Revert authoritative DNS changes, keep only internal CoreDNS CI

2026-03-10 22:12:27 +08:00 · 2026-03-10 22:12:27 +08:00 · 40eac49ea3
commit 40eac49ea3
parent 68ad8415d5
3 changed files with 3 additions and 56 deletions
--- a/.gitea/workflows/deploy.yaml
+++ b/.gitea/workflows/deploy.yaml
@ -2,9 +2,7 @@ name: Deploy DNS Records
 on:
  push:
    branches: [main]
-    paths:
-      - records.yaml
-      - svc-records.yaml
+    paths: [records.yaml]

 jobs:
  deploy:
@ -30,7 +28,7 @@ jobs:
            sudo install kubectl /usr/local/bin/kubectl
          fi

-      - name: Apply internal CoreDNS records
+      - name: Generate and apply CoreDNS configmap
        run: |
          cd dns-records
          chmod +x generate.sh
@ -39,15 +37,4 @@ jobs:
          kubectl apply -f /tmp/coredns-custom.yaml
          kubectl rollout restart deployment/coredns -n kube-system
          kubectl rollout status deployment/coredns -n kube-system --timeout=60s
-          echo "Internal DNS records applied"
-
-      - name: Apply authoritative zone records
-        run: |
-          cd dns-records
-          chmod +x generate-zone.sh
-          ./generate-zone.sh svc-records.yaml > /tmp/coredns-auth-zone.yaml
-          cat /tmp/coredns-auth-zone.yaml
-          kubectl apply -f /tmp/coredns-auth-zone.yaml
-          kubectl rollout restart deployment/coredns-auth -n authoritative-dns
-          kubectl rollout status deployment/coredns-auth -n authoritative-dns --timeout=60s
-          echo "Authoritative zone records applied"
+          echo "DNS records applied successfully"
--- a/generate-zone.sh
+++ b/generate-zone.sh
@ -1,33 +0,0 @@
-#!/bin/sh
-# Generates authoritative zone ConfigMap for svc.n0ball.tw from svc-records.yaml
-# Usage: ./generate-zone.sh svc-records.yaml > coredns-auth-zone.yaml
-set -e
-
-RECORDS_FILE="${1:-svc-records.yaml}"
-SERIAL=$(date +%Y%m%d%H)
-
-cat <<EOF
-apiVersion: v1
-kind: ConfigMap
-metadata:
-  name: coredns-auth-zone
-  namespace: authoritative-dns
-data:
-  svc.n0ball.tw.zone: |
-    \$ORIGIN svc.n0ball.tw.
-    @   3600 IN SOA ns1.n0ball.tw. admin.n0ball.tw. (
-        ${SERIAL} ; serial
-        3600       ; refresh
-        600        ; retry
-        86400      ; expire
-        60         ; minimum
-    )
-    @   3600 IN NS ns1.n0ball.tw.
-    @   3600 IN NS ns2.n0ball.tw.
-EOF
-
-awk '
-/^[a-zA-Z0-9]/ && / IN / {
-  printf "    %s\n", $0
-}
-' "$RECORDS_FILE"
--- a/svc-records.yaml
+++ b/svc-records.yaml
@ -1,7 +0,0 @@
-## External DNS Records for svc.n0ball.tw zone
-## Format: name: IP
-## These are served authoritatively to the internet.
-## Push to main to apply changes automatically.
-
-# Example:
-# test 60 IN A 140.115.16.135