aner/homey
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Big changes

Browse Source
This commit is contained in:
Aner Zakobar
2022-04-08 17:19:32 +03:00
parent cb600f8368
commit a727f0e4d3
10 changed files with 87 additions and 21 deletions
Download Patch File Download Diff File Expand all files Collapse all files
Chart.yaml
-5
View File
@@ -4,8 +4,3 @@ description: Deploy a fancy home environment!
type: application type: application
version: 0.1.0 version: 0.1.0
appVersion: "1.16.0" appVersion: "1.16.0"
dependencies:
- name: kubernetes-secret-generator
repository: "https://helm.mittwald.de"
version: ">= 1.0.0"
README.org
+2 -2
View File
@@ -7,7 +7,7 @@ A home environment for everyone!
Install using Install using
#+begin_src bash #+begin_src bash
helm upgrade --install homey . -n homey
#+end_src #+end_src
* Backing up * Backing up
@@ -39,7 +39,7 @@ UID = USERNAME, that is what is important. (In PHPLdapAdmin it is under User Nam
Now we may continue! Now we may continue!
* GITEA * GITEA
Site Title: whatever Site Title: whatever
templates/dns.yaml
+18 -2
View File
@@ -21,8 +21,8 @@ spec:
image: cytopia/bind image: cytopia/bind
imagePullPolicy: "Always" imagePullPolicy: "Always"
env: env:
- name: WILDCARD_DNS - name: DNS_A
value: "{{ .Values.homey.url }}={{ .Values.homey.ip }}" value: "*.{{ .Values.homey.url }}={{ .Values.homey.ip }}, {{ .Values.homey.url }}={{ .Values.homey.ip }}"
- name: DNS_FORWARDER - name: DNS_FORWARDER
value: "8.8.8.8,8.8.4.4" value: "8.8.8.8,8.8.4.4"
- name: ALLOW_RECURSION - name: ALLOW_RECURSION
@@ -42,3 +42,19 @@ spec:
protocol: UDP protocol: UDP
name: dns-udp name: dns-udp
nodePort: 32053 nodePort: 32053
---
apiVersion: v1
kind: Service
metadata:
name: bind-dns-tcp
spec:
type: NodePort
selector:
app: bind
ports:
- port: 53
targetPort: 53
protocol: TCP
name: dns-tcp
nodePort: 32054
---
templates/gitea.yaml
+7 -1
View File
@@ -4,7 +4,13 @@ kind: Secret
metadata: metadata:
name: gitea-admin-pass name: gitea-admin-pass
annotations: annotations:
secret-generator.v1.mittwald.de/autogenerate: password "helm.sh/resource-policy": "keep"
type: Opaque
data:
{{- $secretObj := (lookup "v1" "Secret" .Release.Namespace "gitea-admin-pass") | default dict }}
{{- $secretData := (get $secretObj "data") | default dict }}
{{- $pass := (get $secretData "password") | default (randAlphaNum 32 | b64enc) }}
password: {{ $pass | quote }}
--- ---
apiVersion: apps/v1 apiVersion: apps/v1
kind: Deployment kind: Deployment
templates/jellyfin.yaml
+14
View File
@@ -49,6 +49,20 @@ spec:
--- ---
apiVersion: v1 apiVersion: v1
kind: Service kind: Service
metadata:
name: jellyfin-web-nodeport
spec:
type: NodePort
selector:
app: jellyfin
ports:
- port: 80
targetPort: 8096
nodePort: 30096
name: jellyfin-web
---
apiVersion: v1
kind: Service
metadata: metadata:
name: jellyfin-external-ports name: jellyfin-external-ports
spec: spec:
templates/ldap.yaml
+21 -3
View File
@@ -4,21 +4,39 @@ kind: Secret
metadata: metadata:
name: openldap-admin name: openldap-admin
annotations: annotations:
secret-generator.v1.mittwald.de/autogenerate: password "helm.sh/resource-policy": "keep"
type: Opaque
data:
{{- $secretObj := (lookup "v1" "Secret" .Release.Namespace "openldap-admin") | default dict }}
{{- $secretData := (get $secretObj "data") | default dict }}
{{- $pass := (get $secretData "password") | default (randAlphaNum 32 | b64enc) }}
password: {{ $pass | quote }}
--- ---
apiVersion: v1 apiVersion: v1
kind: Secret kind: Secret
metadata: metadata:
name: openldap-config name: openldap-config
annotations: annotations:
secret-generator.v1.mittwald.de/autogenerate: password "helm.sh/resource-policy": "keep"
type: Opaque
data:
{{- $secretObj := (lookup "v1" "Secret" .Release.Namespace "openldap-config") | default dict }}
{{- $secretData := (get $secretObj "data") | default dict }}
{{- $pass := (get $secretData "password") | default (randAlphaNum 32 | b64enc) }}
password: {{ $pass | quote }}
--- ---
apiVersion: v1 apiVersion: v1
kind: Secret kind: Secret
metadata: metadata:
name: openldap-ro name: openldap-ro
annotations: annotations:
secret-generator.v1.mittwald.de/autogenerate: password "helm.sh/resource-policy": "keep"
type: Opaque
data:
{{- $secretObj := (lookup "v1" "Secret" .Release.Namespace "openldap-ro") | default dict }}
{{- $secretData := (get $secretObj "data") | default dict }}
{{- $pass := (get $secretData "password") | default (randAlphaNum 32 | b64enc) }}
password: {{ $pass | quote }}
--- ---
apiVersion: apps/v1 apiVersion: apps/v1
kind: Deployment kind: Deployment
templates/nefarious.yaml
+7 -1
View File
@@ -4,7 +4,13 @@ kind: Secret
metadata: metadata:
name: nefarious-admin name: nefarious-admin
annotations: annotations:
secret-generator.v1.mittwald.de/autogenerate: password "helm.sh/resource-policy": "keep"
type: Opaque
data:
{{- $secretObj := (lookup "v1" "Secret" .Release.Namespace "nefarious-admin") | default dict }}
{{- $secretData := (get $secretObj "data") | default dict }}
{{- $pass := (get $secretData "password") | default (randAlphaNum 32 | b64enc) }}
password: {{ $pass | quote }}
--- ---
apiVersion: apps/v1 apiVersion: apps/v1
kind: Deployment kind: Deployment
templates/nextcloud.yaml
+7 -1
View File
@@ -4,7 +4,13 @@ kind: Secret
metadata: metadata:
name: nextcloud-postgres-pass name: nextcloud-postgres-pass
annotations: annotations:
secret-generator.v1.mittwald.de/autogenerate: password "helm.sh/resource-policy": "keep"
type: Opaque
data:
{{- $secretObj := (lookup "v1" "Secret" .Release.Namespace "nextcloud-postgres-pass") | default dict }}
{{- $secretData := (get $secretObj "data") | default dict }}
{{- $pass := (get $secretData "password") | default (randAlphaNum 32 | b64enc) }}
password: {{ $pass | quote }}
--- ---
# apiVersion: extensions/v1beta1 # apiVersion: extensions/v1beta1
apiVersion: v1 apiVersion: v1
templates/photoprism.yaml
+7 -1
View File
@@ -4,7 +4,13 @@ kind: Secret
metadata: metadata:
name: photoprism-admin name: photoprism-admin
annotations: annotations:
secret-generator.v1.mittwald.de/autogenerate: password "helm.sh/resource-policy": "keep"
type: Opaque
data:
{{- $secretObj := (lookup "v1" "Secret" .Release.Namespace "photoprism-admin") | default dict }}
{{- $secretData := (get $secretObj "data") | default dict }}
{{- $pass := (get $secretData "password") | default (randAlphaNum 32 | b64enc) }}
password: {{ $pass | quote }}
--- ---
apiVersion: apps/v1 apiVersion: apps/v1
kind: Deployment kind: Deployment
values.yaml
+4 -5
View File
@@ -54,8 +54,7 @@ ingress:
# hosts: # hosts:
# - chart-example.local # - chart-example.local
resources: {} resources: {} # We usually recommend not to specify default resources and to leave this as a conscious
# We usually recommend not to specify default resources and to leave this as a conscious
# choice for the user. This also increases chances charts run on environments with little # choice for the user. This also increases chances charts run on environments with little
# resources, such as Minikube. If you do want to specify resources, uncomment the following # resources, such as Minikube. If you do want to specify resources, uncomment the following
# lines, adjust them as necessary, and remove the curly braces after 'resources:'. # lines, adjust them as necessary, and remove the curly braces after 'resources:'.
@@ -82,8 +81,8 @@ affinity: {}
homey: homey:
organization: "Zakobar Home Server" organization: "Zakobar Home Server"
storage: storage:
ip: "192.168.0.10" ip: "192.168.1.2"
storageCapacity: 450Gi storageCapacity: 450Gi
url: home.zakobar.io url: zakobar.com
ip: 192.168.0.10 ip: 192.168.1.2