Skip to content

Commit

Permalink
feat(publick8s/geoip-data) provide a fileshare access for the cronjob (
Browse files Browse the repository at this point in the history 
…#844)

as per
jenkins-infra/helpdesk#4278 (comment)
and jenkins-infra/helpdesk#4240
lets provide a write access for the kubernetes cronjob to update
geoip-data
  • Loading branch information
@smerle33
smerle33 authored Sep 23, 2024
1 parent 69b3d9a commit 1defbf5
Show file tree
Hide file tree
Showing 2 changed files with 14 additions and 1 deletion.
2 changes: 1 addition & 1 deletion .shared-tools
Submodule .shared-tools updated 1 files
+1 −1 terraform/Makefile
13 changes: 13 additions & 0 deletions publick8s.tf
View file
Original file line number Diff line number Diff line change
Expand Up @@ -352,6 +352,19 @@ resource "kubernetes_secret" "geoip_data" {
type = "Opaque"
}

# Required to allow azcopy sync of geoip data from cronjob
module "cronjob_geoip_data_fileshare_serviceprincipal_writer" {
source = "./.shared-tools/terraform/modules/azure-jenkinsinfra-fileshare-serviceprincipal-writer"

service_fqdn = "${azurerm_resource_group.publick8s.name}-fileshare_serviceprincipal_writer-redirects"
active_directory_owners = [data.azuread_service_principal.terraform_production.id]
active_directory_url = "https://github.com/jenkins-infra/azure"
service_principal_end_date = "2024-12-23T00:00:00Z"
file_share_resource_manager_id = azurerm_storage_share.geoip_data.resource_manager_id
storage_account_id = azurerm_storage_account.publick8s.id
default_tags = local.default_tags
}

# Used later by the load balancer deployed on the cluster, see https://github.com/jenkins-infra/kubernetes-management/config/publick8s.yaml
resource "azurerm_public_ip" "publick8s_ipv4" {
name = "public-publick8s-ipv4"
Expand Down

0 comments on commit 1defbf5

Please sign in to comment.