Add Kubernetes manifests and update files

Author: RootShell-coder

README.md

@@ -1,4 +1,112 @@
-# owerDNS Authoritative Server
+# PowerDNS Authoritative Server
 
-- Powerdns v 4.9.9
+This is an all-in-one Docker image that includes PHP-FPM, Nginx, PowerAdmin (web interface), and PowerDNS Authoritative Server.
+
+- PowerDNS v 4.9.9
 - PowerAdmin v 4.0.4
+
+Note: The image tag corresponds to the PowerAdmin version. Choose the tag based on the desired PowerAdmin version.
+
+## Prerequisites
+
+- Docker installed on your system.
+- Docker Compose installed (usually comes with Docker Desktop).
+- Basic knowledge of running Docker containers.
+
+Note: The database (MariaDB/MySQL) must be set up separately as it is not included in this image.
+
+## Supported Databases
+
+PowerDNS supports MySQL, MariaDB, PostgreSQL, and SQLite. Configure the backend in the `PDNS_CONF` environment variable (e.g., `launch=gmysql` for MySQL/MariaDB).
+
+## Quick Start
+
+1. Create a `docker-compose.yml` file with the example below.
+2. Run `docker-compose up -d` to start the services in the background.
+3. Access PowerAdmin at `http://localhost/poweradmin` to complete the setup.
+
+## Docker Compose Example
+
+Here is a basic `docker-compose.yml` to get started:
+
+```yaml
+version: '3.8'
+
+services:
+  mariadb:
+    image: mariadb
+    environment:
+      MYSQL_ROOT_PASSWORD: root_pass
+      MYSQL_DATABASE: pdns_db
+      MYSQL_USER: pdns_user
+      MYSQL_PASSWORD: pdns_pass
+
+  powerdns:
+    image: ghcr.io/rootshell-coder/powerdns:4.0.4
+    environment:
+      PDNS_CONF: |
+        launch=gmysql
+        gmysql-host=mariadb
+        gmysql-port=3306
+        gmysql-dbname=pdns_db
+        gmysql-user=pdns_user
+        gmysql-password=pdns_pass
+        gmysql-dnssec=yes
+        allow-axfr-ips=127.0.0.1,::1
+        local-address=0.0.0.0
+        primary=no
+        secondary=no
+        cache-ttl=20
+        distributor-threads=3
+        allow-dnsupdate-from=127.0.0.1,::1
+    ports:
+      - "53:53/tcp"
+      - "53:53/udp"
+      - "80:80/tcp"
+    depends_on:
+      - mariadb
+```
+
+## Database Setup
+
+After starting the containers, initialize the PowerDNS database:
+
+1. Copy the schema file from the container:
+
+   ```bash
+   docker cp powerdns-powerdns-1:/usr/share/doc/pdns/schema.mysql.sql ./
+   ```
+
+2. Import the schema into MariaDB:
+
+   ```bash
+   docker exec -it powerdns-mariadb-1 mariadb -u pdns_user -p pdns_db < schema.mysql.sql
+   ```
+
+   Enter password: `pdns_pass`
+
+This sets up the necessary tables.
+
+## PowerAdmin Configuration
+
+- Access PowerAdmin at `http://localhost/poweradmin` and follow the installation wizard.
+- For custom settings, mount `settings.php` as a volume:
+
+  ```yaml
+  volumes:
+    - ./settings.php:/var/www/html/poweradmin/config/settings.php:ro
+  ```
+
+## Post-Installation
+
+To complete the PowerAdmin installation, remove the install directory as required by the installer:
+
+```bash
+docker exec powerdns-powerdns-1 rm -rf /var/www/html/poweradmin/install
+```
+
+## Usage
+
+- PowerDNS listens on port 53 for DNS queries.
+- PowerAdmin web interface on port 80 at `/poweradmin`.
+- Manage DNS zones and records via the web interface.

docker-compose.yml

@@ -1,18 +1,14 @@
 ---
 networks:
-  mariadb:
-    name: mariadb
+  mariadb-net:
+    name: mariadb-net
     attachable: true
-  powerdns:
-    name: powerdns
+  powerdns-net:
+    name: powerdns-net
 
 volumes:
   mysqldb:
     name: mysqldb
-  nginx:
-    name: nginx
-  powerdns:
-    name: powerdns
   poweradmin:
     name: poweradmin
 
@@ -32,12 +28,24 @@ services:
   powerdns:
     image: ghcr.io/rootshell-coder/powerdns:4.0.4
     volumes:
-      - nginx:/etc/nginx/
-      - powerdns:/etc/powerdns/
       - poweradmin:/var/www/html/poweradmin/
+    environment:
+      PDNS_CONF: |
+        launch=gmysql
+        gmysql-host=mariadb
+        gmysql-port=3306
+        gmysql-dbname=pdns_db
+        gmysql-user=pdns_user
+        gmysql-password=pdns_pass
+        gmysql-dnssec=yes
+        allow-axfr-ips=127.0.0.1,::1
+        local-address=0.0.0.0
+        primary=no
+        secondary=no
+        allow-dnsupdate-from=127.0.0.1,::1
     networks:
-      - mariadb
-      - powerdns
+      - mariadb-net
+      - powerdns-net
     ports:
       - 80:80/TCP
       - 53:53/TCP

docker/Dockerfile

@@ -1,4 +1,4 @@
-# PDNS ----------------------------------------------------------------------------------
+# ---------------------------------------------------------------------------------------
 FROM alpine:3.22 AS pdns_authoritive
 
 ENV POWERDNS_VER=4.9.9
@@ -81,7 +81,6 @@ RUN set -eux; \
   wget https://github.com/poweradmin/poweradmin/archive/refs/tags/v${POWERADMIN_VER}.tar.gz; \
   tar -xf v${POWERADMIN_VER}.tar.gz && rm -f v${POWERADMIN_VER}.tar.gz; \
   mv poweradmin-${POWERADMIN_VER} poweradmin;
-  # rm -rf /var/www/html/poweradmin/install
 
 # ---------------------------------------------------------------------------------------
 FROM alpine:3.22
@@ -102,6 +101,11 @@ ADD https://github.com/just-containers/s6-overlay/releases/download/v3.1.6.2/s6-
 RUN tar -C / -Jxpf /tmp/s6-overlay-x86_64.tar.xz
 RUN rm -rf /tmp/*
 
+COPY --from=pdns_authoritive /build/powerdns-root /
+COPY --from=poweradmin /var/www/html /var/www/html
+COPY ./nginx /etc/nginx
+COPY ./entrypoint /usr/bin
+
 RUN mkdir -p /etc/services.d/pdns /etc/services.d/nginx /etc/services.d/php-fpm && \
     printf '%s\n' \
     '#!/bin/sh' \
@@ -118,7 +122,8 @@ RUN mkdir -p /etc/services.d/pdns /etc/services.d/nginx /etc/services.d/php-fpm
 
 RUN ln -sf /usr/bin/php83 /usr/bin/php && \
     ln -sf /usr/sbin/php-fpm83 /usr/sbin/php-fpm && \
-    ln -sf /etc/php83 /etc/php
+    ln -sf /etc/php83 /etc/php && \
+    chmod +x /usr/bin/entrypoint
 
 RUN mkdir -p /var/log/php83 /run/php
 
@@ -161,10 +166,6 @@ RUN printf '%s\n' \
     'opcache.revalidate_freq=60' \
     > /etc/php/conf.d/99-custom.ini
 
-COPY --from=pdns_authoritive /build/powerdns-root /
-COPY --from=poweradmin /var/www/html /var/www/html
-COPY ./nginx /etc/nginx
-
 RUN printf '%s\n' \
     'launch=gmysql' \
     'gmysql-host=mariadb' \
@@ -177,4 +178,4 @@ VOLUME ["/etc/nginx/", "/etc/powerdns/", "/var/www/html/poweradmin/"]
 
 WORKDIR /var/www/html
 EXPOSE 53 80
-CMD ["/init"]
+ENTRYPOINT ["entrypoint"]

docker/entrypoint

@@ -0,0 +1,7 @@
+#!/bin/sh
+
+if [ -n "$PDNS_CONF" ]; then
+    echo "$PDNS_CONF" > /etc/powerdns/pdns.conf
+fi
+
+exec /init

k8s/README.md

@@ -0,0 +1,40 @@
+# Kubernetes Manifests for PowerDNS
+
+This directory contains Kubernetes manifests to deploy PowerDNS with MariaDB.
+
+## Components
+
+- `configmap.yaml`: Configuration for PowerDNS
+- `secret.yaml`: Secrets for MariaDB
+- `mariadb-pvc.yaml`: Persistent volume claim for MariaDB data
+- `poweradmin-pv.yaml`: Persistent volume for PowerAdmin data (hostPath for local testing, 200Mi)
+- `poweradmin-pvc.yaml`: Persistent volume claim for PowerAdmin data (200Mi)
+- `mariadb-deployment.yaml`: Deployment for MariaDB
+- `mariadb-service.yaml`: Service for MariaDB
+- `powerdns-deployment.yaml`: Deployment for PowerDNS
+- `powerdns-service.yaml`: ClusterIP service for PowerDNS (no exposed ports, use port-forwarding)
+
+## Deployment
+
+1. Apply all manifests:
+
+   ```bash
+   kubectl apply -f k8s/
+   ```
+
+2. Initialize the database:
+   - Get the MariaDB pod: `kubectl get pods`
+   - Copy schema: `kubectl cp schema.mysql.sql <mariadb-pod>:/tmp/`
+   - Import: `kubectl exec <mariadb-pod> -- mariadb -u pdns_user -p pdns_db < /tmp/schema.mysql.sql`
+
+3. Access PowerAdmin using port-forwarding: `kubectl port-forward svc/powerdns-service 8080:80` then visit localhost:8080/poweradmin
+
+4. DNS is available directly on node IP:53
+
+## Notes
+
+- Adjust storage sizes as needed.
+- For production, use proper secrets management.
+- DNS uses hostPort, so the pod will run on a single node and port 53 is exposed directly on the host.
+- HTTP access via port-forwarding or reverse proxy (e.g., Ingress).
+- DNS service may need additional configuration for external access.

k8s/configmap.yaml

@@ -0,0 +1,18 @@
+apiVersion: v1
+kind: ConfigMap
+metadata:
+  name: powerdns-config
+data:
+  pdns.conf: |
+    launch=gmysql
+    gmysql-host=mariadb-service
+    gmysql-port=3306
+    gmysql-dbname=pdns_db
+    gmysql-user=pdns_user
+    gmysql-password=pdns_pass
+    gmysql-dnssec=yes
+    allow-axfr-ips=127.0.0.1,::1
+    local-address=0.0.0.0
+    primary=no
+    secondary=no
+    allow-dnsupdate-from=127.0.0.1,::1

k8s/mariadb-deployment.yaml

@@ -0,0 +1,45 @@
+apiVersion: apps/v1
+kind: Deployment
+metadata:
+  name: mariadb
+spec:
+  replicas: 1
+  selector:
+    matchLabels:
+      app: mariadb
+  template:
+    metadata:
+      labels:
+        app: mariadb
+    spec:
+      containers:
+      - name: mariadb
+        image: mariadb
+        env:
+        - name: MYSQL_ROOT_PASSWORD
+          valueFrom:
+            secretKeyRef:
+              name: mariadb-secret
+              key: mysql-root-password
+        - name: MYSQL_DATABASE
+          valueFrom:
+            secretKeyRef:
+              name: mariadb-secret
+              key: mysql-database
+        - name: MYSQL_USER
+          valueFrom:
+            secretKeyRef:
+              name: mariadb-secret
+              key: mysql-user
+        - name: MYSQL_PASSWORD
+          valueFrom:
+            secretKeyRef:
+              name: mariadb-secret
+              key: mysql-password
+        volumeMounts:
+        - name: mariadb-storage
+          mountPath: /var/lib/mysql
+      volumes:
+      - name: mariadb-storage
+        persistentVolumeClaim:
+          claimName: mariadb-pvc

k8s/mariadb-pvc.yaml

@@ -0,0 +1,10 @@
+apiVersion: v1
+kind: PersistentVolumeClaim
+metadata:
+  name: mariadb-pvc
+spec:
+  accessModes:
+    - ReadWriteOnce
+  resources:
+    requests:
+      storage: 10Gi

k8s/mariadb-service.yaml

@@ -0,0 +1,10 @@
+apiVersion: v1
+kind: Service
+metadata:
+  name: mariadb-service
+spec:
+  selector:
+    app: mariadb
+  ports:
+  - port: 3306
+    targetPort: 3306

k8s/poweradmin-pv.yaml

@@ -0,0 +1,11 @@
+apiVersion: v1
+kind: PersistentVolume
+metadata:
+  name: poweradmin-pv
+spec:
+  capacity:
+    storage: 200Mi
+  accessModes:
+    - ReadWriteOnce
+  hostPath:
+    path: /data/poweradmin