apiVersion: apps/v1 kind: Deployment metadata: name: navidrome-feishin labels: app.kubernetes.io/controller: feishin app.kubernetes.io/instance: navidrome app.kubernetes.io/managed-by: Helm app.kubernetes.io/name: navidrome helm.sh/chart: navidrome-4.6.2 namespace: navidrome spec: revisionHistoryLimit: 3 replicas: 1 strategy: type: Recreate selector: matchLabels: app.kubernetes.io/controller: feishin app.kubernetes.io/name: navidrome app.kubernetes.io/instance: navidrome template: metadata: labels: app.kubernetes.io/controller: feishin app.kubernetes.io/instance: navidrome app.kubernetes.io/name: navidrome spec: enableServiceLinks: false serviceAccountName: default automountServiceAccountToken: true hostIPC: false hostNetwork: false hostPID: false dnsPolicy: ClusterFirst containers: - env: - name: SERVER_NAME value: talos - name: SERVER_LOCK value: "true" - name: SERVER_TYPE value: navidrome - name: SERVER_URL value: https://navidrome.alexlebens.net image: ghcr.io/jeffvli/feishin:1.0.1-beta.1@sha256:61239641f23a33f99c2858419b14afb66683f3cd82010363fba92be3993fd894 imagePullPolicy: IfNotPresent name: main --- apiVersion: apps/v1 kind: Deployment metadata: name: navidrome-main labels: app.kubernetes.io/controller: main app.kubernetes.io/instance: navidrome app.kubernetes.io/managed-by: Helm app.kubernetes.io/name: navidrome helm.sh/chart: navidrome-4.6.2 namespace: navidrome spec: revisionHistoryLimit: 3 replicas: 1 strategy: type: Recreate selector: matchLabels: app.kubernetes.io/controller: main app.kubernetes.io/name: navidrome app.kubernetes.io/instance: navidrome template: metadata: labels: app.kubernetes.io/controller: main app.kubernetes.io/instance: navidrome app.kubernetes.io/name: navidrome spec: enableServiceLinks: false serviceAccountName: default automountServiceAccountToken: true hostIPC: false hostNetwork: false hostPID: false dnsPolicy: ClusterFirst containers: - env: - name: ND_MUSICFOLDER value: /music - name: ND_DATAFOLDER value: /data - name: ND_CACHEFOLDER value: /cache - name: ND_BASEURL value: https://navidrome.alexlebens.net - name: ND_ENABLEINSIGHTSCOLLECTOR value: "false" - name: ND_PROMETHEUS_ENABLED value: "true" - name: ND_AUTOIMPORTPLAYLISTS value: "true" image: deluan/navidrome:0.60.3@sha256:a5dce8f33304714dd138e870cca0dcab3d937ca236be1a9f2b97da009d1a0048 imagePullPolicy: IfNotPresent name: main resources: limits: gpu.intel.com/i915: 1 requests: cpu: 10m gpu.intel.com/i915: 1 memory: 128Mi volumeMounts: - mountPath: /cache name: cache - mountPath: /data name: data - mountPath: /music name: music readOnly: true - mountPath: /music-grabber name: music-grabber readOnly: true - mountPath: /music-single name: music-single readOnly: true - mountPath: /music-youtube name: music-youtube readOnly: true volumes: - emptyDir: {} name: cache - name: data persistentVolumeClaim: claimName: navidrome-data - name: music persistentVolumeClaim: claimName: navidrome-music-nfs-storage - name: music-grabber persistentVolumeClaim: claimName: navidrome-music-grabber-nfs-storage - name: music-single persistentVolumeClaim: claimName: navidrome-music-single-nfs-storage - name: music-youtube persistentVolumeClaim: claimName: navidrome-music-youtube-nfs-storage --- apiVersion: external-secrets.io/v1 kind: ExternalSecret metadata: name: navidrome-data-backup-secret-external namespace: navidrome labels: helm.sh/chart: volsync-target-data-0.8.0 app.kubernetes.io/instance: navidrome app.kubernetes.io/part-of: navidrome app.kubernetes.io/version: "0.8.0" app.kubernetes.io/managed-by: Helm app.kubernetes.io/name: navidrome-data-backup-secret-external spec: secretStoreRef: kind: ClusterSecretStore name: vault target: template: mergePolicy: Merge engineVersion: v2 data: RESTIC_REPOSITORY: "{{ .BUCKET_ENDPOINT }}/navidrome/navidrome-data" data: - secretKey: BUCKET_ENDPOINT remoteRef: conversionStrategy: Default decodingStrategy: None key: /volsync/restic/digital-ocean metadataPolicy: None property: BUCKET_ENDPOINT - secretKey: RESTIC_PASSWORD remoteRef: conversionStrategy: Default decodingStrategy: None key: /volsync/restic/digital-ocean metadataPolicy: None property: RESTIC_PASSWORD - secretKey: AWS_DEFAULT_REGION remoteRef: conversionStrategy: Default decodingStrategy: None key: /digital-ocean/home-infra/volsync-backups metadataPolicy: None property: AWS_DEFAULT_REGION - secretKey: AWS_ACCESS_KEY_ID remoteRef: conversionStrategy: Default decodingStrategy: None key: /digital-ocean/home-infra/volsync-backups metadataPolicy: None property: AWS_ACCESS_KEY_ID - secretKey: AWS_SECRET_ACCESS_KEY remoteRef: conversionStrategy: Default decodingStrategy: None key: /digital-ocean/home-infra/volsync-backups metadataPolicy: None property: AWS_SECRET_ACCESS_KEY --- apiVersion: external-secrets.io/v1 kind: ExternalSecret metadata: name: navidrome-data-backup-secret-local namespace: navidrome labels: helm.sh/chart: volsync-target-data-0.8.0 app.kubernetes.io/instance: navidrome app.kubernetes.io/part-of: navidrome app.kubernetes.io/version: "0.8.0" app.kubernetes.io/managed-by: Helm app.kubernetes.io/name: navidrome-data-backup-secret-local spec: secretStoreRef: kind: ClusterSecretStore name: vault target: template: mergePolicy: Merge engineVersion: v2 data: RESTIC_REPOSITORY: "{{ .BUCKET_ENDPOINT }}/navidrome/navidrome-data" data: - secretKey: BUCKET_ENDPOINT remoteRef: conversionStrategy: Default decodingStrategy: None key: /volsync/restic/garage-local metadataPolicy: None property: BUCKET_ENDPOINT - secretKey: RESTIC_PASSWORD remoteRef: conversionStrategy: Default decodingStrategy: None key: /volsync/restic/garage-local metadataPolicy: None property: RESTIC_PASSWORD - secretKey: AWS_DEFAULT_REGION remoteRef: conversionStrategy: Default decodingStrategy: None key: /garage/home-infra/volsync-backups metadataPolicy: None property: ACCESS_REGION - secretKey: AWS_ACCESS_KEY_ID remoteRef: conversionStrategy: Default decodingStrategy: None key: /garage/home-infra/volsync-backups metadataPolicy: None property: ACCESS_KEY_ID - secretKey: AWS_SECRET_ACCESS_KEY remoteRef: conversionStrategy: Default decodingStrategy: None key: /garage/home-infra/volsync-backups metadataPolicy: None property: ACCESS_SECRET_KEY --- apiVersion: external-secrets.io/v1 kind: ExternalSecret metadata: name: navidrome-data-backup-secret-remote namespace: navidrome labels: helm.sh/chart: volsync-target-data-0.8.0 app.kubernetes.io/instance: navidrome app.kubernetes.io/part-of: navidrome app.kubernetes.io/version: "0.8.0" app.kubernetes.io/managed-by: Helm app.kubernetes.io/name: navidrome-data-backup-secret-remote spec: secretStoreRef: kind: ClusterSecretStore name: vault target: template: mergePolicy: Merge engineVersion: v2 data: RESTIC_REPOSITORY: "{{ .BUCKET_ENDPOINT }}/navidrome/navidrome-data" data: - secretKey: BUCKET_ENDPOINT remoteRef: conversionStrategy: Default decodingStrategy: None key: /volsync/restic/garage-remote metadataPolicy: None property: BUCKET_ENDPOINT - secretKey: RESTIC_PASSWORD remoteRef: conversionStrategy: Default decodingStrategy: None key: /volsync/restic/garage-remote metadataPolicy: None property: RESTIC_PASSWORD - secretKey: AWS_DEFAULT_REGION remoteRef: conversionStrategy: Default decodingStrategy: None key: /garage/home-infra/volsync-backups metadataPolicy: None property: ACCESS_REGION - secretKey: AWS_ACCESS_KEY_ID remoteRef: conversionStrategy: Default decodingStrategy: None key: /garage/home-infra/volsync-backups metadataPolicy: None property: ACCESS_KEY_ID - secretKey: AWS_SECRET_ACCESS_KEY remoteRef: conversionStrategy: Default decodingStrategy: None key: /garage/home-infra/volsync-backups metadataPolicy: None property: ACCESS_SECRET_KEY --- apiVersion: gateway.networking.k8s.io/v1alpha2 kind: HTTPRoute metadata: name: navidrome-feishin labels: app.kubernetes.io/instance: navidrome app.kubernetes.io/managed-by: Helm app.kubernetes.io/name: navidrome helm.sh/chart: navidrome-4.6.2 namespace: navidrome spec: parentRefs: - group: gateway.networking.k8s.io kind: Gateway name: traefik-gateway namespace: traefik hostnames: - "feishin.alexlebens.net" rules: - backendRefs: - group: "" kind: Service name: navidrome-feishin namespace: navidrome port: 80 weight: 100 matches: - path: type: PathPrefix value: / --- apiVersion: gateway.networking.k8s.io/v1alpha2 kind: HTTPRoute metadata: name: navidrome-main labels: app.kubernetes.io/instance: navidrome app.kubernetes.io/managed-by: Helm app.kubernetes.io/name: navidrome helm.sh/chart: navidrome-4.6.2 namespace: navidrome spec: parentRefs: - group: gateway.networking.k8s.io kind: Gateway name: traefik-gateway namespace: traefik hostnames: - "navidrome.alexlebens.net" rules: - backendRefs: - group: "" kind: Service name: navidrome-main namespace: navidrome port: 80 weight: 100 matches: - path: type: PathPrefix value: / --- apiVersion: v1 kind: PersistentVolume metadata: name: navidrome-music-grabber-nfs-storage namespace: navidrome labels: app.kubernetes.io/name: navidrome-music-grabber-nfs-storage app.kubernetes.io/instance: navidrome app.kubernetes.io/part-of: navidrome spec: persistentVolumeReclaimPolicy: Retain storageClassName: nfs-client capacity: storage: 1Gi accessModes: - ReadWriteMany nfs: path: /volume2/Storage/Music Grabber/ server: synologybond.alexlebens.net mountOptions: - vers=4 - minorversion=1 - noac --- apiVersion: v1 kind: PersistentVolume metadata: name: navidrome-music-nfs-storage namespace: navidrome labels: app.kubernetes.io/name: navidrome-music-nfs-storage app.kubernetes.io/instance: navidrome app.kubernetes.io/part-of: navidrome spec: persistentVolumeReclaimPolicy: Retain storageClassName: nfs-client capacity: storage: 1Gi accessModes: - ReadWriteMany nfs: path: /volume2/Storage/Music server: synologybond.alexlebens.net mountOptions: - vers=4 - minorversion=1 - noac --- apiVersion: v1 kind: PersistentVolume metadata: name: navidrome-music-single-nfs-storage namespace: navidrome labels: app.kubernetes.io/name: navidrome-music-single-nfs-storage app.kubernetes.io/instance: navidrome app.kubernetes.io/part-of: navidrome spec: persistentVolumeReclaimPolicy: Retain storageClassName: nfs-client capacity: storage: 1Gi accessModes: - ReadWriteMany nfs: path: /volume2/Storage/Music Singles/ server: synologybond.alexlebens.net mountOptions: - vers=4 - minorversion=1 - noac --- apiVersion: v1 kind: PersistentVolume metadata: name: navidrome-music-youtube-nfs-storage namespace: navidrome labels: app.kubernetes.io/name: navidrome-music-youtube-nfs-storage app.kubernetes.io/instance: navidrome app.kubernetes.io/part-of: navidrome spec: persistentVolumeReclaimPolicy: Retain storageClassName: nfs-client capacity: storage: 1Gi accessModes: - ReadWriteMany nfs: path: /volume2/Storage/Music Youtube/ server: synologybond.alexlebens.net mountOptions: - vers=4 - minorversion=1 - noac --- kind: PersistentVolumeClaim apiVersion: v1 metadata: name: navidrome-data labels: app.kubernetes.io/instance: navidrome app.kubernetes.io/managed-by: Helm app.kubernetes.io/name: navidrome helm.sh/chart: navidrome-4.6.2 namespace: navidrome spec: accessModes: - "ReadWriteOnce" resources: requests: storage: "10Gi" storageClassName: "ceph-block" --- apiVersion: v1 kind: PersistentVolumeClaim metadata: name: navidrome-music-grabber-nfs-storage namespace: navidrome labels: app.kubernetes.io/name: navidrome-music-grabber-nfs-storage app.kubernetes.io/instance: navidrome app.kubernetes.io/part-of: navidrome spec: volumeName: navidrome-music-grabber-nfs-storage storageClassName: nfs-client accessModes: - ReadWriteMany resources: requests: storage: 1Gi --- apiVersion: v1 kind: PersistentVolumeClaim metadata: name: navidrome-music-nfs-storage namespace: navidrome labels: app.kubernetes.io/name: navidrome-music-nfs-storage app.kubernetes.io/instance: navidrome app.kubernetes.io/part-of: navidrome spec: volumeName: navidrome-music-nfs-storage storageClassName: nfs-client accessModes: - ReadWriteMany resources: requests: storage: 1Gi --- apiVersion: v1 kind: PersistentVolumeClaim metadata: name: navidrome-music-single-nfs-storage namespace: navidrome labels: app.kubernetes.io/name: navidrome-music-single-nfs-storage app.kubernetes.io/instance: navidrome app.kubernetes.io/part-of: navidrome spec: volumeName: navidrome-music-single-nfs-storage storageClassName: nfs-client accessModes: - ReadWriteMany resources: requests: storage: 1Gi --- apiVersion: v1 kind: PersistentVolumeClaim metadata: name: navidrome-music-youtube-nfs-storage namespace: navidrome labels: app.kubernetes.io/name: navidrome-music-youtube-nfs-storage app.kubernetes.io/instance: navidrome app.kubernetes.io/part-of: navidrome spec: volumeName: navidrome-music-youtube-nfs-storage storageClassName: nfs-client accessModes: - ReadWriteMany resources: requests: storage: 1Gi --- apiVersion: volsync.backube/v1alpha1 kind: ReplicationSource metadata: name: navidrome-data-backup-source-external namespace: navidrome labels: helm.sh/chart: volsync-target-data-0.8.0 app.kubernetes.io/instance: navidrome app.kubernetes.io/part-of: navidrome app.kubernetes.io/version: "0.8.0" app.kubernetes.io/managed-by: Helm app.kubernetes.io/name: navidrome-data-backup spec: sourcePVC: navidrome-data trigger: schedule: 46 10 * * * restic: pruneIntervalDays: 7 repository: navidrome-data-backup-secret-external retain: daily: 7 hourly: 0 monthly: 3 weekly: 4 yearly: 1 moverSecurityContext: fsGroup: 1000 fsGroupChangePolicy: OnRootMismatch runAsGroup: 1000 runAsUser: 1000 copyMethod: Snapshot storageClassName: ceph-block volumeSnapshotClassName: ceph-blockpool-snapshot cacheCapacity: 1Gi --- apiVersion: volsync.backube/v1alpha1 kind: ReplicationSource metadata: name: navidrome-data-backup-source-local namespace: navidrome labels: helm.sh/chart: volsync-target-data-0.8.0 app.kubernetes.io/instance: navidrome app.kubernetes.io/part-of: navidrome app.kubernetes.io/version: "0.8.0" app.kubernetes.io/managed-by: Helm app.kubernetes.io/name: navidrome-data-backup spec: sourcePVC: navidrome-data trigger: schedule: 46 8 * * * restic: pruneIntervalDays: 7 repository: navidrome-data-backup-secret-local retain: daily: 7 hourly: 0 monthly: 3 weekly: 4 yearly: 1 moverSecurityContext: fsGroup: 1000 fsGroupChangePolicy: OnRootMismatch runAsGroup: 1000 runAsUser: 1000 copyMethod: Snapshot storageClassName: ceph-block volumeSnapshotClassName: ceph-blockpool-snapshot cacheCapacity: 1Gi --- apiVersion: volsync.backube/v1alpha1 kind: ReplicationSource metadata: name: navidrome-data-backup-source-remote namespace: navidrome labels: helm.sh/chart: volsync-target-data-0.8.0 app.kubernetes.io/instance: navidrome app.kubernetes.io/part-of: navidrome app.kubernetes.io/version: "0.8.0" app.kubernetes.io/managed-by: Helm app.kubernetes.io/name: navidrome-data-backup spec: sourcePVC: navidrome-data trigger: schedule: 46 9 * * * restic: pruneIntervalDays: 7 repository: navidrome-data-backup-secret-remote retain: daily: 7 hourly: 0 monthly: 3 weekly: 4 yearly: 1 moverSecurityContext: fsGroup: 1000 fsGroupChangePolicy: OnRootMismatch runAsGroup: 1000 runAsUser: 1000 copyMethod: Snapshot storageClassName: ceph-block volumeSnapshotClassName: ceph-blockpool-snapshot cacheCapacity: 1Gi --- apiVersion: v1 kind: Service metadata: name: navidrome-feishin labels: app.kubernetes.io/instance: navidrome app.kubernetes.io/managed-by: Helm app.kubernetes.io/name: navidrome app.kubernetes.io/service: navidrome-feishin helm.sh/chart: navidrome-4.6.2 namespace: navidrome spec: type: ClusterIP ports: - port: 80 targetPort: 9180 protocol: TCP name: http selector: app.kubernetes.io/controller: feishin app.kubernetes.io/instance: navidrome app.kubernetes.io/name: navidrome --- apiVersion: v1 kind: Service metadata: name: navidrome-main labels: app.kubernetes.io/instance: navidrome app.kubernetes.io/managed-by: Helm app.kubernetes.io/name: navidrome app.kubernetes.io/service: navidrome-main helm.sh/chart: navidrome-4.6.2 namespace: navidrome spec: type: ClusterIP ports: - port: 80 targetPort: 4533 protocol: TCP name: http selector: app.kubernetes.io/controller: main app.kubernetes.io/instance: navidrome app.kubernetes.io/name: navidrome --- apiVersion: monitoring.coreos.com/v1 kind: ServiceMonitor metadata: name: navidrome labels: app.kubernetes.io/instance: navidrome app.kubernetes.io/managed-by: Helm app.kubernetes.io/name: navidrome helm.sh/chart: navidrome-4.6.2 namespace: navidrome spec: jobLabel: navidrome namespaceSelector: matchNames: - navidrome selector: matchLabels: app.kubernetes.io/instance: navidrome app.kubernetes.io/name: navidrome app.kubernetes.io/service: navidrome-main endpoints: - interval: 30s path: /metrics port: http scheme: http scrapeTimeout: 15s