Marcelo Rabello Rossi holypriest
holypriest
/ export_yamls.sh
Created
July 17, 2020 01:59
Exporting resource yaml files from Airflow helm chart
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| mkdir yamls | |
| helm template --output-dir './yamls' '<folder-containing-the-helm-chart>' |
holypriest
/ dags-pv.yaml
Last active
March 9, 2022 12:34
PersistentVolume configuration to store Apache Airflow DAG files
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| apiVersion: v1 | |
| kind: PersistentVolume | |
| metadata: | |
| name: dags-pv | |
| labels: | |
| store: dags | |
| spec: | |
| capacity: | |
| storage: 10Gi | |
| volumeMode: Filesystem |
holypriest
/ dags-pvc.yaml
Created
July 17, 2020 02:13
PersistentVolumeClaim configuration to store Apache Airflow DAG files
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| apiVersion: v1 | |
| kind: PersistentVolumeClaim | |
| metadata: | |
| name: dags-pvc | |
| namespace: airflow-on-k8s | |
| spec: | |
| selector: | |
| matchLabels: | |
| store: dags | |
| accessModes: |
holypriest
/ efs-sc.yaml
Last active
July 20, 2020 04:36
StorageClass configuration for an AWS EFS-based storage
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| kind: StorageClass | |
| apiVersion: storage.k8s.io/v1 | |
| metadata: | |
| name: efs-sc | |
| provisioner: efs.csi.aws.com |
holypriest
/ deployment-scheduler.yaml
Last active
May 26, 2021 10:03
Deployment configuration for the Airflow scheduler
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| kind: Deployment | |
| apiVersion: apps/v1 | |
| metadata: | |
| name: airflow-scheduler | |
| namespace: airflow-on-k8s | |
| spec: | |
| replicas: 1 | |
| selector: | |
| matchLabels: | |
| tier: airflow |
holypriest
/ service-webserver.yaml
Created
July 17, 2020 02:29
Service configuration for Airflow webserver
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| kind: Service | |
| apiVersion: v1 | |
| metadata: | |
| name: webserver-svc | |
| namespace: airflow-on-k8s | |
| spec: | |
| type: ClusterIP | |
| selector: | |
| tier: airflow | |
| component: webserver |
holypriest
/ serviceaccount-scheduler.yaml
Created
July 17, 2020 02:32
ServiceAccount configuration for Airflow scheduler
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| kind: ServiceAccount | |
| apiVersion: v1 | |
| metadata: | |
| name: scheduler-sva | |
| namespace: airflow-on-k8s |
holypriest
/ assume-role-policy.json
Last active
July 20, 2020 04:10
AssumeRole policy to allow Kubernetes ServiceAccounts to access AWS resources
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| { | |
| "Version": "2012-10-17", | |
| "Statement": [ | |
| { | |
| "Sid": "", | |
| "Effect": "Allow", | |
| "Principal": { | |
| "Federated": "arn:aws:iam::<your-aws-account>:oidc-provider/oidc.eks.us-east-1.amazonaws.com/id/<oidc-of-your-eks-cluster>" | |
| }, | |
| "Action": "sts:AssumeRoleWithWebIdentity", |
holypriest
/ serviceaccount-pods.yaml
Last active
July 20, 2020 04:06
Example of a ServiceAccount for the pods, associating them with an AWS IAM role
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| apiVersion: v1 | |
| kind: ServiceAccount | |
| metadata: | |
| name: tasks-sva | |
| namespace: airflow-on-k8s | |
| annotations: | |
| eks.amazonaws.com/role-arn: arn:aws:iam::<your-aws-account-id>:role/AirflowK8SRole |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| kind: Namespace | |
| apiVersion: v1 | |
| metadata: | |
| name: airflow-on-k8s |
OlderNewer