zeaslity/CmiiDeploy
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

add

Browse Source
This commit is contained in:
zeaslity
2024-10-30 16:30:51 +08:00
commit 437acbeb63
3363 changed files with 653948 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

264
28-生产环境hw/k8s-emqx.yaml Normal file
View File

@@ -0,0 +1,264 @@
---
apiVersion: v1
kind: ServiceAccount
metadata:
name: helm-emqx-bridge
namespace: cmii-s1
---
apiVersion: v1
kind: ConfigMap
metadata:
name: helm-emqx-bridge-env
namespace: cmii-s1
labels:
cmii.type: middleware
cmii.app: helm-emqx-bridge
cmii.emqx.architecture: cluster
helm.sh/chart: emqx-1.1.0
app.kubernetes.io/managed-by: octopus-control
app.kubernetes.io/version: 5.6.0
data:
EMQX_CLUSTER__K8S__APISERVER: "https://kubernetes.default.svc.cluster.local:443"
EMQX_NAME: "helm-emqx-bridge"
EMQX_CLUSTER__DISCOVERY: "k8s"
EMQX_CLUSTER__K8S__APP_NAME: "helm-emqx-bridge"
EMQX_CLUSTER__K8S__SERVICE_NAME: "helm-emqx-bridge-headless"
EMQX_CLUSTER__K8S__ADDRESS_TYPE: "dns"
EMQX_CLUSTER__K8S__namespace: "cmii-s1"
EMQX_CLUSTER__K8S__SUFFIX: "svc.cluster.local"
EMQX_ALLOW_ANONYMOUS: "false"
EMQX_ACL_NOMATCH: "deny"
---
apiVersion: v1
kind: ConfigMap
metadata:
name: helm-emqx-bridge-cm
namespace: cmii-s1
labels:
cmii.type: middleware
cmii.app: helm-emqx-bridge
cmii.emqx.architecture: cluster
helm.sh/chart: emqx-1.1.0
app.kubernetes.io/managed-by: octopus-control
app.kubernetes.io/version: 5.6.0
data:
emqx_auth_username.conf: |-
auth.user.1.username = cmlc
auth.user.1.password = 4YPk*DS%+5
auth.user.password_hash = sha256
acl.conf: |-
{allow, {user, "admin"}, pubsub, ["admin/#"]}.
{allow, {user, "dashboard"}, subscribe, ["$SYS/#"]}.
{allow, {ipaddr, "127.0.0.1"}, pubsub, ["$SYS/#", "#"]}.
{deny, all, subscribe, ["$SYS/#", {eq, "#"}]}.
{allow, all}.
loaded_plugins: |-
{emqx_auth_username,true}.
{emqx_management, true}.
{emqx_recon, true}.
{emqx_retainer, false}.
{emqx_dashboard, true}.
{emqx_telemetry, true}.
{emqx_rule_engine, true}.
{emqx_bridge_mqtt, false}.
---
apiVersion: apps/v1
kind: StatefulSet
metadata:
name: helm-emqx-bridge
namespace: cmii-s1
labels:
cmii.type: middleware
cmii.app: helm-emqx-bridge
cmii.emqx.architecture: cluster
helm.sh/chart: emqx-1.1.0
app.kubernetes.io/managed-by: octopus-control
app.kubernetes.io/version: 5.6.0
spec:
replicas: 1
serviceName: helm-emqx-bridge-headless
updateStrategy:
type: RollingUpdate
selector:
matchLabels:
cmii.type: middleware
cmii.app: helm-emqx-bridge
cmii.emqx.architecture: cluster
template:
metadata:
labels:
cmii.type: middleware
cmii.app: helm-emqx-bridge
cmii.emqx.architecture: cluster
helm.sh/chart: emqx-1.1.0
app.kubernetes.io/managed-by: octopus-control
app.kubernetes.io/version: 5.6.0
spec:
affinity: {}
imagePullSecrets:
- name: harborsecret
serviceAccountName: helm-emqx-bridge
containers:
- name: helm-emqx-bridge
image: harbor.cdcyy.com.cn/cmii/emqx:5.5.1
imagePullPolicy: Always
ports:
- name: mqtt
containerPort: 1883
- name: mqttssl
containerPort: 8883
- name: mgmt
containerPort: 8081
- name: ws
containerPort: 8083
- name: wss
containerPort: 8084
- name: dashboard
containerPort: 18083
- name: ekka
containerPort: 4370
envFrom:
- configMapRef:
name: helm-emqx-bridge-env
resources: {}
volumeMounts:
- name: emqx-data
mountPath: "/opt/emqx/data/mnesia"
readOnly: false
- name: helm-emqx-bridge-cm
mountPath: "/opt/emqx/etc/plugins/emqx_auth_username.conf"
subPath: emqx_auth_username.conf
readOnly: false
# - name: helm-emqx-bridge-cm
# mountPath: "/opt/emqx/etc/acl.conf"
# subPath: "acl.conf"
# readOnly: false
- name: helm-emqx-bridge-cm
mountPath: "/opt/emqx/data/loaded_plugins"
subPath: loaded_plugins
readOnly: false
volumes:
- name: emqx-data
emptyDir: {}
- name: helm-emqx-bridge-cm
configMap:
name: helm-emqx-bridge-cm
items:
- key: emqx_auth_username.conf
path: emqx_auth_username.conf
- key: acl.conf
path: acl.conf
- key: loaded_plugins
path: loaded_plugins
---
kind: Role
apiVersion: rbac.authorization.k8s.io/v1
metadata:
name: helm-emqx-bridge
namespace: cmii-s1
rules:
- apiGroups:
- ""
resources:
- endpoints
verbs:
- get
- watch
- list
---
kind: RoleBinding
apiVersion: rbac.authorization.k8s.io/v1
metadata:
name: helm-emqx-bridge
namespace: cmii-s1
subjects:
- kind: ServiceAccount
name: helm-emqx-bridge
namespace: cmii-s1
roleRef:
kind: Role
name: helm-emqx-bridge
apiGroup: rbac.authorization.k8s.io
---
apiVersion: v1
kind: Service
metadata:
name: helm-emqx-bridge
namespace: cmii-s1
labels:
cmii.type: middleware
cmii.app: helm-emqx-bridge
cmii.emqx.architecture: cluster
helm.sh/chart: emqx-1.1.0
app.kubernetes.io/managed-by: octopus-control
app.kubernetes.io/version: 5.6.0
spec:
type: NodePort
selector:
cmii.type: middleware
cmii.app: helm-emqx-bridge
cmii.emqx.architecture: cluster
ports:
- port: 1883
name: mqtt
targetPort: 1883
nodePort: 31885
- port: 18083
name: dashboard
targetPort: 18083
nodePort: 38087
- port: 8083
name: mqtt-websocket
targetPort: 8083
nodePort: 38085
---
apiVersion: v1
kind: Service
metadata:
name: helm-emqx-bridge-headless
namespace: cmii-s1
labels:
cmii.type: middleware
cmii.app: helm-emqx-bridge
cmii.emqx.architecture: cluster
helm.sh/chart: emqx-1.1.0
app.kubernetes.io/managed-by: octopus-control
app.kubernetes.io/version: 5.6.0
spec:
type: ClusterIP
clusterIP: None
selector:
cmii.type: middleware
cmii.app: helm-emqx-bridge
cmii.emqx.architecture: cluster
ports:
- name: mqtt
port: 1883
protocol: TCP
targetPort: 1883
- name: mqttssl
port: 8883
protocol: TCP
targetPort: 8883
- name: mgmt
port: 8081
protocol: TCP
targetPort: 8081
- name: websocket
port: 8083
protocol: TCP
targetPort: 8083
- name: wss
port: 8084
protocol: TCP
targetPort: 8084
- name: dashboard
port: 18083
protocol: TCP
targetPort: 18083
- name: ekka
port: 4370
protocol: TCP
targetPort: 4370

182
28-生产环境hw/k8s-sense-adapter.yaml Normal file
View File

@@ -0,0 +1,182 @@
kind: Deployment
apiVersion: apps/v1
metadata:
name: cmii-uav-sense-adapter
namespace: cmii-s1
labels:
app.kubernetes.io/instance: cmii-uav-sense-adapter
app.kubernetes.io/managed-by: Helm
cmii.app: cmii-uav-sense-adapter
cmii.modules: cmlc
cmii.type: backend
cmii/managed-by: jenkins-pipeline-standalone-job
spec:
replicas: 1
selector:
matchLabels:
cmii.app: cmii-uav-sense-adapter
cmii.type: backend
cmii/managed-by: jenkins-pipeline-standalone-job
template:
metadata:
labels:
app.kubernetes.io/instance: cmii-uav-sense-adapter
app.kubernetes.io/managed-by: Helm
cmii.app: cmii-uav-sense-adapter
cmii.modules: cmlc
cmii.type: backend
cmii/managed-by: jenkins-pipeline-standalone-job
spec:
volumes:
- name: nfs-backend-log-volume
persistentVolumeClaim:
claimName: nfs-backend-log-pvc
containers:
- name: cmii-uav-sense-adapter
image: 'harbor.cdcyy.com.cn/cmii/cmii-uav-sense-adapter:5.6.0-0629'
ports:
- name: pod-port
containerPort: 8080
protocol: TCP
- name: pod-port-10
containerPort: 8010
protocol: TCP
- name: pod-port-12
containerPort: 8012
protocol: TCP
- name: pod-port-11
containerPort: 8011
protocol: UDP
- name: pod-port-13
containerPort: 8013
protocol: UDP
env:
- name: GIT_BRANCH
value: master
- name: GIT_COMMIT
value: 08c82e1261825e4842245df76f3f52c9c4c069eb
- name: K8S_NAMESPACE
value: uavcloud-dev
- name: APPLICATION_NAME
value: cmii-uav-sense-adapter
- name: CUST_JAVA_OPTS
value: '-Xms512m -Xmx2048m -Dlog4j2.formatMsgNoLookups=true'
- name: NACOS_REGISTRY
value: 'helm-nacos:8848'
- name: NACOS_USERNAME
value: developer
- name: NACOS_PASSWORD
value: Deve@9128201
- name: NACOS_DISCOVERY_IP
valueFrom:
fieldRef:
apiVersion: v1
fieldPath: status.podIP
- name: NACOS_DISCOVERY_PORT
value: '8080'
- name: IMAGE_VERSION
value: 5.6.0
- name: BIZ_CONFIG_GROUP
- name: SYS_CONFIG_GROUP
resources:
limits:
cpu: '2'
memory: 2Gi
requests:
cpu: 100m
memory: 200Mi
volumeMounts:
- name: nfs-backend-log-volume
mountPath: /cmii/logs
subPath: cmii-s1/cmii-uav-sense-adapter
livenessProbe:
httpGet:
path: /cmii/health
port: pod-port
scheme: HTTP
initialDelaySeconds: 5
timeoutSeconds: 2
periodSeconds: 10
successThreshold: 1
failureThreshold: 3
readinessProbe:
httpGet:
path: /cmii/health
port: pod-port
scheme: HTTP
initialDelaySeconds: 5
timeoutSeconds: 2
periodSeconds: 10
successThreshold: 1
failureThreshold: 3
startupProbe:
httpGet:
path: /cmii/health
port: pod-port
scheme: HTTP
initialDelaySeconds: 120
timeoutSeconds: 2
periodSeconds: 10
successThreshold: 1
failureThreshold: 10
terminationMessagePath: /dev/termination-log
terminationMessagePolicy: File
imagePullPolicy: Always
restartPolicy: Always
terminationGracePeriodSeconds: 30
dnsPolicy: ClusterFirst
securityContext: {}
imagePullSecrets:
- name: harborsecret
affinity: {}
schedulerName: default-scheduler
strategy:
type: RollingUpdate
rollingUpdate:
maxUnavailable: 1
maxSurge: 25%
revisionHistoryLimit: 10
progressDeadlineSeconds: 600
---
kind: Service
apiVersion: v1
metadata:
name: cmii-uav-sense-adapter
namespace: cmii-s1
labels:
app.kubernetes.io/instance: cmii-uav-sense-adapter
app.kubernetes.io/managed-by: Helm
cmii.app: cmii-uav-sense-adapter
cmii.modules: cmlc
cmii.type: backend
cmii/managed-by: jenkins-pipeline-standalone-job
spec:
ports:
- name: cmii-uav-sense-adapter
protocol: TCP
port: 8080
targetPort: 8080
- name: cmii-uav-sense-8010
protocol: TCP
port: 8010
targetPort: 8010
- name: cmii-uav-sense-8012
protocol: TCP
port: 8012
targetPort: 8012
- name: cmii-uav-sense-8011
protocol: UDP
port: 8011
targetPort: 8011
- name: cmii-uav-sense-8013
protocol: UDP
port: 8013
targetPort: 8013
selector:
cmii.app: cmii-uav-sense-adapter
cmii.type: backend
cmii/managed-by: jenkins-pipeline-standalone-job
type: NodePort
sessionAffinity: None
externalTrafficPolicy: Cluster
---