infrastructure/core-apps
3
0
Fork 0
Code Issues 1 Pull Requests Actions Packages Projects Releases Wiki Activity

Compare commits

base: infrastructure:9d58d47a9818ffa17e5d8a55753fbea8d2f30ca4
Branches Tags
infrastructure:main
..
compare: infrastructure:main
Branches Tags
infrastructure:main

29 Commits
9d58d47a98 ... main

Author SHA1 Message Date
williamp
36bdf2adc1 Merge pull request 'chore(deps): update helm release grafana to v10.3.0' (#62) from renovate/grafana-10.x into main 
Reviewed-on: #62
 2025-12-01 15:13:55 +00:00
Renovate Bot
f3d974befe chore(deps): update helm release grafana to v10.3.0 2025-12-01 15:00:09 +00:00
actions[bot]
579b4077d2 yt-dlp-bot: deploy update to 1ef217f 2025-11-29 00:44:39 +00:00
William P
1946931937 dispatcharr: fix transcoding 2025-11-28 10:39:12 -05:00
William P
856ee307ff dispatcharr: add hw transcoding 2025-11-27 20:39:09 -05:00
William P
f4da25c243 jellyfin: block public access to metrics 2025-11-26 10:41:21 -05:00
William P
19f8dd922b jellyfin: enable monitoring 2025-11-26 09:58:00 -05:00
William P
2e26a5df9e gitea: metrics should be under gitea.gitea 2025-11-26 09:53:29 -05:00
William P
5ffaa2d65b gitea: enable metrics 2025-11-26 09:52:24 -05:00
William P
b2d4211583 gitea: attempt to increase valkey-cluster limits 2025-11-24 15:02:51 -05:00
williamp
b64ddb7b71 Merge pull request 'chore(deps): update helm release grafana to v10.2.0' (#61) from renovate/grafana-10.x into main 
Reviewed-on: #61
 2025-11-21 18:42:43 +00:00
William P
447c4b618b grafana: re-enable 2025-11-21 13:22:16 -05:00
Renovate Bot
2a5057dc5b chore(deps): update helm release grafana to v10.2.0 2025-11-21 13:00:09 +00:00
William P
a58d4dc19f grafana: take offline temporarily for prometheus migrations 2025-11-20 08:59:19 -05:00
William P
482ddda271 authentik: rm redis, no longer a dependency 2025-11-19 15:03:34 -05:00
williamp
e401a71a01 Merge pull request 'chore(deps): update helm release authentik to v2025.10.2' (#59) from renovate/authentik-2025.x into main 
Reviewed-on: #59
 2025-11-19 19:58:37 +00:00
williamp
c1053309e8 Merge pull request 'chore(deps): update helm release grafana to v10.1.5' (#60) from renovate/grafana-10.x into main 
Reviewed-on: #60
 2025-11-19 19:54:19 +00:00
Renovate Bot
6666fd467f chore(deps): update helm release grafana to v10.1.5 2025-11-19 17:00:13 +00:00
Renovate Bot
3a2e9e0e9d chore(deps): update helm release authentik to v2025.10.2 2025-11-19 14:00:10 +00:00
William P
d17fce4dcc update postgres url for gitea, netmaker, and peertube 2025-11-13 21:16:49 -05:00
William P
a514eed9cf authentik: once again try to use pooler url 2025-11-13 21:06:55 -05:00
William P
d747936738 Revert "authentik: migrate to pgsql pooler url" 
This reverts commit 7c65d7a917.
 2025-11-13 16:31:54 -05:00
William P
7c65d7a917 authentik: migrate to pgsql pooler url 2025-11-13 15:45:50 -05:00
actions[bot]
7d456d5bd8 yt-dlp-bot: deploy update to db488e0 2025-11-12 03:32:49 +00:00
actions[bot]
63fdcf4b41 yt-dlp-bot: deploy update to e124ea3 2025-11-12 03:24:57 +00:00
actions[bot]
b7b33c9812 yt-dlp-bot: deploy update to 2f47bbd 2025-11-12 03:15:02 +00:00
actions[bot]
bb4ac79006 yt-dlp-bot: deploy update to 709ccdd 2025-11-12 02:51:52 +00:00
williamp
908ec8cb85 Merge pull request 'chore(deps): update docker.io/bats/bats docker tag to v1.13.0' (#56) from renovate/docker.io-bats-bats-1.x into main 
Reviewed-on: #56
 2025-11-08 15:51:11 +00:00
Renovate Bot
894d2d90bb chore(deps): update docker.io/bats/bats docker tag to v1.13.0 2025-11-07 17:00:10 +00:00
11 changed files with 72 additions and 28 deletions
Expand all files Collapse all files

2
authentik/Chart.yaml
View File

@@ -24,5 +24,5 @@ appVersion: "1.0"
dependencies: dependencies:
- name: authentik - name: authentik
version: 2025.10.1 version: 2025.10.2
repository: https://charts.goauthentik.io repository: https://charts.goauthentik.io

21
authentik/values.yaml
View File

@@ -25,25 +25,6 @@ authentik:
- name: cert-dubyatp-xyz - name: cert-dubyatp-xyz
secret: secret:
secretName: cert-dubyatp-xyz secretName: cert-dubyatp-xyz
redis:
enabled: true
architecture: standalone
auth:
enabled: false
master:
resourcesPreset: "none"
podAnnotations:
backup.velero.io/backup-volumes: redis-data
replica:
resourcesPreset: "none"
sentinel:
resourcesPreset: "none"
metrics:
resourcesPreset: "none"
volumePermissions:
resourcesPreset: "none"
sysctl:
resourcesPreset: "none"
global: global:
env: env:
- name: AUTHENTIK_SECRET_KEY - name: AUTHENTIK_SECRET_KEY
@@ -52,7 +33,7 @@ authentik:
name: authentik-credentials name: authentik-credentials
key: authentik-secret-key key: authentik-secret-key
- name: AUTHENTIK_POSTGRESQL__HOST - name: AUTHENTIK_POSTGRESQL__HOST
value: weyma-pgsql-rw.cloudnativepg.svc.cluster.local value: pooler-weyma-rw.cloudnativepg.svc.cluster.local
- name: AUTHENTIK_POSTGRESQL__NAME - name: AUTHENTIK_POSTGRESQL__NAME
value: authentik value: authentik
- name: AUTHENTIK_POSTGRESQL__USER - name: AUTHENTIK_POSTGRESQL__USER

20
dispatcharr/deployment.yaml
View File

@@ -13,6 +13,15 @@ spec:
annotations: annotations:
backup.velero.io/backup-volumes: data backup.velero.io/backup-volumes: data
spec: spec:
affinity:
nodeAffinity:
requiredDuringSchedulingIgnoredDuringExecution:
nodeSelectorTerms:
- matchExpressions:
- key: extensions.talos.dev/i915
operator: Exists
nodeSelector:
kubernetes.io/hostname: weyma-talos-testw04
containers: containers:
- name: dispatcharr - name: dispatcharr
image: ghcr.io/dispatcharr/dispatcharr:0.8.0-amd64 image: ghcr.io/dispatcharr/dispatcharr:0.8.0-amd64
@@ -25,9 +34,15 @@ spec:
value: redis://localhost:6379/0 value: redis://localhost:6379/0
- name: DISPATCHARR_LOG_LEVEL - name: DISPATCHARR_LOG_LEVEL
value: info value: info
- name: UWSGI_NICE_LEVEL
value: "-5"
- name: CELERY_NICE_LEVEL
value: "-5"
volumeMounts: volumeMounts:
- name: dispatcharr-data - name: dispatcharr-data
mountPath: /data mountPath: /data
- name: dev-dri
mountPath: /dev/dri
resources: resources:
limits: limits:
memory: "3Gi" memory: "3Gi"
@@ -35,7 +50,12 @@ spec:
requests: requests:
memory: "256Mi" memory: "256Mi"
cpu: "500m" cpu: "500m"
securityContext:
privileged: true
volumes: volumes:
- name: dispatcharr-data - name: dispatcharr-data
persistentVolumeClaim: persistentVolumeClaim:
claimName: dispatcharr claimName: dispatcharr
- name: dev-dri
hostPath:
path: /dev/dri

8
gitea/values.yaml
View File

@@ -56,7 +56,7 @@ gitea:
config: config:
database: database:
DB_TYPE: postgres DB_TYPE: postgres
HOST: weyma-pgsql-rw.cloudnativepg.svc.cluster.local HOST: pooler-weyma-rw.cloudnativepg.svc.cluster.local
NAME: gitea NAME: gitea
USER: gitea USER: gitea
server: server:
@@ -82,6 +82,10 @@ gitea:
USER: gitea_dubyatp USER: gitea_dubyatp
security: security:
INSTALL_LOCK: true INSTALL_LOCK: true
metrics:
enabled: true
serviceMonitor:
enabled: true
extraDeploy: extraDeploy:
- apiVersion: traefik.io/v1alpha1 - apiVersion: traefik.io/v1alpha1
kind: IngressRouteTCP kind: IngressRouteTCP
@@ -180,3 +184,5 @@ gitea:
enabled: false enabled: false
valkey-cluster: valkey-cluster:
enabled: true enabled: true
valkey:
resourcesPreset: "small"

2
grafana/Chart.yaml
View File

@@ -24,5 +24,5 @@ appVersion: "1.0"
dependencies: dependencies:
- name: grafana - name: grafana
version: 10.1.4 version: 10.3.0
repository: https://grafana.github.io/helm-charts repository: https://grafana.github.io/helm-charts

2
grafana/values.yaml
View File

@@ -191,6 +191,6 @@ grafana:
image: image:
registry: docker.io registry: docker.io
repository: bats/bats repository: bats/bats
tag: 1.12.0 tag: 1.13.0
imagePullPolicy: IfNotPresent imagePullPolicy: IfNotPresent
useStatefulSet: false useStatefulSet: false

33
jellyfin/templates/metrics-block.yaml Normal file
View File

@@ -0,0 +1,33 @@
{{- if and (.Values.jellyfin.metrics.enabled) (.Values.jellyfin.ingress.enabled) -}}
---
apiVersion: v1
kind: Service
metadata:
name: dummy-svc
namespace: {{ .Release.Namespace }}
spec:
selector:
app: dummy-svc
ports:
- protocol: TCP
port: 6767
targetPort: 6767
---
apiVersion: networking.k8s.io/v1
kind: Ingress
metadata:
name: block-metrics
namespace: {{ .Release.Namespace }}
spec:
rules:
- host: {{ (index .Values.jellyfin.ingress.hosts 0).host }}
http:
paths:
- pathType: Prefix
path: "/metrics"
backend:
service:
name: dummy-svc
port:
number: 6767
{{- end }}

4
jellyfin/values.yaml
View File

@@ -41,6 +41,10 @@ jellyfin:
- name: dev-dri - name: dev-dri
hostPath: hostPath:
path: /dev/dri path: /dev/dri
metrics:
enabled: true
serviceMonitor:
enabled: true
volumeMounts: volumeMounts:
- name: tv-shows - name: tv-shows
mountPath: /mnt/tv-shows mountPath: /mnt/tv-shows

2
netmaker/config.yaml
View File

@@ -11,7 +11,7 @@ data:
DNS_MODE: "off" DNS_MODE: "off"
DISPLAY_KEYS: "on" DISPLAY_KEYS: "on"
DATABASE: postgres DATABASE: postgres
SQL_HOST: "weyma-pgsql-rw.cloudnativepg.svc.cluster.local" SQL_HOST: "pooler-weyma-rw.cloudnativepg.svc.cluster.local"
SQL_PORT: "5432" SQL_PORT: "5432"
SQL_DB: "netmaker" SQL_DB: "netmaker"
SQL_USER: "netmaker" SQL_USER: "netmaker"

2
peertube/config.yaml
View File

@@ -8,7 +8,7 @@ data:
POSTGRES_USER: peertube POSTGRES_USER: peertube
POSTGRES_DB: peertube POSTGRES_DB: peertube
PEERTUBE_DB_USERNAME: peertube PEERTUBE_DB_USERNAME: peertube
PEERTUBE_DB_HOSTNAME: weyma-pgsql-rw.cloudnativepg.svc.cluster.local PEERTUBE_DB_HOSTNAME: pooler-weyma-rw.cloudnativepg.svc.cluster.local
PEERTUBE_DB_PORT: "5432" PEERTUBE_DB_PORT: "5432"
PEERTUBE_WEBSERVER_HOSTNAME: "tube.dubyatp.xyz" PEERTUBE_WEBSERVER_HOSTNAME: "tube.dubyatp.xyz"
PEERTUBE_TRUST_PROXY: '["127.0.0.1", "loopback", "172.18.0.0/16"]' PEERTUBE_TRUST_PROXY: '["127.0.0.1", "loopback", "172.18.0.0/16"]'

2
yt-dlp-bot/deployment.yaml
View File

@@ -14,7 +14,7 @@ spec:
spec: spec:
containers: containers:
- name: yt-dlp-bot - name: yt-dlp-bot
image: 'git.dubyatp.xyz/williamp/yt-dlp-bot:8eb6bf3' image: 'git.dubyatp.xyz/williamp/yt-dlp-bot:1ef217f'
env: env:
- name: OUT_PATH - name: OUT_PATH
value: /data/youtube-vids value: /data/youtube-vids