diff --git a/flux/images/moderator/moderator-image.yaml b/flux/images/moderator/moderator-image.yaml deleted file mode 100644 index 8bdd273..0000000 --- a/flux/images/moderator/moderator-image.yaml +++ /dev/null @@ -1,11 +0,0 @@ ---- -apiVersion: image.toolkit.fluxcd.io/v1beta1 -kind: ImageRepository -metadata: - name: moderator - namespace: flux-system -spec: - image: 783633885093.dkr.ecr.us-west-2.amazonaws.com/moderator - interval: 5m0s - secretRef: - name: ecr-credentials diff --git a/flux/images/moderator/moderator-policy.yaml b/flux/images/moderator/moderator-policy.yaml deleted file mode 100644 index e2db9d8..0000000 --- a/flux/images/moderator/moderator-policy.yaml +++ /dev/null @@ -1,16 +0,0 @@ ---- -apiVersion: image.toolkit.fluxcd.io/v1beta1 -kind: ImagePolicy -metadata: - name: moderator - namespace: flux-system -spec: - filterTags: - extract: $ts - pattern: ^(stg-[a-f0-9]{7}-(?P[0-9].*))$ - imageRepositoryRef: - name: moderator - policy: - alphabetical: - order: asc - diff --git a/k8s/releases/moderator/moderator.yaml b/k8s/releases/moderator/moderator.yaml deleted file mode 100644 index 5a7ba2c..0000000 --- a/k8s/releases/moderator/moderator.yaml +++ /dev/null @@ -1,96 +0,0 @@ -apiVersion: helm.toolkit.fluxcd.io/v2beta1 -kind: HelmRelease -metadata: - name: moderator - namespace: moderator-stage -spec: - chart: - spec: - chart: mozmoderator - reconcileStrategy: ChartVersion - sourceRef: - kind: HelmRepository - name: mozilla-helm-charts - namespace: flux-system - interval: 1m0s - releaseName: moderator - targetNamespace: moderator-stage - values: - configMap: - data: - ALLOWED_HOSTS: moderator.stage.mozit.cloud,moderator.allizom.org - ANON_ALWAYS: true - AWS_DEFAULT_REGION: us-west-2 - FROM_NOREPLY: Mozilla Moderator - OIDC_OP_AUTHORIZATION_ENDPOINT: https://auth.mozilla.auth0.com/authorize - OIDC_OP_DOMAIN: auth.mozilla.auth0.com - OIDC_OP_JWKS_ENDPOINT: https://auth.mozilla.auth0.com/.well-known/jwks.json - OIDC_OP_TOKEN_ENDPOINT: https://auth.mozilla.auth0.com/oauth/token - OIDC_OP_USER_ENDPOINT: https://auth.mozilla.auth0.com/userinfo - OIDC_RP_SIGN_ALGO: RS256 - SESSION_COOKIE_SECURE: true - SITE_URL: https://moderator.allizom.org - deployment: - port: "8000" - replicaCount: "1" - externalSecrets: - enabled: true - name: moderator - secrets: - - remoteRef: - key: /stage/moderator/envvar - property: AWS_ACCESS_KEY_ID - secretKey: AWS_ACCESS_KEY_ID - - remoteRef: - key: /stage/moderator/envvar - property: AWS_SECRET_ACCESS_KEY - secretKey: AWS_SECRET_ACCESS_KEY - - remoteRef: - key: /stage/moderator/envvar - property: DATABASE_URL - secretKey: DATABASE_URL - - remoteRef: - key: /stage/moderator/envvar - property: OIDC_RP_CLIENT_ID - secretKey: OIDC_RP_CLIENT_ID - - remoteRef: - key: /stage/moderator/envvar - property: OIDC_RP_CLIENT_SECRET - secretKey: OIDC_RP_CLIENT_SECRET - - remoteRef: - key: /stage/moderator/envvar - property: SECRET_KEY - secretKey: SECRET_KEY - - remoteRef: - key: /stage/moderator/envvar - property: SENTRY_DSN - secretKey: SENTRY_DSN - image: - pullPolicy: Always - repository: 783633885093.dkr.ecr.us-west-2.amazonaws.com/moderator - tag: stg-ae5445d-2024-05-13.125308 # {"$imagepolicy": "flux-system:moderator:tag"} - ingress: - className: ingress-nginx-moderator-stage - hosts: - - host: moderator.stage.mozit.cloud - paths: - - path: / - pathType: ImplementationSpecific - serviceName: moderator - servicePort: 80 - - host: moderator.allizom.org - paths: - - path: / - pathType: ImplementationSpecific - serviceName: moderator - servicePort: 80 - le: - name: prod - name: moderator - tls: - - hosts: - - moderator.allizom.org - secretName: cert-moderator-allizom-org - - hosts: - - moderator.stage.mozit.cloud - secretName: cert-moderator-stage-mozit-cloud diff --git a/k8s/workloads/moderator/moderator-ingress.yaml b/k8s/workloads/moderator/moderator-ingress.yaml deleted file mode 100644 index e0bd499..0000000 --- a/k8s/workloads/moderator/moderator-ingress.yaml +++ /dev/null @@ -1,70 +0,0 @@ ---- -apiVersion: helm.toolkit.fluxcd.io/v2beta1 -kind: HelmRelease -metadata: - labels: - app: moderator - name: ingress-nginx - namespace: moderator-stage -spec: - chart: - spec: - chart: ingress-nginx - reconcileStrategy: ChartVersion - sourceRef: - kind: HelmRepository - name: ingress-nginx - namespace: flux-system - version: 4.5.2 - interval: 1m0s - releaseName: moderator-ingress-nginx - values: - controller: - admissionWebhooks: - enable: false - autoscaling: - enabled: true - maxReplicas: 4 - minReplicas: 2 - targetCPUUtilizationPercentage: 80 - targetMemoryUtilizationPercentage: 80 - config: - compute-full-forwarded-for: "true" - enable-real-ip: "true" - proxy-real-ip-cidr: 172.16.0.0/16 - use-forwarded-headers: "true" - use-proxy-protocol: "false" - enableCustomResources: false - watchIngressWithoutClass: true - ingressClass: ingress-nginx-moderator-stage - ingressClassResource: - controllerValue: k8s.io/ingress-nginx-moderator-stage - default: false - enabled: true - name: ingress-nginx-moderator-stage - metrics: - enabled: true - service: - annotations: - prometheus.io/port: "10254" - prometheus.io/scrape: "true" - resources: - limits: - cpu: 200m - memory: 256Mi - requests: - cpu: 100m - memory: 128Mi - scope: - enabled: true - service: - annotations: - external-dns.alpha.kubernetes.io/hostname: moderator.stage.mozit.cloud,moderator.allizom.org - service.beta.kubernetes.io/aws-load-balancer-additional-resource-tags: Environment=stage - service.beta.kubernetes.io/aws-load-balancer-connection-draining-enabled: "true" - service.beta.kubernetes.io/aws-load-balancer-cross-zone-load-balancing-enabled: "true" - service.beta.kubernetes.io/aws-load-balancer-type: nlb - externalTrafficPolicy: Local - rbac: - create: true - scope: true