diff --git a/clusters/cl01tl/helm/immich/Chart.lock b/clusters/cl01tl/helm/immich/Chart.lock index 8dbcf3bd5..8b3b3a429 100644 --- a/clusters/cl01tl/helm/immich/Chart.lock +++ b/clusters/cl01tl/helm/immich/Chart.lock @@ -5,8 +5,5 @@ dependencies: - name: postgres-cluster repository: oci://harbor.alexlebens.net/helm-charts version: 6.16.1 -- name: postgres-cluster - repository: oci://harbor.alexlebens.net/helm-charts - version: 6.16.1 -digest: sha256:1eacc3bc30812da3024b98bba1b565cadbca454183e077540fb57376a82ea53a -generated: "2025-12-11T21:41:10.828677-06:00" +digest: sha256:0efb7efad85276191f07755520291b6a549472af4bbd6ac32c58b29f36984e60 +generated: "2025-12-11T21:59:26.978234-06:00" diff --git a/clusters/cl01tl/helm/immich/Chart.yaml b/clusters/cl01tl/helm/immich/Chart.yaml index 876cdf72a..5ff51e743 100644 --- a/clusters/cl01tl/helm/immich/Chart.yaml +++ b/clusters/cl01tl/helm/immich/Chart.yaml @@ -18,10 +18,6 @@ dependencies: alias: immich repository: https://bjw-s-labs.github.io/helm-charts/ version: 4.5.0 - - name: postgres-cluster - alias: postgres-17-cluster - version: 6.16.1 - repository: oci://harbor.alexlebens.net/helm-charts - name: postgres-cluster alias: postgres-18-cluster version: 6.16.1 diff --git a/clusters/cl01tl/helm/immich/templates/external-secrets.yaml b/clusters/cl01tl/helm/immich/templates/external-secrets.yaml index 21b44ecc6..418f75a44 100644 --- a/clusters/cl01tl/helm/immich/templates/external-secrets.yaml +++ b/clusters/cl01tl/helm/immich/templates/external-secrets.yaml @@ -20,73 +20,6 @@ spec: metadataPolicy: None property: immich.json ---- -apiVersion: external-secrets.io/v1 -kind: ExternalSecret -metadata: - name: immich-postgresql-17-cluster-backup-secret - namespace: {{ .Release.Namespace }} - labels: - app.kubernetes.io/name: immich-postgresql-17-cluster-backup-secret - app.kubernetes.io/instance: {{ .Release.Name }} - app.kubernetes.io/part-of: {{ .Release.Name }} -spec: - secretStoreRef: - kind: ClusterSecretStore - name: vault - data: - - secretKey: ACCESS_KEY_ID - remoteRef: - conversionStrategy: Default - decodingStrategy: None - key: /digital-ocean/home-infra/postgres-backups - metadataPolicy: None - property: access - - secretKey: ACCESS_SECRET_KEY - remoteRef: - conversionStrategy: Default - decodingStrategy: None - key: /digital-ocean/home-infra/postgres-backups - metadataPolicy: None - property: secret - ---- -apiVersion: external-secrets.io/v1 -kind: ExternalSecret -metadata: - name: immich-postgresql-17-cluster-backup-secret-garage - namespace: {{ .Release.Namespace }} - labels: - app.kubernetes.io/name: immich-postgresql-17-cluster-backup-secret-garage - app.kubernetes.io/instance: {{ .Release.Name }} - app.kubernetes.io/part-of: {{ .Release.Name }} -spec: - secretStoreRef: - kind: ClusterSecretStore - name: vault - data: - - secretKey: ACCESS_KEY_ID - remoteRef: - conversionStrategy: Default - decodingStrategy: None - key: /garage/home-infra/postgres-backups - metadataPolicy: None - property: ACCESS_KEY_ID - - secretKey: ACCESS_SECRET_KEY - remoteRef: - conversionStrategy: Default - decodingStrategy: None - key: /garage/home-infra/postgres-backups - metadataPolicy: None - property: ACCESS_SECRET_KEY - - secretKey: ACCESS_REGION - remoteRef: - conversionStrategy: Default - decodingStrategy: None - key: /garage/home-infra/postgres-backups - metadataPolicy: None - property: ACCESS_REGION - --- apiVersion: external-secrets.io/v1 kind: ExternalSecret diff --git a/clusters/cl01tl/helm/immich/values.yaml b/clusters/cl01tl/helm/immich/values.yaml index 5f2b35c27..f3be5def3 100644 --- a/clusters/cl01tl/helm/immich/values.yaml +++ b/clusters/cl01tl/helm/immich/values.yaml @@ -123,76 +123,6 @@ immich: main: - path: /usr/src/app/upload readOnly: false -postgres-17-cluster: - mode: recovery - cluster: - image: - repository: ghcr.io/tensorchord/cloudnative-vectorchord - tag: 17.5-0.4.3 - storage: - storageClass: local-path - walStorage: - storageClass: local-path - monitoring: - enabled: true - prometheusRule: - enabled: true - postgresql: - parameters: - shared_buffers: 256MB - shared_preload_libraries: - - "vchord.so" - initdb: - postInitSQL: - - CREATE EXTENSION IF NOT EXISTS "vector"; - - CREATE EXTENSION IF NOT EXISTS "vchord" CASCADE; - - CREATE EXTENSION IF NOT EXISTS "cube" CASCADE; - - CREATE EXTENSION IF NOT EXISTS "earthdistance" CASCADE; - recovery: - method: objectStore - objectStore: - destinationPath: s3://postgres-backups/cl01tl/immich/immich-postgresql-17-cluster - endpointURL: http://garage-main.garage:3900 - index: 1 - endpointCredentials: immich-postgresql-17-cluster-backup-secret-garage - backup: - objectStore: - - name: external - destinationPath: s3://postgres-backups-ce540ddf106d186bbddca68a/cl01tl/immich/immich-postgresql-17-cluster - index: 2 - retentionPolicy: "30d" - isWALArchiver: false - - name: garage-local - destinationPath: s3://postgres-backups/cl01tl/immich/immich-postgresql-17-cluster - index: 1 - endpointURL: http://garage-main.garage:3900 - endpointCredentials: immich-postgresql-17-cluster-backup-secret-garage - endpointCredentialsIncludeRegion: true - retentionPolicy: "3d" - isWALArchiver: true - # - name: garage-remote - # destinationPath: s3://postgres-backups/cl01tl/immich/immich-postgresql-17-cluster - # index: 1 - # endpointURL: https://garage-ps10rp.boreal-beaufort.ts.net:3900 - # endpointCredentials: immich-postgresql-17-cluster-backup-secret-garage - # retentionPolicy: "30d" - # data: - # compression: bzip2 - # jobs: 2 - scheduledBackups: - - name: daily-backup - suspend: false - schedule: "0 0 0 * * *" - backupName: external - - name: live-backup - suspend: false - immediate: true - schedule: "0 0 0 * * *" - backupName: garage-local - # - name: weekly-backup - # suspend: false - # schedule: "0 4 4 * * SAT" - # backupName: garage-remote postgres-18-cluster: mode: recovery cluster: