alexlebens/infrastructure
1
0
Fork 0
Code Issues 1 Pull Requests 3 Actions Activity

feat: refactor apps

Browse Source
This commit is contained in:
Alex Lebens
2026-04-07 20:20:01 -05:00
parent 6825615229
commit 1ce8f18df7
20 changed files with 52 additions and 316 deletions
Download Patch File Download Diff File Expand all files Collapse all files
clusters/cl01tl/helm/vaultwarden/Chart.lock
+3 -3
View File
@@ -7,9 +7,9 @@ dependencies:
version: 2.4.0
- name: postgres-cluster
repository: oci://harbor.alexlebens.net/helm-charts
version: 7.10.0
version: 7.11.2
- name: volsync-target
repository: oci://harbor.alexlebens.net/helm-charts
version: 0.8.0
digest: sha256:6f78b41937412c1db5e0f612287d29ea81c1d9169b8a0efd98a0dd4be3e532d1
generated: "2026-03-15T20:10:47.852109985Z"
digest: sha256:1b1949361ed77479733f8634a2ac6d74d4d8ba3144339446f5508643a0b57a31
generated: "2026-04-07T20:19:48.079671-05:00"
clusters/cl01tl/helm/vaultwarden/Chart.yaml
+4 -6
View File
@@ -4,17 +4,15 @@ version: 1.0.0
description: Vaultwarden
keywords:
- vaultwarden
- bitwarden
- password
home: https://wiki.alexlebens.dev/s/fecd00f9-ebce-43eb-b066-3721b15432e3
- password-manager
home: https://docs.alexlebens.dev/applications/vault/
sources:
- https://github.com/dani-garcia/vaultwarden
- https://github.com/cloudflare/cloudflared
- https://github.com/cloudnative-pg/cloudnative-pg
- https://hub.docker.com/r/vaultwarden/server
- https://github.com/bjw-s-labs/helm-charts/tree/main/charts/other/app-template
- https://gitea.alexlebens.dev/alexlebens/helm-charts/src/branch/main/charts/cloudflared
- https://gitea.alexlebens.dev/alexlebens/helm-charts/src/branch/main/charts/postgres-cluster
- https://gitea.alexlebens.dev/alexlebens/helm-charts/src/branch/main/charts/volsync-target
maintainers:
- name: alexlebens
dependencies:
@@ -27,7 +25,7 @@ dependencies:
version: 2.4.0
- name: postgres-cluster
alias: postgres-18-cluster
version: 7.10.0
version: 7.11.2
repository: oci://harbor.alexlebens.net/helm-charts
- name: volsync-target
alias: volsync-target-data
clusters/cl01tl/helm/vaultwarden/templates/external-secret.yaml
-6
View File
@@ -14,15 +14,9 @@ spec:
data:
- secretKey: client
remoteRef:
conversionStrategy: Default
decodingStrategy: None
key: /authentik/oidc/vaultwarden
metadataPolicy: None
property: client
- secretKey: secret
remoteRef:
conversionStrategy: Default
decodingStrategy: None
key: /authentik/oidc/vaultwarden
metadataPolicy: None
property: secret
clusters/cl01tl/helm/vaultwarden/values.yaml
+3 -30
View File
@@ -4,13 +4,11 @@ vaultwarden:
type: deployment
replicas: 1
strategy: Recreate
revisionHistoryLimit: 3
containers:
main:
image:
repository: vaultwarden/server
tag: 1.35.4
pullPolicy: IfNotPresent
repository: ghcr.io/vaultwarden/server
tag: 1.35.4@sha256:43498a94b22f9563f2a94b53760ab3e710eefc0d0cac2efda4b12b9eb8690664
env:
- name: DOMAIN
value: https://passwords.alexlebens.dev
@@ -44,7 +42,7 @@ vaultwarden:
resources:
requests:
cpu: 10m
memory: 128Mi
memory: 30Mi
service:
main:
controller: main
@@ -52,14 +50,12 @@ vaultwarden:
http:
port: 80
targetPort: 80
protocol: HTTP
persistence:
config:
forceRename: vaultwarden-data
storageClass: ceph-block
accessMode: ReadWriteOnce
size: 5Gi
retain: true
advancedMounts:
main:
main:
@@ -78,35 +74,12 @@ postgres-18-cluster:
destinationBucket: postgres-backups
externalSecretCredentialPath: /garage/home-infra/postgres-backups
isWALArchiver: true
# - name: garage-remote
# index: 1
# destinationBucket: postgres-backups
# externalSecretCredentialPath: /garage/home-infra/postgres-backups
# retentionPolicy: "90d"
# data:
# compression: bzip2
# - name: external
# index: 1
# endpointURL: https://nyc3.digitaloceanspaces.com
# destinationBucket: postgres-backups-ce540ddf106d186bbddca68a
# externalSecretCredentialPath: /garage/home-infra/postgres-backups
# isWALArchiver: false
scheduledBackups:
- name: live-backup
suspend: false
immediate: true
schedule: "0 0 0 * * *"
backupName: garage-local
# - name: weekly-backup
# suspend: true
# immediate: true
# schedule: "0 0 4 * * SAT"
# backupName: garage-remote
# - name: daily-backup
# suspend: true
# immediate: true
# schedule: "0 0 0 * * *"
# backupName: external
volsync-target-data:
pvcTarget: vaultwarden-data
local: