Skip to content

Commit

Permalink
Initial commit for Talos 🚀
Browse files Browse the repository at this point in the history
  • Loading branch information
@tuxpeople
tuxpeople committed Jul 22, 2024
1 parent ebce537 commit f058715
Show file tree
Hide file tree
Showing 373 changed files with 10,937 additions and 47 deletions.
3 changes: 2 additions & 1 deletion .github/renovate.json5
View file
Original file line number Diff line number Diff line change
Expand Up @@ -6,7 +6,8 @@
":disableRateLimiting",
":dependencyDashboard",
":semanticCommits",
":automergeBranch"
":automergeBranch",
"github>bjw-s/home-ops//.github/renovate/grafanaDashboards.json5"
],
"dependencyDashboard": true,
"dependencyDashboardTitle": "Renovate Dashboard 🤖",
Expand Down
12 changes: 12 additions & 0 deletions .sops.yaml
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,12 @@
---
creation_rules:
- # IMPORTANT: This rule MUST be above the others
path_regex: talos/.*\.sops\.ya?ml
key_groups:
- age:
- "age1y0kzuf0tn94a74whazwae4r9qal4snuqfuhl5jacscrpr7up5gts74fe5w"
- path_regex: kubernetes/.*\.sops\.ya?ml
encrypted_regex: "^(data|stringData)$"
key_groups:
- age:
- "age1y0kzuf0tn94a74whazwae4r9qal4snuqfuhl5jacscrpr7up5gts74fe5w"
10 changes: 10 additions & 0 deletions .taskfiles/Talos/Taskfile.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -13,6 +13,16 @@ env:
TALOSCONFIG: "{{.TALOSCONFIG_FILE}}"

tasks:
health:
desc: Check health of the Talos cluster
dir: "{{.KUBERNETES_DIR}}/bootstrap/talos"
cmds:
- talosctl health --server=false
preconditions:
- msg: Missing talosconfig
sh: test -f {{.TALOSCONFIG_FILE}}
- msg: Unable to retrieve Talos config
sh: talosctl config info >/dev/null 2>&1

bootstrap:
desc: Bootstrap the Talos cluster
Expand Down
2 changes: 1 addition & 1 deletion Taskfile.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -36,7 +36,6 @@ includes:
optional: true

tasks:

default: task --list

init:
Expand All @@ -58,6 +57,7 @@ tasks:
- task: .template
- task: sops:encrypt
- task: .validate
- cmd: bash {{.ROOT_DIR}}/scripts/rebuild-kustomizations.sh

.template:
internal: true
Expand Down
2 changes: 1 addition & 1 deletion bootstrap/templates/kubernetes/apps/cert-manager/cert-manager/app/helmrelease.yaml.j2
View file
Original file line number Diff line number Diff line change
Expand Up @@ -8,7 +8,7 @@ spec:
chart:
spec:
chart: cert-manager
version: v1.14.5
version: v1.15.1
sourceRef:
kind: HelmRepository
name: jetstack
Expand Down
4 changes: 2 additions & 2 deletions bootstrap/templates/kubernetes/apps/cert-manager/cert-manager/ks.yaml.j2
View file
Original file line number Diff line number Diff line change
Expand Up @@ -13,7 +13,7 @@ spec:
prune: true
sourceRef:
kind: GitRepository
name: home-kubernetes
name: k8s-homelab
wait: true
interval: 30m
retryInterval: 1m
Expand All @@ -36,7 +36,7 @@ spec:
prune: true
sourceRef:
kind: GitRepository
name: home-kubernetes
name: k8s-homelab
wait: true
interval: 30m
retryInterval: 1m
Expand Down
2 changes: 1 addition & 1 deletion bootstrap/templates/kubernetes/apps/flux-system/webhooks/app/github/receiver.yaml.j2
View file
Original file line number Diff line number Diff line change
Expand Up @@ -13,7 +13,7 @@ spec:
resources:
- apiVersion: source.toolkit.fluxcd.io/v1
kind: GitRepository
name: home-kubernetes
name: k8s-homelab
namespace: flux-system
- apiVersion: kustomize.toolkit.fluxcd.io/v1
kind: Kustomization
Expand Down
2 changes: 1 addition & 1 deletion bootstrap/templates/kubernetes/apps/flux-system/webhooks/ks.yaml.j2
View file
Original file line number Diff line number Diff line change
Expand Up @@ -13,7 +13,7 @@ spec:
prune: true
sourceRef:
kind: GitRepository
name: home-kubernetes
name: k8s-homelab
wait: true
interval: 30m
retryInterval: 1m
Expand Down
2 changes: 1 addition & 1 deletion bootstrap/templates/kubernetes/apps/kube-system/cilium/app/helmrelease.yaml.j2
View file
Original file line number Diff line number Diff line change
Expand Up @@ -8,7 +8,7 @@ spec:
chart:
spec:
chart: cilium
version: 1.15.5
version: 1.15.7
sourceRef:
kind: HelmRepository
name: cilium
Expand Down
4 changes: 2 additions & 2 deletions bootstrap/templates/kubernetes/apps/kube-system/cilium/ks.yaml.j2
View file
Original file line number Diff line number Diff line change
Expand Up @@ -13,7 +13,7 @@ spec:
prune: false # never should be deleted
sourceRef:
kind: GitRepository
name: home-kubernetes
name: k8s-homelab
wait: true
interval: 30m
retryInterval: 1m
Expand All @@ -35,7 +35,7 @@ spec:
prune: false # never should be deleted
sourceRef:
kind: GitRepository
name: home-kubernetes
name: k8s-homelab
wait: false
interval: 30m
retryInterval: 1m
Expand Down
2 changes: 1 addition & 1 deletion bootstrap/templates/kubernetes/apps/kube-system/coredns/app/helmrelease.yaml.j2
View file
Original file line number Diff line number Diff line change
Expand Up @@ -8,7 +8,7 @@ spec:
chart:
spec:
chart: coredns
version: 1.30.0
version: 1.31.0
sourceRef:
kind: HelmRepository
name: coredns
Expand Down
2 changes: 1 addition & 1 deletion bootstrap/templates/kubernetes/apps/kube-system/coredns/ks.yaml.j2
View file
Original file line number Diff line number Diff line change
Expand Up @@ -13,7 +13,7 @@ spec:
prune: false # never should be deleted
sourceRef:
kind: GitRepository
name: home-kubernetes
name: k8s-homelab
wait: false
interval: 30m
retryInterval: 1m
Expand Down
2 changes: 1 addition & 1 deletion bootstrap/templates/kubernetes/apps/kube-system/kubelet-csr-approver/app/helmrelease.yaml.j2
View file
Original file line number Diff line number Diff line change
Expand Up @@ -8,7 +8,7 @@ spec:
chart:
spec:
chart: kubelet-csr-approver
version: 1.2.1
version: 1.2.2
sourceRef:
kind: HelmRepository
name: postfinance
Expand Down
2 changes: 1 addition & 1 deletion bootstrap/templates/kubernetes/apps/kube-system/kubelet-csr-approver/ks.yaml.j2
View file
Original file line number Diff line number Diff line change
Expand Up @@ -13,7 +13,7 @@ spec:
prune: false # never should be deleted
sourceRef:
kind: GitRepository
name: home-kubernetes
name: k8s-homelab
wait: false
interval: 30m
retryInterval: 1m
Expand Down
2 changes: 1 addition & 1 deletion bootstrap/templates/kubernetes/apps/kube-system/metrics-server/ks.yaml.j2
View file
Original file line number Diff line number Diff line change
Expand Up @@ -13,7 +13,7 @@ spec:
prune: true
sourceRef:
kind: GitRepository
name: home-kubernetes
name: k8s-homelab
wait: false
interval: 30m
retryInterval: 1m
Expand Down
2 changes: 1 addition & 1 deletion bootstrap/templates/kubernetes/apps/kube-system/reloader/app/helmrelease.yaml.j2
View file
Original file line number Diff line number Diff line change
Expand Up @@ -8,7 +8,7 @@ spec:
chart:
spec:
chart: reloader
version: 1.0.101
version: 1.0.119
sourceRef:
kind: HelmRepository
name: stakater
Expand Down
2 changes: 1 addition & 1 deletion bootstrap/templates/kubernetes/apps/kube-system/reloader/ks.yaml.j2
View file
Original file line number Diff line number Diff line change
Expand Up @@ -13,7 +13,7 @@ spec:
prune: true
sourceRef:
kind: GitRepository
name: home-kubernetes
name: k8s-homelab
wait: false
interval: 30m
retryInterval: 1m
Expand Down
2 changes: 1 addition & 1 deletion bootstrap/templates/kubernetes/apps/kube-system/spegel/app/helmrelease.yaml.j2
View file
Original file line number Diff line number Diff line change
Expand Up @@ -8,7 +8,7 @@ spec:
chart:
spec:
chart: spegel
version: v0.0.22
version: v0.0.23
sourceRef:
kind: HelmRepository
name: spegel
Expand Down
2 changes: 1 addition & 1 deletion bootstrap/templates/kubernetes/apps/kube-system/spegel/ks.yaml.j2
View file
Original file line number Diff line number Diff line change
Expand Up @@ -13,7 +13,7 @@ spec:
prune: true
sourceRef:
kind: GitRepository
name: home-kubernetes
name: k8s-homelab
wait: false
interval: 30m
retryInterval: 1m
Expand Down
2 changes: 1 addition & 1 deletion bootstrap/templates/kubernetes/apps/network/cloudflared/app/helmrelease.yaml.j2
View file
Original file line number Diff line number Diff line change
Expand Up @@ -30,7 +30,7 @@ spec:
app:
image:
repository: docker.io/cloudflare/cloudflared
tag: 2024.5.0
tag: 2024.6.1
env:
NO_AUTOUPDATE: true
TUNNEL_CRED_FILE: /etc/cloudflared/creds/credentials.json
Expand Down
2 changes: 1 addition & 1 deletion bootstrap/templates/kubernetes/apps/network/cloudflared/ks.yaml.j2
View file
Original file line number Diff line number Diff line change
Expand Up @@ -15,7 +15,7 @@ spec:
prune: true
sourceRef:
kind: GitRepository
name: home-kubernetes
name: k8s-homelab
wait: false
interval: 30m
retryInterval: 1m
Expand Down
2 changes: 1 addition & 1 deletion bootstrap/templates/kubernetes/apps/network/echo-server/ks.yaml.j2
View file
Original file line number Diff line number Diff line change
Expand Up @@ -13,7 +13,7 @@ spec:
prune: true
sourceRef:
kind: GitRepository
name: home-kubernetes
name: k8s-homelab
wait: false
interval: 30m
retryInterval: 1m
Expand Down
2 changes: 1 addition & 1 deletion bootstrap/templates/kubernetes/apps/network/external-dns/app/helmrelease.yaml.j2
View file
Original file line number Diff line number Diff line change
Expand Up @@ -8,7 +8,7 @@ spec:
chart:
spec:
chart: external-dns
version: 1.14.4
version: 1.14.5
sourceRef:
kind: HelmRepository
name: external-dns
Expand Down
2 changes: 1 addition & 1 deletion bootstrap/templates/kubernetes/apps/network/external-dns/ks.yaml.j2
View file
Original file line number Diff line number Diff line change
Expand Up @@ -13,7 +13,7 @@ spec:
prune: true
sourceRef:
kind: GitRepository
name: home-kubernetes
name: k8s-homelab
wait: true
interval: 30m
retryInterval: 1m
Expand Down
2 changes: 1 addition & 1 deletion bootstrap/templates/kubernetes/apps/network/ingress-nginx/external/helmrelease.yaml.j2
View file
Original file line number Diff line number Diff line change
Expand Up @@ -8,7 +8,7 @@ spec:
chart:
spec:
chart: ingress-nginx
version: 4.10.1
version: 4.11.1
sourceRef:
kind: HelmRepository
name: ingress-nginx
Expand Down
2 changes: 1 addition & 1 deletion bootstrap/templates/kubernetes/apps/network/ingress-nginx/internal/helmrelease.yaml.j2
View file
Original file line number Diff line number Diff line change
Expand Up @@ -9,7 +9,7 @@ spec:
chart:
spec:
chart: ingress-nginx
version: 4.10.1
version: 4.11.1
sourceRef:
kind: HelmRepository
name: ingress-nginx
Expand Down
6 changes: 3 additions & 3 deletions bootstrap/templates/kubernetes/apps/network/ingress-nginx/ks.yaml.j2
View file
Original file line number Diff line number Diff line change
Expand Up @@ -15,7 +15,7 @@ spec:
prune: true
sourceRef:
kind: GitRepository
name: home-kubernetes
name: k8s-homelab
wait: true
interval: 30m
retryInterval: 1m
Expand All @@ -37,7 +37,7 @@ spec:
prune: true
sourceRef:
kind: GitRepository
name: home-kubernetes
name: k8s-homelab
wait: false
interval: 30m
retryInterval: 1m
Expand All @@ -59,7 +59,7 @@ spec:
prune: true
sourceRef:
kind: GitRepository
name: home-kubernetes
name: k8s-homelab
wait: false
interval: 30m
retryInterval: 1m
Expand Down
2 changes: 1 addition & 1 deletion bootstrap/templates/kubernetes/apps/network/k8s-gateway/ks.yaml.j2
View file
Original file line number Diff line number Diff line change
Expand Up @@ -13,7 +13,7 @@ spec:
prune: true
sourceRef:
kind: GitRepository
name: home-kubernetes
name: k8s-homelab
wait: false
interval: 30m
retryInterval: 1m
Expand Down
2 changes: 1 addition & 1 deletion .../templates/kubernetes/apps/observability/prometheus-operator-crds/app/helmrelease.yaml.j2
View file
Original file line number Diff line number Diff line change
Expand Up @@ -8,7 +8,7 @@ spec:
chart:
spec:
chart: prometheus-operator-crds
version: 12.0.0
version: 13.0.1
sourceRef:
kind: HelmRepository
name: prometheus-community
Expand Down
2 changes: 1 addition & 1 deletion bootstrap/templates/kubernetes/apps/observability/prometheus-operator-crds/ks.yaml.j2
View file
Original file line number Diff line number Diff line change
Expand Up @@ -13,7 +13,7 @@ spec:
prune: false # never should be deleted
sourceRef:
kind: GitRepository
name: home-kubernetes
name: k8s-homelab
wait: false
interval: 30m
retryInterval: 1m
Expand Down
2 changes: 1 addition & 1 deletion bootstrap/templates/kubernetes/apps/openebs-system/openebs/app/helmrelease.yaml.j2
View file
Original file line number Diff line number Diff line change
Expand Up @@ -8,7 +8,7 @@ spec:
chart:
spec:
chart: openebs
version: 4.0.1
version: 4.1.0
sourceRef:
kind: HelmRepository
name: openebs
Expand Down
2 changes: 1 addition & 1 deletion bootstrap/templates/kubernetes/apps/openebs-system/openebs/ks.yaml.j2
View file
Original file line number Diff line number Diff line change
Expand Up @@ -13,7 +13,7 @@ spec:
prune: true
sourceRef:
kind: GitRepository
name: home-kubernetes
name: k8s-homelab
wait: false
interval: 30m
retryInterval: 1m
Expand Down
10 changes: 5 additions & 5 deletions bootstrap/templates/kubernetes/bootstrap/helmfile.yaml.j2
View file
Original file line number Diff line number Diff line change
Expand Up @@ -18,19 +18,19 @@ releases:
- name: prometheus-operator-crds
namespace: observability
chart: oci://ghcr.io/prometheus-community/charts/prometheus-operator-crds
version: 12.0.0
version: 13.0.1
- name: cilium
namespace: kube-system
chart: cilium/cilium
version: 1.15.5
version: 1.15.7
values:
- ../apps/kube-system/cilium/app/helm-values.yaml
needs:
- observability/prometheus-operator-crds
- name: coredns
namespace: kube-system
chart: coredns/coredns
version: 1.30.0
version: 1.31.0
values:
- ../apps/kube-system/coredns/app/helm-values.yaml
needs:
Expand All @@ -39,7 +39,7 @@ releases:
- name: kubelet-csr-approver
namespace: kube-system
chart: postfinance/kubelet-csr-approver
version: 1.2.1
version: 1.2.2
values:
- ../apps/kube-system/kubelet-csr-approver/app/helm-values.yaml
needs:
Expand All @@ -49,7 +49,7 @@ releases:
- name: spegel
namespace: kube-system
chart: oci://ghcr.io/spegel-org/helm-charts/spegel
version: v0.0.22
version: v0.0.23
values:
- ../apps/kube-system/spegel/app/helm-values.yaml
needs:
Expand Down
4 changes: 2 additions & 2 deletions bootstrap/templates/kubernetes/bootstrap/talos/talconfig.yaml.j2
View file
Original file line number Diff line number Diff line change
@@ -1,9 +1,9 @@
# yaml-language-server: $schema=https://raw.githubusercontent.com/budimanjojo/talhelper/master/pkg/config/schemas/talconfig.json
---
# renovate: datasource=docker depName=ghcr.io/siderolabs/installer
talosVersion: v1.7.4
talosVersion: v1.7.5
# renovate: datasource=docker depName=ghcr.io/siderolabs/kubelet
kubernetesVersion: v1.30.1
kubernetesVersion: v1.30.3

clusterName: "#{ bootstrap_cluster_name | default('home-kubernetes', true) }#"
endpoint: https://#{ bootstrap_controller_vip }#:6443
Expand Down
Loading

0 comments on commit f058715

Please sign in to comment.