CLOUDP-176423 Added multi cluster kubectl example (#252)

Author: slaskawi

mongodb-enterprise-multi-cluster.yaml

@@ -0,0 +1,209 @@
+---
+# Source: enterprise-operator/templates/database-roles.yaml
+apiVersion: v1
+kind: ServiceAccount
+metadata:
+  name: mongodb-enterprise-appdb
+  namespace: mongodb
+---
+# Source: enterprise-operator/templates/database-roles.yaml
+apiVersion: v1
+kind: ServiceAccount
+metadata:
+  name: mongodb-enterprise-database-pods
+  namespace: mongodb
+---
+# Source: enterprise-operator/templates/database-roles.yaml
+apiVersion: v1
+kind: ServiceAccount
+metadata:
+  name: mongodb-enterprise-ops-manager
+  namespace: mongodb
+---
+# Source: enterprise-operator/templates/operator.yaml
+apiVersion: v1
+kind: ConfigMap
+data:
+  MDB_CLUSTER_1_FULL_NAME: "${MDB_CLUSTER_1_FULL_NAME}"
+  MDB_CLUSTER_2_FULL_NAME: "${MDB_CLUSTER_2_FULL_NAME}"
+  MDB_CLUSTER_3_FULL_NAME: "${MDB_CLUSTER_3_FULL_NAME}"
+metadata:
+  namespace: mongodb
+  name: mongodb-enterprise-operator-member-list
+  labels:
+    multi-cluster: "true"
+---
+# Source: enterprise-operator/templates/operator-roles.yaml
+kind: ClusterRole
+apiVersion: rbac.authorization.k8s.io/v1
+metadata:
+  name: mongodb-enterprise-operator-mongodb-webhook
+rules:
+  - apiGroups:
+      - "admissionregistration.k8s.io"
+    resources:
+      - validatingwebhookconfigurations
+    verbs:
+      - get
+      - create
+      - update
+      - delete
+  - apiGroups:
+      - ""
+    resources:
+      - services
+    verbs:
+      - get
+      - list
+      - watch
+      - create
+      - update
+      - delete
+---
+# Source: enterprise-operator/templates/operator-roles.yaml
+kind: ClusterRoleBinding
+apiVersion: rbac.authorization.k8s.io/v1
+metadata:
+  name: mongodb-enterprise-operator-multi-cluster-mongodb-webhook-binding
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: ClusterRole
+  name: mongodb-enterprise-operator-mongodb-webhook
+subjects:
+  - kind: ServiceAccount
+    name: mongodb-enterprise-operator-multi-cluster
+    namespace: mongodb
+---
+# Source: enterprise-operator/templates/database-roles.yaml
+kind: Role
+apiVersion: rbac.authorization.k8s.io/v1
+metadata:
+  name: mongodb-enterprise-appdb
+  namespace: mongodb
+rules:
+  - apiGroups:
+      - ''
+    resources:
+      - secrets
+    verbs:
+      - get
+  - apiGroups:
+      - ''
+    resources:
+      - pods
+    verbs:
+      - patch
+      - delete
+      - get
+---
+# Source: enterprise-operator/templates/database-roles.yaml
+kind: RoleBinding
+apiVersion: rbac.authorization.k8s.io/v1
+metadata:
+  name: mongodb-enterprise-appdb
+  namespace: mongodb
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: Role
+  name: mongodb-enterprise-appdb
+subjects:
+  - kind: ServiceAccount
+    name: mongodb-enterprise-appdb
+    namespace: mongodb
+---
+# Source: enterprise-operator/templates/operator.yaml
+apiVersion: apps/v1
+kind: Deployment
+metadata:
+  name: mongodb-enterprise-operator-multi-cluster
+  namespace: mongodb
+spec:
+  replicas: 1
+  selector:
+    matchLabels:
+      app.kubernetes.io/component: controller
+      app.kubernetes.io/name: mongodb-enterprise-operator-multi-cluster
+      app.kubernetes.io/instance: mongodb-enterprise-operator-multi-cluster
+  template:
+    metadata:
+      labels:
+        app.kubernetes.io/component: controller
+        app.kubernetes.io/name: mongodb-enterprise-operator-multi-cluster
+        app.kubernetes.io/instance: mongodb-enterprise-operator-multi-cluster
+    spec:
+      serviceAccountName: mongodb-enterprise-operator-multi-cluster
+      securityContext:
+        runAsNonRoot: true
+        runAsUser: 2000
+      containers:
+        - name: mongodb-enterprise-operator-multi-cluster
+          image: "quay.io/mongodb/mongodb-enterprise-operator:1.19.1"
+          imagePullPolicy: Always
+          args:
+            - -watch-resource=mongodb
+            - -watch-resource=opsmanagers
+            - -watch-resource=mongodbusers
+            - -watch-resource=mongodbmulticluster
+          command:
+            - /usr/local/bin/mongodb-enterprise-operator
+          volumeMounts:
+            - mountPath: /etc/config/kubeconfig
+              name: kube-config-volume
+          resources:
+            limits:
+              cpu: 1100m
+              memory: 1Gi
+            requests:
+              cpu: 500m
+              memory: 200Mi
+          env:
+            - name: OPERATOR_ENV
+              value: prod
+            - name: WATCH_NAMESPACE
+              valueFrom:
+                fieldRef:
+                  fieldPath: metadata.namespace
+            - name: CURRENT_NAMESPACE
+              valueFrom:
+                fieldRef:
+                  fieldPath: metadata.namespace
+            - name: CLUSTER_CLIENT_TIMEOUT
+              value: "10"
+            - name: IMAGE_PULL_POLICY
+              value: Always
+            # Database
+            - name: MONGODB_ENTERPRISE_DATABASE_IMAGE
+              value: quay.io/mongodb/mongodb-enterprise-database-ubi
+            - name: INIT_DATABASE_IMAGE_REPOSITORY
+              value: quay.io/mongodb/mongodb-enterprise-init-database-ubi
+            - name: INIT_DATABASE_VERSION
+              value: 1.0.16
+            - name: DATABASE_VERSION
+              value: 2.0.2
+            # Ops Manager
+            - name: OPS_MANAGER_IMAGE_REPOSITORY
+              value: quay.io/mongodb/mongodb-enterprise-ops-manager-ubi
+            - name: INIT_OPS_MANAGER_IMAGE_REPOSITORY
+              value: quay.io/mongodb/mongodb-enterprise-init-ops-manager-ubi
+            - name: INIT_OPS_MANAGER_VERSION
+              value: 1.0.10
+            # AppDB
+            - name: INIT_APPDB_IMAGE_REPOSITORY
+              value: quay.io/mongodb/mongodb-enterprise-init-appdb-ubi
+            - name: INIT_APPDB_VERSION
+              value: 1.0.16
+            - name: OPS_MANAGER_IMAGE_PULL_POLICY
+              value: Always
+            - name: AGENT_IMAGE
+              value: "quay.io/mongodb/mongodb-agent-ubi:12.0.15.7646-1"
+            - name: MONGODB_IMAGE
+              value: mongodb-enterprise-appdb-database-ubi
+            - name: MONGODB_REPO_URL
+              value: quay.io/mongodb
+            - name: PERFORM_FAILOVER
+              value: 'true'
+      volumes:
+        - name: kube-config-volume
+          secret:
+            defaultMode: 420
+            secretName: mongodb-enterprise-operator-multi-cluster-kubeconfig