generated from onedr0p/cluster-template
-
Notifications
You must be signed in to change notification settings - Fork 0
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
first attempt to get democratic-csi working for an nfs mount.
- Loading branch information
1 parent
b03cba9
commit 3a73b4c
Showing
2 changed files
with
114 additions
and
0 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,85 @@ | ||
| driver: freenas-nfs | ||
| instance_id: | ||
| httpConnection: | ||
| protocol: http | ||
| host: 192.168.1.154 | ||
| port: 80 | ||
| # use only 1 of apiKey or username/password | ||
| # if both are present, apiKey is preferred | ||
| # apiKey is only available starting in TrueNAS-12 | ||
| #apiKey: | ||
| username: | ||
| valueFrom: | ||
| secretKeyRef: | ||
| name: freenas-nfs-secrets | ||
| key: user | ||
| password: | ||
| valueFrom: | ||
| secretKeyRef: | ||
| name: freenas-nfs-secrets | ||
| key: password | ||
| allowInsecure: true | ||
| # use apiVersion 2 for TrueNAS-12 and up (will work on 11.x in some scenarios as well) | ||
| # leave unset for auto-detection | ||
| #apiVersion: 2 | ||
| sshConnection: | ||
| host: 192.168.1.154 | ||
| port: 22 | ||
| username: | ||
| valueFrom: | ||
| secretKeyRef: | ||
| name: freenas-nfs-secrets | ||
| key: user | ||
| password: | ||
| valueFrom: | ||
| secretKeyRef: | ||
| name: freenas-nfs-secrets | ||
| key: password | ||
| # privateKey: | | ||
| # -----BEGIN RSA PRIVATE KEY----- | ||
| # ... | ||
| # -----END RSA PRIVATE KEY----- | ||
| zfs: | ||
| # can be used to override defaults if necessary | ||
| # the example below is useful for TrueNAS 12 | ||
| #cli: | ||
| # sudoEnabled: true | ||
| # | ||
| # leave paths unset for auto-detection | ||
| # paths: | ||
| # zfs: /usr/local/sbin/zfs | ||
| # zpool: /usr/local/sbin/zpool | ||
| # sudo: /usr/local/bin/sudo | ||
| # chroot: /usr/sbin/chroot | ||
|
|
||
| # can be used to set arbitrary values on the dataset/zvol | ||
| # can use handlebars templates with the parameters from the storage class/CO | ||
| #datasetProperties: | ||
| # "org.freenas:description": "{{ parameters.[csi.storage.k8s.io/pvc/namespace] }}/{{ parameters.[csi.storage.k8s.io/pvc/name] }}" | ||
| # "org.freenas:test": "{{ parameters.foo }}" | ||
| # "org.freenas:test2": "some value" | ||
|
|
||
| datasetParentName: main/k8s/vols | ||
| # do NOT make datasetParentName and detachedSnapshotsDatasetParentName overlap | ||
| # they may be siblings, but neither should be nested in the other | ||
| # do NOT comment this option out even if you don't plan to use snapshots, just leave it with dummy value | ||
| detachedSnapshotsDatasetParentName: main/k8s/snaps | ||
| datasetEnableQuotas: true | ||
| datasetEnableReservation: false | ||
| datasetPermissionsMode: "0777" | ||
| datasetPermissionsUser: 0 | ||
| datasetPermissionsGroup: 0 | ||
| #datasetPermissionsAcls: | ||
| #- "-m everyone@:full_set:allow" | ||
| #- "-m u:kube:full_set:allow" | ||
|
|
||
| nfs: | ||
| #shareCommentTemplate: "{{ parameters.[csi.storage.k8s.io/pvc/namespace] }}-{{ parameters.[csi.storage.k8s.io/pvc/name] }}" | ||
| shareHost: 192.168.1.154 | ||
| shareAlldirs: false | ||
| shareAllowedHosts: [] | ||
| shareAllowedNetworks: [] | ||
| shareMaprootUser: root | ||
| shareMaprootGroup: wheel | ||
| shareMapallUser: "" | ||
| shareMapallGroup: "" |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,29 @@ | ||
| apiVersion: v1 | ||
| data: | ||
| password: ENC[AES256_GCM,data:MFu7K7Z6rLQRPVlVPcoCrGobQFs=,iv:0XuhxEsnOZk3WpKyIp8B/YxMklK/g8NC0G4TZT4IZ3k=,tag:laMOvtUtpj30hiU+sQ2qjA==,type:str] | ||
| user: ENC[AES256_GCM,data:lWmUfwzMnt0=,iv:BnIPoT8nhcy9QT5eezwqZ0cD3jcR99tZWPnm0wCZ0kg=,tag:OYglRv0ack+iYI43pcymhQ==,type:str] | ||
| kind: Secret | ||
| metadata: | ||
| creationTimestamp: null | ||
| name: freenas-nfs-secrets | ||
| namespace: plex | ||
| sops: | ||
| kms: [] | ||
| gcp_kms: [] | ||
| azure_kv: [] | ||
| hc_vault: [] | ||
| age: | ||
| - recipient: age127vrhmu8g8sekvwvv7jkf23txad3cc48l5egvuvvr8tlsvyf2fsqq0y326 | ||
| enc: | | ||
| -----BEGIN AGE ENCRYPTED FILE----- | ||
| YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSBZd0lCRUlxWnFGd2ZRZ3pj | ||
| Y1lxSWk1a0ErUHBET2VHVERlTzk4OXBPenc4Cm1GQVVzQURxM0laTXJCSGw2M0Iv | ||
| S3I3RDVqTnRVZnJ2TFdHMzFCUFBjRUEKLS0tIDViN3ZhZTV6ZDV1b1NoWDVmMUdZ | ||
| NmNKYjZtTVVvdFNFNk80d2svYU92RE0Kx3cYNWBmORSgKeNB44HBrddwiFjc5L23 | ||
| m6kCUcrz88b+G0ILm0xGJ0ZRl1Y7PuQF0kp+DRMLh7pqdmMJFPg6vQ== | ||
| -----END AGE ENCRYPTED FILE----- | ||
| lastmodified: "2023-12-23T21:46:16Z" | ||
| mac: ENC[AES256_GCM,data:w5T5G8uQ1KWGHrnmcqK80WWzGocaih5/G8TOlp6wBZECwe+6EkdC/9eWoyCn7ma1q9hR1CoOmHxREEDxljwsGgj43B9Hy0VaWmWH2KGmIuwoNhU4MLjVJQ/5zUOjvE81B8nqkZLu9pQ/Af9ZK/I7turmz/GcTPnaazJdNmZ3X40=,iv:AhftfgilKU1zZs3N8w6KTPVGuUIqlhd/aj/5c1YQzVI=,tag:MBBKEUIS/FalDsWDeFEW6g==,type:str] | ||
| pgp: [] | ||
| encrypted_regex: ^(data|stringData)$ | ||
| version: 3.8.1 |