-
Notifications
You must be signed in to change notification settings - Fork 25
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
* refactor: galoy chart * refactor: add backups to values * refactor: cleanup and fresh values * chore: proper diff * refactor: rbac * refactor: add mongodb secrets * refactor: add checks * refactor: add mongodb envs * refactor: added firebase sa for notifications * refactor: added lnd1 and lnd2 * refactor: bitcoin, lnd, geetest, redis envs * refactor: added jwt * reactor: added apollo envs * refactor: added twilio creds * refactor: added probes and price/dealer server envs * refactor: misc renames * refactor: auto create secrets * refactor: add galoy config * fix: making secrets work (default install working) * chore: bringing back the originals for safer merge * refactor: move non-reused stuff * chore: add back custom yaml * fix: testflight values
- Loading branch information
1 parent
e077d76
commit 8c9a899
Showing
17 changed files
with
1,115 additions
and
119 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,182 @@ | ||
apiVersion: apps/v1 | ||
kind: Deployment | ||
|
||
metadata: | ||
name: {{ template "galoy.api.fullname" . }} | ||
labels: | ||
app: {{ template "galoy.api.fullname" . }} | ||
chart: "{{ .Chart.Name }}-{{ .Chart.Version }}" | ||
release: "{{ .Release.Name }}" | ||
app.kubernetes.io/managed-by: Helm | ||
|
||
kube-monkey/enabled: enabled | ||
kube-monkey/identifier: {{ template "galoy.api.fullname" . }} | ||
kube-monkey/kill-mode: fixed | ||
kube-monkey/kill-value: "1" | ||
kube-monkey/mtbf: "8" | ||
|
||
spec: | ||
|
||
replicas: {{ .Values.galoy.api.replicas }} | ||
|
||
selector: | ||
matchLabels: | ||
app: {{ template "galoy.api.fullname" . }} | ||
|
||
template: | ||
|
||
metadata: | ||
name: {{ template "galoy.api.fullname" . }} | ||
labels: | ||
app: {{ template "galoy.api.fullname" . }} | ||
kube-monkey/enabled: enabled | ||
kube-monkey/identifier: {{ template "galoy.api.fullname" . }} | ||
allow-to-lnd: "true" | ||
allow-to-bitcoind: "true" | ||
|
||
spec: | ||
serviceAccountName: {{ template "galoy.name" . }} | ||
|
||
initContainers: | ||
- name: wait-for-mongodb-migrate | ||
image: "groundnuty/k8s-wait-for:v1.5.1" | ||
args: | ||
- job-wr | ||
- {{ template "galoy.migration.jobname" . }} | ||
|
||
containers: | ||
- name: api | ||
image: "{{ .Values.galoy.images.app.repository }}@{{ .Values.galoy.images.app.digest }}" | ||
args: | ||
- "-r" | ||
- "/app/lib/services/tracing.js" | ||
- "lib/servers/graphql-main-server.js" | ||
|
||
resources: | ||
requests: | ||
cpu: 100m | ||
limits: | ||
cpu: 1000m | ||
|
||
ports: | ||
- name: http | ||
containerPort: {{ .Values.galoy.api.port }} | ||
protocol: TCP | ||
|
||
env: | ||
- name: HELMREVISION | ||
value: {{ .Release.Revision | quote}} | ||
- name: NODE_ENV | ||
value: "production" | ||
- name: LOGLEVEL | ||
value: {{ .Values.galoy.api.logLevel }} | ||
|
||
- name: NETWORK | ||
value: {{ .Values.galoy.network }} | ||
|
||
- name: JAEGER_HOST | ||
value: {{ .Values.tracing.jaegerHost | quote }} | ||
- name: TRACING_SERVICE_NAME | ||
value: {{ template "galoy.api.fullname" . }} | ||
|
||
{{/* Databases */}} | ||
{{ include "galoy.mongodb.env" . | indent 8 }} | ||
{{ include "galoy.redis.env" . | indent 8 }} | ||
|
||
{{/* Bitcoin/LND */}} | ||
{{ include "galoy.bitcoind.env" . | indent 8 }} | ||
{{ include "galoy.lnd1.env" . | indent 8 }} | ||
{{ include "galoy.lnd2.env" . | indent 8 }} | ||
|
||
{{/* API Specifics */}} | ||
{{ include "galoy.twilio.env" . | indent 8 }} | ||
|
||
- name: GEETEST_ID | ||
valueFrom: | ||
secretKeyRef: | ||
name: {{ .Values.galoy.api.geetestExistingSecret.name }} | ||
key: {{ .Values.galoy.api.geetestExistingSecret.id_key }} | ||
- name: GEETEST_KEY | ||
valueFrom: | ||
secretKeyRef: | ||
name: {{ .Values.galoy.api.geetestExistingSecret.name }} | ||
key: {{ .Values.galoy.api.geetestExistingSecret.secret_key }} | ||
|
||
- name: APOLLO_GRAPH_VARIANT | ||
value: {{ .Values.galoy.api.apollo.graphVariant | quote }} | ||
- name: APOLLO_SCHEMA_REPORTING | ||
value: {{ .Values.galoy.api.apollo.schemaReporting | quote }} | ||
- name: APOLLO_GRAPH_ID | ||
valueFrom: | ||
secretKeyRef: | ||
name: {{ .Values.galoy.api.apollo.existingSecret.name }} | ||
key: {{ .Values.galoy.api.apollo.existingSecret.id_key }} | ||
- name: APOLLO_KEY | ||
valueFrom: | ||
secretKeyRef: | ||
name: {{ .Values.galoy.api.apollo.existingSecret.name }} | ||
key: {{ .Values.galoy.api.apollo.existingSecret.key_key }} | ||
|
||
- name: JWT_SECRET | ||
valueFrom: | ||
secretKeyRef: | ||
name: {{ .Values.galoy.api.jwtSecretExistingSecret.name }} | ||
key: {{ .Values.galoy.api.jwtSecretExistingSecret.key }} | ||
|
||
- name: PRICE_HISTORY_HOST | ||
value: {{ .Values.price.host | quote }} | ||
- name: PRICE_HISTORY_PORT | ||
value: {{ .Values.price.port | quote }} | ||
|
||
- name: PRICE_SERVER_HOST | ||
value: {{ .Values.galoy.dealer.host | quote }} | ||
- name: PRICE_SERVER_PORT | ||
value: {{ .Values.galoy.dealer.port | quote }} | ||
|
||
{{ if .Values.galoy.api.firebaseNotifications.enabled }} | ||
- name: GOOGLE_APPLICATION_CREDENTIALS | ||
value: "/tmp/firebase-notifications-service-account/service-account.json" | ||
{{ end }} | ||
|
||
{{ if .Values.galoy.api.probes.enabled }} | ||
livenessProbe: | ||
httpGet: | ||
path: /healthz | ||
port: {{ .Values.galoy.api.port }} | ||
initialDelaySeconds: {{ .Values.galoy.api.probes.liveness.initialDelaySeconds }} | ||
periodSeconds: {{ .Values.galoy.api.probes.liveness.periodSeconds }} | ||
failureThreshold: {{ .Values.galoy.api.probes.liveness.failureThreshold }} | ||
timeoutSeconds: {{ .Values.galoy.api.probes.liveness.timeoutSeconds }} | ||
|
||
readinessProbe: | ||
httpGet: | ||
path: /healthz | ||
port: {{ .Values.galoy.api.port }} | ||
initialDelaySeconds: {{ .Values.galoy.api.probes.readiness.initialDelaySeconds }} | ||
failureThreshold: {{ .Values.galoy.api.probes.readiness.failureThreshold }} | ||
successThreshold: {{ .Values.galoy.api.probes.readiness.successThreshold }} | ||
timeoutSeconds: {{ .Values.galoy.api.probes.readiness.timeoutSeconds }} | ||
{{ end }} | ||
|
||
volumeMounts: | ||
{{ if .Values.galoy.api.firebaseNotifications.enabled }} | ||
- name: firebase-notifications-service-account | ||
mountPath: /tmp | ||
readOnly: true | ||
{{ end }} | ||
|
||
- name: custom-yaml | ||
mountPath: "/var/yaml/" | ||
volumes: | ||
{{ if .Values.galoy.api.firebaseNotifications.enabled }} | ||
- name: firebase-notifications-service-account | ||
secret: | ||
secretName: {{ .Values.galoy.api.firebaseNotifications.existingSecret.name }} | ||
items: | ||
- key: {{ .Values.galoy.api.firebaseNotifications.existingSecret.key }} | ||
path: service-account.json | ||
{{ end }} | ||
|
||
- name: custom-yaml | ||
secret: | ||
secretName: "galoy-config" |
This file was deleted.
Oops, something went wrong.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Oops, something went wrong.