devops-toolkit/dot-sql@v1.0.2aws-postgresql-official
Type
Composition
Referenced XRD
SQL
Resources (19)
The following resources are composed to implement the referenced Composite Resource Definition (XRD).
Kind
Group
Version
VPC
ec2.aws.upbound.io
v1beta1
Subnet
ec2.aws.upbound.io
v1beta1
Subnet
ec2.aws.upbound.io
v1beta1
Subnet
ec2.aws.upbound.io
v1beta1
SubnetGroup
rds.aws.upbound.io
v1beta1
InternetGateway
ec2.aws.upbound.io
v1beta1
RouteTable
ec2.aws.upbound.io
v1beta1
Route
ec2.aws.upbound.io
v1beta1
MainRouteTableAssociation
ec2.aws.upbound.io
v1beta1
RouteTableAssociation
ec2.aws.upbound.io
v1beta1
RouteTableAssociation
ec2.aws.upbound.io
v1beta1
RouteTableAssociation
ec2.aws.upbound.io
v1beta1
SecurityGroup
ec2.aws.upbound.io
v1beta1
SecurityGroupRule
ec2.aws.upbound.io
v1beta1
Instance
rds.aws.upbound.io
v1beta1
ProviderConfig
postgresql.sql.crossplane.io
v1alpha1
Database
postgresql.sql.crossplane.io
v1alpha1
ProviderConfig
kubernetes.crossplane.io
v1alpha1
Object
kubernetes.crossplane.io
v1alpha1
YAML
kind: Composition
apiVersion: apiextensions.crossplane.io/v1
metadata:
name: aws-postgresql-official
creationTimestamp: null
labels:
db: postgresql
provider: aws-official
spec:
compositeTypeRef:
apiVersion: devopstoolkitseries.com/v1alpha1
kind: SQL
patchSets:
- name: metadata
patches:
- fromFieldPath: metadata.labels
resources:
- name: vpc
base:
apiVersion: ec2.aws.upbound.io/v1beta1
kind: VPC
spec:
forProvider:
cidrBlock: 10.0.0.0/16
enableDnsHostnames: true
enableDnsSupport: true
region: us-east-1
patches:
- fromFieldPath: spec.id
toFieldPath: metadata.name
- name: subnet-a
base:
apiVersion: ec2.aws.upbound.io/v1beta1
kind: Subnet
metadata:
labels:
zone: us-east-1a
spec:
forProvider:
availabilityZone: us-east-1a
cidrBlock: 10.0.0.0/24
region: us-east-1
vpcIdSelector:
matchControllerRef: true
patches:
- fromFieldPath: spec.id
toFieldPath: metadata.name
transforms:
- type: string
string:
fmt: "%s-a"
- name: subnet-b
base:
apiVersion: ec2.aws.upbound.io/v1beta1
kind: Subnet
metadata:
labels:
zone: us-east-1b
spec:
forProvider:
availabilityZone: us-east-1b
cidrBlock: 10.0.1.0/24
region: us-east-1
vpcIdSelector:
matchControllerRef: true
patches:
- fromFieldPath: spec.id
toFieldPath: metadata.name
transforms:
- type: string
string:
fmt: "%s-b"
- name: subnet-c
base:
apiVersion: ec2.aws.upbound.io/v1beta1
kind: Subnet
metadata:
labels:
zone: us-east-1c
spec:
forProvider:
availabilityZone: us-east-1c
cidrBlock: 10.0.2.0/24
region: us-east-1
vpcIdSelector:
matchControllerRef: true
patches:
- fromFieldPath: spec.id
toFieldPath: metadata.name
transforms:
- type: string
string:
fmt: "%s-c"
- name: subnetgroup
base:
apiVersion: rds.aws.upbound.io/v1beta1
kind: SubnetGroup
spec:
forProvider:
description: I'm too lazy to write a good description
region: us-east-1
subnetIdSelector:
matchControllerRef: true
patches:
- fromFieldPath: spec.id
toFieldPath: metadata.name
- name: gateway
base:
apiVersion: ec2.aws.upbound.io/v1beta1
kind: InternetGateway
spec:
forProvider:
region: us-east-1
vpcIdSelector:
matchControllerRef: true
patches:
- fromFieldPath: spec.id
toFieldPath: metadata.name
- name: routeTable
base:
apiVersion: ec2.aws.upbound.io/v1beta1
kind: RouteTable
spec:
forProvider:
region: us-east-1
vpcIdSelector:
matchControllerRef: true
patches:
- fromFieldPath: spec.id
toFieldPath: metadata.name
- name: route
base:
apiVersion: ec2.aws.upbound.io/v1beta1
kind: Route
spec:
forProvider:
destinationCidrBlock: 0.0.0.0/0
gatewayIdSelector:
matchControllerRef: true
region: us-east-1
routeTableIdSelector:
matchControllerRef: true
patches:
- fromFieldPath: spec.id
toFieldPath: metadata.name
- name: mainRouteTableAssociation
base:
apiVersion: ec2.aws.upbound.io/v1beta1
kind: MainRouteTableAssociation
spec:
forProvider:
region: us-east-1
routeTableIdSelector:
matchControllerRef: true
vpcIdSelector:
matchControllerRef: true
patches:
- fromFieldPath: spec.id
toFieldPath: metadata.name
- name: routeTableAssociation1a
base:
apiVersion: ec2.aws.upbound.io/v1beta1
kind: RouteTableAssociation
spec:
forProvider:
region: us-east-1
routeTableIdSelector:
matchControllerRef: true
subnetIdSelector:
matchControllerRef: true
matchLabels:
zone: us-east-1a
patches:
- fromFieldPath: spec.id
toFieldPath: metadata.name
transforms:
- type: string
string:
fmt: "%s-1a"
- name: routeTableAssociation1b
base:
apiVersion: ec2.aws.upbound.io/v1beta1
kind: RouteTableAssociation
spec:
forProvider:
region: us-east-1
routeTableIdSelector:
matchControllerRef: true
subnetIdSelector:
matchControllerRef: true
matchLabels:
zone: us-east-1b
patches:
- fromFieldPath: spec.id
toFieldPath: metadata.name
transforms:
- type: string
string:
fmt: "%s-1b"
- name: routeTableAssociation1c
base:
apiVersion: ec2.aws.upbound.io/v1beta1
kind: RouteTableAssociation
spec:
forProvider:
region: us-east-1
routeTableIdSelector:
matchControllerRef: true
subnetIdSelector:
matchControllerRef: true
matchLabels:
zone: us-east-1c
patches:
- fromFieldPath: spec.id
toFieldPath: metadata.name
transforms:
- type: string
string:
fmt: "%s-1c"
- name: securityGroup
base:
apiVersion: ec2.aws.upbound.io/v1beta1
kind: SecurityGroup
spec:
forProvider:
description: I am too lazy to write descriptions
region: us-east-1
vpcIdSelector:
matchControllerRef: true
patches:
- fromFieldPath: spec.id
toFieldPath: metadata.name
- name: securityGroupRule
base:
apiVersion: ec2.aws.upbound.io/v1beta1
kind: SecurityGroupRule
spec:
forProvider:
cidrBlocks:
- 0.0.0.0/0
description: I am too lazy to write descriptions
fromPort: 5432
protocol: tcp
region: us-east-1
securityGroupIdSelector:
matchControllerRef: true
toPort: 5432
type: ingress
patches:
- fromFieldPath: spec.id
toFieldPath: metadata.name
- name: rdsinstance
base:
apiVersion: rds.aws.upbound.io/v1beta1
kind: Instance
spec:
forProvider:
allocatedStorage: 200
dbSubnetGroupNameSelector:
matchControllerRef: true
engine: postgres
engineVersion: "15.3"
instanceClass: db.m5.large
passwordSecretRef:
key: password
namespace: crossplane-system
publiclyAccessible: true
region: us-east-1
skipFinalSnapshot: true
username: masteruser
vpcSecurityGroupIdSelector:
matchControllerRef: true
patches:
- fromFieldPath: spec.id
toFieldPath: metadata.name
- fromFieldPath: spec.parameters.size
toFieldPath: spec.forProvider.instanceClass
transforms:
- type: map
map:
large: db.m5.8xlarge
medium: db.m5.2xlarge
small: db.m5.large
- fromFieldPath: spec.parameters.version
toFieldPath: spec.forProvider.engineVersion
- fromFieldPath: spec.id
toFieldPath: spec.forProvider.passwordSecretRef.name
transforms:
- type: string
string:
fmt: "%s-password"
- fromFieldPath: spec.claimRef.namespace
toFieldPath: spec.forProvider.passwordSecretRef.namespace
- name: sql-config
base:
apiVersion: postgresql.sql.crossplane.io/v1alpha1
kind: ProviderConfig
metadata:
name: default
spec:
credentials:
connectionSecretRef:
namespace: crossplane-system
source: PostgreSQLConnectionSecret
sslMode: require
patches:
- fromFieldPath: spec.id
toFieldPath: metadata.name
- fromFieldPath: spec.id
toFieldPath: spec.credentials.connectionSecretRef.name
- fromFieldPath: spec.claimRef.namespace
toFieldPath: spec.credentials.connectionSecretRef.namespace
readinessChecks:
- type: None
- name: sql-db
base:
apiVersion: postgresql.sql.crossplane.io/v1alpha1
kind: Database
spec:
forProvider: {}
patches:
- fromFieldPath: spec.id
toFieldPath: metadata.name
- fromFieldPath: spec.id
toFieldPath: spec.providerConfigRef.name
readinessChecks:
- type: None
- name: kubernetes
base:
apiVersion: kubernetes.crossplane.io/v1alpha1
kind: ProviderConfig
spec:
credentials:
source: InjectedIdentity
patches:
- fromFieldPath: spec.id
toFieldPath: metadata.name
transforms:
- type: string
string:
fmt: "%s-sql"
readinessChecks:
- type: None
- name: sql-secret
base:
apiVersion: kubernetes.crossplane.io/v1alpha1
kind: Object
metadata:
name: sql-secret
spec:
forProvider:
manifest:
apiVersion: v1
data:
port: NTQzMg==
kind: Secret
metadata:
namespace: crossplane-system
references:
- patchesFrom:
apiVersion: rds.aws.upbound.io/v1beta1
fieldPath: spec.forProvider.username
kind: Instance
namespace: crossplane-system
toFieldPath: stringData.username
- patchesFrom:
apiVersion: v1
fieldPath: data.password
kind: Secret
namespace: crossplane-system
toFieldPath: data.password
- patchesFrom:
apiVersion: rds.aws.upbound.io/v1beta1
fieldPath: status.atProvider.address
kind: Instance
namespace: crossplane-system
toFieldPath: stringData.endpoint
patches:
- fromFieldPath: spec.id
toFieldPath: metadata.name
- fromFieldPath: spec.id
toFieldPath: spec.references[0].patchesFrom.name
- fromFieldPath: spec.id
toFieldPath: spec.references[1].patchesFrom.name
transforms:
- type: string
string:
fmt: "%s-password"
- fromFieldPath: spec.claimRef.namespace
toFieldPath: spec.references[1].patchesFrom.namespace
- fromFieldPath: spec.id
toFieldPath: spec.references[2].patchesFrom.name
- fromFieldPath: spec.id
toFieldPath: spec.forProvider.manifest.metadata.name
- fromFieldPath: spec.id
toFieldPath: spec.providerConfigRef.name
transforms:
- type: string
string:
fmt: "%s-sql"
- fromFieldPath: spec.claimRef.namespace
toFieldPath: spec.forProvider.manifest.metadata.namespace
writeConnectionSecretsToNamespace: crossplane-system