Añado Vaultwarden

Comunes/creaImagenVaultwarden.sh

@@ -0,0 +1,3 @@
+docker pull vaultwarden/server:latest
+docker tag vaultwarden/server:latest docker-registry:32000/vaultwarden:1.0
+docker push docker-registry:32000/vaultwarden:1.0

HelmCharts/helmVaultwarden.sh

@@ -0,0 +1,12 @@
+#!/bin/bash
+
+if [ "$1" = "i" ]
+then
+	kubectl apply -f ./preparaVaultwarden/vw-namespace.yaml
+	kubectl apply -f ./preparaVaultwarden/pv-local-vaultwarden.yaml
+	helm install vaultwarden vaultwarden-chart/
+else
+	helm uninstall vaultwarden 
+	kubectl delete -f ./preparaVaultwarden/vw-namespace.yaml
+	kubectl delete -f ./preparaVaultwarden/pv-local-vaultwarden.yaml
+fi

HelmCharts/preparaVaultwarden/pv-local-vaultwarden.yaml

@@ -0,0 +1,12 @@
+apiVersion: v1
+kind: PersistentVolume
+metadata:
+  name: vw-folder
+spec:
+  capacity:
+    storage: 10Gi
+  accessModes:
+    - ReadWriteOnce
+  hostPath:
+    path: "/mnt/cluster/vaultwarden"
+

HelmCharts/preparaVaultwarden/vw-namespace.yaml

@@ -0,0 +1,4 @@
+apiVersion: v1
+kind: Namespace
+metadata:
+   name: vaultwarden

HelmCharts/vaultwarden-chart/.helmignore

@@ -0,0 +1,23 @@
+# Patterns to ignore when building packages.
+# This supports shell glob matching, relative path matching, and
+# negation (prefixed with !). Only one pattern per line.
+.DS_Store
+# Common VCS dirs
+.git/
+.gitignore
+.bzr/
+.bzrignore
+.hg/
+.hgignore
+.svn/
+# Common backup files
+*.swp
+*.bak
+*.tmp
+*.orig
+*~
+# Various IDEs
+.project
+.idea/
+*.tmproj
+.vscode/

HelmCharts/vaultwarden-chart/Chart.yaml

@@ -0,0 +1,24 @@
+apiVersion: v2
+name: vaultwarden-chart
+description: A Helm chart for Kubernetes
+
+# A chart can be either an 'application' or a 'library' chart.
+#
+# Application charts are a collection of templates that can be packaged into versioned archives
+# to be deployed.
+#
+# Library charts provide useful utilities or functions for the chart developer. They're included as
+# a dependency of application charts to inject those utilities and functions into the rendering
+# pipeline. Library charts do not define any templates and therefore cannot be deployed.
+type: application
+
+# This is the chart version. This version number should be incremented each time you make changes
+# to the chart and its templates, including the app version.
+# Versions are expected to follow Semantic Versioning (https://semver.org/)
+version: 0.1.0
+
+# This is the version number of the application being deployed. This version number should be
+# incremented each time you make changes to the application. Versions are not expected to
+# follow Semantic Versioning. They should reflect the version the application is using.
+# It is recommended to use it with quotes.
+appVersion: "1.16.0"

HelmCharts/vaultwarden-chart/templates/registry-secrets.yaml

@@ -0,0 +1,11 @@
+apiVersion: v1
+data:
+  .dockerconfigjson: eyJhdXRocyI6eyJkb2NrZXItcmVnaXN0cnk6MzIwMDAiOnsidXNlcm5hbWUiOiJjcmV5bG9wZXoiLCJwYXNzd29yZCI6IlJleS0xMTc2IiwiYXV0aCI6IlkzSmxlV3h2Y0dWNk9sSmxlUzB4TVRjMiJ9fX0=
+kind: Secret
+metadata:
+  creationTimestamp: "2023-01-29T10:54:14Z"
+  name: reg-cred-secret
+  namespace: vaultwarden
+  resourceVersion: "19890385"
+  uid: 66b3b7c5-26c1-4e5a-af4e-dc973aaafe4b
+type: kubernetes.io/dockerconfigjson

HelmCharts/vaultwarden-chart/templates/vaultwarden-deployment.yaml

@@ -0,0 +1,68 @@
+apiVersion: v1
+kind: Service
+metadata:
+  name: vaultwarden
+  namespace: vaultwarden
+  labels:
+    app: vaultwarden
+spec:
+  type: NodePort
+  ports:
+    - port: 80
+      nodePort: 30798
+      targetPort: vaultwarden
+  selector:
+    app: vaultwarden
+    tier: frontend
+---
+apiVersion: v1
+kind: PersistentVolumeClaim
+metadata:
+  name: vw-pv-claim
+  namespace: vaultwarden
+  labels:
+    app: vaultwarden
+spec:
+  accessModes:
+    - ReadWriteOnce
+  storageClassName: ""
+  resources:
+    requests:
+      storage: 10Gi
+---
+apiVersion: apps/v1
+kind: Deployment
+metadata:
+  name: vaultwarden
+  namespace: vaultwarden
+  labels:
+    app: vaultwarden
+spec:
+  selector:
+    matchLabels:
+      app: vaultwarden
+      tier: frontend
+  strategy:
+    type: Recreate
+  template:
+    metadata:
+      labels:
+        app: vaultwarden
+        tier: frontend
+    spec:
+      containers:
+              # - image: vaultwarden
+      - image: docker-registry:32000/vaultwarden:1.0
+        name: vaultwarden
+        ports:
+        - containerPort: 80
+          name: vaultwarden
+        volumeMounts:
+        - name: vaultwarden-persistent-storage
+          mountPath: /data
+      imagePullSecrets:
+      - name: reg-cred-secret
+      volumes:
+      - name: vaultwarden-persistent-storage
+        persistentVolumeClaim:
+          claimName: vw-pv-claim

HelmCharts/vaultwarden-chart/values.yaml

@@ -0,0 +1,82 @@
+# Default values for vaultwarden-chart.
+# This is a YAML-formatted file.
+# Declare variables to be passed into your templates.
+
+replicaCount: 1
+
+image:
+  repository: docker-registry:32000
+  pullPolicy: IfNotPresent
+  # Overrides the image tag whose default is the chart appVersion.
+  tag: ""
+
+imagePullSecrets: [reg-cred-secret]
+nameOverride: ""
+fullnameOverride: ""
+
+serviceAccount:
+  # Specifies whether a service account should be created
+  create: true
+  # Annotations to add to the service account
+  annotations: {}
+  # The name of the service account to use.
+  # If not set and create is true, a name is generated using the fullname template
+  name: ""
+
+podAnnotations: {}
+
+podSecurityContext: {}
+  # fsGroup: 2000
+
+securityContext: {}
+  # capabilities:
+  #   drop:
+  #   - ALL
+  # readOnlyRootFilesystem: true
+  # runAsNonRoot: true
+  # runAsUser: 1000
+
+service:
+  type: NodePort
+  port: 80
+
+ingress:
+  enabled: false
+  className: ""
+  annotations: {}
+    # kubernetes.io/ingress.class: nginx
+    # kubernetes.io/tls-acme: "true"
+  hosts:
+    - host: chart-example.local
+      paths:
+        - path: /
+          pathType: ImplementationSpecific
+  tls: []
+  #  - secretName: chart-example-tls
+  #    hosts:
+  #      - chart-example.local
+
+resources: {}
+  # We usually recommend not to specify default resources and to leave this as a conscious
+  # choice for the user. This also increases chances charts run on environments with little
+  # resources, such as Minikube. If you do want to specify resources, uncomment the following
+  # lines, adjust them as necessary, and remove the curly braces after 'resources:'.
+  # limits:
+  #   cpu: 100m
+  #   memory: 128Mi
+  # requests:
+  #   cpu: 100m
+  #   memory: 128Mi
+
+autoscaling:
+  enabled: false
+  minReplicas: 1
+  maxReplicas: 100
+  targetCPUUtilizationPercentage: 80
+  # targetMemoryUtilizationPercentage: 80
+
+nodeSelector: {}
+
+tolerations: []
+
+affinity: {}