Add Jenny's Helm chart #5
Open
+155
−63
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
wilbrdt
reviewed
May 16, 2024
| {{- include "jenny.envs" . | nindent 12 }} | ||
| - name: "UWSGI_PORT" | ||
| value: "{{ .Values.django.port }}" | ||
| {{- if .Values.persistence.enabled }} |
There was a problem hiding this comment.
I would align this with its closing {{- end }}, for readability. WDYT?
| port: {{ .Values.django.port }} | ||
| httpHeaders: | ||
| - name: "Host" | ||
| value: "{{ .Values.ingress.host}}" |
There was a problem hiding this comment.
I think ingress should have a default host value
jenny/templates/_helpers.tpl
Outdated
| service: app | ||
| {{- end }} | ||
|
|
||
| {{- define "jenny.envs" -}} |
There was a problem hiding this comment.
nit:
Suggested change
| {{- define "jenny.envs" -}} | |
| {{/* | |
| Environment variables | |
| */}} | |
| {{- define "jenny.envs" -}} |
| {{- end }} | ||
| {{- end }} | ||
|
|
||
| {{- define "django.imagePullSecrets" -}} |
There was a problem hiding this comment.
nit:
Suggested change
| {{- define "django.imagePullSecrets" -}} | |
| {{/* | |
| ImagePullSecrets | |
| */}} | |
| {{- define "django.imagePullSecrets" -}} |
jenny/templates/jobs.yaml
Outdated
| {{- if $.Values.commonLabels }} | ||
| {{ toYaml $.Values.commonLabels | nindent 4 }} | ||
| {{- end }} | ||
| app.kubernetes.io/component: jenny |
There was a problem hiding this comment.
What is this label used for?
If useful, could we use a helper definition to specify it?
jenny/values.yaml
Outdated
| - "jenny-app" | ||
| topologyKey: kubernetes.io/hostname | ||
|
|
||
| autoscaling: |
There was a problem hiding this comment.
Should we provide a HorizontalPodAutoscaler?
| value: "{{ .Values.django.db.host }}" | ||
| - name: "DB_PORT" | ||
| value: "{{ .Values.django.db.port }}" | ||
| {{- range $key, $val := .Values.env.secret }} |
There was a problem hiding this comment.
When linting this chart, a warning seems to be raised because of this line. It is resolved when adding an empty default value as so:
env:
secret: []
jenny/values.yaml
Outdated
| podAnnotations: {} | ||
|
|
||
| service: | ||
| port: 8080 |
There was a problem hiding this comment.
This service port isn't used by any template, should it be removed?
Comment on lines
+3
to
+4
| metadata: | ||
| name: "{{ template "jenny.fullname" . }}-nginx" |
There was a problem hiding this comment.
We're missing common labels and annotations here. Is that OK?
9 tasks
wilbrdt
added a commit
to openfun/warren
that referenced
this pull request
May 17, 2024
Rework Warren Helm chart based on the work done on Jenny Helm chart in PR openfun/charts#5 Changes done in this commit: - Jobs for database migration or static collection are abstracted into a single job template - Env variables are now processed in the helper template - Removed unused HorizontalPodAutoscaler - Add startup probes for migration checks - Migration jobs are now executed post helm installation/upgrade - Removed unnecessary security context variables - Add a nginx container alongside warren-app to serve static files - Rework postgresql values to have a functional Helm chart on a local cluster - Update Helm chart README.md
wilbrdt
added a commit
to openfun/warren
that referenced
this pull request
May 17, 2024
Rework Warren Helm chart based on the work done on Jenny Helm chart in PR openfun/charts#5 Changes done in this commit: - Jobs for database migration or static collection are abstracted into a single job template - Env variables are now processed in the helper template - Removed unused HorizontalPodAutoscaler - Add startup probes for migration checks - Migration jobs are now executed post helm installation/upgrade - Removed unnecessary security context variables - Add a nginx container alongside warren-app to serve static files - Rework postgresql values to have a functional Helm chart on a local cluster - Update Helm chart README.md
wilbrdt
added a commit
to openfun/warren
that referenced
this pull request
May 17, 2024
Rework Warren Helm chart based on the work done on Jenny Helm chart in PR openfun/charts#5 Changes done in this commit: - Jobs for database migration or static collection are abstracted into a single job template - Env variables are now processed in the helper template - Removed unused HorizontalPodAutoscaler - Add startup probes for migration checks - Migration jobs are now executed post helm installation/upgrade - Removed unnecessary security context variables - Add a nginx container alongside warren-app to serve static files - Rework postgresql values to have a functional Helm chart on a local cluster - Update Helm chart README.md
wilbrdt
added a commit
to openfun/warren
that referenced
this pull request
May 21, 2024
Rework Warren Helm chart based on the work done on Jenny Helm chart in PR openfun/charts#5 Changes done in this commit: - Jobs for database migration or static collection are abstracted into a single job template - Env variables are now processed in the helper template - Removed unused HorizontalPodAutoscaler - Add startup probes for migration checks - Migration jobs are now executed post helm installation/upgrade - Removed unnecessary security context variables - Add a nginx container alongside warren-app to serve static files - Rework postgresql values to have a functional Helm chart on a local cluster - Update Helm chart README.md
wilbrdt
reviewed
May 21, 2024
| items: | ||
| - key: config | ||
| path: nginx.conf | ||
| name: "{{ .Chart.Name }}-nginx" |
There was a problem hiding this comment.
Suggested change
| name: "{{ .Chart.Name }}-nginx" | |
| name: "{{ template "jenny.fullname" . }}-nginx" |
jenny/templates/deployment.yaml
Outdated
Comment on lines
30
to
34
| command: | ||
| - "python" | ||
| - "manage.py" | ||
| - "collectstatic" | ||
| - "--no-input" |
There was a problem hiding this comment.
It seems that the Django SECRET_KEY is needed to execute this command.
We should probably add the env variables to the initContainer. WDYT?
jenny/templates/ingress.yaml
Outdated
| {{- end }} | ||
| spec: | ||
| ingressClassName: {{ .Values.ingress.class_name }} | ||
| {{- if $.Values.ingress.tls.enable }} |
There was a problem hiding this comment.
Suggested change
| {{- if $.Values.ingress.tls.enable }} | |
| {{- if $.Values.ingress.tls.enabled }} |
wilbrdt
reviewed
May 21, 2024
Ingore the tgz build with the command helm package.
This annotations need to be add to use the cert-manager for certificate request.
The host is not mandatory in the ingress definition but for an HTTP app it's a best pratice to use an host instead of an IP. And the host is mandatory for HTTPS.
Add the possibility to enable the HTTPS and to set the certificate name.
The Jenny image is build to ensure the user cannot write in the app dir. Allow to change the running user is not required.
Django required to collect the static and service with a HTTP server. We add an Nginx container in the pods and add an init container to collect this statics. And use an ephemeral volume for static instead of a persistent one.
Fix when create a list of job in the same template and ensure to run the job after the install to avoid missing resource.
This allow from the values to add environment variable from secret to configure Jenny's app.
Ensure to ingore previous helm package in the next helm package.
For the Django app we use the hearbeat add by the lib dockerflow for the liveness and readiness probes Use Nginx status page for liveness probe. And check migration for the startup probe.
wilbrdt
added a commit
to openfun/warren
that referenced
this pull request
May 29, 2024
Rework Warren Helm chart based on the work done on Jenny Helm chart in PR openfun/charts#5 Changes done in this commit: - Jobs for database migration or static collection are abstracted into a single job template - Env variables are now processed in the helper template - Removed unused HorizontalPodAutoscaler - Add startup probes for migration checks - Migration jobs are now executed post helm installation/upgrade - Removed unnecessary security context variables - Add a nginx container alongside warren-app to serve static files - Rework postgresql values to have a functional Helm chart on a local cluster - Update Helm chart README.md
wilbrdt
reviewed
Jun 6, 2024
jenny/templates/configmap.yaml
Outdated
Comment on lines
48
to
49
| allow 127.0.0.1; | ||
| deny all; |
There was a problem hiding this comment.
Suggested change
| allow 127.0.0.1; | |
| deny all; |
wilbrdt
added a commit
to openfun/warren
that referenced
this pull request
Jun 7, 2024
Rework Warren Helm chart based on the work done on Jenny Helm chart in PR openfun/charts#5 Changes done in this commit: - Jobs for database migration or static collection are abstracted into a single job template - Env variables are now processed in the helper template - Removed unused HorizontalPodAutoscaler - Add startup probes for migration checks - Migration jobs are now executed post helm installation/upgrade - Removed unnecessary security context variables - Add a nginx container alongside warren-app to serve static files - Rework postgresql values to have a functional Helm chart on a local cluster - Update Helm chart README.md
wilbrdt
added a commit
to openfun/warren
that referenced
this pull request
Jul 4, 2024
Rework Warren Helm chart based on the work done on Jenny Helm chart in PR openfun/charts#5 Changes done in this commit: - Jobs for database migration or static collection are abstracted into a single job template - Env variables are now processed in the helper template - Removed unused HorizontalPodAutoscaler - Add startup probes for migration checks - Migration jobs are now executed post helm installation/upgrade - Removed unnecessary security context variables - Add a nginx container alongside warren-app to serve static files - Rework postgresql values to have a functional Helm chart on a local cluster - Update Helm chart README.md
wilbrdt
added a commit
to openfun/warren
that referenced
this pull request
Aug 22, 2024
Rework Warren Helm chart based on the work done on Jenny Helm chart in PR openfun/charts#5 Changes done in this commit: - Jobs for database migration or static collection are abstracted into a single job template - Env variables are now processed in the helper template - Removed unused HorizontalPodAutoscaler - Add startup probes for migration checks - Migration jobs are now executed post helm installation/upgrade - Removed unnecessary security context variables - Add a nginx container alongside warren-app to serve static files - Rework postgresql values to have a functional Helm chart on a local cluster - Update Helm chart README.md
wilbrdt
added a commit
to openfun/warren
that referenced
this pull request
Sep 26, 2024
Rework Warren Helm chart based on the work done on Jenny Helm chart in PR openfun/charts#5 Changes done in this commit: - Jobs for database migration or static collection are abstracted into a single job template - Env variables are now processed in the helper template - Removed unused HorizontalPodAutoscaler - Add startup probes for migration checks - Migration jobs are now executed post helm installation/upgrade - Removed unnecessary security context variables - Add a nginx container alongside warren-app to serve static files - Rework postgresql values to have a functional Helm chart on a local cluster - Update Helm chart README.md
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
This PR add the Helm chart from Jenny. A Django base app.