DGSE/kubernetes
1
0
Fork 0
Code Issues 3 Pull Requests 10 Actions Packages Projects Releases Wiki Activity

Compare commits

base: DGSE:renovate/argoproj-argo-cd-3.x
Branches Tags
DGSE:main DGSE:renovate/cloudnative-pg-0.x DGSE:renovate/penpot-0.x DGSE:renovate/nextcloud-9.x DGSE:renovate/argoproj-argo-cd-3.x DGSE:renovate/external-secrets-2.x DGSE:renovate/vaultwarden-0.x DGSE:renovate/mailu-2.x DGSE:renovate/nextcloud-8.x DGSE:renovate/external-secrets-1.x DGSE:renovate/vault-0.x
..
compare: DGSE:9123a977678903e8804de0de964b047c7e41c1aa
Branches Tags
DGSE:renovate/cloudnative-pg-0.x DGSE:renovate/penpot-0.x DGSE:renovate/nextcloud-9.x DGSE:main DGSE:renovate/argoproj-argo-cd-3.x DGSE:renovate/external-secrets-2.x DGSE:renovate/vaultwarden-0.x DGSE:renovate/mailu-2.x DGSE:renovate/nextcloud-8.x DGSE:renovate/external-secrets-1.x DGSE:renovate/vault-0.x

1 Commits
renovate/a ... 9123a97767

Author SHA1 Message Date
Renovate Bot
9123a97767 chore(deps): update helm release penpot to v0.35.0 2026-02-17 00:02:49 +00:00
30 changed files with 6 additions and 506 deletions
Expand all files Collapse all files

17
clusters/artemis/apps/grainlab-production/app-project.yaml
View File

@@ -1,17 +0,0 @@
---
apiVersion: argoproj.io/v1alpha1
kind: AppProject
metadata:
name: grainlab-production
spec:
description: GrianLab Production environment
sourceRepos:
- '*'
sourceNamespaces:
- '*'
destinations:
- namespace: 'grainlab-production'
server: '*'
clusterResourceWhitelist:
- group: '*'
kind: '*'

24
clusters/artemis/apps/grainlab-production/application.yaml
View File

@@ -1,24 +0,0 @@
apiVersion: argoproj.io/v1alpha1
kind: Application
metadata:
name: grainlab-production
namespace: grainlab-production
labels:
platform.dgse.cloud/cluster: artemis
finalizers:
- resources-finalizer.argocd.argoproj.io
spec:
project: grainlab-production
source:
repoURL: 'https://git.dgse.cloud/DGSE/kubernetes.git'
path: manifests/artemis/grainlab-production
targetRevision: main
destination:
namespace: grainlab-production
name: in-cluster
syncPolicy:
syncOptions:
- CreateNamespace=true
automated:
prune: true
selfHeal: true

7
clusters/artemis/apps/grainlab-production/kustomization.yaml
View File

@@ -1,7 +0,0 @@
---
apiVersion: kustomize.config.k8s.io/v1beta1
kind: Kustomization
resources:
- app-project.yaml
- application.yaml

17
clusters/artemis/apps/grainlab-staging/app-project.yaml
View File

@@ -1,17 +0,0 @@
---
apiVersion: argoproj.io/v1alpha1
kind: AppProject
metadata:
name: grainlab-staging
spec:
description: GrianLab Staging environment
sourceRepos:
- '*'
sourceNamespaces:
- '*'
destinations:
- namespace: 'grainlab-staging'
server: '*'
clusterResourceWhitelist:
- group: '*'
kind: '*'

24
clusters/artemis/apps/grainlab-staging/application.yaml
View File

@@ -1,24 +0,0 @@
apiVersion: argoproj.io/v1alpha1
kind: Application
metadata:
name: grainlab-staging
namespace: grainlab-staging
labels:
platform.dgse.cloud/cluster: artemis
finalizers:
- resources-finalizer.argocd.argoproj.io
spec:
project: grainlab-staging
source:
repoURL: 'https://git.dgse.cloud/DGSE/kubernetes.git'
path: manifests/artemis/grainlab-staging
targetRevision: main
destination:
namespace: grainlab-staging
name: in-cluster
syncPolicy:
syncOptions:
- CreateNamespace=true
automated:
prune: true
selfHeal: true

7
clusters/artemis/apps/grainlab-staging/kustomization.yaml
View File

@@ -1,7 +0,0 @@
---
apiVersion: kustomize.config.k8s.io/v1beta1
kind: Kustomization
resources:
- app-project.yaml
- application.yaml

17
clusters/artemis/apps/homebox/app-project.yaml
View File

@@ -1,17 +0,0 @@
---
apiVersion: argoproj.io/v1alpha1
kind: AppProject
metadata:
name: homebox
spec:
description: Inventory for the home
sourceRepos:
- '*'
sourceNamespaces:
- '*'
destinations:
- namespace: 'homebox'
server: '*'
clusterResourceWhitelist:
- group: '*'
kind: '*'

24
clusters/artemis/apps/homebox/application.yaml
View File

@@ -1,24 +0,0 @@
apiVersion: argoproj.io/v1alpha1
kind: Application
metadata:
name: homebox
namespace: homebox
labels:
platform.dgse.cloud/cluster: artemis
finalizers:
- resources-finalizer.argocd.argoproj.io
spec:
project: homebox
source:
repoURL: 'https://git.dgse.cloud/DGSE/kubernetes.git'
path: manifests/artemis/homebox
targetRevision: main
destination:
namespace: homebox
name: in-cluster
syncPolicy:
syncOptions:
- CreateNamespace=true
automated:
prune: true
selfHeal: true

7
clusters/artemis/apps/homebox/kustomization.yaml
View File

@@ -1,7 +0,0 @@
---
apiVersion: kustomize.config.k8s.io/v1beta1
kind: Kustomization
resources:
- app-project.yaml
- application.yaml

4
clusters/artemis/apps/kustomization.yaml
View File

@@ -16,6 +16,4 @@ resources:
- penpot - penpot
- immich - immich
- digital-garden - digital-garden
- homebox - kaneo
- grainlab-staging
- grainlab-production

2
manifests/artemis/argocd/kustomization.yaml
View File

@@ -5,7 +5,7 @@ metadata:
name: argocd name: argocd
resources: resources:
- github.com/argoproj/argo-cd/manifests/cluster-install?ref=v3.3.6 - github.com/argoproj/argo-cd/manifests/cluster-install?ref=v3.2.6
- ingressRoute.yaml - ingressRoute.yaml
- certificate.yaml - certificate.yaml
- backstage-sa.yaml - backstage-sa.yaml

59
manifests/artemis/grainlab-production/app-deployment.yaml
View File

@@ -1,59 +0,0 @@
apiVersion: apps/v1
kind: Deployment
metadata:
name: grainlab
namespace: grainlab-production
spec:
replicas: 1
selector:
matchLabels:
app: grainlab
template:
metadata:
labels:
app: grainlab
spec:
imagePullSecrets:
- name: ghcr-cred
containers:
- name: grainlab
image: ghcr.io/daniel-luke/grainlab:1.1.4
imagePullPolicy: Always
ports:
- containerPort: 3000
env:
- name: NODE_ENV
value: "production"
- name: PORT
value: "3000"
- name: HOST
value: "0.0.0.0"
envFrom:
- secretRef:
name: grainlab-app
- secretRef:
name: grainlab-database
- secretRef:
name: grainlab-s3
- secretRef:
name: grainlab-smtp
readinessProbe:
httpGet:
path: /
port: 3000
initialDelaySeconds: 10
periodSeconds: 5
failureThreshold: 6
livenessProbe:
httpGet:
path: /
port: 3000
initialDelaySeconds: 30
periodSeconds: 10
resources:
requests:
cpu: 100m
memory: 256Mi
limits:
memory: 512Mi

25
manifests/artemis/grainlab-production/app-ingress.yaml
View File

@@ -1,25 +0,0 @@
---
apiVersion: networking.k8s.io/v1
kind: Ingress
metadata:
name: grainlab
namespace: grainlab-production
annotations:
cert-manager.io/cluster-issuer: letsencrypt
spec:
rules:
- host: www.grainlab.app
http:
paths:
- path: /
pathType: Prefix
backend:
service:
name: grainlab
port:
number: 80
tls:
- hosts:
- www.grainlab.app
- grainlab.app
secretName: letsencrypt

11
manifests/artemis/grainlab-production/app-service.yaml
View File

@@ -1,11 +0,0 @@
apiVersion: v1
kind: Service
metadata:
name: grainlab
namespace: grainlab-production
spec:
selector:
app: grainlab
ports:
- port: 80
targetPort: 3000

4
manifests/artemis/grainlab-production/namespace.yaml
View File

@@ -1,4 +0,0 @@
apiVersion: v1
kind: Namespace
metadata:
name: grainlab-production

24
manifests/artemis/grainlab-production/postgres-cluster.yaml
View File

@@ -1,24 +0,0 @@
apiVersion: postgresql.cnpg.io/v1
kind: Cluster
metadata:
name: grainlab-db
namespace: grainlab-production
spec:
instances: 1
bootstrap:
initdb:
database: grainlab
owner: grainlab
secret:
name: grainlab-db-credentials
storage:
size: 10Gi
resources:
requests:
cpu: 100m
memory: 256Mi
limits:
memory: 512Mi

26
manifests/artemis/grainlab-production/www-redirect.yaml
View File

@@ -1,26 +0,0 @@
---
apiVersion: traefik.io/v1alpha1
kind: IngressRoute
metadata:
name: www-redirect
spec:
entryPoints:
- websecure
routes:
- kind: Rule
match: Host(`grainlab.app`)
middlewares:
- name: redirect-to-www
services:
- kind: TraefikService
name: noop@internal
---
apiVersion: traefik.io/v1alpha1
kind: Middleware
metadata:
name: redirect-to-www
spec:
redirectRegex:
permanent: true
regex: "^https?://(?:www\\.)?(.+)"
replacement: "https://www.${1}"

59
manifests/artemis/grainlab-staging/app-deployment.yaml
View File

@@ -1,59 +0,0 @@
apiVersion: apps/v1
kind: Deployment
metadata:
name: grainlab
namespace: grainlab-staging
spec:
replicas: 1
selector:
matchLabels:
app: grainlab
template:
metadata:
labels:
app: grainlab
spec:
imagePullSecrets:
- name: ghcr-cred
containers:
- name: grainlab
image: ghcr.io/daniel-luke/grainlab:staging
imagePullPolicy: Always
ports:
- containerPort: 3000
env:
- name: NODE_ENV
value: "production"
- name: PORT
value: "3000"
- name: HOST
value: "0.0.0.0"
envFrom:
- secretRef:
name: grainlab-app
- secretRef:
name: grainlab-database
- secretRef:
name: grainlab-s3
- secretRef:
name: grainlab-smtp
readinessProbe:
httpGet:
path: /
port: 3000
initialDelaySeconds: 10
periodSeconds: 5
failureThreshold: 6
livenessProbe:
httpGet:
path: /
port: 3000
initialDelaySeconds: 30
periodSeconds: 10
resources:
requests:
cpu: 100m
memory: 256Mi
limits:
memory: 512Mi

24
manifests/artemis/grainlab-staging/app-ingress.yaml
View File

@@ -1,24 +0,0 @@
---
apiVersion: networking.k8s.io/v1
kind: Ingress
metadata:
name: grainlab
namespace: grainlab-staging
annotations:
cert-manager.io/cluster-issuer: letsencrypt
spec:
rules:
- host: staging.grainlab.app
http:
paths:
- path: /
pathType: Prefix
backend:
service:
name: grainlab
port:
number: 80
tls:
- hosts:
- staging.grainlab.app
secretName: letsencrypt

11
manifests/artemis/grainlab-staging/app-service.yaml
View File

@@ -1,11 +0,0 @@
apiVersion: v1
kind: Service
metadata:
name: grainlab
namespace: grainlab-staging
spec:
selector:
app: grainlab
ports:
- port: 80
targetPort: 3000

4
manifests/artemis/grainlab-staging/namespace.yaml
View File

@@ -1,4 +0,0 @@
apiVersion: v1
kind: Namespace
metadata:
name: grainlab-staging

24
manifests/artemis/grainlab-staging/postgres-cluster.yaml
View File

@@ -1,24 +0,0 @@
apiVersion: postgresql.cnpg.io/v1
kind: Cluster
metadata:
name: grainlab-db
namespace: grainlab-staging
spec:
instances: 1
bootstrap:
initdb:
database: grainlab
owner: grainlab
secret:
name: grainlab-db-credentials
storage:
size: 10Gi
resources:
requests:
cpu: 100m
memory: 256Mi
limits:
memory: 512Mi

27
manifests/artemis/homebox/deployment.yaml
View File

@@ -1,27 +0,0 @@
---
apiVersion: apps/v1
kind: Deployment
metadata:
name: homebox
spec:
replicas: 1
selector:
matchLabels:
app: homebox
template:
metadata:
labels:
app: homebox
spec:
containers:
- name: homebox
image: ghcr.io/sysadminsmedia/homebox:latest
ports:
- containerPort: 7745
volumeMounts:
- mountPath: /data
name: homebox-data
volumes:
- name: homebox-data
persistentVolumeClaim:
claimName: homebox-pvc

23
manifests/artemis/homebox/ingress.yaml
View File

@@ -1,23 +0,0 @@
---
apiVersion: networking.k8s.io/v1
kind: Ingress
metadata:
name: homebox-ingress
annotations:
cert-manager.io/cluster-issuer: letsencrypt
spec:
rules:
- host: inventory.dgse.cloud
http:
paths:
- path: /
pathType: Prefix
backend:
service:
name: homebox-svc
port:
number: 7745
tls:
- hosts:
- inventory.dgse.cloud
secretName: letsencrypt

9
manifests/artemis/homebox/kustomization.yaml
View File

@@ -1,9 +0,0 @@
---
apiVersion: kustomize.config.k8s.io/v1beta1
kind: Kustomization
resources:
- service.yaml
- ingress.yaml
- deployment.yaml
- pvc.yaml

12
manifests/artemis/homebox/pvc.yaml
View File

@@ -1,12 +0,0 @@
---
apiVersion: v1
kind: PersistentVolumeClaim
metadata:
name: homebox-pvc
spec:
storageClassName: local-path
accessModes:
- ReadWriteOnce
resources:
requests:
storage: 25Gi

12
manifests/artemis/homebox/service.yaml
View File

@@ -1,12 +0,0 @@
---
apiVersion: v1
kind: Service
metadata:
name: homebox-svc
spec:
selector:
app: homebox
ports:
- protocol: TCP
port: 7745
targetPort: 7745

2
manifests/artemis/mailu/kustomization.yaml
View File

@@ -10,7 +10,7 @@ resources:
helmCharts: helmCharts:
- name: mailu - name: mailu
repo: https://mailu.github.io/helm-charts/ repo: https://mailu.github.io/helm-charts/
version: 2.1.2 version: 2.6.3
releaseName: mailu releaseName: mailu
namespace: mailu namespace: mailu
valuesFile: values.yaml valuesFile: values.yaml

4
manifests/artemis/mailu/values.yaml
View File

@@ -1350,11 +1350,11 @@ postfix:
## my_variable = my_value ## my_variable = my_value
overrides: overrides:
postfix.cf: | postfix.cf: |
inet_protocols = ipv4
smtp_address_preference = ipv4
smtpd_helo_restrictions = reject_unknown_helo_hostname smtpd_helo_restrictions = reject_unknown_helo_hostname
smtpd_sender_restrictions = reject_unknown_sender_domain smtpd_sender_restrictions = reject_unknown_sender_domain
smtpd_client_restrictions = permit_mynetworks smtpd_client_restrictions = permit_mynetworks
smtp_data_restrictions = reject_unauth_pipelining
smtp_relay_restrictions = permit_sasl_authenticated, reject_unauth_destination
smtpd_relay_restrictions = permit_sasl_authenticated, reject_unauth_destination smtpd_relay_restrictions = permit_sasl_authenticated, reject_unauth_destination
smtpd_recipient_restrictions = permit_sasl_authenticated, reject_unauth_destination smtpd_recipient_restrictions = permit_sasl_authenticated, reject_unauth_destination

2
manifests/artemis/penpot/kustomization.yaml
View File

@@ -10,7 +10,7 @@ resources:
helmCharts: helmCharts:
- name: penpot - name: penpot
repo: http://helm.penpot.app repo: http://helm.penpot.app
version: 0.32.0 version: 0.35.0
releaseName: penpot releaseName: penpot
namespace: penpot namespace: penpot
valuesFile: values.yaml valuesFile: values.yaml