2 # Copyright © 2019 Orange
4 # Licensed under the Apache License, Version 2.0 (the "License");
5 # you may not use this file except in compliance with the License.
6 # You may obtain a copy of the License at
8 # http://www.apache.org/licenses/LICENSE-2.0
10 # Unless required by applicable law or agreed to in writing, software
11 # distributed under the License is distributed on an "AS IS" BASIS,
12 # WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
13 # See the License for the specific language governing permissions and
14 # limitations under the License.
18 UID of mariadb root password
20 {{- define "common.mariadb.secret.rootPassUID" -}}
21 {{- printf "db-root-password" }}
25 Name of mariadb secret
27 {{- define "common.mariadb.secret._secretName" -}}
28 {{- $global := .dot }}
29 {{- $chartName := tpl .chartName $global -}}
30 {{- include "common.secret.genName" (dict "global" $global "uid" (include .uidTemplate $global) "chartName" $chartName) }}
34 Name of mariadb root password secret
36 {{- define "common.mariadb.secret.rootPassSecretName" -}}
37 {{- include "common.mariadb.secret._secretName" (set . "uidTemplate" "common.mariadb.secret.rootPassUID") }}
41 UID of mariadb user credentials
43 {{- define "common.mariadb.secret.userCredentialsUID" -}}
44 {{- printf "db-user-credentials" }}
48 UID of mariadb backup credentials
50 {{- define "common.mariadb.secret.backupCredentialsUID" -}}
51 {{- printf "db-backup-credentials" }}
55 Name of mariadb user credentials secret
57 {{- define "common.mariadb.secret.userCredentialsSecretName" -}}
58 {{- include "common.mariadb.secret._secretName" (set . "uidTemplate" "common.mariadb.secret.userCredentialsUID") }}
62 Choose the name of the mariadb app label to use.
64 {{- define "common.mariadbAppName" -}}
65 {{- if .Values.global.mariadbGalera.localCluster -}}
66 {{- index .Values "mariadb-galera" "nameOverride" -}}
68 {{- .Values.global.mariadbGalera.nameOverride -}}
73 Choose the name of the mariadb service to use.
75 {{- define "common.mariadbService" -}}
76 {{- if .Values.global.mariadbGalera.localCluster -}}
77 {{- if and .Values.global.mariadbGalera.useOperator (index .Values "mariadb-galera" "mariadbOperator" "galera" "enabled") }}
78 {{- printf "%s-primary" (index .Values "mariadb-galera" "nameOverride") -}}
80 {{- index .Values "mariadb-galera" "nameOverride" -}}
83 {{- .Values.global.mariadbGalera.service -}}
88 Choose the value of mariadb port to use.
90 {{- define "common.mariadbPort" -}}
91 {{- if .Values.global.mariadbGalera.localCluster -}}
92 {{- index .Values "mariadb-galera" "service" "internalPort" -}}
94 {{- .Values.global.mariadbGalera.internalPort -}}
99 Choose the value of secret to retrieve user value.
101 {{- define "common.mariadbSecret" -}}
102 {{- if .Values.global.mariadbGalera.localCluster -}}
103 {{ printf "%s-%s-db-user-credentials" (include "common.fullname" .) (index .Values "mariadb-galera" "nameOverride") -}}
105 {{ printf "%s-%s-%s" ( include "common.release" .) (index .Values "mariadb-init" "nameOverride") (index .Values "mariadb-init" "config" "mysqlDatabase" ) -}}
110 Choose the value of secret param to retrieve user value.
112 {{- define "common.mariadbSecretParam" -}}
113 {{ printf "password" -}}
117 Create MariaDB Database via mariadb-operator
119 {{- define "common.mariadbOpDatabase" -}}
120 {{- $dot := default . .dot -}}
121 {{- $dbname := (required "'dbame' param, is required." .dbname) -}}
122 {{- $dbinst := (required "'dbinst' param, is required." .dbinst) -}}
124 apiVersion: k8s.mariadb.com/v1alpha1
127 name: {{ $dbinst }}-{{ $dbname }}
133 collate: utf8_general_ci
138 Create MariaDB User via mariadb-operator
140 {{- define "common.mariadbOpUser" -}}
141 {{- $dot := default . .dot -}}
142 {{- $dbuser := (required "'dbuser' param, is required." .dbuser) -}}
143 {{- $dbinst := (required "'dbinst' param, is required." .dbinst) -}}
144 {{- $dbsecret := (required "'dbsecret' param, is required." .dbsecret) -}}
146 apiVersion: k8s.mariadb.com/v1alpha1
149 name: {{ $dbinst }}-{{ $dbuser }}
155 passwordSecretKeyRef:
156 name: {{ $dbsecret }}
158 # This field is immutable and defaults to 10
159 maxUserConnections: 100
164 Grant rights to a MariaDB User via mariadb-operator
166 {{- define "common.mariadbOpGrants" -}}
167 {{- $dot := default . .dot -}}
168 {{- $dbuser := (required "'dbuser' param, is required." .dbuser) -}}
169 {{- $dbname := (required "'dbame' param, is required." .dbname) -}}
170 {{- $dbinst := (required "'dbinst' param, is required." .dbinst) -}}
172 apiVersion: k8s.mariadb.com/v1alpha1
175 name: {{ $dbuser }}-{{ $dbname }}-{{ $dbinst }}
182 database: {{ $dbname }}
184 username: {{ $dbuser }}
190 MariaDB Backup via mariadb-operator
192 {{- define "common.mariadbOpBackup" -}}
193 {{- $dot := default . .dot -}}
194 {{- $dbinst := include "common.name" $dot -}}
195 {{- $name := default $dbinst $dot.Values.backup.nameOverride -}}
197 apiVersion: k8s.mariadb.com/v1alpha1
204 sidecar.istio.io/inject: 'false'
211 cron: {{ $dot.Values.backup.cron }}
213 maxRetention: {{ $dot.Values.backup.maxRetention }}
215 {{- if eq $dot.Values.backup.storageType "PVC" }}
216 persistentVolumeClaim:
219 storage: {{ $dot.Values.backup.persistence.size }}
220 {{- if $dot.Values.mariadbOperator.storageClassName }}
221 storageClassName: {{ $dot.Values.mariadbOperator.storageClassName }}
224 - {{ $dot.Values.backup.persistence.accessMode }}
226 {{- if eq $dot.Values.backup.storageType "S3" }}
227 s3: {{- include "common.tplValue" ( dict "value" .Values.backup.s3 "context" $) | nindent 6 }}
229 {{- if eq $dot.Values.backup.storageType "volume" }}
230 volume: {{- include "common.tplValue" ( dict "value" .Values.backup.volume "context" $) | nindent 6 }}
242 Create a MariaDB instance via mariadb-operator
244 {{- define "common.mariadbOpInstance" -}}
245 {{- $dot := default . .dot -}}
246 {{- $global := $dot.Values.global -}}
247 {{- $dbinst := include "common.name" $dot -}}
248 {{- $dbrootsecret := tpl (default (include "common.mariadb.secret.rootPassSecretName" (dict "dot" $dot "chartName" "")) $dot.Values.rootUser.externalSecret) $dot -}}
249 {{- $dbusersecret := tpl (default (include "common.mariadb.secret.userCredentialsSecretName" (dict "dot" $dot "chartName" "")) $dot.Values.db.externalSecret) $dot -}}
251 apiVersion: k8s.mariadb.com/v1alpha1
261 {{ if .Values.podAnnotations -}}
262 annotations: {{ toYaml .Values.podAnnotations | nindent 6 }}
265 # temporarily test mariaDB without sidecar (fix initial Job, Backup and Metrics)
266 # will be obsolete with "native-sidecars" feature in K8S and Istio
267 sidecar.istio.io/inject: "false"
269 version: {{ .Values.mariadbOperator.appVersion }}
270 rootPasswordSecretKeyRef:
271 name: {{ $dbrootsecret }}
273 image: {{ include "repositoryGenerator.dockerHubRepository" . }}/{{ .Values.mariadbOperator.image }}:{{ $dot.Values.mariadbOperator.appVersion }}
274 imagePullPolicy: IfNotPresent
275 {{- include "common.imagePullSecrets" . | nindent 2 }}
277 replicas: {{ $dot.Values.replicaCount }}
278 {{- if $dot.Values.mariadbOperator.galera.enabled }}
284 image: {{ include "repositoryGenerator.githubContainerRegistry" . }}/{{ .Values.mariadbOperator.galera.agentImage }}:{{ $dot.Values.mariadbOperator.galera.agentVersion }}
285 imagePullPolicy: IfNotPresent
289 authDelegatorRoleName: {{ $dbinst }}-auth
290 gracefulShutdownTimeout: 5s
292 automaticFailover: true
296 clusterHealthyTimeout: 30s
297 clusterBootstrapTimeout: 10m0s
299 podRecoveryTimeout: 3m0s
302 image: {{ include "repositoryGenerator.githubContainerRegistry" . }}/{{ $dot.Values.mariadbOperator.galera.initImage }}:{{ $dot.Values.mariadbOperator.galera.initVersion }}
303 imagePullPolicy: IfNotPresent
305 reuseStorageVolume: false
307 {{- if .Values.mariadbOperator.persistence.storageClassName }}
308 storageClassName: {{ .Values.mariadbOperator.persistence.storageClassName }}
321 - mariadb -u root -p"${MARIADB_ROOT_PASSWORD}" -e "SELECT 1;"
322 initialDelaySeconds: 20
330 - mariadb -u root -p"${MARIADB_ROOT_PASSWORD}" -e "SELECT 1;"
331 initialDelaySeconds: 20
334 {{- if default false $dot.Values.global.metrics.enabled }}
340 requiredDuringSchedulingIgnoredDuringExecution:
341 - topologyKey: kubernetes.io/hostname
343 - key: k8s.mariadb.com/ha
351 myCnfConfigMapKeyRef:
353 name: {{ printf "%s-configuration" (include "common.fullname" $dot) }}
354 resources: {{ include "common.resources" . | nindent 4 }}
356 {{- if $dot.Values.mariadbOperator.persistence.storageClassName }}
357 storageClassName: {{ $dot.Values.mariadbOperator.persistence.storageClassName }}
359 size: {{ $dot.Values.mariadbOperator.persistence.size | quote }}
360 {{- if $dot.Values.db.user }}
361 {{ include "common.mariadbOpUser" (dict "dot" . "dbuser" $dot.Values.db.user "dbinst" $dbinst "dbsecret" $dbusersecret) }}
363 {{- if $dot.Values.db.name }}
364 {{ include "common.mariadbOpDatabase" (dict "dot" . "dbname" $dot.Values.db.name "dbinst" $dbinst) }}
366 {{- if and $dot.Values.db.user $dot.Values.db.name }}
367 {{ include "common.mariadbOpGrants" (dict "dot" . "dbuser" $dot.Values.db.user "dbname" $dot.Values.db.name "dbinst" $dbinst) }}