studio/sbbb
2
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
mainline
sbbb/base/lasuite/meet-backend-deployment.yaml
Sienna Meridian Satterwhite 9f15f5099e fix: meet external-api route, drive media proxy, alertbot, misc tweaks 
- Meet: add external-api backend path, CSRF trusted origins
- Drive: fix media proxy regex for preview URLs and S3 key signing
- OpenBao: enable Prometheus telemetry
- Postgres alerts: fix metric name (cnpg_backends_total)
- Gitea: bump memory limits for mirror workloads
- Alertbot: expanded deployment config
- Kratos: add find/cal/projects to allowed return URLs, settings path
- Pingora: meet external-api route fix
- Sol: config update
2026-03-25 18:01:15 +00:00

194 lines
5.9 KiB
YAML
Raw Permalink Blame History

apiVersion: apps/v1
kind: Deployment
metadata:
name: meet-backend
namespace: lasuite
spec:
replicas: 1
selector:
matchLabels:
app: meet-backend
template:
metadata:
labels:
app: meet-backend
spec:
initContainers:
- name: migrate
image: meet-backend
command: ["python", "manage.py", "migrate", "--no-input"]
envFrom:
- configMapRef:
name: meet-config
- configMapRef:
name: lasuite-postgres
- configMapRef:
name: lasuite-valkey
- configMapRef:
name: lasuite-s3
- configMapRef:
name: lasuite-oidc-provider
- configMapRef:
name: lasuite-resource-server
env:
- name: DB_PASSWORD
valueFrom:
secretKeyRef:
name: meet-db-credentials
key: password
- name: DJANGO_SECRET_KEY
valueFrom:
secretKeyRef:
name: meet-django-secret
key: DJANGO_SECRET_KEY
- name: APPLICATION_JWT_SECRET_KEY
valueFrom:
secretKeyRef:
name: meet-django-secret
key: APPLICATION_JWT_SECRET_KEY
- name: LIVEKIT_API_KEY
valueFrom:
secretKeyRef:
name: meet-livekit
key: LIVEKIT_API_KEY
- name: LIVEKIT_API_SECRET
valueFrom:
secretKeyRef:
name: meet-livekit
key: LIVEKIT_API_SECRET
- name: OIDC_RP_CLIENT_ID
valueFrom:
secretKeyRef:
name: oidc-meet
key: CLIENT_ID
- name: OIDC_RP_CLIENT_SECRET
valueFrom:
secretKeyRef:
name: oidc-meet
key: CLIENT_SECRET
- name: OIDC_RS_CLIENT_ID
valueFrom:
secretKeyRef:
name: oidc-meet
key: CLIENT_ID
- name: OIDC_RS_CLIENT_SECRET
valueFrom:
secretKeyRef:
name: oidc-meet
key: CLIENT_SECRET
- name: AWS_S3_ACCESS_KEY_ID
valueFrom:
secretKeyRef:
name: seaweedfs-s3-credentials
key: S3_ACCESS_KEY
- name: AWS_S3_SECRET_ACCESS_KEY
valueFrom:
secretKeyRef:
name: seaweedfs-s3-credentials
key: S3_SECRET_KEY
resources:
limits:
memory: 512Mi
cpu: 500m
requests:
memory: 128Mi
cpu: 100m
containers:
- name: meet-backend
image: meet-backend
command:
- gunicorn
- -c
- /usr/local/etc/gunicorn/meet.py
- meet.wsgi:application
ports:
- containerPort: 8000
envFrom:
- configMapRef:
name: meet-config
- configMapRef:
name: lasuite-postgres
- configMapRef:
name: lasuite-valkey
- configMapRef:
name: lasuite-s3
- configMapRef:
name: lasuite-oidc-provider
- configMapRef:
name: lasuite-resource-server
env:
- name: DB_PASSWORD
valueFrom:
secretKeyRef:
name: meet-db-credentials
key: password
- name: DJANGO_SECRET_KEY
valueFrom:
secretKeyRef:
name: meet-django-secret
key: DJANGO_SECRET_KEY
- name: APPLICATION_JWT_SECRET_KEY
valueFrom:
secretKeyRef:
name: meet-django-secret
key: APPLICATION_JWT_SECRET_KEY
- name: LIVEKIT_API_KEY
valueFrom:
secretKeyRef:
name: meet-livekit
key: LIVEKIT_API_KEY
- name: LIVEKIT_API_SECRET
valueFrom:
secretKeyRef:
name: meet-livekit
key: LIVEKIT_API_SECRET
- name: OIDC_RP_CLIENT_ID
valueFrom:
secretKeyRef:
name: oidc-meet
key: CLIENT_ID
- name: OIDC_RP_CLIENT_SECRET
valueFrom:
secretKeyRef:
name: oidc-meet
key: CLIENT_SECRET
- name: OIDC_RS_CLIENT_ID
valueFrom:
secretKeyRef:
name: oidc-meet
key: CLIENT_ID
- name: OIDC_RS_CLIENT_SECRET
valueFrom:
secretKeyRef:
name: oidc-meet
key: CLIENT_SECRET
- name: AWS_S3_ACCESS_KEY_ID
valueFrom:
secretKeyRef:
name: seaweedfs-s3-credentials
key: S3_ACCESS_KEY
- name: AWS_S3_SECRET_ACCESS_KEY
valueFrom:
secretKeyRef:
name: seaweedfs-s3-credentials
key: S3_SECRET_KEY
livenessProbe:
httpGet:
path: /__lbheartbeat__
port: 8000
initialDelaySeconds: 15
periodSeconds: 20
readinessProbe:
httpGet:
path: /__heartbeat__
port: 8000
initialDelaySeconds: 10
periodSeconds: 10
resources:
limits:
memory: 512Mi
cpu: 500m
requests:
memory: 128Mi
cpu: 100m
Reference in New Issue View Git Blame Copy Permalink