87 lines
1.9 KiB
YAML
87 lines
1.9 KiB
YAML
apiVersion: postgresql.cnpg.io/v1
|
|
kind: Cluster
|
|
metadata:
|
|
name: weyma-pgsql
|
|
spec:
|
|
instances: 3
|
|
|
|
imageName: ghcr.io/cloudnative-pg/postgresql:16.9-5-bullseye
|
|
|
|
storage:
|
|
size: 50Gi
|
|
storageClass: rook-ceph-block
|
|
|
|
backup:
|
|
barmanObjectStore:
|
|
destinationPath: "s3://weyma-talos-shared-pgsql-new/"
|
|
endpointURL: http://10.105.15.20:9000
|
|
s3Credentials:
|
|
accessKeyId:
|
|
key: s3AccessKey
|
|
name: s3-backup-creds
|
|
secretAccessKey:
|
|
key: s3SecretKey
|
|
name: s3-backup-creds
|
|
|
|
inheritedMetadata:
|
|
labels:
|
|
metrics_enabled: "true"
|
|
|
|
managed:
|
|
roles:
|
|
- name: williamp
|
|
ensure: present
|
|
comment: William Peebles
|
|
login: true
|
|
superuser: true
|
|
passwordSecret:
|
|
name: williamp-auth
|
|
- name: authentik
|
|
ensure: present
|
|
comment: authentik
|
|
login: true
|
|
passwordSecret:
|
|
name: authentik-auth
|
|
- name: gitea
|
|
ensure: present
|
|
comment: gitea
|
|
login: true
|
|
passwordSecret:
|
|
name: gitea-auth
|
|
- name: peertube
|
|
ensure: present
|
|
comment: peertube
|
|
login: true
|
|
passwordSecret:
|
|
name: peertube-auth
|
|
- name: netmaker
|
|
ensure: present
|
|
comment: netmaker
|
|
login: true
|
|
passwordSecret:
|
|
name: netmaker-auth
|
|
- name: pooler
|
|
ensure: present
|
|
comment: pooler
|
|
login: true
|
|
superuser: true
|
|
passwordSecret:
|
|
name: pgbouncer-auth-query
|
|
- name: weyma-pgsql02_replica
|
|
ensure: present
|
|
comment: weyma-pgsql02 replica
|
|
login: true
|
|
replication: true
|
|
passwordSecret:
|
|
name: streaming-replica-auth
|
|
|
|
replicationSlots:
|
|
highAvailability:
|
|
enabled: true
|
|
additionalSlots:
|
|
- name: external_replica
|
|
type: physical
|
|
|
|
postgresql:
|
|
pg_hba:
|
|
- host replication weyma-pgsql02_replica 10.105.6.199/32 scram-sha-256 |