elam qui fait nimporte quoi encore une fois !

feat: added nginx ingress
correctif filtrage r-vp2
2023-04-06 09:19:45 +02:00 · 2023-04-06 09:15:43 +02:00 · 2023-04-06 08:42:14 +02:00 · 2023-04-05 17:22:11 +02:00 · 2023-04-05 17:17:15 +02:00
5 changed files with 25 additions and 18 deletions
--- a/lisezmoi.txt
+++ b/lisezmoi.txt
@ -7,7 +7,7 @@ Ce document décrit les divers élements du projet GSB du BTS SIO utilisé pour
 Le projet GSB décrit les diférents playbooks permttant d'installer les
 machines du projet GSB
-Les répertoires :
+Les répertoires : 
 - roles : les roles
 - goss : les outils de test
--- a/roles/fw-ferm/files/ferm.conf.r-vp2
+++ b/roles/fw-ferm/files/ferm.conf.r-vp2
@ -51,6 +51,7 @@ table filter {
    chain FORWARD {
        policy ACCEPT;
 	proto icmp icmp-type echo-request ACCEPT;
        # connection tracking
        mod state state INVALID DROP;
        mod state state (ESTABLISHED RELATED) ACCEPT;
--- a/roles/peertube/files/finish
+++ b/roles/peertube/files/finish
@ -0,0 +1,12 @@
 export KUBECONFIG=/etc/rancher/k3s/k3s.yaml;
 helm upgrade --install ingress-nginx ingress-nginx \
  --repo https://kubernetes.github.io/ingress-nginx \
  --namespace ingress-nginx --create-namespace;
 sleep 15;
 openssl req -x509 -nodes -days 365 -newkey rsa:2048 -keyout ${KEY_FILE} -out ${CERT_FILE} -subj "/CN=${HOST}/O=${HOST}" -addext "subjectAltName = DNS:${HOST}";
 kubectl create secret tls tls-peertube --key ${KEY_FILE} --cert ${CERT_FILE};
 helm repo add postgresql https://charts.bitnami.com/bitnami;
 helm repo add redis https://charts.bitnami.com/bitnami;
 helm repo add mail https://bokysan.github.io/docker-postfix;
 helm install --create-namespace -n peertube peertube-gsb /root/tools/peertube/helm/ ;
 kubectl config view --raw > ~/.kube/config
--- a/roles/peertube/files/values.yaml
+++ b/roles/peertube/files/values.yaml
@ -98,21 +98,21 @@ redis:
 ## ingress configuration is very specific this part must be configured or else you'll get 503 or 404 errors
 ingress:
-  enabled: false
+  enabled: true
  className: ""
  annotations: 
    kubernetes.io/ingress.class: nginx
    nginx.ingress.kubernetes.io/proxy-body-size: 4G # this caps the size of imported videos, if set low this might prevent you from uploading videos
    # kubernetes.io/tls-acme: "true"
  hosts:
-    - host: # your domain here
+    - host: s-peertube.gsb.lan
      paths:
        - path: /
          pathType: ImplementationSpecific
-  tls: 
+  tls:
-  #  - secretName: chart-example-tls
+    - secretName: tls-peertube
    - hosts:
-      -  # your domain here
+      -  s-peertube.gsb.lan
 resources: {}
 autoscaling:
--- a/roles/peertube/tasks/main.yml
+++ b/roles/peertube/tasks/main.yml
@ -18,17 +18,11 @@
      dest: /root/tools/peertube/helm/
      mode: '0644'
  - name: copie du script finish...
    copy:
      src: /root/tools/ansible/gsb2023/roles/peertube/files/finish
      dest: /root
      mode: '0644'
  - name: installation de helm...
    shell: curl https://raw.githubusercontent.com/helm/helm/main/scripts/get-helm-3 | bash
  - name: exposition du cluster...
    command: KUBECONFIG=/etc/rancher/k3s/k3s.yaml
  - name: mise a jour de la configuration de kubectl...
    command: kubectl config view --raw > ~/.kube/config
  - name: installation de peertube...
    shell: helm repo add postgresql https://charts.bitnami.com/bitnami && helm repo add redis https://charts.bitnami.com/bitnami && helm repo add mail https://bokysan.github.io/docker-postfix
  - name: lancement du helm chart peertube...
    shell: helm install --create-namespace -n peertube peertube-gsb /root/tools/peertube/helm/
Author	SHA1	Message	Date
Anthony Arnoux	ebcd50bf69	elam qui fait nimporte quoi encore une fois !	2023-04-06 09:19:45 +02:00
Elam Monnot	30eeabb58b	feat: added nginx ingress	2023-04-06 09:15:43 +02:00
Anthony Arnoux	542978fd75	correctif filtrage r-vp2	2023-04-06 08:42:14 +02:00
Louis DÉPRÉS	b7d8e6e9d4	Merge branch 'main' of https://gitea.lyc-lecastel.fr/gadmin/gsb2023	2023-04-05 17:22:11 +02:00
Elam Monnot	ea4ecb2fae	feat: changed the way the playbook behave	2023-04-05 17:17:15 +02:00