diff --git a/clusters/cl01tl/helm/karakeep/Chart.yaml b/clusters/cl01tl/helm/karakeep/Chart.yaml index e1a2bea5b..9c0586b44 100644 --- a/clusters/cl01tl/helm/karakeep/Chart.yaml +++ b/clusters/cl01tl/helm/karakeep/Chart.yaml @@ -32,6 +32,6 @@ dependencies: alias: volsync-target-data version: 0.8.0 repository: oci://harbor.alexlebens.net/helm-charts -icon: https://cdn.jsdelivr.net/gh/selfhst/icons/webp/karakeep.webp +icon: https://cdn.jsdelivr.net/gh/selfhst/icons@main/png/karakeep.png # renovate: datasource=github-releases depName=karakeep-app/karakeep appVersion: 0.31.0 diff --git a/clusters/cl01tl/helm/languagetool/Chart.yaml b/clusters/cl01tl/helm/languagetool/Chart.yaml index 4c68e8d79..132a950f6 100644 --- a/clusters/cl01tl/helm/languagetool/Chart.yaml +++ b/clusters/cl01tl/helm/languagetool/Chart.yaml @@ -23,6 +23,6 @@ dependencies: alias: volsync-target-data version: 0.8.0 repository: oci://harbor.alexlebens.net/helm-charts -icon: https://cdn.jsdelivr.net/gh/selfhst/icons@main/webp/languagetool.webp +icon: https://cdn.jsdelivr.net/gh/selfhst/icons@main/png/languagetool.png # renovate: datasource=github-releases depName=Erikvl87/docker-languagetool appVersion: "6.7" diff --git a/clusters/cl01tl/helm/rclone/Chart.yaml b/clusters/cl01tl/helm/rclone/Chart.yaml index 2d05660d6..afbeb01f5 100644 --- a/clusters/cl01tl/helm/rclone/Chart.yaml +++ b/clusters/cl01tl/helm/rclone/Chart.yaml @@ -18,6 +18,6 @@ dependencies: alias: rclone repository: https://bjw-s-labs.github.io/helm-charts/ version: 4.6.2 -icon: https://cdn.jsdelivr.net/gh/selfhst/icons@main/webp/rclone.webp +icon: https://cdn.jsdelivr.net/gh/selfhst/icons@main/png/rclone.png # renovate: datasource=github-releases depName=rclone/rclone appVersion: v1.73.3 diff --git a/clusters/cl01tl/helm/s3-exporter/Chart.yaml b/clusters/cl01tl/helm/s3-exporter/Chart.yaml index 2be2351f7..140cc39b7 100644 --- a/clusters/cl01tl/helm/s3-exporter/Chart.yaml +++ b/clusters/cl01tl/helm/s3-exporter/Chart.yaml @@ -17,6 +17,6 @@ dependencies: alias: s3-exporter repository: https://bjw-s-labs.github.io/helm-charts/ version: 4.6.2 -icon: https://cdn.jsdelivr.net/gh/selfhst/icons@main/webp/amazon-s3.webp +icon: https://cdn.jsdelivr.net/gh/selfhst/icons@main/png/amazon-s3.png # renovate: datasource=github-releases depName=molu8bits/s3bucket_exporter appVersion: 1.0.2 diff --git a/clusters/cl01tl/helm/searxng/Chart.yaml b/clusters/cl01tl/helm/searxng/Chart.yaml index 79219af90..96cc95a08 100644 --- a/clusters/cl01tl/helm/searxng/Chart.yaml +++ b/clusters/cl01tl/helm/searxng/Chart.yaml @@ -5,10 +5,13 @@ description: Searxng keywords: - searxng - search -home: https://wiki.alexlebens.dev/s/6c6da68a-8725-4439-93c8-990ce824be54 +home: https://docs.alexlebens.dev/applications/searxng/ sources: - https://github.com/searxng/searxng + - https://hub.docker.com/r/searxng/searxng + - https://hub.docker.com/r/valkey/valkey - https://github.com/bjw-s-labs/helm-charts/tree/main/charts/other/app-template + - https://gitea.alexlebens.dev/alexlebens/helm-charts/src/branch/main/charts/volsync-target maintainers: - name: alexlebens dependencies: diff --git a/clusters/cl01tl/helm/searxng/templates/external-secret.yaml b/clusters/cl01tl/helm/searxng/templates/external-secret.yaml index 22afc3835..2b7dd2c0c 100644 --- a/clusters/cl01tl/helm/searxng/templates/external-secret.yaml +++ b/clusters/cl01tl/helm/searxng/templates/external-secret.yaml @@ -14,17 +14,11 @@ spec: data: - secretKey: metrics-password remoteRef: - conversionStrategy: Default - decodingStrategy: None key: cl01tl/searxng/browser - metadataPolicy: None property: metrics-password - secretKey: metrics-username remoteRef: - conversionStrategy: Default - decodingStrategy: None key: cl01tl/searxng/browser - metadataPolicy: None property: metrics-username --- @@ -44,15 +38,9 @@ spec: data: - secretKey: settings.yml remoteRef: - conversionStrategy: Default - decodingStrategy: None key: /cl01tl/searxng/api/config - metadataPolicy: None property: settings.yml - secretKey: limiter.toml remoteRef: - conversionStrategy: Default - decodingStrategy: None key: /cl01tl/searxng/api/config - metadataPolicy: None property: limiter.toml diff --git a/clusters/cl01tl/helm/searxng/templates/namespace.yaml b/clusters/cl01tl/helm/searxng/templates/namespace.yaml deleted file mode 100644 index 91ef2fa27..000000000 --- a/clusters/cl01tl/helm/searxng/templates/namespace.yaml +++ /dev/null @@ -1,11 +0,0 @@ -apiVersion: v1 -kind: Namespace -metadata: - name: searxng - labels: - app.kubernetes.io/name: searxng - app.kubernetes.io/instance: {{ .Release.Name }} - app.kubernetes.io/part-of: {{ .Release.Name }} - pod-security.kubernetes.io/audit: privileged - pod-security.kubernetes.io/enforce: privileged - pod-security.kubernetes.io/warn: privileged diff --git a/clusters/cl01tl/helm/searxng/values.yaml b/clusters/cl01tl/helm/searxng/values.yaml index 51a53ae90..4f0fafc67 100644 --- a/clusters/cl01tl/helm/searxng/values.yaml +++ b/clusters/cl01tl/helm/searxng/values.yaml @@ -4,13 +4,11 @@ searxng: type: deployment replicas: 1 strategy: Recreate - revisionHistoryLimit: 3 containers: main: image: repository: searxng/searxng tag: latest@sha256:7b924c76c2cd9e960cc6b522eed5faf57ea3e6796020878455d86fcc3e7c26a3 - pullPolicy: IfNotPresent env: - name: SEARXNG_BASE_URL value: http://searxng-api.searxng:8080 @@ -28,19 +26,17 @@ searxng: value: 10 resources: requests: - cpu: 10m - memory: 256Mi + cpu: 1m + memory: 120Mi browser: type: deployment replicas: 1 strategy: Recreate - revisionHistoryLimit: 3 containers: main: image: repository: searxng/searxng tag: latest@sha256:7b924c76c2cd9e960cc6b522eed5faf57ea3e6796020878455d86fcc3e7c26a3 - pullPolicy: IfNotPresent env: - name: SEARXNG_BASE_URL value: https://searxng.alexlebens.net/ @@ -49,7 +45,7 @@ searxng: - name: SEARXNG_HOSTNAME value: searxng.alexlebens.net - name: SEARXNG_VALKEY_URL - value: valkey://127.0.0.1:6379/0 + value: valkey://localhost:6379/0 - name: GRANIAN_HOST value: 0.0.0.0 - name: GRANIAN_PORT @@ -57,16 +53,11 @@ searxng: resources: requests: cpu: 10m - memory: 256Mi + memory: 250Mi valkey: image: repository: valkey/valkey - tag: 9.0.0-alpine3.22 - pullPolicy: IfNotPresent - resources: - requests: - cpu: 10m - memory: 128Mi + tag: 9.0.0-alpine@sha256:bef37d06d4856710973ee31dd1eac1482e4c8e6e7b847f999ad25433e646587b service: api: controller: api @@ -74,14 +65,12 @@ searxng: mail: port: 8080 targetPort: 8080 - protocol: HTTP browser: controller: browser ports: mail: port: 80 targetPort: 8080 - protocol: HTTP serviceMonitor: main: selector: @@ -113,11 +102,8 @@ searxng: - searxng.alexlebens.net rules: - backendRefs: - - group: '' - kind: Service - name: searxng-browser + - name: searxng-browser port: 80 - weight: 100 matches: - path: type: PathPrefix diff --git a/clusters/cl01tl/helm/seerr/Chart.yaml b/clusters/cl01tl/helm/seerr/Chart.yaml index d4dc8fbce..0ec2aa694 100644 --- a/clusters/cl01tl/helm/seerr/Chart.yaml +++ b/clusters/cl01tl/helm/seerr/Chart.yaml @@ -4,14 +4,14 @@ version: 1.0.0 description: Seerr keywords: - seerr - - media - - movies - - tv shows -home: https://wiki.alexlebens.dev/ + - media-request + - servarr +home: https://docs.alexlebens.dev/applications/seerr/ sources: - https://github.com/seerr-team/seerr - https://github.com/seerr-team/seerr/pkgs/container/seerr - https://github.com/seerr-team/seerr/tree/develop/charts/seerr-chart + - https://gitea.alexlebens.dev/alexlebens/helm-charts/src/branch/main/charts/volsync-target maintainers: - name: alexlebens dependencies: diff --git a/clusters/cl01tl/helm/seerr/values.yaml b/clusters/cl01tl/helm/seerr/values.yaml index ebaa7a7ae..6c54ff278 100644 --- a/clusters/cl01tl/helm/seerr/values.yaml +++ b/clusters/cl01tl/helm/seerr/values.yaml @@ -3,32 +3,16 @@ seerr-chart: registry: ghcr.io repository: seerr-team/seerr tag: v3.1.0 - probes: - livenessProbe: - initialDelaySeconds: 60 - periodSeconds: 30 - timeoutSeconds: 5 - successThreshold: 1 - failureThreshold: 5 - readinessProbe: - initialDelaySeconds: 60 - periodSeconds: 30 - timeoutSeconds: 5 - successThreshold: 1 - failureThreshold: 5 + sha: sha256:b35ba0461c4a1033d117ac1e5968fd4cbe777899e4cbfbdeaf3d10a42a0eb7e9 config: persistence: size: 5Gi accessModes: - ReadWriteOnce storageClass: ceph-block - ingress: - enabled: false route: main: enabled: true - apiVersion: gateway.networking.k8s.io/v1 - kind: HTTPRoute parentRefs: - group: gateway.networking.k8s.io kind: Gateway @@ -36,14 +20,10 @@ seerr-chart: namespace: traefik hostnames: - seerr.alexlebens.net - matches: - - path: - type: PathPrefix - value: / resources: requests: cpu: 10m - memory: 128Mi + memory: 500Mi volsync-target-config: pvcTarget: seerr-seerr-chart-config local: diff --git a/clusters/cl01tl/helm/shelfmark/Chart.yaml b/clusters/cl01tl/helm/shelfmark/Chart.yaml index 3a27c3534..9f8f0fea3 100644 --- a/clusters/cl01tl/helm/shelfmark/Chart.yaml +++ b/clusters/cl01tl/helm/shelfmark/Chart.yaml @@ -5,11 +5,12 @@ description: Shelfmark keywords: - shelfmark - books -home: https://wiki.alexlebens.dev/s/ +home: https://docs.alexlebens.dev/applications/shelfmark/ sources: - https://github.com/calibrain/shelfmark - https://github.com/calibrain/shelfmark/pkgs/container/shelfmark - https://github.com/bjw-s-labs/helm-charts/tree/main/charts/other/app-template + - https://gitea.alexlebens.dev/alexlebens/helm-charts/src/branch/main/charts/volsync-target maintainers: - name: alexlebens dependencies: @@ -21,6 +22,6 @@ dependencies: alias: volsync-target-config version: 0.8.0 repository: oci://harbor.alexlebens.net/helm-charts -icon: https://cdn.jsdelivr.net/gh/selfhst/icons@main/webp/shelfmark.webp +icon: https://cdn.jsdelivr.net/gh/selfhst/icons@main/png/shelfmark.png # renovate: datasource=github-releases depName=calibrain/shelfmark appVersion: v1.2.1 diff --git a/clusters/cl01tl/helm/shelfmark/templates/external-secret.yaml b/clusters/cl01tl/helm/shelfmark/templates/external-secret.yaml index df7373be1..95f80d759 100644 --- a/clusters/cl01tl/helm/shelfmark/templates/external-secret.yaml +++ b/clusters/cl01tl/helm/shelfmark/templates/external-secret.yaml @@ -14,22 +14,13 @@ spec: data: - secretKey: grimmory-user remoteRef: - conversionStrategy: Default - decodingStrategy: None key: /cl01tl/shelfmark/booklore - metadataPolicy: None property: user - secretKey: grimmory-password remoteRef: - conversionStrategy: Default - decodingStrategy: None key: /cl01tl/shelfmark/booklore - metadataPolicy: None property: password - secretKey: prowlarr-key remoteRef: - conversionStrategy: Default - decodingStrategy: None key: /cl01tl/prowlarr/key - metadataPolicy: None property: key diff --git a/clusters/cl01tl/helm/shelfmark/values.yaml b/clusters/cl01tl/helm/shelfmark/values.yaml index b3e6b8311..9ddf69a8e 100644 --- a/clusters/cl01tl/helm/shelfmark/values.yaml +++ b/clusters/cl01tl/helm/shelfmark/values.yaml @@ -4,13 +4,15 @@ shelfmark: type: deployment replicas: 1 strategy: Recreate - revisionHistoryLimit: 3 + pod: + securityContext: + fsGroup: 1000 + fsGroupChangePolicy: OnRootMismatch containers: main: image: repository: ghcr.io/calibrain/shelfmark - tag: v1.2.1 - pullPolicy: IfNotPresent + tag: v1.2.1@sha256:5e00d47cccaa3b67234855d950d016c50691b78197a68adf15a624f6c08acee2 env: - name: FLASK_PORT value: 8084 @@ -88,27 +90,24 @@ shelfmark: enabled: true custom: true spec: - exec: - command: - - /bin/sh - - -c - - "curl -sf http://localhost:8084/api/health" + httpGet: + path: /api/health + port: 8084 failureThreshold: 5 - initialDelaySeconds: 60 + initialDelaySeconds: 30 periodSeconds: 30 successThreshold: 1 - timeoutSeconds: 30 + timeoutSeconds: 5 resources: requests: cpu: 10m - memory: 256Mi + memory: 140Mi service: main: ports: http: port: 80 targetPort: 8084 - protocol: HTTP route: main: kind: HTTPRoute @@ -121,11 +120,8 @@ shelfmark: - shelfmark.alexlebens.net rules: - backendRefs: - - group: '' - kind: Service - name: shelfmark + - name: shelfmark port: 80 - weight: 100 matches: - path: type: PathPrefix @@ -136,7 +132,6 @@ shelfmark: storageClass: ceph-block accessMode: ReadWriteOnce size: 1Gi - retain: true advancedMounts: main: main: diff --git a/clusters/cl01tl/helm/traefik/Chart.yaml b/clusters/cl01tl/helm/traefik/Chart.yaml index dd665302c..332103dbb 100644 --- a/clusters/cl01tl/helm/traefik/Chart.yaml +++ b/clusters/cl01tl/helm/traefik/Chart.yaml @@ -20,6 +20,6 @@ dependencies: - name: traefik-crds version: 1.16.0 repository: https://traefik.github.io/charts -icon: https://cdn.jsdelivr.net/gh/selfhst/icons/webp/traefik.webp +icon: https://cdn.jsdelivr.net/gh/selfhst/icons@main/png/traefik.png # renovate: datasource=github-releases depName=traefik/traefik appVersion: v3.6.12