From 55a92cc6ba08fb68903cb688a6d522868520f1dd Mon Sep 17 00:00:00 2001
From: gitea-bot <gitea-bot@alexlebens.net>
Date: Thu, 18 Dec 2025 02:33:51 +0000
Subject: [PATCH] chore: Update manifests after change

---
 ...sourceDefinition-recorders.tailscale.com.yaml |  8 ++++++++
 .../tailscale-operator/Deployment-operator.yaml  | 16 ++--------------
 2 files changed, 10 insertions(+), 14 deletions(-)

diff --git a/clusters/cl01tl/manifests/tailscale-operator/CustomResourceDefinition-recorders.tailscale.com.yaml b/clusters/cl01tl/manifests/tailscale-operator/CustomResourceDefinition-recorders.tailscale.com.yaml
index 0f3dcfcca..48db3ef4b 100644
--- a/clusters/cl01tl/manifests/tailscale-operator/CustomResourceDefinition-recorders.tailscale.com.yaml
+++ b/clusters/cl01tl/manifests/tailscale-operator/CustomResourceDefinition-recorders.tailscale.com.yaml
@@ -68,6 +68,11 @@ spec:
                     Corresponds to --ui tsrecorder flag https://tailscale.com/kb/1246/tailscale-ssh-session-recording#deploy-a-recorder-node.
                     Required if S3 storage is not set up, to ensure that recordings are accessible.
                   type: boolean
+                replicas:
+                  description: Replicas specifies how many instances of tsrecorder to run. Defaults to 1.
+                  type: integer
+                  format: int32
+                  minimum: 0
                 statefulSet:
                   description: |-
                     Configuration parameters for the Recorder's StatefulSet. The operator
@@ -1683,6 +1688,9 @@ spec:
                   items:
                     type: string
                     pattern: ^tag:[a-zA-Z][a-zA-Z0-9-]*$
+              x-kubernetes-validations:
+                - rule: '!(self.replicas > 1 && (!has(self.storage) || !has(self.storage.s3)))'
+                  message: S3 storage must be used when deploying multiple Recorder replicas
             status:
               description: |-
                 RecorderStatus describes the status of the recorder. This is set
diff --git a/clusters/cl01tl/manifests/tailscale-operator/Deployment-operator.yaml b/clusters/cl01tl/manifests/tailscale-operator/Deployment-operator.yaml
index ab239dd16..1e7e98447 100644
--- a/clusters/cl01tl/manifests/tailscale-operator/Deployment-operator.yaml
+++ b/clusters/cl01tl/manifests/tailscale-operator/Deployment-operator.yaml
@@ -16,13 +16,9 @@ spec:
         app: operator
     spec:
       serviceAccountName: operator
-      volumes:
-        - name: oauth
-          secret:
-            secretName: operator-oauth
       containers:
         - name: operator
-          image: tailscale/k8s-operator:v1.90.9
+          image: tailscale/k8s-operator:v1.92.3
           imagePullPolicy: Always
           env:
             - name: OPERATOR_INITIAL_TAGS
@@ -41,12 +37,8 @@ spec:
               value:
             - name: OPERATOR_INGRESS_CLASS_NAME
               value: tailscale
-            - name: CLIENT_ID_FILE
-              value: /oauth/client_id
-            - name: CLIENT_SECRET_FILE
-              value: /oauth/client_secret
             - name: PROXY_IMAGE
-              value: tailscale/tailscale:v1.90.9
+              value: tailscale/tailscale:v1.92.3
             - name: PROXY_TAGS
               value: tag:k8s
             - name: APISERVER_PROXY
@@ -63,9 +55,5 @@ spec:
               valueFrom:
                 fieldRef:
                   fieldPath: metadata.uid
-          volumeMounts:
-            - name: oauth
-              mountPath: /oauth
-              readOnly: true
       nodeSelector:
         kubernetes.io/os: linux