jahanson/theshire
1
0
Fork 0
Code Issues 1 Pull requests 4 Projects Releases Packages Wiki Activity Actions

app-template v3 modifications

Browse source
This commit is contained in:
Joseph Hanson 2024-03-19 17:38:08 -05:00
parent c30afd2ac9
commit 1ea51681cf
Signed by: jahanson
SSH key fingerprint: SHA256:vy6dKBECV522aPAwklFM3ReKAVB086rT3oWwiuiFG7o
18 changed files with 161 additions and 148 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

23
.archive/kubernetes/default/jellyfin/app/helmrelease.yaml
View file

@ -1,5 +1,5 @@
--- ---
# yaml-language-server: $schema=https://raw.githubusercontent.com/fluxcd-community/flux2-schemas/main/helmrelease-helm-v2beta2.json # yaml-language-server: $schema=https://raw.githubusercontent.com/bjw-s/helm-charts/main/charts/other/app-template/schemas/helmrelease-helm-v2beta2.schema.json
apiVersion: helm.toolkit.fluxcd.io/v2beta2 apiVersion: helm.toolkit.fluxcd.io/v2beta2
kind: HelmRelease kind: HelmRelease
metadata: metadata:
@ -15,7 +15,6 @@ spec:
kind: HelmRepository kind: HelmRepository
name: bjw-s name: bjw-s
namespace: flux-system namespace: flux-system
maxHistory: 2
install: install:
remediation: remediation:
retries: 3 retries: 3
@ -23,17 +22,15 @@ spec:
cleanupOnFail: true cleanupOnFail: true
remediation: remediation:
retries: 3 retries: 3
uninstall: strategy: rollback
keepHistory: false
values: values:
controllers: controllers:
main: jellyfin:
type: statefulset type: statefulset
annotations: annotations:
reloader.stakater.com/auto: "true" reloader.stakater.com/auto: "true"
runtimeClassName: nvidia
containers: containers:
main: app:
image: image:
repository: jellyfin/jellyfin repository: jellyfin/jellyfin
tag: 10.8.13 tag: 10.8.13
@ -69,6 +66,7 @@ spec:
nvidia.com/gpu: 1 nvidia.com/gpu: 1
memory: 4Gi memory: 4Gi
pod: pod:
runtimeClassName: nvidia
enableServiceLinks: false enableServiceLinks: false
nodeSelector: nodeSelector:
nvidia.com/gpu.present: "true" nvidia.com/gpu.present: "true"
@ -79,12 +77,13 @@ spec:
fsGroupChangePolicy: OnRootMismatch fsGroupChangePolicy: OnRootMismatch
supplementalGroups: [44, 105, 10000] supplementalGroups: [44, 105, 10000]
service: service:
main: app:
controller: jellyfin
ports: ports:
http: http:
port: *port port: *port
ingress: ingress:
main: app:
enabled: true enabled: true
className: external-nginx className: external-nginx
annotations: annotations:
@ -95,7 +94,7 @@ spec:
paths: paths:
- path: / - path: /
service: service:
name: main identifier: app
port: http port: http
tls: tls:
- hosts: - hosts:
@ -111,7 +110,7 @@ spec:
media: media:
enabled: true enabled: true
type: nfs type: nfs
server: 10.1.1.30 server: 10.1.1.12
path: /mnt/Nahar/Media path: /mnt/users/Media
globalMounts: globalMounts:
- path: /media - path: /media

36
kubernetes/apps/default/maintainerr/app/helmrelease.yaml
View file

@ -1,5 +1,5 @@
--- ---
# yaml-language-server: $schema=https://ks.hsn.dev/helm.toolkit.fluxcd.io/helmrelease_v2beta2.json # yaml-language-server: $schema=https://raw.githubusercontent.com/bjw-s/helm-charts/main/charts/other/app-template/schemas/helmrelease-helm-v2beta2.schema.json
apiVersion: helm.toolkit.fluxcd.io/v2beta2 apiVersion: helm.toolkit.fluxcd.io/v2beta2
kind: HelmRelease kind: HelmRelease
metadata: metadata:
@ -14,15 +14,22 @@ spec:
kind: HelmRepository kind: HelmRepository
name: bjw-s name: bjw-s
namespace: flux-system namespace: flux-system
install:
remediation:
retries: 3
upgrade:
cleanupOnFail: true
remediation:
retries: 3
strategy: rollback
interval: 30m interval: 30m
values: values:
controllers: controllers:
main: maintainerr:
annotations: annotations:
reloader.stakater.com/auto: "true" reloader.stakater.com/auto: "true"
containers: containers:
main: app:
image: image:
repository: ghcr.io/jorenn92/maintainerr repository: ghcr.io/jorenn92/maintainerr
tag: 2.0.2@sha256:4e0f5199f09b8a1fc7d9933c1ecbf508b6d4f18b6f8d1e40bd0453dc14c80a5c tag: 2.0.2@sha256:4e0f5199f09b8a1fc7d9933c1ecbf508b6d4f18b6f8d1e40bd0453dc14c80a5c
@ -34,22 +41,21 @@ spec:
memory: 128Mi memory: 128Mi
limits: limits:
memory: 1Gi memory: 1Gi
pod: pod:
securityContext: securityContext:
runAsUser: ${APP_UID} runAsUser: 1000
runAsGroup: ${APP_GID} runAsGroup: 1000
fsGroup: ${APP_GID} fsGroup: 1000
fsGroupChangePolicy: "OnRootMismatch" fsGroupChangePolicy: "OnRootMismatch"
service: service:
main: app:
controller: maintainerr
ports: ports:
http: http:
port: 6246 port: 6246
ingress: ingress:
main: app:
enabled: true
className: internal-nginx className: internal-nginx
hosts: hosts:
- host: &host "{{ .Release.Name }}.jahanson.tech" - host: &host "{{ .Release.Name }}.jahanson.tech"
@ -57,7 +63,7 @@ spec:
- path: / - path: /
pathType: Prefix pathType: Prefix
service: service:
name: main identifier: app
port: http port: http
tls: tls:
- hosts: - hosts:

13
kubernetes/apps/default/overseerr/app/helmrelease.yaml
View file

@ -21,8 +21,7 @@ spec:
cleanupOnFail: true cleanupOnFail: true
remediation: remediation:
retries: 3 retries: 3
uninstall: strategy: rollback
keepHistory: false
dependsOn: dependsOn:
- name: rook-ceph-cluster - name: rook-ceph-cluster
namespace: rook-ceph namespace: rook-ceph
@ -30,11 +29,11 @@ spec:
namespace: volsync-system namespace: volsync-system
values: values:
controllers: controllers:
main: overseerr:
annotations: annotations:
reloader.stakater.com/auto: "true" reloader.stakater.com/auto: "true"
containers: containers:
main: app:
image: image:
repository: ghcr.io/sct/overseerr repository: ghcr.io/sct/overseerr
tag: 1.33.2@sha256:714ea6db2bc007a2262d112bef7eec74972eb33d9c72bddb9cbd98b8742de950 tag: 1.33.2@sha256:714ea6db2bc007a2262d112bef7eec74972eb33d9c72bddb9cbd98b8742de950
@ -74,12 +73,12 @@ spec:
fsGroup: 568 fsGroup: 568
fsGroupChangePolicy: OnRootMismatch fsGroupChangePolicy: OnRootMismatch
service: service:
main: app:
ports: ports:
http: http:
port: *port port: *port
ingress: ingress:
main: app:
enabled: true enabled: true
className: external-nginx className: external-nginx
annotations: annotations:
@ -91,7 +90,7 @@ spec:
paths: paths:
- path: / - path: /
service: service:
name: main identifier: app
port: http port: http
tls: tls:
- hosts: - hosts:

16
kubernetes/apps/default/prowlarr/app/helmrelease.yaml
View file

@ -1,5 +1,5 @@
--- ---
# yaml-language-server: $schema=https://ks.hsn.dev/helm.toolkit.fluxcd.io/helmrelease_v2beta2.json # yaml-language-server: $schema=https://raw.githubusercontent.com/bjw-s/helm-charts/main/charts/other/app-template/schemas/helmrelease-helm-v2beta2.schema.json
apiVersion: helm.toolkit.fluxcd.io/v2beta2 apiVersion: helm.toolkit.fluxcd.io/v2beta2
kind: HelmRelease kind: HelmRelease
metadata: metadata:
@ -21,15 +21,14 @@ spec:
cleanupOnFail: true cleanupOnFail: true
remediation: remediation:
retries: 3 retries: 3
uninstall: strategy: rollback
keepHistory: false
values: values:
controllers: controllers:
main: prowlarr:
annotations: annotations:
reloader.stakater.com/auto: "true" reloader.stakater.com/auto: "true"
containers: containers:
main: app:
image: image:
repository: ghcr.io/onedr0p/prowlarr-develop repository: ghcr.io/onedr0p/prowlarr-develop
tag: 1.14.3.4333@sha256:af90aa422bf142df26cf70aaebab5fd609f68cc5639ebfe643b4547fee8c76e3 tag: 1.14.3.4333@sha256:af90aa422bf142df26cf70aaebab5fd609f68cc5639ebfe643b4547fee8c76e3
@ -97,12 +96,13 @@ spec:
fsGroup: 568 fsGroup: 568
fsGroupChangePolicy: OnRootMismatch fsGroupChangePolicy: OnRootMismatch
service: service:
main: app:
controller: prowlarr
ports: ports:
http: http:
port: *port port: *port
ingress: ingress:
main: app:
enabled: true enabled: true
className: internal-nginx className: internal-nginx
hosts: hosts:
@ -110,7 +110,7 @@ spec:
paths: paths:
- path: / - path: /
service: service:
name: main identifier: app
port: http port: http
tls: tls:
- hosts: - hosts:

12
kubernetes/apps/default/radarr/app/helmrelease.yaml
View file

@ -1,5 +1,5 @@
--- ---
# yaml-language-server: $schema=https://ks.hsn.dev/helm.toolkit.fluxcd.io/helmrelease_v2beta2.json # yaml-language-server: $schema=https://raw.githubusercontent.com/bjw-s/helm-charts/main/charts/other/app-template/schemas/helmrelease-helm-v2beta2.schema.json
apiVersion: helm.toolkit.fluxcd.io/v2beta2 apiVersion: helm.toolkit.fluxcd.io/v2beta2
kind: HelmRelease kind: HelmRelease
metadata: metadata:
@ -21,18 +21,17 @@ spec:
cleanupOnFail: true cleanupOnFail: true
remediation: remediation:
retries: 3 retries: 3
uninstall: strategy: rollback
keepHistory: false
dependsOn: dependsOn:
- name: rook-ceph-cluster - name: rook-ceph-cluster
namespace: rook-ceph namespace: rook-ceph
values: values:
controllers: controllers:
main: radarr:
annotations: annotations:
reloader.stakater.com/auto: "true" reloader.stakater.com/auto: "true"
containers: containers:
main: app:
image: image:
repository: ghcr.io/onedr0p/radarr repository: ghcr.io/onedr0p/radarr
tag: 5.3.6.8612@sha256:431f4d8da415645cd18359d0b704d4191f400eb57137ed3e5749774f3915c0a8 tag: 5.3.6.8612@sha256:431f4d8da415645cd18359d0b704d4191f400eb57137ed3e5749774f3915c0a8
@ -103,6 +102,7 @@ spec:
supplementalGroups: [10000] supplementalGroups: [10000]
service: service:
main: main:
controller: radarr
ports: ports:
http: http:
port: *port port: *port
@ -115,7 +115,7 @@ spec:
paths: paths:
- path: / - path: /
service: service:
name: main identifier: app
port: http port: http
tls: tls:
- hosts: - hosts:

11
kubernetes/apps/default/recyclarr/app/helmrelease.yaml
View file

@ -21,8 +21,7 @@ spec:
cleanupOnFail: true cleanupOnFail: true
remediation: remediation:
retries: 3 retries: 3
uninstall: strategy: rollback
keepHistory: false
dependsOn: dependsOn:
- name: rook-ceph-cluster - name: rook-ceph-cluster
namespace: rook-ceph namespace: rook-ceph
@ -30,14 +29,14 @@ spec:
namespace: volsync-system namespace: volsync-system
values: values:
controllers: controllers:
main: recyclarr:
type: cronjob type: cronjob
annotations: annotations:
reloader.stakater.com/auto: "true" reloader.stakater.com/auto: "true"
cronjob: cronjob:
schedule: "@daily" schedule: "@daily"
containers: containers:
main: app:
image: image:
repository: ghcr.io/recyclarr/recyclarr repository: ghcr.io/recyclarr/recyclarr
tag: 6.0.2@sha256:02add40feae0569401b5020528e06419b47046723d0bb4bef1e82325e9eefdad tag: 6.0.2@sha256:02add40feae0569401b5020528e06419b47046723d0bb4bef1e82325e9eefdad
@ -66,12 +65,8 @@ spec:
runAsNonRoot: true runAsNonRoot: true
fsGroup: 568 fsGroup: 568
fsGroupChangePolicy: OnRootMismatch fsGroupChangePolicy: OnRootMismatch
service:
main:
enabled: false
persistence: persistence:
config: config:
enabled: true
existingClaim: recyclarr existingClaim: recyclarr
config-file: config-file:
type: configMap type: configMap

16
kubernetes/apps/default/sabnzbd/app/helmrelease.yaml
View file

@ -1,5 +1,5 @@
--- ---
# yaml-language-server: $schema=https://ks.hsn.dev/helm.toolkit.fluxcd.io/helmrelease_v2beta2.json # yaml-language-server: $schema=https://raw.githubusercontent.com/bjw-s/helm-charts/main/charts/other/app-template/schemas/helmrelease-helm-v2beta2.schema.json
apiVersion: helm.toolkit.fluxcd.io/v2beta2 apiVersion: helm.toolkit.fluxcd.io/v2beta2
kind: HelmRelease kind: HelmRelease
metadata: metadata:
@ -21,8 +21,7 @@ spec:
cleanupOnFail: true cleanupOnFail: true
remediation: remediation:
retries: 3 retries: 3
uninstall: strategy: rollback
keepHistory: false
dependsOn: dependsOn:
- name: rook-ceph-cluster - name: rook-ceph-cluster
namespace: rook-ceph namespace: rook-ceph
@ -30,11 +29,11 @@ spec:
namespace: volsync-system namespace: volsync-system
values: values:
controllers: controllers:
main: sabnzbd:
annotations: annotations:
reloader.stakater.com/auto: "true" reloader.stakater.com/auto: "true"
containers: containers:
main: app:
image: image:
repository: ghcr.io/onedr0p/sabnzbd repository: ghcr.io/onedr0p/sabnzbd
tag: 4.2.3@sha256:fa8ddea45e56b0e36454c3c0eb30ff5521d90aeb5b35301656ae9236680be3a9 tag: 4.2.3@sha256:fa8ddea45e56b0e36454c3c0eb30ff5521d90aeb5b35301656ae9236680be3a9
@ -85,12 +84,13 @@ spec:
fsGroupChangePolicy: OnRootMismatch fsGroupChangePolicy: OnRootMismatch
supplementalGroups: [10000] supplementalGroups: [10000]
service: service:
main: app:
controller: sabnzbd
ports: ports:
http: http:
port: *port port: *port
ingress: ingress:
main: app:
enabled: true enabled: true
className: internal-nginx className: internal-nginx
hosts: hosts:
@ -98,7 +98,7 @@ spec:
paths: paths:
- path: / - path: /
service: service:
name: main identifier: app
port: http port: http
tls: tls:
- hosts: - hosts:

11
kubernetes/apps/default/sonarr/app/helmrelease.yaml
View file

@ -1,5 +1,5 @@
--- ---
# yaml-language-server: $schema=https://ks.hsn.dev/helm.toolkit.fluxcd.io/helmrelease_v2beta2.json # yaml-language-server: $schema=https://raw.githubusercontent.com/bjw-s/helm-charts/main/charts/other/app-template/schemas/helmrelease-helm-v2beta2.schema.json
apiVersion: helm.toolkit.fluxcd.io/v2beta2 apiVersion: helm.toolkit.fluxcd.io/v2beta2
kind: HelmRelease kind: HelmRelease
metadata: metadata:
@ -28,11 +28,11 @@ spec:
namespace: rook-ceph namespace: rook-ceph
values: values:
controllers: controllers:
main: sonarr:
annotations: annotations:
reloader.stakater.com/auto: "true" reloader.stakater.com/auto: "true"
containers: containers:
main: app:
image: image:
repository: ghcr.io/onedr0p/sonarr repository: ghcr.io/onedr0p/sonarr
tag: 4.0.2.1183@sha256:bbfcda0754272515ce12972924652699934074b46b11d27bc515c8ea5fb870f5 tag: 4.0.2.1183@sha256:bbfcda0754272515ce12972924652699934074b46b11d27bc515c8ea5fb870f5
@ -102,7 +102,8 @@ spec:
fsGroupChangePolicy: OnRootMismatch fsGroupChangePolicy: OnRootMismatch
supplementalGroups: [10000] supplementalGroups: [10000]
service: service:
main: app:
controller: sonarr
ports: ports:
http: http:
port: *port port: *port
@ -115,7 +116,7 @@ spec:
paths: paths:
- path: / - path: /
service: service:
name: main identifier: app
port: http port: http
tls: tls:
- hosts: - hosts:

16
kubernetes/apps/default/tautulli/app/helmrelease.yaml
View file

@ -1,5 +1,5 @@
--- ---
# yaml-language-server: $schema=https://ks.hsn.dev/helm.toolkit.fluxcd.io/helmrelease_v2beta2.json # yaml-language-server: $schema=https://raw.githubusercontent.com/bjw-s/helm-charts/main/charts/other/app-template/schemas/helmrelease-helm-v2beta2.schema.json
apiVersion: helm.toolkit.fluxcd.io/v2beta2 apiVersion: helm.toolkit.fluxcd.io/v2beta2
kind: HelmRelease kind: HelmRelease
metadata: metadata:
@ -21,8 +21,7 @@ spec:
cleanupOnFail: true cleanupOnFail: true
remediation: remediation:
retries: 3 retries: 3
uninstall: strategy: rollback
keepHistory: false
dependsOn: dependsOn:
- name: rook-ceph-cluster - name: rook-ceph-cluster
namespace: rook-ceph namespace: rook-ceph
@ -30,11 +29,11 @@ spec:
namespace: volsync-system namespace: volsync-system
values: values:
controllers: controllers:
main: tautulli:
annotations: annotations:
reloader.stakater.com/auto: "true" reloader.stakater.com/auto: "true"
containers: containers:
main: app:
image: image:
repository: ghcr.io/onedr0p/tautulli repository: ghcr.io/onedr0p/tautulli
tag: 2.13.4@sha256:b3000c0063cc4c0c6f2436fb7174f4bcfd8d91eca05206731edccb8b643ea570 tag: 2.13.4@sha256:b3000c0063cc4c0c6f2436fb7174f4bcfd8d91eca05206731edccb8b643ea570
@ -86,12 +85,13 @@ spec:
fsGroup: 568 fsGroup: 568
fsGroupChangePolicy: OnRootMismatch fsGroupChangePolicy: OnRootMismatch
service: service:
main: app:
controller: tautulli
ports: ports:
http: http:
port: *port port: *port
ingress: ingress:
main: app:
enabled: true enabled: true
className: external-nginx className: external-nginx
annotations: annotations:
@ -102,7 +102,7 @@ spec:
paths: paths:
- path: / - path: /
service: service:
name: main identifier: app
port: http port: http
tls: tls:
- hosts: - hosts:

22
kubernetes/apps/default/unpackerr/app/helmrelease.yaml
View file

@ -1,5 +1,5 @@
--- ---
# yaml-language-server: $schema=https://ks.hsn.dev/helm.toolkit.fluxcd.io/helmrelease_v2beta2.json # yaml-language-server: $schema=https://raw.githubusercontent.com/bjw-s/helm-charts/main/charts/other/app-template/schemas/helmrelease-helm-v2beta2.schema.json
apiVersion: helm.toolkit.fluxcd.io/v2beta2 apiVersion: helm.toolkit.fluxcd.io/v2beta2
kind: HelmRelease kind: HelmRelease
metadata: metadata:
@ -21,15 +21,14 @@ spec:
cleanupOnFail: true cleanupOnFail: true
remediation: remediation:
retries: 3 retries: 3
uninstall: strategy: rollback
keepHistory: false
values: values:
controllers: controllers:
main: unpackerr:
annotations: annotations:
reloader.stakater.com/auto: "true" reloader.stakater.com/auto: "true"
containers: containers:
main: app:
image: image:
repository: ghcr.io/unpackerr/unpackerr repository: ghcr.io/unpackerr/unpackerr
tag: 0.13.1@sha256:04fcb43fa70e6db88331962760607842cdf19889e6d35d9d2fde0cf6a1550eaf tag: 0.13.1@sha256:04fcb43fa70e6db88331962760607842cdf19889e6d35d9d2fde0cf6a1550eaf
@ -60,13 +59,20 @@ spec:
fsGroup: 568 fsGroup: 568
fsGroupChangePolicy: OnRootMismatch fsGroupChangePolicy: OnRootMismatch
service: service:
main: app:
controller: unpackerr
ports: ports:
http: http:
port: 5656 port: 5656
serviceMonitor: serviceMonitor:
main: app:
enabled: true serviceName: unpackerr
endpoints:
- port: http
scheme: http
path: /metrics
interval: 1m
scrapeTimeout: 10s
persistence: persistence:
media: media:
type: nfs type: nfs

9
kubernetes/apps/dragonfly-operator-system/dragonfly-operator/app/helmrelease.yaml
View file

@ -1,5 +1,5 @@
--- ---
# yaml-language-server: $schema=https://ks.hsn.dev/helm.toolkit.fluxcd.io/helmrelease_v2beta2.json # yaml-language-server: $schema=https://raw.githubusercontent.com/bjw-s/helm-charts/main/charts/other/app-template/schemas/helmrelease-helm-v2beta2.schema.json
apiVersion: helm.toolkit.fluxcd.io/v2beta2 apiVersion: helm.toolkit.fluxcd.io/v2beta2
kind: HelmRelease kind: HelmRelease
metadata: metadata:
@ -28,7 +28,7 @@ spec:
create: false create: false
name: dragonfly-operator-controller-manager name: dragonfly-operator-controller-manager
controllers: controllers:
main: dragonfly-operator:
containers: containers:
rbac-proxy: rbac-proxy:
image: image:
@ -50,7 +50,7 @@ spec:
limits: limits:
cpu: 500m cpu: 500m
memory: 128Mi memory: 128Mi
main: app:
image: image:
repository: docker.dragonflydb.io/dragonflydb/operator repository: docker.dragonflydb.io/dragonflydb/operator
tag: v1.1.1 tag: v1.1.1
@ -123,7 +123,8 @@ spec:
matchLabels: matchLabels:
app.kubernetes.io/name: *app app.kubernetes.io/name: *app
service: service:
main: app:
controller: dragonfly-operator
ports: ports:
http: http:
port: *port port: *port

12
kubernetes/apps/kube-system/fstrim/app/helmrelease.yaml
View file

@ -1,5 +1,5 @@
--- ---
# yaml-language-server: $schema=https://ks.hsn.dev/helm.toolkit.fluxcd.io/helmrelease_v2beta2.json # yaml-language-server: $schema=https://raw.githubusercontent.com/bjw-s/helm-charts/main/charts/other/app-template/schemas/helmrelease-helm-v2beta2.schema.json
apiVersion: helm.toolkit.fluxcd.io/v2beta2 apiVersion: helm.toolkit.fluxcd.io/v2beta2
kind: HelmRelease kind: HelmRelease
metadata: metadata:
@ -21,17 +21,16 @@ spec:
cleanupOnFail: true cleanupOnFail: true
remediation: remediation:
retries: 3 retries: 3
uninstall: strategy: rollback
keepHistory: false
values: values:
controllers: controllers:
main: kubanetics:
type: cronjob type: cronjob
cronjob: cronjob:
schedule: "@weekly" schedule: "@weekly"
parallelism: 6 # Set to my total number of nodes parallelism: 6 # Set to my total number of nodes
containers: containers:
main: app:
image: image:
repository: ghcr.io/onedr0p/kubanetics repository: ghcr.io/onedr0p/kubanetics
tag: 2024.3.4@sha256:2dfb70e154b4d4cbd8b1f98f1647e4a96aa1fc084a7e07b2586e35f7fc743383 tag: 2024.3.4@sha256:2dfb70e154b4d4cbd8b1f98f1647e4a96aa1fc084a7e07b2586e35f7fc743383
@ -61,9 +60,6 @@ spec:
labelSelector: labelSelector:
matchLabels: matchLabels:
app.kubernetes.io/name: *app app.kubernetes.io/name: *app
service:
main:
enabled: false
persistence: persistence:
procfs: procfs:
type: hostPath type: hostPath

22
kubernetes/apps/network/cloudflared/app/helmrelease.yaml
View file

@ -1,5 +1,5 @@
--- ---
# yaml-language-server: $schema=https://ks.hsn.dev/helm.toolkit.fluxcd.io/helmrelease_v2beta2.json # yaml-language-server: $schema=https://raw.githubusercontent.com/bjw-s/helm-charts/main/charts/other/app-template/schemas/helmrelease-helm-v2beta2.schema.json
apiVersion: helm.toolkit.fluxcd.io/v2beta2 apiVersion: helm.toolkit.fluxcd.io/v2beta2
kind: HelmRelease kind: HelmRelease
metadata: metadata:
@ -21,20 +21,19 @@ spec:
cleanupOnFail: true cleanupOnFail: true
remediation: remediation:
retries: 3 retries: 3
uninstall: strategy: rollback
keepHistory: false
dependsOn: dependsOn:
- name: ingress-nginx - name: ingress-nginx
namespace: network namespace: network
values: values:
controllers: controllers:
main: cloudflared:
replicas: 2 replicas: 2
strategy: RollingUpdate strategy: RollingUpdate
annotations: annotations:
reloader.stakater.com/auto: "true" reloader.stakater.com/auto: "true"
containers: containers:
main: app:
image: image:
repository: docker.io/cloudflare/cloudflared repository: docker.io/cloudflare/cloudflared
tag: 2024.2.1@sha256:60e94a8669dccbe461b6913ce33ab759104334220b49042ec03cfca62a2f01e7 tag: 2024.2.1@sha256:60e94a8669dccbe461b6913ce33ab759104334220b49042ec03cfca62a2f01e7
@ -87,13 +86,20 @@ spec:
matchLabels: matchLabels:
app.kubernetes.io/name: *app app.kubernetes.io/name: *app
service: service:
main: app:
controller: cloudflared
ports: ports:
http: http:
port: *port port: *port
serviceMonitor: serviceMonitor:
main: app:
enabled: true serviceName: cloudflared
endpoints:
- port: http
scheme: http
path: /metrics
interval: 1m
scrapeTimeout: 10s
persistence: persistence:
config: config:
enabled: true enabled: true

22
kubernetes/apps/network/echo-server/app/helmrelease.yaml
View file

@ -1,5 +1,5 @@
--- ---
# yaml-language-server: $schema=https://raw.githubusercontent.com/fluxcd-community/flux2-schemas/main/helmrelease-helm-v2beta2.json # yaml-language-server: $schema=https://raw.githubusercontent.com/bjw-s/helm-charts/main/charts/other/app-template/schemas/helmrelease-helm-v2beta2.schema.json
apiVersion: helm.toolkit.fluxcd.io/v2beta2 apiVersion: helm.toolkit.fluxcd.io/v2beta2
kind: HelmRelease kind: HelmRelease
metadata: metadata:
@ -16,12 +16,19 @@ spec:
kind: HelmRepository kind: HelmRepository
name: bjw-s name: bjw-s
namespace: flux-system namespace: flux-system
install:
remediation:
retries: 3
upgrade:
cleanupOnFail: true
remediation:
strategy: rollback
retries: 3
values: values:
controllers: controllers:
main: echo-server:
containers: containers:
main: app:
image: image:
repository: ghcr.io/mendhak/http-https-echo repository: ghcr.io/mendhak/http-https-echo
tag: "31" tag: "31"
@ -31,13 +38,14 @@ spec:
LOG_IGNORE_PATH: "/healthz" LOG_IGNORE_PATH: "/healthz"
service: service:
main: app:
controller: echo-server
ports: ports:
http: http:
port: *port port: *port
ingress: ingress:
main: app:
enabled: true enabled: true
className: external-nginx className: external-nginx
annotations: annotations:
@ -48,7 +56,7 @@ spec:
paths: paths:
- path: / - path: /
service: service:
name: main identifier: app
port: http port: http
tls: tls:
- hosts: - hosts:

19
kubernetes/apps/observability/alertmanager-silencer/app/helmrelease.yaml
View file

@ -1,5 +1,5 @@
--- ---
# yaml-language-server: $schema=https://ks.hsn.dev/helm.toolkit.fluxcd.io/helmrelease_v2beta2.json # yaml-language-server: $schema=https://raw.githubusercontent.com/bjw-s/helm-charts/main/charts/other/app-template/schemas/helmrelease-helm-v2beta2.schema.json
apiVersion: helm.toolkit.fluxcd.io/v2beta2 apiVersion: helm.toolkit.fluxcd.io/v2beta2
kind: HelmRelease kind: HelmRelease
metadata: metadata:
@ -21,19 +21,18 @@ spec:
cleanupOnFail: true cleanupOnFail: true
remediation: remediation:
retries: 3 retries: 3
uninstall: strategy: rollback
keepHistory: false
dependsOn: dependsOn:
- name: kube-prometheus-stack - name: kube-prometheus-stack
namespace: observability namespace: observability
values: values:
controllers: controllers:
main: alertmanager-silencer:
type: cronjob type: cronjob
cronjob: cronjob:
schedule: "@daily" schedule: "@daily"
containers: containers:
main: app:
image: image:
repository: ghcr.io/onedr0p/kubanetics repository: ghcr.io/onedr0p/kubanetics
tag: 2024.3.4@sha256:2dfb70e154b4d4cbd8b1f98f1647e4a96aa1fc084a7e07b2586e35f7fc743383 tag: 2024.3.4@sha256:2dfb70e154b4d4cbd8b1f98f1647e4a96aa1fc084a7e07b2586e35f7fc743383
@ -42,15 +41,12 @@ spec:
ALERTMANAGER_URL: http://alertmanager-operated.observability.svc.cluster.local:9093 ALERTMANAGER_URL: http://alertmanager-operated.observability.svc.cluster.local:9093
MATCHERS_0: alertname=NodeCPUHighUsage job=node-exporter MATCHERS_0: alertname=NodeCPUHighUsage job=node-exporter
MATCHERS_1: alertname=CephNodeDiskspaceWarning device=/dev/xvda6 MATCHERS_1: alertname=CephNodeDiskspaceWarning device=/dev/xvda6
MATCHERS_2: alertname=CephNodeDiskspaceWarning device=/dev/nvme0n1p6
MATCHERS_3: alertname=CephNodeDiskspaceWarning device=/dev/sda6
securityContext: securityContext:
allowPrivilegeEscalation: false allowPrivilegeEscalation: false
readOnlyRootFilesystem: true readOnlyRootFilesystem: true
capabilities: { drop: ["ALL"] } capabilities: { drop: ["ALL"] }
probes:
liveness: &noProbes
enabled: false
readiness: *noProbes
startup: *noProbes
resources: resources:
requests: requests:
cpu: 25m cpu: 25m
@ -61,6 +57,3 @@ spec:
runAsUser: 568 runAsUser: 568
runAsGroup: 568 runAsGroup: 568
runAsNonRoot: true runAsNonRoot: true
service:
main:
enabled: false

12
kubernetes/apps/observability/vector/app/agent/helmrelease.yaml
View file

@ -1,5 +1,5 @@
--- ---
# yaml-language-server: $schema=https://ks.hsn.dev/helm.toolkit.fluxcd.io/helmrelease_v2beta2.json # yaml-language-server: $schema=https://raw.githubusercontent.com/bjw-s/helm-charts/main/charts/other/app-template/schemas/helmrelease-helm-v2beta2.schema.json
apiVersion: helm.toolkit.fluxcd.io/v2beta2 apiVersion: helm.toolkit.fluxcd.io/v2beta2
kind: HelmRelease kind: HelmRelease
metadata: metadata:
@ -22,20 +22,19 @@ spec:
cleanupOnFail: true cleanupOnFail: true
remediation: remediation:
retries: 3 retries: 3
uninstall: strategy: rollback
keepHistory: false
dependsOn: dependsOn:
- name: vector-aggregator - name: vector-aggregator
namespace: observability namespace: observability
values: values:
controllers: controllers:
main: vector:
type: daemonset type: daemonset
strategy: RollingUpdate strategy: RollingUpdate
annotations: annotations:
reloader.stakater.com/auto: "true" reloader.stakater.com/auto: "true"
containers: containers:
main: app:
image: image:
repository: docker.io/timberio/vector repository: docker.io/timberio/vector
tag: 0.36.1-alpine@sha256:cf20f6f0adb57f561df678a70c4a68361885b861882235bfb0a808610bb1b532 tag: 0.36.1-alpine@sha256:cf20f6f0adb57f561df678a70c4a68361885b861882235bfb0a808610bb1b532
@ -60,9 +59,6 @@ spec:
args: ["--config", "/etc/vector/vector.yaml"] args: ["--config", "/etc/vector/vector.yaml"]
securityContext: securityContext:
privileged: true privileged: true
service:
main:
enabled: false
serviceAccount: serviceAccount:
create: true create: true
name: vector-agent name: vector-agent

12
kubernetes/apps/observability/vector/app/aggregator/helmrelease.yaml
View file

@ -1,5 +1,5 @@
--- ---
# yaml-language-server: $schema=https://ks.hsn.dev/helm.toolkit.fluxcd.io/helmrelease_v2beta2.json # yaml-language-server: $schema=https://raw.githubusercontent.com/bjw-s/helm-charts/main/charts/other/app-template/schemas/helmrelease-helm-v2beta2.schema.json
apiVersion: helm.toolkit.fluxcd.io/v2beta2 apiVersion: helm.toolkit.fluxcd.io/v2beta2
kind: HelmRelease kind: HelmRelease
metadata: metadata:
@ -22,11 +22,10 @@ spec:
cleanupOnFail: true cleanupOnFail: true
remediation: remediation:
retries: 3 retries: 3
uninstall: strategy: rollback
keepHistory: false
values: values:
controllers: controllers:
main: vector-aggregator:
replicas: 2 replicas: 2
strategy: RollingUpdate strategy: RollingUpdate
annotations: annotations:
@ -44,7 +43,7 @@ spec:
- secretRef: - secretRef:
name: vector-aggregator-secret name: vector-aggregator-secret
containers: containers:
main: app:
image: image:
repository: docker.io/timberio/vector repository: docker.io/timberio/vector
tag: 0.36.1-alpine@sha256:cf20f6f0adb57f561df678a70c4a68361885b861882235bfb0a808610bb1b532 tag: 0.36.1-alpine@sha256:cf20f6f0adb57f561df678a70c4a68361885b861882235bfb0a808610bb1b532
@ -58,7 +57,8 @@ spec:
matchLabels: matchLabels:
app.kubernetes.io/name: *app app.kubernetes.io/name: *app
service: service:
main: app:
controller: vector-aggregator
type: LoadBalancer type: LoadBalancer
annotations: annotations:
external-dns.alpha.kubernetes.io/hostname: vector.jahanson.tech external-dns.alpha.kubernetes.io/hostname: vector.jahanson.tech

25
kubernetes/apps/qbittorrent/qbittorrent/app/helmrelease.yaml
View file

@ -1,5 +1,5 @@
--- ---
# yaml-language-server: $schema=https://raw.githubusercontent.com/fluxcd-community/flux2-schemas/main/helmrelease-helm-v2beta2.json # yaml-language-server: $schema=https://raw.githubusercontent.com/bjw-s/helm-charts/main/charts/other/app-template/schemas/helmrelease-helm-v2beta2.schema.json
apiVersion: helm.toolkit.fluxcd.io/v2beta2 apiVersion: helm.toolkit.fluxcd.io/v2beta2
kind: HelmRelease kind: HelmRelease
metadata: metadata:
@ -15,20 +15,26 @@ spec:
kind: HelmRepository kind: HelmRepository
name: bjw-s name: bjw-s
namespace: flux-system namespace: flux-system
install:
remediation:
retries: 3
upgrade:
cleanupOnFail: true
remediation:
retries: 3
strategy: rollback
values: values:
controllers: controllers:
main: qbittorrent:
annotations: annotations:
configmap.reloader.stakater.com/reload: qbittorrent-scripts configmap.reloader.stakater.com/reload: qbittorrent-scripts
secret.reloader.stakater.com/reload: qbittorrent-secret secret.reloader.stakater.com/reload: qbittorrent-secret
pod: pod:
securityContext: securityContext:
fsGroup: 568 fsGroup: 568
fsGroupChangePolicy: "OnRootMismatch" fsGroupChangePolicy: "OnRootMismatch"
containers: containers:
main: app:
nameOverride: qbittorrent nameOverride: qbittorrent
image: image:
repository: ghcr.io/onedr0p/qbittorrent repository: ghcr.io/onedr0p/qbittorrent
@ -104,12 +110,13 @@ spec:
- ALL - ALL
service: service:
main: app:
controller: qbittorrent
ports: ports:
http: http:
port: *port port: *port
bittorrent: bittorrent:
controller: main controller: app
type: LoadBalancer type: LoadBalancer
annotations: annotations:
io.cilium/lb-ipam-ips: 10.45.0.5 io.cilium/lb-ipam-ips: 10.45.0.5
@ -121,7 +128,7 @@ spec:
ingress: ingress:
main: app:
enabled: true enabled: true
className: "internal-nginx" className: "internal-nginx"
hosts: hosts:
@ -129,7 +136,7 @@ spec:
paths: paths:
- path: / - path: /
service: service:
name: main identifier: app
port: http port: http
tls: tls:
- hosts: - hosts: