Compare commits

...

69 Commits

Author SHA1 Message Date
Renovate Bot 3afcd23da3 feat(helm): update chart app-template to 3.5.0 2024-10-04 16:07:30 +00:00
SeanOMik a7893d9dd0 feat(github-release): update fluxcd/flux2 to v2.4.0 (#422) 2024-10-02 10:01:48 -04:00
Renovate Bot 4816c404e0 feat(github-release): update fluxcd/flux2 to v2.4.0 2024-10-02 10:01:48 -04:00
SeanOMik 7a384eae60 fix(helm): update chart authentik to 2024.8.3 (#418) 2024-10-02 10:01:34 -04:00
Renovate Bot a9c35bbaca fix(helm): update chart authentik to 2024.8.3 2024-10-02 10:01:34 -04:00
SeanOMik 66990cd255 fix(container): update image ghcr.io/onedr0p/sonarr-develop to v4.0.9.2457 (#416) 2024-10-02 10:01:19 -04:00
Renovate Bot 792c9c56ab fix(container): update image ghcr.io/onedr0p/sonarr-develop to v4.0.9.2457 2024-10-02 10:01:19 -04:00
SeanOMik 4280db95cb fix(container): update image ghcr.io/zibbp/ganymede to v3.0.2 (#417) 2024-10-02 10:01:04 -04:00
Renovate Bot acb2909595 fix(container): update image ghcr.io/zibbp/ganymede to v3.0.2 2024-10-02 10:01:04 -04:00
SeanOMik 86fda2c5b2 feat(container): update image ghcr.io/onedr0p/radarr-develop to v5.12.0.9255 (#419) 2024-10-02 10:00:46 -04:00
Renovate Bot 266153565c feat(container): update image ghcr.io/onedr0p/radarr-develop to v5.12.0.9255 2024-10-02 10:00:46 -04:00
SeanOMik 6fa7698b8a feat(helm): update chart intel-device-plugins-gpu to 0.31.0 (#423) 2024-10-02 10:00:28 -04:00
Renovate Bot 666b154557 feat(helm): update chart intel-device-plugins-gpu to 0.31.0 2024-10-02 10:00:28 -04:00
SeanOMik c7205cdfbb feat(helm): update chart intel-device-plugins-operator to 0.31.0 (#424) 2024-10-02 10:00:14 -04:00
Renovate Bot 000378fafc feat(helm): update chart intel-device-plugins-operator to 0.31.0 2024-10-02 10:00:14 -04:00
SeanOMik 9024c66338 fix(helm): update chart victoria-metrics-operator to 0.35.2 (#420) 2024-10-02 09:59:59 -04:00
Renovate Bot c9b6ec2b17 fix(helm): update chart victoria-metrics-operator to 0.35.2 2024-10-02 09:59:59 -04:00
SeanOMik 356ef0fdd5 feat(container): update image victoriametrics/victoria-metrics to v1.104.0 (#425) 2024-10-02 09:59:45 -04:00
Renovate Bot b0f6a2cf7b feat(container): update image victoriametrics/victoria-metrics to v1.104.0 2024-10-02 09:59:45 -04:00
SeanOMik 592f364996 feat(container): update image victoriametrics/vmagent to v1.104.0 (#426) 2024-10-02 09:59:33 -04:00
Renovate Bot eab0e7d22f feat(container): update image victoriametrics/vmagent to v1.104.0 2024-10-02 09:59:33 -04:00
SeanOMik ff87987190 fix(container): update image bobokun/qbit_manage to v4.1.10 (#427) 2024-10-02 09:59:09 -04:00
Renovate Bot 60072f202e fix(container): update image bobokun/qbit_manage to v4.1.10 2024-10-02 09:59:09 -04:00
SeanOMik 5a93810857 fix(container): update image ghcr.io/onedr0p/bazarr to v1.4.5 (#428) 2024-10-02 09:58:54 -04:00
Renovate Bot 4867e6a829 fix(container): update image ghcr.io/onedr0p/bazarr to v1.4.5 2024-10-02 09:58:54 -04:00
SeanOMik 6ed9c49ee2 fix(helm): update chart grafana to 8.5.2 (#429) 2024-10-02 09:58:42 -04:00
Renovate Bot 024d0f96bd fix(helm): update chart grafana to 8.5.2 2024-10-02 09:58:42 -04:00
SeanOMik 1d206a2ced fix(helm): update chart redis to 20.1.6 (#430) 2024-10-02 09:58:28 -04:00
Renovate Bot 04983096d7 fix(helm): update chart redis to 20.1.6 2024-10-02 09:58:28 -04:00
SeanOMik e304c3b9fa feat(helm)!: Update chart kube-prometheus-stack to 64.0.0 (#431) 2024-10-02 09:58:14 -04:00
Renovate Bot db3f4be256 feat(helm)!: Update chart kube-prometheus-stack to 64.0.0 2024-10-02 13:07:00 +00:00
SeanOMik e37143152f
flux(cilium): use correct k8s service host 2024-09-27 16:11:18 -04:00
SeanOMik 1354fd1205
fix: change nginx load balancer ips to use new pool 2024-09-27 16:04:57 -04:00
SeanOMik bb16a89a25
feat: add grafana and kube-prometheus-stack for kubernetes and node exporters 2024-09-27 16:01:19 -04:00
SeanOMik a64e2fed75
feat(cilium): add cilium config that enables everything needed for l2 loadbalancing 2024-09-27 16:01:18 -04:00
SeanOMik 3578438b19 Merge pull request 'fix(container): update image ghcr.io/onedr0p/prowlarr-develop to v1.24.3.4754' (#409) from renovate/ghcr.io-onedr0p-prowlarr-develop-1.x into main
Reviewed-on: #409
2024-09-27 15:52:56 -04:00
Renovate Bot fc4d6eae2d fix(container): update image ghcr.io/onedr0p/prowlarr-develop to v1.24.3.4754 2024-09-27 15:52:56 -04:00
SeanOMik 33def0d993 Merge pull request 'fix(helm): update chart redis to 20.1.5' (#410) from renovate/redis-20.x into main
Reviewed-on: #410
2024-09-27 15:51:43 -04:00
Renovate Bot c44c3931a7 fix(helm): update chart redis to 20.1.5 2024-09-27 15:51:43 -04:00
SeanOMik 11d17080ad Merge pull request 'feat(container): update image gotson/komga to v1.14.0' (#411) from renovate/gotson-komga-1.x into main
Reviewed-on: #411
2024-09-27 15:03:19 -04:00
Renovate Bot ef5dd3f481 feat(container): update image gotson/komga to v1.14.0 2024-09-27 15:03:19 -04:00
SeanOMik d02676798e Merge pull request 'feat(helm): update chart victoria-metrics-operator to 0.35.1' (#412) from renovate/victoria-metrics-operator-0.x into main
Reviewed-on: #412
2024-09-27 14:46:04 -04:00
Renovate Bot c64805fd30 feat(helm): update chart victoria-metrics-operator to 0.35.1 2024-09-27 14:46:04 -04:00
SeanOMik 986d52e9e3 Merge pull request 'feat(helm)!: Update chart kube-prometheus-stack to 63.1.0' (#414) from renovate/kube-prometheus-stack-63.x into main
Reviewed-on: #414
2024-09-27 14:20:05 -04:00
Renovate Bot e60a26c287 feat(helm)!: Update chart kube-prometheus-stack to 63.1.0 2024-09-27 14:20:05 -04:00
SeanOMik 7702f2d4c2 Merge pull request 'feat(github-release)!: Update traefik-crd-source to v32.0.0' (#413) from renovate/traefik-crd-source-32.x into main
Reviewed-on: #413
2024-09-27 14:18:00 -04:00
Renovate Bot 30934d0e84 feat(github-release)!: Update traefik-crd-source to v32.0.0 2024-09-27 14:18:00 -04:00
SeanOMik 7d26caeb53 Merge pull request 'feat(helm)!: Update chart traefik to 32.0.0' (#415) from renovate/traefik-32.x into main
Reviewed-on: #415
2024-09-27 14:13:27 -04:00
Renovate Bot 6a9cdc51ee feat(helm)!: Update chart traefik to 32.0.0 2024-09-27 10:08:21 +00:00
SeanOMik b0bb6723e1 Merge pull request 'fix(container): update image ghcr.io/onedr0p/home-assistant to v2024.9.3' (#400) from renovate/ghcr.io-onedr0p-home-assistant-2024.x into main
Reviewed-on: #400
2024-09-25 15:59:12 -04:00
Renovate Bot cd72a45adf fix(container): update image ghcr.io/onedr0p/home-assistant to v2024.9.3 2024-09-25 15:59:12 -04:00
SeanOMik c28125a03c Merge pull request 'fix(github-release): update traefik-crd-source to v31.1.1' (#401) from renovate/traefik-crd-source-31.x into main
Reviewed-on: #401
2024-09-25 15:58:37 -04:00
Renovate Bot c83d4c70b8 fix(github-release): update traefik-crd-source to v31.1.1 2024-09-25 15:58:37 -04:00
SeanOMik 98a5385388 Merge pull request 'feat(helm)!: Update chart traefik to 31.1.1' (#402) from renovate/traefik-31.x into main
Reviewed-on: #402
2024-09-25 15:57:57 -04:00
Renovate Bot 7d34db3f99 feat(helm)!: Update chart traefik to 31.1.1 2024-09-25 15:57:57 -04:00
SeanOMik f285fe2f45 Merge pull request 'feat(container): update image ghcr.io/onedr0p/radarr-develop to v5.11.0.9244' (#403) from renovate/ghcr.io-onedr0p-radarr-develop-5.x into main
Reviewed-on: #403
2024-09-25 15:56:24 -04:00
Renovate Bot 703614bb7b feat(container): update image ghcr.io/onedr0p/radarr-develop to v5.11.0.9244 2024-09-25 15:56:24 -04:00
SeanOMik 8772273632 Merge pull request 'fix(helm): update chart redis to 20.1.4' (#404) from renovate/redis-20.x into main
Reviewed-on: #404
2024-09-25 15:55:38 -04:00
Renovate Bot ff3683ec69 fix(helm): update chart redis to 20.1.4 2024-09-25 15:55:38 -04:00
SeanOMik e15a72235c Merge pull request 'fix(container): update image ghcr.io/onedr0p/sonarr-develop to v4.0.9.2421' (#405) from renovate/ghcr.io-onedr0p-sonarr-develop-4.x into main
Reviewed-on: #405
2024-09-25 15:55:12 -04:00
Renovate Bot a82b34b390 fix(container): update image ghcr.io/onedr0p/sonarr-develop to v4.0.9.2421 2024-09-25 15:55:12 -04:00
SeanOMik 0ae59c9185 Merge pull request 'fix(container): update image ghcr.io/onedr0p/prowlarr-develop to v1.24.1.4740' (#406) from renovate/ghcr.io-onedr0p-prowlarr-develop-1.x into main
Reviewed-on: #406
2024-09-25 15:54:50 -04:00
Renovate Bot fc46838e7c fix(container): update image ghcr.io/onedr0p/prowlarr-develop to v1.24.1.4740 2024-09-25 15:54:50 -04:00
SeanOMik 0a803f4845 Merge pull request 'feat(container): update image ghcr.io/coder/code-server to v4.93.1' (#407) from renovate/ghcr.io-coder-code-server-4.x into main
Reviewed-on: #407
2024-09-25 15:54:32 -04:00
Renovate Bot 8c9ec59fbc feat(container): update image ghcr.io/coder/code-server to v4.93.1 2024-09-25 15:54:32 -04:00
SeanOMik 7ca22b4dfb Merge pull request 'fix(helm): update chart openebs to 4.1.1' (#408) from renovate/openebs-4.x into main
Reviewed-on: #408
2024-09-25 15:54:00 -04:00
Renovate Bot 1854d8da56 fix(helm): update chart openebs to 4.1.1 2024-09-25 13:03:49 +00:00
SeanOMik 985167362f
chore: rename vmsingle and vmagent instances 2024-09-22 14:33:15 -04:00
SeanOMik 0150d3cbd9
fix(qbittorrent): downgrade to v4.6.6 for qbit-manage 2024-09-22 10:27:08 -04:00
84 changed files with 625 additions and 150 deletions

View File

@ -9,7 +9,7 @@ spec:
chart: chart:
spec: spec:
chart: app-template chart: app-template
version: 3.1.0 version: 3.5.0
sourceRef: sourceRef:
kind: HelmRepository kind: HelmRepository
name: bjws-charts name: bjws-charts

View File

@ -9,7 +9,7 @@ spec:
chart: chart:
spec: spec:
chart: intel-device-plugins-gpu chart: intel-device-plugins-gpu
version: 0.30.0 version: 0.31.0
sourceRef: sourceRef:
kind: HelmRepository kind: HelmRepository
name: intel name: intel

View File

@ -9,7 +9,7 @@ spec:
chart: chart:
spec: spec:
chart: intel-device-plugins-operator chart: intel-device-plugins-operator
version: 0.30.0 version: 0.31.0
sourceRef: sourceRef:
kind: HelmRepository kind: HelmRepository
name: intel name: intel

View File

@ -5,7 +5,7 @@
apiVersion: kustomize.config.k8s.io/v1beta1 apiVersion: kustomize.config.k8s.io/v1beta1
kind: Kustomization kind: Kustomization
resources: resources:
- github.com/fluxcd/flux2/manifests/install?ref=v2.3.0 - github.com/fluxcd/flux2/manifests/install?ref=v2.4.0
patches: patches:
# Resources renamed to match those installed by oci://ghcr.io/fluxcd/flux-manifests # Resources renamed to match those installed by oci://ghcr.io/fluxcd/flux-manifests
- target: - target:

View File

@ -10,7 +10,7 @@ spec:
chart: chart:
spec: spec:
chart: authentik chart: authentik
version: 2024.8.2 version: 2024.8.3
sourceRef: sourceRef:
kind: HelmRepository kind: HelmRepository
name: authentik-charts name: authentik-charts

View File

@ -8,7 +8,7 @@ spec:
chart: chart:
spec: spec:
chart: app-template chart: app-template
version: 1.3.x version: 3.5.x
sourceRef: sourceRef:
kind: HelmRepository kind: HelmRepository
name: bjws-charts name: bjws-charts

View File

@ -9,7 +9,7 @@ spec:
chart: chart:
spec: spec:
chart: app-template chart: app-template
version: 3.4.0 version: 3.5.0
sourceRef: sourceRef:
kind: HelmRepository kind: HelmRepository
name: bjws-charts name: bjws-charts

View File

@ -9,7 +9,7 @@ spec:
chart: chart:
spec: spec:
chart: app-template chart: app-template
version: 3.1.0 version: 3.5.0
sourceRef: sourceRef:
kind: HelmRepository kind: HelmRepository
name: bjws-charts name: bjws-charts

View File

@ -9,7 +9,7 @@ spec:
chart: chart:
spec: spec:
chart: app-template chart: app-template
version: 3.1.0 version: 3.5.0
sourceRef: sourceRef:
kind: HelmRepository kind: HelmRepository
name: bjws-charts name: bjws-charts

View File

@ -9,7 +9,7 @@ spec:
chart: chart:
spec: spec:
chart: app-template chart: app-template
version: 3.1.0 version: 3.5.0
sourceRef: sourceRef:
kind: HelmRepository kind: HelmRepository
name: bjws-charts name: bjws-charts
@ -30,7 +30,7 @@ spec:
api: api:
image: image:
repository: ghcr.io/zibbp/ganymede repository: ghcr.io/zibbp/ganymede
tag: 3.0.1 tag: 3.0.2
securityContext: securityContext:
#allowPrivilegeEscalation: false #allowPrivilegeEscalation: false

View File

@ -9,7 +9,7 @@ spec:
chart: chart:
spec: spec:
chart: app-template chart: app-template
version: 3.1.0 version: 3.5.0
sourceRef: sourceRef:
kind: HelmRepository kind: HelmRepository
name: bjws-charts name: bjws-charts

View File

@ -9,7 +9,7 @@ spec:
chart: chart:
spec: spec:
chart: app-template chart: app-template
version: 3.1.0 version: 3.5.0
sourceRef: sourceRef:
kind: HelmRepository kind: HelmRepository
name: bjws-charts name: bjws-charts

View File

@ -9,7 +9,7 @@ spec:
chart: chart:
spec: spec:
chart: app-template chart: app-template
version: 3.1.0 version: 3.5.0
sourceRef: sourceRef:
kind: HelmRepository kind: HelmRepository
name: bjws-charts name: bjws-charts

View File

@ -9,7 +9,7 @@ spec:
chart: chart:
spec: spec:
chart: app-template chart: app-template
version: 3.1.0 version: 3.5.0
sourceRef: sourceRef:
kind: HelmRepository kind: HelmRepository
name: bjws-charts name: bjws-charts

View File

@ -8,7 +8,7 @@ spec:
chart: chart:
spec: spec:
chart: app-template chart: app-template
version: 1.3.x version: 3.5.x
sourceRef: sourceRef:
kind: HelmRepository kind: HelmRepository
name: bjws-charts name: bjws-charts

View File

@ -9,7 +9,7 @@ spec:
chart: chart:
spec: spec:
chart: app-template chart: app-template
version: 3.1.0 version: 3.5.0
sourceRef: sourceRef:
kind: HelmRepository kind: HelmRepository
name: bjws-charts name: bjws-charts

View File

@ -8,7 +8,7 @@ spec:
chart: chart:
spec: spec:
chart: app-template chart: app-template
version: 1.3.x version: 3.5.x
sourceRef: sourceRef:
kind: HelmRepository kind: HelmRepository
name: bjws-charts name: bjws-charts
@ -17,7 +17,7 @@ spec:
values: values:
image: image:
repository: ghcr.io/onedr0p/bazarr repository: ghcr.io/onedr0p/bazarr
tag: "1.4.4" tag: "1.4.5"
env: env:
TZ: America/New_York TZ: America/New_York

View File

@ -8,7 +8,7 @@ spec:
chart: chart:
spec: spec:
chart: app-template chart: app-template
version: 1.3.x version: 3.5.x
sourceRef: sourceRef:
kind: HelmRepository kind: HelmRepository
name: bjws-charts name: bjws-charts

View File

@ -9,7 +9,7 @@ spec:
chart: chart:
spec: spec:
chart: app-template chart: app-template
version: 3.1.0 version: 3.5.0
sourceRef: sourceRef:
kind: HelmRepository kind: HelmRepository
name: bjws-charts name: bjws-charts

View File

@ -8,7 +8,7 @@ spec:
chart: chart:
spec: spec:
chart: app-template chart: app-template
version: 1.3.x version: 3.5.x
sourceRef: sourceRef:
kind: HelmRepository kind: HelmRepository
name: bjws-charts name: bjws-charts

View File

@ -8,7 +8,7 @@ spec:
chart: chart:
spec: spec:
chart: app-template chart: app-template
version: 1.3.x version: 3.5.x
sourceRef: sourceRef:
kind: HelmRepository kind: HelmRepository
name: bjws-charts name: bjws-charts
@ -17,7 +17,7 @@ spec:
values: values:
image: image:
repository: ghcr.io/onedr0p/prowlarr-develop repository: ghcr.io/onedr0p/prowlarr-develop
tag: "1.24.0.4721" tag: "1.24.3.4754"
# Metrics sidecar # Metrics sidecar
sidecars: sidecars:

View File

@ -8,7 +8,7 @@ spec:
chart: chart:
spec: spec:
chart: app-template chart: app-template
version: 1.3.x version: 3.5.x
sourceRef: sourceRef:
kind: HelmRepository kind: HelmRepository
name: bjws-charts name: bjws-charts
@ -35,7 +35,7 @@ spec:
image: image:
repository: bobokun/qbit_manage repository: bobokun/qbit_manage
tag: "v4.1.9" tag: "v4.1.10"
env: env:
QBT_STARTUP_DELAY: 45 # seconds QBT_STARTUP_DELAY: 45 # seconds

View File

@ -9,7 +9,7 @@ spec:
chart: chart:
spec: spec:
chart: app-template chart: app-template
version: 3.1.0 version: 3.5.0
sourceRef: sourceRef:
kind: HelmRepository kind: HelmRepository
name: bjws-charts name: bjws-charts
@ -28,7 +28,7 @@ spec:
app: app:
image: image:
repository: ghcr.io/onedr0p/qbittorrent repository: ghcr.io/onedr0p/qbittorrent
tag: 4.6.7 tag: 4.6.6
env: env:
QBITTORRENT__PORT: 8080 QBITTORRENT__PORT: 8080

View File

@ -8,7 +8,7 @@ spec:
chart: chart:
spec: spec:
chart: app-template chart: app-template
version: 1.3.x version: 3.5.x
sourceRef: sourceRef:
kind: HelmRepository kind: HelmRepository
name: bjws-charts name: bjws-charts
@ -17,7 +17,7 @@ spec:
values: values:
image: image:
repository: ghcr.io/onedr0p/radarr-develop repository: ghcr.io/onedr0p/radarr-develop
tag: "5.10.3.9178" tag: "5.12.0.9255"
# Metrics sidecar # Metrics sidecar
sidecars: sidecars:

View File

@ -8,7 +8,7 @@ spec:
chart: chart:
spec: spec:
chart: app-template chart: app-template
version: 1.3.x version: 3.5.x
sourceRef: sourceRef:
kind: HelmRepository kind: HelmRepository
name: bjws-charts name: bjws-charts

View File

@ -8,7 +8,7 @@ spec:
chart: chart:
spec: spec:
chart: app-template chart: app-template
version: 1.3.x version: 3.5.x
sourceRef: sourceRef:
kind: HelmRepository kind: HelmRepository
name: bjws-charts name: bjws-charts

View File

@ -9,7 +9,7 @@ spec:
chart: chart:
spec: spec:
chart: app-template chart: app-template
version: 3.1.0 version: 3.5.0
sourceRef: sourceRef:
kind: HelmRepository kind: HelmRepository
name: bjws-charts name: bjws-charts

View File

@ -8,7 +8,7 @@ spec:
chart: chart:
spec: spec:
chart: app-template chart: app-template
version: 1.3.x version: 3.5.x
sourceRef: sourceRef:
kind: HelmRepository kind: HelmRepository
name: bjws-charts name: bjws-charts
@ -17,7 +17,7 @@ spec:
values: values:
image: image:
repository: ghcr.io/onedr0p/sonarr-develop repository: ghcr.io/onedr0p/sonarr-develop
tag: "4.0.9.2386" tag: "4.0.9.2457"
# Metrics sidecar # Metrics sidecar
sidecars: sidecars:

View File

@ -9,7 +9,7 @@ spec:
chart: chart:
spec: spec:
chart: app-template chart: app-template
version: 3.4.0 version: 3.5.0
sourceRef: sourceRef:
kind: HelmRepository kind: HelmRepository
name: bjws-charts name: bjws-charts

View File

@ -8,7 +8,7 @@ spec:
chart: chart:
spec: spec:
chart: app-template chart: app-template
version: 1.3.x version: 3.5.x
sourceRef: sourceRef:
kind: HelmRepository kind: HelmRepository
name: bjws-charts name: bjws-charts

View File

@ -8,7 +8,7 @@ spec:
chart: chart:
spec: spec:
chart: app-template chart: app-template
version: 1.3.x version: 3.5.x
sourceRef: sourceRef:
kind: HelmRepository kind: HelmRepository
name: bjws-charts name: bjws-charts

View File

@ -8,7 +8,7 @@ spec:
chart: chart:
spec: spec:
chart: app-template chart: app-template
version: 1.3.x version: 3.5.x
sourceRef: sourceRef:
kind: HelmRepository kind: HelmRepository
name: bjws-charts name: bjws-charts

View File

@ -8,7 +8,7 @@ spec:
chart: chart:
spec: spec:
chart: app-template chart: app-template
version: 1.3.x version: 3.5.x
sourceRef: sourceRef:
kind: HelmRepository kind: HelmRepository
name: bjws-charts name: bjws-charts

View File

@ -9,7 +9,7 @@ spec:
chart: chart:
spec: spec:
chart: app-template chart: app-template
version: 3.1.0 version: 3.5.0
sourceRef: sourceRef:
kind: HelmRepository kind: HelmRepository
name: bjws-charts name: bjws-charts

View File

@ -8,7 +8,7 @@ spec:
chart: chart:
spec: spec:
chart: app-template chart: app-template
version: 1.3.x version: 3.5.x
sourceRef: sourceRef:
kind: HelmRepository kind: HelmRepository
name: bjws-charts name: bjws-charts

View File

@ -9,7 +9,7 @@ spec:
chart: chart:
spec: spec:
chart: app-template chart: app-template
version: 3.3.2 version: 3.5.0
sourceRef: sourceRef:
kind: HelmRepository kind: HelmRepository
name: bjws-charts name: bjws-charts

View File

@ -8,7 +8,7 @@ spec:
chart: chart:
spec: spec:
chart: app-template chart: app-template
version: 1.3.x version: 3.5.x
sourceRef: sourceRef:
kind: HelmRepository kind: HelmRepository
name: bjws-charts name: bjws-charts

View File

@ -8,7 +8,7 @@ spec:
chart: chart:
spec: spec:
chart: app-template chart: app-template
version: 1.3.x version: 3.5.x
sourceRef: sourceRef:
kind: HelmRepository kind: HelmRepository
name: bjws-charts name: bjws-charts

View File

@ -8,7 +8,7 @@ spec:
chart: chart:
spec: spec:
chart: app-template chart: app-template
version: 1.3.x version: 3.5.x
sourceRef: sourceRef:
kind: HelmRepository kind: HelmRepository
name: bjws-charts name: bjws-charts
@ -17,7 +17,7 @@ spec:
values: values:
image: image:
repository: gotson/komga repository: gotson/komga
tag: "1.13.0" tag: "1.14.0"
env: env:
TZ: America/New_York TZ: America/New_York

View File

@ -8,7 +8,7 @@ spec:
chart: chart:
spec: spec:
chart: app-template chart: app-template
version: 1.3.x version: 3.5.x
sourceRef: sourceRef:
kind: HelmRepository kind: HelmRepository
name: bjws-charts name: bjws-charts

View File

@ -8,7 +8,7 @@ spec:
chart: chart:
spec: spec:
chart: app-template chart: app-template
version: 3.3.2 version: 3.5.0
sourceRef: sourceRef:
kind: HelmRepository kind: HelmRepository
name: bjws-charts name: bjws-charts

View File

@ -8,7 +8,7 @@ spec:
chart: chart:
spec: spec:
chart: app-template chart: app-template
version: 1.3.x version: 3.5.x
sourceRef: sourceRef:
kind: HelmRepository kind: HelmRepository
name: bjws-charts name: bjws-charts

View File

@ -8,7 +8,7 @@ spec:
chart: chart:
spec: spec:
chart: app-template chart: app-template
version: 1.3.x version: 3.5.x
sourceRef: sourceRef:
kind: HelmRepository kind: HelmRepository
name: bjws-charts name: bjws-charts

View File

@ -8,7 +8,7 @@ spec:
chart: chart:
spec: spec:
chart: grafana chart: grafana
version: "8.5.1" version: "8.5.2"
sourceRef: sourceRef:
kind: HelmRepository kind: HelmRepository
name: grafana-charts name: grafana-charts

View File

@ -8,7 +8,7 @@ spec:
chart: chart:
spec: spec:
chart: kube-prometheus-stack chart: kube-prometheus-stack
version: "62.7.0" version: "64.0.0"
sourceRef: sourceRef:
kind: HelmRepository kind: HelmRepository
name: prometheus-community-charts name: prometheus-community-charts

View File

@ -8,7 +8,7 @@ spec:
chart: chart:
spec: spec:
chart: app-template chart: app-template
version: 1.3.x version: 3.5.x
sourceRef: sourceRef:
kind: HelmRepository kind: HelmRepository
name: bjws-charts name: bjws-charts

View File

@ -8,7 +8,7 @@ spec:
chart: chart:
spec: spec:
chart: app-template chart: app-template
version: 1.3.x version: 3.5.x
sourceRef: sourceRef:
kind: HelmRepository kind: HelmRepository
name: bjws-charts name: bjws-charts

View File

@ -8,7 +8,7 @@ spec:
chart: chart:
spec: spec:
chart: app-template chart: app-template
version: 1.3.x version: 3.5.x
sourceRef: sourceRef:
kind: HelmRepository kind: HelmRepository
name: bjws-charts name: bjws-charts

View File

@ -8,7 +8,7 @@ spec:
chart: chart:
spec: spec:
chart: app-template chart: app-template
version: 1.3.x version: 3.5.x
sourceRef: sourceRef:
kind: HelmRepository kind: HelmRepository
name: bjws-charts name: bjws-charts

View File

@ -10,7 +10,7 @@ spec:
chart: chart:
spec: spec:
chart: app-template chart: app-template
version: 1.3.x version: 3.5.x
sourceRef: sourceRef:
kind: HelmRepository kind: HelmRepository
name: bjws-charts name: bjws-charts

View File

@ -8,7 +8,7 @@ spec:
chart: chart:
spec: spec:
chart: app-template chart: app-template
version: 1.3.x version: 3.5.x
sourceRef: sourceRef:
kind: HelmRepository kind: HelmRepository
name: bjws-charts name: bjws-charts

View File

@ -8,7 +8,7 @@ spec:
chart: chart:
spec: spec:
chart: app-template chart: app-template
version: 1.3.x version: 3.5.x
sourceRef: sourceRef:
kind: HelmRepository kind: HelmRepository
name: bjws-charts name: bjws-charts

View File

@ -8,7 +8,7 @@ spec:
chart: chart:
spec: spec:
chart: traefik chart: traefik
version: '31.1.0' version: '32.0.0'
sourceRef: sourceRef:
kind: HelmRepository kind: HelmRepository
name: traefik-charts name: traefik-charts

View File

@ -9,7 +9,7 @@ spec:
url: https://github.com/traefik/traefik-helm-chart.git url: https://github.com/traefik/traefik-helm-chart.git
ref: ref:
# renovate: registryUrl=https://helm.traefik.io/traefik chart=traefik # renovate: registryUrl=https://helm.traefik.io/traefik chart=traefik
tag: v31.1.0 tag: v32.0.0
ignore: | ignore: |
# exclude all # exclude all
/* /*

View File

@ -1,54 +0,0 @@
apiVersion: cilium.io/v2alpha1
kind: CiliumBGPClusterConfig
metadata:
name: cilium-bgp
spec:
nodeSelector:
matchExpressions:
- key: node-role.kubernetes.io/control-plane
operator: DoesNotExist
bgpInstances:
- name: "bgp-public"
localASN: 65552
peers:
- name: "router"
peerASN: 65551
peerAddress: 192.168.1.1
peerConfigRef:
name: "cilium-peer-router"
---
apiVersion: cilium.io/v2alpha1
kind: CiliumBGPPeerConfig
metadata:
name: cilium-peer-router
spec:
timers:
holdTimeSeconds: 9
keepAliveTimeSeconds: 3
gracefulRestart:
enabled: true
restartTimeSeconds: 15
families:
- afi: ipv4
safi: unicast
advertisements:
matchLabels:
advertise: "bgp-public"
---
apiVersion: cilium.io/v2alpha1
kind: CiliumBGPAdvertisement
metadata:
name: bgp-public-ad
labels:
advertise: "bgp-public"
spec:
advertisements:
- advertisementType: "Service"
service:
addresses:
#- ClusterIP
- ExternalIP
- LoadBalancerIP
selector:
matchLabels:
bgp/service-type: public

View File

@ -1,8 +0,0 @@
apiVersion: "cilium.io/v2alpha1"
kind: CiliumLoadBalancerIPPool
metadata:
name: "main-pool"
spec:
blocks:
- start: "192.168.2.50"
stop: "192.168.2.59"

View File

@ -8,7 +8,7 @@ spec:
chart: chart:
spec: spec:
chart: redis chart: redis
version: 20.1.0 version: 20.1.6
sourceRef: sourceRef:
kind: HelmRepository kind: HelmRepository
name: bitnami-charts name: bitnami-charts

View File

@ -9,7 +9,7 @@ spec:
chart: chart:
spec: spec:
chart: app-template chart: app-template
version: 3.4.0 version: 3.5.0
sourceRef: sourceRef:
kind: HelmRepository kind: HelmRepository
name: bjws-charts name: bjws-charts
@ -24,7 +24,7 @@ spec:
app: app:
image: image:
repository: ghcr.io/onedr0p/home-assistant repository: ghcr.io/onedr0p/home-assistant
tag: 2024.9.1 tag: 2024.9.3
env: env:
TZ: America/New_York #${SERVER_TIMEZONE} TZ: America/New_York #${SERVER_TIMEZONE}
HASS_HTTP_TRUSTED_PROXY_1: 192.168.0.0/16 HASS_HTTP_TRUSTED_PROXY_1: 192.168.0.0/16
@ -46,7 +46,7 @@ spec:
code-server: code-server:
image: image:
repository: ghcr.io/coder/code-server repository: ghcr.io/coder/code-server
tag: 4.92.2 tag: 4.93.1
args: [ args: [
"--auth", "none", "--auth", "none",
"--user-data-dir", "/config/.vscode", "--user-data-dir", "/config/.vscode",

View File

@ -8,7 +8,7 @@ spec:
chart: chart:
spec: spec:
chart: app-template chart: app-template
version: 3.4.0 version: 3.5.0
sourceRef: sourceRef:
kind: HelmRepository kind: HelmRepository
name: bjws-charts name: bjws-charts

View File

@ -9,7 +9,7 @@ spec:
chart: chart:
spec: spec:
chart: app-template chart: app-template
version: 3.1.0 version: 3.5.0
sourceRef: sourceRef:
kind: HelmRepository kind: HelmRepository
name: bjws-charts name: bjws-charts

View File

@ -33,3 +33,30 @@ metadata:
spec: spec:
interval: 1m interval: 1m
url: https://victoriametrics.github.io/helm-charts url: https://victoriametrics.github.io/helm-charts
---
apiVersion: source.toolkit.fluxcd.io/v1
kind: HelmRepository
metadata:
name: grafana
namespace: flux-system
spec:
interval: 1m
url: https://grafana.github.io/helm-charts
---
apiVersion: source.toolkit.fluxcd.io/v1
kind: HelmRepository
metadata:
name: prometheus-community
namespace: flux-system
spec:
interval: 1m
url: https://prometheus-community.github.io/helm-charts
---
apiVersion: source.toolkit.fluxcd.io/v1
kind: HelmRepository
metadata:
name: cilium
namespace: flux-system
spec:
interval: 2h
url: https://helm.cilium.io/

View File

@ -0,0 +1,30 @@
---
# yaml-language-server: $schema=https://kubernetes-schemas.pages.dev/helm.toolkit.fluxcd.io/helmrelease_v2.json
apiVersion: helm.toolkit.fluxcd.io/v2
kind: HelmRelease
metadata:
name: cilium
spec:
interval: 30m
chart:
spec:
chart: cilium
version: 1.16.2
sourceRef:
kind: HelmRepository
name: cilium
namespace: flux-system
values:
l2announcements:
enabled: true
k8sClientRateLimit:
qps: 43
burst: 86
kubeProxyReplacement: true
k8sServiceHost: 192.168.1.20
k8sServicePort: 6443
devices: enp+ #0s31f6
enableRuntimeDeviceDetection: true
externalIPs:
enabled: true
rollOutCiliumPods: true

View File

@ -1,5 +1,4 @@
apiVersion: kustomize.config.k8s.io/v1beta1 apiVersion: kustomize.config.k8s.io/v1beta1
kind: Kustomization kind: Kustomization
resources: resources:
- ./main-ip-pool.yaml - ./helm-release.yaml
- ./bgp.yaml

View File

@ -0,0 +1,5 @@
# yaml-language-server: $schema=https://json.schemastore.org/kustomization
apiVersion: kustomize.config.k8s.io/v1beta1
kind: Kustomization
resources:
- ./l2.yaml

View File

@ -0,0 +1,24 @@
# yaml-language-server: $schema=https://kubernetes-schemas.pages.dev/cilium.io/ciliuml2announcementpolicy_v2alpha1.json
apiVersion: "cilium.io/v2alpha1"
kind: CiliumL2AnnouncementPolicy
metadata:
name: policy
spec:
nodeSelector:
matchExpressions:
- key: node-role.kubernetes.io/control-plane
operator: DoesNotExist
interfaces: ["^enp.*"]
loadBalancerIPs: true
---
# yaml-language-server: $schema=https://kubernetes-schemas.pages.dev/cilium.io/ciliumloadbalancerippool_v2alpha1.json
apiVersion: cilium.io/v2alpha1
kind: CiliumLoadBalancerIPPool
metadata:
name: main-pool
spec:
allowFirstLastIPs: "Yes"
blocks:
- # same subnet as nodes
start: 192.168.1.50
stop: 192.168.1.69

View File

@ -0,0 +1,57 @@
# yaml-language-server: $schema=https://kubernetes-schemas.pages.dev/kustomize.toolkit.fluxcd.io/kustomization_v1.json
apiVersion: kustomize.toolkit.fluxcd.io/v1
kind: Kustomization
metadata:
name: cilium
namespace: flux-system
spec:
targetNamespace: kube-system
interval: 30m
retryInterval: 1m
timeout: 5m
path: ./kubernetes/thin/apps/kube-system/cilium/app
prune: true
sourceRef:
kind: GitRepository
name: home-cluster
decryption:
provider: sops
secretRef:
name: sops-gpg
postBuild:
substitute: {}
substituteFrom:
- kind: ConfigMap
name: cluster-settings
- kind: Secret
name: cluster-secrets
---
# yaml-language-server: $schema=https://kubernetes-schemas.pages.dev/kustomize.toolkit.fluxcd.io/kustomization_v1.json
apiVersion: kustomize.toolkit.fluxcd.io/v1
kind: Kustomization
metadata:
name: cilium-config
namespace: flux-system
spec:
targetNamespace: kube-system
interval: 30m
retryInterval: 1m
timeout: 5m
path: ./kubernetes/thin/apps/kube-system/cilium/config
prune: true
sourceRef:
kind: GitRepository
name: home-cluster
decryption:
provider: sops
secretRef:
name: sops-gpg
postBuild:
substitute: {}
substituteFrom:
- kind: ConfigMap
name: cluster-settings
- kind: Secret
name: cluster-secrets
dependsOn:
- name: cilium

View File

@ -0,0 +1,4 @@
apiVersion: kustomize.config.k8s.io/v1beta1
kind: Kustomization
resources:
- ./cilium/ks.yaml

View File

@ -2,8 +2,8 @@ apiVersion: kustomize.config.k8s.io/v1beta1
kind: Kustomization kind: Kustomization
resources: resources:
- ./helm-repositories.yaml - ./helm-repositories.yaml
- ./kube-system
# networking # networking
- ./cilium
- ./nginx/ks.yaml - ./nginx/ks.yaml
- ../../common/apps/cert-manager - ../../common/apps/cert-manager
# storage # storage

View File

@ -0,0 +1,168 @@
apiVersion: helm.toolkit.fluxcd.io/v2
kind: HelmRelease
metadata:
name: grafana
namespace: monitoring
spec:
interval: 5m
chart:
spec:
chart: grafana
version: "8.5.2"
sourceRef:
kind: HelmRepository
name: grafana
namespace: flux-system
values:
ingress:
enabled: true
annotations:
cert-manager.io/cluster-issuer: letsencrypt-production
traefik.ingress.kubernetes.io/router.entrypoints: websecure
className: internal
hosts:
- &grafana-host grafana.internal.${SECRET_NEW_DOMAIN}
path: "/"
tls:
- hosts:
- *grafana-host
grafana.ini:
server:
root_url: https://grafana.internal.${SECRET_NEW_DOMAIN}
auth:
disable_login_form: true
oauth_auto_login: true
auth.generic_oauth:
enabled: true
allow_sign_up: true # creates new users after authentik login
auto_login: true
name: Authentik
client_id: $__file{/etc/secrets/auth_generic_oauth/client_id}
client_secret: $__file{/etc/secrets/auth_generic_oauth/client_secret}
scopes: openid profile email offline_access
auth_url: https://auth.${SECRET_BASE_DOMAIN}/application/o/authorize/
token_url: https://auth.${SECRET_BASE_DOMAIN}/application/o/token/
api_url: https://auth.${SECRET_BASE_DOMAIN}/application/o/userinfo/
role_attribute_path: contains(groups[*], 'authentik Admins') && 'GrafanaAdmin' #|| contains(info.groups[*], 'editor') && 'Editor' || 'Viewer'
groups_attribute_path: groups
name_attribute_path: preferred_username
login_attribute_path: email
allow_assign_grafana_admin: true
use_pkce: true
use_refresh_token: true
# Provide oauth creds
extraSecretMounts:
- name: grafana-secrets-mount
secretName: grafana-oauth
defaultMode: 0440
mountPath: /etc/secrets/auth_generic_oauth
readOnly: true
# Add Victoria Metrics as the default datasource
datasources:
victoria.yaml:
apiVersion: 1
datasources:
- name: Victoria
type: prometheus
jsonData:
tlsSkipVerify: true
url: http://vmsingle-primary.monitoring.svc:8429
editable: false
isDefault: true
# datasources:
# - name: Victoria
# uid: victoria-metrics-server
# type: prometheus
# jsonData:
# tlsSkipVerify: "true"
# editable: false"
# url: http://victoria-metrics-server.monitoring.svc:8428
# version: "1"
# isDefault: "true"
sidecar:
dashboards:
enabled: true
label: grafana_dashboard
labelValue: "1"
folderAnnotation: grafana_folder
provider:
foldersFromFilesStructure: true
serviceMonitor:
enabled: true
dashboardProviders:
dashboardproviders.yaml:
apiVersion: 1
providers:
- name: default
orgId: 1
folder: ""
type: file
disableDeletion: false
editable: true
options:
path: /var/lib/grafana/dashboards/default
- name: kubernetes
orgId: 1
folder: Kubernetes
type: file
disableDeletion: false
editable: true
options:
path: /var/lib/grafana/dashboards/kubernetes
dashboards:
default:
node-exporter-full:
# renovate: depName="Node Exporter Full"
gnetId: 1860
revision: 33
datasource: Victoria
cert-manager:
url: https://raw.githubusercontent.com/monitoring-mixins/website/master/assets/cert-manager/dashboards/cert-manager.json
datasource: Victoria
# minio:
# # renovate: depName="MinIO Dashboard"
# gnetId: 13502
# revision: 24
# datasource:
# - { name: DS_PROMETHEUS, value: Victoria }
kubernetes:
kubernetes-api-server:
# renovate: depName="Kubernetes / System / API Server"
gnetId: 15761
revision: 16
datasource: Victoria
kubernetes-coredns:
# renovate: depName="Kubernetes / System / CoreDNS"
gnetId: 15762
revision: 17
datasource: Victoria
kubernetes-global:
# renovate: depName="Kubernetes / Views / Global"
gnetId: 15757
revision: 36
datasource: Victoria
kubernetes-namespaces:
# renovate: depName="Kubernetes / Views / Namespaces"
gnetId: 15758
revision: 32
datasource: Victoria
kubernetes-nodes:
# renovate: depName="Kubernetes / Views / Nodes"
gnetId: 15759
revision: 28
datasource: Victoria
kubernetes-pods:
# renovate: depName="Kubernetes / Views / Pods"
gnetId: 15760
revision: 21
datasource: Prometheus

View File

@ -0,0 +1,5 @@
apiVersion: kustomize.config.k8s.io/v1beta1
kind: Kustomization
resources:
- ./secret.sops.yaml
- ./helm-release.yaml

View File

@ -0,0 +1,72 @@
apiVersion: v1
kind: Secret
metadata:
name: grafana-oauth
namespace: monitoring
stringData:
client_id: ENC[AES256_GCM,data:bmrhYD+cLeKC7sPsGYlLSXBDkqr6capZwP3CY/2T2ca9su46TnrZPg==,iv:BC7SS6B390c2ZazTpQVLuzo93YqNYMneTox0kjOIsfs=,tag:um7jM/endC6e86NfJsXpow==,type:str]
client_secret: ENC[AES256_GCM,data:H/nqW0f8tE8MfQ1wtloU7XWOmBnjImcXyP4GJVO7KJ6Q5JrUZbFAcS1khqe6nBUJCf+/9M+8BEhxPhFR5/IiuzV7xk7a71jw4jMEZs4YizkpUhw4JZ5+YhGcpcGFqB1egsd4sQLWIdRpYy2E45EiuUvldNs2qvBtYrCO2o2MnL8=,iv:UEhm5zywHwkTQO12qg0/tOkfqpOndlKIy75cydMcmvA=,tag:EkzTHSXKYpEutGUa7lZQ5Q==,type:str]
sops:
kms: []
gcp_kms: []
azure_kv: []
hc_vault: []
age: []
lastmodified: "2024-09-27T19:58:26Z"
mac: ENC[AES256_GCM,data:ftw1bowXQNeyQy55BugSr31VakDVp9aGnq8nNBIvpdMxS0vd/l2DVjhCy9BF/iWQU7T1PR4TErEDCfeJaMpXOt8HzDlDy7IxIuHSSMHK9rFR/L+CwWu0aIwxGB8RpcWlt5JDCWkuk3nCtv61jV6KuZ7fFX/8YXuIVx6Ev6HW7yI=,iv:t5cuWCr53rO7g6BiyLoISmQNE+TBPpdaBebY4Jy+7tQ=,tag:CQEPser8jQbcMlbXN82ANg==,type:str]
pgp:
- created_at: "2024-09-27T19:58:26Z"
enc: |-
-----BEGIN PGP MESSAGE-----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=3Jlu
-----END PGP MESSAGE-----
fp: BD1AAF9D8170F4BEE437365FF6F0933799CFEBCD
- created_at: "2024-09-27T19:58:26Z"
enc: |-
-----BEGIN PGP MESSAGE-----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=Ls8l
-----END PGP MESSAGE-----
fp: 687802D4DFD8AA82EA55666CF7DADAC782D7663D
encrypted_regex: ^(data|stringData)$
version: 3.9.0

View File

@ -0,0 +1,30 @@
---
# yaml-language-server: $schema=https://kubernetes-schemas.pages.dev/kustomize.toolkit.fluxcd.io/kustomization_v1.json
apiVersion: kustomize.toolkit.fluxcd.io/v1
kind: Kustomization
metadata:
name: grafana
namespace: flux-system
spec:
targetNamespace: monitoring
timeout: 5m
interval: 10m
path: ./kubernetes/thin/apps/monitoring/grafana/app
prune: true
sourceRef:
kind: GitRepository
name: home-cluster
decryption:
provider: sops
secretRef:
name: sops-gpg
dependsOn:
- name: victoria-metrics-deploys
- name: kube-prometheus-stack
postBuild:
substitute: {}
substituteFrom:
- kind: ConfigMap
name: cluster-settings
- kind: Secret
name: cluster-secrets

View File

@ -0,0 +1,85 @@
apiVersion: helm.toolkit.fluxcd.io/v2
kind: HelmRelease
metadata:
name: kube-prometheus-stack
namespace: monitoring
spec:
interval: 5m
chart:
spec:
chart: kube-prometheus-stack
version: "64.0.0"
sourceRef:
kind: HelmRepository
name: prometheus-community
namespace: flux-system
values:
alertmanager:
enabled: false
grafana:
enabled: false
# enabled dashboards even with grafana being disabled
#forceDeployDashboards: true
#defaultDashboardsTimezone: America/New_York
prometheus:
enabled: false
defaultRule:
create: false
rules:
general: false
kubelet:
enabled: true
serviceMonitor:
metricRelabelings:
# Remove duplicate metrics
- sourceLabels: ["__name__"]
regex: "(apiserver_audit|apiserver_client|apiserver_delegated|apiserver_envelope|apiserver_storage|apiserver_webhooks|authentication_token|cadvisor_version|container_blkio|container_cpu|container_fs|container_last|container_memory|container_network|container_oom|container_processes|container|csi_operations|disabled_metric|get_token|go|hidden_metric|kubelet_certificate|kubelet_cgroup|kubelet_container|kubelet_containers|kubelet_cpu|kubelet_device|kubelet_graceful|kubelet_http|kubelet_lifecycle|kubelet_managed|kubelet_node|kubelet_pleg|kubelet_pod|kubelet_run|kubelet_running|kubelet_runtime|kubelet_server|kubelet_started|kubelet_volume|kubernetes_build|kubernetes_feature|machine_cpu|machine_memory|machine_nvm|machine_scrape|node_namespace|plugin_manager|prober_probe|process_cpu|process_max|process_open|process_resident|process_start|process_virtual|registered_metric|rest_client|scrape_duration|scrape_samples|scrape_series|storage_operation|volume_manager|volume_operation|workqueue)_(.+)"
action: keep
- sourceLabels: ["node"]
targetLabel: instance
action: replace
kubeApiServer:
serviceMonitor:
selector:
k8s-app: kube-apiserver
kubeScheduler:
service:
selector:
k8s-app: kube-scheduler
kubeControllerManager: &kubeControllerManager
service:
selector:
k8s-app: kube-controller-manager
kubeEtcd:
<<: *kubeControllerManager # etcd runs on control plane nodes
prometheus-node-exporter:
fullnameOverride: node-exporter
prometheus:
monitor:
enabled: true
relabelings:
- action: replace
regex: (.*)
replacement: $1
sourceLabels: ["__meta_kubernetes_pod_node_name"]
targetLabel: kubernetes_node
kube-state-metrics:
fullnameOverride: kube-state-metrics
metricLabelsAllowlist:
- pods=[*]
- deployments=[*]
- persistentvolumeclaims=[*]
prometheus:
monitor:
enabled: true
relabelings:
- action: replace
regex: (.*)
replacement: $1
sourceLabels: ["__meta_kubernetes_pod_node_name"]
targetLabel: kubernetes_node

View File

@ -0,0 +1,4 @@
apiVersion: kustomize.config.k8s.io/v1beta1
kind: Kustomization
resources:
- ./helm-release.yaml

View File

@ -0,0 +1,29 @@
---
# yaml-language-server: $schema=https://kubernetes-schemas.pages.dev/kustomize.toolkit.fluxcd.io/kustomization_v1.json
apiVersion: kustomize.toolkit.fluxcd.io/v1
kind: Kustomization
metadata:
name: kube-prometheus-stack
namespace: flux-system
spec:
targetNamespace: monitoring
timeout: 5m
interval: 10m
path: ./kubernetes/thin/apps/monitoring/kube-prometheus-stack/app
prune: true
sourceRef:
kind: GitRepository
name: home-cluster
decryption:
provider: sops
secretRef:
name: sops-gpg
dependsOn:
- name: victoria-metrics-deploys
postBuild:
substitute: {}
substituteFrom:
- kind: ConfigMap
name: cluster-settings
- kind: Secret
name: cluster-secrets

View File

@ -2,3 +2,5 @@ apiVersion: kustomize.config.k8s.io/v1beta1
kind: Kustomization kind: Kustomization
resources: resources:
- ./victoria-metrics/ks.yaml - ./victoria-metrics/ks.yaml
- ./kube-prometheus-stack/ks.yaml
- ./grafana/ks.yaml

View File

@ -8,7 +8,7 @@ spec:
chart: chart:
spec: spec:
chart: victoria-metrics-operator chart: victoria-metrics-operator
version: 0.34.8 version: 0.35.2
sourceRef: sourceRef:
kind: HelmRepository kind: HelmRepository
name: victoria-metrics-charts name: victoria-metrics-charts

View File

@ -1,17 +1,17 @@
apiVersion: operator.victoriametrics.com/v1beta1 apiVersion: operator.victoriametrics.com/v1beta1
kind: VMAgent kind: VMAgent
metadata: metadata:
name: vmagent-select-all name: select-all
namespace: monitoring namespace: monitoring
spec: spec:
image: image:
repository: victoriametrics/vmagent repository: victoriametrics/vmagent
tag: v1.103.0 tag: v1.104.0
pullPolicy: IfNotPresent pullPolicy: IfNotPresent
selectAllByDefault: true selectAllByDefault: true
vmAgentExternalLabelName: vmagent vmAgentExternalLabelName: vmagent
remoteWrite: remoteWrite:
- url: http://vmsingle-vmsingle:8429/api/v1/write - url: http://vmsingle-primary.monitoring.svc:8429/api/v1/write
minScrapeInterval: 30s minScrapeInterval: 30s
maxScrapeInterval: 24h maxScrapeInterval: 24h

View File

@ -1,12 +1,12 @@
apiVersion: operator.victoriametrics.com/v1beta1 apiVersion: operator.victoriametrics.com/v1beta1
kind: VMSingle kind: VMSingle
metadata: metadata:
name: vmsingle name: primary
namespace: monitoring namespace: monitoring
spec: spec:
image: image:
repository: victoriametrics/victoria-metrics repository: victoriametrics/victoria-metrics
tag: v1.103.0 tag: v1.104.0
retentionPeriod: "6" # in months retentionPeriod: "6" # in months
replicaCount: 1 replicaCount: 1

View File

@ -28,9 +28,7 @@ spec:
replicaCount: 2 replicaCount: 2
service: service:
annotations: annotations:
io.cilium/lb-ipam-ips: 192.168.2.50 io.cilium/lb-ipam-ips: 192.168.1.50
labels:
bgp/service-type: public
ingressClassResource: ingressClassResource:
name: external name: external

View File

@ -28,9 +28,7 @@ spec:
replicaCount: 2 replicaCount: 2
service: service:
annotations: annotations:
io.cilium/lb-ipam-ips: 192.168.2.51 io.cilium/lb-ipam-ips: 192.168.1.51
labels:
bgp/service-type: public
ingressClassResource: ingressClassResource:
name: internal name: internal

View File

@ -9,7 +9,7 @@ spec:
chart: chart:
spec: spec:
chart: openebs chart: openebs
version: 4.1.0 version: 4.1.1
sourceRef: sourceRef:
kind: HelmRepository kind: HelmRepository
name: openebs name: openebs

View File

@ -8,7 +8,7 @@ spec:
chart: chart:
spec: spec:
chart: traefik chart: traefik
version: '30.1.0' version: '32.0.0'
sourceRef: sourceRef:
kind: HelmRepository kind: HelmRepository
name: traefik-charts name: traefik-charts

View File

@ -8,7 +8,7 @@ spec:
chart: chart:
spec: spec:
chart: traefik chart: traefik
version: '30.1.0' version: '32.0.0'
sourceRef: sourceRef:
kind: HelmRepository kind: HelmRepository
name: traefik-charts name: traefik-charts