shahab/homelab
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
ecd83b7c3039a3cd54628351b215655118c746ad
homelab/postgres/cluster.yaml
Shahab Dogar 0d4f700b89 feat: NixOS | use LUKS and proper hostname for k3s domain 
feat: NixOS | move cluster config to /master

fix: update all stuff for office network

feat: PiHole | set up DHCP server

chore: Cloudflare | delete api token secret

chore: remove external-dns annotations from ingressed services

fix: PiHole | turn off liveness checks due to host ip

fix: GiteaActions | use encrypted storage for runner

fix: ElasticSearch | use encrypted volumes for storage

fix: Pihole | static mac addresses all caps

feat: NixOS | manual network configuration

fix: NixOS | k3s cluster init point to static ip with tls-san

chore: Postgres | move certificate resources into own file + reduce volume size

fix: Pihole | add ingress class name

sec: NixOS | remove token from git
2024-10-24 13:49:41 +05:00

34 lines
823 B
YAML
Raw Blame History

---
apiVersion: postgresql.cnpg.io/v1
kind: Cluster
metadata:
name: postgres-cluster
namespace: postgres-system
spec:
instances: 3
maxSyncReplicas: 0
primaryUpdateStrategy: unsupervised
certificates:
serverCASecret: postgres-server-cert
serverTLSSecret: postgres-server-cert
clientCASecret: postgres-client-cert
replicationTLSSecret: postgres-client-cert
postgresql:
pg_hba:
- hostssl all shahab all cert
- hostssl sameuser all all cert
enableSuperuserAccess: false
bootstrap:
initdb:
database: postgres
secret:
name: postgres-password
postInitSQL:
- 'CREATE USER shahab SUPERUSER;'
storage:
size: 10Gi
storageClass: longhorn-crypto
walStorage:
size: 1Gi
storageClass: longhorn-crypto
Reference in New Issue View Git Blame Copy Permalink