Jenkins 기반 CI/CD 파이프라인 구성

- Kustomize 기반 환경별(dev/staging/prod) 매니페스트 관리 - Jenkins 파이프라인 스크립트 작성 (Podman, Gradle, kubectl 컨테이너) - SonarQube 코드 품질 분석 및 Quality Gate 연동 - 수동 배포 및 리소스 검증 스크립트 추가 - k8s 매니페스트 구조 재정리 (configmaps, secrets, deployments, services 분리) 🤖 Generated with [Claude Code](https://claude.com/claude-code) Co-Authored-By: Claude <noreply@anthropic.com>
2026-06-13 03:59:10 +00:00 · 2025-12-01 10:23:32 +09:00
parent 21b9c77109
commit f12fed5de9
113 changed files with 2955 additions and 3567 deletions
@@ -1,11 +1,15 @@
 apiVersion: v1
 kind: ConfigMap
 metadata:
-  name: cm-user-service
+  name: user-service-config
+  
+  labels:
+    app: user-service
+    app.kubernetes.io/part-of: phonebill
 data:
  SERVER_PORT: "8081"
-  DB_KIND: "postgresql"
+  DB_HOST: "auth-postgresql"
  DB_PORT: "5432"
-  DDL_AUTO: "update"
+  DB_NAME: "authdb"
  REDIS_DATABASE: "0"
-  SHOW_SQL: "true"
+  DDL_AUTO: "update"
@@ -2,6 +2,10 @@ apiVersion: apps/v1
 kind: Deployment
 metadata:
  name: user-service
+  
+  labels:
+    app: user-service
+    app.kubernetes.io/part-of: phonebill
 spec:
  replicas: 1
  selector:
@@ -12,48 +16,42 @@ spec:
      labels:
        app: user-service
    spec:
-      imagePullSecrets:
-      - name: phonebill
      containers:
      - name: user-service
-        image: acrdigitalgarage01.azurecr.io/phonebill/user-service:latest
+        image: docker.io/hiondal/user-service:latest
        imagePullPolicy: Always
        ports:
        - containerPort: 8081
+          name: http
        envFrom:
        - configMapRef:
-            name: cm-common
+            name: phonebill-common-config
        - configMapRef:
-            name: cm-user-service
+            name: user-service-config
        - secretRef:
-            name: secret-common
+            name: phonebill-common-secret
        - secretRef:
-            name: secret-user-service
+            name: user-service-db-secret
        resources:
          requests:
-            cpu: 256m
-            memory: 256Mi
+            cpu: "256m"
+            memory: "256Mi"
          limits:
-            cpu: 1024m
-            memory: 1024Mi
-        startupProbe:
-          httpGet:
-            path: /actuator/health
-            port: 8081
-          initialDelaySeconds: 30
-          periodSeconds: 10
-          failureThreshold: 6
-        readinessProbe:
-          httpGet:
-            path: /actuator/health/readiness
-            port: 8081
-          initialDelaySeconds: 10
-          periodSeconds: 5
-          failureThreshold: 3
+            cpu: "1024m"
+            memory: "1024Mi"
        livenessProbe:
          httpGet:
            path: /actuator/health/liveness
            port: 8081
+          initialDelaySeconds: 60
+          periodSeconds: 10
+          timeoutSeconds: 5
+          failureThreshold: 3
+        readinessProbe:
+          httpGet:
+            path: /actuator/health/readiness
+            port: 8081
          initialDelaySeconds: 30
          periodSeconds: 10
-          failureThreshold: 3
+          timeoutSeconds: 5
+          failureThreshold: 3
@@ -1,10 +1,12 @@
 apiVersion: v1
 kind: Secret
 metadata:
-  name: secret-user-service
+  name: user-service-db-secret
+  
+  labels:
+    app: user-service
+    app.kubernetes.io/part-of: phonebill
 type: Opaque
 stringData:
-  DB_HOST: "auth-postgres-dev-postgresql"
-  DB_NAME: "phonebill_auth"
-  DB_USERNAME: "auth_user"
-  DB_PASSWORD: "AuthUser2025@"
+  DB_USERNAME: "unicorn"
+  DB_PASSWORD: "P@ssw0rd$"
@@ -2,10 +2,16 @@ apiVersion: v1
 kind: Service
 metadata:
  name: user-service
+  
+  labels:
+    app: user-service
+    app.kubernetes.io/part-of: phonebill
 spec:
+  type: ClusterIP
  selector:
    app: user-service
  ports:
-  - port: 80
+  - name: http
+    port: 8081
    targetPort: 8081
-  type: ClusterIP
+    protocol: TCP