alexlebens/infrastructure
1
0
Fork 0
Code Issues 1 Pull Requests 4 Actions Activity

Merge pull request 'tmp/openbao-2' (#5983) from tmp/openbao-2 into main
All checks were successful
lint-test-docker / lint-docker-compose (push) Successful in 1m15s
Details
lint-test-helm / lint-helm (push) Successful in 1m23s
Details
lint-test-helm / validate-kubeconform (push) Has been skipped
Details
renovate / renovate (push) Successful in 5m37s
Details

Browse Source 
Reviewed-on: #5983
This commit was merged in pull request #5983.
This commit is contained in:
Alex Lebens
2026-04-16 01:32:08 +00:00
parent a4cb4721b3 ae0d560586
commit 3b9d92b4a5
7 changed files with 20 additions and 7 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
clusters/cl01tl/helm/blocky/values.yaml
View File

@@ -106,6 +106,7 @@ blocky:
audiobookshelf IN CNAME traefik-cl01tl
authentik IN CNAME traefik-cl01tl
backrest IN CNAME traefik-cl01tl
bao IN CNAME traefik-cl01tl
bazarr IN CNAME traefik-cl01tl
ceph IN CNAME traefik-cl01tl
dawarich IN CNAME traefik-cl01tl
@@ -141,7 +142,6 @@ blocky:
objects IN CNAME traefik-cl01tl
ollama IN CNAME traefik-cl01tl
omni-tools IN CNAME traefik-cl01tl
openbao IN CNAME traefik-cl01tl
paperless-ngx IN CNAME traefik-cl01tl
plex IN CNAME traefik-cl01tl
postiz-spotlight IN CNAME traefik-cl01tl

2
clusters/cl01tl/helm/gatus/values.yaml
View File

@@ -267,7 +267,7 @@ gatus:
url: https://vault.alexlebens.net
<<: *defaults
- name: openbao
url: https://openbao.alexlebens.net
url: https://bao.alexlebens.net
<<: *defaults
- name: backrest
url: https://backrest.alexlebens.net

2
clusters/cl01tl/helm/homepage/values.yaml
View File

@@ -640,7 +640,7 @@ homepage:
- Secrets:
icon: sh-openbao.webp
description: OpenBao
href: https://openbao.alexlebens.net
href: https://bao.alexlebens.net
siteMonitor: http://openbao.openbao:8200
statusStyle: dot
namespace: openbao

11
clusters/cl01tl/helm/openbao/templates/namespace.yaml Normal file
View File

@@ -0,0 +1,11 @@
apiVersion: v1
kind: Namespace
metadata:
name: openbao
labels:
app.kubernetes.io/name: openbao
app.kubernetes.io/instance: {{ .Release.Name }}
app.kubernetes.io/part-of: {{ .Release.Name }}
pod-security.kubernetes.io/audit: privileged
pod-security.kubernetes.io/enforce: privileged
pod-security.kubernetes.io/warn: privileged

8
clusters/cl01tl/helm/openbao/values.yaml
View File

@@ -18,7 +18,7 @@ openbao:
tlsRoute:
enabled: true
hosts:
- vault.alexlebens.net
- bao.alexlebens.net
apiVersion: gateway.networking.k8s.io/v1
parentRefs:
- group: gateway.networking.k8s.io
@@ -58,13 +58,13 @@ openbao:
storage "raft" {
path = "/openbao/data"
retry_join {
leader_api_addr = "http://openbao-0.openbao-internal:8201"
leader_api_addr = "http://openbao-0.openbao-internal:8200"
}
retry_join {
leader_api_addr = "http://openbao-1.openbao-internal:8201"
leader_api_addr = "http://openbao-1.openbao-internal:8200"
}
retry_join {
leader_api_addr = "http://openbao-2.openbao-internal:8201"
leader_api_addr = "http://openbao-2.openbao-internal:8200"
}
}

1
hosts/ps08rp/blocky/config.yml
View File

@@ -83,6 +83,7 @@ customDNS:
audiobookshelf IN CNAME traefik-cl01tl
authentik IN CNAME traefik-cl01tl
backrest IN CNAME traefik-cl01tl
bao IN CNAME traefik-cl01tl
bazarr IN CNAME traefik-cl01tl
ceph IN CNAME traefik-cl01tl
dawarich IN CNAME traefik-cl01tl

1
hosts/ps09rp/blocky/config.yml
View File

@@ -104,6 +104,7 @@ customDNS:
audiobookshelf IN CNAME traefik-cl01tl
authentik IN CNAME traefik-cl01tl
backrest IN CNAME traefik-cl01tl
bao IN CNAME traefik-cl01tl
bazarr IN CNAME traefik-cl01tl
ceph IN CNAME traefik-cl01tl
dawarich IN CNAME traefik-cl01tl