ferdinandosimonetti

cp wildcard_te.serviceplatform.appmny.key tls.key
openssl pkcs7 -print_certs -inform PEM -in CHAIN_wildcard_te.serviceplatform.appmny.p7b -out - | egrep -vi '^$|subject|issuer' > tls.crt
rm -f te-serviceplatform-appmny-secret.yml
for i in argo-cd cattle-logging-system cattle-monitoring-system dbe mooney-ingress mooney-utils ts-backend ts-support ts-wopr
do
  echo "---" >> te-serviceplatform-appmny-secret.yml
  kubectl create secret generic --namespace $i te-serviceplatform-appmny \
  --from-file=tls.crt=tls.crt --from-file=tls.key=tls.key \
  --dry-run=client -o yaml >> te-serviceplatform-appmny-secret.yml
done

ferdinandosimonetti

git clone --bare {repo}
cd {project}.git
git push --mirror {new-repo}

ferdinandosimonetti

kubectl delete replicaset $(kubectl get replicaset -o jsonpath='{ .items[?(@.spec.replicas==0)].metadata.name }')

ferdinandosimonetti

PS C:\Users\ferdi> kubectl -n ts-backend get -o json secret sisalpay5group-it-ca | jq -r '.data.\"tls.crt\"'|base64 -d > a.pem
PS C:\Users\ferdi> openssl x509 -text -in a.pem|more
Certificate:
    Data:
        Version: 3 (0x2)
...

ferdinandosimonetti

### Docker info
upgrade@gepvlk8w01:~$ docker info
Client:
 Context:    default
 Debug Mode: false
 Plugins:
  app: Docker App (Docker Inc., v0.9.1-beta3)
  buildx: Build with BuildKit (Docker Inc., v0.5.1-docker)
  scan: Docker Scan (Docker Inc., v0.7.0)

ferdinandosimonetti

Set-ExecutionPolicy Bypass -Scope Process -Force; [System.Net.ServicePointManager]::SecurityProtocol = [System.Net.ServicePointManager]::SecurityProtocol -bor 3072; iex ((New-Object System.Net.WebClient).DownloadString('https://chocolatey.org/install.ps1'))

choco install -y kubernetes-helm
choco install -y terraform
choco install -y jq yq
choco install -y base64
choco install -y dos2unix
choco install -y kubectx kubens
choco install -y k3d
choco install -y k3sup

ferdinandosimonetti

kubectl set env -n kube-system deployment.apps/coredns MYVAR="$(date)"

ferdinandosimonetti

https://merikan.com/2019/04/jvm-in-a-container/

https://netapp-trident.readthedocs.io/en/stable-v20.10/kubernetes/deploying/operator-deploy.html#creating-a-trident-backend

https://www.elastic.co/guide/en/cloud-on-k8s/current/k8s-overview.html
https://github.com/elastic/cloud-on-k8s/blob/1.5/config/samples/elasticsearch/elasticsearch.yaml
https://github.com/elastic/helm-charts/tree/master/logstash/examples/elasticsearch
https://github.com/elastic/helm-charts/blob/master/logstash/examples/elasticsearch/values.yaml
https://raphaeldelio.medium.com/deploy-logstash-and-filebeat-on-kubernetes-with-eck-ssl-and-filebeat-d9f616737390

ferdinandosimonetti

# one master 3 workers
# each worker has an additional volume attached but not formatted
# https://rook.io/docs/rook/v1.6/ceph-quickstart.html#deploy-the-rook-operator
# https://itnext.io/deploy-a-ceph-cluster-on-kubernetes-with-rook-d75a20c3f5b1
k3sup.exe install --host m1 --user root --ssh-key .\.ssh\id_ed25519 --local-path .kube/config.hetzner --context hetzner
k3sup join --host w2 --server-host m1 --user root --ssh-key .\.ssh\id_ed25519
k3sup join --host w3 --server-host m1 --user root --ssh-key .\.ssh\id_ed25519
k3sup join --host w4 --server-host m1 --user root --ssh-key .\.ssh\id_ed25519
git clone https://github.com/rook/rook.git
cd rook

ferdinandosimonetti

PS C:\Users\ferdi> k3d cluster create rancher --api-port 6500 --port 443:443@loadbalancer
INFO[0000] Prep: Network
INFO[0000] Created network 'k3d-rancher'
INFO[0000] Created volume 'k3d-rancher-images'
INFO[0001] Creating node 'k3d-rancher-server-0'
INFO[0001] Creating LoadBalancer 'k3d-rancher-serverlb'
INFO[0001] Starting cluster 'rancher'
INFO[0001] Starting servers...
INFO[0001] Starting Node 'k3d-rancher-server-0'
INFO[0007] Starting agents...