--- # Source: ephemera/templates/persistent-volume.yaml apiVersion: v1 kind: PersistentVolume metadata: name: ephemera-import-nfs-storage namespace: ephemera labels: app.kubernetes.io/name: ephemera-import-nfs-storage app.kubernetes.io/instance: ephemera app.kubernetes.io/part-of: ephemera spec: persistentVolumeReclaimPolicy: Retain storageClassName: nfs-client capacity: storage: 1Gi accessModes: - ReadWriteMany nfs: path: /volume2/Storage/Books Import server: synologybond.alexlebens.net mountOptions: - vers=4 - minorversion=1 - noac --- # Source: ephemera/charts/ephemera/templates/common.yaml --- kind: PersistentVolumeClaim apiVersion: v1 metadata: name: ephemera labels: app.kubernetes.io/instance: ephemera app.kubernetes.io/managed-by: Helm app.kubernetes.io/name: ephemera helm.sh/chart: ephemera-4.4.0 annotations: helm.sh/resource-policy: keep namespace: ephemera spec: accessModes: - "ReadWriteOnce" resources: requests: storage: "5Gi" storageClassName: "ceph-block" --- # Source: ephemera/templates/persistent-volume-claim.yaml apiVersion: v1 kind: PersistentVolumeClaim metadata: name: ephemera-import-nfs-storage namespace: ephemera labels: app.kubernetes.io/name: ephemera-import-nfs-storage app.kubernetes.io/instance: ephemera app.kubernetes.io/part-of: ephemera spec: volumeName: ephemera-import-nfs-storage storageClassName: nfs-client accessModes: - ReadWriteMany resources: requests: storage: 1Gi --- # Source: ephemera/charts/ephemera/templates/common.yaml apiVersion: v1 kind: Service metadata: name: ephemera labels: app.kubernetes.io/instance: ephemera app.kubernetes.io/managed-by: Helm app.kubernetes.io/name: ephemera app.kubernetes.io/service: ephemera helm.sh/chart: ephemera-4.4.0 namespace: ephemera spec: type: ClusterIP ports: - port: 80 targetPort: 8286 protocol: TCP name: http selector: app.kubernetes.io/controller: main app.kubernetes.io/instance: ephemera app.kubernetes.io/name: ephemera --- # Source: ephemera/charts/ephemera/templates/common.yaml apiVersion: apps/v1 kind: Deployment metadata: name: ephemera labels: app.kubernetes.io/controller: main app.kubernetes.io/instance: ephemera app.kubernetes.io/managed-by: Helm app.kubernetes.io/name: ephemera helm.sh/chart: ephemera-4.4.0 namespace: ephemera spec: revisionHistoryLimit: 3 replicas: 1 strategy: type: Recreate selector: matchLabels: app.kubernetes.io/controller: main app.kubernetes.io/name: ephemera app.kubernetes.io/instance: ephemera template: metadata: labels: app.kubernetes.io/controller: main app.kubernetes.io/instance: ephemera app.kubernetes.io/name: ephemera spec: enableServiceLinks: false serviceAccountName: default automountServiceAccountToken: true hostIPC: false hostNetwork: false hostPID: false dnsPolicy: ClusterFirst containers: - env: - name: TZ value: US/Central - name: APPRISE_STORAGE_MODE value: memory - name: APPRISE_STATEFUL_MODE value: disabled - name: APPRISE_WORKER_COUNT value: "1" - name: APPRISE_STATELESS_URLS valueFrom: secretKeyRef: key: ntfy-url name: ephemera-apprise-config image: caronc/apprise:1.2.6 imagePullPolicy: IfNotPresent name: apprise-api resources: requests: cpu: 10m memory: 128Mi - env: - name: LOG_LEVEL value: info - name: LOG_HTML value: "false" - name: CAPTCHA_SOLVER value: none - name: TZ value: America/Chicago image: ghcr.io/flaresolverr/flaresolverr:v3.4.5 imagePullPolicy: IfNotPresent name: flaresolverr resources: requests: cpu: 10m memory: 128Mi - env: - name: AA_BASE_URL value: https://annas-archive.org - name: FLARESOLVERR_URL value: http://127.0.0.1:8191 - name: LG_BASE_URL value: https://gen.com - name: PUID value: "0" - name: PGID value: "0" image: ghcr.io/orwellianepilogue/ephemera:1.3.1 imagePullPolicy: IfNotPresent name: main resources: requests: cpu: 50m memory: 128Mi volumeMounts: - mountPath: /app/downloads name: cache - mountPath: /app/data name: config - mountPath: /app/ingest name: ingest volumes: - emptyDir: {} name: cache - name: config persistentVolumeClaim: claimName: ephemera - name: ingest persistentVolumeClaim: claimName: ephemera-import-nfs-storage --- # Source: ephemera/templates/external-secret.yaml apiVersion: external-secrets.io/v1 kind: ExternalSecret metadata: name: ephemera-key-secret namespace: ephemera labels: app.kubernetes.io/name: ephemera-key-secret app.kubernetes.io/instance: ephemera app.kubernetes.io/part-of: ephemera spec: secretStoreRef: kind: ClusterSecretStore name: vault data: - secretKey: key remoteRef: conversionStrategy: Default decodingStrategy: None key: /cl01tl/ephemera/config metadataPolicy: None property: key --- # Source: ephemera/templates/external-secret.yaml apiVersion: external-secrets.io/v1 kind: ExternalSecret metadata: name: ephemera-apprise-config namespace: ephemera labels: app.kubernetes.io/name: ephemera-apprise-config app.kubernetes.io/instance: ephemera app.kubernetes.io/part-of: ephemera spec: secretStoreRef: kind: ClusterSecretStore name: vault data: - secretKey: ntfy-url remoteRef: conversionStrategy: Default decodingStrategy: None key: /cl01tl/ephemera/config metadataPolicy: None property: ntfy-url --- # Source: ephemera/templates/external-secret.yaml apiVersion: external-secrets.io/v1 kind: ExternalSecret metadata: name: ephemera-config-backup-secret namespace: ephemera labels: app.kubernetes.io/name: ephemera-config-backup-secret app.kubernetes.io/instance: ephemera app.kubernetes.io/part-of: ephemera spec: secretStoreRef: kind: ClusterSecretStore name: vault target: template: mergePolicy: Merge engineVersion: v2 data: RESTIC_REPOSITORY: "{{ .BUCKET_ENDPOINT }}/ephemera/ephemera-config" data: - secretKey: BUCKET_ENDPOINT remoteRef: conversionStrategy: Default decodingStrategy: None key: /cl01tl/volsync/restic/config metadataPolicy: None property: S3_BUCKET_ENDPOINT - secretKey: RESTIC_PASSWORD remoteRef: conversionStrategy: Default decodingStrategy: None key: /cl01tl/volsync/restic/config metadataPolicy: None property: RESTIC_PASSWORD - secretKey: AWS_DEFAULT_REGION remoteRef: conversionStrategy: Default decodingStrategy: None key: /cl01tl/volsync/restic/config metadataPolicy: None property: AWS_DEFAULT_REGION - secretKey: AWS_ACCESS_KEY_ID remoteRef: conversionStrategy: Default decodingStrategy: None key: /digital-ocean/home-infra/volsync-backups metadataPolicy: None property: access_key - secretKey: AWS_SECRET_ACCESS_KEY remoteRef: conversionStrategy: Default decodingStrategy: None key: /digital-ocean/home-infra/volsync-backups metadataPolicy: None property: secret_key --- # Source: ephemera/templates/http-route.yaml apiVersion: gateway.networking.k8s.io/v1 kind: HTTPRoute metadata: name: http-route-ephemera namespace: ephemera labels: app.kubernetes.io/name: http-route-ephemera app.kubernetes.io/instance: ephemera app.kubernetes.io/part-of: ephemera spec: parentRefs: - group: gateway.networking.k8s.io kind: Gateway name: traefik-gateway namespace: traefik hostnames: - ephemera.alexlebens.net rules: - matches: - path: type: PathPrefix value: / backendRefs: - group: '' kind: Service name: ephemera port: 80 weight: 100 --- # Source: ephemera/templates/replication-source.yaml apiVersion: volsync.backube/v1alpha1 kind: ReplicationSource metadata: name: ephemera-config-backup-source namespace: ephemera labels: app.kubernetes.io/name: ephemera-config-backup-source app.kubernetes.io/instance: ephemera app.kubernetes.io/part-of: ephemera spec: sourcePVC: ephemera-config trigger: schedule: 0 4 * * * restic: pruneIntervalDays: 7 repository: ephemera-config-backup-secret retain: hourly: 1 daily: 3 weekly: 2 monthly: 2 yearly: 4 copyMethod: Snapshot storageClassName: ceph-block volumeSnapshotClassName: ceph-blockpool-snapshot cacheCapacity: 10Gi