alexlebens/infrastructure
1
0
Fork 0
Code Issues 1 Pull Requests 1 Actions Activity

Merge pull request 'Automated Manifest Update' (#5771) from auto/update-manifests into manifests

Browse Source 
Reviewed-on: #5771
This commit was merged in pull request #5771.
This commit is contained in:
Alex Lebens
2026-04-09 20:03:19 +00:00
parent 3b520d4169 419ae4b0a5
commit a2eba0647a
53 changed files with 3 additions and 1833 deletions
Download Patch File Download Diff File Expand all files Collapse all files

1
clusters/cl01tl/manifests/blocky/ConfigMap-blocky.yaml
View File

@@ -120,7 +120,6 @@ data:
jellystat IN CNAME traefik-cl01tl jellystat IN CNAME traefik-cl01tl
kiwix IN CNAME traefik-cl01tl kiwix IN CNAME traefik-cl01tl
komodo IN CNAME traefik-cl01tl komodo IN CNAME traefik-cl01tl
kyoo IN CNAME traefik-cl01tl
languagetool IN CNAME traefik-cl01tl languagetool IN CNAME traefik-cl01tl
lidarr IN CNAME traefik-cl01tl lidarr IN CNAME traefik-cl01tl
mail IN CNAME traefik-cl01tl mail IN CNAME traefik-cl01tl

2
clusters/cl01tl/manifests/blocky/Deployment-blocky.yaml
View File

@@ -22,7 +22,7 @@ spec:
template: template:
metadata: metadata:
annotations: annotations:
checksum/configMaps: ef122c3658e4566f1250241f3d858e55c258d96980cd13795e28ad7ccaee23f9 checksum/configMaps: efcf1edf529a57d14351e68c54b80821293ffd06322973fbb96cc432a9014b09
labels: labels:
app.kubernetes.io/controller: main app.kubernetes.io/controller: main
app.kubernetes.io/instance: blocky app.kubernetes.io/instance: blocky

9
clusters/cl01tl/manifests/gatus/ConfigMap-gatus.yaml
View File

@@ -69,15 +69,6 @@ data:
interval: 30s interval: 30s
name: jellyfin name: jellyfin
url: https://jellyfin.alexlebens.net url: https://jellyfin.alexlebens.net
- alerts:
- type: ntfy
conditions:
- '[STATUS] == 200'
- '[CERTIFICATE_EXPIRATION] > 240h'
group: core
interval: 30s
name: kyoo
url: https://kyoo.alexlebens.net
- alerts: - alerts:
- type: ntfy - type: ntfy
conditions: conditions:

2
clusters/cl01tl/manifests/gatus/Deployment-gatus.yaml
View File

@@ -26,7 +26,7 @@ spec:
app.kubernetes.io/name: gatus app.kubernetes.io/name: gatus
app.kubernetes.io/instance: gatus app.kubernetes.io/instance: gatus
annotations: annotations:
checksum/config: 797719680390e60aab32318a9d1903ed158d39f4a3b1f6d5b16239b8c1d403d7 checksum/config: 9e51aed51c96eb387affbbf6fe413343981d84575be28ea5567a1fe5955290a5
spec: spec:
serviceAccountName: default serviceAccountName: default
automountServiceAccountToken: false automountServiceAccountToken: false

6
clusters/cl01tl/manifests/homepage/ConfigMap-homepage.yaml
View File

@@ -81,12 +81,6 @@ data:
href: https://jellyfin.alexlebens.net href: https://jellyfin.alexlebens.net
siteMonitor: http://jellyfin.jellyfin:80 siteMonitor: http://jellyfin.jellyfin:80
statusStyle: dot statusStyle: dot
- Movies and TV:
icon: sh-kyoo.webp
description: Kyoo
href: https://kyoo.alexlebens.net
siteMonitor: http://front.kyoo:8901
statusStyle: dot
- Youtube Archive: - Youtube Archive:
icon: sh-tube-archivist-light.webp icon: sh-tube-archivist-light.webp
description: TubeArchivist description: TubeArchivist

2
clusters/cl01tl/manifests/homepage/Deployment-homepage.yaml
View File

@@ -24,7 +24,7 @@ spec:
template: template:
metadata: metadata:
annotations: annotations:
checksum/configMaps: 7e13db22371bff30d0006b987c1e59ccaf242b68006fc2cc4d87f325f1412c95 checksum/configMaps: 889405bdd0d5e6e81665a22fa1eb81842cfdd6da9d301a6f165843725191e6a5
checksum/secrets: d3ba83f111cd32f92c909268c55ad8bbd4f9e299b74b35b33c1a011180d8b378 checksum/secrets: d3ba83f111cd32f92c909268c55ad8bbd4f9e299b74b35b33c1a011180d8b378
labels: labels:
app.kubernetes.io/controller: main app.kubernetes.io/controller: main

45
clusters/cl01tl/manifests/kyoo/ConfigMap-kyoo-postgres-init-scripts.yaml
View File

@@ -1,45 +0,0 @@
apiVersion: v1
kind: ConfigMap
metadata:
name: kyoo-postgres-init-scripts
namespace: kyoo
labels:
helm.sh/chart: postgres-0.12.4
app.kubernetes.io/name: postgres
app.kubernetes.io/instance: kyoo
app.kubernetes.io/version: "18.1.0"
app.kubernetes.io/managed-by: Helm
data:
kyoo_api.sql: |
CREATE DATABASE kyoo_api WITH OWNER kyoo_all;
\connect kyoo_api;
REVOKE ALL ON SCHEMA public FROM PUBLIC;
CREATE SCHEMA IF NOT EXISTS kyoo AUTHORIZATION kyoo_all;
CREATE EXTENSION IF NOT EXISTS pg_trgm SCHEMA kyoo;
SET pg_trgm.word_similarity_threshold = 0.4;
ALTER DATABASE kyoo_api SET pg_trgm.word_similarity_threshold = 0.4;
kyoo_auth.sql: |
CREATE DATABASE kyoo_auth WITH OWNER kyoo_all;
\connect kyoo_auth;
REVOKE ALL ON SCHEMA public FROM PUBLIC;
CREATE SCHEMA IF NOT EXISTS keibi AUTHORIZATION kyoo_all;
kyoo_scanner.sql: |
CREATE DATABASE kyoo_scanner WITH OWNER kyoo_all;
\connect kyoo_scanner;
REVOKE ALL ON SCHEMA public FROM PUBLIC;
CREATE SCHEMA IF NOT EXISTS scanner AUTHORIZATION kyoo_all;
kyoo_transcoder.sql: |
CREATE DATABASE kyoo_transcoder WITH OWNER kyoo_all;
\connect kyoo_transcoder;
REVOKE ALL ON SCHEMA public FROM PUBLIC;
CREATE SCHEMA IF NOT EXISTS gocoder AUTHORIZATION kyoo_all;
user.sql: |
ALTER ROLE kyoo_all
IN DATABASE kyoo_api SET search_path TO "$user", kyoo;
ALTER ROLE kyoo_all
IN DATABASE kyoo_auth SET search_path TO "$user", keibi;
ALTER ROLE kyoo_all
IN DATABASE kyoo_scanner SET search_path TO "$user", scanner;
ALTER ROLE kyoo_all
IN DATABASE kyoo_transcoder SET search_path TO "$user", gocoder;

75
clusters/cl01tl/manifests/kyoo/ConfigMap-kyoo-postgres.yaml
View File

@@ -1,75 +0,0 @@
apiVersion: v1
kind: ConfigMap
metadata:
name: kyoo-postgres
namespace: kyoo
labels:
helm.sh/chart: postgres-0.12.4
app.kubernetes.io/name: postgres
app.kubernetes.io/instance: kyoo
app.kubernetes.io/version: "18.1.0"
app.kubernetes.io/managed-by: Helm
data:
pg_hba.conf: |
# Default pg_hba.conf configuration
# TYPE DATABASE USER ADDRESS METHOD
# "local" is for Unix domain socket connections only
local all all trust
# IPv4 local connections:
host all all 127.0.0.1/32 trust
# IPv6 local connections:
host all all ::1/128 trust
# Allow replication connections from localhost, by a user with the
# replication privilege.
local replication all trust
host replication all 127.0.0.1/32 trust
host replication all ::1/128 trust
# Allow connections from any host with password authentication
host all all all md5
postgresql.conf: |
# PostgreSQL configuration file
# Connection Settings
listen_addresses = '*'
max_connections = 100
# Memory Settings
shared_buffers = 128MB
effective_cache_size = 4GB
work_mem = 4MB
maintenance_work_mem = 64MB
# WAL Settings
wal_buffers = 16MB
# Checkpoint Settings
checkpoint_completion_target = 0.7
# Query Planner Settings
random_page_cost = 1.1
# Logging Settings
log_destination = 'stderr'
logging_collector = off
log_min_messages = warning
log_min_error_statement = error
log_statement = 'none'
log_min_duration_statement = -1
# Shared Libraries
# Locale and Formatting
datestyle = 'iso, mdy'
timezone = 'UTC'
lc_messages = 'en_US.utf8'
lc_monetary = 'en_US.utf8'
lc_numeric = 'en_US.utf8'
lc_time = 'en_US.utf8'
default_text_search_config = 'pg_catalog.english'
# Set pg_hba.conf file to use
hba_file = '/etc/postgresql/pg_hba.conf'
# Additional Configuration

92
clusters/cl01tl/manifests/kyoo/Deployment-kyoo-api.yaml
View File

@@ -1,92 +0,0 @@
apiVersion: apps/v1
kind: Deployment
metadata:
name: kyoo-api
namespace: kyoo
labels:
helm.sh/chart: kyoo-5.0.0
app.kubernetes.io/name: kyoo-api
app.kubernetes.io/instance: kyoo
app.kubernetes.io/component: api
app.kubernetes.io/managed-by: Helm
app.kubernetes.io/part-of: kyoo
app.kubernetes.io/version: "5.0.0"
spec:
replicas: 1
strategy:
type: Recreate
selector:
matchLabels:
app.kubernetes.io/name: kyoo-api
app.kubernetes.io/instance: kyoo
template:
metadata:
labels:
helm.sh/chart: kyoo-5.0.0
app.kubernetes.io/name: kyoo-api
app.kubernetes.io/instance: kyoo
app.kubernetes.io/component: api
app.kubernetes.io/managed-by: Helm
app.kubernetes.io/part-of: kyoo
app.kubernetes.io/version: "5.0.0"
spec:
securityContext:
fsGroup: 1000
fsGroupChangePolicy: OnRootMismatch
serviceAccountName: kyoo-api
initContainers:
containers:
- name: main
image: ghcr.io/zoriya/kyoo_api:5.0.0@sha256:dc0210f235e23ae616b0f5952af7867dcbc52e0354c2683ec3c4190fdcd17744
imagePullPolicy: IfNotPresent
args:
env:
- name: JWT_ISSUER
value: "https://kyoo.alexlebens.net"
- name: AUTH_SERVER
value: "http://kyoo-auth:4568"
- name: TRANSCODER_SERVER
value: "http://kyoo-transcoder:7666"
- name: IMAGES_PATH
value: "/images"
- name: PGUSER
valueFrom:
secretKeyRef:
key: postgres_user
name: kyoo-db-secret
- name: PGPASSWORD
valueFrom:
secretKeyRef:
key: postgres_password
name: kyoo-db-secret
- name: PGDATABASE
value: "kyoo_api"
- name: PGHOST
value: "kyoo-postgres"
- name: PGPORT
value: "5432"
- name: PGSSLMODE
value: "disable"
ports:
- name: main
containerPort: 3567
protocol: TCP
livenessProbe:
httpGet:
path: /api/health
port: main
readinessProbe:
httpGet:
path: /api/ready
port: main
resources:
requests:
cpu: 10m
memory: 100Mi
volumeMounts:
- name: apiimagedata
mountPath: /images
volumes:
- name: apiimagedata
persistentVolumeClaim:
claimName: kyoo-apimetadata

133
clusters/cl01tl/manifests/kyoo/Deployment-kyoo-auth.yaml
View File

@@ -1,133 +0,0 @@
apiVersion: apps/v1
kind: Deployment
metadata:
name: kyoo-auth
namespace: kyoo
labels:
helm.sh/chart: kyoo-5.0.0
app.kubernetes.io/name: kyoo-auth
app.kubernetes.io/instance: kyoo
app.kubernetes.io/component: auth
app.kubernetes.io/managed-by: Helm
app.kubernetes.io/part-of: kyoo
app.kubernetes.io/version: "5.0.0"
spec:
replicas: 1
selector:
matchLabels:
app.kubernetes.io/name: kyoo-auth
app.kubernetes.io/instance: kyoo
template:
metadata:
labels:
helm.sh/chart: kyoo-5.0.0
app.kubernetes.io/name: kyoo-auth
app.kubernetes.io/instance: kyoo
app.kubernetes.io/component: auth
app.kubernetes.io/managed-by: Helm
app.kubernetes.io/part-of: kyoo
app.kubernetes.io/version: "5.0.0"
spec:
securityContext:
fsGroup: 1000
fsGroupChangePolicy: OnRootMismatch
serviceAccountName: kyoo-auth
containers:
- name: main
image: ghcr.io/zoriya/kyoo_auth:5.0.0
imagePullPolicy: IfNotPresent
args:
env:
- name: EXTRA_CLAIMS
value: "{\"permissions\": [\"core.read\", \"core.play\"], \"verified\": false}"
- name: FIRST_USER_CLAIMS
value: "{\"permissions\": [\"users.read\", \"users.write\", \"apikeys.read\", \"apikeys.write\", \"users.delete\", \"core.read\", \"core.write\", \"core.play\", \"scanner.trigger\", \"scanner.guess\", \"scanner.search\", \"scanner.add\"], \"verified\": true}"
- name: GUEST_CLAIMS
value: "{\"permissions\": [\"core.read\"], \"verified\": true}"
- name: PROTECTED_CLAIMS
value: "permissions,verified"
- name: PUBLIC_URL
value: "https://kyoo.alexlebens.net"
- name: KEIBI_APIKEY_SCANNER
valueFrom:
secretKeyRef:
key: scanner-apikey
name: kyoo-key-secret
- name: KEIBI_APIKEY_SCANNER_CLAIMS
value: "{\"permissions\": [\"core.read\", \"core.write\"]}"
- name: PGUSER
valueFrom:
secretKeyRef:
key: postgres_user
name: kyoo-db-secret
- name: PGPASSWORD
valueFrom:
secretKeyRef:
key: postgres_password
name: kyoo-db-secret
- name: PGDATABASE
value: "kyoo_auth"
- name: PGHOST
value: "kyoo-postgres"
- name: PGPORT
value: "5432"
- name: PGSSLMODE
value: "prefer"
- name: RSA_PRIVATE_KEY_PATH
value: /mnt/private_key/private_key.pem
- name: OIDC_AUTHENTIK_NAME
value: "Authentik"
- name: OIDC_AUTHENTIK_LOGO
value: "https://cdn.jsdelivr.net/gh/selfhst/icons@main/webp/authentik.webp"
- name: OIDC_AUTHENTIK_CLIENTID
valueFrom:
secretKeyRef:
key: client
name: kyoo-oidc-secret
- name: OIDC_AUTHENTIK_SECRET
valueFrom:
secretKeyRef:
key: secret
name: kyoo-oidc-secret
- name: OIDC_AUTHENTIK_AUTHORIZATION
value: "https://authentik.alexlebens.net/application/o/authorize/"
- name: OIDC_AUTHENTIK_TOKEN
value: "https://authentik.alexlebens.net/application/o/token/"
- name: OIDC_AUTHENTIK_PROFILE
value: "https://authentik.alexlebens.net/application/o/userinfo/"
- name: OIDC_AUTHENTIK_SCOPE
value: "email openid profile"
- name: OIDC_AUTHENTIK_AUTHMETHOD
value: "ClientSecretBasic"
ports:
- name: main
containerPort: 4568
protocol: TCP
livenessProbe:
httpGet:
path: /auth/health
port: main
readinessProbe:
httpGet:
path: /auth/ready
port: main
resources:
requests:
cpu: 10m
memory: 100Mi
volumeMounts:
- name: profilepictures
mountPath: /profile_pictures
- name: private-key
mountPath: /mnt/private_key
readOnly: true
volumes:
- name: profilepictures
persistentVolumeClaim:
claimName: kyoo-authprofile-pictures
- name: private-key
secret:
secretName: kyoo-key-secret
items:
- key: rsa-private
path: private_key.pem

50
clusters/cl01tl/manifests/kyoo/Deployment-kyoo-front.yaml
View File

@@ -1,50 +0,0 @@
apiVersion: apps/v1
kind: Deployment
metadata:
name: kyoo-front
namespace: kyoo
labels:
helm.sh/chart: kyoo-5.0.0
app.kubernetes.io/name: kyoo-front
app.kubernetes.io/instance: kyoo
app.kubernetes.io/component: front
app.kubernetes.io/managed-by: Helm
app.kubernetes.io/part-of: kyoo
app.kubernetes.io/version: "5.0.0"
spec:
replicas: 1
selector:
matchLabels:
app.kubernetes.io/name: kyoo-front
app.kubernetes.io/instance: kyoo
template:
metadata:
labels:
helm.sh/chart: kyoo-5.0.0
app.kubernetes.io/name: kyoo-front
app.kubernetes.io/instance: kyoo
app.kubernetes.io/component: front
app.kubernetes.io/managed-by: Helm
app.kubernetes.io/part-of: kyoo
app.kubernetes.io/version: "5.0.0"
spec:
securityContext:
fsGroup: 1000
fsGroupChangePolicy: OnRootMismatch
serviceAccountName: kyoo-front
containers:
- name: main
image: ghcr.io/zoriya/kyoo_front:5.0.0@sha256:985f892470b304f13ef1950fb5f7e9ef33ee39b71705c627cb045773e6dfb7b4
imagePullPolicy: IfNotPresent
args:
env:
- name: KYOO_URL
value: "http://kyoo-api:5000/api"
ports:
- name: main
containerPort: 8901
protocol: TCP
resources:
requests:
cpu: 10m
memory: 100Mi

139
clusters/cl01tl/manifests/kyoo/Deployment-kyoo-scanner.yaml
View File

@@ -1,139 +0,0 @@
apiVersion: apps/v1
kind: Deployment
metadata:
name: kyoo-scanner
namespace: kyoo
labels:
helm.sh/chart: kyoo-5.0.0
app.kubernetes.io/name: kyoo-scanner
app.kubernetes.io/instance: kyoo
app.kubernetes.io/component: scanner
app.kubernetes.io/managed-by: Helm
app.kubernetes.io/part-of: kyoo
app.kubernetes.io/version: "5.0.0"
spec:
replicas: 1
selector:
matchLabels:
app.kubernetes.io/name: kyoo-scanner
app.kubernetes.io/instance: kyoo
template:
metadata:
labels:
helm.sh/chart: kyoo-5.0.0
app.kubernetes.io/name: kyoo-scanner
app.kubernetes.io/instance: kyoo
app.kubernetes.io/component: scanner
app.kubernetes.io/managed-by: Helm
app.kubernetes.io/part-of: kyoo
app.kubernetes.io/version: "5.0.0"
spec:
securityContext:
fsGroup: 1000
fsGroupChangePolicy: OnRootMismatch
serviceAccountName: kyoo-scanner
containers:
- name: main
image: ghcr.io/zoriya/kyoo_scanner:5.0.0@sha256:fa972f3f1e534264f4de153e30fe9481839754a3e724cc2663524a2b30e82b46
imagePullPolicy: IfNotPresent
args:
env:
- name: SCANNER_LIBRARY_ROOT
value: "/media"
- name: LIBRARY_IGNORE_PATTERN
value: ".*/[dD]ownloads?/.*"
- name: KYOO_URL
value: "http://kyoo-traefik/api"
- name: JWKS_URL
value: "http://kyoo-auth:4568/.well-known/jwks.json"
- name: JWT_ISSUER
value: "https://kyoo.alexlebens.net"
- name: KYOO_APIKEY
valueFrom:
secretKeyRef:
key: scanner-apikey
name: kyoo-key-secret
- name: THEMOVIEDB_API_ACCESS_TOKEN
valueFrom:
secretKeyRef:
key: tmdb-apikey
name: kyoo-key-secret
optional: true
- name: PGUSER
valueFrom:
secretKeyRef:
key: postgres_user
name: kyoo-db-secret
- name: PGPASSWORD
valueFrom:
secretKeyRef:
key: postgres_password
name: kyoo-db-secret
- name: PGDATABASE
value: "kyoo_scanner"
- name: PGHOST
value: "kyoo-postgres"
- name: PGPORT
value: "5432"
- name: PGSSLMODE
value: "prefer"
ports:
- name: main
containerPort: 4389
protocol: TCP
livenessProbe:
httpGet:
path: /health
port: main
readinessProbe:
httpGet:
path: /ready
port: main
resources:
requests:
cpu: 10m
memory: 100Mi
volumeMounts:
- mountPath: /media/anime
name: kyoo-media-anime-nfs-storage
readOnly: true
- mountPath: /media/anime-movies
name: kyoo-media-anime-movies-nfs-storage
readOnly: true
- mountPath: /media/movies
name: kyoo-media-movies-nfs-storage
readOnly: true
- mountPath: /media/movies-4k
name: kyoo-media-movies-4k-nfs-storage
readOnly: true
- mountPath: /media/standup
name: kyoo-media-standup-nfs-storage
readOnly: true
- mountPath: /media/tvshows
name: kyoo-media-tvshows-nfs-storage
readOnly: true
- mountPath: /media/tvshows-4k
name: kyoo-media-tvshows-4k-nfs-storage
readOnly: true
volumes:
- name: kyoo-media-anime-nfs-storage
persistentVolumeClaim:
claimName: kyoo-media-anime-nfs-storage
- name: kyoo-media-anime-movies-nfs-storage
persistentVolumeClaim:
claimName: kyoo-media-anime-movies-nfs-storage
- name: kyoo-media-movies-nfs-storage
persistentVolumeClaim:
claimName: kyoo-media-movies-nfs-storage
- name: kyoo-media-movies-4k-nfs-storage
persistentVolumeClaim:
claimName: kyoo-media-movies-4k-nfs-storage
- name: kyoo-media-standup-nfs-storage
persistentVolumeClaim:
claimName: kyoo-media-standup-nfs-storage
- name: kyoo-media-tvshows-nfs-storage
persistentVolumeClaim:
claimName: kyoo-media-tvshows-nfs-storage
- name: kyoo-media-tvshows-4k-nfs-storage
persistentVolumeClaim:
claimName: kyoo-media-tvshows-4k-nfs-storage

148
clusters/cl01tl/manifests/kyoo/Deployment-kyoo-transcoder.yaml
View File

@@ -1,148 +0,0 @@
apiVersion: apps/v1
kind: Deployment
metadata:
name: kyoo-transcoder
namespace: kyoo
labels:
helm.sh/chart: kyoo-5.0.0
app.kubernetes.io/name: kyoo-transcoder
app.kubernetes.io/instance: kyoo
app.kubernetes.io/component: transcoder
app.kubernetes.io/managed-by: Helm
app.kubernetes.io/part-of: kyoo
app.kubernetes.io/version: "5.0.0"
spec:
replicas: 1
strategy:
type: Recreate
selector:
matchLabels:
app.kubernetes.io/name: kyoo-transcoder
app.kubernetes.io/instance: kyoo
template:
metadata:
labels:
helm.sh/chart: kyoo-5.0.0
app.kubernetes.io/name: kyoo-transcoder
app.kubernetes.io/instance: kyoo
app.kubernetes.io/component: transcoder
app.kubernetes.io/managed-by: Helm
app.kubernetes.io/part-of: kyoo
app.kubernetes.io/version: "5.0.0"
spec:
securityContext:
fsGroup: 1000
fsGroupChangePolicy: OnRootMismatch
serviceAccountName: kyoo-transcoder
containers:
- name: main
image: ghcr.io/zoriya/kyoo_transcoder:5.0.0@sha256:59974794f8a638175408fa20f023ba9598108b54ad8ed9a22ec87a1a211dfc43
imagePullPolicy: IfNotPresent
args:
env:
- name: JWKS_URL
value: "http://kyoo-auth:4568/.well-known/jwks.json"
- name: GOCODER_HWACCEL
value: "qsv"
- name: GOCODER_PRESET
value: "fast"
- name: GOCODER_CACHE_ROOT
value: "/cache"
- name: GOCODER_METADATA_ROOT
value: "/metadata"
- name: GOCODER_VAAPI_RENDERER
value: "/dev/dri/renderD128"
- name: GOCODER_QSV_RENDERER
value: "/dev/dri/renderD128"
- name: GOCODER_SAFE_PATH
value: "/media"
- name: PGUSER
valueFrom:
secretKeyRef:
key: postgres_user
name: kyoo-db-secret
- name: PGPASSWORD
valueFrom:
secretKeyRef:
key: postgres_password
name: kyoo-db-secret
- name: PGDATABASE
value: "kyoo_transcoder"
- name: PGHOST
value: "kyoo-postgres"
- name: PGPORT
value: "5432"
- name: PGSSLMODE
value: "prefer"
ports:
- name: main
containerPort: 7666
protocol: TCP
livenessProbe:
httpGet:
path: /video/health
port: main
readinessProbe:
httpGet:
path: /video/ready
port: main
resources:
limits:
gpu.intel.com/i915: 1
requests:
cpu: 1
gpu.intel.com/i915: 1
memory: 1Gi
volumeMounts:
- mountPath: /media/anime
name: kyoo-media-anime-nfs-storage
readOnly: true
- mountPath: /media/anime-movies
name: kyoo-media-anime-movies-nfs-storage
readOnly: true
- mountPath: /media/movies
name: kyoo-media-movies-nfs-storage
readOnly: true
- mountPath: /media/movies-4k
name: kyoo-media-movies-4k-nfs-storage
readOnly: true
- mountPath: /media/standup
name: kyoo-media-standup-nfs-storage
readOnly: true
- mountPath: /media/tvshows
name: kyoo-media-tvshows-nfs-storage
readOnly: true
- mountPath: /media/tvshows-4k
name: kyoo-media-tvshows-4k-nfs-storage
readOnly: true
- name: transcodermetadata
mountPath: /metadata
- mountPath: /cache
name: cache
volumes:
- name: kyoo-media-anime-nfs-storage
persistentVolumeClaim:
claimName: kyoo-media-anime-nfs-storage
- name: kyoo-media-anime-movies-nfs-storage
persistentVolumeClaim:
claimName: kyoo-media-anime-movies-nfs-storage
- name: kyoo-media-movies-nfs-storage
persistentVolumeClaim:
claimName: kyoo-media-movies-nfs-storage
- name: kyoo-media-movies-4k-nfs-storage
persistentVolumeClaim:
claimName: kyoo-media-movies-4k-nfs-storage
- name: kyoo-media-standup-nfs-storage
persistentVolumeClaim:
claimName: kyoo-media-standup-nfs-storage
- name: kyoo-media-tvshows-nfs-storage
persistentVolumeClaim:
claimName: kyoo-media-tvshows-nfs-storage
- name: kyoo-media-tvshows-4k-nfs-storage
persistentVolumeClaim:
claimName: kyoo-media-tvshows-4k-nfs-storage
- name: transcodermetadata
persistentVolumeClaim:
claimName: kyoo-transcodermetadata
- emptyDir: {}
name: cache

58
clusters/cl01tl/manifests/kyoo/ExternalSecret-kyoo-apimetadata-backup-secret-external.yaml
View File

@@ -1,58 +0,0 @@
apiVersion: external-secrets.io/v1
kind: ExternalSecret
metadata:
name: kyoo-apimetadata-backup-secret-external
namespace: kyoo
labels:
helm.sh/chart: volsync-target-metadata-0.8.0
app.kubernetes.io/instance: kyoo
app.kubernetes.io/part-of: kyoo
app.kubernetes.io/version: "0.8.0"
app.kubernetes.io/managed-by: Helm
app.kubernetes.io/name: kyoo-apimetadata-backup-secret-external
spec:
secretStoreRef:
kind: ClusterSecretStore
name: vault
target:
template:
mergePolicy: Merge
engineVersion: v2
data:
RESTIC_REPOSITORY: "{{ .BUCKET_ENDPOINT }}/kyoo/kyoo-apimetadata"
data:
- secretKey: BUCKET_ENDPOINT
remoteRef:
conversionStrategy: Default
decodingStrategy: None
key: /volsync/restic/digital-ocean
metadataPolicy: None
property: BUCKET_ENDPOINT
- secretKey: RESTIC_PASSWORD
remoteRef:
conversionStrategy: Default
decodingStrategy: None
key: /volsync/restic/digital-ocean
metadataPolicy: None
property: RESTIC_PASSWORD
- secretKey: AWS_DEFAULT_REGION
remoteRef:
conversionStrategy: Default
decodingStrategy: None
key: /digital-ocean/home-infra/volsync-backups
metadataPolicy: None
property: AWS_DEFAULT_REGION
- secretKey: AWS_ACCESS_KEY_ID
remoteRef:
conversionStrategy: Default
decodingStrategy: None
key: /digital-ocean/home-infra/volsync-backups
metadataPolicy: None
property: AWS_ACCESS_KEY_ID
- secretKey: AWS_SECRET_ACCESS_KEY
remoteRef:
conversionStrategy: Default
decodingStrategy: None
key: /digital-ocean/home-infra/volsync-backups
metadataPolicy: None
property: AWS_SECRET_ACCESS_KEY

58
clusters/cl01tl/manifests/kyoo/ExternalSecret-kyoo-apimetadata-backup-secret-local.yaml
View File

@@ -1,58 +0,0 @@
apiVersion: external-secrets.io/v1
kind: ExternalSecret
metadata:
name: kyoo-apimetadata-backup-secret-local
namespace: kyoo
labels:
helm.sh/chart: volsync-target-metadata-0.8.0
app.kubernetes.io/instance: kyoo
app.kubernetes.io/part-of: kyoo
app.kubernetes.io/version: "0.8.0"
app.kubernetes.io/managed-by: Helm
app.kubernetes.io/name: kyoo-apimetadata-backup-secret-local
spec:
secretStoreRef:
kind: ClusterSecretStore
name: vault
target:
template:
mergePolicy: Merge
engineVersion: v2
data:
RESTIC_REPOSITORY: "{{ .BUCKET_ENDPOINT }}/kyoo/kyoo-apimetadata"
data:
- secretKey: BUCKET_ENDPOINT
remoteRef:
conversionStrategy: Default
decodingStrategy: None
key: /volsync/restic/garage-local
metadataPolicy: None
property: BUCKET_ENDPOINT
- secretKey: RESTIC_PASSWORD
remoteRef:
conversionStrategy: Default
decodingStrategy: None
key: /volsync/restic/garage-local
metadataPolicy: None
property: RESTIC_PASSWORD
- secretKey: AWS_DEFAULT_REGION
remoteRef:
conversionStrategy: Default
decodingStrategy: None
key: /garage/home-infra/volsync-backups
metadataPolicy: None
property: ACCESS_REGION
- secretKey: AWS_ACCESS_KEY_ID
remoteRef:
conversionStrategy: Default
decodingStrategy: None
key: /garage/home-infra/volsync-backups
metadataPolicy: None
property: ACCESS_KEY_ID
- secretKey: AWS_SECRET_ACCESS_KEY
remoteRef:
conversionStrategy: Default
decodingStrategy: None
key: /garage/home-infra/volsync-backups
metadataPolicy: None
property: ACCESS_SECRET_KEY

58
clusters/cl01tl/manifests/kyoo/ExternalSecret-kyoo-apimetadata-backup-secret-remote.yaml
View File

@@ -1,58 +0,0 @@
apiVersion: external-secrets.io/v1
kind: ExternalSecret
metadata:
name: kyoo-apimetadata-backup-secret-remote
namespace: kyoo
labels:
helm.sh/chart: volsync-target-metadata-0.8.0
app.kubernetes.io/instance: kyoo
app.kubernetes.io/part-of: kyoo
app.kubernetes.io/version: "0.8.0"
app.kubernetes.io/managed-by: Helm
app.kubernetes.io/name: kyoo-apimetadata-backup-secret-remote
spec:
secretStoreRef:
kind: ClusterSecretStore
name: vault
target:
template:
mergePolicy: Merge
engineVersion: v2
data:
RESTIC_REPOSITORY: "{{ .BUCKET_ENDPOINT }}/kyoo/kyoo-apimetadata"
data:
- secretKey: BUCKET_ENDPOINT
remoteRef:
conversionStrategy: Default
decodingStrategy: None
key: /volsync/restic/garage-remote
metadataPolicy: None
property: BUCKET_ENDPOINT
- secretKey: RESTIC_PASSWORD
remoteRef:
conversionStrategy: Default
decodingStrategy: None
key: /volsync/restic/garage-remote
metadataPolicy: None
property: RESTIC_PASSWORD
- secretKey: AWS_DEFAULT_REGION
remoteRef:
conversionStrategy: Default
decodingStrategy: None
key: /garage/home-infra/volsync-backups
metadataPolicy: None
property: ACCESS_REGION
- secretKey: AWS_ACCESS_KEY_ID
remoteRef:
conversionStrategy: Default
decodingStrategy: None
key: /garage/home-infra/volsync-backups
metadataPolicy: None
property: ACCESS_KEY_ID
- secretKey: AWS_SECRET_ACCESS_KEY
remoteRef:
conversionStrategy: Default
decodingStrategy: None
key: /garage/home-infra/volsync-backups
metadataPolicy: None
property: ACCESS_SECRET_KEY

22
clusters/cl01tl/manifests/kyoo/ExternalSecret-kyoo-db-secret.yaml
View File

@@ -1,22 +0,0 @@
apiVersion: external-secrets.io/v1
kind: ExternalSecret
metadata:
name: kyoo-db-secret
namespace: kyoo
labels:
app.kubernetes.io/name: kyoo-db-secret
app.kubernetes.io/instance: kyoo
app.kubernetes.io/part-of: kyoo
spec:
secretStoreRef:
kind: ClusterSecretStore
name: vault
data:
- secretKey: postgres_user
remoteRef:
key: /cl01tl/kyoo/db
property: user
- secretKey: postgres_password
remoteRef:
key: /cl01tl/kyoo/db
property: password

30
clusters/cl01tl/manifests/kyoo/ExternalSecret-kyoo-key-secret.yaml
View File

@@ -1,30 +0,0 @@
apiVersion: external-secrets.io/v1
kind: ExternalSecret
metadata:
name: kyoo-key-secret
namespace: kyoo
labels:
app.kubernetes.io/name: kyoo-key-secret
app.kubernetes.io/instance: kyoo
app.kubernetes.io/part-of: kyoo
spec:
secretStoreRef:
kind: ClusterSecretStore
name: vault
data:
- secretKey: rsa-private
remoteRef:
key: /cl01tl/kyoo/key
property: rsa-private
- secretKey: scanner-apikey
remoteRef:
key: /cl01tl/kyoo/key
property: scanner
- secretKey: tmdb-apikey
remoteRef:
key: /tmdb/alexlebens
property: api-key
- secretKey: tvdb-apikey
remoteRef:
key: /tvdb/alexlebens
property: api-key

22
clusters/cl01tl/manifests/kyoo/ExternalSecret-kyoo-oidc-secret.yaml
View File

@@ -1,22 +0,0 @@
apiVersion: external-secrets.io/v1
kind: ExternalSecret
metadata:
name: kyoo-oidc-secret
namespace: kyoo
labels:
app.kubernetes.io/name: kyoo-oidc-secret
app.kubernetes.io/instance: kyoo
app.kubernetes.io/part-of: kyoo
spec:
secretStoreRef:
kind: ClusterSecretStore
name: vault
data:
- secretKey: client
remoteRef:
key: /authentik/oidc/kyoo
property: client
- secretKey: secret
remoteRef:
key: /authentik/oidc/kyoo
property: secret

88
clusters/cl01tl/manifests/kyoo/HTTPRoute-kyoo.yaml
View File

@@ -1,88 +0,0 @@
apiVersion: gateway.networking.k8s.io/v1
kind: HTTPRoute
metadata:
name: kyoo
namespace: kyoo
labels:
app.kubernetes.io/name: kyoo
app.kubernetes.io/instance: kyoo
app.kubernetes.io/part-of: kyoo
spec:
parentRefs:
- group: gateway.networking.k8s.io
kind: Gateway
name: traefik-gateway
namespace: traefik
hostnames:
- kyoo.alexlebens.net
rules:
- matches:
- path:
type: PathPrefix
value: /
backendRefs:
- group: ''
kind: Service
name: kyoo-front
port: 8901
weight: 100
- matches:
- path:
type: PathPrefix
value: /video
backendRefs:
- group: ''
kind: Service
name: kyoo-transcoder
port: 7666
weight: 100
- matches:
- path:
type: PathPrefix
value: /auth/
backendRefs:
- group: ''
kind: Service
name: kyoo-auth
port: 4568
weight: 100
- matches:
- path:
type: PathPrefix
value: /.well-known/
backendRefs:
- group: ''
kind: Service
name: kyoo-auth
port: 4568
weight: 100
- matches:
- path:
type: PathPrefix
value: /api/
backendRefs:
- group: ''
kind: Service
name: kyoo-api
port: 3567
weight: 100
- matches:
- path:
type: PathPrefix
value: /swagger
backendRefs:
- group: ''
kind: Service
name: kyoo-api
port: 3567
weight: 100
- matches:
- path:
type: PathPrefix
value: /scanner/
backendRefs:
- group: ''
kind: Service
name: kyoo-scanner
port: 4389
weight: 100

23
clusters/cl01tl/manifests/kyoo/PersistentVolume-kyoo-media-anime-movies-nfs-storage.yaml
View File

@@ -1,23 +0,0 @@
apiVersion: v1
kind: PersistentVolume
metadata:
name: kyoo-media-anime-movies-nfs-storage
namespace: kyoo
labels:
app.kubernetes.io/name: kyoo-media-anime-movies-nfs-storage
app.kubernetes.io/instance: kyoo
app.kubernetes.io/part-of: kyoo
spec:
persistentVolumeReclaimPolicy: Retain
storageClassName: nfs-client
capacity:
storage: 1Gi
accessModes:
- ReadWriteMany
nfs:
path: /volume2/Storage/Anime Movies
server: synologybond.alexlebens.net
mountOptions:
- vers=4
- minorversion=1
- noac

23
clusters/cl01tl/manifests/kyoo/PersistentVolume-kyoo-media-anime-nfs-storage.yaml
View File

@@ -1,23 +0,0 @@
apiVersion: v1
kind: PersistentVolume
metadata:
name: kyoo-media-anime-nfs-storage
namespace: kyoo
labels:
app.kubernetes.io/name: kyoo-media-anime-nfs-storage
app.kubernetes.io/instance: kyoo
app.kubernetes.io/part-of: kyoo
spec:
persistentVolumeReclaimPolicy: Retain
storageClassName: nfs-client
capacity:
storage: 1Gi
accessModes:
- ReadWriteMany
nfs:
path: /volume2/Storage/Anime
server: synologybond.alexlebens.net
mountOptions:
- vers=4
- minorversion=1
- noac

23
clusters/cl01tl/manifests/kyoo/PersistentVolume-kyoo-media-movies-4k-nfs-storage.yaml
View File

@@ -1,23 +0,0 @@
apiVersion: v1
kind: PersistentVolume
metadata:
name: kyoo-media-movies-4k-nfs-storage
namespace: kyoo
labels:
app.kubernetes.io/name: kyoo-media-movies-4k-nfs-storage
app.kubernetes.io/instance: kyoo
app.kubernetes.io/part-of: kyoo
spec:
persistentVolumeReclaimPolicy: Retain
storageClassName: nfs-client
capacity:
storage: 1Gi
accessModes:
- ReadWriteMany
nfs:
path: /volume2/Storage/Movies 4K
server: synologybond.alexlebens.net
mountOptions:
- vers=4
- minorversion=1
- noac

23
clusters/cl01tl/manifests/kyoo/PersistentVolume-kyoo-media-movies-nfs-storage.yaml
View File

@@ -1,23 +0,0 @@
apiVersion: v1
kind: PersistentVolume
metadata:
name: kyoo-media-movies-nfs-storage
namespace: kyoo
labels:
app.kubernetes.io/name: kyoo-media-movies-nfs-storage
app.kubernetes.io/instance: kyoo
app.kubernetes.io/part-of: kyoo
spec:
persistentVolumeReclaimPolicy: Retain
storageClassName: nfs-client
capacity:
storage: 1Gi
accessModes:
- ReadWriteMany
nfs:
path: /volume2/Storage/Movies
server: synologybond.alexlebens.net
mountOptions:
- vers=4
- minorversion=1
- noac

23
clusters/cl01tl/manifests/kyoo/PersistentVolume-kyoo-media-standup-nfs-storage.yaml
View File

@@ -1,23 +0,0 @@
apiVersion: v1
kind: PersistentVolume
metadata:
name: kyoo-media-standup-nfs-storage
namespace: kyoo
labels:
app.kubernetes.io/name: kyoo-media-standup-nfs-storage
app.kubernetes.io/instance: kyoo
app.kubernetes.io/part-of: kyoo
spec:
persistentVolumeReclaimPolicy: Retain
storageClassName: nfs-client
capacity:
storage: 1Gi
accessModes:
- ReadWriteMany
nfs:
path: /volume2/Storage/Stand Up
server: synologybond.alexlebens.net
mountOptions:
- vers=4
- minorversion=1
- noac

23
clusters/cl01tl/manifests/kyoo/PersistentVolume-kyoo-media-tvshows-4k-nfs-storage.yaml
View File

@@ -1,23 +0,0 @@
apiVersion: v1
kind: PersistentVolume
metadata:
name: kyoo-media-tvshows-4k-nfs-storage
namespace: kyoo
labels:
app.kubernetes.io/name: kyoo-media-tvshows-4k-nfs-storage
app.kubernetes.io/instance: kyoo
app.kubernetes.io/part-of: kyoo
spec:
persistentVolumeReclaimPolicy: Retain
storageClassName: nfs-client
capacity:
storage: 1Gi
accessModes:
- ReadWriteMany
nfs:
path: /volume2/Storage/TV Shows
server: synologybond.alexlebens.net
mountOptions:
- vers=4
- minorversion=1
- noac

23
clusters/cl01tl/manifests/kyoo/PersistentVolume-kyoo-media-tvshows-nfs-storage.yaml
View File

@@ -1,23 +0,0 @@
apiVersion: v1
kind: PersistentVolume
metadata:
name: kyoo-media-tvshows-nfs-storage
namespace: kyoo
labels:
app.kubernetes.io/name: kyoo-media-tvshows-nfs-storage
app.kubernetes.io/instance: kyoo
app.kubernetes.io/part-of: kyoo
spec:
persistentVolumeReclaimPolicy: Retain
storageClassName: nfs-client
capacity:
storage: 1Gi
accessModes:
- ReadWriteMany
nfs:
path: /volume2/Storage/TV Shows
server: synologybond.alexlebens.net
mountOptions:
- vers=4
- minorversion=1
- noac

20
clusters/cl01tl/manifests/kyoo/PersistentVolumeClaim-kyoo-apimetadata.yaml
View File

@@ -1,20 +0,0 @@
apiVersion: v1
kind: PersistentVolumeClaim
metadata:
name: kyoo-apimetadata
namespace: kyoo
labels:
helm.sh/chart: kyoo-5.0.0
app.kubernetes.io/name: kyoo-api
app.kubernetes.io/instance: kyoo
app.kubernetes.io/component: api
app.kubernetes.io/managed-by: Helm
app.kubernetes.io/part-of: kyoo
app.kubernetes.io/version: "5.0.0"
spec:
accessModes:
- ReadWriteOnce
resources:
requests:
storage: 1Gi
storageClassName: ceph-block

20
clusters/cl01tl/manifests/kyoo/PersistentVolumeClaim-kyoo-authprofile-pictures.yaml
View File

@@ -1,20 +0,0 @@
apiVersion: v1
kind: PersistentVolumeClaim
metadata:
name: kyoo-authprofile-pictures
namespace: kyoo
labels:
helm.sh/chart: kyoo-5.0.0
app.kubernetes.io/name: kyoo-auth
app.kubernetes.io/instance: kyoo
app.kubernetes.io/component: auth
app.kubernetes.io/managed-by: Helm
app.kubernetes.io/part-of: kyoo
app.kubernetes.io/version: "5.0.0"
spec:
accessModes:
- ReadWriteOnce
resources:
requests:
storage: 500Mi
storageClassName: ceph-block

17
clusters/cl01tl/manifests/kyoo/PersistentVolumeClaim-kyoo-media-anime-movies-nfs-storage.yaml
View File

@@ -1,17 +0,0 @@
apiVersion: v1
kind: PersistentVolumeClaim
metadata:
name: kyoo-media-anime-movies-nfs-storage
namespace: kyoo
labels:
app.kubernetes.io/name: kyoo-media-anime-movies-nfs-storage
app.kubernetes.io/instance: kyoo
app.kubernetes.io/part-of: kyoo
spec:
volumeName: kyoo-media-anime-movies-nfs-storage
storageClassName: nfs-client
accessModes:
- ReadWriteMany
resources:
requests:
storage: 1Gi

17
clusters/cl01tl/manifests/kyoo/PersistentVolumeClaim-kyoo-media-anime-nfs-storage.yaml
View File

@@ -1,17 +0,0 @@
apiVersion: v1
kind: PersistentVolumeClaim
metadata:
name: kyoo-media-anime-nfs-storage
namespace: kyoo
labels:
app.kubernetes.io/name: kyoo-media-anime-nfs-storage
app.kubernetes.io/instance: kyoo
app.kubernetes.io/part-of: kyoo
spec:
volumeName: kyoo-media-anime-nfs-storage
storageClassName: nfs-client
accessModes:
- ReadWriteMany
resources:
requests:
storage: 1Gi

17
clusters/cl01tl/manifests/kyoo/PersistentVolumeClaim-kyoo-media-movies-4k-nfs-storage.yaml
View File

@@ -1,17 +0,0 @@
apiVersion: v1
kind: PersistentVolumeClaim
metadata:
name: kyoo-media-movies-4k-nfs-storage
namespace: kyoo
labels:
app.kubernetes.io/name: kyoo-media-movies-4k-nfs-storage
app.kubernetes.io/instance: kyoo
app.kubernetes.io/part-of: kyoo
spec:
volumeName: kyoo-media-movies-4k-nfs-storage
storageClassName: nfs-client
accessModes:
- ReadWriteMany
resources:
requests:
storage: 1Gi

17
clusters/cl01tl/manifests/kyoo/PersistentVolumeClaim-kyoo-media-movies-nfs-storage.yaml
View File

@@ -1,17 +0,0 @@
apiVersion: v1
kind: PersistentVolumeClaim
metadata:
name: kyoo-media-movies-nfs-storage
namespace: kyoo
labels:
app.kubernetes.io/name: kyoo-media-movies-nfs-storage
app.kubernetes.io/instance: kyoo
app.kubernetes.io/part-of: kyoo
spec:
volumeName: kyoo-media-movies-nfs-storage
storageClassName: nfs-client
accessModes:
- ReadWriteMany
resources:
requests:
storage: 1Gi

17
clusters/cl01tl/manifests/kyoo/PersistentVolumeClaim-kyoo-media-standup-nfs-storage.yaml
View File

@@ -1,17 +0,0 @@
apiVersion: v1
kind: PersistentVolumeClaim
metadata:
name: kyoo-media-standup-nfs-storage
namespace: kyoo
labels:
app.kubernetes.io/name: kyoo-media-standup-nfs-storage
app.kubernetes.io/instance: kyoo
app.kubernetes.io/part-of: kyoo
spec:
volumeName: kyoo-media-standup-nfs-storage
storageClassName: nfs-client
accessModes:
- ReadWriteMany
resources:
requests:
storage: 1Gi

17
clusters/cl01tl/manifests/kyoo/PersistentVolumeClaim-kyoo-media-tvshows-4k-nfs-storage.yaml
View File

@@ -1,17 +0,0 @@
apiVersion: v1
kind: PersistentVolumeClaim
metadata:
name: kyoo-media-tvshows-4k-nfs-storage
namespace: kyoo
labels:
app.kubernetes.io/name: kyoo-media-tvshows-4k-nfs-storage
app.kubernetes.io/instance: kyoo
app.kubernetes.io/part-of: kyoo
spec:
volumeName: kyoo-media-tvshows-4k-nfs-storage
storageClassName: nfs-client
accessModes:
- ReadWriteMany
resources:
requests:
storage: 1Gi

17
clusters/cl01tl/manifests/kyoo/PersistentVolumeClaim-kyoo-media-tvshows-nfs-storage.yaml
View File

@@ -1,17 +0,0 @@
apiVersion: v1
kind: PersistentVolumeClaim
metadata:
name: kyoo-media-tvshows-nfs-storage
namespace: kyoo
labels:
app.kubernetes.io/name: kyoo-media-tvshows-nfs-storage
app.kubernetes.io/instance: kyoo
app.kubernetes.io/part-of: kyoo
spec:
volumeName: kyoo-media-tvshows-nfs-storage
storageClassName: nfs-client
accessModes:
- ReadWriteMany
resources:
requests:
storage: 1Gi

20
clusters/cl01tl/manifests/kyoo/PersistentVolumeClaim-kyoo-transcodermetadata.yaml
View File

@@ -1,20 +0,0 @@
apiVersion: v1
kind: PersistentVolumeClaim
metadata:
name: kyoo-transcodermetadata
namespace: kyoo
labels:
helm.sh/chart: kyoo-5.0.0
app.kubernetes.io/name: kyoo-transcoder
app.kubernetes.io/instance: kyoo
app.kubernetes.io/component: transcoder
app.kubernetes.io/managed-by: Helm
app.kubernetes.io/part-of: kyoo
app.kubernetes.io/version: "5.0.0"
spec:
accessModes:
- ReadWriteOnce
resources:
requests:
storage: 1Gi
storageClassName: ceph-block

29
clusters/cl01tl/manifests/kyoo/ReplicationSource-kyoo-apimetadata-backup-source-external.yaml
View File

@@ -1,29 +0,0 @@
apiVersion: volsync.backube/v1alpha1
kind: ReplicationSource
metadata:
name: kyoo-apimetadata-backup-source-external
namespace: kyoo
labels:
helm.sh/chart: volsync-target-metadata-0.8.0
app.kubernetes.io/instance: kyoo
app.kubernetes.io/part-of: kyoo
app.kubernetes.io/version: "0.8.0"
app.kubernetes.io/managed-by: Helm
app.kubernetes.io/name: kyoo-apimetadata-backup
spec:
sourcePVC: kyoo-apimetadata
trigger:
schedule: 26 10 * * *
restic:
pruneIntervalDays: 7
repository: kyoo-apimetadata-backup-secret-external
retain:
daily: 7
hourly: 0
monthly: 3
weekly: 4
yearly: 1
copyMethod: Snapshot
storageClassName: ceph-block
volumeSnapshotClassName: ceph-blockpool-snapshot
cacheCapacity: 1Gi

29
clusters/cl01tl/manifests/kyoo/ReplicationSource-kyoo-apimetadata-backup-source-local.yaml
View File

@@ -1,29 +0,0 @@
apiVersion: volsync.backube/v1alpha1
kind: ReplicationSource
metadata:
name: kyoo-apimetadata-backup-source-local
namespace: kyoo
labels:
helm.sh/chart: volsync-target-metadata-0.8.0
app.kubernetes.io/instance: kyoo
app.kubernetes.io/part-of: kyoo
app.kubernetes.io/version: "0.8.0"
app.kubernetes.io/managed-by: Helm
app.kubernetes.io/name: kyoo-apimetadata-backup
spec:
sourcePVC: kyoo-apimetadata
trigger:
schedule: 26 8 * * *
restic:
pruneIntervalDays: 7
repository: kyoo-apimetadata-backup-secret-local
retain:
daily: 7
hourly: 0
monthly: 3
weekly: 4
yearly: 1
copyMethod: Snapshot
storageClassName: ceph-block
volumeSnapshotClassName: ceph-blockpool-snapshot
cacheCapacity: 1Gi

29
clusters/cl01tl/manifests/kyoo/ReplicationSource-kyoo-apimetadata-backup-source-remote.yaml
View File

@@ -1,29 +0,0 @@
apiVersion: volsync.backube/v1alpha1
kind: ReplicationSource
metadata:
name: kyoo-apimetadata-backup-source-remote
namespace: kyoo
labels:
helm.sh/chart: volsync-target-metadata-0.8.0
app.kubernetes.io/instance: kyoo
app.kubernetes.io/part-of: kyoo
app.kubernetes.io/version: "0.8.0"
app.kubernetes.io/managed-by: Helm
app.kubernetes.io/name: kyoo-apimetadata-backup
spec:
sourcePVC: kyoo-apimetadata
trigger:
schedule: 26 9 * * *
restic:
pruneIntervalDays: 7
repository: kyoo-apimetadata-backup-secret-remote
retain:
daily: 7
hourly: 0
monthly: 3
weekly: 4
yearly: 1
copyMethod: Snapshot
storageClassName: ceph-block
volumeSnapshotClassName: ceph-blockpool-snapshot
cacheCapacity: 1Gi

23
clusters/cl01tl/manifests/kyoo/Service-kyoo-api.yaml
View File

@@ -1,23 +0,0 @@
apiVersion: v1
kind: Service
metadata:
name: kyoo-api
namespace: kyoo
labels:
helm.sh/chart: kyoo-5.0.0
app.kubernetes.io/name: kyoo-api
app.kubernetes.io/instance: kyoo
app.kubernetes.io/component: api
app.kubernetes.io/managed-by: Helm
app.kubernetes.io/part-of: kyoo
app.kubernetes.io/version: "5.0.0"
spec:
type: ClusterIP
ports:
- port: 3567
targetPort: 3567
protocol: TCP
name: main
selector:
app.kubernetes.io/name: kyoo-api
app.kubernetes.io/instance: kyoo

23
clusters/cl01tl/manifests/kyoo/Service-kyoo-auth.yaml
View File

@@ -1,23 +0,0 @@
apiVersion: v1
kind: Service
metadata:
name: kyoo-auth
namespace: kyoo
labels:
helm.sh/chart: kyoo-5.0.0
app.kubernetes.io/name: kyoo-auth
app.kubernetes.io/instance: kyoo
app.kubernetes.io/component: auth
app.kubernetes.io/managed-by: Helm
app.kubernetes.io/part-of: kyoo
app.kubernetes.io/version: "5.0.0"
spec:
type: ClusterIP
ports:
- port: 4568
targetPort: 4568
protocol: TCP
name: main
selector:
app.kubernetes.io/name: kyoo-auth
app.kubernetes.io/instance: kyoo

23
clusters/cl01tl/manifests/kyoo/Service-kyoo-front.yaml
View File

@@ -1,23 +0,0 @@
apiVersion: v1
kind: Service
metadata:
name: kyoo-front
namespace: kyoo
labels:
helm.sh/chart: kyoo-5.0.0
app.kubernetes.io/name: kyoo-front
app.kubernetes.io/instance: kyoo
app.kubernetes.io/component: front
app.kubernetes.io/managed-by: Helm
app.kubernetes.io/part-of: kyoo
app.kubernetes.io/version: "5.0.0"
spec:
type: ClusterIP
ports:
- port: 8901
targetPort: 8901
protocol: TCP
name: main
selector:
app.kubernetes.io/name: kyoo-front
app.kubernetes.io/instance: kyoo

22
clusters/cl01tl/manifests/kyoo/Service-kyoo-postgres-headless.yaml
View File

@@ -1,22 +0,0 @@
apiVersion: v1
kind: Service
metadata:
name: kyoo-postgres-headless
namespace: "kyoo"
labels:
helm.sh/chart: postgres-0.12.4
app.kubernetes.io/name: postgres
app.kubernetes.io/instance: kyoo
app.kubernetes.io/version: "18.1.0"
app.kubernetes.io/managed-by: Helm
spec:
type: ClusterIP
clusterIP: None
ports:
- port: 5432
targetPort: 5432
protocol: TCP
name: postgresql
selector:
app.kubernetes.io/name: postgres
app.kubernetes.io/instance: kyoo

21
clusters/cl01tl/manifests/kyoo/Service-kyoo-postgres.yaml
View File

@@ -1,21 +0,0 @@
apiVersion: v1
kind: Service
metadata:
name: kyoo-postgres
namespace: kyoo
labels:
helm.sh/chart: postgres-0.12.4
app.kubernetes.io/name: postgres
app.kubernetes.io/instance: kyoo
app.kubernetes.io/version: "18.1.0"
app.kubernetes.io/managed-by: Helm
spec:
type: ClusterIP
ports:
- port: 5432
targetPort: 5432
protocol: TCP
name: postgresql
selector:
app.kubernetes.io/name: postgres
app.kubernetes.io/instance: kyoo

23
clusters/cl01tl/manifests/kyoo/Service-kyoo-scanner.yaml
View File

@@ -1,23 +0,0 @@
apiVersion: v1
kind: Service
metadata:
name: kyoo-scanner
namespace: kyoo
labels:
helm.sh/chart: kyoo-5.0.0
app.kubernetes.io/name: kyoo-scanner
app.kubernetes.io/instance: kyoo
app.kubernetes.io/component: scanner
app.kubernetes.io/managed-by: Helm
app.kubernetes.io/part-of: kyoo
app.kubernetes.io/version: "5.0.0"
spec:
type: ClusterIP
ports:
- port: 4389
targetPort: 4389
protocol: TCP
name: main
selector:
app.kubernetes.io/name: kyoo-scanner
app.kubernetes.io/instance: kyoo

23
clusters/cl01tl/manifests/kyoo/Service-kyoo-transcoder.yaml
View File

@@ -1,23 +0,0 @@
apiVersion: v1
kind: Service
metadata:
name: kyoo-transcoder
namespace: kyoo
labels:
helm.sh/chart: kyoo-5.0.0
app.kubernetes.io/name: kyoo-transcoder
app.kubernetes.io/instance: kyoo
app.kubernetes.io/component: transcoder
app.kubernetes.io/managed-by: Helm
app.kubernetes.io/part-of: kyoo
app.kubernetes.io/version: "5.0.0"
spec:
type: ClusterIP
ports:
- port: 7666
targetPort: 7666
protocol: TCP
name: main
selector:
app.kubernetes.io/name: kyoo-transcoder
app.kubernetes.io/instance: kyoo

14
clusters/cl01tl/manifests/kyoo/ServiceAccount-kyoo-api.yaml
View File

@@ -1,14 +0,0 @@
apiVersion: v1
kind: ServiceAccount
automountServiceAccountToken: true
metadata:
name: kyoo-api
namespace: kyoo
labels:
helm.sh/chart: kyoo-5.0.0
app.kubernetes.io/name: kyoo-api
app.kubernetes.io/instance: kyoo
app.kubernetes.io/component: api
app.kubernetes.io/managed-by: Helm
app.kubernetes.io/part-of: kyoo
app.kubernetes.io/version: "5.0.0"

14
clusters/cl01tl/manifests/kyoo/ServiceAccount-kyoo-auth.yaml
View File

@@ -1,14 +0,0 @@
apiVersion: v1
kind: ServiceAccount
automountServiceAccountToken: true
metadata:
name: kyoo-auth
namespace: kyoo
labels:
helm.sh/chart: kyoo-5.0.0
app.kubernetes.io/name: kyoo-auth
app.kubernetes.io/instance: kyoo
app.kubernetes.io/component: auth
app.kubernetes.io/managed-by: Helm
app.kubernetes.io/part-of: kyoo
app.kubernetes.io/version: "5.0.0"

14
clusters/cl01tl/manifests/kyoo/ServiceAccount-kyoo-front.yaml
View File

@@ -1,14 +0,0 @@
apiVersion: v1
kind: ServiceAccount
automountServiceAccountToken: true
metadata:
name: kyoo-front
namespace: kyoo
labels:
helm.sh/chart: kyoo-5.0.0
app.kubernetes.io/name: kyoo-front
app.kubernetes.io/instance: kyoo
app.kubernetes.io/component: front
app.kubernetes.io/managed-by: Helm
app.kubernetes.io/part-of: kyoo
app.kubernetes.io/version: "5.0.0"

14
clusters/cl01tl/manifests/kyoo/ServiceAccount-kyoo-scanner.yaml
View File

@@ -1,14 +0,0 @@
apiVersion: v1
kind: ServiceAccount
automountServiceAccountToken: true
metadata:
name: kyoo-scanner
namespace: kyoo
labels:
helm.sh/chart: kyoo-5.0.0
app.kubernetes.io/name: kyoo-scanner
app.kubernetes.io/instance: kyoo
app.kubernetes.io/component: scanner
app.kubernetes.io/managed-by: Helm
app.kubernetes.io/part-of: kyoo
app.kubernetes.io/version: "5.0.0"

14
clusters/cl01tl/manifests/kyoo/ServiceAccount-kyoo-transcoder.yaml
View File

@@ -1,14 +0,0 @@
apiVersion: v1
kind: ServiceAccount
automountServiceAccountToken: true
metadata:
name: kyoo-transcoder
namespace: kyoo
labels:
helm.sh/chart: kyoo-5.0.0
app.kubernetes.io/name: kyoo-transcoder
app.kubernetes.io/instance: kyoo
app.kubernetes.io/component: transcoder
app.kubernetes.io/managed-by: Helm
app.kubernetes.io/part-of: kyoo
app.kubernetes.io/version: "5.0.0"

141
clusters/cl01tl/manifests/kyoo/StatefulSet-kyoo-postgres.yaml
View File

@@ -1,141 +0,0 @@
apiVersion: apps/v1
kind: StatefulSet
metadata:
name: kyoo-postgres
namespace: kyoo
labels:
helm.sh/chart: postgres-0.12.4
app.kubernetes.io/name: postgres
app.kubernetes.io/instance: kyoo
app.kubernetes.io/version: "18.1.0"
app.kubernetes.io/managed-by: Helm
spec:
replicas: 1
serviceName: kyoo-postgres-headless
updateStrategy:
type: RollingUpdate
selector:
matchLabels:
app.kubernetes.io/name: postgres
app.kubernetes.io/instance: kyoo
template:
metadata:
labels:
helm.sh/chart: postgres-0.12.4
app.kubernetes.io/name: postgres
app.kubernetes.io/instance: kyoo
app.kubernetes.io/version: "18.1.0"
app.kubernetes.io/managed-by: Helm
spec:
serviceAccountName: default
automountServiceAccountToken: false
securityContext:
fsGroup: 999
containers:
- name: postgres
securityContext:
allowPrivilegeEscalation: false
capabilities:
drop:
- ALL
readOnlyRootFilesystem: false
runAsGroup: 999
runAsNonRoot: true
runAsUser: 999
image: docker.io/postgres:18.1@sha256:5ec39c188013123927f30a006987c6b0e20f3ef2b54b140dfa96dac6844d883f
imagePullPolicy: Always
args:
- -c
- 'config_file=/etc/postgresql/postgresql.conf'
env:
- name: PGDATA
value: /var/lib/postgresql/18/docker
- name: POSTGRES_USER
value: kyoo_all
- name: POSTGRES_PASSWORD
valueFrom:
secretKeyRef:
name: kyoo-db-secret
key: postgres_password
- name: POSTGRES_MAX_CONNECTIONS
value: "100"
ports:
- name: postgresql
containerPort: 5432
protocol: TCP
livenessProbe:
exec:
command:
- /bin/bash
- -c
- |
pg_isready -U kyoo_all -d postgres -h 127.0.0.1 -p 5432
initialDelaySeconds: 30
periodSeconds: 10
timeoutSeconds: 5
successThreshold: 1
failureThreshold: 3
readinessProbe:
exec:
command:
- /bin/bash
- -c
- |
pg_isready -U kyoo_all -d postgres -h 127.0.0.1 -p 5432
initialDelaySeconds: 5
periodSeconds: 5
timeoutSeconds: 5
successThreshold: 1
failureThreshold: 3
startupProbe:
exec:
command:
- /bin/bash
- -c
- |
pg_isready -U kyoo_all -d postgres -h 127.0.0.1 -p 5432
initialDelaySeconds: 30
periodSeconds: 10
timeoutSeconds: 5
successThreshold: 1
failureThreshold: 30
resources: {}
volumeMounts:
- name: data
mountPath: /var/lib/postgresql
- name: config
mountPath: /etc/postgresql
- name: run
mountPath: /var/run/postgresql
- name: tmp
mountPath: /tmp
- name: custom-init-scripts
mountPath: /docker-entrypoint-initdb.d/
volumes:
- name: config
configMap:
name: kyoo-postgres
optional: true
- name: run
emptyDir: {}
- name: tmp
emptyDir: {}
- name: custom-init-scripts
configMap:
name: kyoo-postgres-init-scripts
defaultMode: 0755
volumeClaimTemplates:
- metadata:
name: data
labels:
helm.sh/chart: postgres-0.12.4
app.kubernetes.io/name: postgres
app.kubernetes.io/instance: kyoo
app.kubernetes.io/version: "18.1.0"
app.kubernetes.io/managed-by: Helm
spec:
accessModes:
- "ReadWriteOnce"
resources:
requests:
storage: "5Gi"