feat(externaldns): Yeet bind

doonga · May 26, 2024 · a4a28dd · a4a28dd
1 parent a626e4f
commit a4a28dd
Show file tree

Hide file tree

Showing 6 changed files with 23 additions and 152 deletions.
diff --git a/kubernetes/main/apps/network/external-dns/internal/externalsecret.yaml b/kubernetes/main/apps/network/external-dns/internal/externalsecret.yaml
@@ -12,11 +12,7 @@ spec:
     name: externaldns-internal-secrets
     creationPolicy: Owner
   data:
-    - secretKey: bind_rndc_algorithm
+    - secretKey: externaldns_internal_pass
       remoteRef:
-        key: bind
-        property: externaldns_algorithm
-    - secretKey: bind_rndc_secret
-      remoteRef:
-        key: bind
-        property: externaldns_secret
+        key: Unifi Controller
+        property: externaldns_internal
diff --git a/kubernetes/main/apps/network/external-dns/internal/helmrelease.yaml b/kubernetes/main/apps/network/external-dns/internal/helmrelease.yaml
@@ -22,33 +22,29 @@ spec:
     domainFilters:
       - greyrock.casa
 
-    env:
-      - name: EXTERNAL_DNS_RFC2136_HOST
-        value: "10.1.1.11"
-      - name: EXTERNAL_DNS_RFC2136_PORT
-        value: "53"
-      - name: EXTERNAL_DNS_RFC2136_ZONE
-        value: "greyrock.casa"
-      - name: EXTERNAL_DNS_RFC2136_TSIG_AXFR
-        value: "true"
-      - name: EXTERNAL_DNS_RFC2136_TSIG_KEYNAME
-        value: externaldns
-      - name: EXTERNAL_DNS_RFC2136_TSIG_SECRET_ALG
-        valueFrom:
-          secretKeyRef:
-            name: externaldns-internal-secrets
-            key: bind_rndc_algorithm
-      - name: EXTERNAL_DNS_RFC2136_TSIG_SECRET
-        valueFrom:
-          secretKeyRef:
-            name: externaldns-internal-secrets
-            key: bind_rndc_secret
+    provider:
+      name: webhook
+      webhook:
+        image:
+          repository: ghcr.io/kashalls/external-dns-unifi-webhook
+          tag: v0.0.6
+        env:
+          - name: UNIFI_HOST
+            value: https://10.1.1.1
+          - name: UNIFI_USER
+            value: externaldns
+          - name: UNIFI_PASS
+            valueFrom:
+              secretKeyRef:
+                name: externaldns-internal-secrets
+                key: externaldns_internal_pass
+          - name: LOG_LEVEL
+            value: debug
 
     podAnnotations:
       secret.reloader.stakater.com/reload: externaldns-internal-secrets
 
     policy: sync
-    provider: rfc2136
 
     resources:
       requests:
@@ -64,7 +60,8 @@ spec:
       - ingress
       - service
 
-    txtPrefix: "k8s."
+    txtOwnerId: main
+    txtPrefix: "k8s.main."
 
   postRenderers:
     - kustomize:

diff --git a/kubernetes/main/apps/network/external-dns/ks.yaml b/kubernetes/main/apps/network/external-dns/ks.yaml
@@ -60,24 +60,3 @@ spec:
   wait: true
   dependsOn:
     - name: external-secrets-stores
----
-# yaml-language-server: $schema=https://raw.githubusercontent.com/fluxcd-community/flux2-schemas/main/kustomization-kustomize-v1.json
-apiVersion: kustomize.toolkit.fluxcd.io/v1
-kind: Kustomization
-metadata:
-  name: &appname externaldns-unifi
-  namespace: flux-system
-spec:
-  targetNamespace: network
-  commonMetadata:
-    labels:
-      app.kubernetes.io/name: *appname
-  interval: 10m
-  path: "./kubernetes/main/apps/network/external-dns/unifi"
-  prune: true
-  sourceRef:
-    kind: GitRepository
-    name: greyrock-ops-kubernetes
-  wait: true
-  dependsOn:
-    - name: external-secrets-stores
diff --git a/kubernetes/main/apps/network/external-dns/unifi/externalsecret.yaml b/kubernetes/main/apps/network/external-dns/unifi/externalsecret.yaml
diff --git a/kubernetes/main/apps/network/external-dns/unifi/helmrelease.yaml b/kubernetes/main/apps/network/external-dns/unifi/helmrelease.yaml
diff --git a/kubernetes/main/apps/network/external-dns/unifi/kustomization.yaml b/kubernetes/main/apps/network/external-dns/unifi/kustomization.yaml