K3S-HOME/storage
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
110 Commits 1 Branch 0 Tags
b5f93b3812f2be1eb9b0aa284862d3e32dddedbc
Commit Graph

110 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Mayne0213
b0cd9274b1 FEAT(velero): configure velero 
- for full k3s cluster backup
- Enable node-agent for PV file-system backups
- Add defaultVolumesToFsBackup configuration
- Optimize backup schedule (daily, 7-day retention)
- Exclude non-essential namespaces (postgresql-dev, harbor)
- Update Velero to v1.17.1
- Update velero-plugin-for-aws to v1.13.1

Full cluster disaster recovery backup now active.
 2026-01-04 23:47:13 +09:00
Mayne0213
4ef5497fd5 FEAT(velero): activate https in falco, update 
- velero version
 2026-01-04 23:47:13 +09:00
Mayne0213
f1b99f0bdf FEAT(traefik): add per-application ingress 
- management
- Added ingress files for MinIO (API and Console) and pgweb
- Updated kustomization files to include ingress resources
- Migrated from centralized ingress management to per-app architecture
 2026-01-04 23:47:13 +09:00
Mayne0213
3767a6edea CHORE(traefik): split centralized ingress 
- management to per-applicati...
- Moved ArgoCD ingress to argocd/ingress/
- Moved Velero ingress to velero/ingress/
- Removed centralized ingress/ingresses.yaml (single point of failure)
- Updated root kustomization.yaml to reference argocd and velero
  directories
- Each application now manages its own ingress independently
 2026-01-04 23:47:13 +09:00
Mayne0213
311e8a1cc1 FEAT(velero): Add Velero UI 
- with HAProxy Ingress at velero0213.kro.kr
 2026-01-04 23:47:13 +09:00
Mayne0213
3366a6b5b8 FEAT(velero): Add Velero, Falco, 
- and CNPG infrastructure components
Add three critical infrastructure components via GitOps:

- Velero: Backup and disaster recovery solution
  - Configured with Minio S3 backend
  - Daily full cluster backups (30-day retention)
  - Hourly backups for critical namespaces (7-day retention)
  - Credentials managed via External Secrets from Vault

- Falco: Runtime security monitoring
  - eBPF-based threat detection
  - Custom rules for container security
  - Falcosidekick for alert forwarding
  - Prometheus metrics enabled

- CNPG (CloudNativePG): PostgreSQL operator
  - Kubernetes-native PostgreSQL management
  - Automated failover and backups
  - Will replace Bitnami PostgreSQL

All components follow existing GitOps patterns:
- Helm charts deployed via ArgoCD
- Values managed in Git
- Automated sync with selfHeal enabled
 2026-01-04 23:47:13 +09:00
Mayne0213
b6802a45e6 REFACTOR(vault): update Vault secret paths 
- Update secret paths for databases/*
- Reorganize secret structure
 2025-12-17 21:32:31 +09:00
Mayne0213
26378b9143 FEAT(minio): add minio and pgweb 
- move from applications to databases
 2025-12-17 15:17:45 +09:00
Mayne0213
a096efe80d CHORE(argocd): update ArgoCD applications to point to databases repo 
- Update repoURL to databases repo
- Change source repository reference
 2025-12-17 15:13:05 +09:00
Mayne0213
27838e5bad INIT(postgresql): databases setup 
- with pg and pg-dev
 2025-12-17 15:09:48 +09:00