Compare commits
1 Commits
main
...
6a6ab30ac0
| Author | SHA1 | Date | |
|---|---|---|---|
6a6ab30ac0
|
@@ -13,7 +13,7 @@ on:
|
|||||||
jobs:
|
jobs:
|
||||||
renovate:
|
renovate:
|
||||||
runs-on: ubuntu-latest
|
runs-on: ubuntu-latest
|
||||||
container: ghcr.io/renovatebot/renovate:43.132.0@sha256:fc54bbc724d1924fa72c331729eefb5acd1385a9ce30617b0264a7fb4b8878da
|
container: ghcr.io/renovatebot/renovate:43.125.1@sha256:c85cf1a918a3deaaed3d60ffb885ae8b0afaf9eb43effef0e857a2fe246a234a
|
||||||
steps:
|
steps:
|
||||||
- name: Checkout
|
- name: Checkout
|
||||||
uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6
|
uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6
|
||||||
|
|||||||
@@ -2,5 +2,8 @@ dependencies:
|
|||||||
- name: app-template
|
- name: app-template
|
||||||
repository: https://bjw-s-labs.github.io/helm-charts/
|
repository: https://bjw-s-labs.github.io/helm-charts/
|
||||||
version: 4.6.2
|
version: 4.6.2
|
||||||
digest: sha256:1c04c187e6cf768117f7f91f3a3b082937ad5854c1cf6a681ad7c02687cd543d
|
- name: volsync-target
|
||||||
generated: "2026-04-18T20:15:22.778699-05:00"
|
repository: oci://harbor.alexlebens.net/helm-charts
|
||||||
|
version: 0.8.0
|
||||||
|
digest: sha256:ff81b3d8fc831e4b8048f646fffcf597aa7410e52ecf27690eab8104047dbe6f
|
||||||
|
generated: "2026-03-06T01:04:41.514235218Z"
|
||||||
|
|||||||
@@ -18,10 +18,10 @@ dependencies:
|
|||||||
alias: actual
|
alias: actual
|
||||||
repository: https://bjw-s-labs.github.io/helm-charts/
|
repository: https://bjw-s-labs.github.io/helm-charts/
|
||||||
version: 4.6.2
|
version: 4.6.2
|
||||||
# - name: volsync-target
|
- name: volsync-target
|
||||||
# alias: volsync-target-data
|
alias: volsync-target-data
|
||||||
# version: 0.8.0
|
version: 0.8.0
|
||||||
# repository: oci://harbor.alexlebens.net/helm-charts
|
repository: oci://harbor.alexlebens.net/helm-charts
|
||||||
icon: https://cdn.jsdelivr.net/gh/selfhst/icons/png/actual-budget.png
|
icon: https://cdn.jsdelivr.net/gh/selfhst/icons/png/actual-budget.png
|
||||||
# renovate: datasource=github-releases depName=actualbudget/actual
|
# renovate: datasource=github-releases depName=actualbudget/actual
|
||||||
appVersion: 26.4.0
|
appVersion: 26.4.0
|
||||||
|
|||||||
@@ -13,7 +13,7 @@ maintainers:
|
|||||||
- name: alexlebens
|
- name: alexlebens
|
||||||
dependencies:
|
dependencies:
|
||||||
- name: argo-cd
|
- name: argo-cd
|
||||||
version: 9.5.2
|
version: 9.5.1
|
||||||
repository: https://argoproj.github.io/argo-helm
|
repository: https://argoproj.github.io/argo-helm
|
||||||
icon: https://cdn.jsdelivr.net/gh/selfhst/icons/png/argo-cd.png
|
icon: https://cdn.jsdelivr.net/gh/selfhst/icons/png/argo-cd.png
|
||||||
# renovate: datasource=github-releases depName=argoproj/argo-cd
|
# renovate: datasource=github-releases depName=argoproj/argo-cd
|
||||||
|
|||||||
@@ -18,4 +18,4 @@ dependencies:
|
|||||||
repository: https://charts.external-secrets.io
|
repository: https://charts.external-secrets.io
|
||||||
icon: https://raw.githubusercontent.com/external-secrets/external-secrets/refs/heads/main/assets/eso-logo-large.png
|
icon: https://raw.githubusercontent.com/external-secrets/external-secrets/refs/heads/main/assets/eso-logo-large.png
|
||||||
# renovate: datasource=github-releases depName=external-secrets/external-secrets
|
# renovate: datasource=github-releases depName=external-secrets/external-secrets
|
||||||
appVersion: v2.3.0
|
appVersion: vv2.3.0
|
||||||
|
|||||||
@@ -1,17 +0,0 @@
|
|||||||
apiVersion: rbac.authorization.k8s.io/v1
|
|
||||||
kind: ClusterRoleBinding
|
|
||||||
metadata:
|
|
||||||
name: external-secrets
|
|
||||||
namespace: {{ .Release.Namespace }}
|
|
||||||
labels:
|
|
||||||
app.kubernetes.io/name: external-secrets
|
|
||||||
app.kubernetes.io/instance: {{ .Release.Name }}
|
|
||||||
app.kubernetes.io/part-of: {{ .Release.Name }}
|
|
||||||
roleRef:
|
|
||||||
apiGroup: rbac.authorization.k8s.io
|
|
||||||
kind: ClusterRole
|
|
||||||
name: system:auth-delegator
|
|
||||||
subjects:
|
|
||||||
- kind: ServiceAccount
|
|
||||||
name: external-secrets
|
|
||||||
namespace: {{ .Release.Namespace }}
|
|
||||||
@@ -17,29 +17,3 @@ spec:
|
|||||||
namespace: vault
|
namespace: vault
|
||||||
name: vault-token
|
name: vault-token
|
||||||
key: token
|
key: token
|
||||||
|
|
||||||
---
|
|
||||||
apiVersion: external-secrets.io/v1
|
|
||||||
kind: ClusterSecretStore
|
|
||||||
metadata:
|
|
||||||
name: openbao
|
|
||||||
namespace: {{ .Release.Namespace }}
|
|
||||||
labels:
|
|
||||||
app.kubernetes.io/name: openbao
|
|
||||||
app.kubernetes.io/instance: {{ .Release.Name }}
|
|
||||||
app.kubernetes.io/part-of: {{ .Release.Name }}
|
|
||||||
spec:
|
|
||||||
provider:
|
|
||||||
vault:
|
|
||||||
server: http://openbao-internal.openbao:8200
|
|
||||||
path: secret
|
|
||||||
version: v2
|
|
||||||
auth:
|
|
||||||
kubernetes:
|
|
||||||
mountPath: kubernetes
|
|
||||||
role: external-secrets
|
|
||||||
serviceAccountRef:
|
|
||||||
name: external-secrets
|
|
||||||
namespace: {{ .Release.Name }}
|
|
||||||
audiences:
|
|
||||||
- openbao
|
|
||||||
|
|||||||
@@ -70,7 +70,7 @@ foldergram:
|
|||||||
forceRename: foldergram-data
|
forceRename: foldergram-data
|
||||||
storageClass: synology-iscsi-delete
|
storageClass: synology-iscsi-delete
|
||||||
accessMode: ReadWriteOnce
|
accessMode: ReadWriteOnce
|
||||||
size: 250Gi
|
size: 150Gi
|
||||||
advancedMounts:
|
advancedMounts:
|
||||||
main:
|
main:
|
||||||
main:
|
main:
|
||||||
|
|||||||
@@ -21,4 +21,4 @@ dependencies:
|
|||||||
version: 4.6.2
|
version: 4.6.2
|
||||||
icon: https://cdn.jsdelivr.net/gh/selfhst/icons@main/png/garage.png
|
icon: https://cdn.jsdelivr.net/gh/selfhst/icons@main/png/garage.png
|
||||||
# renovate: datasource=docker depName=dxflrs/garage
|
# renovate: datasource=docker depName=dxflrs/garage
|
||||||
appVersion: v2.3.0
|
appVersion: v2.2.0
|
||||||
|
|||||||
@@ -21,7 +21,7 @@ garage:
|
|||||||
main:
|
main:
|
||||||
image:
|
image:
|
||||||
repository: dxflrs/garage
|
repository: dxflrs/garage
|
||||||
tag: v2.3.0@sha256:866bd13ed2038ba7e7190e840482bc27234c4afaf77be8cfa439ae088c1e4690
|
tag: v2.2.0@sha256:45a61ce3f7c9c24fc23d9ed2b09b27ed560ab87b34605d175d5c588f539c24e4
|
||||||
envFrom:
|
envFrom:
|
||||||
- secretRef:
|
- secretRef:
|
||||||
name: garage-token-secret
|
name: garage-token-secret
|
||||||
@@ -50,7 +50,7 @@ garage:
|
|||||||
main:
|
main:
|
||||||
image:
|
image:
|
||||||
repository: dxflrs/garage
|
repository: dxflrs/garage
|
||||||
tag: v2.3.0@sha256:866bd13ed2038ba7e7190e840482bc27234c4afaf77be8cfa439ae088c1e4690
|
tag: v2.2.0@sha256:45a61ce3f7c9c24fc23d9ed2b09b27ed560ab87b34605d175d5c588f539c24e4
|
||||||
envFrom:
|
envFrom:
|
||||||
- secretRef:
|
- secretRef:
|
||||||
name: garage-token-secret
|
name: garage-token-secret
|
||||||
@@ -79,7 +79,7 @@ garage:
|
|||||||
main:
|
main:
|
||||||
image:
|
image:
|
||||||
repository: dxflrs/garage
|
repository: dxflrs/garage
|
||||||
tag: v2.3.0@sha256:866bd13ed2038ba7e7190e840482bc27234c4afaf77be8cfa439ae088c1e4690
|
tag: v2.2.0@sha256:45a61ce3f7c9c24fc23d9ed2b09b27ed560ab87b34605d175d5c588f539c24e4
|
||||||
envFrom:
|
envFrom:
|
||||||
- secretRef:
|
- secretRef:
|
||||||
name: garage-token-secret
|
name: garage-token-secret
|
||||||
|
|||||||
@@ -56,4 +56,4 @@ dependencies:
|
|||||||
repository: oci://harbor.alexlebens.net/helm-charts
|
repository: oci://harbor.alexlebens.net/helm-charts
|
||||||
icon: https://cdn.jsdelivr.net/gh/selfhst/icons@main/png/gitea.png
|
icon: https://cdn.jsdelivr.net/gh/selfhst/icons@main/png/gitea.png
|
||||||
# renovate: datasource=github-releases depName=go-gitea/gitea
|
# renovate: datasource=github-releases depName=go-gitea/gitea
|
||||||
appVersion: 1.26.0
|
appVersion: 1.25.5
|
||||||
|
|||||||
@@ -194,7 +194,7 @@ gitea-actions:
|
|||||||
registry: docker.io
|
registry: docker.io
|
||||||
repository: gitea/act_runner
|
repository: gitea/act_runner
|
||||||
# renovate: datasource=docker depName=gitea/act_runner
|
# renovate: datasource=docker depName=gitea/act_runner
|
||||||
tag: 0.4.1@sha256:696a59b51ad3d149521e3beb0229d5fb88f87295e1616f940199793274415b56
|
tag: 0.4.0@sha256:e7364b8252e74d5eb047abe64c98a856da37d9dad848af51e011b249206b36ba
|
||||||
extraVolumeMounts:
|
extraVolumeMounts:
|
||||||
- name: workspace-vol
|
- name: workspace-vol
|
||||||
mountPath: /workspace
|
mountPath: /workspace
|
||||||
|
|||||||
@@ -24,4 +24,4 @@ dependencies:
|
|||||||
repository: oci://harbor.alexlebens.net/helm-charts
|
repository: oci://harbor.alexlebens.net/helm-charts
|
||||||
icon: https://cdn.jsdelivr.net/gh/selfhst/icons/png/home-assistant.png
|
icon: https://cdn.jsdelivr.net/gh/selfhst/icons/png/home-assistant.png
|
||||||
# renovate: datasource=github-releases depName=home-assistant/core
|
# renovate: datasource=github-releases depName=home-assistant/core
|
||||||
appVersion: 2026.4.3
|
appVersion: 2026.4.2
|
||||||
|
|||||||
@@ -12,7 +12,7 @@ home-assistant:
|
|||||||
main:
|
main:
|
||||||
image:
|
image:
|
||||||
repository: ghcr.io/home-assistant/home-assistant
|
repository: ghcr.io/home-assistant/home-assistant
|
||||||
tag: 2026.4.3@sha256:ae0800c81fea16bc1241ce03bddb9c6260566e90f58b09d3e5a629e4f68bdc0b
|
tag: 2026.4.2@sha256:4c940155cfd5b0187a6faee2db5d52b98bb573edc1aeee95d0818bb17b6534d7
|
||||||
env:
|
env:
|
||||||
- name: TZ
|
- name: TZ
|
||||||
value: America/Chicago
|
value: America/Chicago
|
||||||
@@ -23,7 +23,7 @@ home-assistant:
|
|||||||
code-server:
|
code-server:
|
||||||
image:
|
image:
|
||||||
repository: ghcr.io/linuxserver/code-server
|
repository: ghcr.io/linuxserver/code-server
|
||||||
tag: 4.116.0-ls333@sha256:4620adace18935dd6ca79d77e3bc1c379e21875392192f970cf5d6b0fb4aefcd
|
tag: 4.115.0-ls331@sha256:308f49acac8734542560f797d79b15e4c872c4d3f97d1b22862633fcce2af62a
|
||||||
env:
|
env:
|
||||||
- name: TZ
|
- name: TZ
|
||||||
value: America/Chicago
|
value: America/Chicago
|
||||||
|
|||||||
@@ -25,4 +25,4 @@ dependencies:
|
|||||||
repository: oci://harbor.alexlebens.net/helm-charts
|
repository: oci://harbor.alexlebens.net/helm-charts
|
||||||
icon: https://cdn.jsdelivr.net/gh/selfhst/icons@main/png/houndarr.png
|
icon: https://cdn.jsdelivr.net/gh/selfhst/icons@main/png/houndarr.png
|
||||||
# renovate: datasource=github-releases depName=av1155/houndarr
|
# renovate: datasource=github-releases depName=av1155/houndarr
|
||||||
appVersion: v1.9.0
|
appVersion: v1.7.0
|
||||||
|
|||||||
@@ -8,7 +8,7 @@ houndarr:
|
|||||||
main:
|
main:
|
||||||
image:
|
image:
|
||||||
repository: ghcr.io/av1155/houndarr
|
repository: ghcr.io/av1155/houndarr
|
||||||
tag: v1.9.0@sha256:2a9c9e0de43412f683f00cce6f5d0f3e059b27e50350434ae4029ade720e85a0
|
tag: v1.7.0@sha256:8ae2a8b86497cbc54d11591c12220f3be3319039c2bdd0c8b041b2b7c2fd7943
|
||||||
env:
|
env:
|
||||||
- name: TZ
|
- name: TZ
|
||||||
value: America/Chicago
|
value: America/Chicago
|
||||||
|
|||||||
@@ -29,4 +29,4 @@ dependencies:
|
|||||||
repository: oci://harbor.alexlebens.net/helm-charts
|
repository: oci://harbor.alexlebens.net/helm-charts
|
||||||
icon: https://cdn.jsdelivr.net/gh/selfhst/icons/png/jellystat.png
|
icon: https://cdn.jsdelivr.net/gh/selfhst/icons/png/jellystat.png
|
||||||
# renovate: datasource=github-releases depName=CyferShepard/Jellystat
|
# renovate: datasource=github-releases depName=CyferShepard/Jellystat
|
||||||
appVersion: 1.1.10
|
appVersion: 1.1.9
|
||||||
|
|||||||
@@ -8,7 +8,7 @@ jellystat:
|
|||||||
main:
|
main:
|
||||||
image:
|
image:
|
||||||
repository: ghcr.io/cyfershepard/jellystat
|
repository: ghcr.io/cyfershepard/jellystat
|
||||||
tag: 1.1.10@sha256:bb7ebe42424dedeff52d8da4130232d67e3fdd6dc2dd4a66091e32ddd835ea42
|
tag: 1.1.9@sha256:f7f56aabad139faa996b8bb21a36dd3e65f7c87e10408921815b95a28a4efbaf
|
||||||
env:
|
env:
|
||||||
- name: TZ
|
- name: TZ
|
||||||
value: America/Chicago
|
value: America/Chicago
|
||||||
|
|||||||
@@ -1,7 +1,7 @@
|
|||||||
dependencies:
|
dependencies:
|
||||||
- name: kube-prometheus-stack
|
- name: kube-prometheus-stack
|
||||||
repository: oci://ghcr.io/prometheus-community/charts
|
repository: oci://ghcr.io/prometheus-community/charts
|
||||||
version: 83.6.0
|
version: 83.5.0
|
||||||
- name: prometheus-operator-crds
|
- name: prometheus-operator-crds
|
||||||
repository: oci://ghcr.io/prometheus-community/charts
|
repository: oci://ghcr.io/prometheus-community/charts
|
||||||
version: 28.0.1
|
version: 28.0.1
|
||||||
@@ -11,5 +11,5 @@ dependencies:
|
|||||||
- name: valkey
|
- name: valkey
|
||||||
repository: oci://harbor.alexlebens.net/helm-charts
|
repository: oci://harbor.alexlebens.net/helm-charts
|
||||||
version: 0.6.1
|
version: 0.6.1
|
||||||
digest: sha256:f80cb9a91bb13c3538ffdf4bc95b0750202a76167b05a3958f5aff2220484b0c
|
digest: sha256:555ebcb0a43ef44e1c0eb4b0603a54027e757eb24c6041e0051075641656fdd2
|
||||||
generated: "2026-04-17T16:10:54.211656328Z"
|
generated: "2026-04-16T16:11:08.272959931Z"
|
||||||
|
|||||||
@@ -20,7 +20,7 @@ maintainers:
|
|||||||
- name: alexlebens
|
- name: alexlebens
|
||||||
dependencies:
|
dependencies:
|
||||||
- name: kube-prometheus-stack
|
- name: kube-prometheus-stack
|
||||||
version: 83.6.0
|
version: 83.5.0
|
||||||
repository: oci://ghcr.io/prometheus-community/charts
|
repository: oci://ghcr.io/prometheus-community/charts
|
||||||
- name: prometheus-operator-crds
|
- name: prometheus-operator-crds
|
||||||
version: 28.0.1
|
version: 28.0.1
|
||||||
|
|||||||
@@ -332,7 +332,7 @@ mautrix-whatsapp:
|
|||||||
main:
|
main:
|
||||||
image:
|
image:
|
||||||
repository: dock.mau.dev/mautrix/whatsapp
|
repository: dock.mau.dev/mautrix/whatsapp
|
||||||
tag: v0.2604.0@sha256:9f28c04c746af9fe8e93163489dae0f4191626e2ca02a9302df62afbeefc9eba
|
tag: v0.2603.0@sha256:b49009312361d9ea0d7090716fd09f2323f477b32bd119648c6ca2d558a3e236
|
||||||
resources:
|
resources:
|
||||||
requests:
|
requests:
|
||||||
cpu: 1m
|
cpu: 1m
|
||||||
|
|||||||
@@ -24,4 +24,4 @@ dependencies:
|
|||||||
repository: oci://harbor.alexlebens.net/helm-charts
|
repository: oci://harbor.alexlebens.net/helm-charts
|
||||||
icon: https://cdn.jsdelivr.net/gh/selfhst/icons@main/png/music-grabber.png
|
icon: https://cdn.jsdelivr.net/gh/selfhst/icons@main/png/music-grabber.png
|
||||||
# renovate: datasource=docker depName=g33kphr33k/musicgrabber
|
# renovate: datasource=docker depName=g33kphr33k/musicgrabber
|
||||||
appVersion: 2.6.5
|
appVersion: 2.6.3
|
||||||
|
|||||||
@@ -12,7 +12,7 @@ music-grabber:
|
|||||||
main:
|
main:
|
||||||
image:
|
image:
|
||||||
repository: g33kphr33k/musicgrabber
|
repository: g33kphr33k/musicgrabber
|
||||||
tag: 2.6.5@sha256:5d276415a764a56955207ae41fe2df3341a152812fdf8a87e7c0b7e4e1fb681d
|
tag: 2.6.3@sha256:33ccf823b27387c5080da6df7e1b22f1e6443f878cfbf14fb06a6abcef79991d
|
||||||
env:
|
env:
|
||||||
- name: MUSIC_DIR
|
- name: MUSIC_DIR
|
||||||
value: /mnt/store/Music Grabber/
|
value: /mnt/store/Music Grabber/
|
||||||
|
|||||||
@@ -31,4 +31,4 @@ dependencies:
|
|||||||
repository: oci://harbor.alexlebens.net/helm-charts
|
repository: oci://harbor.alexlebens.net/helm-charts
|
||||||
icon: https://cdn.jsdelivr.net/gh/selfhst/icons/png/ollama.png
|
icon: https://cdn.jsdelivr.net/gh/selfhst/icons/png/ollama.png
|
||||||
# renovate: datasource=github-releases depName=ollama/ollama
|
# renovate: datasource=github-releases depName=ollama/ollama
|
||||||
appVersion: 0.21.0
|
appVersion: 0.20.7
|
||||||
|
|||||||
@@ -21,7 +21,7 @@ ollama:
|
|||||||
main:
|
main:
|
||||||
image:
|
image:
|
||||||
repository: ollama/ollama
|
repository: ollama/ollama
|
||||||
tag: 0.21.0@sha256:d3d553bdfbcc7f55dd5ddf42c4cbe3a927aa9bb1802710d35e94656ca5aea02b
|
tag: 0.20.7@sha256:487324a9312240e3e122446f351b1f1e3f68d884ef854c246db2e08792440d94
|
||||||
env:
|
env:
|
||||||
- name: OLLAMA_KEEP_ALIVE
|
- name: OLLAMA_KEEP_ALIVE
|
||||||
value: 24h
|
value: 24h
|
||||||
@@ -55,7 +55,7 @@ ollama:
|
|||||||
main:
|
main:
|
||||||
image:
|
image:
|
||||||
repository: ollama/ollama
|
repository: ollama/ollama
|
||||||
tag: 0.21.0@sha256:d3d553bdfbcc7f55dd5ddf42c4cbe3a927aa9bb1802710d35e94656ca5aea02b
|
tag: 0.20.7@sha256:487324a9312240e3e122446f351b1f1e3f68d884ef854c246db2e08792440d94
|
||||||
env:
|
env:
|
||||||
- name: OLLAMA_KEEP_ALIVE
|
- name: OLLAMA_KEEP_ALIVE
|
||||||
value: 24h
|
value: 24h
|
||||||
@@ -89,7 +89,7 @@ ollama:
|
|||||||
main:
|
main:
|
||||||
image:
|
image:
|
||||||
repository: ollama/ollama
|
repository: ollama/ollama
|
||||||
tag: 0.21.0@sha256:d3d553bdfbcc7f55dd5ddf42c4cbe3a927aa9bb1802710d35e94656ca5aea02b
|
tag: 0.20.7@sha256:487324a9312240e3e122446f351b1f1e3f68d884ef854c246db2e08792440d94
|
||||||
env:
|
env:
|
||||||
- name: OLLAMA_KEEP_ALIVE
|
- name: OLLAMA_KEEP_ALIVE
|
||||||
value: 24h
|
value: 24h
|
||||||
|
|||||||
@@ -25,15 +25,6 @@ openbao:
|
|||||||
kind: Gateway
|
kind: Gateway
|
||||||
name: traefik-gateway
|
name: traefik-gateway
|
||||||
namespace: traefik
|
namespace: traefik
|
||||||
httpRoute:
|
|
||||||
enabled: true
|
|
||||||
hosts:
|
|
||||||
- bao.alexlebens.net
|
|
||||||
parentRefs:
|
|
||||||
- group: gateway.networking.k8s.io
|
|
||||||
kind: Gateway
|
|
||||||
name: traefik-gateway
|
|
||||||
namespace: traefik
|
|
||||||
authDelegator:
|
authDelegator:
|
||||||
enabled: true
|
enabled: true
|
||||||
livenessProbe:
|
livenessProbe:
|
||||||
@@ -77,13 +68,6 @@ openbao:
|
|||||||
}
|
}
|
||||||
}
|
}
|
||||||
|
|
||||||
audit "file" "to-stdout" {
|
|
||||||
options {
|
|
||||||
file_path = "/openbao/audit/openbao_audit.log"
|
|
||||||
log_raw = "true"
|
|
||||||
}
|
|
||||||
}
|
|
||||||
|
|
||||||
service_registration "kubernetes" {}
|
service_registration "kubernetes" {}
|
||||||
|
|
||||||
telemetry {
|
telemetry {
|
||||||
@@ -95,7 +79,7 @@ openbao:
|
|||||||
image:
|
image:
|
||||||
registry: quay.io
|
registry: quay.io
|
||||||
repository: openbao/openbao-csi-provider
|
repository: openbao/openbao-csi-provider
|
||||||
tag: 2.0.2@sha256:3cb312e88c62c926caec03bf69497a16805a29daabb5ad2c7a236ab43bb241db
|
tag: 2.0.1@sha256:a3bd5e8183da778b5dc79ee1a3d7313ac77dc599b623b4106a91b19362674f27
|
||||||
resources:
|
resources:
|
||||||
requests:
|
requests:
|
||||||
cpu: 50m
|
cpu: 50m
|
||||||
@@ -141,7 +125,7 @@ openbao:
|
|||||||
s3Bucket: openbao-backups
|
s3Bucket: openbao-backups
|
||||||
s3Uri: s3://openbao-backups
|
s3Uri: s3://openbao-backups
|
||||||
s3ExpireDays: "30"
|
s3ExpireDays: "30"
|
||||||
s3cmdExtraFlag: "-v --no-ssl"
|
s3cmdExtraFlag: "-v"
|
||||||
baoAuthPath: kubernetes
|
baoAuthPath: kubernetes
|
||||||
baoRole: bao-snapshot
|
baoRole: bao-snapshot
|
||||||
unseal:
|
unseal:
|
||||||
|
|||||||
@@ -86,7 +86,7 @@ paperless-ngx:
|
|||||||
gotenberg:
|
gotenberg:
|
||||||
image:
|
image:
|
||||||
repository: gotenberg/gotenberg
|
repository: gotenberg/gotenberg
|
||||||
tag: 8.31.0@sha256:f0d86e8a1dbc7b33a5a65cb251d02bb271a48ffa989da3feb5ed7d954fe4d4b3
|
tag: 8.30.1@sha256:206a6c708fc6d05257367d9ac902d6c56c50d2e3284d0596ea000814ef97f22c
|
||||||
service:
|
service:
|
||||||
main:
|
main:
|
||||||
controller: main
|
controller: main
|
||||||
|
|||||||
@@ -208,7 +208,7 @@ qbittorrent:
|
|||||||
qui:
|
qui:
|
||||||
image:
|
image:
|
||||||
repository: ghcr.io/autobrr/qui
|
repository: ghcr.io/autobrr/qui
|
||||||
tag: v1.17.0@sha256:fb3832e68f66b056e1b049d16c40732661e7b73999bc642d4b11469a3ebbabd3
|
tag: v1.16.1@sha256:07b6ea9572e52e8b5f70f8fb15a7c688d8d754a7616242d3ad0b21dbd5c05836
|
||||||
env:
|
env:
|
||||||
- name: QUI__METRICS_ENABLED
|
- name: QUI__METRICS_ENABLED
|
||||||
value: true
|
value: true
|
||||||
|
|||||||
@@ -20,4 +20,4 @@ dependencies:
|
|||||||
version: 4.6.2
|
version: 4.6.2
|
||||||
icon: https://cdn.jsdelivr.net/gh/selfhst/icons@main/png/rclone.png
|
icon: https://cdn.jsdelivr.net/gh/selfhst/icons@main/png/rclone.png
|
||||||
# renovate: datasource=github-releases depName=rclone/rclone
|
# renovate: datasource=github-releases depName=rclone/rclone
|
||||||
appVersion: v1.73.5
|
appVersion: v1.73.4
|
||||||
|
|||||||
@@ -14,23 +14,38 @@ spec:
|
|||||||
data:
|
data:
|
||||||
- secretKey: ACCESS_KEY_ID
|
- secretKey: ACCESS_KEY_ID
|
||||||
remoteRef:
|
remoteRef:
|
||||||
|
conversionStrategy: Default
|
||||||
|
decodingStrategy: None
|
||||||
key: /garage/home-infra/directus-assets
|
key: /garage/home-infra/directus-assets
|
||||||
|
metadataPolicy: None
|
||||||
property: ACCESS_KEY_ID
|
property: ACCESS_KEY_ID
|
||||||
- secretKey: ACCESS_REGION
|
- secretKey: ACCESS_REGION
|
||||||
remoteRef:
|
remoteRef:
|
||||||
|
conversionStrategy: Default
|
||||||
|
decodingStrategy: None
|
||||||
key: /garage/home-infra/directus-assets
|
key: /garage/home-infra/directus-assets
|
||||||
|
metadataPolicy: None
|
||||||
property: ACCESS_REGION
|
property: ACCESS_REGION
|
||||||
- secretKey: ACCESS_SECRET_KEY
|
- secretKey: ACCESS_SECRET_KEY
|
||||||
remoteRef:
|
remoteRef:
|
||||||
|
conversionStrategy: Default
|
||||||
|
decodingStrategy: None
|
||||||
key: /garage/home-infra/directus-assets
|
key: /garage/home-infra/directus-assets
|
||||||
|
metadataPolicy: None
|
||||||
property: ACCESS_SECRET_KEY
|
property: ACCESS_SECRET_KEY
|
||||||
- secretKey: SRC_ENDPOINT
|
- secretKey: SRC_ENDPOINT
|
||||||
remoteRef:
|
remoteRef:
|
||||||
|
conversionStrategy: Default
|
||||||
|
decodingStrategy: None
|
||||||
key: /garage/config/local
|
key: /garage/config/local
|
||||||
|
metadataPolicy: None
|
||||||
property: ENDPOINT
|
property: ENDPOINT
|
||||||
- secretKey: DEST_ENDPOINT
|
- secretKey: DEST_ENDPOINT
|
||||||
remoteRef:
|
remoteRef:
|
||||||
|
conversionStrategy: Default
|
||||||
|
decodingStrategy: None
|
||||||
key: /garage/config/remote
|
key: /garage/config/remote
|
||||||
|
metadataPolicy: None
|
||||||
property: ENDPOINT
|
property: ENDPOINT
|
||||||
|
|
||||||
---
|
---
|
||||||
@@ -50,23 +65,38 @@ spec:
|
|||||||
data:
|
data:
|
||||||
- secretKey: ACCESS_KEY_ID
|
- secretKey: ACCESS_KEY_ID
|
||||||
remoteRef:
|
remoteRef:
|
||||||
|
conversionStrategy: Default
|
||||||
|
decodingStrategy: None
|
||||||
key: /garage/home-infra/karakeep-assets
|
key: /garage/home-infra/karakeep-assets
|
||||||
|
metadataPolicy: None
|
||||||
property: ACCESS_KEY_ID
|
property: ACCESS_KEY_ID
|
||||||
- secretKey: ACCESS_REGION
|
- secretKey: ACCESS_REGION
|
||||||
remoteRef:
|
remoteRef:
|
||||||
|
conversionStrategy: Default
|
||||||
|
decodingStrategy: None
|
||||||
key: /garage/home-infra/karakeep-assets
|
key: /garage/home-infra/karakeep-assets
|
||||||
|
metadataPolicy: None
|
||||||
property: ACCESS_REGION
|
property: ACCESS_REGION
|
||||||
- secretKey: ACCESS_SECRET_KEY
|
- secretKey: ACCESS_SECRET_KEY
|
||||||
remoteRef:
|
remoteRef:
|
||||||
|
conversionStrategy: Default
|
||||||
|
decodingStrategy: None
|
||||||
key: /garage/home-infra/karakeep-assets
|
key: /garage/home-infra/karakeep-assets
|
||||||
|
metadataPolicy: None
|
||||||
property: ACCESS_SECRET_KEY
|
property: ACCESS_SECRET_KEY
|
||||||
- secretKey: SRC_ENDPOINT
|
- secretKey: SRC_ENDPOINT
|
||||||
remoteRef:
|
remoteRef:
|
||||||
|
conversionStrategy: Default
|
||||||
|
decodingStrategy: None
|
||||||
key: /garage/config/local
|
key: /garage/config/local
|
||||||
|
metadataPolicy: None
|
||||||
property: ENDPOINT
|
property: ENDPOINT
|
||||||
- secretKey: DEST_ENDPOINT
|
- secretKey: DEST_ENDPOINT
|
||||||
remoteRef:
|
remoteRef:
|
||||||
|
conversionStrategy: Default
|
||||||
|
decodingStrategy: None
|
||||||
key: /garage/config/remote
|
key: /garage/config/remote
|
||||||
|
metadataPolicy: None
|
||||||
property: ENDPOINT
|
property: ENDPOINT
|
||||||
|
|
||||||
---
|
---
|
||||||
@@ -86,23 +116,38 @@ spec:
|
|||||||
data:
|
data:
|
||||||
- secretKey: ACCESS_KEY_ID
|
- secretKey: ACCESS_KEY_ID
|
||||||
remoteRef:
|
remoteRef:
|
||||||
|
conversionStrategy: Default
|
||||||
|
decodingStrategy: None
|
||||||
key: /garage/home-infra/talos-backups
|
key: /garage/home-infra/talos-backups
|
||||||
|
metadataPolicy: None
|
||||||
property: ACCESS_KEY_ID
|
property: ACCESS_KEY_ID
|
||||||
- secretKey: ACCESS_REGION
|
- secretKey: ACCESS_REGION
|
||||||
remoteRef:
|
remoteRef:
|
||||||
|
conversionStrategy: Default
|
||||||
|
decodingStrategy: None
|
||||||
key: /garage/home-infra/talos-backups
|
key: /garage/home-infra/talos-backups
|
||||||
|
metadataPolicy: None
|
||||||
property: ACCESS_REGION
|
property: ACCESS_REGION
|
||||||
- secretKey: ACCESS_SECRET_KEY
|
- secretKey: ACCESS_SECRET_KEY
|
||||||
remoteRef:
|
remoteRef:
|
||||||
|
conversionStrategy: Default
|
||||||
|
decodingStrategy: None
|
||||||
key: /garage/home-infra/talos-backups
|
key: /garage/home-infra/talos-backups
|
||||||
|
metadataPolicy: None
|
||||||
property: ACCESS_SECRET_KEY
|
property: ACCESS_SECRET_KEY
|
||||||
- secretKey: SRC_ENDPOINT
|
- secretKey: SRC_ENDPOINT
|
||||||
remoteRef:
|
remoteRef:
|
||||||
|
conversionStrategy: Default
|
||||||
|
decodingStrategy: None
|
||||||
key: /garage/config/local
|
key: /garage/config/local
|
||||||
|
metadataPolicy: None
|
||||||
property: ENDPOINT
|
property: ENDPOINT
|
||||||
- secretKey: DEST_ENDPOINT
|
- secretKey: DEST_ENDPOINT
|
||||||
remoteRef:
|
remoteRef:
|
||||||
|
conversionStrategy: Default
|
||||||
|
decodingStrategy: None
|
||||||
key: /garage/config/remote
|
key: /garage/config/remote
|
||||||
|
metadataPolicy: None
|
||||||
property: ENDPOINT
|
property: ENDPOINT
|
||||||
|
|
||||||
---
|
---
|
||||||
@@ -122,23 +167,38 @@ spec:
|
|||||||
data:
|
data:
|
||||||
- secretKey: ACCESS_KEY_ID
|
- secretKey: ACCESS_KEY_ID
|
||||||
remoteRef:
|
remoteRef:
|
||||||
|
conversionStrategy: Default
|
||||||
|
decodingStrategy: None
|
||||||
key: /garage/home-infra/web-assets
|
key: /garage/home-infra/web-assets
|
||||||
|
metadataPolicy: None
|
||||||
property: ACCESS_KEY_ID
|
property: ACCESS_KEY_ID
|
||||||
- secretKey: ACCESS_REGION
|
- secretKey: ACCESS_REGION
|
||||||
remoteRef:
|
remoteRef:
|
||||||
|
conversionStrategy: Default
|
||||||
|
decodingStrategy: None
|
||||||
key: /garage/home-infra/web-assets
|
key: /garage/home-infra/web-assets
|
||||||
|
metadataPolicy: None
|
||||||
property: ACCESS_REGION
|
property: ACCESS_REGION
|
||||||
- secretKey: ACCESS_SECRET_KEY
|
- secretKey: ACCESS_SECRET_KEY
|
||||||
remoteRef:
|
remoteRef:
|
||||||
|
conversionStrategy: Default
|
||||||
|
decodingStrategy: None
|
||||||
key: /garage/home-infra/web-assets
|
key: /garage/home-infra/web-assets
|
||||||
|
metadataPolicy: None
|
||||||
property: ACCESS_SECRET_KEY
|
property: ACCESS_SECRET_KEY
|
||||||
- secretKey: SRC_ENDPOINT
|
- secretKey: SRC_ENDPOINT
|
||||||
remoteRef:
|
remoteRef:
|
||||||
|
conversionStrategy: Default
|
||||||
|
decodingStrategy: None
|
||||||
key: /garage/config/local
|
key: /garage/config/local
|
||||||
|
metadataPolicy: None
|
||||||
property: ENDPOINT
|
property: ENDPOINT
|
||||||
- secretKey: DEST_ENDPOINT
|
- secretKey: DEST_ENDPOINT
|
||||||
remoteRef:
|
remoteRef:
|
||||||
|
conversionStrategy: Default
|
||||||
|
decodingStrategy: None
|
||||||
key: /garage/config/remote
|
key: /garage/config/remote
|
||||||
|
metadataPolicy: None
|
||||||
property: ENDPOINT
|
property: ENDPOINT
|
||||||
|
|
||||||
---
|
---
|
||||||
@@ -158,23 +218,38 @@ spec:
|
|||||||
data:
|
data:
|
||||||
- secretKey: ACCESS_KEY_ID
|
- secretKey: ACCESS_KEY_ID
|
||||||
remoteRef:
|
remoteRef:
|
||||||
|
conversionStrategy: Default
|
||||||
|
decodingStrategy: None
|
||||||
key: /garage/home-infra/postgres-backups
|
key: /garage/home-infra/postgres-backups
|
||||||
|
metadataPolicy: None
|
||||||
property: ACCESS_KEY_ID
|
property: ACCESS_KEY_ID
|
||||||
- secretKey: ACCESS_REGION
|
- secretKey: ACCESS_REGION
|
||||||
remoteRef:
|
remoteRef:
|
||||||
|
conversionStrategy: Default
|
||||||
|
decodingStrategy: None
|
||||||
key: /garage/home-infra/postgres-backups
|
key: /garage/home-infra/postgres-backups
|
||||||
|
metadataPolicy: None
|
||||||
property: ACCESS_REGION
|
property: ACCESS_REGION
|
||||||
- secretKey: ACCESS_SECRET_KEY
|
- secretKey: ACCESS_SECRET_KEY
|
||||||
remoteRef:
|
remoteRef:
|
||||||
|
conversionStrategy: Default
|
||||||
|
decodingStrategy: None
|
||||||
key: /garage/home-infra/postgres-backups
|
key: /garage/home-infra/postgres-backups
|
||||||
|
metadataPolicy: None
|
||||||
property: ACCESS_SECRET_KEY
|
property: ACCESS_SECRET_KEY
|
||||||
- secretKey: SRC_ENDPOINT
|
- secretKey: SRC_ENDPOINT
|
||||||
remoteRef:
|
remoteRef:
|
||||||
|
conversionStrategy: Default
|
||||||
|
decodingStrategy: None
|
||||||
key: /garage/config/local
|
key: /garage/config/local
|
||||||
|
metadataPolicy: None
|
||||||
property: ENDPOINT
|
property: ENDPOINT
|
||||||
- secretKey: DEST_ENDPOINT
|
- secretKey: DEST_ENDPOINT
|
||||||
remoteRef:
|
remoteRef:
|
||||||
|
conversionStrategy: Default
|
||||||
|
decodingStrategy: None
|
||||||
key: /garage/config/remote
|
key: /garage/config/remote
|
||||||
|
metadataPolicy: None
|
||||||
property: ENDPOINT
|
property: ENDPOINT
|
||||||
|
|
||||||
---
|
---
|
||||||
@@ -194,89 +269,36 @@ spec:
|
|||||||
data:
|
data:
|
||||||
- secretKey: ACCESS_KEY_ID
|
- secretKey: ACCESS_KEY_ID
|
||||||
remoteRef:
|
remoteRef:
|
||||||
|
conversionStrategy: Default
|
||||||
|
decodingStrategy: None
|
||||||
key: /garage/home-infra/ntfy-attachments
|
key: /garage/home-infra/ntfy-attachments
|
||||||
|
metadataPolicy: None
|
||||||
property: ACCESS_KEY_ID
|
property: ACCESS_KEY_ID
|
||||||
- secretKey: ACCESS_REGION
|
- secretKey: ACCESS_REGION
|
||||||
remoteRef:
|
remoteRef:
|
||||||
|
conversionStrategy: Default
|
||||||
|
decodingStrategy: None
|
||||||
key: /garage/home-infra/ntfy-attachments
|
key: /garage/home-infra/ntfy-attachments
|
||||||
|
metadataPolicy: None
|
||||||
property: ACCESS_REGION
|
property: ACCESS_REGION
|
||||||
- secretKey: ACCESS_SECRET_KEY
|
- secretKey: ACCESS_SECRET_KEY
|
||||||
remoteRef:
|
remoteRef:
|
||||||
|
conversionStrategy: Default
|
||||||
|
decodingStrategy: None
|
||||||
key: /garage/home-infra/ntfy-attachments
|
key: /garage/home-infra/ntfy-attachments
|
||||||
|
metadataPolicy: None
|
||||||
property: ACCESS_SECRET_KEY
|
property: ACCESS_SECRET_KEY
|
||||||
- secretKey: SRC_ENDPOINT
|
- secretKey: SRC_ENDPOINT
|
||||||
remoteRef:
|
remoteRef:
|
||||||
|
conversionStrategy: Default
|
||||||
|
decodingStrategy: None
|
||||||
key: /garage/config/local
|
key: /garage/config/local
|
||||||
|
metadataPolicy: None
|
||||||
property: ENDPOINT
|
property: ENDPOINT
|
||||||
- secretKey: DEST_ENDPOINT
|
- secretKey: DEST_ENDPOINT
|
||||||
remoteRef:
|
remoteRef:
|
||||||
|
conversionStrategy: Default
|
||||||
|
decodingStrategy: None
|
||||||
key: /garage/config/remote
|
key: /garage/config/remote
|
||||||
property: ENDPOINT
|
metadataPolicy: None
|
||||||
|
|
||||||
---
|
|
||||||
apiVersion: external-secrets.io/v1
|
|
||||||
kind: ExternalSecret
|
|
||||||
metadata:
|
|
||||||
name: garage-openbao-backups-secret
|
|
||||||
namespace: {{ .Release.Namespace }}
|
|
||||||
labels:
|
|
||||||
app.kubernetes.io/name: garage-openbao-backups-secret
|
|
||||||
app.kubernetes.io/instance: {{ .Release.Name }}
|
|
||||||
app.kubernetes.io/part-of: {{ .Release.Name }}
|
|
||||||
spec:
|
|
||||||
secretStoreRef:
|
|
||||||
kind: ClusterSecretStore
|
|
||||||
name: openbao
|
|
||||||
data:
|
|
||||||
- secretKey: ACCESS_KEY_ID
|
|
||||||
remoteRef:
|
|
||||||
key: /garage/home-infra/openbao-backups
|
|
||||||
property: ACCESS_KEY_ID
|
|
||||||
- secretKey: ACCESS_REGION
|
|
||||||
remoteRef:
|
|
||||||
key: /garage/home-infra/openbao-backups
|
|
||||||
property: ACCESS_REGION
|
|
||||||
- secretKey: ACCESS_SECRET_KEY
|
|
||||||
remoteRef:
|
|
||||||
key: /garage/home-infra/openbao-backups
|
|
||||||
property: ACCESS_SECRET_KEY
|
|
||||||
- secretKey: ENDPOINT_LOCAL
|
|
||||||
remoteRef:
|
|
||||||
key: /garage/home-infra/openbao-backups
|
|
||||||
property: ENDPOINT_LOCAL
|
|
||||||
- secretKey: ENDPOINT_REMOTE
|
|
||||||
remoteRef:
|
|
||||||
key: /garage/home-infra/openbao-backups
|
|
||||||
property: ENDPOINT_REMOTE
|
|
||||||
|
|
||||||
---
|
|
||||||
apiVersion: external-secrets.io/v1
|
|
||||||
kind: ExternalSecret
|
|
||||||
metadata:
|
|
||||||
name: external-openbao-backups-secret
|
|
||||||
namespace: {{ .Release.Namespace }}
|
|
||||||
labels:
|
|
||||||
app.kubernetes.io/name: external-openbao-backups-secret
|
|
||||||
app.kubernetes.io/instance: {{ .Release.Name }}
|
|
||||||
app.kubernetes.io/part-of: {{ .Release.Name }}
|
|
||||||
spec:
|
|
||||||
secretStoreRef:
|
|
||||||
kind: ClusterSecretStore
|
|
||||||
name: openbao
|
|
||||||
data:
|
|
||||||
- secretKey: ACCESS_KEY_ID
|
|
||||||
remoteRef:
|
|
||||||
key: /digital-ocean/home-infra/openbao-backups
|
|
||||||
property: ACCESS_KEY_ID
|
|
||||||
- secretKey: ACCESS_REGION
|
|
||||||
remoteRef:
|
|
||||||
key: /digital-ocean/home-infra/openbao-backups
|
|
||||||
property: ACCESS_REGION
|
|
||||||
- secretKey: ACCESS_SECRET_KEY
|
|
||||||
remoteRef:
|
|
||||||
key: /digital-ocean/home-infra/openbao-backups
|
|
||||||
property: ACCESS_SECRET_KEY
|
|
||||||
- secretKey: ENDPOINT
|
|
||||||
remoteRef:
|
|
||||||
key: /digital-ocean/home-infra/openbao-backups
|
|
||||||
property: ENDPOINT
|
property: ENDPOINT
|
||||||
|
|||||||
@@ -12,7 +12,7 @@ rclone:
|
|||||||
sync:
|
sync:
|
||||||
image:
|
image:
|
||||||
repository: rclone/rclone
|
repository: rclone/rclone
|
||||||
tag: 1.73.5@sha256:1619a625f845e169c34b952cf40c483c0392965b821c5155cde8cbfd35254a96
|
tag: 1.73.4@sha256:654f6517c7aaec7e377690b2caf7c272dbe5f3b8200afbc14a00df6b4a9aa6ef
|
||||||
args:
|
args:
|
||||||
- sync
|
- sync
|
||||||
- src:directus-assets
|
- src:directus-assets
|
||||||
@@ -90,7 +90,7 @@ rclone:
|
|||||||
sync:
|
sync:
|
||||||
image:
|
image:
|
||||||
repository: rclone/rclone
|
repository: rclone/rclone
|
||||||
tag: 1.73.5@sha256:1619a625f845e169c34b952cf40c483c0392965b821c5155cde8cbfd35254a96
|
tag: 1.73.4@sha256:654f6517c7aaec7e377690b2caf7c272dbe5f3b8200afbc14a00df6b4a9aa6ef
|
||||||
args:
|
args:
|
||||||
- sync
|
- sync
|
||||||
- src:karakeep-assets
|
- src:karakeep-assets
|
||||||
@@ -168,7 +168,7 @@ rclone:
|
|||||||
sync:
|
sync:
|
||||||
image:
|
image:
|
||||||
repository: rclone/rclone
|
repository: rclone/rclone
|
||||||
tag: 1.73.5@sha256:1619a625f845e169c34b952cf40c483c0392965b821c5155cde8cbfd35254a96
|
tag: 1.73.4@sha256:654f6517c7aaec7e377690b2caf7c272dbe5f3b8200afbc14a00df6b4a9aa6ef
|
||||||
args:
|
args:
|
||||||
- sync
|
- sync
|
||||||
- src:talos-backups
|
- src:talos-backups
|
||||||
@@ -239,7 +239,7 @@ rclone:
|
|||||||
prune:
|
prune:
|
||||||
image:
|
image:
|
||||||
repository: rclone/rclone
|
repository: rclone/rclone
|
||||||
tag: 1.73.5@sha256:1619a625f845e169c34b952cf40c483c0392965b821c5155cde8cbfd35254a96
|
tag: 1.73.4@sha256:654f6517c7aaec7e377690b2caf7c272dbe5f3b8200afbc14a00df6b4a9aa6ef
|
||||||
args:
|
args:
|
||||||
- delete
|
- delete
|
||||||
- dest:talos-backups
|
- dest:talos-backups
|
||||||
@@ -287,7 +287,7 @@ rclone:
|
|||||||
sync:
|
sync:
|
||||||
image:
|
image:
|
||||||
repository: rclone/rclone
|
repository: rclone/rclone
|
||||||
tag: 1.73.5@sha256:1619a625f845e169c34b952cf40c483c0392965b821c5155cde8cbfd35254a96
|
tag: 1.73.4@sha256:654f6517c7aaec7e377690b2caf7c272dbe5f3b8200afbc14a00df6b4a9aa6ef
|
||||||
args:
|
args:
|
||||||
- sync
|
- sync
|
||||||
- src:web-assets
|
- src:web-assets
|
||||||
@@ -365,7 +365,7 @@ rclone:
|
|||||||
sync:
|
sync:
|
||||||
image:
|
image:
|
||||||
repository: rclone/rclone
|
repository: rclone/rclone
|
||||||
tag: 1.73.5@sha256:1619a625f845e169c34b952cf40c483c0392965b821c5155cde8cbfd35254a96
|
tag: 1.73.4@sha256:654f6517c7aaec7e377690b2caf7c272dbe5f3b8200afbc14a00df6b4a9aa6ef
|
||||||
args:
|
args:
|
||||||
- sync
|
- sync
|
||||||
- src:postgres-backups
|
- src:postgres-backups
|
||||||
@@ -440,7 +440,7 @@ rclone:
|
|||||||
prune:
|
prune:
|
||||||
image:
|
image:
|
||||||
repository: rclone/rclone
|
repository: rclone/rclone
|
||||||
tag: 1.73.5@sha256:1619a625f845e169c34b952cf40c483c0392965b821c5155cde8cbfd35254a96
|
tag: 1.73.4@sha256:654f6517c7aaec7e377690b2caf7c272dbe5f3b8200afbc14a00df6b4a9aa6ef
|
||||||
args:
|
args:
|
||||||
- delete
|
- delete
|
||||||
- dest:postgres-backups
|
- dest:postgres-backups
|
||||||
@@ -488,7 +488,7 @@ rclone:
|
|||||||
sync:
|
sync:
|
||||||
image:
|
image:
|
||||||
repository: rclone/rclone
|
repository: rclone/rclone
|
||||||
tag: 1.73.5@sha256:1619a625f845e169c34b952cf40c483c0392965b821c5155cde8cbfd35254a96
|
tag: 1.73.4@sha256:654f6517c7aaec7e377690b2caf7c272dbe5f3b8200afbc14a00df6b4a9aa6ef
|
||||||
args:
|
args:
|
||||||
- sync
|
- sync
|
||||||
- src:ntfy-attachments
|
- src:ntfy-attachments
|
||||||
@@ -554,241 +554,3 @@ rclone:
|
|||||||
key: DEST_ENDPOINT
|
key: DEST_ENDPOINT
|
||||||
- name: RCLONE_CONFIG_SRC_DEST_FORCE_PATH_STYLE
|
- name: RCLONE_CONFIG_SRC_DEST_FORCE_PATH_STYLE
|
||||||
value: true
|
value: true
|
||||||
openbao-backups-remote:
|
|
||||||
type: cronjob
|
|
||||||
cronjob:
|
|
||||||
suspend: false
|
|
||||||
timeZone: America/Chicago
|
|
||||||
schedule: 0 1 * * *
|
|
||||||
backoffLimit: 3
|
|
||||||
parallelism: 1
|
|
||||||
containers:
|
|
||||||
sync:
|
|
||||||
image:
|
|
||||||
repository: rclone/rclone
|
|
||||||
tag: 1.73.5@sha256:1619a625f845e169c34b952cf40c483c0392965b821c5155cde8cbfd35254a96
|
|
||||||
args:
|
|
||||||
- sync
|
|
||||||
- src:openbao-backups
|
|
||||||
- dest:openbao-backups
|
|
||||||
- --s3-no-check-bucket
|
|
||||||
- --max-age
|
|
||||||
- 90d
|
|
||||||
- --verbose
|
|
||||||
env:
|
|
||||||
- name: RCLONE_S3_PROVIDER
|
|
||||||
value: Other
|
|
||||||
- name: RCLONE_CONFIG_SRC_TYPE
|
|
||||||
value: s3
|
|
||||||
- name: RCLONE_CONFIG_SRC_PROVIDER
|
|
||||||
value: Other
|
|
||||||
- name: RCLONE_CONFIG_SRC_ENV_AUTH
|
|
||||||
value: false
|
|
||||||
- name: RCLONE_CONFIG_SRC_ACCESS_KEY_ID
|
|
||||||
valueFrom:
|
|
||||||
secretKeyRef:
|
|
||||||
name: garage-openbao-backups-secret
|
|
||||||
key: ACCESS_KEY_ID
|
|
||||||
- name: RCLONE_CONFIG_SRC_SECRET_ACCESS_KEY
|
|
||||||
valueFrom:
|
|
||||||
secretKeyRef:
|
|
||||||
name: garage-openbao-backups-secret
|
|
||||||
key: ACCESS_SECRET_KEY
|
|
||||||
- name: RCLONE_CONFIG_SRC_REGION
|
|
||||||
valueFrom:
|
|
||||||
secretKeyRef:
|
|
||||||
name: garage-openbao-backups-secret
|
|
||||||
key: ACCESS_REGION
|
|
||||||
- name: RCLONE_CONFIG_SRC_ENDPOINT
|
|
||||||
valueFrom:
|
|
||||||
secretKeyRef:
|
|
||||||
name: garage-openbao-backups-secret
|
|
||||||
key: ENDPOINT_LOCAL
|
|
||||||
- name: RCLONE_CONFIG_SRC_S3_FORCE_PATH_STYLE
|
|
||||||
value: true
|
|
||||||
- name: RCLONE_CONFIG_DEST_TYPE
|
|
||||||
value: s3
|
|
||||||
- name: RCLONE_CONFIG_DEST_PROVIDER
|
|
||||||
value: Other
|
|
||||||
- name: RCLONE_CONFIG_DEST_ENV_AUTH
|
|
||||||
value: false
|
|
||||||
- name: RCLONE_CONFIG_DEST_ACCESS_KEY_ID
|
|
||||||
valueFrom:
|
|
||||||
secretKeyRef:
|
|
||||||
name: garage-openbao-backups-secret
|
|
||||||
key: ACCESS_KEY_ID
|
|
||||||
- name: RCLONE_CONFIG_DEST_SECRET_ACCESS_KEY
|
|
||||||
valueFrom:
|
|
||||||
secretKeyRef:
|
|
||||||
name: garage-openbao-backups-secret
|
|
||||||
key: ACCESS_SECRET_KEY
|
|
||||||
- name: RCLONE_CONFIG_DEST_REGION
|
|
||||||
valueFrom:
|
|
||||||
secretKeyRef:
|
|
||||||
name: garage-openbao-backups-secret
|
|
||||||
key: ACCESS_REGION
|
|
||||||
- name: RCLONE_CONFIG_DEST_ENDPOINT
|
|
||||||
valueFrom:
|
|
||||||
secretKeyRef:
|
|
||||||
name: garage-openbao-backups-secret
|
|
||||||
key: ENDPOINT_REMOTE
|
|
||||||
- name: RCLONE_CONFIG_SRC_DEST_FORCE_PATH_STYLE
|
|
||||||
value: true
|
|
||||||
prune:
|
|
||||||
image:
|
|
||||||
repository: rclone/rclone
|
|
||||||
tag: 1.73.5@sha256:1619a625f845e169c34b952cf40c483c0392965b821c5155cde8cbfd35254a96
|
|
||||||
args:
|
|
||||||
- delete
|
|
||||||
- dest:openbao-backups
|
|
||||||
- --min-age
|
|
||||||
- 90d
|
|
||||||
- --verbose
|
|
||||||
env:
|
|
||||||
- name: RCLONE_CONFIG_DEST_TYPE
|
|
||||||
value: s3
|
|
||||||
- name: RCLONE_CONFIG_DEST_PROVIDER
|
|
||||||
value: Other
|
|
||||||
- name: RCLONE_CONFIG_DEST_ENV_AUTH
|
|
||||||
value: false
|
|
||||||
- name: RCLONE_CONFIG_DEST_ACCESS_KEY_ID
|
|
||||||
valueFrom:
|
|
||||||
secretKeyRef:
|
|
||||||
name: garage-openbao-backups-secret
|
|
||||||
key: ACCESS_KEY_ID
|
|
||||||
- name: RCLONE_CONFIG_DEST_SECRET_ACCESS_KEY
|
|
||||||
valueFrom:
|
|
||||||
secretKeyRef:
|
|
||||||
name: garage-openbao-backups-secret
|
|
||||||
key: ACCESS_SECRET_KEY
|
|
||||||
- name: RCLONE_CONFIG_DEST_REGION
|
|
||||||
valueFrom:
|
|
||||||
secretKeyRef:
|
|
||||||
name: garage-openbao-backups-secret
|
|
||||||
key: ACCESS_REGION
|
|
||||||
- name: RCLONE_CONFIG_DEST_ENDPOINT
|
|
||||||
valueFrom:
|
|
||||||
secretKeyRef:
|
|
||||||
name: garage-openbao-backups-secret
|
|
||||||
key: ENDPOINT_REMOTE
|
|
||||||
- name: RCLONE_CONFIG_SRC_S3_FORCE_PATH_STYLE
|
|
||||||
value: true
|
|
||||||
openbao-backups-external:
|
|
||||||
type: cronjob
|
|
||||||
cronjob:
|
|
||||||
suspend: false
|
|
||||||
timeZone: America/Chicago
|
|
||||||
schedule: 10 1 * * *
|
|
||||||
backoffLimit: 3
|
|
||||||
parallelism: 1
|
|
||||||
containers:
|
|
||||||
sync:
|
|
||||||
image:
|
|
||||||
repository: rclone/rclone
|
|
||||||
tag: 1.73.5@sha256:1619a625f845e169c34b952cf40c483c0392965b821c5155cde8cbfd35254a96
|
|
||||||
args:
|
|
||||||
- sync
|
|
||||||
- src:openbao-backups
|
|
||||||
- dest:openbao-backups-6e088aad5fad110b
|
|
||||||
- --s3-no-check-bucket
|
|
||||||
- --max-age
|
|
||||||
- 90d
|
|
||||||
- --verbose
|
|
||||||
env:
|
|
||||||
- name: RCLONE_S3_PROVIDER
|
|
||||||
value: Other
|
|
||||||
- name: RCLONE_CONFIG_SRC_TYPE
|
|
||||||
value: s3
|
|
||||||
- name: RCLONE_CONFIG_SRC_PROVIDER
|
|
||||||
value: Other
|
|
||||||
- name: RCLONE_CONFIG_SRC_ENV_AUTH
|
|
||||||
value: false
|
|
||||||
- name: RCLONE_CONFIG_SRC_ACCESS_KEY_ID
|
|
||||||
valueFrom:
|
|
||||||
secretKeyRef:
|
|
||||||
name: garage-openbao-backups-secret
|
|
||||||
key: ACCESS_KEY_ID
|
|
||||||
- name: RCLONE_CONFIG_SRC_SECRET_ACCESS_KEY
|
|
||||||
valueFrom:
|
|
||||||
secretKeyRef:
|
|
||||||
name: garage-openbao-backups-secret
|
|
||||||
key: ACCESS_SECRET_KEY
|
|
||||||
- name: RCLONE_CONFIG_SRC_REGION
|
|
||||||
valueFrom:
|
|
||||||
secretKeyRef:
|
|
||||||
name: garage-openbao-backups-secret
|
|
||||||
key: ACCESS_REGION
|
|
||||||
- name: RCLONE_CONFIG_SRC_ENDPOINT
|
|
||||||
valueFrom:
|
|
||||||
secretKeyRef:
|
|
||||||
name: garage-openbao-backups-secret
|
|
||||||
key: ENDPOINT_LOCAL
|
|
||||||
- name: RCLONE_CONFIG_SRC_S3_FORCE_PATH_STYLE
|
|
||||||
value: true
|
|
||||||
- name: RCLONE_CONFIG_DEST_TYPE
|
|
||||||
value: s3
|
|
||||||
- name: RCLONE_CONFIG_DEST_PROVIDER
|
|
||||||
value: DigitalOcean
|
|
||||||
- name: RCLONE_CONFIG_DEST_ENV_AUTH
|
|
||||||
value: false
|
|
||||||
- name: RCLONE_CONFIG_DEST_ACCESS_KEY_ID
|
|
||||||
valueFrom:
|
|
||||||
secretKeyRef:
|
|
||||||
name: external-openbao-backups-secret
|
|
||||||
key: ACCESS_KEY_ID
|
|
||||||
- name: RCLONE_CONFIG_DEST_SECRET_ACCESS_KEY
|
|
||||||
valueFrom:
|
|
||||||
secretKeyRef:
|
|
||||||
name: external-openbao-backups-secret
|
|
||||||
key: ACCESS_SECRET_KEY
|
|
||||||
- name: RCLONE_CONFIG_DEST_REGION
|
|
||||||
valueFrom:
|
|
||||||
secretKeyRef:
|
|
||||||
name: external-openbao-backups-secret
|
|
||||||
key: ACCESS_REGION
|
|
||||||
- name: RCLONE_CONFIG_DEST_ENDPOINT
|
|
||||||
valueFrom:
|
|
||||||
secretKeyRef:
|
|
||||||
name: external-openbao-backups-secret
|
|
||||||
key: ENDPOINT
|
|
||||||
- name: RCLONE_CONFIG_DEST_S3_FORCE_PATH_STYLE
|
|
||||||
value: true
|
|
||||||
prune:
|
|
||||||
image:
|
|
||||||
repository: rclone/rclone
|
|
||||||
tag: 1.73.5@sha256:1619a625f845e169c34b952cf40c483c0392965b821c5155cde8cbfd35254a96
|
|
||||||
args:
|
|
||||||
- delete
|
|
||||||
- dest:openbao-backups-6e088aad5fad110b
|
|
||||||
- --min-age
|
|
||||||
- 90d
|
|
||||||
- --verbose
|
|
||||||
env:
|
|
||||||
- name: RCLONE_CONFIG_DEST_TYPE
|
|
||||||
value: s3
|
|
||||||
- name: RCLONE_CONFIG_DEST_PROVIDER
|
|
||||||
value: DigitalOcean
|
|
||||||
- name: RCLONE_CONFIG_DEST_ENV_AUTH
|
|
||||||
value: false
|
|
||||||
- name: RCLONE_CONFIG_DEST_ACCESS_KEY_ID
|
|
||||||
valueFrom:
|
|
||||||
secretKeyRef:
|
|
||||||
name: external-openbao-backups-secret
|
|
||||||
key: ACCESS_KEY_ID
|
|
||||||
- name: RCLONE_CONFIG_DEST_SECRET_ACCESS_KEY
|
|
||||||
valueFrom:
|
|
||||||
secretKeyRef:
|
|
||||||
name: external-openbao-backups-secret
|
|
||||||
key: ACCESS_SECRET_KEY
|
|
||||||
- name: RCLONE_CONFIG_DEST_REGION
|
|
||||||
valueFrom:
|
|
||||||
secretKeyRef:
|
|
||||||
name: external-openbao-backups-secret
|
|
||||||
key: ACCESS_REGION
|
|
||||||
- name: RCLONE_CONFIG_DEST_ENDPOINT
|
|
||||||
valueFrom:
|
|
||||||
secretKeyRef:
|
|
||||||
name: external-openbao-backups-secret
|
|
||||||
key: ENDPOINT
|
|
||||||
- name: RCLONE_CONFIG_DEST_S3_FORCE_PATH_STYLE
|
|
||||||
value: true
|
|
||||||
|
|||||||
@@ -8,7 +8,7 @@ searxng:
|
|||||||
main:
|
main:
|
||||||
image:
|
image:
|
||||||
repository: searxng/searxng
|
repository: searxng/searxng
|
||||||
tag: latest@sha256:0bbe85fb9bebe413a26c0e385c76309d15c91fdb9dc8a6bf01b35b714d0ece43
|
tag: latest@sha256:222b4c11534e0bd9b5ed80081680094a1d663413cbe1d142e184515c4035fc23
|
||||||
env:
|
env:
|
||||||
- name: SEARXNG_BASE_URL
|
- name: SEARXNG_BASE_URL
|
||||||
value: http://searxng-api.searxng:8080
|
value: http://searxng-api.searxng:8080
|
||||||
@@ -36,7 +36,7 @@ searxng:
|
|||||||
main:
|
main:
|
||||||
image:
|
image:
|
||||||
repository: searxng/searxng
|
repository: searxng/searxng
|
||||||
tag: latest@sha256:0bbe85fb9bebe413a26c0e385c76309d15c91fdb9dc8a6bf01b35b714d0ece43
|
tag: latest@sha256:222b4c11534e0bd9b5ed80081680094a1d663413cbe1d142e184515c4035fc23
|
||||||
env:
|
env:
|
||||||
- name: SEARXNG_BASE_URL
|
- name: SEARXNG_BASE_URL
|
||||||
value: https://searxng.alexlebens.net/
|
value: https://searxng.alexlebens.net/
|
||||||
|
|||||||
@@ -21,4 +21,4 @@ dependencies:
|
|||||||
repository: https://kubernetes-sigs.github.io/secrets-store-csi-driver/charts
|
repository: https://kubernetes-sigs.github.io/secrets-store-csi-driver/charts
|
||||||
icon: https://cdn.jsdelivr.net/gh/selfhst/icons/png/kubernetes.png
|
icon: https://cdn.jsdelivr.net/gh/selfhst/icons/png/kubernetes.png
|
||||||
# renovate: datasource=github-releases depName=kubernetes-sigs/secrets-store-csi-driver
|
# renovate: datasource=github-releases depName=kubernetes-sigs/secrets-store-csi-driver
|
||||||
appVersion: v1.5.6
|
appVersion: 0.8.1
|
||||||
|
|||||||
@@ -10,7 +10,7 @@ site-documentation:
|
|||||||
main:
|
main:
|
||||||
image:
|
image:
|
||||||
repository: harbor.alexlebens.net/images/site-documentation
|
repository: harbor.alexlebens.net/images/site-documentation
|
||||||
tag: 0.26.0@sha256:fbd3167788a75a637aef0be6ef32bef685ce4af59f45e955cc6eb57ed8b1fd87
|
tag: 0.25.0@sha256:1509b20e703617ce8e6fc78fa599a56c09be178541adc82da406632f9af15d97
|
||||||
resources:
|
resources:
|
||||||
requests:
|
requests:
|
||||||
cpu: 10m
|
cpu: 10m
|
||||||
|
|||||||
@@ -10,7 +10,7 @@ site-profile:
|
|||||||
main:
|
main:
|
||||||
image:
|
image:
|
||||||
repository: harbor.alexlebens.net/images/site-profile
|
repository: harbor.alexlebens.net/images/site-profile
|
||||||
tag: 3.18.4@sha256:3fb32ba981a059c1203c8716140bff20cc6484a90ec8694f8ac0604ac456c7f8
|
tag: 3.18.1@sha256:94c120ecd381b4e1568e1fe6619b3472d58870a5a5c5da4bc4b40e0e6b6cbfb1
|
||||||
resources:
|
resources:
|
||||||
requests:
|
requests:
|
||||||
cpu: 10m
|
cpu: 10m
|
||||||
|
|||||||
@@ -22,4 +22,4 @@ dependencies:
|
|||||||
version: 4.6.2
|
version: 4.6.2
|
||||||
icon: https://cdn.jsdelivr.net/gh/selfhst/icons/png/slskd.png
|
icon: https://cdn.jsdelivr.net/gh/selfhst/icons/png/slskd.png
|
||||||
# renovate: datasource=github-releases depName=slskd/slskd
|
# renovate: datasource=github-releases depName=slskd/slskd
|
||||||
appVersion: 0.25.0
|
appVersion: 0.24.5
|
||||||
|
|||||||
@@ -1,66 +1,51 @@
|
|||||||
apiVersion: external-secrets.io/v1
|
apiVersion: external-secrets.io/v1
|
||||||
kind: ExternalSecret
|
kind: ExternalSecret
|
||||||
metadata:
|
metadata:
|
||||||
name: airvpn-wireguard-conf
|
name: slskd-config-secret
|
||||||
namespace: {{ .Release.Namespace }}
|
namespace: {{ .Release.Namespace }}
|
||||||
labels:
|
labels:
|
||||||
app.kubernetes.io/name: airvpn-wireguard-conf
|
app.kubernetes.io/name: slskd-config-secret
|
||||||
app.kubernetes.io/instance: {{ .Release.Name }}
|
app.kubernetes.io/instance: {{ .Release.Name }}
|
||||||
app.kubernetes.io/part-of: {{ .Release.Name }}
|
app.kubernetes.io/part-of: {{ .Release.Name }}
|
||||||
spec:
|
spec:
|
||||||
secretStoreRef:
|
secretStoreRef:
|
||||||
kind: ClusterSecretStore
|
kind: ClusterSecretStore
|
||||||
name: openbao
|
name: vault
|
||||||
data:
|
data:
|
||||||
- secretKey: conf
|
- secretKey: slskd.yml
|
||||||
remoteRef:
|
remoteRef:
|
||||||
key: /airvpn/config
|
key: /cl01tl/slskd/config
|
||||||
property: conf
|
|
||||||
- secretKey: private-key
|
property: slskd.yml
|
||||||
remoteRef:
|
|
||||||
key: /airvpn/config
|
|
||||||
property: private-key
|
|
||||||
- secretKey: preshared-key
|
|
||||||
remoteRef:
|
|
||||||
key: /airvpn/config
|
|
||||||
property: preshared-key
|
|
||||||
- secretKey: addresses
|
|
||||||
remoteRef:
|
|
||||||
key: /airvpn/config
|
|
||||||
property: addresses
|
|
||||||
- secretKey: input-ports
|
|
||||||
remoteRef:
|
|
||||||
key: /airvpn/config
|
|
||||||
property: input-ports
|
|
||||||
|
|
||||||
---
|
---
|
||||||
apiVersion: external-secrets.io/v1
|
apiVersion: external-secrets.io/v1
|
||||||
kind: ExternalSecret
|
kind: ExternalSecret
|
||||||
metadata:
|
metadata:
|
||||||
name: protonvpn-wireguard-conf
|
name: slskd-wireguard-conf
|
||||||
namespace: {{ .Release.Namespace }}
|
namespace: {{ .Release.Namespace }}
|
||||||
labels:
|
labels:
|
||||||
app.kubernetes.io/name: protonvpn-wireguard-conf
|
app.kubernetes.io/name: slskd-wireguard-conf
|
||||||
app.kubernetes.io/instance: {{ .Release.Name }}
|
app.kubernetes.io/instance: {{ .Release.Name }}
|
||||||
app.kubernetes.io/part-of: {{ .Release.Name }}
|
app.kubernetes.io/part-of: {{ .Release.Name }}
|
||||||
spec:
|
spec:
|
||||||
secretStoreRef:
|
secretStoreRef:
|
||||||
kind: ClusterSecretStore
|
kind: ClusterSecretStore
|
||||||
name: openbao
|
name: vault
|
||||||
data:
|
data:
|
||||||
- secretKey: conf
|
|
||||||
remoteRef:
|
|
||||||
key: /protonvpn/config
|
|
||||||
property: conf
|
|
||||||
- secretKey: email
|
|
||||||
remoteRef:
|
|
||||||
key: /protonvpn/config
|
|
||||||
property: email
|
|
||||||
- secretKey: password
|
|
||||||
remoteRef:
|
|
||||||
key: /protonvpn/config
|
|
||||||
property: password
|
|
||||||
- secretKey: private-key
|
- secretKey: private-key
|
||||||
remoteRef:
|
remoteRef:
|
||||||
key: /protonvpn/config
|
key: /airvpn/conf/cl01tl
|
||||||
property: private-key
|
property: private-key
|
||||||
|
- secretKey: preshared-key
|
||||||
|
remoteRef:
|
||||||
|
key: /airvpn/conf/cl01tl
|
||||||
|
property: preshared-key
|
||||||
|
- secretKey: addresses
|
||||||
|
remoteRef:
|
||||||
|
key: /airvpn/conf/cl01tl
|
||||||
|
property: addresses
|
||||||
|
- secretKey: input-ports
|
||||||
|
remoteRef:
|
||||||
|
key: /airvpn/conf/cl01tl
|
||||||
|
property: input-ports
|
||||||
|
|||||||
@@ -1,19 +0,0 @@
|
|||||||
apiVersion: secrets-store.csi.x-k8s.io/v1
|
|
||||||
kind: SecretProviderClass
|
|
||||||
metadata:
|
|
||||||
name: slskd-config-secret
|
|
||||||
namespace: {{ .Release.Namespace }}
|
|
||||||
labels:
|
|
||||||
app.kubernetes.io/name: slskd-config-secret
|
|
||||||
app.kubernetes.io/instance: {{ .Release.Name }}
|
|
||||||
app.kubernetes.io/part-of: {{ .Release.Name }}
|
|
||||||
spec:
|
|
||||||
provider: openbao
|
|
||||||
parameters:
|
|
||||||
baoAddress: "http://openbao-internal.openbao:8200"
|
|
||||||
roleName: slskd
|
|
||||||
objects: |
|
|
||||||
- objectName: slskd.yml
|
|
||||||
fileName: slskd.yml
|
|
||||||
secretPath: secret/data/cl01tl/slskd/config
|
|
||||||
secretKey: slskd.yml
|
|
||||||
@@ -4,8 +4,6 @@ slskd:
|
|||||||
type: deployment
|
type: deployment
|
||||||
replicas: 1
|
replicas: 1
|
||||||
strategy: Recreate
|
strategy: Recreate
|
||||||
serviceAccount:
|
|
||||||
name: slskd
|
|
||||||
pod:
|
pod:
|
||||||
securityContext:
|
securityContext:
|
||||||
fsGroup: 1000
|
fsGroup: 1000
|
||||||
@@ -38,7 +36,7 @@ slskd:
|
|||||||
main:
|
main:
|
||||||
image:
|
image:
|
||||||
repository: slskd/slskd
|
repository: slskd/slskd
|
||||||
tag: 0.25.0@sha256:6a91991c05b7cbbe4e3dcc1f5e10f88d00a68f7ad2ef8a820b79496441b9b78c
|
tag: 0.24.5@sha256:17ef977563be206f3b5932080b1e23883b2cb39dc9010640f6f39b4eaec887e3
|
||||||
env:
|
env:
|
||||||
- name: TZ
|
- name: TZ
|
||||||
value: America/Chicago
|
value: America/Chicago
|
||||||
@@ -48,8 +46,6 @@ slskd:
|
|||||||
value: 1000
|
value: 1000
|
||||||
- name: SLSKD_UMASK
|
- name: SLSKD_UMASK
|
||||||
value: 000
|
value: 000
|
||||||
- name: SLSKD_CONFIG
|
|
||||||
value: /config/slskd.yml
|
|
||||||
resources:
|
resources:
|
||||||
requests:
|
requests:
|
||||||
cpu: 100m
|
cpu: 100m
|
||||||
@@ -64,14 +60,29 @@ slskd:
|
|||||||
command: ["/bin/sh", "-c", "(ip rule del table 51820; ip -6 rule del table 51820) || true"]
|
command: ["/bin/sh", "-c", "(ip rule del table 51820; ip -6 rule del table 51820) || true"]
|
||||||
env:
|
env:
|
||||||
- name: VPN_SERVICE_PROVIDER
|
- name: VPN_SERVICE_PROVIDER
|
||||||
value: protonvpn
|
value: airvpn
|
||||||
- name: VPN_TYPE
|
- name: VPN_TYPE
|
||||||
value: wireguard
|
value: wireguard
|
||||||
- name: WIREGUARD_PRIVATE_KEY
|
- name: WIREGUARD_PRIVATE_KEY
|
||||||
valueFrom:
|
valueFrom:
|
||||||
secretKeyRef:
|
secretKeyRef:
|
||||||
name: protonvpn-wireguard-conf
|
name: slskd-wireguard-conf
|
||||||
key: private-key
|
key: private-key
|
||||||
|
- name: WIREGUARD_PRESHARED_KEY
|
||||||
|
valueFrom:
|
||||||
|
secretKeyRef:
|
||||||
|
name: slskd-wireguard-conf
|
||||||
|
key: preshared-key
|
||||||
|
- name: WIREGUARD_ADDRESSES
|
||||||
|
valueFrom:
|
||||||
|
secretKeyRef:
|
||||||
|
name: slskd-wireguard-conf
|
||||||
|
key: addresses
|
||||||
|
- name: FIREWALL_VPN_INPUT_PORTS
|
||||||
|
valueFrom:
|
||||||
|
secretKeyRef:
|
||||||
|
name: slskd-wireguard-conf
|
||||||
|
key: input-ports
|
||||||
- name: FIREWALL_OUTBOUND_SUBNETS
|
- name: FIREWALL_OUTBOUND_SUBNETS
|
||||||
value: 192.168.1.0/24,10.244.0.0/16
|
value: 192.168.1.0/24,10.244.0.0/16
|
||||||
- name: FIREWALL_INPUT_PORTS
|
- name: FIREWALL_INPUT_PORTS
|
||||||
@@ -148,17 +159,13 @@ slskd:
|
|||||||
value: /
|
value: /
|
||||||
persistence:
|
persistence:
|
||||||
slskd-config:
|
slskd-config:
|
||||||
type: custom
|
enabled: true
|
||||||
volumeSpec:
|
type: secret
|
||||||
csi:
|
name: slskd-config-secret
|
||||||
driver: secrets-store.csi.k8s.io
|
|
||||||
readOnly: true
|
|
||||||
volumeAttributes:
|
|
||||||
secretProviderClass: slskd-config-secret
|
|
||||||
advancedMounts:
|
advancedMounts:
|
||||||
main:
|
main:
|
||||||
main:
|
main:
|
||||||
- path: /config/slskd.yml
|
- path: /app/slskd.yml
|
||||||
readOnly: true
|
readOnly: true
|
||||||
mountPropagation: None
|
mountPropagation: None
|
||||||
subPath: slskd.yml
|
subPath: slskd.yml
|
||||||
|
|||||||
@@ -33,4 +33,4 @@ dependencies:
|
|||||||
repository: oci://harbor.alexlebens.net/helm-charts
|
repository: oci://harbor.alexlebens.net/helm-charts
|
||||||
icon: https://cdn.jsdelivr.net/gh/selfhst/icons/png/sonarr.png
|
icon: https://cdn.jsdelivr.net/gh/selfhst/icons/png/sonarr.png
|
||||||
# renovate: datasource=github-releases depName=linuxserver/docker-sonarr
|
# renovate: datasource=github-releases depName=linuxserver/docker-sonarr
|
||||||
appVersion: 4.0.17.2952-ls308
|
appVersion: 4.0.17.2952-ls307
|
||||||
|
|||||||
@@ -13,7 +13,7 @@ sonarr-4k:
|
|||||||
main:
|
main:
|
||||||
image:
|
image:
|
||||||
repository: ghcr.io/linuxserver/sonarr
|
repository: ghcr.io/linuxserver/sonarr
|
||||||
tag: 4.0.17.2952-ls308@sha256:e6c9a091735fede0c2a205c69e7d4c2f0188eaf2bec7e42d8a26c017e5f2a910
|
tag: 4.0.17.2952-ls307@sha256:6854df9de20b8c82e1982604f39473d64dbb4c4584b1013f18f9ade1ee92af13
|
||||||
env:
|
env:
|
||||||
- name: TZ
|
- name: TZ
|
||||||
value: America/Chicago
|
value: America/Chicago
|
||||||
|
|||||||
@@ -33,4 +33,4 @@ dependencies:
|
|||||||
repository: oci://harbor.alexlebens.net/helm-charts
|
repository: oci://harbor.alexlebens.net/helm-charts
|
||||||
icon: https://cdn.jsdelivr.net/gh/selfhst/icons/png/sonarr.png
|
icon: https://cdn.jsdelivr.net/gh/selfhst/icons/png/sonarr.png
|
||||||
# renovate: datasource=github-releases depName=linuxserver/docker-sonarr
|
# renovate: datasource=github-releases depName=linuxserver/docker-sonarr
|
||||||
appVersion: 4.0.17.2952-ls308
|
appVersion: 4.0.17.2952-ls307
|
||||||
|
|||||||
@@ -13,7 +13,7 @@ sonarr-anime:
|
|||||||
main:
|
main:
|
||||||
image:
|
image:
|
||||||
repository: ghcr.io/linuxserver/sonarr
|
repository: ghcr.io/linuxserver/sonarr
|
||||||
tag: 4.0.17.2952-ls308@sha256:e6c9a091735fede0c2a205c69e7d4c2f0188eaf2bec7e42d8a26c017e5f2a910
|
tag: 4.0.17.2952-ls307@sha256:6854df9de20b8c82e1982604f39473d64dbb4c4584b1013f18f9ade1ee92af13
|
||||||
env:
|
env:
|
||||||
- name: TZ
|
- name: TZ
|
||||||
value: America/Chicago
|
value: America/Chicago
|
||||||
|
|||||||
@@ -33,4 +33,4 @@ dependencies:
|
|||||||
repository: oci://harbor.alexlebens.net/helm-charts
|
repository: oci://harbor.alexlebens.net/helm-charts
|
||||||
icon: https://cdn.jsdelivr.net/gh/selfhst/icons/png/sonarr.png
|
icon: https://cdn.jsdelivr.net/gh/selfhst/icons/png/sonarr.png
|
||||||
# renovate: datasource=github-releases depName=linuxserver/docker-sonarr
|
# renovate: datasource=github-releases depName=linuxserver/docker-sonarr
|
||||||
appVersion: 4.0.17.2952-ls308
|
appVersion: 4.0.17.2952-ls307
|
||||||
|
|||||||
@@ -12,7 +12,7 @@ sonarr:
|
|||||||
main:
|
main:
|
||||||
image:
|
image:
|
||||||
repository: ghcr.io/linuxserver/sonarr
|
repository: ghcr.io/linuxserver/sonarr
|
||||||
tag: 4.0.17.2952-ls308@sha256:e6c9a091735fede0c2a205c69e7d4c2f0188eaf2bec7e42d8a26c017e5f2a910
|
tag: 4.0.17.2952-ls307@sha256:6854df9de20b8c82e1982604f39473d64dbb4c4584b1013f18f9ade1ee92af13
|
||||||
env:
|
env:
|
||||||
- name: TZ
|
- name: TZ
|
||||||
value: America/Chicago
|
value: America/Chicago
|
||||||
|
|||||||
@@ -20,7 +20,7 @@ sparkyfitness:
|
|||||||
server:
|
server:
|
||||||
image:
|
image:
|
||||||
repository: ghcr.io/codewithcj/sparkyfitness-server
|
repository: ghcr.io/codewithcj/sparkyfitness-server
|
||||||
tag: v0.16.5.8@sha256:55e5444a74dde388fa7e54121185c41b2130ffd9d12ad38e9e31765019a5c44b
|
tag: v0.16.5.7@sha256:7cdb8cb3ae7f90c7590dac3b92cea3a8e24d51b28eb836a1f6d5201cd45bc080
|
||||||
resources:
|
resources:
|
||||||
requests:
|
requests:
|
||||||
cpu: 100m
|
cpu: 100m
|
||||||
@@ -45,7 +45,7 @@ sparkyfitness:
|
|||||||
frontend:
|
frontend:
|
||||||
image:
|
image:
|
||||||
repository: ghcr.io/codewithcj/sparkyfitness-frontend
|
repository: ghcr.io/codewithcj/sparkyfitness-frontend
|
||||||
tag: v0.16.5.8@sha256:aaf810547097007f6d0b3c90af65f8ce89d9b899a6e3035299caffef830736dc
|
tag: v0.16.5.7@sha256:c57a0a07b3470bd0c280d63d02b45adfe7360441b396e9bd445d7b0d22823356
|
||||||
resources:
|
resources:
|
||||||
requests:
|
requests:
|
||||||
cpu: 10m
|
cpu: 10m
|
||||||
|
|||||||
@@ -1,9 +1,9 @@
|
|||||||
dependencies:
|
dependencies:
|
||||||
- name: traefik
|
- name: traefik
|
||||||
repository: https://traefik.github.io/charts
|
repository: https://traefik.github.io/charts
|
||||||
version: 39.0.8
|
version: 39.0.7
|
||||||
- name: traefik-crds
|
- name: traefik-crds
|
||||||
repository: https://traefik.github.io/charts
|
repository: https://traefik.github.io/charts
|
||||||
version: 1.16.0
|
version: 1.16.0
|
||||||
digest: sha256:e63ea5a588f53e421e33372390b0755609974029827762aa17ff5caec3ddd90c
|
digest: sha256:42a2f2844385eb79724b6d7b49ed8adfd4f8237ee63ea55aa6ec7b3b3636dd3e
|
||||||
generated: "2026-04-17T16:08:27.772737904Z"
|
generated: "2026-03-31T21:37:50.410289754Z"
|
||||||
|
|||||||
@@ -14,7 +14,7 @@ maintainers:
|
|||||||
- name: alexlebens
|
- name: alexlebens
|
||||||
dependencies:
|
dependencies:
|
||||||
- name: traefik
|
- name: traefik
|
||||||
version: 39.0.8
|
version: 39.0.7
|
||||||
repository: https://traefik.github.io/charts
|
repository: https://traefik.github.io/charts
|
||||||
- name: traefik-crds
|
- name: traefik-crds
|
||||||
version: 1.16.0
|
version: 1.16.0
|
||||||
|
|||||||
@@ -45,6 +45,9 @@ traefik:
|
|||||||
entryPoints: ["websecure"]
|
entryPoints: ["websecure"]
|
||||||
updateStrategy:
|
updateStrategy:
|
||||||
type: RollingUpdate
|
type: RollingUpdate
|
||||||
|
rollingUpdate:
|
||||||
|
maxUnavailable: 1
|
||||||
|
maxSurge: 1
|
||||||
providers:
|
providers:
|
||||||
kubernetesCRD:
|
kubernetesCRD:
|
||||||
allowCrossNamespace: true
|
allowCrossNamespace: true
|
||||||
|
|||||||
@@ -39,7 +39,7 @@ services:
|
|||||||
- /dev/net/tun:/dev/net/tun
|
- /dev/net/tun:/dev/net/tun
|
||||||
|
|
||||||
garage:
|
garage:
|
||||||
image: dxflrs/garage:v2.3.0@sha256:866bd13ed2038ba7e7190e840482bc27234c4afaf77be8cfa439ae088c1e4690
|
image: dxflrs/garage:v2.2.0@sha256:45a61ce3f7c9c24fc23d9ed2b09b27ed560ab87b34605d175d5c588f539c24e4
|
||||||
container_name: garage
|
container_name: garage
|
||||||
env_file:
|
env_file:
|
||||||
- .env
|
- .env
|
||||||
|
|||||||
@@ -33,7 +33,7 @@ services:
|
|||||||
- postgresql18:/var/lib/postgresql
|
- postgresql18:/var/lib/postgresql
|
||||||
|
|
||||||
gitea:
|
gitea:
|
||||||
image: gitea/gitea:1.26.0@sha256:af07b88edbb2173d20932f9c75ebcf4e61d7d5c2d6a7ab5cc6b97cba28aea352
|
image: gitea/gitea:1.25.5@sha256:f846d26a4fc389c5806a580a765e00bfdd1fd181e6f2060da98ea2669d914472
|
||||||
container_name: gitea
|
container_name: gitea
|
||||||
depends_on:
|
depends_on:
|
||||||
- postgresql
|
- postgresql
|
||||||
|
|||||||
@@ -89,10 +89,10 @@
|
|||||||
{
|
{
|
||||||
"description": "Specific app grouping overrides",
|
"description": "Specific app grouping overrides",
|
||||||
"matchPackageNames": [
|
"matchPackageNames": [
|
||||||
"/(^|/|-)(argo-cd|bazarr|cilium|dawarich|element-web|home-assistant|immich|komodo|plex|postiz|prowlarr|radarr|rook-ceph|roundcube|rybbit|sonarr|sparkyfitness|tdarr|traefik)/",
|
"/(^|/|-)(argo-cd|bazarr|cilium|dawarich|element-web|home-assistant|immich|komodo|plex|postiz|prowlarr|radarr|rook-ceph|roundcube|rybbit|sonarr|tdarr|traefik)/",
|
||||||
"/^rook(-ceph|/rook|/ceph)/"
|
"/^rook(-ceph|/rook|/ceph)/"
|
||||||
],
|
],
|
||||||
"groupName": "{{#if packageName}}{{{replace '^.*(argo-cd|bazarr|cilium|dawarich|element-web|home-assistant|immich|komodo|plex|postiz|prowlarr|radarr|rook-ceph|roundcube|rybbit|sonarr|sparkyfitness|tdarr|traefik).*$' '$1' packageName}}}{{else}}{{{replace '^.*(argo-cd|bazarr|cilium|dawarich|element-web|home-assistant|immich|komodo|plex|postiz|prowlarr|radarr|rook-ceph|roundcube|rybbit|sonarr|sparkyfitness|tdarr|traefik).*$' '$1' depName}}}{{/if}}",
|
"groupName": "{{#if packageName}}{{{replace '^.*(argo-cd|bazarr|cilium|dawarich|element-web|home-assistant|immich|komodo|plex|postiz|prowlarr|radarr|rook-ceph|roundcube|rybbit|sonarr|tdarr|traefik).*$' '$1' packageName}}}{{else}}{{{replace '^.*(argo-cd|bazarr|cilium|dawarich|element-web|home-assistant|immich|komodo|plex|postiz|prowlarr|radarr|rook-ceph|roundcube|rybbit|sonarr|tdarr|traefik).*$' '$1' depName}}}{{/if}}",
|
||||||
"groupSlug": "unified-{{{groupName}}}"
|
"groupSlug": "unified-{{{groupName}}}"
|
||||||
},
|
},
|
||||||
{
|
{
|
||||||
|
|||||||
Reference in New Issue
Block a user