[stable/zed] Add Portworx CSI support (#1441)
\n\nCloses #1440
diff --git a/roles/portworx/templates/config.yml b/roles/portworx/templates/config.yml
new file mode 100644
index 0000000..5f8f604
--- /dev/null
+++ b/roles/portworx/templates/config.yml
@@ -0,0 +1,8 @@
+---
+apiVersion: v1
+kind: Secret
+metadata:
+ name: px-pure-secret
+ namespace: portworx
+stringData:
+ pure.json: '{{ portworx_pure_json | to_json }}'
diff --git a/roles/portworx/templates/portworx.yml b/roles/portworx/templates/portworx.yml
new file mode 100644
index 0000000..65bb35c
--- /dev/null
+++ b/roles/portworx/templates/portworx.yml
@@ -0,0 +1,80 @@
+# SOURCE: https://install.portworx.com/?comp=pxoperator
+
+apiVersion: v1
+kind: ServiceAccount
+metadata:
+ name: portworx-operator
+ namespace: kube-system
+---
+kind: ClusterRole
+apiVersion: rbac.authorization.k8s.io/v1
+metadata:
+ name: portworx-operator
+rules:
+ - apiGroups: ["*"]
+ resources: ["*"]
+ verbs: ["*"]
+---
+kind: ClusterRoleBinding
+apiVersion: rbac.authorization.k8s.io/v1
+metadata:
+ name: portworx-operator
+subjects:
+- kind: ServiceAccount
+ name: portworx-operator
+ namespace: kube-system
+roleRef:
+ kind: ClusterRole
+ name: portworx-operator
+ apiGroup: rbac.authorization.k8s.io
+---
+apiVersion: apps/v1
+kind: Deployment
+metadata:
+ name: portworx-operator
+ namespace: kube-system
+spec:
+ strategy:
+ rollingUpdate:
+ maxSurge: 1
+ maxUnavailable: 1
+ type: RollingUpdate
+ replicas: 1
+ selector:
+ matchLabels:
+ name: portworx-operator
+ template:
+ metadata:
+ labels:
+ name: portworx-operator
+ spec:
+ containers:
+ - name: portworx-operator
+ imagePullPolicy: Always
+ image: portworx/px-operator:23.10.5
+ command:
+ - /operator
+ - --verbose
+ - --driver=portworx
+ - --leader-elect=true
+ env:
+ - name: OPERATOR_NAME
+ value: portworx-operator
+ - name: POD_NAME
+ valueFrom:
+ fieldRef:
+ fieldPath: metadata.name
+ affinity:
+ podAntiAffinity:
+ requiredDuringSchedulingIgnoredDuringExecution:
+ - labelSelector:
+ matchExpressions:
+ - key: "name"
+ operator: In
+ values:
+ - portworx-operator
+ topologyKey: "kubernetes.io/hostname"
+ serviceAccountName: portworx-operator
+ # NOTE(mnaser): Add this to keep running on control plane
+ nodeSelector:
+ openstack-control-plane: enabled
diff --git a/roles/portworx/templates/storage_class.yml b/roles/portworx/templates/storage_class.yml
new file mode 100644
index 0000000..c935e24
--- /dev/null
+++ b/roles/portworx/templates/storage_class.yml
@@ -0,0 +1,10 @@
+kind: StorageClass
+apiVersion: storage.k8s.io/v1
+metadata:
+ name: general
+ annotations:
+ storageclass.kubernetes.io/is-default-class: "true"
+provisioner: pxd.portworx.com
+parameters:
+ backend: pure_block
+allowVolumeExpansion: true
diff --git a/roles/portworx/templates/storage_cluster.yml b/roles/portworx/templates/storage_cluster.yml
new file mode 100644
index 0000000..ae3f5a5
--- /dev/null
+++ b/roles/portworx/templates/storage_cluster.yml
@@ -0,0 +1,53 @@
+---
+apiVersion: v1
+kind: Namespace
+metadata:
+ name: portworx
+---
+kind: StorageCluster
+apiVersion: core.libopenstorage.org/v1
+metadata:
+ name: px-cluster-567cacc6-e39c-49da-9d35-2bafacfcf18c
+ namespace: portworx
+ annotations:
+ portworx.io/install-source: "https://install.portworx.com/?operator=true&mc=false&kbver=1.28.0&ns=portworx&oem=esse&user=2487eaa2-e557-4f68-8e87-9b56c0a4498f&b=true&iop=6&s=%22size%3D150%22&pureSanType=FC&ce=pure&c=px-cluster-567cacc6-e39c-49da-9d35-2bafacfcf18c&stork=true&csi=true&mon=true&tel=true&st=k8s&promop=true"
+ portworx.io/misc-args: "--oem esse"
+ portworx.io/disable-storage-class: "true"
+ portworx.io/pvc-controller-secure-port: "20257"
+spec:
+ image: portworx/oci-monitor:3.1.1
+ imagePullPolicy: Always
+ kvdb:
+ internal: true
+ cloudStorage:
+ deviceSpecs:
+ - size=150
+ secretsProvider: k8s
+ stork:
+ enabled: true
+ args:
+ webhook-controller: "true"
+ autopilot:
+ enabled: true
+ runtimeOptions:
+ default-io-profile: "6"
+ csi:
+ enabled: true
+ monitoring:
+ telemetry:
+ enabled: true
+ prometheus:
+ enabled: false
+ exportMetrics: true
+ env:
+ - name: PURE_FLASHARRAY_SAN_TYPE
+ value: "{{ portworx_pure_flasharray_san_type }}"
+ placement:
+ nodeAffinity:
+ requiredDuringSchedulingIgnoredDuringExecution:
+ nodeSelectorTerms:
+ - matchExpressions:
+ - key: openstack-control-plane
+ operator: In
+ values:
+ - "enabled"