K3S-HOME/storage
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
167 Commits 1 Branch 0 Tags
38cf6abc0ba3e45e80fc382db7da96e2e983d121
Commit Graph

27 Commits

Author SHA1 Message Date
Mayne0213
38cf6abc0b refactor: update Vault secret paths to new categorized structure 
- minio: minio → storage/minio, minio-s3-credentials → storage/minio-s3-credentials
- pgweb: pgweb → storage/pgweb
- postgresql: postgresql → storage/postgresql
- velero: minio → storage/minio, velero → storage/velero
- zot: zot → storage/zot

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
 2026-01-11 22:36:38 +09:00
Mayne0213
d38634bbb7 migrate: change repoURLs from GitHub to Gitea 
Update all ArgoCD Application references to use Gitea (github0213.com)
instead of GitHub for K3S-HOME/storage repository.

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
 2026-01-10 20:43:32 +09:00
Mayne0213
6b626b099a PERF(storage): reduce replicas to 1 
- Reduce pgweb replicas from 2 to 1
- Reduce MinIO console replicas from 2 to 1
 2026-01-10 13:15:56 +09:00
Mayne0213
6cc795c3ef CHORE(resources): set memory limits equal to memory requests 
Align memory limits with memory requests for guaranteed QoS class.
- velero: main, nodeAgent
- postgresql: cluster
- minio: console
- zot, cnpg, pgweb
 2026-01-09 21:46:58 +09:00
Mayne0213
bf131982f0 FIX(pgweb): fix DATABASE_URL deprecation warning 
- Update environment variable format
- Address deprecation warning in logs
 2026-01-09 21:46:40 +09:00
Mayne0213
e0803d1597 FIX(pgweb): fix Helm chart schema validation 
- Change replicaCount to replicas
- Move affinity to pod.affinity
- Fix bjw-s/app-template chart schema compliance
 2026-01-08 13:18:14 +09:00
Mayne0213
7487b477a7 FEAT(storage): enable HA with replica 2 and soft anti-affinity 
- Add replicaCount: 2 to cnpg, pgweb, velero-ui, minio-console
- Add soft pod anti-affinity for node distribution
- Configure affinity for all storage components
 2026-01-08 13:16:43 +09:00
Mayne0213
35df7aa64e PERF(resources): remove CPU limits - keep memory limits only 
- CPU throttling prevents app startup, not crashes
- Memory OOM is the real cascading failure cause
- CPU request ensures fair scheduling
 2026-01-07 23:48:47 +09:00
Mayne0213
9c0fddb0ef REFACTOR(secrets): flatten Vault paths 
- Change secret paths from <category>/<app> to <app>
- databases/postgresql → postgresql
- databases/minio → minio
- databases/pgweb → pgweb
- cluster-infrastructure/velero → velero
 2026-01-06 16:52:54 +09:00
Mayne0213
b5f93b3812 REFACTOR(repo): move vault/ to manifests/ 
- Move ExternalSecret files from vault/ to manifests/secret.yaml
- Merge multiple secrets with --- separator (postgresql)
- Update kustomization.yaml references
- Remove vault/ folders

Apps: postgresql, postgresql-dev, pgweb, minio, velero
 2026-01-06 16:42:24 +09:00
Mayne0213
927b15b631 FIX(pgweb): update app-template chart repo URL 
- Change repo URL from bjw-s to bjw-s-labs
- Fix Helm chart repository reference
 2026-01-06 15:44:18 +09:00
Mayne0213
ef8bef964b REFACTOR(pgweb): migrate to bjw-s/app-template 
- Replace deployment.yaml with helm-values.yaml
- ArgoCD uses app-template chart v3.6.1
- Ingress now defined in helm-values.yaml
 2026-01-06 15:41:55 +09:00
Mayne0213
44f773b827 REFACTOR(storage): storage repo structure 
- Add application.yaml for ArgoCD app-of-apps
- Add kustomization.yaml with storage components
- Add renovate.json for automated updates
- Update all component argocd.yaml repoURLs to storage repo

Components: longhorn, minio, postgresql, postgresql-dev, pgweb, cnpg,
velero
 2026-01-05 00:39:12 +09:00
Mayne0213
c2cda8ee36 REFACTOR(repo): migrate repoURL to K3S-HOME 
- Update repository URL to K3S-HOME organization
- Change from personal to organization repo
 2026-01-05 00:39:12 +09:00
Mayne0213
684bf03e3e REFACTOR(authelia): remove pgweb basic auth 
- use Authelia SSO
 2026-01-05 00:39:12 +09:00
Mayne0213
804207b02b FEAT(authelia): add authelia sso 
- to minio console and pgweb
- minio: Add Authelia middleware to console ingress (API excluded for S3
  access)
- pgweb: Add Authelia middleware to ingress
 2026-01-05 00:39:12 +09:00
Mayne0213
57524aaa93 REFACTOR(traefik): switch ingress to Traefik 
- Update ingressClassName from haproxy to traefik
- Remove nginx annotations from minio ingress
 2026-01-05 00:39:12 +09:00
Mayne0213
c537136c1d CHORE(pgweb): use ClusterSecretStore instead of namespace Secret 
- Change to ClusterSecretStore
- Simplify secret management
 2026-01-05 00:39:12 +09:00
Mayne0213
ab80e14e0a CHORE(external-secrets): update ESO API version from v1beta1 to v1 
- Update ExternalSecret API version
- Migrate to stable API
 2026-01-05 00:39:12 +09:00
Mayne0213
a586febc4c REFACTOR(gitea): migrate repoURL from Gitea to GitHub 
- Update repository URL to GitHub
- Change source control provider
 2026-01-05 00:39:12 +09:00
Mayne0213
9abcdfa98d REFACTOR(goldilocks): use managedNamespaceMetadata for namespace labels 
- Remove namespace.yaml files
- Add managedNamespaceMetadata with Goldilocks label
- Set CreateNamespace=true in syncOptions
- Update kustomization.yaml to remove namespace.yaml references
 2026-01-05 00:39:12 +09:00
Mayne0213
a39ec16b35 FIX(pgweb): pgweb namespace duplication 
- Remove namespace definition from deployment.yaml
- Namespace now only defined in namespace.yaml
- Fixes ComparisonError: may not add resource with already registered id
 2026-01-04 23:47:13 +09:00
Mayne0213
d9df80bca3 REFACTOR(postgresql): restructure pgweb 
- and pg-dev folder str...
- Remove argocd/, helm-values/ subdirectories
- Move files to parent directory with standardized names
- Add namespace.yaml to both apps with Goldilocks labels
- Preserve vault/ subdirectories (pgweb: 3 files, postgresql-dev: 1
  file)
- Update main kustomization.yaml to reference argocd.yaml files directly
- Update postgresql-dev helm valueFiles path
- Comment out argocd.yaml in each app's kustomization.yaml to prevent
  circular reference

Applications restructured:
- pgweb
- postgresql-dev
 2026-01-04 23:47:13 +09:00
Mayne0213
a15cb1510f PERF(grafana): optimize cpu requests based on 
- actual usage from grafa...
- external-secrets: 20m → 5m (actual: 1m)
- external-secrets-webhook: 10m → 2m (actual: 1m)
- external-secrets-cert: 10m → 2m (actual: 1m)
- cnpg: 100m → 5m (actual: 2m)
- haproxy-ingress: 100m → 15m (actual: 9-10m)
 2026-01-04 23:47:13 +09:00
Mayne0213
f1b99f0bdf FEAT(traefik): add per-application ingress 
- management
- Added ingress files for MinIO (API and Console) and pgweb
- Updated kustomization files to include ingress resources
- Migrated from centralized ingress management to per-app architecture
 2026-01-04 23:47:13 +09:00
Mayne0213
b6802a45e6 REFACTOR(vault): update Vault secret paths 
- Update secret paths for databases/*
- Reorganize secret structure
 2025-12-17 21:32:31 +09:00
Mayne0213
26378b9143 FEAT(minio): add minio and pgweb 
- move from applications to databases
 2025-12-17 15:17:45 +09:00