A bunch more stuff.
Showing
17 changed files
with
358 additions
and
0 deletions
elasticsearch-operator/helmfile.yaml
0 → 100644
elasticsearch-operator/kustomization.yaml
0 → 100644
logging/charts/config/elastic-password.txt
0 → 100644
1 | Jivubs0Blabim) | ||
... | \ No newline at end of file | ... | \ No newline at end of file |
logging/charts/config/kustomization.yaml
0 → 100644
logging/charts/eck/eck-cluster.yaml
0 → 100644
1 | apiVersion: elasticsearch.k8s.elastic.co/v1 | ||
2 | kind: Elasticsearch | ||
3 | metadata: | ||
4 | name: fluentd | ||
5 | spec: | ||
6 | version: 8.2.3 | ||
7 | nodeSets: | ||
8 | - name: default | ||
9 | count: 2 | ||
10 | config: | ||
11 | node.store.allow_mmap: false | ||
12 | --- | ||
13 | apiVersion: kibana.k8s.elastic.co/v1 | ||
14 | kind: Kibana | ||
15 | metadata: | ||
16 | name: fluentd | ||
17 | spec: | ||
18 | version: 8.2.3 | ||
19 | count: 1 | ||
20 | elasticsearchRef: | ||
21 | name: fluentd | ||
22 | |||
23 | --- |
logging/charts/eck/kustomization.yaml
0 → 100644
logging/charts/eck/virtual-service.yaml
0 → 100644
1 | apiVersion: networking.istio.io/v1alpha3 | ||
2 | kind: VirtualService | ||
3 | metadata: | ||
4 | name: kibana | ||
5 | spec: | ||
6 | hosts: | ||
7 | - "kibana-logging.local" | ||
8 | gateways: | ||
9 | - default/cluster-local-gateway | ||
10 | http: | ||
11 | - match: | ||
12 | - uri: | ||
13 | prefix: / | ||
14 | route: | ||
15 | - destination: | ||
16 | port: | ||
17 | number: 5601 | ||
18 | host: fluentd-kb-http.logging.svc.cluster.local | ||
19 |
1 | --- | ||
2 | apiVersion: v1 | ||
3 | kind: ServiceAccount | ||
4 | metadata: | ||
5 | name: fluentd | ||
6 | namespace: kube-system | ||
7 | |||
8 | --- | ||
9 | apiVersion: rbac.authorization.k8s.io/v1 | ||
10 | kind: ClusterRole | ||
11 | metadata: | ||
12 | name: fluentd | ||
13 | rules: | ||
14 | - apiGroups: | ||
15 | - "" | ||
16 | resources: | ||
17 | - pods | ||
18 | - namespaces | ||
19 | verbs: | ||
20 | - get | ||
21 | - list | ||
22 | - watch | ||
23 | |||
24 | --- | ||
25 | kind: ClusterRoleBinding | ||
26 | apiVersion: rbac.authorization.k8s.io/v1 | ||
27 | metadata: | ||
28 | name: fluentd | ||
29 | roleRef: | ||
30 | kind: ClusterRole | ||
31 | name: fluentd | ||
32 | apiGroup: rbac.authorization.k8s.io | ||
33 | subjects: | ||
34 | - kind: ServiceAccount | ||
35 | name: fluentd | ||
36 | namespace: logging | ||
37 | --- | ||
38 | apiVersion: apps/v1 | ||
39 | kind: DaemonSet | ||
40 | metadata: | ||
41 | name: fluentd | ||
42 | namespace: logging | ||
43 | labels: | ||
44 | k8s-app: fluentd-logging | ||
45 | version: v1 | ||
46 | spec: | ||
47 | selector: | ||
48 | matchLabels: | ||
49 | k8s-app: fluentd-logging | ||
50 | version: v1 | ||
51 | template: | ||
52 | metadata: | ||
53 | labels: | ||
54 | k8s-app: fluentd-logging | ||
55 | version: v1 | ||
56 | spec: | ||
57 | serviceAccount: fluentd | ||
58 | serviceAccountName: fluentd | ||
59 | tolerations: | ||
60 | - key: node-role.kubernetes.io/master | ||
61 | value: "true" | ||
62 | effect: "NoSchedule" | ||
63 | containers: | ||
64 | - name: fluentd | ||
65 | image: fluent/fluentd-kubernetes-daemonset:v1-debian-elasticsearch | ||
66 | env: | ||
67 | - name: FLUENT_ELASTICSEARCH_HOST | ||
68 | value: "fluentd-es-http" | ||
69 | - name: FLUENT_ELASTICSEARCH_PORT | ||
70 | value: "9200" | ||
71 | - name: FLUENT_ELASTICSEARCH_SCHEME | ||
72 | value: "https" | ||
73 | # Option to configure elasticsearch plugin with self signed certs | ||
74 | # ================================================================ | ||
75 | - name: FLUENT_ELASTICSEARCH_SSL_VERIFY | ||
76 | value: "false" | ||
77 | # Option to configure elasticsearch plugin with tls | ||
78 | # ================================================================ | ||
79 | - name: FLUENT_ELASTICSEARCH_SSL_VERSION | ||
80 | value: "TLSv1_2" | ||
81 | # X-Pack Authentication | ||
82 | # ===================== | ||
83 | - name: FLUENT_ELASTICSEARCH_ENABLE_ILM | ||
84 | value: "false" | ||
85 | - name: FLUENT_ELASTICSEARCH_USER | ||
86 | value: "elastic" | ||
87 | - name: FLUENT_ELASTICSEARCH_PASSWORD | ||
88 | valueFrom: | ||
89 | secretKeyRef: | ||
90 | name: fluentd-es-elastic-user | ||
91 | key: elastic | ||
92 | - name: FLUENTD_SYSTEMD_CONF | ||
93 | value: disable | ||
94 | - name: FLUENT_CONTAINER_TAIL_EXCLUDE_PATH | ||
95 | value: /var/log/containers/fluent* | ||
96 | - name: FLUENT_CONTAINER_TAIL_PARSER_TYPE | ||
97 | value: /^(?<time>.+) (?<stream>stdout|stderr)( (?<logtag>.))? (?<log>.*)$/ | ||
98 | - name: FLUENT_ELASTICSEARCH_RELOAD_CONNECTIONS | ||
99 | value: "false" | ||
100 | - name: FLUENT_ELASTICSEARCH_INDEX_NAME | ||
101 | value: fluentd | ||
102 | |||
103 | resources: | ||
104 | limits: | ||
105 | memory: 2Gi | ||
106 | requests: | ||
107 | cpu: 200m | ||
108 | memory: 2Gi | ||
109 | volumeMounts: | ||
110 | - name: varlog | ||
111 | mountPath: /var/log | ||
112 | # When actual pod logs in /var/lib/docker/containers, the following lines should be used. | ||
113 | # - name: dockercontainerlogdirectory | ||
114 | # mountPath: /var/lib/docker/containers | ||
115 | # readOnly: true | ||
116 | # When actual pod logs in /var/log/pods, the following lines should be used. | ||
117 | - name: dockercontainerlogdirectory | ||
118 | mountPath: /var/log/pods | ||
119 | readOnly: true | ||
120 | terminationGracePeriodSeconds: 30 | ||
121 | volumes: | ||
122 | - name: varlog | ||
123 | hostPath: | ||
124 | path: /var/log | ||
125 | # When actual pod logs in /var/lib/docker/containers, the following lines should be used. | ||
126 | # - name: dockercontainerlogdirectory | ||
127 | # hostPath: | ||
128 | # path: /var/lib/docker/containers | ||
129 | # When actual pod logs in /var/log/pods, the following lines should be used. | ||
130 | - name: dockercontainerlogdirectory | ||
131 | hostPath: | ||
132 | path: /var/log/pods |
logging/charts/fluentd/kustomization.yaml
0 → 100644
logging/helmfile.yaml
0 → 100644
1 | environments: | ||
2 | default: | ||
3 | values: | ||
4 | - namespace: logging | ||
5 | namePrefix: "" | ||
6 | kibana: | ||
7 | oauth: | ||
8 | enabled: false | ||
9 | authUrl: "" | ||
10 | tokenUrl: "" | ||
11 | userinfoUrl: "" | ||
12 | clientId: "" | ||
13 | clientSecret: "" | ||
14 | virtualService: | ||
15 | enabled: true | ||
16 | jsonPatches: [] | ||
17 | strategicMergePatches: [] | ||
18 | gateways: | ||
19 | - default/cluster-local-gateway | ||
20 | vhost: kibana-logging.local | ||
21 | |||
22 | repositories: | ||
23 | |||
24 | --- | ||
25 | |||
26 | releases: | ||
27 | - name: fluentd-eck | ||
28 | chart: ./charts/eck | ||
29 | namespace: {{ .Values.namespace }} | ||
30 | values: | ||
31 | - set-common-values.yaml.gotmpl | ||
32 | jsonPatches: | ||
33 | {{- if .Values.kibana.virtualService.enabled }} | ||
34 | - target: | ||
35 | kind: VirtualService | ||
36 | name: {{ .Values.namePrefix }}kibana | ||
37 | namespace: {{ .Values.namespace }} | ||
38 | version: v1beta3 | ||
39 | group: networking.istio.io | ||
40 | patch: | ||
41 | - op: replace | ||
42 | path: /spec/http/0/route/0/destination/host | ||
43 | value: {{ .Values.namePrefix }}kibana | ||
44 | {{- end }} | ||
45 | {{- if not (empty (.Values.kibana.virtualService.jsonPatches)) }} | ||
46 | {{- .Values.kibana.virtualService.jsonPatches | toYaml | indent 6 }} | ||
47 | {{- end }} | ||
48 | strategicMergePatches: | ||
49 | - apiVersion: networking.istio.io/v1alpha3 | ||
50 | kind: VirtualService | ||
51 | metadata: | ||
52 | name: {{ .Values.namePrefix }}kibana | ||
53 | namespace: {{ .Values.namespace }} | ||
54 | {{- if .Values.kibana.virtualService.enabled }} | ||
55 | spec: | ||
56 | hosts: | ||
57 | - {{ .Values.kibana.virtualService.vhost }} | ||
58 | gateways: | ||
59 | {{- range $gateway_index, $gateway := .Values.kibana.virtualService.gateways }} | ||
60 | - {{ $gateway | quote }} | ||
61 | {{- end }} | ||
62 | {{- else }} | ||
63 | $patch: delete | ||
64 | {{- end }} | ||
65 | |||
66 | - name: fluentd | ||
67 | chart: ./charts/fluentd | ||
68 | namespace: {{ .Values.namespace }} | ||
69 | values: | ||
70 | - set-common-values.yaml.gotmpl | ||
71 |
logging/set-common-values.yaml.gotmpl
0 → 100644
solr-operator/helmfile.yaml
0 → 100644
1 | environments: | ||
2 | default: | ||
3 | values: | ||
4 | - namespace: kube-system | ||
5 | namePrefix: "" | ||
6 | zookeeper: | ||
7 | operator: | ||
8 | install: false | ||
9 | use: true | ||
10 | |||
11 | repositories: | ||
12 | - name: apache-solr | ||
13 | url: https://solr.apache.org/charts | ||
14 | |||
15 | --- | ||
16 | |||
17 | releases: | ||
18 | - name: solr-operator | ||
19 | chart: apache-solr/solr-operator | ||
20 | namespace: {{ .Values.namespace }} | ||
21 | version: 0.5.1 | ||
22 | values: | ||
23 | - set-common-values.yaml.gotmpl | ||
24 | - zookeeper-operator: | ||
25 | install: {{ .Values.zookeeper.operator.install }} | ||
26 | use: {{ .Values.zookeeper.operator.use }} |
solr-operator/set-common-values.yaml.gotmpl
0 → 100644
zookeeper-operator/helmfile.yaml
0 → 100644
1 | environments: | ||
2 | default: | ||
3 | values: | ||
4 | - namespace: kube-system | ||
5 | namePrefix: "" | ||
6 | |||
7 | repositories: | ||
8 | - name: pravega | ||
9 | url: https://charts.pravega.io | ||
10 | |||
11 | --- | ||
12 | |||
13 | releases: | ||
14 | - name: zookeeper-operator | ||
15 | chart: pravega/zookeeper-operator | ||
16 | namespace: {{ .Values.namespace }} | ||
17 | version: 0.2.14 | ||
18 | values: | ||
19 | - set-common-values.yaml.gotmpl | ||
20 |
-
Please register or sign in to post a comment