From e0649971acccdc1b51dce2d9f0ec23a25c128a34 Mon Sep 17 00:00:00 2001 From: gitea-bot Date: Thu, 11 Dec 2025 22:13:53 +0000 Subject: [PATCH] Automated Manifest Update (#2385) This PR contains newly rendered Kubernetes manifests automatically generated by the CI workflow. Reviewed-on: https://gitea.alexlebens.dev/alexlebens/infrastructure/pulls/2385 Co-authored-by: gitea-bot Co-committed-by: gitea-bot --- ...uster-authentik-postgresql-18-cluster.yaml | 36 +++++++++---------- .../Deployment-authentik-server.yaml | 8 ++--- .../Deployment-authentik-worker.yaml | 8 ++--- ...tore-authentik-postgresql-18-recovery.yaml | 29 +++++++++++++++ 4 files changed, 55 insertions(+), 26 deletions(-) create mode 100644 clusters/cl01tl/manifests/authentik/ObjectStore-authentik-postgresql-18-recovery.yaml diff --git a/clusters/cl01tl/manifests/authentik/Cluster-authentik-postgresql-18-cluster.yaml b/clusters/cl01tl/manifests/authentik/Cluster-authentik-postgresql-18-cluster.yaml index 9259fff4f..0e5dcbe9b 100644 --- a/clusters/cl01tl/manifests/authentik/Cluster-authentik-postgresql-18-cluster.yaml +++ b/clusters/cl01tl/manifests/authentik/Cluster-authentik-postgresql-18-cluster.yaml @@ -29,6 +29,13 @@ spec: parameters: barmanObjectName: "authentik-postgresql-18-garage-local-backup" serverName: "authentik-postgresql-18-backup-1" + externalClusters: + - name: recovery + plugin: + name: barman-cloud.cloudnative-pg.io + parameters: + barmanObjectName: "authentik-postgresql-18-recovery" + serverName: authentik-postgresql-18-backup-1 storage: size: 10Gi storageClass: local-path @@ -58,22 +65,15 @@ spec: enablePodMonitor: true disableDefaultQueries: false bootstrap: - initdb: - import: - source: - externalCluster: importSource - type: microservice - databases: - - app - schemaOnly: false + recovery: + database: app + source: authentik-postgresql-18-backup-1 externalClusters: - - name: importSource - connectionParameters: - host: "authentik-postgresql-17-cluster-rw" - port: "5432" - user: "app" - dbname: "app" - sslmode: "disable" - password: - name: authentik-postgresql-17-cluster-app - key: password + - name: authentik-postgresql-18-backup-1 + plugin: + name: barman-cloud.cloudnative-pg.io + enabled: true + isWALArchiver: false + parameters: + barmanObjectName: "authentik-postgresql-18-recovery" + serverName: authentik-postgresql-18-backup-1 diff --git a/clusters/cl01tl/manifests/authentik/Deployment-authentik-server.yaml b/clusters/cl01tl/manifests/authentik/Deployment-authentik-server.yaml index bda947791..61581e3b0 100644 --- a/clusters/cl01tl/manifests/authentik/Deployment-authentik-server.yaml +++ b/clusters/cl01tl/manifests/authentik/Deployment-authentik-server.yaml @@ -49,22 +49,22 @@ spec: valueFrom: secretKeyRef: key: host - name: authentik-postgresql-17-cluster-app + name: authentik-postgresql-18-cluster-app - name: AUTHENTIK_POSTGRESQL__NAME valueFrom: secretKeyRef: key: dbname - name: authentik-postgresql-17-cluster-app + name: authentik-postgresql-18-cluster-app - name: AUTHENTIK_POSTGRESQL__USER valueFrom: secretKeyRef: key: user - name: authentik-postgresql-17-cluster-app + name: authentik-postgresql-18-cluster-app - name: AUTHENTIK_POSTGRESQL__PASSWORD valueFrom: secretKeyRef: key: password - name: authentik-postgresql-17-cluster-app + name: authentik-postgresql-18-cluster-app - name: AUTHENTIK_LISTEN__HTTP value: "0.0.0.0:9000" - name: AUTHENTIK_LISTEN__HTTPS diff --git a/clusters/cl01tl/manifests/authentik/Deployment-authentik-worker.yaml b/clusters/cl01tl/manifests/authentik/Deployment-authentik-worker.yaml index 3e3163bf6..cdf3118a9 100644 --- a/clusters/cl01tl/manifests/authentik/Deployment-authentik-worker.yaml +++ b/clusters/cl01tl/manifests/authentik/Deployment-authentik-worker.yaml @@ -50,22 +50,22 @@ spec: valueFrom: secretKeyRef: key: host - name: authentik-postgresql-17-cluster-app + name: authentik-postgresql-18-cluster-app - name: AUTHENTIK_POSTGRESQL__NAME valueFrom: secretKeyRef: key: dbname - name: authentik-postgresql-17-cluster-app + name: authentik-postgresql-18-cluster-app - name: AUTHENTIK_POSTGRESQL__USER valueFrom: secretKeyRef: key: user - name: authentik-postgresql-17-cluster-app + name: authentik-postgresql-18-cluster-app - name: AUTHENTIK_POSTGRESQL__PASSWORD valueFrom: secretKeyRef: key: password - name: authentik-postgresql-17-cluster-app + name: authentik-postgresql-18-cluster-app - name: AUTHENTIK_LISTEN__HTTP value: "0.0.0.0:9000" - name: AUTHENTIK_LISTEN__METRICS diff --git a/clusters/cl01tl/manifests/authentik/ObjectStore-authentik-postgresql-18-recovery.yaml b/clusters/cl01tl/manifests/authentik/ObjectStore-authentik-postgresql-18-recovery.yaml new file mode 100644 index 000000000..8c0955681 --- /dev/null +++ b/clusters/cl01tl/manifests/authentik/ObjectStore-authentik-postgresql-18-recovery.yaml @@ -0,0 +1,29 @@ +apiVersion: barmancloud.cnpg.io/v1 +kind: ObjectStore +metadata: + name: "authentik-postgresql-18-recovery" + namespace: authentik + labels: + helm.sh/chart: postgres-18-cluster-6.16.1 + app.kubernetes.io/name: authentik-postgresql-18 + app.kubernetes.io/instance: authentik + app.kubernetes.io/part-of: authentik + app.kubernetes.io/version: "6.16.1" + app.kubernetes.io/managed-by: Helm +spec: + configuration: + destinationPath: s3://postgres-backups/cl01tl/authentik/authentik-postgresql-18-cluster + endpointURL: http://garage-main.garage:3900 + wal: + compression: snappy + maxParallel: 1 + data: + compression: snappy + jobs: 1 + s3Credentials: + accessKeyId: + name: authentik-postgresql-18-cluster-backup-secret-garage + key: ACCESS_KEY_ID + secretAccessKey: + name: authentik-postgresql-18-cluster-backup-secret-garage + key: ACCESS_SECRET_KEY