temp

Signed-off-by: YuChen <[email protected]>

Author: YCShen1010

velero/schedule/common-service-db/cs-db-br-resources.yaml

@@ -0,0 +1,55 @@
+# Service Account with necessary permissions
+apiVersion: v1
+kind: ServiceAccount
+metadata:
+  name: cs-db-backup-sa
+  namespace: <cs-db namespace>
+---
+# ClusterRole with required permissions
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRole
+metadata:
+  name: cs-db-backup-role
+rules:
+- apiGroups: [""]
+  resources: ["pods", "pods/exec", "configmaps", "jobs"]
+  verbs: ["get", "list", "create", "delete", "patch", "update"]
+- apiGroups: ["batch"]
+  resources: ["jobs"]
+  verbs: ["get", "list", "create", "delete", "patch", "update"]
+- apiGroups: ["postgresql.k8s.enterprisedb.io"]
+  resources: ["clusters"]
+  verbs: ["get", "list"]
+- apiGroups: ["route.openshift.io"]
+  resources: ["routes"]
+  verbs: ["get", "list"]
+- apiGroups: ["config.openshift.io"]
+  resources: ["ingresses"]
+  verbs: ["get", "list"]
+---
+# ClusterRoleBinding
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRoleBinding
+metadata:
+  name: cs-db-backup-binding
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: ClusterRole
+  name: cs-db-backup-role
+subjects:
+- kind: ServiceAccount
+  name: cs-db-backup-sa
+  namespace: <cs-db namespace>
+---
+# PVC for backup storage
+apiVersion: v1
+kind: PersistentVolumeClaim
+metadata:
+  name: cs-db-backup-pvc
+  namespace: <cs-db namespace>
+spec:
+  accessModes:
+  - ReadWriteOnce
+  resources:
+    requests:
+      storage: 10Gi

velero/schedule/common-service-db/test-cs-db-br-job.yaml

@@ -0,0 +1,65 @@
+apiVersion: batch/v1
+kind: Job
+metadata:
+  name: test-cs-db-backup
+  namespace: <cs-db namespace>
+spec:
+  template:
+    spec:
+      serviceAccountName: cs-db-backup-sa  # You'll need a service account with proper permissions
+      containers:
+      - name: cs-db-backup
+        image: registry.redhat.io/ubi8/ubi:latest
+        command: ["/bin/bash"]
+        args: ["/scripts/br_cs-db.sh", "backup", "<cs-db namespace>"]
+        volumeMounts:
+        - name: script-volume
+          mountPath: /scripts
+        - name: backup-storage
+          mountPath: /cs-db/cs-db-backup
+        env:
+        - name: HOME
+          value: /tmp
+      volumes:
+      - name: script-volume
+        configMap:
+          name: cs-db-br-configmap
+          defaultMode: 0755
+      - name: backup-storage
+        persistentVolumeClaim:
+          claimName: cs-db-backup-pvc  # You'll need a PVC for backup storage
+      restartPolicy: Never
+  backoffLimit: 3
+---
+apiVersion: batch/v1
+kind: Job
+metadata:
+  name: test-cs-db-restore
+  namespace: <cs-db namespace>
+spec:
+  template:
+    spec:
+      serviceAccountName: cs-db-backup-sa
+      containers:
+      - name: cs-db-restore
+        image: registry.redhat.io/ubi8/ubi:latest
+        command: ["/bin/bash"]
+        args: ["/scripts/br_cs-db.sh", "restore", "<cs-db namespace>"]
+        volumeMounts:
+        - name: script-volume
+          mountPath: /scripts
+        - name: backup-storage
+          mountPath: /cs-db/cs-db-backup
+        env:
+        - name: HOME
+          value: /tmp
+      volumes:
+      - name: script-volume
+        configMap:
+          name: cs-db-br-configmap
+          defaultMode: 0755
+      - name: backup-storage
+        persistentVolumeClaim:
+          claimName: cs-db-backup-pvc
+      restartPolicy: Never
+  backoffLimit: 3

velero/schedule/common-service-db/test-idp-update.yaml

@@ -0,0 +1,26 @@
+apiVersion: v1
+kind: Pod
+metadata:
+  name: test-idp-update
+  namespace: <cs-db namespace>
+spec:
+  serviceAccountName: cs-db-backup-sa
+  containers:
+  - name: idp-tester
+    image: registry.redhat.io/ubi8/ubi:latest
+    command: ["/bin/bash"]
+    args: ["-c", "while true; do sleep 30; done"]  # Keep pod running for manual testing
+    volumeMounts:
+    - name: script-volume
+      mountPath: /scripts
+    env:
+    - name: HOME
+      value: /tmp
+    - name: CSDB_NAMESPACE
+      value: "<cs-db namespace>"
+  volumes:
+  - name: script-volume
+    configMap:
+      name: cs-db-br-configmap
+      defaultMode: 0755
+  restartPolicy: Never