Adds helm chart for heptio/ark

stable/ark-server/.helmignore

@@ -0,0 +1,21 @@
+# Patterns to ignore when building packages.
+# This supports shell glob matching, relative path matching, and
+# negation (prefixed with !). Only one pattern per line.
+.DS_Store
+# Common VCS dirs
+.git/
+.gitignore
+.bzr/
+.bzrignore
+.hg/
+.hgignore
+.svn/
+# Common backup files
+*.swp
+*.bak
+*.tmp
+*~
+# Various IDEs
+.project
+.idea/
+*.tmproj

stable/ark-server/Chart.yaml

@@ -0,0 +1,11 @@
+apiVersion: v1
+appVersion: 0.8.1
+description: A Helm chart for ark-server
+name: ark-server
+version: 1.0.0
+home: https://heptio.com/products/#heptio-ark
+sources:
+- https://github.com/heptio/ark
+maintainers:
+- name: domcar
+  email: d-caruso@hotmail.it

stable/ark-server/README.md

@@ -0,0 +1,63 @@
+# Ark-server
+
+This helm chart install ark-server version v0.8.1
+https://github.com/heptio/ark/tree/v0.8.1
+
+## Premise
+Helm cannot handle properly CRD becauses it has a validation mechanism that checks the installation before the CRD are actually created,
+hence each resource that uses a CRD cannot be validated because the CRD doesn't exist yet!
+
+The trick here is to create CRD via helm chart, and only after (using a `post-install`) to install the resources with a container.
+The container has the only job to execute a `kubectl create -f filename` and create the resources.
+
+At the same time the resources created with the hook are completely transparent to Helm, that is, when you delete the
+chart those resources remain there. Hence we need a sencond hook for deleting them (see hook-delete.yaml)
+
+## Content
+- `templates/backups.yaml`
+  `configs`
+  `schedules`
+  `downloadrequest`  these files contain the custom resouces needed by Ark Server
+- `hook_delete.yaml` and `hook_deploy.yaml` are the containers that will deploy or delete ark-server configuration
+- `configmap.yaml` Configmap will be mounted to the hook container as a file and subsequently used as k8s manifest for deploy or deletion
+
+## ConfigMap customization
+Since we want to have a customizable chart it's important that the configmap is a template and not a static file.
+To do this we add the keyword `tpl` when reading the file
+- {{ (tpl (.Files.Glob "configuration/").AsConfig .) | indent 2 }}
+
+
+## Prerequisites
+
+### Heptio Secret
+Ark server needs a IAM service account in order to run, if you don't have it you must create it.
+This is the guide for gcp: https://github.com/heptio/ark/blob/v0.8.1/docs/gcp-config.md#create-service-account
+
+Don't forget the step to create the secret
+```
+kubectl create secret generic cloud-credentials --namespace <ARK_NAMESPACE> --from-file cloud=credentials-ark
+```
+
+### Configuration
+Please change the values.yaml according to your setup
+See here for the official documentation https://github.com/heptio/ark/blob/v0.8.1/docs/config-definition.md
+
+Parameter | Description | Default | Required
+--- | --- | --- | ---
+`cloudprovider` | Cloud provider  | `nil` | yes
+`bucket` | Object storage where to store backups  | `nil` | yes
+`region` | AWS region  | `nil` | only if using AWS
+`credentials` | Credentials  | `nil` | Yes (not required for kube2iam)
+`kube2iam` | Enable kube2iam  | `false` | No
+`backupSyncPeriod` | How frequently Ark queries the object storage to make sure that the appropriate Backup resources have been created for existing backup files. | `60m` | yes
+`gcSyncPeriod` | How frequently Ark queries the object storage to delete backup files that have passed their TTL.  | `60m` | yes
+`scheduleSyncPeriod` | How frequently Ark checks its Schedule resource objects to see if a backup needs to be initiated  | `1m` | yes
+`restoreOnlyMode` | When RestoreOnly mode is on, functionality for backups, schedules, and expired backup deletion is turned off. Restores are made from existing backup files in object storage.  | `false` | yes
+
+## How to
+```
+helm install --name ark-server --namespace heptio-ark ./ark-server
+```
+
+## Remove heptio/ark
+Rememebr that when you remove ark all backups remain untouched

stable/ark-server/configuration/01-config-deploy.yaml

@@ -0,0 +1,26 @@
+apiVersion: ark.heptio.com/v1
+kind: Config
+metadata:
+  namespace: {{ .Values.namespace.name }}
+  name: default
+persistentVolumeProvider:
+  name: {{ .Values.configuration.cloudprovider  }}
+  config:
+    {{- if eq .Values.configuration.cloudprovider "aws" }}
+    region: {{ .Values.configuration.region  }}
+    {{- end }}
+    {{- if eq .Values.configuration.cloudprovider "azure" }}
+    apiTimeout: {{ .Values.configuration.apitimeout  }}
+    {{- end }}
+backupStorageProvider:
+  name: {{ .Values.configuration.cloudprovider  }}
+  bucket: {{ .Values.configuration.bucket  }}
+  {{- if eq .Values.configuration.cloudprovider "aws" }}
+  config:
+    region: {{ .Values.configuration.region  }}
+  {{- end }}
+backupSyncPeriod: {{ .Values.configuration.backupSyncPeriod }}
+gcSyncPeriod: {{ .Values.configuration.gcSyncPeriod }}
+scheduleSyncPeriod: {{ .Values.configuration.scheduleSyncPeriod }}
+restoreOnlyMode: {{ .Values.configuration.restoreOnlyMode }}
+

stable/ark-server/templates/NOTES.txt

@@ -0,0 +1,11 @@
+Check that the ark-server is up and running:
+kubectl get pod --namespace {{ .Values.namespace.name }}
+
+Check that the secret has been created:
+kubectl get secret --namespace {{ .Values.namespace.name }} {{ .Values.secret.name }}
+
+Once ark server is up and running you need the client before you can use it
+1. wget https://github.com/heptio/ark/releases/download/{{ .Values.image.tag }}/ark-{{ .Values.image.tag }}-darwin-amd64.tar.gz
+2. tar -xvf ark-{{ .Values.image.tag }}-darwin-amd64.tar.gz -C ark-client
+
+More info on the official site: https://github.com/heptio/ark#install-client

stable/ark-server/templates/_helpers.tpl

@@ -0,0 +1,54 @@
+{{/* vim: set filetype=mustache: */}}
+{{/*
+Expand the name of the chart.
+*/}}
+{{- define "ark-server.name" -}}
+{{- default .Chart.Name .Values.nameOverride | trunc 63 | trimSuffix "-" -}}
+{{- end -}}
+
+{{/*
+Create a default fully qualified app name.
+We truncate at 63 chars because some Kubernetes name fields are limited to this (by the DNS naming spec).
+If release name contains chart name it will be used as a full name.
+*/}}
+{{- define "ark-server.fullname" -}}
+{{- if .Values.fullnameOverride -}}
+{{- .Values.fullnameOverride | trunc 63 | trimSuffix "-" -}}
+{{- else -}}
+{{- $name := default .Chart.Name .Values.nameOverride -}}
+{{- if contains $name .Release.Name -}}
+{{- .Release.Name | trunc 63 | trimSuffix "-" -}}
+{{- else -}}
+{{- printf "%s-%s" .Release.Name $name | trunc 63 | trimSuffix "-" -}}
+{{- end -}}
+{{- end -}}
+{{- end -}}
+
+{{/*
+Create chart name and version as used by the chart label.
+*/}}
+{{- define "ark-server.chart" -}}
+{{- printf "%s-%s" .Chart.Name .Chart.Version | replace "+" "_" | trunc 63 | trimSuffix "-" -}}
+{{- end -}}
+
+{{/*
+Create the name of the service account to use for creating or deleting the ark config
+*/}}
+{{- define "ark-server.hookSA" -}}
+{{- if .Values.serviceAccount.hook.create -}}
+    {{ default "hook-sa" .Values.serviceAccount.hook.name }}
+{{- else -}}
+    {{ default "default" .Values.serviceAccount.hook.name }}
+{{- end -}}
+{{- end -}}
+
+{{/*
+Create the name of the service account to use for creating or deleting the ark server
+*/}}
+{{- define "ark-server.sa" -}}
+{{- if .Values.serviceAccount.server.create -}}
+    {{ default (include "ark-server.fullname" .) .Values.serviceAccount.server.name }}
+{{- else -}}
+    {{ default "default" .Values.serviceAccount.server.name }}
+{{- end -}}
+{{- end -}}

stable/ark-server/templates/backups.yaml

@@ -0,0 +1,16 @@
+apiVersion: apiextensions.k8s.io/v1beta1
+kind: CustomResourceDefinition
+metadata:
+  name: backups.ark.heptio.com
+  labels:
+    chart: {{ .Chart.Name }}-{{ .Chart.Version }}
+    heritage: {{ .Release.Service }}
+    release: {{ .Release.Name }}
+    app: {{ template "ark-server.name" . }}
+spec:
+  group: ark.heptio.com
+  version: v1
+  scope: Namespaced
+  names:
+    plural: backups
+    kind: Backup

stable/ark-server/templates/configmap.yaml

@@ -0,0 +1,7 @@
+apiVersion: v1
+kind: ConfigMap
+metadata:
+  name: ark-server-config
+  namespace: {{ .Values.namespace.name }}
+data:
+{{ (tpl (.Files.Glob "configuration/*").AsConfig .) | indent 2 }}

stable/ark-server/templates/configs.yaml

@@ -0,0 +1,16 @@
+apiVersion: apiextensions.k8s.io/v1beta1
+kind: CustomResourceDefinition
+metadata:
+  name: configs.ark.heptio.com
+  labels:
+    chart: {{ .Chart.Name }}-{{ .Chart.Version }}
+    heritage: {{ .Release.Service }}
+    release: {{ .Release.Name }}
+    app: {{ template "ark-server.name" . }}
+spec:
+  group: ark.heptio.com
+  version: v1
+  scope: Namespaced
+  names:
+    plural: configs
+    kind: Config

stable/ark-server/templates/deletebackuprequests.yaml

@@ -0,0 +1,16 @@
+apiVersion: apiextensions.k8s.io/v1beta1
+kind: CustomResourceDefinition
+metadata:
+  name: deletebackuprequests.ark.heptio.com
+  labels:
+    chart: {{ .Chart.Name }}-{{ .Chart.Version }}
+    heritage: {{ .Release.Service }}
+    release: {{ .Release.Name }}
+    app: {{ template "ark-server.name" . }}
+spec:
+  group: ark.heptio.com
+  version: v1
+  scope: Namespaced
+  names:
+    plural: deletebackuprequests
+    kind: DeleteBackupRequest

stable/ark-server/templates/deployment.yaml

@@ -0,0 +1,56 @@
+apiVersion: apps/v1beta1
+kind: Deployment
+metadata:
+  namespace: {{ .Values.namespace.name }}
+  name: {{ template "ark-server.fullname" . }}
+  release: {{ .Release.Name }}
+  app: {{ template "ark-server.name" . }}
+spec:
+  replicas: 1
+  template:
+    metadata:
+      labels:
+        component: ark
+        release: {{ .Release.Name }}
+        app: {{ template "ark-server.name" . }}
+      {{- if .Values.podAnnotations }}
+      annotations:
+{{ toYaml .Values.podAnnotations | indent 8 }}
+    {{- end }}
+    spec:
+      restartPolicy: Always
+      serviceAccountName: {{ template "ark-server.sa" . }}
+      containers:
+        - name: ark
+          image: "{{ .Values.image.repository }}:{{ .Values.image.tag }}"
+          command:
+            - /ark
+          args:
+            - server
+          {{- if eq .Values.configuration.cloudprovider "azure" }}
+          envFrom:
+            - secretRef:
+                name: {{ .Values.secret.name }}
+          {{- end }}
+          volumeMounts:
+            - name: plugins
+              mountPath: /plugins
+          {{- if (or (eq .Values.configuration.cloudprovider "aws") (eq .Values.configuration.cloudprovider "gcp")) }}
+            - name: cloud-credentials
+              mountPath: /credentials
+          env:
+            - name: {{ .Values.configuration.credentials }}
+              value: /credentials/cloud
+          {{- end }}
+      volumes:
+        {{- if (or (eq .Values.configuration.cloudprovider "aws") (eq .Values.configuration.cloudprovider "gcp")) }}
+        - name: cloud-credentials
+          secret:
+            secretName: {{ .Values.secret.name }}
+        {{- end }}
+        - name: plugins
+          emptyDir: {}
+      {{- if eq .Values.configuration.cloudprovider "azure" }}
+      nodeSelector:
+        beta.kubernetes.io/os: linux
+      {{- end }}

stable/ark-server/templates/downloadrequests.yaml

@@ -0,0 +1,16 @@
+apiVersion: apiextensions.k8s.io/v1beta1
+kind: CustomResourceDefinition
+metadata:
+  name: downloadrequests.ark.heptio.com
+  labels:
+    chart: {{ .Chart.Name }}-{{ .Chart.Version }}
+    heritage: {{ .Release.Service }}
+    release: {{ .Release.Name }}
+    app: {{ template "ark-server.name" . }}
+spec:
+  group: ark.heptio.com
+  version: v1
+  scope: Namespaced
+  names:
+    plural: downloadrequests
+    kind: DownloadRequest

stable/ark-server/templates/hook-delete.yaml

@@ -0,0 +1,29 @@
+apiVersion: batch/v1
+kind: Job
+metadata:
+  name: delete-ark-config
+  namespace: {{ .Values.namespace.name }}
+  annotations:
+    "helm.sh/hook": pre-delete
+    "helm.sh/hook-delete-policy": hook-succeeded
+    "helm.sh/hook-weight": "2"
+spec:
+  template:
+    metadata:
+      name: delete-ark-config
+      namespace: {{ .Values.namespace.name }}
+    spec:
+      restartPolicy: Never
+      containers:
+        - name: delete-ark-config
+          image: {{ .Values.kubectl.image.repository }}/{{ .Values.kubectl.image.tag }}
+          imagePullPolicy: Always
+          command: ["kubectl","delete","-f","/tmp/"]
+          volumeMounts:
+            - name: ark-server-config
+              mountPath: /tmp
+      volumes:
+        - name: ark-server-config
+          configMap:
+            name: ark-server-config
+      serviceAccountName: {{ template "ark-server.hookSA" . }}

stable/ark-server/templates/hook-deploy.yaml

@@ -0,0 +1,28 @@
+apiVersion: batch/v1
+kind: Job
+metadata:
+  name: deploy-ark-config
+  namespace: {{ .Values.namespace.name }}
+  annotations:
+    "helm.sh/hook": post-install
+    "helm.sh/hook-delete-policy": hook-succeeded
+spec:
+  template:
+    metadata:
+      name: deploy-ark-config
+      namespace: {{ .Values.namespace.name }}
+    spec:
+      restartPolicy: Never
+      containers:
+        - name: deploy-ark-config
+          image: {{ .Values.kubectl.image.repository }}/{{ .Values.kubectl.image.tag }}
+          imagePullPolicy: Always
+          command: ["kubectl","create","-f","/tmp/"]
+          volumeMounts:
+            - name: ark-server-config
+              mountPath: /tmp
+      volumes:
+        - name: ark-server-config
+          configMap:
+            name: ark-server-config
+      serviceAccountName: {{ template "ark-server.hookSA" . }}

stable/ark-server/templates/namespace.yaml

@@ -0,0 +1,6 @@
+{{- if .Values.namespace.create }}
+apiVersion: v1
+kind: Namespace
+metadata:
+  name: {{ .Values.namespace.name }}
+{{- end }}