A radosgw/Dockerfile => radosgw/Dockerfile +7 -0
@@ 0,0 1,7 @@
+FROM alpine:3.17
+
+RUN apk update && apk --no-cache add ceph17-radosgw
+COPY ceph.conf /etc/ceph/ceph.conf
+CMD [ "/usr/bin/radosgw", \
+ "-i", "radosgw.k8s", "--pid-file", "/run/ceph/radosgw.radosgw.k8s.pid", \
+ "-c", "/etc/ceph/ceph.conf", "--name", "client.radosgw.k8s", "-d" ]
A radosgw/Makefile => radosgw/Makefile +4 -0
@@ 0,0 1,4 @@
+
+secret.yaml: secret.yaml.m4
+ m4 -DRADOSGW_K8S_KEYRING="$$(ssh patchouli2.sr.ht doas ceph auth get client.radosgw.k8s | base64 -w 0)" \
+ < $< > $@
A radosgw/ceph.conf => radosgw/ceph.conf +11 -0
@@ 0,0 1,11 @@
+[global]
+fsid = da256dbb-b2c3-4570-ad6f-7712693a547c
+mon_initial members = patchouli2, sakuya2, sakuya3
+mon_host = [v2:10.0.0.132:3300/0,v1:10.0.0.132:6789/0] [v2:10.0.0.134:3300/0,v1:10.0.0.134:6789/0] [v2:10.0.0.135:3300/0,v1:10.0.0.135:6789/0]
+public network = 10.0.0.0/24
+auth cluster required = cephx
+auth service required = cephx
+auth client required = cephx
+[client.radosgw.k8s]
+keyring = /etc/secrets/keyring
+rgw_frontends = beast port=80
A radosgw/secret.yaml.m4 => radosgw/secret.yaml.m4 +6 -0
@@ 0,0 1,6 @@
+apiVersion: v1
+kind: Secret
+metadata:
+ name: ceph-radosgw-k8s-keyring
+data:
+ keyring: RADOSGW_K8S_KEYRING