CHORE(falco): disable sidekick-ui and Redis

- Use Grafana dashboard instead - Set webui.enabled: false (disables UI and Redis) - Remove ingress.yaml for falco-ui - Saves ~384Mi memory (Redis 256Mi + UI 128Mi)
2026-01-04 13:31:30 +09:00
parent c66801a166
commit c51cca27d8
3 changed files with 3 additions and 69 deletions
--- a/falco/helm-values.yaml
+++ b/falco/helm-values.yaml
@@ -150,49 +150,9 @@ falcosidekick:
    #   webhookurl: ""
    #   minimumpriority: "warning"

-  # Falcosidekick Web UI
+  # Falcosidekick Web UI - disabled, using Grafana dashboard instead
  webui:
-    enabled: true
-    replicaCount: 1
-    disableauth: true  # Disable basic auth - using Authelia SSO
-    ttl: 21600  # 6 hours - events older than this are auto-deleted
-
-    service:
-      type: ClusterIP
-      port: 2802
-
-    ingress:
    enabled: false
-      # annotations:
-      #   cert-manager.io/cluster-issuer: letsencrypt-prod
-      # hosts:
-      #   - host: falco0213.kro.kr
-      #     paths:
-      #       - path: /
-      #         pathType: Prefix
-
-    resources:
-      requests:
-        cpu: 30m
-        memory: 128Mi
-      limits:
-        # cpu: removed to prevent throttling
-        memory: 512Mi
-
-    redis:
-      storageEnabled: true
-      resources:
-        requests:
-          cpu: 10m
-          memory: 256Mi
-        limits:
-          memory: 1Gi
-      customConfig:
-        - maxmemory 800mb
-        - maxmemory-policy allkeys-lru
-
-    # Authentication disabled - using Authelia SSO
-    # existingSecret: falco-ui-secret

 # RBAC
 rbac:
--- a/falco/ingress.yaml
+++ b/falco/ingress.yaml
@@ -1,25 +0,0 @@
-apiVersion: networking.k8s.io/v1
-kind: Ingress
-metadata:
-  name: falco-ui-ingress
-  namespace: falco
-  annotations:
-    cert-manager.io/cluster-issuer: "letsencrypt-prod"
-    traefik.ingress.kubernetes.io/router.middlewares: authelia-authelia-auth@kubernetescrd
-spec:
-  ingressClassName: traefik
-  tls:
-    - hosts:
-        - falco0213.kro.kr
-      secretName: falco-ui-tls
-  rules:
-    - host: falco0213.kro.kr
-      http:
-        paths:
-          - path: /
-            pathType: Prefix
-            backend:
-              service:
-                name: falco-falcosidekick-ui
-                port:
-                  number: 2802
--- a/falco/kustomization.yaml
+++ b/falco/kustomization.yaml
@@ -1,4 +1,3 @@
 apiVersion: kustomize.config.k8s.io/v1beta1
 kind: Kustomization
-resources:
- ingress.yaml
+resources: []