Khue Doan
|
19f9d44f70
|
feat(vault): create random secret if not exists (WIP)
|
2022-03-01 02:18:45 +07:00 |
|
Khue Doan
|
082ae89d34
|
chore: ignore go.sum
|
2022-02-27 14:07:43 +07:00 |
|
Khue Doan
|
f504955392
|
style(vault): format go mod
|
2022-02-27 14:05:57 +07:00 |
|
Khue Doan
|
e86708536a
|
chore(external-secrets): add test vault token as well
Will remove later
|
2022-02-27 13:20:00 +07:00 |
|
Khue Doan
|
c290a32d96
|
feat(vault): initial random secret generation
|
2022-02-26 21:48:03 +07:00 |
|
Khue Doan
|
ab795ab34b
|
fix(gitea): use template engine v2 for external secret
|
2022-02-26 11:46:50 +07:00 |
|
Khue Doan
|
d6ea436368
|
fix(gitea): remove .data prefix in template
|
2022-02-26 11:42:30 +07:00 |
|
Khue Doan
|
1764039b9f
|
fix(gitea): escape curly braces
|
2022-02-26 11:29:09 +07:00 |
|
Khue Doan
|
e5f35f3640
|
fix(gitea): add missing password template in data
|
2022-02-26 11:21:34 +07:00 |
|
Khue Doan
|
552feda283
|
fix(gitea): add missing property for admin secret ref
|
2022-02-26 10:50:20 +07:00 |
|
Khue Doan
|
182a2d80b4
|
refactor(gitea)!: use admin secret from vault
|
2022-02-26 10:46:27 +07:00 |
|
Khue Doan
|
693893bcb2
|
feat(external-secrets): add test secret store
|
2022-02-26 10:37:25 +07:00 |
|
Khue Doan
|
adbb6ca247
|
feat(platform): install external secret operator
|
2022-02-26 09:28:46 +07:00 |
|
Khue Doan
|
81f0a94574
|
chore(deps): update all non-major dependencies
This PR contains the following updates:
| Package | Type | Update | Change |
|---|---|---|---|
| [cloudflare](https://registry.terraform.io/providers/cloudflare/cloudflare) ([source](https://github.com/cloudflare/terraform-provider-cloudflare)) | required_provider | minor | `~> 3.7.0` -> `~> 3.8.0` |
| [dendrite](https://github.com/locmai/charts) | | patch | `0.0.1` -> `0.0.2` |
| [renovate](https://github.com/renovatebot/helm-charts) | | minor | `31.62.0` -> `31.63.2` |
⚠️ Release Notes retrieval for this PR were skipped because no github.com credentials were available.
If you are self-hosted, please see [this instruction](https://github.com/renovatebot/renovate/blob/master/docs/usage/examples/self-hosting.md#githubcom-token-for-release-notes).
---
📅 **Schedule**: At any time (no schedule defined).
🚦 **Automerge**: Disabled by config. Please merge this manually once you are satisfied.
♻ **Rebasing**: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.
👻 **Immortal**: This PR will be recreated if closed unmerged. Get [config help](https://github.com/renovatebot/renovate/discussions) if that's undesired.
---
- [ ] <!-- rebase-check -->If you want to rebase/retry this PR, click this checkbox.
---
This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate).
Reviewed-on: https://git.khuedoan.com/ops/homelab/pulls/2
Co-authored-by: Renovate Bot <bot@renovateapp.com>
Co-committed-by: Renovate Bot <bot@renovateapp.com>
|
2022-01-31 23:21:52 +07:00 |
|
Khue Doan
|
983c8deeea
|
fix: set Gitea root url
https://github.com/renovatebot/renovate/discussions/9774
|
2022-01-30 21:29:42 +07:00 |
|
Khue Doan
|
734ba9c6e4
|
fix(renovate): use the configured git endpoint directly
|
2022-01-30 17:30:06 +07:00 |
|
Khue Doan
|
9b29eb38ab
|
fix(renovate): use HTTPS Gitea endpoint via Ingress
|
2022-01-30 17:00:33 +07:00 |
|
Khue Doan
|
0aefd5a94f
|
fix(renovate): update syntax
|
2022-01-30 16:24:03 +07:00 |
|
Khue Doan
|
9012cc500b
|
chore(renovate): update test token
|
2022-01-30 16:15:10 +07:00 |
|
Khue Doan
|
e6d945d3ff
|
Revert "Revert "feat(platform): install Renovate Bot""
This reverts commit 70c1b3f385 .
|
2022-01-30 16:11:06 +07:00 |
|
Renovate Bot
|
d6a8495767
|
chore(deps): update all non-major dependencies helm releases
|
2022-01-27 18:19:34 +00:00 |
|
Khue Doan
|
70c1b3f385
|
Revert "feat(platform): install Renovate Bot"
This reverts commit 6f7b16d2f9 .
Probably better to run as a Tekton pipeline instead of a Job
|
2022-01-24 00:18:56 +07:00 |
|
Khue Doan
|
26fcbf6370
|
fix(renovate): add missing Gitea endpoint
|
2022-01-24 00:12:25 +07:00 |
|
Khue Doan
|
1e4f3c130e
|
chore(renovate): update cron for testing
|
2022-01-23 23:47:56 +07:00 |
|
Khue Doan
|
1171411af2
|
fix(renovate): fix incorrect chart name
|
2022-01-23 23:37:37 +07:00 |
|
Khue Doan
|
1412aa4f28
|
chore(renovate): update default config
|
2022-01-23 23:28:31 +07:00 |
|
Khue Doan
|
6f7b16d2f9
|
feat(platform): install Renovate Bot
|
2022-01-23 23:24:20 +07:00 |
|
Khue Doan
|
8b31c9e9e2
|
fix(vault): set storage class explicitly
|
2022-01-22 19:21:30 +07:00 |
|
Khue Doan
|
bb356a41de
|
Revert "refactor(vault): disable dev mode"
This reverts commit e839a96bfb .
Still not ready yet
|
2022-01-22 08:59:57 +07:00 |
|
Khue Doan
|
e839a96bfb
|
refactor(vault): disable dev mode
Get ready for auto init
|
2022-01-19 18:46:00 +07:00 |
|
Khue Doan
|
d49eec60ad
|
Revert "feat(tekton): let ArgoCD manage Tekton config for all repo"
This reverts commit 9cbcf7721f .
|
2022-01-02 17:16:49 +07:00 |
|
Khue Doan
|
9e0bc7eff2
|
fix(trow): fix NGINX max body size syntax (again)
|
2022-01-01 00:28:15 +07:00 |
|
Khue Doan
|
9aeead0e09
|
fix(trow): fix NGINX max body size syntax
|
2022-01-01 00:08:15 +07:00 |
|
Khue Doan
|
74081c584a
|
refactor: disable some tunnels
|
2021-12-30 11:30:02 +07:00 |
|
Khue Doan
|
09eed8a5a0
|
fix(trow): remove Ingress request body size limit
|
2021-12-29 22:52:40 +07:00 |
|
Khue Doan
|
f86077894c
|
ci: disable blog pipeline for now
|
2021-12-27 14:15:03 +07:00 |
|
Khue Doan
|
9cbcf7721f
|
feat(tekton): let ArgoCD manage Tekton config for all repo
|
2021-12-27 11:18:31 +07:00 |
|
Khue Doan
|
6afac60219
|
Revert "refactor(trow): testing user and password"
This reverts commit 122eab6736 .
|
2021-12-26 23:02:18 +07:00 |
|
Khue Doan
|
122eab6736
|
refactor(trow): testing user and password
|
2021-12-26 13:56:21 +07:00 |
|
Khue Doan
|
bde8724284
|
style: format YAMLs to fix yamllint
|
2021-12-26 12:36:14 +07:00 |
|
Khue Doan
|
b879ad282a
|
Revert "refactor: expose Tekton dashboard to the internet"
This reverts commit e09aa337cc .
|
2021-12-26 01:54:45 +07:00 |
|
Khue Doan
|
e007c71855
|
fix(trow): set storage class explicitly
|
2021-12-25 23:54:57 +07:00 |
|
Khue Doan
|
c2f86a18a9
|
chore(authentik): reduce Redis volume size
|
2021-12-25 22:30:32 +07:00 |
|
Khue Doan
|
fced2670b9
|
fix(authentik): indent
|
2021-12-25 22:05:46 +07:00 |
|
Khue Doan
|
aa80484b2a
|
fix(authentik): re-enable Redis
|
2021-12-25 18:50:56 +07:00 |
|
Khue Doan
|
9519ffc68f
|
refactor(platform): temporarily remove Knative
|
2021-12-25 18:48:25 +07:00 |
|
Khue Doan
|
85dadf8671
|
feat(tekton): install pull request task
|
2021-12-25 17:05:56 +07:00 |
|
Khue Doan
|
22940f9aa6
|
Revert "Revert "Revert "Revert "Revert "tekton: use read-only dashboard"""""
This reverts commit cb370c214c .
I PROMISE THIS IS THE LAST TIME
|
2021-12-25 16:38:18 +07:00 |
|
Khue Doan
|
0408d9d0a5
|
fix(gitea): do not overwrite admin username
CreateUser: name is reserved [name: admin]
|
2021-12-25 16:10:00 +07:00 |
|
Khue Doan
|
0b5dcd97ab
|
chore(gitea): upgrade chart version to 5.0.0
|
2021-12-25 15:30:58 +07:00 |
|
Khue Doan
|
e40341449e
|
Revert "Revert "refactor: expose container registry to the internet""
This reverts commit e43d1f42c2 .
|
2021-12-25 14:23:47 +07:00 |
|
Khue Doan
|
e09aa337cc
|
refactor: expose Tekton dashboard to the internet
|
2021-12-25 13:51:34 +07:00 |
|
Khue Doan
|
bbf418f45b
|
feat(tekton): install Kaniko task
|
2021-12-25 13:42:33 +07:00 |
|
Khue Doan
|
f9dd268934
|
fix(trow): increase max body size for Ingress
413 Request Entity Too Large
|
2021-12-25 13:33:00 +07:00 |
|
Khue Doan
|
e43d1f42c2
|
Revert "refactor: expose container registry to the internet"
This reverts commit 64c872fcd1 .
|
2021-12-25 13:25:38 +07:00 |
|
Khue Doan
|
9db137683f
|
fix(trow): use the correct service port
|
2021-12-25 13:22:44 +07:00 |
|
Khue Doan
|
64c872fcd1
|
refactor: expose container registry to the internet
|
2021-12-25 12:32:14 +07:00 |
|
Khue Doan
|
490aa7b9e4
|
chore(tekton): rename Terraform secrets
|
2021-12-25 12:01:57 +07:00 |
|
Khue Doan
|
e7bd2e35f8
|
fix(trow): workaround deprecated ingress resource
https://github.com/ContainerSolutions/trow/issues/282
|
2021-12-25 11:54:38 +07:00 |
|
Khue Doan
|
27468592ce
|
build: inject Terraform secrets to tekton-pipelines namespace
|
2021-12-25 03:03:46 +07:00 |
|
Khue Doan
|
83a33a2dd5
|
feat(gitea): auto init GitOps repo and org
|
2021-12-25 00:47:32 +07:00 |
|
Khue Doan
|
5f33349b15
|
refactor(tekton): split task, pipeline, sa, crb
|
2021-12-24 15:25:25 +07:00 |
|
Khue Doan
|
cb370c214c
|
Revert "Revert "Revert "Revert "tekton: use read-only dashboard""""
This reverts commit cd197e84dd .
|
2021-12-24 14:19:02 +07:00 |
|
Khue Doan
|
fef8c8a344
|
feat(tekton): install Tekton Triggers
|
2021-12-24 14:18:08 +07:00 |
|
Khue Doan
|
eb666ced76
|
refactor: remove Concourse
A bit heavy and needs separate client tool
|
2021-12-24 11:47:09 +07:00 |
|
Khue Doan
|
d4566790e3
|
fix: update Concourse external URL
|
2021-12-24 01:08:56 +07:00 |
|
Khue Doan
|
3936c83a1b
|
feat(platform): install Concourse
|
2021-12-23 13:15:17 +07:00 |
|
Khue Doan
|
4e2a173858
|
feat: auto create records for Cloudflare Tunnels as well
|
2021-12-21 00:42:13 +07:00 |
|
Khue Doan
|
cd197e84dd
|
Revert "Revert "Revert "tekton: use read-only dashboard"""
This reverts commit 120cff8734 .
|
2021-12-19 17:21:26 +07:00 |
|
Khue Doan
|
09494b5c6b
|
refactor(platform): replace Harbor with Trow
|
2021-12-18 21:33:54 +07:00 |
|
Khue Doan
|
f2da28e41a
|
feat(platform): add Harbor
|
2021-12-18 21:21:31 +07:00 |
|
Khue Doan
|
a9f8adf746
|
style: use YAML anchors for all ingress hosts
|
2021-12-16 21:02:13 +07:00 |
|
Khue Doan
|
d9cb179c41
|
refactor(authentik): disable Redis
|
2021-12-12 23:12:14 +07:00 |
|
Khue Doan
|
120cff8734
|
Revert "Revert "tekton: use read-only dashboard""
This reverts commit 7d4192e8d8 .
|
2021-12-12 22:18:35 +07:00 |
|
Khue Doan
|
7d4192e8d8
|
Revert "tekton: use read-only dashboard"
This reverts commit df5a737bb3 .
|
2021-12-12 22:14:24 +07:00 |
|
Khue Doan
|
78979cae97
|
fix(platform/authentik): fix default value
|
2021-12-12 17:31:45 +07:00 |
|
Khue Doan
|
482fb8ce07
|
refactor(platform/authentik): disable persistence Redis
|
2021-12-12 17:12:55 +07:00 |
|
Khue Doan
|
bde61dc9a7
|
feat: allow to disable external-dns for specific ingresses
https://github.com/kubernetes-sigs/external-dns/issues/1910
|
2021-12-12 16:36:39 +07:00 |
|
Khue Doan
|
7acbba961b
|
feat(platform): upgrade Knative and replace Linkerd with Kourier
|
2021-12-11 11:27:52 +07:00 |
|
Khue Doan
|
e928f8a46d
|
fix: add missing cert annotations for Grafana and Tekton
|
2021-12-05 23:03:53 +07:00 |
|
Khue Doan
|
b2b5179df9
|
feat: switch all ingress to to letsencrypt-prod
|
2021-12-05 17:43:32 +07:00 |
|
Khue Doan
|
7c37cdb22d
|
feat: switch all ingress to to letsencrypt-staging
|
2021-12-05 17:11:00 +07:00 |
|
Khue Doan
|
a633363f84
|
fix(platform/authentik): use global storage class for Redis
|
2021-12-05 13:03:14 +07:00 |
|
Khue Doan
|
c64842743b
|
refactor(platform): remove Dex
Use Authentik instead
|
2021-12-02 01:39:50 +07:00 |
|
Khue Doan
|
862236881c
|
feat(platform/authentik): update ingress and storage class
|
2021-12-02 01:03:55 +07:00 |
|
Khue Doan
|
ee136cb19f
|
feat(platform): install Authentik
|
2021-12-02 00:56:28 +07:00 |
|
Khue Doan
|
03ac8ebc7d
|
fix: set ingress class explicitly
|
2021-11-29 21:16:27 +07:00 |
|
Khue Doan
|
e6dcd9140f
|
chore(platform): upgrade Linkerd
|
2021-11-26 18:33:28 +07:00 |
|
Khue Doan
|
d028225468
|
fix(platform/gitea): fix PostgreSQL storage class
|
2021-11-26 18:04:28 +07:00 |
|
Khue Doan
|
f8c0461fc0
|
fix(platform/gitea): attempt to fix PVC issue
|
2021-11-26 17:41:27 +07:00 |
|
Khue Doan
|
1aa534da46
|
Revert "feat(tekton): enable external OAUTH authentication for Ingress"
This reverts commit 7b444619bb .
|
2021-11-26 16:29:27 +07:00 |
|
Khue Doan
|
7b444619bb
|
feat(tekton): enable external OAUTH authentication for Ingress
|
2021-11-26 16:24:11 +07:00 |
|
Khue Doan
|
d707bbe90c
|
fix(platform): change Dex storage to Kubernetes
|
2021-11-17 23:52:24 +07:00 |
|
Khue Doan
|
93f29a7875
|
fix(platform): fix Dex issuer and storage
|
2021-11-17 23:44:41 +07:00 |
|
Khue Doan
|
80504cba87
|
fix(platform): add missing issuer and storage config for Dex
|
2021-11-17 23:22:13 +07:00 |
|
Khue Doan
|
2c48251cef
|
feat(platform): install Dex with Gitea connector
|
2021-11-17 22:12:07 +07:00 |
|
Khue Doan
|
d173baa9fa
|
refactor(platform): remove GLAuth
|
2021-11-17 21:27:01 +07:00 |
|
Khue Doan
|
34d2f02d3b
|
chore(platform): upgrade Vault to latest version
|
2021-11-17 20:53:08 +07:00 |
|
Khue Doan
|
60d85d7065
|
chore(platform): ugprade Gitea
|
2021-11-17 13:57:12 +07:00 |
|
Khue Doan
|
1a6f40ff5a
|
feat(glauth): use simple sample config file
|
2021-10-04 00:26:11 +07:00 |
|
Khue Doan
|
8ab0964c58
|
feat(platform): install GLAuth
|
2021-10-04 00:10:35 +07:00 |
|
Khue Doan
|
902605626d
|
refactor(platform): temporarily remove Knative
|
2021-10-03 23:49:34 +07:00 |
|
Khue Doan
|
0df38c36f0
|
fix(linkerd): fix incorrect version again
|
2021-10-02 16:18:41 +07:00 |
|
Khue Doan
|
0b3bfe8ef3
|
fix(linkerd): fix incorrect version
|
2021-10-02 15:53:41 +07:00 |
|
Khue Doan
|
bb19ae557c
|
feat(platform): install Linkerd
|
2021-10-02 15:48:08 +07:00 |
|
Khue Doan
|
c1f1a68857
|
feat(knative): install Knative Serving and Eventing
|
2021-10-02 15:07:28 +07:00 |
|
Khue Doan
|
1c64fca009
|
refactor(platform)!: remove Authelia
|
2021-09-28 23:59:25 +07:00 |
|
Khue Doan
|
2405f87a57
|
feat(platform): add vault back with dev mode on
|
2021-09-28 23:38:40 +07:00 |
|
Khue Doan
|
6c1695915f
|
feat(platform): install Knative Operator
|
2021-09-25 20:22:01 +07:00 |
|
Khue Doan
|
96acd3646e
|
gitea: set default landing page to explore
|
2021-09-03 16:13:50 +07:00 |
|
Khue Doan
|
df5a737bb3
|
tekton: use read-only dashboard
|
2021-09-03 15:57:59 +07:00 |
|
Khue Doan
|
6ca508faac
|
Revert "Replace authelia with authentik"
This reverts commit 2697ee5d4b .
|
2021-09-03 15:54:52 +07:00 |
|
Khue Doan
|
2697ee5d4b
|
Replace authelia with authentik
|
2021-09-03 14:48:49 +07:00 |
|
Khue Doan
|
084a96abca
|
Fix incorrect authelia values
|
2021-09-03 14:23:13 +07:00 |
|
Khue Doan
|
5765d864d2
|
Fix authelia value indent
|
2021-09-03 14:17:22 +07:00 |
|
Khue Doan
|
ff166640cf
|
Remove authelia redis and postgres
|
2021-09-03 14:08:56 +07:00 |
|
Khue Doan
|
06745a3d7a
|
Add redis and postgresql for authelia
|
2021-09-03 13:30:34 +07:00 |
|
Khue Doan
|
8f4088dadb
|
Move git, ci and sso to platform layer
|
2021-09-03 12:36:52 +07:00 |
|
Khue Doan
|
2222b6e638
|
Remove platform and genesis
Move genesis back in metal and merge platform into infra
|
2021-04-18 23:55:37 +07:00 |
|
Khue Doan
|
41bcef81d3
|
Restructure infra and platform
|
2021-02-11 18:20:54 +07:00 |
|
Khue Doan
|
fffa1dbaf5
|
Add platform makefile
|
2021-02-08 10:09:32 +07:00 |
|
Khue Doan
|
f4eb269f9d
|
Clean up
|
2021-02-08 08:52:53 +07:00 |
|
Khue Doan
|
3ce7a7d3f0
|
Remove gitea, drone
|
2020-12-03 23:57:33 +07:00 |
|
Khue Doan
|
7413c74032
|
Add drone values
|
2020-12-03 23:56:44 +07:00 |
|
Khue Doan
|
7301432661
|
Add drone helm chart
|
2020-12-03 23:24:55 +07:00 |
|
Khue Doan
|
8e08172c91
|
Add Gitea Helm chart
|
2020-11-29 13:15:02 +07:00 |
|
Khue Doan
|
f7f335c5c7
|
Add config file for gitea and drone
|
2020-11-28 15:27:05 +07:00 |
|
Khue Doan
|
074bd788cb
|
Move locals to seperate file
|
2020-11-24 01:31:57 +07:00 |
|
Khue Doan
|
394efcec51
|
Add ingress for longhorn
|
2020-11-24 00:55:45 +07:00 |
|
Khue Doan
|
fd21f95852
|
Format
|
2020-11-23 23:22:18 +07:00 |
|
Khue Doan
|
92160d1572
|
Fix cert manager missing CRD
|
2020-11-23 23:21:55 +07:00 |
|
Khue Doan
|
4d65d8321e
|
Add Vault ingress
|
2020-11-23 08:39:24 +07:00 |
|
Khue Doan
|
1f90d0351c
|
Add cert manager
|
2020-11-21 19:49:17 +07:00 |
|
Khue Doan
|
eb90364cef
|
Format
|
2020-11-21 17:39:11 +07:00 |
|
Khue Doan
|
6dea1b41ca
|
Add Longhorn
|
2020-11-21 16:13:17 +07:00 |
|
Khue Doan
|
aa3ffc8d9e
|
Install Vault
|
2020-11-21 01:42:35 +07:00 |
|
Khue Doan
|
ce6b589914
|
Add ingress for Grafana
|
2020-11-16 02:00:53 +07:00 |
|
Khue Doan
|
ebafaf4582
|
Install nginx helm chart
|
2020-11-16 01:38:29 +07:00 |
|
Khue Doan
|
3de1423ed5
|
Disable default nginx ingress controller
|
2020-11-16 01:21:30 +07:00 |
|
Khue Doan
|
3df5d4cc5b
|
Install Prometheus stack
|
2020-11-15 23:47:40 +07:00 |
|
Khue Doan
|
71431620cb
|
Format
|
2020-11-15 12:48:00 +07:00 |
|
Khue Doan
|
205c4bd317
|
Fix MetalLB config syntax
|
2020-11-15 12:47:30 +07:00 |
|
Khue Doan
|
52b6cfe8ae
|
Install MetalLB
|
2020-11-15 12:31:58 +07:00 |
|
Khue Doan
|
5dd34e8c3c
|
Change IPs
|
2020-11-15 00:01:57 +07:00 |
|
Khue Doan
|
6066cd7728
|
Change kube config file name
|
2020-11-05 01:09:18 +07:00 |
|
Khue Doan
|
cda886384e
|
Use remote backend
|
2020-11-05 01:06:15 +07:00 |
|
Khue Doan
|
e88104c5b5
|
Change master
|
2020-11-05 01:00:12 +07:00 |
|
Khue Doan
|
c2ddf906c8
|
Use RKE on bare metal instead of VM
|
2020-11-04 22:46:38 +07:00 |
|
Khue Doan
|
3dee58fa4b
|
Initial platform config
|
2020-10-28 23:30:16 +07:00 |
|