diff --git a/helmfile.yaml b/helmfile.yaml new file mode 100644 index 0000000..8bf8d62 --- /dev/null +++ b/helmfile.yaml @@ -0,0 +1,13 @@ +bases: + - ./common/environments.yaml + +helmfiles: + - ./installations/system/ + - ./installations/storage/ + - ./installations/databases/ + - ./installations/platform/ + - ./installations/pipelines/ + - ./installations/monitoring/ + - ./installations/applications/ + - ./installations/games/ + - ./installations/development/ diff --git a/installations/applications/helmfile.yaml b/installations/applications/helmfile.yaml index 8f01c9f..34d221d 100644 --- a/installations/applications/helmfile.yaml +++ b/installations/applications/helmfile.yaml @@ -18,7 +18,7 @@ repositories: url: https://dl.gitea.io/charts/ - name: mailu url: https://mailu.github.io/helm-charts/ - - name: minio + - name: minio-standalone url: https://charts.min.io/ - name: bedag url: https://bedag.github.io/helm-charts/ @@ -54,7 +54,7 @@ releases: - template: ext-tcp-routes - name: minio - chart: minio/minio + chart: minio-standalone/minio version: 5.2.0 namespace: applications inherit: diff --git a/installations/monitoring/helmfile.yaml b/installations/monitoring/helmfile.yaml index cdfa854..39b1e26 100644 --- a/installations/monitoring/helmfile.yaml +++ b/installations/monitoring/helmfile.yaml @@ -14,7 +14,8 @@ releases: - name: prometheus chart: prometheus-community/kube-prometheus-stack namespace: monitoring - version: 62.6.0 + installed: false + version: 61.3.2 inherit: - template: default-env-values - template: default-env-secrets diff --git a/installations/pipelines/helmfile.yaml b/installations/pipelines/helmfile.yaml index 6bb5e57..e9892b7 100644 --- a/installations/pipelines/helmfile.yaml +++ b/installations/pipelines/helmfile.yaml @@ -6,6 +6,8 @@ bases: repositories: - name: woodpecker url: https://woodpecker-ci.org + - name: renovate + url: https://docs.renovatebot.com/helm-charts - name: bedag url: https://bedag.github.io/helm-charts/ @@ -18,3 +20,12 @@ releases: - template: ext-database - template: default-env-values - template: default-env-secrets + + - name: renovate + chart: renovate/renovate + namespace: pipelines + version: 38.74.1 + inherit: + - template: default-env-values + - template: default-env-secrets + diff --git a/values/badhouseplants/secrets.renovate.yaml b/values/badhouseplants/secrets.renovate.yaml new file mode 100644 index 0000000..d3d7ce8 --- /dev/null +++ b/values/badhouseplants/secrets.renovate.yaml @@ -0,0 +1,22 @@ +secrets: + RENOVATE_TOKEN: ENC[AES256_GCM,data:FjO0pWp641Vrdy1rp9pFNoDXq6xIdjnuvny2uWX//VZFhr/6cWr2qg==,iv:HkkVEE1cIXrhntFzNVVVBMCgUpDdp/unqLWSyuei3HM=,tag:dnKXqYNa2K5B9etjwILwYQ==,type:str] +sops: + kms: [] + gcp_kms: [] + azure_kv: [] + hc_vault: [] + age: + - recipient: age1vzkv97n2p7gfkw8dyx8ctz2kumattz89th2jq47zyjyrarmnssysdkw9v8 + enc: | + -----BEGIN AGE ENCRYPTED FILE----- + YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSBVZGVURjVURG0yamtyek1q + NVJkZ0lPSHRmTkYwcUdOalEwUWVVM3ZKQnhJClhMK211VFc0c0hhQkxnTEp4bzVL + dUNkd2JLT1dEWEdmeVJrVSt5Z3dYQU0KLS0tIFJQeVBuYkNkSXZXclE0d0sycVJP + anVEdnlOZmJ3RFVxSktHTXZuQ2wzQTAKneMdZSziNAn5TQxdRDRf4dCSh8+WDX3w + wkuIDnE8FcuWczIkCZcihgk8ZGk0cIc67hmcTWPlMMjr5lgpoJ3JBA== + -----END AGE ENCRYPTED FILE----- + lastmodified: "2024-09-11T14:17:17Z" + mac: ENC[AES256_GCM,data:D8gkMpB/NrzBQDdtEoBwajuZJvXDr4ucAx7w7WYzTWDJB4Yn8j93cpdJs8Z66xWXnedVkACj1LI/A0BeBKL4DUE9mBbBycE8SL+N8L+wdvrK713RQ50aADVUlC7zMHnrAtucG9WdhxXgWxxJoZtLJ/6a8PQ2lgoZlqn2KxOz26c=,iv:IClzMu2vT4vJBqZ7eHi0gHJxwlX5IEou9+AcMHQSkAw=,tag:pMXUJLiX/bMyaD0xiSDccQ==,type:str] + pgp: [] + unencrypted_suffix: _unencrypted + version: 3.9.0 diff --git a/values/badhouseplants/values.renovate.yaml b/values/badhouseplants/values.renovate.yaml new file mode 100644 index 0000000..61ac872 --- /dev/null +++ b/values/badhouseplants/values.renovate.yaml @@ -0,0 +1,10 @@ +renovate: + config: | + { + "platform": "gitea", + "endpoint": "https://gitea.badhouseplants.net", + "autodiscover": true, + "dryRun": false, + "printConfig": true + } +