diff --git a/clusters/cl01tl/helm/ephemera/values.yaml b/clusters/cl01tl/helm/ephemera/values.yaml index c7131ae53..004bfde22 100644 --- a/clusters/cl01tl/helm/ephemera/values.yaml +++ b/clusters/cl01tl/helm/ephemera/values.yaml @@ -80,6 +80,27 @@ ephemera: port: 80 targetPort: 8286 protocol: HTTP + route: + main: + kind: HTTPRoute + parentRefs: + - group: gateway.networking.k8s.io + kind: Gateway + name: traefik-gateway + namespace: traefik + hostnames: + - ephemera.alexlebens.net + rules: + - backendRefs: + - group: '' + kind: Service + name: ephemera + port: 80 + weight: 100 + matches: + - path: + type: PathPrefix + value: / persistence: config: forceRename: ephemera diff --git a/clusters/cl01tl/helm/external-dns/templates/dns-endpoint.yaml b/clusters/cl01tl/helm/external-dns/templates/dns-endpoint.yaml index 4411732b9..dbdf10cb1 100644 --- a/clusters/cl01tl/helm/external-dns/templates/dns-endpoint.yaml +++ b/clusters/cl01tl/helm/external-dns/templates/dns-endpoint.yaml @@ -76,6 +76,12 @@ spec: recordType: A targets: - 10.232.1.82 + # Shelly Plug + - dnsName: it05sp.alexlebens.net + recordTTL: 180 + recordType: A + targets: + - 10.230.0.100 --- apiVersion: externaldns.k8s.io/v1alpha1 @@ -145,7 +151,7 @@ spec: targets: - 10.232.1.22 # Treafik Proxy - - dnsName: plex.alexlebens.net + - dnsName: plex-lb.alexlebens.net recordTTL: 180 recordType: A targets: diff --git a/clusters/cl01tl/helm/freshrss/Chart.lock b/clusters/cl01tl/helm/freshrss/Chart.lock index d8b3f819d..a93e77796 100644 --- a/clusters/cl01tl/helm/freshrss/Chart.lock +++ b/clusters/cl01tl/helm/freshrss/Chart.lock @@ -7,9 +7,9 @@ dependencies: version: 2.1.4 - name: postgres-cluster repository: oci://harbor.alexlebens.net/helm-charts - version: 7.1.4 + version: 7.4.3 - name: volsync-target repository: oci://harbor.alexlebens.net/helm-charts version: 0.6.0 -digest: sha256:6822455e1f04e22e355a8ca9be206c4bb365dcb427045dcc66dda3940e197c42 -generated: "2025-12-21T19:02:14.387002721Z" +digest: sha256:a73351fc38c927eb7fef8c536069b21ca4d99e3ffb193ee64d9b93dbdc728ec4 +generated: "2025-12-23T17:04:20.474187-06:00" diff --git a/clusters/cl01tl/helm/freshrss/Chart.yaml b/clusters/cl01tl/helm/freshrss/Chart.yaml index ea7a39111..8422a03b3 100644 --- a/clusters/cl01tl/helm/freshrss/Chart.yaml +++ b/clusters/cl01tl/helm/freshrss/Chart.yaml @@ -26,7 +26,7 @@ dependencies: version: 2.1.4 - name: postgres-cluster alias: postgres-18-cluster - version: 7.1.4 + version: 7.4.3 repository: oci://harbor.alexlebens.net/helm-charts - name: volsync-target alias: volsync-target-data diff --git a/clusters/cl01tl/helm/freshrss/templates/external-secret.yaml b/clusters/cl01tl/helm/freshrss/templates/external-secret.yaml index 8409ac433..b76baa4a1 100644 --- a/clusters/cl01tl/helm/freshrss/templates/external-secret.yaml +++ b/clusters/cl01tl/helm/freshrss/templates/external-secret.yaml @@ -70,70 +70,3 @@ spec: key: /authentik/oidc/freshrss metadataPolicy: None property: crypto-key - ---- -apiVersion: external-secrets.io/v1 -kind: ExternalSecret -metadata: - name: freshrss-postgresql-18-cluster-backup-secret - namespace: {{ .Release.Namespace }} - labels: - app.kubernetes.io/name: freshrss-postgresql-18-cluster-backup-secret - app.kubernetes.io/instance: {{ .Release.Name }} - app.kubernetes.io/part-of: {{ .Release.Name }} -spec: - secretStoreRef: - kind: ClusterSecretStore - name: vault - data: - - secretKey: ACCESS_KEY_ID - remoteRef: - conversionStrategy: Default - decodingStrategy: None - key: /digital-ocean/home-infra/postgres-backups - metadataPolicy: None - property: access - - secretKey: ACCESS_SECRET_KEY - remoteRef: - conversionStrategy: Default - decodingStrategy: None - key: /digital-ocean/home-infra/postgres-backups - metadataPolicy: None - property: secret - ---- -apiVersion: external-secrets.io/v1 -kind: ExternalSecret -metadata: - name: freshrss-postgresql-18-cluster-backup-secret-garage - namespace: {{ .Release.Namespace }} - labels: - app.kubernetes.io/name: freshrss-postgresql-18-cluster-backup-secret-garage - app.kubernetes.io/instance: {{ .Release.Name }} - app.kubernetes.io/part-of: {{ .Release.Name }} -spec: - secretStoreRef: - kind: ClusterSecretStore - name: vault - data: - - secretKey: ACCESS_KEY_ID - remoteRef: - conversionStrategy: Default - decodingStrategy: None - key: /garage/home-infra/postgres-backups - metadataPolicy: None - property: ACCESS_KEY_ID - - secretKey: ACCESS_SECRET_KEY - remoteRef: - conversionStrategy: Default - decodingStrategy: None - key: /garage/home-infra/postgres-backups - metadataPolicy: None - property: ACCESS_SECRET_KEY - - secretKey: ACCESS_REGION - remoteRef: - conversionStrategy: Default - decodingStrategy: None - key: /garage/home-infra/postgres-backups - metadataPolicy: None - property: ACCESS_REGION diff --git a/clusters/cl01tl/helm/freshrss/values.yaml b/clusters/cl01tl/helm/freshrss/values.yaml index 6493cc89d..23ef11078 100644 --- a/clusters/cl01tl/helm/freshrss/values.yaml +++ b/clusters/cl01tl/helm/freshrss/values.yaml @@ -194,58 +194,46 @@ freshrss: readOnly: false postgres-18-cluster: mode: recovery - cluster: - storage: - storageClass: local-path - walStorage: - storageClass: local-path recovery: method: objectStore objectStore: - destinationPath: s3://postgres-backups/cl01tl/freshrss/freshrss-postgresql-18-cluster - endpointURL: http://garage-main.garage:3900 index: 1 - endpointCredentials: freshrss-postgresql-18-cluster-backup-secret-garage backup: objectStore: - name: garage-local - destinationPath: s3://postgres-backups/cl01tl/freshrss/freshrss-postgresql-18-cluster index: 1 - endpointURL: http://garage-main.garage:3900 - endpointCredentials: freshrss-postgresql-18-cluster-backup-secret-garage - endpointCredentialsIncludeRegion: true - retentionPolicy: "3d" + destinationBucket: postgres-backups + externalSecretCredentialPath: /garage/home-infra/postgres-backups isWALArchiver: true - # - name: external - # destinationPath: s3://postgres-backups-ce540ddf106d186bbddca68a/cl01tl/freshrss/freshrss-postgresql-18-cluster - # index: 1 - # retentionPolicy: "30d" - # isWALArchiver: false # - name: garage-remote - # destinationPath: s3://postgres-backups/cl01tl/freshrss/freshrss-postgresql-18-cluster # index: 1 - # endpointURL: https://garage-ps10rp.boreal-beaufort.ts.net:3900 - # endpointCredentials: freshrss-postgresql-18-cluster-backup-secret-garage - # retentionPolicy: "30d" + # destinationBucket: postgres-backups + # externalSecretCredentialPath: /garage/home-infra/postgres-backups + # retentionPolicy: "90d" # data: # compression: bzip2 - # jobs: 2 + # - name: external + # index: 1 + # endpointURL: https://nyc3.digitaloceanspaces.com + # destinationBucket: postgres-backups-ce540ddf106d186bbddca68a + # externalSecretCredentialPath: /garage/home-infra/postgres-backups + # isWALArchiver: false scheduledBackups: - name: live-backup suspend: false immediate: true schedule: "0 0 0 * * *" backupName: garage-local - # - name: daily-backup - # suspend: false - # immediate: true - # schedule: "0 0 0 * * *" - # backupName: external # - name: weekly-backup # suspend: true # immediate: true # schedule: "0 0 4 * * SAT" # backupName: garage-remote + # - name: daily-backup + # suspend: true + # immediate: true + # schedule: "0 0 0 * * *" + # backupName: external volsync-target-data: pvcTarget: freshrss-data moverSecurityContext: