generated from coulomb/repo-seed
docs: update issue-core deployment closeout
This commit is contained in:
@@ -7,7 +7,7 @@ railiance-platform.
|
||||
## Source layout
|
||||
|
||||
- Workload bundle: `issue-core/k8s/railiance/`
|
||||
- Image: `gitea.coulomb.social/coulomb/issue-core:0.2.0`
|
||||
- Image: `gitea.coulomb.social/coulomb/issue-core:0.2.1`
|
||||
- Container port and Service port: `8765`
|
||||
- Cluster Service URL: `http://issue-core.issue-core.svc.cluster.local:8765`
|
||||
- Tenant Application: `railiance-platform/argocd/applications/issue-core.application.yaml`
|
||||
@@ -18,31 +18,31 @@ therefore intentionally not duplicated in this bundle.
|
||||
|
||||
## Platform gates
|
||||
|
||||
The following pieces are owned by railiance-platform before the workload can
|
||||
be fully reconciled:
|
||||
The following pieces are owned by railiance-platform for the live pilot and for
|
||||
any future cluster replay:
|
||||
|
||||
- ArgoCD repository credentials and the project/app-of-apps convention.
|
||||
- The `issue-core` ArgoCD `Application`.
|
||||
- External Secrets Operator and a `ClusterSecretStore` named `openbao`.
|
||||
- OpenBao entries for the issue-core runtime Secret.
|
||||
|
||||
Until those gates exist, `kubectl kustomize k8s/railiance` can render locally,
|
||||
but the live `ExternalSecret` and `Deployment` are expected to wait.
|
||||
For the 2026-06-25 live deployment, these gates were satisfied and the
|
||||
`issue-core` Application reached Synced/Healthy with image `0.2.1`.
|
||||
|
||||
## Secret contract
|
||||
|
||||
Kubernetes Secret name: `issue-core-runtime`
|
||||
|
||||
Current issue-core manifest path, pending railiance-platform confirmation:
|
||||
Current issue-core manifest path:
|
||||
|
||||
```text
|
||||
platform/workloads/issue-core/issue-core/issue-core-runtime
|
||||
```
|
||||
|
||||
Credential route catalog id `issue-core-ingestion-api-key` is owned by
|
||||
railiance-platform/OpenBao and is still marked draft/path TBD in the local
|
||||
ops-warden catalog reviewed 2026-06-18. Confirm the canonical path before
|
||||
provisioning the live Secret.
|
||||
Credential custody is owned by railiance-platform/OpenBao. For agents, first
|
||||
use the non-secret route catalog entry `activity-core-issue-sink` to confirm
|
||||
the activity-core + issue-core pairing, and never request the value from
|
||||
ops-warden.
|
||||
|
||||
Required properties:
|
||||
|
||||
@@ -56,12 +56,12 @@ HTTP status codes, and created issue URLs.
|
||||
|
||||
## Build and publish
|
||||
|
||||
Use the published package as the image input. For a reproducible release image,
|
||||
pin the package version to the image tag:
|
||||
Build the checked-out source tree and publish a registry tag that ArgoCD can
|
||||
pull:
|
||||
|
||||
```bash
|
||||
docker build --build-arg ISSUE_CORE_VERSION="==0.2.0" -t gitea.coulomb.social/coulomb/issue-core:0.2.0 .
|
||||
docker push gitea.coulomb.social/coulomb/issue-core:0.2.0
|
||||
docker build -t gitea.coulomb.social/coulomb/issue-core:0.2.1 .
|
||||
docker push gitea.coulomb.social/coulomb/issue-core:0.2.1
|
||||
```
|
||||
|
||||
The Coulomb Gitea package is public-pullable for this image, so the workload
|
||||
|
||||
Reference in New Issue
Block a user