shpaq/auricom-home-cluster
1
0
Fork 0
mirror of https://github.com/auricom/home-cluster.git synced 2025-09-17 18:24:14 +02:00
Code Issues Packages Projects Releases Wiki Activity

refactor: components

Browse Source
This commit is contained in:
auricom
2025-04-15 16:48:53 +02:00
parent 89beaf64a5
commit 7ad9789d31
77 changed files with 336 additions and 82 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
kubernetes/apps/database/influx/app/kustomization.yaml
View File

@@ -4,4 +4,4 @@ apiVersion: kustomize.config.k8s.io/v1beta1
kind: Kustomization
resources:
- ./helmrelease.yaml
- ../../../../templates/volsync
- ../../../../components/volsync

4
kubernetes/apps/default/atuin/app/kustomization.yaml
View File

@@ -5,5 +5,5 @@ kind: Kustomization
namespace: default
resources:
- ./helmrelease.yaml
- ../../../../templates/gatus/guarded
- ../../../../templates/volsync
- ../../../../components/gatus/guarded
- ../../../../components/volsync

2
kubernetes/apps/default/authelia/app/kustomization.yaml
View File

@@ -5,7 +5,7 @@ kind: Kustomization
resources:
- ./externalsecret.yaml
- ./helmrelease.yaml
- ../../../../templates/gatus/external
- ../../../../components/gatus/external
configMapGenerator:
- name: authelia-configmap
files:

4
kubernetes/apps/default/bazarr/app/kustomization.yaml
View File

@@ -6,8 +6,8 @@ namespace: default
resources:
- ./externalsecret.yaml
- ./helmrelease.yaml
- ../../../../templates/gatus/guarded
- ../../../../templates/volsync
- ../../../../components/gatus/guarded
- ../../../../components/volsync
configMapGenerator:
- name: bazarr-scripts
files:

4
kubernetes/apps/default/calibre/app/kustomization.yaml
View File

@@ -5,5 +5,5 @@ kind: Kustomization
namespace: default
resources:
- ./helmrelease.yaml
- ../../../../templates/gatus/guarded
- ../../../../templates/volsync
- ../../../../components/gatus/guarded
- ../../../../components/volsync

4
kubernetes/apps/default/exercisediary/app/kustomization.yaml
View File

@@ -5,5 +5,5 @@ kind: Kustomization
namespace: default
resources:
- ./helmrelease.yaml
- ../../../../templates/gatus/external
- ../../../../templates/volsync
- ../../../../components/gatus/external
- ../../../../components/volsync

4
kubernetes/apps/default/flood/app/kustomization.yaml
View File

@@ -5,5 +5,5 @@ kind: Kustomization
resources:
- ./externalsecret.yaml
- ./helmrelease.yaml
- ../../../../templates/gatus/guarded
- ../../../../templates/volsync
- ../../../../components/gatus/guarded
- ../../../../components/volsync

4
kubernetes/apps/default/freshrss/app/kustomization.yaml
View File

@@ -5,5 +5,5 @@ kind: Kustomization
resources:
- ./externalsecret.yaml
- ./helmrelease.yaml
- ../../../../templates/gatus/guarded
- ../../../../templates/volsync
- ../../../../components/gatus/guarded
- ../../../../components/volsync

4
kubernetes/apps/default/frigate/app/kustomization.yaml
View File

@@ -6,8 +6,8 @@ namespace: default
resources:
- ./externalsecret.yaml
- ./helmrelease.yaml
- ../../../../templates/gatus/guarded
- ../../../../templates/volsync
- ../../../../components/gatus/guarded
- ../../../../components/volsync
configMapGenerator:
- name: frigate-configmap
files:

2
kubernetes/apps/default/ghostfolio/app/kustomization.yaml
View File

@@ -5,4 +5,4 @@ kind: Kustomization
resources:
- ./externalsecret.yaml
- ./helmrelease.yaml
- ../../../../templates/gatus/guarded
- ../../../../components/gatus/guarded

2
kubernetes/apps/default/hajimari/app/kustomization.yaml
View File

@@ -4,4 +4,4 @@ apiVersion: kustomize.config.k8s.io/v1beta1
kind: Kustomization
resources:
- ./helmrelease.yaml
- ../../../../templates/gatus/guarded
- ../../../../components/gatus/guarded

4
kubernetes/apps/default/home-assistant/app/kustomization.yaml
View File

@@ -5,5 +5,5 @@ resources:
- ./externalsecret.yaml
- ./helmrelease.yaml
- ./podmonitor.yaml
- ../../../../templates/gatus/guarded
- ../../../../templates/volsync
- ../../../../components/gatus/guarded
- ../../../../components/volsync

2
kubernetes/apps/default/home-assistant/code/kustomization.yaml
View File

@@ -5,4 +5,4 @@ kind: Kustomization
namespace: default
resources:
- ./helmrelease.yaml
- ../../../../templates/gatus/guarded
- ../../../../components/gatus/guarded

4
kubernetes/apps/default/homebox/app/kustomization.yaml
View File

@@ -4,5 +4,5 @@ apiVersion: kustomize.config.k8s.io/v1beta1
kind: Kustomization
resources:
- ./helmrelease.yaml
- ../../../../templates/gatus/guarded
- ../../../../templates/volsync
- ../../../../components/gatus/guarded
- ../../../../components/volsync

2
kubernetes/apps/default/homepage/app/kustomization.yaml
View File

@@ -6,7 +6,7 @@ resources:
- ./externalsecret.yaml
- ./helmrelease.yaml
- ./rbac.yaml
- ../../../../templates/gatus/guarded
- ../../../../components/gatus/guarded
configMapGenerator:
- name: homepage-config
files:

4
kubernetes/apps/default/jellyfin/app/kustomization.yaml
View File

@@ -5,5 +5,5 @@ kind: Kustomization
namespace: default
resources:
- ./helmrelease.yaml
- ../../../../templates/gatus/external
- ../../../../templates/volsync
- ../../../../components/gatus/external
- ../../../../components/volsync

4
kubernetes/apps/default/jellyseerr/app/kustomization.yaml
View File

@@ -6,6 +6,6 @@ namespace: default
resources:
# - ./externalsecret.yaml
- ./helmrelease.yaml
- ../../../../templates/gatus/external
- ../../../../templates/volsync
- ../../../../components/gatus/external
- ../../../../components/volsync
- ./pvc.yaml

2
kubernetes/apps/default/joplin/app/kustomization.yaml
View File

@@ -5,4 +5,4 @@ kind: Kustomization
resources:
- ./externalsecret.yaml
- ./helmrelease.yaml
- ../../../../templates/gatus/external
- ../../../../components/gatus/external

2
kubernetes/apps/default/komf/app/kustomization.yaml
View File

@@ -6,7 +6,7 @@ namespace: default
resources:
- ./externalsecret.yaml
- ./helmrelease.yaml
- ../../../../templates/volsync
- ../../../../components/volsync
configMapGenerator:
- name: komf-configmap
files:

4
kubernetes/apps/default/komga/app/kustomization.yaml
View File

@@ -5,5 +5,5 @@ kind: Kustomization
namespace: default
resources:
- ./helmrelease.yaml
- ../../../../templates/gatus/guarded
- ../../../../templates/volsync
- ../../../../components/gatus/guarded
- ../../../../components/volsync

2
kubernetes/apps/default/libmedium/app/kustomization.yaml
View File

@@ -4,7 +4,7 @@ apiVersion: kustomize.config.k8s.io/v1beta1
kind: Kustomization
resources:
- ./helmrelease.yaml
- ../../../../templates/gatus/external
- ../../../../components/gatus/external
configMapGenerator:
- name: libmedium-configmap
files:

4
kubernetes/apps/default/lidarr/app/kustomization.yaml
View File

@@ -6,8 +6,8 @@ namespace: default
resources:
- ./externalsecret.yaml
- ./helmrelease.yaml
- ../../../../templates/gatus/guarded
- ../../../../templates/volsync
- ../../../../components/gatus/guarded
- ../../../../components/volsync
configMapGenerator:
- name: lidarr-pushover
files:

4
kubernetes/apps/default/linkding/app/kustomization.yaml
View File

@@ -5,5 +5,5 @@ kind: Kustomization
resources:
- ./externalsecret.yaml
- ./helmrelease.yaml
- ../../../../templates/gatus/guarded
- ../../../../templates/volsync
- ../../../../components/gatus/guarded
- ../../../../components/volsync

2
kubernetes/apps/default/lldap/app/kustomization.yaml
View File

@@ -5,4 +5,4 @@ kind: Kustomization
resources:
- ./externalsecret.yaml
- ./helmrelease.yaml
- ../../../../templates/gatus/guarded
- ../../../../components/gatus/guarded

4
kubernetes/apps/default/lms/app/kustomization.yaml
View File

@@ -4,5 +4,5 @@ apiVersion: kustomize.config.k8s.io/v1beta1
kind: Kustomization
resources:
- ./helmrelease.yaml
- ../../../../templates/gatus/guarded
- ../../../../templates/volsync
- ../../../../components/gatus/guarded
- ../../../../components/volsync

4
kubernetes/apps/default/lychee/app/kustomization.yaml
View File

@@ -6,5 +6,5 @@ resources:
- ./externalsecret.yaml
- ./helmrelease.yaml
- ./sync
- ../../../../templates/gatus/external
- ../../../../templates/volsync
- ../../../../components/gatus/external
- ../../../../components/volsync

4
kubernetes/apps/default/navidrome/app/kustomization.yaml
View File

@@ -5,5 +5,5 @@ kind: Kustomization
namespace: default
resources:
- ./helmrelease.yaml
- ../../../../templates/gatus/external
- ../../../../templates/volsync
- ../../../../components/gatus/external
- ../../../../components/volsync

2
kubernetes/apps/default/outline/app/kustomization.yaml
View File

@@ -5,4 +5,4 @@ kind: Kustomization
resources:
- ./externalsecret.yaml
- ./helmrelease.yaml
- ../../../../templates/gatus/guarded
- ../../../../components/gatus/guarded

2
kubernetes/apps/default/paperless/app/kustomization.yaml
View File

@@ -5,4 +5,4 @@ kind: Kustomization
resources:
- ./externalsecret.yaml
- ./helmrelease.yaml
- ../../../../templates/gatus/guarded
- ../../../../components/gatus/guarded

2
kubernetes/apps/default/prowlarr/app/kustomization.yaml
View File

@@ -5,4 +5,4 @@ kind: Kustomization
resources:
- ./externalsecret.yaml
- ./helmrelease.yaml
- ../../../../templates/gatus/guarded
- ../../../../components/gatus/guarded

4
kubernetes/apps/default/qbittorrent/app/kustomization.yaml
View File

@@ -5,5 +5,5 @@ kind: Kustomization
resources:
- ./helmrelease.yaml
- ./upgrade-p2pblocklist
- ../../../../templates/gatus/guarded
- ../../../../templates/volsync
- ../../../../components/gatus/guarded
- ../../../../components/volsync

4
kubernetes/apps/default/radarr/app/kustomization.yaml
View File

@@ -6,8 +6,8 @@ namespace: default
resources:
- ./externalsecret.yaml
- ./helmrelease.yaml
- ../../../../templates/gatus/guarded
- ../../../../templates/volsync
- ../../../../components/gatus/guarded
- ../../../../components/volsync
configMapGenerator:
- name: radarr-pushover
files:

4
kubernetes/apps/default/readeck/app/kustomization.yaml
View File

@@ -4,5 +4,5 @@ apiVersion: kustomize.config.k8s.io/v1beta1
kind: Kustomization
resources:
- ./helmrelease.yaml
- ../../../../templates/gatus/guarded
- ../../../../templates/volsync
- ../../../../components/gatus/guarded
- ../../../../components/volsync

2
kubernetes/apps/default/recyclarr/app/kustomization.yaml
View File

@@ -5,7 +5,7 @@ kind: Kustomization
resources:
- ./externalsecret.yaml
- ./helmrelease.yaml
- ../../../../templates/volsync
- ../../../../components/volsync
configMapGenerator:
- name: recyclarr-configmap
files:

2
kubernetes/apps/default/redlib/app/kustomization.yaml
View File

@@ -5,4 +5,4 @@ kind: Kustomization
namespace: default
resources:
- ./helmrelease.yaml
- ../../../../templates/gatus/external
- ../../../../components/gatus/external

4
kubernetes/apps/default/sabnzbd/app/kustomization.yaml
View File

@@ -5,5 +5,5 @@ kind: Kustomization
resources:
- ./externalsecret.yaml
- ./helmrelease.yaml
- ../../../../templates/gatus/guarded
- ../../../../templates/volsync
- ../../../../components/gatus/guarded
- ../../../../components/volsync

4
kubernetes/apps/default/sharry/app/kustomization.yaml
View File

@@ -5,8 +5,8 @@ kind: Kustomization
resources:
- ./externalsecret.yaml
- ./helmrelease.yaml
- ../../../../templates/gatus/external
- ../../../../templates/volsync
- ../../../../components/gatus/external
- ../../../../components/volsync
configMapGenerator:
- name: sharry-configmap
files:

4
kubernetes/apps/default/sonarr/app/kustomization.yaml
View File

@@ -6,8 +6,8 @@ namespace: default
resources:
- ./externalsecret.yaml
- ./helmrelease.yaml
- ../../../../templates/gatus/guarded
- ../../../../templates/volsync
- ../../../../components/gatus/guarded
- ../../../../components/volsync
configMapGenerator:
- name: sonarr-pushover
files:

4
kubernetes/apps/default/tandoor/app/kustomization.yaml
View File

@@ -6,8 +6,8 @@ namespace: default
resources:
- ./externalsecret.yaml
- ./helmrelease.yaml
- ../../../../templates/gatus/guarded
- ../../../../templates/volsync
- ../../../../components/gatus/guarded
- ../../../../components/volsync
configMapGenerator:
- name: tandoor-configmap
files:

4
kubernetes/apps/default/tdarr/app/kustomization.yaml
View File

@@ -4,5 +4,5 @@ apiVersion: kustomize.config.k8s.io/v1beta1
kind: Kustomization
resources:
- ./helmrelease.yaml
- ../../../../templates/gatus/guarded
- ../../../../templates/volsync
- ../../../../components/gatus/guarded
- ../../../../components/volsync

4
kubernetes/apps/default/unifi/app/kustomization.yaml
View File

@@ -4,5 +4,5 @@ apiVersion: kustomize.config.k8s.io/v1beta1
kind: Kustomization
resources:
- ./helmrelease.yaml
- ../../../../templates/gatus/guarded
- ../../../../templates/volsync
- ../../../../components/gatus/guarded
- ../../../../components/volsync

4
kubernetes/apps/default/vaultwarden/app/kustomization.yaml
View File

@@ -5,5 +5,5 @@ kind: Kustomization
resources:
- ./externalsecret.yaml
- ./helmrelease.yaml
- ../../../../templates/gatus/external
- ../../../../templates/volsync
- ../../../../components/gatus/external
- ../../../../components/volsync

4
kubernetes/apps/default/vikunja/app/kustomization.yaml
View File

@@ -5,7 +5,7 @@ kind: Kustomization
resources:
- ./externalsecret.yaml
- ./helmrelease.yaml
- ../../../../templates/gatus/external
- ../../../../templates/volsync
- ../../../../components/gatus/external
- ../../../../components/volsync
generatorOptions:
disableNameSuffixHash: true

4
kubernetes/apps/default/zigbee2mqtt/app/kustomization.yaml
View File

@@ -4,5 +4,5 @@ kind: Kustomization
resources:
- ./externalsecret.yaml
- ./helmrelease.yaml
- ../../../../templates/gatus/guarded
- ../../../../templates/volsync
- ../../../../components/gatus/guarded
- ../../../../components/volsync

4
kubernetes/apps/default/zwave-js-ui/app/kustomization.yaml
View File

@@ -4,5 +4,5 @@ apiVersion: kustomize.config.k8s.io/v1beta1
kind: Kustomization
resources:
- ./helmrelease.yaml
- ../../../../templates/gatus/guarded
- ../../../../templates/volsync
- ../../../../components/gatus/guarded
- ../../../../components/volsync

3
kubernetes/apps/external-secrets/kustomization.yaml
View File

@@ -2,5 +2,8 @@
# yaml-language-server: $schema=https://json.schemastore.org/kustomization
apiVersion: kustomize.config.k8s.io/v1beta1
kind: Kustomization
namespace: external-secrets
components:
- ../../components/common
resources:
- ./external-secrets/ks.yaml

2
kubernetes/apps/ngnode/landing-page/app-staging/kustomization.yaml
View File

@@ -4,6 +4,6 @@ apiVersion: kustomize.config.k8s.io/v1beta1
kind: Kustomization
resources:
- ./helmrelease.yaml
- ../../../../templates/gatus/external
- ../../../../components/gatus/external
generatorOptions:
disableNameSuffixHash: true

2
kubernetes/apps/ngnode/landing-page/app/kustomization.yaml
View File

@@ -4,6 +4,6 @@ apiVersion: kustomize.config.k8s.io/v1beta1
kind: Kustomization
resources:
- ./helmrelease.yaml
- ../../../../templates/gatus/external
- ../../../../components/gatus/external
generatorOptions:
disableNameSuffixHash: true

4
kubernetes/apps/observability/apprise/app/kustomization.yaml
View File

@@ -4,5 +4,5 @@ apiVersion: kustomize.config.k8s.io/v1beta1
kind: Kustomization
resources:
- ./helmrelease.yaml
- ../../../../templates/gatus/guarded
- ../../../../templates/volsync
- ../../../../components/gatus/guarded
- ../../../../components/volsync

2
kubernetes/apps/observability/pushgateway/app/kustomization.yaml
View File

@@ -4,4 +4,4 @@ apiVersion: kustomize.config.k8s.io/v1beta1
kind: Kustomization
resources:
- ./helmrelease.yaml
- ../../../../templates/gatus/guarded
- ../../../../components/gatus/guarded

2
kubernetes/apps/observability/scrutiny/app/kustomization.yaml
View File

@@ -3,4 +3,4 @@ kind: Kustomization
resources:
- ./externalsecret.yaml
- helmrelease.yaml
- ../../../../templates/volsync
- ../../../../components/volsync

29
kubernetes/components/common/alerts/alertmanager/alert.yaml Normal file
View File

@@ -0,0 +1,29 @@
---
# yaml-language-server: $schema=https://kubernetes-schemas.pages.dev/notification.toolkit.fluxcd.io/alert_v1beta3.json
apiVersion: notification.toolkit.fluxcd.io/v1beta3
kind: Alert
metadata:
name: alertmanager
spec:
providerRef:
name: alertmanager
eventSeverity: error
eventSources:
- kind: FluxInstance
name: "*"
- kind: GitRepository
name: "*"
- kind: HelmRelease
name: "*"
- kind: HelmRepository
name: "*"
- kind: Kustomization
name: "*"
- kind: OCIRepository
name: "*"
exclusionList:
- "error.*lookup github\\.com"
- "error.*lookup raw\\.githubusercontent\\.com"
- "dial.*tcp.*timeout"
- "waiting.*socket"
suspend: false

7
kubernetes/components/common/alerts/alertmanager/kustomization.yaml Normal file
View File

@@ -0,0 +1,7 @@
---
# yaml-language-server: $schema=https://json.schemastore.org/kustomization
apiVersion: kustomize.config.k8s.io/v1beta1
kind: Kustomization
resources:
- ./alert.yaml
- ./provider.yaml

9
kubernetes/components/common/alerts/alertmanager/provider.yaml Normal file
View File

@@ -0,0 +1,9 @@
---
# yaml-language-server: $schema=https://kubernetes-schemas.pages.dev/notification.toolkit.fluxcd.io/provider_v1beta3.json
apiVersion: notification.toolkit.fluxcd.io/v1beta3
kind: Provider
metadata:
name: alertmanager
spec:
type: alertmanager
address: http://alertmanager-operated.observability.svc.cluster.local:9093/api/v2/alerts/

12
kubernetes/components/common/alerts/github-status/alert.yaml Normal file
View File

@@ -0,0 +1,12 @@
---
# yaml-language-server: $schema=https://kubernetes-schemas.pages.dev/notification.toolkit.fluxcd.io/alert_v1beta3.json
apiVersion: notification.toolkit.fluxcd.io/v1beta3
kind: Alert
metadata:
name: github-status
spec:
providerRef:
name: github-status
eventSources:
- kind: Kustomization
name: "*"

18
kubernetes/components/common/alerts/github-status/externalsecret.yaml Normal file
View File

@@ -0,0 +1,18 @@
---
# yaml-language-server: $schema=https://kubernetes-schemas.pages.dev/external-secrets.io/externalsecret_v1beta1.json
apiVersion: external-secrets.io/v1beta1
kind: ExternalSecret
metadata:
name: github-status-token
spec:
secretStoreRef:
kind: ClusterSecretStore
name: onepassword
target:
name: github-status-token-secret
template:
data:
token: "{{ .GITHUB_NOTIFICATION_TOKEN }}"
dataFrom:
- extract:
key: flux

8
kubernetes/components/common/alerts/github-status/kustomization.yaml Normal file
View File

@@ -0,0 +1,8 @@
---
# yaml-language-server: $schema=https://json.schemastore.org/kustomization
apiVersion: kustomize.config.k8s.io/v1beta1
kind: Kustomization
resources:
- ./alert.yaml
- ./externalsecret.yaml
- ./provider.yaml

11
kubernetes/components/common/alerts/github-status/provider.yaml Normal file
View File

@@ -0,0 +1,11 @@
---
# yaml-language-server: $schema=https://kubernetes-schemas.pages.dev/notification.toolkit.fluxcd.io/provider_v1beta3.json
apiVersion: notification.toolkit.fluxcd.io/v1beta3
kind: Provider
metadata:
name: github-status
spec:
type: github
address: https://github.com/onedr0p/home-ops
secretRef:
name: github-status-token-secret

7
kubernetes/components/common/alerts/kustomization.yaml Normal file
View File

@@ -0,0 +1,7 @@
---
# yaml-language-server: $schema=https://json.schemastore.org/kustomization
apiVersion: kustomize.config.k8s.io/v1beta1
kind: Kustomization
resources:
- ./alertmanager
- ./github-status

10
kubernetes/components/common/kustomization.yaml Normal file
View File

@@ -0,0 +1,10 @@
---
# yaml-language-server: $schema=https://json.schemastore.org/kustomization
apiVersion: kustomize.config.k8s.io/v1alpha1
kind: Component
resources:
- ./namespace.yaml
- ./alerts
- ./repos
- ./sops
- ./vars

8
kubernetes/components/common/namespace.yaml Normal file
View File

@@ -0,0 +1,8 @@
---
apiVersion: v1
kind: Namespace
metadata:
name: not-used
annotations:
kustomize.toolkit.fluxcd.io/prune: disabled
volsync.backube/privileged-movers: "true"

6
kubernetes/components/common/repos/app-template/kustomization.yaml Normal file
View File

@@ -0,0 +1,6 @@
---
# yaml-language-server: $schema=https://json.schemastore.org/kustomization
apiVersion: kustomize.config.k8s.io/v1beta1
kind: Kustomization
resources:
- ./ocirepository.yaml

14
kubernetes/components/common/repos/app-template/ocirepository.yaml Normal file
View File

@@ -0,0 +1,14 @@
---
# yaml-language-server: $schema=https://kubernetes-schemas.pages.dev/source.toolkit.fluxcd.io/ocirepository_v1beta2.json
apiVersion: source.toolkit.fluxcd.io/v1beta2
kind: OCIRepository
metadata:
name: app-template
spec:
interval: 5m
layerSelector:
mediaType: application/vnd.cncf.helm.chart.content.v1.tar+gzip
operation: copy
ref:
tag: 3.7.3
url: oci://ghcr.io/bjw-s/helm/app-template

6
kubernetes/components/common/repos/kustomization.yaml Normal file
View File

@@ -0,0 +1,6 @@
---
# yaml-language-server: $schema=https://json.schemastore.org/kustomization
apiVersion: kustomize.config.k8s.io/v1beta1
kind: Kustomization
resources:
- ./app-template

5
kubernetes/components/common/sops/kustomization.yaml Normal file
View File

@@ -0,0 +1,5 @@
# yaml-language-server: $schema=https://json.schemastore.org/kustomization
apiVersion: kustomize.config.k8s.io/v1beta1
kind: Kustomization
resources:
- ./secret.sops.yaml

21
kubernetes/components/common/sops/secret.sops.yaml Normal file
View File

@@ -0,0 +1,21 @@
apiVersion: v1
kind: Secret
metadata:
name: sops-age
stringData:
age.agekey: ENC[AES256_GCM,data:/z6xIc2fN9p3hBB41JNq+n/+HL8M4ASkTWD1F6UVIIUXGeah6sckemJHkg0EFON4pBYUsX7E9tQNsus9407AkXN1tfvA2EQ4ZbUkJVkPivtexne/KPtEb54WIsY8RR+L3CbN2sg3xAO4VpiA9Wpf4CJv96PVpBscSKyfTxioYPyDd20XEa+XCpH6bgzO19p6mpOPTjEJtI5ekVSs0ufG7qj3U9ZTz3gLBxPZOefhZIHgHl4VxOV//wlmlGNd,iv:pW9DeLKKEmHM1RdqwXwuByVh+VshO/szNIW5jK/k8mc=,tag:FHIbmdy0d/v5HGnyAggClQ==,type:str]
sops:
age:
- recipient: age1hhurqwmfvl9m3vh3hk8urulfzcdsrep2ax2neazqt435yhpamu3qj20asg
enc: |
-----BEGIN AGE ENCRYPTED FILE-----
YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSA3dC92MU5MYWFLT2xYaE9W
N2ZQNjFIME1CQUdud3pBc2Z2UEhIU2tYZ2l3CnhCZkNibHUrZ0xUbXVHSFVHbWNq
SWlQR3h3Ulh0WXVyTlVSd2l6eFJLclUKLS0tIE1HS0dRODZyazN3aDJyamJtbUF5
dnZnWEFBSzBXVks4cUVsK1hrRERiUGcKJ3ljBl1X6EQ/JFljcYOeXLS/BXKlCyYV
yiYyl6Ig+81OvOaHaTVvf0OBFpBgge0dHItCCzB+DYq4JPUKbFN9Ng==
-----END AGE ENCRYPTED FILE-----
lastmodified: "2025-04-15T14:40:26Z"
mac: ENC[AES256_GCM,data:iqQH8X4MjuXSXOJVvqCjTM4Z8FQBVTLMBIk9TE27ojeOilgY/+pIKAcIRt2FPfmFaQn9UJtqgZ9QLb1FlPdsvvW7MBYDWBWtb1aD7ltpXPUUCg83zA6lb2nOqCEE29+k3LK/zSGynyItcoQOgh2TmZWhMxXIgUkUso7zg9XArEs=,iv:d/wdW80Ejdbq8YxtTVYV40/tuEa5FPD1kEJezk/4DfY=,tag:nFTu0tzOa6cGgQq0vYDsTw==,type:str]
encrypted_regex: ^(data|stringData)$
version: 3.10.2

39
kubernetes/components/common/vars/cluster-secrets.sops.yaml Normal file
View File

@@ -0,0 +1,39 @@
# yaml-language-server: $schema=https://raw.githubusercontent.com/yannh/kubernetes-json-schema/master/v1.26.1-standalone-strict/secret-v1.json
apiVersion: v1
kind: Secret
metadata:
name: cluster-secrets
namespace: flux-system
stringData:
SECRET_CLUSTER_CERTIFICATE_DEFAULT: ENC[AES256_GCM,data:8HotHVJva77fd9S+j2BB,iv:fqCDD0NuK9ySCsGGT3G4QsfViM2L9oPp9ZLgwXf0tLI=,tag:rX1quD8RTjvzV75fmwmC6w==,type:str]
SECRET_CLUSTER_DOMAIN_EMAIL: ENC[AES256_GCM,data:j1yBajAlXKQeDuvbV2IyJp8IT3wA,iv:pxPgYZEZ6pvcr6trM1gkL5MZORewARaiVfwRTyWxny0=,tag:y31EGp46NgF/Pf3hQ2Iavw==,type:str]
SECRET_CLOUDFLARE_TUNNEL_ID: ENC[AES256_GCM,data:nS0cVHEiuEk1w43AjcWNjGVecEr8RZr4iXsMCO9152bn2wWc,iv:jDz8AP6eCF5+CASt3ogR8vzAO5VkbZQ3pY2+AFmz15U=,tag:DVKZ3xSZLrW9pQIx0HJRCQ==,type:str]
SECRET_DOMAIN: ENC[AES256_GCM,data:UtdBDs6+azVHO7Y=,iv:ZnWrBW+vW6HiMs1PbgY2LjcwUwuUh1HxYjqvOXvCrDk=,tag:r6uDIJhVoTIcizIfRW+lHw==,type:str]
SECRET_EXTERNAL_DOMAIN: ENC[AES256_GCM,data:Brd9H7gizPxew+4=,iv:YaIxv9TFF0mAks9gJXwXA1N7b8k5mcSJ6hs9lpaUV/M=,tag:8xdRoWun3IUVywagpsrsBw==,type:str]
SECRET_INTERNAL_DOMAIN: ENC[AES256_GCM,data:WLuQAi9JsUsD5Q==,iv:Zc+5/rQONxepZFVC/ia01aBdlVyG99thOeIipeAVS3E=,tag:FwwjDKoUMfZ/taFPRRThOQ==,type:str]
SECRET_CROWDSEC_NGINX_BOUNCER_API_KEY: ENC[AES256_GCM,data:ecukkFOK40WWIxJ48sXrxJUBaHx2BnzqxkIT+cXYZg4=,iv:y6AfslVPufBfrIL3GQqTw0cDAan64mB9J7RY9OzKQqw=,tag:+V4Rgz26wey2UtA32S0PJQ==,type:str]
SECRET_KOMF_MAL_CLIENT_ID: ENC[AES256_GCM,data:HuKHFrICgCj6nbcbix8u7qGeggFmmKht7Elk9dINZtE=,iv:c3mqFdFkIO9dctZ3ooPh4ajOZaY0ZudEeNWbG+lryPI=,tag:jWG2+pgkAf/XUgJyUvdrNg==,type:str]
SECRET_KUBE_PROMETHEUS_STACK_ALERTMANAGER_PUSHOVER_USER_KEY: ENC[AES256_GCM,data:X1J9WLT26soYzlDb8+YtPotGw8p0lJKMuNkn69WX,iv:mW2cJOq5gfzSE+U24IuvPVL+dL2nZcTFpPAkG77Ohus=,tag:kxokidtuE5RAGJlj4Q4P2A==,type:str]
SECRET_KUBE_PROMETHEUS_STACK_ALERTMANAGER_PUSHOVER_TOKEN: ENC[AES256_GCM,data:Bwvuy/jHIRduy/r1A8dOs0OE8ewdjCgs8g/br1oW,iv:PdnPH9I509MT6UJkUG1zLAGn9aV4AVrROgAVCD4a3Y0=,tag:59kBGx9qx3jeauokyoolQQ==,type:str]
SECRET_KUBE_PROMETHEUS_STACK_GRAFANA_ADMIN_PASSWORD: ENC[AES256_GCM,data:L7LS6+tuwPCyb5HN4zg=,iv:JM2KTtDN/VrKicjp5qwqusWiJKHRZnfTtsZE2hkLq6Q=,tag:XGF3L5P6JxVBrlGuKosdZA==,type:str]
type: Opaque
sops:
kms: []
gcp_kms: []
azure_kv: []
hc_vault: []
age:
- recipient: age1hhurqwmfvl9m3vh3hk8urulfzcdsrep2ax2neazqt435yhpamu3qj20asg
enc: |
-----BEGIN AGE ENCRYPTED FILE-----
YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSBGVkZXb3RYbEZ5eTVSbmFE
R1QxMmw0ZzkvT0NIa01URTAvQ0xWa2tZKzNvCnl0UDQ1MGV6dEtuVEd2S0NhcThS
MGZ1VWNXMmxHSi90eFBGbXE2V0hwamcKLS0tIEp3a2ZTeTNyaXBhSW5nSU0yN1hu
WG82VkdBMlNnRzBySFQzMk41cEtXSlEKBqOmq9UpO61C85+pj0ibdT31y4pmFsbm
pTi4N0vv81kcf4ilqBU5h1gudNCb42Q2iL0eGNR4e3JzH4iaNsvnEg==
-----END AGE ENCRYPTED FILE-----
lastmodified: "2025-01-03T20:27:58Z"
mac: ENC[AES256_GCM,data:QgFNCP1l74XISc2/6byMOzk4brz0SkbfjLxgoLRaBx08BHULaJRHiNqRRyhaKF5ZjxsOxVYiFpHrWgfu/mi/InwA6nBttwNSM/+bzKabRC6vdgrLIIXxJKGKu7BlmtILF4uZRqKqcOIK+nrZS8YWdlOY0Vyzunh4kMQoyIvugRk=,iv:0HYH18NEag1KqIXwoiMPHkFiW1jaQkK1LJ5XhENPalw=,tag:RO8oMhTRBLOzf31DgV38CQ==,type:str]
pgp: []
encrypted_regex: ^(data|stringData)$
version: 3.9.3

34
kubernetes/components/common/vars/cluster-settings.yaml Normal file
View File

@@ -0,0 +1,34 @@
---
apiVersion: v1
kind: ConfigMap
metadata:
namespace: flux-system
name: cluster-settings
data:
CILIUM_BGP_SVC_RANGE: 192.168.169.0/24
CILIUM_POD_CIDR: 10.69.0.0/16
CLUSTER_LB_K8SGATEWAY: 192.168.169.100
CLUSTER_LB_SMTP_RELAY: 192.168.169.102
CLUSTER_LB_UNIFI: 192.168.169.103
CLUSTER_LB_GITEA: 192.168.169.104
CLUSTER_LB_QBITTORRENT: 192.168.169.105
CLUSTER_LB_RESILIOSYNC_CLAUDE: 192.168.169.106
CLUSTER_LB_HASS: 192.168.169.107
CLUSTER_LB_VECTOR: 192.168.169.108
CLUSTER_LB_EMQX: 192.168.169.109
CLUSTER_LB_JELLYFIN: 192.168.169.110
CLUSTER_LB_RESILIOSYNC_HELENE: 192.168.169.111
CLUSTER_LB_MAILRISE: 192.168.169.112
CLUSTER_LB_REDIS: 192.168.169.113
CLUSTER_LB_FRIGATE: 192.168.169.114
CLUSTER_LB_CILIUM: 192.168.169.115
CLUSTER_LB_LMS: 192.168.169.116
CLUSTER_LB_TDARR: 192.168.169.117
CLUSTER_LB_POSTGRES: 192.168.169.118
CLUSTER_LB_NGINX_INTERNAL: 192.168.169.119
CLUSTER_LB_NGINX_EXTERNAL: 192.168.169.120
LOCAL_LAN: 192.168.8.0/22
LOCAL_LAN_OPNSENSE: 192.168.8.1
LOCAL_LAN_TRUENAS: 192.168.9.10
LOCAL_LAN_TRUENAS_REMOTE: 10.10.0.2
TIMEZONE: Europe/Paris

7
kubernetes/components/common/vars/kustomization.yaml Normal file
View File

@@ -0,0 +1,7 @@
---
# yaml-language-server: $schema=https://raw.githubusercontent.com/SchemaStore/schemastore/master/src/schemas/json/kustomization.json
apiVersion: kustomize.config.k8s.io/v1beta1
kind: Kustomization
resources:
- ./cluster-secrets.sops.yaml
- ./cluster-settings.yaml

0
kubernetes/templates/gatus/external/configmap.yaml → kubernetes/components/gatus/external/configmap.yaml vendored
View File

0
kubernetes/templates/gatus/external/kustomization.yaml → kubernetes/components/gatus/external/kustomization.yaml vendored
View File

0
kubernetes/templates/gatus/guarded/configmap.yaml → kubernetes/components/gatus/guarded/configmap.yaml
View File

0
kubernetes/templates/gatus/guarded/kustomization.yaml → kubernetes/components/gatus/guarded/kustomization.yaml
View File

2
kubernetes/templates/volsync/README.md → kubernetes/components/volsync/README.md
View File

@@ -25,7 +25,7 @@ apiVersion: kustomize.config.k8s.io/v1beta1
kind: Kustomization
resources:
# ...
- ../../../../templates/volsync
- ../../../../components/volsync
```
## Required `postBuild` vars:

0
kubernetes/templates/volsync/claim.yaml → kubernetes/components/volsync/claim.yaml
View File

0
kubernetes/templates/volsync/kustomization.yaml → kubernetes/components/volsync/kustomization.yaml
View File

0
kubernetes/templates/volsync/minio.yaml → kubernetes/components/volsync/minio.yaml
View File