Переименовано

README.md

@@ -0,0 +1,33 @@
+# Установка
+
+## Установка первой ноды
+```
+curl -sfL https://get.k3s.io | sh -s - --cluster-init --tls-san 10.90.90.99
+```
+
+## Добавление серверной ноды
+```
+curl -sfL https://get.k3s.io | K3S_TOKEN=<token> K3S_URL=https://10.90.90.99:6443 sh -s - server --server https://10.90.90.99:6443
+```
+
+## Добавление агента
+```
+curl -sfL https://get.k3s.io | K3S_TOKEN=<token> K3S_URL=https://10.90.90.99:6443 sh -s - agent --server https://10.90.90.99:6443
+```
+
+# Секреты
+
+## JWT secrets
+```
+kubectl create secret generic jwt-secrets \
+    --from-literal=JWT_ISSUER="liquid" \
+    --from-literal=JWT_AUDIENCE="audience"\
+    --from-literal=JWT_SINGING_KEY="supersecretkey_supersecretkey_supersecretkey_supersecretkey"
+```
+
+## S3 secrets
+```
+kubectl create secret generic s3-credentials \
+    --from-literal=ACCESS_KEY_ID="accesskey" \
+    --from-literal=ACCESS_SECRET_KEY="secretkey"
+```

help.txt

@@ -1,12 +0,0 @@
-# For pull private dockerhub
-```
-kubectl create secret docker-registry regcred --docker-server=<registry> --docker-username=<your-name> --docker-password=<your-pword> --docker-email=<your-email>
-```
-
-# For jwt secrets
-```
-kubectl create secret generic jwt-secrets \
-    --from-literal=JWT_ISSUER="liquid" \
-    --from-literal=JWT_AUDIENCE="audience"\
-    --from-literal=JWT_SINGING_KEY="supersecretkey_supersecretkey_supersecretkey_supersecretkey"
-```

liquid-code-chart/templates/certificate-issuer.yaml

@@ -1,21 +0,0 @@
-apiVersion: cert-manager.io/v1
-kind: Issuer
-metadata:
-  name: {{ .Release.Name }}-certificate-issuer
-spec:
-  acme:
-    {{ if .Values.staging }}
-    server: https://acme-staging-v02.api.letsencrypt.org/directory
-    {{ else }}
-    server: https://acme-v02.api.letsencrypt.org/directory
-    {{ end }}
-    # Email address used for ACME registration
-    email: mr.pytkov@gmail.com
-    # Name of a secret used to store the ACME account private key
-    privateKeySecretRef:
-      name: {{ .Release.Name }}-acme-private-key
-    # Enable the HTTP-01 challenge provider
-    solvers:
-      - http01:
-          ingress:
-            ingressClassName: traefik

liquid-code/Chart.yaml

@@ -1,5 +1,5 @@
 apiVersion: v2
-name: liquid-code-chart
+name: liquid-code
 description: A Helm chart for Kubernetes
 
 # A chart can be either an 'application' or a 'library' chart.

liquid-code/templates/Deployments/backend-deployment.yaml

@@ -25,8 +25,6 @@ spec:
               value: {{ required "s3 endpoint!" .Values.s3.endpointUrl | quote }}
             - name: S3_PRIVATE_BUCKET
               value: {{ required "privateBucket!" .Values.s3.privateBucket | quote }}
-            - name: S3_PUBLIC_BUCKET
-              value: {{ required "publicBucket!" .Values.s3.publicBucket | quote }}
             - name: S3_ACCESS_KEY
               valueFrom:
                 secretKeyRef:

liquid-code/templates/default-ingress.yaml

@@ -5,11 +5,6 @@ metadata:
   annotations:
     cert-manager.io/issuer: "{{ .Release.Name }}-certificate-issuer"
 spec:
-  tls:
-    - hosts:
-        - liquidcode.ru
-        - api.liquidcode.ru
-      secretName: {{ .Release.Name }}-tls-secret
   rules:
     - host: api.liquidcode.ru
       http:

liquid-code/values.yaml

@@ -9,8 +9,7 @@ jwt:
 database:
   secretName: liquid-db-app
   migrateDb: true
-  dropDb: false
-staging: true
+  dropDb: true
 frontend:
   enable: false
 queue: