feat(chart): add bootstrap priv key secret support (#88)

pbalogh-sa · web-flow · commit 17305dbc784a · 2025-04-07T10:15:59.000+02:00
* feat(chart): add secret for private key

Signed-off-by: Peter Balogh &lt;p.balogh.sa@gmail.com&gt;
diff --git a/install/charts/dir/apiserver/templates/deployment.yaml b/install/charts/dir/apiserver/templates/deployment.yaml
@@ -32,6 +32,9 @@ spec:
         {{- toYaml .Values.podSecurityContext | nindent 8 }}
       containers:
         - name: {{ .Chart.Name }}
+          env:
+            - name: DIRECTORY_LOGGER_LOG_LEVEL
+              value: {{ .Values.log_level }}
           securityContext:
             {{- toYaml .Values.securityContext | nindent 12 }}
           image: "{{ .Values.image.repository }}:{{ .Values.image.tag | default .Chart.AppVersion }}"
@@ -71,10 +74,24 @@ spec:
             - name: config-volume
               mountPath: /etc/agntcy/dir/server.config.yml
               subPath: server.config.yml
+            {{- if .Values.privKey }}
+            - name: secret-volume
+              mountPath: {{ .Values.config.routing.key_path }}
+              subPath: node.privkey
+              readOnly: true
+            {{- end }}
       volumes:
         - name: config-volume
           configMap:
             name: {{ include "chart.fullname" . }}
+        {{- if .Values.privKey }}
+        - name: secret-volume
+          secret:
+            secretName: {{ include "chart.fullname" . }}
+            items:
+              - key: node.privkey
+                path: node.privkey
+        {{- end }}
       {{- with .Values.nodeSelector }}
       nodeSelector:
         {{- toYaml . | nindent 8 }}
diff --git a/install/charts/dir/apiserver/templates/routing_service.yaml b/install/charts/dir/apiserver/templates/routing_service.yaml
@@ -0,0 +1,20 @@
+# Copyright AGNTCY Contributors (https://github.com/agntcy)
+# SPDX-License-Identifier: Apache-2.0
+
+{{- if .Values.config.routing.listen_address }}
+apiVersion: v1
+kind: Service
+metadata:
+  name: {{ include "chart.fullname" . }}-routing
+  labels:
+    {{- include "chart.labels" . | nindent 4 }}
+spec:
+  type: {{ .Values.service.type }}
+  ports:
+    - port: {{ (split "/" .Values.config.routing.listen_address)._4 }}
+      targetPort: routing
+      protocol: TCP
+      name: routing
+  selector:
+    {{- include "chart.selectorLabels" . | nindent 4 }}
+{{- end }}
diff --git a/install/charts/dir/apiserver/templates/secret.yaml b/install/charts/dir/apiserver/templates/secret.yaml
@@ -0,0 +1,14 @@
+# Copyright AGNTCY Contributors (https://github.com/agntcy)
+# SPDX-License-Identifier: Apache-2.0
+
+{{- if .Values.privKey -}}
+---
+apiVersion: v1
+kind: Secret
+metadata:
+  name: {{ include "chart.fullname" . }}
+  labels:
+    {{- include "chart.labels" . | nindent 4 }}
+data:
+  node.privkey: {{ .Values.privKey | b64enc }}
+{{- end }}
diff --git a/install/charts/dir/apiserver/values.yaml b/install/charts/dir/apiserver/values.yaml
@@ -8,6 +8,8 @@
 nameOverride: ""
 fullnameOverride: ""
 
+log_level: INFO
+
 image:
   repository: ghcr.io/agntcy/dir-apiserver
   tag: latest
