imfreedom/k8s-cluster
Move 50-xmpp.imfreedom.org to kustomize
--- a/50-xmpp.imfreedom.org.yaml Thu Jun 17 04:33:14 2021 -0500
+++ /dev/null Thu Jan 01 00:00:00 1970 +0000
@@ -1,394 +0,0 @@
-# Prosody is an xmpp server. This manifest creates a deployment for it. It
-# handles virtualhosts for adium.im, imfreedom.org, as well as pidgin.im.
----
-apiVersion: traefik.containo.us/v1alpha1
- name: xmpp-imfreedom-http
- - match: Host(`xmpp.imfreedom.org`) || Host(`conference.imfreedom.org`)
----
-apiVersion: traefik.containo.us/v1alpha1
- - match: Host(`xmpp.imfreedom.org`) || Host(`conference.imfreedom.org`)
- secretName: imfreedom-tls
----
-apiVersion: traefik.containo.us/v1alpha1
- - match: Host(`xmpp.pidgin.im`) || Host(`conference.pidgin.im`)
----
-apiVersion: traefik.containo.us/v1alpha1
- - match: Host(`xmpp.pidgin.im`) || Host(`conference.pidgin.im`)
----
-apiVersion: traefik.containo.us/v1alpha1
----
-apiVersion: traefik.containo.us/v1alpha1
----
----
-apiVersion: networking.k8s.io/v1
----
- VirtualHost "imfreedom.org"
- certificate = "imfreedom/tls.crt"
- jetbrains_hub_groups = { "IMF Board Member", "IMF Officer", "IMF XMPP" }
- http_host = "xmpp.imfreedom.org"
- http_interfaces = {"*"}
- http_external_url = "https://xmpp.imfreedom.org/"
- certificate = "certs/imfreedom/tls.crt";
- key = "certs/imfreedom/tls.key";
- Component "conference.imfreedom.org" "muc"
- name = "Instant Messaging Freedom MUC"
- modules_enabled = { "muc_badge", "muc_mam", "muc_mam_hints", "muc_moderation", "muc_occupant_id", "vcard_muc" }
- http_host = "conference.imfreedom.org"
- http_external_url = "https://conference.imfreedom.org/"
- certificate = "certs/imfreedom/tls.crt";
- key = "certs/imfreedom/tls.key";
- restrict_room_creation = "local"
- Component "xmpp.imfreedom.org" "http"
- http_external_url = "https://xmpp.imfreedom.org/"
- http_host = "xmpp.imfreedom.org"
- modules_enabled = {"bosh"}
- VirtualHost "pidgin.im"
- certificate = "pidgin/tls.crt"
- jetbrains_hub_groups = { "Pidgin Admin", "Pidgin Contributor", "Pidgin XMPP" }
- http_host = "xmpp.pidgin.im"
- http_interfaces = {"*"}
- http_external_url = "https://xmpp.pidgin.im/"
- certificate = "certs/pidgin/tls.crt";
- key = "certs/pidgin/tls.key";
- Component "conference.pidgin.im" "muc"
- name = "Pidgin Internet Messaging MUC"
- modules_enabled = { "muc_badge", "muc_mam", "muc_mam_hints", "muc_moderation", "muc_occupant_id", "vcard_muc" }
- http_host = "conference.pidgin.im"
- http_external_url = "https://conference.pidgin.im/"
- certificate = "certs/pidgin/tls.crt";
- key = "certs/pidgin/tls.key";
- restrict_room_creation = "local"
- Component "xmpp.pidgin.im" "http"
- http_external_url = "https://xmpp.pidgin.im/"
- http_host = "xmpp.pidgin.im"
- modules_enabled = {"bosh"}
- pidginchat.com.cfg.lua: |
- VirtualHost "pidginchat.com"
- modules_disabled = {"s2s"}
- certificate = "pidginchat/tls.crt"
- jetbrains_hub_groups = { "pidginchat.com XMPP" }
- http_host = "pidginchat.com"
- http_interfaces = {"*"}
- http_external_url = "https://pidginchat.com/"
- certificate = "certs/pidginchat/tls.crt";
- key = "certs/pidginchat/tls.key";
----
-apiVersion: policy/v1beta1
-kind: PodDisruptionBudget
----
- image: docker.io/rwgrim/prosody:latest
- imagePullPolicy: Always
- - mountPath: /var/lib/prosody
- - mountPath: /etc/prosody/secrets.d/
- - mountPath: /etc/prosody/conf.d/
- - mountPath: /etc/prosody/certs/imfreedom/
- - mountPath: /etc/prosody/certs/pidgin/
- - mountPath: /etc/prosody/certs/pidginchat/
- secretName: imfreedom-tls
- secretName: pidginchat-tls
----
-kind: PersistentVolumeClaim
- volumeName: pvc-415a206e-5484-4cf0-a655-908d18339f62
----
-apiVersion: gemini.fairwinds.com/v1beta1
----
-apiVersion: monitoring.coreos.com/v1
----
-apiVersion: monitoring.coreos.com/v1
- prometheus: cluster-wide
----
--- /dev/null Thu Jan 01 00:00:00 1970 +0000
+++ b/50-xmpp.imfreedom.org/files/imfreedom.cfg.lua Thu Jun 17 04:47:37 2021 -0500
@@ -0,0 +1,26 @@
+VirtualHost "imfreedom.org" +certificate = "imfreedom/tls.crt" +jetbrains_hub_groups = { "IMF Board Member", "IMF Officer", "IMF XMPP" } +http_host = "xmpp.imfreedom.org" +http_external_url = "https://xmpp.imfreedom.org/" + certificate = "certs/imfreedom/tls.crt"; + key = "certs/imfreedom/tls.key"; +Component "conference.imfreedom.org" "muc" +name = "Instant Messaging Freedom MUC" +modules_enabled = { "muc_badge", "muc_mam", "muc_mam_hints", "muc_moderation", "muc_occupant_id", "vcard_muc" } +http_host = "conference.imfreedom.org" +http_external_url = "https://conference.imfreedom.org/" + certificate = "certs/imfreedom/tls.crt"; + key = "certs/imfreedom/tls.key"; +restrict_room_creation = "local" +Component "xmpp.imfreedom.org" "http" +http_external_url = "https://xmpp.imfreedom.org/" +http_host = "xmpp.imfreedom.org" +modules_enabled = {"bosh"} --- /dev/null Thu Jan 01 00:00:00 1970 +0000
+++ b/50-xmpp.imfreedom.org/files/pidgin.cfg.lua Thu Jun 17 04:47:37 2021 -0500
@@ -0,0 +1,26 @@
+certificate = "pidgin/tls.crt" +jetbrains_hub_groups = { "Pidgin Admin", "Pidgin Contributor", "Pidgin XMPP" } +http_host = "xmpp.pidgin.im" +http_external_url = "https://xmpp.pidgin.im/" + certificate = "certs/pidgin/tls.crt"; + key = "certs/pidgin/tls.key"; +Component "conference.pidgin.im" "muc" +name = "Pidgin Internet Messaging MUC" +modules_enabled = { "muc_badge", "muc_mam", "muc_mam_hints", "muc_moderation", "muc_occupant_id", "vcard_muc" } +http_host = "conference.pidgin.im" +http_external_url = "https://conference.pidgin.im/" + certificate = "certs/pidgin/tls.crt"; + key = "certs/pidgin/tls.key"; +restrict_room_creation = "local" +Component "xmpp.pidgin.im" "http" +http_external_url = "https://xmpp.pidgin.im/" +http_host = "xmpp.pidgin.im" +modules_enabled = {"bosh"} --- /dev/null Thu Jan 01 00:00:00 1970 +0000
+++ b/50-xmpp.imfreedom.org/files/pidginchat.com.cfg.lua Thu Jun 17 04:47:37 2021 -0500
@@ -0,0 +1,11 @@
+VirtualHost "pidginchat.com" +modules_disabled = {"s2s"} +certificate = "pidginchat/tls.crt" +jetbrains_hub_groups = { "pidginchat.com XMPP" } +http_host = "pidginchat.com" +http_external_url = "https://pidginchat.com/" + certificate = "certs/pidginchat/tls.crt"; + key = "certs/pidginchat/tls.key"; --- /dev/null Thu Jan 01 00:00:00 1970 +0000
+++ b/50-xmpp.imfreedom.org/kustomization.yaml Thu Jun 17 04:47:37 2021 -0500
@@ -0,0 +1,14 @@
+ - files/imfreedom.cfg.lua + - files/pidginchat.com.cfg.lua + disableNameSuffixHash: true --- /dev/null Thu Jan 01 00:00:00 1970 +0000
+++ b/50-xmpp.imfreedom.org/manifest.yaml Thu Jun 17 04:47:37 2021 -0500
@@ -0,0 +1,280 @@
+apiVersion: traefik.containo.us/v1alpha1 + name: xmpp-imfreedom-http + - match: Host(`xmpp.imfreedom.org`) || Host(`conference.imfreedom.org`) +apiVersion: traefik.containo.us/v1alpha1 + - match: Host(`xmpp.imfreedom.org`) || Host(`conference.imfreedom.org`) + secretName: imfreedom-tls +apiVersion: traefik.containo.us/v1alpha1 + - match: Host(`xmpp.pidgin.im`) || Host(`conference.pidgin.im`) +apiVersion: traefik.containo.us/v1alpha1 + - match: Host(`xmpp.pidgin.im`) || Host(`conference.pidgin.im`) +apiVersion: traefik.containo.us/v1alpha1 +apiVersion: traefik.containo.us/v1alpha1 +apiVersion: networking.k8s.io/v1 +apiVersion: policy/v1beta1 +kind: PodDisruptionBudget + image: docker.io/rwgrim/prosody:latest + imagePullPolicy: Always + - mountPath: /var/lib/prosody + - mountPath: /etc/prosody/secrets.d/ + - mountPath: /etc/prosody/conf.d/ + - mountPath: /etc/prosody/certs/imfreedom/ + - mountPath: /etc/prosody/certs/pidgin/ + - mountPath: /etc/prosody/certs/pidginchat/ + secretName: imfreedom-tls + secretName: pidginchat-tls +kind: PersistentVolumeClaim + volumeName: pvc-415a206e-5484-4cf0-a655-908d18339f62 +apiVersion: gemini.fairwinds.com/v1beta1 --- /dev/null Thu Jan 01 00:00:00 1970 +0000
+++ b/50-xmpp.imfreedom.org/prometheus.yaml Thu Jun 17 04:47:37 2021 -0500
@@ -0,0 +1,16 @@
+apiVersion: monitoring.coreos.com/v1 + prometheus: cluster-wide