mm neuer versuch

2025-11-27 09:19:19 +01:00
parent 70c99e3003
commit 601b81e466
1 changed files with 47 additions and 45 deletions
--- a/argocd/apps/mattermost/mattermnost.yaml
+++ b/argocd/apps/mattermost/mattermnost.yaml
@@ -1,27 +1,42 @@
-# 1. Namespace erstellen
-apiVersion: v1
-kind: Namespace
+apiVersion: argoproj.io/v1alpha1
+kind: Application
 metadata:
-  name: mattermost
-  labels:
-    pod-security.kubernetes.io/enforce: "privileged"
+  name: mattermost-postgres
+spec:
+  project: default
+  source:
+    repoURL: 'https://charts.bitnami.com/bitnami'
+    targetRevision: 16.*.*
+    chart: postgresql
+    helm:
+      valuesObject:
+        auth:
+          postgresPassword: "mmROOT12345"
+          database: "mattermost"
+          username: "mmdbuser"
+          password: "mmdbpwd"
        
---
-# 2. Manuelles Secret mit KORREKTEM DSN (ohne mysql:// Prefix)
-apiVersion: v1
-kind: Secret
-metadata:
-  name: mattermost-mattermost-team-edition-mattermost-dbsecret
+        primary:
+          persistence:
+            enabled: true
+            storageClass: "longhorn"
+            size: 10Gi
+
+        # Service Name für Kompatibilität
+        fullnameOverride: "mattermost-postgresql"
+
+  destination:
+    server: 'https://kubernetes.default.svc'
    namespace: mattermost
-  annotations:
-    # Verhindert, dass ArgoCD dieses Secret überschreibt
-    argocd.argoproj.io/sync-options: "Prune=false"
-type: Opaque
-stringData:
-  mattermost.dbsecret: "mmdbuser:mmdbpwd@tcp(mattermost-mysql:3306)/mattermost?charset=utf8mb4,utf8&readTimeout=30s&writeTimeout=30s"
+
+  syncPolicy:
+    automated:
+      selfHeal: true
+      prune: true
+    syncOptions:
+      - CreateNamespace=true

 ---
-# 3. ArgoCD Application
 apiVersion: argoproj.io/v1alpha1
 kind: Application
 metadata:
@@ -48,20 +63,15 @@ spec:
            storageClass: "longhorn"
            accessMode: ReadWriteOnce

-        # MySQL SubChart
+        # MySQL SubChart DEAKTIVIEREN
        mysql:
-          enabled: true
-          mysqlRootPassword: "mmROOT12345"
-          mysqlUser: "mmdbuser"
-          mysqlPassword: "mmdbpwd"
-          mysqlDatabase: mattermost
-          testFramework:
          enabled: false
-          persistence:
+
+        # PostgreSQL als externe Datenbank
+        externalDB:
          enabled: true
-            storageClass: "longhorn"
-            accessMode: ReadWriteOnce
-            size: 10Gi
+          externalDriverType: "postgres"
+          externalConnectionString: "mmdbuser:mmdbpwd@mattermost-postgresql:5432/mattermost?sslmode=disable&connect_timeout=10"

        # Ingress Konfiguration
        ingress:
@@ -81,19 +91,11 @@ spec:
    namespace: mattermost

  syncPolicy:
+    managedNamespaceMetadata:
+      labels: 
+        pod-security.kubernetes.io/enforce: "privileged"
    automated:
      selfHeal: true
      prune: true
    syncOptions:
-      - CreateNamespace=false
-      # WICHTIG: Respektiere Ressourcen die nicht vom Chart kommen
-      - RespectIgnoreDifferences=true
-  
-  # Ignoriere Änderungen am manuell erstellten Secret
-  ignoreDifferences:
-    - group: ""
-      kind: Secret
-      name: mattermost-mattermost-team-edition-mattermost-dbsecret
-      jsonPointers:
-        - /data
-        - /stringData
+      - CreateNamespace=true