Skip to content

Aibroker kmodels #275

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Open
wants to merge 13 commits into
base: aibroker
Choose a base branch
from
Open

Aibroker kmodels #275

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
13 commits
Select commit Hold shift + click to select a range
c0a2641
initial change for the kmodels
Hardik-Prajapati-10 Mar 25, 2025
a3ebabd
written job for oc annotation
Hardik-Prajapati-10 Mar 26, 2025
631f1fc
removed duplicate values
Hardik-Prajapati-10 Mar 26, 2025
2dc534f
K-model templatization
nikitakumble Mar 26, 2025
f93ea27
env added to root-application for kmodel
nikitakumble Mar 26, 2025
7ffc8fb
added argo sync wave
Hardik-Prajapati-10 Mar 26, 2025
43397cb
Changes in aibroker-watcher file
nikitakumble Mar 26, 2025
03f5c29
Minor changes in kmodels files
nikitakumble Mar 26, 2025
9855fce
update kmodel generator file
drashtimalviya1207 Apr 1, 2025
e2fd92e
updates in kmodels
nikitakumble Apr 2, 2025
e1acb8c
changes in kmodel files names
nikitakumble Apr 2, 2025
e346b24
sync wave changed in kmodel
nikitakumble Apr 2, 2025
dcd424a
sync-options updated
nikitakumble Apr 3, 2025
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
11 changes: 11 additions & 0 deletions instance-applications/113-ibm-kmodels/Chart.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,11 @@
apiVersion: v2
name: ibm-kmodels
description: IBM KMODELS
type: application
version: 1.0.0

dependencies:
- name: junitreporter
version: 1.0.0
repository: "file://../../sub-charts/junitreporter/"
condition: junitreporter.devops_mongo_uri != ""
3 changes: 3 additions & 0 deletions instance-applications/113-ibm-kmodels/README.md
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,3 @@
IBM Kmodels
===============================================================================
Deploy and configure kmodels storage with configurable version
7 changes: 7 additions & 0 deletions instance-applications/113-ibm-kmodels/templates/01-kmodel-namespace.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,7 @@
---
apiVersion: v1
kind: Namespace
metadata:
name: "{{ .Values.aibroker_namespace }}"
annotations:
argocd.argoproj.io/sync-wave: "137"
31 changes: 31 additions & 0 deletions instance-applications/113-ibm-kmodels/templates/02-kmodel-secret.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,31 @@
---
apiVersion: v1
kind: Secret
type: Opaque
metadata:
name: km-s3-secret
namespace: "{{ .Values.aibroker_namespace }}"
annotations:
argocd.argoproj.io/sync-wave: "138"
{{- if eq .Values.mas_aibroker_storage_provider "aws" }}
serving.kserve.io/s3-endpoint: "{{ .Values.mas_aibroker_storage_host }}"
{{- else if eq .Values.mas_aibroker_storage_provider "minio" }}
serving.kserve.io/s3-endpoint: "{{ .Values.mas_aibroker_storage_host }}:{{ .Values.mas_aibroker_storage_port }}"
{{- end }}
{{- if eq .Values.mas_aibroker_storage_ssl "false" }}
serving.kserve.io/s3-usehttps: "0"
{{- else }}
serving.kserve.io/s3-usehttps: "1"
{{- end }}
{{- if and (eq .Values.mas_aibroker_storage_provider "minio") (not .Values.mas_aibroker_storage_region | empty) }}
serving.kserve.io/s3-region: "{{ .Values.mas_aibroker_storage_region }}"
{{- end }}
stringData:
AWS_ACCESS_KEY_ID: "{{ .Values.mas_aibroker_storage_accesskey}}"
AWS_SECRET_ACCESS_KEY: "{{ .Values.mas_aibroker_storage_secretkey}}"
S3_ACCESS_KEY: "{{ .Values.mas_aibroker_storage_accesskey}}"
S3_SECRET_KEY: "{{ .Values.mas_aibroker_storage_secretkey}}"
S3_HOST: "{{ .Values.mas_aibroker_storage_host}}"
S3_PORT: "{{ .Values.mas_aibroker_storage_port}}"
S3_REGION: "{{ .Values.mas_aibroker_storage_region}}"
S3_SSL: "{{ .Values.mas_aibroker_storage_ssl}}"
47 changes: 47 additions & 0 deletions instance-applications/113-ibm-kmodels/templates/03-kmodel-istio.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,47 @@
---
apiVersion: security.istio.io/v1beta1
kind: PeerAuthentication
metadata:
name: default
namespace: opendatahub
annotations:
argocd.argoproj.io/sync-wave: "139"
argocd.argoproj.io/sync-options: SkipDryRunOnMissingResource=true

spec:
mtls:
mode: PERMISSIVE
---
apiVersion: networking.istio.io/v1beta1
kind: DestinationRule
metadata:
name: ds-pipeline-instance
namespace: opendatahub
annotations:
argocd.argoproj.io/sync-wave: "140"
argocd.argoproj.io/sync-options: SkipDryRunOnMissingResource=true
spec:
host: ds-pipeline-instance.opendatahub.svc.cluster.local
trafficPolicy:
portLevelSettings:
- port:
number: 8888
tls:
mode: DISABLE
---
apiVersion: networking.istio.io/v1beta1
kind: DestinationRule
metadata:
name: minio-instance
namespace: opendatahub
annotations:
argocd.argoproj.io/sync-wave: "141"
argocd.argoproj.io/sync-options: SkipDryRunOnMissingResource=true
spec:
host: minio-instance.opendatahub.svc.cluster.local
trafficPolicy:
portLevelSettings:
- port:
number: 9000
tls:
mode: DISABLE
43 changes: 43 additions & 0 deletions instance-applications/113-ibm-kmodels/templates/04-kmodel-networkpolicies.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,43 @@
---
apiVersion: networking.k8s.io/v1
kind: NetworkPolicy
metadata:
name: km-instance
namespace: "{{ .Values.aibroker_namespace }}"
annotations:
argocd.argoproj.io/sync-wave: "142"
spec:
podSelector:
matchLabels:
kmodels: instance
part-of: kmodels
policyTypes:
- Ingress
ingress:
- ports:
- port: 3000
- port: 8443

---
apiVersion: networking.k8s.io/v1
kind: NetworkPolicy
metadata:
name: ds-pipelines-km-instance
namespace: "{{ .Values.aibroker_namespace }}"
annotations:
argocd.argoproj.io/sync-wave: "143"
spec:
podSelector:
matchLabels:
app: ds-pipeline-instance
component: data-science-pipelines
ingress:
- ports:
- protocol: TCP
port: 8888
from:
- podSelector:
matchLabels:
app: km-controller
policyTypes:
- Ingress
125 changes: 125 additions & 0 deletions instance-applications/113-ibm-kmodels/templates/05-kmodel-store.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,125 @@
---
apiVersion: v1
kind: ConfigMap
metadata:
name: km-store
namespace: "{{ .Values.aibroker_namespace }}"
annotations:
argocd.argoproj.io/sync-wave: "144"
labels:
app: km-store
data:
STORE_BUCKET: "{{ .Values.mas_aibroker_storage_templates_bucket }}"
# Certificate files folder (default: /etc/ssl/certs)
CERTS_PATH: "/etc/ssl/certs"
# Private key (default: tls.key)
CERT_PRIVATE_KEY: "tls.key"
# Public certificate (default: tls.crt)
CERT_PUBLIC_CERTIFICATE: "tls.crt"
# Set to true to enable https server (default: true)
SUPPORT_HTTPS: "true"

---
apiVersion: v1
kind: Service
metadata:
name: km-store
namespace: "{{ .Values.aibroker_namespace }}"
annotations:
argocd.argoproj.io/sync-wave: "145"
spec:
ports:
- name: http
port: 3000
targetPort: http
- name: https
port: 8443
targetPort: https
selector:
app: km-store
type: ClusterIP

---
apiVersion: apps/v1
kind: Deployment
metadata:
name: km-store
namespace: "{{ .Values.aibroker_namespace }}"
annotations:
argocd.argoproj.io/sync-wave: "146"
labels:
app: km-store
component: store
kmodels: instance
part-of: kmodels
spec:
replicas: 1
selector:
matchLabels:
app: km-store
kmodels: instance
part-of: kmodels
template:
metadata:
labels:
app: km-store
component: store
kmodels: instance
part-of: kmodels
spec:
restartPolicy: Always
volumes:
- name: ssh-key
secret:
secretName: "{{ .Values.ssh_secret_name }}"
imagePullSecrets:
- name: "{{ .Values.pullSecretName }}"
containers:
- name: store
image: "{{ .Values.image_store }}"
imagePullPolicy: Always
securityContext:
readOnlyRootFilesystem: false
allowPrivilegeEscalation: false
privileged: false
runAsNonRoot: true
capabilities:
drop:
- ALL
ports:
- name: http
containerPort: 3000
- name: https
containerPort: 8443
envFrom:
- configMapRef:
name: km-store
- secretRef:
name: km-s3-secret
resources:
requests:
memory: "64Mi"
cpu: "50m"
ephemeral-storage: "1Gi"
limits:
memory: "256Mi"
cpu: "100m"
ephemeral-storage: "2Gi"
livenessProbe:
httpGet:
path: /version
port: 8443
scheme: HTTPS
initialDelaySeconds: 15
periodSeconds: 500
readinessProbe:
httpGet:
path: /version
port: 8443
scheme: HTTPS
initialDelaySeconds: 5
periodSeconds: 500
volumeMounts:
- mountPath: "/etc/ssl/certs"
name: ssh-key
readOnly: true
Loading
Loading