From 661f49409e69f5cfafbef4cd41411a72ebc5418d Mon Sep 17 00:00:00 2001
From: Chris Lovering <chris.lovering.95@gmail.com>
Date: Sun, 13 Aug 2023 20:01:42 +0100
Subject: Copy all files from kubernetes repo into this one
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

This commit is a like-for-like copy of the [kubernetes repo](https://github.com/python-discord/kubernetes) check that repo for comit history prioir to this commit.

Co-authored-by: Amrou Bellalouna <amrbellalouna@gmail.com>
Co-authored-by: Bradley Reynolds <bradley.reynolds@darbia.dev>
Co-authored-by: Chris <chris.lovering.95@gmail.com>
Co-authored-by: Chris Lovering <chris.lovering.95@gmail.com>
Co-authored-by: ChrisJL <ChrisLovering@users.noreply.github.com>
Co-authored-by: Den4200 <dennis@dennispham.me>
Co-authored-by: GDWR <gregory.dwr@gmail.com>
Co-authored-by: Hassan Abouelela <abouelelahassan@gmail.com>
Co-authored-by: Hassan Abouelela <hassan@hassanamr.com>
Co-authored-by: jchristgit <jc@jchri.st>
Co-authored-by: Joe Banks <20439493+jb3@users.noreply.github.com>
Co-authored-by: Joe Banks <joe@jb3.dev>
Co-authored-by: Joe Banks <joseph@josephbanks.me>
Co-authored-by: Johannes Christ <jc@jchri.st>
Co-authored-by: Kieran Siek <kieransiek@protonmail.com>
Co-authored-by: kosayoda <kieransiek@protonmail.com>
Co-authored-by: ks129 <45097959+ks129@users.noreply.github.com>
Co-authored-by: Leon Sand├©y <leon.haland@gmail.com>
Co-authored-by: Leon Sand├©y <leon.sandoy@conmodo.com>
Co-authored-by: MarkKoz <KozlovMark@gmail.com>
Co-authored-by: Matteo Bertucci <matteobertucci2004@gmail.com>
Co-authored-by: Sebastiaan Zeeff <33516116+SebastiaanZ@users.noreply.github.com>
Co-authored-by: Sebastiaan Zeeff <sebastiaan.zeeff@gmail.com>
Co-authored-by: vcokltfre <vcokltfre@gmail.com>
---
 .../namespaces/default/king-arthur/README.md       |  12 +++++++
 .../namespaces/default/king-arthur/deployment.yaml |  35 +++++++++++++++++++++
 .../namespaces/default/king-arthur/secrets.yaml    | Bin 0 -> 398 bytes
 .../default/king-arthur/service-account.yaml       |  27 ++++++++++++++++
 4 files changed, 74 insertions(+)
 create mode 100644 kubernetes/namespaces/default/king-arthur/README.md
 create mode 100644 kubernetes/namespaces/default/king-arthur/deployment.yaml
 create mode 100644 kubernetes/namespaces/default/king-arthur/secrets.yaml
 create mode 100644 kubernetes/namespaces/default/king-arthur/service-account.yaml

(limited to 'kubernetes/namespaces/default/king-arthur')

diff --git a/kubernetes/namespaces/default/king-arthur/README.md b/kubernetes/namespaces/default/king-arthur/README.md
new file mode 100644
index 0000000..704d45b
--- /dev/null
+++ b/kubernetes/namespaces/default/king-arthur/README.md
@@ -0,0 +1,12 @@
+# King Arthur
+
+Deployment file for @King Arthur, our DevOps helper bot.
+
+## Secrets
+This deployment expects a number of secrets and environment variables to exist in a secret called `king-arthur-env`.
+
+| Environment                  | Description                                                               |
+| ---------------------------- | ------------------------------------------------------------------------- |
+| KING_ARTHUR_TOKEN            | The token to authorize with Discord                                       |
+| KING_ARTHUR_NOTION_API_TOKEN | The API token to the notion API                                           |
+| KING_ARTHUR_CLOUDFLARE_TOKEN | A token for the Cloudflare API used for the Cloudflare commands in Arthur |
diff --git a/kubernetes/namespaces/default/king-arthur/deployment.yaml b/kubernetes/namespaces/default/king-arthur/deployment.yaml
new file mode 100644
index 0000000..cbc3874
--- /dev/null
+++ b/kubernetes/namespaces/default/king-arthur/deployment.yaml
@@ -0,0 +1,35 @@
+apiVersion: apps/v1
+kind: Deployment
+metadata:
+  name: king-arthur
+spec:
+  replicas: 1
+  selector:
+    matchLabels:
+      app: king-arthur
+  template:
+    metadata:
+      labels:
+        app: king-arthur
+    spec:
+      serviceAccountName: king-arthur
+      containers:
+      - name: king-arthur
+        image: ghcr.io/python-discord/king-arthur:latest
+        imagePullPolicy: Always
+        resources:
+          requests:
+            cpu: 400m
+            memory: 100Mi
+          limits:
+            cpu: 500m
+            memory: 200Mi
+        envFrom:
+        - secretRef:
+            name: king-arthur-env
+        securityContext:
+          readOnlyRootFilesystem: true
+      securityContext:
+        fsGroup: 2000
+        runAsUser: 1000
+        runAsNonRoot: true
diff --git a/kubernetes/namespaces/default/king-arthur/secrets.yaml b/kubernetes/namespaces/default/king-arthur/secrets.yaml
new file mode 100644
index 0000000..a410013
Binary files /dev/null and b/kubernetes/namespaces/default/king-arthur/secrets.yaml differ
diff --git a/kubernetes/namespaces/default/king-arthur/service-account.yaml b/kubernetes/namespaces/default/king-arthur/service-account.yaml
new file mode 100644
index 0000000..a63a88e
--- /dev/null
+++ b/kubernetes/namespaces/default/king-arthur/service-account.yaml
@@ -0,0 +1,27 @@
+---
+kind: ClusterRole
+apiVersion: rbac.authorization.k8s.io/v1
+metadata:
+  name: king-arthur
+rules:
+- apiGroups: ["", "extensions", "apps", "batch", "rbac.authorization.k8s.io", "cert-manager.io"]
+  resources: ["*"]
+  verbs: ["*"]
+---
+apiVersion: v1
+kind: ServiceAccount
+metadata:
+  name: king-arthur
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRoleBinding
+metadata:
+  name: king-arthur
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: ClusterRole
+  name: king-arthur
+subjects:
+  - kind: ServiceAccount
+    name: king-arthur
+    namespace: default
-- 
cgit v1.2.3