71 Commits

Author SHA1 Message Date
4c62bfa7b8 feat: replace gluetun-auth ConfigMap with ip-reporter service for public IP retrieval 2026-05-12 22:56:07 +09:00
b2024efb7e fix: correct syntax for auth configuration in gluetun ConfigMap 2026-05-12 22:46:36 +09:00
d310a8ba16 fix: update gluetun-auth ConfigMap to use correct syntax for routes 2026-05-12 22:43:36 +09:00
6e5b8fa241 feat: add gluetun authentication ConfigMap and mount it in qBittorrent deployment 2026-05-12 22:41:45 +09:00
5275c5186a Added setting to disable auth 2026-05-12 22:37:51 +09:00
8bc36e4a0b feat: add name to web port in qBittorrent service configuration 2026-05-12 22:34:02 +09:00
3209a13ed6 feat: enhance Dashy configuration with new Downloads section and integrate gluetun API for VPN IP display
feat: update qBittorrent deployment to expose gluetun API on port 8000 and add TLS certificate for secure access
feat: add gluetun DNS entry to Pi-hole configuration for improved network management
2026-05-12 22:32:20 +09:00
b9638c0ad9 feat: enable BLOCK_IPV6 in JDownloader and qBittorrent configurations 2026-05-12 20:12:07 +09:00
7742509a29 feat: update SERVER_REGIONS value to 'Hong Kong' in JDownloader and qBittorrent configurations 2026-05-12 20:06:34 +09:00
95b27c4eb2 feat: update SERVER_REGIONS value to 'JP Tokyo' in JDownloader and qBittorrent configurations 2026-05-12 20:00:25 +09:00
d2b36080a6 feat: update VPN_TYPE to openvpn in JDownloader and qBittorrent configurations 2026-05-12 19:59:05 +09:00
cfce656854 feat: add gluetun VPN container and pia-credentials management for secure connections 2026-05-12 19:52:56 +09:00
0aa886b6a2 feat: update qBittorrent image version to 5.2.0 2026-05-10 01:32:10 +09:00
4cc3af39d6 feat: update README files to enhance documentation for Ansible, Argo CD, and Kubernetes manifests 2026-05-06 19:42:33 +09:00
f9b0e53988 Move file 2026-05-06 01:44:28 +09:00
0c0254b03d feat: add CA sync service account, roles, role bindings, and cron job for certificate rotation management 2026-05-06 01:21:22 +09:00
7f1462658b feat: update Immich server and machine learning images to v2.7.5 2026-05-01 19:50:22 +09:00
1ceb8209bc feat: add Immich database credentials and deployment configuration 2026-05-01 19:43:09 +09:00
861f9c9688 feat: increased timeout limit 2026-04-21 23:21:34 +09:00
54d368d462 feat: add ai-gateway deployment and service configuration with TLS support 2026-04-21 22:04:22 +09:00
91f8167323 refactor: remove 'ollama-external.yaml' and its manual exclusion from ArgoCD application 2026-04-21 17:16:25 +09:00
7d2fde96ae feat: add Ollama role with installation, configuration, and service exposure for K3s cluster 2026-04-21 16:43:44 +09:00
2bccbc14ef feat: implement cnl-bridge service for handling crawljob requests in JDownloader 2026-04-13 00:06:08 +09:00
054d7470cf feat: add clicknload port configuration and IngressRoute for JDownloader 2026-04-12 23:45:26 +09:00
970cf1ba4d fix: update readiness and liveness probes to use tcpSocket instead of grpc 2026-04-09 22:45:38 +09:00
fd4cb3e0e5 feat: add TLS configuration for Discord Bot and HA Gateway 2026-04-09 22:40:46 +09:00
364a1314f5 feat: add TLS certificate configurations for HA Gateway and Discord Bot 2026-04-09 22:24:45 +09:00
bacd56f420 fix: update email addresses for Let's Encrypt configuration in cert-manager and Traefik 2026-04-09 21:46:40 +09:00
1b1026182d fix: update HA_GATEWAY_ADDR to use home-services namespace and add registry secret script 2026-04-07 23:07:56 +09:00
d7b12765db feat: update namespaces to home-services for Discord and HA components 2026-04-07 22:40:03 +09:00
53e7e32d5a feat: add Discord and Home Assistant integration with sealed secrets and deployments 2026-04-06 21:14:47 +09:00
c470c60b4a wire rate limit middleware to portfolio IngressRoute 2026-03-26 23:52:45 +09:00
4f194ce720 move Tempo datasource to kube-prometheus-stack values, remove ConfigMap 2026-03-25 21:55:09 +09:00
14f0e7c43c feat: add OTel Collector, Tempo, Traefik OTLP tracing 2026-03-25 20:17:47 +09:00
45541f1b08 argocd: fix argocd-oidc-secret label for ArgoCD secret ref 2026-03-21 20:44:00 +09:00
40ec0966de argocd: A4 - OIDC login via Authentik, argocd-config app 2026-03-21 20:38:47 +09:00
0fc43fa163 gitea: revert postgresql to plaintext, remove postgresql sealed secret 2026-03-21 15:49:51 +09:00
b667757f5a removed gitea runner setting since runner are running as systemd 2026-03-21 15:17:57 +09:00
c383ad8db3 Added runner secret sealed 2026-03-21 15:08:00 +09:00
fb853c6d47 Added ca for the gitea runner 2026-03-21 15:04:25 +09:00
45eb496d13 argocd migration: A3 - sealed secrets, gitea, monitoring, loki apps 2026-03-21 14:47:11 +09:00
d82d467b2b Added Argocd for better gitops management 2026-03-21 13:50:28 +09:00
863e66577c Added homeassistant to the homelab 2026-03-18 23:45:30 +09:00
b47a48e306 Updated README and added deployment comment on files 2026-03-18 00:58:15 +09:00
c2136771e6 Added imagePullPolicy to keep the image always on latest 2026-03-18 00:28:36 +09:00
01e7a48403 Add portfolio to homelab 2026-03-18 00:06:47 +09:00
26c4234dc6 Migrate gitea to gitea.nik4nao.com 2026-03-17 22:45:03 +09:00
e49ea43596 Add Photoview and the corresponding address in Pihole 2026-03-17 21:52:48 +09:00
6a665449d7 Cleanup, fixed broken traefik middleware for auth 2026-03-13 23:11:53 +09:00
83f46c9748 feat(gitea): add backup CronJob with RBAC and NFS support
feat(gitea): create PersistentVolume and PersistentVolumeClaim for Gitea

feat(gitea): add script to create Gitea runner registration token secret

feat(gitea): deploy Gitea Actions runner with Docker socket access

feat(media): deploy JDownloader with Ingress configuration

feat(media): set up Jellyfin media server with NFS and Ingress

feat(media): configure qBittorrent deployment with Ingress

feat(monitoring): add Grafana Loki datasource ConfigMap

feat(monitoring): create Grafana admin credentials secret

feat(monitoring): define PersistentVolumes for monitoring stack

feat(network): implement DDNS CronJob for Porkbun DNS updates

feat(network): create secret for Porkbun DDNS API credentials

feat(network): set up Glances service and Ingress for Debian node

fix(network): patch Pi-hole DNS services with external IPs

feat(network): configure Traefik dashboard Ingress with Authentik auth

feat(network): set up Watch Party service and Ingress for Mac Mini

refactor(values): update Helm values files for various services
2026-03-12 21:56:32 +09:00