npm - @eve-horizon/cli - Versions diffs - 0.2.27 → 0.2.29 - Mend

@eve-horizon/cli 0.2.27 → 0.2.29

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (48) hide show

package/assets/local-k8s/base/mailpit-deployment.yaml ADDED Viewed

@@ -0,0 +1,44 @@
+apiVersion: apps/v1
+kind: Deployment
+metadata:
+  name: mailpit
+  namespace: eve
+  labels:
+    app.kubernetes.io/name: mailpit
+spec:
+  replicas: 1
+  selector:
+    matchLabels:
+      app.kubernetes.io/name: mailpit
+  template:
+    metadata:
+      labels:
+        app.kubernetes.io/name: mailpit
+    spec:
+      containers:
+        - name: mailpit
+          image: axllent/mailpit:latest
+          ports:
+            - containerPort: 1025
+              name: smtp
+            - containerPort: 8025
+              name: web
+          resources:
+            requests:
+              memory: "64Mi"
+              cpu: "50m"
+            limits:
+              memory: "128Mi"
+              cpu: "200m"
+          readinessProbe:
+            httpGet:
+              path: /livez
+              port: 8025
+            initialDelaySeconds: 5
+            periodSeconds: 10
+          livenessProbe:
+            httpGet:
+              path: /livez
+              port: 8025
+            initialDelaySeconds: 5
+            periodSeconds: 30

package/assets/local-k8s/base/mailpit-ingress.yaml ADDED Viewed

@@ -0,0 +1,19 @@
+apiVersion: networking.k8s.io/v1
+kind: Ingress
+metadata:
+  name: mailpit
+  namespace: eve
+  labels:
+    app.kubernetes.io/name: mailpit
+spec:
+  rules:
+    - host: mail.eve.lvh.me
+      http:
+        paths:
+          - path: /
+            pathType: Prefix
+            backend:
+              service:
+                name: mailpit
+                port:
+                  number: 8025

package/assets/local-k8s/base/mailpit-service.yaml ADDED Viewed

@@ -0,0 +1,17 @@
+apiVersion: v1
+kind: Service
+metadata:
+  name: mailpit
+  namespace: eve
+  labels:
+    app.kubernetes.io/name: mailpit
+spec:
+  selector:
+    app.kubernetes.io/name: mailpit
+  ports:
+    - name: smtp
+      port: 1025
+      targetPort: 1025
+    - name: web
+      port: 8025
+      targetPort: 8025

package/assets/local-k8s/base/namespace.yaml ADDED Viewed

@@ -0,0 +1,6 @@
+apiVersion: v1
+kind: Namespace
+metadata:
+  name: eve
+  labels:
+    app.kubernetes.io/name: eve-horizon

package/assets/local-k8s/base/orchestrator-deployment.yaml ADDED Viewed

@@ -0,0 +1,81 @@
+apiVersion: apps/v1
+kind: Deployment
+metadata:
+  name: eve-orchestrator
+  namespace: eve
+  labels:
+    app.kubernetes.io/name: eve-orchestrator
+spec:
+  replicas: 1
+  selector:
+    matchLabels:
+      app.kubernetes.io/name: eve-orchestrator
+  template:
+    metadata:
+      labels:
+        app.kubernetes.io/name: eve-orchestrator
+    spec:
+      securityContext:
+        seccompProfile:
+          type: RuntimeDefault
+      initContainers:
+        - name: wait-for-worker
+          image: busybox:1.36
+          securityContext:
+            allowPrivilegeEscalation: false
+          command:
+            - sh
+            - -c
+            - |
+              echo "Waiting for worker to be ready..."
+              until wget -q --spider http://eve-worker:4749/health 2>/dev/null; do
+                echo "Worker not ready, retrying in 2s..."
+                sleep 2
+              done
+              echo "Worker is ready!"
+      containers:
+        - name: orchestrator
+          securityContext:
+            allowPrivilegeEscalation: false
+          image: eve-horizon/orchestrator:local
+          imagePullPolicy: IfNotPresent
+          envFrom:
+            # Mount all secrets from eve-app
+            - secretRef:
+                name: eve-app
+          env:
+            - name: DATABASE_URL
+              value: postgres://eve:eve@postgres.eve.svc.cluster.local:5432/eve
+            - name: EVE_API_URL
+              value: http://eve-api:4701
+            - name: ORCHESTRATOR_PORT
+              value: "4702"
+            - name: WORKER_URL
+              value: http://eve-worker:4749
+            - name: EVE_WORKER_URLS
+              value: default-worker=http://eve-worker:4749
+            - name: EVE_AGENT_RUNTIME_URL
+              value: http://eve-agent-runtime:4812
+            - name: EVE_AGENT_RUNTIME_URLS
+              value: >-
+                eve-agent-runtime-0=http://eve-agent-runtime-0.eve-agent-runtime.eve.svc.cluster.local:4812,
+                eve-agent-runtime-1=http://eve-agent-runtime-1.eve-agent-runtime.eve.svc.cluster.local:4812,
+                eve-agent-runtime-2=http://eve-agent-runtime-2.eve-agent-runtime.eve.svc.cluster.local:4812
+            - name: WORKSPACE_ROOT
+              value: /opt/eve/workspaces
+          ports:
+            - name: http
+              containerPort: 4702
+          readinessProbe:
+            httpGet:
+              path: /health
+              port: http
+            initialDelaySeconds: 5
+            periodSeconds: 5
+            failureThreshold: 10
+          livenessProbe:
+            httpGet:
+              path: /health
+              port: http
+            initialDelaySeconds: 20
+            periodSeconds: 10

package/assets/local-k8s/base/orchestrator-service.yaml ADDED Viewed

@@ -0,0 +1,14 @@
+apiVersion: v1
+kind: Service
+metadata:
+  name: eve-orchestrator
+  namespace: eve
+  labels:
+    app.kubernetes.io/name: eve-orchestrator
+spec:
+  selector:
+    app.kubernetes.io/name: eve-orchestrator
+  ports:
+    - name: http
+      port: 4702
+      targetPort: http

package/assets/local-k8s/base/postgres-secret.yaml ADDED Viewed

@@ -0,0 +1,10 @@
+apiVersion: v1
+kind: Secret
+metadata:
+  name: eve-postgres
+  namespace: eve
+type: Opaque
+stringData:
+  POSTGRES_USER: eve
+  POSTGRES_PASSWORD: eve
+  POSTGRES_DB: eve

package/assets/local-k8s/base/postgres-statefulset.yaml ADDED Viewed

@@ -0,0 +1,53 @@
+apiVersion: v1
+kind: Service
+metadata:
+  name: postgres
+  namespace: eve
+  labels:
+    app.kubernetes.io/name: postgres
+spec:
+  selector:
+    app.kubernetes.io/name: postgres
+  ports:
+    - name: postgres
+      port: 5432
+      targetPort: postgres
+---
+apiVersion: apps/v1
+kind: StatefulSet
+metadata:
+  name: postgres
+  namespace: eve
+  labels:
+    app.kubernetes.io/name: postgres
+spec:
+  serviceName: postgres
+  replicas: 1
+  selector:
+    matchLabels:
+      app.kubernetes.io/name: postgres
+  template:
+    metadata:
+      labels:
+        app.kubernetes.io/name: postgres
+    spec:
+      containers:
+        - name: postgres
+          image: postgres:16-alpine
+          ports:
+            - name: postgres
+              containerPort: 5432
+          envFrom:
+            - secretRef:
+                name: eve-postgres
+          volumeMounts:
+            - name: data
+              mountPath: /var/lib/postgresql/data
+  volumeClaimTemplates:
+    - metadata:
+        name: data
+      spec:
+        accessModes: ["ReadWriteOnce"]
+        resources:
+          requests:
+            storage: 5Gi

package/assets/local-k8s/base/registry-configmap.yaml ADDED Viewed

@@ -0,0 +1,34 @@
+apiVersion: v1
+kind: ConfigMap
+metadata:
+  name: eve-registry-config
+  namespace: eve-system
+data:
+  config.yml: |
+    version: 0.1
+    log:
+      level: info
+      fields:
+        service: eve-registry
+    storage:
+      filesystem:
+        rootdirectory: /var/lib/registry
+      cache:
+        blobdescriptor: inmemory
+      delete:
+        enabled: true
+      maintenance:
+        uploadpurging:
+          enabled: true
+          age: 168h
+          interval: 24h
+          dryrun: false
+    http:
+      addr: :5000
+      headers:
+        X-Content-Type-Options: [nosniff]
+    health:
+      storagedriver:
+        enabled: true
+        interval: 10s
+        threshold: 3

package/assets/local-k8s/base/registry-deployment.yaml ADDED Viewed

@@ -0,0 +1,53 @@
+apiVersion: apps/v1
+kind: Deployment
+metadata:
+  name: eve-registry
+  namespace: eve-system
+  labels:
+    app: eve-registry
+spec:
+  replicas: 1
+  selector:
+    matchLabels:
+      app: eve-registry
+  template:
+    metadata:
+      labels:
+        app: eve-registry
+    spec:
+      containers:
+        - name: registry
+          image: registry:2
+          ports:
+            - containerPort: 5000
+          volumeMounts:
+            - name: config
+              mountPath: /etc/docker/registry
+            - name: data
+              mountPath: /var/lib/registry
+          readinessProbe:
+            httpGet:
+              path: /
+              port: 5000
+            initialDelaySeconds: 5
+            periodSeconds: 10
+          livenessProbe:
+            httpGet:
+              path: /
+              port: 5000
+            initialDelaySeconds: 15
+            periodSeconds: 30
+          resources:
+            requests:
+              cpu: 100m
+              memory: 128Mi
+            limits:
+              cpu: 500m
+              memory: 512Mi
+      volumes:
+        - name: config
+          configMap:
+            name: eve-registry-config
+        - name: data
+          persistentVolumeClaim:
+            claimName: eve-registry-data

package/assets/local-k8s/base/registry-pvc.yaml ADDED Viewed

@@ -0,0 +1,11 @@
+apiVersion: v1
+kind: PersistentVolumeClaim
+metadata:
+  name: eve-registry-data
+  namespace: eve-system
+spec:
+  accessModes:
+    - ReadWriteOnce
+  resources:
+    requests:
+      storage: 10Gi

package/assets/local-k8s/base/registry-service.yaml ADDED Viewed

@@ -0,0 +1,15 @@
+apiVersion: v1
+kind: Service
+metadata:
+  name: eve-registry
+  namespace: eve-system
+  labels:
+    app: eve-registry
+spec:
+  type: ClusterIP
+  selector:
+    app: eve-registry
+  ports:
+    - name: registry
+      port: 5000
+      targetPort: 5000

package/assets/local-k8s/base/sso-deployment.yaml ADDED Viewed

@@ -0,0 +1,66 @@
+apiVersion: apps/v1
+kind: Deployment
+metadata:
+  name: eve-sso
+  namespace: eve
+  labels:
+    app.kubernetes.io/name: eve-sso
+spec:
+  replicas: 1
+  selector:
+    matchLabels:
+      app.kubernetes.io/name: eve-sso
+  template:
+    metadata:
+      labels:
+        app.kubernetes.io/name: eve-sso
+    spec:
+      securityContext:
+        seccompProfile:
+          type: RuntimeDefault
+      containers:
+        - name: sso
+          securityContext:
+            allowPrivilegeEscalation: false
+          image: eve-horizon/sso:local
+          imagePullPolicy: IfNotPresent
+          ports:
+            - name: http
+              containerPort: 3100
+          envFrom:
+            - secretRef:
+                name: eve-app
+          env:
+            - name: PORT
+              value: "3100"
+            - name: EVE_API_URL
+              value: http://eve-api:4701
+            - name: SUPABASE_AUTH_URL
+              value: http://supabase-auth:9999
+            - name: SUPABASE_AUTH_EXTERNAL_URL
+              value: http://auth.eve.lvh.me
+            - name: EVE_DEFAULT_DOMAIN
+              value: lvh.me
+            - name: EVE_SSO_SECURE_COOKIES
+              value: "false"
+          readinessProbe:
+            httpGet:
+              path: /health
+              port: http
+            initialDelaySeconds: 5
+            periodSeconds: 5
+            timeoutSeconds: 2
+          livenessProbe:
+            httpGet:
+              path: /health
+              port: http
+            initialDelaySeconds: 10
+            periodSeconds: 10
+            timeoutSeconds: 2
+          resources:
+            requests:
+              memory: "64Mi"
+              cpu: "50m"
+            limits:
+              memory: "128Mi"
+              cpu: "200m"

package/assets/local-k8s/base/sso-ingress.yaml ADDED Viewed

@@ -0,0 +1,19 @@
+apiVersion: networking.k8s.io/v1
+kind: Ingress
+metadata:
+  name: eve-sso
+  namespace: eve
+  labels:
+    app.kubernetes.io/name: eve-sso
+spec:
+  rules:
+    - host: sso.eve.lvh.me
+      http:
+        paths:
+          - path: /
+            pathType: Prefix
+            backend:
+              service:
+                name: eve-sso
+                port:
+                  number: 3100

package/assets/local-k8s/base/sso-service.yaml ADDED Viewed

@@ -0,0 +1,14 @@
+apiVersion: v1
+kind: Service
+metadata:
+  name: eve-sso
+  namespace: eve
+  labels:
+    app.kubernetes.io/name: eve-sso
+spec:
+  selector:
+    app.kubernetes.io/name: eve-sso
+  ports:
+    - name: http
+      port: 3100
+      targetPort: http

package/assets/local-k8s/base/supabase-auth-cors-middleware.yaml ADDED Viewed

@@ -0,0 +1,22 @@
+apiVersion: traefik.io/v1alpha1
+kind: Middleware
+metadata:
+  name: supabase-auth-cors
+  namespace: eve
+spec:
+  headers:
+    accessControlAllowMethods:
+      - "GET"
+      - "POST"
+      - "PUT"
+      - "DELETE"
+      - "OPTIONS"
+    accessControlAllowHeaders:
+      - "Content-Type"
+      - "Authorization"
+      - "apikey"
+      - "X-Client-Info"
+    accessControlAllowOriginList:
+      - "http://sso.eve.lvh.me"
+    accessControlAllowCredentials: true
+    accessControlMaxAge: 600

package/assets/local-k8s/base/supabase-auth-deployment.yaml ADDED Viewed

@@ -0,0 +1,100 @@
+apiVersion: apps/v1
+kind: Deployment
+metadata:
+  name: supabase-auth
+  namespace: eve
+  labels:
+    app.kubernetes.io/name: supabase-auth
+spec:
+  replicas: 1
+  selector:
+    matchLabels:
+      app.kubernetes.io/name: supabase-auth
+  template:
+    metadata:
+      labels:
+        app.kubernetes.io/name: supabase-auth
+    spec:
+      containers:
+        - name: gotrue
+          image: supabase/gotrue:v2.185.0
+          ports:
+            - containerPort: 9999
+              name: http
+          env:
+            # --- Database ---
+            - name: GOTRUE_DB_DRIVER
+              value: postgres
+            - name: DB_USER
+              valueFrom:
+                secretKeyRef:
+                  name: eve-postgres
+                  key: POSTGRES_USER
+            - name: DB_PASSWORD
+              valueFrom:
+                secretKeyRef:
+                  name: eve-postgres
+                  key: POSTGRES_PASSWORD
+            - name: GOTRUE_DB_DATABASE_URL
+              value: "postgres://$(DB_USER):$(DB_PASSWORD)@postgres.eve.svc.cluster.local:5432/eve?sslmode=disable&search_path=auth"
+            - name: PORT
+              value: "9999"
+            - name: GOTRUE_API_PORT
+              value: "9999"
+            # --- JWT ---
+            - name: GOTRUE_JWT_SECRET
+              valueFrom:
+                secretKeyRef:
+                  name: eve-app
+                  key: SUPABASE_JWT_SECRET
+            - name: GOTRUE_JWT_EXP
+              value: "3600"
+            # --- URLs ---
+            - name: API_EXTERNAL_URL
+              value: "http://auth.eve.lvh.me"
+            - name: GOTRUE_SITE_URL
+              value: "http://sso.eve.lvh.me"
+            - name: GOTRUE_URI_ALLOW_LIST
+              value: ""
+            # --- Sign-up / Email ---
+            - name: GOTRUE_DISABLE_SIGNUP
+              value: "false"
+            - name: GOTRUE_EXTERNAL_EMAIL_ENABLED
+              value: "true"
+            - name: GOTRUE_MAILER_AUTOCONFIRM
+              value: "true"
+            # --- SMTP (Mailpit) ---
+            - name: GOTRUE_SMTP_HOST
+              value: "mailpit.eve.svc.cluster.local"
+            - name: GOTRUE_SMTP_PORT
+              value: "1025"
+            - name: GOTRUE_SMTP_ADMIN_EMAIL
+              value: "noreply@eve.local"
+            # --- Mailer URL paths ---
+            - name: GOTRUE_MAILER_URLPATHS_CONFIRMATION
+              value: "/callback"
+            - name: GOTRUE_MAILER_URLPATHS_INVITE
+              value: "/callback"
+            - name: GOTRUE_MAILER_URLPATHS_RECOVERY
+              value: "/callback"
+            - name: GOTRUE_MAILER_URLPATHS_EMAIL_CHANGE
+              value: "/callback"
+          resources:
+            requests:
+              memory: "128Mi"
+              cpu: "100m"
+            limits:
+              memory: "256Mi"
+              cpu: "500m"
+          readinessProbe:
+            httpGet:
+              path: /health
+              port: 9999
+            initialDelaySeconds: 10
+            periodSeconds: 10
+          livenessProbe:
+            httpGet:
+              path: /health
+              port: 9999
+            initialDelaySeconds: 15
+            periodSeconds: 30

package/assets/local-k8s/base/supabase-auth-ingress.yaml ADDED Viewed

@@ -0,0 +1,21 @@
+apiVersion: networking.k8s.io/v1
+kind: Ingress
+metadata:
+  name: supabase-auth
+  namespace: eve
+  labels:
+    app.kubernetes.io/name: supabase-auth
+  annotations:
+    traefik.ingress.kubernetes.io/router.middlewares: eve-supabase-auth-cors@kubernetescrd
+spec:
+  rules:
+    - host: auth.eve.lvh.me
+      http:
+        paths:
+          - path: /
+            pathType: Prefix
+            backend:
+              service:
+                name: supabase-auth
+                port:
+                  number: 9999

package/assets/local-k8s/base/supabase-auth-service.yaml ADDED Viewed

@@ -0,0 +1,14 @@
+apiVersion: v1
+kind: Service
+metadata:
+  name: supabase-auth
+  namespace: eve
+  labels:
+    app.kubernetes.io/name: supabase-auth
+spec:
+  selector:
+    app.kubernetes.io/name: supabase-auth
+  ports:
+    - name: http
+      port: 9999
+      targetPort: 9999