dmc5179 · March 25, 2021 03:01
diff --git a/etcd-backup-s3.yaml b/etcd-backup-s3.yaml
 ---
 apiVersion: batch/v1beta1
 kind: CronJob
 metadata:
  name: etcd-backup
 spec:
  schedule: "*/1 * * * *"
  jobTemplate:
    spec:
      template:
        spec:
          containers:
          - name: etcd-backup
            image: docker.io/amazon/aws-cli
            imagePullPolicy: IfNotPresent
            command: ["/bin/sh"]
            args:
            - -c
            - 'chroot /host /usr/local/bin/cluster-backup.sh /home/core/assets/backup && aws s3 sync /host/home/core/assets/backup/ "s3://${BUCKET_NAME}/${BUCKET_PATH}/"'
            securityContext:
              privileged: true
              runAsUser: 0
            env:
              - name: AWS_ACCESS_KEY_ID
                valueFrom:
                  secretKeyRef:
                    name: aws-creds
                    key: aws_access_key_id
              - name: AWS_SECRET_ACCESS_KEY
                valueFrom:
                  secretKeyRef:
                    name: aws-creds
                    key: aws_secret_access_key
              - name: AWS_DEFAULT_REGION
                value: "us-east-1"
              - name: BUCKET_NAME
                value: 'mybucket'
              - name: BUCKET_PATH
                value: "etcd"
            volumeMounts:
            - name: host
              mountPath: /host
          restartPolicy: OnFailure
          dnsPolicy: ClusterFirst
          enableServiceLinks: true
          hostNetwork: true
          hostPID: true
          securityContext: {}
          serviceAccount: default
          serviceAccountName: default
          tolerations:
          - operator: Exists
          nodeSelector:
              node-role.kubernetes.io/master: ''
          volumes:
          - name: host
            hostPath:
              path: /
              type: Directory
	---
	apiVersion: batch/v1beta1
	kind: CronJob
	metadata:
	name: etcd-backup
	spec:
	schedule: "/1 * * *"
	jobTemplate:
	spec:
	template:
	spec:
	containers:
	- name: etcd-backup
	image: docker.io/amazon/aws-cli
	imagePullPolicy: IfNotPresent
	command: ["/bin/sh"]
	args:
	- -c
	- 'chroot /host /usr/local/bin/cluster-backup.sh /home/core/assets/backup && aws s3 sync /host/home/core/assets/backup/ "s3://${BUCKET_NAME}/${BUCKET_PATH}/"'
	securityContext:
	privileged: true
	runAsUser: 0
	env:
	- name: AWS_ACCESS_KEY_ID
	valueFrom:
	secretKeyRef:
	name: aws-creds
	key: aws_access_key_id
	- name: AWS_SECRET_ACCESS_KEY
	valueFrom:
	secretKeyRef:
	name: aws-creds
	key: aws_secret_access_key
	- name: AWS_DEFAULT_REGION
	value: "us-east-1"
	- name: BUCKET_NAME
	value: 'mybucket'
	- name: BUCKET_PATH
	value: "etcd"
	volumeMounts:
	- name: host
	mountPath: /host
	restartPolicy: OnFailure
	dnsPolicy: ClusterFirst
	enableServiceLinks: true
	hostNetwork: true
	hostPID: true
	securityContext: {}
	serviceAccount: default
	serviceAccountName: default
	tolerations:
	- operator: Exists
	nodeSelector:
	node-role.kubernetes.io/master: ''
	volumes:
	- name: host
	hostPath:
	path: /
	type: Directory