diff --git a/clusters/cl01tl/applications/vaultwarden/Chart.yaml b/clusters/cl01tl/applications/vaultwarden/Chart.yaml index 4b9f7d693..bcca30b35 100644 --- a/clusters/cl01tl/applications/vaultwarden/Chart.yaml +++ b/clusters/cl01tl/applications/vaultwarden/Chart.yaml @@ -28,7 +28,11 @@ dependencies: version: 1.12.0 - name: postgres-cluster alias: postgres-16-cluster - version: 3.19.0 + version: 3.21.0 + repository: http://alexlebens.github.io/helm-charts + - name: postgres-cluster + alias: postgres-17-cluster + version: 3.21.0 repository: http://alexlebens.github.io/helm-charts icon: https://raw.githubusercontent.com/walkxcode/dashboard-icons/main/png/vaultwarden.png appVersion: 1.32.6 diff --git a/clusters/cl01tl/applications/vaultwarden/templates/external-secret.yaml b/clusters/cl01tl/applications/vaultwarden/templates/external-secret.yaml index 771c0718b..0f4e1448f 100644 --- a/clusters/cl01tl/applications/vaultwarden/templates/external-secret.yaml +++ b/clusters/cl01tl/applications/vaultwarden/templates/external-secret.yaml @@ -112,3 +112,35 @@ spec: key: /digital-ocean/home-infra/postgres-backups metadataPolicy: None property: secret + +--- +apiVersion: external-secrets.io/v1beta1 +kind: ExternalSecret +metadata: + name: vaultwarden-postgresql-17-cluster-backup-secret + namespace: {{ .Release.Namespace }} + labels: + app.kubernetes.io/name: vaultwarden-postgresql-17-cluster-backup-secret + app.kubernetes.io/instance: {{ .Release.Name }} + app.kubernetes.io/version: {{ .Chart.AppVersion }} + app.kubernetes.io/component: database + app.kubernetes.io/part-of: {{ .Release.Name }} +spec: + secretStoreRef: + kind: ClusterSecretStore + name: vault + data: + - secretKey: ACCESS_KEY_ID + remoteRef: + conversionStrategy: Default + decodingStrategy: None + key: /digital-ocean/home-infra/postgres-backups + metadataPolicy: None + property: access + - secretKey: ACCESS_SECRET_KEY + remoteRef: + conversionStrategy: Default + decodingStrategy: None + key: /digital-ocean/home-infra/postgres-backups + metadataPolicy: None + property: secret diff --git a/clusters/cl01tl/applications/vaultwarden/values.yaml b/clusters/cl01tl/applications/vaultwarden/values.yaml index 1b524e785..4e6eb03c5 100644 --- a/clusters/cl01tl/applications/vaultwarden/values.yaml +++ b/clusters/cl01tl/applications/vaultwarden/values.yaml @@ -65,3 +65,33 @@ postgres-16-cluster: destinationPath: s3://postgres-backups-ce540ddf106d186bbddca68a/cl01tl/vaultwarden/vaultwarden-postgresql-16-cluster endpointCredentials: vaultwarden-postgresql-16-cluster-backup-secret backupIndex: 1 +postgres-17-cluster: + mode: replica + cluster: + image: + repository: ghcr.io/cloudnative-pg/postgresql + tag: "17.2-22" + walStorage: + storageClass: local-path + storage: + storageClass: local-path + monitoring: + enabled: true + replica: + importType: microservice + importDatabases: + - app + externalCluster: + connectionParameters: + host: vaultwarden-postgresql-16-cluster-rw + user: app + dbname: app + password: + name: vaultwarden-postgresql-16-cluster-app + key: password + backup: + enabled: false + endpointURL: https://nyc3.digitaloceanspaces.com + destinationPath: s3://postgres-backups-ce540ddf106d186bbddca68a/cl01tl/vaultwarden/vaultwarden-postgresql-17-cluster + endpointCredentials: vaultwarden-postgresql-17-cluster-backup-secret + backupIndex: 1