Skip to content

kter/itinitiitizen

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

358 Commits
.github/workflows
.github/workflows
 
 
app
app
 
 
bin
bin
 
 
config
config
 
 
copilot
copilot
 
 
db
db
 
 
kube
kube
 
 
lib
lib
 
 
log
log
 
 
public
public
 
 
spec
spec
 
 
storage
storage
 
 
test
test
 
 
tmp
tmp
 
 
vendor
vendor
 
 
.browserslistrc
.browserslistrc
 
 
.env
.env
 
 
.gitignore
.gitignore
 
 
.rspec
.rspec
 
 
.ruby-version
.ruby-version
 
 
Dockerfile
Dockerfile
 
 
Dockerfile.dev
Dockerfile.dev
 
 
Gemfile
Gemfile
 
 
Gemfile.lock
Gemfile.lock
 
 
Makefile
Makefile
 
 
Procfile
Procfile
 
 
README.md
README.md
 
 
Rakefile
Rakefile
 
 
app-pipeline.yml
app-pipeline.yml
 
 
babel.config.js
babel.config.js
 
 
buildspec_app.yml
buildspec_app.yml
 
 
config.ru
config.ru
 
 
docker-compose.yml
docker-compose.yml
 
 
entrypoint.sh
entrypoint.sh
 
 
package.json
package.json
 
 
postcss.config.js
postcss.config.js
 
 
task-definition.json
task-definition.json
 
 
yarn.lock
yarn.lock
 
 

Repository files navigation

環境変数について

アプリケーションの動作には下記環境変数が必要 ローカルでは以下の変数はgoogle-credentials.jsonと.envと.sec_envに定義されており、そこから変数が供給される。 GitHub ActionではGitHubのSecretsで定義されているので特に何もする必要はない。

APP_URL
APP_NAME
DB_HOST
DB_NAME
DB_PASS
DB_PORT
DB_USER
GCP_CLIENT_EMAIL
GCP_CLIENT_ID
GCP_CLIENT_X509_CERT_URL
GCP_PRIVATE_KEY
GCP_PRIVATE_KEY_ID
GCP_PROJECT_ID
RAILS_ENV
SECRET_KEY_BASE

加えてDigitalOceanにデプロイする際には下記変数もGitHub Actionで必要

DIGITALOCEAN_ACCESS_TOKEN
DOCKER_PASSWORD
DOCKER_USERNAME

Prepare Clusters

Local

cd kube
kubectl create secret generic itizen-credentials --from-env-file ../.env 
kubectl apply -k dev
helm repo add stable https://kubernetes-charts.storage.googleapis.com/
helm install nginx-ingress stable/nginx-ingress --set controller.publishService.enabled=true

DigitalOcean (production)

Fill the credentials in ../.prod-env

cd kube
# update kubectl config
doctl kubernetes cluster kubeconfig save itizen
# env
# don't forget to update `RAILS_ENV=production`
kubectl create secret generic itizen-credentials --from-env-file ../.prod-env
kubectl apply -k production
helm repo add stable https://kubernetes-charts.storage.googleapis.com/
helm install nginx-ingress stable/nginx-ingress --set controller.publishService.enabled=true

Edit your hosts or dns point to ingress load balancer.

Install TLS

kubectl apply --validate=false -f https://github.com/jetstack/cert-manager/releases/download/v0.16.1/cert-manager.crds.yaml
kubectl create namespace cert-manager
helm repo add jetstack https://charts.jetstack.io
helm install cert-manager --version v0.16.1 --namespace cert-manager jetstack/cert-manager
kubectl apply -f production_issuer.yml

Install Datadog Agent

helm install datadog-agent -f datadog-values.yaml --set datadog.site='datadoghq.com' --set datadog.apiKey=(API KEY) stable/datadog

Install NewRelic

helm repo add newrelic https://helm-charts.newrelic.com
helm install newrelic-bundle newrelic/nri-bundle \
 --set global.licenseKey=__REPLACE_ME__ \
 --set global.cluster=main \
 --namespace=default \
 --set newrelic-infrastructure.privileged=true \
 --set ksm.enabled=true \
 --set prometheus.enabled=true \
 --set kubeEvents.enabled=true \
 --set logging.enabled=true

About

短文投稿システム

Topics

test

Resources

Readme
Activity

Stars

0 stars

Watchers

2 watching

Forks

1 fork
Report repository

Releases

No releases published

Packages

No packages published

Contributors 2

  •  
  •  

Languages