initial commit

dev/nexus/nietnodig/amd/nexus.yaml

@@ -0,0 +1,94 @@
+apiVersion: v1
+kind: PersistentVolume
+metadata:
+  name: nexus-pv
+spec:
+  storageClassName: ""
+  capacity:
+    storage: 1Gi
+  accessModes:
+    - ReadWriteMany
+  persistentVolumeReclaimPolicy: Retain
+  mountOptions:
+    - hard
+    - nfsvers=4.1
+  nfs:
+    server: 192.168.40.100
+    path: /mnt/nfs_share/nexus
+    readOnly: false
+---
+apiVersion: v1
+kind: PersistentVolumeClaim
+metadata:
+  name: nexus-pvc
+spec:
+  storageClassName: ""
+  volumeName: nexus-pv
+  accessModes:
+    - ReadWriteMany
+  volumeMode: Filesystem
+  resources:
+    requests:
+      storage: 1Gi
+---
+apiVersion: apps/v1
+kind: Deployment
+metadata:
+  name: nexus
+  labels:
+    app: nexus
+spec:
+  replicas: 1
+  selector:
+    matchLabels:
+      app: nexus
+  template:
+    metadata:
+      labels:
+        app: nexus
+    spec:
+      containers:
+      - name: nexus
+        image: sonatype/nexus3
+        ports:
+        - containerPort: 8081
+          name: web
+        - containerPort: 8443
+          name: websecure
+        - containerPort: 8444
+          name: docker
+#        volumeMounts:
+#        - mountPath: /nexus-data
+#          name: nexus
+#          subPath: data-dir
+#        - mountPath: /opt/sonatype/nexus/etc
+#          name: nexus
+#          subPath: app-dir
+        env:
+        - name: INSTALL4J_ADD_VM_PARAMS
+          value: "-XX:ActiveProcessorCount=4"
+        - name: Djava.util.prefs.userRoot
+          value: "/opt/sonatype/sonatype-work/nexus3/javaprefs"
+#      volumes:
+#      - name: nexus
+#        persistentVolumeClaim:
+#          claimName: nexus-pvc
+---
+apiVersion: v1
+kind: Service
+metadata:
+  name: nexus
+spec:
+  ports:
+  - name: http
+    targetPort: 8081
+    port: 8081
+  - name: https
+    targetPort: 8443
+    port: 8443
+  - name: nexus
+    targetPort: 8444
+    port: 8444
+  selector:
+    app: nexus
+  type: ClusterIP

dev/nexus/nietnodig/certificate.yaml

@@ -0,0 +1,15 @@
+apiVersion: cert-manager.io/v1
+kind: Certificate
+metadata:
+  name: nexus.alldcs.nl-tls
+spec:
+  dnsNames:
+  - nexus.alldcs.nl
+  issuerRef:
+    group: cert-manager.io
+    kind: ClusterIssuer
+    name: letsencrypt
+  secretName: nexus.allarddcs.nl-tls
+  usages:
+  - digital signature
+  - key encipherment

dev/nexus/nietnodig/ingressroute-http.yaml

@@ -0,0 +1,13 @@
+apiVersion: traefik.containo.us/v1alpha1
+kind: IngressRoute
+metadata:
+  name: nexus-http
+spec:
+  entryPoints:
+    - web
+  routes:
+  - match: Host(`nexus.alldcs.nl`)
+    kind: Rule
+    services:
+    - name: nexus
+      port: 8081

dev/nexus/nietnodig/ingressrouteTCP-backup.yaml

@@ -0,0 +1,38 @@
+apiVersion: traefik.containo.us/v1alpha1
+kind: IngressRouteTCP
+metadata:
+  name: nexus-tcp-tls
+spec:
+  entryPoints:
+  - websecure
+  routes:
+  - match: HostSNI(`nexus.alldcs.nl`)
+    services:
+    - name: nexus
+      port: 8443
+  - match: HostSNI(`nexus.alldcs.nl`)
+    services:
+    - name: nexus
+      port: 8443
+  tls:
+    passthrough: true
+---
+apiVersion: traefik.containo.us/v1alpha1
+kind: IngressRouteTCP
+metadata:
+  name: nexus-tcp-docker
+spec:
+  entryPoints:
+  - websecure
+  routes:
+  - match: HostSNI(`registry.alldcs.nl`)
+    services:
+    - name: nexus
+      port: 8444
+  - match: HostSNI(`registry.alldcs.nl`) && PathPrefix(`/v2/`)
+    services:
+    - name: nexus
+      port: 8444
+  tls:
+    passthrough: true
+