demo
|
|
spec:
|
|
backend:
|
|
s3:
|
|
server: raid5.desmojim.fr:9000
|
|
bucket: testbucket2
|
|
repositorySecrets: secret-minio
|