Michal.Wrobel/openbao-helm
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

Add consul-dns service

Browse source
This commit is contained in:
Mitchell Hashimoto 2018-09-11 17:53:02 -07:00
parent 0db2be6d10
commit 64670ed470
No known key found for this signature in database
GPG key ID: 744E147AA52F5B0A
5 changed files with 98 additions and 16 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

2
templates/client-daemonset.yaml
View file

@ -16,6 +16,7 @@ spec:
chart: {{ template "consul.chart" . }} chart: {{ template "consul.chart" . }}
release: {{ .Release.Name }} release: {{ .Release.Name }}
component: client component: client
hasDNS: "true"
template: template:
metadata: metadata:
labels: labels:
@ -23,6 +24,7 @@ spec:
chart: {{ template "consul.chart" . }} chart: {{ template "consul.chart" . }}
release: {{ .Release.Name }} release: {{ .Release.Name }}
component: client component: client
hasDNS: "true"
annotations: annotations:
"consul.hashicorp.com/connect-inject": "false" "consul.hashicorp.com/connect-inject": "false"
spec: spec:

26
templates/dns-service.yaml Normal file
View file

@ -0,0 +1,26 @@
# Service for Consul DNS.
{{- if (or (and (ne (.Values.dns.enabled | toString) "-") .Values.dns.enabled) (and (eq (.Values.dns.enabled | toString) "-") .Values.global.enabled)) }}
apiVersion: v1
kind: Service
metadata:
name: {{ template "consul.fullname" . }}-dns
labels:
app: {{ template "consul.name" . }}
chart: {{ template "consul.chart" . }}
heritage: {{ .Release.Service }}
release: {{ .Release.Name }}
spec:
ports:
- name: dns-tcp
port: 53
protocol: "TCP"
targetPort: dns
- name: dns-udp
port: 53
protocol: "UDP"
targetPort: dns
selector:
app: {{ template "consul.name" . }}
release: "{{ .Release.Name }}"
hasDNS: "true"
{{- end }}

2
templates/server-statefulset.yaml
View file

@ -25,6 +25,7 @@ spec:
chart: {{ template "consul.chart" . }} chart: {{ template "consul.chart" . }}
release: {{ .Release.Name }} release: {{ .Release.Name }}
component: server component: server
hasDNS: "true"
template: template:
metadata: metadata:
labels: labels:
@ -32,6 +33,7 @@ spec:
chart: {{ template "consul.chart" . }} chart: {{ template "consul.chart" . }}
release: {{ .Release.Name }} release: {{ .Release.Name }}
component: server component: server
hasDNS: "true"
annotations: annotations:
"consul.hashicorp.com/connect-inject": "false" "consul.hashicorp.com/connect-inject": "false"
spec: spec:

43
test/unit/dns-service.bats Executable file
View file

@ -0,0 +1,43 @@
#!/usr/bin/env bats
load _helpers
@test "dns/Service: enabled by default" {
cd `chart_dir`
local actual=$(helm template \
-x templates/dns-service.yaml \
. | tee /dev/stderr |
yq 'length > 0' | tee /dev/stderr)
[ "${actual}" = "true" ]
}
@test "dns/Service: enable with global.enabled false" {
cd `chart_dir`
local actual=$(helm template \
-x templates/dns-service.yaml \
--set 'global.enabled=false' \
--set 'dns.enabled=true' \
. | tee /dev/stderr |
yq 'length > 0' | tee /dev/stderr)
[ "${actual}" = "true" ]
}
@test "dns/Service: disable with dns.enabled" {
cd `chart_dir`
local actual=$(helm template \
-x templates/dns-service.yaml \
--set 'dns.enabled=false' \
. | tee /dev/stderr |
yq 'length > 0' | tee /dev/stderr)
[ "${actual}" = "false" ]
}
@test "dns/Service: disable with global.enabled" {
cd `chart_dir`
local actual=$(helm template \
-x templates/dns-service.yaml \
--set 'global.enabled=false' \
. | tee /dev/stderr |
yq 'length > 0' | tee /dev/stderr)
[ "${actual}" = "false" ]
}

41
values.yaml
View file

@ -94,6 +94,31 @@ client:
# name: my-secret # name: my-secret
# load: false # if true, will add to `-config-dir` to load by Consul # load: false # if true, will add to `-config-dir` to load by Consul
# Configuration for DNS configuration within the Kubernetes cluster.
# This creates a service that routes to all agents (client or server)
# for serving DNS requests. This DOES NOT automatically configure kube-dns
# today, so you must still manually configure a `stubDomain` with kube-dns
# for this to have any effect:
# https://kubernetes.io/docs/tasks/administer-cluster/dns-custom-nameservers/#configure-stub-domain-and-upstream-dns-servers
dns:
enabled: "-"
ui:
# True if you want to enable the Consul UI. The UI will run only
# on the server nodes. This makes UI access via the service below (if
# enabled) predictable rather than "any node" if you're running Consul
# clients as well.
enabled: "-"
# True if you want to create a Service entry for the Consul UI.
#
# serviceType can be used to control the type of service created. For
# example, setting this to "LoadBalancer" will create an external load
# balancer (for supported K8S installations) to access the UI.
service:
enabled: true
type: null
# ConnectInject will enable the automatic Connect sidecar injector. # ConnectInject will enable the automatic Connect sidecar injector.
connectInject: connectInject:
enabled: false # "-" disable this by default for now until the image is public enabled: false # "-" disable this by default for now until the image is public
@ -128,22 +153,6 @@ connectInject:
certName: tls.crt certName: tls.crt
keyName: tls.key keyName: tls.key
ui:
# True if you want to enable the Consul UI. The UI will run only
# on the server nodes. This makes UI access via the service below (if
# enabled) predictable rather than "any node" if you're running Consul
# clients as well.
enabled: "-"
# True if you want to create a Service entry for the Consul UI.
#
# serviceType can be used to control the type of service created. For
# example, setting this to "LoadBalancer" will create an external load
# balancer (for supported K8S installations) to access the UI.
service:
enabled: true
type: null
test: test:
image: lachlanevenson/k8s-kubectl image: lachlanevenson/k8s-kubectl
imageTag: v1.4.8-bash imageTag: v1.4.8-bash