add openldap

2026-04-13 13:41:49 +03:00 · 2026-04-13 13:41:49 +03:00 · 82a1bdcbc6
commit 82a1bdcbc6
parent 1844424393
7 changed files with 72 additions and 0 deletions
--- a/clusters/yc-k8s-test/infrastructure/kustomization.yaml
+++ b/clusters/yc-k8s-test/infrastructure/kustomization.yaml
@ -127,3 +127,10 @@ patches:
      kind: HelmRelease
      name: keycloak
      namespace: keycloak
+  - path: ./patches/openldap.yaml
+    target:
+      group: helm.toolkit.fluxcd.io
+      version: v2
+      kind: HelmRelease
+      name: openldap
+      namespace: openldap
--- a/clusters/yc-k8s-test/infrastructure/patches/openldap.yaml
+++ b/clusters/yc-k8s-test/infrastructure/patches/openldap.yaml
@ -0,0 +1,26 @@
+apiVersion: helm.toolkit.fluxcd.io/v2
+kind: HelmRelease
+metadata:
+  name: openldap
+  namespace: openldap
+spec:
+  interval: 5m
+  timeout: 15m
+  values:
+    global:
+      ldapDomain: "sarex.tech"
+    replicaCount: 1
+    readOnlyReplicaCount: 0
+    replication:
+      enabled: false
+    persistence:
+      enabled: true
+      size: 10Gi
+      storageClass: local-path
+    phpldapadmin:
+      enabled: false
+    ltb-passwd:
+      enabled: false
+    service:
+      enableLdapPort: true
+      enableSslLdapPort: false
--- a/infrastructure/kustomization.yaml
+++ b/infrastructure/kustomization.yaml
@ -9,6 +9,7 @@ resources:
  - keycloak
  - local-path-provisioner
  - minio
+  - openldap
  - postgresql
  - rabbitmq
  - redis
--- a/infrastructure/openldap/base/helmrelease.yaml
+++ b/infrastructure/openldap/base/helmrelease.yaml
@ -0,0 +1,22 @@
+apiVersion: helm.toolkit.fluxcd.io/v2
+kind: HelmRelease
+metadata:
+  name: openldap
+  namespace: openldap
+spec:
+  interval: 10m
+  chart:
+    spec:
+      chart: openldap-contour
+      version: "4.3.4"
+      sourceRef:
+        kind: HelmRepository
+        name: yc-oci-charts
+        namespace: flux-system
+      interval: 10m
+  install:
+    remediation:
+      retries: 3
+  upgrade:
+    remediation:
+      retries: 3
--- a/infrastructure/openldap/base/kustomization.yaml
+++ b/infrastructure/openldap/base/kustomization.yaml
@ -0,0 +1,6 @@
+apiVersion: kustomize.config.k8s.io/v1beta1
+kind: Kustomization
+namespace: openldap
+resources:
+  - helmrelease.yaml
+  - namespace.yaml
--- a/infrastructure/openldap/base/namespace.yaml
+++ b/infrastructure/openldap/base/namespace.yaml
@ -0,0 +1,6 @@
+apiVersion: v1
+kind: Namespace
+metadata:
+  name: openldap
+  labels:
+    istio-injection: enabled
--- a/infrastructure/openldap/kustomization.yaml
+++ b/infrastructure/openldap/kustomization.yaml
@ -0,0 +1,4 @@
+apiVersion: kustomize.config.k8s.io/v1beta1
+kind: Kustomization
+resources:
+  - base