pos-system/deployments/staging/kubernetes at 084771bfc5d8a308d07bcb592c193b67639f145a - pos-system - Gitea: Git with a cup of tea

admin/pos-system

Files

History

Ho Ngoc Hai 084771bfc5

Build & Deploy to K8s / build-and-deploy (push) Failing after 33s

Details

fix(k8s): add inter-service ingress policy + reduce CPU requests

Critical fixes applied to staging K8s manifests:

1. NetworkPolicy: Add allow-inter-service-ingress (services can receive
   requests from each other - fixes promotion→wallet health check timeout)
2. NetworkPolicy: Add allow-app-to-neon-egress (explicit DB access rule)
3. NetworkPolicy: Add ingress-nginx namespace to allow-traefik-ingress
4. Resources: Reduce CPU requests 250m→100m (cluster was at 99%)
5. IAM Service: Add signing certificate volume mount (required for
   IdentityServer in non-Development environments)

Without #1, any service calling another service via HTTP would timeout
because default-deny-all blocks all ingress and only egress was allowed.

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>

2026-04-11 20:19:03 +07:00

..

act-runner-rbac.yaml

fix(cicd): skip namespace apply (already exists) + add patch permission

2026-04-10 20:18:02 +07:00

ads-analytics-service.yaml

fix(k8s): add inter-service ingress policy + reduce CPU requests

2026-04-11 20:19:03 +07:00

ads-billing-service.yaml

fix(k8s): add inter-service ingress policy + reduce CPU requests

2026-04-11 20:19:03 +07:00

ads-manager-service.yaml

fix(k8s): add inter-service ingress policy + reduce CPU requests

2026-04-11 20:19:03 +07:00

ads-serving-service.yaml

fix(k8s): add inter-service ingress policy + reduce CPU requests

2026-04-11 20:19:03 +07:00

ads-tracking-service.yaml

fix(k8s): add inter-service ingress policy + reduce CPU requests

2026-04-11 20:19:03 +07:00

booking-service.yaml

fix(k8s): add inter-service ingress policy + reduce CPU requests

2026-04-11 20:19:03 +07:00

catalog-service.yaml

fix(k8s): add inter-service ingress policy + reduce CPU requests

2026-04-11 20:19:03 +07:00

chat-service.yaml

fix(k8s): add inter-service ingress policy + reduce CPU requests

2026-04-11 20:19:03 +07:00

configmap.yaml

fix(k8s): switch domains from goodgo.vn to techbi.org

2026-04-10 20:30:08 +07:00

fnb-engine.yaml

fix(k8s): add inter-service ingress policy + reduce CPU requests

2026-04-11 20:19:03 +07:00

gitea-sync-cronjob.yaml

feat(cicd): switch CI/CD from GitHub Actions to Gitea Actions

2026-04-10 20:03:19 +07:00

iam-service.yaml

fix(k8s): add inter-service ingress policy + reduce CPU requests

2026-04-11 20:19:03 +07:00

ingress.yaml

fix(k8s): switch domains from goodgo.vn to techbi.org

2026-04-10 20:30:08 +07:00

inventory-service.yaml

fix(k8s): add inter-service ingress policy + reduce CPU requests

2026-04-11 20:19:03 +07:00

membership-service.yaml

fix(k8s): add inter-service ingress policy + reduce CPU requests

2026-04-11 20:19:03 +07:00

merchant-service.yaml

fix(k8s): add inter-service ingress policy + reduce CPU requests

2026-04-11 20:19:03 +07:00

mining-service.yaml

fix(k8s): add inter-service ingress policy + reduce CPU requests

2026-04-11 20:19:03 +07:00

minio.yaml

fix(cicd): use Kaniko Jobs for building Docker images in Gitea Actions

2026-04-10 20:15:20 +07:00

mission-service.yaml

fix(k8s): add inter-service ingress policy + reduce CPU requests

2026-04-11 20:19:03 +07:00

mkt-facebook-service.yaml

fix(k8s): add inter-service ingress policy + reduce CPU requests

2026-04-11 20:19:03 +07:00

mkt-whatsapp-service.yaml

fix(k8s): add inter-service ingress policy + reduce CPU requests

2026-04-11 20:19:03 +07:00

mkt-x-service.yaml

fix(k8s): add inter-service ingress policy + reduce CPU requests

2026-04-11 20:19:03 +07:00

mkt-zalo-service.yaml

fix(k8s): add inter-service ingress policy + reduce CPU requests

2026-04-11 20:19:03 +07:00

namespace.yaml

feat: add order lifecycle integration tests (29 tests) and staging K8s deployment manifests

2026-03-06 13:56:03 +07:00

network-policy.yaml

fix(k8s): add inter-service ingress policy + reduce CPU requests

2026-04-11 20:19:03 +07:00

order-service.yaml

fix(k8s): add inter-service ingress policy + reduce CPU requests

2026-04-11 20:19:03 +07:00

pos-web.yaml

fix(k8s): add inter-service ingress policy + reduce CPU requests

2026-04-11 20:19:03 +07:00

promotion-service.yaml

fix(k8s): add inter-service ingress policy + reduce CPU requests

2026-04-11 20:19:03 +07:00

rabbitmq.yaml

feat(k8s): add full K8s staging deployment for all 25 services

2026-04-10 19:53:09 +07:00

redis-sentinel.yaml

fix(devops): resolve 4 P2 DevOps improvements (Wave 3 — TEC-263)

2026-03-23 09:54:32 +07:00

redis.yaml

feat: add order lifecycle integration tests (29 tests) and staging K8s deployment manifests

2026-03-06 13:56:03 +07:00

secrets.yaml

fix(k8s): switch domains from goodgo.vn to techbi.org

2026-04-10 20:30:08 +07:00

secrets.yaml.example

feat: add order lifecycle integration tests (29 tests) and staging K8s deployment manifests

2026-03-06 13:56:03 +07:00

setup-secrets.sh

feat(cicd): switch CI/CD from GitHub Actions to Gitea Actions

2026-04-10 20:03:19 +07:00

social-service.yaml

fix(k8s): add inter-service ingress policy + reduce CPU requests

2026-04-11 20:19:03 +07:00

storage-service.yaml

fix(k8s): add inter-service ingress policy + reduce CPU requests

2026-04-11 20:19:03 +07:00

wallet-service.yaml

fix(k8s): add inter-service ingress policy + reduce CPU requests

2026-04-11 20:19:03 +07:00