From 1ee60d9534496f1c4fe2218c01cb0d6e741abc1d Mon Sep 17 00:00:00 2001 From: Brad Stein Date: Mon, 8 Sep 2025 21:58:50 -0500 Subject: [PATCH] zot middleware fix --- services/jitsi/deployment.yaml | 10 +++++----- services/zot/ingress.yaml | 3 +++ services/zot/kustomization.yaml | 1 + services/zot/middleware.yaml | 26 ++++++++++++++++++++++++++ 4 files changed, 35 insertions(+), 5 deletions(-) create mode 100644 services/zot/middleware.yaml diff --git a/services/jitsi/deployment.yaml b/services/jitsi/deployment.yaml index 36eae36..ff81b33 100644 --- a/services/jitsi/deployment.yaml +++ b/services/jitsi/deployment.yaml @@ -5,7 +5,7 @@ metadata: name: jitsi-prosody namespace: jitsi spec: - replicas: 1 + replicas: 0 selector: matchLabels: { app: jitsi-prosody } template: @@ -13,7 +13,7 @@ spec: labels: { app: jitsi-prosody } spec: nodeSelector: - kubernetes.io/hostname: titan-22 # keep everything on titan-22 for simplicity + kubernetes.io/hostname: titan-22 kubernetes.io/arch: amd64 containers: - name: prosody @@ -51,7 +51,7 @@ metadata: name: jitsi-jicofo namespace: jitsi spec: - replicas: 1 + replicas: 0 selector: matchLabels: { app: jitsi-jicofo } template: @@ -90,7 +90,7 @@ metadata: name: jitsi-jvb namespace: jitsi spec: - replicas: 1 + replicas: 0 selector: matchLabels: { app: jitsi-jvb } template: @@ -140,7 +140,7 @@ metadata: name: jitsi-web namespace: jitsi spec: - replicas: 1 + replicas: 0 selector: matchLabels: { app: jitsi-web } template: diff --git a/services/zot/ingress.yaml b/services/zot/ingress.yaml index aa4cd43..dc8d010 100644 --- a/services/zot/ingress.yaml +++ b/services/zot/ingress.yaml @@ -6,6 +6,9 @@ metadata: namespace: zot annotations: cert-manager.io/cluster-issuer: letsencrypt-prod + traefik.ingress.kubernetes.io/router.entrypoints: websecure + traefik.ingress.kubernetes.io/router.tls: "true" + traefik.ingress.kubernetes.io/router.middlewares: zot-zot-headers@kubernetescrd,zot-zot-buffering@kubernetescrd spec: ingressClassName: traefik tls: diff --git a/services/zot/kustomization.yaml b/services/zot/kustomization.yaml index 080c45f..03e6982 100644 --- a/services/zot/kustomization.yaml +++ b/services/zot/kustomization.yaml @@ -8,4 +8,5 @@ resources: - configmap.yaml - service.yaml - ingress.yaml + - middleware.yaml \ No newline at end of file diff --git a/services/zot/middleware.yaml b/services/zot/middleware.yaml new file mode 100644 index 0000000..ab6859c --- /dev/null +++ b/services/zot/middleware.yaml @@ -0,0 +1,26 @@ +# services/zot/middlewares.yaml +apiVersion: traefik.io/v1alpha1 +kind: Middleware +metadata: + name: zot-headers + namespace: zot +spec: + headers: + customRequestHeaders: + Docker-Distribution-Api-Version: "registry/2.0" + +--- + +apiVersion: traefik.io/v1alpha1 +kind: Middleware +metadata: + name: zot-buffering + namespace: zot +spec: + buffering: + # "0" here means "no limit" for Traefik's buffering middleware + maxRequestBodyBytes: 0 + memRequestBodyBytes: 0 + maxResponseBodyBytes: 0 + memResponseBodyBytes: 0 + retryExpression: "IsNetworkError() && Attempts() <= 2"