K3S-HOME/applications
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
160 Commits 1 Branch 0 Tags
da0cdbecb24c7a1f1fc613204d530031fd48be88
Commit Graph

21 Commits

Author SHA1 Message Date
Mayne0213
fd542fb409 FIX(headlamp): configure OIDC authentication 
- Remove groups scope (Authelia does not provide groups claim)
- Set proper baseURL for OIDC redirect
- Revert baseURL to empty string (must be empty or start with '/')
 2026-01-10 01:20:46 +09:00
Mayne0213
ab5d432f5c CHORE(resources): set memory limits equal to memory requests 
- Align memory limits with memory requests for guaranteed QoS class
- umami, code-server, docusaurus
- gitea, homer, mas, headlamp
 2026-01-10 01:20:46 +09:00
Mayne0213
fd1548c70c FEAT(applications): enable HA with replica 2 and soft anti-affinity 
- Add replicaCount: 2 to docusaurus, headlamp, homer, mas, umami
- Add soft pod anti-affinity for node distribution
- Enable high availability across multiple nodes
 2026-01-09 21:38:09 +09:00
Mayne0213
a051b67030 PERF(resources): remove CPU limits - keep memory limits only 
- CPU throttling prevents app startup, not crashes
- Memory OOM is the real cascading failure cause
- CPU request ensures fair scheduling
 2026-01-07 23:48:31 +09:00
Mayne0213
b5517f757a PERF(resources): increase CPU limit to VPA × 3 for startup burst 
- Change CPU limit multiplier from 1.5x to 3x
- Prevents throttling during app startup
- Affected: code-server, crafty, docusaurus, gitea, headlamp,
  homer, immich, mas, umami
 2026-01-07 23:35:06 +09:00
Mayne0213
3bc0b76135 PERF(repo): apply CPU/Memory limits based on VPA 
- Set CPU request to VPA recommendation
- Set CPU limit to VPA × 1.5 for burst allowance
- Set Memory limit to VPA × 1.5 to prevent OOM
- Prevent cascading failure on node failure
 2026-01-07 23:07:30 +09:00
Mayne0213
2bb0b693db FIX(headlamp): skip TLS verification for OIDC 
- Add -oidc-skip-tls-verify flag via extraArgs
- Workaround for CA cert validation issue
 2026-01-07 01:30:57 +09:00
Mayne0213
779724b9f7 FIX(headlamp): update Vault secret path for OIDC 
- Change path from cluster-infrastructure/authelia to authelia
- Fix ExternalSecret sync error
 2026-01-07 01:02:30 +09:00
Mayne0213
753543648b FIX(headlamp): update ingress for chart 0.39.0 
- Update ingress hosts configuration for new chart version
- Fix breaking changes in Headlamp Helm chart
 2026-01-06 15:30:07 +09:00
Mayne0213
fb0fb44251 REFACTOR(apps): integrate ingress to helm-values 
- code-server: move ingress to helm-values, rbac to manifests
- headlamp: move ingress to helm-values, external-secret to manifests
 2026-01-06 01:57:21 +09:00
Mayne0213
42eb875c01 REFACTOR(repo): migrate repoURL to K3S-HOME 
- Update repository URL to K3S-HOME organization
- Change from personal to organization repo
 2026-01-05 00:43:51 +09:00
renovate[bot]
d891c364fd CHORE(headlamp): update Helm release 
- Update Headlamp Helm chart version
- Apply dependency updates
 2026-01-05 00:43:51 +09:00
Mayne0213
fbe5734fc1 FIX(headlamp): restore oidc config for k3s 
- Restore OIDC configuration for K3s cluster
- Fix authentication settings
 2026-01-05 00:43:51 +09:00
Mayne0213
362ebd6c7d REFACTOR(headlamp): switch to authelia 
- Remove OIDC config from helm-values
- Remove ExternalSecret (not needed)
- Add Authelia middleware to ingress
- Headlamp uses ServiceAccount for K8s API access
 2026-01-05 00:43:51 +09:00
Mayne0213
4a439f8b1d FEAT(headlamp): add oidc_validator env vars for Headlamp 
- Add OIDC validator environment variables
- Configure OIDC authentication settings
 2026-01-05 00:43:51 +09:00
Mayne0213
1731b0ba4e FIX(headlamp): fix OIDC env var names 
- Correct OIDC environment variable names
- Fix authentication configuration
 2026-01-05 00:43:51 +09:00
Mayne0213
b74bc14950 FIX(headlamp): set baseURL to empty string 
- Change baseURL to empty string
- Fix path routing configuration
 2026-01-05 00:43:51 +09:00
Mayne0213
6d19c01bf1 FIX(headlamp): use ExternalSecret for OIDC config 
- Use externalSecret.enabled instead of env
- Add template to ExternalSecret with all OIDC fields
 2026-01-05 00:43:51 +09:00
Mayne0213
f17bbe3514 FEAT(headlamp): configure Headlamp OIDC with Authelia 
- Add OIDC configuration (clientID, issuerURL, scopes)
- Add ExternalSecret for OIDC client secret from Vault
- Remove Authelia middleware (using direct OIDC auth)
 2026-01-05 00:43:51 +09:00
Mayne0213
47eacb506d FIX(headlamp): fix Helm repo URL 
- Correct Headlamp Helm repository URL
- Fix chart source configuration
 2026-01-05 00:43:51 +09:00
Mayne0213
5227d9361d REFACTOR(headlamp): replace k8s-dash with Headlamp 2026-01-05 00:43:51 +09:00