Commit graph

181 commits

Author SHA1 Message Date
c337e2551f disable post-upgrade task for now 2024-10-14 10:39:55 -07:00
2952eb74b4 Move renovate config to file, use renovate-full image 2024-10-14 10:31:36 -07:00
b3b63977af try helm render-all in container 2024-10-14 09:46:02 -07:00
14554c31c8 fix auth for spoolman 2024-10-13 16:54:22 -07:00
7475d7499c render updated chart
All checks were successful
/ render-helm (push) Successful in 21s
2024-10-07 21:10:44 +00:00
08f0c9c615 spoolman: misc fixes 2024-10-07 14:09:52 -07:00
841fa5e55a Add spoolman 2024-10-06 19:07:28 -07:00
c260b264b8 pin specific forgejo version 2024-10-06 11:29:02 -07:00
df35fa061a chore(deps): update ghcr.io/shlinkio/shlink docker tag to v4.2.1 2024-10-04 12:01:58 +00:00
38a3b85f98 chore(deps): update docker.io/metio/matrix-alertmanager-receiver docker tag to v2024.10.2 2024-10-02 16:43:58 +00:00
877e7637d4 chore(deps): update snipe/snipe-it docker tag to v7.0.13 2024-10-02 16:43:29 +00:00
01ffa3e40c Pin a bunch of things that were on :latest
All checks were successful
/ build-keycloak (push) Successful in 48s
2024-10-01 16:05:20 -07:00
a6a1bb582b chore(deps): update docker.io/library/mysql docker tag to v9 2024-10-01 18:13:18 +00:00
44620e7d77 chore(deps): update quay.io/thanos/thanos docker tag to v0.36.1 2024-10-01 17:02:09 +00:00
8635e71a85 bump mas 2024-10-01 09:32:48 -07:00
8adf34cecf chore(deps): update ghcr.io/charlesthomas/bitwarden-cli docker tag to v2024.9.0 2024-10-01 16:29:46 +00:00
a974fb4da6 render helm update
All checks were successful
/ render-helm (push) Successful in 21s
2024-09-25 11:19:12 -07:00
341809bd18 Add forgejo-dev 2024-09-12 15:47:30 -07:00
6f568ffc4e fix openbao image again
All checks were successful
/ render-helm (push) Successful in 19s
2024-09-10 10:08:09 -07:00
0749802038 Fix openbao csi driver images maybe 2024-09-10 09:39:36 -07:00
4511625be7 Update rendered external-secrets 2024-09-10 09:22:21 -07:00
3597cd82d4 Fix OpenBao image 2024-09-10 09:19:54 -07:00
de602d98f2 Initial bao authorization stuff for k8s service accounts working! 2024-09-10 09:19:25 -07:00
3acaaf6d09 use opentofu to configure openbao + other bao fixes 2024-09-10 00:32:48 -07:00
d1a494e295 Add WIP secret store CSI driver with openbao 2024-09-09 10:02:39 -07:00
62d0e4ba6c forgejo: change default PR merge strategy to rebase 2024-09-07 23:27:58 -07:00
d9072b15e0 chore(deps): update dependency zalando/postgres-operator to v1.13.0 2024-09-08 05:08:43 +00:00
1ce70c5010 tweak traefik dashboard rule 2024-09-07 21:56:18 -07:00
f116012a37 Add renovatebot 2024-09-07 21:56:18 -07:00
2433b112c9 fix MAS ingressrule 2024-09-07 21:56:18 -07:00
ccb985d32b chore(deps): update quay.io/thanos/thanos docker tag to v0.36.1 2024-09-08 04:54:47 +00:00
b4e71c3e73 snipeit: force TLS 2024-09-02 19:49:23 -07:00
318dcf3fe1 thanos compactor: use emptydir instead of a longhorn volume 2024-09-02 13:41:56 -07:00
bc283bd014 fix matrix ingressroute 2024-09-02 13:41:48 -07:00
fb04f4bc3c increase thanos compactor volume size even more 2024-09-01 21:51:53 -07:00
ac86495db7 thanos fixes: set replica label and bump memory limits 2024-09-01 19:57:31 -07:00
5b210cd0cd Increase volume sizes that were filling up 2024-09-01 19:21:47 -07:00
99eb5598c7 fix homeserver url 2024-09-01 18:36:45 -07:00
8d7ab62a3a alertmanager matrix receiver 2024-09-01 18:07:04 -07:00
ba35dc9b32 add openbao ingress 2024-09-01 16:12:06 -07:00
3ef702fb52 Add longhorn monitoring + alerting 2024-09-01 16:11:26 -07:00
3ef7c7edaf openbao booted successfully 2024-08-29 23:20:33 -07:00
49d2740813 Fix helm stuff 2024-08-26 22:52:41 -07:00
129d0d5b02 Initial openbao 2024-08-26 22:50:51 -07:00
b8e56eab20 matrix: add services required for ElementX to work (sliding-sync + MAS) 2024-08-22 12:33:22 -07:00
e69179cbb5 Use External Secrets 2024-08-20 11:13:23 -07:00
b1741057df move janky.bot root to its own ingress 2024-08-19 14:05:05 -07:00
2c282a84e0 drop unused prom scrape 2024-08-18 23:10:13 -07:00
933453ce34 Back to mainline miniflux
my changes got merged and a release happened!
2024-08-18 23:09:38 -07:00
d884b2536f Keycloak: redirect / to /realms/janky.solutions/account 2024-08-16 11:54:32 -07:00
7bcdf2ff96 raise some CPU limits to reduce CPU throttling 2024-08-15 12:11:37 -07:00
101c362036 bump kube-prometheus 2024-08-14 22:56:50 -07:00
37f1d06053 Add thanos querier ingress 2024-08-14 22:48:10 -07:00
5e34870065 Add Thanos to monitoring. just for historical data storage currently, alerting still happens the old fashion way 2024-08-14 17:00:56 -07:00
91169b00d9 Bump cert manager 2024-08-13 12:42:13 -07:00
9d3819ee1a Fix promtail running on usb nodes 2024-08-13 12:41:02 -07:00
e390b1e675 Update miniflux image tag 2024-08-13 00:11:31 -07:00
869c92d710 add alertmanager/prometheus external URLs + patch some alerts that fail on rclonefs 2024-08-12 18:00:24 -07:00
96123a83b9 Add traefik-forward-auth yaml that was missed in a previous commit 2024-08-12 16:39:12 -07:00
24e3dbfa7f Add central forward auth 2024-08-12 15:35:22 -07:00
4a3123655f Move grafana storage to persistent database 2024-08-11 22:07:48 -07:00
29273a1a55 Remove monitoring rules from kube-prometheus that don't apply to k3s 2024-08-08 15:04:43 -07:00
91c5d270ea drop matrix vm from monitoring + fix synapse prom listener 2024-08-08 14:30:36 -07:00
eced9bae67 Move janky.solutions matrix homeserver into kubernetes 2024-08-08 12:52:46 -07:00
35b9d46c34 Add snipe-it 2024-08-07 18:51:51 -07:00
a613bcb705 Add hypervisor-d targets to scrape-configs 2024-08-05 00:20:22 -07:00
41a2f09959 Update traefik internal services template 2024-08-02 16:09:41 -07:00
ff18cdf1cf fix shlink fs user/group 2024-08-02 13:59:14 -07:00
37ea3f982e bump forgejo 2024-08-02 13:58:57 -07:00
ef12abb865 Add usb node auto-updater 2024-08-02 13:58:29 -07:00
b5965274a4 Add traefik config file to route to services out of cluster 2024-08-02 13:57:50 -07:00
9d1c4d07f5 use remote postgres-operator yaml 2024-07-28 16:28:23 -07:00
b6e8410422 Ref external system-upgrade-controller files 2024-07-28 11:32:26 -07:00
efad4cf7f3 Fix up invoiceninja 2024-07-27 20:34:07 -07:00
f168943def Update keycloak url for miniflux 2024-07-27 19:11:38 -07:00
d5e276cc02 more dashboard stuff 2024-07-27 19:10:21 -07:00
e342f1ade7 Add config for grafana 2024-07-27 12:11:56 -07:00
b2691bcec6 fix longhorn config 2024-07-26 21:50:19 -07:00
89f333ecdd include k8s/system in kustomization 2024-07-26 15:30:46 -07:00
439a88927b Update keycloak domain 2024-07-26 15:30:12 -07:00
529d6cda4c add cert-manager controller args 2024-07-26 15:29:15 -07:00
3cd43008f2 Use remote longhorn yaml 2024-07-26 15:28:25 -07:00
d6fac56f2e keycloak's ingress is no longer special 2024-07-18 11:56:27 -07:00
364819fbf7 dont require forgejo users to re-verify their email 2024-07-18 11:55:59 -07:00
8289cc43db remove secrets from system 2024-07-18 01:08:32 -07:00
09fbb9ec29 Add traefik default certificate 2024-07-18 01:07:52 -07:00
ed90e1e7cc break up shlink into components, add cron job, add TLS cert for ingress 2024-07-18 00:42:20 -07:00
b9b87b326d fix keycloak remote IP detection 2024-07-17 21:54:47 -07:00
5682160eab give matrix.janky.bot it's own cert 2024-07-17 21:53:18 -07:00
448c9411e4 add miniflux 2024-07-17 21:32:13 -07:00
a894c8cf50 Migrate cert-manager to externally controlled file + patches 2024-07-16 12:59:08 -07:00
a75829d3b2 Custom keycloak image 2024-07-14 22:12:20 -07:00
ce672388b2 add keycloak 2024-07-10 20:24:06 -07:00
4b7717d07a allow prom to scrape services and endpoints 2024-07-10 20:18:39 -07:00
8280da0007 update scrape-configs 2024-07-10 17:56:14 -07:00
a8eb338e86 add longhorn operator 2024-07-10 17:55:34 -07:00
9088fad25e enable k8s scraping by annotation servicemonitors are too hard 2024-07-10 15:57:09 -07:00
fd41ce8cc2 Add additional scrape configs for prometheus 2024-07-10 15:53:01 -07:00
2d123afcd0 add prom scrape annotations to matrix pods 2024-07-10 15:37:38 -07:00
f395337e2e Add kube-prometheus 2024-07-09 21:10:53 -07:00