Block a user
fc985932fe
Update cert-manager configurations to use DNS-01 challenge with Cloudflare for both production and staging ClusterIssuers. Modify README.md to reflect the new DNS-01 setup and provide instructions for creating the necessary Cloudflare API token secret. This change enhances certificate issuance reliability when using Cloudflare's proxy services.
ee7669c788
Update Argo CD application configurations for noble-platform to include sync wave annotations and enhance documentation. Remove redundant Helm chart definitions, clarify application roles in README.md, and implement retry logic for improved deployment resilience.
90cd34c34f
Enable cert-manager for admission webhook TLS in kube-prometheus-stack values.yaml to prevent Kyverno pre-hook Job failures during Argo sync. Update noble-platform.yaml to adjust Helm chart sources and maintain proper order for Kyverno and kube-prometheus-stack, ensuring correct resource management and deployment flow.
1a3c8378d4
Update Argo CD application configuration to use HEAD as the target revision in both root-application.yaml and noble-platform.yaml, enhancing clarity in documentation regarding repository tracking. This change supports a more dynamic reference to the latest code in the repository.
05717c7e6a
Refactor Argo CD application configuration to adopt a multi-source approach for noble-platform, removing Helm chart definitions from kustomization.yaml. Update noble-platform.yaml to directly reference Helm chart sources and clarify documentation in README.md and apps/README.md regarding the new structure and resource representation in the UI.
0dd642f0c5
Add server-side apply option for large CRDs in noble-platform.yaml to avoid kubectl annotation limit
0a6c9976da
Refactor Argo CD application configuration to utilize a single source for the noble-platform, consolidating Helm chart management within kustomization.yaml. Update values.yaml to enable Helm inflation and revise documentation in README.md and apps/README.md to clarify the new structure and improve UI representation of resources.
c5319a5436
Refactor Argo CD application configuration to utilize plain Kustomize for YAML resources and streamline Helm chart management. Update kustomization.yaml to remove Helm chart definitions, shifting to a multi-source approach in noble-platform.yaml. Revise documentation in README.md and apps/README.md to clarify the new structure and eliminate the need for Helm inflation in values.yaml.
c148454e91
Refine Argo CD documentation and configuration. Update README.md to clarify the relationship between noble-root and child applications, and enhance instructions for syncing workloads. Modify root-application.yaml to specify the use of kustomization.yaml for cluster workloads. Adjust values.yaml to enable Helm inflation for Kustomize charts. Update apps/README.md to streamline application management and clarify deployment processes.
445a1ac211
Update Headlamp and Vault documentation; enhance RBAC configurations in Argo CD. Modify Headlamp README to clarify sessionTTL handling and ServiceAccount permissions. Add Cilium network policy instructions to Vault README. Update Argo CD values.yaml for default RBAC settings, ensuring local admin retains full access while new users start with read-only permissions. Reflect these changes in CLUSTER-BUILD.md.
906c24b1d5
Remove obsolete Ansible configuration files and playbooks for Proxmox VM management, including ansible.cfg, README.md, inventory samples, and various playbooks. This cleanup eliminates unused roles and tasks, streamlining the project structure.
d5f38bd766
Update README.md and CLUSTER-BUILD.md to enhance documentation for Vault Kubernetes auth and ClusterSecretStore integration. Add one-shot configuration instructions for Kubernetes auth in README.md, and update CLUSTER-BUILD.md to reflect the current state of the Talos cluster, including new components like Headlamp and Renovate, along with their deployment details and next steps.
a65b553252
Stop tracking talos kubeconfig; remove Authentik token from git; add Newt kubeseal example
a5e624f542
Update CLUSTER-BUILD.md to reflect the current state of the Talos cluster, detailing progress through Phase D (observability) and advancements in Phase E (secrets). Include updates on Sealed Secrets, External Secrets Operator, and Vault configurations, along with deployment instructions and next steps for Kubernetes auth and ClusterSecretStore integration. Mark relevant tasks as completed and outline remaining objectives for future phases.
d2b52f3518
Enhance CLUSTER-BUILD.md with updates on the Talos cluster's current state, focusing on Phase D (observability) and next steps for Phase E (secrets). Clarify kube-prometheus-stack and Loki configurations, and update deployment instructions for Grafana and Fluent Bit integration. Mark tasks related to observability as completed and outline future phases for improved clarity.
2b4f568632
Update kube-prometheus-stack values.yaml to clarify Loki datasource configuration and enhance observability documentation in CLUSTER-BUILD.md. Include deployment instructions for Loki and Fluent Bit, and mark tasks related to Grafana integration as completed.
7caba0d90c
Update CLUSTER-BUILD.md to include kube-prometheus-stack Helm chart details, enhance observability phase with Grafana ingress configuration, and clarify deployment instructions for monitoring components. Mark tasks as completed for kube-prometheus-stack installation and PVC binding on Longhorn.
fd4afef992
Update Argo CD README and root-application.yaml to clarify prerequisites, enhance Ingress configuration with Traefik and cert-manager, and specify finalizer guidance for resource deletion. Adjust instructions for accessing the Argo CD UI and managing applications.
092a6febe4
Update Argo CD values.yaml to configure Ingress with Traefik, enable TLS with cert-manager, and set server to insecure mode. Adjust domain settings and service type to ClusterIP for improved deployment configuration.
2a64f40f93
Enable pre-upgrade job for Longhorn in values.yaml, update MetalLB README for clarity on LoadBalancer IP assignment, and enhance Talos configuration with node IP validation for VIPs. Update cluster build documentation to reflect new application versions and configurations.
d2c53fc553
Remove deprecated Argo CD application configurations and related files for noble cluster, including root-application.yaml, kustomization.yaml, and individual application manifests for argocd, cilium, longhorn, kube-vip, and monitoring components. Update kube-vip daemonset.yaml to enhance deployment strategy and environment variables for improved configuration.