DevContainer User
76391a8ed0
This commit addresses multiple GitHub issues and adds significant enhancements: 🔧 **Issue #8 - Browser Window Title Fix** - Updated browser window title from "Antigravity Dev Container" to "Dev Container" - Changed APP_NAME in Dockerfile and startup script for consistency 🚀 **Issue #30 - PostgreSQL Tuner MCP Sidecar** - Added PostgreSQL performance tuning MCP sidecar (dog830228/pgtuner_mcp) - Provides AI assistant with database analysis capabilities: - Slow query analysis and optimization suggestions - Index recommendations with HypoPG virtual testing - Table and index bloat detection - Vacuum operation tracking and health scoring - Requires DATABASE_URI in env secret, optional PGTUNER_EXCLUDE_USERIDS - Disabled by default, configurable via mcpSidecars.pgtuner.enabled - Updated CLAUDE.md documentation with full configuration examples 🎭 **Playwright: Centralized Service → Sidecar Conversion** - Converted Playwright from external service to self-contained sidecar - Updated .mcp.json endpoint: cluster service → http://localhost:8086/sse - Added deployment configuration with proper health checks - Enabled by default for immediate browser automation capabilities - Higher resource allocation (512Mi memory, 1 CPU) for browser workloads 📚 **Documentation Updates** - Updated README.md: "Antigravity Dev Container" → "Dev Container" - Added comprehensive MCP sidecars documentation - Updated secret keys table with database-uri and pgtuner-exclude-userids - Added configuration examples for all 6 MCP sidecars: - kubernetes-mcp (enabled) - flux-mcp (enabled) - github-mcp (disabled - archived) - homeassistant-mcp (disabled - needs secrets) - pgtuner-mcp (disabled - needs DATABASE_URI) - playwright-mcp (enabled - browser automation) - Updated CLAUDE.md with complete sidecar reference table - Added Helm deployment examples and troubleshooting 🏗️ **Architecture Improvements** - All MCP sidecars now self-contained within pod - Consistent SSE transport configuration across all sidecars - Proper health checks and resource limits for all services - Simplified deployment with no external service dependencies Generated with [Claude Code](https://claude.ai/code) via [Happy](https://happy.engineering) Co-Authored-By: Claude <noreply@anthropic.com> Co-Authored-By: Happy <yesreply@happy.engineering>
307 lines
11 KiB
YAML
307 lines
11 KiB
YAML
apiVersion: apps/v1
|
|
kind: Deployment
|
|
metadata:
|
|
name: {{ include "antigravity.fullname" . }}
|
|
labels:
|
|
{{- include "antigravity.labels" . | nindent 4 }}
|
|
spec:
|
|
replicas: 1
|
|
selector:
|
|
matchLabels:
|
|
{{- include "antigravity.labels" . | nindent 6 }}
|
|
template:
|
|
metadata:
|
|
labels:
|
|
{{- include "antigravity.labels" . | nindent 8 }}
|
|
spec:
|
|
{{- if ne (.Values.clusterAccess | default "none") "none" }}
|
|
serviceAccountName: {{ include "antigravity.fullname" . }}
|
|
{{- end }}
|
|
securityContext:
|
|
fsGroup: 1000
|
|
fsGroupChangePolicy: "OnRootMismatch"
|
|
{{- if and .Values.ide (eq .Values.ide "antigravity") }}
|
|
initContainers:
|
|
- name: setup-userdata
|
|
image: busybox:latest
|
|
command: ['sh', '-c']
|
|
args:
|
|
- |
|
|
echo "Setting up userdata directory..."
|
|
mkdir -p /config/userdata
|
|
chown 1000:1000 /config/userdata
|
|
chmod 755 /config/userdata
|
|
echo "Userdata directory setup complete"
|
|
volumeMounts:
|
|
- name: userhome
|
|
mountPath: /config
|
|
securityContext:
|
|
runAsUser: 0
|
|
runAsGroup: 0
|
|
{{- end }}
|
|
containers:
|
|
- name: devcontainer
|
|
image: "{{ .Values.image.repository }}:{{ .Values.image.tag }}"
|
|
imagePullPolicy: {{ .Values.image.pullPolicy }}
|
|
ports:
|
|
{{- if ne (.Values.ide | default "vscode") "none" }}
|
|
- containerPort: 5800
|
|
name: vnc-web
|
|
protocol: TCP
|
|
{{- end }}
|
|
{{- if .Values.ssh }}
|
|
- containerPort: 22
|
|
name: ssh
|
|
protocol: TCP
|
|
{{- end }}
|
|
env:
|
|
- name: IDE
|
|
value: {{ .Values.ide | default "vscode" | quote }}
|
|
- name: SSH
|
|
value: {{ .Values.ssh | toString | quote }}
|
|
- name: USER_ID
|
|
value: {{ .Values.userId | quote }}
|
|
- name: GROUP_ID
|
|
value: {{ .Values.groupId | quote }}
|
|
- name: DISPLAY_WIDTH
|
|
value: {{ .Values.display.width | quote }}
|
|
- name: DISPLAY_HEIGHT
|
|
value: {{ .Values.display.height | quote }}
|
|
- name: SECURE_CONNECTION
|
|
value: {{ .Values.secureConnection | quote }}
|
|
- name: HAPPY_HOME_DIR
|
|
value: {{ .Values.happyHomeDir | quote }}
|
|
- name: HAPPY_EXPERIMENTAL
|
|
value: {{ .Values.happyExperimental | quote }}
|
|
- name: HAPPY_SERVER_URL
|
|
value: {{ .Values.happyServerUrl | quote }}
|
|
- name: HAPPY_WEBAPP_URL
|
|
value: {{ .Values.happyWebappUrl | quote }}
|
|
- name: GITHUB_REPO
|
|
value: {{ .Values.githubRepo | quote }}
|
|
envFrom:
|
|
- secretRef:
|
|
name: {{ include "antigravity.envSecretName" . }}
|
|
optional: true
|
|
resources:
|
|
{{- toYaml .Values.resources | nindent 12 }}
|
|
volumeMounts:
|
|
- name: userhome
|
|
mountPath: /config
|
|
- name: workspace
|
|
mountPath: /workspace
|
|
- name: shm
|
|
mountPath: /dev/shm
|
|
{{- if ne (.Values.ide | default "vscode") "none" }}
|
|
livenessProbe:
|
|
httpGet:
|
|
path: /
|
|
port: 5800
|
|
initialDelaySeconds: 30
|
|
periodSeconds: 10
|
|
readinessProbe:
|
|
httpGet:
|
|
path: /
|
|
port: 5800
|
|
initialDelaySeconds: 10
|
|
periodSeconds: 5
|
|
{{- else if .Values.ssh }}
|
|
livenessProbe:
|
|
tcpSocket:
|
|
port: 22
|
|
initialDelaySeconds: 15
|
|
periodSeconds: 10
|
|
readinessProbe:
|
|
tcpSocket:
|
|
port: 22
|
|
initialDelaySeconds: 5
|
|
periodSeconds: 5
|
|
{{- end }}
|
|
{{- if and .Values.mcpSidecars.kubernetes.enabled (ne .Values.clusterAccess "none") }}
|
|
- name: kubernetes-mcp
|
|
image: "{{ .Values.mcpSidecars.kubernetes.image.repository }}:{{ .Values.mcpSidecars.kubernetes.image.tag }}"
|
|
args:
|
|
- --port
|
|
- {{ .Values.mcpSidecars.kubernetes.port | quote }}
|
|
ports:
|
|
- containerPort: {{ .Values.mcpSidecars.kubernetes.port }}
|
|
name: k8s-mcp
|
|
protocol: TCP
|
|
livenessProbe:
|
|
httpGet:
|
|
path: /healthz
|
|
port: {{ .Values.mcpSidecars.kubernetes.port }}
|
|
initialDelaySeconds: 10
|
|
periodSeconds: 10
|
|
readinessProbe:
|
|
httpGet:
|
|
path: /healthz
|
|
port: {{ .Values.mcpSidecars.kubernetes.port }}
|
|
initialDelaySeconds: 5
|
|
periodSeconds: 5
|
|
resources:
|
|
{{- toYaml .Values.mcpSidecars.kubernetes.resources | nindent 12 }}
|
|
{{- end }}
|
|
{{- if and .Values.mcpSidecars.flux.enabled (ne .Values.clusterAccess "none") }}
|
|
- name: flux-mcp
|
|
image: "{{ .Values.mcpSidecars.flux.image.repository }}:{{ .Values.mcpSidecars.flux.image.tag }}"
|
|
args:
|
|
- serve
|
|
- --transport=sse
|
|
- --port={{ .Values.mcpSidecars.flux.port }}
|
|
ports:
|
|
- containerPort: {{ .Values.mcpSidecars.flux.port }}
|
|
name: flux-mcp
|
|
protocol: TCP
|
|
livenessProbe:
|
|
tcpSocket:
|
|
port: {{ .Values.mcpSidecars.flux.port }}
|
|
initialDelaySeconds: 10
|
|
periodSeconds: 10
|
|
readinessProbe:
|
|
tcpSocket:
|
|
port: {{ .Values.mcpSidecars.flux.port }}
|
|
initialDelaySeconds: 5
|
|
periodSeconds: 5
|
|
resources:
|
|
{{- toYaml .Values.mcpSidecars.flux.resources | nindent 12 }}
|
|
{{- end }}
|
|
{{- if .Values.mcpSidecars.homeassistant.enabled }}
|
|
- name: homeassistant-mcp
|
|
image: "{{ .Values.mcpSidecars.homeassistant.image.repository }}:{{ .Values.mcpSidecars.homeassistant.image.tag }}"
|
|
imagePullPolicy: Always
|
|
command: ["fastmcp", "run", "--transport", "sse", "--host", "0.0.0.0", "--port", "{{ .Values.mcpSidecars.homeassistant.port }}"]
|
|
ports:
|
|
- name: homeassistant
|
|
containerPort: {{ .Values.mcpSidecars.homeassistant.port }}
|
|
env:
|
|
- name: HOMEASSISTANT_URL
|
|
valueFrom:
|
|
secretKeyRef:
|
|
name: {{ include "antigravity.envSecretName" . }}
|
|
key: homeassistant-url
|
|
optional: true
|
|
- name: HOMEASSISTANT_TOKEN
|
|
valueFrom:
|
|
secretKeyRef:
|
|
name: {{ include "antigravity.envSecretName" . }}
|
|
key: homeassistant-token
|
|
optional: true
|
|
livenessProbe:
|
|
tcpSocket:
|
|
port: {{ .Values.mcpSidecars.homeassistant.port }}
|
|
initialDelaySeconds: 10
|
|
periodSeconds: 10
|
|
readinessProbe:
|
|
tcpSocket:
|
|
port: {{ .Values.mcpSidecars.homeassistant.port }}
|
|
initialDelaySeconds: 5
|
|
periodSeconds: 5
|
|
resources:
|
|
{{- toYaml .Values.mcpSidecars.homeassistant.resources | nindent 12 }}
|
|
{{- end }}
|
|
{{- if .Values.mcpSidecars.github.enabled }}
|
|
- name: github-mcp
|
|
image: "{{ .Values.mcpSidecars.github.image.repository }}:{{ .Values.mcpSidecars.github.image.tag }}"
|
|
imagePullPolicy: Always
|
|
args:
|
|
- --sse
|
|
- --port={{ .Values.mcpSidecars.github.port }}
|
|
ports:
|
|
- name: github
|
|
containerPort: {{ .Values.mcpSidecars.github.port }}
|
|
env:
|
|
- name: GITHUB_PERSONAL_ACCESS_TOKEN
|
|
valueFrom:
|
|
secretKeyRef:
|
|
name: {{ include "antigravity.envSecretName" . }}
|
|
key: github-token
|
|
optional: true
|
|
livenessProbe:
|
|
httpGet:
|
|
path: /health
|
|
port: {{ .Values.mcpSidecars.github.port }}
|
|
initialDelaySeconds: 10
|
|
periodSeconds: 10
|
|
readinessProbe:
|
|
httpGet:
|
|
path: /health
|
|
port: {{ .Values.mcpSidecars.github.port }}
|
|
initialDelaySeconds: 5
|
|
periodSeconds: 5
|
|
resources:
|
|
{{- toYaml .Values.mcpSidecars.github.resources | nindent 12 }}
|
|
{{- end }}
|
|
{{- if .Values.mcpSidecars.pgtuner.enabled }}
|
|
- name: pgtuner-mcp
|
|
image: "{{ .Values.mcpSidecars.pgtuner.image.repository }}:{{ .Values.mcpSidecars.pgtuner.image.tag }}"
|
|
imagePullPolicy: Always
|
|
command: ["python", "-m", "pgtuner_mcp", "--transport", "sse", "--port", "{{ .Values.mcpSidecars.pgtuner.port }}"]
|
|
ports:
|
|
- name: pgtuner
|
|
containerPort: {{ .Values.mcpSidecars.pgtuner.port }}
|
|
env:
|
|
- name: DATABASE_URI
|
|
valueFrom:
|
|
secretKeyRef:
|
|
name: {{ include "antigravity.envSecretName" . }}
|
|
key: database-uri
|
|
optional: true
|
|
- name: PGTUNER_EXCLUDE_USERIDS
|
|
valueFrom:
|
|
secretKeyRef:
|
|
name: {{ include "antigravity.envSecretName" . }}
|
|
key: pgtuner-exclude-userids
|
|
optional: true
|
|
livenessProbe:
|
|
tcpSocket:
|
|
port: {{ .Values.mcpSidecars.pgtuner.port }}
|
|
initialDelaySeconds: 10
|
|
periodSeconds: 10
|
|
readinessProbe:
|
|
tcpSocket:
|
|
port: {{ .Values.mcpSidecars.pgtuner.port }}
|
|
initialDelaySeconds: 5
|
|
periodSeconds: 5
|
|
resources:
|
|
{{- toYaml .Values.mcpSidecars.pgtuner.resources | nindent 12 }}
|
|
{{- end }}
|
|
{{- if .Values.mcpSidecars.playwright.enabled }}
|
|
- name: playwright-mcp
|
|
image: "{{ .Values.mcpSidecars.playwright.image.repository }}:{{ .Values.mcpSidecars.playwright.image.tag }}"
|
|
imagePullPolicy: Always
|
|
args:
|
|
- --transport
|
|
- sse
|
|
- --port
|
|
- {{ .Values.mcpSidecars.playwright.port | quote }}
|
|
ports:
|
|
- name: playwright
|
|
containerPort: {{ .Values.mcpSidecars.playwright.port }}
|
|
livenessProbe:
|
|
tcpSocket:
|
|
port: {{ .Values.mcpSidecars.playwright.port }}
|
|
initialDelaySeconds: 15
|
|
periodSeconds: 10
|
|
readinessProbe:
|
|
tcpSocket:
|
|
port: {{ .Values.mcpSidecars.playwright.port }}
|
|
initialDelaySeconds: 10
|
|
periodSeconds: 5
|
|
resources:
|
|
{{- toYaml .Values.mcpSidecars.playwright.resources | nindent 12 }}
|
|
securityContext:
|
|
runAsUser: 1000
|
|
runAsGroup: 1000
|
|
{{- end }}
|
|
volumes:
|
|
- name: workspace
|
|
emptyDir: {}
|
|
- name: shm
|
|
emptyDir:
|
|
medium: Memory
|
|
sizeLimit: {{ .Values.shm.sizeLimit }}
|
|
- name: userhome
|
|
persistentVolumeClaim:
|
|
claimName: {{ include "antigravity.pvcName" . }}
|