Add vaultwarden with no backup

Ref: #7

Signed-off-by: Oleg Zaytsev <mail@olegzaytsev.com>

jsonnet/environments/xeon.colega.eu/mimir/main.jsonnet

@@ -2,10 +2,10 @@ local k = import 'github.com/grafana/jsonnet-libs/ksonnet-util/kausal.libsonnet'
 
 local credentials = import 'credentials.libsonnet';
 local ingress = import 'ingress.libsonnet';
+local json_write_proxy = import 'json_write_proxy.libsonnet';
 local mimir = import 'mimir/mimir.libsonnet';
 local ring = import 'ring.libsonnet';
 local scaling = import 'scaling.libsonnet';
-local json_write_proxy = import 'json_write_proxy.libsonnet';
 
 mimir + scaling + credentials + ring + ingress + json_write_proxy {
   namespace: k.core.v1.namespace.new($._config.namespace),

jsonnet/environments/xeon.colega.eu/vault.colega.eu/main.jsonnet

@@ -0,0 +1,49 @@
+local k = import 'github.com/grafana/jsonnet-libs/ksonnet-util/kausal.libsonnet',
+      container = k.core.v1.container,
+      containerPort = k.core.v1.containerPort,
+      configMap = k.core.v1.configMap,
+      pvc = k.core.v1.persistentVolumeClaim,
+      statefulSet = k.apps.v1.statefulSet,
+      volumeMount = k.core.v1.volumeMount;
+
+local ingress = import 'traefik/ingress.libsonnet';
+
+{
+  _images+:: {
+    vaultwarden: 'vaultwarden/server:1.25.2',
+  },
+
+  _config+:: {
+    cluster_name: 'xeon.colega.eu',
+    namespace: 'vault-colega-eu',
+
+    pvc_size+: '8Gi',
+    pvc_class+: 'local-path',
+  },
+
+  namespace: k.core.v1.namespace.new($._config.namespace),
+
+  local data_pvc =
+    pvc.new() +
+    pvc.mixin.spec.resources.withRequests({ storage: $._config.pvc_size }) +
+    pvc.mixin.spec.withAccessModes(['ReadWriteOnce']) +
+    pvc.mixin.spec.withStorageClassName($._config.pvc_class) +
+    pvc.mixin.metadata.withName('vaultwarden-data'),
+
+  vaultwarden+: {
+    container::
+      container.new('vaultwarden', $._images.vaultwarden)
+      + container.withPorts([containerPort.new('http', 80)])
+      + container.withVolumeMountsMixin([volumeMount.new('vaultwarden-data', '/data')])
+      + k.util.resourcesRequests('500m', '256Mi'),
+
+    statefulSet:
+      statefulSet.new('vaultwarden', 1, [self.container], data_pvc)
+      + statefulSet.mixin.spec.withServiceName('vaultwarden'),
+
+    service: k.util.serviceFor(self.statefulSet),
+
+    ingress: ingress.new(['vault.colega.eu'])
+             + ingress.withService('vaultwarden', 'vaultwarden-http'),
+  },
+}

jsonnet/environments/xeon.colega.eu/vault.colega.eu/spec.json

@@ -0,0 +1,14 @@
+{
+  "apiVersion": "tanka.dev/v1alpha1",
+  "kind": "Environment",
+  "metadata": {
+    "name": "environments/xeon.colega.eu/vault.colega.eu"
+  },
+  "spec": {
+    "apiServer": "https://xeon.colega.eu:6443",
+    "namespace": "vault-colega-eu",
+    "resourceDefaults": {},
+    "expectVersions": {},
+    "injectLabels": true
+  }
+}