diff --git a/migration/egress-iam2keycloak_prodnso.yaml b/migration/egress-iam2keycloak_prodnso.yaml new file mode 100644 index 0000000..36d4ad0 --- /dev/null +++ b/migration/egress-iam2keycloak_prodnso.yaml @@ -0,0 +1,18 @@ +apiVersion: networking.k8s.io/v1 +kind: NetworkPolicy +metadata: + name: migration-egress-iam2keycloak-prodnso + namespace: mobene-keycloak +spec: + egress: + - ports: + - port: 443 + protocol: TCP + to: + - ipBlock: + cidr: 142.132.168.60/32 + podSelector: + matchLabels: + app: iam + policyTypes: + - Egress diff --git a/migration/ingress_migrationpod2pginstances.yaml b/migration/ingress_migrationpod2pginstances.yaml new file mode 100644 index 0000000..e87af94 --- /dev/null +++ b/migration/ingress_migrationpod2pginstances.yaml @@ -0,0 +1,20 @@ +apiVersion: networking.k8s.io/v1 +kind: NetworkPolicy +metadata: + labels: + argocd.argoproj.io/instance: nsodev + name: ingress-migrationpod2pginstances +spec: + ingress: + - from: + - namespaceSelector: + matchLabels: + kubernetes.io/metadata.name: default + ports: + - port: 5432 + protocol: TCP + podSelector: + matchLabels: + cluster-name: postgres-cluster + policyTypes: + - Ingress diff --git a/migration/pod.yaml b/migration/pod.yaml new file mode 100644 index 0000000..1a315ad --- /dev/null +++ b/migration/pod.yaml @@ -0,0 +1,18 @@ +apiVersion: v1 +kind: Pod +metadata: + name: fgoerz-migration +spec: + volumes: + - name: task-pv-storage + persistentVolumeClaim: + claimName: fgoerz-mobene-migration2 + containers: + - name: migration + image: ubuntu + command: + - sleep + - infinity + volumeMounts: + - mountPath: "/data" + name: task-pv-storage diff --git a/migration/pvc.yaml b/migration/pvc.yaml new file mode 100644 index 0000000..cfe9a64 --- /dev/null +++ b/migration/pvc.yaml @@ -0,0 +1,11 @@ +apiVersion: v1 +kind: PersistentVolumeClaim +metadata: + name: fgoerz-mobene-migration2 +spec: + accessModes: + - ReadWriteOnce + resources: + requests: + storage: 10Gi + storageClassName: hcloud-volumes