chore(postgresql-cluster): move patroni env to helper

Author: EamonZhang

addons/postgresql-cluster/15/chart/postgresql/templates/_helpers.tpl

@@ -41,3 +41,98 @@ Create the name of the service account to use.
     {{ default "default" .Values.serviceAccount.name }}
 {{- end -}}
 {{- end -}}
+
+{{/*
+Create patroni envs.
+*/}}
+{{- define "patroni.envs" }}
+{{- if .Values.kubernetes.configmaps.enable }}
+- name: KUBERNETES_USE_CONFIGMAPS
+  value: "true"
+{{- end }}
+{{- if .Values.kubernetes.endpoints.enable }}
+- name: PATRONI_KUBERNETES_USE_ENDPOINTS
+  value: 'true'
+{{- end }}
+- name: PATRONI_KUBERNETES_POD_IP
+  valueFrom:
+    fieldRef:
+      fieldPath: status.podIP
+- name: PATRONI_KUBERNETES_NAMESPACE
+  valueFrom:
+    fieldRef:
+      fieldPath: metadata.namespace
+- name: PATRONI_KUBERNETES_BYPASS_API_SERVICE
+  value: 'true'
+- name: PATRONI_KUBERNETES_LABELS
+  value: '{app: {{ template "patroni.fullname" . }},release: {{ .Release.Name }},cluster-name: {{ template "patroni.fullname" . }}}'
+- name: PATRONI_SUPERUSER_USERNAME
+  value: postgres
+- name: PATRONI_SUPERUSER_PASSWORD
+  valueFrom:
+    secretKeyRef:
+      name: {{ template "patroni.fullname" . }}
+      key: password-superuser
+- name: PATRONI_REPLICATION_USERNAME
+  value: standby
+- name: PATRONI_REPLICATION_PASSWORD
+  valueFrom:
+    secretKeyRef:
+      name: {{ template "patroni.fullname" . }}
+      key: password-replication
+- name: PATRONI_SCOPE
+  value: {{ template "patroni.fullname" . }}
+- name: PATRONI_NAME
+  valueFrom:
+    fieldRef:
+      fieldPath: metadata.name
+- name: PATRONI_POSTGRESQL_DATA_DIR
+  value: "{{ .Values.persistentVolume.mountPath }}/data"
+- name: PATRONI_POSTGRESQL_PGPASS
+  value: /tmp/pgpass
+- name: PATRONI_POSTGRESQL_LISTEN
+  value: '0.0.0.0:5432'
+- name: PATRONI_RESTAPI_LISTEN
+  value: '0.0.0.0:8008'
+{{- end -}}
+
+{{/*
+Create wale envs.
+*/}}
+{{- define "wale.envs" }}
+{{- if .Values.walE.enable }}
+- name: USE_WALE
+  value: {{ .Values.walE.enable | quote }}
+{{- if .Values.walE.scheduleCronJob }}
+- name: BACKUP_SCHEDULE
+  value: {{ .Values.walE.scheduleCronJob | quote}}
+{{- end }}
+{{- if .Values.walE.retainBackups }}
+- name: BACKUP_NUM_TO_RETAIN
+  value: {{ .Values.walE.retainBackups | quote}}
+{{- end }}
+{{- if .Values.walE.s3Bucket }}
+- name: WAL_S3_BUCKET
+  value: {{ .Values.walE.s3Bucket | quote }}
+{{else if .Values.walE.gcsBucket }}
+- name: WAL_GCS_BUCKET
+  value: {{ .Values.walE.gcsBucket | quote }}
+{{- if .Values.walE.kubernetesSecret }}
+- name: GOOGLE_APPLICATION_CREDENTIALS
+  value: "/etc/credentials/{{.Values.walE.kubernetesSecret}}.json"
+{{- end }}
+
+{{- if .Values.walE.backupThresholdMegabytes }}
+- name: WALE_BACKUP_THRESHOLD_MEGABYTES
+  value: {{ .Values.walE.backupThresholdMegabytes | quote }}
+{{- end }}
+{{- if .Values.walE.backupThresholdPercentage }}
+- name: WALE_BACKUP_THRESHOLD_PERCENTAGE
+  value: {{ .Values.walE.backupThresholdPercentage | quote }}
+{{- end }}
+{{- else }}
+- name: USE_WALE
+  value: ""
+{{- end }}
+{{- end }}
+{{- end -}}

addons/postgresql-cluster/15/chart/postgresql/templates/statefulset.yaml

@@ -31,123 +31,7 @@ spec:
         image: "{{ .Values.image.repository }}:{{ .Values.image.tag }}"
         imagePullPolicy: {{ .Values.image.pullPolicy }}
         env:
-        {{- if .Values.kubernetes.dcs.enable }}
-        - name: PATRONI_KUBERNETES_POD_IP
-          valueFrom:
-            fieldRef:
-              fieldPath: status.podIP
-        - name: PATRONI_KUBERNETES_NAMESPACE
-          valueFrom:
-            fieldRef:
-              fieldPath: metadata.namespace
-        - name: PATRONI_KUBERNETES_BYPASS_API_SERVICE
-          value: 'true'
-        - name: PATRONI_KUBERNETES_USE_ENDPOINTS
-          value: 'true'
-        - name: PATRONI_KUBERNETES_LABELS
-          value: '{app: {{ template "patroni.fullname" . }},release: {{ .Release.Name }},cluster-name: {{ template "patroni.fullname" . }}}'
-        - name: PATRONI_SUPERUSER_USERNAME
-          value: postgres
-        - name: PATRONI_SUPERUSER_PASSWORD
-          valueFrom:
-            secretKeyRef:
-              name: {{ template "patroni.fullname" . }}
-              key: password-superuser
-        - name: PATRONI_REPLICATION_USERNAME
-          value: standby
-        - name: PATRONI_REPLICATION_PASSWORD
-          valueFrom:
-            secretKeyRef:
-              name: {{ template "patroni.fullname" . }}
-              key: password-replication
-        - name: PATRONI_SCOPE
-          value: {{ template "patroni.fullname" . }}
-        - name: PATRONI_NAME
-          valueFrom:
-            fieldRef:
-              fieldPath: metadata.name
-        - name: PATRONI_POSTGRESQL_DATA_DIR
-          value: "{{ .Values.persistentVolume.mountPath }}/data"
-        - name: PATRONI_POSTGRESQL_PGPASS
-          value: /tmp/pgpass
-        - name: PATRONI_POSTGRESQL_LISTEN
-          value: '0.0.0.0:5432'
-        - name: PATRONI_RESTAPI_LISTEN
-          value: '0.0.0.0:8008'
-
-        {{- if .Values.kubernetes.configmaps.enable }}
-        - name: KUBERNETES_USE_CONFIGMAPS
-          value: "true"
-        {{- end }}
-        {{- end }}
-        {{- if .Values.etcd.enable }}
-        {{- if .Values.etcd.deployChart }}
-        - name: ETCD_DISCOVERY_DOMAIN
-          value: {{default (printf "%s-etcd" .Release.Name | trunc 63) .Values.etcd.discovery }}
-        {{- else }}
-        - name: ETCD_HOST
-          value: {{ .Values.etcd.host | quote }}
-        {{- end }}
-        {{- else if .Values.zookeeper.enable }}
-        {{- if .Values.zookeeper.deployChart }}
-        - name: ZOOKEEPER_HOSTS
-          value: {{(printf "'%s-zookeeper-headless:2181'" .Release.Name | trunc 63)}}
-        {{- else }}
-        - name: ZOOKEEPER_HOSTS
-          value: {{ .Values.zookeeper.hosts | quote }}
-        {{- end }}
-        {{- else if .Values.consul.enable }}
-        {{- if .Values.consul.deployChart }}
-        - name: PATRONI_CONSUL_HOST
-          value: {{(printf "'%s-consul'" .Release.Name | trunc 63)}}
-        {{- else }}
-        - name: PATRONI_CONSUL_HOST
-          value: {{ .Values.consul.host | quote }}
-        {{- end }}
-        {{- end }}
-        - name: SCOPE
-          value: {{ template "patroni.fullname" . }}
-        {{- if .Values.walE.enable }}
-        - name: USE_WALE
-          value: {{ .Values.walE.enable | quote }}
-        {{- if .Values.walE.scheduleCronJob }}
-        - name: BACKUP_SCHEDULE
-          value: {{ .Values.walE.scheduleCronJob | quote}}
-        {{- end }}
-        {{- if .Values.walE.retainBackups }}
-        - name: BACKUP_NUM_TO_RETAIN
-          value: {{ .Values.walE.retainBackups | quote}}
-        {{- end }}
-        {{- if .Values.walE.s3Bucket }}
-        - name: WAL_S3_BUCKET
-          value: {{ .Values.walE.s3Bucket | quote }}
-        {{else if .Values.walE.gcsBucket }}
-        - name: WAL_GCS_BUCKET
-          value: {{ .Values.walE.gcsBucket | quote }}
-        {{- if .Values.walE.kubernetesSecret }}
-        - name: GOOGLE_APPLICATION_CREDENTIALS
-          value: "/etc/credentials/{{.Values.walE.kubernetesSecret}}.json"
-        {{- end }}
-        {{- end }}
-        {{- if .Values.walE.backupThresholdMegabytes }}
-        - name: WALE_BACKUP_THRESHOLD_MEGABYTES
-          value: {{ .Values.walE.backupThresholdMegabytes | quote }}
-        {{- end }}
-        {{- if .Values.walE.backupThresholdPercentage }}
-        - name: WALE_BACKUP_THRESHOLD_PERCENTAGE
-          value: {{ .Values.walE.backupThresholdPercentage | quote }}
-        {{- end }}
-        {{- else }}
-        - name: USE_WALE
-          value: ""
-        {{- end }}
-        - name: PGROOT
-          value: "{{ .Values.persistentVolume.mountPath }}/pgroot"
-        - name: POD_NAMESPACE
-          valueFrom:
-            fieldRef:
-              apiVersion: v1
-              fieldPath: metadata.namespace
+        {{- include "patroni.envs" . | indent 8 }} 
         {{- if .Values.env }}
         {{- range $key, $val := .Values.env }}
         - name: {{  $key | quote | upper }}
@@ -174,6 +58,18 @@ spec:
           periodSeconds: 10
           successThreshold: 1
           timeoutSeconds: 5
+        lifecycle:
+          preStop:
+            exec:
+              command:
+                - /usr/bin/env
+                - bash
+                - -c
+                - |
+                  # switch leader pod if the current pod is the leader
+                  if curl --fail http://localhost:8008/read-write; then
+                    init-stack patronictl switchover --force
+                  fi
         ports:
         - containerPort: 8008
           protocol: TCP
@@ -182,7 +78,6 @@ spec:
         volumeMounts:
         - name: storage-volume
           mountPath: "{{ .Values.persistentVolume.mountPath }}"
-          volumeMounts: "{{ .Values.persistentVolume.subPath }}"
         # - mountPath: /etc/patroni
         #   name: patroni-config
         #   readOnly: true

addons/postgresql-cluster/15/chart/postgresql/values.yaml

@@ -5,6 +5,7 @@ image:
   # https://github.com/zalando/spilo/tree/master/postgres-appliance
   repository: registry.drycc.cc/drycc-addons/patroni
   tag: 3.2
+  # IfNotPresent , Always
   pullPolicy: 'IfNotPresent'
 
 # Credentials used by Patroni
@@ -18,29 +19,10 @@ credentials:
 # Distribution Configuration stores
 # Please note that only one of the following stores should be enabled.
 kubernetes:
-  dcs:
+  endpoints:
     enable: true
   configmaps:
     enable: false
-etcd:
-  enable: false
-  deployChart: false
-  # If not deploying etcd chart, fill-in value for etcd service
-  # <service>.<namespace>.svc.cluster.local
-  host:
-  # Leave blank to use vendored etcd chart
-  discovery:
-zookeeper:
-  enable: false
-  deployChart: false
-  # If not deploying etcd chart, fill-in list of ZooKeeper members in format:
-  # 'host1:port1','host2:port2','etc...'
-  hosts:
-consul:
-  enable: false
-  deployChart: false
-  # Leave blank to use vendored consul chart
-  hosts:
 
 # Extra custom environment variables.
 env: {}
@@ -136,7 +118,7 @@ metrics:
 networkPolicy:
   ## @param networkPolicy.enabled Enable creation of NetworkPolicy resources
   ##
-  enabled: false 
+  enabled: true 
   ## @param networkPolicy.allowExternal The Policy model to apply.
   ## When set to false, only pods with the correct
   ## client label will have network access to the port MySQL is listening