alexlebens/infrastructure
1
0
Fork 0
Code Issues 1 Pull Requests 1 Actions Activity
Files
fe87d61f73b5f6e0819ea3accc2866a0aaf117ae
infrastructure/clusters/cl01tl/manifests/authentik/Cluster-authentik-postgresql-18-cluster.yaml
gitea-bot fe87d61f73 Automated Manifest Update (#2383) 
This PR contains newly rendered Kubernetes manifests automatically generated by the CI workflow.

Reviewed-on: #2383
Co-authored-by: gitea-bot <gitea-bot@alexlebens.net>
Co-committed-by: gitea-bot <gitea-bot@alexlebens.net>
2025-12-11 22:02:31 +00:00

89 lines
2.4 KiB
YAML
Raw Blame History

apiVersion: postgresql.cnpg.io/v1
kind: Cluster
metadata:
name: authentik-postgresql-18-cluster
namespace: authentik
labels:
helm.sh/chart: postgres-18-cluster-6.16.1
app.kubernetes.io/name: authentik-postgresql-18
app.kubernetes.io/instance: authentik
app.kubernetes.io/part-of: authentik
app.kubernetes.io/version: "6.16.1"
app.kubernetes.io/managed-by: Helm
spec:
instances: 3
imageName: "ghcr.io/cloudnative-pg/postgresql:18.1-standard-trixie"
imagePullPolicy: IfNotPresent
postgresUID: 26
postgresGID: 26
plugins:
- name: barman-cloud.cloudnative-pg.io
enabled: true
isWALArchiver: false
parameters:
barmanObjectName: "authentik-postgresql-18-external-backup"
serverName: "authentik-postgresql-18-backup-1"
- name: barman-cloud.cloudnative-pg.io
enabled: true
isWALArchiver: true
parameters:
barmanObjectName: "authentik-postgresql-18-garage-local-backup"
serverName: "authentik-postgresql-18-backup-1"
storage:
size: 10Gi
storageClass: local-path
walStorage:
size: 2Gi
storageClass: local-path
resources:
limits:
hugepages-2Mi: 256Mi
requests:
cpu: 100m
memory: 256Mi
affinity:
enablePodAntiAffinity: true
topologyKey: kubernetes.io/hostname
primaryUpdateMethod: switchover
primaryUpdateStrategy: unsupervised
logLevel: info
enableSuperuserAccess: false
enablePDB: true
postgresql:
parameters:
hot_standby_feedback: "on"
max_slot_wal_keep_size: 2000MB
shared_buffers: 128MB
monitoring:
enablePodMonitor: true
disableDefaultQueries: false
bootstrap:
initdb:
import:
source:
externalCluster: importSource
type: microservice
databases:
- app
schemaOnly: false
externalClusters:
- name: importSource
connectionParameters:
host: "authentik-postgresql-17-cluster-rw"
port: "5432"
user: "app"
dbname: "app"
sslmode: "verify-full"
password:
name: authentik-postgresql-17-cluster-app
key: password
sslKey:
name: authentik-postgresql-17-cluster-server
key: tls.key
sslCert:
name: authentik-postgresql-17-cluster-server
key: tls.crt
sslRootCert:
name: authentik-postgresql-17-cluster-ca
key: ca.crt
Reference in New Issue View Git Blame Copy Permalink