Commit graph

109 commits

Author SHA1 Message Date
de602d98f2 Initial bao authorization stuff for k8s service accounts working! 2024-09-10 09:19:25 -07:00
3acaaf6d09 use opentofu to configure openbao + other bao fixes 2024-09-10 00:32:48 -07:00
d1a494e295 Add WIP secret store CSI driver with openbao 2024-09-09 10:02:39 -07:00
62d0e4ba6c forgejo: change default PR merge strategy to rebase 2024-09-07 23:27:58 -07:00
d9072b15e0 chore(deps): update dependency zalando/postgres-operator to v1.13.0 2024-09-08 05:08:43 +00:00
1ce70c5010 tweak traefik dashboard rule 2024-09-07 21:56:18 -07:00
f116012a37 Add renovatebot 2024-09-07 21:56:18 -07:00
2433b112c9 fix MAS ingressrule 2024-09-07 21:56:18 -07:00
ccb985d32b chore(deps): update quay.io/thanos/thanos docker tag to v0.36.1 2024-09-08 04:54:47 +00:00
b4e71c3e73 snipeit: force TLS 2024-09-02 19:49:23 -07:00
318dcf3fe1 thanos compactor: use emptydir instead of a longhorn volume 2024-09-02 13:41:56 -07:00
bc283bd014 fix matrix ingressroute 2024-09-02 13:41:48 -07:00
fb04f4bc3c increase thanos compactor volume size even more 2024-09-01 21:51:53 -07:00
ac86495db7 thanos fixes: set replica label and bump memory limits 2024-09-01 19:57:31 -07:00
5b210cd0cd Increase volume sizes that were filling up 2024-09-01 19:21:47 -07:00
99eb5598c7 fix homeserver url 2024-09-01 18:36:45 -07:00
8d7ab62a3a alertmanager matrix receiver 2024-09-01 18:07:04 -07:00
ba35dc9b32 add openbao ingress 2024-09-01 16:12:06 -07:00
3ef702fb52 Add longhorn monitoring + alerting 2024-09-01 16:11:26 -07:00
3ef7c7edaf openbao booted successfully 2024-08-29 23:20:33 -07:00
49d2740813 Fix helm stuff 2024-08-26 22:52:41 -07:00
129d0d5b02 Initial openbao 2024-08-26 22:50:51 -07:00
b8e56eab20 matrix: add services required for ElementX to work (sliding-sync + MAS) 2024-08-22 12:33:22 -07:00
e69179cbb5 Use External Secrets 2024-08-20 11:13:23 -07:00
b1741057df move janky.bot root to its own ingress 2024-08-19 14:05:05 -07:00
2c282a84e0 drop unused prom scrape 2024-08-18 23:10:13 -07:00
933453ce34 Back to mainline miniflux
my changes got merged and a release happened!
2024-08-18 23:09:38 -07:00
d884b2536f Keycloak: redirect / to /realms/janky.solutions/account 2024-08-16 11:54:32 -07:00
7bcdf2ff96 raise some CPU limits to reduce CPU throttling 2024-08-15 12:11:37 -07:00
101c362036 bump kube-prometheus 2024-08-14 22:56:50 -07:00
37f1d06053 Add thanos querier ingress 2024-08-14 22:48:10 -07:00
5e34870065 Add Thanos to monitoring. just for historical data storage currently, alerting still happens the old fashion way 2024-08-14 17:00:56 -07:00
91169b00d9 Bump cert manager 2024-08-13 12:42:13 -07:00
9d3819ee1a Fix promtail running on usb nodes 2024-08-13 12:41:02 -07:00
e390b1e675 Update miniflux image tag 2024-08-13 00:11:31 -07:00
869c92d710 add alertmanager/prometheus external URLs + patch some alerts that fail on rclonefs 2024-08-12 18:00:24 -07:00
96123a83b9 Add traefik-forward-auth yaml that was missed in a previous commit 2024-08-12 16:39:12 -07:00
24e3dbfa7f Add central forward auth 2024-08-12 15:35:22 -07:00
4a3123655f Move grafana storage to persistent database 2024-08-11 22:07:48 -07:00
29273a1a55 Remove monitoring rules from kube-prometheus that don't apply to k3s 2024-08-08 15:04:43 -07:00
91c5d270ea drop matrix vm from monitoring + fix synapse prom listener 2024-08-08 14:30:36 -07:00
eced9bae67 Move janky.solutions matrix homeserver into kubernetes 2024-08-08 12:52:46 -07:00
35b9d46c34 Add snipe-it 2024-08-07 18:51:51 -07:00
a613bcb705 Add hypervisor-d targets to scrape-configs 2024-08-05 00:20:22 -07:00
41a2f09959 Update traefik internal services template 2024-08-02 16:09:41 -07:00
ff18cdf1cf fix shlink fs user/group 2024-08-02 13:59:14 -07:00
37ea3f982e bump forgejo 2024-08-02 13:58:57 -07:00
ef12abb865 Add usb node auto-updater 2024-08-02 13:58:29 -07:00
b5965274a4 Add traefik config file to route to services out of cluster 2024-08-02 13:57:50 -07:00
9d1c4d07f5 use remote postgres-operator yaml 2024-07-28 16:28:23 -07:00