diff --git a/deployments/home-server/vaultwarden.yaml b/deployments/home-server/vaultwarden.yaml index 60c10e6..3733ef5 100644 --- a/deployments/home-server/vaultwarden.yaml +++ b/deployments/home-server/vaultwarden.yaml @@ -85,3 +85,86 @@ spec: persistentVolumeClaim: claimName: vaultwarden-pgdata-pvc +--- +--- +apiVersion: v1 +kind: PersistentVolume +metadata: + name: vaultwarden-pv +spec: + capacity: + storage: 5Gi + accessModes: + - ReadWriteOnce + persistentVolumeReclaimPolicy: Retain + storageClassName: local-path + hostPath: + path: /dpool/services/vaultwarden/data +--- +apiVersion: v1 +kind: PersistentVolumeClaim +metadata: + name: vaultwarden-pvc + namespace: home-server +spec: + accessModes: + - ReadWriteOnce + storageClassName: local-path + resources: + requests: + storage: 5Gi + volumeName: vaultwarden-pv +--- +apiVersion: v1 +kind: Service +metadata: + name: vaultwarden + namespace: home-server +spec: + selector: + app: vaultwarden + ports: + - port: 80 + targetPort: 80 + protocol: TCP +--- +apiVersion: apps/v1 +kind: Deployment +metadata: + name: vaultwarden + namespace: home-server +spec: + replicas: 1 + selector: + matchLabels: + app: vaultwarden + template: + metadata: + labels: + app: vaultwarden + spec: + containers: + - name: vaultwarden + image: vaultwarden/server:latest + imagePullPolicy: Always + env: + - name: TZ + value: "Australia/Brisbane" + - name: WEBSOCKET_ENABLED + value: "true" + - name: SIGNUPS_ALLOWED + value: "false" + - name: ADMIN_TOKEN + value: "0h12893hj0129j30129j3" + - name: DATABASE_URL + value: "postgresql://vaultuser:super-strong-password@vaultwarden-postgres.home-server.svc.cluster.local:5432/vaultwarden" + ports: + - containerPort: 80 + volumeMounts: + - name: vaultwarden-data + mountPath: /data + volumes: + - name: vaultwarden-data + persistentVolumeClaim: + claimName: vaultwarden-pvc +