diff --git a/CLAUDE.md b/CLAUDE.md index 12b60a0c9d..575779dbee 100644 --- a/CLAUDE.md +++ b/CLAUDE.md @@ -77,7 +77,8 @@ App-template apps follow the same four-file layout: **`helmrelease.yaml` key points:** - app-template apps: `chartRef.kind: OCIRepository`, name `app-template`, namespace `flux-system`; official-chart apps: `chartRef.kind: OCIRepository` pointing to the upstream OCI registry or `ghcr.io/home-operations/charts-mirror` — fall back to `HelmRepository` only if no OCI source exists -- Standard boilerplate: `driftDetection.mode: enabled`, `install.remediation.retries: -1`, `upgrade.cleanupOnFail: true` +- **Do not add install/upgrade/rollback boilerplate** — `kubernetes/cluster/ks.yaml` injects global defaults into every HelmRelease via a nested Kustomization patch: `driftDetection.mode: enabled`, `install.crds: CreateReplace`, `rollback.cleanupOnFail: true`, `upgrade.cleanupOnFail: true`, `upgrade.crds: CreateReplace`, `upgrade.strategy.name: RemediateOnFailure`, `upgrade.remediation.remediateLastFailure: true`, `upgrade.remediation.retries: 2` +- To opt a HelmRelease out of global defaults (e.g. needs `crds: Skip` or `driftDetection.mode: disabled`), add `labels: { kantai.xyz/no-hr-defaults: "true" }` to the HelmRelease `metadata` and set all required fields explicitly - All containers get `reloader.stakater.com/auto: "true"` (restarts on secret change) - Security context: `runAsNonRoot: true`, `allowPrivilegeEscalation: false`, `capabilities: {drop: ["ALL"]}`, `readOnlyRootFilesystem: true` - Routes use `parentRefs: [{name: envoy-internal, namespace: network}]` for LAN/tailnet-only services, `envoy-external` for public internet diff --git a/kubernetes/apps/cert-manager/cert-manager/app/helmrelease.yaml b/kubernetes/apps/cert-manager/cert-manager/app/helmrelease.yaml index 319f98fc6e..6b77f59906 100644 --- a/kubernetes/apps/cert-manager/cert-manager/app/helmrelease.yaml +++ b/kubernetes/apps/cert-manager/cert-manager/app/helmrelease.yaml @@ -23,15 +23,6 @@ spec: chartRef: kind: OCIRepository name: cert-manager - driftDetection: - mode: enabled - install: - remediation: - retries: -1 - upgrade: - cleanupOnFail: true - remediation: - retries: 3 values: cainjector: featureGates: CAInjectorMerging=true diff --git a/kubernetes/apps/cert-manager/trust-manager/app/helmrelease.yaml b/kubernetes/apps/cert-manager/trust-manager/app/helmrelease.yaml index cf807fd2b4..16d146fd85 100644 --- a/kubernetes/apps/cert-manager/trust-manager/app/helmrelease.yaml +++ b/kubernetes/apps/cert-manager/trust-manager/app/helmrelease.yaml @@ -22,15 +22,6 @@ spec: sourceRef: kind: HelmRepository name: jetstack - driftDetection: - mode: enabled - install: - remediation: - retries: -1 - upgrade: - cleanupOnFail: true - remediation: - retries: 3 values: app: metrics: diff --git a/kubernetes/apps/cnpg-system/cloudnative-pg/app/helmrelease.yaml b/kubernetes/apps/cnpg-system/cloudnative-pg/app/helmrelease.yaml index d55eba496e..f414abddab 100644 --- a/kubernetes/apps/cnpg-system/cloudnative-pg/app/helmrelease.yaml +++ b/kubernetes/apps/cnpg-system/cloudnative-pg/app/helmrelease.yaml @@ -28,19 +28,11 @@ spec: kind: OCIRepository name: cloudnative-pg driftDetection: - mode: enabled ignore: # Ignore "validated" annotation which is not inserted during install - paths: ["/metadata/annotations/prometheus-operator-validated"] target: kind: PrometheusRule - install: - remediation: - retries: -1 - upgrade: - cleanupOnFail: true - remediation: - retries: 3 values: monitoring: podMonitorEnabled: true diff --git a/kubernetes/apps/database/influxdb/app/helmrelease.yaml b/kubernetes/apps/database/influxdb/app/helmrelease.yaml index 5b887b6c7b..fbba7469b4 100644 --- a/kubernetes/apps/database/influxdb/app/helmrelease.yaml +++ b/kubernetes/apps/database/influxdb/app/helmrelease.yaml @@ -10,15 +10,6 @@ spec: kind: OCIRepository name: app-template namespace: flux-system - driftDetection: - mode: enabled - install: - remediation: - retries: -1 - upgrade: - cleanupOnFail: true - remediation: - retries: 3 values: controllers: influxdb: diff --git a/kubernetes/apps/default/autobrr/app/helmrelease.yaml b/kubernetes/apps/default/autobrr/app/helmrelease.yaml index c252ef0d68..0d948a6a77 100644 --- a/kubernetes/apps/default/autobrr/app/helmrelease.yaml +++ b/kubernetes/apps/default/autobrr/app/helmrelease.yaml @@ -10,15 +10,6 @@ spec: kind: OCIRepository name: app-template namespace: flux-system - driftDetection: - mode: enabled - install: - remediation: - retries: -1 - upgrade: - cleanupOnFail: true - remediation: - retries: 3 values: controllers: autobrr: diff --git a/kubernetes/apps/default/buildkit/app/helmrelease.yaml b/kubernetes/apps/default/buildkit/app/helmrelease.yaml index 2c9b2ff048..14553ee136 100644 --- a/kubernetes/apps/default/buildkit/app/helmrelease.yaml +++ b/kubernetes/apps/default/buildkit/app/helmrelease.yaml @@ -10,13 +10,6 @@ spec: kind: OCIRepository name: app-template namespace: flux-system - install: - remediation: - retries: -1 - upgrade: - cleanupOnFail: true - remediation: - retries: 3 values: controllers: amd64: diff --git a/kubernetes/apps/default/changedetection/app/helmrelease.yaml b/kubernetes/apps/default/changedetection/app/helmrelease.yaml index ddd802c98f..25b2d8a82e 100644 --- a/kubernetes/apps/default/changedetection/app/helmrelease.yaml +++ b/kubernetes/apps/default/changedetection/app/helmrelease.yaml @@ -10,15 +10,6 @@ spec: kind: OCIRepository name: app-template namespace: flux-system - driftDetection: - mode: enabled - install: - remediation: - retries: -1 - upgrade: - cleanupOnFail: true - remediation: - retries: 3 values: controllers: changedetection: diff --git a/kubernetes/apps/default/crd-schema-publisher/app/helmrelease.yaml b/kubernetes/apps/default/crd-schema-publisher/app/helmrelease.yaml index 8b584a6512..d7b22dc3aa 100644 --- a/kubernetes/apps/default/crd-schema-publisher/app/helmrelease.yaml +++ b/kubernetes/apps/default/crd-schema-publisher/app/helmrelease.yaml @@ -23,15 +23,6 @@ spec: chartRef: kind: OCIRepository name: crd-schema-publisher - driftDetection: - mode: enabled - install: - remediation: - retries: -1 - upgrade: - cleanupOnFail: true - remediation: - retries: 3 values: serve: enabled: true diff --git a/kubernetes/apps/default/dawarich/app/helmrelease.yaml b/kubernetes/apps/default/dawarich/app/helmrelease.yaml index 503f01c646..6d11f4186b 100644 --- a/kubernetes/apps/default/dawarich/app/helmrelease.yaml +++ b/kubernetes/apps/default/dawarich/app/helmrelease.yaml @@ -10,15 +10,6 @@ spec: kind: OCIRepository name: app-template namespace: flux-system - driftDetection: - mode: enabled - install: - remediation: - retries: -1 - upgrade: - cleanupOnFail: true - remediation: - retries: 3 values: configMaps: dawarich-initdb: diff --git a/kubernetes/apps/default/docker-registry-ui/app/helmrelease.yaml b/kubernetes/apps/default/docker-registry-ui/app/helmrelease.yaml index db7e20d24c..c946f2676b 100644 --- a/kubernetes/apps/default/docker-registry-ui/app/helmrelease.yaml +++ b/kubernetes/apps/default/docker-registry-ui/app/helmrelease.yaml @@ -10,15 +10,6 @@ spec: kind: OCIRepository name: app-template namespace: flux-system - driftDetection: - mode: enabled - install: - remediation: - retries: -1 - upgrade: - cleanupOnFail: true - remediation: - retries: 3 values: controllers: docker-registry-ui: diff --git a/kubernetes/apps/default/docling/app/helmrelease.yaml b/kubernetes/apps/default/docling/app/helmrelease.yaml index bf819bb6ab..98b9b001d3 100644 --- a/kubernetes/apps/default/docling/app/helmrelease.yaml +++ b/kubernetes/apps/default/docling/app/helmrelease.yaml @@ -10,15 +10,6 @@ spec: kind: OCIRepository name: app-template namespace: flux-system - driftDetection: - mode: enabled - install: - remediation: - retries: -1 - upgrade: - cleanupOnFail: true - remediation: - retries: 3 values: controllers: docling: diff --git a/kubernetes/apps/default/glance/app/helmrelease.yaml b/kubernetes/apps/default/glance/app/helmrelease.yaml index e6a89ecad5..d24a484d1b 100644 --- a/kubernetes/apps/default/glance/app/helmrelease.yaml +++ b/kubernetes/apps/default/glance/app/helmrelease.yaml @@ -10,13 +10,6 @@ spec: kind: OCIRepository name: app-template namespace: flux-system - install: - remediation: - retries: -1 - upgrade: - cleanupOnFail: true - remediation: - retries: 3 values: defaultPodOptions: securityContext: diff --git a/kubernetes/apps/default/gluetun/app/helmrelease.yaml b/kubernetes/apps/default/gluetun/app/helmrelease.yaml index 7611c38a9a..d5cccd0832 100644 --- a/kubernetes/apps/default/gluetun/app/helmrelease.yaml +++ b/kubernetes/apps/default/gluetun/app/helmrelease.yaml @@ -10,15 +10,6 @@ spec: kind: OCIRepository name: app-template namespace: flux-system - driftDetection: - mode: enabled - install: - remediation: - retries: -1 - upgrade: - cleanupOnFail: true - remediation: - retries: 3 values: controllers: gluetun-update: diff --git a/kubernetes/apps/default/grimmory/app/helmrelease.yaml b/kubernetes/apps/default/grimmory/app/helmrelease.yaml index a893ccefea..664b40ebbb 100644 --- a/kubernetes/apps/default/grimmory/app/helmrelease.yaml +++ b/kubernetes/apps/default/grimmory/app/helmrelease.yaml @@ -10,15 +10,6 @@ spec: kind: OCIRepository name: app-template namespace: flux-system - driftDetection: - mode: enabled - install: - remediation: - retries: -1 - upgrade: - cleanupOnFail: true - remediation: - retries: 3 values: controllers: grimmory: diff --git a/kubernetes/apps/default/homebox/app/helmrelease.yaml b/kubernetes/apps/default/homebox/app/helmrelease.yaml index 1917e97b01..8bc865347b 100644 --- a/kubernetes/apps/default/homebox/app/helmrelease.yaml +++ b/kubernetes/apps/default/homebox/app/helmrelease.yaml @@ -10,15 +10,6 @@ spec: kind: OCIRepository name: app-template namespace: flux-system - driftDetection: - mode: enabled - install: - remediation: - retries: -1 - upgrade: - cleanupOnFail: true - remediation: - retries: 3 values: controllers: homebox: diff --git a/kubernetes/apps/default/homepage/app/helmrelease.yaml b/kubernetes/apps/default/homepage/app/helmrelease.yaml index 5610b3ed76..042d7f4fe2 100644 --- a/kubernetes/apps/default/homepage/app/helmrelease.yaml +++ b/kubernetes/apps/default/homepage/app/helmrelease.yaml @@ -10,15 +10,6 @@ spec: kind: OCIRepository name: app-template namespace: flux-system - driftDetection: - mode: enabled - install: - remediation: - retries: -1 - upgrade: - cleanupOnFail: true - remediation: - retries: 3 values: controllers: homepage: diff --git a/kubernetes/apps/default/hypermind/app/helmrelease.yaml b/kubernetes/apps/default/hypermind/app/helmrelease.yaml index fd36bf13a2..a92fc93fbc 100644 --- a/kubernetes/apps/default/hypermind/app/helmrelease.yaml +++ b/kubernetes/apps/default/hypermind/app/helmrelease.yaml @@ -10,15 +10,6 @@ spec: kind: OCIRepository name: app-template namespace: flux-system - driftDetection: - mode: enabled - install: - remediation: - retries: -1 - upgrade: - cleanupOnFail: true - remediation: - retries: 3 values: controllers: hypermind: diff --git a/kubernetes/apps/default/immich/app/helmrelease.yaml b/kubernetes/apps/default/immich/app/helmrelease.yaml index 98a113b47f..e65aa25bed 100644 --- a/kubernetes/apps/default/immich/app/helmrelease.yaml +++ b/kubernetes/apps/default/immich/app/helmrelease.yaml @@ -10,15 +10,6 @@ spec: kind: OCIRepository name: app-template namespace: flux-system - driftDetection: - mode: enabled - install: - remediation: - retries: -1 - upgrade: - cleanupOnFail: true - remediation: - retries: 3 values: controllers: machine-learning: diff --git a/kubernetes/apps/default/immich/frame/helmrelease.yaml b/kubernetes/apps/default/immich/frame/helmrelease.yaml index 6bfa1bddb3..7c6a81abfb 100644 --- a/kubernetes/apps/default/immich/frame/helmrelease.yaml +++ b/kubernetes/apps/default/immich/frame/helmrelease.yaml @@ -10,15 +10,6 @@ spec: kind: OCIRepository name: app-template namespace: flux-system - driftDetection: - mode: enabled - install: - remediation: - retries: -1 - upgrade: - cleanupOnFail: true - remediation: - retries: 3 values: controllers: immichframe: diff --git a/kubernetes/apps/default/immich/valkey/helmrelease.yaml b/kubernetes/apps/default/immich/valkey/helmrelease.yaml index 490c2d80f0..ab31cea206 100644 --- a/kubernetes/apps/default/immich/valkey/helmrelease.yaml +++ b/kubernetes/apps/default/immich/valkey/helmrelease.yaml @@ -10,15 +10,6 @@ spec: kind: OCIRepository name: app-template namespace: flux-system - driftDetection: - mode: enabled - install: - remediation: - retries: -1 - upgrade: - cleanupOnFail: true - remediation: - retries: 3 values: controllers: valkey: diff --git a/kubernetes/apps/default/jellyfin/app/helmrelease.yaml b/kubernetes/apps/default/jellyfin/app/helmrelease.yaml index d8f0907b6e..0183967978 100644 --- a/kubernetes/apps/default/jellyfin/app/helmrelease.yaml +++ b/kubernetes/apps/default/jellyfin/app/helmrelease.yaml @@ -10,13 +10,6 @@ spec: kind: OCIRepository name: app-template namespace: flux-system - install: - remediation: - retries: -1 - upgrade: - cleanupOnFail: true - remediation: - retries: 3 values: controllers: jellyfin: diff --git a/kubernetes/apps/default/karakeep/app/helmrelease.yaml b/kubernetes/apps/default/karakeep/app/helmrelease.yaml index 49652b47af..7ed3f54572 100644 --- a/kubernetes/apps/default/karakeep/app/helmrelease.yaml +++ b/kubernetes/apps/default/karakeep/app/helmrelease.yaml @@ -10,15 +10,6 @@ spec: kind: OCIRepository name: app-template namespace: flux-system - driftDetection: - mode: enabled - install: - remediation: - retries: -1 - upgrade: - cleanupOnFail: true - remediation: - retries: 3 values: controllers: browserless: diff --git a/kubernetes/apps/default/komga/app/helmrelease.yaml b/kubernetes/apps/default/komga/app/helmrelease.yaml index 3965785a57..22f6f28315 100644 --- a/kubernetes/apps/default/komga/app/helmrelease.yaml +++ b/kubernetes/apps/default/komga/app/helmrelease.yaml @@ -10,15 +10,6 @@ spec: kind: OCIRepository name: app-template namespace: flux-system - driftDetection: - mode: enabled - install: - remediation: - retries: -1 - upgrade: - cleanupOnFail: true - remediation: - retries: 3 values: controllers: komga: diff --git a/kubernetes/apps/default/mealie/app/helmrelease.yaml b/kubernetes/apps/default/mealie/app/helmrelease.yaml index 713b9b16ae..2d01e88a52 100644 --- a/kubernetes/apps/default/mealie/app/helmrelease.yaml +++ b/kubernetes/apps/default/mealie/app/helmrelease.yaml @@ -10,15 +10,6 @@ spec: kind: OCIRepository name: app-template namespace: flux-system - driftDetection: - mode: enabled - install: - remediation: - retries: -1 - upgrade: - cleanupOnFail: true - remediation: - retries: 3 values: controllers: mealie: diff --git a/kubernetes/apps/default/mediamanager/app/helmrelease.yaml b/kubernetes/apps/default/mediamanager/app/helmrelease.yaml index eeda712149..48e3fbcdc8 100644 --- a/kubernetes/apps/default/mediamanager/app/helmrelease.yaml +++ b/kubernetes/apps/default/mediamanager/app/helmrelease.yaml @@ -10,15 +10,6 @@ spec: kind: OCIRepository name: app-template namespace: flux-system - driftDetection: - mode: enabled - install: - remediation: - retries: -1 - upgrade: - cleanupOnFail: true - remediation: - retries: 3 values: controllers: mediamanager: diff --git a/kubernetes/apps/default/mediamanager/metadata-relay/helmrelease.yaml b/kubernetes/apps/default/mediamanager/metadata-relay/helmrelease.yaml index 1d2a743ea4..77e215401d 100644 --- a/kubernetes/apps/default/mediamanager/metadata-relay/helmrelease.yaml +++ b/kubernetes/apps/default/mediamanager/metadata-relay/helmrelease.yaml @@ -10,15 +10,6 @@ spec: kind: OCIRepository name: app-template namespace: flux-system - driftDetection: - mode: enabled - install: - remediation: - retries: -1 - upgrade: - cleanupOnFail: true - remediation: - retries: 3 values: controllers: metadata-relay: diff --git a/kubernetes/apps/default/memos/app/helmrelease.yaml b/kubernetes/apps/default/memos/app/helmrelease.yaml index 1dabc03bf9..c34e815cf2 100644 --- a/kubernetes/apps/default/memos/app/helmrelease.yaml +++ b/kubernetes/apps/default/memos/app/helmrelease.yaml @@ -10,15 +10,6 @@ spec: kind: OCIRepository name: app-template namespace: flux-system - driftDetection: - mode: enabled - install: - remediation: - retries: -1 - upgrade: - cleanupOnFail: true - remediation: - retries: 3 values: defaultPodOptions: securityContext: diff --git a/kubernetes/apps/default/miniflux/app/helmrelease.yaml b/kubernetes/apps/default/miniflux/app/helmrelease.yaml index 980c011270..89b52cc3f8 100644 --- a/kubernetes/apps/default/miniflux/app/helmrelease.yaml +++ b/kubernetes/apps/default/miniflux/app/helmrelease.yaml @@ -10,15 +10,6 @@ spec: kind: OCIRepository name: app-template namespace: flux-system - driftDetection: - mode: enabled - install: - remediation: - retries: -1 - upgrade: - cleanupOnFail: true - remediation: - retries: 3 values: controllers: miniflux: diff --git a/kubernetes/apps/default/nextflux/app/helmrelease.yaml b/kubernetes/apps/default/nextflux/app/helmrelease.yaml index 518c6ae9b2..ff3a029484 100644 --- a/kubernetes/apps/default/nextflux/app/helmrelease.yaml +++ b/kubernetes/apps/default/nextflux/app/helmrelease.yaml @@ -10,15 +10,6 @@ spec: kind: OCIRepository name: app-template namespace: flux-system - driftDetection: - mode: enabled - install: - remediation: - retries: -1 - upgrade: - cleanupOnFail: true - remediation: - retries: 3 values: controllers: nextflux: diff --git a/kubernetes/apps/default/octoeverywhere-bambu-connect/app/helmrelease.yaml b/kubernetes/apps/default/octoeverywhere-bambu-connect/app/helmrelease.yaml index e64ae0c197..918db9fd0d 100644 --- a/kubernetes/apps/default/octoeverywhere-bambu-connect/app/helmrelease.yaml +++ b/kubernetes/apps/default/octoeverywhere-bambu-connect/app/helmrelease.yaml @@ -10,15 +10,6 @@ spec: kind: OCIRepository name: app-template namespace: flux-system - driftDetection: - mode: enabled - install: - remediation: - retries: -1 - upgrade: - cleanupOnFail: true - remediation: - retries: 3 values: controllers: octoeverywhere-bambu-connect: diff --git a/kubernetes/apps/default/ollama/app/helmrelease.yaml b/kubernetes/apps/default/ollama/app/helmrelease.yaml index c514bdf943..c7726c05f9 100644 --- a/kubernetes/apps/default/ollama/app/helmrelease.yaml +++ b/kubernetes/apps/default/ollama/app/helmrelease.yaml @@ -10,15 +10,6 @@ spec: kind: OCIRepository name: app-template namespace: flux-system - driftDetection: - mode: enabled - install: - remediation: - retries: -1 - upgrade: - cleanupOnFail: true - remediation: - retries: 3 values: controllers: ollama: diff --git a/kubernetes/apps/default/open-webui/app/helmrelease.yaml b/kubernetes/apps/default/open-webui/app/helmrelease.yaml index c9b9bc6d0e..dd927805f3 100644 --- a/kubernetes/apps/default/open-webui/app/helmrelease.yaml +++ b/kubernetes/apps/default/open-webui/app/helmrelease.yaml @@ -10,15 +10,6 @@ spec: kind: OCIRepository name: app-template namespace: flux-system - driftDetection: - mode: enabled - install: - remediation: - retries: -1 - upgrade: - cleanupOnFail: true - remediation: - retries: 3 values: controllers: open-webui: diff --git a/kubernetes/apps/default/openspoolman/app/helmrelease.yaml b/kubernetes/apps/default/openspoolman/app/helmrelease.yaml index f7fa6fef13..69404698a8 100644 --- a/kubernetes/apps/default/openspoolman/app/helmrelease.yaml +++ b/kubernetes/apps/default/openspoolman/app/helmrelease.yaml @@ -10,15 +10,6 @@ spec: kind: OCIRepository name: app-template namespace: flux-system - driftDetection: - mode: enabled - install: - remediation: - retries: -1 - upgrade: - cleanupOnFail: true - remediation: - retries: 3 values: controllers: openspoolman: diff --git a/kubernetes/apps/default/paperless/ai/helmrelease.yaml b/kubernetes/apps/default/paperless/ai/helmrelease.yaml index e59794a3e4..9e3e553284 100644 --- a/kubernetes/apps/default/paperless/ai/helmrelease.yaml +++ b/kubernetes/apps/default/paperless/ai/helmrelease.yaml @@ -10,15 +10,6 @@ spec: kind: OCIRepository name: app-template namespace: flux-system - driftDetection: - mode: enabled - install: - remediation: - retries: -1 - upgrade: - cleanupOnFail: true - remediation: - retries: 3 values: controllers: paperless-ai: diff --git a/kubernetes/apps/default/paperless/app/helmrelease.yaml b/kubernetes/apps/default/paperless/app/helmrelease.yaml index 0a8aaf4fd2..77eac968e4 100644 --- a/kubernetes/apps/default/paperless/app/helmrelease.yaml +++ b/kubernetes/apps/default/paperless/app/helmrelease.yaml @@ -10,15 +10,6 @@ spec: kind: OCIRepository name: app-template namespace: flux-system - driftDetection: - mode: enabled - install: - remediation: - retries: -1 - upgrade: - cleanupOnFail: true - remediation: - retries: 3 values: controllers: paperless: diff --git a/kubernetes/apps/default/paperless/gpt/helmrelease.yaml b/kubernetes/apps/default/paperless/gpt/helmrelease.yaml index 1717cb4423..53ff15a684 100644 --- a/kubernetes/apps/default/paperless/gpt/helmrelease.yaml +++ b/kubernetes/apps/default/paperless/gpt/helmrelease.yaml @@ -10,15 +10,6 @@ spec: kind: OCIRepository name: app-template namespace: flux-system - driftDetection: - mode: enabled - install: - remediation: - retries: -1 - upgrade: - cleanupOnFail: true - remediation: - retries: 3 values: controllers: paperless-gpt: diff --git a/kubernetes/apps/default/pgadmin/app/helmrelease.yaml b/kubernetes/apps/default/pgadmin/app/helmrelease.yaml index 2a088eb4f9..83eabc99f7 100644 --- a/kubernetes/apps/default/pgadmin/app/helmrelease.yaml +++ b/kubernetes/apps/default/pgadmin/app/helmrelease.yaml @@ -10,13 +10,6 @@ spec: kind: OCIRepository name: app-template namespace: flux-system - install: - remediation: - retries: -1 - upgrade: - cleanupOnFail: true - remediation: - retries: 3 values: controllers: pgadmin: diff --git a/kubernetes/apps/default/photon/app/helmrelease.yaml b/kubernetes/apps/default/photon/app/helmrelease.yaml index 8d7f89f5b9..2f9d0dab00 100644 --- a/kubernetes/apps/default/photon/app/helmrelease.yaml +++ b/kubernetes/apps/default/photon/app/helmrelease.yaml @@ -10,17 +10,10 @@ spec: kind: OCIRepository name: app-template namespace: flux-system - driftDetection: - mode: enabled install: disableWait: true - remediation: - retries: -1 upgrade: - cleanupOnFail: true disableWait: true - remediation: - retries: 3 values: controllers: photon: diff --git a/kubernetes/apps/default/plex/app/helmrelease.yaml b/kubernetes/apps/default/plex/app/helmrelease.yaml index 9304a05191..e0897052d2 100644 --- a/kubernetes/apps/default/plex/app/helmrelease.yaml +++ b/kubernetes/apps/default/plex/app/helmrelease.yaml @@ -10,13 +10,6 @@ spec: kind: OCIRepository name: app-template namespace: flux-system - install: - remediation: - retries: -1 - upgrade: - cleanupOnFail: true - remediation: - retries: 3 values: controllers: plex: diff --git a/kubernetes/apps/default/pocket-id/app/helmrelease.yaml b/kubernetes/apps/default/pocket-id/app/helmrelease.yaml index 1d301d1cd6..c1cace00aa 100644 --- a/kubernetes/apps/default/pocket-id/app/helmrelease.yaml +++ b/kubernetes/apps/default/pocket-id/app/helmrelease.yaml @@ -10,13 +10,6 @@ spec: kind: OCIRepository name: app-template namespace: flux-system - install: - remediation: - retries: -1 - upgrade: - cleanupOnFail: true - remediation: - retries: 3 values: controllers: pocket-id: diff --git a/kubernetes/apps/default/prowlarr/app/helmrelease.yaml b/kubernetes/apps/default/prowlarr/app/helmrelease.yaml index 82b2559d65..c2850f34cd 100644 --- a/kubernetes/apps/default/prowlarr/app/helmrelease.yaml +++ b/kubernetes/apps/default/prowlarr/app/helmrelease.yaml @@ -10,15 +10,6 @@ spec: kind: OCIRepository name: app-template namespace: flux-system - driftDetection: - mode: enabled - install: - remediation: - retries: -1 - upgrade: - cleanupOnFail: true - remediation: - retries: 3 values: controllers: prowlarr: diff --git a/kubernetes/apps/default/pvforecast/app/helmrelease.yaml b/kubernetes/apps/default/pvforecast/app/helmrelease.yaml index e2e69c45c5..e6d220a452 100644 --- a/kubernetes/apps/default/pvforecast/app/helmrelease.yaml +++ b/kubernetes/apps/default/pvforecast/app/helmrelease.yaml @@ -10,15 +10,6 @@ spec: kind: OCIRepository name: app-template namespace: flux-system - driftDetection: - mode: enabled - install: - remediation: - retries: -1 - upgrade: - cleanupOnFail: true - remediation: - retries: 3 values: controllers: pvforecast: diff --git a/kubernetes/apps/default/qbittorrent/app/helmrelease.yaml b/kubernetes/apps/default/qbittorrent/app/helmrelease.yaml index 76cfac4d0d..824b317c66 100644 --- a/kubernetes/apps/default/qbittorrent/app/helmrelease.yaml +++ b/kubernetes/apps/default/qbittorrent/app/helmrelease.yaml @@ -10,15 +10,6 @@ spec: kind: OCIRepository name: app-template namespace: flux-system - driftDetection: - mode: enabled - install: - remediation: - retries: -1 - upgrade: - cleanupOnFail: true - remediation: - retries: 3 values: controllers: qbittorrent: diff --git a/kubernetes/apps/default/qui/app/helmrelease.yaml b/kubernetes/apps/default/qui/app/helmrelease.yaml index 2760d41606..b17e2610e2 100644 --- a/kubernetes/apps/default/qui/app/helmrelease.yaml +++ b/kubernetes/apps/default/qui/app/helmrelease.yaml @@ -10,15 +10,6 @@ spec: kind: OCIRepository name: app-template namespace: flux-system - driftDetection: - mode: enabled - install: - remediation: - retries: -1 - upgrade: - cleanupOnFail: true - remediation: - retries: 3 values: controllers: qui: diff --git a/kubernetes/apps/default/radarr/app/helmrelease.yaml b/kubernetes/apps/default/radarr/app/helmrelease.yaml index 6eb6eae09c..f4d468f423 100644 --- a/kubernetes/apps/default/radarr/app/helmrelease.yaml +++ b/kubernetes/apps/default/radarr/app/helmrelease.yaml @@ -10,15 +10,6 @@ spec: kind: OCIRepository name: app-template namespace: flux-system - driftDetection: - mode: enabled - install: - remediation: - retries: -1 - upgrade: - cleanupOnFail: true - remediation: - retries: 3 values: controllers: radarr: diff --git a/kubernetes/apps/default/recyclarr/app/helmrelease.yaml b/kubernetes/apps/default/recyclarr/app/helmrelease.yaml index b3121b64b4..60a7c56a28 100644 --- a/kubernetes/apps/default/recyclarr/app/helmrelease.yaml +++ b/kubernetes/apps/default/recyclarr/app/helmrelease.yaml @@ -10,15 +10,6 @@ spec: kind: OCIRepository name: app-template namespace: flux-system - driftDetection: - mode: enabled - install: - remediation: - retries: -1 - upgrade: - cleanupOnFail: true - remediation: - retries: 3 values: controllers: recyclarr: diff --git a/kubernetes/apps/default/registry/app/helmrelease.yaml b/kubernetes/apps/default/registry/app/helmrelease.yaml index bb7c59008c..7712235dd6 100644 --- a/kubernetes/apps/default/registry/app/helmrelease.yaml +++ b/kubernetes/apps/default/registry/app/helmrelease.yaml @@ -10,15 +10,6 @@ spec: kind: OCIRepository name: app-template namespace: flux-system - driftDetection: - mode: enabled - install: - remediation: - retries: -1 - upgrade: - cleanupOnFail: true - remediation: - retries: 3 values: controllers: registry: diff --git a/kubernetes/apps/default/sabnzbd/app/helmrelease.yaml b/kubernetes/apps/default/sabnzbd/app/helmrelease.yaml index 7742722517..21387596ec 100644 --- a/kubernetes/apps/default/sabnzbd/app/helmrelease.yaml +++ b/kubernetes/apps/default/sabnzbd/app/helmrelease.yaml @@ -10,15 +10,6 @@ spec: kind: OCIRepository name: app-template namespace: flux-system - driftDetection: - mode: enabled - install: - remediation: - retries: -1 - upgrade: - cleanupOnFail: true - remediation: - retries: 3 values: controllers: sabnzbd: diff --git a/kubernetes/apps/default/seerr/app/helmrelease.yaml b/kubernetes/apps/default/seerr/app/helmrelease.yaml index abccebfb9c..0e2eeadf86 100644 --- a/kubernetes/apps/default/seerr/app/helmrelease.yaml +++ b/kubernetes/apps/default/seerr/app/helmrelease.yaml @@ -23,15 +23,6 @@ spec: chartRef: kind: OCIRepository name: seerr-chart - driftDetection: - mode: enabled - install: - remediation: - retries: -1 - upgrade: - cleanupOnFail: true - remediation: - retries: 3 values: fullnameOverride: seerr podAnnotations: diff --git a/kubernetes/apps/default/shelfmark/app/helmrelease.yaml b/kubernetes/apps/default/shelfmark/app/helmrelease.yaml index 79600c5886..40f53c0842 100644 --- a/kubernetes/apps/default/shelfmark/app/helmrelease.yaml +++ b/kubernetes/apps/default/shelfmark/app/helmrelease.yaml @@ -10,15 +10,6 @@ spec: kind: OCIRepository name: app-template namespace: flux-system - driftDetection: - mode: enabled - install: - remediation: - retries: -1 - upgrade: - cleanupOnFail: true - remediation: - retries: 3 values: controllers: shelfmark: diff --git a/kubernetes/apps/default/sonarr/app/helmrelease.yaml b/kubernetes/apps/default/sonarr/app/helmrelease.yaml index df2025175c..6ebce80896 100644 --- a/kubernetes/apps/default/sonarr/app/helmrelease.yaml +++ b/kubernetes/apps/default/sonarr/app/helmrelease.yaml @@ -10,15 +10,6 @@ spec: kind: OCIRepository name: app-template namespace: flux-system - driftDetection: - mode: enabled - install: - remediation: - retries: -1 - upgrade: - cleanupOnFail: true - remediation: - retries: 3 values: controllers: sonarr: diff --git a/kubernetes/apps/default/spoolman/app/helmrelease.yaml b/kubernetes/apps/default/spoolman/app/helmrelease.yaml index 2a8c03bc0e..e09babbae9 100644 --- a/kubernetes/apps/default/spoolman/app/helmrelease.yaml +++ b/kubernetes/apps/default/spoolman/app/helmrelease.yaml @@ -10,15 +10,6 @@ spec: kind: OCIRepository name: app-template namespace: flux-system - driftDetection: - mode: enabled - install: - remediation: - retries: -1 - upgrade: - cleanupOnFail: true - remediation: - retries: 3 values: controllers: spoolman: diff --git a/kubernetes/apps/default/stash/app/helmrelease.yaml b/kubernetes/apps/default/stash/app/helmrelease.yaml index 63a71746f7..03e9023580 100644 --- a/kubernetes/apps/default/stash/app/helmrelease.yaml +++ b/kubernetes/apps/default/stash/app/helmrelease.yaml @@ -10,15 +10,6 @@ spec: kind: OCIRepository name: app-template namespace: flux-system - driftDetection: - mode: enabled - install: - remediation: - retries: -1 - upgrade: - cleanupOnFail: true - remediation: - retries: 3 values: controllers: stash: diff --git a/kubernetes/apps/default/tracearr/app/helmrelease.yaml b/kubernetes/apps/default/tracearr/app/helmrelease.yaml index ec5543de9c..d36aa12024 100644 --- a/kubernetes/apps/default/tracearr/app/helmrelease.yaml +++ b/kubernetes/apps/default/tracearr/app/helmrelease.yaml @@ -10,15 +10,6 @@ spec: kind: OCIRepository name: app-template namespace: flux-system - driftDetection: - mode: enabled - install: - remediation: - retries: -1 - upgrade: - cleanupOnFail: true - remediation: - retries: 3 values: configMaps: tracearr-initdb: diff --git a/kubernetes/apps/external-secrets/external-secrets/app/helmrelease.yaml b/kubernetes/apps/external-secrets/external-secrets/app/helmrelease.yaml index f5619951ec..215f343874 100644 --- a/kubernetes/apps/external-secrets/external-secrets/app/helmrelease.yaml +++ b/kubernetes/apps/external-secrets/external-secrets/app/helmrelease.yaml @@ -28,17 +28,6 @@ spec: chartRef: kind: OCIRepository name: external-secrets - driftDetection: - mode: enabled - install: - crds: CreateReplace - remediation: - retries: -1 - upgrade: - cleanupOnFail: true - crds: CreateReplace - remediation: - retries: 3 values: certController: podDisruptionBudget: diff --git a/kubernetes/apps/flux-system/operator/ks/helmrelease.yaml b/kubernetes/apps/flux-system/operator/ks/helmrelease.yaml index ea971455fa..3c296c2858 100644 --- a/kubernetes/apps/flux-system/operator/ks/helmrelease.yaml +++ b/kubernetes/apps/flux-system/operator/ks/helmrelease.yaml @@ -26,15 +26,6 @@ spec: kind: OCIRepository name: flux-operator namespace: flux-system - install: - crds: CreateReplace - remediation: - retries: -1 - upgrade: - cleanupOnFail: true - crds: CreateReplace - remediation: - retries: 3 values: resources: limits: null diff --git a/kubernetes/apps/gpu-operator/gpu-operator/app/helmrelease.yaml b/kubernetes/apps/gpu-operator/gpu-operator/app/helmrelease.yaml index 8b06431cbc..26f4c2bce5 100644 --- a/kubernetes/apps/gpu-operator/gpu-operator/app/helmrelease.yaml +++ b/kubernetes/apps/gpu-operator/gpu-operator/app/helmrelease.yaml @@ -14,19 +14,10 @@ spec: kind: HelmRepository name: ngc-nvidia namespace: flux-system - driftDetection: - mode: enabled install: - crds: CreateReplace disableOpenAPIValidation: true - remediation: - retries: 3 upgrade: - cleanupOnFail: true - crds: CreateReplace disableOpenAPIValidation: true - remediation: - retries: 3 values: nfd: enabled: false diff --git a/kubernetes/apps/keep-system/keep/app/helmrelease.yaml b/kubernetes/apps/keep-system/keep/app/helmrelease.yaml index 84eba95796..00828d1031 100644 --- a/kubernetes/apps/keep-system/keep/app/helmrelease.yaml +++ b/kubernetes/apps/keep-system/keep/app/helmrelease.yaml @@ -22,15 +22,6 @@ spec: sourceRef: kind: HelmRepository name: keephq - driftDetection: - mode: enabled - install: - remediation: - retries: -1 - upgrade: - cleanupOnFail: true - remediation: - retries: 3 values: fullnameOverride: keep # Disable bundled nginx Ingress — HTTPRoute is provided alongside this release. diff --git a/kubernetes/apps/kube-system/cilium/app/helmrelease.yaml b/kubernetes/apps/kube-system/cilium/app/helmrelease.yaml index 3db8d0ea40..c35da8cfea 100644 --- a/kubernetes/apps/kube-system/cilium/app/helmrelease.yaml +++ b/kubernetes/apps/kube-system/cilium/app/helmrelease.yaml @@ -23,15 +23,6 @@ spec: chartRef: kind: OCIRepository name: cilium - driftDetection: - mode: enabled - install: - remediation: - retries: -1 - upgrade: - cleanupOnFail: true - remediation: - retries: 3 valuesFrom: - kind: ConfigMap name: cilium-helm-values diff --git a/kubernetes/apps/kube-system/coredns/app/helmrelease.yaml b/kubernetes/apps/kube-system/coredns/app/helmrelease.yaml index befc37863d..c91130e476 100644 --- a/kubernetes/apps/kube-system/coredns/app/helmrelease.yaml +++ b/kubernetes/apps/kube-system/coredns/app/helmrelease.yaml @@ -23,15 +23,6 @@ spec: chartRef: kind: OCIRepository name: coredns - driftDetection: - mode: enabled - install: - remediation: - retries: -1 - upgrade: - cleanupOnFail: true - remediation: - retries: 3 valuesFrom: - kind: ConfigMap name: coredns-helm-values diff --git a/kubernetes/apps/kube-system/cpufreq/kantai1/helmrelease.yaml b/kubernetes/apps/kube-system/cpufreq/kantai1/helmrelease.yaml index d56b5f9dcb..ee9d87d2a0 100644 --- a/kubernetes/apps/kube-system/cpufreq/kantai1/helmrelease.yaml +++ b/kubernetes/apps/kube-system/cpufreq/kantai1/helmrelease.yaml @@ -10,15 +10,6 @@ spec: kind: OCIRepository name: app-template namespace: flux-system - driftDetection: - mode: enabled - install: - remediation: - retries: -1 - upgrade: - cleanupOnFail: true - remediation: - retries: 3 values: defaultPodOptions: priorityClassName: system-node-critical diff --git a/kubernetes/apps/kube-system/csi-driver-smb/app/helmrelease.yaml b/kubernetes/apps/kube-system/csi-driver-smb/app/helmrelease.yaml index 06b2aaf313..f25fe301c9 100644 --- a/kubernetes/apps/kube-system/csi-driver-smb/app/helmrelease.yaml +++ b/kubernetes/apps/kube-system/csi-driver-smb/app/helmrelease.yaml @@ -28,12 +28,3 @@ spec: chartRef: kind: OCIRepository name: csi-driver-smb - driftDetection: - mode: enabled - install: - remediation: - retries: -1 - upgrade: - cleanupOnFail: true - remediation: - retries: 3 diff --git a/kubernetes/apps/kube-system/descheduler/app/helmrelease.yaml b/kubernetes/apps/kube-system/descheduler/app/helmrelease.yaml index 1876277d1e..4c8aaad8a9 100644 --- a/kubernetes/apps/kube-system/descheduler/app/helmrelease.yaml +++ b/kubernetes/apps/kube-system/descheduler/app/helmrelease.yaml @@ -28,15 +28,6 @@ spec: chartRef: kind: OCIRepository name: descheduler - driftDetection: - mode: enabled - install: - remediation: - retries: -1 - upgrade: - cleanupOnFail: true - remediation: - retries: 3 values: kind: Deployment replicas: 2 diff --git a/kubernetes/apps/kube-system/generic-device-plugin/app/helmrelease.yaml b/kubernetes/apps/kube-system/generic-device-plugin/app/helmrelease.yaml index 45c6c5e018..d56bfc1009 100644 --- a/kubernetes/apps/kube-system/generic-device-plugin/app/helmrelease.yaml +++ b/kubernetes/apps/kube-system/generic-device-plugin/app/helmrelease.yaml @@ -10,15 +10,6 @@ spec: kind: OCIRepository name: app-template namespace: flux-system - driftDetection: - mode: enabled - install: - remediation: - retries: -1 - upgrade: - cleanupOnFail: true - remediation: - retries: 3 values: defaultPodOptions: priorityClassName: system-node-critical diff --git a/kubernetes/apps/kube-system/kubelet-csr-approver/app/helmrelease.yaml b/kubernetes/apps/kube-system/kubelet-csr-approver/app/helmrelease.yaml index d0375db684..c192188213 100644 --- a/kubernetes/apps/kube-system/kubelet-csr-approver/app/helmrelease.yaml +++ b/kubernetes/apps/kube-system/kubelet-csr-approver/app/helmrelease.yaml @@ -23,15 +23,6 @@ spec: chartRef: kind: OCIRepository name: kubelet-csr-approver - driftDetection: - mode: enabled - install: - remediation: - retries: -1 - upgrade: - cleanupOnFail: true - remediation: - retries: 3 valuesFrom: - kind: ConfigMap name: kubelet-csr-approver-helm-values diff --git a/kubernetes/apps/kube-system/metrics-server/app/helmrelease.yaml b/kubernetes/apps/kube-system/metrics-server/app/helmrelease.yaml index a02a04a92e..f0123435aa 100644 --- a/kubernetes/apps/kube-system/metrics-server/app/helmrelease.yaml +++ b/kubernetes/apps/kube-system/metrics-server/app/helmrelease.yaml @@ -28,15 +28,6 @@ spec: chartRef: kind: OCIRepository name: metrics-server - driftDetection: - mode: enabled - install: - remediation: - retries: -1 - upgrade: - cleanupOnFail: true - remediation: - retries: 3 values: args: - --kubelet-preferred-address-types=InternalIP,ExternalIP,Hostname diff --git a/kubernetes/apps/kube-system/multus/app/helmrelease.yaml b/kubernetes/apps/kube-system/multus/app/helmrelease.yaml index efc5f11531..c71782aaa9 100644 --- a/kubernetes/apps/kube-system/multus/app/helmrelease.yaml +++ b/kubernetes/apps/kube-system/multus/app/helmrelease.yaml @@ -10,15 +10,6 @@ spec: kind: OCIRepository name: app-template namespace: flux-system - driftDetection: - mode: enabled - install: - remediation: - retries: -1 - upgrade: - cleanupOnFail: true - remediation: - retries: 3 values: controllers: multus: diff --git a/kubernetes/apps/kube-system/node-feature-discovery/app/helmrelease.yaml b/kubernetes/apps/kube-system/node-feature-discovery/app/helmrelease.yaml index 4778d561bc..bdec028fc1 100644 --- a/kubernetes/apps/kube-system/node-feature-discovery/app/helmrelease.yaml +++ b/kubernetes/apps/kube-system/node-feature-discovery/app/helmrelease.yaml @@ -23,17 +23,6 @@ spec: chartRef: kind: OCIRepository name: node-feature-discovery - driftDetection: - mode: enabled - install: - crds: CreateReplace - remediation: - retries: -1 - upgrade: - cleanupOnFail: true - crds: CreateReplace - remediation: - retries: 3 values: worker: tolerations: diff --git a/kubernetes/apps/kube-system/reloader/app/helmrelease.yaml b/kubernetes/apps/kube-system/reloader/app/helmrelease.yaml index 7453211742..2db3adbaec 100644 --- a/kubernetes/apps/kube-system/reloader/app/helmrelease.yaml +++ b/kubernetes/apps/kube-system/reloader/app/helmrelease.yaml @@ -23,15 +23,6 @@ spec: chartRef: kind: OCIRepository name: stakater - driftDetection: - mode: enabled - install: - remediation: - retries: -1 - upgrade: - cleanupOnFail: true - remediation: - retries: 3 values: fullnameOverride: reloader reloader: diff --git a/kubernetes/apps/kube-system/snapshot-controller/app/helmrelease.yaml b/kubernetes/apps/kube-system/snapshot-controller/app/helmrelease.yaml index 7f998e0798..197c3869bb 100644 --- a/kubernetes/apps/kube-system/snapshot-controller/app/helmrelease.yaml +++ b/kubernetes/apps/kube-system/snapshot-controller/app/helmrelease.yaml @@ -23,17 +23,6 @@ spec: chartRef: kind: OCIRepository name: snapshot-controller - driftDetection: - mode: enabled - install: - crds: CreateReplace - remediation: - retries: -1 - upgrade: - cleanupOnFail: true - crds: CreateReplace - remediation: - retries: 3 values: controller: replicaCount: 2 diff --git a/kubernetes/apps/kube-system/spegel/app/helmrelease.yaml b/kubernetes/apps/kube-system/spegel/app/helmrelease.yaml index 88efaff7b6..9b16b8118a 100644 --- a/kubernetes/apps/kube-system/spegel/app/helmrelease.yaml +++ b/kubernetes/apps/kube-system/spegel/app/helmrelease.yaml @@ -23,15 +23,6 @@ spec: chartRef: kind: OCIRepository name: spegel - driftDetection: - mode: enabled - install: - remediation: - retries: -1 - upgrade: - cleanupOnFail: true - remediation: - retries: 3 values: grafanaDashboard: enabled: false diff --git a/kubernetes/apps/kube-system/zfs-static-csi/app/helmrelease.yaml b/kubernetes/apps/kube-system/zfs-static-csi/app/helmrelease.yaml index bb9e5151ac..ca88e3f6ee 100644 --- a/kubernetes/apps/kube-system/zfs-static-csi/app/helmrelease.yaml +++ b/kubernetes/apps/kube-system/zfs-static-csi/app/helmrelease.yaml @@ -23,15 +23,6 @@ spec: chartRef: kind: OCIRepository name: zfs-static-csi - driftDetection: - mode: enabled - install: - remediation: - retries: -1 - upgrade: - cleanupOnFail: true - remediation: - retries: 3 values: affinity: nodeAffinity: diff --git a/kubernetes/apps/network/cloudflared/app/helmrelease.yaml b/kubernetes/apps/network/cloudflared/app/helmrelease.yaml index f34d55f4e4..c75f40eb3e 100644 --- a/kubernetes/apps/network/cloudflared/app/helmrelease.yaml +++ b/kubernetes/apps/network/cloudflared/app/helmrelease.yaml @@ -10,15 +10,6 @@ spec: kind: OCIRepository name: app-template namespace: flux-system - driftDetection: - mode: enabled - install: - remediation: - retries: -1 - upgrade: - cleanupOnFail: true - remediation: - retries: 3 values: controllers: cloudflared: diff --git a/kubernetes/apps/network/echo/app/helmrelease.yaml b/kubernetes/apps/network/echo/app/helmrelease.yaml index bf039903fb..de852571e8 100644 --- a/kubernetes/apps/network/echo/app/helmrelease.yaml +++ b/kubernetes/apps/network/echo/app/helmrelease.yaml @@ -10,15 +10,6 @@ spec: kind: OCIRepository name: app-template namespace: flux-system - driftDetection: - mode: enabled - install: - remediation: - retries: -1 - upgrade: - cleanupOnFail: true - remediation: - retries: 3 values: controllers: echo: diff --git a/kubernetes/apps/network/envoy-gateway/app/helmrelease.yaml b/kubernetes/apps/network/envoy-gateway/app/helmrelease.yaml index 5e8aefd20a..302b33d041 100644 --- a/kubernetes/apps/network/envoy-gateway/app/helmrelease.yaml +++ b/kubernetes/apps/network/envoy-gateway/app/helmrelease.yaml @@ -23,17 +23,6 @@ spec: chartRef: kind: OCIRepository name: envoy-gateway - driftDetection: - mode: enabled - install: - crds: CreateReplace - remediation: - retries: -1 - upgrade: - cleanupOnFail: true - crds: CreateReplace - remediation: - retries: 3 values: global: imageRegistry: mirror.gcr.io diff --git a/kubernetes/apps/network/external-dns/cloudflare/helmrelease.yaml b/kubernetes/apps/network/external-dns/cloudflare/helmrelease.yaml index 4432a232aa..7804ed315a 100644 --- a/kubernetes/apps/network/external-dns/cloudflare/helmrelease.yaml +++ b/kubernetes/apps/network/external-dns/cloudflare/helmrelease.yaml @@ -9,19 +9,10 @@ spec: chartRef: kind: OCIRepository name: external-dns - driftDetection: - mode: enabled install: - crds: CreateReplace disableSchemaValidation: true # Ref: https://github.com/kubernetes-sigs/external-dns/issues/5206 - remediation: - retries: 3 upgrade: - cleanupOnFail: true - crds: CreateReplace disableSchemaValidation: true # Ref: https://github.com/kubernetes-sigs/external-dns/issues/5206 - remediation: - retries: 3 values: fullnameOverride: *app domainFilters: ["kantai.xyz"] diff --git a/kubernetes/apps/network/external-dns/unifi/helmrelease.yaml b/kubernetes/apps/network/external-dns/unifi/helmrelease.yaml index 56274eb1df..de51662a1c 100644 --- a/kubernetes/apps/network/external-dns/unifi/helmrelease.yaml +++ b/kubernetes/apps/network/external-dns/unifi/helmrelease.yaml @@ -9,19 +9,10 @@ spec: chartRef: kind: OCIRepository name: external-dns - driftDetection: - mode: enabled install: - crds: CreateReplace disableSchemaValidation: true # Ref: https://github.com/kubernetes-sigs/external-dns/issues/5206 - remediation: - retries: 3 upgrade: - cleanupOnFail: true - crds: CreateReplace disableSchemaValidation: true # Ref: https://github.com/kubernetes-sigs/external-dns/issues/5206 - remediation: - retries: 3 values: fullnameOverride: *app domainFilters: ["kantai.xyz", "internal"] diff --git a/kubernetes/apps/network/k8s-gateway/tailscale-dns/helmrelease.yaml b/kubernetes/apps/network/k8s-gateway/tailscale-dns/helmrelease.yaml index e7b15f8106..99742a0ed8 100644 --- a/kubernetes/apps/network/k8s-gateway/tailscale-dns/helmrelease.yaml +++ b/kubernetes/apps/network/k8s-gateway/tailscale-dns/helmrelease.yaml @@ -23,17 +23,6 @@ spec: chartRef: kind: OCIRepository name: k8s-gateway - driftDetection: - mode: enabled - install: - crds: CreateReplace - remediation: - retries: -1 - upgrade: - cleanupOnFail: true - crds: CreateReplace - remediation: - retries: 3 values: domain: kantai.xyz ttl: 1 diff --git a/kubernetes/apps/network/openspeedtest/app/helmrelease.yaml b/kubernetes/apps/network/openspeedtest/app/helmrelease.yaml index e2ff946bfb..001b251a8f 100644 --- a/kubernetes/apps/network/openspeedtest/app/helmrelease.yaml +++ b/kubernetes/apps/network/openspeedtest/app/helmrelease.yaml @@ -10,15 +10,6 @@ spec: kind: OCIRepository name: app-template namespace: flux-system - driftDetection: - mode: enabled - install: - remediation: - retries: -1 - upgrade: - cleanupOnFail: true - remediation: - retries: 3 values: controllers: openspeedtest: diff --git a/kubernetes/apps/nvidia-dra-driver-gpu/nvidia-dra-driver-gpu/app/helmrelease.yaml b/kubernetes/apps/nvidia-dra-driver-gpu/nvidia-dra-driver-gpu/app/helmrelease.yaml index da05ccba02..7a5eb7ee29 100644 --- a/kubernetes/apps/nvidia-dra-driver-gpu/nvidia-dra-driver-gpu/app/helmrelease.yaml +++ b/kubernetes/apps/nvidia-dra-driver-gpu/nvidia-dra-driver-gpu/app/helmrelease.yaml @@ -14,19 +14,10 @@ spec: kind: HelmRepository name: ngc-nvidia namespace: flux-system - driftDetection: - mode: enabled install: - crds: CreateReplace disableOpenAPIValidation: true - remediation: - retries: 3 upgrade: - cleanupOnFail: true - crds: CreateReplace disableOpenAPIValidation: true - remediation: - retries: 3 values: gpuResourcesEnabledOverride: true nvidiaDriverRoot: /run/nvidia/driver diff --git a/kubernetes/apps/observability-agents/fluent-bit/app/helmrelease.yaml b/kubernetes/apps/observability-agents/fluent-bit/app/helmrelease.yaml index 7440e1a275..7ad065b5c7 100644 --- a/kubernetes/apps/observability-agents/fluent-bit/app/helmrelease.yaml +++ b/kubernetes/apps/observability-agents/fluent-bit/app/helmrelease.yaml @@ -22,14 +22,6 @@ spec: kind: OCIRepository name: fluent-bit interval: 1h - install: - remediation: - retries: -1 - upgrade: - cleanupOnFail: true - remediation: - strategy: rollback - retries: 3 values: config: service: |- diff --git a/kubernetes/apps/observability-agents/node-exporter/app/helmrelease.yaml b/kubernetes/apps/observability-agents/node-exporter/app/helmrelease.yaml index 9bef2f3fd3..1b08cdf8fd 100644 --- a/kubernetes/apps/observability-agents/node-exporter/app/helmrelease.yaml +++ b/kubernetes/apps/observability-agents/node-exporter/app/helmrelease.yaml @@ -23,17 +23,6 @@ spec: chartRef: kind: OCIRepository name: prometheus-node-exporter - driftDetection: - mode: enabled - install: - crds: CreateReplace - remediation: - retries: -1 - upgrade: - cleanupOnFail: true - crds: CreateReplace - remediation: - retries: 3 values: fullnameOverride: *app podLabels: diff --git a/kubernetes/apps/observability-agents/scrutiny-collector/app/helmrelease.yaml b/kubernetes/apps/observability-agents/scrutiny-collector/app/helmrelease.yaml index 830ffbb640..33e72198fe 100644 --- a/kubernetes/apps/observability-agents/scrutiny-collector/app/helmrelease.yaml +++ b/kubernetes/apps/observability-agents/scrutiny-collector/app/helmrelease.yaml @@ -10,15 +10,6 @@ spec: kind: OCIRepository name: app-template namespace: flux-system - driftDetection: - mode: enabled - install: - remediation: - retries: -1 - upgrade: - cleanupOnFail: true - remediation: - retries: 3 values: controllers: scrutiny-collector: diff --git a/kubernetes/apps/observability-agents/scrutiny-collector/zfs/helmrelease.yaml b/kubernetes/apps/observability-agents/scrutiny-collector/zfs/helmrelease.yaml index 315dd93feb..a304eb3065 100644 --- a/kubernetes/apps/observability-agents/scrutiny-collector/zfs/helmrelease.yaml +++ b/kubernetes/apps/observability-agents/scrutiny-collector/zfs/helmrelease.yaml @@ -10,15 +10,6 @@ spec: kind: OCIRepository name: app-template namespace: flux-system - driftDetection: - mode: enabled - install: - remediation: - retries: -1 - upgrade: - cleanupOnFail: true - remediation: - retries: 3 values: controllers: scrutiny-collector-zfs: diff --git a/kubernetes/apps/observability-agents/smartctl-exporter/app/helmrelease.yaml b/kubernetes/apps/observability-agents/smartctl-exporter/app/helmrelease.yaml index 4647d92ba7..261275217b 100644 --- a/kubernetes/apps/observability-agents/smartctl-exporter/app/helmrelease.yaml +++ b/kubernetes/apps/observability-agents/smartctl-exporter/app/helmrelease.yaml @@ -24,19 +24,11 @@ spec: kind: OCIRepository name: prometheus-smartctl-exporter driftDetection: - mode: enabled ignore: # Ignore "validated" annotation which is not inserted during install - paths: ["/metadata/annotations/prometheus-operator-validated"] target: kind: PrometheusRule - install: - remediation: - retries: -1 - upgrade: - cleanupOnFail: true - remediation: - retries: 3 values: fullnameOverride: *app image: diff --git a/kubernetes/apps/observability-agents/telegraf/powerwall/helmrelease.yaml b/kubernetes/apps/observability-agents/telegraf/powerwall/helmrelease.yaml index 861ef33947..57faaaf7f4 100644 --- a/kubernetes/apps/observability-agents/telegraf/powerwall/helmrelease.yaml +++ b/kubernetes/apps/observability-agents/telegraf/powerwall/helmrelease.yaml @@ -10,15 +10,6 @@ spec: kind: OCIRepository name: app-template namespace: flux-system - driftDetection: - mode: enabled - install: - remediation: - retries: -1 - upgrade: - cleanupOnFail: true - remediation: - retries: 3 values: controllers: telegraf-powerwall: diff --git a/kubernetes/apps/observability-agents/telegraf/zfs/helmrelease.yaml b/kubernetes/apps/observability-agents/telegraf/zfs/helmrelease.yaml index 323a953c3d..8df5953301 100644 --- a/kubernetes/apps/observability-agents/telegraf/zfs/helmrelease.yaml +++ b/kubernetes/apps/observability-agents/telegraf/zfs/helmrelease.yaml @@ -10,15 +10,6 @@ spec: kind: OCIRepository name: app-template namespace: flux-system - driftDetection: - mode: enabled - install: - remediation: - retries: -1 - upgrade: - cleanupOnFail: true - remediation: - retries: 3 values: defaultPodOptions: affinity: diff --git a/kubernetes/apps/observability/alloy/alloy/helmrelease.yaml b/kubernetes/apps/observability/alloy/alloy/helmrelease.yaml index 804d0d6ec1..ff34decc22 100644 --- a/kubernetes/apps/observability/alloy/alloy/helmrelease.yaml +++ b/kubernetes/apps/observability/alloy/alloy/helmrelease.yaml @@ -28,16 +28,6 @@ spec: chartRef: kind: OCIRepository name: alloy - driftDetection: - mode: enabled - install: - crds: CreateReplace - remediation: - retries: -1 - upgrade: - crds: CreateReplace - remediation: - retries: 3 values: alloy: configMap: diff --git a/kubernetes/apps/observability/beszel/app/helmrelease.yaml b/kubernetes/apps/observability/beszel/app/helmrelease.yaml index 36e0188000..f9e394ee97 100644 --- a/kubernetes/apps/observability/beszel/app/helmrelease.yaml +++ b/kubernetes/apps/observability/beszel/app/helmrelease.yaml @@ -10,15 +10,6 @@ spec: kind: OCIRepository name: app-template namespace: flux-system - driftDetection: - mode: enabled - install: - remediation: - retries: -1 - upgrade: - cleanupOnFail: true - remediation: - retries: 3 values: controllers: beszel: diff --git a/kubernetes/apps/observability/blackbox-exporter/app/helmrelease.yaml b/kubernetes/apps/observability/blackbox-exporter/app/helmrelease.yaml index dd76850249..b2391ca437 100644 --- a/kubernetes/apps/observability/blackbox-exporter/app/helmrelease.yaml +++ b/kubernetes/apps/observability/blackbox-exporter/app/helmrelease.yaml @@ -23,16 +23,6 @@ spec: chartRef: kind: OCIRepository name: blackbox-exporter - driftDetection: - mode: enabled - install: - crds: CreateReplace - remediation: - retries: -1 - upgrade: - crds: CreateReplace - remediation: - retries: 3 values: fullnameOverride: blackbox-exporter config: diff --git a/kubernetes/apps/observability/dozzle/app/helmrelease.yaml b/kubernetes/apps/observability/dozzle/app/helmrelease.yaml index 2f4021ee77..23669c2313 100644 --- a/kubernetes/apps/observability/dozzle/app/helmrelease.yaml +++ b/kubernetes/apps/observability/dozzle/app/helmrelease.yaml @@ -10,15 +10,6 @@ spec: kind: OCIRepository name: app-template namespace: flux-system - driftDetection: - mode: enabled - install: - remediation: - retries: -1 - upgrade: - cleanupOnFail: true - remediation: - retries: 3 values: controllers: dozzle: diff --git a/kubernetes/apps/observability/gatus/app/helmrelease.yaml b/kubernetes/apps/observability/gatus/app/helmrelease.yaml index d38283b8e9..d8ed323430 100644 --- a/kubernetes/apps/observability/gatus/app/helmrelease.yaml +++ b/kubernetes/apps/observability/gatus/app/helmrelease.yaml @@ -10,15 +10,6 @@ spec: kind: OCIRepository name: app-template namespace: flux-system - driftDetection: - mode: enabled - install: - remediation: - retries: -1 - upgrade: - cleanupOnFail: true - remediation: - retries: 3 values: controllers: gatus: diff --git a/kubernetes/apps/observability/grafana/operator/helmrelease.yaml b/kubernetes/apps/observability/grafana/operator/helmrelease.yaml index 539478436d..9c2c7cef63 100644 --- a/kubernetes/apps/observability/grafana/operator/helmrelease.yaml +++ b/kubernetes/apps/observability/grafana/operator/helmrelease.yaml @@ -23,17 +23,6 @@ spec: chartRef: kind: OCIRepository name: grafana-operator - driftDetection: - mode: enabled - install: - crds: CreateReplace - remediation: - retries: -1 - upgrade: - cleanupOnFail: true - crds: CreateReplace - remediation: - retries: 3 values: dashboard: enabled: true diff --git a/kubernetes/apps/observability/headlamp/app/helmrelease.yaml b/kubernetes/apps/observability/headlamp/app/helmrelease.yaml index e6bd9c0f75..de8c2948e2 100644 --- a/kubernetes/apps/observability/headlamp/app/helmrelease.yaml +++ b/kubernetes/apps/observability/headlamp/app/helmrelease.yaml @@ -28,15 +28,6 @@ spec: chartRef: kind: OCIRepository name: headlamp - driftDetection: - mode: enabled - install: - remediation: - retries: -1 - upgrade: - cleanupOnFail: true - remediation: - retries: 3 values: fullnameOverride: headlamp initContainers: diff --git a/kubernetes/apps/observability/idrac-exporter/app/helmrelease.yaml b/kubernetes/apps/observability/idrac-exporter/app/helmrelease.yaml index 713a58ef8f..2fba7ef6b7 100644 --- a/kubernetes/apps/observability/idrac-exporter/app/helmrelease.yaml +++ b/kubernetes/apps/observability/idrac-exporter/app/helmrelease.yaml @@ -10,15 +10,6 @@ spec: kind: OCIRepository name: app-template namespace: flux-system - driftDetection: - mode: enabled - install: - remediation: - retries: -1 - upgrade: - cleanupOnFail: true - remediation: - retries: 3 values: defaultPodOptions: securityContext: diff --git a/kubernetes/apps/observability/kite/app/helmrelease.yaml b/kubernetes/apps/observability/kite/app/helmrelease.yaml index 6f7bb69880..51339dfcda 100644 --- a/kubernetes/apps/observability/kite/app/helmrelease.yaml +++ b/kubernetes/apps/observability/kite/app/helmrelease.yaml @@ -23,15 +23,6 @@ spec: chartRef: kind: OCIRepository name: kite-chart - driftDetection: - mode: enabled - install: - remediation: - retries: -1 - upgrade: - cleanupOnFail: true - remediation: - retries: 3 values: host: https://kite.kantai.xyz db: diff --git a/kubernetes/apps/observability/kube-prometheus-stack/app/helmrelease.yaml b/kubernetes/apps/observability/kube-prometheus-stack/app/helmrelease.yaml index 436828a7c0..034984a295 100644 --- a/kubernetes/apps/observability/kube-prometheus-stack/app/helmrelease.yaml +++ b/kubernetes/apps/observability/kube-prometheus-stack/app/helmrelease.yaml @@ -23,17 +23,7 @@ spec: chartRef: kind: OCIRepository name: kube-prometheus-stack - install: - crds: CreateReplace - remediation: - retries: -1 - upgrade: - cleanupOnFail: true - crds: CreateReplace - remediation: - retries: 3 driftDetection: - mode: enabled ignore: # Ignore "validated" annotation which is not inserted during install - paths: ["/metadata/annotations/prometheus-operator-validated"] diff --git a/kubernetes/apps/observability/netronome/app/helmrelease.yaml b/kubernetes/apps/observability/netronome/app/helmrelease.yaml index 8a13e84bc6..39f576f92e 100644 --- a/kubernetes/apps/observability/netronome/app/helmrelease.yaml +++ b/kubernetes/apps/observability/netronome/app/helmrelease.yaml @@ -10,15 +10,6 @@ spec: kind: OCIRepository name: app-template namespace: flux-system - driftDetection: - mode: enabled - install: - remediation: - retries: -1 - upgrade: - cleanupOnFail: true - remediation: - retries: 3 values: controllers: netronome: diff --git a/kubernetes/apps/observability/nut-exporter/app/helmrelease.yaml b/kubernetes/apps/observability/nut-exporter/app/helmrelease.yaml index 667f1d14fd..ff91c7be07 100644 --- a/kubernetes/apps/observability/nut-exporter/app/helmrelease.yaml +++ b/kubernetes/apps/observability/nut-exporter/app/helmrelease.yaml @@ -10,15 +10,6 @@ spec: kind: OCIRepository name: app-template namespace: flux-system - driftDetection: - mode: enabled - install: - remediation: - retries: -1 - upgrade: - cleanupOnFail: true - remediation: - retries: 3 values: defaultPodOptions: securityContext: diff --git a/kubernetes/apps/observability/prometheus-operator-crds/app/helmrelease.yaml b/kubernetes/apps/observability/prometheus-operator-crds/app/helmrelease.yaml index 31f4f8f687..046e001429 100644 --- a/kubernetes/apps/observability/prometheus-operator-crds/app/helmrelease.yaml +++ b/kubernetes/apps/observability/prometheus-operator-crds/app/helmrelease.yaml @@ -23,14 +23,3 @@ spec: chartRef: kind: OCIRepository name: prometheus-operator-crds - driftDetection: - mode: disabled - install: - crds: CreateReplace - remediation: - retries: -1 - upgrade: - cleanupOnFail: true - crds: CreateReplace - remediation: - retries: 3 diff --git a/kubernetes/apps/observability/pulse/app/helmrelease.yaml b/kubernetes/apps/observability/pulse/app/helmrelease.yaml index 3276c4ee27..80f19cba5d 100644 --- a/kubernetes/apps/observability/pulse/app/helmrelease.yaml +++ b/kubernetes/apps/observability/pulse/app/helmrelease.yaml @@ -23,15 +23,6 @@ spec: chartRef: kind: OCIRepository name: pulse - driftDetection: - mode: enabled - install: - remediation: - retries: -1 - upgrade: - cleanupOnFail: true - remediation: - retries: 3 values: image: repository: ghcr.io/rcourtman/pulse diff --git a/kubernetes/apps/observability/scrutiny/app/helmrelease.yaml b/kubernetes/apps/observability/scrutiny/app/helmrelease.yaml index 4d0495081a..0387a2aa2d 100644 --- a/kubernetes/apps/observability/scrutiny/app/helmrelease.yaml +++ b/kubernetes/apps/observability/scrutiny/app/helmrelease.yaml @@ -10,15 +10,6 @@ spec: kind: OCIRepository name: app-template namespace: flux-system - driftDetection: - mode: enabled - install: - remediation: - retries: -1 - upgrade: - cleanupOnFail: true - remediation: - retries: 3 values: controllers: scrutiny: diff --git a/kubernetes/apps/observability/silence-operator/app/helmrelease.yaml b/kubernetes/apps/observability/silence-operator/app/helmrelease.yaml index 1260d4e3f8..1dae567ffc 100644 --- a/kubernetes/apps/observability/silence-operator/app/helmrelease.yaml +++ b/kubernetes/apps/observability/silence-operator/app/helmrelease.yaml @@ -23,13 +23,6 @@ spec: chartRef: kind: OCIRepository name: silence-operator - install: - remediation: - retries: -1 - upgrade: - cleanupOnFail: true - remediation: - retries: 3 values: alertmanagerAddress: http://vmalertmanager-kantai.observability.svc.cluster.local:9093 networkPolicy: diff --git a/kubernetes/apps/observability/siren/app/helmrelease.yaml b/kubernetes/apps/observability/siren/app/helmrelease.yaml index bc4ced59cb..38c635ae4c 100644 --- a/kubernetes/apps/observability/siren/app/helmrelease.yaml +++ b/kubernetes/apps/observability/siren/app/helmrelease.yaml @@ -10,15 +10,6 @@ spec: kind: OCIRepository name: app-template namespace: flux-system - driftDetection: - mode: enabled - install: - remediation: - retries: -1 - upgrade: - cleanupOnFail: true - remediation: - retries: 3 values: controllers: siren: diff --git a/kubernetes/apps/observability/speedtest-exporter/app/helmrelease.yaml b/kubernetes/apps/observability/speedtest-exporter/app/helmrelease.yaml index 45cb9655bb..ad37e80f0d 100644 --- a/kubernetes/apps/observability/speedtest-exporter/app/helmrelease.yaml +++ b/kubernetes/apps/observability/speedtest-exporter/app/helmrelease.yaml @@ -10,15 +10,6 @@ spec: kind: OCIRepository name: app-template namespace: flux-system - driftDetection: - mode: enabled - install: - remediation: - retries: -1 - upgrade: - cleanupOnFail: true - remediation: - retries: 3 values: configMaps: config: diff --git a/kubernetes/apps/observability/unpoller/app/helmrelease.yaml b/kubernetes/apps/observability/unpoller/app/helmrelease.yaml index eee2c62a18..5d7e00cbe3 100644 --- a/kubernetes/apps/observability/unpoller/app/helmrelease.yaml +++ b/kubernetes/apps/observability/unpoller/app/helmrelease.yaml @@ -10,15 +10,6 @@ spec: kind: OCIRepository name: app-template namespace: flux-system - driftDetection: - mode: enabled - install: - remediation: - retries: -1 - upgrade: - cleanupOnFail: true - remediation: - retries: 3 values: controllers: unpoller: diff --git a/kubernetes/apps/observability/victoria/operator-crds/helmrelease.yaml b/kubernetes/apps/observability/victoria/operator-crds/helmrelease.yaml index 94bfa61b17..a26459cd35 100644 --- a/kubernetes/apps/observability/victoria/operator-crds/helmrelease.yaml +++ b/kubernetes/apps/observability/victoria/operator-crds/helmrelease.yaml @@ -23,14 +23,3 @@ spec: chartRef: kind: OCIRepository name: victoria-metrics-operator-crds - driftDetection: - mode: enabled - install: - crds: CreateReplace - remediation: - retries: -1 - upgrade: - cleanupOnFail: true - crds: CreateReplace - remediation: - retries: 3 diff --git a/kubernetes/apps/observability/victoria/operator/helmrelease.yaml b/kubernetes/apps/observability/victoria/operator/helmrelease.yaml index 7e7f0cd9e9..d3070da9f7 100644 --- a/kubernetes/apps/observability/victoria/operator/helmrelease.yaml +++ b/kubernetes/apps/observability/victoria/operator/helmrelease.yaml @@ -18,26 +18,31 @@ apiVersion: helm.toolkit.fluxcd.io/v2 kind: HelmRelease metadata: name: victoria-operator + labels: + kantai.xyz/no-hr-defaults: "true" spec: interval: 1h chartRef: kind: OCIRepository name: victoria-metrics-operator driftDetection: - mode: enabled ignore: - paths: ["/metadata/labels/app.kubernetes.io~1name"] target: kind: VMServiceScrape + mode: enabled install: crds: Skip - remediation: - retries: -1 + rollback: + cleanupOnFail: true upgrade: cleanupOnFail: true crds: Skip + strategy: + name: RemediateOnFailure remediation: - retries: 3 + remediateLastFailure: true + retries: 2 values: crds: enabled: false diff --git a/kubernetes/apps/openebs-system/openebs-localpv/app/helmrelease.yaml b/kubernetes/apps/openebs-system/openebs-localpv/app/helmrelease.yaml index 879bb04ca1..d957682fee 100644 --- a/kubernetes/apps/openebs-system/openebs-localpv/app/helmrelease.yaml +++ b/kubernetes/apps/openebs-system/openebs-localpv/app/helmrelease.yaml @@ -23,15 +23,6 @@ spec: chartRef: kind: OCIRepository name: openebs-localpv - driftDetection: - mode: enabled - install: - remediation: - retries: -1 - upgrade: - cleanupOnFail: true - remediation: - retries: 3 values: global: imageRegistry: quay.io/ diff --git a/kubernetes/apps/openebs-system/openebs/app/helmrelease.yaml b/kubernetes/apps/openebs-system/openebs/app/helmrelease.yaml index 14f3fbf24c..294d33eb86 100644 --- a/kubernetes/apps/openebs-system/openebs/app/helmrelease.yaml +++ b/kubernetes/apps/openebs-system/openebs/app/helmrelease.yaml @@ -23,17 +23,10 @@ spec: chartRef: kind: OCIRepository name: openebs - driftDetection: - mode: enabled install: disableHooks: true - remediation: - retries: -1 upgrade: - cleanupOnFail: true disableHooks: true - remediation: - retries: 3 values: global: imageRegistry: quay.io/ diff --git a/kubernetes/apps/rook-ceph/cluster/app/helmrelease.yaml b/kubernetes/apps/rook-ceph/cluster/app/helmrelease.yaml index 8f22b881fb..204a894039 100644 --- a/kubernetes/apps/rook-ceph/cluster/app/helmrelease.yaml +++ b/kubernetes/apps/rook-ceph/cluster/app/helmrelease.yaml @@ -18,6 +18,8 @@ apiVersion: helm.toolkit.fluxcd.io/v2 kind: HelmRelease metadata: name: rook-ceph-cluster + labels: + kantai.xyz/no-hr-defaults: "true" spec: interval: 1h chartRef: @@ -27,13 +29,16 @@ spec: mode: disabled install: disableWait: true - remediation: - retries: -1 + rollback: + cleanupOnFail: true upgrade: cleanupOnFail: true disableWait: true + strategy: + name: RemediateOnFailure remediation: - retries: 3 + remediateLastFailure: true + retries: 2 values: cephClusterSpec: annotations: diff --git a/kubernetes/apps/rook-ceph/operator/app/helmrelease.yaml b/kubernetes/apps/rook-ceph/operator/app/helmrelease.yaml index 98fb87d705..9f6d4058f4 100644 --- a/kubernetes/apps/rook-ceph/operator/app/helmrelease.yaml +++ b/kubernetes/apps/rook-ceph/operator/app/helmrelease.yaml @@ -23,15 +23,6 @@ spec: chartRef: kind: OCIRepository name: rook-ceph - driftDetection: - mode: disabled - install: - remediation: - retries: -1 - upgrade: - cleanupOnFail: true - remediation: - retries: 3 values: csi: cephFSKernelMountOptions: ms_mode=prefer-crc diff --git a/kubernetes/apps/storage/kantai1-samba/app/helmrelease.yaml b/kubernetes/apps/storage/kantai1-samba/app/helmrelease.yaml index cd5ca0cf7c..3e2ac4f746 100644 --- a/kubernetes/apps/storage/kantai1-samba/app/helmrelease.yaml +++ b/kubernetes/apps/storage/kantai1-samba/app/helmrelease.yaml @@ -10,15 +10,6 @@ spec: kind: OCIRepository name: app-template namespace: flux-system - driftDetection: - mode: enabled - install: - remediation: - retries: -1 - upgrade: - cleanupOnFail: true - remediation: - retries: 3 values: controllers: kantai1-samba: diff --git a/kubernetes/apps/storage/kantai3-samba/app/helmrelease.yaml b/kubernetes/apps/storage/kantai3-samba/app/helmrelease.yaml index 7795e13436..f69ac8994a 100644 --- a/kubernetes/apps/storage/kantai3-samba/app/helmrelease.yaml +++ b/kubernetes/apps/storage/kantai3-samba/app/helmrelease.yaml @@ -10,15 +10,6 @@ spec: kind: OCIRepository name: app-template namespace: flux-system - driftDetection: - mode: enabled - install: - remediation: - retries: -1 - upgrade: - cleanupOnFail: true - remediation: - retries: 3 values: controllers: kantai3-samba: diff --git a/kubernetes/apps/tailscale/tailscale-operator/app/helmrelease.yaml b/kubernetes/apps/tailscale/tailscale-operator/app/helmrelease.yaml index a6be0f8322..4f316e7961 100644 --- a/kubernetes/apps/tailscale/tailscale-operator/app/helmrelease.yaml +++ b/kubernetes/apps/tailscale/tailscale-operator/app/helmrelease.yaml @@ -28,17 +28,6 @@ spec: chartRef: kind: OCIRepository name: tailscale-operator - driftDetection: - mode: enabled - install: - crds: CreateReplace - remediation: - retries: -1 - upgrade: - cleanupOnFail: true - crds: CreateReplace - remediation: - retries: 3 valuesFrom: - kind: Secret name: k8s-operator-oauth-secret diff --git a/kubernetes/apps/talos-admin/tuppr/app/helmrelease.yaml b/kubernetes/apps/talos-admin/tuppr/app/helmrelease.yaml index 8a2938a6e9..3f2146d2ef 100644 --- a/kubernetes/apps/talos-admin/tuppr/app/helmrelease.yaml +++ b/kubernetes/apps/talos-admin/tuppr/app/helmrelease.yaml @@ -23,17 +23,6 @@ spec: chartRef: kind: OCIRepository name: tuppr - driftDetection: - mode: enabled - install: - crds: CreateReplace - remediation: - retries: -1 - upgrade: - cleanupOnFail: true - crds: CreateReplace - remediation: - retries: 3 values: replicaCount: 2 monitoring: diff --git a/kubernetes/apps/volsync-system/volsync/app/helmrelease.yaml b/kubernetes/apps/volsync-system/volsync/app/helmrelease.yaml index 51b06c33f4..098e6338b3 100644 --- a/kubernetes/apps/volsync-system/volsync/app/helmrelease.yaml +++ b/kubernetes/apps/volsync-system/volsync/app/helmrelease.yaml @@ -24,19 +24,11 @@ spec: kind: OCIRepository name: volsync driftDetection: - mode: enabled ignore: # Ignore "validated" annotation which is not inserted during install - paths: ["/metadata/annotations/prometheus-operator-validated"] target: kind: PrometheusRule - install: - remediation: - retries: -1 - upgrade: - cleanupOnFail: true - remediation: - retries: 3 values: fullnameOverride: volsync # Required for volsync-perfectra1n fork image: &image diff --git a/kubernetes/cluster/ks.yaml b/kubernetes/cluster/ks.yaml index 20391cbb47..b6343aafcb 100644 --- a/kubernetes/cluster/ks.yaml +++ b/kubernetes/cluster/ks.yaml @@ -15,8 +15,42 @@ spec: name: flux-system namespace: flux-system interval: 1h - retryInterval: 2m - timeout: 5m + patches: + - # Add Kustomization defaults for all child Kustomizations + patch: |- + apiVersion: kustomize.toolkit.fluxcd.io/v1 + kind: Kustomization + metadata: + name: _ + spec: + patches: + - patch: |- + apiVersion: helm.toolkit.fluxcd.io/v2 + kind: HelmRelease + metadata: + name: _ + spec: + driftDetection: + mode: enabled + install: + crds: CreateReplace + rollback: + cleanupOnFail: true + upgrade: + cleanupOnFail: true + crds: CreateReplace + strategy: + name: RemediateOnFailure + remediation: + remediateLastFailure: true + retries: 2 + target: + group: helm.toolkit.fluxcd.io + kind: HelmRelease + labelSelector: "kantai.xyz/no-hr-defaults!=true" + target: + group: kustomize.toolkit.fluxcd.io + kind: Kustomization --- # yaml-language-server: $schema=https://raw.githubusercontent.com/fluxcd-community/flux2-schemas/main/kustomization-kustomize-v1.json apiVersion: kustomize.toolkit.fluxcd.io/v1