chore(deps): update ghcr.io/goauthentik/proxy docker tag to v2024.12.1

Merge pull request 'traefik-certmanager: update image tag to 2' (#446 ) from 2_traefik-certmanager_prod into main
traefik-certmanager: update image tag to 2 (done automagically via Woodpecker pipeline)
2024-12-23 16:02:26 +00:00 · 2024-12-23 08:51:07 +01:00 · 2024-12-23 07:50:59 +00:00 · 2024-12-22 19:41:27 +01:00 · 2024-12-22 19:41:06 +01:00 · 2024-12-22 19:04:26 +01:00
9 changed files with 116 additions and 37 deletions
--- a/app-files/apps.yaml
+++ b/app-files/apps.yaml
@ -29,7 +29,7 @@ spec:
  sources:
    - chart: woodpecker
      repoURL: https://woodpecker-ci.org/
-      targetRevision: 2.0.2
+      targetRevision: 2.0.3
      helm:
        releaseName: woodpecker
        valueFiles:
--- a/app-files/core-deployments.yaml
+++ b/app-files/core-deployments.yaml
@ -39,7 +39,7 @@ spec:
  sources:
    - repoURL: https://argoproj.github.io/argo-helm
      chart: argo-cd
-      targetRevision: 7.7.10
+      targetRevision: 7.7.11
      helm:
        releaseName: argo
        valueFiles:
@ -460,3 +460,23 @@ spec:
      - CreateNamespace=true
    automated:
      prune: false
 ---
 apiVersion: argoproj.io/v1alpha1
 kind: Application
 metadata:
  name: traefik-certmanager
  namespace: argocd
 spec:
  project: default
  source:
    repoURL: https://git.ar21.de/yolokube/core-deployments.git
    targetRevision: HEAD
    path: traefik-certmanager/overlay
  destination:
    server: https://kubernetes.default.svc
    namespace: traefik
  syncPolicy:
    syncOptions:
      - CreateNamespace=true
    automated:
      prune: false
--- a/authentik/manifest.yaml
+++ b/authentik/manifest.yaml
@ -92,7 +92,7 @@ spec:
                secretKeyRef:
                  key: authentik_host_insecure
                  name: authentik-outpost-api
-          image: ghcr.io/goauthentik/proxy:2024.10.5
+          image: ghcr.io/goauthentik/proxy:2024.12.1
          name: proxy
          ports:
            - containerPort: 9000
--- a/longhorn/values.yaml
+++ b/longhorn/values.yaml
@ -12,6 +12,7 @@ persistence:
      "isGroup":false
    }
  ]'
  disableRevisionCounter: false
 defaultSettings:
  defaultDataPath: /storage1
  backupTarget: "s3://yolokube-backups@weur/"
--- a/traefik-certmanager/base/kustomization.yaml
+++ b/traefik-certmanager/base/kustomization.yaml
@ -0,0 +1,5 @@
 ---
 apiVersion: kustomize.config.k8s.io/v1beta1
 kind: Kustomization
 resources:
  - traefik-certmanager.yaml
--- a/traefik-certmanager/base/traefik-certmanager.yaml
+++ b/traefik-certmanager/base/traefik-certmanager.yaml
@ -0,0 +1,66 @@
 # from https://github.com/ncsa/traefik-certmanager
 #
 # Used to automatically create cert request for IngressRoute Objects
 #
 # Added by Aaron
 ---
 apiVersion: v1
 kind: ServiceAccount
 metadata:
  name: traefik-certmanager
  namespace: traefik
 ---
 kind: ClusterRole
 apiVersion: rbac.authorization.k8s.io/v1
 metadata:
  name: traefik-certmanager
 rules:
 - apiGroups: ["traefik.io"]
  resources: ["ingressroutes"]
  verbs: ["watch", "patch"]
 - apiGroups: ["cert-manager.io"]
  resources: ["certificates"]
  verbs: ["get", "create", "delete"]
 ---
 kind: ClusterRoleBinding
 apiVersion: rbac.authorization.k8s.io/v1
 metadata:
  name: traefik-certmanager
 subjects:
 - kind: ServiceAccount
  name: traefik-certmanager
  namespace: traefik
 roleRef:
  kind: ClusterRole
  name: traefik-certmanager
  apiGroup: rbac.authorization.k8s.io
 ---
 apiVersion: apps/v1
 kind: Deployment
 metadata:
  name: traefik-certmanager
  namespace: traefik
 spec:
  replicas: 1
  selector:
    matchLabels:
      app.kubernetes.io/name: traefik-certmanager
  template:
    metadata:
      labels:
        app.kubernetes.io/name: traefik-certmanager
    spec:
      serviceAccount: traefik-certmanager
      containers:
      - name: traefik-certmanager
        image: git.ar21.de/yolokube/traefik-certmanager:latest
        imagePullPolicy: Always
        env:
        - name: ISSUER_NAME
          value: letsencrypt-prod
        - name: ISSUER_KIND
          value: ClusterIssuer
        - name: CERT_CLEANUP
          value: "true"
        - name: PATCH_SECRETNAME
          value: "true"
--- a/traefik-certmanager/overlay/kustomization.yaml
+++ b/traefik-certmanager/overlay/kustomization.yaml
@ -0,0 +1,8 @@
 resources:
 - ../base
 apiVersion: kustomize.config.k8s.io/v1beta1
 kind: Kustomization
 images:
 - name: git.ar21.de/yolokube/traefik-certmanager
  newName: git.ar21.de/yolokube/traefik-certmanager
  newTag: "2"
--- a/traefik/dashboard-cert.yaml
+++ b/traefik/dashboard-cert.yaml
@ -1,13 +0,0 @@
 ---
 apiVersion: cert-manager.io/v1
 kind: Certificate
 metadata:
  name: traefik-cert
  namespace: traefik
 spec:
  secretName: traefik-tls-key
  issuerRef:
    name: letsencrypt-prod
    kind: ClusterIssuer
  dnsNames:
    - traefik.services.yolokube.de
--- a/woodpecker/grpc-ingress/ingress.yaml
+++ b/woodpecker/grpc-ingress/ingress.yaml
@ -16,28 +16,20 @@ spec:
      port: 9000
      targetPort: grpc
 ---
-apiVersion: networking.k8s.io/v1
+apiVersion: traefik.io/v1alpha1
-kind: Ingress
+kind: IngressRoute
 metadata:
  annotations:
    kubernetes.io/tls-acme: "true"
    traefik.ingress.kubernetes.io/loadbalancer.server.scheme: h2c
    traefik.ingress.kubernetes.io/service.serversscheme: h2c
  name: woodpecker-grpc
  namespace: woodpecker
  name: woodpecker-grpc
 spec:
-  rules:
+  entryPoints:
-    - host: "woodpecker-grpc.apps.yolokube.de"
+    - websecure
-      http:
+  routes:
-        paths:
+    - kind: Rule
-          - pathType: Prefix
+      match: Host(`woodpecker-grpc.apps.yolokube.de`) && Header(`Content-Type`, `application/grpc`)
-            path: "/"
+      services:
-            backend:
+        - name: woodpecker-grpc
-              service:
+          port: grpc
-                name: woodpecker-grpc
+          scheme: h2c
                port:
                  name: grpc
  tls:
-    - hosts:
+    secretName: woodpecker-grpc-tls-key
        - woodpecker-grpc.apps.yolokube.de
      secretName: woodpecker-grpc-tls-key
Author	SHA1	Message	Date
Renovate Bot	f9fba09257	chore(deps): update ghcr.io/goauthentik/proxy docker tag to v2024.12.1	2024-12-23 16:02:26 +00:00
Woodpecker CI	d6149d3776	Merge pull request 'traefik-certmanager: update image tag to 2' (#446 ) from 2_traefik-certmanager_prod into main	2024-12-23 08:51:07 +01:00
tom	df5a0bbc51	traefik-certmanager: update image tag to 2 (done automagically via Woodpecker pipeline)	2024-12-23 07:50:59 +00:00
Aaron Riedel	7e372b22d0	Merge pull request 'bump' (#445 ) from bump-again into main Reviewed-on: #445	2024-12-22 19:41:27 +01:00
Aaron Riedel	a75173a8b6	bump	2024-12-22 19:41:06 +01:00
Aaron Riedel	938810692a	Merge pull request 'bump version for traefik-certmanager' (#444 ) from bump-version into main Reviewed-on: #444	2024-12-22 19:04:26 +01:00
Aaron Riedel	dcb0d1649f	bump version for traefik-certmanager	2024-12-22 19:04:08 +01:00
Aaron Riedel	f66a016af6	Merge pull request 'add traefik-certmanager' (#443 ) from ar-add-traefik-certmanager into main Reviewed-on: #443	2024-12-22 18:56:57 +01:00
Aaron Riedel	3fbcf0294a	add traefik-certmanager	2024-12-22 18:56:40 +01:00
Aaron Riedel	82e18b5db7	Merge pull request 'Revert "Merge pull request 'chore(woodpecker): remove deprecated chart URL' (#439 ) from tn-adjust-woodpecker-url into main"' (#442 ) from ar-new-ingress-woodpecker into main Reviewed-on: #442	2024-12-22 18:36:12 +01:00
Aaron Riedel	440bd10432	Revert "Merge pull request 'chore(woodpecker): remove deprecated chart URL' (#439 ) from tn-adjust-woodpecker-url into main" This reverts commit `dbdce019db`, reversing changes made to `d10867b542`.	2024-12-22 18:34:34 +01:00
Aaron Riedel	4e6caed22a	Merge pull request 'ar-new-ingress-woodpecker' (#441 ) from ar-new-ingress-woodpecker into main Reviewed-on: #441	2024-12-22 18:21:06 +01:00
Aaron Riedel	d44c9fbc34	new ingressroute for woodpecker	2024-12-22 18:20:55 +01:00
Renovate Bot	689aecd870	chore(deps): update ghcr.io/woodpecker-ci/helm/woodpecker docker tag to v2.0.3	2024-12-22 16:16:55 +00:00
Aaron Riedel	dbdce019db	Merge pull request 'chore(woodpecker): remove deprecated chart URL' (#439 ) from tn-adjust-woodpecker-url into main Reviewed-on: #439 Reviewed-by: Aaron Riedel <git@ar21.de>	2024-12-22 17:10:48 +01:00
Tom Neuber	d772cb55ff	chore(woodpecker): remove deprecated chart URL	2024-12-21 20:33:40 +01:00
Tom Neuber	d10867b542	Merge pull request 'Update Helm release argo-cd to v7.7.11' (#438 ) from renovate/argo-cd-7.x into main Reviewed-on: #438	2024-12-21 18:19:38 +01:00
Renovate Bot	6a300830b5	Update Helm release argo-cd to v7.7.11	2024-12-21 13:02:10 +00:00
Aaron Riedel	f4796e756f	Merge pull request '[longhorn] disableRevisionCounter: false' (#437 ) from ar-fix-longhorn into main Reviewed-on: #437	2024-12-19 22:11:19 +01:00
Aaron Riedel	bcc870f0f9	[longhorn] disableRevisionCounter: false	2024-12-19 22:10:45 +01:00