Welcome to mirror list, hosted at ThFree Co, Russian Federation.

cert_manager.rb « applications « clusters « models « app - gitlab.com/gitlab-org/gitlab-foss.git - Unnamed repository; edit this file 'description' to name the repository.
summaryrefslogtreecommitdiff
path: root/app/models/clusters/applications/cert_manager.rb
blob: e2cc39ca5c5f6e0365cf8ea3a7d0830d624114ac (plain) 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71

# frozen_string_literal: true

module Clusters
    module Applications
      class CertManager < ActiveRecord::Base
        VERSION = 'v0.5.0'.freeze
  
        self.table_name = 'clusters_applications_cert_managers'

        include ::Clusters::Concerns::ApplicationCore
        include ::Clusters::Concerns::ApplicationStatus
        include ::Clusters::Concerns::ApplicationVersion
        include ::Clusters::Concerns::ApplicationData
  
        default_value_for :version, VERSION
  
        def ready_status
          [:installed]
        end
  
        def ready?
          ready_status.include?(status_name)
        end
  
        def chart
          'stable/cert-manager'
        end

        def install_command
          Gitlab::Kubernetes::Helm::InstallCommand.new(
            name: 'certmanager',
            version: VERSION,
            rbac: cluster.platform_kubernetes_rbac?,
            chart: chart,
            files: files.merge!(cluster_issuer_file),
            postinstall: post_install_script,
            application_flags: install_command_flags
          )
        end

        def install_command_flags
          ['--set', 'ingressShim.defaultIssuerName=letsencrypt-prod'] +
            ['--set', 'ingressShim.defaultIssuerKind=ClusterIssuer'] +
            ['--set', 'rbac.create=false']
        end

        private

        def post_install_script
          ["/usr/bin/kubectl create -f /data/helm/certmanager/config/cluster_issuer.yaml"]
        end

        def cluster_issuer_file
          {
            'cluster_issuer.yaml': cluster_issuer_yaml_content
          }
        end

        def cluster_issuer_yaml_content
          data = YAML.load_file(cluster_issuer_file_path)
          data["spec"]["acme"]["email"] = self.email
          YAML.dump(data)
        end  

        def cluster_issuer_file_path
          "#{Rails.root}/vendor/cert_manager/cluster_issuer.yaml"
        end
      end
    end
  end
generated by cgit v1.2.3 (git 2.25.1) at 2024-07-15 01:26:20 +0300