2 # Copyright © 2018 Amdocs, AT&T, Bell Canada
3 # Copyright © 2020 Samsung Electronics
5 # # Licensed under the Apache License, Version 2.0 (the "License");
6 # # you may not use this file except in compliance with the License.
7 # # You may obtain a copy of the License at
9 # # http://www.apache.org/licenses/LICENSE-2.0
11 # # Unless required by applicable law or agreed to in writing, software
12 # # distributed under the License is distributed on an "AS IS" BASIS,
13 # # WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
14 # # See the License for the specific language governing permissions and
15 # # limitations under the License.
18 {{- define "common.postgres.deployment" -}}
20 {{- $pgMode := .pgMode }}
21 apiVersion: apps/v1beta1
24 name: {{ include "common.fullname" $dot }}-{{ $pgMode }}
25 namespace: {{ include "common.namespace" $dot }}
27 app: {{ include "common.name" $dot }}-{{ $pgMode }}
28 chart: {{ $dot.Chart.Name }}-{{ $dot.Chart.Version | replace "+" "_" }}
29 release: {{ include "common.release" $dot }}
30 heritage: {{ $dot.Release.Service }}
31 name: "{{ index $dot.Values "container" "name" $pgMode }}"
33 serviceName: {{ $dot.Values.service.name }}
38 app: {{ include "common.name" $dot }}-{{ $pgMode }}
39 release: {{ include "common.release" $dot }}
40 name: "{{ index $dot.Values "container" "name" $pgMode }}"
48 function prepare_password {
49 echo -n $1 | sed -e "s/'/''/g"
51 export PG_PRIMARY_PASSWORD=`prepare_password $PG_PRIMARY_PASSWORD_INPUT`;
52 export PG_PASSWORD=`prepare_password $PG_PASSWORD_INPUT`;
53 export PG_ROOT_PASSWORD=`prepare_password $PG_ROOT_PASSWORD_INPUT`;
54 cd /config-input && for PFILE in `ls -1 .`; do envsubst <${PFILE} >/config/${PFILE}; done
56 - name: PG_PRIMARY_USER
58 - name: PG_PRIMARY_PASSWORD_INPUT
59 {{- include "common.secret.envFromSecretFast" (dict "global" $dot "uid" (include "common.postgres.secret.primaryPasswordUID" .) "key" "password") | indent 10 }}
61 {{- include "common.secret.envFromSecretFast" (dict "global" $dot "uid" (include "common.postgres.secret.userCredentialsUID" .) "key" "login") | indent 10 }}
62 - name: PG_PASSWORD_INPUT
63 {{- include "common.secret.envFromSecretFast" (dict "global" $dot "uid" (include "common.postgres.secret.userCredentialsUID" .) "key" "password") | indent 10 }}
65 value: "{{ $dot.Values.config.pgDatabase }}"
66 - name: PG_ROOT_PASSWORD_INPUT
67 {{- include "common.secret.envFromSecretFast" (dict "global" $dot "uid" (include "common.postgres.secret.rootPassUID" .) "key" "password") | indent 10 }}
69 - mountPath: /config-input/setup.sql
74 image: "{{ $dot.Values.global.envsubstImage }}"
75 imagePullPolicy: {{ $dot.Values.global.pullPolicy | default $dot.Values.pullPolicy }}
76 name: {{ include "common.name" $dot }}-update-config
83 chown 26:26 /podroot/;
85 image: {{ $dot.Values.global.busyboxRepository | default $dot.Values.busyboxRepository }}/{{ $dot.Values.busyboxImage }}
86 imagePullPolicy: {{ $dot.Values.global.pullPolicy | default $dot.Values.pullPolicy }}
88 - name: {{ include "common.fullname" $dot }}-data
91 - name: {{ include "common.name" $dot }}
92 image: "{{ $dot.Values.postgresRepository }}/{{ $dot.Values.image }}"
93 imagePullPolicy: {{ $dot.Values.global.pullPolicy | default $dot.Values.pullPolicy }}
95 - containerPort: {{ $dot.Values.service.internalPort }}
96 name: {{ $dot.Values.service.portName }}
97 # disable liveness probe when breakpoints set in debugger
98 # so K8s doesn't restart unresponsive container
99 {{- if eq $dot.Values.liveness.enabled true }}
102 port: {{ $dot.Values.service.internalPort }}
103 initialDelaySeconds: {{ $dot.Values.liveness.initialDelaySeconds }}
104 periodSeconds: {{ $dot.Values.liveness.periodSeconds }}
105 timeoutSeconds: {{ $dot.Values.liveness.timeoutSeconds }}
109 port: {{ $dot.Values.service.internalPort }}
110 initialDelaySeconds: {{ $dot.Values.readiness.initialDelaySeconds }}
111 periodSeconds: {{ $dot.Values.readiness.periodSeconds }}
115 - name: PG_PRIMARY_USER
119 - name: PG_PRIMARY_HOST
120 value: "{{ $dot.Values.container.name.primary }}"
121 - name: PG_REPLICA_HOST
122 value: "{{ $dot.Values.container.name.replica }}"
123 - name: PG_PRIMARY_PORT
124 value: "{{ $dot.Values.service.internalPort }}"
125 - name: PG_PRIMARY_PASSWORD
126 {{- include "common.secret.envFromSecretFast" (dict "global" $dot "uid" (include "common.postgres.secret.primaryPasswordUID" .) "key" "password") | indent 10 }}
128 {{- include "common.secret.envFromSecretFast" (dict "global" $dot "uid" (include "common.postgres.secret.userCredentialsUID" .) "key" "login") | indent 10 }}
130 {{- include "common.secret.envFromSecretFast" (dict "global" $dot "uid" (include "common.postgres.secret.userCredentialsUID" .) "key" "password") | indent 10 }}
132 value: "{{ $dot.Values.config.pgDatabase }}"
133 - name: PG_ROOT_PASSWORD
134 {{- include "common.secret.envFromSecretFast" (dict "global" $dot "uid" (include "common.postgres.secret.rootPassUID" .) "key" "password") | indent 10 }}
137 mountPath: /pgconf/pool_hba.conf
138 subPath: pool_hba.conf
140 mountPath: /pgconf/setup.sql
143 name: {{ include "common.fullname" $dot }}-data
145 name: {{ include "common.fullname" $dot }}-backup
148 {{ include "common.resources" $dot | indent 12 }}
149 {{- if $dot.Values.nodeSelector }}
151 {{ toYaml $dot.Values.nodeSelector | indent 10 }}
153 {{- if $dot.Values.affinity }}
155 {{ toYaml $dot.Values.affinity | indent 10 }}
161 - name: {{ include "common.fullname" $dot }}-backup
163 - name: {{ include "common.fullname" $dot }}-data
164 {{- if $dot.Values.persistence.enabled }}
165 persistentVolumeClaim:
166 claimName: {{ include "common.fullname" $dot }}-{{ $pgMode }}
172 name: {{ include "common.fullname" $dot }}