Compare commits
16 Commits
101be3512a
...
main
| Author | SHA1 | Date | |
|---|---|---|---|
9851a131d3
|
|||
20473263ae
|
|||
| cb3528b17b | |||
1a25c3fcf3
|
|||
|
b2d6545070
|
|||
|
053c36a877
|
|||
|
968ef8d621
|
|||
|
4215d89d0b
|
|||
|
3b38a2c3a9
|
|||
|
42fd1e5a92
|
|||
|
8d6b3eb6b6
|
|||
|
442ba532cd
|
|||
| c71e4765e1 | |||
|
b1e62ed191
|
|||
|
5855b78976
|
|||
|
d849c4ca19
|
@@ -24,5 +24,5 @@ appVersion: "1.0"
|
|||||||
|
|
||||||
dependencies:
|
dependencies:
|
||||||
- name: authentik
|
- name: authentik
|
||||||
version: 2025.12.4
|
version: 2026.2.0
|
||||||
repository: https://charts.goauthentik.io
|
repository: https://charts.goauthentik.io
|
||||||
@@ -15,6 +15,35 @@ authentik:
|
|||||||
service:
|
service:
|
||||||
labels:
|
labels:
|
||||||
metrics_enabled: "true"
|
metrics_enabled: "true"
|
||||||
|
livenessProbe:
|
||||||
|
failureThreshold: 3
|
||||||
|
initialDelaySeconds: 5
|
||||||
|
periodSeconds: 10
|
||||||
|
successThreshold: 1
|
||||||
|
timeoutSeconds: 10
|
||||||
|
httpGet:
|
||||||
|
path: "{{ .Values.authentik.web.path }}-/health/live/"
|
||||||
|
port: http
|
||||||
|
|
||||||
|
readinessProbe:
|
||||||
|
failureThreshold: 3
|
||||||
|
initialDelaySeconds: 5
|
||||||
|
periodSeconds: 10
|
||||||
|
successThreshold: 1
|
||||||
|
timeoutSeconds: 10
|
||||||
|
httpGet:
|
||||||
|
path: "{{ .Values.authentik.web.path }}-/health/ready/"
|
||||||
|
port: http
|
||||||
|
|
||||||
|
startupProbe:
|
||||||
|
failureThreshold: 60
|
||||||
|
initialDelaySeconds: 5
|
||||||
|
periodSeconds: 10
|
||||||
|
successThreshold: 1
|
||||||
|
timeoutSeconds: 10
|
||||||
|
httpGet:
|
||||||
|
path: "{{ .Values.authentik.web.path }}-/health/live/"
|
||||||
|
port: http
|
||||||
worker:
|
worker:
|
||||||
replicas: 3
|
replicas: 3
|
||||||
volumeMounts:
|
volumeMounts:
|
||||||
@@ -32,8 +61,10 @@ authentik:
|
|||||||
secretKeyRef:
|
secretKeyRef:
|
||||||
name: authentik-credentials
|
name: authentik-credentials
|
||||||
key: authentik-secret-key
|
key: authentik-secret-key
|
||||||
|
- name: AUTHENTIK_POSTGRESQL__DISABLE_SERVER_SIDE_CURSORS
|
||||||
|
value: "true"
|
||||||
- name: AUTHENTIK_POSTGRESQL__HOST
|
- name: AUTHENTIK_POSTGRESQL__HOST
|
||||||
value: pooler-weyma-rw.cloudnativepg.svc.cluster.local
|
value: pooler-weyma-rw-authentik.cloudnativepg.svc.cluster.local
|
||||||
- name: AUTHENTIK_POSTGRESQL__NAME
|
- name: AUTHENTIK_POSTGRESQL__NAME
|
||||||
value: authentik
|
value: authentik
|
||||||
- name: AUTHENTIK_POSTGRESQL__USER
|
- name: AUTHENTIK_POSTGRESQL__USER
|
||||||
@@ -58,6 +89,22 @@ authentik:
|
|||||||
key: smtp-password
|
key: smtp-password
|
||||||
- name: AUTHENTIK_EMAIL__TIMEOUT
|
- name: AUTHENTIK_EMAIL__TIMEOUT
|
||||||
value: "30"
|
value: "30"
|
||||||
|
- name: AUTHENTIK_STORAGE__BACKEND
|
||||||
|
value: "s3"
|
||||||
|
- name: AUTHENTIK_STORAGE__S3__ENDPOINT
|
||||||
|
value: "https://weyma-s3.infra.dubyatp.xyz"
|
||||||
|
- name: AUTHENTIK_STORAGE__S3__BUCKET_NAME
|
||||||
|
value: "authentik-files"
|
||||||
|
- name: AUTHENTIK_STORAGE__S3__ACCESS_KEY
|
||||||
|
valueFrom:
|
||||||
|
secretKeyRef:
|
||||||
|
name: authentik-files
|
||||||
|
key: AWS_ACCESS_KEY_ID
|
||||||
|
- name: AUTHENTIK_STORAGE__S3__SECRET_KEY
|
||||||
|
valueFrom:
|
||||||
|
secretKeyRef:
|
||||||
|
name: authentik-files
|
||||||
|
key: AWS_SECRET_ACCESS_KEY
|
||||||
additionalObjects:
|
additionalObjects:
|
||||||
- apiVersion: networking.k8s.io/v1
|
- apiVersion: networking.k8s.io/v1
|
||||||
kind: Ingress
|
kind: Ingress
|
||||||
@@ -145,4 +192,13 @@ authentik:
|
|||||||
target:
|
target:
|
||||||
creationPolicy: Owner
|
creationPolicy: Owner
|
||||||
deletionPolicy: Retain
|
deletionPolicy: Retain
|
||||||
name: authentik-db-auth
|
name: authentik-db-auth
|
||||||
|
- apiVersion: objectbucket.io/v1alpha1
|
||||||
|
kind: ObjectBucketClaim
|
||||||
|
metadata:
|
||||||
|
name: authentik-files
|
||||||
|
spec:
|
||||||
|
additionalConfig:
|
||||||
|
maxSize: 20Gi
|
||||||
|
bucketName: authentik-files
|
||||||
|
storageClassName: weyma-s3-bucket
|
||||||
@@ -29,8 +29,9 @@ data:
|
|||||||
network: "host"
|
network: "host"
|
||||||
privileged: false
|
privileged: false
|
||||||
options:
|
options:
|
||||||
workdir_parent:
|
workdir_parent: /scratch
|
||||||
valid_volumes: []
|
valid_volumes:
|
||||||
|
- /scratch/**
|
||||||
docker_host: ""
|
docker_host: ""
|
||||||
force_pull: true
|
force_pull: true
|
||||||
force_rebuild: false
|
force_rebuild: false
|
||||||
|
|||||||
@@ -61,11 +61,17 @@ spec:
|
|||||||
mountPath: /config
|
mountPath: /config
|
||||||
- name: runner-data
|
- name: runner-data
|
||||||
mountPath: /data
|
mountPath: /data
|
||||||
|
- name: runner-scratch
|
||||||
|
mountPath: /scratch
|
||||||
dnsPolicy: ClusterFirst
|
dnsPolicy: ClusterFirst
|
||||||
restartPolicy: Always
|
restartPolicy: Always
|
||||||
schedulerName: default-scheduler
|
schedulerName: default-scheduler
|
||||||
terminationGracePeriodSeconds: 30
|
terminationGracePeriodSeconds: 30
|
||||||
volumes:
|
volumes:
|
||||||
|
- name: runner-scratch
|
||||||
|
emptyDir:
|
||||||
|
medium: Memory
|
||||||
|
sizeLimit: 5Gi
|
||||||
- name: runner-config
|
- name: runner-config
|
||||||
configMap:
|
configMap:
|
||||||
name: runner-config
|
name: runner-config
|
||||||
|
|||||||
@@ -24,5 +24,5 @@ appVersion: "1.0"
|
|||||||
|
|
||||||
dependencies:
|
dependencies:
|
||||||
- name: gitea
|
- name: gitea
|
||||||
version: 12.5.5
|
version: 12.5.6
|
||||||
repository: https://weyma-s3.infra.dubyatp.xyz/helm-bucket-ea34bc44-ef19-480d-a16a-1e583991f123/charts/
|
repository: https://weyma-s3.infra.dubyatp.xyz/helm-bucket-ea34bc44-ef19-480d-a16a-1e583991f123/charts/
|
||||||
@@ -14,7 +14,7 @@ spec:
|
|||||||
spec:
|
spec:
|
||||||
containers:
|
containers:
|
||||||
- name: yt-dlp-bot
|
- name: yt-dlp-bot
|
||||||
image: 'git.dubyatp.xyz/williamp/yt-dlp-bot:d7ad90a'
|
image: 'git.dubyatp.xyz/williamp/yt-dlp-bot:b9088d9'
|
||||||
env:
|
env:
|
||||||
- name: OUT_PATH
|
- name: OUT_PATH
|
||||||
value: /data/youtube-vids
|
value: /data/youtube-vids
|
||||||
|
|||||||
Reference in New Issue
Block a user