--- # Source: outside-deploy/charts/all-middleware/charts/emqx/templates/cluster/rbac-cluster.yaml apiVersion: v1 kind: ServiceAccount metadata: name: helm-emqxs namespace: szzsj --- # Source: outside-deploy/charts/all-middleware/charts/emqx/templates/cluster/configmap-cluster.yaml apiVersion: v1 kind: ConfigMap metadata: name: helm-emqxs-env namespace: szzsj labels: cmii.type: middleware cmii.app: helm-emqxs cmii.emqx.architecture: cluster helm.sh/chart: emqx-1.1.0 app.kubernetes.io/managed-by: Helm app.kubernetes.io/version: "3.1.0" data: EMQX_CLUSTER__K8S__APISERVER: https://kubernetes.default.svc:443 EMQX_NAME: helm-emqxs EMQX_CLUSTER__DISCOVERY: k8s EMQX_CLUSTER__K8S__SERVICE_NAME: helm-emqxs-headless EMQX_CLUSTER__K8S__APP_NAME: helm-emqxs EMQX_CLUSTER__K8S__ADDRESS_TYPE: "dns" EMQX_CLUSTER__K8S__namespace: szzsj EMQX_CLUSTER__K8S__SUFFIX: svc.cluster.local EMQX_ALLOW_ANONYMOUS: "false" EMQX_ACL_NOMATCH: "deny" --- # Source: outside-deploy/charts/all-middleware/charts/emqx/templates/cluster/configmap-cluster.yaml apiVersion: v1 kind: ConfigMap metadata: name: helm-emqxs-cm namespace: szzsj labels: cmii.type: middleware cmii.app: helm-emqxs cmii.emqx.architecture: cluster helm.sh/chart: emqx-1.1.0 app.kubernetes.io/managed-by: Helm app.kubernetes.io/version: "3.1.0" data: emqx_auth_username.conf: |- auth.user.1.username = cmlc auth.user.1.password = odD8#Ve7.B auth.user.password_hash = sha256 acl.conf: |- {allow, {user, "admin"}, pubsub, ["admin/#"]}. {allow, {user, "dashboard"}, subscribe, ["$SYS/#"]}. {allow, {ipaddr, "127.0.0.1"}, pubsub, ["$SYS/#", "#"]}. {deny, all, subscribe, ["$SYS/#", {eq, "#"}]}. {allow, all}. loaded_plugins: |- {emqx_auth_username,true}. {emqx_management, true}. {emqx_recon, true}. {emqx_retainer, false}. {emqx_dashboard, true}. {emqx_telemetry, true}. {emqx_rule_engine, true}. {emqx_bridge_mqtt, false}. --- # Source: outside-deploy/charts/all-middleware/charts/emqx/templates/cluster/statefulset-cluster.yaml apiVersion: apps/v1 kind: StatefulSet metadata: name: helm-emqxs namespace: szzsj labels: cmii.type: middleware cmii.app: helm-emqxs cmii.emqx.architecture: cluster helm.sh/chart: emqx-1.1.0 app.kubernetes.io/managed-by: Helm app.kubernetes.io/version: "3.1.0" spec: replicas: 1 serviceName: helm-emqxs-headless updateStrategy: type: RollingUpdate selector: matchLabels: cmii.type: middleware cmii.app: helm-emqxs cmii.emqx.architecture: cluster template: metadata: labels: cmii.type: middleware cmii.app: helm-emqxs cmii.emqx.architecture: cluster helm.sh/chart: emqx-1.1.0 app.kubernetes.io/managed-by: Helm app.kubernetes.io/version: "3.1.0" spec: affinity: {} serviceAccountName: helm-emqxs containers: - name: helm-emqxs image: "172.10.125.92:8033/cmii/emqx:4.2.12" imagePullPolicy: Always ports: - name: mqtt containerPort: 1883 - name: mqttssl containerPort: 8883 - name: mgmt containerPort: 8081 - name: ws containerPort: 8083 - name: wss containerPort: 8084 - name: dashboard containerPort: 18083 - name: ekka containerPort: 4370 envFrom: - configMapRef: name: helm-emqxs-env resources: {} readinessProbe: httpGet: path: /status port: 8081 initialDelaySeconds: 5 periodSeconds: 5 volumeMounts: - name: emqx-data mountPath: "/opt/emqx/data/mnesia" readOnly: false - name: helm-emqxs-cm mountPath: "/opt/emqx/etc/plugins/emqx_auth_username.conf" subPath: emqx_auth_username.conf readOnly: false - name: helm-emqxs-cm mountPath: "/opt/emqx/etc/acl.conf" subPath: "acl.conf" readOnly: false - name: helm-emqxs-cm mountPath: "/opt/emqx/data/loaded_plugins" subPath: loaded_plugins readOnly: false volumes: - name: emqx-data persistentVolumeClaim: claimName: helm-emqxs - name: helm-emqxs-cm configMap: name: helm-emqxs-cm items: - key: emqx_auth_username.conf path: emqx_auth_username.conf - key: acl.conf path: acl.conf - key: loaded_plugins path: loaded_plugins --- # Source: outside-deploy/charts/all-middleware/charts/rabbitmq/templates/serviceaccount.yaml apiVersion: v1 kind: ServiceAccount metadata: name: helm-rabbitmq namespace: szzsj labels: app.kubernetes.io/name: helm-rabbitmq helm.sh/chart: rabbitmq-8.26.1 app.kubernetes.io/release: szzsj app.kubernetes.io/managed-by: rabbitmq automountServiceAccountToken: true secrets: - name: helm-rabbitmq --- # Source: outside-deploy/charts/all-middleware/charts/rabbitmq/templates/secrets.yaml apiVersion: v1 kind: Secret metadata: name: helm-rabbitmq namespace: szzsj labels: app.kubernetes.io/name: helm-rabbitmq helm.sh/chart: rabbitmq-8.26.1 app.kubernetes.io/release: szzsj app.kubernetes.io/managed-by: rabbitmq type: Opaque data: rabbitmq-password: "blljUk45MXIuX2hq" rabbitmq-erlang-cookie: "emFBRmt1ZU1xMkJieXZvdHRYbWpoWk52UThuVXFzcTU=" --- # Source: outside-deploy/charts/all-middleware/charts/nacos/templates/configmap.yaml apiVersion: v1 kind: ConfigMap metadata: name: helm-nacos-cm namespace: szzsj labels: cmii.app: helm-nacos cmii.type: middleware helm.sh/chart: nacos-1.1.1 app.kubernetes.io/managed-by: Helm app.kubernetes.io/version: "3.1.0" data: mysql.db.name: "cmii_nacos_config" mysql.db.host: "helm-mysql" mysql.port: "3306" mysql.user: "k8s_admin" mysql.password: "fP#UaH6qQ3)8" --- # Source: outside-deploy/charts/all-middleware/charts/rabbitmq/templates/configuration.yaml apiVersion: v1 kind: ConfigMap metadata: name: helm-rabbitmq-config namespace: szzsj labels: app.kubernetes.io/name: helm-rabbitmq helm.sh/chart: rabbitmq-8.26.1 app.kubernetes.io/release: szzsj app.kubernetes.io/managed-by: rabbitmq data: rabbitmq.conf: |- ## Username and password ## default_user = admin default_pass = nYcRN91r._hj ## Clustering ## cluster_formation.peer_discovery_backend = rabbit_peer_discovery_k8s cluster_formation.k8s.host = kubernetes.default.svc.cluster.local cluster_formation.node_cleanup.interval = 10 cluster_formation.node_cleanup.only_log_warning = true cluster_partition_handling = autoheal # queue master locator queue_master_locator = min-masters # enable guest user loopback_users.guest = false #default_vhost = default-vhost #disk_free_limit.absolute = 50MB #load_definitions = /app/load_definition.json --- # Source: outside-deploy/charts/all-middleware/charts/emqx/templates/cluster/rbac-cluster.yaml kind: Role apiVersion: rbac.authorization.k8s.io/v1 metadata: name: helm-emqxs namespace: szzsj rules: - apiGroups: - "" resources: - endpoints verbs: - get - watch - list --- # Source: outside-deploy/charts/all-middleware/charts/rabbitmq/templates/role.yaml kind: Role apiVersion: rbac.authorization.k8s.io/v1 metadata: name: helm-rabbitmq-endpoint-reader namespace: szzsj labels: app.kubernetes.io/name: helm-rabbitmq helm.sh/chart: rabbitmq-8.26.1 app.kubernetes.io/release: szzsj app.kubernetes.io/managed-by: rabbitmq rules: - apiGroups: [""] resources: ["endpoints"] verbs: ["get"] - apiGroups: [""] resources: ["events"] verbs: ["create"] --- # Source: outside-deploy/charts/all-middleware/charts/emqx/templates/cluster/rbac-cluster.yaml kind: RoleBinding apiVersion: rbac.authorization.k8s.io/v1 metadata: name: helm-emqxs namespace: szzsj subjects: - kind: ServiceAccount name: helm-emqxs namespace: szzsj roleRef: kind: Role name: helm-emqxs apiGroup: rbac.authorization.k8s.io --- # Source: outside-deploy/charts/all-middleware/charts/rabbitmq/templates/rolebinding.yaml kind: RoleBinding apiVersion: rbac.authorization.k8s.io/v1 metadata: name: helm-rabbitmq-endpoint-reader namespace: szzsj labels: app.kubernetes.io/name: helm-rabbitmq helm.sh/chart: rabbitmq-8.26.1 app.kubernetes.io/release: szzsj app.kubernetes.io/managed-by: rabbitmq subjects: - kind: ServiceAccount name: helm-rabbitmq roleRef: apiGroup: rbac.authorization.k8s.io kind: Role name: helm-rabbitmq-endpoint-reader --- # Source: outside-deploy/charts/all-middleware/charts/emqx/templates/cluster/svc-cluster.yaml apiVersion: v1 kind: Service metadata: name: helm-emqxs namespace: szzsj labels: cmii.type: middleware cmii.app: helm-emqxs cmii.emqx.architecture: cluster helm.sh/chart: emqx-1.1.0 app.kubernetes.io/managed-by: Helm app.kubernetes.io/version: "3.1.0" spec: type: NodePort selector: cmii.type: middleware cmii.app: helm-emqxs cmii.emqx.architecture: cluster ports: - port: 1883 name: mqtt targetPort: 1883 nodePort: 31883 - port: 18083 name: dashboard targetPort: 18083 nodePort: 38085 - port: 8083 name: mqtt-websocket targetPort: 8083 nodePort: 38083 --- # Source: outside-deploy/charts/all-middleware/charts/emqx/templates/cluster/svc-headless.yaml apiVersion: v1 kind: Service metadata: name: helm-emqxs-headless namespace: szzsj labels: cmii.type: middleware cmii.app: helm-emqxs cmii.emqx.architecture: cluster helm.sh/chart: emqx-1.1.0 app.kubernetes.io/managed-by: Helm app.kubernetes.io/version: "3.1.0" spec: type: ClusterIP clusterIP: None selector: cmii.type: middleware cmii.app: helm-emqxs cmii.emqx.architecture: cluster ports: - name: mqtt port: 1883 protocol: TCP targetPort: 1883 - name: mqttssl port: 8883 protocol: TCP targetPort: 8883 - name: mgmt port: 8081 protocol: TCP targetPort: 8081 - name: websocket port: 8083 protocol: TCP targetPort: 8083 - name: wss port: 8084 protocol: TCP targetPort: 8084 - name: dashboard port: 18083 protocol: TCP targetPort: 18083 - name: ekka port: 4370 protocol: TCP targetPort: 4370 --- # Source: outside-deploy/charts/all-middleware/charts/mongo/templates/svc.yaml apiVersion: v1 kind: Service metadata: name: helm-mongo namespace: szzsj labels: cmii.app: helm-mongo cmii.type: middleware helm.sh/chart: mongo-1.1.0 app.kubernetes.io/managed-by: Helm app.kubernetes.io/version: "3.1.0" spec: type: ClusterIP selector: cmii.app: helm-mongo cmii.type: middleware ports: - port: 27017 name: server-27017 targetPort: 27017 --- # Source: outside-deploy/charts/all-middleware/charts/nacos/templates/svc.yaml apiVersion: v1 kind: Service metadata: name: helm-nacos namespace: szzsj labels: cmii.app: helm-nacos cmii.type: middleware helm.sh/chart: nacos-1.1.1 app.kubernetes.io/managed-by: Helm app.kubernetes.io/version: "3.1.0" spec: type: NodePort selector: cmii.app: helm-nacos cmii.type: middleware ports: - port: 8848 name: server targetPort: 8848 nodePort: 38989 - port: 9848 name: server12 targetPort: 9848 nodePort: 38912 - port: 9849 name: server23 targetPort: 9849 nodePort: 38923 --- # Source: outside-deploy/charts/all-middleware/charts/rabbitmq/templates/svc-headless.yaml apiVersion: v1 kind: Service metadata: name: helm-rabbitmq-headless namespace: szzsj labels: app.kubernetes.io/name: helm-rabbitmq helm.sh/chart: rabbitmq-8.26.1 app.kubernetes.io/release: szzsj app.kubernetes.io/managed-by: rabbitmq spec: clusterIP: None ports: - name: epmd port: 4369 targetPort: epmd - name: amqp port: 5672 targetPort: amqp - name: dist port: 25672 targetPort: dist - name: dashboard port: 15672 targetPort: stats selector: app.kubernetes.io/name: helm-rabbitmq app.kubernetes.io/release: szzsj publishNotReadyAddresses: true --- # Source: outside-deploy/charts/all-middleware/charts/rabbitmq/templates/svc.yaml apiVersion: v1 kind: Service metadata: name: helm-rabbitmq namespace: szzsj labels: app.kubernetes.io/name: helm-rabbitmq helm.sh/chart: rabbitmq-8.26.1 app.kubernetes.io/release: szzsj app.kubernetes.io/managed-by: rabbitmq spec: type: NodePort ports: - name: amqp port: 5672 targetPort: amqp nodePort: 35672 - name: dashboard port: 15672 targetPort: dashboard nodePort: 35675 selector: app.kubernetes.io/name: helm-rabbitmq app.kubernetes.io/release: szzsj --- # Source: outside-deploy/charts/all-middleware/charts/mongo/templates/statefulset.yaml apiVersion: apps/v1 kind: StatefulSet metadata: name: helm-mongo namespace: szzsj labels: cmii.app: helm-mongo cmii.type: middleware helm.sh/chart: mongo-1.1.0 app.kubernetes.io/managed-by: Helm app.kubernetes.io/version: "3.1.0" spec: serviceName: helm-mongo replicas: 1 selector: matchLabels: cmii.app: helm-mongo cmii.type: middleware template: metadata: labels: cmii.app: helm-mongo cmii.type: middleware helm.sh/chart: mongo-1.1.0 app.kubernetes.io/managed-by: Helm app.kubernetes.io/version: "3.1.0" annotations: pod.alpha.kubernetes.io/initialized: "true" spec: affinity: {} containers: - name: helm-mongo image: "172.10.125.92:8033/cmii/mongo:5.0" resources: {} ports: - containerPort: 27017 name: mongo27017 protocol: TCP env: - name: MONGO_INITDB_ROOT_USERNAME value: cmlc - name: MONGO_INITDB_ROOT_PASSWORD value: REdPza8#oVlt volumeMounts: - name: mongo-data mountPath: /data/db readOnly: false subPath: default/helm-mongo/data/db volumes: - name: mongo-data persistentVolumeClaim: claimName: helm-mongo --- # Source: outside-deploy/charts/all-middleware/charts/nacos/templates/statefulset.yaml apiVersion: apps/v1 kind: StatefulSet metadata: name: helm-nacos namespace: szzsj labels: cmii.app: helm-nacos cmii.type: middleware helm.sh/chart: -1.1.1 app.kubernetes.io/managed-by: Helm app.kubernetes.io/version: "3.1.0" spec: serviceName: helm-nacos replicas: 1 selector: matchLabels: cmii.app: helm-nacos cmii.type: middleware template: metadata: labels: cmii.app: helm-nacos cmii.type: middleware helm.sh/chart: nacos-1.1.1 app.kubernetes.io/managed-by: Helm app.kubernetes.io/version: "3.1.0" annotations: pod.alpha.kubernetes.io/initialized: "true" spec: affinity: {} containers: - name: nacos-server image: "172.10.125.92:8033/cmii/nacos-server:v2.1.2-slim" ports: - containerPort: 8848 name: dashboard env: - name: NACOS_AUTH_ENABLE value: "false" - name: NACOS_REPLICAS value: "1" - name: MYSQL_SERVICE_DB_NAME valueFrom: configMapKeyRef: name: helm-nacos-cm key: mysql.db.name - name: MYSQL_SERVICE_PORT valueFrom: configMapKeyRef: name: helm-nacos-cm key: mysql.port - name: MYSQL_SERVICE_USER valueFrom: configMapKeyRef: name: helm-nacos-cm key: mysql.user - name: MYSQL_SERVICE_PASSWORD valueFrom: configMapKeyRef: name: helm-nacos-cm key: mysql.password - name: MYSQL_SERVICE_HOST valueFrom: configMapKeyRef: name: helm-nacos-cm key: mysql.db.host - name: NACOS_SERVER_PORT value: "8848" - name: NACOS_APPLICATION_PORT value: "8848" - name: PREFER_HOST_MODE value: "hostname" - name: MODE value: standalone - name: SPRING_DATASOURCE_PLATFORM value: mysql --- # Source: outside-deploy/charts/all-middleware/charts/rabbitmq/templates/statefulset.yaml apiVersion: apps/v1 kind: StatefulSet metadata: name: helm-rabbitmq namespace: szzsj labels: app.kubernetes.io/name: helm-rabbitmq helm.sh/chart: rabbitmq-8.26.1 app.kubernetes.io/release: szzsj app.kubernetes.io/managed-by: rabbitmq spec: serviceName: helm-rabbitmq-headless podManagementPolicy: OrderedReady replicas: 1 updateStrategy: type: RollingUpdate selector: matchLabels: app.kubernetes.io/name: helm-rabbitmq app.kubernetes.io/release: szzsj template: metadata: labels: app.kubernetes.io/name: helm-rabbitmq helm.sh/chart: rabbitmq-8.26.1 app.kubernetes.io/release: szzsj app.kubernetes.io/managed-by: rabbitmq annotations: checksum/config: d6c2caa9572f64a06d9f7daa34c664a186b4778cd1697ef8e59663152fc628f1 checksum/secret: d764e7b3d999e7324d1afdfec6140092a612f04b6e0306818675815cec2f454f spec: serviceAccountName: helm-rabbitmq affinity: {} securityContext: fsGroup: 5001 runAsUser: 5001 terminationGracePeriodSeconds: 120 initContainers: - name: volume-permissions image: "172.10.125.92:8033/cmii/bitnami-shell:11-debian-11-r136" imagePullPolicy: "Always" command: - /bin/bash args: - -ec - | mkdir -p "/bitnami/rabbitmq/mnesia" chown -R "5001:5001" "/bitnami/rabbitmq/mnesia" securityContext: runAsUser: 0 resources: limits: {} requests: {} volumeMounts: - name: data mountPath: /bitnami/rabbitmq/mnesia containers: - name: rabbitmq image: "172.10.125.92:8033/cmii/rabbitmq:3.11.26-debian-11-r2" imagePullPolicy: "Always" env: - name: BITNAMI_DEBUG value: "false" - name: MY_POD_IP valueFrom: fieldRef: fieldPath: status.podIP - name: MY_POD_NAME valueFrom: fieldRef: fieldPath: metadata.name - name: MY_POD_NAMESPACE valueFrom: fieldRef: fieldPath: metadata.namespace - name: K8S_SERVICE_NAME value: "helm-rabbitmq-headless" - name: K8S_ADDRESS_TYPE value: hostname - name: RABBITMQ_FORCE_BOOT value: "no" - name: RABBITMQ_NODE_NAME value: "rabbit@$(MY_POD_NAME).$(K8S_SERVICE_NAME).$(MY_POD_NAMESPACE).svc.cluster.local" - name: K8S_HOSTNAME_SUFFIX value: ".$(K8S_SERVICE_NAME).$(MY_POD_NAMESPACE).svc.cluster.local" - name: RABBITMQ_MNESIA_DIR value: "/bitnami/rabbitmq/mnesia/$(RABBITMQ_NODE_NAME)" - name: RABBITMQ_LDAP_ENABLE value: "no" - name: RABBITMQ_LOGS value: "-" - name: RABBITMQ_ULIMIT_NOFILES value: "65536" - name: RABBITMQ_USE_LONGNAME value: "true" - name: RABBITMQ_ERL_COOKIE valueFrom: secretKeyRef: name: helm-rabbitmq key: rabbitmq-erlang-cookie - name: RABBITMQ_LOAD_DEFINITIONS value: "no" - name: RABBITMQ_SECURE_PASSWORD value: "yes" - name: RABBITMQ_USERNAME value: "admin" - name: RABBITMQ_PASSWORD valueFrom: secretKeyRef: name: helm-rabbitmq key: rabbitmq-password - name: RABBITMQ_PLUGINS value: "rabbitmq_management, rabbitmq_peer_discovery_k8s, rabbitmq_shovel, rabbitmq_shovel_management, rabbitmq_auth_backend_ldap" ports: - name: amqp containerPort: 5672 - name: dist containerPort: 25672 - name: dashboard containerPort: 15672 - name: epmd containerPort: 4369 livenessProbe: exec: command: - /bin/bash - -ec - rabbitmq-diagnostics -q ping initialDelaySeconds: 120 periodSeconds: 30 timeoutSeconds: 20 successThreshold: 1 failureThreshold: 6 readinessProbe: exec: command: - /bin/bash - -ec - rabbitmq-diagnostics -q check_running && rabbitmq-diagnostics -q check_local_alarms initialDelaySeconds: 10 periodSeconds: 30 timeoutSeconds: 20 successThreshold: 1 failureThreshold: 3 lifecycle: preStop: exec: command: - /bin/bash - -ec - | if [[ -f /opt/bitnami/scripts/rabbitmq/nodeshutdown.sh ]]; then /opt/bitnami/scripts/rabbitmq/nodeshutdown.sh -t "120" -d "false" else rabbitmqctl stop_app fi resources: limits: {} requests: {} volumeMounts: - name: configuration mountPath: /bitnami/rabbitmq/conf - name: data mountPath: /bitnami/rabbitmq/mnesia volumes: - name: configuration configMap: name: helm-rabbitmq-config items: - key: rabbitmq.conf path: rabbitmq.conf - name: data persistentVolumeClaim: claimName: helm-rabbitmq