207cdca0cf
Enhance Kyverno configuration in values.yaml by adding support for two replicas and enabling API priority and fairness. This update aims to improve resilience during rolling restarts and manage API traffic more effectively under load.
Nikholas Pcenicni
2026-03-28 02:55:47 -04:00
bf185b71a9
Enhance Kyverno's performance by increasing Kubernetes client QPS and burst limits in values.yaml to prevent rate limiting issues under load. This adjustment aims to improve the stability of the Kyverno health lease during high API/etcd usage.
Nikholas Pcenicni
2026-03-28 02:50:23 -04:00
fc985932fe
Update cert-manager configurations to use DNS-01 challenge with Cloudflare for both production and staging ClusterIssuers. Modify README.md to reflect the new DNS-01 setup and provide instructions for creating the necessary Cloudflare API token secret. This change enhances certificate issuance reliability when using Cloudflare's proxy services.
Nikholas Pcenicni
2026-03-28 02:41:51 -04:00
ee7669c788
Update Argo CD application configurations for noble-platform to include sync wave annotations and enhance documentation. Remove redundant Helm chart definitions, clarify application roles in README.md, and implement retry logic for improved deployment resilience.
Nikholas Pcenicni
2026-03-28 02:29:23 -04:00
90cd34c34f
Enable cert-manager for admission webhook TLS in kube-prometheus-stack values.yaml to prevent Kyverno pre-hook Job failures during Argo sync. Update noble-platform.yaml to adjust Helm chart sources and maintain proper order for Kyverno and kube-prometheus-stack, ensuring correct resource management and deployment flow.
Nikholas Pcenicni
2026-03-28 02:25:59 -04:00
1a3c8378d4
Update Argo CD application configuration to use HEAD as the target revision in both root-application.yaml and noble-platform.yaml, enhancing clarity in documentation regarding repository tracking. This change supports a more dynamic reference to the latest code in the repository.
Nikholas Pcenicni
2026-03-28 02:20:35 -04:00
05717c7e6a
Refactor Argo CD application configuration to adopt a multi-source approach for noble-platform, removing Helm chart definitions from kustomization.yaml. Update noble-platform.yaml to directly reference Helm chart sources and clarify documentation in README.md and apps/README.md regarding the new structure and resource representation in the UI.
Nikholas Pcenicni
2026-03-28 02:18:02 -04:00
0dd642f0c5
Add server-side apply option for large CRDs in noble-platform.yaml to avoid kubectl annotation limit
Nikholas Pcenicni
2026-03-28 02:15:32 -04:00
0a6c9976da
Refactor Argo CD application configuration to utilize a single source for the noble-platform, consolidating Helm chart management within kustomization.yaml. Update values.yaml to enable Helm inflation and revise documentation in README.md and apps/README.md to clarify the new structure and improve UI representation of resources.
Nikholas Pcenicni
2026-03-28 02:13:36 -04:00
c5319a5436
Refactor Argo CD application configuration to utilize plain Kustomize for YAML resources and streamline Helm chart management. Update kustomization.yaml to remove Helm chart definitions, shifting to a multi-source approach in noble-platform.yaml. Revise documentation in README.md and apps/README.md to clarify the new structure and eliminate the need for Helm inflation in values.yaml.
Nikholas Pcenicni
2026-03-28 02:10:44 -04:00
c148454e91
Refine Argo CD documentation and configuration. Update README.md to clarify the relationship between noble-root and child applications, and enhance instructions for syncing workloads. Modify root-application.yaml to specify the use of kustomization.yaml for cluster workloads. Adjust values.yaml to enable Helm inflation for Kustomize charts. Update apps/README.md to streamline application management and clarify deployment processes.
Nikholas Pcenicni
2026-03-28 02:05:09 -04:00
445a1ac211
Update Headlamp and Vault documentation; enhance RBAC configurations in Argo CD. Modify Headlamp README to clarify sessionTTL handling and ServiceAccount permissions. Add Cilium network policy instructions to Vault README. Update Argo CD values.yaml for default RBAC settings, ensuring local admin retains full access while new users start with read-only permissions. Reflect these changes in CLUSTER-BUILD.md.
Nikholas Pcenicni
2026-03-28 02:02:17 -04:00
906c24b1d5
Remove obsolete Ansible configuration files and playbooks for Proxmox VM management, including ansible.cfg, README.md, inventory samples, and various playbooks. This cleanup eliminates unused roles and tasks, streamlining the project structure.
Nikholas Pcenicni
2026-03-28 01:43:25 -04:00
d5f38bd766
Update README.md and CLUSTER-BUILD.md to enhance documentation for Vault Kubernetes auth and ClusterSecretStore integration. Add one-shot configuration instructions for Kubernetes auth in README.md, and update CLUSTER-BUILD.md to reflect the current state of the Talos cluster, including new components like Headlamp and Renovate, along with their deployment details and next steps.
Nikholas Pcenicni
2026-03-28 01:41:52 -04:00
a65b553252
Stop tracking talos kubeconfig; remove Authentik token from git; add Newt kubeseal example
Nikholas Pcenicni
2026-03-28 01:19:58 -04:00
a5e624f542
Update CLUSTER-BUILD.md to reflect the current state of the Talos cluster, detailing progress through Phase D (observability) and advancements in Phase E (secrets). Include updates on Sealed Secrets, External Secrets Operator, and Vault configurations, along with deployment instructions and next steps for Kubernetes auth and ClusterSecretStore integration. Mark relevant tasks as completed and outline remaining objectives for future phases.
Nikholas Pcenicni
2026-03-28 01:17:22 -04:00
d2b52f3518
Enhance CLUSTER-BUILD.md with updates on the Talos cluster's current state, focusing on Phase D (observability) and next steps for Phase E (secrets). Clarify kube-prometheus-stack and Loki configurations, and update deployment instructions for Grafana and Fluent Bit integration. Mark tasks related to observability as completed and outline future phases for improved clarity.
Nikholas Pcenicni
2026-03-28 00:59:08 -04:00
2b4f568632
Update kube-prometheus-stack values.yaml to clarify Loki datasource configuration and enhance observability documentation in CLUSTER-BUILD.md. Include deployment instructions for Loki and Fluent Bit, and mark tasks related to Grafana integration as completed.
Nikholas Pcenicni
2026-03-28 00:56:49 -04:00
7caba0d90c
Update CLUSTER-BUILD.md to include kube-prometheus-stack Helm chart details, enhance observability phase with Grafana ingress configuration, and clarify deployment instructions for monitoring components. Mark tasks as completed for kube-prometheus-stack installation and PVC binding on Longhorn.
Nikholas Pcenicni
2026-03-28 00:28:54 -04:00
fd4afef992
Update Argo CD README and root-application.yaml to clarify prerequisites, enhance Ingress configuration with Traefik and cert-manager, and specify finalizer guidance for resource deletion. Adjust instructions for accessing the Argo CD UI and managing applications.
Nikholas Pcenicni
2026-03-27 23:57:25 -04:00
092a6febe4
Update Argo CD values.yaml to configure Ingress with Traefik, enable TLS with cert-manager, and set server to insecure mode. Adjust domain settings and service type to ClusterIP for improved deployment configuration.
Nikholas Pcenicni
2026-03-27 23:47:40 -04:00
2a64f40f93
Enable pre-upgrade job for Longhorn in values.yaml, update MetalLB README for clarity on LoadBalancer IP assignment, and enhance Talos configuration with node IP validation for VIPs. Update cluster build documentation to reflect new application versions and configurations.
Nikholas Pcenicni
2026-03-27 23:45:00 -04:00
d2c53fc553
Remove deprecated Argo CD application configurations and related files for noble cluster, including root-application.yaml, kustomization.yaml, and individual application manifests for argocd, cilium, longhorn, kube-vip, and monitoring components. Update kube-vip daemonset.yaml to enhance deployment strategy and environment variables for improved configuration.
Nikholas Pcenicni
2026-03-27 23:02:17 -04:00
4263da65d8
Update Cilium application.yaml to enhance ignoreDifferences for cilium-operator Deployment and improve Helm sync handling. Modify kube-vip daemonset.yaml to adjust VIP interface and add new environment variables for better configuration. Update README.md with troubleshooting tips for kube-vip and Helm upgrade conflicts.
Nikholas Pcenicni
2026-03-27 19:29:54 -04:00
ae5bfdf2f7
Update Cilium application configuration to ignore differences for hubble-server-certs Secret, add Helm value files for better management, and enhance Argo CD kustomization with resource ordering and sync options.
Nikholas Pcenicni
2026-03-27 19:16:31 -04:00
55833b2593
Enhance Longhorn application configuration by adding skipCrds option and retry settings to improve deployment resilience and error handling.
Nikholas Pcenicni
2026-03-27 17:47:54 -04:00
76700a7b3f
Update Longhorn application configuration to specify targetRevision as "1.11.1" and add sync options for PruneLast and ServerSideApply to enhance deployment management.
Nikholas Pcenicni
2026-03-27 16:40:55 -04:00
8cacf5f5de
Enhance monitoring configurations by enabling persistence for Loki and updating storage settings for Prometheus and Alertmanager to use Longhorn. Add Longhorn application to kustomization.yaml for improved storage management.
Nikholas Pcenicni
2026-03-27 16:27:58 -04:00
036f8ef37e
Update monitoring configurations to disable persistence in Loki and add emptyDir storage for Prometheus and Alertmanager
Nikholas Pcenicni
2026-03-27 04:26:25 -04:00
769e3125ee
Add targetRevision to kube-prometheus-stack and loki-stack configurations for version flexibility
Nikholas Pcenicni
2026-03-27 04:22:42 -04:00
df25d1ac2b
Add monitoring applications to kustomization.yaml for enhanced observability
Nikholas Pcenicni
2026-03-27 04:21:11 -04:00
d39b253693
Update Argo CD configuration by enabling service in kube-vip daemonset, replacing argocd-ingress with argocd-server-lb, and updating documentation to reflect changes.
Nikholas Pcenicni
2026-03-27 04:06:52 -04:00
cbbbf1cfc3
Update argocd-ingress configuration to set backend protocol to HTTPS and add TLS settings for secure ingress.
Nikholas Pcenicni
2026-03-27 04:04:06 -04:00
369ab99cd1
Update Cilium application configuration to enable ingress controller and remove deprecated argocd-server service patch; delete Proxmox VM template files.
Nikholas Pcenicni
2026-03-27 04:01:40 -04:00
c927409356
Rename argocd-server service to argocd-server-lan and add selector in service patch
Nikholas Pcenicni
2026-03-27 03:53:47 -04:00
dda831cb82
Add argocd-server service patch to ArgoCD kustomization
Nikholas Pcenicni
2026-03-27 03:52:57 -04:00
51d55af86e
Update .gitignore and refactor Ubuntu template playbook to use role for Proxmox template management
Nikholas Pcenicni
2026-03-27 03:48:32 -04:00
fcb2119859
feat: Introduce an Ansible common role for base system configuration, including packages, users, and Netplan networking, alongside Semaphore playbooks for system bootstrapping and Proxmox management.
Nikholas Pcenicni
2026-01-19 03:47:55 -05:00
7be62c7a45
chore: Update .gitignore rule for ansible hosts file to reflect its new inventory subdirectory.
Nikholas Pcenicni
2026-01-19 03:21:27 -05:00
75b2702c9a
feat: Integrate Authentik OIDC into Semaphore and enhance Proxmox VM template creation with image list selection and SSH key management.
Nikholas Pcenicni
2026-01-19 02:35:33 -05:00
91cb5ba36f
feat: add roles_path to ansible.cfg and rename Mastodon's compose.yml to compose.yaml
Nikholas Pcenicni
2026-01-19 02:07:33 -05:00
Nikholas Pcenicni
Nikholas Pcenicni