install schema

Author: marccampbell

Makefile

@@ -81,6 +81,11 @@ pgvector:
 schema: pgvector
 	@echo "Running schema commands..."
 	rm -rf ./db/generated-schema
+
+	mkdir -p ./db/generated-schema/extensions
+	schemahero plan --driver postgres --uri $(CHARTSMITH_PG_URI) --spec-file ./db/schema/extensions --spec-type extension --out ./db/generated-schema/extensions
+	schemahero apply --driver postgres --uri $(CHARTSMITH_PG_URI) --ddl ./db/generated-schema/extensions
+
 	mkdir -p ./db/generated-schema/tables
 	schemahero plan --driver postgres --uri "$(CHARTSMITH_PG_URI)" --spec-file ./db/schema/tables --spec-type table --out ./db/generated-schema/tables
 	schemahero apply --driver postgres --uri "$(CHARTSMITH_PG_URI)" --ddl ./db/generated-schema/tables
@@ -158,6 +163,10 @@ release:
 # Requires: GITHUB_TOKEN, OP_SERVICE_ACCOUNT_PRODUCTION
 .PHONY: replicated
 replicated:
+	mkdir -p chart/chartsmith/db/schema/extensions
+	mkdir -p chart/chartsmith/db/schema/tables
+	cp db/schema/extensions/*.yaml chart/chartsmith/db/schema/extensions/
+	cp db/schema/tables/*.yaml chart/chartsmith/db/schema/tables/
 	dagger call release \
 		--version $(version) \
 		--build=false \

chart/chartsmith/.gitignore

@@ -0,0 +1 @@
+db/

chart/chartsmith/templates/centrifugo-secret.yaml

@@ -10,16 +10,16 @@ stringData:
     {
       {{- $existing := (lookup "v1" "Secret" .Release.Namespace "chartsmith-centrifugo-config") }}
       {{- $tokenHmacDefault := (randAlphaNum 32) }}
-      {{- $tokenHmac := .Values.centrifugo.tokenHmacSecretKey.value | default ($existing.data.token_hmac_secret_key | b64dec | default $tokenHmacDefault) }}
+      {{- $tokenHmac := .Values.centrifugo.tokenHmacSecretKey.value | default ((get (default dict $existing.data) "token_hmac_secret_key" | b64dec) | default $tokenHmacDefault) }}
       "token_hmac_secret_key": {{ $tokenHmac | quote }},
       {{- $adminPasswordDefault := (randAlphaNum 32) }}
-      {{- $adminPassword := .Values.centrifugo.adminPassword.value | default ($existing.data.admin_password | b64dec | default $adminPasswordDefault) }}
+      {{- $adminPassword := .Values.centrifugo.adminPassword.value | default ((get (default dict $existing.data) "admin_password" | b64dec) | default $adminPasswordDefault) }}
       "admin_password": {{ $adminPassword | quote }},
       {{- $adminSecretDefault := (randAlphaNum 32) }}
-      {{- $adminSecret := .Values.centrifugo.adminSecret.value | default ($existing.data.admin_secret | b64dec | default $adminSecretDefault) }}
+      {{- $adminSecret := .Values.centrifugo.adminSecret.value | default ((get (default dict $existing.data) "admin_secret" | b64dec) | default $adminSecretDefault) }}
       "admin_secret": {{ $adminSecret | quote }},
       {{- $apiKeyDefault := (randAlphaNum 32) }}
-      {{- $apiKey := .Values.centrifugo.apiKey.value | default ($existing.data.api_key | b64dec | default $apiKeyDefault) }}
+      {{- $apiKey := .Values.centrifugo.apiKey.value | default ((get (default dict $existing.data) "api_key" | b64dec) | default $apiKeyDefault) }}
       "api_key": {{ $apiKey | quote }},
       "allowed_origins": ["*"],
       "allow_user_limited_channels": true

chart/chartsmith/templates/centrifugo-service.yaml

@@ -0,0 +1,18 @@
+apiVersion: v1
+kind: Service
+metadata:
+  name: {{ include "chartsmith.fullname" . }}-centrifugo
+  labels:
+    {{- include "chartsmith.labels" (dict "Chart" .Chart "Values" (merge .Values (dict "component" "centrifugo")) "Release" .Release "Files" .Files) | nindent 4 }}
+    app.kubernetes.io/component: centrifugo
+spec:
+  type: ClusterIP
+  ports:
+    - port: 8000
+      targetPort: http
+      protocol: TCP
+      name: http
+  selector:
+    app.kubernetes.io/name: {{ include "chartsmith.name" . }}
+    app.kubernetes.io/instance: {{ .Release.Name }}
+    app.kubernetes.io/component: centrifugo

chart/chartsmith/templates/deployment.yaml renamed to chart/chartsmith/templates/chartsmith-deployment.yaml

@@ -0,0 +1,81 @@
+apiVersion: apps/v1
+kind: Deployment
+metadata:
+  name: {{ include "chartsmith.fullname" . }}-worker
+  labels:
+    {{- include "chartsmith.labels" (dict "Chart" .Chart "Values" (merge .Values (dict "component" "worker")) "Release" .Release "Files" .Files) | nindent 4 }}
+    app.kubernetes.io/component: worker
+spec:
+  replicas: 1
+  selector:
+    matchLabels:
+      {{- include "chartsmith.selectorLabels" (dict "Chart" .Chart "Values" (merge .Values (dict "component" "worker")) "Release" .Release "Files" .Files) | nindent 6 }}
+      app.kubernetes.io/component: worker
+  template:
+    metadata:
+      labels:
+        {{- include "chartsmith.selectorLabels" (dict "Chart" .Chart "Values" (merge .Values (dict "component" "worker")) "Release" .Release "Files" .Files) | nindent 8 }}
+        {{- include "chartsmith.labels" (dict "Chart" .Chart "Values" (merge .Values (dict "component" "worker")) "Release" .Release "Files" .Files) | nindent 8 }}
+        app.kubernetes.io/component: worker
+        {{- with .Values.podLabels }}
+        {{- toYaml . | nindent 8 }}
+        {{- end }}
+      {{- with .Values.podAnnotations }}
+      annotations:
+        {{- toYaml . | nindent 8 }}
+      {{- end }}
+    spec:
+      {{- if .Values.global.replicated.dockerconfigjson }}
+      imagePullSecrets:
+        - name: chartsmith-image-pull-secret
+      {{- else if .Values.imagePullSecrets }}
+      imagePullSecrets:
+        {{- toYaml .Values.imagePullSecrets | nindent 8 }}
+      {{- end }}
+      serviceAccountName: {{ include "chartsmith.serviceAccountName" . }}
+      securityContext:
+        {{- toYaml .Values.podSecurityContext | nindent 8 }}
+      containers:
+        - name: worker
+          securityContext:
+            {{- toYaml .Values.securityContext | nindent 12 }}
+          image: "{{ .Values.images.worker.registry }}/{{ .Values.images.worker.repository }}:{{ .Values.images.worker.tag }}"
+          imagePullPolicy: {{ .Values.images.worker.pullPolicy }}
+          args: ["run"]
+          env:
+            - name: CHARTSMITH_PG_URI
+              value: "{{ if .Values.postgresql.enabled }}postgres://{{ .Values.postgresql.credentials.username }}:{{ .Values.postgresql.credentials.password }}@postgresql:5432/{{ .Values.postgresql.credentials.database }}{{ else }}{{ .Values.postgresql.externalUri }}{{ end }}"
+            - name: CHARTSMITH_CENTRIFUGO_ADDRESS
+              value: "http://{{ include "chartsmith.fullname" . }}-centrifugo:8000/api"
+            - name: CHARTSMITH_CENTRIFUGO_API_KEY
+              value: {{ .Values.centrifugo.apiKey.value | quote }}
+          ports:
+            - name: http
+              containerPort: {{ .Values.service.port }}
+              protocol: TCP
+          livenessProbe:
+            {{- toYaml .Values.livenessProbe | nindent 12 }}
+          readinessProbe:
+            {{- toYaml .Values.readinessProbe | nindent 12 }}
+          resources:
+            {{- toYaml .Values.resources | nindent 12 }}
+          {{- with .Values.volumeMounts }}
+          volumeMounts:
+            {{- toYaml . | nindent 12 }}
+          {{- end }}
+      {{- with .Values.volumes }}
+      volumes:
+        {{- toYaml . | nindent 8 }}
+      {{- end }}
+      {{- with .Values.nodeSelector }}
+      nodeSelector:
+        {{- toYaml . | nindent 8 }}
+      {{- end }}
+      {{- with .Values.affinity }}
+      affinity:
+        {{- toYaml . | nindent 8 }}
+      {{- end }}
+      {{- with .Values.tolerations }}
+      tolerations:
+        {{- toYaml . | nindent 8 }}
+      {{- end }}

chart/chartsmith/templates/service.yaml renamed to chart/chartsmith/templates/chartsmith-service.yaml

@@ -0,0 +1,89 @@
+apiVersion: apps/v1
+kind: Deployment
+metadata:
+  name: migrations-deployment
+  labels:
+    app.kubernetes.io/name: chartsmith
+spec:
+  replicas: 1
+  selector:
+    matchLabels:
+      app.kubernetes.io/name: chartsmith
+      app.kubernetes.io/component: migrations
+  template:
+    metadata:
+      labels:
+        app.kubernetes.io/name: chartsmith
+        app.kubernetes.io/component: migrations
+    spec:
+      restartPolicy: Always
+      volumes:
+        - name: plan
+          emptyDir: {}
+        - name: extensions
+          emptyDir: {}
+        - name: tables
+          emptyDir: {}
+{{- $extensions := .Files.Glob "db/schema/extensions/*.yaml" }}
+{{- $tables := .Files.Glob "db/schema/tables/*.yaml" }}
+{{- range $path, $file := $extensions }}
+        - name: ext-{{ base $path | replace ".yaml" "" | replace "." "-" }}
+          configMap:
+            name: schema-extension-{{ base $path | replace ".yaml" "" | replace "." "-" }}
+{{- end }}
+{{- range $path, $file := $tables }}
+        - name: tbl-{{ base $path | replace ".yaml" "" | replace "." "-" }}
+          configMap:
+            name: schema-table-{{ base $path | replace ".yaml" "" | replace "." "-" }}
+{{- end }}
+      initContainers:
+        - name: plan
+          image: schemahero/schemahero:0.19.0
+          command: ["sh", "-c"]
+          args:
+            - |
+              mkdir -p /plan/extensions
+              /schemahero plan --driver postgres --uri $CHARTSMITH_PG_URI --spec-file /schema/extensions --spec-type extension --out /plan/extensions;
+              mkdir -p /plan/tables
+              /schemahero plan --driver postgres --uri $CHARTSMITH_PG_URI --spec-file /schema/tables --spec-type table --out /plan/tables;
+          env:
+            - name: CHARTSMITH_PG_URI
+              value: "{{ if .Values.postgresql.enabled }}postgres://{{ .Values.postgresql.credentials.username }}:{{ .Values.postgresql.credentials.password }}@postgresql:5432/{{ .Values.postgresql.credentials.database }}{{ else }}{{ .Values.postgresql.externalUri }}{{ end }}"
+          volumeMounts:
+            - name: plan
+              mountPath: /plan
+            - name: extensions
+              mountPath: /schema/extensions
+            - name: tables
+              mountPath: /schema/tables
+{{- range $path, $file := $extensions }}
+            - name: ext-{{ base $path | replace ".yaml" "" | replace "." "-" }}
+              mountPath: /schema/extensions/{{ base $path }}
+              subPath: {{ base $path }}
+{{- end }}
+{{- range $path, $file := $tables }}
+            - name: tbl-{{ base $path | replace ".yaml" "" | replace "." "-" }}
+              mountPath: /schema/tables/{{ base $path }}
+              subPath: {{ base $path }}
+{{- end }}
+        - name: apply
+          image: schemahero/schemahero:0.19.0
+          command: ["sh", "-c"]
+          args:
+            - |
+              /schemahero apply --driver postgres --uri $CHARTSMITH_PG_URI --ddl /plan/extensions;
+              /schemahero apply --driver postgres --uri $CHARTSMITH_PG_URI --ddl /plan/tables;
+          env:
+            - name: CHARTSMITH_PG_URI
+              value: "{{ if .Values.postgresql.enabled }}postgres://{{ .Values.postgresql.credentials.username }}:{{ .Values.postgresql.credentials.password }}@postgresql:5432/{{ .Values.postgresql.credentials.database }}{{ else }}{{ .Values.postgresql.externalUri }}{{ end }}"
+          volumeMounts:
+            - name: plan
+              mountPath: /plan
+      containers:
+        - name: sleep
+          image: schemahero/schemahero:0.19.0
+          command: ["sh", "-c", "sleep infinity"]
+          volumeMounts:
+            - name: plan
+              mountPath: /plan
+

chart/chartsmith/templates/chatsmith-worker-deployment.yaml

@@ -0,0 +1,14 @@
+{{- if .Values.postgresql.enabled }}
+apiVersion: v1
+kind: Secret
+metadata:
+  name: postgresql-secret
+  labels:
+    app: chartsmith
+    component: postgresql
+type: Opaque
+stringData:
+  username: {{ .Values.postgresql.credentials.username | quote }}
+  password: {{ .Values.postgresql.credentials.password | quote }}
+  database: {{ .Values.postgresql.credentials.database | quote }}
+{{- end }}

chart/chartsmith/templates/migrate-deployment.yaml

@@ -0,0 +1,18 @@
+{{- if .Values.postgresql.enabled }}
+apiVersion: v1
+kind: Service
+metadata:
+  name: postgresql
+  labels:
+    app: chartsmith
+    component: postgresql
+spec:
+  type: ClusterIP
+  ports:
+    - port: 5432
+      targetPort: 5432
+      name: postgres
+  selector:
+    app: chartsmith
+    component: postgresql
+{{- end }}

chart/chartsmith/templates/postgresql-secret.yaml

@@ -0,0 +1,88 @@
+{{- if .Values.postgresql.enabled }}
+apiVersion: apps/v1
+kind: StatefulSet
+metadata:
+  name: postgresql
+  labels:
+    app: chartsmith
+spec:
+  serviceName: postgresql
+  replicas: 1
+  selector:
+    matchLabels:
+      app: chartsmith
+      component: postgresql
+  template:
+    metadata:
+      labels:
+        app: chartsmith
+        component: postgresql
+    spec:
+      {{- if .Values.global.replicated.dockerconfigjson }}
+      imagePullSecrets:
+        - name: chartsmith-image-pull-secret
+      {{- else if .Values.imagePullSecrets }}
+      imagePullSecrets:
+        {{- toYaml .Values.imagePullSecrets | nindent 8 }}
+      {{- end }}
+      containers:
+        - name: postgresql
+          image: "{{ .Values.images.pgvector.registry }}/{{ .Values.images.pgvector.repository }}:{{ .Values.images.pgvector.tag }}"
+          imagePullPolicy: {{ .Values.images.pgvector.pullPolicy }}
+          env:
+            - name: POSTGRES_DB
+              valueFrom:
+                secretKeyRef:
+                  name: postgresql-secret
+                  key: database
+            - name: POSTGRES_USER
+              valueFrom:
+                secretKeyRef:
+                  name: postgresql-secret
+                  key: username
+            - name: POSTGRES_PASSWORD
+              valueFrom:
+                secretKeyRef:
+                  name: postgresql-secret
+                  key: password
+          ports:
+            - containerPort: 5432
+              name: postgres
+          volumeMounts:
+            - name: data
+              mountPath: /var/lib/postgresql/data
+          readinessProbe:
+            exec:
+              command:
+                - pg_isready
+                - -U
+                - "$(POSTGRES_USER)"
+            initialDelaySeconds: 10
+            periodSeconds: 10
+          livenessProbe:
+            exec:
+              command:
+                - pg_isready
+                - -U
+                - "$(POSTGRES_USER)"
+            initialDelaySeconds: 30
+            periodSeconds: 10
+      volumes:
+        - name: data
+          persistentVolumeClaim:
+            claimName: postgresql-data
+---
+apiVersion: v1
+kind: PersistentVolumeClaim
+metadata:
+  name: postgresql-data
+spec:
+  accessModes:
+    - ReadWriteOnce
+  resources:
+    requests:
+      storage: {{ .Values.postgresql.storage.size | default "10Gi" }}
+{{- if .Values.postgresql.storage.className }}
+  storageClassName: {{ .Values.postgresql.storage.className | quote }}
+{{- end }}
+{{- end }}

chart/chartsmith/templates/postgresql-service.yaml

@@ -0,0 +1,30 @@
+{{- $extensions := .Files.Glob "db/schema/extensions/*.yaml" }}
+{{- $tables := .Files.Glob "db/schema/tables/*.yaml" }}
+{{- range $path, $val := $extensions }}
+---
+apiVersion: v1
+kind: ConfigMap
+metadata:
+  name: schema-extension-{{ base $path | replace ".yaml" "" | replace "." "-" }}
+  labels:
+    app.kubernetes.io/name: chartsmith
+    chartsmith.io/schema: extension
+    chartsmith.io/schema-file: {{ base $path }}
+data:
+  {{ base $path }}: |
+{{ $.Files.Get $path | indent 4 }}
+{{- end }}
+{{- range $path, $val := $tables }}
+---
+apiVersion: v1
+kind: ConfigMap
+metadata:
+  name: schema-table-{{ base $path | replace ".yaml" "" | replace "." "-" }}
+  labels:
+    app.kubernetes.io/name: chartsmith
+    chartsmith.io/schema: table
+    chartsmith.io/schema-file: {{ base $path }}
+data:
+  {{ base $path }}: |
+{{ $.Files.Get $path | indent 4 }}
+{{- end }}