apiVersion: v1
kind: Service
metadata:
  name: etcd-service
  namespace: arts-system
  labels:
    app: etcd
spec:
  ports:
  - name: client
    port: 2379
    protocol: TCP
    targetPort: 2379
  - name: peer
    port: 2380
    protocol: TCP
    targetPort: 2380
  type: NodePort
  selector:
    app: etcd

---

apiVersion: apps/v1
kind: StatefulSet
metadata:
  name: etcd
  namespace: arts-system
spec:
  serviceName: "etcd-service"
  replicas: 3
  selector:
    matchLabels:
      app: etcd
  template:
    metadata:
      labels:
        app: etcd
    spec:
      containers:
      - name: etcd
        image: quay.io/coreos/etcd:v3.4.13
        imagePullPolicy: IfNotPresent
        ports:
        - containerPort: 2379
          name: client
        - containerPort: 2380
          name: peer
        volumeMounts:
        - name: etcddata
          mountPath: /var/run/etcd
          subPath: artsdata/etcd
        command:
          - /usr/local/bin/etcd
        args:
          - --data-dir=/var/run/etcd/$(ETCD_NAMES)data
          - --name=$(ETCD_NAMES)
          - --initial-advertise-peer-urls=http://$(ETCD_NAMES).etcd-service.arts-system.svc.cluster.local:2380
          - --listen-peer-urls=http://0.0.0.0:2380
          - --listen-client-urls=http://0.0.0.0:2379
          - --advertise-client-urls=http://$(ETCD_NAMES).etcd-service.arts-system.svc.cluster.local:2379
          - --initial-cluster-token=etcd-cluster
          - --initial-cluster=etcd-0=http://etcd-0.etcd-service.arts-system.svc.cluster.local:2380,etcd-1=http://etcd-1.etcd-service.arts-system.svc.cluster.local:2380,etcd-2=http://etcd-2.etcd-service.arts-system.svc.cluster.local:2380
          - --initial-cluster-state=new
        env:
        - name: ETCD_NAMES
          valueFrom:
            fieldRef:
              fieldPath: metadata.name
      volumes:
      - name: etcddata
        persistentVolumeClaim:
          #claimName: artspvc
          claimName: arts-pvc



# 使用job给etcd集群设置账密
---
apiVersion: batch/v1
kind: Job
metadata:
  labels:
    job-name: etcd-auth-init
  name: etcd-auth-init
  namespace: arts-system
spec:
  template:
    metadata:
      labels:
        job-name: etcd-auth-init
    spec:
      containers:
      - command:
        - /bin/sh
        - -ec
        - |
          # Wait for etcd to become ready
          for i in $(seq 1 60); do
            etcdctl put foo bar && break || sleep 1
          done
          # Add root user and enable authentication
          etcdctl user add root:"123456"
          etcdctl user grant-role root root
          etcdctl auth enable
        env:
        - name: ETCDCTL_API
          value: "3"
        - name: ETCDCTL_ENDPOINTS
          value: http://etcd-service.arts-system.svc.cluster.local:2379
        image: quay.io/coreos/etcd:v3.4.13
        imagePullPolicy: IfNotPresent
        name: etcd-auth-init
        resources: {}
      restartPolicy: OnFailure



# 集群测试
# ./etcdctl --user='root' --password='123456' --endpoints http://192.168.73.100:37737 put hello world
# kubernetes # etcd # 容器
Logo
K8S/Kubernetes

K8S/Kubernetes社区为您提供最前沿的新闻资讯和知识内容

更多推荐

【深度】阿里巴巴万级规模 K8s 集群全局高可用体系之美

作者 |  韩堂、柘远、沉醉来源 | 阿里巴巴云原生公众号​前言台湾作家林清玄在接受记者采访的时候,如此评价自己 30 多年写作生涯:“第一个十年我才华横溢,‘贼光闪现’,令周边黯然失色;第二个十年,我终于‘宝光现形’,不再去抢风头,反而与身边的美丽相得益彰;进入第三个十年,繁华落尽见真醇,我进入了‘醇光初现’的阶段,真正体味到了境界之美”。​长夜有穷,真水无香。领略过了 K8s“身在江

avatar K8S/Kubernetes

如何基于 K8s 构建下一代 DevOps 平台?

作者 | 孙健波(天元)导读:当前云原生 DevOps 体系现状如何?面临哪些挑战?如何通过 OAM 解决云原生 DevOps 场景下的诸多问题?云原生开发应用模型 OAM(Open Application Model) 社区核心成员孙健波将为大家一一解答,并分享如何基于 OAM 和 Kubernetes 打造无限能力的下一代 DevOps 平台。什么是 DevOps?为什么基于 Kub

avatar K8S/Kubernetes

k8s 火了!

2020,上云之年,产品云端化成为一种趋势。在一线城市,很多公司都已经构建了自己的私有云环境,比如阿里云、网易云、华为云等。而Kubernetes 作为基于容器编排领域的王者,具备扩展...

avatar K8S/Kubernetes