nextcloud(backup): pin backup pod to nextcloud's node via podAffinity
The weekly backup mounts the same RWO PVC (proxmox-lvm-encrypted) as the main nextcloud deployment. Single-node attach — the backup pod can never mount the volume if it lands on a different node, and was stuck in ContainerCreating for 6+ hours when cron fired today. Add pod_affinity (required, hostname topology) so the backup co-locates with the nextcloud app pod. Discovered via cluster-health probe; manual verify run scheduled on k8s-node3 next to nextcloud's pod and completed the rsync in seconds.
This commit is contained in:
Viktor Barzin
parent
a24cd7ceb7
commit
3489621a45
1 changed files with 19 additions and 0 deletions
|
|
@ -493,6 +493,25 @@ resource "kubernetes_cron_job_v1" "nextcloud-backup" {
|
||||||
spec {
|
spec {
|
||||||
restart_policy = "OnFailure"
|
restart_policy = "OnFailure"
|
||||||
|
|
||||||
|
# Backup mounts the same RWO PVC (proxmox-lvm-encrypted) as the
|
||||||
|
# main nextcloud pod, so it MUST schedule on the same node — the
|
||||||
|
# volume cannot attach to two nodes simultaneously. Without this
|
||||||
|
# the backup pod is stuck in ContainerCreating until cron retries.
|
||||||
|
affinity {
|
||||||
|
pod_affinity {
|
||||||
|
required_during_scheduling_ignored_during_execution {
|
||||||
|
label_selector {
|
||||||
|
match_labels = {
|
||||||
|
"app.kubernetes.io/name" = "nextcloud"
|
||||||
|
"app.kubernetes.io/instance" = "nextcloud"
|
||||||
|
}
|
||||||
|
}
|
||||||
|
topology_key = "kubernetes.io/hostname"
|
||||||
|
namespaces = [kubernetes_namespace.nextcloud.metadata[0].name]
|
||||||
|
}
|
||||||
|
}
|
||||||
|
}
|
||||||
|
|
||||||
container {
|
container {
|
||||||
name = "backup"
|
name = "backup"
|
||||||
image = "alpine:latest"
|
image = "alpine:latest"
|
||||||
|
|
|
||||||
Loading…
Add table
Add a link
Reference in a new issue