3 лет назад · 226b673a51
--- a/.DS_Store
+++ b/.DS_Store
--- a/README.md
+++ b/README.md
@@ -0,0 +1,61 @@
 
				+# k8s-kaisers-info
			
 
				+
			
 
				+All services deployed for kaisers.info as GitOps-capable k8s deployment
			
 
				+
			
 
				+## Cluster
			
 
				+### k3s
			
 
				+<img src="docs/img/logo-k3s.svg" width="100" height="100" />
			
 
				+
			
 
				+```
			
 
				+curl -sfL https://get.k3s.io | sh -s - server --disable-local-storage
			
 
				+```
			
 
				+
			
 
				+### Cert-Manager CRDs
			
 
				+```
			
 
				+kubectl apply -f https://github.com/cert-manager/cert-manager/releases/download/v1.8.0/cert-manager.yaml
			
 
				+```
			
 
				+
			
 
				+### ArgoCD
			
 
				+```
			
 
				+helm install -n argocd argo-cd argo/argo-cd --create-namespace
			
 
				+kubectl apply -n argocd -f https://raw.githubusercontent.com/argoproj-labs/applicationset/v0.3.0/manifests/install.yaml
			
 
				+// version must fit cert-manager in gitops-kaisers-info
			
 
				+kubectl -n argocd get secret argocd-initial-admin-secret -o jsonpath="{.data.password}" | base64 -d
			
 
				+```
			
 
				+
			
 
				+### Longhorn
			
 
				+```
			
 
				+kubectl apply -f application-longhorn-kaisers-info.yaml
			
 
				+```
			
 
				+### GitOps
			
 
				+```
			
 
				+kubectl apply -f application-gitops-kaisers-info.yaml
			
 
				+```
			
 
				+
			
 
				+## Services
			
 
				+### Services
			
 
				+kubectl apply -f application-services-kaisers-info.yaml
			
 
				+### Nextcloud
			
 
				+kubectl apply -f application-cloud-kaisers-info.yaml
			
 
				+### Wordpress
			
 
				+kubectl apply -f application-blog-kaisers-info.yaml
			
 
				+
			
 
				+
			
 
				+
			
 
				+
			
 
				+
			
 
				+https://artifacthub.io/packages/helm/gitea/gitea
			
 
				+helm repo add gitea https://dl.gitea.io/charts
			
 
				+helm install -n gitea --create-namespace gitea gitea/gitea -f gitea/values.ymal
			
 
				+
			
 
				+https://artifacthub.io/packages/helm/argo/argo-cd
			
 
				+helm repo add argo https://argoproj.github.io/argo-helm
			
 
				+helm install -n argocd --create-namespace argo-cd argo/argo-cd -f argo-cd/values.yaml
			
 
				+
			
 
				+https://artifacthub.io/packages/helm/crossplane/crossplane
			
 
				+helm repo add crossplane-stable https://charts.crossplane.io/stable
			
 
				+helm install -n crossplane --create-namespace crossplane crossplane/crossplane -f crossplane/values.yaml
			
 
				+
			
 
				+https://artifacthub.io/packages/helm/goauthentik/authentik
			
 
				+helm repo add goauthentik https://charts.goauthentik.io/
			
 
				+helm install -n authentik --create-namespace authentik goauthentik/authentik -f authentik/values.yaml
			
--- a/docs/.DS_Store
+++ b/docs/.DS_Store
--- a/docs/img/logo-k3s.svg
+++ b/docs/img/logo-k3s.svg
@@ -0,0 +1 @@
 
				+<svg id="Layer_1" data-name="Layer 1" xmlns="http://www.w3.org/2000/svg" viewBox="0 0 287.36395 111.36238"><defs><style>.cls-1{fill:#384745;}.cls-2{fill:#ffc61c;}</style></defs><path class="cls-1" d="M163.81972,30.43153H176.3161V44.57461c0,1.57118-.22411,3.89019-.37392,5.6124h.29962a42.96588,42.96588,0,0,1,3.14237-4.71476l12.34717-15.04072h13.46893L188.73818,50.26131l17.36034,30.67946H191.73134L180.0577,59.76513l-3.7416,4.565V80.94077H163.81972Z"/><path class="cls-1" d="M218.29711,65.07792c-1.34708,4.86336,1.42137,7.93143,5.6118,7.93143,4.71415,0,7.10868-3.74161,7.10868-9.0544,0-5.6867-2.84335-7.85591-6.65986-7.85591a9.07616,9.07616,0,0,0-6.21043,2.39453l-5.3877-5.83773L228.399,39.71h-18.5576v-9.2785h31.054v9.80223L228.92268,50.1115c7.63241-.74783,14.89091,4.26533,14.89091,13.99326,0,10.55128-8.60557,17.73487-19.45586,17.73487-10.251,0-18.85662-6.36024-16.6119-15.266Z"/><path class="cls-1" d="M259.30374,64.33009c-.89765,4.04.67354,8.67926,8.60557,8.67926,5.23727,0,7.03378-2.09491,7.03378-4.86458,0-4.18982-4.191-5.23727-9.12991-7.03256-7.40709-2.54556-16.53638-6.13614-16.53638-16.68741,0-9.42831,7.25849-15.19053,19.60445-14.89091,15.11623.2984,19.38156,9.2042,17.73487,16.91152L275.1672,47.49286c.74905-5.83651-1.34708-9.1299-7.25789-9.1299-3.96571,0-6.211,1.4981-6.211,4.64046,0,4.18982,4.04062,5.46138,8.97949,7.18359,7.633,2.54313,16.68619,5.61241,16.68619,16.087,0,9.05439-6.73416,15.56566-19.90407,15.56566-12.34657,0-20.80233-5.68792-19.08073-16.46209Z"/><path class="cls-2" d="M121.58689,0H14.39255A14.43487,14.43487,0,0,0,0,14.39247V96.96991a14.43487,14.43487,0,0,0,14.39255,14.39247H121.58689a14.43487,14.43487,0,0,0,14.39255-14.39247V14.39247A14.43487,14.43487,0,0,0,121.58689,0ZM57.45811,80.98065,31.29766,96.18344A6.99993,6.99993,0,1,1,24.26348,84.079L50.42393,68.87626a6.99993,6.99993,0,1,1,7.03418,12.10439Zm10.2915-23.16221h-.03145A6.99967,6.99967,0,0,1,60.74893,50.788l.13125-30.13725a7.00056,7.00056,0,0,1,6.99931-6.96958h.03145a6.99991,6.99991,0,0,1,6.96924,7.03042l-.13125,30.13725A7.00056,7.00056,0,0,1,67.74961,57.81844Zm46.2875,35.81006a6.997,6.997,0,0,1-9.56211,2.56211L78.27627,81.06473a6.99994,6.99994,0,1,1,7-12.12421L111.475,84.06639A6.99956,6.99956,0,0,1,114.03711,93.6285Z"/></svg>
			
--- a/gitops-kaisers-info/templates/sealed-secrets.yaml
+++ b/gitops-kaisers-info/templates/sealed-secrets.yaml
@@ -1,13 +1,13 @@
 
				 apiVersion: argoproj.io/v1alpha1
			
 
				 kind: Application
			
 
				 metadata:
			
 
				-  name: cert-manager
			
 
				+  name: sealed-secrets
			
 
				   namespace: {{ .Values.spec.namespace }}
			
 
				   finalizers:
			
 
				   - resources-finalizer.argocd.argoproj.io
			
 
				 spec:
			
 
				   destination:
			
 
				-    namespace: "cert-manager"
			
 
				+    namespace: "sealed-secrets"
			
 
				     name: {{ .Values.spec.destination.name }}
			
 
				   project: {{ .Values.spec.project }}
			
 
				   syncPolicy:
			
@@ -15,48 +15,8 @@ spec:
 
				       prune: true
			
 
				       selfHeal: true
			
 
				   source:
			
 
				-    chart: "cert-manager"
			
 
				-    repoURL: "https://charts.jetstack.io"
			
 
				-    targetRevision: "1.8.0"
			
 
				+    chart: "sealed-secrets"
			
 
				+    repoURL: "https://charts.bitnami.com/bitnami"
			
 
				+    targetRevision: "1.0.3"
			
 
				     helm:
			
 
				-      releaseName: cert-manager
			
 
				----
			
 
				-apiVersion: cert-manager.io/v1
			
 
				-kind: ClusterIssuer
			
 
				-metadata:
			
 
				-  name: "letsencrypt-staging"
			
 
				-  namespace: "cert-manager"
			
 
				-spec:
			
 
				-  acme:
			
 
				-    email: "admin@kaisers.info" # replace this
			
 
				-    privateKeySecretRef:
			
 
				-      name: "staging-issuer-account-key"
			
 
				-    server: "https://acme-staging-v02.api.letsencrypt.org/directory"
			
 
				-    solvers:
			
 
				-      - http01:
			
 
				-          ingress:
			
 
				-            class: "traefik"
			
 
				-            ingressTemplate:
			
 
				-              metadata:
			
 
				-                annotations:
			
 
				-                  kubernetes.io/ingress.class: "traefik"
			
 
				----
			
 
				-apiVersion: cert-manager.io/v1
			
 
				-kind: ClusterIssuer
			
 
				-metadata:
			
 
				-  name: "letsencrypt-prod"
			
 
				-  namespace: "cert-manager"
			
 
				-spec:
			
 
				-  acme:
			
 
				-    email: "admin@kaisers.info" # replace this
			
 
				-    privateKeySecretRef:
			
 
				-      name: "prod-issuer-account-key"
			
 
				-    server: "https://acme-v02.api.letsencrypt.org/directory"
			
 
				-    solvers:
			
 
				-      - http01:
			
 
				-          ingress:
			
 
				-            class: "traefik"
			
 
				-            ingressTemplate:
			
 
				-              metadata:
			
 
				-                annotations:
			
 
				-                  kubernetes.io/ingress.class: "traefik"
			
 
				+      releaseName: sealed-secrets