feat: CoreServices | move into separate stack

2025-11-22 19:30:09 +05:00
parent 1671f9619c
commit f46833571c
10 changed files with 101 additions and 118 deletions
--- a/core-services/longhorn/index.ts
+++ b/core-services/longhorn/index.ts
@@ -0,0 +1,68 @@
+import * as fs from "fs";
+import * as path from "path";
+import { HelmProvider } from "@cdktf/provider-helm/lib/provider";
+import { Release } from "@cdktf/provider-helm/lib/release";
+import { Construct } from "constructs";
+import { Manifest } from "@cdktf/provider-kubernetes/lib/manifest";
+import { KubernetesProvider } from "@cdktf/provider-kubernetes/lib/provider";
+import { IngressRoute } from "../../utils";
+
+type LonghornOptions = {
+  providers: {
+    kubernetes: KubernetesProvider;
+    helm: HelmProvider;
+  };
+  name: string;
+};
+
+export class Longhorn extends Construct {
+  constructor(scope: Construct, id: string, options: LonghornOptions) {
+    super(scope, id);
+
+    const { helm, kubernetes } = options.providers;
+    const namespace = "longhorn-system";
+
+    new Release(this, id, {
+      name: options.name,
+      namespace,
+      provider: helm,
+      repository: "https://charts.longhorn.io",
+      chart: "longhorn",
+      createNamespace: true,
+      values: [
+        fs.readFileSync(path.join(__dirname, "values.yaml"), {
+          encoding: "utf8",
+        }),
+      ],
+    });
+
+    new Manifest(this, "recurring-backup-job", {
+      provider: kubernetes,
+      manifest: {
+        apiVersion: "longhorn.io/v1beta2",
+        kind: "RecurringJob",
+        metadata: {
+          name: "daily-backup",
+          namespace,
+        },
+        spec: {
+          cron: "0 0 * * *",
+          task: "backup",
+          retain: 7,
+          concurrency: 3,
+        },
+      },
+    });
+
+    new IngressRoute(this, "ingress", {
+      provider: kubernetes,
+      name: "longhorn",
+      namespace,
+      serviceName: "longhorn-frontend",
+      servicePort: 80,
+      host: "longhorn.dogar.dev",
+      tlsSecretName: "longhorn-tls",
+      entryPoints: ["websecure"],
+    });
+  }
+}
--- a/core-services/longhorn/values.yaml
+++ b/core-services/longhorn/values.yaml
@@ -0,0 +1,19 @@
+global:
+  nodeSelector:
+    nodepool: worker
+defaultSettings:
+  defaultReplicaCount: "3"
+  storageOverProvisioningPercentage: "100"
+  backupCompressionMethod: "gzip"
+  replicaSoftAntiAffinity: "true"
+  concurrentReplicaRebuildPerNodeLimit: "1"
+  replicaReplenishmentWaitInterval: "600"
+  disableSchdedulingOnCordonedNode: "true"
+defaultBackupStore:
+  backupTarget: "s3://longhorn-backups@auto/"
+  backupTargetCredentialSecret: cloudflare-token
+metrics:
+  serviceMonitor:
+    enabled: true
+ingress:
+  enabled: false