apiVersion: v1 kind: Namespace metadata: name: tori --- apiVersion: apps/v1 kind: Deployment metadata: name: tori namespace: tori spec: replicas: 1 selector: matchLabels: app: tori template: metadata: labels: app: tori spec: imagePullSecrets: - name: regcred containers: - name: tori image: registry.oci.euphon.net/tori:latest imagePullPolicy: Never ports: - containerPort: 3000 volumeMounts: - name: data mountPath: /app/data env: - name: RUST_LOG value: "info" - name: GOOGLE_CLIENT_ID valueFrom: secretKeyRef: name: tori-auth key: google-client-id - name: GOOGLE_CLIENT_SECRET valueFrom: secretKeyRef: name: tori-auth key: google-client-secret - name: JWT_SECRET valueFrom: secretKeyRef: name: tori-auth key: jwt-secret - name: PUBLIC_URL value: "https://tori.euphon.cloud" volumes: - name: data hostPath: path: /data/tori type: DirectoryOrCreate --- apiVersion: v1 kind: Service metadata: name: tori namespace: tori spec: selector: app: tori ports: - port: 80 targetPort: 3000 type: ClusterIP --- apiVersion: networking.k8s.io/v1 kind: Ingress metadata: name: tori namespace: tori annotations: traefik.ingress.kubernetes.io/router.tls.certresolver: le spec: ingressClassName: traefik rules: - host: tori.oci.euphon.net http: paths: - path: / pathType: Prefix backend: service: name: tori port: number: 80 - host: tori.euphon.cloud http: paths: - path: / pathType: Prefix backend: service: name: tori port: number: 80 tls: - hosts: - tori.oci.euphon.net - tori.euphon.cloud