Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Matomo - https://github.com/jenkins-infra/helpdesk/issues/3530 #4032

Open
wants to merge 5 commits into
base: main
Choose a base branch
from
+300 −0
Open

Matomo - https://github.com/jenkins-infra/helpdesk/issues/3530 #4032

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
5 commits
Select commit Hold shift + click to select a range
6fc9628
Matomo - https://github.com/jenkins-infra/helpdesk/issues/3530
halkeye Jun 3, 2023
e147b5d
yamllint fixes
halkeye Jun 4, 2023
1ea8f5b
enable metrics (especially since the default template looks at 9117 a…
halkeye Jun 4, 2023
fe514f1
feat: use ARM64
dduportal Oct 9, 2023
b4efb36
debug: initial setup with mysql managed database
dduportal Oct 9, 2023
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
11 changes: 11 additions & 0 deletions clusters/publick8s.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -25,6 +25,9 @@ repositories:
# https://github.com/codecentric/helm-charts/
- name: codecentric
url: https://codecentric.github.io/helm-charts
# https://github.com/bitnami/charts/
- name: bitnami
url: https://charts.bitnami.com/bitnami
releases:
- name: datadog
namespace: datadog
Expand Down Expand Up @@ -242,3 +245,11 @@ releases:
- "../config/updates.jenkins.io.yaml"
secrets:
- "../secrets/config/updates.jenkins.io/secrets.yaml"
- name: matomo
namespace: matomo
chart: bitnami/matomo
version: 1.1.4
values:
- "../config/matomo.yaml"
secrets:
- "../secrets/config/matomo/secrets.yaml"
289 changes: 289 additions & 0 deletions config/matomo.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,289 @@
image:
registry: ghcr.io
repository: jenkinsciinfra/matomo
tag: 0.1.1
nodeSelector:
kubernetes.io/arch: arm64
tolerations:
- key: "kubernetes.io/arch"
operator: "Equal"
value: "arm64"
effect: "NoSchedule"
persistence:
enabled: false
extraEnvVars:
- name: MATOMO_DATABASE_ENABLE_SSL
value: "1"
- name: MATOMO_DATABASE_SSL_NO_VERIFY
value: "0"
- name: MATOMO_TRUSTED_HOSTS
value: "matomo.jenkins.io"
- name: MATOMO_GENERAL_FORCE_SSL
value: "1"
- name: MATOMO_GENERAL_ASSUME_SECURE_PROTOCOL
value: "1"
extraEnvVarsSecret: "matomo-extra"
matomoSkipInstall: true
mariadb:
enabled: false
# smtpUser:
# smtpPort:
# smtpPassword:
# smtpProtocol:
# smtpExistingSecret:
service:
type: ClusterIP
ingress:
# TODO: enable to expose application once it runs properly
enabled: false
ingressClassName: public-nginx
hostname: matomo.jenkins.io

initContainers:
- name: geoipupdate
image: ghcr.io/maxmind/geoipupdate:v5.1.1
envFrom:
- secretRef:
name: matomo-maxmind
volumeMounts:
- name: dbip-city
mountPath: /usr/share/GeoIP
metrics:
enabled: true
extraVolumeMounts:
- name: dbip-city
mountPath: /usr/share/GeoIP
extraVolumes:
- name: dbip-city
emptyDir: {}
extraDeploy:
- |
apiVersion: v1
kind: Secret
metadata:
name: matomo-maxmind
namespace: {{ include "common.names.namespace" . | quote }}
labels: {{- include "common.labels.standard" . | nindent 4 }}
{{- if .Values.commonLabels }}
{{- include "common.tplvalues.render" ( dict "value" .Values.commonLabels "context" $ ) | nindent 4 }}
{{- end }}
{{- if .Values.commonAnnotations }}
annotations: {{- include "common.tplvalues.render" ( dict "value" .Values.commonAnnotations "context" $ ) | nindent 4 }}
{{- end }}
type: Opaque
data:
GEOIPUPDATE_ACCOUNT_ID: {{ .Values.maxmind.account_id | toString | b64enc | quote }}
GEOIPUPDATE_LICENSE_KEY: {{ .Values.maxmind.license_key | toString | b64enc | quote }}
GEOIPUPDATE_EDITION_IDS: {{ "GeoLite2-ASN GeoLite2-City GeoLite2-Country" | b64enc | quote }}
- |
apiVersion: v1
kind: Secret
metadata:
name: matomo-extra
namespace: {{ include "common.names.namespace" . | quote }}
labels: {{- include "common.labels.standard" . | nindent 4 }}
{{- if .Values.commonLabels }}
{{- include "common.tplvalues.render" ( dict "value" .Values.commonLabels "context" $ ) | nindent 4 }}
{{- end }}
{{- if .Values.commonAnnotations }}
annotations: {{- include "common.tplvalues.render" ( dict "value" .Values.commonAnnotations "context" $ ) | nindent 4 }}
{{- end }}
type: Opaque
data:
MATOMO_SALT: {{ .Values.matomoSalt | toString | b64enc | quote }}
- |
apiVersion: batch/v1
kind: CronJob
metadata:
name: {{ include "common.names.fullname" . }}-scheduled-tasks
namespace: {{ include "common.names.namespace" . | quote }}
labels: {{- include "common.labels.standard" . | nindent 4 }}
{{- if .Values.commonLabels }}
{{- include "common.tplvalues.render" ( dict "value" .Values.commonLabels "context" $ ) | nindent 4 }}
{{- end }}
{{- if .Values.commonAnnotations }}
annotations: {{- include "common.tplvalues.render" ( dict "value" .Values.commonAnnotations "context" $ ) | nindent 4 }}
{{- end }}
spec:
concurrencyPolicy: Forbid
schedule: "*/20 * * * *"
jobTemplate:
spec:
template:
spec:
restartPolicy: OnFailure
containers:
- name: {{ include "common.names.fullname" . }}-scheduled-tasks
image: {{ template "matomo.image" . }}
imagePullPolicy: {{ .Values.image.pullPolicy | quote }}
command: ["/bin/sh"]
args:
- -c
- /entrypoint.sh && /usr/local/bin/php /var/www/html/console scheduled-tasks:run
{{- if .Values.containerSecurityContext.enabled }}
securityContext: {{- omit .Values.containerSecurityContext "enabled" | toYaml | nindent 16 }}
{{- end }}
env:
- name: BITNAMI_DEBUG
value: {{ ternary "true" "false" .Values.image.debug | quote }}
- name: MATOMO_DATABASE_HOST
value: {{ include "matomo.databaseHost" . | quote }}
- name: MATOMO_DATABASE_PORT_NUMBER
value: {{ include "matomo.databasePort" . | quote }}
- name: MATOMO_DATABASE_NAME
value: {{ include "matomo.databaseName" . | quote }}
- name: MATOMO_DATABASE_USER
value: {{ include "matomo.databaseUser" . | quote }}
- name: MATOMO_DATABASE_PASSWORD
valueFrom:
secretKeyRef:
name: {{ include "matomo.databaseSecretName" . }}
key: {{ include "matomo.databasePasswordKey" . | quote }}
- name: MATOMO_SKIP_BOOTSTRAP
value: {{ ternary "yes" "no" .Values.matomoSkipInstall | quote }}
- name: MATOMO_USERNAME
value: {{ .Values.matomoUsername | quote }}
- name: MATOMO_PASSWORD
valueFrom:
secretKeyRef:
name: {{ include "matomo.secretName" . }}
key: matomo-password
- name: MATOMO_EMAIL
value: {{ .Values.matomoEmail | quote }}
- name: MATOMO_WEBSITE_NAME
value: {{ .Values.matomoWebsiteName | quote }}
- name: MATOMO_WEBSITE_HOST
value: {{ .Values.matomoWebsiteHost | quote }}
{{- if .Values.smtpHost }}
- name: MATOMO_SMTP_HOST
value: {{ .Values.smtpHost | quote }}
{{- end }}
{{- if .Values.smtpPort }}
- name: MATOMO_SMTP_PORT
value: {{ .Values.smtpPort | quote }}
{{- end }}
{{- if .Values.smtpUser }}
- name: MATOMO_SMTP_USER
value: {{ .Values.smtpUser | quote }}
{{- end }}
{{- if or .Values.smtpPassword .Values.smtpExistingSecret }}
- name: MATOMO_SMTP_PASSWORD
valueFrom:
secretKeyRef:
name: {{ include "matomo.smtpSecretName" . }}
key: smtp-password
{{- end }}
{{- if .Values.smtpProtocol }}
- name: MATOMO_SMTP_PROTOCOL
value: {{ .Values.smtpProtocol | quote }}
{{- end }}
{{- if .Values.extraEnvVars }}
{{- include "common.tplvalues.render" (dict "value" .Values.extraEnvVars "context" $) | nindent 16 }}
{{- end }}
envFrom:
{{- if .Values.extraEnvVarsCM }}
- configMapRef:
name: {{ include "common.tplvalues.render" (dict "value" .Values.extraEnvVarsCM "context" $) }}
{{- end }}
{{- if .Values.extraEnvVarsSecret }}
- secretRef:
name: {{ include "common.tplvalues.render" (dict "value" .Values.extraEnvVarsSecret "context" $) }}
{{- end }}
- |
apiVersion: batch/v1
kind: CronJob
metadata:
name: {{ include "common.names.fullname" . }}-core-archive
namespace: {{ include "common.names.namespace" . | quote }}
labels: {{- include "common.labels.standard" . | nindent 4 }}
{{- if .Values.commonLabels }}
{{- include "common.tplvalues.render" ( dict "value" .Values.commonLabels "context" $ ) | nindent 4 }}
{{- end }}
{{- if .Values.commonAnnotations }}
annotations: {{- include "common.tplvalues.render" ( dict "value" .Values.commonAnnotations "context" $ ) | nindent 4 }}
{{- end }}
spec:
concurrencyPolicy: Forbid
schedule: "5 * * * *"
jobTemplate:
spec:
template:
spec:
restartPolicy: OnFailure
containers:
- name: {{ include "common.names.fullname" . }}-core-archive
image: {{ template "matomo.image" . }}
imagePullPolicy: {{ .Values.image.pullPolicy | quote }}
command: ["/bin/sh"]
args:
- -c
- /entrypoint.sh && /usr/local/bin/php /var/www/html/console core:archive
{{- if .Values.containerSecurityContext.enabled }}
securityContext: {{- omit .Values.containerSecurityContext "enabled" | toYaml | nindent 16 }}
{{- end }}
env:
- name: BITNAMI_DEBUG
value: {{ ternary "true" "false" .Values.image.debug | quote }}
- name: MATOMO_DATABASE_HOST
value: {{ include "matomo.databaseHost" . | quote }}
- name: MATOMO_DATABASE_PORT_NUMBER
value: {{ include "matomo.databasePort" . | quote }}
- name: MATOMO_DATABASE_NAME
value: {{ include "matomo.databaseName" . | quote }}
- name: MATOMO_DATABASE_USER
value: {{ include "matomo.databaseUser" . | quote }}
- name: MATOMO_DATABASE_PASSWORD
valueFrom:
secretKeyRef:
name: {{ include "matomo.databaseSecretName" . }}
key: {{ include "matomo.databasePasswordKey" . | quote }}
- name: MATOMO_SKIP_BOOTSTRAP
value: {{ ternary "yes" "no" .Values.matomoSkipInstall | quote }}
- name: MATOMO_USERNAME
value: {{ .Values.matomoUsername | quote }}
- name: MATOMO_PASSWORD
valueFrom:
secretKeyRef:
name: {{ include "matomo.secretName" . }}
key: matomo-password
- name: MATOMO_EMAIL
value: {{ .Values.matomoEmail | quote }}
- name: MATOMO_WEBSITE_NAME
value: {{ .Values.matomoWebsiteName | quote }}
- name: MATOMO_WEBSITE_HOST
value: {{ .Values.matomoWebsiteHost | quote }}
{{- if .Values.smtpHost }}
- name: MATOMO_SMTP_HOST
value: {{ .Values.smtpHost | quote }}
{{- end }}
{{- if .Values.smtpPort }}
- name: MATOMO_SMTP_PORT
value: {{ .Values.smtpPort | quote }}
{{- end }}
{{- if .Values.smtpUser }}
- name: MATOMO_SMTP_USER
value: {{ .Values.smtpUser | quote }}
{{- end }}
{{- if or .Values.smtpPassword .Values.smtpExistingSecret }}
- name: MATOMO_SMTP_PASSWORD
valueFrom:
secretKeyRef:
name: {{ include "matomo.smtpSecretName" . }}
key: smtp-password
{{- end }}
{{- if .Values.smtpProtocol }}
- name: MATOMO_SMTP_PROTOCOL
value: {{ .Values.smtpProtocol | quote }}
{{- end }}
{{- if .Values.extraEnvVars }}
{{- include "common.tplvalues.render" (dict "value" .Values.extraEnvVars "context" $) | nindent 16 }}
{{- end }}
envFrom:
{{- if .Values.extraEnvVarsCM }}
- configMapRef:
name: {{ include "common.tplvalues.render" (dict "value" .Values.extraEnvVarsCM "context" $) }}
{{- end }}
{{- if .Values.extraEnvVarsSecret }}
- secretRef:
name: {{ include "common.tplvalues.render" (dict "value" .Values.extraEnvVarsSecret "context" $) }}
{{- end }}