2023-07-19 11:44:04 +00:00
# convention 4 kubernetes: c4k-taiga
2023-07-19 12:01:15 +00:00
[![Clojars Project ](https://img.shields.io/clojars/v/org.domaindrivenarchitecture/c4k-taiga.svg )](https://clojars.org/org.domaindrivenarchitecture/c4k-taiga) [![pipeline status ](https://gitlab.com/domaindrivenarchitecture/c4k-taiga/badges/master/pipeline.svg )](https://gitlab.com/domaindrivenarchitecture/c4k-taiga/-/commits/main)
2023-07-19 11:44:04 +00:00
2023-07-19 12:01:15 +00:00
[<img src="https://domaindrivenarchitecture.org/img/delta-chat.svg" width=20 alt="DeltaChat"> chat over e-mail ](mailto:buero@meissa-gmbh.de?subject=community-chat ) | [<img src="https://meissa-gmbh.de/img/community/Mastodon_Logotype.svg" width=20 alt="team@social.meissa-gmbh.de"> team@social.meissa-gmbh.de ](https://social.meissa-gmbh.de/@team ) | [taiga & Blog ](https://domaindrivenarchitecture.org )
2023-07-19 11:44:04 +00:00
2023-08-09 11:04:33 +00:00
## Configuration Issues
2023-07-19 11:44:04 +00:00
2023-07-19 12:01:15 +00:00
https://github.com/kaleidos-ventures/taiga-docker
https://community.taiga.io/t/taiga-30min-setup/170
2023-07-19 11:44:04 +00:00
2023-08-09 11:04:33 +00:00
Note: taiga-manage,-back und -async verwenden die gleichen docker images mit unterschiedlichen entry-points.
2023-07-20 12:19:03 +00:00
### HTTPS
Terminiert am ingress. Wie interagiert das mit taiga?
Eventuell wird dies hier relevant:
https://github.com/kaleidos-ventures/taiga-docker#session-cookies-in-django-admin
2023-08-09 11:04:33 +00:00
### Docker Compose -> Kubernetes
2023-07-20 12:19:03 +00:00
2023-07-20 12:33:28 +00:00
Wir müssen die compose-yamls nach kubernetes resources übersetzen.
2023-07-20 12:19:03 +00:00
### Für das init deployment
2023-08-09 11:04:33 +00:00
Es gibt einen Init-Container mit namen *taiga-manage* im deployment.
ToDo: Dieser erstellt einen Admin User mit credentials aus dem taiga-back-secret.
2023-07-20 12:19:03 +00:00
2023-08-09 11:04:33 +00:00
#### Einen admin-user anlegen:
2023-07-20 12:19:03 +00:00
https://github.com/kaleidos-ventures/taiga-docker#configure-an-admin-user
folglich:
https://docs.djangoproject.com/en/4.2/ref/django-admin/#django-admin-createsuperuser
Also DJANGO_SUPERUSER_TAIGAADMIN und DJANGO_SUPERUSER_PASSWORD
2023-08-01 08:25:56 +00:00
sollten für den Container gesetzt sein.
2023-07-20 12:19:03 +00:00
2023-07-20 12:33:28 +00:00
Dann noch ein run befehl mit: python manage.py createsuperuser im init container unterbringen.
2023-07-20 12:19:03 +00:00
2023-08-09 10:11:37 +00:00
### deployment
2023-07-20 12:19:03 +00:00
2023-08-09 10:11:37 +00:00
Taiga reads many values in config.py from env vars as can be seen in the taiga-back [config.py](
2023-08-09 11:04:33 +00:00
https://github.com/kaleidos-ventures/taiga-back/blob/main/docker/config.py). These are read from configmaps and secrets
in the deployment.
2023-07-26 13:32:33 +00:00
Mounting a configmap with a config.py as described here: https://docs.taiga.io/setup-production.html could be interesting. A mix of both env-vars and config.py in one container is not possible.
An example for a config.py is given here:
https://github.com/kaleidos-ventures/taiga-back/blob/main/settings/config.py.prod.example
2023-07-20 12:19:03 +00:00
* taiga-db
2023-07-19 12:01:15 +00:00
* Postgres
2023-07-20 12:19:03 +00:00
* taiga-back
* taiga-async
* taiga-async-rabbitmq
* taiga-front
* taiga-events
* taiga-events-rabbitmq
* taiga-protected
* taiga-gateway
* Nginx???
* ersetzen durch metallb und ingresse
2023-08-09 11:04:33 +00:00
### Volume Mounts
2023-07-20 12:19:03 +00:00
* taiga-static-data:
* taiga-media-data:
* taiga-db-data:
* taiga-async-rabbitmq-data:
* taiga-events-rabbitmq-data:
2023-08-09 11:04:33 +00:00
### Secrets
2023-07-20 12:19:03 +00:00
* admin user?
* secret-key
* db
* email
* rabbit-mq
2023-07-19 11:44:04 +00:00
2023-08-09 10:11:37 +00:00
### Networking
2023-08-09 14:07:02 +00:00
https://github.com/compose-spec/compose-spec/blob/master/spec.md
2023-08-09 10:11:37 +00:00
2023-08-09 14:07:02 +00:00
The `hostname` KW sets the hostname of a container.
It should have no effect on the discoverability of the container in kubernetes.
The `networks` KW defines the networks that service containers are attached to, referencing entries under the top-level networks key.
This should be taken care of by our kubernetes installation.
Taiga containers that need to reach other taiga containers:
taiga-async -> taiga-async-rabbitmq
taiga-events -> taiga-events-rabbitmq
2023-08-09 10:11:37 +00:00
2023-08-09 11:04:33 +00:00
ToDo: How do we direct traffic towards the frontend pod?
Do we need to touch the frontend config regarding the default address (localhost:9000) of the API?
2023-08-09 10:11:37 +00:00
2023-07-19 12:01:15 +00:00
## Purpose
2023-07-19 11:44:04 +00:00
## Status
## Try out
## Usage
You need:
2023-07-19 12:01:15 +00:00
...
2023-07-19 11:44:04 +00:00
* and a kubernetes cluster provisioned by [provs]
2023-07-19 12:01:15 +00:00
...
Let c4k-taiga generate your .yaml file.
2023-07-19 11:44:04 +00:00
Apply this file on your cluster with `kubectl apply -f yourApp.yaml` .
Done.
### resource requests and limits
You may want to adjust the resource requests and limits of the build and init containers to your specific scenario.
## Development & mirrors
2023-07-19 12:01:15 +00:00
Development happens at: https://repo.prod.meissa.de/meissa/c4k-taiga
2023-07-19 11:44:04 +00:00
Mirrors are:
2023-07-20 12:33:28 +00:00
* https://gitlab.com/domaindrivenarchitecture/c4k-taiga (issues and PR, CI)
2023-07-28 12:03:06 +00:00
* https://github.com/DomainDrivenArchitecture/c4k-taiga
2023-07-19 11:44:04 +00:00
For more details about our repository model see: https://repo.prod.meissa.de/meissa/federate-your-repos
## License
Copyright © 2022 meissa GmbH
Licensed under the [Apache License, Version 2.0 ](LICENSE ) (the "License")
Pls. find licenses of our subcomponents [here ](doc/SUBCOMPONENT_LICENSE )
[provs]: https://gitlab.com/domaindrivenarchitecture/provs/