~bitfehler/k8s.sr.ht

3e2fa33c6e53c2cefff342e30bb5e72affa21c78 — Conrad Hoffmann 1 year, 4 months ago faa436a
radosgw: foundation for radosgw in K8s
4 files changed, 28 insertions(+), 0 deletions(-)

A radosgw/Dockerfile
A radosgw/Makefile
A radosgw/ceph.conf
A radosgw/secret.yaml.m4
A radosgw/Dockerfile => radosgw/Dockerfile +7 -0
@@ 0,0 1,7 @@
FROM alpine:3.17

RUN apk update && apk --no-cache add ceph17-radosgw
COPY ceph.conf /etc/ceph/ceph.conf
CMD [ "/usr/bin/radosgw", \
 "-i", "radosgw.k8s", "--pid-file", "/run/ceph/radosgw.radosgw.k8s.pid", \
 "-c", "/etc/ceph/ceph.conf", "--name", "client.radosgw.k8s", "-d" ]

A radosgw/Makefile => radosgw/Makefile +4 -0
@@ 0,0 1,4 @@

secret.yaml: secret.yaml.m4
	m4 -DRADOSGW_K8S_KEYRING="$$(ssh patchouli2.sr.ht doas ceph auth get client.radosgw.k8s | base64 -w 0)" \
		< $< > $@

A radosgw/ceph.conf => radosgw/ceph.conf +11 -0
@@ 0,0 1,11 @@
[global]
fsid = da256dbb-b2c3-4570-ad6f-7712693a547c
mon_initial members = patchouli2, sakuya2, sakuya3
mon_host = [v2:10.0.0.132:3300/0,v1:10.0.0.132:6789/0] [v2:10.0.0.134:3300/0,v1:10.0.0.134:6789/0] [v2:10.0.0.135:3300/0,v1:10.0.0.135:6789/0]
public network = 10.0.0.0/24
auth cluster required = cephx
auth service required = cephx
auth client required = cephx
[client.radosgw.k8s]
keyring = /etc/secrets/keyring
rgw_frontends = beast port=80

A radosgw/secret.yaml.m4 => radosgw/secret.yaml.m4 +6 -0
@@ 0,0 1,6 @@
apiVersion: v1
kind: Secret
metadata:
  name: ceph-radosgw-k8s-keyring
data:
  keyring: RADOSGW_K8S_KEYRING