Nikholas Pcenicni
|
95b1866144
|
Update .gitignore to exclude all .tmp files and enhance clarity in middleware-https-proto.yaml by adding X-Forwarded-Host and X-Forwarded-Port headers for improved redirect handling in Headlamp.
|
2026-05-14 18:35:49 -04:00 |
|
Nikholas Pcenicni
|
86df02f9bd
|
Update Traefik Ingress middleware reference in values.yaml for Headlamp to align with CRD naming conventions and improve documentation clarity.
|
2026-05-14 18:31:27 -04:00 |
|
Nikholas Pcenicni
|
af3ab32de8
|
Add middleware-https-proto.yaml to enforce HTTPS scheme for Headlamp and update kustomization.yaml and values.yaml accordingly
|
2026-05-14 18:27:42 -04:00 |
|
Nikholas Pcenicni
|
8e42777a1d
|
Update Longhorn runbook documentation for clarity and compliance. Adjusted section references for consistency and added details on security and compliance measures regarding RBAC and namespace management.
|
2026-05-14 17:36:18 -04:00 |
|
Nikholas Pcenicni
|
24cd07015d
|
Update Trivy dashboard application manifest to specify the OCI Helm path as '.' for compatibility with Argo CD documentation, ensuring correct deployment of the trivy-operator-dashboard.
|
2026-05-14 17:24:09 -04:00 |
|
Nikholas Pcenicni
|
e48283fc43
|
Update Trivy configuration paths in Ansible tasks and Argo CD application manifests to reflect new directory structure. Adjust references in values.yaml and dashboard-values.yaml for consistency and clarity in deployment processes.
|
2026-05-14 17:21:49 -04:00 |
|
Nikholas Pcenicni
|
c347416668
|
Refactor Argo CD application management by removing the obsolete root-application.yaml and updating the bootstrap-root-application.yaml to include optional add-on Application manifests from clusters/noble/apps. Adjust documentation to clarify the deployment order and resource ownership, ensuring a streamlined GitOps process with Ansible and Argo CD.
|
2026-05-14 17:18:41 -04:00 |
|
Nikholas Pcenicni
|
10fdaf873c
|
Update .gitignore to include .tmp files, remove Trivy namespace from kustomization.yaml, and add Trivy dashboard application to app-of-apps kustomization. Delete obsolete Trivy namespace and values files to streamline deployment configuration.
|
2026-05-14 17:10:00 -04:00 |
|
Nikholas Pcenicni
|
a5869c242a
|
Update documentation and playbook to clarify Trivy Operator installation via Argo CD, removing direct Ansible role references. Adjust README and related files to reflect the new deployment order and ensure proper resource ownership, enhancing overall clarity for users.
|
2026-05-14 17:04:25 -04:00 |
|
Nikholas Pcenicni
|
1e6d84f0f3
|
Refactor noble.yml playbook to apply Argo CD Application manifests after all Helm roles, ensuring proper resource ownership and avoiding SSA conflicts. Update related documentation to reflect the new execution order and clarify the role of Argo CD in the deployment process.
|
2026-05-14 16:46:45 -04:00 |
|
Nikholas Pcenicni
|
1a50599cb4
|
Enhance Authentik role by updating README with detailed troubleshooting steps for Headlamp OIDC integration, including handling of scopes and PKCE settings. Adjust default variables for Headlamp OIDC scopes and ensure proper application of Kubernetes RBAC for OIDC groups. Update Helm tasks to apply necessary static manifests for Headlamp, improving overall deployment and authentication reliability.
|
2026-05-14 16:11:57 -04:00 |
|
Nikholas Pcenicni
|
4bc8da0225
|
Enhance Authentik role by adding Helm wait timeout for oauth2-proxy and improving task conditions for admin access and OAuth2 provider upserts. Update README with new variable descriptions and adjust Longhorn deployment tasks to ensure proper rollout before Loki installation, enhancing overall deployment reliability.
|
2026-05-14 15:52:42 -04:00 |
|
Nikholas Pcenicni
|
5e5c6ef671
|
Enhance Authentik role in noble cluster setup by adding support for resolving OAuth2 flow, signing key, and scope mapping UUIDs from the worker database, improving API access under 2026+ RBAC. Update README with troubleshooting steps for common OAuth2 provider issues and adjust default variables for better configuration management. Ensure seamless integration with oauth2-proxy by allowing unverified email handling in development environments.
|
2026-05-14 14:26:43 -04:00 |
|
Nikholas Pcenicni
|
c392ce1e5a
|
Enhance Authentik integration in noble cluster setup by adding support for OAuth2 flow primary keys in configuration. Update README with troubleshooting steps for common API errors and improve deployment reliability with tasks to wait for Authentik worker rollout and API readiness. Adjust Helm chart values for Grafana and Headlamp to accommodate new OIDC settings, ensuring seamless authentication and authorization processes.
|
2026-05-14 01:29:49 -04:00 |
|
Nikholas Pcenicni
|
15d0e120d3
|
Update Ansible configuration and documentation to reflect new inventory structure. Migrate group_vars to inventory/group_vars/ and enhance README with updated paths for variable files, improving clarity for users.
|
2026-05-14 00:39:29 -04:00 |
|
Nikholas Pcenicni
|
78b524a044
|
Add Authentik and oauth2-proxy support to noble cluster setup, including environment variables, playbook tags, and landing URLs. Update README and kustomization.yaml to reflect new OIDC integration, enhancing security and user authentication capabilities.
|
2026-05-14 00:23:48 -04:00 |
|
Nikholas Pcenicni
|
2bf7277917
|
Enhance csi-snapshot-controller README with troubleshooting guidance for CrashLoopBackOff issues and update kustomization.yaml to include deployment patch. This improves user experience and deployment reliability.
|
2026-05-13 23:59:30 -04:00 |
|
Nikholas Pcenicni
|
663ebc5001
|
Add Trivy integration to noble cluster setup, including namespace and application configurations. Update README and playbook tags to reflect new security scanning capabilities. Enhance Longhorn and kube-prometheus-stack deployment reliability with increased timeout settings and retry mechanisms.
|
2026-05-13 23:48:12 -04:00 |
|
Nikholas Pcenicni
|
0acb5856b4
|
Update Longhorn Helm chart version to 1.11.2 in Argo CD configuration and tasks, ensuring compatibility and consistency across deployments.
|
2026-05-13 18:41:57 -04:00 |
|
Nikholas Pcenicni
|
61895ddf31
|
Remove namespace.yaml from Headlamp kustomization to prevent SharedResourceWarning due to multiple Applications owning the same Namespace.
|
2026-05-13 17:50:28 -04:00 |
|
Nikholas Pcenicni
|
e448e6264e
|
Add new repository configuration for Headlamp in Argo CD application manifest to enhance deployment management and streamline application synchronization.
|
2026-05-13 17:47:21 -04:00 |
|
Nikholas Pcenicni
|
8694773593
|
Disable pre-upgrade job in Longhorn values.yaml to prevent failures during Argo CD syncs when Longhorn is already healthy, ensuring cleaner deployments.
|
2026-05-13 17:40:00 -04:00 |
|
Nikholas Pcenicni
|
d378a8c70d
|
Add ServerSideApply option to Argo CD application configurations for improved deployment management
|
2026-05-13 17:35:43 -04:00 |
|
Nikholas Pcenicni
|
a9d6cbb6c5
|
Refine Argo CD configuration for kube-prometheus-stack to clarify CRD management and server-side apply limitations, ensuring compatibility and preventing last-applied-configuration overflow during deployments.
|
2026-05-13 17:29:09 -04:00 |
|
Nikholas Pcenicni
|
b26099342c
|
Update Argo CD configuration to improve handling of managed fields and enhance compatibility with server-side apply, ensuring smoother deployments and conflict resolution.
|
2026-05-13 17:23:54 -04:00 |
|
Nikholas Pcenicni
|
91b32407f8
|
Enable ServerSideApply for kube-prometheus-stack CRDs in Argo CD configuration to avoid last-applied-configuration limit issues during deployments.
|
2026-05-13 17:19:47 -04:00 |
|
Nikholas Pcenicni
|
c4e000d2d5
|
Refactor Argo CD application deployment by removing obsolete tasks and updating README for clarity. Introduce new task inclusion for Argo CD applications post-platform Helm installation, ensuring proper application order and synchronization.
|
2026-05-13 16:57:51 -04:00 |
|
Nikholas Pcenicni
|
aeffc7d6dd
|
Remove Argo CD application configurations for Fluent Bit, Headlamp, Loki, kube-prometheus, and associated kustomization files from the noble bootstrap directory. This cleanup streamlines the project by eliminating unused resources and simplifies the deployment structure.
|
2026-04-01 02:14:49 -04:00 |
|
Nikholas Pcenicni
|
0f88a33216
|
Remove deprecated Argo CD application configurations for various components including cert-manager, Cilium, CSI snapshot controllers, kube-vip, and others. Update README.md to reflect the current state of leaf applications and clarify optional components. Adjust kustomization files to streamline resource management for bootstrap workloads.
|
2026-04-01 02:13:15 -04:00 |
|
Nikholas Pcenicni
|
bfb72cb519
|
Update Argo CD documentation and kustomization files to include additional applications and namespace resources. Enhance README.md with current leaf applications and clarify optional components. This improves deployment clarity and organization for bootstrap workloads.
|
2026-04-01 02:11:19 -04:00 |
|
Nikholas Pcenicni
|
51eb64dd9d
|
Add applications to Argo CD kustomization.yaml for enhanced deployment
|
2026-04-01 02:05:10 -04:00 |
|
Nikholas Pcenicni
|
f259285f6e
|
Enhance Argo CD integration by adding support for a bootstrap root application. Update group_vars/all.yml and role defaults to include noble_argocd_apply_bootstrap_root_application. Modify tasks to apply the bootstrap application conditionally. Revise documentation to clarify the GitOps workflow and the relationship between the core platform and optional applications. Remove outdated references and streamline the README for better user guidance.
|
2026-04-01 01:55:41 -04:00 |
|
Nikholas Pcenicni
|
3a6e5dff5b
|
Update Ansible configuration to integrate SOPS for managing secrets. Enhance README.md with SOPS usage instructions and prerequisites. Remove External Secrets Operator references and related configurations from the bootstrap process, streamlining the deployment. Adjust playbooks and roles to apply SOPS-encrypted secrets automatically, improving security and clarity in secret management.
|
2026-03-30 22:42:52 -04:00 |
|
Nikholas Pcenicni
|
544f75b0ee
|
Enhance documentation and configuration for Velero integration. Update README.md to clarify Velero's lack of web UI and usage instructions for CLI. Add CSI Volume Snapshot support in playbooks and roles, and include Velero service details in noble_landing_urls. Adjust kustomization.yaml to include VolumeSnapshotClass configuration, ensuring proper setup for backups. Improve overall clarity in related documentation.
|
2026-03-28 19:34:43 -04:00 |
|
Nikholas Pcenicni
|
33a10dc7e9
|
Add Velero configuration to .env.sample, README.md, and Ansible playbooks. Update group_vars to include noble_velero_install variable. Enhance documentation for optional Velero installation and S3 integration, improving clarity for backup and restore processes.
|
2026-03-28 18:39:22 -04:00 |
|
Nikholas Pcenicni
|
76eb7df18c
|
Refactor noble cluster configurations to transition from the deprecated apps structure to a streamlined bootstrap approach. Update paths in various YAML files and README documentation to reflect the new organization under clusters/noble/bootstrap. This change enhances clarity and consistency across the deployment process, ensuring that all components are correctly referenced and documented for user guidance.
|
2026-03-28 17:03:15 -04:00 |
|
Nikholas Pcenicni
|
90fd8fb8a6
|
Refactor noble cluster configurations by removing deprecated Argo CD application management files and transitioning to a streamlined Ansible-driven installation approach. Update kustomization.yaml files to reflect the new structure, ensuring clarity on resource management. Introduce new namespaces and configurations for cert-manager, external-secrets, and logging components, enhancing the overall deployment process. Add detailed README.md documentation for each component to guide users through the setup and management of the noble lab environment.
|
2026-03-28 17:02:50 -04:00 |
|
Nikholas Pcenicni
|
0e8eaa2f0d
|
Update .gitignore to include generated noble-lab-ui-urls.md and enhance README.md with new role documentation. Refactor noble.yml to incorporate noble_landing_urls role for improved URL management. Add ingress configurations for alertmanager, prometheus, longhorn, and vault to support TLS termination via Traefik. Update network policies and values.yaml for vault to allow traffic from Traefik. These changes aim to streamline deployment and enhance service accessibility.
|
2026-03-28 16:32:21 -04:00 |
|
Nikholas Pcenicni
|
46cedc965f
|
Refactor Argo CD application management by removing noble-kyverno and noble-platform configurations, transitioning to Ansible-driven installations. Update documentation to clarify the optional nature of app-of-apps and the role of kustomization.yaml as an empty resource holder. Ensure users are informed about the need to delete stale Applications when migrating from previous configurations.
|
2026-03-28 15:17:54 -04:00 |
|
Nikholas Pcenicni
|
ee7669c788
|
Update Argo CD application configurations for noble-platform to include sync wave annotations and enhance documentation. Remove redundant Helm chart definitions, clarify application roles in README.md, and implement retry logic for improved deployment resilience.
|
2026-03-28 02:29:23 -04:00 |
|
Nikholas Pcenicni
|
90cd34c34f
|
Enable cert-manager for admission webhook TLS in kube-prometheus-stack values.yaml to prevent Kyverno pre-hook Job failures during Argo sync. Update noble-platform.yaml to adjust Helm chart sources and maintain proper order for Kyverno and kube-prometheus-stack, ensuring correct resource management and deployment flow.
|
2026-03-28 02:25:59 -04:00 |
|
Nikholas Pcenicni
|
1a3c8378d4
|
Update Argo CD application configuration to use HEAD as the target revision in both root-application.yaml and noble-platform.yaml, enhancing clarity in documentation regarding repository tracking. This change supports a more dynamic reference to the latest code in the repository.
|
2026-03-28 02:20:35 -04:00 |
|
Nikholas Pcenicni
|
05717c7e6a
|
Refactor Argo CD application configuration to adopt a multi-source approach for noble-platform, removing Helm chart definitions from kustomization.yaml. Update noble-platform.yaml to directly reference Helm chart sources and clarify documentation in README.md and apps/README.md regarding the new structure and resource representation in the UI.
|
2026-03-28 02:18:02 -04:00 |
|
Nikholas Pcenicni
|
0dd642f0c5
|
Add server-side apply option for large CRDs in noble-platform.yaml to avoid kubectl annotation limit
|
2026-03-28 02:15:32 -04:00 |
|
Nikholas Pcenicni
|
0a6c9976da
|
Refactor Argo CD application configuration to utilize a single source for the noble-platform, consolidating Helm chart management within kustomization.yaml. Update values.yaml to enable Helm inflation and revise documentation in README.md and apps/README.md to clarify the new structure and improve UI representation of resources.
|
2026-03-28 02:13:36 -04:00 |
|
Nikholas Pcenicni
|
c5319a5436
|
Refactor Argo CD application configuration to utilize plain Kustomize for YAML resources and streamline Helm chart management. Update kustomization.yaml to remove Helm chart definitions, shifting to a multi-source approach in noble-platform.yaml. Revise documentation in README.md and apps/README.md to clarify the new structure and eliminate the need for Helm inflation in values.yaml.
|
2026-03-28 02:10:44 -04:00 |
|
Nikholas Pcenicni
|
c148454e91
|
Refine Argo CD documentation and configuration. Update README.md to clarify the relationship between noble-root and child applications, and enhance instructions for syncing workloads. Modify root-application.yaml to specify the use of kustomization.yaml for cluster workloads. Adjust values.yaml to enable Helm inflation for Kustomize charts. Update apps/README.md to streamline application management and clarify deployment processes.
|
2026-03-28 02:05:09 -04:00 |
|
Nikholas Pcenicni
|
445a1ac211
|
Update Headlamp and Vault documentation; enhance RBAC configurations in Argo CD. Modify Headlamp README to clarify sessionTTL handling and ServiceAccount permissions. Add Cilium network policy instructions to Vault README. Update Argo CD values.yaml for default RBAC settings, ensuring local admin retains full access while new users start with read-only permissions. Reflect these changes in CLUSTER-BUILD.md.
|
2026-03-28 02:02:17 -04:00 |
|
Nikholas Pcenicni
|
fd4afef992
|
Update Argo CD README and root-application.yaml to clarify prerequisites, enhance Ingress configuration with Traefik and cert-manager, and specify finalizer guidance for resource deletion. Adjust instructions for accessing the Argo CD UI and managing applications.
|
2026-03-27 23:57:25 -04:00 |
|
Nikholas Pcenicni
|
092a6febe4
|
Update Argo CD values.yaml to configure Ingress with Traefik, enable TLS with cert-manager, and set server to insecure mode. Adjust domain settings and service type to ClusterIP for improved deployment configuration.
|
2026-03-27 23:47:40 -04:00 |
|