Johanes Glenn alevz257

## frontend.yaml
apiVersion: serving.knative.dev/v1
kind: Service
metadata:
  name: frontend-crun
  labels:
    cloud.googleapis.com/location: asia-southeast2
  annotations:
    run.googleapis.com/description: boa-frontend-crun
    run.googleapis.com/ingress: all
    run.googleapis.com/launch-stage: BETA

## gateway-ilb.yaml
kind: Gateway
apiVersion: gateway.networking.k8s.io/v1beta1
metadata:
  name: ilb-boa-test
spec:
  gatewayClassName: gke-l7-rilb
  listeners:
  - name: http
    protocol: HTTP
    port: 80

## backendconfig.yaml
apiVersion: cloud.google.com/v1
kind: BackendConfig
metadata:
  name: boa-bconf
spec:
  cdn:
    enabled: true
  securityPolicy:
    name: "<cloud armor policy name>"
  healthCheck:

## deployment-2.yaml
#default frontend deployment
...
      affinity:
        podAffinity:
          preferredDuringSchedulingIgnoredDuringExecution:
          - weight: 100
            podAffinityTerm:
              labelSelector:
                matchExpressions:
                - key: app

## deployment.yaml
#default deployment of account-db
...
        volumeMounts:
        - name: postgresdb
          mountPath: /var/lib/postgresql/data
          subPath: postgres
      volumes:
      - name: postgresdb
        persistentVolumeClaim:
          claimName: pvc-accounts-db-demo

## storageClass.yaml
kind: StorageClass
apiVersion: storage.k8s.io/v1
metadata:
  name: regpd-ab-class
provisioner: pd.csi.storage.gke.io
parameters:
  type: pd-ssd
  replication-type: regional-pd
volumeBindingMode: WaitForFirstConsumer
allowedTopologies:

## ingress.yaml
apiVersion: networking.k8s.io/v1
kind: Ingress
metadata:
  name: basic-ingress
  annotations:
    kubernetes.io/ingress.class: "gce"
spec:
  tls:
  - secretName: cert-alvz
  rules:

## backendconfig.yaml
apiVersion: cloud.google.com/v1
kind: BackendConfig
metadata:
  name: config-default
spec:
  iap:
    enabled: true
    oauthclientCredentials:
      secretName: my-secret

## gateway-tls-staticip.yaml
apiVersion: gateway.networking.k8s.io/v1beta1
kind: Gateway
metadata:
  name: my-gateway
  annotations:
    networking.gke.io/certmap: gateway-test
spec:
  gatewayClassName: gke-l7-global-external-managed
  addresses:
  - type: NamedAddress

## gateway.yaml
apiVersion: gateway.networking.k8s.io/v1beta1
kind: Gateway
metadata:
  name: my-gateway
spec:
  gatewayClassName: gke-l7-global-external-managed
  listeners:
  - name: http
    protocol: HTTP
    port: 80
	apiVersion: serving.knative.dev/v1
	kind: Service
	metadata:
	name: frontend-crun
	labels:
	cloud.googleapis.com/location: asia-southeast2
	annotations:
	run.googleapis.com/description: boa-frontend-crun
	run.googleapis.com/ingress: all
	run.googleapis.com/launch-stage: BETA
	kind: Gateway
	apiVersion: gateway.networking.k8s.io/v1beta1
	metadata:
	name: ilb-boa-test
	spec:
	gatewayClassName: gke-l7-rilb
	listeners:
	- name: http
	protocol: HTTP
	port: 80
	apiVersion: cloud.google.com/v1
	kind: BackendConfig
	metadata:
	name: boa-bconf
	spec:
	cdn:
	enabled: true
	securityPolicy:
	name: "<cloud armor policy name>"
	healthCheck:
	#default frontend deployment
	...
	affinity:
	podAffinity:
	preferredDuringSchedulingIgnoredDuringExecution:
	- weight: 100
	podAffinityTerm:
	labelSelector:
	matchExpressions:
	- key: app
	#default deployment of account-db
	...
	volumeMounts:
	- name: postgresdb
	mountPath: /var/lib/postgresql/data
	subPath: postgres
	volumes:
	- name: postgresdb
	persistentVolumeClaim:
	claimName: pvc-accounts-db-demo
	kind: StorageClass
	apiVersion: storage.k8s.io/v1
	metadata:
	name: regpd-ab-class
	provisioner: pd.csi.storage.gke.io
	parameters:
	type: pd-ssd
	replication-type: regional-pd
	volumeBindingMode: WaitForFirstConsumer
	allowedTopologies:
	apiVersion: networking.k8s.io/v1
	kind: Ingress
	metadata:
	name: basic-ingress
	annotations:
	kubernetes.io/ingress.class: "gce"
	spec:
	tls:
	- secretName: cert-alvz
	rules: