e50ab36ee6
fix: Longhorn | enable service monitor + fix backup target trailing /
2025-11-16 21:48:20 +05:00
132712f1c0
sec: Ingress | disallow AI bots crawling all domains on all paths
2025-11-16 21:45:28 +05:00
afb9447dca
feat: Minecraft | specify longhorn storage class + add star technology
2025-11-16 20:12:09 +05:00
2a62d2db3c
feat: Gitea | set up gravatar integration
2025-11-16 12:57:59 +05:00
cfe7830606
feat: Gitea | set up minio storage pointing at R2
2025-11-16 12:30:27 +05:00
0900a9d045
fix: incorrect labels for longhorn backup
2025-11-16 05:21:07 +05:00
96a900c265
chore: Gitea | enable metrics scraping for issues and repos
2025-11-15 16:50:40 +05:00
5ee369e563
fix: Gitea | use sslmode verify-full for postgres
2025-11-15 16:33:24 +05:00
865bb6cc5f
fix: Authentik | set topology spread on authentik
2025-11-15 16:30:28 +05:00
40c81382f7
fix: Nginx | set topology spread on ingress controller
2025-11-15 16:24:57 +05:00
d17c8b1b34
feat: Nginx | add local nix cache behind reverse proxy
2025-11-15 13:21:44 +05:00
706cd8e919
fix: Gitea | switch to regular longhorn storage class
2025-11-15 13:19:20 +05:00
c0e0d74e4f
fix: move longhorn onto worker nodepool and update backup target
2025-11-15 13:17:19 +05:00
db25a0ea79
fix: update external dns and move pihole out of k8s cluster
2025-11-15 13:16:04 +05:00
b83f9521b0
fix lab
2025-10-25 16:13:09 +05:00
5438278058
fix: ExternalDNS | update to support pihole 6
2025-10-15 17:45:54 +05:00
fd5259988e
fix: PiHole | unencrypted pvc for easy expansion
2025-10-15 15:39:05 +05:00
1c9b31076c
fix: Pihole | increase pvc size to 10G
2025-10-15 15:11:27 +05:00
1a2a24e965
fix: Gitea | adjust resource limits and requests
2025-10-12 08:16:49 +05:00
e830694d8b
chore: Gitea | increase memory limits
2025-10-12 07:49:40 +05:00
fba7ac98b7
fix: Gitea | use ephemeral storage for package chunk uploads
...
This helps speed up uploads since we use ephemeral storage for the
chunks rather than eating the overhead of encrypted persistant storage
for chunks, followed by copying over chunks to the final package.
2025-10-12 07:46:26 +05:00
f8ee1d5617
fix: Gitea | adjust nginx settings for container registry uploads
2025-10-12 07:16:19 +05:00
eccb361d28
feat: Gitea | remove nginx proxy body limit for container registry uploads
2025-10-12 06:05:46 +05:00
f9ca0fc969
fix: scale authentik back up to 3
2025-10-11 20:40:56 +05:00
c1a0c39129
fix: set gitea ingress class
2025-10-09 12:19:39 +05:00
4ed601c04b
fix: don't reference authentik-postgres secret
2025-10-06 15:30:17 +05:00
88477aabcf
chore: freeing up hardware capacity for minecraft
2025-10-05 13:43:35 +05:00
66998c2fb7
feat: add terrafirmagreg server
2025-10-05 13:19:30 +05:00
caa3851650
fix: update hostname to allow multiple servers on the same domain
...
Also update pvc size
2025-09-28 15:38:48 +05:00
c26e0dbbee
fix: set up port forwards for gtnh
2025-09-22 12:54:39 +05:00
72574a24f2
fix: use default port on gitea server
2025-09-21 18:50:06 +05:00
cc90d7793a
feat: revamp and use single namespace and update to latest versions
2025-09-21 17:53:34 +05:00
9eb127d702
fix: incorrect port forward for 2nd pg cluster
2025-09-04 19:53:54 +05:00
7bd2374322
chore: add secondary postgres cluster tcp rule
2025-09-04 16:42:40 +05:00
f40194e50d
fix: update postgres cert expiry, add cloudflare token secret
2025-07-28 15:36:42 +05:00
b6cb6c70bc
fix: Redis | expose service via LB
2025-07-15 16:39:48 +05:00
910f1d06a3
feat: CDKTF | migrate DNS system to cdktf
2025-07-15 11:25:22 +05:00
b1d0162eb6
fix: remove wikijs and update cnpg operator
2025-01-29 21:42:59 +05:00
96be97beb8
fix: WikiJS | finish setup
2024-12-23 17:48:17 +05:00
bf716f834b
feat: WikiJS | initial setup
2024-12-23 16:02:46 +05:00
30243d86db
fix: Authentik | update version + add rihla auth domain
2024-11-30 15:18:22 +05:00
6dd312ea13
feat: Longhorn | set up automatic backups to R2
2024-10-24 20:11:41 +05:00
33f03970f8
chore: Minio | remove minio
2024-10-24 17:20:42 +05:00
df97a4ca38
feat: Minio | create operator and tenant helm deployments
2024-10-24 17:15:24 +05:00
653ff659f6
fix: ExternalDNS | use pihole secure domain through ingress
2024-10-24 14:13:51 +05:00
4f3b705305
fix: PiHole | remove dnsmasq hosts and use Cloudflare backup DNS
2024-10-24 13:49:41 +05:00
0d4f700b89
feat: NixOS | use LUKS and proper hostname for k3s domain
...
feat: NixOS | move cluster config to /master
fix: update all stuff for office network
feat: PiHole | set up DHCP server
chore: Cloudflare | delete api token secret
chore: remove external-dns annotations from ingressed services
fix: PiHole | turn off liveness checks due to host ip
fix: GiteaActions | use encrypted storage for runner
fix: ElasticSearch | use encrypted volumes for storage
fix: Pihole | static mac addresses all caps
feat: NixOS | manual network configuration
fix: NixOS | k3s cluster init point to static ip with tls-san
chore: Postgres | move certificate resources into own file + reduce volume size
fix: Pihole | add ingress class name
sec: NixOS | remove token from git
2024-10-24 13:49:41 +05:00
5f0cd94f34
chore: use RSA certificates and clusterIP on elasticsearch
2024-10-12 22:31:52 +05:00
f54e6f11de
chore: Network | use nginx as much as possible
2024-10-12 21:11:06 +05:00
058666330a
feat: Gitea | enable smtp mail
2024-10-12 18:58:26 +05:00
