51 lines
1.8 KiB
YAML
51 lines
1.8 KiB
YAML
apiVersion: batch/v1
|
|
kind: Job
|
|
metadata:
|
|
name: minio-b-init
|
|
namespace: minio-velero
|
|
spec:
|
|
backoffLimit: 3
|
|
template:
|
|
spec:
|
|
restartPolicy: OnFailure
|
|
containers:
|
|
- name: init
|
|
image: bitnami/minio-client:latest
|
|
command: ["/bin/sh","-lc"]
|
|
env:
|
|
- name: MINIO_ENDPOINT
|
|
value: "http://minio-b.minio-velero.svc.cluster.local:9000"
|
|
- name: MINIO_ROOT_USER
|
|
valueFrom:
|
|
secretKeyRef:
|
|
name: minio-root
|
|
key: MINIO_ROOT_USER
|
|
- name: MINIO_ROOT_PASSWORD
|
|
valueFrom:
|
|
secretKeyRef:
|
|
name: minio-root
|
|
key: MINIO_ROOT_PASSWORD
|
|
args:
|
|
- |
|
|
set -euo pipefail
|
|
echo "[init-b] waiting for $MINIO_ENDPOINT ..."
|
|
until curl -sf "$MINIO_ENDPOINT/minio/health/ready" >/dev/null; do sleep 2; done
|
|
echo "[init-b] configuring bucket/user/policy"
|
|
mc alias set minioB "$MINIO_ENDPOINT" "$MINIO_ROOT_USER" "$MINIO_ROOT_PASSWORD"
|
|
mc mb minioB/velero-backups || true
|
|
mc version enable minioB/velero-backups || true
|
|
mc admin user add minioB velero Velero12345 || true
|
|
cat > /tmp/policy.json <<'EOF'
|
|
{ "Version":"2012-10-17",
|
|
"Statement":[
|
|
{"Effect":"Allow","Action":["s3:*"],
|
|
"Resource":["arn:aws:s3:::velero-backups","arn:aws:s3:::velero-backups/*"]}
|
|
]}
|
|
EOF
|
|
mc admin policy create minioB velero-rw /tmp/policy.json || true
|
|
mc admin policy attach minioB velero-rw --user velero || true
|
|
echo "[init-b] verifying with velero creds"
|
|
mc alias set b-vel "$MINIO_ENDPOINT" velero Velero12345
|
|
mc ls b-vel/velero-backups >/dev/null
|
|
echo "[init-b] done"
|