From 1536948bc7601c2dd9591139a813d7b3b52da9e9 Mon Sep 17 00:00:00 2001 From: Pablo Suarez Date: Tue, 17 Feb 2026 13:23:26 +0400 Subject: [PATCH] feat: DEVOPS-129 gke-gateway for otterscan --- cd/base/healthcheckpolicy.yaml | 23 ++++++++++++++++ cd/base/ingress.yaml | 21 --------------- cd/base/kustomization.yaml | 4 +-- cd/overlays/development/backend-config.yaml | 11 -------- cd/overlays/development/certificate.yaml | 9 ------- cd/overlays/development/frontend-config.yaml | 11 -------- cd/overlays/development/httproute.yaml | 17 ++++++++++++ cd/overlays/development/kustomization.yaml | 28 +------------------- 8 files changed, 43 insertions(+), 81 deletions(-) create mode 100644 cd/base/healthcheckpolicy.yaml delete mode 100644 cd/base/ingress.yaml delete mode 100644 cd/overlays/development/backend-config.yaml delete mode 100644 cd/overlays/development/certificate.yaml delete mode 100644 cd/overlays/development/frontend-config.yaml create mode 100644 cd/overlays/development/httproute.yaml diff --git a/cd/base/healthcheckpolicy.yaml b/cd/base/healthcheckpolicy.yaml new file mode 100644 index 00000000..508f1378 --- /dev/null +++ b/cd/base/healthcheckpolicy.yaml @@ -0,0 +1,23 @@ +apiVersion: networking.gke.io/v1 +kind: HealthCheckPolicy +metadata: + name: otterscan + namespace: otterscan + labels: + app.kubernetes.io/name: otterscan +spec: + default: + checkIntervalSec: 10 + timeoutSec: 5 + healthyThreshold: 1 + unhealthyThreshold: 3 + config: + type: HTTP + httpHealthCheck: + portSpecification: USE_FIXED_PORT + requestPath: /health + port: 80 + targetRef: + group: "" + kind: Service + name: otterscan diff --git a/cd/base/ingress.yaml b/cd/base/ingress.yaml deleted file mode 100644 index 51035ac3..00000000 --- a/cd/base/ingress.yaml +++ /dev/null @@ -1,21 +0,0 @@ -apiVersion: networking.k8s.io/v1 -kind: Ingress -metadata: - name: otterscan - namespace: otterscan - labels: - app.kubernetes.io/name: otterscan - annotations: - nginx.ingress.kubernetes.io/rewrite-target: /$2 -spec: - rules: - - host: localhost - http: - paths: - - path: / - pathType: Prefix - backend: - service: - name: otterscan - port: - number: 80 diff --git a/cd/base/kustomization.yaml b/cd/base/kustomization.yaml index dcc83c04..60e8e28d 100644 --- a/cd/base/kustomization.yaml +++ b/cd/base/kustomization.yaml @@ -1,7 +1,7 @@ apiVersion: kustomize.config.k8s.io/v1beta1 kind: Kustomization resources: - - namespace.yaml - deployment.yaml + - healthcheckpolicy.yaml + - namespace.yaml - svc.yaml - - ingress.yaml diff --git a/cd/overlays/development/backend-config.yaml b/cd/overlays/development/backend-config.yaml deleted file mode 100644 index 536d21fd..00000000 --- a/cd/overlays/development/backend-config.yaml +++ /dev/null @@ -1,11 +0,0 @@ -apiVersion: cloud.google.com/v1 -kind: BackendConfig -metadata: - name: otterscan - namespace: otterscan - labels: - app.kubernetes.io/name: otterscan -spec: - timeoutSec: 120 - healthCheck: - requestPath: /health diff --git a/cd/overlays/development/certificate.yaml b/cd/overlays/development/certificate.yaml deleted file mode 100644 index d3cc326a..00000000 --- a/cd/overlays/development/certificate.yaml +++ /dev/null @@ -1,9 +0,0 @@ -apiVersion: networking.gke.io/v1 -kind: ManagedCertificate -metadata: - name: otterscan - labels: - app.kubernetes.io/name: otterscan -spec: - domains: - - otterscan.zilstg.dev diff --git a/cd/overlays/development/frontend-config.yaml b/cd/overlays/development/frontend-config.yaml deleted file mode 100644 index 73909ec6..00000000 --- a/cd/overlays/development/frontend-config.yaml +++ /dev/null @@ -1,11 +0,0 @@ -apiVersion: networking.gke.io/v1beta1 -kind: FrontendConfig -metadata: - name: otterscan - namespace: otterscan - labels: - app.kubernetes.io/name: otterscan -spec: - redirectToHttps: - enabled: true - responseCodeName: RESPONSE_CODE diff --git a/cd/overlays/development/httproute.yaml b/cd/overlays/development/httproute.yaml new file mode 100644 index 00000000..760c5882 --- /dev/null +++ b/cd/overlays/development/httproute.yaml @@ -0,0 +1,17 @@ +apiVersion: gateway.networking.k8s.io/v1 +kind: HTTPRoute +metadata: + name: otterscan + labels: + app.kubernetes.io/name: otterscan +spec: + parentRefs: + - name: gke-gateway + namespace: gke-gateway-prd + sectionName: https + hostnames: + - otterscan.zilstg.dev + rules: + - backendRefs: + - name: otterscan + port: 80 diff --git a/cd/overlays/development/kustomization.yaml b/cd/overlays/development/kustomization.yaml index 94de84bd..e49fe0ba 100644 --- a/cd/overlays/development/kustomization.yaml +++ b/cd/overlays/development/kustomization.yaml @@ -6,35 +6,9 @@ namespace: otterscan-dev resources: - ../../base - configmap.yaml - - certificate.yaml - - backend-config.yaml - - frontend-config.yaml + - httproute.yaml patches: - - target: - kind: Ingress - name: otterscan - patch: |- - - op: replace - path: "/spec/rules/0/host" - value: otterscan.zilstg.dev - - op: replace - path: /metadata/annotations - value: - kubernetes.io/ingress.class: gce - kubernetes.io/ingress.global-static-ip-name: otterscan-zilstg-dev - networking.gke.io/managed-certificates: otterscan - networking.gke.io/v1beta1.FrontendConfig: otterscan - - - target: - kind: Service - name: otterscan - patch: |- - - op: add - path: /metadata/annotations - value: - beta.cloud.google.com/backend-config: '{"default": "otterscan"}' - - target: kind: Deployment name: otterscan