From 95a5fc7771dedabcedc194c349f986395aa8dd92 Mon Sep 17 00:00:00 2001 From: gitea-bot Date: Sun, 4 Jan 2026 20:56:22 +0000 Subject: [PATCH] Automated Manifest Update (#3056) This PR contains newly rendered Kubernetes manifests automatically generated by the CI workflow. Reviewed-on: https://gitea.alexlebens.dev/alexlebens/infrastructure/pulls/3056 Co-authored-by: gitea-bot Co-committed-by: gitea-bot --- .../searxng/Deployment-searxng-browser.yaml | 14 ++++++++++++- ...ExternalSecret-searxng-wireguard-conf.yaml | 14 +++++++++++++ .../slskd/Deployment-slskd-main.yaml | 16 ++++++++++++--- .../ExternalSecret-slskd-wireguard-conf.yaml | 14 +++++++++++++ .../Deployment-tubearchivist.yaml | 20 ++++++++++++------- ...alSecret-tubearchivist-wireguard-conf.yaml | 14 +++++++++++++ 6 files changed, 81 insertions(+), 11 deletions(-) diff --git a/clusters/cl01tl/manifests/searxng/Deployment-searxng-browser.yaml b/clusters/cl01tl/manifests/searxng/Deployment-searxng-browser.yaml index 4f4bdeef6..9c06a9434 100644 --- a/clusters/cl01tl/manifests/searxng/Deployment-searxng-browser.yaml +++ b/clusters/cl01tl/manifests/searxng/Deployment-searxng-browser.yaml @@ -44,11 +44,23 @@ spec: secretKeyRef: key: private-key name: searxng-wireguard-conf + - name: UPDATER_PROTONVPN_EMAIL + valueFrom: + secretKeyRef: + key: proton-email + name: qbittorrent-wireguard-conf + - name: UPDATER_PROTONVPN_PASSWORD + valueFrom: + secretKeyRef: + key: proton-password + name: qbittorrent-wireguard-conf - name: FIREWALL_OUTBOUND_SUBNETS value: 192.168.1.0/24,10.244.0.0/16 - name: FIREWALL_INPUT_PORTS value: "8080" - image: ghcr.io/qdm12/gluetun:v3.40.4@sha256:e10584de1f82d8999e5e6c3111901d9d56a2eed21151fb96af060f390bbdfba8 + - name: DNS_UPSTREAM_RESOLVER_TYPE + value: dot + image: ghcr.io/qdm12/gluetun:v3.41.0@sha256:6b54856716d0de56e5bb00a77029b0adea57284cf5a466f23aad5979257d3045 imagePullPolicy: IfNotPresent lifecycle: postStart: diff --git a/clusters/cl01tl/manifests/searxng/ExternalSecret-searxng-wireguard-conf.yaml b/clusters/cl01tl/manifests/searxng/ExternalSecret-searxng-wireguard-conf.yaml index 7248a2d8a..018babd85 100644 --- a/clusters/cl01tl/manifests/searxng/ExternalSecret-searxng-wireguard-conf.yaml +++ b/clusters/cl01tl/manifests/searxng/ExternalSecret-searxng-wireguard-conf.yaml @@ -19,3 +19,17 @@ spec: key: /protonvpn/conf/cl01tl metadataPolicy: None property: private-key + - secretKey: proton-email + remoteRef: + conversionStrategy: Default + decodingStrategy: None + key: /protonvpn/conf/cl01tl + metadataPolicy: None + property: email + - secretKey: proton-password + remoteRef: + conversionStrategy: Default + decodingStrategy: None + key: /protonvpn/conf/cl01tl + metadataPolicy: None + property: password diff --git a/clusters/cl01tl/manifests/slskd/Deployment-slskd-main.yaml b/clusters/cl01tl/manifests/slskd/Deployment-slskd-main.yaml index 8beed8d05..a1fab3c35 100644 --- a/clusters/cl01tl/manifests/slskd/Deployment-slskd-main.yaml +++ b/clusters/cl01tl/manifests/slskd/Deployment-slskd-main.yaml @@ -61,6 +61,16 @@ spec: secretKeyRef: key: private-key name: slskd-wireguard-conf + - name: UPDATER_PROTONVPN_EMAIL + valueFrom: + secretKeyRef: + key: proton-email + name: slskd-wireguard-conf + - name: UPDATER_PROTONVPN_PASSWORD + valueFrom: + secretKeyRef: + key: proton-password + name: slskd-wireguard-conf - name: VPN_PORT_FORWARDING value: "on" - name: PORT_FORWARD_ONLY @@ -69,9 +79,9 @@ spec: value: 192.168.1.0/24,10.244.0.0/16 - name: FIREWALL_INPUT_PORTS value: 5030,50300 - - name: DOT - value: "off" - image: ghcr.io/qdm12/gluetun:v3.40.4@sha256:e10584de1f82d8999e5e6c3111901d9d56a2eed21151fb96af060f390bbdfba8 + - name: DNS_UPSTREAM_RESOLVER_TYPE + value: dot + image: ghcr.io/qdm12/gluetun:v3.41.0@sha256:6b54856716d0de56e5bb00a77029b0adea57284cf5a466f23aad5979257d3045 imagePullPolicy: IfNotPresent lifecycle: postStart: diff --git a/clusters/cl01tl/manifests/slskd/ExternalSecret-slskd-wireguard-conf.yaml b/clusters/cl01tl/manifests/slskd/ExternalSecret-slskd-wireguard-conf.yaml index 31a37e17e..8dff0d0ae 100644 --- a/clusters/cl01tl/manifests/slskd/ExternalSecret-slskd-wireguard-conf.yaml +++ b/clusters/cl01tl/manifests/slskd/ExternalSecret-slskd-wireguard-conf.yaml @@ -19,3 +19,17 @@ spec: key: /protonvpn/conf/cl01tl metadataPolicy: None property: private-key + - secretKey: proton-email + remoteRef: + conversionStrategy: Default + decodingStrategy: None + key: /protonvpn/conf/cl01tl + metadataPolicy: None + property: email + - secretKey: proton-password + remoteRef: + conversionStrategy: Default + decodingStrategy: None + key: /protonvpn/conf/cl01tl + metadataPolicy: None + property: password diff --git a/clusters/cl01tl/manifests/tubearchivist/Deployment-tubearchivist.yaml b/clusters/cl01tl/manifests/tubearchivist/Deployment-tubearchivist.yaml index 6d7e3fe81..157741b2c 100644 --- a/clusters/cl01tl/manifests/tubearchivist/Deployment-tubearchivist.yaml +++ b/clusters/cl01tl/manifests/tubearchivist/Deployment-tubearchivist.yaml @@ -44,6 +44,16 @@ spec: secretKeyRef: key: private-key name: tubearchivist-wireguard-conf + - name: UPDATER_PROTONVPN_EMAIL + valueFrom: + secretKeyRef: + key: proton-email + name: tubearchivist-wireguard-conf + - name: UPDATER_PROTONVPN_PASSWORD + valueFrom: + secretKeyRef: + key: proton-password + name: tubearchivist-wireguard-conf - name: VPN_PORT_FORWARDING value: "on" - name: PORT_FORWARD_ONLY @@ -52,13 +62,9 @@ spec: value: 10.0.0.0/8 - name: FIREWALL_INPUT_PORTS value: 80,8000,24000 - - name: DOT - value: "false" - - name: DNS_KEEP_NAMESERVER - value: "true" - - name: DNS_PLAINTEXT_ADDRESS - value: 10.96.0.10 - image: ghcr.io/qdm12/gluetun:v3.40.4@sha256:e10584de1f82d8999e5e6c3111901d9d56a2eed21151fb96af060f390bbdfba8 + - name: DNS_UPSTREAM_RESOLVER_TYPE + value: dot + image: ghcr.io/qdm12/gluetun:v3.41.0@sha256:e10584de1f82d8999e5e6c3111901d9d56a2eed21151fb96af060f390bbdfba8 imagePullPolicy: IfNotPresent lifecycle: postStart: diff --git a/clusters/cl01tl/manifests/tubearchivist/ExternalSecret-tubearchivist-wireguard-conf.yaml b/clusters/cl01tl/manifests/tubearchivist/ExternalSecret-tubearchivist-wireguard-conf.yaml index ea7939c85..5d98c595c 100644 --- a/clusters/cl01tl/manifests/tubearchivist/ExternalSecret-tubearchivist-wireguard-conf.yaml +++ b/clusters/cl01tl/manifests/tubearchivist/ExternalSecret-tubearchivist-wireguard-conf.yaml @@ -19,3 +19,17 @@ spec: key: /protonvpn/conf/cl01tl metadataPolicy: None property: private-key + - secretKey: proton-email + remoteRef: + conversionStrategy: Default + decodingStrategy: None + key: /protonvpn/conf/cl01tl + metadataPolicy: None + property: email + - secretKey: proton-password + remoteRef: + conversionStrategy: Default + decodingStrategy: None + key: /protonvpn/conf/cl01tl + metadataPolicy: None + property: password