Skip to content

Commit 8f41bde

Browse files
abrhanavabrhanav
authored
Merge pull request #101 from navikt/dev
[KAIZEN-0] fjern fss
2 parents 111bec4 + dd9f45f commit 8f41bde

File tree

4 files changed

+32
-272
lines changed

4 files changed

+32
-272
lines changed

.github/workflows/main.yml

Lines changed: 2 additions & 36 deletions
Original file line numberDiff line numberDiff line change
@@ -57,24 +57,7 @@ jobs:
5757
identity_provider: ${{ secrets.NAIS_WORKLOAD_IDENTITY_PROVIDER }}
5858
project_id: ${{ vars.NAIS_MANAGEMENT_PROJECT_ID }}
5959

60-
deploy-qa:
61-
name: Deploy to preprod
62-
needs: build-and-push
63-
if: github.ref == 'refs/heads/dev'
64-
runs-on: ubuntu-latest
65-
permissions:
66-
contents: read
67-
id-token: write
68-
steps:
69-
- uses: actions/checkout@v4
70-
- uses: nais/deploy/actions/deploy@v2
71-
env:
72-
PRINT_PAYLOAD: true
73-
CLUSTER: dev-fss
74-
RESOURCE: .nais/preprod.yml
75-
VAR: image=${{ needs.build-and-push.outputs.image }}
76-
77-
deploy-dev-gcp:
60+
deploy-dev:
7861
name: Deploy to dev-gcp
7962
needs: build-and-push
8063
if: github.ref == 'refs/heads/dev'
@@ -92,23 +75,6 @@ jobs:
9275
VAR: image=${{ needs.build-and-push.outputs.image }}
9376

9477
deploy-prod:
95-
name: Deploy to prod
96-
needs: build-and-push
97-
if: github.ref == 'refs/heads/master'
98-
runs-on: ubuntu-latest
99-
permissions:
100-
contents: read
101-
id-token: write
102-
steps:
103-
- uses: actions/checkout@v4
104-
- uses: nais/deploy/actions/deploy@v2
105-
env:
106-
PRINT_PAYLOAD: true
107-
CLUSTER: prod-fss
108-
RESOURCE: .nais/prod.yml
109-
VAR: image=${{ needs.build-and-push.outputs.image }}
110-
111-
deploy-prod-gcp:
11278
name: Deploy to prod gcp
11379
needs: build-and-push
11480
if: github.ref == 'refs/heads/master'
@@ -122,5 +88,5 @@ jobs:
12288
env:
12389
PRINT_PAYLOAD: true
12490
CLUSTER: prod-gcp
125-
RESOURCE: .nais/prod-gcp.yml
91+
RESOURCE: .nais/prod.yml
12692
VAR: image=${{ needs.build-and-push.outputs.image }}

.nais/preprod.yml

Lines changed: 0 additions & 109 deletions
This file was deleted.

.nais/prod-gcp.yml

Lines changed: 0 additions & 107 deletions
This file was deleted.

.nais/prod.yml

Lines changed: 30 additions & 20 deletions
Original file line numberDiff line numberDiff line change
@@ -8,7 +8,6 @@ metadata:
88
spec:
99
image: {{image}}
1010
port: 7070
11-
webproxy: true
1211
liveness:
1312
path: /internal/isAlive
1413
initialDelay: 20
@@ -45,53 +44,64 @@ spec:
4544
claims:
4645
extra:
4746
- "NAVident"
48-
vault:
49-
enabled: true
50-
paths:
51-
- kvPath: /serviceuser/data/prod/srvmodiarobotapi
52-
mountPath: /var/run/secrets/nais.io/srvmodiarobotapi
53-
- kvPath: /serviceuser/data/prod/srvmodiabrukerdialog
54-
mountPath: /var/run/secrets/nais.io/service_user
55-
- kvPath: /serviceuser/data/prod/srvssolinux
56-
mountPath: /var/run/secrets/nais.io/srvssolinux
57-
- kvPath: /apikey/appdynamics/dev
58-
mountPath: /var/run/secrets/nais.io/vault
47+
accessPolicy:
48+
outbound:
49+
external:
50+
- host: veilarboppfolging.prod-fss-pub.nais.io
51+
- host: nom-api.intern.prod.nav.no
52+
- host: pdl-api.prod-fss-pub.nais.io
53+
- host: saf.prod-fss-pub.nais.io
54+
- host: digdir-krr-proxy.intern.nav.no
55+
- host: sokos-utbetaldata.prod-fss-pub.nais.io
56+
- host: sf-henvendelse-api-proxy.prod-fss-pub.nais.io
57+
- host: sokos-kontoregister-person.intern.nav.no
58+
inbound:
59+
rules:
60+
- application: rpa-medlemskap-og-avgift
61+
namespace: team-rpa
62+
cluster: prod-fss
63+
- application: ida
64+
cluster: prod-fss
65+
namespace: traktor
66+
- application: rpa-nav-okonomi-stonad
67+
cluster: prod-fss
68+
namespace: team-rpa-nos
5969
env:
6070
- name: IDENT_ALLOW_LIST
6171
value: "R154727,R156418,R158345,R158346,R160569,R165950,R165951,R165952,R150818,R150819,R155645,R162552,D159483,U143410"
6272
- name: OPPFOLGING_URL
63-
value: "https://veilarboppfolging.intern.nav.no/veilarboppfolging/api"
73+
value: "https://veilarboppfolging.prod-fss-pub.nais.io/veilarboppfolging/api"
6474
- name: OPPFOLGING_SCOPE
6575
value: "prod-fss:pto:veilarboppfolging"
6676
- name: NOM_URL
6777
value: "https://nom-api.intern.nav.no"
6878
- name: NOM_SCOPE
6979
value: "prod-gcp:nom:nom-api"
7080
- name: PDL_URL
71-
value: "https://pdl-api.nais.adeo.no/graphql"
81+
value: "https://pdl-api.prod-fss-pub.nais.io/graphql"
7282
- name: PDL_SCOPE
7383
value: "prod-fss:pdl:pdl-api"
7484
- name: SAF_URL
75-
value: "https://saf.nais.adeo.no/graphql"
85+
value: "https://saf.prod-fss-pub.nais.io/graphql"
7686
- name: SAF_SCOPE
7787
value: "prod-fss:teamdokumenthandtering:saf"
7888
- name: SKRIVESTOTTE_URL
7989
value: "https://modiapersonoversikt-skrivestotte.intern.nav.no"
8090
- name: DIGDIR_KRR_URL
81-
value: "https://digdir-krr-proxy.intern.nav.no"
91+
value: "https://digdir-krr-proxy.intern.nav.no/"
8292
- name: DIGDIR_KRR_SCOPE
8393
value: "prod-gcp:team-rocket:digdir-krr-proxy"
8494
- name: UTBETALDATA_SOKOS_URL
85-
value: "https://sokos-utbetaldata.intern.nav.no/utbetaldata/api"
95+
value: "https://sokos-utbetaldata.prod-fss-pub.nais.io/utbetaldata/api"
8696
- name: UTBETAL_SOKOS_SCOPE
8797
value: "prod-fss:okonomi:sokos-utbetaldata"
8898
- name: SF_HENVENDELSE_URL
89-
value: "https://sf-henvendelse.intern.nav.no/api"
99+
value: "https://sf-henvendelse-api-proxy.prod-fss-pub.nais.io/api"
90100
- name: SF_HENVENDELSE_SCOPE
91-
value: "prod-fss:teamcrm:sf-henvendelse"
101+
value: "prod-fss:teamnks:sf-henvendelse-api-proxy"
92102
- name: KONTOREGISTER_REST_URL
93103
value: "https://sokos-kontoregister-person.intern.nav.no/api/system"
94104
- name: KONTOREGISTER_SCOPE
95105
value: "prod-gcp:okonomi:sokos-kontoregister-person"
96106
- name: CXF_SECURE_LOG
97-
value: "enabled"
107+
value: "enabled"

0 commit comments

Comments
 (0)