diff --git a/.github/workflows/deploy_msa_k8s.yml b/.github/workflows/deploy_msa_k8s.yml index aca45d7e..4ccdacd7 100644 --- a/.github/workflows/deploy_msa_k8s.yml +++ b/.github/workflows/deploy_msa_k8s.yml @@ -118,11 +118,4 @@ jobs: - name: eks kubectl apply run: | kubectl apply -f ./backend/apigateway/k8s/apigateway-depl.yml - kubectl rollout restart deployment apigateway-deployment - - # openvidu - - name: eks kubectl apply - run: | - kubectl apply -f ./k8s/openvidu-depl.yml - kubectl apply -f ./k8s/openvidu-service.yml - kubectl rollout restart deployment openvidu-deployment \ No newline at end of file + kubectl rollout restart deployment apigateway-deployment \ No newline at end of file diff --git a/k8s/ingress.yml b/k8s/ingress.yml index 96996570..247b6448 100644 --- a/k8s/ingress.yml +++ b/k8s/ingress.yml @@ -4,32 +4,21 @@ metadata: name: inong-ingress annotations: kubernetes.io/ingress.class: nginx -# nginx.ingress.kubernetes.io/ssl-passthrough: "true" -# nginx.ingress.kubernetes.io/backend-protocol: "HTTPS" -# # nginx.ingress.kubernetes.io/rewrite-target: /$1 # api-gateway에서 라우팅하므로 이부부은 주석 처리 되어야한다. - nginx.ingress.kubernetes.io/websocket-services: "openvidu-service" # 웹소켓 지원 cert-manager.io/cluster-issuer: letsencrypt-prod spec: # 아래 tls 부분을 추가! tls: - - hosts: - - "api.inong.shop" - secretName: inong-com-tls + - hosts: + - "api.inong.shop" + secretName: inong-com-tls rules: - - host: api.inong.shop - http: - paths: - - path: / - pathType: Prefix - backend: - service: - name: apigateway-service - port: - number: 80 # 서비스 포트를 적어 줘야 한다. - - path: /openvidu - pathType: Prefix - backend: - service: - name: openvidu-service - port: - number: 4443 \ No newline at end of file + - host: api.inong.shop + http: + paths: + - path: / + pathType: Prefix + backend: + service: + name: apigateway-service + port: + number: 80 # 서비스 포트를 적어 줘야 한다. \ No newline at end of file diff --git a/k8s/openvidu-depl.yml b/k8s/openvidu-depl.yml deleted file mode 100644 index 330f01a2..00000000 --- a/k8s/openvidu-depl.yml +++ /dev/null @@ -1,49 +0,0 @@ -apiVersion: apps/v1 -kind: Deployment -metadata: - name: openvidu-deployment - labels: - app: openvidu -spec: - replicas: 1 - selector: - matchLabels: - app: openvidu - template: - metadata: - labels: - app: openvidu - spec: - containers: - - name: openvidu-server - image: openvidu/openvidu-server-kms:latest # - # image: openvidu/openvidu-dev - ports: - - containerPort: 4443 - env: - - name: DOMAIN_OR_PUBLIC_IP - value: "api.inong.shop" - - name: OPENVIDU_PUBLICURL -# value: "https://api.inong.shop:4443/" - value: "https://api.inong.shop/openvidu/" - - name: OPENVIDU_SERVER_CE_PATH - value: "/openvidu" - - name: OPENVIDU_SECRET - valueFrom: - secretKeyRef: - name: inong-app-secrets - key: OPENVIDU_SECRET - - name: CERTIFICATE_TYPE - value: "owncert" - - name: CERTIFICATE_CERTIFICATE - value: /etc/letsencrypt/tls.crt - - name: CERTIFICATE_PRIVATE_KEY - value: /etc/letsencrypt/tls.key - volumeMounts: - - name: tls-secret - mountPath: /etc/letsencrypt - readOnly: true - volumes: - - name: tls-secret - secret: - secretName: inong-com-tls \ No newline at end of file diff --git a/k8s/openvidu-service.yml b/k8s/openvidu-service.yml deleted file mode 100644 index 52054f2b..00000000 --- a/k8s/openvidu-service.yml +++ /dev/null @@ -1,15 +0,0 @@ -apiVersion: v1 -kind: Service -metadata: - name: openvidu-service - labels: - app: openvidu -spec: - selector: - app: openvidu - ports: - - protocol: TCP - port: 4443 # opeidu server가 보안 웹소켓 통신을 위해 기본으로 사용하는 포트 - targetPort: 4443 - type: ClusterIP -