Update Helm release grafana to v9.3.0

README.md

@@ -1,7 +1,7 @@
 # Kluster setup and IaaC using argoCD
 
 
-### Description
+### Initial setup
 #### Requirements:
 - A running k3s instance
 - `sealedsecrets` deployed
@@ -27,21 +27,20 @@ The app-of-apps will bootstrap a fully featured cluster with the following compo
     - immich
     - ...
 
-## Setup instructions
+#### Recap
-1. install sealedsecrets see [README](./infrastructure/sealedsecrets/README.md)
+- install sealedsecrets see [README](./infrastructure/sealedsecrets/README.md)
     ```bash
     kubectl apply -k infrastructure/sealedsecrets
     kubectl apply -f infrastructure/sealedsecrets/main.key
     kubectl delete pod -n kube-system -l name=sealed-secrets-controller
     ```
-1. install argocd and the app-of-apps bundled with it
+- install argocd
     ```bash
     kubectl apply -k infrastructure/argocd
     ```
+- wait...
 
 
-> NOTE: The argocd kustomization already mentions some CRDs available only after the full bootstrapping (traefik). You might have to apply the last step twice
-
 ### Adding an application
 todo
 

apps/adguard/kustomization.yaml

@@ -10,7 +10,7 @@ resources:
 images:
   - name: adguard/adguardhome
     newName: adguard/adguardhome
-    newTag: v0.107.65
+    newTag: v0.107.63
 
 namespace: adguard
 

apps/code-server/kustomization.yaml

@@ -12,4 +12,4 @@ namespace: code-server
 images:
   - name: code-server
     newName: ghcr.io/coder/code-server
-    newTag: 4.103.2-fedora
+    newTag: 4.101.2-fedora

apps/grafana/kustomization.yaml

@@ -17,5 +17,5 @@ helmCharts:
   - releaseName: grafana
     name: grafana
     repo: https://grafana.github.io/helm-charts
-    version: 9.2.10
+    version: 9.3.0
     valuesFile: grafana.values.yaml

apps/immich/kustomization.yaml

@@ -22,9 +22,9 @@ helmCharts:
 
 images:
   - name: ghcr.io/immich-app/immich-machine-learning
-    newTag: v1.136.0
+    newTag: v1.135.3
   - name: ghcr.io/immich-app/immich-server
-    newTag: v1.136.0
+    newTag: v1.135.3
 
 
 patches:

apps/minecraft/job.yaml

@@ -42,7 +42,7 @@ spec:
               name: curseforge-api
               key: key
         - name: CF_PAGE_URL
-          value: "https://www.curseforge.com/minecraft/modpacks/vault-hunters-1-18-2/files/6807187"
+          value: "https://www.curseforge.com/minecraft/modpacks/vault-hunters-1-18-2/files/6644480"
         - name: VERSION
           value: "1.18.2"
         - name: INIT_MEMORY

apps/paperless/kustomization.yaml

@@ -21,7 +21,7 @@ helmCharts:
   - name: redis
     releaseName: redis
     repo: https://charts.bitnami.com/bitnami
-    version: 21.2.14
+    version: 21.2.13
     valuesInline:
       auth:
         enabled: false

apps/stump/kustomization.yaml

@@ -14,4 +14,4 @@ namespace: stump
 images:
   - name: stump
     newName: aaronleopold/stump
-    newTag: "0.0.11"
+    newTag: "0.0.10"

infrastructure/argocd/kustomization.yaml

@@ -4,7 +4,7 @@ kind: Kustomization
 namespace: argocd
 resources:
   - namespace.yaml
-  - https://github.com/argoproj/argo-cd//manifests/cluster-install?timeout=120&ref=v3.0.12
+  - https://github.com/argoproj/argo-cd//manifests/cluster-install?timeout=120&ref=v3.0.11
   - ingress.yaml
   - argo-apps.application.yaml
   - bootstrap-repo.sealedsecret.yaml

infrastructure/authelia/kustomization.yaml

@@ -27,6 +27,6 @@ images:
 helmCharts:
   - name: authelia
     releaseName: authelia
-    version: 0.10.42
+    version: 0.10.41
     repo: https://charts.authelia.com
     valuesFile: authelia.values.yaml

infrastructure/gitea/kustomization.yaml

@@ -23,6 +23,6 @@ helmCharts:
   - name: gitea
     namespace: gitea # needs to be set explicitly for svc to be referenced correctly
     releaseName: gitea
-    version: 12.1.2
+    version: 12.0.0
     valuesFile: gitea.values.yaml
     repo: https://dl.gitea.io/charts/

infrastructure/metallb-system/ipaddresspool.yaml

@@ -2,6 +2,7 @@ apiVersion: metallb.io/v1beta1
 kind: IPAddressPool
 metadata:
   name: default
+  namespace: metallb-system
 spec:
   addresses:
     - 192.168.3.0/24
@@ -9,8 +10,5 @@ spec:
 apiVersion: metallb.io/v1beta1
 kind: L2Advertisement
 metadata:
-  name: default
+  name: empty
-# selector is left empty on purpose to match all IPAddressPools
+  namespace: metallb-system
-# spec:
-#   ipAddressPools:
-#   - default

infrastructure/metallb-system/kustomization.yaml

@@ -1,12 +1,15 @@
 apiVersion: kustomize.config.k8s.io/v1beta1
 kind: Kustomization
+resources: 
+  - namespace.yaml
+  - ipaddresspool.yaml
 
 namespace: metallb-system
 
-resources:
-  # - namespace.yaml
-  # namespace is already included in the remote kustomization
-  # - github.com/metallb/metallb/config/native?ref=v0.15.2
-  - github.com/metallb/metallb/config/frr?ref=v0.15.2
-  - ipaddresspool.yaml
 
+helmCharts:
+  - name: metallb
+    repo: https://metallb.github.io/metallb
+    version: 0.15.2
+    releaseName: metallb
+    valuesFile: values.yaml

infrastructure/metallb-system/namespace.yaml

@@ -1,6 +1,6 @@
 apiVersion: v1
 kind: Namespace
 metadata:
-  name: metallb-system
+  name: placeholder
-  # labels:
+  labels:
-    # pod-security.kubernetes.io/enforce: privileged
+    pod-security.kubernetes.io/enforce: privileged 

infrastructure/traefik-system/configmap.yaml

@@ -71,7 +71,7 @@ data:
         address = ":9100"
       
       [entryPoints.traefik]
-        address = ":8080"
+        address = ":9000"
       
       [entryPoints.dnsovertls]
         address = ":8853"

infrastructure/traefik-system/values.yaml

@@ -23,7 +23,8 @@ ingressClass:
   # true is not unit-testable yet, pending https://github.com/rancher/helm-unittest/pull/12
   enabled: true
   isDefaultClass: true
-
+  # Use to force a networking.k8s.io API Version for certain CI/CD applications. E.g. "v1beta1"
+  fallbackApiVersion: ""
 
 # Activate Pilot integration
 pilot:
@@ -66,8 +67,7 @@ providers:
   kubernetesIngress:
     enabled: true
     allowExternalNameServices: true
-    # Ingresses missing the annotation, having an empty value, or the value traefik are processed by default.
+    ingressClass: traefik
-    # ingressClass: traefik
     # labelSelector: environment=production,method=traefik