shpaq/auricom-home-cluster
1
0
Fork 0
mirror of https://github.com/auricom/home-cluster.git synced 2025-09-17 18:24:14 +02:00
Code Issues Packages Projects Releases Wiki Activity

🩹 bootstrap

Browse Source
This commit is contained in:
auricom
2022-12-30 04:29:45 +01:00
parent 4412515cc6
commit e7db09f87f
19 changed files with 76 additions and 36 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
.taskfiles/VolSync/ReplicationDestination.tmpl.yaml
View File

@@ -17,4 +17,4 @@ spec:
# from a application that started with default data in the PVC. # from a application that started with default data in the PVC.
# Do not restore snapshots made after the following RFC3339 Timestamp. # Do not restore snapshots made after the following RFC3339 Timestamp.
# date --rfc-3339=seconds (--utc) # date --rfc-3339=seconds (--utc)
# restoreAsOf: "2022-12-10T16:00:00-05:00" restoreAsOf: "2022-12-29T01:00:00-05:00"

36
kubernetes/apps/default/cloudnative-pg/cluster/cluster.yaml
View File

@@ -24,7 +24,7 @@ spec:
maxParallel: 8 maxParallel: 8
destinationPath: s3://postgresql/ destinationPath: s3://postgresql/
endpointURL: https://truenas.${SECRET_DOMAIN}:51515 endpointURL: https://truenas.${SECRET_DOMAIN}:51515
serverName: postgres-v4 serverName: postgres-v5
s3Credentials: s3Credentials:
accessKeyId: accessKeyId:
name: postgres-minio name: postgres-minio
@@ -32,20 +32,20 @@ spec:
secretAccessKey: secretAccessKey:
name: postgres-minio name: postgres-minio
key: MINIO_SECRET_KEY key: MINIO_SECRET_KEY
# bootstrap: bootstrap:
# recovery: recovery:
# source: postgres source: postgres-v4
# externalClusters: externalClusters:
# - name: postgres - name: postgres-v4
# barmanObjectStore: barmanObjectStore:
# destinationPath: s3://postgresql/ destinationPath: s3://postgresql/
# endpointURL: https://truenas.${SECRET_DOMAIN}:51515 endpointURL: https://truenas.${SECRET_DOMAIN}:51515
# s3Credentials: s3Credentials:
# accessKeyId: accessKeyId:
# name: postgres-minio name: postgres-minio
# key: MINIO_ACCESS_KEY key: MINIO_ACCESS_KEY
# secretAccessKey: secretAccessKey:
# name: postgres-minio name: postgres-minio
# key: MINIO_SECRET_KEY key: MINIO_SECRET_KEY
# wal: wal:
# maxParallel: 8 maxParallel: 8

1
kubernetes/apps/default/drone/app/kustomization.yaml
View File

@@ -5,4 +5,3 @@ kind: Kustomization
namespace: default namespace: default
resources: resources:
- ./helmrelease.yaml - ./helmrelease.yaml
- ./secret.sops.yaml

1
kubernetes/apps/default/drone/kubernetes-secrets/kustomization.yaml
View File

@@ -5,3 +5,4 @@ kind: Kustomization
namespace: default namespace: default
resources: resources:
- ./helmrelease.yaml - ./helmrelease.yaml
- ./secret.sops.yaml

0
kubernetes/apps/default/drone/app/secret.sops.yaml → kubernetes/apps/default/drone/kubernetes-secrets/secret.sops.yaml
View File

1
kubernetes/apps/default/tandoor/app/kustomization.yaml
View File

@@ -4,6 +4,7 @@ apiVersion: kustomize.config.k8s.io/v1beta1
kind: Kustomization kind: Kustomization
namespace: default namespace: default
resources: resources:
- ./backups
- ./helmrelease.yaml - ./helmrelease.yaml
- ./secret.sops.yaml - ./secret.sops.yaml
- ./volume.yaml - ./volume.yaml

23
kubernetes/apps/default/unifi/replicationsource.yaml Normal file
View File

@@ -0,0 +1,23 @@
---
# yaml-language-server: $schema=https://kubernetes-schemas.devbu.io/replicationsource_v1alpha1.json
apiVersion: volsync.backube/v1alpha1
kind: ReplicationSource
metadata:
name: unifi
namespace: default
spec:
sourcePVC: unifi-config
trigger:
schedule: "0 0 * * *"
restic:
copyMethod: Snapshot
pruneIntervalDays: 10
repository: bazarr-restic-secret
cacheCapacity: 2Gi
volumeSnapshotClassName: csi-ceph-blockpool
storageClassName: rook-ceph-block
retain:
hourly: 0
daily: 10
weekly: 0
monthly: 0

2
kubernetes/apps/kube-system/kustomization.yaml
View File

@@ -9,7 +9,7 @@ resources:
- ./cilium/ks.yaml - ./cilium/ks.yaml
- ./descheduler/ks.yaml - ./descheduler/ks.yaml
- ./intel-gpu/ks.yaml - ./intel-gpu/ks.yaml
- ./kubelet-csr-approver/ks.yaml # - ./kubelet-csr-approver/ks.yaml
- ./metrics-server/ks.yaml - ./metrics-server/ks.yaml
- ./node-feature-discovery/ks.yaml - ./node-feature-discovery/ks.yaml
- ./reloader/ks.yaml - ./reloader/ks.yaml

17
kubernetes/apps/kustomization.yaml
View File

@@ -3,13 +3,12 @@
apiVersion: kustomize.config.k8s.io/v1beta1 apiVersion: kustomize.config.k8s.io/v1beta1
kind: Kustomization kind: Kustomization
resources: resources:
# - ./cert-manager - ./cert-manager
# - ./default - ./default
# - ./flux-system - ./flux-system
# - ./kube-system - ./kube-system
# - ./kyverno - ./kyverno
# - ./monitoring - ./monitoring
# - ./networking - ./networking
- ./rook-ceph - ./rook-ceph
# - ./trivy-system - ./volsync
# - ./volsync

1
kubernetes/apps/monitoring/kube-prometheus-stack/ks.yaml
View File

@@ -10,6 +10,7 @@ metadata:
spec: spec:
dependsOn: dependsOn:
- name: cluster-apps-rook-ceph-cluster - name: cluster-apps-rook-ceph-cluster
- name: cluster-apps-thanos-app
path: ./kubernetes/apps/monitoring/kube-prometheus-stack/app path: ./kubernetes/apps/monitoring/kube-prometheus-stack/app
prune: true prune: true
sourceRef: sourceRef:

8
kubernetes/apps/monitoring/kustomization.yaml
View File

@@ -6,9 +6,9 @@ resources:
# Pre Flux-Kustomizations # Pre Flux-Kustomizations
- ./namespace.yaml - ./namespace.yaml
# Flux-Kustomizations # Flux-Kustomizations
- ./grafana/ks.yaml # - ./grafana/ks.yaml
- ./kube-prometheus-stack/ks.yaml - ./kube-prometheus-stack/ks.yaml
- ./loki/ks.yaml # - ./loki/ks.yaml
- ./smartctl-exporter/ks.yaml # - ./smartctl-exporter/ks.yaml
- ./thanos/ks.yaml - ./thanos/ks.yaml
- ./vector/ks.yaml # - ./vector/ks.yaml

2
kubernetes/apps/monitoring/thanos/ks.yaml
View File

@@ -9,7 +9,7 @@ metadata:
substitution.flux.home.arpa/enabled: "true" substitution.flux.home.arpa/enabled: "true"
spec: spec:
dependsOn: dependsOn:
- name: cluster-apps-kube-prometheus-stack-app - name: cluster-apps-rook-ceph-cluster
path: ./kubernetes/apps/monitoring/thanos/app path: ./kubernetes/apps/monitoring/thanos/app
prune: true prune: true
sourceRef: sourceRef:

1
kubernetes/apps/rook-ceph/namespace.yaml
View File

@@ -6,4 +6,3 @@ metadata:
labels: labels:
kustomize.toolkit.fluxcd.io/prune: disabled kustomize.toolkit.fluxcd.io/prune: disabled
pod-security.kubernetes.io/enforce: privileged pod-security.kubernetes.io/enforce: privileged
pod-security.kubernetes.io/enforce-version: latest

0
kubernetes/apps/trivy-system/kustomization.yaml → kubernetes/archive/trivy-system/kustomization.yaml
View File

0
kubernetes/apps/trivy-system/namespace.yaml → kubernetes/archive/trivy-system/namespace.yaml
View File

0
kubernetes/apps/trivy-system/trivy-operator/app/helmrelease.yaml → kubernetes/archive/trivy-system/trivy-operator/app/helmrelease.yaml
View File

0
kubernetes/apps/trivy-system/trivy-operator/app/kustomization.yaml → kubernetes/archive/trivy-system/trivy-operator/app/kustomization.yaml
View File

0
kubernetes/apps/trivy-system/trivy-operator/ks.yaml → kubernetes/archive/trivy-system/trivy-operator/ks.yaml
View File

17
kubernetes/flux/config/flux.yaml
View File

@@ -46,3 +46,20 @@ spec:
target: target:
kind: Deployment kind: Deployment
name: "(kustomize-controller|helm-controller|source-controller)" name: "(kustomize-controller|helm-controller|source-controller)"
- patch: |
apiVersion: v1
kind: Deployment
metadata:
name: helm-controller
spec:
template:
spec:
containers:
- name: manager
resources:
limits:
memory:
$patch: delete
target:
kind: Deployment
name: helm-controller