From a4655e50db9209aca1fc1909b6584928daae4fc1 Mon Sep 17 00:00:00 2001 From: gitea-bot Date: Fri, 8 May 2026 03:52:37 +0000 Subject: [PATCH] chore: Update manifests after change --- ...nfigMap-authentik-valkey-init-scripts.yaml | 2 +- .../Deployment-authentik-cloudflared.yaml | 7 +++--- ...alSecret-authentik-cloudflared-secret.yaml | 4 +-- .../PodMonitor-authentik-valkey.yaml | 2 +- .../PrometheusRule-authentik-valkey.yaml | 2 +- .../Service-authentik-cloudflared.yaml | 23 +++++++++++++++++ .../Service-authentik-valkey-headless.yaml | 2 +- .../Service-authentik-valkey-metrics.yaml | 2 +- .../Service-authentik-valkey-read.yaml | 2 +- .../authentik/Service-authentik-valkey.yaml | 2 +- .../ServiceAccount-authentik-cloudflared.yaml | 2 +- .../ServiceAccount-authentik-valkey.yaml | 2 +- .../ServiceMonitor-authentik-cloudflared.yaml | 25 +++++++++++++++++++ .../ServiceMonitor-authentik-valkey.yaml | 2 +- .../StatefulSet-authentik-valkey.yaml | 8 +++--- .../Deployment-element-web-cloudflared.yaml | 7 +++--- ...Secret-element-web-cloudflared-secret.yaml | 4 +-- .../Service-element-web-cloudflared.yaml | 23 +++++++++++++++++ ...erviceAccount-element-web-cloudflared.yaml | 2 +- ...erviceMonitor-element-web-cloudflared.yaml | 25 +++++++++++++++++++ .../Deployment-foldergram-cloudflared.yaml | 7 +++--- ...lSecret-foldergram-cloudflared-secret.yaml | 4 +-- .../Service-foldergram-cloudflared.yaml | 23 +++++++++++++++++ ...ServiceAccount-foldergram-cloudflared.yaml | 2 +- ...ServiceMonitor-foldergram-cloudflared.yaml | 25 +++++++++++++++++++ .../Deployment-freshrss-cloudflared.yaml | 7 +++--- ...nalSecret-freshrss-cloudflared-secret.yaml | 4 +-- .../Service-freshrss-cloudflared.yaml | 23 +++++++++++++++++ .../ServiceAccount-freshrss-cloudflared.yaml | 2 +- .../ServiceMonitor-freshrss-cloudflared.yaml | 25 +++++++++++++++++++ .../ConfigMap-gitea-valkey-init-scripts.yaml | 2 +- ...ap-gitea-valkey-renovate-init-scripts.yaml | 2 +- .../gitea/Deployment-gitea-cloudflared.yaml | 7 +++--- .../Deployment-gitea-valkey-renovate.yaml | 8 +++--- ...ternalSecret-gitea-cloudflared-secret.yaml | 4 +-- ...tentVolumeClaim-gitea-valkey-renovate.yaml | 2 +- .../PodMonitor-gitea-valkey-renovate.yaml | 2 +- .../gitea/PodMonitor-gitea-valkey.yaml | 2 +- .../PrometheusRule-gitea-valkey-renovate.yaml | 2 +- .../gitea/PrometheusRule-gitea-valkey.yaml | 2 +- .../gitea/Service-gitea-cloudflared.yaml | 23 +++++++++++++++++ .../gitea/Service-gitea-valkey-headless.yaml | 2 +- .../gitea/Service-gitea-valkey-metrics.yaml | 2 +- .../gitea/Service-gitea-valkey-read.yaml | 2 +- ...Service-gitea-valkey-renovate-metrics.yaml | 2 +- .../gitea/Service-gitea-valkey-renovate.yaml | 2 +- .../manifests/gitea/Service-gitea-valkey.yaml | 2 +- .../ServiceAccount-gitea-cloudflared.yaml | 2 +- .../ServiceAccount-gitea-valkey-renovate.yaml | 2 +- .../gitea/ServiceAccount-gitea-valkey.yaml | 2 +- .../ServiceMonitor-gitea-cloudflared.yaml | 25 +++++++++++++++++++ .../ServiceMonitor-gitea-valkey-renovate.yaml | 2 +- .../gitea/ServiceMonitor-gitea-valkey.yaml | 2 +- .../gitea/StatefulSet-gitea-valkey.yaml | 8 +++--- .../Deployment-karakeep-cloudflared.yaml | 7 +++--- ...nalSecret-karakeep-cloudflared-secret.yaml | 4 +-- .../Service-karakeep-cloudflared.yaml | 23 +++++++++++++++++ .../ServiceAccount-karakeep-cloudflared.yaml | 2 +- .../ServiceMonitor-karakeep-cloudflared.yaml | 25 +++++++++++++++++++ ...-synapse-valkey-hookshot-init-scripts.yaml | 2 +- ...ap-matrix-synapse-valkey-init-scripts.yaml | 2 +- ...t-matrix-synapse-hookshot-cloudflared.yaml | 7 +++--- ...nt-matrix-synapse-synapse-cloudflared.yaml | 7 +++--- ...x-synapse-hookshot-cloudflared-secret.yaml | 4 +-- ...ix-synapse-synapse-cloudflared-secret.yaml | 4 +-- ...rix-synapse-valkey-test-auth-existing.yaml | 4 +-- ...onitor-matrix-synapse-valkey-hookshot.yaml | 2 +- .../PodMonitor-matrix-synapse-valkey.yaml | 2 +- ...usRule-matrix-synapse-valkey-hookshot.yaml | 2 +- .../PrometheusRule-matrix-synapse-valkey.yaml | 2 +- ...e-matrix-synapse-hookshot-cloudflared.yaml | 23 +++++++++++++++++ ...ce-matrix-synapse-synapse-cloudflared.yaml | 23 +++++++++++++++++ ...ervice-matrix-synapse-valkey-headless.yaml | 2 +- ...trix-synapse-valkey-hookshot-headless.yaml | 2 +- ...atrix-synapse-valkey-hookshot-metrics.yaml | 2 +- ...e-matrix-synapse-valkey-hookshot-read.yaml | 2 +- ...ervice-matrix-synapse-valkey-hookshot.yaml | 2 +- ...Service-matrix-synapse-valkey-metrics.yaml | 2 +- .../Service-matrix-synapse-valkey-read.yaml | 2 +- .../Service-matrix-synapse-valkey.yaml | 2 +- ...t-matrix-synapse-hookshot-cloudflared.yaml | 2 +- ...nt-matrix-synapse-synapse-cloudflared.yaml | 2 +- ...ccount-matrix-synapse-valkey-hookshot.yaml | 2 +- .../ServiceAccount-matrix-synapse-valkey.yaml | 2 +- ...r-matrix-synapse-hookshot-cloudflared.yaml | 25 +++++++++++++++++++ ...or-matrix-synapse-synapse-cloudflared.yaml | 25 +++++++++++++++++++ ...onitor-matrix-synapse-valkey-hookshot.yaml | 2 +- .../ServiceMonitor-matrix-synapse-valkey.yaml | 2 +- ...fulSet-matrix-synapse-valkey-hookshot.yaml | 8 +++--- .../StatefulSet-matrix-synapse-valkey.yaml | 8 +++--- ...ConfigMap-outline-valkey-init-scripts.yaml | 2 +- .../Deployment-outline-cloudflared.yaml | 7 +++--- ...rnalSecret-outline-cloudflared-secret.yaml | 4 +-- .../outline/PodMonitor-outline-valkey.yaml | 2 +- .../PrometheusRule-outline-valkey.yaml | 2 +- .../outline/Service-outline-cloudflared.yaml | 23 +++++++++++++++++ .../Service-outline-valkey-headless.yaml | 2 +- .../Service-outline-valkey-metrics.yaml | 2 +- .../outline/Service-outline-valkey-read.yaml | 2 +- .../outline/Service-outline-valkey.yaml | 2 +- .../ServiceAccount-outline-cloudflared.yaml | 2 +- .../ServiceAccount-outline-valkey.yaml | 2 +- .../ServiceMonitor-outline-cloudflared.yaml | 25 +++++++++++++++++++ .../ServiceMonitor-outline-valkey.yaml | 2 +- .../outline/StatefulSet-outline-valkey.yaml | 8 +++--- .../ConfigMap-postiz-valkey-init-scripts.yaml | 2 +- .../postiz/Deployment-postiz-cloudflared.yaml | 7 +++--- ...ernalSecret-postiz-cloudflared-secret.yaml | 4 +-- .../Pod-postiz-valkey-test-auth-existing.yaml | 4 +-- .../postiz/PodMonitor-postiz-valkey.yaml | 2 +- .../postiz/PrometheusRule-postiz-valkey.yaml | 2 +- .../postiz/Service-postiz-cloudflared.yaml | 23 +++++++++++++++++ .../Service-postiz-valkey-headless.yaml | 2 +- .../postiz/Service-postiz-valkey-metrics.yaml | 2 +- .../postiz/Service-postiz-valkey-read.yaml | 2 +- .../postiz/Service-postiz-valkey.yaml | 2 +- .../ServiceAccount-postiz-cloudflared.yaml | 2 +- .../postiz/ServiceAccount-postiz-valkey.yaml | 2 +- .../ServiceMonitor-postiz-cloudflared.yaml | 25 +++++++++++++++++++ .../postiz/ServiceMonitor-postiz-valkey.yaml | 2 +- .../postiz/StatefulSet-postiz-valkey.yaml | 8 +++--- .../rybbit/Deployment-rybbit-cloudflared.yaml | 7 +++--- ...ernalSecret-rybbit-cloudflared-secret.yaml | 4 +-- .../rybbit/Service-rybbit-cloudflared.yaml | 23 +++++++++++++++++ .../ServiceAccount-rybbit-cloudflared.yaml | 2 +- .../ServiceMonitor-rybbit-cloudflared.yaml | 25 +++++++++++++++++++ ...oyment-site-documentation-cloudflared.yaml | 7 +++--- ...site-documentation-cloudflared-secret.yaml | 4 +-- ...ervice-site-documentation-cloudflared.yaml | 23 +++++++++++++++++ ...ccount-site-documentation-cloudflared.yaml | 2 +- ...onitor-site-documentation-cloudflared.yaml | 25 +++++++++++++++++++ .../Deployment-site-profile-cloudflared.yaml | 7 +++--- ...ecret-site-profile-cloudflared-secret.yaml | 4 +-- .../Service-site-profile-cloudflared.yaml | 23 +++++++++++++++++ ...rviceAccount-site-profile-cloudflared.yaml | 2 +- ...rviceMonitor-site-profile-cloudflared.yaml | 25 +++++++++++++++++++ ...eployment-site-saralebens-cloudflared.yaml | 7 +++--- ...et-site-saralebens-cloudflared-secret.yaml | 4 +-- .../Service-site-saralebens-cloudflared.yaml | 23 +++++++++++++++++ ...ceAccount-site-saralebens-cloudflared.yaml | 2 +- ...ceMonitor-site-saralebens-cloudflared.yaml | 25 +++++++++++++++++++ .../Deployment-vaultwarden-cloudflared.yaml | 7 +++--- ...Secret-vaultwarden-cloudflared-secret.yaml | 4 +-- .../Service-vaultwarden-cloudflared.yaml | 23 +++++++++++++++++ ...erviceAccount-vaultwarden-cloudflared.yaml | 2 +- ...erviceMonitor-vaultwarden-cloudflared.yaml | 25 +++++++++++++++++++ 146 files changed, 919 insertions(+), 184 deletions(-) create mode 100644 clusters/cl01tl/manifests/authentik/Service-authentik-cloudflared.yaml create mode 100644 clusters/cl01tl/manifests/authentik/ServiceMonitor-authentik-cloudflared.yaml create mode 100644 clusters/cl01tl/manifests/element-web/Service-element-web-cloudflared.yaml create mode 100644 clusters/cl01tl/manifests/element-web/ServiceMonitor-element-web-cloudflared.yaml create mode 100644 clusters/cl01tl/manifests/foldergram/Service-foldergram-cloudflared.yaml create mode 100644 clusters/cl01tl/manifests/foldergram/ServiceMonitor-foldergram-cloudflared.yaml create mode 100644 clusters/cl01tl/manifests/freshrss/Service-freshrss-cloudflared.yaml create mode 100644 clusters/cl01tl/manifests/freshrss/ServiceMonitor-freshrss-cloudflared.yaml create mode 100644 clusters/cl01tl/manifests/gitea/Service-gitea-cloudflared.yaml create mode 100644 clusters/cl01tl/manifests/gitea/ServiceMonitor-gitea-cloudflared.yaml create mode 100644 clusters/cl01tl/manifests/karakeep/Service-karakeep-cloudflared.yaml create mode 100644 clusters/cl01tl/manifests/karakeep/ServiceMonitor-karakeep-cloudflared.yaml create mode 100644 clusters/cl01tl/manifests/matrix-synapse/Service-matrix-synapse-hookshot-cloudflared.yaml create mode 100644 clusters/cl01tl/manifests/matrix-synapse/Service-matrix-synapse-synapse-cloudflared.yaml create mode 100644 clusters/cl01tl/manifests/matrix-synapse/ServiceMonitor-matrix-synapse-hookshot-cloudflared.yaml create mode 100644 clusters/cl01tl/manifests/matrix-synapse/ServiceMonitor-matrix-synapse-synapse-cloudflared.yaml create mode 100644 clusters/cl01tl/manifests/outline/Service-outline-cloudflared.yaml create mode 100644 clusters/cl01tl/manifests/outline/ServiceMonitor-outline-cloudflared.yaml create mode 100644 clusters/cl01tl/manifests/postiz/Service-postiz-cloudflared.yaml create mode 100644 clusters/cl01tl/manifests/postiz/ServiceMonitor-postiz-cloudflared.yaml create mode 100644 clusters/cl01tl/manifests/rybbit/Service-rybbit-cloudflared.yaml create mode 100644 clusters/cl01tl/manifests/rybbit/ServiceMonitor-rybbit-cloudflared.yaml create mode 100644 clusters/cl01tl/manifests/site-documentation/Service-site-documentation-cloudflared.yaml create mode 100644 clusters/cl01tl/manifests/site-documentation/ServiceMonitor-site-documentation-cloudflared.yaml create mode 100644 clusters/cl01tl/manifests/site-profile/Service-site-profile-cloudflared.yaml create mode 100644 clusters/cl01tl/manifests/site-profile/ServiceMonitor-site-profile-cloudflared.yaml create mode 100644 clusters/cl01tl/manifests/site-saralebens/Service-site-saralebens-cloudflared.yaml create mode 100644 clusters/cl01tl/manifests/site-saralebens/ServiceMonitor-site-saralebens-cloudflared.yaml create mode 100644 clusters/cl01tl/manifests/vaultwarden/Service-vaultwarden-cloudflared.yaml create mode 100644 clusters/cl01tl/manifests/vaultwarden/ServiceMonitor-vaultwarden-cloudflared.yaml diff --git a/clusters/cl01tl/manifests/authentik/ConfigMap-authentik-valkey-init-scripts.yaml b/clusters/cl01tl/manifests/authentik/ConfigMap-authentik-valkey-init-scripts.yaml index 2d1fd9b07..78598f676 100644 --- a/clusters/cl01tl/manifests/authentik/ConfigMap-authentik-valkey-init-scripts.yaml +++ b/clusters/cl01tl/manifests/authentik/ConfigMap-authentik-valkey-init-scripts.yaml @@ -6,7 +6,7 @@ metadata: helm.sh/chart: valkey-0.9.4 app.kubernetes.io/name: valkey app.kubernetes.io/instance: authentik - app.kubernetes.io/version: "9.0.3" + app.kubernetes.io/version: "9.0.4" app.kubernetes.io/managed-by: Helm data: init.sh: |- diff --git a/clusters/cl01tl/manifests/authentik/Deployment-authentik-cloudflared.yaml b/clusters/cl01tl/manifests/authentik/Deployment-authentik-cloudflared.yaml index 2de658fe1..2e3e8b9f8 100644 --- a/clusters/cl01tl/manifests/authentik/Deployment-authentik-cloudflared.yaml +++ b/clusters/cl01tl/manifests/authentik/Deployment-authentik-cloudflared.yaml @@ -8,7 +8,7 @@ metadata: app.kubernetes.io/managed-by: Helm app.kubernetes.io/name: cloudflared app.kubernetes.io/version: 2026.3.0 - helm.sh/chart: cloudflared-2.7.1 + helm.sh/chart: cloudflared-3.0.0 namespace: authentik spec: revisionHistoryLimit: 3 @@ -28,7 +28,7 @@ spec: app.kubernetes.io/name: cloudflared spec: enableServiceLinks: false - serviceAccountName: authentik + serviceAccountName: cloudflared automountServiceAccountToken: false hostIPC: false hostNetwork: false @@ -38,8 +38,9 @@ spec: - args: - tunnel - --protocol - - http2 + - auto - --no-autoupdate + - --metrics 0.0.0.0:20241 - run - --token - $(CF_MANAGED_TUNNEL_TOKEN) diff --git a/clusters/cl01tl/manifests/authentik/ExternalSecret-authentik-cloudflared-secret.yaml b/clusters/cl01tl/manifests/authentik/ExternalSecret-authentik-cloudflared-secret.yaml index a13a359a0..91f432307 100644 --- a/clusters/cl01tl/manifests/authentik/ExternalSecret-authentik-cloudflared-secret.yaml +++ b/clusters/cl01tl/manifests/authentik/ExternalSecret-authentik-cloudflared-secret.yaml @@ -4,10 +4,10 @@ metadata: name: authentik-cloudflared-secret namespace: authentik labels: - helm.sh/chart: cloudflared-2.7.1 + helm.sh/chart: cloudflared-3.0.0 app.kubernetes.io/instance: authentik app.kubernetes.io/part-of: authentik - app.kubernetes.io/version: "2.7.1" + app.kubernetes.io/version: "3.0.0" app.kubernetes.io/managed-by: Helm app.kubernetes.io/name: authentik-cloudflared-secret spec: diff --git a/clusters/cl01tl/manifests/authentik/PodMonitor-authentik-valkey.yaml b/clusters/cl01tl/manifests/authentik/PodMonitor-authentik-valkey.yaml index c50f17b61..074e7a647 100644 --- a/clusters/cl01tl/manifests/authentik/PodMonitor-authentik-valkey.yaml +++ b/clusters/cl01tl/manifests/authentik/PodMonitor-authentik-valkey.yaml @@ -6,7 +6,7 @@ metadata: helm.sh/chart: valkey-0.9.4 app.kubernetes.io/name: valkey app.kubernetes.io/instance: authentik - app.kubernetes.io/version: "9.0.3" + app.kubernetes.io/version: "9.0.4" app.kubernetes.io/managed-by: Helm app.kubernetes.io/part-of: valkey app.kubernetes.io/component: podmonitor diff --git a/clusters/cl01tl/manifests/authentik/PrometheusRule-authentik-valkey.yaml b/clusters/cl01tl/manifests/authentik/PrometheusRule-authentik-valkey.yaml index 4c927faa6..4c7c58554 100644 --- a/clusters/cl01tl/manifests/authentik/PrometheusRule-authentik-valkey.yaml +++ b/clusters/cl01tl/manifests/authentik/PrometheusRule-authentik-valkey.yaml @@ -6,7 +6,7 @@ metadata: helm.sh/chart: valkey-0.9.4 app.kubernetes.io/name: valkey app.kubernetes.io/instance: authentik - app.kubernetes.io/version: "9.0.3" + app.kubernetes.io/version: "9.0.4" app.kubernetes.io/managed-by: Helm app.kubernetes.io/part-of: valkey spec: diff --git a/clusters/cl01tl/manifests/authentik/Service-authentik-cloudflared.yaml b/clusters/cl01tl/manifests/authentik/Service-authentik-cloudflared.yaml new file mode 100644 index 000000000..e7d92f04d --- /dev/null +++ b/clusters/cl01tl/manifests/authentik/Service-authentik-cloudflared.yaml @@ -0,0 +1,23 @@ +apiVersion: v1 +kind: Service +metadata: + name: authentik-cloudflared + labels: + app.kubernetes.io/instance: authentik + app.kubernetes.io/managed-by: Helm + app.kubernetes.io/name: cloudflared + app.kubernetes.io/service: authentik-cloudflared + app.kubernetes.io/version: 2026.3.0 + helm.sh/chart: cloudflared-3.0.0 + namespace: authentik +spec: + type: ClusterIP + ports: + - port: 20241 + targetPort: 20241 + protocol: TCP + name: metrics + selector: + app.kubernetes.io/controller: main + app.kubernetes.io/instance: authentik + app.kubernetes.io/name: cloudflared diff --git a/clusters/cl01tl/manifests/authentik/Service-authentik-valkey-headless.yaml b/clusters/cl01tl/manifests/authentik/Service-authentik-valkey-headless.yaml index 5f2841d83..180f7c13a 100644 --- a/clusters/cl01tl/manifests/authentik/Service-authentik-valkey-headless.yaml +++ b/clusters/cl01tl/manifests/authentik/Service-authentik-valkey-headless.yaml @@ -6,7 +6,7 @@ metadata: helm.sh/chart: valkey-0.9.4 app.kubernetes.io/name: valkey app.kubernetes.io/instance: authentik - app.kubernetes.io/version: "9.0.3" + app.kubernetes.io/version: "9.0.4" app.kubernetes.io/managed-by: Helm app.kubernetes.io/component: headless spec: diff --git a/clusters/cl01tl/manifests/authentik/Service-authentik-valkey-metrics.yaml b/clusters/cl01tl/manifests/authentik/Service-authentik-valkey-metrics.yaml index dd1f381e1..a505969cb 100644 --- a/clusters/cl01tl/manifests/authentik/Service-authentik-valkey-metrics.yaml +++ b/clusters/cl01tl/manifests/authentik/Service-authentik-valkey-metrics.yaml @@ -6,7 +6,7 @@ metadata: helm.sh/chart: valkey-0.9.4 app.kubernetes.io/name: valkey app.kubernetes.io/instance: authentik - app.kubernetes.io/version: "9.0.3" + app.kubernetes.io/version: "9.0.4" app.kubernetes.io/managed-by: Helm app.kubernetes.io/component: metrics app.kubernetes.io/part-of: valkey diff --git a/clusters/cl01tl/manifests/authentik/Service-authentik-valkey-read.yaml b/clusters/cl01tl/manifests/authentik/Service-authentik-valkey-read.yaml index 7365a5c0d..60eed1126 100644 --- a/clusters/cl01tl/manifests/authentik/Service-authentik-valkey-read.yaml +++ b/clusters/cl01tl/manifests/authentik/Service-authentik-valkey-read.yaml @@ -6,7 +6,7 @@ metadata: helm.sh/chart: valkey-0.9.4 app.kubernetes.io/name: valkey app.kubernetes.io/instance: authentik - app.kubernetes.io/version: "9.0.3" + app.kubernetes.io/version: "9.0.4" app.kubernetes.io/managed-by: Helm app.kubernetes.io/component: read spec: diff --git a/clusters/cl01tl/manifests/authentik/Service-authentik-valkey.yaml b/clusters/cl01tl/manifests/authentik/Service-authentik-valkey.yaml index 1e7708acf..043504042 100644 --- a/clusters/cl01tl/manifests/authentik/Service-authentik-valkey.yaml +++ b/clusters/cl01tl/manifests/authentik/Service-authentik-valkey.yaml @@ -6,7 +6,7 @@ metadata: helm.sh/chart: valkey-0.9.4 app.kubernetes.io/name: valkey app.kubernetes.io/instance: authentik - app.kubernetes.io/version: "9.0.3" + app.kubernetes.io/version: "9.0.4" app.kubernetes.io/managed-by: Helm app.kubernetes.io/component: primary spec: diff --git a/clusters/cl01tl/manifests/authentik/ServiceAccount-authentik-cloudflared.yaml b/clusters/cl01tl/manifests/authentik/ServiceAccount-authentik-cloudflared.yaml index 9163704f9..db4b2b0ab 100644 --- a/clusters/cl01tl/manifests/authentik/ServiceAccount-authentik-cloudflared.yaml +++ b/clusters/cl01tl/manifests/authentik/ServiceAccount-authentik-cloudflared.yaml @@ -7,5 +7,5 @@ metadata: app.kubernetes.io/managed-by: Helm app.kubernetes.io/name: cloudflared app.kubernetes.io/version: 2026.3.0 - helm.sh/chart: cloudflared-2.7.1 + helm.sh/chart: cloudflared-3.0.0 namespace: authentik diff --git a/clusters/cl01tl/manifests/authentik/ServiceAccount-authentik-valkey.yaml b/clusters/cl01tl/manifests/authentik/ServiceAccount-authentik-valkey.yaml index 1b2d48389..7204bea7c 100644 --- a/clusters/cl01tl/manifests/authentik/ServiceAccount-authentik-valkey.yaml +++ b/clusters/cl01tl/manifests/authentik/ServiceAccount-authentik-valkey.yaml @@ -6,6 +6,6 @@ metadata: helm.sh/chart: valkey-0.9.4 app.kubernetes.io/name: valkey app.kubernetes.io/instance: authentik - app.kubernetes.io/version: "9.0.3" + app.kubernetes.io/version: "9.0.4" app.kubernetes.io/managed-by: Helm automountServiceAccountToken: false diff --git a/clusters/cl01tl/manifests/authentik/ServiceMonitor-authentik-cloudflared.yaml b/clusters/cl01tl/manifests/authentik/ServiceMonitor-authentik-cloudflared.yaml new file mode 100644 index 000000000..0f86acebe --- /dev/null +++ b/clusters/cl01tl/manifests/authentik/ServiceMonitor-authentik-cloudflared.yaml @@ -0,0 +1,25 @@ +apiVersion: monitoring.coreos.com/v1 +kind: ServiceMonitor +metadata: + name: authentik-cloudflared + labels: + app.kubernetes.io/instance: authentik + app.kubernetes.io/managed-by: Helm + app.kubernetes.io/name: cloudflared + app.kubernetes.io/version: 2026.3.0 + helm.sh/chart: cloudflared-3.0.0 + namespace: authentik +spec: + jobLabel: app.kubernetes.io/name + namespaceSelector: + matchNames: + - authentik + selector: + matchLabels: + app.kubernetes.io/instance: cloudflared + app.kubernetes.io/name: cloudflared + endpoints: + - interval: 30s + path: /metrics + port: metrics + scrapeTimeout: 10s diff --git a/clusters/cl01tl/manifests/authentik/ServiceMonitor-authentik-valkey.yaml b/clusters/cl01tl/manifests/authentik/ServiceMonitor-authentik-valkey.yaml index 11b8af3a6..7c6b8d78a 100644 --- a/clusters/cl01tl/manifests/authentik/ServiceMonitor-authentik-valkey.yaml +++ b/clusters/cl01tl/manifests/authentik/ServiceMonitor-authentik-valkey.yaml @@ -6,7 +6,7 @@ metadata: helm.sh/chart: valkey-0.9.4 app.kubernetes.io/name: valkey app.kubernetes.io/instance: authentik - app.kubernetes.io/version: "9.0.3" + app.kubernetes.io/version: "9.0.4" app.kubernetes.io/managed-by: Helm app.kubernetes.io/part-of: valkey app.kubernetes.io/component: service-monitor diff --git a/clusters/cl01tl/manifests/authentik/StatefulSet-authentik-valkey.yaml b/clusters/cl01tl/manifests/authentik/StatefulSet-authentik-valkey.yaml index 15d56a02e..43986d876 100644 --- a/clusters/cl01tl/manifests/authentik/StatefulSet-authentik-valkey.yaml +++ b/clusters/cl01tl/manifests/authentik/StatefulSet-authentik-valkey.yaml @@ -6,7 +6,7 @@ metadata: helm.sh/chart: valkey-0.9.4 app.kubernetes.io/name: valkey app.kubernetes.io/instance: authentik - app.kubernetes.io/version: "9.0.3" + app.kubernetes.io/version: "9.0.4" app.kubernetes.io/managed-by: Helm spec: serviceName: authentik-valkey-headless @@ -32,7 +32,7 @@ spec: app.kubernetes.io/name: valkey app.kubernetes.io/instance: authentik annotations: - checksum/initconfig: "5891897632e2eabc8b0c61cc49fea0f6" + checksum/initconfig: "89a44900a681d6ea516ee7bd3b55d326" spec: automountServiceAccountToken: false serviceAccountName: authentik-valkey @@ -44,7 +44,7 @@ spec: type: RuntimeDefault initContainers: - name: authentik-valkey-init - image: docker.io/valkey/valkey:9.0.3@sha256:3b55fbaa0cd93cf0d9d961f405e4dfcc70efe325e2d84da207a0a8e6d8fde4f9 + image: docker.io/valkey/valkey:9.0.4@sha256:8436e10bc65c94886a91d4415b6a6dfa9cb5a306fb3b996e5bb67cd2b4854193 imagePullPolicy: IfNotPresent securityContext: allowPrivilegeEscalation: false @@ -67,7 +67,7 @@ spec: mountPath: /scripts containers: - name: authentik-valkey - image: docker.io/valkey/valkey:9.0.3@sha256:3b55fbaa0cd93cf0d9d961f405e4dfcc70efe325e2d84da207a0a8e6d8fde4f9 + image: docker.io/valkey/valkey:9.0.4@sha256:8436e10bc65c94886a91d4415b6a6dfa9cb5a306fb3b996e5bb67cd2b4854193 imagePullPolicy: IfNotPresent command: ["valkey-server"] args: ["/data/conf/valkey.conf"] diff --git a/clusters/cl01tl/manifests/element-web/Deployment-element-web-cloudflared.yaml b/clusters/cl01tl/manifests/element-web/Deployment-element-web-cloudflared.yaml index 0287aecb7..91174a3c7 100644 --- a/clusters/cl01tl/manifests/element-web/Deployment-element-web-cloudflared.yaml +++ b/clusters/cl01tl/manifests/element-web/Deployment-element-web-cloudflared.yaml @@ -8,7 +8,7 @@ metadata: app.kubernetes.io/managed-by: Helm app.kubernetes.io/name: cloudflared app.kubernetes.io/version: 2026.3.0 - helm.sh/chart: cloudflared-2.7.1 + helm.sh/chart: cloudflared-3.0.0 namespace: element-web spec: revisionHistoryLimit: 3 @@ -28,7 +28,7 @@ spec: app.kubernetes.io/name: cloudflared spec: enableServiceLinks: false - serviceAccountName: element-web + serviceAccountName: cloudflared automountServiceAccountToken: false hostIPC: false hostNetwork: false @@ -38,8 +38,9 @@ spec: - args: - tunnel - --protocol - - http2 + - auto - --no-autoupdate + - --metrics 0.0.0.0:20241 - run - --token - $(CF_MANAGED_TUNNEL_TOKEN) diff --git a/clusters/cl01tl/manifests/element-web/ExternalSecret-element-web-cloudflared-secret.yaml b/clusters/cl01tl/manifests/element-web/ExternalSecret-element-web-cloudflared-secret.yaml index 36d13c342..ac60d57b6 100644 --- a/clusters/cl01tl/manifests/element-web/ExternalSecret-element-web-cloudflared-secret.yaml +++ b/clusters/cl01tl/manifests/element-web/ExternalSecret-element-web-cloudflared-secret.yaml @@ -4,10 +4,10 @@ metadata: name: element-web-cloudflared-secret namespace: element-web labels: - helm.sh/chart: cloudflared-2.7.1 + helm.sh/chart: cloudflared-3.0.0 app.kubernetes.io/instance: element-web app.kubernetes.io/part-of: element-web - app.kubernetes.io/version: "2.7.1" + app.kubernetes.io/version: "3.0.0" app.kubernetes.io/managed-by: Helm app.kubernetes.io/name: element-web-cloudflared-secret spec: diff --git a/clusters/cl01tl/manifests/element-web/Service-element-web-cloudflared.yaml b/clusters/cl01tl/manifests/element-web/Service-element-web-cloudflared.yaml new file mode 100644 index 000000000..8d47568a7 --- /dev/null +++ b/clusters/cl01tl/manifests/element-web/Service-element-web-cloudflared.yaml @@ -0,0 +1,23 @@ +apiVersion: v1 +kind: Service +metadata: + name: element-web-cloudflared + labels: + app.kubernetes.io/instance: element-web + app.kubernetes.io/managed-by: Helm + app.kubernetes.io/name: cloudflared + app.kubernetes.io/service: element-web-cloudflared + app.kubernetes.io/version: 2026.3.0 + helm.sh/chart: cloudflared-3.0.0 + namespace: element-web +spec: + type: ClusterIP + ports: + - port: 20241 + targetPort: 20241 + protocol: TCP + name: metrics + selector: + app.kubernetes.io/controller: main + app.kubernetes.io/instance: element-web + app.kubernetes.io/name: cloudflared diff --git a/clusters/cl01tl/manifests/element-web/ServiceAccount-element-web-cloudflared.yaml b/clusters/cl01tl/manifests/element-web/ServiceAccount-element-web-cloudflared.yaml index e9b8b1bfa..81ac8433f 100644 --- a/clusters/cl01tl/manifests/element-web/ServiceAccount-element-web-cloudflared.yaml +++ b/clusters/cl01tl/manifests/element-web/ServiceAccount-element-web-cloudflared.yaml @@ -7,5 +7,5 @@ metadata: app.kubernetes.io/managed-by: Helm app.kubernetes.io/name: cloudflared app.kubernetes.io/version: 2026.3.0 - helm.sh/chart: cloudflared-2.7.1 + helm.sh/chart: cloudflared-3.0.0 namespace: element-web diff --git a/clusters/cl01tl/manifests/element-web/ServiceMonitor-element-web-cloudflared.yaml b/clusters/cl01tl/manifests/element-web/ServiceMonitor-element-web-cloudflared.yaml new file mode 100644 index 000000000..3e71ea40a --- /dev/null +++ b/clusters/cl01tl/manifests/element-web/ServiceMonitor-element-web-cloudflared.yaml @@ -0,0 +1,25 @@ +apiVersion: monitoring.coreos.com/v1 +kind: ServiceMonitor +metadata: + name: element-web-cloudflared + labels: + app.kubernetes.io/instance: element-web + app.kubernetes.io/managed-by: Helm + app.kubernetes.io/name: cloudflared + app.kubernetes.io/version: 2026.3.0 + helm.sh/chart: cloudflared-3.0.0 + namespace: element-web +spec: + jobLabel: app.kubernetes.io/name + namespaceSelector: + matchNames: + - element-web + selector: + matchLabels: + app.kubernetes.io/instance: cloudflared + app.kubernetes.io/name: cloudflared + endpoints: + - interval: 30s + path: /metrics + port: metrics + scrapeTimeout: 10s diff --git a/clusters/cl01tl/manifests/foldergram/Deployment-foldergram-cloudflared.yaml b/clusters/cl01tl/manifests/foldergram/Deployment-foldergram-cloudflared.yaml index 4bda3a653..d81667f8f 100644 --- a/clusters/cl01tl/manifests/foldergram/Deployment-foldergram-cloudflared.yaml +++ b/clusters/cl01tl/manifests/foldergram/Deployment-foldergram-cloudflared.yaml @@ -8,7 +8,7 @@ metadata: app.kubernetes.io/managed-by: Helm app.kubernetes.io/name: cloudflared app.kubernetes.io/version: 2026.3.0 - helm.sh/chart: cloudflared-2.7.1 + helm.sh/chart: cloudflared-3.0.0 namespace: foldergram spec: revisionHistoryLimit: 3 @@ -28,7 +28,7 @@ spec: app.kubernetes.io/name: cloudflared spec: enableServiceLinks: false - serviceAccountName: foldergram + serviceAccountName: cloudflared automountServiceAccountToken: false hostIPC: false hostNetwork: false @@ -38,8 +38,9 @@ spec: - args: - tunnel - --protocol - - http2 + - auto - --no-autoupdate + - --metrics 0.0.0.0:20241 - run - --token - $(CF_MANAGED_TUNNEL_TOKEN) diff --git a/clusters/cl01tl/manifests/foldergram/ExternalSecret-foldergram-cloudflared-secret.yaml b/clusters/cl01tl/manifests/foldergram/ExternalSecret-foldergram-cloudflared-secret.yaml index 32e06db03..91b5f98cc 100644 --- a/clusters/cl01tl/manifests/foldergram/ExternalSecret-foldergram-cloudflared-secret.yaml +++ b/clusters/cl01tl/manifests/foldergram/ExternalSecret-foldergram-cloudflared-secret.yaml @@ -4,10 +4,10 @@ metadata: name: foldergram-cloudflared-secret namespace: foldergram labels: - helm.sh/chart: cloudflared-2.7.1 + helm.sh/chart: cloudflared-3.0.0 app.kubernetes.io/instance: foldergram app.kubernetes.io/part-of: foldergram - app.kubernetes.io/version: "2.7.1" + app.kubernetes.io/version: "3.0.0" app.kubernetes.io/managed-by: Helm app.kubernetes.io/name: foldergram-cloudflared-secret spec: diff --git a/clusters/cl01tl/manifests/foldergram/Service-foldergram-cloudflared.yaml b/clusters/cl01tl/manifests/foldergram/Service-foldergram-cloudflared.yaml new file mode 100644 index 000000000..44a3fe0d9 --- /dev/null +++ b/clusters/cl01tl/manifests/foldergram/Service-foldergram-cloudflared.yaml @@ -0,0 +1,23 @@ +apiVersion: v1 +kind: Service +metadata: + name: foldergram-cloudflared + labels: + app.kubernetes.io/instance: foldergram + app.kubernetes.io/managed-by: Helm + app.kubernetes.io/name: cloudflared + app.kubernetes.io/service: foldergram-cloudflared + app.kubernetes.io/version: 2026.3.0 + helm.sh/chart: cloudflared-3.0.0 + namespace: foldergram +spec: + type: ClusterIP + ports: + - port: 20241 + targetPort: 20241 + protocol: TCP + name: metrics + selector: + app.kubernetes.io/controller: main + app.kubernetes.io/instance: foldergram + app.kubernetes.io/name: cloudflared diff --git a/clusters/cl01tl/manifests/foldergram/ServiceAccount-foldergram-cloudflared.yaml b/clusters/cl01tl/manifests/foldergram/ServiceAccount-foldergram-cloudflared.yaml index 1e5525e1e..adbb31842 100644 --- a/clusters/cl01tl/manifests/foldergram/ServiceAccount-foldergram-cloudflared.yaml +++ b/clusters/cl01tl/manifests/foldergram/ServiceAccount-foldergram-cloudflared.yaml @@ -7,5 +7,5 @@ metadata: app.kubernetes.io/managed-by: Helm app.kubernetes.io/name: cloudflared app.kubernetes.io/version: 2026.3.0 - helm.sh/chart: cloudflared-2.7.1 + helm.sh/chart: cloudflared-3.0.0 namespace: foldergram diff --git a/clusters/cl01tl/manifests/foldergram/ServiceMonitor-foldergram-cloudflared.yaml b/clusters/cl01tl/manifests/foldergram/ServiceMonitor-foldergram-cloudflared.yaml new file mode 100644 index 000000000..f6045c3db --- /dev/null +++ b/clusters/cl01tl/manifests/foldergram/ServiceMonitor-foldergram-cloudflared.yaml @@ -0,0 +1,25 @@ +apiVersion: monitoring.coreos.com/v1 +kind: ServiceMonitor +metadata: + name: foldergram-cloudflared + labels: + app.kubernetes.io/instance: foldergram + app.kubernetes.io/managed-by: Helm + app.kubernetes.io/name: cloudflared + app.kubernetes.io/version: 2026.3.0 + helm.sh/chart: cloudflared-3.0.0 + namespace: foldergram +spec: + jobLabel: app.kubernetes.io/name + namespaceSelector: + matchNames: + - foldergram + selector: + matchLabels: + app.kubernetes.io/instance: cloudflared + app.kubernetes.io/name: cloudflared + endpoints: + - interval: 30s + path: /metrics + port: metrics + scrapeTimeout: 10s diff --git a/clusters/cl01tl/manifests/freshrss/Deployment-freshrss-cloudflared.yaml b/clusters/cl01tl/manifests/freshrss/Deployment-freshrss-cloudflared.yaml index 82cb1df48..9f92ad535 100644 --- a/clusters/cl01tl/manifests/freshrss/Deployment-freshrss-cloudflared.yaml +++ b/clusters/cl01tl/manifests/freshrss/Deployment-freshrss-cloudflared.yaml @@ -8,7 +8,7 @@ metadata: app.kubernetes.io/managed-by: Helm app.kubernetes.io/name: cloudflared app.kubernetes.io/version: 2026.3.0 - helm.sh/chart: cloudflared-2.7.1 + helm.sh/chart: cloudflared-3.0.0 namespace: freshrss spec: revisionHistoryLimit: 3 @@ -28,7 +28,7 @@ spec: app.kubernetes.io/name: cloudflared spec: enableServiceLinks: false - serviceAccountName: freshrss + serviceAccountName: cloudflared automountServiceAccountToken: false hostIPC: false hostNetwork: false @@ -38,8 +38,9 @@ spec: - args: - tunnel - --protocol - - http2 + - auto - --no-autoupdate + - --metrics 0.0.0.0:20241 - run - --token - $(CF_MANAGED_TUNNEL_TOKEN) diff --git a/clusters/cl01tl/manifests/freshrss/ExternalSecret-freshrss-cloudflared-secret.yaml b/clusters/cl01tl/manifests/freshrss/ExternalSecret-freshrss-cloudflared-secret.yaml index 4efd75784..f1f2fa87e 100644 --- a/clusters/cl01tl/manifests/freshrss/ExternalSecret-freshrss-cloudflared-secret.yaml +++ b/clusters/cl01tl/manifests/freshrss/ExternalSecret-freshrss-cloudflared-secret.yaml @@ -4,10 +4,10 @@ metadata: name: freshrss-cloudflared-secret namespace: freshrss labels: - helm.sh/chart: cloudflared-2.7.1 + helm.sh/chart: cloudflared-3.0.0 app.kubernetes.io/instance: freshrss app.kubernetes.io/part-of: freshrss - app.kubernetes.io/version: "2.7.1" + app.kubernetes.io/version: "3.0.0" app.kubernetes.io/managed-by: Helm app.kubernetes.io/name: freshrss-cloudflared-secret spec: diff --git a/clusters/cl01tl/manifests/freshrss/Service-freshrss-cloudflared.yaml b/clusters/cl01tl/manifests/freshrss/Service-freshrss-cloudflared.yaml new file mode 100644 index 000000000..0726eea0f --- /dev/null +++ b/clusters/cl01tl/manifests/freshrss/Service-freshrss-cloudflared.yaml @@ -0,0 +1,23 @@ +apiVersion: v1 +kind: Service +metadata: + name: freshrss-cloudflared + labels: + app.kubernetes.io/instance: freshrss + app.kubernetes.io/managed-by: Helm + app.kubernetes.io/name: cloudflared + app.kubernetes.io/service: freshrss-cloudflared + app.kubernetes.io/version: 2026.3.0 + helm.sh/chart: cloudflared-3.0.0 + namespace: freshrss +spec: + type: ClusterIP + ports: + - port: 20241 + targetPort: 20241 + protocol: TCP + name: metrics + selector: + app.kubernetes.io/controller: main + app.kubernetes.io/instance: freshrss + app.kubernetes.io/name: cloudflared diff --git a/clusters/cl01tl/manifests/freshrss/ServiceAccount-freshrss-cloudflared.yaml b/clusters/cl01tl/manifests/freshrss/ServiceAccount-freshrss-cloudflared.yaml index 3dfe0b20f..3994cb2e7 100644 --- a/clusters/cl01tl/manifests/freshrss/ServiceAccount-freshrss-cloudflared.yaml +++ b/clusters/cl01tl/manifests/freshrss/ServiceAccount-freshrss-cloudflared.yaml @@ -7,5 +7,5 @@ metadata: app.kubernetes.io/managed-by: Helm app.kubernetes.io/name: cloudflared app.kubernetes.io/version: 2026.3.0 - helm.sh/chart: cloudflared-2.7.1 + helm.sh/chart: cloudflared-3.0.0 namespace: freshrss diff --git a/clusters/cl01tl/manifests/freshrss/ServiceMonitor-freshrss-cloudflared.yaml b/clusters/cl01tl/manifests/freshrss/ServiceMonitor-freshrss-cloudflared.yaml new file mode 100644 index 000000000..f60e398fb --- /dev/null +++ b/clusters/cl01tl/manifests/freshrss/ServiceMonitor-freshrss-cloudflared.yaml @@ -0,0 +1,25 @@ +apiVersion: monitoring.coreos.com/v1 +kind: ServiceMonitor +metadata: + name: freshrss-cloudflared + labels: + app.kubernetes.io/instance: freshrss + app.kubernetes.io/managed-by: Helm + app.kubernetes.io/name: cloudflared + app.kubernetes.io/version: 2026.3.0 + helm.sh/chart: cloudflared-3.0.0 + namespace: freshrss +spec: + jobLabel: app.kubernetes.io/name + namespaceSelector: + matchNames: + - freshrss + selector: + matchLabels: + app.kubernetes.io/instance: cloudflared + app.kubernetes.io/name: cloudflared + endpoints: + - interval: 30s + path: /metrics + port: metrics + scrapeTimeout: 10s diff --git a/clusters/cl01tl/manifests/gitea/ConfigMap-gitea-valkey-init-scripts.yaml b/clusters/cl01tl/manifests/gitea/ConfigMap-gitea-valkey-init-scripts.yaml index cf1edc7c1..fe255e968 100644 --- a/clusters/cl01tl/manifests/gitea/ConfigMap-gitea-valkey-init-scripts.yaml +++ b/clusters/cl01tl/manifests/gitea/ConfigMap-gitea-valkey-init-scripts.yaml @@ -6,7 +6,7 @@ metadata: helm.sh/chart: valkey-0.9.4 app.kubernetes.io/name: valkey app.kubernetes.io/instance: gitea - app.kubernetes.io/version: "9.0.3" + app.kubernetes.io/version: "9.0.4" app.kubernetes.io/managed-by: Helm data: init.sh: |- diff --git a/clusters/cl01tl/manifests/gitea/ConfigMap-gitea-valkey-renovate-init-scripts.yaml b/clusters/cl01tl/manifests/gitea/ConfigMap-gitea-valkey-renovate-init-scripts.yaml index c8961f772..eadf01864 100644 --- a/clusters/cl01tl/manifests/gitea/ConfigMap-gitea-valkey-renovate-init-scripts.yaml +++ b/clusters/cl01tl/manifests/gitea/ConfigMap-gitea-valkey-renovate-init-scripts.yaml @@ -6,7 +6,7 @@ metadata: helm.sh/chart: valkey-0.9.4 app.kubernetes.io/name: valkey-renovate app.kubernetes.io/instance: gitea - app.kubernetes.io/version: "9.0.3" + app.kubernetes.io/version: "9.0.4" app.kubernetes.io/managed-by: Helm data: init.sh: |- diff --git a/clusters/cl01tl/manifests/gitea/Deployment-gitea-cloudflared.yaml b/clusters/cl01tl/manifests/gitea/Deployment-gitea-cloudflared.yaml index e007dacd0..54018ed39 100644 --- a/clusters/cl01tl/manifests/gitea/Deployment-gitea-cloudflared.yaml +++ b/clusters/cl01tl/manifests/gitea/Deployment-gitea-cloudflared.yaml @@ -8,7 +8,7 @@ metadata: app.kubernetes.io/managed-by: Helm app.kubernetes.io/name: cloudflared app.kubernetes.io/version: 2026.3.0 - helm.sh/chart: cloudflared-2.7.1 + helm.sh/chart: cloudflared-3.0.0 namespace: gitea spec: revisionHistoryLimit: 3 @@ -28,7 +28,7 @@ spec: app.kubernetes.io/name: cloudflared spec: enableServiceLinks: false - serviceAccountName: gitea + serviceAccountName: cloudflared automountServiceAccountToken: false hostIPC: false hostNetwork: false @@ -38,8 +38,9 @@ spec: - args: - tunnel - --protocol - - http2 + - auto - --no-autoupdate + - --metrics 0.0.0.0:20241 - run - --token - $(CF_MANAGED_TUNNEL_TOKEN) diff --git a/clusters/cl01tl/manifests/gitea/Deployment-gitea-valkey-renovate.yaml b/clusters/cl01tl/manifests/gitea/Deployment-gitea-valkey-renovate.yaml index 4fba78df5..f59398329 100644 --- a/clusters/cl01tl/manifests/gitea/Deployment-gitea-valkey-renovate.yaml +++ b/clusters/cl01tl/manifests/gitea/Deployment-gitea-valkey-renovate.yaml @@ -6,7 +6,7 @@ metadata: helm.sh/chart: valkey-0.9.4 app.kubernetes.io/name: valkey-renovate app.kubernetes.io/instance: gitea - app.kubernetes.io/version: "9.0.3" + app.kubernetes.io/version: "9.0.4" app.kubernetes.io/managed-by: Helm spec: replicas: 1 @@ -22,7 +22,7 @@ spec: app.kubernetes.io/name: valkey-renovate app.kubernetes.io/instance: gitea annotations: - checksum/initconfig: 94157ae544275da50867d4d0da0722fc + checksum/initconfig: ec5d1c08a6657961bb2582aeddf9f127 spec: automountServiceAccountToken: false serviceAccountName: gitea-valkey-renovate @@ -34,7 +34,7 @@ spec: type: RuntimeDefault initContainers: - name: gitea-valkey-renovate-init - image: docker.io/valkey/valkey:9.0.3@sha256:3b55fbaa0cd93cf0d9d961f405e4dfcc70efe325e2d84da207a0a8e6d8fde4f9 + image: docker.io/valkey/valkey:9.0.4@sha256:8436e10bc65c94886a91d4415b6a6dfa9cb5a306fb3b996e5bb67cd2b4854193 imagePullPolicy: IfNotPresent securityContext: allowPrivilegeEscalation: false @@ -52,7 +52,7 @@ spec: mountPath: /scripts containers: - name: gitea-valkey-renovate - image: docker.io/valkey/valkey:9.0.3@sha256:3b55fbaa0cd93cf0d9d961f405e4dfcc70efe325e2d84da207a0a8e6d8fde4f9 + image: docker.io/valkey/valkey:9.0.4@sha256:8436e10bc65c94886a91d4415b6a6dfa9cb5a306fb3b996e5bb67cd2b4854193 imagePullPolicy: IfNotPresent command: ["valkey-server"] args: ["/data/conf/valkey.conf"] diff --git a/clusters/cl01tl/manifests/gitea/ExternalSecret-gitea-cloudflared-secret.yaml b/clusters/cl01tl/manifests/gitea/ExternalSecret-gitea-cloudflared-secret.yaml index 7e6b26e50..18bb6251e 100644 --- a/clusters/cl01tl/manifests/gitea/ExternalSecret-gitea-cloudflared-secret.yaml +++ b/clusters/cl01tl/manifests/gitea/ExternalSecret-gitea-cloudflared-secret.yaml @@ -4,10 +4,10 @@ metadata: name: gitea-cloudflared-secret namespace: gitea labels: - helm.sh/chart: cloudflared-2.7.1 + helm.sh/chart: cloudflared-3.0.0 app.kubernetes.io/instance: gitea app.kubernetes.io/part-of: gitea - app.kubernetes.io/version: "2.7.1" + app.kubernetes.io/version: "3.0.0" app.kubernetes.io/managed-by: Helm app.kubernetes.io/name: gitea-cloudflared-secret spec: diff --git a/clusters/cl01tl/manifests/gitea/PersistentVolumeClaim-gitea-valkey-renovate.yaml b/clusters/cl01tl/manifests/gitea/PersistentVolumeClaim-gitea-valkey-renovate.yaml index cd122c033..59b4d6de4 100644 --- a/clusters/cl01tl/manifests/gitea/PersistentVolumeClaim-gitea-valkey-renovate.yaml +++ b/clusters/cl01tl/manifests/gitea/PersistentVolumeClaim-gitea-valkey-renovate.yaml @@ -6,7 +6,7 @@ metadata: helm.sh/chart: valkey-0.9.4 app.kubernetes.io/name: valkey-renovate app.kubernetes.io/instance: gitea - app.kubernetes.io/version: "9.0.3" + app.kubernetes.io/version: "9.0.4" app.kubernetes.io/managed-by: Helm spec: accessModes: diff --git a/clusters/cl01tl/manifests/gitea/PodMonitor-gitea-valkey-renovate.yaml b/clusters/cl01tl/manifests/gitea/PodMonitor-gitea-valkey-renovate.yaml index 94e637f7e..5c1b6438c 100644 --- a/clusters/cl01tl/manifests/gitea/PodMonitor-gitea-valkey-renovate.yaml +++ b/clusters/cl01tl/manifests/gitea/PodMonitor-gitea-valkey-renovate.yaml @@ -6,7 +6,7 @@ metadata: helm.sh/chart: valkey-0.9.4 app.kubernetes.io/name: valkey-renovate app.kubernetes.io/instance: gitea - app.kubernetes.io/version: "9.0.3" + app.kubernetes.io/version: "9.0.4" app.kubernetes.io/managed-by: Helm app.kubernetes.io/part-of: valkey app.kubernetes.io/component: podmonitor diff --git a/clusters/cl01tl/manifests/gitea/PodMonitor-gitea-valkey.yaml b/clusters/cl01tl/manifests/gitea/PodMonitor-gitea-valkey.yaml index bb8235077..3d493a73e 100644 --- a/clusters/cl01tl/manifests/gitea/PodMonitor-gitea-valkey.yaml +++ b/clusters/cl01tl/manifests/gitea/PodMonitor-gitea-valkey.yaml @@ -6,7 +6,7 @@ metadata: helm.sh/chart: valkey-0.9.4 app.kubernetes.io/name: valkey app.kubernetes.io/instance: gitea - app.kubernetes.io/version: "9.0.3" + app.kubernetes.io/version: "9.0.4" app.kubernetes.io/managed-by: Helm app.kubernetes.io/part-of: valkey app.kubernetes.io/component: podmonitor diff --git a/clusters/cl01tl/manifests/gitea/PrometheusRule-gitea-valkey-renovate.yaml b/clusters/cl01tl/manifests/gitea/PrometheusRule-gitea-valkey-renovate.yaml index 3bacc52f8..33f2f7d6b 100644 --- a/clusters/cl01tl/manifests/gitea/PrometheusRule-gitea-valkey-renovate.yaml +++ b/clusters/cl01tl/manifests/gitea/PrometheusRule-gitea-valkey-renovate.yaml @@ -6,7 +6,7 @@ metadata: helm.sh/chart: valkey-0.9.4 app.kubernetes.io/name: valkey-renovate app.kubernetes.io/instance: gitea - app.kubernetes.io/version: "9.0.3" + app.kubernetes.io/version: "9.0.4" app.kubernetes.io/managed-by: Helm app.kubernetes.io/part-of: valkey spec: diff --git a/clusters/cl01tl/manifests/gitea/PrometheusRule-gitea-valkey.yaml b/clusters/cl01tl/manifests/gitea/PrometheusRule-gitea-valkey.yaml index d2f4fe599..c61278a39 100644 --- a/clusters/cl01tl/manifests/gitea/PrometheusRule-gitea-valkey.yaml +++ b/clusters/cl01tl/manifests/gitea/PrometheusRule-gitea-valkey.yaml @@ -6,7 +6,7 @@ metadata: helm.sh/chart: valkey-0.9.4 app.kubernetes.io/name: valkey app.kubernetes.io/instance: gitea - app.kubernetes.io/version: "9.0.3" + app.kubernetes.io/version: "9.0.4" app.kubernetes.io/managed-by: Helm app.kubernetes.io/part-of: valkey spec: diff --git a/clusters/cl01tl/manifests/gitea/Service-gitea-cloudflared.yaml b/clusters/cl01tl/manifests/gitea/Service-gitea-cloudflared.yaml new file mode 100644 index 000000000..f34bd97ec --- /dev/null +++ b/clusters/cl01tl/manifests/gitea/Service-gitea-cloudflared.yaml @@ -0,0 +1,23 @@ +apiVersion: v1 +kind: Service +metadata: + name: gitea-cloudflared + labels: + app.kubernetes.io/instance: gitea + app.kubernetes.io/managed-by: Helm + app.kubernetes.io/name: cloudflared + app.kubernetes.io/service: gitea-cloudflared + app.kubernetes.io/version: 2026.3.0 + helm.sh/chart: cloudflared-3.0.0 + namespace: gitea +spec: + type: ClusterIP + ports: + - port: 20241 + targetPort: 20241 + protocol: TCP + name: metrics + selector: + app.kubernetes.io/controller: main + app.kubernetes.io/instance: gitea + app.kubernetes.io/name: cloudflared diff --git a/clusters/cl01tl/manifests/gitea/Service-gitea-valkey-headless.yaml b/clusters/cl01tl/manifests/gitea/Service-gitea-valkey-headless.yaml index dc79b32b1..edff414d4 100644 --- a/clusters/cl01tl/manifests/gitea/Service-gitea-valkey-headless.yaml +++ b/clusters/cl01tl/manifests/gitea/Service-gitea-valkey-headless.yaml @@ -6,7 +6,7 @@ metadata: helm.sh/chart: valkey-0.9.4 app.kubernetes.io/name: valkey app.kubernetes.io/instance: gitea - app.kubernetes.io/version: "9.0.3" + app.kubernetes.io/version: "9.0.4" app.kubernetes.io/managed-by: Helm app.kubernetes.io/component: headless spec: diff --git a/clusters/cl01tl/manifests/gitea/Service-gitea-valkey-metrics.yaml b/clusters/cl01tl/manifests/gitea/Service-gitea-valkey-metrics.yaml index d4811622d..01eb6d5ca 100644 --- a/clusters/cl01tl/manifests/gitea/Service-gitea-valkey-metrics.yaml +++ b/clusters/cl01tl/manifests/gitea/Service-gitea-valkey-metrics.yaml @@ -6,7 +6,7 @@ metadata: helm.sh/chart: valkey-0.9.4 app.kubernetes.io/name: valkey app.kubernetes.io/instance: gitea - app.kubernetes.io/version: "9.0.3" + app.kubernetes.io/version: "9.0.4" app.kubernetes.io/managed-by: Helm app.kubernetes.io/component: metrics app.kubernetes.io/part-of: valkey diff --git a/clusters/cl01tl/manifests/gitea/Service-gitea-valkey-read.yaml b/clusters/cl01tl/manifests/gitea/Service-gitea-valkey-read.yaml index 76989f748..a02032906 100644 --- a/clusters/cl01tl/manifests/gitea/Service-gitea-valkey-read.yaml +++ b/clusters/cl01tl/manifests/gitea/Service-gitea-valkey-read.yaml @@ -6,7 +6,7 @@ metadata: helm.sh/chart: valkey-0.9.4 app.kubernetes.io/name: valkey app.kubernetes.io/instance: gitea - app.kubernetes.io/version: "9.0.3" + app.kubernetes.io/version: "9.0.4" app.kubernetes.io/managed-by: Helm app.kubernetes.io/component: read spec: diff --git a/clusters/cl01tl/manifests/gitea/Service-gitea-valkey-renovate-metrics.yaml b/clusters/cl01tl/manifests/gitea/Service-gitea-valkey-renovate-metrics.yaml index 43252b93f..53d94936a 100644 --- a/clusters/cl01tl/manifests/gitea/Service-gitea-valkey-renovate-metrics.yaml +++ b/clusters/cl01tl/manifests/gitea/Service-gitea-valkey-renovate-metrics.yaml @@ -6,7 +6,7 @@ metadata: helm.sh/chart: valkey-0.9.4 app.kubernetes.io/name: valkey-renovate app.kubernetes.io/instance: gitea - app.kubernetes.io/version: "9.0.3" + app.kubernetes.io/version: "9.0.4" app.kubernetes.io/managed-by: Helm app.kubernetes.io/component: metrics app.kubernetes.io/part-of: valkey diff --git a/clusters/cl01tl/manifests/gitea/Service-gitea-valkey-renovate.yaml b/clusters/cl01tl/manifests/gitea/Service-gitea-valkey-renovate.yaml index ec9a465f5..d35356e13 100644 --- a/clusters/cl01tl/manifests/gitea/Service-gitea-valkey-renovate.yaml +++ b/clusters/cl01tl/manifests/gitea/Service-gitea-valkey-renovate.yaml @@ -6,7 +6,7 @@ metadata: helm.sh/chart: valkey-0.9.4 app.kubernetes.io/name: valkey-renovate app.kubernetes.io/instance: gitea - app.kubernetes.io/version: "9.0.3" + app.kubernetes.io/version: "9.0.4" app.kubernetes.io/managed-by: Helm app.kubernetes.io/component: primary spec: diff --git a/clusters/cl01tl/manifests/gitea/Service-gitea-valkey.yaml b/clusters/cl01tl/manifests/gitea/Service-gitea-valkey.yaml index 31eceed5a..3018dcc26 100644 --- a/clusters/cl01tl/manifests/gitea/Service-gitea-valkey.yaml +++ b/clusters/cl01tl/manifests/gitea/Service-gitea-valkey.yaml @@ -6,7 +6,7 @@ metadata: helm.sh/chart: valkey-0.9.4 app.kubernetes.io/name: valkey app.kubernetes.io/instance: gitea - app.kubernetes.io/version: "9.0.3" + app.kubernetes.io/version: "9.0.4" app.kubernetes.io/managed-by: Helm app.kubernetes.io/component: primary spec: diff --git a/clusters/cl01tl/manifests/gitea/ServiceAccount-gitea-cloudflared.yaml b/clusters/cl01tl/manifests/gitea/ServiceAccount-gitea-cloudflared.yaml index ccd9067ab..2dacdd348 100644 --- a/clusters/cl01tl/manifests/gitea/ServiceAccount-gitea-cloudflared.yaml +++ b/clusters/cl01tl/manifests/gitea/ServiceAccount-gitea-cloudflared.yaml @@ -7,5 +7,5 @@ metadata: app.kubernetes.io/managed-by: Helm app.kubernetes.io/name: cloudflared app.kubernetes.io/version: 2026.3.0 - helm.sh/chart: cloudflared-2.7.1 + helm.sh/chart: cloudflared-3.0.0 namespace: gitea diff --git a/clusters/cl01tl/manifests/gitea/ServiceAccount-gitea-valkey-renovate.yaml b/clusters/cl01tl/manifests/gitea/ServiceAccount-gitea-valkey-renovate.yaml index c58e9280b..389901694 100644 --- a/clusters/cl01tl/manifests/gitea/ServiceAccount-gitea-valkey-renovate.yaml +++ b/clusters/cl01tl/manifests/gitea/ServiceAccount-gitea-valkey-renovate.yaml @@ -6,6 +6,6 @@ metadata: helm.sh/chart: valkey-0.9.4 app.kubernetes.io/name: valkey-renovate app.kubernetes.io/instance: gitea - app.kubernetes.io/version: "9.0.3" + app.kubernetes.io/version: "9.0.4" app.kubernetes.io/managed-by: Helm automountServiceAccountToken: false diff --git a/clusters/cl01tl/manifests/gitea/ServiceAccount-gitea-valkey.yaml b/clusters/cl01tl/manifests/gitea/ServiceAccount-gitea-valkey.yaml index 2cfb13516..bf11b8103 100644 --- a/clusters/cl01tl/manifests/gitea/ServiceAccount-gitea-valkey.yaml +++ b/clusters/cl01tl/manifests/gitea/ServiceAccount-gitea-valkey.yaml @@ -6,6 +6,6 @@ metadata: helm.sh/chart: valkey-0.9.4 app.kubernetes.io/name: valkey app.kubernetes.io/instance: gitea - app.kubernetes.io/version: "9.0.3" + app.kubernetes.io/version: "9.0.4" app.kubernetes.io/managed-by: Helm automountServiceAccountToken: false diff --git a/clusters/cl01tl/manifests/gitea/ServiceMonitor-gitea-cloudflared.yaml b/clusters/cl01tl/manifests/gitea/ServiceMonitor-gitea-cloudflared.yaml new file mode 100644 index 000000000..d6aff91e7 --- /dev/null +++ b/clusters/cl01tl/manifests/gitea/ServiceMonitor-gitea-cloudflared.yaml @@ -0,0 +1,25 @@ +apiVersion: monitoring.coreos.com/v1 +kind: ServiceMonitor +metadata: + name: gitea-cloudflared + labels: + app.kubernetes.io/instance: gitea + app.kubernetes.io/managed-by: Helm + app.kubernetes.io/name: cloudflared + app.kubernetes.io/version: 2026.3.0 + helm.sh/chart: cloudflared-3.0.0 + namespace: gitea +spec: + jobLabel: app.kubernetes.io/name + namespaceSelector: + matchNames: + - gitea + selector: + matchLabels: + app.kubernetes.io/instance: cloudflared + app.kubernetes.io/name: cloudflared + endpoints: + - interval: 30s + path: /metrics + port: metrics + scrapeTimeout: 10s diff --git a/clusters/cl01tl/manifests/gitea/ServiceMonitor-gitea-valkey-renovate.yaml b/clusters/cl01tl/manifests/gitea/ServiceMonitor-gitea-valkey-renovate.yaml index ac34dbcb7..20a4d48e8 100644 --- a/clusters/cl01tl/manifests/gitea/ServiceMonitor-gitea-valkey-renovate.yaml +++ b/clusters/cl01tl/manifests/gitea/ServiceMonitor-gitea-valkey-renovate.yaml @@ -6,7 +6,7 @@ metadata: helm.sh/chart: valkey-0.9.4 app.kubernetes.io/name: valkey-renovate app.kubernetes.io/instance: gitea - app.kubernetes.io/version: "9.0.3" + app.kubernetes.io/version: "9.0.4" app.kubernetes.io/managed-by: Helm app.kubernetes.io/part-of: valkey app.kubernetes.io/component: service-monitor diff --git a/clusters/cl01tl/manifests/gitea/ServiceMonitor-gitea-valkey.yaml b/clusters/cl01tl/manifests/gitea/ServiceMonitor-gitea-valkey.yaml index 6173145f4..1dc544c15 100644 --- a/clusters/cl01tl/manifests/gitea/ServiceMonitor-gitea-valkey.yaml +++ b/clusters/cl01tl/manifests/gitea/ServiceMonitor-gitea-valkey.yaml @@ -6,7 +6,7 @@ metadata: helm.sh/chart: valkey-0.9.4 app.kubernetes.io/name: valkey app.kubernetes.io/instance: gitea - app.kubernetes.io/version: "9.0.3" + app.kubernetes.io/version: "9.0.4" app.kubernetes.io/managed-by: Helm app.kubernetes.io/part-of: valkey app.kubernetes.io/component: service-monitor diff --git a/clusters/cl01tl/manifests/gitea/StatefulSet-gitea-valkey.yaml b/clusters/cl01tl/manifests/gitea/StatefulSet-gitea-valkey.yaml index 133105d01..85e3566a6 100644 --- a/clusters/cl01tl/manifests/gitea/StatefulSet-gitea-valkey.yaml +++ b/clusters/cl01tl/manifests/gitea/StatefulSet-gitea-valkey.yaml @@ -6,7 +6,7 @@ metadata: helm.sh/chart: valkey-0.9.4 app.kubernetes.io/name: valkey app.kubernetes.io/instance: gitea - app.kubernetes.io/version: "9.0.3" + app.kubernetes.io/version: "9.0.4" app.kubernetes.io/managed-by: Helm spec: serviceName: gitea-valkey-headless @@ -32,7 +32,7 @@ spec: app.kubernetes.io/name: valkey app.kubernetes.io/instance: gitea annotations: - checksum/initconfig: "9bf6424ee2956d21b52e5c3831aecefa" + checksum/initconfig: "88e964ad8690829ad09a86ad90173244" spec: automountServiceAccountToken: false serviceAccountName: gitea-valkey @@ -44,7 +44,7 @@ spec: type: RuntimeDefault initContainers: - name: gitea-valkey-init - image: docker.io/valkey/valkey:9.0.3@sha256:3b55fbaa0cd93cf0d9d961f405e4dfcc70efe325e2d84da207a0a8e6d8fde4f9 + image: docker.io/valkey/valkey:9.0.4@sha256:8436e10bc65c94886a91d4415b6a6dfa9cb5a306fb3b996e5bb67cd2b4854193 imagePullPolicy: IfNotPresent securityContext: allowPrivilegeEscalation: false @@ -67,7 +67,7 @@ spec: mountPath: /scripts containers: - name: gitea-valkey - image: docker.io/valkey/valkey:9.0.3@sha256:3b55fbaa0cd93cf0d9d961f405e4dfcc70efe325e2d84da207a0a8e6d8fde4f9 + image: docker.io/valkey/valkey:9.0.4@sha256:8436e10bc65c94886a91d4415b6a6dfa9cb5a306fb3b996e5bb67cd2b4854193 imagePullPolicy: IfNotPresent command: ["valkey-server"] args: ["/data/conf/valkey.conf"] diff --git a/clusters/cl01tl/manifests/karakeep/Deployment-karakeep-cloudflared.yaml b/clusters/cl01tl/manifests/karakeep/Deployment-karakeep-cloudflared.yaml index cd2549c66..02c6df26c 100644 --- a/clusters/cl01tl/manifests/karakeep/Deployment-karakeep-cloudflared.yaml +++ b/clusters/cl01tl/manifests/karakeep/Deployment-karakeep-cloudflared.yaml @@ -8,7 +8,7 @@ metadata: app.kubernetes.io/managed-by: Helm app.kubernetes.io/name: cloudflared app.kubernetes.io/version: 2026.3.0 - helm.sh/chart: cloudflared-2.7.1 + helm.sh/chart: cloudflared-3.0.0 namespace: karakeep spec: revisionHistoryLimit: 3 @@ -28,7 +28,7 @@ spec: app.kubernetes.io/name: cloudflared spec: enableServiceLinks: false - serviceAccountName: karakeep + serviceAccountName: cloudflared automountServiceAccountToken: false hostIPC: false hostNetwork: false @@ -38,8 +38,9 @@ spec: - args: - tunnel - --protocol - - http2 + - auto - --no-autoupdate + - --metrics 0.0.0.0:20241 - run - --token - $(CF_MANAGED_TUNNEL_TOKEN) diff --git a/clusters/cl01tl/manifests/karakeep/ExternalSecret-karakeep-cloudflared-secret.yaml b/clusters/cl01tl/manifests/karakeep/ExternalSecret-karakeep-cloudflared-secret.yaml index 175e17df4..9e61b372c 100644 --- a/clusters/cl01tl/manifests/karakeep/ExternalSecret-karakeep-cloudflared-secret.yaml +++ b/clusters/cl01tl/manifests/karakeep/ExternalSecret-karakeep-cloudflared-secret.yaml @@ -4,10 +4,10 @@ metadata: name: karakeep-cloudflared-secret namespace: karakeep labels: - helm.sh/chart: cloudflared-2.7.1 + helm.sh/chart: cloudflared-3.0.0 app.kubernetes.io/instance: karakeep app.kubernetes.io/part-of: karakeep - app.kubernetes.io/version: "2.7.1" + app.kubernetes.io/version: "3.0.0" app.kubernetes.io/managed-by: Helm app.kubernetes.io/name: karakeep-cloudflared-secret spec: diff --git a/clusters/cl01tl/manifests/karakeep/Service-karakeep-cloudflared.yaml b/clusters/cl01tl/manifests/karakeep/Service-karakeep-cloudflared.yaml new file mode 100644 index 000000000..6bbabba71 --- /dev/null +++ b/clusters/cl01tl/manifests/karakeep/Service-karakeep-cloudflared.yaml @@ -0,0 +1,23 @@ +apiVersion: v1 +kind: Service +metadata: + name: karakeep-cloudflared + labels: + app.kubernetes.io/instance: karakeep + app.kubernetes.io/managed-by: Helm + app.kubernetes.io/name: cloudflared + app.kubernetes.io/service: karakeep-cloudflared + app.kubernetes.io/version: 2026.3.0 + helm.sh/chart: cloudflared-3.0.0 + namespace: karakeep +spec: + type: ClusterIP + ports: + - port: 20241 + targetPort: 20241 + protocol: TCP + name: metrics + selector: + app.kubernetes.io/controller: main + app.kubernetes.io/instance: karakeep + app.kubernetes.io/name: cloudflared diff --git a/clusters/cl01tl/manifests/karakeep/ServiceAccount-karakeep-cloudflared.yaml b/clusters/cl01tl/manifests/karakeep/ServiceAccount-karakeep-cloudflared.yaml index 2ef91bf26..aeebfa4a4 100644 --- a/clusters/cl01tl/manifests/karakeep/ServiceAccount-karakeep-cloudflared.yaml +++ b/clusters/cl01tl/manifests/karakeep/ServiceAccount-karakeep-cloudflared.yaml @@ -7,5 +7,5 @@ metadata: app.kubernetes.io/managed-by: Helm app.kubernetes.io/name: cloudflared app.kubernetes.io/version: 2026.3.0 - helm.sh/chart: cloudflared-2.7.1 + helm.sh/chart: cloudflared-3.0.0 namespace: karakeep diff --git a/clusters/cl01tl/manifests/karakeep/ServiceMonitor-karakeep-cloudflared.yaml b/clusters/cl01tl/manifests/karakeep/ServiceMonitor-karakeep-cloudflared.yaml new file mode 100644 index 000000000..3ff587be7 --- /dev/null +++ b/clusters/cl01tl/manifests/karakeep/ServiceMonitor-karakeep-cloudflared.yaml @@ -0,0 +1,25 @@ +apiVersion: monitoring.coreos.com/v1 +kind: ServiceMonitor +metadata: + name: karakeep-cloudflared + labels: + app.kubernetes.io/instance: karakeep + app.kubernetes.io/managed-by: Helm + app.kubernetes.io/name: cloudflared + app.kubernetes.io/version: 2026.3.0 + helm.sh/chart: cloudflared-3.0.0 + namespace: karakeep +spec: + jobLabel: app.kubernetes.io/name + namespaceSelector: + matchNames: + - karakeep + selector: + matchLabels: + app.kubernetes.io/instance: cloudflared + app.kubernetes.io/name: cloudflared + endpoints: + - interval: 30s + path: /metrics + port: metrics + scrapeTimeout: 10s diff --git a/clusters/cl01tl/manifests/matrix-synapse/ConfigMap-matrix-synapse-valkey-hookshot-init-scripts.yaml b/clusters/cl01tl/manifests/matrix-synapse/ConfigMap-matrix-synapse-valkey-hookshot-init-scripts.yaml index 8ae060e14..a9cbd264f 100644 --- a/clusters/cl01tl/manifests/matrix-synapse/ConfigMap-matrix-synapse-valkey-hookshot-init-scripts.yaml +++ b/clusters/cl01tl/manifests/matrix-synapse/ConfigMap-matrix-synapse-valkey-hookshot-init-scripts.yaml @@ -6,7 +6,7 @@ metadata: helm.sh/chart: valkey-0.9.4 app.kubernetes.io/name: valkey-hookshot app.kubernetes.io/instance: matrix-synapse - app.kubernetes.io/version: "9.0.3" + app.kubernetes.io/version: "9.0.4" app.kubernetes.io/managed-by: Helm data: init.sh: |- diff --git a/clusters/cl01tl/manifests/matrix-synapse/ConfigMap-matrix-synapse-valkey-init-scripts.yaml b/clusters/cl01tl/manifests/matrix-synapse/ConfigMap-matrix-synapse-valkey-init-scripts.yaml index b6f644738..b26a9c601 100644 --- a/clusters/cl01tl/manifests/matrix-synapse/ConfigMap-matrix-synapse-valkey-init-scripts.yaml +++ b/clusters/cl01tl/manifests/matrix-synapse/ConfigMap-matrix-synapse-valkey-init-scripts.yaml @@ -6,7 +6,7 @@ metadata: helm.sh/chart: valkey-0.9.4 app.kubernetes.io/name: valkey app.kubernetes.io/instance: matrix-synapse - app.kubernetes.io/version: "9.0.3" + app.kubernetes.io/version: "9.0.4" app.kubernetes.io/managed-by: Helm data: init.sh: |- diff --git a/clusters/cl01tl/manifests/matrix-synapse/Deployment-matrix-synapse-hookshot-cloudflared.yaml b/clusters/cl01tl/manifests/matrix-synapse/Deployment-matrix-synapse-hookshot-cloudflared.yaml index 35dee7113..8b7a64e53 100644 --- a/clusters/cl01tl/manifests/matrix-synapse/Deployment-matrix-synapse-hookshot-cloudflared.yaml +++ b/clusters/cl01tl/manifests/matrix-synapse/Deployment-matrix-synapse-hookshot-cloudflared.yaml @@ -8,7 +8,7 @@ metadata: app.kubernetes.io/managed-by: Helm app.kubernetes.io/name: hookshot-cloudflared app.kubernetes.io/version: 2026.3.0 - helm.sh/chart: cloudflared-hookshot-2.7.1 + helm.sh/chart: cloudflared-hookshot-3.0.0 namespace: matrix-synapse spec: revisionHistoryLimit: 3 @@ -28,7 +28,7 @@ spec: app.kubernetes.io/name: hookshot-cloudflared spec: enableServiceLinks: false - serviceAccountName: matrix-synapse + serviceAccountName: hookshot-cloudflared automountServiceAccountToken: false hostIPC: false hostNetwork: false @@ -38,8 +38,9 @@ spec: - args: - tunnel - --protocol - - http2 + - auto - --no-autoupdate + - --metrics 0.0.0.0:20241 - run - --token - $(CF_MANAGED_TUNNEL_TOKEN) diff --git a/clusters/cl01tl/manifests/matrix-synapse/Deployment-matrix-synapse-synapse-cloudflared.yaml b/clusters/cl01tl/manifests/matrix-synapse/Deployment-matrix-synapse-synapse-cloudflared.yaml index 221559db0..c57215aa2 100644 --- a/clusters/cl01tl/manifests/matrix-synapse/Deployment-matrix-synapse-synapse-cloudflared.yaml +++ b/clusters/cl01tl/manifests/matrix-synapse/Deployment-matrix-synapse-synapse-cloudflared.yaml @@ -8,7 +8,7 @@ metadata: app.kubernetes.io/managed-by: Helm app.kubernetes.io/name: synapse-cloudflared app.kubernetes.io/version: 2026.3.0 - helm.sh/chart: cloudflared-synapse-2.7.1 + helm.sh/chart: cloudflared-synapse-3.0.0 namespace: matrix-synapse spec: revisionHistoryLimit: 3 @@ -28,7 +28,7 @@ spec: app.kubernetes.io/name: synapse-cloudflared spec: enableServiceLinks: false - serviceAccountName: matrix-synapse + serviceAccountName: synapse-cloudflared automountServiceAccountToken: false hostIPC: false hostNetwork: false @@ -38,8 +38,9 @@ spec: - args: - tunnel - --protocol - - http2 + - auto - --no-autoupdate + - --metrics 0.0.0.0:20241 - run - --token - $(CF_MANAGED_TUNNEL_TOKEN) diff --git a/clusters/cl01tl/manifests/matrix-synapse/ExternalSecret-matrix-synapse-hookshot-cloudflared-secret.yaml b/clusters/cl01tl/manifests/matrix-synapse/ExternalSecret-matrix-synapse-hookshot-cloudflared-secret.yaml index 8f753322b..8b78186f1 100644 --- a/clusters/cl01tl/manifests/matrix-synapse/ExternalSecret-matrix-synapse-hookshot-cloudflared-secret.yaml +++ b/clusters/cl01tl/manifests/matrix-synapse/ExternalSecret-matrix-synapse-hookshot-cloudflared-secret.yaml @@ -4,10 +4,10 @@ metadata: name: matrix-synapse-hookshot-cloudflared-secret namespace: matrix-synapse labels: - helm.sh/chart: cloudflared-hookshot-2.7.1 + helm.sh/chart: cloudflared-hookshot-3.0.0 app.kubernetes.io/instance: matrix-synapse app.kubernetes.io/part-of: matrix-synapse - app.kubernetes.io/version: "2.7.1" + app.kubernetes.io/version: "3.0.0" app.kubernetes.io/managed-by: Helm app.kubernetes.io/name: matrix-synapse-hookshot-cloudflared-secret spec: diff --git a/clusters/cl01tl/manifests/matrix-synapse/ExternalSecret-matrix-synapse-synapse-cloudflared-secret.yaml b/clusters/cl01tl/manifests/matrix-synapse/ExternalSecret-matrix-synapse-synapse-cloudflared-secret.yaml index e14894b5b..81af532e0 100644 --- a/clusters/cl01tl/manifests/matrix-synapse/ExternalSecret-matrix-synapse-synapse-cloudflared-secret.yaml +++ b/clusters/cl01tl/manifests/matrix-synapse/ExternalSecret-matrix-synapse-synapse-cloudflared-secret.yaml @@ -4,10 +4,10 @@ metadata: name: matrix-synapse-synapse-cloudflared-secret namespace: matrix-synapse labels: - helm.sh/chart: cloudflared-synapse-2.7.1 + helm.sh/chart: cloudflared-synapse-3.0.0 app.kubernetes.io/instance: matrix-synapse app.kubernetes.io/part-of: matrix-synapse - app.kubernetes.io/version: "2.7.1" + app.kubernetes.io/version: "3.0.0" app.kubernetes.io/managed-by: Helm app.kubernetes.io/name: matrix-synapse-synapse-cloudflared-secret spec: diff --git a/clusters/cl01tl/manifests/matrix-synapse/Pod-matrix-synapse-valkey-test-auth-existing.yaml b/clusters/cl01tl/manifests/matrix-synapse/Pod-matrix-synapse-valkey-test-auth-existing.yaml index 2631a3fbf..6d5a0ebf4 100644 --- a/clusters/cl01tl/manifests/matrix-synapse/Pod-matrix-synapse-valkey-test-auth-existing.yaml +++ b/clusters/cl01tl/manifests/matrix-synapse/Pod-matrix-synapse-valkey-test-auth-existing.yaml @@ -6,7 +6,7 @@ metadata: helm.sh/chart: valkey-0.9.4 app.kubernetes.io/name: valkey app.kubernetes.io/instance: matrix-synapse - app.kubernetes.io/version: "9.0.3" + app.kubernetes.io/version: "9.0.4" app.kubernetes.io/managed-by: Helm annotations: "helm.sh/hook": test @@ -15,7 +15,7 @@ spec: restartPolicy: Never containers: - name: test-auth - image: "docker.io/valkey/valkey:9.0.3@sha256:3b55fbaa0cd93cf0d9d961f405e4dfcc70efe325e2d84da207a0a8e6d8fde4f9" + image: "docker.io/valkey/valkey:9.0.4@sha256:8436e10bc65c94886a91d4415b6a6dfa9cb5a306fb3b996e5bb67cd2b4854193" command: - sh - -c diff --git a/clusters/cl01tl/manifests/matrix-synapse/PodMonitor-matrix-synapse-valkey-hookshot.yaml b/clusters/cl01tl/manifests/matrix-synapse/PodMonitor-matrix-synapse-valkey-hookshot.yaml index d7b1bb4cf..85aa3abb7 100644 --- a/clusters/cl01tl/manifests/matrix-synapse/PodMonitor-matrix-synapse-valkey-hookshot.yaml +++ b/clusters/cl01tl/manifests/matrix-synapse/PodMonitor-matrix-synapse-valkey-hookshot.yaml @@ -6,7 +6,7 @@ metadata: helm.sh/chart: valkey-0.9.4 app.kubernetes.io/name: valkey-hookshot app.kubernetes.io/instance: matrix-synapse - app.kubernetes.io/version: "9.0.3" + app.kubernetes.io/version: "9.0.4" app.kubernetes.io/managed-by: Helm app.kubernetes.io/part-of: valkey app.kubernetes.io/component: podmonitor diff --git a/clusters/cl01tl/manifests/matrix-synapse/PodMonitor-matrix-synapse-valkey.yaml b/clusters/cl01tl/manifests/matrix-synapse/PodMonitor-matrix-synapse-valkey.yaml index 7e6def469..d42b4752f 100644 --- a/clusters/cl01tl/manifests/matrix-synapse/PodMonitor-matrix-synapse-valkey.yaml +++ b/clusters/cl01tl/manifests/matrix-synapse/PodMonitor-matrix-synapse-valkey.yaml @@ -6,7 +6,7 @@ metadata: helm.sh/chart: valkey-0.9.4 app.kubernetes.io/name: valkey app.kubernetes.io/instance: matrix-synapse - app.kubernetes.io/version: "9.0.3" + app.kubernetes.io/version: "9.0.4" app.kubernetes.io/managed-by: Helm app.kubernetes.io/part-of: valkey app.kubernetes.io/component: podmonitor diff --git a/clusters/cl01tl/manifests/matrix-synapse/PrometheusRule-matrix-synapse-valkey-hookshot.yaml b/clusters/cl01tl/manifests/matrix-synapse/PrometheusRule-matrix-synapse-valkey-hookshot.yaml index 6e5dd36d7..38834efff 100644 --- a/clusters/cl01tl/manifests/matrix-synapse/PrometheusRule-matrix-synapse-valkey-hookshot.yaml +++ b/clusters/cl01tl/manifests/matrix-synapse/PrometheusRule-matrix-synapse-valkey-hookshot.yaml @@ -6,7 +6,7 @@ metadata: helm.sh/chart: valkey-0.9.4 app.kubernetes.io/name: valkey-hookshot app.kubernetes.io/instance: matrix-synapse - app.kubernetes.io/version: "9.0.3" + app.kubernetes.io/version: "9.0.4" app.kubernetes.io/managed-by: Helm app.kubernetes.io/part-of: valkey spec: diff --git a/clusters/cl01tl/manifests/matrix-synapse/PrometheusRule-matrix-synapse-valkey.yaml b/clusters/cl01tl/manifests/matrix-synapse/PrometheusRule-matrix-synapse-valkey.yaml index 35eee1c92..ef1957392 100644 --- a/clusters/cl01tl/manifests/matrix-synapse/PrometheusRule-matrix-synapse-valkey.yaml +++ b/clusters/cl01tl/manifests/matrix-synapse/PrometheusRule-matrix-synapse-valkey.yaml @@ -6,7 +6,7 @@ metadata: helm.sh/chart: valkey-0.9.4 app.kubernetes.io/name: valkey app.kubernetes.io/instance: matrix-synapse - app.kubernetes.io/version: "9.0.3" + app.kubernetes.io/version: "9.0.4" app.kubernetes.io/managed-by: Helm app.kubernetes.io/part-of: valkey spec: diff --git a/clusters/cl01tl/manifests/matrix-synapse/Service-matrix-synapse-hookshot-cloudflared.yaml b/clusters/cl01tl/manifests/matrix-synapse/Service-matrix-synapse-hookshot-cloudflared.yaml new file mode 100644 index 000000000..11429f9ba --- /dev/null +++ b/clusters/cl01tl/manifests/matrix-synapse/Service-matrix-synapse-hookshot-cloudflared.yaml @@ -0,0 +1,23 @@ +apiVersion: v1 +kind: Service +metadata: + name: matrix-synapse-hookshot-cloudflared + labels: + app.kubernetes.io/instance: matrix-synapse + app.kubernetes.io/managed-by: Helm + app.kubernetes.io/name: hookshot-cloudflared + app.kubernetes.io/service: matrix-synapse-hookshot-cloudflared + app.kubernetes.io/version: 2026.3.0 + helm.sh/chart: cloudflared-hookshot-3.0.0 + namespace: matrix-synapse +spec: + type: ClusterIP + ports: + - port: 20241 + targetPort: 20241 + protocol: TCP + name: metrics + selector: + app.kubernetes.io/controller: main + app.kubernetes.io/instance: matrix-synapse + app.kubernetes.io/name: hookshot-cloudflared diff --git a/clusters/cl01tl/manifests/matrix-synapse/Service-matrix-synapse-synapse-cloudflared.yaml b/clusters/cl01tl/manifests/matrix-synapse/Service-matrix-synapse-synapse-cloudflared.yaml new file mode 100644 index 000000000..df87c5cbd --- /dev/null +++ b/clusters/cl01tl/manifests/matrix-synapse/Service-matrix-synapse-synapse-cloudflared.yaml @@ -0,0 +1,23 @@ +apiVersion: v1 +kind: Service +metadata: + name: matrix-synapse-synapse-cloudflared + labels: + app.kubernetes.io/instance: matrix-synapse + app.kubernetes.io/managed-by: Helm + app.kubernetes.io/name: synapse-cloudflared + app.kubernetes.io/service: matrix-synapse-synapse-cloudflared + app.kubernetes.io/version: 2026.3.0 + helm.sh/chart: cloudflared-synapse-3.0.0 + namespace: matrix-synapse +spec: + type: ClusterIP + ports: + - port: 20241 + targetPort: 20241 + protocol: TCP + name: metrics + selector: + app.kubernetes.io/controller: main + app.kubernetes.io/instance: matrix-synapse + app.kubernetes.io/name: synapse-cloudflared diff --git a/clusters/cl01tl/manifests/matrix-synapse/Service-matrix-synapse-valkey-headless.yaml b/clusters/cl01tl/manifests/matrix-synapse/Service-matrix-synapse-valkey-headless.yaml index 56befdf4b..c0d6bad97 100644 --- a/clusters/cl01tl/manifests/matrix-synapse/Service-matrix-synapse-valkey-headless.yaml +++ b/clusters/cl01tl/manifests/matrix-synapse/Service-matrix-synapse-valkey-headless.yaml @@ -6,7 +6,7 @@ metadata: helm.sh/chart: valkey-0.9.4 app.kubernetes.io/name: valkey app.kubernetes.io/instance: matrix-synapse - app.kubernetes.io/version: "9.0.3" + app.kubernetes.io/version: "9.0.4" app.kubernetes.io/managed-by: Helm app.kubernetes.io/component: headless spec: diff --git a/clusters/cl01tl/manifests/matrix-synapse/Service-matrix-synapse-valkey-hookshot-headless.yaml b/clusters/cl01tl/manifests/matrix-synapse/Service-matrix-synapse-valkey-hookshot-headless.yaml index 54b446b46..1f771b9f7 100644 --- a/clusters/cl01tl/manifests/matrix-synapse/Service-matrix-synapse-valkey-hookshot-headless.yaml +++ b/clusters/cl01tl/manifests/matrix-synapse/Service-matrix-synapse-valkey-hookshot-headless.yaml @@ -6,7 +6,7 @@ metadata: helm.sh/chart: valkey-0.9.4 app.kubernetes.io/name: valkey-hookshot app.kubernetes.io/instance: matrix-synapse - app.kubernetes.io/version: "9.0.3" + app.kubernetes.io/version: "9.0.4" app.kubernetes.io/managed-by: Helm app.kubernetes.io/component: headless spec: diff --git a/clusters/cl01tl/manifests/matrix-synapse/Service-matrix-synapse-valkey-hookshot-metrics.yaml b/clusters/cl01tl/manifests/matrix-synapse/Service-matrix-synapse-valkey-hookshot-metrics.yaml index da4af0286..197cbf1f1 100644 --- a/clusters/cl01tl/manifests/matrix-synapse/Service-matrix-synapse-valkey-hookshot-metrics.yaml +++ b/clusters/cl01tl/manifests/matrix-synapse/Service-matrix-synapse-valkey-hookshot-metrics.yaml @@ -6,7 +6,7 @@ metadata: helm.sh/chart: valkey-0.9.4 app.kubernetes.io/name: valkey-hookshot app.kubernetes.io/instance: matrix-synapse - app.kubernetes.io/version: "9.0.3" + app.kubernetes.io/version: "9.0.4" app.kubernetes.io/managed-by: Helm app.kubernetes.io/component: metrics app.kubernetes.io/part-of: valkey diff --git a/clusters/cl01tl/manifests/matrix-synapse/Service-matrix-synapse-valkey-hookshot-read.yaml b/clusters/cl01tl/manifests/matrix-synapse/Service-matrix-synapse-valkey-hookshot-read.yaml index c211b13ea..3f01c0c1b 100644 --- a/clusters/cl01tl/manifests/matrix-synapse/Service-matrix-synapse-valkey-hookshot-read.yaml +++ b/clusters/cl01tl/manifests/matrix-synapse/Service-matrix-synapse-valkey-hookshot-read.yaml @@ -6,7 +6,7 @@ metadata: helm.sh/chart: valkey-0.9.4 app.kubernetes.io/name: valkey-hookshot app.kubernetes.io/instance: matrix-synapse - app.kubernetes.io/version: "9.0.3" + app.kubernetes.io/version: "9.0.4" app.kubernetes.io/managed-by: Helm app.kubernetes.io/component: read spec: diff --git a/clusters/cl01tl/manifests/matrix-synapse/Service-matrix-synapse-valkey-hookshot.yaml b/clusters/cl01tl/manifests/matrix-synapse/Service-matrix-synapse-valkey-hookshot.yaml index dc03f17ca..eae0a9de4 100644 --- a/clusters/cl01tl/manifests/matrix-synapse/Service-matrix-synapse-valkey-hookshot.yaml +++ b/clusters/cl01tl/manifests/matrix-synapse/Service-matrix-synapse-valkey-hookshot.yaml @@ -6,7 +6,7 @@ metadata: helm.sh/chart: valkey-0.9.4 app.kubernetes.io/name: valkey-hookshot app.kubernetes.io/instance: matrix-synapse - app.kubernetes.io/version: "9.0.3" + app.kubernetes.io/version: "9.0.4" app.kubernetes.io/managed-by: Helm app.kubernetes.io/component: primary spec: diff --git a/clusters/cl01tl/manifests/matrix-synapse/Service-matrix-synapse-valkey-metrics.yaml b/clusters/cl01tl/manifests/matrix-synapse/Service-matrix-synapse-valkey-metrics.yaml index 05d0fd3be..e02396264 100644 --- a/clusters/cl01tl/manifests/matrix-synapse/Service-matrix-synapse-valkey-metrics.yaml +++ b/clusters/cl01tl/manifests/matrix-synapse/Service-matrix-synapse-valkey-metrics.yaml @@ -6,7 +6,7 @@ metadata: helm.sh/chart: valkey-0.9.4 app.kubernetes.io/name: valkey app.kubernetes.io/instance: matrix-synapse - app.kubernetes.io/version: "9.0.3" + app.kubernetes.io/version: "9.0.4" app.kubernetes.io/managed-by: Helm app.kubernetes.io/component: metrics app.kubernetes.io/part-of: valkey diff --git a/clusters/cl01tl/manifests/matrix-synapse/Service-matrix-synapse-valkey-read.yaml b/clusters/cl01tl/manifests/matrix-synapse/Service-matrix-synapse-valkey-read.yaml index 868b5d78b..f0854598b 100644 --- a/clusters/cl01tl/manifests/matrix-synapse/Service-matrix-synapse-valkey-read.yaml +++ b/clusters/cl01tl/manifests/matrix-synapse/Service-matrix-synapse-valkey-read.yaml @@ -6,7 +6,7 @@ metadata: helm.sh/chart: valkey-0.9.4 app.kubernetes.io/name: valkey app.kubernetes.io/instance: matrix-synapse - app.kubernetes.io/version: "9.0.3" + app.kubernetes.io/version: "9.0.4" app.kubernetes.io/managed-by: Helm app.kubernetes.io/component: read spec: diff --git a/clusters/cl01tl/manifests/matrix-synapse/Service-matrix-synapse-valkey.yaml b/clusters/cl01tl/manifests/matrix-synapse/Service-matrix-synapse-valkey.yaml index 35a3a956e..16e17bf1a 100644 --- a/clusters/cl01tl/manifests/matrix-synapse/Service-matrix-synapse-valkey.yaml +++ b/clusters/cl01tl/manifests/matrix-synapse/Service-matrix-synapse-valkey.yaml @@ -6,7 +6,7 @@ metadata: helm.sh/chart: valkey-0.9.4 app.kubernetes.io/name: valkey app.kubernetes.io/instance: matrix-synapse - app.kubernetes.io/version: "9.0.3" + app.kubernetes.io/version: "9.0.4" app.kubernetes.io/managed-by: Helm app.kubernetes.io/component: primary spec: diff --git a/clusters/cl01tl/manifests/matrix-synapse/ServiceAccount-matrix-synapse-hookshot-cloudflared.yaml b/clusters/cl01tl/manifests/matrix-synapse/ServiceAccount-matrix-synapse-hookshot-cloudflared.yaml index 942bbe57e..9554a7ed8 100644 --- a/clusters/cl01tl/manifests/matrix-synapse/ServiceAccount-matrix-synapse-hookshot-cloudflared.yaml +++ b/clusters/cl01tl/manifests/matrix-synapse/ServiceAccount-matrix-synapse-hookshot-cloudflared.yaml @@ -7,5 +7,5 @@ metadata: app.kubernetes.io/managed-by: Helm app.kubernetes.io/name: hookshot-cloudflared app.kubernetes.io/version: 2026.3.0 - helm.sh/chart: cloudflared-hookshot-2.7.1 + helm.sh/chart: cloudflared-hookshot-3.0.0 namespace: matrix-synapse diff --git a/clusters/cl01tl/manifests/matrix-synapse/ServiceAccount-matrix-synapse-synapse-cloudflared.yaml b/clusters/cl01tl/manifests/matrix-synapse/ServiceAccount-matrix-synapse-synapse-cloudflared.yaml index 12256cda7..ab3825a57 100644 --- a/clusters/cl01tl/manifests/matrix-synapse/ServiceAccount-matrix-synapse-synapse-cloudflared.yaml +++ b/clusters/cl01tl/manifests/matrix-synapse/ServiceAccount-matrix-synapse-synapse-cloudflared.yaml @@ -7,5 +7,5 @@ metadata: app.kubernetes.io/managed-by: Helm app.kubernetes.io/name: synapse-cloudflared app.kubernetes.io/version: 2026.3.0 - helm.sh/chart: cloudflared-synapse-2.7.1 + helm.sh/chart: cloudflared-synapse-3.0.0 namespace: matrix-synapse diff --git a/clusters/cl01tl/manifests/matrix-synapse/ServiceAccount-matrix-synapse-valkey-hookshot.yaml b/clusters/cl01tl/manifests/matrix-synapse/ServiceAccount-matrix-synapse-valkey-hookshot.yaml index 9a443a0dd..9f4dba5fc 100644 --- a/clusters/cl01tl/manifests/matrix-synapse/ServiceAccount-matrix-synapse-valkey-hookshot.yaml +++ b/clusters/cl01tl/manifests/matrix-synapse/ServiceAccount-matrix-synapse-valkey-hookshot.yaml @@ -6,6 +6,6 @@ metadata: helm.sh/chart: valkey-0.9.4 app.kubernetes.io/name: valkey-hookshot app.kubernetes.io/instance: matrix-synapse - app.kubernetes.io/version: "9.0.3" + app.kubernetes.io/version: "9.0.4" app.kubernetes.io/managed-by: Helm automountServiceAccountToken: false diff --git a/clusters/cl01tl/manifests/matrix-synapse/ServiceAccount-matrix-synapse-valkey.yaml b/clusters/cl01tl/manifests/matrix-synapse/ServiceAccount-matrix-synapse-valkey.yaml index 0efbd7fcb..ea33b797b 100644 --- a/clusters/cl01tl/manifests/matrix-synapse/ServiceAccount-matrix-synapse-valkey.yaml +++ b/clusters/cl01tl/manifests/matrix-synapse/ServiceAccount-matrix-synapse-valkey.yaml @@ -6,6 +6,6 @@ metadata: helm.sh/chart: valkey-0.9.4 app.kubernetes.io/name: valkey app.kubernetes.io/instance: matrix-synapse - app.kubernetes.io/version: "9.0.3" + app.kubernetes.io/version: "9.0.4" app.kubernetes.io/managed-by: Helm automountServiceAccountToken: false diff --git a/clusters/cl01tl/manifests/matrix-synapse/ServiceMonitor-matrix-synapse-hookshot-cloudflared.yaml b/clusters/cl01tl/manifests/matrix-synapse/ServiceMonitor-matrix-synapse-hookshot-cloudflared.yaml new file mode 100644 index 000000000..38b94f50c --- /dev/null +++ b/clusters/cl01tl/manifests/matrix-synapse/ServiceMonitor-matrix-synapse-hookshot-cloudflared.yaml @@ -0,0 +1,25 @@ +apiVersion: monitoring.coreos.com/v1 +kind: ServiceMonitor +metadata: + name: matrix-synapse-hookshot-cloudflared + labels: + app.kubernetes.io/instance: matrix-synapse + app.kubernetes.io/managed-by: Helm + app.kubernetes.io/name: hookshot-cloudflared + app.kubernetes.io/version: 2026.3.0 + helm.sh/chart: cloudflared-hookshot-3.0.0 + namespace: matrix-synapse +spec: + jobLabel: app.kubernetes.io/name + namespaceSelector: + matchNames: + - matrix-synapse + selector: + matchLabels: + app.kubernetes.io/instance: hookshot-cloudflared + app.kubernetes.io/name: hookshot-cloudflared + endpoints: + - interval: 30s + path: /metrics + port: metrics + scrapeTimeout: 10s diff --git a/clusters/cl01tl/manifests/matrix-synapse/ServiceMonitor-matrix-synapse-synapse-cloudflared.yaml b/clusters/cl01tl/manifests/matrix-synapse/ServiceMonitor-matrix-synapse-synapse-cloudflared.yaml new file mode 100644 index 000000000..97d6fe07b --- /dev/null +++ b/clusters/cl01tl/manifests/matrix-synapse/ServiceMonitor-matrix-synapse-synapse-cloudflared.yaml @@ -0,0 +1,25 @@ +apiVersion: monitoring.coreos.com/v1 +kind: ServiceMonitor +metadata: + name: matrix-synapse-synapse-cloudflared + labels: + app.kubernetes.io/instance: matrix-synapse + app.kubernetes.io/managed-by: Helm + app.kubernetes.io/name: synapse-cloudflared + app.kubernetes.io/version: 2026.3.0 + helm.sh/chart: cloudflared-synapse-3.0.0 + namespace: matrix-synapse +spec: + jobLabel: app.kubernetes.io/name + namespaceSelector: + matchNames: + - matrix-synapse + selector: + matchLabels: + app.kubernetes.io/instance: synapse-cloudflared + app.kubernetes.io/name: synapse-cloudflared + endpoints: + - interval: 30s + path: /metrics + port: metrics + scrapeTimeout: 10s diff --git a/clusters/cl01tl/manifests/matrix-synapse/ServiceMonitor-matrix-synapse-valkey-hookshot.yaml b/clusters/cl01tl/manifests/matrix-synapse/ServiceMonitor-matrix-synapse-valkey-hookshot.yaml index 598cfb5cb..54c1d5aac 100644 --- a/clusters/cl01tl/manifests/matrix-synapse/ServiceMonitor-matrix-synapse-valkey-hookshot.yaml +++ b/clusters/cl01tl/manifests/matrix-synapse/ServiceMonitor-matrix-synapse-valkey-hookshot.yaml @@ -6,7 +6,7 @@ metadata: helm.sh/chart: valkey-0.9.4 app.kubernetes.io/name: valkey-hookshot app.kubernetes.io/instance: matrix-synapse - app.kubernetes.io/version: "9.0.3" + app.kubernetes.io/version: "9.0.4" app.kubernetes.io/managed-by: Helm app.kubernetes.io/part-of: valkey app.kubernetes.io/component: service-monitor diff --git a/clusters/cl01tl/manifests/matrix-synapse/ServiceMonitor-matrix-synapse-valkey.yaml b/clusters/cl01tl/manifests/matrix-synapse/ServiceMonitor-matrix-synapse-valkey.yaml index 9697733e0..25d6ae832 100644 --- a/clusters/cl01tl/manifests/matrix-synapse/ServiceMonitor-matrix-synapse-valkey.yaml +++ b/clusters/cl01tl/manifests/matrix-synapse/ServiceMonitor-matrix-synapse-valkey.yaml @@ -6,7 +6,7 @@ metadata: helm.sh/chart: valkey-0.9.4 app.kubernetes.io/name: valkey app.kubernetes.io/instance: matrix-synapse - app.kubernetes.io/version: "9.0.3" + app.kubernetes.io/version: "9.0.4" app.kubernetes.io/managed-by: Helm app.kubernetes.io/part-of: valkey app.kubernetes.io/component: service-monitor diff --git a/clusters/cl01tl/manifests/matrix-synapse/StatefulSet-matrix-synapse-valkey-hookshot.yaml b/clusters/cl01tl/manifests/matrix-synapse/StatefulSet-matrix-synapse-valkey-hookshot.yaml index faadcd275..1b34db342 100644 --- a/clusters/cl01tl/manifests/matrix-synapse/StatefulSet-matrix-synapse-valkey-hookshot.yaml +++ b/clusters/cl01tl/manifests/matrix-synapse/StatefulSet-matrix-synapse-valkey-hookshot.yaml @@ -6,7 +6,7 @@ metadata: helm.sh/chart: valkey-0.9.4 app.kubernetes.io/name: valkey-hookshot app.kubernetes.io/instance: matrix-synapse - app.kubernetes.io/version: "9.0.3" + app.kubernetes.io/version: "9.0.4" app.kubernetes.io/managed-by: Helm spec: serviceName: matrix-synapse-valkey-hookshot-headless @@ -32,7 +32,7 @@ spec: app.kubernetes.io/name: valkey-hookshot app.kubernetes.io/instance: matrix-synapse annotations: - checksum/initconfig: "aae826beaee4a88b18f654c578fef5d8" + checksum/initconfig: "232b540234890780e685c24799102e7c" spec: automountServiceAccountToken: false serviceAccountName: matrix-synapse-valkey-hookshot @@ -44,7 +44,7 @@ spec: type: RuntimeDefault initContainers: - name: matrix-synapse-valkey-hookshot-init - image: docker.io/valkey/valkey:9.0.3@sha256:3b55fbaa0cd93cf0d9d961f405e4dfcc70efe325e2d84da207a0a8e6d8fde4f9 + image: docker.io/valkey/valkey:9.0.4@sha256:8436e10bc65c94886a91d4415b6a6dfa9cb5a306fb3b996e5bb67cd2b4854193 imagePullPolicy: IfNotPresent securityContext: allowPrivilegeEscalation: false @@ -67,7 +67,7 @@ spec: mountPath: /scripts containers: - name: matrix-synapse-valkey-hookshot - image: docker.io/valkey/valkey:9.0.3@sha256:3b55fbaa0cd93cf0d9d961f405e4dfcc70efe325e2d84da207a0a8e6d8fde4f9 + image: docker.io/valkey/valkey:9.0.4@sha256:8436e10bc65c94886a91d4415b6a6dfa9cb5a306fb3b996e5bb67cd2b4854193 imagePullPolicy: IfNotPresent command: ["valkey-server"] args: ["/data/conf/valkey.conf"] diff --git a/clusters/cl01tl/manifests/matrix-synapse/StatefulSet-matrix-synapse-valkey.yaml b/clusters/cl01tl/manifests/matrix-synapse/StatefulSet-matrix-synapse-valkey.yaml index 07282de60..793340a23 100644 --- a/clusters/cl01tl/manifests/matrix-synapse/StatefulSet-matrix-synapse-valkey.yaml +++ b/clusters/cl01tl/manifests/matrix-synapse/StatefulSet-matrix-synapse-valkey.yaml @@ -6,7 +6,7 @@ metadata: helm.sh/chart: valkey-0.9.4 app.kubernetes.io/name: valkey app.kubernetes.io/instance: matrix-synapse - app.kubernetes.io/version: "9.0.3" + app.kubernetes.io/version: "9.0.4" app.kubernetes.io/managed-by: Helm spec: serviceName: matrix-synapse-valkey-headless @@ -32,7 +32,7 @@ spec: app.kubernetes.io/name: valkey app.kubernetes.io/instance: matrix-synapse annotations: - checksum/initconfig: "cc7e33d661e37e2f4bd1e87887270f67" + checksum/initconfig: "3301efde7fe4519c9f111852791c234c" spec: automountServiceAccountToken: false serviceAccountName: matrix-synapse-valkey @@ -44,7 +44,7 @@ spec: type: RuntimeDefault initContainers: - name: matrix-synapse-valkey-init - image: docker.io/valkey/valkey:9.0.3@sha256:3b55fbaa0cd93cf0d9d961f405e4dfcc70efe325e2d84da207a0a8e6d8fde4f9 + image: docker.io/valkey/valkey:9.0.4@sha256:8436e10bc65c94886a91d4415b6a6dfa9cb5a306fb3b996e5bb67cd2b4854193 imagePullPolicy: IfNotPresent securityContext: allowPrivilegeEscalation: false @@ -72,7 +72,7 @@ spec: readOnly: true containers: - name: matrix-synapse-valkey - image: docker.io/valkey/valkey:9.0.3@sha256:3b55fbaa0cd93cf0d9d961f405e4dfcc70efe325e2d84da207a0a8e6d8fde4f9 + image: docker.io/valkey/valkey:9.0.4@sha256:8436e10bc65c94886a91d4415b6a6dfa9cb5a306fb3b996e5bb67cd2b4854193 imagePullPolicy: IfNotPresent command: ["valkey-server"] args: ["/data/conf/valkey.conf"] diff --git a/clusters/cl01tl/manifests/outline/ConfigMap-outline-valkey-init-scripts.yaml b/clusters/cl01tl/manifests/outline/ConfigMap-outline-valkey-init-scripts.yaml index 77a4b9e4a..3788c287b 100644 --- a/clusters/cl01tl/manifests/outline/ConfigMap-outline-valkey-init-scripts.yaml +++ b/clusters/cl01tl/manifests/outline/ConfigMap-outline-valkey-init-scripts.yaml @@ -6,7 +6,7 @@ metadata: helm.sh/chart: valkey-0.9.4 app.kubernetes.io/name: valkey app.kubernetes.io/instance: outline - app.kubernetes.io/version: "9.0.3" + app.kubernetes.io/version: "9.0.4" app.kubernetes.io/managed-by: Helm data: init.sh: |- diff --git a/clusters/cl01tl/manifests/outline/Deployment-outline-cloudflared.yaml b/clusters/cl01tl/manifests/outline/Deployment-outline-cloudflared.yaml index 047d03606..fd2bff3e7 100644 --- a/clusters/cl01tl/manifests/outline/Deployment-outline-cloudflared.yaml +++ b/clusters/cl01tl/manifests/outline/Deployment-outline-cloudflared.yaml @@ -8,7 +8,7 @@ metadata: app.kubernetes.io/managed-by: Helm app.kubernetes.io/name: cloudflared app.kubernetes.io/version: 2026.3.0 - helm.sh/chart: cloudflared-2.7.1 + helm.sh/chart: cloudflared-3.0.0 namespace: outline spec: revisionHistoryLimit: 3 @@ -28,7 +28,7 @@ spec: app.kubernetes.io/name: cloudflared spec: enableServiceLinks: false - serviceAccountName: outline + serviceAccountName: cloudflared automountServiceAccountToken: false hostIPC: false hostNetwork: false @@ -38,8 +38,9 @@ spec: - args: - tunnel - --protocol - - http2 + - auto - --no-autoupdate + - --metrics 0.0.0.0:20241 - run - --token - $(CF_MANAGED_TUNNEL_TOKEN) diff --git a/clusters/cl01tl/manifests/outline/ExternalSecret-outline-cloudflared-secret.yaml b/clusters/cl01tl/manifests/outline/ExternalSecret-outline-cloudflared-secret.yaml index f47054b54..b7ce138cc 100644 --- a/clusters/cl01tl/manifests/outline/ExternalSecret-outline-cloudflared-secret.yaml +++ b/clusters/cl01tl/manifests/outline/ExternalSecret-outline-cloudflared-secret.yaml @@ -4,10 +4,10 @@ metadata: name: outline-cloudflared-secret namespace: outline labels: - helm.sh/chart: cloudflared-2.7.1 + helm.sh/chart: cloudflared-3.0.0 app.kubernetes.io/instance: outline app.kubernetes.io/part-of: outline - app.kubernetes.io/version: "2.7.1" + app.kubernetes.io/version: "3.0.0" app.kubernetes.io/managed-by: Helm app.kubernetes.io/name: outline-cloudflared-secret spec: diff --git a/clusters/cl01tl/manifests/outline/PodMonitor-outline-valkey.yaml b/clusters/cl01tl/manifests/outline/PodMonitor-outline-valkey.yaml index e06df64fe..f9f771179 100644 --- a/clusters/cl01tl/manifests/outline/PodMonitor-outline-valkey.yaml +++ b/clusters/cl01tl/manifests/outline/PodMonitor-outline-valkey.yaml @@ -6,7 +6,7 @@ metadata: helm.sh/chart: valkey-0.9.4 app.kubernetes.io/name: valkey app.kubernetes.io/instance: outline - app.kubernetes.io/version: "9.0.3" + app.kubernetes.io/version: "9.0.4" app.kubernetes.io/managed-by: Helm app.kubernetes.io/part-of: valkey app.kubernetes.io/component: podmonitor diff --git a/clusters/cl01tl/manifests/outline/PrometheusRule-outline-valkey.yaml b/clusters/cl01tl/manifests/outline/PrometheusRule-outline-valkey.yaml index d36aa2223..45532f94e 100644 --- a/clusters/cl01tl/manifests/outline/PrometheusRule-outline-valkey.yaml +++ b/clusters/cl01tl/manifests/outline/PrometheusRule-outline-valkey.yaml @@ -6,7 +6,7 @@ metadata: helm.sh/chart: valkey-0.9.4 app.kubernetes.io/name: valkey app.kubernetes.io/instance: outline - app.kubernetes.io/version: "9.0.3" + app.kubernetes.io/version: "9.0.4" app.kubernetes.io/managed-by: Helm app.kubernetes.io/part-of: valkey spec: diff --git a/clusters/cl01tl/manifests/outline/Service-outline-cloudflared.yaml b/clusters/cl01tl/manifests/outline/Service-outline-cloudflared.yaml new file mode 100644 index 000000000..a404f9284 --- /dev/null +++ b/clusters/cl01tl/manifests/outline/Service-outline-cloudflared.yaml @@ -0,0 +1,23 @@ +apiVersion: v1 +kind: Service +metadata: + name: outline-cloudflared + labels: + app.kubernetes.io/instance: outline + app.kubernetes.io/managed-by: Helm + app.kubernetes.io/name: cloudflared + app.kubernetes.io/service: outline-cloudflared + app.kubernetes.io/version: 2026.3.0 + helm.sh/chart: cloudflared-3.0.0 + namespace: outline +spec: + type: ClusterIP + ports: + - port: 20241 + targetPort: 20241 + protocol: TCP + name: metrics + selector: + app.kubernetes.io/controller: main + app.kubernetes.io/instance: outline + app.kubernetes.io/name: cloudflared diff --git a/clusters/cl01tl/manifests/outline/Service-outline-valkey-headless.yaml b/clusters/cl01tl/manifests/outline/Service-outline-valkey-headless.yaml index 1a2c77c1c..7b4a29f92 100644 --- a/clusters/cl01tl/manifests/outline/Service-outline-valkey-headless.yaml +++ b/clusters/cl01tl/manifests/outline/Service-outline-valkey-headless.yaml @@ -6,7 +6,7 @@ metadata: helm.sh/chart: valkey-0.9.4 app.kubernetes.io/name: valkey app.kubernetes.io/instance: outline - app.kubernetes.io/version: "9.0.3" + app.kubernetes.io/version: "9.0.4" app.kubernetes.io/managed-by: Helm app.kubernetes.io/component: headless spec: diff --git a/clusters/cl01tl/manifests/outline/Service-outline-valkey-metrics.yaml b/clusters/cl01tl/manifests/outline/Service-outline-valkey-metrics.yaml index cff898148..aadbcbe02 100644 --- a/clusters/cl01tl/manifests/outline/Service-outline-valkey-metrics.yaml +++ b/clusters/cl01tl/manifests/outline/Service-outline-valkey-metrics.yaml @@ -6,7 +6,7 @@ metadata: helm.sh/chart: valkey-0.9.4 app.kubernetes.io/name: valkey app.kubernetes.io/instance: outline - app.kubernetes.io/version: "9.0.3" + app.kubernetes.io/version: "9.0.4" app.kubernetes.io/managed-by: Helm app.kubernetes.io/component: metrics app.kubernetes.io/part-of: valkey diff --git a/clusters/cl01tl/manifests/outline/Service-outline-valkey-read.yaml b/clusters/cl01tl/manifests/outline/Service-outline-valkey-read.yaml index 531bd0a38..a60fe4bfc 100644 --- a/clusters/cl01tl/manifests/outline/Service-outline-valkey-read.yaml +++ b/clusters/cl01tl/manifests/outline/Service-outline-valkey-read.yaml @@ -6,7 +6,7 @@ metadata: helm.sh/chart: valkey-0.9.4 app.kubernetes.io/name: valkey app.kubernetes.io/instance: outline - app.kubernetes.io/version: "9.0.3" + app.kubernetes.io/version: "9.0.4" app.kubernetes.io/managed-by: Helm app.kubernetes.io/component: read spec: diff --git a/clusters/cl01tl/manifests/outline/Service-outline-valkey.yaml b/clusters/cl01tl/manifests/outline/Service-outline-valkey.yaml index c35a018ba..6bc308b3b 100644 --- a/clusters/cl01tl/manifests/outline/Service-outline-valkey.yaml +++ b/clusters/cl01tl/manifests/outline/Service-outline-valkey.yaml @@ -6,7 +6,7 @@ metadata: helm.sh/chart: valkey-0.9.4 app.kubernetes.io/name: valkey app.kubernetes.io/instance: outline - app.kubernetes.io/version: "9.0.3" + app.kubernetes.io/version: "9.0.4" app.kubernetes.io/managed-by: Helm app.kubernetes.io/component: primary spec: diff --git a/clusters/cl01tl/manifests/outline/ServiceAccount-outline-cloudflared.yaml b/clusters/cl01tl/manifests/outline/ServiceAccount-outline-cloudflared.yaml index c5eb02f43..13587a63f 100644 --- a/clusters/cl01tl/manifests/outline/ServiceAccount-outline-cloudflared.yaml +++ b/clusters/cl01tl/manifests/outline/ServiceAccount-outline-cloudflared.yaml @@ -7,5 +7,5 @@ metadata: app.kubernetes.io/managed-by: Helm app.kubernetes.io/name: cloudflared app.kubernetes.io/version: 2026.3.0 - helm.sh/chart: cloudflared-2.7.1 + helm.sh/chart: cloudflared-3.0.0 namespace: outline diff --git a/clusters/cl01tl/manifests/outline/ServiceAccount-outline-valkey.yaml b/clusters/cl01tl/manifests/outline/ServiceAccount-outline-valkey.yaml index 8823219c2..944c3ae48 100644 --- a/clusters/cl01tl/manifests/outline/ServiceAccount-outline-valkey.yaml +++ b/clusters/cl01tl/manifests/outline/ServiceAccount-outline-valkey.yaml @@ -6,6 +6,6 @@ metadata: helm.sh/chart: valkey-0.9.4 app.kubernetes.io/name: valkey app.kubernetes.io/instance: outline - app.kubernetes.io/version: "9.0.3" + app.kubernetes.io/version: "9.0.4" app.kubernetes.io/managed-by: Helm automountServiceAccountToken: false diff --git a/clusters/cl01tl/manifests/outline/ServiceMonitor-outline-cloudflared.yaml b/clusters/cl01tl/manifests/outline/ServiceMonitor-outline-cloudflared.yaml new file mode 100644 index 000000000..e2cddc5d5 --- /dev/null +++ b/clusters/cl01tl/manifests/outline/ServiceMonitor-outline-cloudflared.yaml @@ -0,0 +1,25 @@ +apiVersion: monitoring.coreos.com/v1 +kind: ServiceMonitor +metadata: + name: outline-cloudflared + labels: + app.kubernetes.io/instance: outline + app.kubernetes.io/managed-by: Helm + app.kubernetes.io/name: cloudflared + app.kubernetes.io/version: 2026.3.0 + helm.sh/chart: cloudflared-3.0.0 + namespace: outline +spec: + jobLabel: app.kubernetes.io/name + namespaceSelector: + matchNames: + - outline + selector: + matchLabels: + app.kubernetes.io/instance: cloudflared + app.kubernetes.io/name: cloudflared + endpoints: + - interval: 30s + path: /metrics + port: metrics + scrapeTimeout: 10s diff --git a/clusters/cl01tl/manifests/outline/ServiceMonitor-outline-valkey.yaml b/clusters/cl01tl/manifests/outline/ServiceMonitor-outline-valkey.yaml index c1d63e9f5..9e84a9df4 100644 --- a/clusters/cl01tl/manifests/outline/ServiceMonitor-outline-valkey.yaml +++ b/clusters/cl01tl/manifests/outline/ServiceMonitor-outline-valkey.yaml @@ -6,7 +6,7 @@ metadata: helm.sh/chart: valkey-0.9.4 app.kubernetes.io/name: valkey app.kubernetes.io/instance: outline - app.kubernetes.io/version: "9.0.3" + app.kubernetes.io/version: "9.0.4" app.kubernetes.io/managed-by: Helm app.kubernetes.io/part-of: valkey app.kubernetes.io/component: service-monitor diff --git a/clusters/cl01tl/manifests/outline/StatefulSet-outline-valkey.yaml b/clusters/cl01tl/manifests/outline/StatefulSet-outline-valkey.yaml index c2c271b58..c43e225e8 100644 --- a/clusters/cl01tl/manifests/outline/StatefulSet-outline-valkey.yaml +++ b/clusters/cl01tl/manifests/outline/StatefulSet-outline-valkey.yaml @@ -6,7 +6,7 @@ metadata: helm.sh/chart: valkey-0.9.4 app.kubernetes.io/name: valkey app.kubernetes.io/instance: outline - app.kubernetes.io/version: "9.0.3" + app.kubernetes.io/version: "9.0.4" app.kubernetes.io/managed-by: Helm spec: serviceName: outline-valkey-headless @@ -32,7 +32,7 @@ spec: app.kubernetes.io/name: valkey app.kubernetes.io/instance: outline annotations: - checksum/initconfig: "0a5b3b29bae26fff2ec6bf40b597d4a8" + checksum/initconfig: "a7c3ea7998cec861ebbe711eeb16a827" spec: automountServiceAccountToken: false serviceAccountName: outline-valkey @@ -44,7 +44,7 @@ spec: type: RuntimeDefault initContainers: - name: outline-valkey-init - image: docker.io/valkey/valkey:9.0.3@sha256:3b55fbaa0cd93cf0d9d961f405e4dfcc70efe325e2d84da207a0a8e6d8fde4f9 + image: docker.io/valkey/valkey:9.0.4@sha256:8436e10bc65c94886a91d4415b6a6dfa9cb5a306fb3b996e5bb67cd2b4854193 imagePullPolicy: IfNotPresent securityContext: allowPrivilegeEscalation: false @@ -67,7 +67,7 @@ spec: mountPath: /scripts containers: - name: outline-valkey - image: docker.io/valkey/valkey:9.0.3@sha256:3b55fbaa0cd93cf0d9d961f405e4dfcc70efe325e2d84da207a0a8e6d8fde4f9 + image: docker.io/valkey/valkey:9.0.4@sha256:8436e10bc65c94886a91d4415b6a6dfa9cb5a306fb3b996e5bb67cd2b4854193 imagePullPolicy: IfNotPresent command: ["valkey-server"] args: ["/data/conf/valkey.conf"] diff --git a/clusters/cl01tl/manifests/postiz/ConfigMap-postiz-valkey-init-scripts.yaml b/clusters/cl01tl/manifests/postiz/ConfigMap-postiz-valkey-init-scripts.yaml index 634f7b2c4..71ec1a99e 100644 --- a/clusters/cl01tl/manifests/postiz/ConfigMap-postiz-valkey-init-scripts.yaml +++ b/clusters/cl01tl/manifests/postiz/ConfigMap-postiz-valkey-init-scripts.yaml @@ -6,7 +6,7 @@ metadata: helm.sh/chart: valkey-0.9.4 app.kubernetes.io/name: valkey app.kubernetes.io/instance: postiz - app.kubernetes.io/version: "9.0.3" + app.kubernetes.io/version: "9.0.4" app.kubernetes.io/managed-by: Helm data: init.sh: |- diff --git a/clusters/cl01tl/manifests/postiz/Deployment-postiz-cloudflared.yaml b/clusters/cl01tl/manifests/postiz/Deployment-postiz-cloudflared.yaml index 94d94957d..0bbe07c72 100644 --- a/clusters/cl01tl/manifests/postiz/Deployment-postiz-cloudflared.yaml +++ b/clusters/cl01tl/manifests/postiz/Deployment-postiz-cloudflared.yaml @@ -8,7 +8,7 @@ metadata: app.kubernetes.io/managed-by: Helm app.kubernetes.io/name: cloudflared app.kubernetes.io/version: 2026.3.0 - helm.sh/chart: cloudflared-2.7.1 + helm.sh/chart: cloudflared-3.0.0 namespace: postiz spec: revisionHistoryLimit: 3 @@ -28,7 +28,7 @@ spec: app.kubernetes.io/name: cloudflared spec: enableServiceLinks: false - serviceAccountName: postiz + serviceAccountName: cloudflared automountServiceAccountToken: false hostIPC: false hostNetwork: false @@ -38,8 +38,9 @@ spec: - args: - tunnel - --protocol - - http2 + - auto - --no-autoupdate + - --metrics 0.0.0.0:20241 - run - --token - $(CF_MANAGED_TUNNEL_TOKEN) diff --git a/clusters/cl01tl/manifests/postiz/ExternalSecret-postiz-cloudflared-secret.yaml b/clusters/cl01tl/manifests/postiz/ExternalSecret-postiz-cloudflared-secret.yaml index 648552e96..edf0900df 100644 --- a/clusters/cl01tl/manifests/postiz/ExternalSecret-postiz-cloudflared-secret.yaml +++ b/clusters/cl01tl/manifests/postiz/ExternalSecret-postiz-cloudflared-secret.yaml @@ -4,10 +4,10 @@ metadata: name: postiz-cloudflared-secret namespace: postiz labels: - helm.sh/chart: cloudflared-2.7.1 + helm.sh/chart: cloudflared-3.0.0 app.kubernetes.io/instance: postiz app.kubernetes.io/part-of: postiz - app.kubernetes.io/version: "2.7.1" + app.kubernetes.io/version: "3.0.0" app.kubernetes.io/managed-by: Helm app.kubernetes.io/name: postiz-cloudflared-secret spec: diff --git a/clusters/cl01tl/manifests/postiz/Pod-postiz-valkey-test-auth-existing.yaml b/clusters/cl01tl/manifests/postiz/Pod-postiz-valkey-test-auth-existing.yaml index e87dcfca4..6e9b197f2 100644 --- a/clusters/cl01tl/manifests/postiz/Pod-postiz-valkey-test-auth-existing.yaml +++ b/clusters/cl01tl/manifests/postiz/Pod-postiz-valkey-test-auth-existing.yaml @@ -6,7 +6,7 @@ metadata: helm.sh/chart: valkey-0.9.4 app.kubernetes.io/name: valkey app.kubernetes.io/instance: postiz - app.kubernetes.io/version: "9.0.3" + app.kubernetes.io/version: "9.0.4" app.kubernetes.io/managed-by: Helm annotations: "helm.sh/hook": test @@ -15,7 +15,7 @@ spec: restartPolicy: Never containers: - name: test-auth - image: "docker.io/valkey/valkey:9.0.3@sha256:3b55fbaa0cd93cf0d9d961f405e4dfcc70efe325e2d84da207a0a8e6d8fde4f9" + image: "docker.io/valkey/valkey:9.0.4@sha256:8436e10bc65c94886a91d4415b6a6dfa9cb5a306fb3b996e5bb67cd2b4854193" command: - sh - -c diff --git a/clusters/cl01tl/manifests/postiz/PodMonitor-postiz-valkey.yaml b/clusters/cl01tl/manifests/postiz/PodMonitor-postiz-valkey.yaml index b41466b6e..0b2e3e126 100644 --- a/clusters/cl01tl/manifests/postiz/PodMonitor-postiz-valkey.yaml +++ b/clusters/cl01tl/manifests/postiz/PodMonitor-postiz-valkey.yaml @@ -6,7 +6,7 @@ metadata: helm.sh/chart: valkey-0.9.4 app.kubernetes.io/name: valkey app.kubernetes.io/instance: postiz - app.kubernetes.io/version: "9.0.3" + app.kubernetes.io/version: "9.0.4" app.kubernetes.io/managed-by: Helm app.kubernetes.io/part-of: valkey app.kubernetes.io/component: podmonitor diff --git a/clusters/cl01tl/manifests/postiz/PrometheusRule-postiz-valkey.yaml b/clusters/cl01tl/manifests/postiz/PrometheusRule-postiz-valkey.yaml index ba5811c2e..2b69d05e0 100644 --- a/clusters/cl01tl/manifests/postiz/PrometheusRule-postiz-valkey.yaml +++ b/clusters/cl01tl/manifests/postiz/PrometheusRule-postiz-valkey.yaml @@ -6,7 +6,7 @@ metadata: helm.sh/chart: valkey-0.9.4 app.kubernetes.io/name: valkey app.kubernetes.io/instance: postiz - app.kubernetes.io/version: "9.0.3" + app.kubernetes.io/version: "9.0.4" app.kubernetes.io/managed-by: Helm app.kubernetes.io/part-of: valkey spec: diff --git a/clusters/cl01tl/manifests/postiz/Service-postiz-cloudflared.yaml b/clusters/cl01tl/manifests/postiz/Service-postiz-cloudflared.yaml new file mode 100644 index 000000000..2c3b0506b --- /dev/null +++ b/clusters/cl01tl/manifests/postiz/Service-postiz-cloudflared.yaml @@ -0,0 +1,23 @@ +apiVersion: v1 +kind: Service +metadata: + name: postiz-cloudflared + labels: + app.kubernetes.io/instance: postiz + app.kubernetes.io/managed-by: Helm + app.kubernetes.io/name: cloudflared + app.kubernetes.io/service: postiz-cloudflared + app.kubernetes.io/version: 2026.3.0 + helm.sh/chart: cloudflared-3.0.0 + namespace: postiz +spec: + type: ClusterIP + ports: + - port: 20241 + targetPort: 20241 + protocol: TCP + name: metrics + selector: + app.kubernetes.io/controller: main + app.kubernetes.io/instance: postiz + app.kubernetes.io/name: cloudflared diff --git a/clusters/cl01tl/manifests/postiz/Service-postiz-valkey-headless.yaml b/clusters/cl01tl/manifests/postiz/Service-postiz-valkey-headless.yaml index 93265442c..4e5e8ac18 100644 --- a/clusters/cl01tl/manifests/postiz/Service-postiz-valkey-headless.yaml +++ b/clusters/cl01tl/manifests/postiz/Service-postiz-valkey-headless.yaml @@ -6,7 +6,7 @@ metadata: helm.sh/chart: valkey-0.9.4 app.kubernetes.io/name: valkey app.kubernetes.io/instance: postiz - app.kubernetes.io/version: "9.0.3" + app.kubernetes.io/version: "9.0.4" app.kubernetes.io/managed-by: Helm app.kubernetes.io/component: headless spec: diff --git a/clusters/cl01tl/manifests/postiz/Service-postiz-valkey-metrics.yaml b/clusters/cl01tl/manifests/postiz/Service-postiz-valkey-metrics.yaml index 2c3e4fa95..6a1f886e1 100644 --- a/clusters/cl01tl/manifests/postiz/Service-postiz-valkey-metrics.yaml +++ b/clusters/cl01tl/manifests/postiz/Service-postiz-valkey-metrics.yaml @@ -6,7 +6,7 @@ metadata: helm.sh/chart: valkey-0.9.4 app.kubernetes.io/name: valkey app.kubernetes.io/instance: postiz - app.kubernetes.io/version: "9.0.3" + app.kubernetes.io/version: "9.0.4" app.kubernetes.io/managed-by: Helm app.kubernetes.io/component: metrics app.kubernetes.io/part-of: valkey diff --git a/clusters/cl01tl/manifests/postiz/Service-postiz-valkey-read.yaml b/clusters/cl01tl/manifests/postiz/Service-postiz-valkey-read.yaml index 3f13d7e89..cef571473 100644 --- a/clusters/cl01tl/manifests/postiz/Service-postiz-valkey-read.yaml +++ b/clusters/cl01tl/manifests/postiz/Service-postiz-valkey-read.yaml @@ -6,7 +6,7 @@ metadata: helm.sh/chart: valkey-0.9.4 app.kubernetes.io/name: valkey app.kubernetes.io/instance: postiz - app.kubernetes.io/version: "9.0.3" + app.kubernetes.io/version: "9.0.4" app.kubernetes.io/managed-by: Helm app.kubernetes.io/component: read spec: diff --git a/clusters/cl01tl/manifests/postiz/Service-postiz-valkey.yaml b/clusters/cl01tl/manifests/postiz/Service-postiz-valkey.yaml index 071e0ca02..93adfca3a 100644 --- a/clusters/cl01tl/manifests/postiz/Service-postiz-valkey.yaml +++ b/clusters/cl01tl/manifests/postiz/Service-postiz-valkey.yaml @@ -6,7 +6,7 @@ metadata: helm.sh/chart: valkey-0.9.4 app.kubernetes.io/name: valkey app.kubernetes.io/instance: postiz - app.kubernetes.io/version: "9.0.3" + app.kubernetes.io/version: "9.0.4" app.kubernetes.io/managed-by: Helm app.kubernetes.io/component: primary spec: diff --git a/clusters/cl01tl/manifests/postiz/ServiceAccount-postiz-cloudflared.yaml b/clusters/cl01tl/manifests/postiz/ServiceAccount-postiz-cloudflared.yaml index d67610346..56f0ec0c9 100644 --- a/clusters/cl01tl/manifests/postiz/ServiceAccount-postiz-cloudflared.yaml +++ b/clusters/cl01tl/manifests/postiz/ServiceAccount-postiz-cloudflared.yaml @@ -7,5 +7,5 @@ metadata: app.kubernetes.io/managed-by: Helm app.kubernetes.io/name: cloudflared app.kubernetes.io/version: 2026.3.0 - helm.sh/chart: cloudflared-2.7.1 + helm.sh/chart: cloudflared-3.0.0 namespace: postiz diff --git a/clusters/cl01tl/manifests/postiz/ServiceAccount-postiz-valkey.yaml b/clusters/cl01tl/manifests/postiz/ServiceAccount-postiz-valkey.yaml index b259acdde..9b30fd0a6 100644 --- a/clusters/cl01tl/manifests/postiz/ServiceAccount-postiz-valkey.yaml +++ b/clusters/cl01tl/manifests/postiz/ServiceAccount-postiz-valkey.yaml @@ -6,6 +6,6 @@ metadata: helm.sh/chart: valkey-0.9.4 app.kubernetes.io/name: valkey app.kubernetes.io/instance: postiz - app.kubernetes.io/version: "9.0.3" + app.kubernetes.io/version: "9.0.4" app.kubernetes.io/managed-by: Helm automountServiceAccountToken: false diff --git a/clusters/cl01tl/manifests/postiz/ServiceMonitor-postiz-cloudflared.yaml b/clusters/cl01tl/manifests/postiz/ServiceMonitor-postiz-cloudflared.yaml new file mode 100644 index 000000000..deca8f465 --- /dev/null +++ b/clusters/cl01tl/manifests/postiz/ServiceMonitor-postiz-cloudflared.yaml @@ -0,0 +1,25 @@ +apiVersion: monitoring.coreos.com/v1 +kind: ServiceMonitor +metadata: + name: postiz-cloudflared + labels: + app.kubernetes.io/instance: postiz + app.kubernetes.io/managed-by: Helm + app.kubernetes.io/name: cloudflared + app.kubernetes.io/version: 2026.3.0 + helm.sh/chart: cloudflared-3.0.0 + namespace: postiz +spec: + jobLabel: app.kubernetes.io/name + namespaceSelector: + matchNames: + - postiz + selector: + matchLabels: + app.kubernetes.io/instance: cloudflared + app.kubernetes.io/name: cloudflared + endpoints: + - interval: 30s + path: /metrics + port: metrics + scrapeTimeout: 10s diff --git a/clusters/cl01tl/manifests/postiz/ServiceMonitor-postiz-valkey.yaml b/clusters/cl01tl/manifests/postiz/ServiceMonitor-postiz-valkey.yaml index 5391c1bda..80e5f7124 100644 --- a/clusters/cl01tl/manifests/postiz/ServiceMonitor-postiz-valkey.yaml +++ b/clusters/cl01tl/manifests/postiz/ServiceMonitor-postiz-valkey.yaml @@ -6,7 +6,7 @@ metadata: helm.sh/chart: valkey-0.9.4 app.kubernetes.io/name: valkey app.kubernetes.io/instance: postiz - app.kubernetes.io/version: "9.0.3" + app.kubernetes.io/version: "9.0.4" app.kubernetes.io/managed-by: Helm app.kubernetes.io/part-of: valkey app.kubernetes.io/component: service-monitor diff --git a/clusters/cl01tl/manifests/postiz/StatefulSet-postiz-valkey.yaml b/clusters/cl01tl/manifests/postiz/StatefulSet-postiz-valkey.yaml index 25b473e27..79418e9f5 100644 --- a/clusters/cl01tl/manifests/postiz/StatefulSet-postiz-valkey.yaml +++ b/clusters/cl01tl/manifests/postiz/StatefulSet-postiz-valkey.yaml @@ -6,7 +6,7 @@ metadata: helm.sh/chart: valkey-0.9.4 app.kubernetes.io/name: valkey app.kubernetes.io/instance: postiz - app.kubernetes.io/version: "9.0.3" + app.kubernetes.io/version: "9.0.4" app.kubernetes.io/managed-by: Helm spec: serviceName: postiz-valkey-headless @@ -32,7 +32,7 @@ spec: app.kubernetes.io/name: valkey app.kubernetes.io/instance: postiz annotations: - checksum/initconfig: "44286185ea84e0ac0e4c081efb4760b3" + checksum/initconfig: "3aa5443bdf3944b428d29db33aca2d63" spec: automountServiceAccountToken: false serviceAccountName: postiz-valkey @@ -44,7 +44,7 @@ spec: type: RuntimeDefault initContainers: - name: postiz-valkey-init - image: docker.io/valkey/valkey:9.0.3@sha256:3b55fbaa0cd93cf0d9d961f405e4dfcc70efe325e2d84da207a0a8e6d8fde4f9 + image: docker.io/valkey/valkey:9.0.4@sha256:8436e10bc65c94886a91d4415b6a6dfa9cb5a306fb3b996e5bb67cd2b4854193 imagePullPolicy: IfNotPresent securityContext: allowPrivilegeEscalation: false @@ -72,7 +72,7 @@ spec: readOnly: true containers: - name: postiz-valkey - image: docker.io/valkey/valkey:9.0.3@sha256:3b55fbaa0cd93cf0d9d961f405e4dfcc70efe325e2d84da207a0a8e6d8fde4f9 + image: docker.io/valkey/valkey:9.0.4@sha256:8436e10bc65c94886a91d4415b6a6dfa9cb5a306fb3b996e5bb67cd2b4854193 imagePullPolicy: IfNotPresent command: ["valkey-server"] args: ["/data/conf/valkey.conf"] diff --git a/clusters/cl01tl/manifests/rybbit/Deployment-rybbit-cloudflared.yaml b/clusters/cl01tl/manifests/rybbit/Deployment-rybbit-cloudflared.yaml index bdabd5f77..c22b59eb6 100644 --- a/clusters/cl01tl/manifests/rybbit/Deployment-rybbit-cloudflared.yaml +++ b/clusters/cl01tl/manifests/rybbit/Deployment-rybbit-cloudflared.yaml @@ -8,7 +8,7 @@ metadata: app.kubernetes.io/managed-by: Helm app.kubernetes.io/name: cloudflared app.kubernetes.io/version: 2026.3.0 - helm.sh/chart: cloudflared-2.7.1 + helm.sh/chart: cloudflared-3.0.0 namespace: rybbit spec: revisionHistoryLimit: 3 @@ -28,7 +28,7 @@ spec: app.kubernetes.io/name: cloudflared spec: enableServiceLinks: false - serviceAccountName: rybbit + serviceAccountName: cloudflared automountServiceAccountToken: false hostIPC: false hostNetwork: false @@ -38,8 +38,9 @@ spec: - args: - tunnel - --protocol - - http2 + - auto - --no-autoupdate + - --metrics 0.0.0.0:20241 - run - --token - $(CF_MANAGED_TUNNEL_TOKEN) diff --git a/clusters/cl01tl/manifests/rybbit/ExternalSecret-rybbit-cloudflared-secret.yaml b/clusters/cl01tl/manifests/rybbit/ExternalSecret-rybbit-cloudflared-secret.yaml index 8d5ece5d0..6b1b36d01 100644 --- a/clusters/cl01tl/manifests/rybbit/ExternalSecret-rybbit-cloudflared-secret.yaml +++ b/clusters/cl01tl/manifests/rybbit/ExternalSecret-rybbit-cloudflared-secret.yaml @@ -4,10 +4,10 @@ metadata: name: rybbit-cloudflared-secret namespace: rybbit labels: - helm.sh/chart: cloudflared-2.7.1 + helm.sh/chart: cloudflared-3.0.0 app.kubernetes.io/instance: rybbit app.kubernetes.io/part-of: rybbit - app.kubernetes.io/version: "2.7.1" + app.kubernetes.io/version: "3.0.0" app.kubernetes.io/managed-by: Helm app.kubernetes.io/name: rybbit-cloudflared-secret spec: diff --git a/clusters/cl01tl/manifests/rybbit/Service-rybbit-cloudflared.yaml b/clusters/cl01tl/manifests/rybbit/Service-rybbit-cloudflared.yaml new file mode 100644 index 000000000..c576596af --- /dev/null +++ b/clusters/cl01tl/manifests/rybbit/Service-rybbit-cloudflared.yaml @@ -0,0 +1,23 @@ +apiVersion: v1 +kind: Service +metadata: + name: rybbit-cloudflared + labels: + app.kubernetes.io/instance: rybbit + app.kubernetes.io/managed-by: Helm + app.kubernetes.io/name: cloudflared + app.kubernetes.io/service: rybbit-cloudflared + app.kubernetes.io/version: 2026.3.0 + helm.sh/chart: cloudflared-3.0.0 + namespace: rybbit +spec: + type: ClusterIP + ports: + - port: 20241 + targetPort: 20241 + protocol: TCP + name: metrics + selector: + app.kubernetes.io/controller: main + app.kubernetes.io/instance: rybbit + app.kubernetes.io/name: cloudflared diff --git a/clusters/cl01tl/manifests/rybbit/ServiceAccount-rybbit-cloudflared.yaml b/clusters/cl01tl/manifests/rybbit/ServiceAccount-rybbit-cloudflared.yaml index 47788408d..89a37f509 100644 --- a/clusters/cl01tl/manifests/rybbit/ServiceAccount-rybbit-cloudflared.yaml +++ b/clusters/cl01tl/manifests/rybbit/ServiceAccount-rybbit-cloudflared.yaml @@ -7,5 +7,5 @@ metadata: app.kubernetes.io/managed-by: Helm app.kubernetes.io/name: cloudflared app.kubernetes.io/version: 2026.3.0 - helm.sh/chart: cloudflared-2.7.1 + helm.sh/chart: cloudflared-3.0.0 namespace: rybbit diff --git a/clusters/cl01tl/manifests/rybbit/ServiceMonitor-rybbit-cloudflared.yaml b/clusters/cl01tl/manifests/rybbit/ServiceMonitor-rybbit-cloudflared.yaml new file mode 100644 index 000000000..916a93786 --- /dev/null +++ b/clusters/cl01tl/manifests/rybbit/ServiceMonitor-rybbit-cloudflared.yaml @@ -0,0 +1,25 @@ +apiVersion: monitoring.coreos.com/v1 +kind: ServiceMonitor +metadata: + name: rybbit-cloudflared + labels: + app.kubernetes.io/instance: rybbit + app.kubernetes.io/managed-by: Helm + app.kubernetes.io/name: cloudflared + app.kubernetes.io/version: 2026.3.0 + helm.sh/chart: cloudflared-3.0.0 + namespace: rybbit +spec: + jobLabel: app.kubernetes.io/name + namespaceSelector: + matchNames: + - rybbit + selector: + matchLabels: + app.kubernetes.io/instance: cloudflared + app.kubernetes.io/name: cloudflared + endpoints: + - interval: 30s + path: /metrics + port: metrics + scrapeTimeout: 10s diff --git a/clusters/cl01tl/manifests/site-documentation/Deployment-site-documentation-cloudflared.yaml b/clusters/cl01tl/manifests/site-documentation/Deployment-site-documentation-cloudflared.yaml index 57badf9b9..b0dd753e7 100644 --- a/clusters/cl01tl/manifests/site-documentation/Deployment-site-documentation-cloudflared.yaml +++ b/clusters/cl01tl/manifests/site-documentation/Deployment-site-documentation-cloudflared.yaml @@ -8,7 +8,7 @@ metadata: app.kubernetes.io/managed-by: Helm app.kubernetes.io/name: cloudflared app.kubernetes.io/version: 2026.3.0 - helm.sh/chart: cloudflared-2.7.1 + helm.sh/chart: cloudflared-3.0.0 namespace: site-documentation spec: revisionHistoryLimit: 3 @@ -28,7 +28,7 @@ spec: app.kubernetes.io/name: cloudflared spec: enableServiceLinks: false - serviceAccountName: site-documentation + serviceAccountName: cloudflared automountServiceAccountToken: false hostIPC: false hostNetwork: false @@ -38,8 +38,9 @@ spec: - args: - tunnel - --protocol - - http2 + - auto - --no-autoupdate + - --metrics 0.0.0.0:20241 - run - --token - $(CF_MANAGED_TUNNEL_TOKEN) diff --git a/clusters/cl01tl/manifests/site-documentation/ExternalSecret-site-documentation-cloudflared-secret.yaml b/clusters/cl01tl/manifests/site-documentation/ExternalSecret-site-documentation-cloudflared-secret.yaml index 6dd40ee79..4bb9b03c0 100644 --- a/clusters/cl01tl/manifests/site-documentation/ExternalSecret-site-documentation-cloudflared-secret.yaml +++ b/clusters/cl01tl/manifests/site-documentation/ExternalSecret-site-documentation-cloudflared-secret.yaml @@ -4,10 +4,10 @@ metadata: name: site-documentation-cloudflared-secret namespace: site-documentation labels: - helm.sh/chart: cloudflared-2.7.1 + helm.sh/chart: cloudflared-3.0.0 app.kubernetes.io/instance: site-documentation app.kubernetes.io/part-of: site-documentation - app.kubernetes.io/version: "2.7.1" + app.kubernetes.io/version: "3.0.0" app.kubernetes.io/managed-by: Helm app.kubernetes.io/name: site-documentation-cloudflared-secret spec: diff --git a/clusters/cl01tl/manifests/site-documentation/Service-site-documentation-cloudflared.yaml b/clusters/cl01tl/manifests/site-documentation/Service-site-documentation-cloudflared.yaml new file mode 100644 index 000000000..e8de81a3a --- /dev/null +++ b/clusters/cl01tl/manifests/site-documentation/Service-site-documentation-cloudflared.yaml @@ -0,0 +1,23 @@ +apiVersion: v1 +kind: Service +metadata: + name: site-documentation-cloudflared + labels: + app.kubernetes.io/instance: site-documentation + app.kubernetes.io/managed-by: Helm + app.kubernetes.io/name: cloudflared + app.kubernetes.io/service: site-documentation-cloudflared + app.kubernetes.io/version: 2026.3.0 + helm.sh/chart: cloudflared-3.0.0 + namespace: site-documentation +spec: + type: ClusterIP + ports: + - port: 20241 + targetPort: 20241 + protocol: TCP + name: metrics + selector: + app.kubernetes.io/controller: main + app.kubernetes.io/instance: site-documentation + app.kubernetes.io/name: cloudflared diff --git a/clusters/cl01tl/manifests/site-documentation/ServiceAccount-site-documentation-cloudflared.yaml b/clusters/cl01tl/manifests/site-documentation/ServiceAccount-site-documentation-cloudflared.yaml index 3e8966dd6..fcb4ebca8 100644 --- a/clusters/cl01tl/manifests/site-documentation/ServiceAccount-site-documentation-cloudflared.yaml +++ b/clusters/cl01tl/manifests/site-documentation/ServiceAccount-site-documentation-cloudflared.yaml @@ -7,5 +7,5 @@ metadata: app.kubernetes.io/managed-by: Helm app.kubernetes.io/name: cloudflared app.kubernetes.io/version: 2026.3.0 - helm.sh/chart: cloudflared-2.7.1 + helm.sh/chart: cloudflared-3.0.0 namespace: site-documentation diff --git a/clusters/cl01tl/manifests/site-documentation/ServiceMonitor-site-documentation-cloudflared.yaml b/clusters/cl01tl/manifests/site-documentation/ServiceMonitor-site-documentation-cloudflared.yaml new file mode 100644 index 000000000..cd0ccc7cf --- /dev/null +++ b/clusters/cl01tl/manifests/site-documentation/ServiceMonitor-site-documentation-cloudflared.yaml @@ -0,0 +1,25 @@ +apiVersion: monitoring.coreos.com/v1 +kind: ServiceMonitor +metadata: + name: site-documentation-cloudflared + labels: + app.kubernetes.io/instance: site-documentation + app.kubernetes.io/managed-by: Helm + app.kubernetes.io/name: cloudflared + app.kubernetes.io/version: 2026.3.0 + helm.sh/chart: cloudflared-3.0.0 + namespace: site-documentation +spec: + jobLabel: app.kubernetes.io/name + namespaceSelector: + matchNames: + - site-documentation + selector: + matchLabels: + app.kubernetes.io/instance: cloudflared + app.kubernetes.io/name: cloudflared + endpoints: + - interval: 30s + path: /metrics + port: metrics + scrapeTimeout: 10s diff --git a/clusters/cl01tl/manifests/site-profile/Deployment-site-profile-cloudflared.yaml b/clusters/cl01tl/manifests/site-profile/Deployment-site-profile-cloudflared.yaml index 257c2028c..cd57bbf1e 100644 --- a/clusters/cl01tl/manifests/site-profile/Deployment-site-profile-cloudflared.yaml +++ b/clusters/cl01tl/manifests/site-profile/Deployment-site-profile-cloudflared.yaml @@ -8,7 +8,7 @@ metadata: app.kubernetes.io/managed-by: Helm app.kubernetes.io/name: cloudflared app.kubernetes.io/version: 2026.3.0 - helm.sh/chart: cloudflared-2.7.1 + helm.sh/chart: cloudflared-3.0.0 namespace: site-profile spec: revisionHistoryLimit: 3 @@ -28,7 +28,7 @@ spec: app.kubernetes.io/name: cloudflared spec: enableServiceLinks: false - serviceAccountName: site-profile + serviceAccountName: cloudflared automountServiceAccountToken: false hostIPC: false hostNetwork: false @@ -38,8 +38,9 @@ spec: - args: - tunnel - --protocol - - http2 + - auto - --no-autoupdate + - --metrics 0.0.0.0:20241 - run - --token - $(CF_MANAGED_TUNNEL_TOKEN) diff --git a/clusters/cl01tl/manifests/site-profile/ExternalSecret-site-profile-cloudflared-secret.yaml b/clusters/cl01tl/manifests/site-profile/ExternalSecret-site-profile-cloudflared-secret.yaml index 4d77a5bbb..ca81953e4 100644 --- a/clusters/cl01tl/manifests/site-profile/ExternalSecret-site-profile-cloudflared-secret.yaml +++ b/clusters/cl01tl/manifests/site-profile/ExternalSecret-site-profile-cloudflared-secret.yaml @@ -4,10 +4,10 @@ metadata: name: site-profile-cloudflared-secret namespace: site-profile labels: - helm.sh/chart: cloudflared-2.7.1 + helm.sh/chart: cloudflared-3.0.0 app.kubernetes.io/instance: site-profile app.kubernetes.io/part-of: site-profile - app.kubernetes.io/version: "2.7.1" + app.kubernetes.io/version: "3.0.0" app.kubernetes.io/managed-by: Helm app.kubernetes.io/name: site-profile-cloudflared-secret spec: diff --git a/clusters/cl01tl/manifests/site-profile/Service-site-profile-cloudflared.yaml b/clusters/cl01tl/manifests/site-profile/Service-site-profile-cloudflared.yaml new file mode 100644 index 000000000..a1fb88166 --- /dev/null +++ b/clusters/cl01tl/manifests/site-profile/Service-site-profile-cloudflared.yaml @@ -0,0 +1,23 @@ +apiVersion: v1 +kind: Service +metadata: + name: site-profile-cloudflared + labels: + app.kubernetes.io/instance: site-profile + app.kubernetes.io/managed-by: Helm + app.kubernetes.io/name: cloudflared + app.kubernetes.io/service: site-profile-cloudflared + app.kubernetes.io/version: 2026.3.0 + helm.sh/chart: cloudflared-3.0.0 + namespace: site-profile +spec: + type: ClusterIP + ports: + - port: 20241 + targetPort: 20241 + protocol: TCP + name: metrics + selector: + app.kubernetes.io/controller: main + app.kubernetes.io/instance: site-profile + app.kubernetes.io/name: cloudflared diff --git a/clusters/cl01tl/manifests/site-profile/ServiceAccount-site-profile-cloudflared.yaml b/clusters/cl01tl/manifests/site-profile/ServiceAccount-site-profile-cloudflared.yaml index e977897ce..991b03b99 100644 --- a/clusters/cl01tl/manifests/site-profile/ServiceAccount-site-profile-cloudflared.yaml +++ b/clusters/cl01tl/manifests/site-profile/ServiceAccount-site-profile-cloudflared.yaml @@ -7,5 +7,5 @@ metadata: app.kubernetes.io/managed-by: Helm app.kubernetes.io/name: cloudflared app.kubernetes.io/version: 2026.3.0 - helm.sh/chart: cloudflared-2.7.1 + helm.sh/chart: cloudflared-3.0.0 namespace: site-profile diff --git a/clusters/cl01tl/manifests/site-profile/ServiceMonitor-site-profile-cloudflared.yaml b/clusters/cl01tl/manifests/site-profile/ServiceMonitor-site-profile-cloudflared.yaml new file mode 100644 index 000000000..e9963a0f8 --- /dev/null +++ b/clusters/cl01tl/manifests/site-profile/ServiceMonitor-site-profile-cloudflared.yaml @@ -0,0 +1,25 @@ +apiVersion: monitoring.coreos.com/v1 +kind: ServiceMonitor +metadata: + name: site-profile-cloudflared + labels: + app.kubernetes.io/instance: site-profile + app.kubernetes.io/managed-by: Helm + app.kubernetes.io/name: cloudflared + app.kubernetes.io/version: 2026.3.0 + helm.sh/chart: cloudflared-3.0.0 + namespace: site-profile +spec: + jobLabel: app.kubernetes.io/name + namespaceSelector: + matchNames: + - site-profile + selector: + matchLabels: + app.kubernetes.io/instance: cloudflared + app.kubernetes.io/name: cloudflared + endpoints: + - interval: 30s + path: /metrics + port: metrics + scrapeTimeout: 10s diff --git a/clusters/cl01tl/manifests/site-saralebens/Deployment-site-saralebens-cloudflared.yaml b/clusters/cl01tl/manifests/site-saralebens/Deployment-site-saralebens-cloudflared.yaml index 28961973c..5f0d224ad 100644 --- a/clusters/cl01tl/manifests/site-saralebens/Deployment-site-saralebens-cloudflared.yaml +++ b/clusters/cl01tl/manifests/site-saralebens/Deployment-site-saralebens-cloudflared.yaml @@ -8,7 +8,7 @@ metadata: app.kubernetes.io/managed-by: Helm app.kubernetes.io/name: cloudflared app.kubernetes.io/version: 2026.3.0 - helm.sh/chart: cloudflared-2.7.1 + helm.sh/chart: cloudflared-3.0.0 namespace: site-saralebens spec: revisionHistoryLimit: 3 @@ -28,7 +28,7 @@ spec: app.kubernetes.io/name: cloudflared spec: enableServiceLinks: false - serviceAccountName: site-saralebens + serviceAccountName: cloudflared automountServiceAccountToken: false hostIPC: false hostNetwork: false @@ -38,8 +38,9 @@ spec: - args: - tunnel - --protocol - - http2 + - auto - --no-autoupdate + - --metrics 0.0.0.0:20241 - run - --token - $(CF_MANAGED_TUNNEL_TOKEN) diff --git a/clusters/cl01tl/manifests/site-saralebens/ExternalSecret-site-saralebens-cloudflared-secret.yaml b/clusters/cl01tl/manifests/site-saralebens/ExternalSecret-site-saralebens-cloudflared-secret.yaml index 1121783fb..bf5b19cde 100644 --- a/clusters/cl01tl/manifests/site-saralebens/ExternalSecret-site-saralebens-cloudflared-secret.yaml +++ b/clusters/cl01tl/manifests/site-saralebens/ExternalSecret-site-saralebens-cloudflared-secret.yaml @@ -4,10 +4,10 @@ metadata: name: site-saralebens-cloudflared-secret namespace: site-saralebens labels: - helm.sh/chart: cloudflared-2.7.1 + helm.sh/chart: cloudflared-3.0.0 app.kubernetes.io/instance: site-saralebens app.kubernetes.io/part-of: site-saralebens - app.kubernetes.io/version: "2.7.1" + app.kubernetes.io/version: "3.0.0" app.kubernetes.io/managed-by: Helm app.kubernetes.io/name: site-saralebens-cloudflared-secret spec: diff --git a/clusters/cl01tl/manifests/site-saralebens/Service-site-saralebens-cloudflared.yaml b/clusters/cl01tl/manifests/site-saralebens/Service-site-saralebens-cloudflared.yaml new file mode 100644 index 000000000..00baf464c --- /dev/null +++ b/clusters/cl01tl/manifests/site-saralebens/Service-site-saralebens-cloudflared.yaml @@ -0,0 +1,23 @@ +apiVersion: v1 +kind: Service +metadata: + name: site-saralebens-cloudflared + labels: + app.kubernetes.io/instance: site-saralebens + app.kubernetes.io/managed-by: Helm + app.kubernetes.io/name: cloudflared + app.kubernetes.io/service: site-saralebens-cloudflared + app.kubernetes.io/version: 2026.3.0 + helm.sh/chart: cloudflared-3.0.0 + namespace: site-saralebens +spec: + type: ClusterIP + ports: + - port: 20241 + targetPort: 20241 + protocol: TCP + name: metrics + selector: + app.kubernetes.io/controller: main + app.kubernetes.io/instance: site-saralebens + app.kubernetes.io/name: cloudflared diff --git a/clusters/cl01tl/manifests/site-saralebens/ServiceAccount-site-saralebens-cloudflared.yaml b/clusters/cl01tl/manifests/site-saralebens/ServiceAccount-site-saralebens-cloudflared.yaml index 6917f23dc..2ae21b4dc 100644 --- a/clusters/cl01tl/manifests/site-saralebens/ServiceAccount-site-saralebens-cloudflared.yaml +++ b/clusters/cl01tl/manifests/site-saralebens/ServiceAccount-site-saralebens-cloudflared.yaml @@ -7,5 +7,5 @@ metadata: app.kubernetes.io/managed-by: Helm app.kubernetes.io/name: cloudflared app.kubernetes.io/version: 2026.3.0 - helm.sh/chart: cloudflared-2.7.1 + helm.sh/chart: cloudflared-3.0.0 namespace: site-saralebens diff --git a/clusters/cl01tl/manifests/site-saralebens/ServiceMonitor-site-saralebens-cloudflared.yaml b/clusters/cl01tl/manifests/site-saralebens/ServiceMonitor-site-saralebens-cloudflared.yaml new file mode 100644 index 000000000..c315ba40f --- /dev/null +++ b/clusters/cl01tl/manifests/site-saralebens/ServiceMonitor-site-saralebens-cloudflared.yaml @@ -0,0 +1,25 @@ +apiVersion: monitoring.coreos.com/v1 +kind: ServiceMonitor +metadata: + name: site-saralebens-cloudflared + labels: + app.kubernetes.io/instance: site-saralebens + app.kubernetes.io/managed-by: Helm + app.kubernetes.io/name: cloudflared + app.kubernetes.io/version: 2026.3.0 + helm.sh/chart: cloudflared-3.0.0 + namespace: site-saralebens +spec: + jobLabel: app.kubernetes.io/name + namespaceSelector: + matchNames: + - site-saralebens + selector: + matchLabels: + app.kubernetes.io/instance: cloudflared + app.kubernetes.io/name: cloudflared + endpoints: + - interval: 30s + path: /metrics + port: metrics + scrapeTimeout: 10s diff --git a/clusters/cl01tl/manifests/vaultwarden/Deployment-vaultwarden-cloudflared.yaml b/clusters/cl01tl/manifests/vaultwarden/Deployment-vaultwarden-cloudflared.yaml index 7eb63261e..fffbb31d9 100644 --- a/clusters/cl01tl/manifests/vaultwarden/Deployment-vaultwarden-cloudflared.yaml +++ b/clusters/cl01tl/manifests/vaultwarden/Deployment-vaultwarden-cloudflared.yaml @@ -8,7 +8,7 @@ metadata: app.kubernetes.io/managed-by: Helm app.kubernetes.io/name: cloudflared app.kubernetes.io/version: 2026.3.0 - helm.sh/chart: cloudflared-2.7.1 + helm.sh/chart: cloudflared-3.0.0 namespace: vaultwarden spec: revisionHistoryLimit: 3 @@ -28,7 +28,7 @@ spec: app.kubernetes.io/name: cloudflared spec: enableServiceLinks: false - serviceAccountName: vaultwarden + serviceAccountName: cloudflared automountServiceAccountToken: false hostIPC: false hostNetwork: false @@ -38,8 +38,9 @@ spec: - args: - tunnel - --protocol - - http2 + - auto - --no-autoupdate + - --metrics 0.0.0.0:20241 - run - --token - $(CF_MANAGED_TUNNEL_TOKEN) diff --git a/clusters/cl01tl/manifests/vaultwarden/ExternalSecret-vaultwarden-cloudflared-secret.yaml b/clusters/cl01tl/manifests/vaultwarden/ExternalSecret-vaultwarden-cloudflared-secret.yaml index a8bc16a80..e027d611e 100644 --- a/clusters/cl01tl/manifests/vaultwarden/ExternalSecret-vaultwarden-cloudflared-secret.yaml +++ b/clusters/cl01tl/manifests/vaultwarden/ExternalSecret-vaultwarden-cloudflared-secret.yaml @@ -4,10 +4,10 @@ metadata: name: vaultwarden-cloudflared-secret namespace: vaultwarden labels: - helm.sh/chart: cloudflared-2.7.1 + helm.sh/chart: cloudflared-3.0.0 app.kubernetes.io/instance: vaultwarden app.kubernetes.io/part-of: vaultwarden - app.kubernetes.io/version: "2.7.1" + app.kubernetes.io/version: "3.0.0" app.kubernetes.io/managed-by: Helm app.kubernetes.io/name: vaultwarden-cloudflared-secret spec: diff --git a/clusters/cl01tl/manifests/vaultwarden/Service-vaultwarden-cloudflared.yaml b/clusters/cl01tl/manifests/vaultwarden/Service-vaultwarden-cloudflared.yaml new file mode 100644 index 000000000..984b22dbc --- /dev/null +++ b/clusters/cl01tl/manifests/vaultwarden/Service-vaultwarden-cloudflared.yaml @@ -0,0 +1,23 @@ +apiVersion: v1 +kind: Service +metadata: + name: vaultwarden-cloudflared + labels: + app.kubernetes.io/instance: vaultwarden + app.kubernetes.io/managed-by: Helm + app.kubernetes.io/name: cloudflared + app.kubernetes.io/service: vaultwarden-cloudflared + app.kubernetes.io/version: 2026.3.0 + helm.sh/chart: cloudflared-3.0.0 + namespace: vaultwarden +spec: + type: ClusterIP + ports: + - port: 20241 + targetPort: 20241 + protocol: TCP + name: metrics + selector: + app.kubernetes.io/controller: main + app.kubernetes.io/instance: vaultwarden + app.kubernetes.io/name: cloudflared diff --git a/clusters/cl01tl/manifests/vaultwarden/ServiceAccount-vaultwarden-cloudflared.yaml b/clusters/cl01tl/manifests/vaultwarden/ServiceAccount-vaultwarden-cloudflared.yaml index dfd0ed649..7ea473c57 100644 --- a/clusters/cl01tl/manifests/vaultwarden/ServiceAccount-vaultwarden-cloudflared.yaml +++ b/clusters/cl01tl/manifests/vaultwarden/ServiceAccount-vaultwarden-cloudflared.yaml @@ -7,5 +7,5 @@ metadata: app.kubernetes.io/managed-by: Helm app.kubernetes.io/name: cloudflared app.kubernetes.io/version: 2026.3.0 - helm.sh/chart: cloudflared-2.7.1 + helm.sh/chart: cloudflared-3.0.0 namespace: vaultwarden diff --git a/clusters/cl01tl/manifests/vaultwarden/ServiceMonitor-vaultwarden-cloudflared.yaml b/clusters/cl01tl/manifests/vaultwarden/ServiceMonitor-vaultwarden-cloudflared.yaml new file mode 100644 index 000000000..d54568f53 --- /dev/null +++ b/clusters/cl01tl/manifests/vaultwarden/ServiceMonitor-vaultwarden-cloudflared.yaml @@ -0,0 +1,25 @@ +apiVersion: monitoring.coreos.com/v1 +kind: ServiceMonitor +metadata: + name: vaultwarden-cloudflared + labels: + app.kubernetes.io/instance: vaultwarden + app.kubernetes.io/managed-by: Helm + app.kubernetes.io/name: cloudflared + app.kubernetes.io/version: 2026.3.0 + helm.sh/chart: cloudflared-3.0.0 + namespace: vaultwarden +spec: + jobLabel: app.kubernetes.io/name + namespaceSelector: + matchNames: + - vaultwarden + selector: + matchLabels: + app.kubernetes.io/instance: cloudflared + app.kubernetes.io/name: cloudflared + endpoints: + - interval: 30s + path: /metrics + port: metrics + scrapeTimeout: 10s