From 4614dcb23b9567f71b7bd7514457b0ce9b067451 Mon Sep 17 00:00:00 2001
From: Sheogorath <sheogorath@shivering-isles.com>
Date: Wed, 14 Sep 2022 08:57:49 +0200
Subject: [PATCH] feat(s3): Add mastodon S3 bucket
---
clusters/k8s01/nas/s3.yaml | 93 +++++++++++++++++++++++++++++++++++---
1 file changed, 86 insertions(+), 7 deletions(-)
diff --git a/clusters/k8s01/nas/s3.yaml b/clusters/k8s01/nas/s3.yaml
index 9598bd04d..1598962b7 100644
--- a/clusters/k8s01/nas/s3.yaml
+++ b/clusters/k8s01/nas/s3.yaml
@@ -16,8 +16,8 @@ sops:
azure_kv: []
hc_vault: []
age: []
- lastmodified: "2022-09-13T23:26:16Z"
- mac: ENC[AES256_GCM,data:+1IdRWnGsZkDUTNWHCbR9hrN62skzGloQ0vhBZpZqiXAW5GQN5s/febo0nT9jaec3coeG6Df1UQmzhz6ky2FiguV/+BZnwD+vLMprdfzwBsTwB3QyIYQ8E5gHAsxKcJ16xpMLLB10DUH8HueYN9hXC5NqAVfWPy/cOuo2gpM9qQ=,iv:THkFAeid9ru9tQ0pu2xK0g2VObHvc4XGB+rvkTlwPek=,tag:yAO+WzuE2K0SHsd0bGRAPQ==,type:str]
+ lastmodified: "2022-09-14T00:20:54Z"
+ mac: ENC[AES256_GCM,data:lEiPanS6uS6AH87yZqQkUuPYrTNSRRSm5hjtrC/KzkE4E7521OeLx+WmRTUCuuxzx4DwhUEdK9Py3s77MdMGEtcH9ySnIptn+bJpT80TG2WW4sXVlyR1oFt6pC1NKwqCfJue0feHpm4XgR2qQDShh82h9TRppWupX6ukBq7ji20=,iv:2/AMs5Jcj0zR+Li3ZKVUSxPb5QBY0+uK8oPAomR/Qgw=,tag:r0lRAQKQEoV9PTNZd23SBQ==,type:str]
pgp:
- created_at: "2022-09-13T20:16:18Z"
enc: |-
@@ -82,8 +82,8 @@ sops:
azure_kv: []
hc_vault: []
age: []
- lastmodified: "2022-09-13T23:26:16Z"
- mac: ENC[AES256_GCM,data:+1IdRWnGsZkDUTNWHCbR9hrN62skzGloQ0vhBZpZqiXAW5GQN5s/febo0nT9jaec3coeG6Df1UQmzhz6ky2FiguV/+BZnwD+vLMprdfzwBsTwB3QyIYQ8E5gHAsxKcJ16xpMLLB10DUH8HueYN9hXC5NqAVfWPy/cOuo2gpM9qQ=,iv:THkFAeid9ru9tQ0pu2xK0g2VObHvc4XGB+rvkTlwPek=,tag:yAO+WzuE2K0SHsd0bGRAPQ==,type:str]
+ lastmodified: "2022-09-14T00:20:54Z"
+ mac: ENC[AES256_GCM,data:lEiPanS6uS6AH87yZqQkUuPYrTNSRRSm5hjtrC/KzkE4E7521OeLx+WmRTUCuuxzx4DwhUEdK9Py3s77MdMGEtcH9ySnIptn+bJpT80TG2WW4sXVlyR1oFt6pC1NKwqCfJue0feHpm4XgR2qQDShh82h9TRppWupX6ukBq7ji20=,iv:2/AMs5Jcj0zR+Li3ZKVUSxPb5QBY0+uK8oPAomR/Qgw=,tag:r0lRAQKQEoV9PTNZd23SBQ==,type:str]
pgp:
- created_at: "2022-09-13T20:16:18Z"
enc: |-
@@ -153,7 +153,7 @@ spec:
number: 9000
tls:
- hosts:
- - ENC[AES256_GCM,data:tr1C+6Blue7ffbIub+lBjx9IsUh9biZB,iv:RtEsZsXVay4Cd/AwoFBWV1aA3gurA0yGVx+EUJoEb+M=,tag:zAxqwa6bvIDiL1PChv96nA==,type:str]
+ - ENC[AES256_GCM,data:3enfuhHAaUyRFAwyfM5KjO5ic5sYa8KUPy0=,iv:s8dXZ71RdERTP/SSe9V5MhCGmtRdZLPqpY+74Hp2P7w=,tag:3N3fJsjPIgHCRGDcQ4u2oA==,type:str]
secretName: ingress-s3-tls
sops:
kms: []
@@ -161,8 +161,87 @@ sops:
azure_kv: []
hc_vault: []
age: []
- lastmodified: "2022-09-13T23:26:16Z"
- mac: ENC[AES256_GCM,data:+1IdRWnGsZkDUTNWHCbR9hrN62skzGloQ0vhBZpZqiXAW5GQN5s/febo0nT9jaec3coeG6Df1UQmzhz6ky2FiguV/+BZnwD+vLMprdfzwBsTwB3QyIYQ8E5gHAsxKcJ16xpMLLB10DUH8HueYN9hXC5NqAVfWPy/cOuo2gpM9qQ=,iv:THkFAeid9ru9tQ0pu2xK0g2VObHvc4XGB+rvkTlwPek=,tag:yAO+WzuE2K0SHsd0bGRAPQ==,type:str]
+ lastmodified: "2022-09-14T00:20:54Z"
+ mac: ENC[AES256_GCM,data:lEiPanS6uS6AH87yZqQkUuPYrTNSRRSm5hjtrC/KzkE4E7521OeLx+WmRTUCuuxzx4DwhUEdK9Py3s77MdMGEtcH9ySnIptn+bJpT80TG2WW4sXVlyR1oFt6pC1NKwqCfJue0feHpm4XgR2qQDShh82h9TRppWupX6ukBq7ji20=,iv:2/AMs5Jcj0zR+Li3ZKVUSxPb5QBY0+uK8oPAomR/Qgw=,tag:r0lRAQKQEoV9PTNZd23SBQ==,type:str]
+ pgp:
+ - created_at: "2022-09-13T20:16:18Z"
+ enc: |-
+ -----BEGIN PGP MESSAGE-----
+
+ wcFMA7kpg2bgzVHcARAAs2wtI2PnfYFdrQMyzW9uwi06Wzi5NPO1PmRp896RrkCr
+ tqILIJoJayon4IFtoXmG99KZUqDfMWAb7wqAzw8+pwI6Qy+xJjzZ88fYnaP2m8yX
+ 2ebnaliurX7+VaRwJ0jBW5DJRUkpGqy4dm3kAA3uV8oyOU6QrCfVH5nekS38PKAH
+ QDQcCA+u3ERe6meAOTXyfJw/y8WMocTNrmFTQDImornspXaakDOBnN8WPOhizlvm
+ A8SmEZI1Mp4TlNuhRZaX8vu1zGMJ2Ut3QyzCBUy45cs1BVRtLQjj7LZ6zpyMSr7v
+ wNMxNByOiW4m5Ic6LrUSAoShLmIXqb+uUFno6uG8kyP5cQc3+9fXLhvPpwT2oedY
+ cnSpTkwqx7l1/lQ0xsnKrNhr+/RU3FK27Q5BgTj4NAQF5pCXkUa0QMeSHfKXtNo6
+ +/TE+KIHzbwvPoabWXXWl8odT3Jw6mmOy66otADlxXa6s+g5FhpZfQKQlCr54Lh/
+ EdAlQc3cGxPzDCeTVmDFZu53A9cXaeR/DpzILjJkdcw8muG9aJtGhq/taudZZhAv
+ +rgJHXYKvQu05LTGQLClMrlJidO2+B0qNV3aw40sYGyZ/n73nvnODrXaRzNG1jyR
+ +j5u4KQpWAUKpljlbAw3lKUll+wBhmmnPJ6UJQ87VmDDcadXFORua+yQsplKRtrS
+ 5gHPRhnLFveyK1PjYIcasVnKCoS3OiRG187uwx9iPJq95oZETk0VmnpUleiJcml5
+ kPy6qaM/qjIx7lo1ShovIfLk25sEge6NkiUwkx/WXI8b++JHZO27AA==
+ =sOCX
+ -----END PGP MESSAGE-----
+ fp: 286791FB6648539775DB31B8FCB98C2A3EC6F601
+ - created_at: "2022-09-13T20:16:18Z"
+ enc: |
+ -----BEGIN PGP MESSAGE-----
+
+ hQIMA4oYbIHZIrAPAQ/+I/VVicoriCwyJ3X3RRUJ2v/hlV7DmUHNBghR6xl5Hqc6
+ KzDh/3vFYCD14aqFprgv7sBI+WpwVZh5bgqfWUiZ+ydCQZl++r/t71sGlrC0yYhU
+ IKgAoc/nCRyAnNrK+7vpcQ4tjyCrHzerSJSmE8X5x1yVi1VfE3NhtuwWhfjieW88
+ aSwIPsj4twmOMVTCjwOaCvOw/xdehJEsL4J0nOXTNUrjWO6TuNrhEBVL5avk/Vxc
+ zGL3KZBaykVH8lai+ZwpPyf5lZgjbeHb82Gl8VdEy0o0oyDWWriJOkxX5w09/ajv
+ PcpROSGXdjPvt/7jLgSQR50UY6Ekju6DsUYxaXeJ4QryPITDkcf2MbFstEA6e2np
+ HGbNTN3yMnoFBijLQPWxQotk9xufDaKLVxDFfSZXoDdMu+005DJnVykM8Pv5qck7
+ /fC+jy59mGO0eiDfltWGb1q6CRyJeXk0RTnt9X77I4EMLWjeid6zUhjCp4ZDLSK9
+ UuKlnwk5/vb0aH2w87y60M9qgaaIzwB0Be7hpSZ+/OPBhakCS3gU1LxNSMLlSw0o
+ zoNviDkFxEACkqt+YIYJ3phNRn71RUzNUObiz/LWyd2ZasN5IDnezW39t/4uKjYa
+ Y1YyZ5HvdJEGvtBYycftTY7IwqUK2DVicImSc4Dszk1PbqMDzIUUbmGN7MxR/gTU
+ aAEJAhALMJFcOgYratPE/GE+mWKliwdylZQU2pKCuX5DZD5c363wYdmLL5zx32g9
+ 3O9uQjmXIvIsKLQecFvk7L9W+F5H0Ya822Be5X1eQiIiYDmRLE3IDgrLypSGW870
+ XwzIGA4wMFDY
+ =5l9E
+ -----END PGP MESSAGE-----
+ fp: B137EE1549DFAF960DD1E2B15147025FB9F09E07
+ encrypted_regex: ^(data|stringData|email|dnsZones?|dnsNames?|.*(H|h)osts?|tang|externalURL|.*-secret|.*-url|.*Secrets?|.*-domain|password|subjects|node|apiURL|.*(S|s)erverNames?|.*SecretKey|externalName)$
+ version: 3.7.1
+---
+apiVersion: networking.k8s.io/v1
+kind: Ingress
+metadata:
+ name: s3-mastodon
+ namespace: nas
+ annotations:
+ nginx.ingress.kubernetes.io/client-body-buffer-size: 50M
+ nginx.ingress.kubernetes.io/proxy-body-size: 70M
+ nginx.ingress.kubernetes.io/proxy-buffering: "off"
+ nginx.ingress.kubernetes.io/backend-protocol: HTTPS
+spec:
+ rules:
+ - host: ENC[AES256_GCM,data:hdqzAurZiun/dOOc16pNiG1/R0b76BHepB2IcCGSTw==,iv:rGklIF7TpAFWzCtg8HJ1tFS8Y8wg53xt/8Qr7+/0PAs=,tag:Qbea8+hhZXVEStfFHaf/Rg==,type:str]
+ http:
+ paths:
+ - path: /mastodon
+ pathType: Prefix
+ backend:
+ service:
+ name: s3
+ port:
+ number: 9000
+ tls:
+ - hosts:
+ - ENC[AES256_GCM,data:WjeT71Kn1HfcYRG2qbpsnQ8PDXlk17KyUe9k+jBvkg==,iv:wOEKCvOE5NPWHC2r2DDReut5pybceHee1OVKYhsQ5B0=,tag:fogC1niW84AZ07uqejY49Q==,type:str]
+ secretName: ingress-s3-tls
+sops:
+ kms: []
+ gcp_kms: []
+ azure_kv: []
+ hc_vault: []
+ age: []
+ lastmodified: "2022-09-14T00:20:54Z"
+ mac: ENC[AES256_GCM,data:lEiPanS6uS6AH87yZqQkUuPYrTNSRRSm5hjtrC/KzkE4E7521OeLx+WmRTUCuuxzx4DwhUEdK9Py3s77MdMGEtcH9ySnIptn+bJpT80TG2WW4sXVlyR1oFt6pC1NKwqCfJue0feHpm4XgR2qQDShh82h9TRppWupX6ukBq7ji20=,iv:2/AMs5Jcj0zR+Li3ZKVUSxPb5QBY0+uK8oPAomR/Qgw=,tag:r0lRAQKQEoV9PTNZd23SBQ==,type:str]
pgp:
- created_at: "2022-09-13T20:16:18Z"
enc: |-
--
GitLab