Khue Doan
910321b0d5
build(external): auto approve Terraform apply
...
Use plan if you just want to plan
2022-03-15 21:40:28 +07:00
Khue Doan
f5162a9135
refactor(external)!: use separate modules for each provider
2022-03-14 23:21:28 +07:00
Khue Doan
6ea9b471fd
refactor(external): remove Backblaze B2
...
Will add AWS S3 Glacier later
2022-03-14 23:07:59 +07:00
Khue Doan
25ac9e0115
refactor(external): use generic zone name for zone data
2022-02-20 20:32:22 +07:00
Elliot Blackburn
cf94f761c4
docs(external): add Terraform Cloud workspace instruction ( #44 )
...
* Add note regarding terraform cloud execution mode
When configuring a workspace in Terraform Cloud, the execution mode defaults to "Remote". This is problematic for two reasons:
1. We use local files that are not in the terraform plan directory. This creates errors about being unable to local files where it is not immediately obvious why.
2. The remote (cloud) runner won't be able to access the kube cluster running on the internal network anyway, so any plan application will fail.
* Detail terraform cloud workspace setup
2022-02-15 08:32:29 +07:00
Khue Doan
81f0a94574
chore(deps): update all non-major dependencies
...
This PR contains the following updates:
| Package | Type | Update | Change |
|---|---|---|---|
| [cloudflare](https://registry.terraform.io/providers/cloudflare/cloudflare ) ([source](https://github.com/cloudflare/terraform-provider-cloudflare )) | required_provider | minor | `~> 3.7.0` -> `~> 3.8.0` |
| [dendrite](https://github.com/locmai/charts ) | | patch | `0.0.1` -> `0.0.2` |
| [renovate](https://github.com/renovatebot/helm-charts ) | | minor | `31.62.0` -> `31.63.2` |
⚠️ Release Notes retrieval for this PR were skipped because no github.com credentials were available.
If you are self-hosted, please see [this instruction](https://github.com/renovatebot/renovate/blob/master/docs/usage/examples/self-hosting.md#githubcom-token-for-release-notes ).
---
📅 **Schedule**: At any time (no schedule defined).
🚦 **Automerge**: Disabled by config. Please merge this manually once you are satisfied.
♻ **Rebasing**: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.
👻 **Immortal**: This PR will be recreated if closed unmerged. Get [config help](https://github.com/renovatebot/renovate/discussions ) if that's undesired.
---
- [ ] <!-- rebase-check -->If you want to rebase/retry this PR, click this checkbox.
---
This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate ).
Reviewed-on: https://git.khuedoan.com/ops/homelab/pulls/2
Co-authored-by: Renovate Bot <bot@renovateapp.com>
Co-committed-by: Renovate Bot <bot@renovateapp.com>
2022-01-31 23:21:52 +07:00
Khue Doan
b6aa20a0ee
docs(external): list some alternatives
2022-01-29 23:59:03 +07:00
Renovate Bot
d6a8495767
chore(deps): update all non-major dependencies helm releases
2022-01-27 18:19:34 +00:00
Khue Doan
479016d737
refactor: inject Terraform secrets with Terraform
...
Instead of Ansible
2021-12-29 22:51:36 +07:00
Khue Doan
bde8724284
style: format YAMLs to fix yamllint
2021-12-26 12:36:14 +07:00
Khue Doan
6aa12a1bb9
fix(external): add missing env var to Makefile
2021-12-26 10:52:02 +07:00
Khue Doan
8793556800
chore: cleanup Backblaze secret keys
2021-12-25 21:58:23 +07:00
Khue Doan
675891c558
feat(external): inject Backblaze secrets to k8up namespace
2021-12-25 20:18:45 +07:00
Khue Doan
c1ff305343
refactor(external): create terraform secrets after apply
2021-12-25 10:58:54 +07:00
Khue Doan
27468592ce
build: inject Terraform secrets to tekton-pipelines namespace
2021-12-25 03:03:46 +07:00
Khue Doan
dd2bdff255
style(external): format
2021-12-25 02:50:18 +07:00
Khue Doan
3cfd670424
docs: update deploy instruction for external layer
2021-12-25 02:39:48 +07:00
Khue Doan
08513dcda5
refactor(external): ask to enter variables if var file does not exist
2021-12-25 02:34:49 +07:00
Khue Doan
c55b98186d
refactor(external): split Cloudflare into multiple files
2021-12-25 02:06:05 +07:00
Khue Doan
6a7709cec9
feat(external): initial playbook to create secrets for pipelines
2021-12-24 20:05:59 +07:00
Khue Doan
496b66c6a4
Revert "chore(external): ignore modified_on drift"
...
This reverts commit b7bdbe6316
.
2021-12-24 16:36:29 +07:00
Khue Doan
b7bdbe6316
chore(external): ignore modified_on drift
2021-12-24 16:33:21 +07:00
Khue Doan
3b9a7e2276
style(external): format
2021-12-24 15:15:21 +07:00
Khue Doan
cfbf230476
fix(external): temporarily disable IPv6 look up
...
Unusable in Tekton task run
Error: Error making request: Get "https://ipv6.icanhazip.com ": dial tcp [REDACTED]:443: connect: network is unreachable
2021-12-24 13:27:53 +07:00
Khue Doan
9183b6eaee
refactor(external): use env var for kube config
2021-12-24 13:07:26 +07:00
Khue Doan
e20558e545
fix(external): do not create namespaces
2021-12-23 00:18:35 +07:00
Khue Doan
210fa77dcc
build(external): add plan target
2021-12-23 00:18:09 +07:00
Khue Doan
d515e1946a
refactor: move all external charts back to system
2021-12-21 01:14:24 +07:00
Khue Doan
4e2a173858
feat: auto create records for Cloudflare Tunnels as well
2021-12-21 00:42:13 +07:00
Khue Doan
58696673a4
feat(apps): quick and dirty blog
2021-12-19 23:34:58 +07:00
Khue Doan
fd55b1ada6
Revert "fix(k8up): add sync wave for schedule"
...
This reverts commit 11ca0fdd13
.
2021-12-17 23:18:58 +07:00
Khue Doan
3a59a754f9
Revert "fix(k8up): use Helm hook instead of sync wave"
...
This reverts commit d1afbbd56b
.
2021-12-17 23:18:57 +07:00
Khue Doan
d1afbbd56b
fix(k8up): use Helm hook instead of sync wave
2021-12-17 22:36:02 +07:00
Khue Doan
11ca0fdd13
fix(k8up): add sync wave for schedule
2021-12-17 22:27:21 +07:00
Khue Doan
dbeba3c102
feat(k8up): add schedule to backup to Backblaze
2021-12-12 23:36:11 +07:00
Khue Doan
211930d894
fix: replace namespace
2021-12-12 23:03:58 +07:00
Khue Doan
76f9395f43
fix: fix incorrect k8up chart name
2021-12-12 22:54:43 +07:00
Khue Doan
2b18e77b05
refactor: replace Velero with K8up
2021-12-12 22:47:37 +07:00
Khue Doan
10cf9ad8c3
feat(external/cloudflare): restrict API tokens to home IP addresses
2021-12-12 22:02:13 +07:00
Khue Doan
69f1abefac
feat(external/velero): add AWS plugin via init container
2021-12-12 17:48:43 +07:00
Khue Doan
0a3858468f
chore: add place holder to restrict token usage
2021-12-12 16:42:18 +07:00
Khue Doan
313a4b0928
chore: change permission groups order
...
To avoid Terraform drift
2021-12-12 16:40:31 +07:00
Khue Doan
bde61dc9a7
feat: allow to disable external-dns for specific ingresses
...
https://github.com/kubernetes-sigs/external-dns/issues/1910
2021-12-12 16:36:39 +07:00
Khue Doan
4e49aee054
feat(external): create cloudflare API token for cert-manager
2021-12-12 16:06:22 +07:00
Khue Doan
e698fb44de
feat(external): create API token for external-dns
2021-12-12 12:00:24 +07:00
Khue Doan
529b12919a
docs: update external layer instruction
2021-12-12 11:55:16 +07:00
Khue Doan
6cc48ebfa3
chore: temporarily switch to Let's Encrypt Staging
2021-12-12 11:07:48 +07:00
Khue Doan
51d77d75ce
fix(external/cloudflared): fix incorrect tunnel domain
2021-12-12 09:39:44 +07:00
Khue Doan
404d53b0ed
fix(external): fix cloudflared credentials format
2021-12-12 00:22:05 +07:00
Khue Doan
ec8ee97ad6
chore(external): upgrade cloudflared chart to latest version
2021-12-12 00:04:57 +07:00