DGSE/kubernetes
1
0
Fork 0
Code Issues 3 Pull Requests 8 Actions Packages Projects Releases Wiki Activity

Compare commits

base: DGSE:f729a812dfed2d8ce776268ea25d4969e5eeafad
Branches Tags
DGSE:main DGSE:renovate/nextcloud-8.x DGSE:renovate/vaultwarden-0.x DGSE:renovate/penpot-0.x DGSE:renovate/external-secrets-2.x DGSE:renovate/cloudnative-pg-0.x DGSE:renovate/external-secrets-1.x DGSE:renovate/argoproj-argo-cd-3.x DGSE:renovate/vault-0.x
..
compare: DGSE:e2dbf525b302b6027323c153219e904ef179c0d9
Branches Tags
DGSE:renovate/nextcloud-8.x DGSE:renovate/vaultwarden-0.x DGSE:renovate/penpot-0.x DGSE:renovate/external-secrets-2.x DGSE:renovate/cloudnative-pg-0.x DGSE:renovate/external-secrets-1.x DGSE:main DGSE:renovate/argoproj-argo-cd-3.x DGSE:renovate/vault-0.x

1 Commits
f729a812df ... e2dbf525b3

Author SHA1 Message Date
Renovate Bot
e2dbf525b3 chore(deps): update helm release mailu to v2.5.1 2025-11-04 00:01:45 +00:00
18 changed files with 51 additions and 235 deletions
Expand all files Collapse all files

26
catalog-info.yaml
View File

@@ -1,26 +0,0 @@
---
apiVersion: backstage.io/v1alpha1
kind: Domain
metadata:
name: dgse-cloud
description: "Infrastructure for DGSE Cloud services."
spec:
owner: dgse-cloud
---
apiVersion: backstage.io/v1alpha1
kind: Location
metadata:
name: artemis-cluster
description: A collection of all entities running on the Artemis cluster
spec:
targets:
- ./clusters/artemis/catalog.yaml
- ./clusters/artemis/apps/argocd/catalog.yaml
- ./clusters/artemis/apps/cnpg/catalog.yaml
- ./clusters/artemis/apps/digital-garden/catalog.yaml
- ./clusters/artemis/apps/external-secrets/catalog.yaml
- ./clusters/artemis/apps/gitea/catalog.yaml
- ./clusters/artemis/apps/gitea-runners/catalog.yaml
- ./clusters/artemis/apps/immich/catalog.yaml
- ./clusters/artemis/apps/mailu/catalog.yaml
- ./clusters/artemis/apps/nextcloud/catalog.yaml

18
clusters/artemis/apps/argocd/catalog.yaml
View File

@@ -1,18 +0,0 @@
---
apiVersion: backstage.io/v1alpha1
kind: Component
metadata:
name: argocd
description: "ArgoCD is a declarative, GitOps continuous delivery tool for Kubernetes."
links:
- url: https://cd.dgse.cloud
title: Dashboard
icon: dashboard
annotations:
argocd/app-name: argocd
argocd/app-namespace: argocd
spec:
type: service
lifecycle: production
owner: owners
system: artemis-cluster

14
clusters/artemis/apps/cnpg/catalog.yaml
View File

@@ -1,14 +0,0 @@
---
apiVersion: backstage.io/v1alpha1
kind: Component
metadata:
name: cnpg
description: "CloudNativePG is a Kubernetes operator that manages PostgreSQL databases in a cloud-native way."
annotations:
argocd/app-name: cnpg
argocd/app-namespace: cnpg-system
spec:
type: service
lifecycle: production
owner: owners
system: artemis-cluster

18
clusters/artemis/apps/digital-garden/catalog.yaml
View File

@@ -1,18 +0,0 @@
---
apiVersion: backstage.io/v1alpha1
kind: Component
metadata:
name: digital-garden
description: "A collection of notes, essays, and other writing that is published on the web."
links:
- url: https://groothuis.io
title: Public Website
icon: web
annotations:
argocd/app-name: digital-garden
argocd/app-namespace: digital-garden
spec:
type: website
lifecycle: production
owner: owners
system: artemis-cluster

14
clusters/artemis/apps/external-secrets/catalog.yaml
View File

@@ -1,14 +0,0 @@
---
apiVersion: backstage.io/v1alpha1
kind: Component
metadata:
name: external-secrets
description: "Vault Secrets Operator to sync secrets from Vault to Kubernetes"
annotations:
argocd/app-name: external-secrets
argocd/app-namespace: external-secrets
spec:
type: service
lifecycle: production
owner: owners
system: artemis-cluster

16
clusters/artemis/apps/gitea-runners/catalog.yaml
View File

@@ -1,16 +0,0 @@
---
apiVersion: backstage.io/v1alpha1
kind: Component
metadata:
name: gitea-runners
description: "Gitea Action Runners"
annotations:
argocd/app-name: gitea-runners
argocd/app-namespace: gitea-runners
spec:
type: service
lifecycle: production
owner: owners
system: artemis-cluster
dependencyOf:
- component:gitea

20
clusters/artemis/apps/gitea/catalog.yaml
View File

@@ -1,20 +0,0 @@
---
apiVersion: backstage.io/v1alpha1
kind: Component
metadata:
name: gitea
description: "Self-hosted Git Server"
links:
- url: https://git.dgse.cloud
title: Git Server
icon: web
annotations:
argocd/app-name: gitea
argocd/app-namespace: gitea
spec:
type: service
lifecycle: production
owner: owners
system: artemis-cluster
dependsOn:
- Component:gitea-runners

18
clusters/artemis/apps/immich/catalog.yaml
View File

@@ -1,18 +0,0 @@
---
apiVersion: backstage.io/v1alpha1
kind: Component
metadata:
name: immich
description: "Self-hosted photo and video backup solution directly from your mobile phone."
links:
- url: https://photos.dgse.cloud
title: Git Server
icon: web
annotations:
argocd/app-name: immich
argocd/app-namespace: immich
spec:
type: service
lifecycle: production
owner: owners
system: artemis-cluster

17
clusters/artemis/apps/kener/app-project.yaml Normal file
View File

@@ -0,0 +1,17 @@
---
apiVersion: argoproj.io/v1alpha1
kind: AppProject
metadata:
name: kener
spec:
description: Monitoring tool
sourceRepos:
- '*'
sourceNamespaces:
- '*'
destinations:
- namespace: 'kener'
server: '*'
clusterResourceWhitelist:
- group: '*'
kind: '*'

24
clusters/artemis/apps/kener/application.yaml Normal file
View File

@@ -0,0 +1,24 @@
apiVersion: argoproj.io/v1alpha1
kind: Application
metadata:
name: kener
namespace: kener
labels:
platform.dgse.cloud/cluster: artemis
finalizers:
- resources-finalizer.argocd.argoproj.io
spec:
project: kener
source:
repoURL: 'https://git.dgse.cloud/DGSE/kubernetes.git'
path: manifests/artemis/kener
targetRevision: main
destination:
namespace: kener
name: in-cluster
syncPolicy:
syncOptions:
- CreateNamespace=true
automated:
prune: true
selfHeal: true

7
clusters/artemis/apps/kener/kustomization.yaml Normal file
View File

@@ -0,0 +1,7 @@
---
apiVersion: kustomize.config.k8s.io/v1beta1
kind: Kustomization
resources:
- app-project.yaml
- application.yaml

18
clusters/artemis/apps/mailu/catalog.yaml
View File

@@ -1,18 +0,0 @@
---
apiVersion: backstage.io/v1alpha1
kind: Component
metadata:
name: mailu
description: "Self-hosted mail server"
links:
- url: https://mail.dgse.cloud
title: Mail Server
icon: web
annotations:
argocd/app-name: mailu
argocd/app-namespace: mailu
spec:
type: service
lifecycle: production
owner: owners
system: artemis-cluster

19
clusters/artemis/apps/nextcloud/catalog.yaml
View File

@@ -1,19 +0,0 @@
---
apiVersion: backstage.io/v1alpha1
kind: Component
metadata:
name: nextcloud
description: "Self-hosted photo and video backup solution directly from your mobile phone."
links:
- url: https://nextcloud.dgse.cloud
title: Git Server
icon: web
annotations:
argocd/app-name: nextcloud
argocd/app-namespace: nextcloud
backstage.io/techdocs-ref: value
spec:
type: service
lifecycle: production
owner: owners
system: artemis-cluster

9
clusters/artemis/catalog.yaml
View File

@@ -1,9 +0,0 @@
---
apiVersion: backstage.io/v1alpha1
kind: System
metadata:
name: artemis-cluster
description: "The Artemis cluster is a Kubernetes cluster hosting all infra for DGSE Cloud."
spec:
owner: owners
domain: dgse-cloud

13
manifests/artemis/argocd/backstage-rbac.yaml
View File

@@ -1,13 +0,0 @@
---
apiVersion: rbac.authorization.k8s.io/v1
kind: ClusterRoleBinding
metadata:
name: backstage-argocd-server-access
subjects:
- kind: ServiceAccount
name: backstage-argocd
namespace: argocd
roleRef:
apiGroup: rbac.authorization.k8s.io
kind: ClusterRole
name: argocd-server

6
manifests/artemis/argocd/backstage-sa.yaml
View File

@@ -1,6 +0,0 @@
---
apiVersion: v1
kind: ServiceAccount
metadata:
name: backstage-argocd
namespace: argocd

27
manifests/artemis/argocd/kustomization.yaml
View File

@@ -5,11 +5,9 @@ metadata:
name: argocd name: argocd
resources: resources:
- github.com/argoproj/argo-cd/manifests/cluster-install?ref=v3.2.0 - github.com/argoproj/argo-cd/manifests/cluster-install?ref=v3.1.9
- ingressRoute.yaml - ingressRoute.yaml
- certificate.yaml - certificate.yaml
- backstage-sa.yaml
- backstage-rbac.yaml
patches: patches:
- target: - target:
@@ -47,8 +45,7 @@ patches:
metadata: metadata:
name: argocd-cm name: argocd-cm
data: data:
accounts.admin: "apiKey, login" admin.enabled: "false"
admin.enabled: "true"
kustomize.buildOptions: --enable-helm kustomize.buildOptions: --enable-helm
url: https://cd.dgse.cloud url: https://cd.dgse.cloud
oidc.config: | oidc.config: |
@@ -121,23 +118,3 @@ patches:
apiGroup: rbac.authorization.k8s.io apiGroup: rbac.authorization.k8s.io
kind: ClusterRole kind: ClusterRole
name: argocd-server name: argocd-server
# Map Backstage SA to Argo CD role:admin (full Argo CD permissions)
- target:
kind: ConfigMap
name: argocd-rbac-cm
patch: |-
apiVersion: v1
kind: ConfigMap
metadata:
name: argocd-rbac-cm
namespace: argocd
data:
policy.csv: |
g, argocd_admins, role:admin
p, argocd_users, applications, list, *, allow
p, argocd_users, applications, sync, *, allow
p, argocd_users, applications, refresh, *, allow
p, argocd_users, applications, get, *, allow
g, system:serviceaccount:argocd:backstage-argocd, role:admin
p, system:serviceaccount:argocd:backstage-argocd, applications, *, */*, allow

2
manifests/artemis/mailu/kustomization.yaml
View File

@@ -10,7 +10,7 @@ resources:
helmCharts: helmCharts:
- name: mailu - name: mailu
repo: https://mailu.github.io/helm-charts/ repo: https://mailu.github.io/helm-charts/
version: 2.6.0 version: 2.5.1
releaseName: mailu releaseName: mailu
namespace: mailu namespace: mailu
valuesFile: values.yaml valuesFile: values.yaml