diff --git a/services/LdapWrapper/_namespace-LdapWrapper.yml b/services/LdapWrapper/_namespace-LdapWrapper.yml new file mode 100644 index 0000000..c4e889f --- /dev/null +++ b/services/LdapWrapper/_namespace-LdapWrapper.yml @@ -0,0 +1,4 @@ +apiVersion: v1 +kind: Namespace +metadata: + name: ldapwrapper diff --git a/services/LdapWrapper/deployment-LdapWrapper.yml b/services/LdapWrapper/deployment-LdapWrapper.yml new file mode 100644 index 0000000..715ee92 --- /dev/null +++ b/services/LdapWrapper/deployment-LdapWrapper.yml @@ -0,0 +1,38 @@ +apiVersion: apps/v1 +kind: Deployment +metadata: + name: ldapwrapper + namespace: ldapwrapper + labels: + app: ldapwrapper +spec: + replicas: 1 + selector: + matchLabels: + app: ldapwrapper + template: + metadata: + labels: + app: ldapwrapper + spec: + containers: + - name: ldapwrapper + image: ahaen/azuread-ldap-wrapper:latest + env: + - name: GRAPH_IGNORE_MFA_ERRORS + value: 'true' + - name: LDAP_PORT + value: '389' + envFrom: + - secretRef: + name: ldapwrapper + ports: + - containerPort: 389 + name: ldap + volumeMounts: + - mountPath: /app/.cache + name: longhorn-ldapwrapper-cache + volumes: + - name: longhorn-ldapwrapper-cache + persistentVolumeClaim: + claimName: longhorn-ldapwrapper-cache diff --git a/services/LdapWrapper/persistentVolumeClaim-LdapWrapper.yml b/services/LdapWrapper/persistentVolumeClaim-LdapWrapper.yml new file mode 100644 index 0000000..953016d --- /dev/null +++ b/services/LdapWrapper/persistentVolumeClaim-LdapWrapper.yml @@ -0,0 +1,13 @@ +--- +apiVersion: v1 +kind: PersistentVolumeClaim +metadata: + name: longhorn-ldapwrapper-cache + namespace: ldapwrapper +spec: + accessModes: + - ReadWriteOnce + storageClassName: longhorn + resources: + requests: + storage: 1Gi diff --git a/services/LdapWrapper/sealedsecret-flexvolsmb-credentials.yaml b/services/LdapWrapper/sealedsecret-flexvolsmb-credentials.yaml new file mode 100644 index 0000000..63db8e1 --- /dev/null +++ b/services/LdapWrapper/sealedsecret-flexvolsmb-credentials.yaml @@ -0,0 +1,17 @@ +apiVersion: bitnami.com/v1alpha1 +kind: SealedSecret +metadata: + creationTimestamp: null + name: flexvolsmb-credentials + namespace: ldapwrapper +spec: + encryptedData: + password: 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 + username: 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 + template: + data: null + metadata: + creationTimestamp: null + name: flexvolsmb-credentials + namespace: ldapwrapper + type: mount/smb diff --git a/services/LdapWrapper/sealedsecret-ldapwrapper.yaml b/services/LdapWrapper/sealedsecret-ldapwrapper.yaml new file mode 100644 index 0000000..5ab3d49 --- /dev/null +++ b/services/LdapWrapper/sealedsecret-ldapwrapper.yaml @@ -0,0 +1,22 @@ +apiVersion: bitnami.com/v1alpha1 +kind: SealedSecret +metadata: + creationTimestamp: null + name: ldapwrapper + namespace: ldapwrapper +spec: + encryptedData: + AZURE_APP_ID: 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 + AZURE_APP_SECRET: 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 + AZURE_TENANTID: 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 + LDAP_BINDUSER: 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 + LDAP_DOMAIN: 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 + template: + data: null + metadata: + creationTimestamp: null + labels: + app: ldapwrapper + name: ldapwrapper + namespace: ldapwrapper + type: Opaque diff --git a/services/LdapWrapper/service-Syncthing.yml b/services/LdapWrapper/service-Syncthing.yml new file mode 100644 index 0000000..28ded45 --- /dev/null +++ b/services/LdapWrapper/service-Syncthing.yml @@ -0,0 +1,12 @@ +apiVersion: v1 +kind: Service +metadata: + name: ldapwrapper + namespace: ldapwrapper +spec: + ports: + - protocol: TCP + name: ldap + port: 389 + selector: + app: ldapwrapper diff --git a/services/PVR/Plex/cronjob-RolloutRestart.yml b/services/PVR/Plex/cronjob-RolloutRestart.yml index d21be52..ea50910 100644 --- a/services/PVR/Plex/cronjob-RolloutRestart.yml +++ b/services/PVR/Plex/cronjob-RolloutRestart.yml @@ -54,4 +54,4 @@ spec: - '-c' args: - for workload in `kubectl get deployments -n pvr --no-headers | cut -d " " -f 1`; do kubectl rollout restart deployment -n pvr $workload; done; - for workload in `kubectl get statefulsets -n pvr | cut -d " " -f 1`; do kubectl rollout restart statefulsets -n pvr $workload; done; + for workload in `kubectl get statefulsets -n pvr --no-headers | cut -d " " -f 1`; do kubectl rollout restart statefulsets -n pvr $workload; done;