apiVersion: v1 kind: Namespace metadata: name: raspap labels: app: raspap --- apiVersion: v1 kind: PersistentVolume metadata: namespace: raspap name: raspap-nfs labels: directory: raspap spec: storageClassName: fast capacity: storage: "2Gi" volumeMode: Filesystem accessModes: - ReadWriteOnce nfs: path: /raspap server: 10.43.239.43 # assigned to nfs-server service. Won't change as long as service is not redeployed --- apiVersion: v1 kind: PersistentVolumeClaim metadata: namespace: raspap name: raspap-nfs spec: storageClassName: fast accessModes: - ReadWriteOnce resources: requests: storage: "2Gi" selector: matchLabels: directory: raspap --- apiVersion: apps/v1 kind: Deployment metadata: name: raspap namespace: raspap labels: app: raspap spec: replicas: 1 selector: matchLabels: app: raspap template: metadata: labels: app: raspap spec: containers: - name: raspap image: jrcichra/raspap-docker tty: true networkMode: "host" securityContext: capabilities: add: - SYS_ADMIN ports: - containerPort: 8000 volumeMounts: - mountPath: /data name: raspap-nfs - mountPath: /sys/fs/cgroup name: cgroup volumes: - name: cgroup hostPath: path: /sys/fs/cgroup readOnly: true - name: raspap-nfs persistentVolumeClaim: claimName: raspap-nfs --- apiVersion: v1 kind: Service metadata: name: archive namespace: archive spec: type: ClusterIP ports: - name: http port: 8000 selector: app: archive --- kind: Ingress apiVersion: networking.k8s.io/v1 metadata: namespace: archive name: archive-ingress annotations: kubernetes.io/ingress.class: nginx cert-manager.io/cluster-issuer: cloudflare-letsencrypt-prod spec: tls: - hosts: - archive.kluster.moll.re secretName: cloudflare-letsencrypt-issuer-account-key rules: - host: archive.kluster.moll.re http: paths: - backend: service: name: archive port: number: 8000 path: / pathType: Prefix