[stage-5] add jenkins helm chart

2025-12-25 23:32:35 +03:00 · 2023-03-28 11:07:17 +07:00
parent 29ba0d92d0
commit 4b050e0cba
11 changed files with 245 additions and 0 deletions
--- a/k8s/helm/jenkins/templates/NOTES.txt
+++ b/k8s/helm/jenkins/templates/NOTES.txt
@@ -0,0 +1,6 @@
+---------------------------------------------------------
+
+Jenkins CI/CD main instance.
+Deployed version {{ .Values.image.tag | default .Chart.AppVersion }}.
+
+---------------------------------------------------------
--- a/k8s/helm/jenkins/templates/deployment.yaml
+++ b/k8s/helm/jenkins/templates/deployment.yaml
@@ -0,0 +1,50 @@
+---
+apiVersion: apps/v1
+kind: Deployment
+metadata:
+  labels:
+    app: {{ .Chart.Name }}-{{ .Values.environment }}-main
+    service: jenkins
+  name: {{ .Chart.Name }}-{{ .Values.environment }}-main
+  namespace: devops-tools
+spec:
+  replicas: 1
+  selector:
+    matchLabels:
+      app: {{ .Chart.Name }}-{{ .Values.environment }}-main
+      service: jenkins
+  template:
+    metadata:
+      labels:
+        app: {{ .Chart.Name }}-{{ .Values.environment }}-main
+        service: jenkins
+    spec:
+      serviceAccountName: jenkins-admin
+      initContainers:
+        - name: volume-mount-hack
+          image: busybox:latest
+          command: [ "sh", "-c", "chown -R 1000:1000 /var/jenkins_home" ]
+          volumeMounts:
+            - name: jenkins-data
+              mountPath: /var/jenkins_home
+      containers:
+        - image: {{ .Values.image.name }}:{{ .Values.image.tag | default .Chart.AppVersion }}
+          imagePullPolicy: Always
+          name: jenkins-main
+          ports:
+            - name: web
+              containerPort: 8080
+            - name: jnlp
+              containerPort: 50000
+          env:
+            - name: JENKINS_OPTS
+              value: "--prefix=/jenkins"
+          resources:
+            {{- toYaml .Values.resources | nindent 12 }}
+          volumeMounts:
+            - name: jenkins-data
+              mountPath: /var/jenkins_home
+      volumes:
+        - name: jenkins-data
+          persistentVolumeClaim:
+            claimName: jenkins-pv-claim
--- a/k8s/helm/jenkins/templates/ingress.yaml
+++ b/k8s/helm/jenkins/templates/ingress.yaml
@@ -0,0 +1,19 @@
+---
+apiVersion: networking.k8s.io/v1
+kind: Ingress
+metadata:
+  name: {{ .Chart.Name }}-{{ .Values.environment }}-ingress
+  namespace: devops-tools
+  annotations:
+    kubernetes.io/ingress.class: nginx
+spec:
+  rules:
+    - http:
+        paths:
+          - path: /jenkins
+            pathType: Prefix
+            backend:
+              service:
+                name: {{ .Chart.Name }}-{{ .Values.environment }}-main
+                port:
+                  name: web
--- a/k8s/helm/jenkins/templates/namespace.yaml
+++ b/k8s/helm/jenkins/templates/namespace.yaml
@@ -0,0 +1,5 @@
+---
+apiVersion: v1
+kind: Namespace
+metadata:
+  name: devops-tools
--- a/k8s/helm/jenkins/templates/service-account.yaml
+++ b/k8s/helm/jenkins/templates/service-account.yaml
@@ -0,0 +1,30 @@
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRole
+metadata:
+  name: jenkins-admin
+rules:
+  - apiGroups: [""]
+    resources: ["*"]
+    verbs: ["*"]
+
+---
+apiVersion: v1
+kind: ServiceAccount
+metadata:
+  name: jenkins-admin
+  namespace: devops-tools
+
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRoleBinding
+metadata:
+  name: jenkins-admin
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: ClusterRole
+  name: jenkins-admin
+subjects:
+  - kind: ServiceAccount
+    name: jenkins-admin
+    namespace: devops-tools
--- a/k8s/helm/jenkins/templates/service.yaml
+++ b/k8s/helm/jenkins/templates/service.yaml
@@ -0,0 +1,28 @@
+---
+apiVersion: v1
+kind: Service
+metadata:
+  name: {{ .Chart.Name }}-{{ .Values.environment }}-main
+  namespace: devops-tools
+spec:
+  ports:
+    - name: web
+      port: 8080
+  selector:
+    app: {{ .Chart.Name }}-{{ .Values.environment }}-main
+    service: jenkins
+---
+apiVersion: v1
+kind: Service
+metadata:
+  name: {{ .Chart.Name }}-{{ .Values.environment }}-main-np
+  namespace: devops-tools
+spec:
+  type: NodePort
+  ports:
+    - name: jnlp
+      port: 30000
+      nodePort: 30000
+  selector:
+    app: {{ .Chart.Name }}-{{ .Values.environment }}-main
+    service: jenkins
--- a/k8s/helm/jenkins/templates/volume.yaml
+++ b/k8s/helm/jenkins/templates/volume.yaml
@@ -0,0 +1,41 @@
+---
+apiVersion: v1
+kind: PersistentVolume
+metadata:
+  name: jenkins-pv-volume
+  labels:
+    type: local
+spec:
+  storageClassName: manual
+  claimRef:
+    name: jenkins-pv-claim
+    namespace: devops-tools
+  capacity:
+    storage: 10Gi
+  accessModes:
+    - ReadWriteOnce
+  hostPath:
+    path: /mnt/jenkins
+  nodeAffinity:
+    required:
+      nodeSelectorTerms:
+        - matchExpressions:
+            - key: kubernetes.io/hostname
+              operator: In
+              values:
+                - node1
+                - node2
+
+---
+apiVersion: v1
+kind: PersistentVolumeClaim
+metadata:
+  name: jenkins-pv-claim
+  namespace: devops-tools
+spec:
+  storageClassName: local-storage
+  accessModes:
+    - ReadWriteOnce
+  resources:
+    requests:
+      storage: 3Gi