DGSE/kubernetes
1
0
Fork 0
Code Issues 3 Pull Requests 8 Actions Packages Projects Releases Wiki Activity

Compare commits

base: DGSE:b58851bc094fa5b20cbf4de2f9d04f3db4a61555
Branches Tags
DGSE:main DGSE:renovate/nextcloud-8.x DGSE:renovate/vaultwarden-0.x DGSE:renovate/penpot-0.x DGSE:renovate/external-secrets-2.x DGSE:renovate/cloudnative-pg-0.x DGSE:renovate/external-secrets-1.x DGSE:renovate/argoproj-argo-cd-3.x DGSE:renovate/vault-0.x
...
compare: DGSE:renovate/vault-0.x
Branches Tags
DGSE:renovate/nextcloud-8.x DGSE:renovate/vaultwarden-0.x DGSE:renovate/penpot-0.x DGSE:renovate/external-secrets-2.x DGSE:renovate/cloudnative-pg-0.x DGSE:renovate/external-secrets-1.x DGSE:main DGSE:renovate/argoproj-argo-cd-3.x DGSE:renovate/vault-0.x

16 Commits
b58851bc09 ... renovate/v

Author SHA1 Message Date
Renovate Bot
54a4a22408 chore(deps): update helm release vault to v0.32.0 2026-01-17 00:03:23 +00:00
Daniël Groothuis
a9dc9a5cb7 Merge pull request 'chore(deps): update helm release external-secrets to v1' (#28) from renovate/external-secrets-1.x into main 
Reviewed-on: #28
 2025-12-22 09:36:51 +00:00
Daniël Groothuis
bbe1014a37 Merge pull request 'chore(deps): update actions/checkout action to v6' (#31) from renovate/actions-checkout-6.x into main 
Reviewed-on: #31
 2025-12-22 09:35:16 +00:00
Daniël Groothuis
8ffb57e1b7 Merge pull request 'chore(deps): update helm release penpot to v0.30.0' (#30) from renovate/penpot-0.x into main 
Reviewed-on: #30
 2025-12-22 09:32:41 +00:00
Daniël Groothuis
09961b68f9 Merge pull request 'chore(deps): update helm release immich to v0.10.3' (#29) from renovate/immich-0.x into main 
Reviewed-on: #29
 2025-12-22 09:03:04 +00:00
Daniël Groothuis
1352394ca5 Merge pull request 'chore(deps): update helm release mailu to v2.6.3' (#25) from renovate/mailu-2.x into main 
Reviewed-on: #25
 2025-12-22 08:53:36 +00:00
Daniël Groothuis
4fd96cf953 Merge pull request 'chore(deps): update dependency argoproj/argo-cd to v3.2.2' (#33) from renovate/argoproj-argo-cd-3.x into main 
Reviewed-on: #33
 2025-12-22 08:51:20 +00:00
Renovate Bot
680e0822a6 chore(deps): update helm release external-secrets to v1 2025-12-22 08:07:23 +00:00
Renovate Bot
3c0f9a713d chore(deps): update helm release mailu to v2.6.3 2025-12-22 08:07:11 +00:00
Renovate Bot
f9e156e522 chore(deps): update dependency argoproj/argo-cd to v3.2.2 2025-12-22 08:07:01 +00:00
Renovate Bot
5861f677a4 chore(deps): update actions/checkout action to v6 2025-11-21 00:01:59 +00:00
Renovate Bot
aa92ad14ef chore(deps): update helm release penpot to v0.30.0 2025-11-15 00:02:32 +00:00
Renovate Bot
fd2df98297 chore(deps): update helm release immich to v0.10.3 2025-11-15 00:02:27 +00:00
Daniël Groothuis
4a17940c9f chore(osx): Added OSX container 2025-11-11 17:37:01 +01:00
Daniël Groothuis
01c5b31cbb chore(osx): Added OSX container 2025-11-11 17:32:41 +01:00
Daniël Groothuis
83a0e6b8ee chore(mailu): Reverted rate limit 2025-11-10 15:10:25 +01:00
17 changed files with 175 additions and 8 deletions
Expand all files Collapse all files

2
.gitea/workflows/production.yaml
View File

@@ -7,7 +7,7 @@ jobs:
runs-on: ubuntu-latest runs-on: ubuntu-latest
steps: steps:
- name: 📥Checkout - name: 📥Checkout
uses: actions/checkout@v5 uses: actions/checkout@v6
- name: 🚀Validating the manifests - name: 🚀Validating the manifests
uses: frenck/action-yamllint@v1.5.0 uses: frenck/action-yamllint@v1.5.0
with: with:

1
clusters/artemis/apps/kustomization.yaml
View File

@@ -18,3 +18,4 @@ resources:
- immich - immich
- digital-garden - digital-garden
- nextcloud - nextcloud
- osx

17
clusters/artemis/apps/osx/app-project.yaml Normal file
View File

@@ -0,0 +1,17 @@
---
apiVersion: argoproj.io/v1alpha1
kind: AppProject
metadata:
name: osx
spec:
description: osx container to proxy shortcuts
sourceRepos:
- '*'
sourceNamespaces:
- '*'
destinations:
- namespace: 'osx'
server: '*'
clusterResourceWhitelist:
- group: '*'
kind: '*'

24
clusters/artemis/apps/osx/application.yaml Normal file
View File

@@ -0,0 +1,24 @@
apiVersion: argoproj.io/v1alpha1
kind: Application
metadata:
name: osx
namespace: osx
labels:
platform.dgse.cloud/cluster: artemis
finalizers:
- resources-finalizer.argocd.argoproj.io
spec:
project: osx
source:
repoURL: 'https://git.dgse.cloud/DGSE/kubernetes.git'
path: manifests/artemis/osx
targetRevision: main
destination:
namespace: osx
name: in-cluster
syncPolicy:
syncOptions:
- CreateNamespace=true
automated:
prune: true
selfHeal: true

7
clusters/artemis/apps/osx/kustomization.yaml Normal file
View File

@@ -0,0 +1,7 @@
---
apiVersion: kustomize.config.k8s.io/v1beta1
kind: Kustomization
resources:
- app-project.yaml
- application.yaml

2
manifests/artemis/argocd/kustomization.yaml
View File

@@ -5,7 +5,7 @@ metadata:
name: argocd name: argocd
resources: resources:
- github.com/argoproj/argo-cd/manifests/cluster-install?ref=v3.2.0 - github.com/argoproj/argo-cd/manifests/cluster-install?ref=v3.2.2
- ingressRoute.yaml - ingressRoute.yaml
- certificate.yaml - certificate.yaml
- backstage-sa.yaml - backstage-sa.yaml

2
manifests/artemis/external-secrets/kustomization.yaml
View File

@@ -10,6 +10,6 @@ resources:
helmCharts: helmCharts:
- name: external-secrets - name: external-secrets
repo: https://charts.external-secrets.io/ repo: https://charts.external-secrets.io/
version: 0.20.4 version: 1.2.0
releaseName: external-secrets releaseName: external-secrets
namespace: external-secrets namespace: external-secrets

2
manifests/artemis/immich/kustomization.yaml
View File

@@ -12,7 +12,7 @@ resources:
helmCharts: helmCharts:
- name: immich - name: immich
repo: https://immich-app.github.io/immich-charts repo: https://immich-app.github.io/immich-charts
version: 0.10.1 version: 0.10.3
releaseName: immich releaseName: immich
namespace: immich namespace: immich
valuesFile: values.yaml valuesFile: values.yaml

2
manifests/artemis/mailu/kustomization.yaml
View File

@@ -10,7 +10,7 @@ resources:
helmCharts: helmCharts:
- name: mailu - name: mailu
repo: https://mailu.github.io/helm-charts/ repo: https://mailu.github.io/helm-charts/
version: 2.1.2 version: 2.6.3
releaseName: mailu releaseName: mailu
namespace: mailu namespace: mailu
valuesFile: values.yaml valuesFile: values.yaml

2
manifests/artemis/mailu/values.yaml
View File

@@ -166,7 +166,7 @@ limits:
ipv6Mask: 56 ipv6Mask: 56
user: 100/day user: 100/day
exemptionLength: 86400 exemptionLength: 86400
exemption: "10.42.0.0/16" exemption: "10.42.4.105"
# Configuration to reduce outgoing spam in case of a compromised account. See the documentation for further information: https://mailu.io/1.9/configuration.html?highlight=MESSAGE_RATELIMIT # Configuration to reduce outgoing spam in case of a compromised account. See the documentation for further information: https://mailu.io/1.9/configuration.html?highlight=MESSAGE_RATELIMIT
## @param limits.messageRatelimit.value Sets the `MESSAGE_RATELIMIT` environment variable in the `admin` pod ## @param limits.messageRatelimit.value Sets the `MESSAGE_RATELIMIT` environment variable in the `admin` pod

58
manifests/artemis/osx/deployment.yaml Normal file
View File

@@ -0,0 +1,58 @@
---
apiVersion: apps/v1
kind: Deployment
metadata:
name: macos
labels:
name: macos
spec:
replicas: 1
selector:
matchLabels:
app: macos
template:
metadata:
labels:
app: macos
spec:
containers:
- name: macos
image: dockurr/macos
env:
- name: VERSION
value: "14"
- name: DISK_SIZE
value: "64G"
- name: KVM
value: "N"
ports:
- containerPort: 8006
name: http
protocol: TCP
- containerPort: 5900
name: vnc
protocol: TCP
securityContext:
capabilities:
add:
- NET_ADMIN
privileged: true
volumeMounts:
- mountPath: /storage
name: storage
- mountPath: /dev/kvm
name: dev-kvm
- mountPath: /dev/net/tun
name: dev-tun
terminationGracePeriodSeconds: 120
volumes:
- name: storage
persistentVolumeClaim:
claimName: macos-pvc
- hostPath:
path: /dev/kvm
name: dev-kvm
- hostPath:
path: /dev/net/tun
type: CharDevice
name: dev-tun

22
manifests/artemis/osx/ingress.yaml Normal file
View File

@@ -0,0 +1,22 @@
apiVersion: networking.k8s.io/v1
kind: Ingress
metadata:
annotations:
cert-manager.io/cluster-issuer: letsencrypt
name: osx-ingress
spec:
rules:
- host: osx.dgse.cloud
http:
paths:
- backend:
service:
name: macos
port:
number: 8006
path: /
pathType: Prefix
tls:
- hosts:
- osx.dgse.cloud
secretName: letsencrypt

8
manifests/artemis/osx/kustomization.yaml Normal file
View File

@@ -0,0 +1,8 @@
---
apiVersion: kustomize.config.k8s.io/v1beta1
kind: Kustomization
resources:
- service.yaml
- deployment.yaml
- pvc.yaml

11
manifests/artemis/osx/pvc.yaml Normal file
View File

@@ -0,0 +1,11 @@
---
apiVersion: v1
kind: PersistentVolumeClaim
metadata:
name: macos-pvc
spec:
accessModes:
- ReadWriteOnce
resources:
requests:
storage: 64Gi

19
manifests/artemis/osx/service.yaml Normal file
View File

@@ -0,0 +1,19 @@
---
apiVersion: v1
kind: Service
metadata:
name: macos
spec:
internalTrafficPolicy: Cluster
ports:
- name: http
port: 8006
protocol: TCP
targetPort: 8006
- name: vnc
port: 5900
protocol: TCP
targetPort: 5900
selector:
app: macos
type: ClusterIP

2
manifests/artemis/penpot/kustomization.yaml
View File

@@ -10,7 +10,7 @@ resources:
helmCharts: helmCharts:
- name: penpot - name: penpot
repo: http://helm.penpot.app repo: http://helm.penpot.app
version: 0.28.0 version: 0.30.0
releaseName: penpot releaseName: penpot
namespace: penpot namespace: penpot
valuesFile: values.yaml valuesFile: values.yaml

2
manifests/artemis/vault/kustomization.yaml
View File

@@ -10,7 +10,7 @@ resources:
helmCharts: helmCharts:
- name: vault - name: vault
repo: https://helm.releases.hashicorp.com/ repo: https://helm.releases.hashicorp.com/
version: 0.31.0 version: 0.32.0
releaseName: vault releaseName: vault
namespace: vault namespace: vault
valuesFile: values.yaml valuesFile: values.yaml