ADD: Unifi Controller / ArgoCD / Helm Version

reefland · reefland · commit d1a865226af0 · 2022-08-21T14:54:47.000-04:00
diff --git a/_extra_apps/README.md b/_extra_apps/README.md
@@ -32,10 +32,11 @@ Each Application uses this directory structure:
 * [Custom-Alerts](./custom-alerts/) - Alerts for Prometheus Operator Alertmanager for:
   * Node Hardware, ArgoCD Sync Issues, Traefik Ingress Error codes
 * [Goldilocks](./goldilocks/) - Uses [Vertical Pod Autoscaler (VPA)](./vpa/) to make recommendations on container limit and request recommendations, includes a dashboard.
-* [Mosquitto](./mosquitto/)  [Kustomize Based] - Eclipse Mosquitto is a lightweight MQTT Message Broker
+* [Mosquitto](./mosquitto/) [Kustomize Based] - Eclipse Mosquitto is a lightweight MQTT Message Broker
 * [Mosquitto](./mosquitto-exporter-argocd-helm/) [ArgoCD Helm Application Based] - Eclipse Mosquitto lightweight MQTT Message Broker
 * [Mosquitto-Exporter](./mosquitto-exporter/) - Exposes Mosquitto MQTT Broker Metrics as Prometheus Service Monitor
-* [Unifi Controller](./unifi-controller/) - Wireless Network Management Software from Ubiquiti
+* [Unifi Controller](./unifi-controller/) [Kustomize Based] -Wireless Network Management Software from Ubiquiti
+* [Unifi Controller](./unifi-controller-argocd-helm/) [ArgoCD Helm Application Based] - Wireless Network Management Software from Ubiquiti
 * [Unpoller-Exporter](./unpoller-exporter/) - Exposes [Unifi Controller](./unifi-controller/) Management Software Metrics as Prometheus Pod Monitor
 * [Vertical Pod Autoscaler (VPA)](./vpa/) - Enables ability to make container resource limit and request recommendations, used with [Goldilocks](./goldilocks/)
 * [Zigbee2MQTT](./zigbee2mqtt-argocd-helm/) - A Zigbee to MQTT ([Mosquitto](./mosquitto/)) Bridge
diff --git a/_extra_apps/unifi-controller-argocd-helm/READEME.md b/_extra_apps/unifi-controller-argocd-helm/READEME.md
@@ -0,0 +1,89 @@
+# Unifi Controller Wireless Network Management Software from Ubiquiti
+
+* Be sure to export a backup from your existing installation.  You will be able to import that backup into this installation.
+
+[Return to Application List](../)
+
+* Helm based ArgoCD application deployment
+* References a Kubernetes at Home Chart
+* Much simpler to configure than the Kustomize version
+* Uses 10 GiB Persistent Volume Storage
+
+Review file `unifi-controller-argocd-helm/applications/unifi.yaml`
+
+* Define the ArgoCD project to assign this application to
+* ArgoCD uses `default` project by default
+
+  ```yaml
+  spec:
+    project: default
+  ```
+
+* Define Time Zone to use
+
+  ```yaml
+    env:
+      TZ: "America/New York"
+  ```
+
+* Define Ingress Name, below uses "unifi.example.com"
+
+  ```yaml
+    ingress:
+      main:
+        enabled: true
+        annotations:
+          traefik.ingress.kubernetes.io/router.entrypoints: "websecure"
+          traefik.ingress.kubernetes.io/router.middlewares: "traefik-compress@kubernetescrd"
+        hosts:
+          - host: unifi.example.com
+            paths:
+              - path: /
+                pathType: Prefix
+  ```
+
+  * Annotation added to use SSL (websecure) port
+  * Annotation added to use compression middleware
+
+* Define Persistent Storage
+  * Storage needs to be large enough to hold Unifi Controller own internal database, backups and historical data
+  * A 10 Gib Persistent volume mounted at `/unfi` is created
+
+  ```yaml
+    persistence:
+      config:
+        enabled: true
+        type: pvc
+        mountPath: /unifi
+        accessMode: ReadWriteOnce
+        size: 10Gi
+        retain: true
+  ```
+
+* Service type is `LoadBalancer` and specific IP Address can be defined
+
+  ```yaml
+    service:
+      main:
+        enabled: true
+        type: LoadBalancer
+        loadBalancerIP: 192.168.10.242
+  ```
+
+---
+
+Note the Unifi Controller application can take several minutes to become ready.  Getting a `Bad Gateway` message after installation or upgrade is normal.  Monitor the container logs to see when it is ready, or just try again in a few minutes.
+
+---
+First time connecting should show this screen:
+![Unifi Controller Initial Installation Wizard](../unifi-controller/unifi-controller-initial-install.png)
+
+From here you can restore your configuration from a backup or start building your network from scratch.  
+
+* NOTE if you had to change the name or IP Address of your controller to get it working on Kubernetes, then will need to use your existing (old) UniFi Controller to push a configuration change to all your devices to tell them to start reporting to your new controller.
+
+One all the kinks are worked out, your network devices will start reporting in:
+
+![Unifi Controller Console Screen Shot](../unifi-controller/unifi-controller-screenshot.png)
+
+[Return to Application List](../)
diff --git a/_extra_apps/unifi-controller-argocd-helm/applications/unifi.yaml b/_extra_apps/unifi-controller-argocd-helm/applications/unifi.yaml
@@ -0,0 +1,94 @@
+
+# References:
+# https://artifacthub.io/packages/helm/k8s-at-home/unifi
+# https://github.com/k8s-at-home/library-charts/blob/main/charts/stable/common/values.yaml
+---
+apiVersion: argoproj.io/v1alpha1
+kind: Application
+metadata:
+  namespace: argocd
+  name: unifi-controller
+  # cascade deletes
+  finalizers:
+    - resources-finalizer.argocd.argoproj.io
+  annotations:
+    argocd.argoproj.io/sync-wave: "12"  # Lower the number the sooner to deploy
+spec:
+  project: default
+  revisionHistoryLimit: 3
+
+  source:
+    chart: unifi
+    repoURL: https://k8s-at-home.com/charts/
+    targetRevision: 5.1.2
+    helm:
+      values: |
+        image:
+          # renovate: datasource=docker depName=jacobalberty/unifi
+          tag: "v7.1.68"
+
+        controller:
+          enabled: true
+          # Valid options are deployment, daemonset or statefulset
+          type: statefulset
+          revisionHistoryLimit: 3
+
+        env:
+          TZ: "America/New York"
+          UNIFI_UID: "999"
+          UNIFI_GID: "999"
+          JVM_INIT_HEAP_SIZE: "768M"
+          JVM_MAX_HEAP_SIZE: "1536M"
+
+        ingress:
+          main:
+            enabled: true
+            annotations:
+              traefik.ingress.kubernetes.io/router.entrypoints: "websecure"
+              traefik.ingress.kubernetes.io/router.middlewares: "traefik-compress@kubernetescrd"
+            hosts:
+              - host: unifi.example.com
+                paths:
+                  - path: /
+                    pathType: Prefix
+
+        persistence:
+          config:
+            enabled: true
+            type: pvc
+            mountPath: /unifi
+            accessMode: ReadWriteOnce
+            size: 10Gi
+            retain: true
+
+        service:
+          main:
+            enabled: true
+            type: LoadBalancer
+            loadBalancerIP: 192.168.10.242
+
+        resources:
+          limits:
+            cpu: 250m
+            memory: 2048Mi
+          requests:
+            cpu: 75m
+            memory: 1280Mi
+
+  destination:
+    server: https://kubernetes.default.svc
+    namespace: unifi
+
+  # Allow changes to number of replicas (down to zero)
+  ignoreDifferences:
+    - group: apps
+      kind: StatefulSet
+      jsonPointers:
+        - /spec/replicas
+
+  syncPolicy:
+    automated:
+      prune: true
+      selfHeal: true
+    syncOptions:
+      - Validate=true
diff --git a/_extra_apps/unifi-controller-argocd-helm/namespaces/unifi.yaml b/_extra_apps/unifi-controller-argocd-helm/namespaces/unifi.yaml
@@ -0,0 +1,5 @@
+---
+apiVersion: v1
+kind: Namespace
+metadata:
+  name: unifi
