apiVersion: v1
kind: PersistentVolumeClaim
metadata:
  name: db
  namespace: netbox
spec:
  accessModes:
  - ReadWriteMany
  resources:
    requests:
      storage: 8Gi
  storageClassName: cephfs-hyper
---
apiVersion: apps/v1
kind: Deployment
metadata:
  name: db
  namespace: netbox
  labels:
    app: db
spec:
  replicas: 1
  selector:
    matchLabels:
      app: db
  template:
    metadata:
      labels:
        app: db
    spec:
      containers:
      - name: db
        image: postgres
        imagePullPolicy: "IfNotPresent"
        ports:
        - name: mysql
          containerPort: 5432
        env:
        - name: MARIADB_ROOT_PASSWORD
          valueFrom:
            secretKeyRef:
              name: netbox-db
              key: root.pw
        - name: POSTGRES_USER
          valueFrom:
            secretKeyRef:
              name: netbox-db
              key: username
              optional: false
        - name: POSTGRES_PASSWORD
          valueFrom:
            secretKeyRef:
              name: netbox-db
              key: user.pw
              optional: false
        - name: POSTGRES_DB
          value: netbox
        - name: POSTGRES_INITDB_ARGS
          value: "--lc-collate=C --lc-ctype=C --encoding=UTF8"
        #livenessProbe:
        #  exec:
        #    command: ["sh", "-c", "exec mysqladmin status -uroot -p$MARIADB_ROOT_PASSWORD"]
        #  initialDelaySeconds: 120
        #  periodSeconds: 10
        #  timeoutSeconds: 1
        #  successThreshold: 1
        #  failureThreshold: 3
        #readinessProbe:
        #  exec:
        #    command: ["sh", "-c", "exec mysqladmin status -uroot -p$MARIADB_ROOT_PASSWORD"]
        #  initialDelaySeconds: 30
        #  periodSeconds: 10
        #  timeoutSeconds: 1
        #  successThreshold: 1
        #  failureThreshold: 3
        volumeMounts:
        - mountPath: /var/lib/postgresql
          name: data
      volumes:
      - name: data
        persistentVolumeClaim:
          claimName: db
          readOnly: false
---
apiVersion: v1
kind: Service
metadata:
  name: db
  namespace: netbox
spec:
  internalTrafficPolicy: Cluster
  ipFamilies:
  - IPv6
  ipFamilyPolicy: SingleStack
  ports:
  - name: postgres
    port: 5432
    protocol: TCP
    targetPort: 5432
  selector:
    app: db
  sessionAffinity: None
  type: ClusterIP
---
apiVersion: v1
kind: PersistentVolumeClaim
metadata:
  name: db-backup
  namespace: netbox
spec:
  accessModes:
  - ReadWriteMany
  resources:
    requests:
      storage: 4Gi
  storageClassName: cephfs-hyper
---
apiVersion: apps/v1
kind: Deployment
metadata:
  name: db-backup
  namespace: netbox
  labels:
    app: db-backup
spec:
  replicas: 1
  selector:
    matchLabels:
      app: db-backup
  template:
    metadata:
      labels:
        app: db-backup
    spec:
      containers:
      - name: db-backup
        image: prodrigestivill/postgres-backup-local
        imagePullPolicy: "IfNotPresent"
        env:
        - name: SCHEDULE
          value: "@daily"
        - name: BACKUP_KEEP_DAYS
          value: "7"
        - name: POSTGRES_DB
          value: "netbox"
        - name: POSTGRES_HOST
          value: db
        - name: POSTGRES_PASSWORD
          valueFrom:
            secretKeyRef:
              name: netbox-db
              key: root.pw
        - name: POSTGRES_USER
          valueFrom:
            secretKeyRef:
              name: netbox-db
              key: username
              optional: false
        - name: HEALTHCHECK_PORT
          value: "8080"
        volumeMounts:
        - mountPath: /backups
          name: backup
      volumes:
      - name: backup
        persistentVolumeClaim:
          claimName: db-backup
          readOnly: false