start with homemmade certbot

This commit is contained in:
Nico Schottelius 2021-06-10 18:00:19 +02:00
parent 681950e973
commit 4edce98293
1 changed files with 82 additions and 0 deletions

View File

@ -0,0 +1,82 @@
---
apiVersion: v1
kind: PersistentVolumeClaim
metadata:
name: nginx-certs
spec:
accessModes:
- ReadWriteMany
resources:
requests:
storage: 20Mi
storageClassName: rook-cephfs
---
apiVersion: v1
kind: PersistentVolumeClaim
metadata:
name: nginx-webroot
spec:
accessModes:
- ReadWriteMany
resources:
requests:
storage: 20Mi
storageClassName: rook-cephfs
---
apiVersion: v1
kind: Pod
metadata:
name: busybox-storage-helper
spec:
containers:
- name: busybox
image: busybox
args:
- sleep
- "1000000"
volumeMounts:
- mountPath: "/etc/letsencrypt"
name: letsencryptdir
- mountPath: "/www"
name: webroot
volumes:
- name: letsencryptdir
persistentVolumeClaim:
claimName: nginx-certs
- name: webroot
persistentVolumeClaim:
claimName: nginx-webroot
---
apiVersion: v1
kind: Pod
metadata:
name: nginx-port-80
labels:
app: nginx-port-80
spec:
containers:
- name: nginx
image: nginx:1.21-alpine
volumeMounts:
- mountPath: "/etc/letsencrypt"
name: letsencryptdir
- mountPath: "/usr/share/nginx/html"
name: webroot
volumes:
- name: letsencryptdir
persistentVolumeClaim:
claimName: nginx-certs
- name: webroot
persistentVolumeClaim:
claimName: nginx-webroot
---
apiVersion: v1
kind: Service
metadata:
name: svc1
spec:
type: ClusterIP
ports:
- port: 80
selector:
app: nginx-port-80