provisioning/schemas/platform/templates/kubernetes/orchestrator-service.yaml.ncl

# Orchestrator Kubernetes Service
# Exposes orchestrator deployment internally and externally
# Supports ClusterIP (internal) and LoadBalancer (external) service types
#
# Usage:
#   nickel eval --format json orchestrator-service.yaml.ncl | yq -P > orchestrator-service.yaml
#   kubectl apply -f orchestrator-service.yaml

{
  apiVersion = "v1",
  kind = "Service",
  metadata = {
    name = "orchestrator",
    labels = {
      app = "orchestrator",
      component = "provisioning-platform",
    },
    annotations = {
      "description" = "Orchestrator service for workflow engine and task queue",
    },
  },
  spec = {
    # Service type: ClusterIP (internal) or LoadBalancer (external)
    # Solo/MultiUser/CI/CD: ClusterIP (internal only)
    # Enterprise: LoadBalancer (external access with load balancer)
    type = "ClusterIP",

    # Session affinity for stateful services
    sessionAffinity = "ClientIP",
    sessionAffinityConfig = {
      clientIP = {
        timeoutSeconds = 10800,  # 3 hours
      },
    },

    # Selector matches deployment pods
    selector = {
      app = "orchestrator",
    },

    # Ports
    ports = [
      {
        name = "http",
        protocol = "TCP",
        port = 9090,
        targetPort = 9090,
      },
      {
        name = "metrics",
        protocol = "TCP",
        port = 9091,
        targetPort = 9091,
      },
    ],

    # Traffic policy
    trafficPolicy = {
      # For enterprise mode: distribute traffic across replicas
      loadBalancerSourceRanges = [],
    },
  },
}
chore: complete nickel migration and consolidate legacy configs - Remove KCL ecosystem (~220 files deleted) - Migrate all infrastructure to Nickel schema system - Consolidate documentation: legacy docs → provisioning/docs/src/ - Add CI/CD workflows (.github/) and Rust build config (.cargo/) - Update core system for Nickel schema parsing - Update README.md and CHANGES.md for v5.0.0 release - Fix pre-commit hooks: end-of-file, trailing-whitespace - Breaking changes: KCL workspaces require migration - Migration bridge available in docs/src/development/ 2026-01-08 09:55:37 +00:00			`# Orchestrator Kubernetes Service`
			`# Exposes orchestrator deployment internally and externally`
			`# Supports ClusterIP (internal) and LoadBalancer (external) service types`
			`#`
			`# Usage:`
			`# nickel eval --format json orchestrator-service.yaml.ncl \| yq -P > orchestrator-service.yaml`
			`# kubectl apply -f orchestrator-service.yaml`

			`{`
			`apiVersion = "v1",`
			`kind = "Service",`
			`metadata = {`
			`name = "orchestrator",`
			`labels = {`
			`app = "orchestrator",`
			`component = "provisioning-platform",`
			`},`
			`annotations = {`
			`"description" = "Orchestrator service for workflow engine and task queue",`
			`},`
			`},`
			`spec = {`
			`# Service type: ClusterIP (internal) or LoadBalancer (external)`
			`# Solo/MultiUser/CI/CD: ClusterIP (internal only)`
			`# Enterprise: LoadBalancer (external access with load balancer)`
			`type = "ClusterIP",`

			`# Session affinity for stateful services`
			`sessionAffinity = "ClientIP",`
			`sessionAffinityConfig = {`
			`clientIP = {`
			`timeoutSeconds = 10800, # 3 hours`
			`},`
			`},`

			`# Selector matches deployment pods`
			`selector = {`
			`app = "orchestrator",`
			`},`

			`# Ports`
			`ports = [`
			`{`
			`name = "http",`
			`protocol = "TCP",`
			`port = 9090,`
			`targetPort = 9090,`
			`},`
			`{`
			`name = "metrics",`
			`protocol = "TCP",`
			`port = 9091,`
			`targetPort = 9091,`
			`},`
			`],`

			`# Traffic policy`
			`trafficPolicy = {`
			`# For enterprise mode: distribute traffic across replicas`
			`loadBalancerSourceRanges = [],`
			`},`
			`},`
			`}`