From 4d401305cfe367124165b3bd3da44d2c20c469a4 Mon Sep 17 00:00:00 2001
From: AndreiS <andrei.spiridon@hotmail.com>
Date: Tue, 10 Feb 2026 13:38:43 +0000
Subject: [PATCH] Update deployment

---
 deployment | 209 +++++++++++++++++++++++++++++++++--------------------
 1 file changed, 131 insertions(+), 78 deletions(-)

diff --git a/deployment b/deployment
index 9a85770..e1220f1 100644
--- a/deployment
+++ b/deployment
@@ -1,4 +1,134 @@
 ---
+apiVersion: secretgenerator.mittwald.de/v1alpha1
+kind: StringSecret
+metadata:
+  name: memelord-andrei-redis
+spec:
+  fields:
+    - fieldName: redis-password
+      length: "32"
+      encoding: hex
+---
+apiVersion: dragonflydb.io/v1alpha1
+kind: Dragonfly
+metadata:
+  name: memelord-andrei-redis
+spec:
+  authentication:
+    passwordFromSecret:
+      name: memelord-andrei-redis
+      key: redis-password
+  replicas: 1
+  resources:
+    requests:
+      cpu: 500m
+      memory: 500Mi
+    limits:
+      cpu: 600m
+      memory: 750Mi
+---
+apiVersion: secretgenerator.mittwald.de/v1alpha1
+kind: StringSecret
+metadata:
+  name: memelord-andrei-database
+  labels:
+    cnpg.io/reload: "true"
+spec:
+  data:
+    username: memelord-andrei
+  fields:
+    - fieldName: password
+      length: "32"
+      encoding: hex
+---
+apiVersion: postgresql.cnpg.io/v1
+kind: Cluster
+metadata:
+  name: memelord-andrei-database
+spec:
+  instances: 1
+  imageName: ghcr.io/cloudnative-pg/postgresql:17
+  storage:
+    size: 1Gi
+    storageClass: postgres
+  affinity:
+    podAntiAffinityType: required
+    nodeSelector:
+      codemowers.io/lvm-ubuntu-vg: enterprise-ssd
+  resources:
+    requests:
+      cpu: "100m"
+      memory: "1Gi"
+    limits:
+      cpu: "1"
+      memory: "4Gi"
+  postgresql:
+    parameters:
+      max_connections: "300"
+      shared_buffers: "512MB"
+      effective_cache_size: "2GB"
+  managed:
+    roles:
+    - name: memelord-andrei
+      ensure: present
+      login: true
+      passwordSecret:
+        name: memelord-andrei-database
+---
+apiVersion: postgresql.cnpg.io/v1
+kind: Database
+metadata:
+  name: memelord-andrei
+spec:
+  name: memelord-andrei
+  owner: memelord-andrei
+  cluster:
+    name: memelord-andrei-database
+---
+apiVersion: s3.onyxia.sh/v1alpha1
+kind: Policy
+metadata:
+  name: memelord-andrei-policy
+spec:
+  name: memelord-andrei-policy
+  s3InstanceRef: minio/default
+  policyContent: >-
+    {
+      "Version": "2012-10-17",
+      "Statement": [
+        {
+          "Effect": "Allow",
+          "Action": [
+            "s3:*"
+          ],
+          "Resource": [
+            "arn:aws:s3:::memelord-andrei",
+            "arn:aws:s3:::memelord-andrei/*"
+          ]
+        }
+      ]
+    }
+---
+apiVersion: s3.onyxia.sh/v1alpha1
+kind: S3User
+metadata:
+  name: memelord-andrei-bucket
+spec:
+  accessKey: memelord-andrei-bucket
+  policies:
+    - memelord-andrei-policy
+  s3InstanceRef: minio/default
+---
+apiVersion: s3.onyxia.sh/v1alpha1
+kind: Bucket
+metadata:
+  name: memelord-andrei
+spec:
+  name: memelord-andrei
+  s3InstanceRef: minio/default
+  quota:
+    default: 100000000
+---
 apiVersion: v1
 kind: Service
 metadata:
@@ -44,81 +174,4 @@ spec:
                 port:
                   number: 80
   tls:
-    - secretName: memelord-andrei-tls
-
----
-apiVersion: apps/v1
-kind: Deployment # see on stateless rakenduste jaoks
-metadata:
-  name: memelord
-spec:
-  replicas: 1
-  selector:
-    matchLabels:
-      app: memelord
-  template:
-    metadata:
-      labels:
-        app: memelord
-    spec:
-      containers:
-        - name: memelord
-          #image: codemowers/memelord:latest
-          image: ghcr.io/l4rm4nd/memelord:latest
-          imagePullPolicy: Always
-          ports:
-            - name: http
-              containerPort: 8000
-          env:
-            - name: DOMAIN
-              value: memelord-andrei.ee.ee-lte-1.codemowers.io
-
-            - name: DB_ENGINE
-              value: postgres
-            - name: POSTGRES_HOST
-              value: memelord-andrei-database-rw
-            - name: POSTGRES_PORT
-              value: '5432'
-            - name: POSTGRES_DB
-              value: memelord-andrei
-            - name: POSTGRES_USER
-              valueFrom:
-                secretKeyRef:
-                  name: memelord-andrei-database
-                  key: username
-            - name: POSTGRES_PASSWORD
-              valueFrom:
-                secretKeyRef:
-                  name: memelord-andrei-database
-                  key: password
-            - name: REDIS_HOST
-              value: memelord-andrei-redis
-            - name: REDIS_PORT
-              value: '6379'
-            - name: REDIS_PASSWORD
-              valueFrom:
-                secretKeyRef:
-                  name: memelord-andrei-redis
-                  key: redis-password
-            - name: STORAGE_BACKEND
-              value: s3
-            - name: AWS_ACCESS_KEY_ID
-              valueFrom:
-                secretKeyRef:
-                  name: memelord-andrei-bucket
-                  key: accessKey
-            - name: AWS_SECRET_ACCESS_KEY
-              valueFrom:
-                secretKeyRef:
-                  name: memelord-andrei-bucket
-                  key: secretKey
-            - name: AWS_STORAGE_BUCKET_NAME
-              value: memelord-andrei
-            - name: AWS_S3_ENDPOINT_URL
-              value: https://minio.ee-lte-1.codemowers.io/
-            - name: AWS_S3_REGION_NAME
-              value: ee-lte-1
-            - name: DEBUG
-              value: "True"
-            - name: SECURE_COOKIES
-              value: "True"
+    - secretName: memelord-andrei-tls
\ No newline at end of file