apiVersion: v1
kind: PersistentVolumeClaim
metadata:
  name: db
  namespace: matrix
spec:
  accessModes:
    - ReadWriteMany
  resources:
    requests:
      storage: 4Gi
  storageClassName: cephfs-hyper
---
apiVersion: apps/v1
kind: Deployment
metadata:
  name: db
  namespace: matrix
  labels:
    app: db
spec:
  replicas: 1
  selector:
    matchLabels:
      app: db
  template:
    metadata:
      labels:
        app: db
    spec:
      containers:
        - name: db
          image: postgres:17
          imagePullPolicy: IfNotPresent
          ports:
            - name: postgres
              containerPort: 5432
          env:
            - name: POSTGRES_USER
              valueFrom:
                secretKeyRef:
                  name: matrix-db
                  key: username
            - name: POSTGRES_PASSWORD
              valueFrom:
                secretKeyRef:
                  name: matrix-db
                  key: user.pw
            - name: POSTGRES_DB
              value: synapse
            - name: POSTGRES_INITDB_ARGS
              value: "--lc-collate=C --lc-ctype=C --encoding=UTF8"
          volumeMounts:
            - mountPath: /var/lib/postgresql/data
              name: data
          readinessProbe:
            exec:
              command:
                - sh
                - -c
                - pg_isready -U "$POSTGRES_USER" -d "$POSTGRES_DB"
            initialDelaySeconds: 10
            periodSeconds: 10
          livenessProbe:
            exec:
              command:
                - sh
                - -c
                - pg_isready -U "$POSTGRES_USER" -d "$POSTGRES_DB"
            initialDelaySeconds: 30
            periodSeconds: 20
      volumes:
        - name: data
          persistentVolumeClaim:
            claimName: db
---
apiVersion: v1
kind: Service
metadata:
  name: db
  namespace: matrix
spec:
  internalTrafficPolicy: Cluster
  ipFamilies:
    - IPv6
  ipFamilyPolicy: SingleStack
  ports:
    - name: postgres
      port: 5432
      protocol: TCP
      targetPort: 5432
  selector:
    app: db
  sessionAffinity: None
  type: ClusterIP
---
apiVersion: v1
kind: PersistentVolumeClaim
metadata:
  name: db-backup
  namespace: matrix
spec:
  accessModes:
  - ReadWriteMany
  resources:
    requests:
      storage: 4Gi
  storageClassName: cephfs-hyper
---
apiVersion: apps/v1
kind: Deployment
metadata:
  name: db-backup
  namespace: matrix
  labels:
    app: db-backup
spec:
  replicas: 1
  selector:
    matchLabels:
      app: db-backup
  template:
    metadata:
      labels:
        app: db-backup
    spec:
      containers:
      - name: db-backup
        image: prodrigestivill/postgres-backup-local
        imagePullPolicy: "IfNotPresent"
        env:
        - name: SCHEDULE
          value: "@daily"
        - name: BACKUP_KEEP_DAYS
          value: "7"
        - name: POSTGRES_DB
          value: "synapse"
        - name: POSTGRES_HOST
          value: db
        - name: POSTGRES_PASSWORD
          valueFrom:
            secretKeyRef:
              name: matrix-db
              key: root.pw
        - name: POSTGRES_USER
          valueFrom:
            secretKeyRef:
              name: matrix-db
              key: username
              optional: false
        - name: HEALTHCHECK_PORT
          value: "8080"
        volumeMounts:
        - mountPath: /backups
          name: backup
      volumes:
      - name: backup
        persistentVolumeClaim:
          claimName: db-backup
          readOnly: false