aeffc7d6dd
Remove Argo CD application configurations for Fluent Bit, Headlamp, Loki, kube-prometheus, and associated kustomization files from the noble bootstrap directory. This cleanup streamlines the project by eliminating unused resources and simplifies the deployment structure.
main
Nikholas Pcenicni
2026-04-01 02:14:49 -04:00
0f88a33216
Remove deprecated Argo CD application configurations for various components including cert-manager, Cilium, CSI snapshot controllers, kube-vip, and others. Update README.md to reflect the current state of leaf applications and clarify optional components. Adjust kustomization files to streamline resource management for bootstrap workloads.
Nikholas Pcenicni
2026-04-01 02:13:15 -04:00
bfb72cb519
Update Argo CD documentation and kustomization files to include additional applications and namespace resources. Enhance README.md with current leaf applications and clarify optional components. This improves deployment clarity and organization for bootstrap workloads.
Nikholas Pcenicni
2026-04-01 02:11:19 -04:00
51eb64dd9d
Add applications to Argo CD kustomization.yaml for enhanced deployment
Nikholas Pcenicni
2026-04-01 02:05:10 -04:00
f259285f6e
Enhance Argo CD integration by adding support for a bootstrap root application. Update group_vars/all.yml and role defaults to include noble_argocd_apply_bootstrap_root_application. Modify tasks to apply the bootstrap application conditionally. Revise documentation to clarify the GitOps workflow and the relationship between the core platform and optional applications. Remove outdated references and streamline the README for better user guidance.
Nikholas Pcenicni
2026-04-01 01:55:41 -04:00
c312ceeb56
Remove Eclipse Che application configurations and related documentation from the repository. This includes the deletion of application-checluster.yaml, application-devworkspace.yaml, application-operator.yaml, checluster.yaml, dwoc.yaml, kustomization.yaml, and README.md, streamlining the project by eliminating outdated resources.
Nikholas Pcenicni
2026-04-01 01:21:32 -04:00
c15bf4d708
Enhance Ansible playbooks and documentation for Debian and Proxmox management. Add new playbooks for Debian hardening, maintenance, SSH key rotation, and Proxmox cluster setup. Update README.md with quick start instructions for Debian and Proxmox operations. Modify group_vars to include Argo CD application settings, improving deployment flexibility and clarity.
Nikholas Pcenicni
2026-04-01 01:19:50 -04:00
89be30884e
Update compose.yaml for Tracearr service to change the image tag from 'latest' to 'supervised' and remove unnecessary environment variables for DATABASE_URL and REDIS_URL. This streamlines the configuration and focuses on essential settings for deployment.
Nikholas Pcenicni
2026-03-30 22:53:47 -04:00
16948c62f9
Update compose.yaml for Tracearr service to include production environment variables and database configurations. This enhances deployment settings by specifying NODE_ENV, PORT, HOST, DATABASE_URL, REDIS_URL, JWT_SECRET, COOKIE_SECRET, and CORS_ORIGIN, improving overall service configuration and security.
Nikholas Pcenicni
2026-03-30 22:49:01 -04:00
3a6e5dff5b
Update Ansible configuration to integrate SOPS for managing secrets. Enhance README.md with SOPS usage instructions and prerequisites. Remove External Secrets Operator references and related configurations from the bootstrap process, streamlining the deployment. Adjust playbooks and roles to apply SOPS-encrypted secrets automatically, improving security and clarity in secret management.
Nikholas Pcenicni
2026-03-30 22:42:52 -04:00
023ebfee5d
Enhance Eclipse Che configuration in checluster.yaml by adding externalTLSConfig for secure workspace subdomains. This change ensures cert-manager can issue TLS certificates, preventing issues with unavailable servers when opening workspaces.
Nikholas Pcenicni
2026-03-29 02:03:57 -04:00
27fb4113eb
Refactor DevWorkspaceOperatorConfig in dwoc.yaml to simplify configuration structure. This change removes the unnecessary spec.config nesting, aligning with the v1alpha1 API requirements and improving clarity for users configuring development workspaces.
Nikholas Pcenicni
2026-03-28 19:58:18 -04:00
4026591f0b
Update README.md with troubleshooting steps for Eclipse Che and enhance kustomization.yaml to include DevWorkspaceOperatorConfig. This improves guidance for users facing deployment issues and ensures proper configuration for development workspace management.
Nikholas Pcenicni
2026-03-28 19:56:07 -04:00
8a740019ad
Add Eclipse Che applications to kustomization.yaml for improved development workspace management. This update includes application-devworkspace, application-operator, and application-checluster resources, enhancing the deployment capabilities for the Noble cluster.
Nikholas Pcenicni
2026-03-28 19:53:01 -04:00
544f75b0ee
Enhance documentation and configuration for Velero integration. Update README.md to clarify Velero's lack of web UI and usage instructions for CLI. Add CSI Volume Snapshot support in playbooks and roles, and include Velero service details in noble_landing_urls. Adjust kustomization.yaml to include VolumeSnapshotClass configuration, ensuring proper setup for backups. Improve overall clarity in related documentation.
Nikholas Pcenicni
2026-03-28 19:34:43 -04:00
33a10dc7e9
Add Velero configuration to .env.sample, README.md, and Ansible playbooks. Update group_vars to include noble_velero_install variable. Enhance documentation for optional Velero installation and S3 integration, improving clarity for backup and restore processes.
Nikholas Pcenicni
2026-03-28 18:39:22 -04:00
a4b9913b7e
Update .env.sample and compose.yaml for Versity S3 Gateway to enhance WebUI and CORS configuration. Add comments clarifying the purpose of VGW_CORS_ALLOW_ORIGIN and correct usage of VGW_WEBUI_GATEWAYS, improving deployment instructions and user understanding.
Nikholas Pcenicni
2026-03-28 18:28:52 -04:00
11c62009a4
Update README.md, .env.sample, and compose.yaml for Versity S3 Gateway to clarify WebUI configuration. Enhance README with details on separate API and WebUI ports, and update .env.sample and compose.yaml to include WebUI settings for improved deployment instructions and usability.
Nikholas Pcenicni
2026-03-28 18:20:55 -04:00
03ed4e70a2
Enhance .env.sample and compose.yaml for Versity S3 Gateway by adding detailed comments on NFS metadata handling and sidecar mode. This improves documentation clarity for users configuring NFS mounts and metadata storage options.
Nikholas Pcenicni
2026-03-28 18:17:54 -04:00
7855b10982
Update compose.yaml to change volume paths for Versity S3 Gateway from named volumes to NFS mounts. This adjustment improves data persistence and accessibility by linking directly to the NFS directory structure.
Nikholas Pcenicni
2026-03-28 18:13:52 -04:00
079c11b20c
Refactor Versity S3 Gateway configuration in README.md, .env.sample, and compose.yaml. Update README to clarify environment variable usage and adjust .env.sample for local setup instructions. Modify compose.yaml to utilize environment variable interpolation, ensuring proper credential handling and enhancing deployment security.
Nikholas Pcenicni
2026-03-28 17:56:24 -04:00
bf108a37e2
Update compose.yaml to include .env file for environment variable injection, enhancing security and usability for the Versity S3 Gateway deployment. This change ensures that necessary environment variables are accessible within the container, improving the overall configuration process.
Nikholas Pcenicni
2026-03-28 17:49:43 -04:00
97b56581ed
Update README.md and .env.sample for Versity S3 Gateway configuration. Change path in README to reflect new directory structure and clarify environment variable usage for credentials. Modify .env.sample to include additional credential options and improve documentation for setting up the environment. Adjust compose.yaml to utilize pass-through environment variables, enhancing security and usability for deployment.
Nikholas Pcenicni
2026-03-28 17:46:08 -04:00
f154658d79
Add Versity S3 Gateway documentation to README.md, detailing configuration requirements and usage for shared object storage. This addition enhances clarity for users integrating S3-compatible APIs with POSIX directories.
Nikholas Pcenicni
2026-03-28 17:25:44 -04:00
90509bacc5
Update homepage values.yaml to replace external siteMonitor URLs with in-cluster service URLs for improved reliability. Enhance comments for clarity on service monitoring and Prometheus widget configurations. Adjust description for better accuracy regarding uptime checks and resource monitoring.
Nikholas Pcenicni
2026-03-28 17:13:57 -04:00
e4741ecd15
Enhance homepage values.yaml by adding support for RBAC, service account creation, and site monitoring for various services. Update widget configurations for Prometheus and introduce new widgets for datetime and Kubernetes resource monitoring. Adjust layout and styling settings for improved UI presentation.
Nikholas Pcenicni
2026-03-28 17:11:01 -04:00
f6647056be
Add homepage entry to noble_landing_urls and update kustomization.yaml to include homepage resource
Nikholas Pcenicni
2026-03-28 17:07:06 -04:00
76eb7df18c
Refactor noble cluster configurations to transition from the deprecated apps structure to a streamlined bootstrap approach. Update paths in various YAML files and README documentation to reflect the new organization under clusters/noble/bootstrap. This change enhances clarity and consistency across the deployment process, ensuring that all components are correctly referenced and documented for user guidance.
Nikholas Pcenicni
2026-03-28 17:03:15 -04:00
90fd8fb8a6
Refactor noble cluster configurations by removing deprecated Argo CD application management files and transitioning to a streamlined Ansible-driven installation approach. Update kustomization.yaml files to reflect the new structure, ensuring clarity on resource management. Introduce new namespaces and configurations for cert-manager, external-secrets, and logging components, enhancing the overall deployment process. Add detailed README.md documentation for each component to guide users through the setup and management of the noble lab environment.
Nikholas Pcenicni
2026-03-28 17:02:50 -04:00
41841abc84
Update Kyverno policies-values.yaml to enhance namespace exclusions for policy enforcement. Add detailed comments on the exclusion strategy and provide instructions for refreshing PolicyReports. This change aims to improve clarity and management of policy violations across various namespaces.
Nikholas Pcenicni
2026-03-28 16:56:13 -04:00
7a62489ad6
Enhance noble_landing_urls role by adding support for generating a Headlamp ServiceAccount token with a configurable duration. Update documentation to reflect changes in the markdown output for Headlamp sign-in. Modify fetch_credentials task to include token generation alongside existing credential fetching. These updates improve the usability and security of the Headlamp integration.
Nikholas Pcenicni
2026-03-28 16:38:47 -04:00
0e8eaa2f0d
Update .gitignore to include generated noble-lab-ui-urls.md and enhance README.md with new role documentation. Refactor noble.yml to incorporate noble_landing_urls role for improved URL management. Add ingress configurations for alertmanager, prometheus, longhorn, and vault to support TLS termination via Traefik. Update network policies and values.yaml for vault to allow traffic from Traefik. These changes aim to streamline deployment and enhance service accessibility.
Nikholas Pcenicni
2026-03-28 16:32:21 -04:00
a48ac16c14
Update .gitignore to include .env file and enhance README.md with instructions for deploying secrets. Refactor noble.yml to improve Kubernetes health check handling and update templates for error reporting. Modify cert-manager and metallb tasks to apply secrets from .env and adjust timeout settings. Clarify Newt installation requirements in tasks. These changes aim to streamline deployment processes and improve documentation clarity.
Nikholas Pcenicni
2026-03-28 15:36:52 -04:00
46cedc965f
Refactor Argo CD application management by removing noble-kyverno and noble-platform configurations, transitioning to Ansible-driven installations. Update documentation to clarify the optional nature of app-of-apps and the role of kustomization.yaml as an empty resource holder. Ensure users are informed about the need to delete stale Applications when migrating from previous configurations.
Nikholas Pcenicni
2026-03-28 15:17:54 -04:00
207cdca0cf
Enhance Kyverno configuration in values.yaml by adding support for two replicas and enabling API priority and fairness. This update aims to improve resilience during rolling restarts and manage API traffic more effectively under load.
Nikholas Pcenicni
2026-03-28 02:55:47 -04:00
bf185b71a9
Enhance Kyverno's performance by increasing Kubernetes client QPS and burst limits in values.yaml to prevent rate limiting issues under load. This adjustment aims to improve the stability of the Kyverno health lease during high API/etcd usage.
Nikholas Pcenicni
2026-03-28 02:50:23 -04:00
fc985932fe
Update cert-manager configurations to use DNS-01 challenge with Cloudflare for both production and staging ClusterIssuers. Modify README.md to reflect the new DNS-01 setup and provide instructions for creating the necessary Cloudflare API token secret. This change enhances certificate issuance reliability when using Cloudflare's proxy services.
Nikholas Pcenicni
2026-03-28 02:41:51 -04:00
ee7669c788
Update Argo CD application configurations for noble-platform to include sync wave annotations and enhance documentation. Remove redundant Helm chart definitions, clarify application roles in README.md, and implement retry logic for improved deployment resilience.
Nikholas Pcenicni
2026-03-28 02:29:23 -04:00
90cd34c34f
Enable cert-manager for admission webhook TLS in kube-prometheus-stack values.yaml to prevent Kyverno pre-hook Job failures during Argo sync. Update noble-platform.yaml to adjust Helm chart sources and maintain proper order for Kyverno and kube-prometheus-stack, ensuring correct resource management and deployment flow.
Nikholas Pcenicni
2026-03-28 02:25:59 -04:00
1a3c8378d4
Update Argo CD application configuration to use HEAD as the target revision in both root-application.yaml and noble-platform.yaml, enhancing clarity in documentation regarding repository tracking. This change supports a more dynamic reference to the latest code in the repository.
Nikholas Pcenicni
2026-03-28 02:20:35 -04:00
05717c7e6a
Refactor Argo CD application configuration to adopt a multi-source approach for noble-platform, removing Helm chart definitions from kustomization.yaml. Update noble-platform.yaml to directly reference Helm chart sources and clarify documentation in README.md and apps/README.md regarding the new structure and resource representation in the UI.
Nikholas Pcenicni
2026-03-28 02:18:02 -04:00
0dd642f0c5
Add server-side apply option for large CRDs in noble-platform.yaml to avoid kubectl annotation limit
Nikholas Pcenicni
2026-03-28 02:15:32 -04:00
0a6c9976da
Refactor Argo CD application configuration to utilize a single source for the noble-platform, consolidating Helm chart management within kustomization.yaml. Update values.yaml to enable Helm inflation and revise documentation in README.md and apps/README.md to clarify the new structure and improve UI representation of resources.
Nikholas Pcenicni
2026-03-28 02:13:36 -04:00
c5319a5436
Refactor Argo CD application configuration to utilize plain Kustomize for YAML resources and streamline Helm chart management. Update kustomization.yaml to remove Helm chart definitions, shifting to a multi-source approach in noble-platform.yaml. Revise documentation in README.md and apps/README.md to clarify the new structure and eliminate the need for Helm inflation in values.yaml.
Nikholas Pcenicni
2026-03-28 02:10:44 -04:00
c148454e91
Refine Argo CD documentation and configuration. Update README.md to clarify the relationship between noble-root and child applications, and enhance instructions for syncing workloads. Modify root-application.yaml to specify the use of kustomization.yaml for cluster workloads. Adjust values.yaml to enable Helm inflation for Kustomize charts. Update apps/README.md to streamline application management and clarify deployment processes.
Nikholas Pcenicni
2026-03-28 02:05:09 -04:00
445a1ac211
Update Headlamp and Vault documentation; enhance RBAC configurations in Argo CD. Modify Headlamp README to clarify sessionTTL handling and ServiceAccount permissions. Add Cilium network policy instructions to Vault README. Update Argo CD values.yaml for default RBAC settings, ensuring local admin retains full access while new users start with read-only permissions. Reflect these changes in CLUSTER-BUILD.md.
Nikholas Pcenicni
2026-03-28 02:02:17 -04:00
906c24b1d5
Remove obsolete Ansible configuration files and playbooks for Proxmox VM management, including ansible.cfg, README.md, inventory samples, and various playbooks. This cleanup eliminates unused roles and tasks, streamlining the project structure.
Nikholas Pcenicni
2026-03-28 01:43:25 -04:00
d5f38bd766
Update README.md and CLUSTER-BUILD.md to enhance documentation for Vault Kubernetes auth and ClusterSecretStore integration. Add one-shot configuration instructions for Kubernetes auth in README.md, and update CLUSTER-BUILD.md to reflect the current state of the Talos cluster, including new components like Headlamp and Renovate, along with their deployment details and next steps.
Nikholas Pcenicni
2026-03-28 01:41:52 -04:00
a65b553252
Stop tracking talos kubeconfig; remove Authentik token from git; add Newt kubeseal example
Nikholas Pcenicni
2026-03-28 01:19:58 -04:00
a5e624f542
Update CLUSTER-BUILD.md to reflect the current state of the Talos cluster, detailing progress through Phase D (observability) and advancements in Phase E (secrets). Include updates on Sealed Secrets, External Secrets Operator, and Vault configurations, along with deployment instructions and next steps for Kubernetes auth and ClusterSecretStore integration. Mark relevant tasks as completed and outline remaining objectives for future phases.
Nikholas Pcenicni
2026-03-28 01:17:22 -04:00
d2b52f3518
Enhance CLUSTER-BUILD.md with updates on the Talos cluster's current state, focusing on Phase D (observability) and next steps for Phase E (secrets). Clarify kube-prometheus-stack and Loki configurations, and update deployment instructions for Grafana and Fluent Bit integration. Mark tasks related to observability as completed and outline future phases for improved clarity.
Nikholas Pcenicni
2026-03-28 00:59:08 -04:00
2b4f568632
Update kube-prometheus-stack values.yaml to clarify Loki datasource configuration and enhance observability documentation in CLUSTER-BUILD.md. Include deployment instructions for Loki and Fluent Bit, and mark tasks related to Grafana integration as completed.
Nikholas Pcenicni
2026-03-28 00:56:49 -04:00
7caba0d90c
Update CLUSTER-BUILD.md to include kube-prometheus-stack Helm chart details, enhance observability phase with Grafana ingress configuration, and clarify deployment instructions for monitoring components. Mark tasks as completed for kube-prometheus-stack installation and PVC binding on Longhorn.
Nikholas Pcenicni
2026-03-28 00:28:54 -04:00
fd4afef992
Update Argo CD README and root-application.yaml to clarify prerequisites, enhance Ingress configuration with Traefik and cert-manager, and specify finalizer guidance for resource deletion. Adjust instructions for accessing the Argo CD UI and managing applications.
Nikholas Pcenicni
2026-03-27 23:57:25 -04:00
092a6febe4
Update Argo CD values.yaml to configure Ingress with Traefik, enable TLS with cert-manager, and set server to insecure mode. Adjust domain settings and service type to ClusterIP for improved deployment configuration.
Nikholas Pcenicni
2026-03-27 23:47:40 -04:00
2a64f40f93
Enable pre-upgrade job for Longhorn in values.yaml, update MetalLB README for clarity on LoadBalancer IP assignment, and enhance Talos configuration with node IP validation for VIPs. Update cluster build documentation to reflect new application versions and configurations.
Nikholas Pcenicni
2026-03-27 23:45:00 -04:00
d2c53fc553
Remove deprecated Argo CD application configurations and related files for noble cluster, including root-application.yaml, kustomization.yaml, and individual application manifests for argocd, cilium, longhorn, kube-vip, and monitoring components. Update kube-vip daemonset.yaml to enhance deployment strategy and environment variables for improved configuration.
Nikholas Pcenicni
2026-03-27 23:02:17 -04:00
4263da65d8
Update Cilium application.yaml to enhance ignoreDifferences for cilium-operator Deployment and improve Helm sync handling. Modify kube-vip daemonset.yaml to adjust VIP interface and add new environment variables for better configuration. Update README.md with troubleshooting tips for kube-vip and Helm upgrade conflicts.
Nikholas Pcenicni
2026-03-27 19:29:54 -04:00
ae5bfdf2f7
Update Cilium application configuration to ignore differences for hubble-server-certs Secret, add Helm value files for better management, and enhance Argo CD kustomization with resource ordering and sync options.
Nikholas Pcenicni
2026-03-27 19:16:31 -04:00
55833b2593
Enhance Longhorn application configuration by adding skipCrds option and retry settings to improve deployment resilience and error handling.
Nikholas Pcenicni
2026-03-27 17:47:54 -04:00
76700a7b3f
Update Longhorn application configuration to specify targetRevision as "1.11.1" and add sync options for PruneLast and ServerSideApply to enhance deployment management.
Nikholas Pcenicni
2026-03-27 16:40:55 -04:00
8cacf5f5de
Enhance monitoring configurations by enabling persistence for Loki and updating storage settings for Prometheus and Alertmanager to use Longhorn. Add Longhorn application to kustomization.yaml for improved storage management.
Nikholas Pcenicni
2026-03-27 16:27:58 -04:00
036f8ef37e
Update monitoring configurations to disable persistence in Loki and add emptyDir storage for Prometheus and Alertmanager
Nikholas Pcenicni
2026-03-27 04:26:25 -04:00
769e3125ee
Add targetRevision to kube-prometheus-stack and loki-stack configurations for version flexibility
Nikholas Pcenicni
2026-03-27 04:22:42 -04:00
df25d1ac2b
Add monitoring applications to kustomization.yaml for enhanced observability
Nikholas Pcenicni
2026-03-27 04:21:11 -04:00
d39b253693
Update Argo CD configuration by enabling service in kube-vip daemonset, replacing argocd-ingress with argocd-server-lb, and updating documentation to reflect changes.
Nikholas Pcenicni
2026-03-27 04:06:52 -04:00
cbbbf1cfc3
Update argocd-ingress configuration to set backend protocol to HTTPS and add TLS settings for secure ingress.
Nikholas Pcenicni
2026-03-27 04:04:06 -04:00
369ab99cd1
Update Cilium application configuration to enable ingress controller and remove deprecated argocd-server service patch; delete Proxmox VM template files.
Nikholas Pcenicni
2026-03-27 04:01:40 -04:00
c927409356
Rename argocd-server service to argocd-server-lan and add selector in service patch
Nikholas Pcenicni
2026-03-27 03:53:47 -04:00
dda831cb82
Add argocd-server service patch to ArgoCD kustomization
Nikholas Pcenicni
2026-03-27 03:52:57 -04:00
51d55af86e
Update .gitignore and refactor Ubuntu template playbook to use role for Proxmox template management
Nikholas Pcenicni
2026-03-27 03:48:32 -04:00
Nikholas Pcenicni
Nikholas Pcenicni