3bc0b76135
PERF(repo): apply CPU/Memory limits based on VPA
...
- Set CPU request to VPA recommendation
- Set CPU limit to VPA × 1.5 for burst allowance
- Set Memory limit to VPA × 1.5 to prevent OOM
- Prevent cascading failure on node failure
2026-01-07 23:07:30 +09:00
4e1c276b89
CHORE(gitea): change domain to github0213.com
...
- Update server.DOMAIN and ROOT_URL
- Update SSH_DOMAIN for git clone via SSH
- Update ingress hosts and TLS configuration
2026-01-07 19:19:12 +09:00
7c732718bb
CHORE(gitea): update admin credentials
...
- Change username to Mayne0213
- Update email to bluemayne0213@icloud.com
2026-01-07 19:07:44 +09:00
8d4dbe8431
CHORE(homer): Remove Tekton dashboard link
2026-01-07 17:51:24 +09:00
6d59d6774b
CHORE(gitea): temporarily redirect to GitHub
...
- Replace Gitea deployment with GitHub redirect
- Use Traefik Middleware for 301 redirect to github.com/mayne0213
- Keep TLS certificate for gitea0213.kro.kr
2026-01-07 13:28:09 +09:00
87d5d4ccdb
FIX(gitea): change admin username to bluemayne
...
- Update admin username from gitea_admin to bluemayne
2026-01-07 12:46:47 +09:00
96637c5146
FEAT(gitea): add self-contained Gitea deployment
...
- Replace GitHub redirect with actual Gitea server
- SQLite database (no CNPG dependency)
- local-path StorageClass (no Longhorn dependency)
- Manual secret creation (no Vault dependency)
- Ingress at gitea0213.kro.kr
2026-01-07 12:40:59 +09:00
2bb0b693db
FIX(headlamp): skip TLS verification for OIDC
...
- Add -oidc-skip-tls-verify flag via extraArgs
- Workaround for CA cert validation issue
2026-01-07 01:30:57 +09:00
779724b9f7
FIX(headlamp): update Vault secret path for OIDC
...
- Change path from cluster-infrastructure/authelia to authelia
- Fix ExternalSecret sync error
2026-01-07 01:02:30 +09:00
9a88e70caf
FEAT(homer): update items to match Apps structure
...
- Add subtitle, tag, tagstyle to Jotion, Portfolio, Todo, Jovies
- Remove quick links from Jotion and Portfolio
- Update Jotion URL and logo path
- Add zot icon asset
2026-01-07 00:52:33 +09:00
c9fdbfe8f7
REFACTOR(mas): flatten Vault paths to root level
...
- mas/api-keys → mas
- databases/postgresql → postgresql
2026-01-06 16:59:44 +09:00
2aab61539b
REFACTOR(crafty): use craftycontroller chart
...
- Replace custom manifests with craftycontroller Helm chart
- Update ArgoCD application source configuration
2026-01-06 16:59:42 +09:00
d65596309b
REFACTOR(secrets): flatten Vault paths
...
- Change secret paths from <category>/<app> to <app>
- applications/code-server → code-server
- applications/umami → umami
- databases/postgresql → postgresql
- cluster-infrastructure/authelia → authelia
2026-01-06 16:53:02 +09:00
068d9339b9
REFACTOR(repo): move vault/ to manifests/
...
- Move ExternalSecret files from vault/ to manifests/secret.yaml
- Merge multiple secrets with --- separator (immich)
- Update kustomization.yaml references
- Remove vault/ folders
Apps: umami, immich, code-server
2026-01-06 16:43:34 +09:00
0c2ebe80b2
FIX(docusaurus): remove duplicate volumeMount
...
- Remove duplicate volumeMount configuration
- Fix app-template chart validation error
2026-01-06 16:07:03 +09:00
3365fdf97b
FIX(apps): update app-template chart repo URL
...
- Change repo URL from bjw-s to bjw-s-labs
- Fix Helm chart repository reference
2026-01-06 15:44:22 +09:00
be6723cc55
REFACTOR(apps): migrate to app-template
...
- docusaurus: Replace with app-template, configmap in manifests/
- homer: Replace with app-template, configMapGenerator for config.yml
- crafty: Replace with app-template, pvc/ingress/service in manifests/
- mas: Replace with app-template, rbac/external-secret in manifests/
- All apps use app-template chart v3.6.1
2026-01-06 15:42:07 +09:00
753543648b
FIX(headlamp): update ingress for chart 0.39.0
...
- Update ingress hosts configuration for new chart version
- Fix breaking changes in Headlamp Helm chart
2026-01-06 15:30:07 +09:00
7661427f4b
REFACTOR(umami): move dual ingress to manifests
...
- Move ingress.yaml to manifests/ (public + protected ingress)
- Keep ingress disabled in helm-values.yaml due to complex routing
2026-01-06 15:13:42 +09:00
fb0fb44251
REFACTOR(apps): integrate ingress to helm-values
...
- code-server: move ingress to helm-values, rbac to manifests
- headlamp: move ingress to helm-values, external-secret to manifests
2026-01-06 01:57:21 +09:00
f41a6c7261
REFACTOR(immich): move pvc to manifests
...
- Move PVC configuration to manifests/ folder
- Separate persistent storage from Helm values
2026-01-06 01:38:36 +09:00
09c8ec067e
FIX(mas): correct ingress middleware name
...
- Change middleware reference to authelia-authelia-auth
- Fix Traefik routing to Authelia SSO
2026-01-05 23:37:50 +09:00
e4de543407
CHORE(mas): remove GITEA_TOKEN
...
- No longer using Gitea for source control
- Migrate to GitHub
2026-01-05 16:57:26 +09:00
79e9fbaeb7
FEAT(mas): add multi-agent system application
...
- ArgoCD Application for mas namespace
- Deployment with privileged container, hostPID for K8s access
- RBAC: ServiceAccount, ClusterRoles (viewer/writer)
- ExternalSecrets for API keys and PostgreSQL password
- Ingress at mas0213.kro.kr with Authelia SSO
2026-01-05 16:53:39 +09:00
ef3409884c
FEAT(repo): add config files for apps repo
...
- Add application.yaml for ArgoCD app-of-apps
- Add kustomization.yaml with all 8 application components
- Add renovate.json for automated updates
2026-01-05 00:43:51 +09:00
2470de07dd
REFACTOR(homer): change homer order
...
- Reorder dashboard items
- Update display order in Homer configuration
2026-01-05 00:43:51 +09:00
db7d8b0aec
REFACTOR(homer): change order in Homer
...
- Reorder dashboard items
- Update display order in Homer configuration
2026-01-05 00:43:51 +09:00
85c3c73d1f
REFACTOR(homer): reorganize dashboard tabs
...
- Rename Applications to Apps (6 items)
- Keep Platform with Code Server added (6 items)
- Add new Monitoring tab (6 items)
- Remove unused icon assets
- Sort items alphabetically within each tab
2026-01-05 00:43:51 +09:00
252118068f
REFACTOR(crafty): change storageClass
...
- Update storageClass for Crafty PVC
- Change storage backend configuration
2026-01-05 00:43:51 +09:00
67dd7c966a
FEAT(umami): add /api/send to public ingress
...
- Add /api/send path to public ingress routes
- Allow tracking data submission without auth
2026-01-05 00:43:51 +09:00
6c7af94c10
FEAT(homer): add uptime kuma to homer dashboard
...
- Add Uptime Kuma entry in Observability category
- Add kuma.svg icon
2026-01-05 00:43:51 +09:00
ded5656a22
REFACTOR(homer): reorganize categories
...
- Rename Development/Infrastructure/Monitoring to new categories
- Move Longhorn, MinIO, Traefik to Platform
- Move Umami to Observability
- Move Homer, Minecraft, PgWeb to Applications
- Remove Longhorn (no longer used)
- Sort items alphabetically within each category
2026-01-05 00:43:51 +09:00
42eb875c01
REFACTOR(repo): migrate repoURL to K3S-HOME
...
- Update repository URL to K3S-HOME organization
- Change from personal to organization repo
2026-01-05 00:43:51 +09:00
renovate[bot]
2f03f56f78
CHORE(umami): update Helm release umami to v7
...
- Upgrade Umami chart to v7
- Apply new chart configuration
2026-01-05 00:43:51 +09:00
renovate[bot]
d891c364fd
CHORE(headlamp): update Helm release
...
- Update Headlamp Helm chart version
- Apply dependency updates
2026-01-05 00:43:51 +09:00
2934188c79
FEAT(traefik): add /intl to public ingress
...
- Add /intl path to public ingress routes
- Enable internationalization endpoint access
2026-01-05 00:43:51 +09:00
6aec454da1
FEAT(traefik): add /api/websites to ingress
...
- Add /api/websites path to ingress routes
- Enable website API access
2026-01-05 00:43:51 +09:00
3a6c4c9d4e
FEAT(umami): allow public share URLs
...
- Split ingress into public (umami-share) and protected (umami-ingress)
- Public paths: /share, /api/share, /_next, /script.js
- Protected paths: everything else (requires Authelia SSO)
2026-01-05 00:43:51 +09:00
c45f9f93ba
FEAT(authelia): bypass share link in authelia
...
- Add bypass rule for share link paths
- Allow public access to share URLs
2026-01-05 00:43:51 +09:00
ae59d858e1
REFACTOR(authelia): change homer, disable login
...
- Update Homer authentication settings
- Disable login requirement for dashboard
2026-01-05 00:43:51 +09:00
0592c36f34
PERF(code-server): reduce memory request
...
- Reduce memory request based on actual usage
- Optimize resource allocation
2026-01-05 00:43:51 +09:00
dba1ae56a0
FEAT(authelia): configure immich oidc
...
- Add ExternalSecret for OIDC client secret
- Add OAuth environment variables
- Remove Authelia middleware (using direct OIDC)
2026-01-05 00:43:51 +09:00
fbe5734fc1
FIX(headlamp): restore oidc config for k3s
...
- Restore OIDC configuration for K3s cluster
- Fix authentication settings
2026-01-05 00:43:51 +09:00
362ebd6c7d
REFACTOR(headlamp): switch to authelia
...
- Remove OIDC config from helm-values
- Remove ExternalSecret (not needed)
- Add Authelia middleware to ingress
- Headlamp uses ServiceAccount for K8s API access
2026-01-05 00:43:51 +09:00
4a439f8b1d
FEAT(headlamp): add oidc_validator env vars for Headlamp
...
- Add OIDC validator environment variables
- Configure OIDC authentication settings
2026-01-05 00:43:51 +09:00
1731b0ba4e
FIX(headlamp): fix OIDC env var names
...
- Correct OIDC environment variable names
- Fix authentication configuration
2026-01-05 00:43:51 +09:00
b74bc14950
FIX(headlamp): set baseURL to empty string
...
- Change baseURL to empty string
- Fix path routing configuration
2026-01-05 00:43:51 +09:00
6d19c01bf1
FIX(headlamp): use ExternalSecret for OIDC config
...
- Use externalSecret.enabled instead of env
- Add template to ExternalSecret with all OIDC fields
2026-01-05 00:43:51 +09:00
f17bbe3514
FEAT(headlamp): configure Headlamp OIDC with Authelia
...
- Add OIDC configuration (clientID, issuerURL, scopes)
- Add ExternalSecret for OIDC client secret from Vault
- Remove Authelia middleware (using direct OIDC auth)
2026-01-05 00:43:51 +09:00
6ea23f1995
CHORE(authelia): disable local auth and add Authelia SSO
...
- code-server: Change --auth password to --auth none
- code-server: Add Authelia middleware to ingress
- immich: Add Authelia middleware to ingress
- umami: Add Authelia middleware to ingress
2026-01-05 00:43:51 +09:00
