Created
June 16, 2020 15:37
-
-
Save lordofthejars/5548ed94f8d370f7ab1fdfce50d56eaa to your computer and use it in GitHub Desktop.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| apiVersion: batch/v1 | |
| kind: Job | |
| metadata: | |
| name: cluster-init | |
| labels: | |
| app: cockroachdb | |
| spec: | |
| template: | |
| spec: | |
| containers: | |
| - name: cluster-init | |
| image: cockroachdb/cockroach:v20.1.1 | |
| imagePullPolicy: IfNotPresent | |
| command: | |
| - "/cockroach/cockroach" | |
| - "init" | |
| - "--insecure" | |
| - "--host=cockroachdb-g1-0.cockroachdb-internal-g1" | |
| restartPolicy: OnFailure |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| apiVersion: v1 | |
| kind: Service | |
| metadata: | |
| # This service is meant to be used by clients of the database. It exposes a ClusterIP that will | |
| # automatically load balance connections to the different database pods. | |
| name: cockroachdb-public | |
| labels: | |
| app: cockroachdb | |
| spec: | |
| ports: | |
| # The main port, served by gRPC, serves Postgres-flavor SQL, internode | |
| # traffic and the cli. | |
| - port: 26257 | |
| targetPort: 26257 | |
| name: grpc | |
| # The secondary port serves the UI as well as health and debug endpoints. | |
| - port: 8080 | |
| targetPort: 8080 | |
| name: http | |
| selector: | |
| app: cockroachdb | |
| --- | |
| apiVersion: v1 | |
| kind: Service | |
| metadata: | |
| # This service only exists to create DNS entries for each pod in the stateful | |
| # set such that they can resolve each other's IP addresses. It does not | |
| # create a load-balanced ClusterIP and should not be used directly by clients | |
| # in most circumstances. | |
| name: cockroachdb-internal-g1 | |
| labels: | |
| app: cockroachdb | |
| annotations: | |
| # Use this annotation in addition to the actual publishNotReadyAddresses | |
| # field below because the annotation will stop being respected soon but the | |
| # field is broken in some versions of Kubernetes: | |
| # https://github.com/kubernetes/kubernetes/issues/58662 | |
| service.alpha.kubernetes.io/tolerate-unready-endpoints: "true" | |
| # Enable automatic monitoring of all instances when Prometheus is running in the cluster. | |
| prometheus.io/scrape: "true" | |
| prometheus.io/path: "_status/vars" | |
| prometheus.io/port: "8080" | |
| spec: | |
| ports: | |
| - port: 26257 | |
| targetPort: 26257 | |
| name: grpc | |
| - port: 8080 | |
| targetPort: 8080 | |
| name: http | |
| # We want all pods in the StatefulSet to have their addresses published for | |
| # the sake of the other CockroachDB pods even before they're ready, since they | |
| # have to be able to talk to each other in order to become ready. | |
| publishNotReadyAddresses: true | |
| clusterIP: None | |
| selector: | |
| app: cockroachdb | |
| --- | |
| apiVersion: policy/v1beta1 | |
| kind: PodDisruptionBudget | |
| metadata: | |
| name: cockroachdb-budget | |
| labels: | |
| app: cockroachdb | |
| spec: | |
| selector: | |
| matchLabels: | |
| app: cockroachdb | |
| maxUnavailable: 1 | |
| --- | |
| apiVersion: apps/v1 | |
| kind: StatefulSet | |
| metadata: | |
| name: cockroachdb-g1 | |
| spec: | |
| serviceName: cockroachdb-internal-g1 | |
| replicas: 3 | |
| selector: | |
| matchLabels: | |
| app: cockroachdb | |
| template: | |
| metadata: | |
| labels: | |
| app: cockroachdb | |
| spec: | |
| affinity: | |
| podAntiAffinity: | |
| preferredDuringSchedulingIgnoredDuringExecution: | |
| - weight: 100 | |
| podAffinityTerm: | |
| labelSelector: | |
| matchExpressions: | |
| - key: app | |
| operator: In | |
| values: | |
| - cockroachdb | |
| topologyKey: kubernetes.io/hostname | |
| containers: | |
| - name: cockroachdb | |
| image: cockroachdb/cockroach:v20.1.1 | |
| imagePullPolicy: IfNotPresent | |
| # TODO: Change these to appropriate values for the hardware that you're running. You can see | |
| # the amount of allocatable resources on each of your Kubernetes nodes by running: | |
| # kubectl describe nodes | |
| # resources: | |
| # requests: | |
| # cpu: "16" | |
| # memory: "8Gi" | |
| # limits: | |
| # NOTE: Unless you have enabled the non-default Static CPU Management Policy | |
| # and are using an integer number of CPUs, we don't recommend setting a CPU limit. | |
| # See: | |
| # https://kubernetes.io/docs/tasks/administer-cluster/cpu-management-policies/#static-policy | |
| # https://github.com/kubernetes/kubernetes/issues/51135 | |
| # cpu: "16" | |
| # memory: "8Gi" | |
| ports: | |
| - containerPort: 26257 | |
| name: grpc | |
| - containerPort: 8080 | |
| name: http | |
| livenessProbe: | |
| httpGet: | |
| path: "/health" | |
| port: http | |
| initialDelaySeconds: 30 | |
| periodSeconds: 5 | |
| readinessProbe: | |
| httpGet: | |
| path: "/health?ready=1" | |
| port: http | |
| initialDelaySeconds: 10 | |
| periodSeconds: 5 | |
| failureThreshold: 2 | |
| volumeMounts: | |
| - name: datadir | |
| mountPath: /cockroach/cockroach-data | |
| env: | |
| - name: COCKROACH_CHANNEL | |
| value: kubernetes-insecure | |
| command: | |
| - "/bin/bash" | |
| - "-ecx" | |
| # The use of qualified `hostname -f` is crucial: | |
| # Other nodes aren't able to look up the unqualified hostname. | |
| - "exec /cockroach/cockroach start --logtostderr --insecure --advertise-host $(hostname -f) --http-addr 0.0.0.0 --join cockroachdb-g1-0.cockroachdb-internal-g1,cockroachdb-g1-1.cockroachdb-internal-g1,cockroachdb-g1-2.cockroachdb-internal-g1 --cache 25% --max-sql-memory 25%" | |
| # No pre-stop hook is required, a SIGTERM plus some time is all that's | |
| # needed for graceful shutdown of a node. | |
| terminationGracePeriodSeconds: 60 | |
| volumes: | |
| - name: datadir | |
| persistentVolumeClaim: | |
| claimName: datadir | |
| podManagementPolicy: Parallel | |
| updateStrategy: | |
| type: RollingUpdate | |
| volumeClaimTemplates: | |
| - metadata: | |
| name: datadir | |
| spec: | |
| accessModes: | |
| - "ReadWriteOnce" | |
| resources: | |
| requests: | |
| storage: 1Gi |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| apiVersion: v1 | |
| kind: Service | |
| metadata: | |
| # This service is meant to be used by clients of the database. It exposes a ClusterIP that will | |
| # automatically load balance connections to the different database pods. | |
| name: cockroachdb-public | |
| labels: | |
| app: cockroachdb | |
| spec: | |
| ports: | |
| # The main port, served by gRPC, serves Postgres-flavor SQL, internode | |
| # traffic and the cli. | |
| - port: 26257 | |
| targetPort: 26257 | |
| name: grpc | |
| # The secondary port serves the UI as well as health and debug endpoints. | |
| - port: 8080 | |
| targetPort: 8080 | |
| name: http | |
| selector: | |
| app: cockroachdb | |
| --- | |
| apiVersion: v1 | |
| kind: Service | |
| metadata: | |
| # This service only exists to create DNS entries for each pod in the stateful | |
| # set such that they can resolve each other's IP addresses. It does not | |
| # create a load-balanced ClusterIP and should not be used directly by clients | |
| # in most circumstances. | |
| name: cockroachdb-internal-g2 | |
| labels: | |
| app: cockroachdb | |
| annotations: | |
| # Use this annotation in addition to the actual publishNotReadyAddresses | |
| # field below because the annotation will stop being respected soon but the | |
| # field is broken in some versions of Kubernetes: | |
| # https://github.com/kubernetes/kubernetes/issues/58662 | |
| service.alpha.kubernetes.io/tolerate-unready-endpoints: "true" | |
| # Enable automatic monitoring of all instances when Prometheus is running in the cluster. | |
| prometheus.io/scrape: "true" | |
| prometheus.io/path: "_status/vars" | |
| prometheus.io/port: "8080" | |
| spec: | |
| ports: | |
| - port: 26257 | |
| targetPort: 26257 | |
| name: grpc | |
| - port: 8080 | |
| targetPort: 8080 | |
| name: http | |
| # We want all pods in the StatefulSet to have their addresses published for | |
| # the sake of the other CockroachDB pods even before they're ready, since they | |
| # have to be able to talk to each other in order to become ready. | |
| publishNotReadyAddresses: true | |
| clusterIP: None | |
| selector: | |
| app: cockroachdb | |
| --- | |
| apiVersion: policy/v1beta1 | |
| kind: PodDisruptionBudget | |
| metadata: | |
| name: cockroachdb-budget | |
| labels: | |
| app: cockroachdb | |
| spec: | |
| selector: | |
| matchLabels: | |
| app: cockroachdb | |
| maxUnavailable: 1 | |
| --- | |
| apiVersion: apps/v1 | |
| kind: StatefulSet | |
| metadata: | |
| name: cockroachdb-g2 | |
| spec: | |
| serviceName: cockroachdb-internal-g2 | |
| replicas: 2 | |
| selector: | |
| matchLabels: | |
| app: cockroachdb | |
| template: | |
| metadata: | |
| labels: | |
| app: cockroachdb | |
| spec: | |
| affinity: | |
| podAntiAffinity: | |
| preferredDuringSchedulingIgnoredDuringExecution: | |
| - weight: 100 | |
| podAffinityTerm: | |
| labelSelector: | |
| matchExpressions: | |
| - key: app | |
| operator: In | |
| values: | |
| - cockroachdb | |
| topologyKey: kubernetes.io/hostname | |
| containers: | |
| - name: cockroachdb | |
| image: cockroachdb/cockroach:v20.1.1 | |
| imagePullPolicy: IfNotPresent | |
| # TODO: Change these to appropriate values for the hardware that you're running. You can see | |
| # the amount of allocatable resources on each of your Kubernetes nodes by running: | |
| # kubectl describe nodes | |
| # resources: | |
| # requests: | |
| # cpu: "16" | |
| # memory: "8Gi" | |
| # limits: | |
| # NOTE: Unless you have enabled the non-default Static CPU Management Policy | |
| # and are using an integer number of CPUs, we don't recommend setting a CPU limit. | |
| # See: | |
| # https://kubernetes.io/docs/tasks/administer-cluster/cpu-management-policies/#static-policy | |
| # https://github.com/kubernetes/kubernetes/issues/51135 | |
| # cpu: "16" | |
| # memory: "8Gi" | |
| ports: | |
| - containerPort: 26257 | |
| name: grpc | |
| - containerPort: 8080 | |
| name: http | |
| livenessProbe: | |
| httpGet: | |
| path: "/health" | |
| port: http | |
| initialDelaySeconds: 30 | |
| periodSeconds: 5 | |
| readinessProbe: | |
| httpGet: | |
| path: "/health?ready=1" | |
| port: http | |
| initialDelaySeconds: 10 | |
| periodSeconds: 5 | |
| failureThreshold: 2 | |
| volumeMounts: | |
| - name: datadir | |
| mountPath: /cockroach/cockroach-data | |
| env: | |
| - name: COCKROACH_CHANNEL | |
| value: kubernetes-insecure | |
| command: | |
| - "/bin/bash" | |
| - "-ecx" | |
| # The use of qualified `hostname -f` is crucial: | |
| # Other nodes aren't able to look up the unqualified hostname. | |
| - "exec /cockroach/cockroach start --logtostderr --insecure --advertise-host $(hostname -f) --http-addr 0.0.0.0 --join cockroachdb-g1-0.cockroachdb-internal-g1,cockroachdb-g1-1.cockroachdb-internal-g1,cockroachdb-g1-2.cockroachdb-internal-g1 --cache 25% --max-sql-memory 25%" | |
| # No pre-stop hook is required, a SIGTERM plus some time is all that's | |
| # needed for graceful shutdown of a node. | |
| terminationGracePeriodSeconds: 60 | |
| volumes: | |
| - name: datadir | |
| persistentVolumeClaim: | |
| claimName: datadir | |
| podManagementPolicy: Parallel | |
| updateStrategy: | |
| type: RollingUpdate | |
| volumeClaimTemplates: | |
| - metadata: | |
| name: datadir | |
| spec: | |
| accessModes: | |
| - "ReadWriteOnce" | |
| resources: | |
| requests: | |
| storage: 1Gi |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment