| 123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148 |
- {{- define "jenkins.workload" -}}
- workload:
- jenkins:
- enabled: true
- primary: true
- type: Deployment
- podSpec:
- hostNetwork: {{ .Values.jenkinsNetwork.hostNetwork }}
- securityContext:
- fsGroup: 1000
- containers:
- jenkins:
- enabled: true
- primary: true
- imageSelector: image
- securityContext:
- runAsUser: 1000
- runAsGroup: 1000
- {{ $config := (include "jenkins.configuration" $ | fromYaml).opts }}
- env:
- JENKINS_SLAVE_AGENT_PORT: {{ .Values.jenkinsNetwork.agentPort }}
- JENKINS_JAVA_OPTS: {{ join " " $config.jenkinsJavaOpts }}
- JENKINS_OPTS: {{ join " " $config.jenkinsOpts }}
- {{ with .Values.jenkinsConfig.additionalEnvs }}
- envList:
- {{ range $env := . }}
- - name: {{ $env.name }}
- values: {{ $env.value }}
- {{ end }}
- {{ end }}
- {{ $scheme := "http" }}
- {{ if .Values.jenkinsNetwork.certificateID }}
- {{ $scheme = "https" }}
- {{ end }}
- probes:
- liveness:
- enabled: true
- type: {{ $scheme }}
- port: {{ .Values.jenkinsNetwork.webPort }}
- path: /login
- readiness:
- enabled: true
- type: {{ $scheme }}
- port: {{ .Values.jenkinsNetwork.webPort }}
- path: /login
- startup:
- enabled: true
- type: {{ $scheme }}
- port: {{ .Values.jenkinsNetwork.webPort }}
- path: /login
- initContainers:
- {{- include "ix.v1.common.app.permissions" (dict "containerName" "01-permissions"
- "UID" 1000
- "GID" 1000
- "mode" "check"
- "type" "init") | nindent 8 }}
- {{- if .Values.jenkinsNetwork.certificateID }}
- 02-cert-container:
- {{- include "jenkins.certContainer" $ | nindent 10 }}
- {{- end }}
- {{/* Service */}}
- service:
- jenkins:
- enabled: true
- primary: true
- type: NodePort
- targetSelector: jenkins
- ports:
- web:
- enabled: true
- primary: true
- port: {{ .Values.jenkinsNetwork.webPort }}
- nodePort: {{ .Values.jenkinsNetwork.webPort }}
- targetSelector: jenkins
- agent:
- enabled: {{ .Values.jenkinsNetwork.agent }}
- primary: false
- type: NodePort
- targetSelector: jenkins
- ports:
- agent:
- enabled: {{ .Values.jenkinsNetwork.agent }}
- primary: true
- port: {{ .Values.jenkinsNetwork.agentPort }}
- nodePort: {{ .Values.jenkinsNetwork.agentPort }}
- targetSelector: jenkins
- {{/* Persistence */}}
- persistence:
- home:
- enabled: true
- type: {{ .Values.jenkinsStorage.home.type }}
- datasetName: {{ .Values.jenkinsStorage.home.datasetName | default "" }}
- hostPath: {{ .Values.jenkinsStorage.home.hostPath | default "" }}
- targetSelector:
- jenkins:
- jenkins:
- mountPath: /var/jenkins_home
- 01-permissions:
- mountPath: /mnt/directories/home
- 02-cert-container:
- mountPath: /var/jenkins_home
- tmp:
- enabled: true
- type: emptyDir
- targetSelector:
- jenkins:
- jenkins:
- mountPath: /tmp
- 02-cert-container:
- mountPath: /tmp
- {{- range $idx, $storage := .Values.jenkinsStorage.additionalStorages }}
- {{ printf "jenkins-%v" (int $idx) }}:
- enabled: true
- type: {{ $storage.type }}
- datasetName: {{ $storage.datasetName | default "" }}
- hostPath: {{ $storage.hostPath | default "" }}
- targetSelector:
- jenkins:
- jenkins:
- mountPath: {{ $storage.mountPath }}
- 01-permissions:
- mountPath: /mnt/directories{{ $storage.mountPath }}
- {{- end }}
- {{- if .Values.jenkinsNetwork.certificateID }}
- cert:
- enabled: true
- type: secret
- objectName: jenkins-cert
- defaultMode: "0600"
- items:
- - key: tls.key
- path: {{ .Values.jenkinsConstants.keyName }}
- - key: tls.crt
- path: {{ .Values.jenkinsConstants.crtName }}
- targetSelector:
- jenkins:
- 02-cert-container:
- mountPath: {{ .Values.jenkinsConstants.certsPath }}
- readOnly: true
- scaleCertificate:
- jenkins-cert:
- enabled: true
- id: {{ .Values.jenkinsNetwork.certificateID }}
- {{- end -}}
- {{- end -}}
|
