dev.cm/k3s
1
0
派生 0
代码 议题 拉取请求 活动

feat(cnpg): 数据库自动备份提交

浏览代码
这个提交包含在:
rohow
2025-02-11 10:58:21 +08:00
未验证
父节点 d5ba74536e
当前提交 3198f20309
修改 4 个文件,包含 78 行新增3 行删除
下载 Patch 文件 下载 Diff 文件 展开所有文件 折叠所有文件
apps/README.md
+16
查看文件
@@ -7,3 +7,19 @@ kubectl run -i --tty --rm --restart=Never \
--image=nicolaka/netshoot:latest \
debug -- sh
```
### 密钥相关
可以将helm部署中使用到的密钥放到k8s的secret中
然后使用reflector将secret中的密钥同步到其他namespace中
```shell
kubectl -n infra-devops create secret generic s3-devcm-hw \
--from-literal=ACCESS_KEY_ID=xxxxx \
--from-literal=ACCESS_SECRET_KEY=xxxxx
kubectl -n infra-devops annotate secret s3-devcm-hw \
reflector.v1.k8s.emberstack.com/reflection-allowed=true \
reflector.v1.k8s.emberstack.com/reflection-allowed-namespaces=infra-data \
reflector.v1.k8s.emberstack.com/reflection-auto-enabled=true \
reflector.v1.k8s.emberstack.com/reflection-auto-namespace=infra-data --overwrite
```
apps/infra/data/cloudnative-pg/cnpg-cluster-hk-backup.yaml
+9
查看文件
@@ -0,0 +1,9 @@
apiVersion: postgresql.cnpg.io/v1
kind: Backup
metadata:
name: cnpg-cluster-hk-backup
namespace: infra-data
spec:
cluster:
name: cnpg-cluster-hk
apps/infra/data/cloudnative-pg/cnpg-cluster-hk.yaml
+25
查看文件
@@ -18,3 +18,28 @@ spec:
enableSuperuserAccess: true
storage:
size: 10Gi
backup:
retentionPolicy: "7d"
barmanObjectStore:
destinationPath: s3://devcm/cnpg/
endpointURL: https://obs.cn-east-3.myhuaweicloud.com
s3Credentials:
accessKeyId:
name: s3-devcm-hw
key: ACCESS_KEY_ID
secretAccessKey:
name: s3-devcm-hw
key: ACCESS_SECRET_KEY
---
apiVersion: postgresql.cnpg.io/v1
kind: ScheduledBackup
metadata:
name: cnpg-cluster-hk-backups
namespace: infra-data
spec:
schedule: "0 0 0 * * *"
immediate: true
backupOwnerReference: self
cluster:
name: cnpg-cluster-hk
apps/infra/data/cloudnative-pg/cnpg-cluster-sh.yaml
+25
查看文件
@@ -18,3 +18,28 @@ spec:
enableSuperuserAccess: true
storage:
size: 10Gi
backup:
retentionPolicy: "7d"
barmanObjectStore:
destinationPath: s3://devcm/cnpg/
endpointURL: https://obs.cn-east-3.myhuaweicloud.com
s3Credentials:
accessKeyId:
name: s3-devcm-hw
key: ACCESS_KEY_ID
secretAccessKey:
name: s3-devcm-hw
key: ACCESS_SECRET_KEY
---
apiVersion: postgresql.cnpg.io/v1
kind: ScheduledBackup
metadata:
name: cnpg-cluster-sh-backups
namespace: infra-data
spec:
schedule: "0 0 0 * * *"
immediate: true
backupOwnerReference: self
cluster:
name: cnpg-cluster-sh