server-manager/kubernetes-operator
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

added config path to file
Some checks failed
Build and Push Docker Image / Build image (push) Has been cancelled
Details

Browse Source
This commit is contained in:
ACoolName 2025-04-05 17:15:00 +03:00
parent f83de32368
commit 39f1c0d92c
8 changed files with 170 additions and 113 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

7
cmd/main.go
View File

@ -146,8 +146,13 @@ func main() {
setupLog.Error(err, "unable to start manager") setupLog.Error(err, "unable to start manager")
os.Exit(1) os.Exit(1)
} }
configPath := os.Getenv("CONFIG_PATH")
if configPath == "" {
configPath = "config.yaml"
}
config := &controller.ServerManagerReconcilerConfig{} config := &controller.ServerManagerReconcilerConfig{}
configData, err := os.ReadFile("config.yaml") configData, err := os.ReadFile(configPath)
if err != nil { if err != nil {
setupLog.Error(err, "unable to read config file") setupLog.Error(err, "unable to read config file")
} }

31
config/manager/config.yaml Normal file
View File

@ -0,0 +1,31 @@
# https://kubernetes.io/docs/concepts/configuration/configmap/
apiVersion: v1
kind: ConfigMap
metadata:
name: server-manager-config
namespace: server-manager
data:
config.yaml: |
domain_label: "ddns.acooldomain.co/hostname"
default_domain: "acooldomain.co"
browser:
domain: games.acooldomain.co
sub_path: /browsers
auth_header: x-authentik-username
cert_resolver: letsencrypt
entrypoints:
- websecure
additional_routes:
- kind: Rule
match: "Host(`games.acooldomain.co`) && PathPrefix(`/outpost.goauthentik.io/`)"
priority: 15
services:
- kind: Service
name: ak-outpost-traefik
namespace: authentik
port: 9000
middleware:
name: authentik
namespace: authentik

1
config/manager/kustomization.yaml
View File

@ -1,2 +1,3 @@
resources: resources:
- config.yaml
- manager.yaml - manager.yaml

26
config/manager/manager.yaml
View File

@ -5,13 +5,13 @@ metadata:
control-plane: controller-manager control-plane: controller-manager
app.kubernetes.io/name: kubernetes-operator app.kubernetes.io/name: kubernetes-operator
app.kubernetes.io/managed-by: kustomize app.kubernetes.io/managed-by: kustomize
name: system name: server-manager
--- ---
apiVersion: apps/v1 apiVersion: apps/v1
kind: Deployment kind: Deployment
metadata: metadata:
name: controller-manager name: controller-manager
namespace: system namespace: server-manager
labels: labels:
control-plane: controller-manager control-plane: controller-manager
app.kubernetes.io/name: kubernetes-operator app.kubernetes.io/name: kubernetes-operator
@ -48,6 +48,11 @@ spec:
# operator: In # operator: In
# values: # values:
# - linux # - linux
volumes:
- name: config
configMap:
name: server-manager-config
securityContext: securityContext:
runAsNonRoot: true runAsNonRoot: true
# TODO(user): For common cases that do not require escalating privileges # TODO(user): For common cases that do not require escalating privileges
@ -55,15 +60,18 @@ spec:
# More info: https://kubernetes.io/docs/concepts/security/pod-security-standards/#restricted # More info: https://kubernetes.io/docs/concepts/security/pod-security-standards/#restricted
# Please uncomment the following code if your project does NOT have to work on old Kubernetes # Please uncomment the following code if your project does NOT have to work on old Kubernetes
# versions < 1.19 or on vendors versions which do NOT support this field by default (i.e. Openshift < 4.11 ). # versions < 1.19 or on vendors versions which do NOT support this field by default (i.e. Openshift < 4.11 ).
# seccompProfile: seccompProfile:
# type: RuntimeDefault type: RuntimeDefault
containers: containers:
- command: - command:
- /manager - /manager
args: image: git.acooldomain.co/server-manager/kubernetes-operator:v0.0.3
- --leader-elect env:
- --health-probe-bind-address=:8081 - name: CONFIG_PATH
image: controller:latest value: /etc/server-manager/config.yaml
volumeMounts:
- name: config
mountPath: /etc/server-manager
name: manager name: manager
securityContext: securityContext:
allowPrivilegeEscalation: false allowPrivilegeEscalation: false
@ -91,5 +99,5 @@ spec:
requests: requests:
cpu: 10m cpu: 10m
memory: 64Mi memory: 64Mi
serviceAccountName: controller-manager serviceAccountName: server-manager
terminationGracePeriodSeconds: 10 terminationGracePeriodSeconds: 10

14
config/rbac/role.yaml
View File

@ -2,7 +2,7 @@
apiVersion: rbac.authorization.k8s.io/v1 apiVersion: rbac.authorization.k8s.io/v1
kind: ClusterRole kind: ClusterRole
metadata: metadata:
name: manager-role name: server-manager-role
rules: rules:
- resources: - resources:
- persistentvolumeclaims - persistentvolumeclaims
@ -15,6 +15,8 @@ rules:
- patch - patch
- update - update
- watch - watch
apiGroups:
- ""
- resources: - resources:
- pods - pods
verbs: verbs:
@ -23,6 +25,15 @@ rules:
- get - get
- list - list
- watch - watch
apiGroups:
- ""
- apiGroups:
- ""
resources:
- nodes
verbs:
- get
- list
- apiGroups: - apiGroups:
- server-manager.acooldomain.co - server-manager.acooldomain.co
resources: resources:
@ -30,6 +41,7 @@ rules:
verbs: verbs:
- get - get
- list - list
- watch
- apiGroups: - apiGroups:
- server-manager.acooldomain.co - server-manager.acooldomain.co
resources: resources:

8
config/rbac/role_binding.yaml
View File

@ -4,12 +4,12 @@ metadata:
labels: labels:
app.kubernetes.io/name: kubernetes-operator app.kubernetes.io/name: kubernetes-operator
app.kubernetes.io/managed-by: kustomize app.kubernetes.io/managed-by: kustomize
name: manager-rolebinding name: server-manager-rolebinding
roleRef: roleRef:
apiGroup: rbac.authorization.k8s.io apiGroup: rbac.authorization.k8s.io
kind: ClusterRole kind: ClusterRole
name: manager-role name: server-manager-role
subjects: subjects:
- kind: ServiceAccount - kind: ServiceAccount
name: controller-manager name: server-manager
namespace: system namespace: server-manager

4
config/rbac/service_account.yaml
View File

@ -4,5 +4,5 @@ metadata:
labels: labels:
app.kubernetes.io/name: kubernetes-operator app.kubernetes.io/name: kubernetes-operator
app.kubernetes.io/managed-by: kustomize app.kubernetes.io/managed-by: kustomize
name: controller-manager name: server-manager
namespace: system namespace: server-manager

2
internal/controller/servermanager_controller.go
View File

@ -301,7 +301,7 @@ func (r *ServerManagerReconciler) Reconcile(ctx context.Context, req ctrl.Reques
} }
} }
} }
if errors.IsNotFound(err) && !s.Spec.Server.On { if errors.IsNotFound(err) && !s.Spec.Browser.On {
if s.Status.Browser.Running { if s.Status.Browser.Running {
s.Status.Browser.Running = false s.Status.Browser.Running = false
statusChanged = true statusChanged = true