shahab/homelab
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

feat: MediaServices | add ingress for arr services

Browse Source
This commit is contained in:
Shahab Dogar
2025-11-29 13:20:31 +05:00
parent 33a8dcdaf2
commit 2c57f8005d
6 changed files with 92 additions and 13 deletions
Download Patch File Download Diff File Expand all files Collapse all files

1
media-services/index.ts
View File

@@ -76,6 +76,7 @@ export class MediaServices extends TerraformStack {
new ProwlarrServer(this, "prowlarr", { new ProwlarrServer(this, "prowlarr", {
provider, provider,
namespace, namespace,
host: "prowlarr.dogar.dev",
}); });
} }
} }

15
media-services/jellyfin/index.ts
View File

@@ -2,7 +2,11 @@ import { Construct } from "constructs";
import { DeploymentV1 } from "@cdktf/provider-kubernetes/lib/deployment-v1"; import { DeploymentV1 } from "@cdktf/provider-kubernetes/lib/deployment-v1";
import { ServiceV1 } from "@cdktf/provider-kubernetes/lib/service-v1"; import { ServiceV1 } from "@cdktf/provider-kubernetes/lib/service-v1";
import { InternalIngressRoute, LonghornPvc } from "../../utils"; import {
CloudflareCertificate,
InternalIngressRoute,
LonghornPvc,
} from "../../utils";
import { BaseMediaServiceOptions, getAamil3NodeSelector } from "../types"; import { BaseMediaServiceOptions, getAamil3NodeSelector } from "../types";
type JellyfinServerOptions = BaseMediaServiceOptions & { type JellyfinServerOptions = BaseMediaServiceOptions & {
@@ -137,6 +141,14 @@ export class JellyfinServer extends Construct {
}, },
}); });
new CloudflareCertificate(this, "certificate", {
provider,
namespace,
name,
secretName: "jellyfin-tls",
dnsNames: [host],
});
// Ingress - using internal ingress for secure access // Ingress - using internal ingress for secure access
new InternalIngressRoute(this, "ingress", { new InternalIngressRoute(this, "ingress", {
provider, provider,
@@ -145,6 +157,7 @@ export class JellyfinServer extends Construct {
host, host,
serviceName: name, serviceName: name,
servicePort: 80, servicePort: 80,
tlsSecretName: "jellyfin-tls",
}); });
} }
} }

35
media-services/prowlarr/index.ts
View File

@@ -2,18 +2,27 @@ import { Construct } from "constructs";
import { DeploymentV1 } from "@cdktf/provider-kubernetes/lib/deployment-v1"; import { DeploymentV1 } from "@cdktf/provider-kubernetes/lib/deployment-v1";
import { ServiceV1 } from "@cdktf/provider-kubernetes/lib/service-v1"; import { ServiceV1 } from "@cdktf/provider-kubernetes/lib/service-v1";
import { LonghornPvc } from "../../utils"; import {
InternalIngressRoute,
LonghornPvc,
PrivateCertificate,
} from "../../utils";
import { import {
BaseMediaServiceOptions, BaseMediaServiceOptions,
getWorkerNodeSelector, getWorkerNodeSelector,
getCommonEnv, getCommonEnv,
} from "../types"; } from "../types";
type ProwlarrOptions = BaseMediaServiceOptions & {
/** Hostname for the ingress */
host: string;
};
export class ProwlarrServer extends Construct { export class ProwlarrServer extends Construct {
constructor(scope: Construct, id: string, options: BaseMediaServiceOptions) { constructor(scope: Construct, id: string, options: ProwlarrOptions) {
super(scope, id); super(scope, id);
const { provider, namespace } = options; const { provider, namespace, host } = options;
const name = "prowlarr"; const name = "prowlarr";
// Config PVC with backup // Config PVC with backup
@@ -102,6 +111,24 @@ export class ProwlarrServer extends Construct {
}, },
}); });
// Note: No ingress - Prowlarr is for internal use only new PrivateCertificate(this, "certificate", {
provider,
namespace,
name,
commonName: host,
dnsNames: [host],
secretName: `${name}-tls`,
});
// Ingress
new InternalIngressRoute(this, "ingress", {
provider,
namespace,
name,
host,
serviceName: name,
servicePort: 80,
tlsSecretName: `${name}-tls`,
});
} }
} }

22
media-services/qbittorrent/index.ts
View File

@@ -2,7 +2,11 @@ import { Construct } from "constructs";
import { DeploymentV1 } from "@cdktf/provider-kubernetes/lib/deployment-v1"; import { DeploymentV1 } from "@cdktf/provider-kubernetes/lib/deployment-v1";
import { ServiceV1 } from "@cdktf/provider-kubernetes/lib/service-v1"; import { ServiceV1 } from "@cdktf/provider-kubernetes/lib/service-v1";
import { InternalIngressRoute, LonghornPvc } from "../../utils"; import {
InternalIngressRoute,
LonghornPvc,
PrivateCertificate,
} from "../../utils";
import { import {
BaseMediaServiceOptions, BaseMediaServiceOptions,
getAamil3NodeSelector, getAamil3NodeSelector,
@@ -17,11 +21,7 @@ type QBittorrentServerOptions = BaseMediaServiceOptions & {
}; };
export class QBittorrentServer extends Construct { export class QBittorrentServer extends Construct {
constructor( constructor(scope: Construct, id: string, options: QBittorrentServerOptions) {
scope: Construct,
id: string,
options: QBittorrentServerOptions,
) {
super(scope, id); super(scope, id);
const { provider, namespace, downloadsPvcName, host } = options; const { provider, namespace, downloadsPvcName, host } = options;
@@ -137,6 +137,15 @@ export class QBittorrentServer extends Construct {
}, },
}); });
new PrivateCertificate(this, "certificate", {
provider,
namespace,
name,
commonName: host,
dnsNames: [host],
secretName: `${name}-tls`,
});
// Ingress // Ingress
new InternalIngressRoute(this, "ingress", { new InternalIngressRoute(this, "ingress", {
provider, provider,
@@ -145,6 +154,7 @@ export class QBittorrentServer extends Construct {
host, host,
serviceName: name, serviceName: name,
servicePort: 80, servicePort: 80,
tlsSecretName: `${name}-tls`,
}); });
} }
} }

16
media-services/radarr/index.ts
View File

@@ -2,7 +2,11 @@ import { Construct } from "constructs";
import { DeploymentV1 } from "@cdktf/provider-kubernetes/lib/deployment-v1"; import { DeploymentV1 } from "@cdktf/provider-kubernetes/lib/deployment-v1";
import { ServiceV1 } from "@cdktf/provider-kubernetes/lib/service-v1"; import { ServiceV1 } from "@cdktf/provider-kubernetes/lib/service-v1";
import { InternalIngressRoute, LonghornPvc } from "../../utils"; import {
InternalIngressRoute,
LonghornPvc,
PrivateCertificate,
} from "../../utils";
import { import {
BaseMediaServiceOptions, BaseMediaServiceOptions,
getAamil3NodeSelector, getAamil3NodeSelector,
@@ -132,6 +136,15 @@ export class RadarrServer extends Construct {
}, },
}); });
new PrivateCertificate(this, "certificate", {
provider,
namespace,
name,
commonName: host,
dnsNames: [host],
secretName: `${name}-tls`,
});
// Ingress // Ingress
new InternalIngressRoute(this, "ingress", { new InternalIngressRoute(this, "ingress", {
provider, provider,
@@ -140,6 +153,7 @@ export class RadarrServer extends Construct {
host, host,
serviceName: name, serviceName: name,
servicePort: 80, servicePort: 80,
tlsSecretName: `${name}-tls`,
}); });
} }
} }

16
media-services/sonarr/index.ts
View File

@@ -2,7 +2,11 @@ import { Construct } from "constructs";
import { DeploymentV1 } from "@cdktf/provider-kubernetes/lib/deployment-v1"; import { DeploymentV1 } from "@cdktf/provider-kubernetes/lib/deployment-v1";
import { ServiceV1 } from "@cdktf/provider-kubernetes/lib/service-v1"; import { ServiceV1 } from "@cdktf/provider-kubernetes/lib/service-v1";
import { InternalIngressRoute, LonghornPvc } from "../../utils"; import {
InternalIngressRoute,
LonghornPvc,
PrivateCertificate,
} from "../../utils";
import { import {
BaseMediaServiceOptions, BaseMediaServiceOptions,
getAamil3NodeSelector, getAamil3NodeSelector,
@@ -132,6 +136,15 @@ export class SonarrServer extends Construct {
}, },
}); });
new PrivateCertificate(this, "certificate", {
provider,
namespace,
name,
commonName: host,
dnsNames: [host],
secretName: `${name}-tls`,
});
// Ingress // Ingress
new InternalIngressRoute(this, "ingress", { new InternalIngressRoute(this, "ingress", {
provider, provider,
@@ -140,6 +153,7 @@ export class SonarrServer extends Construct {
host, host,
serviceName: name, serviceName: name,
servicePort: 80, servicePort: 80,
tlsSecretName: `${name}-tls`,
}); });
} }
} }