Home A - Z
Page Index

An Otter Wiki

Commit 6c6328

2023-09-07 21:29:24 Ralph Thesen: initial commit
/dev/null .. howto/nginx-public_html.md
@@ 0,0 1,100 @@
+ # Howto: NGINX-public_html
+
+ 1. create a `~/public_html/domain.tld` on `gate0.t3m4.net`
+ 2. `sudo` or ping <mail@redimp.de> to add the folder to `/etc/exports` and run `exportfs -a`
+ 3. create a `domain-tld.yaml` definition for a deployment, a service and an ingress and `kubectl apply -f domain-tld.yaml` it.
+
+ <mark>Please consider all files in the exported folders as public, since any k8s pod can mount it via nfs. name the directories accordingly, e.g. `public_html` or `share`.</mark>
+
+ ## k8s deployment, service and ingress
+
+ An example for an nginx deployment can be found below. Make sure to replace all the
+
+ - domain-tld
+ - domain.tld
+ - username
+
+ entries.
+
+ ```yaml
+ ---
+ apiVersion: apps/v1
+ kind: Deployment
+ metadata:
+ name: nginx-domain-tld
+ namespace: username-vserver
+ spec:
+ selector:
+ matchLabels:
+ app: nginx-domain-tld
+ replicas: 1
+ template:
+ metadata:
+ labels:
+ app: nginx-domain-tld
+ spec:
+ containers:
+ - name: nginx
+ image: nginx:1.14.2
+ command:
+ - /bin/sh
+ - -c
+ - |
+ sed -i '/^nginx/d' /etc/passwd
+ sed -i '/^nginx/d' /etc/group
+ echo "nginx:x:101:101:nginx user,,,:/nonexistent:/bin/false" >> /etc/passwd
+ echo "nginx:x:101:" >> /etc/group
+ nginx -g 'daemon off;'
+ ports:
+ - containerPort: 80
+ volumeMounts:
+ - name: nfs-public-html
+ mountPath: /usr/share/nginx/html
+ volumes:
+ - name: nfs-public-html
+ nfs:
+ server: 10.1.0.2
+ path: /home/username/public_html/domain.tld
+ ---
+ apiVersion: v1
+ kind: Service
+ metadata:
+ name: nginx-domain-tld
+ namespace: vserver
+ spec:
+ ports:
+ - port: 80
+ targetPort: 80
+ protocol: TCP
+ selector:
+ app: nginx-domain-tld
+ ---
+ apiVersion: networking.k8s.io/v1
+ kind: Ingress
+ metadata:
+ name: nginx-domain-tld
+ namespace: vserver
+ annotations:
+ cert-manager.io/cluster-issuer: "letsencrypt-production"
+ nginx.ingress.kubernetes.io/ssl-redirect: "true"
+ nginx.ingress.kubernetes.io/server-alias: "www.domain.tld"
+ spec:
+ ingressClassName: "nginx"
+ tls:
+ - hosts:
+ - domain.tld
+ - www.domain.tld
+ secretName: domain-tld-tls
+ rules:
+ - host: domain.tld
+ http:
+ paths:
+ - path: /
+ pathType: Prefix
+ backend:
+ service:
+ name: nginx-domain-tld
+ port:
+ number: 80
+
+ ```
0 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5 6 7 8 9