Glance

apiVersion: yaook.cloud/v1
kind: GlanceDeployment
metadata:
  name: glance
spec:
  keystoneRef:
    name: keystone
  database:
    replicas: 1
    proxy:
      replicas: 1
    backup:
      schedule: "0 * * * *"
  memcached: {}
  api:
    replicas: 1
    ingress:
      fqdn: "glance.yaook.cloud"
      port: 32443
  glanceConfig:
    glance_store:
      default_store: "rbd"
  backends:
    ceph:
      keyringReference: glance-client-key
      keyringUsername: glance
      keyringPoolname: glance-pool
#      cephConfig:
#        global:
#          "mon_host": "rook-ceph-mon-a.rook-ceph:6789,rook-ceph-mon-b.rook-ceph:6789,rook-ceph-mon-c.rook-ceph:6789"
  region:
    name: MyRegion
  policy:
    "context_is_admin": "role:admin"
  issuerRef:
    name: ca-issuer
  targetRelease: train

Glance using a file based backend

Note that your selected Storageclass muss support ReadWriteMany Volumes

apiVersion: yaook.cloud/v1
kind: GlanceDeployment
metadata:
  name: glance
spec:
  keystoneRef:
    name: keystone
  database:
    replicas: 1
    proxy:
      replicas: 1
    backup:
      schedule: "0 * * * *"
  memcached: {}
  api:
    replicas: 1
    ingress:
      fqdn: "glance.yaook.cloud"
      port: 32443
  glanceConfig:
    glance_store:
      default_store: "file"
  backends:
    file:
      storageSize: 150G
      storageClassName: mycoolstorageclass
  region:
    name: MyRegion
  policy:
    "context_is_admin": "role:admin"
  issuerRef:
    name: ca-issuer
  targetRelease: train

Specifying secrets in the configuration

To include confidential values in the configuration you can use glanceSecrets. This allows use to reference an external secret which is included at a specific path in the configuration

apiVersion: v1
kind: Secret
metadata:
  name: mysecret
data:
  mykey: "SomeValueAsBase64"
---
apiVersion: yaook.cloud/v1
kind: GlanceDeployment
metadata:
  name: glance
spec:
  keystoneRef:
    name: keystone
  database:
    replicas: 1
    proxy:
      replicas: 1
    backup:
      schedule: "0 * * * *"
  memcached: {}
  api:
    replicas: 1
    ingress:
      fqdn: "glance.yaook.cloud"
      port: 32443
  glanceConfig:
    glance_store:
      default_store: "rbd"
  glanceSecrets:
    - secretName: mysecret
      items:
        - key: mykey
          path: /DEFAULT/transport_url
  backends:
    ceph:
      keyringReference: glance-client-key
      keyringUsername: glance
      keyringPoolname: glance-pool
#      cephConfig:
#        global:
#          "mon_host": "rook-ceph-mon-a.rook-ceph:6789,rook-ceph-mon-b.rook-ceph:6789,rook-ceph-mon-c.rook-ceph:6789"
  region:
    name: MyRegion
  policy:
    "context_is_admin": "role:admin"
  targetRelease: train