37a324f71a
refactor!: replace Vault with in-cluster global secrets
2023-11-26 03:11:08 +07:00
54e071e0f2
refactor(k3s): remove system upgrade controller
...
More trouble than it's worth.
Update Ansible to upgrade k3s instead.
2023-11-19 12:50:36 +07:00
774e6086b4
perf(k3s): enable image lazy pulling with eStargz
...
Note that this is experimental.
https://docs.k3s.io/advanced#enabling-lazy-pulling-of-estargz-experimental
2023-11-19 12:11:13 +07:00
e28bada08e
refactor: remove explicit StorageClass selection
...
Previously PVCs need to define storage class explicitly because if
a PVC was created before Longhorn is ready, it will stay pending forever
until we delete and recreate it (ArgoCD didn't have sync wave for
ApplicationSet back then).
Kubernetes 1.28 has retroactive assignment of a default StorageClass for
existing unbound persistent volume claims without any storage class assigned.
https://kubernetes.io/blog/2023/08/15/kubernetes-v1-28-release/#automatic-retroactive-assignment-of-a-default-storageclass-graduates-to-stable
2023-11-19 12:04:10 +07:00
f4ee4be035
chore(k3s): upgrade to Kubernetes 1.28
2023-11-19 12:00:52 +07:00
a361fe3b57
chore(metal): update OS image to Fedora 39
2023-11-19 11:00:58 +07:00
674e7e6505
fix(speedtest): increase ingress body size
...
Otherwise it will return unrealisticly high upload measurements.
See https://openspeedtest.com/selfhosted-speedtest#Source-Code-Docker
2023-11-05 20:42:43 +07:00
db4c2f8ca1
feat: install OpenSpeedTest
2023-11-05 19:24:34 +07:00
d0d64baa73
docs: update logo links
2023-10-27 20:25:48 +07:00
9df8fea615
chore: upgrade all test packages to latest
2023-10-27 19:25:42 +07:00
60fd8b9e9a
build!: switch to Nix flake
2023-10-27 16:37:53 +07:00
da9afc6de0
docs: add project logo favicon
2023-06-18 22:35:47 +07:00
c7c8f79dd9
feat(metal): add staging inventory
2023-05-31 19:07:14 +07:00
4b69ec2dfc
refactor(platform)!: replace Harbor with a simple Docker Regisry
...
https://github.com/distribution/distribution
Docker Registry is stateless and easier to automate.
The tiny footprint is an added bonus.
2023-05-21 14:08:42 +07:00
b517985272
refactor(harbor): remove unnecessary components
...
Don't need them at least for now.
2023-05-19 13:59:42 +07:00
c2d1263cbd
fix(grafana): enable side car for dashboards and datasources
...
Copied config from kube-prometheus-stack
2023-05-19 13:11:02 +07:00
a5ecaafe50
refactor(metallb)!: use CRD instead of ConfigMap
...
Deprecated https://metallb.universe.tf/configuration/migration_to_crds
2023-05-19 11:54:07 +07:00
177bac6345
Revert "fix(system): downgrade MetalLB to 0.12"
...
This reverts commit 084942ab84
2023-05-19 11:09:35 +07:00
084942ab84
fix(system): downgrade MetalLB to 0.12
...
ConfigMap is deprecated, need to migrate first https://metallb.universe.tf/configuration/migration_to_crds
2023-05-19 02:59:04 +07:00
4d904592c4
fix(system): downgrade kube-prometheus-stack to 45.28.0
...
Due to an issue on 45.28.1
2023-05-19 02:38:41 +07:00
cc1d4ab2f7
chore(system): upgrade charts to latest
2023-05-19 02:27:37 +07:00
99651ecb2f
fix: sync k3s version in system upgrade controller and k3d
2023-05-19 02:17:05 +07:00
08ef4ecf01
build(docs): use mkdocs from nixpkgs instead of docker
2023-05-19 01:48:30 +07:00
b1a716dae9
refactor!: move Grafana to platform
...
Grafana depends on secret created by ExternalSecret, with the values
pulled from Vault, causing circular dependency problem: system requires
platform components but platform requires system components.
2023-05-19 01:36:47 +07:00
2bbabe1bf2
chore(tools): upgrade package versions
2023-05-18 12:05:30 +07:00
fa6322d4f5
chore(k3s)!: upgrade to Kubernetes 1.27
2023-05-18 11:58:33 +07:00
ed4ef0bac4
chore(metal): upgrade Fedora to version 38
2023-05-18 11:58:15 +07:00
96a968bc9f
fix(harbor): fix Ingress cert and class
2023-02-22 18:34:21 +07:00
8fae9874c6
chore(argocd): upgrade to 5.20.2
2023-02-22 18:34:14 +07:00
75aaf731c9
refactor: switch back to Harbor
2023-02-22 18:33:57 +07:00
d3de308e54
fix: URL encode Gitea password
2023-02-22 18:33:48 +07:00
f3eda41596
chore(metal): upgrade to Fedora 37
2023-02-22 18:33:31 +07:00
3aef027670
perf(metal): don't restart PXE server on every run
2023-02-22 18:33:17 +07:00
a8d1eb4412
chore(metal): reorder server list
...
Moved them in the rack
2023-02-22 18:32:57 +07:00
0e84f90a8a
refactor(hajimari): disable data volume
...
It was disabled by default in the previous version
2023-02-22 18:32:49 +07:00
c0d1620050
ci: create pre-built tools image
2023-01-26 17:19:43 +07:00
bc8beffb73
fix(tekton): fix incorrect pull request revision
2023-01-26 15:31:22 +07:00
8a63ec3253
ci: run pre-commit on master too
2023-01-26 11:08:34 +07:00
8547e13acc
refactor(tekton): remove unused secret for now
2023-01-26 10:47:55 +07:00
220e5c5480
feat(tekton): add pull request workflow
2023-01-26 10:44:50 +07:00
22a3ccd331
feat: auto create Gitea webhook for Tekton
2023-01-26 01:26:52 +07:00
d5eb6d9a76
fix(tekton): update new Dashboard install link
2023-01-25 22:10:42 +07:00
a7016de626
refactor(tekton): use common workflows that create pipelines
2023-01-25 22:01:31 +07:00
6bd0577c64
chore(deps): update terraform http to v3
2023-01-25 12:39:40 +00:00
2a29c0f8c5
chore(deps): update helm release hajimari to v2
...
This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate ).
Co-authored-by: Renovate Bot <bot@renovateapp.com >
Co-authored-by: Khue Doan <mail@khuedoan.com >
Reviewed-on: https://git.khuedoan.com/ops/homelab/pulls/7
2023-01-25 19:20:44 +07:00
8df13c3ef4
refactor(tekton): use remote tasks from Tekton Hub
2023-01-25 17:26:16 +07:00
330393080a
feat(tekton): install experimental Workflow
2023-01-25 14:49:50 +07:00
3718f99096
refactor(tekton): move common tasks back to platform
2023-01-25 14:25:27 +07:00
39e79fc0e8
fix(gitea): allow webhook in private network
...
Default is external https://docs.gitea.io/en-us/config-cheat-sheet/#webhook-webhook
2023-01-24 22:29:20 +07:00
bb4cc325f0
Revert "refactor(blog)!: move blog to khuedoan/horus"
...
This reverts commit b6313e41a9
2023-01-24 17:58:50 +07:00
