arcodange-org/tools
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
62 Commits 2 Branches 0 Tags
2953ec3202ddbea1166345e384f844199e2c3002
Go to file
Clone
Open with VS Code Open with VSCodium Open with Intellij IDEA
Download ZIP Download TAR.GZ Download BUNDLE
Gabriel Radureau 2953ec3202
All checks were successful
Helm Charts / Detect changed charts (push) Successful in 21s
Details
Helm Charts / Library charts tool (push) Has been skipped
Details
Helm Charts / Application charts pgcat (push) Has been skipped
Details
Helm Charts / Detect changed charts (pull_request) Successful in 14s
Details
Helm Charts / Library charts tool (pull_request) Has been skipped
Details
Helm Charts / Application charts pgcat (pull_request) Has been skipped
Details
feat(vault): erp prod runtime may read the shared GCS backup creds (kv_read_paths) 
Adds an optional kv_read_paths list to the app_policy module (default []) so an
app's env=prod runtime policy can read extra kvv2 data paths — e.g. a shared
backup-creds path owned by another app. Plumbed through the root applications
schema + module call (dynamic rule, read+list).

Set for erp: kv_read_paths = ["kvv2/data/longhorn/gcs-backup"], so the dedicated
Dolibarr backup CronJob (erp chart, gated) can read the existing GCS HMAC creds
via its own VaultStaticSecret instead of borrowing the Longhorn secret
cross-namespace or duplicating credentials.

No-op for every other app (default []). Only the `erp` runtime policy gains one
read+list rule.

Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
2026-06-30 16:29:15 +02:00
.gitea/workflows
use self signed cert
2026-01-02 19:07:46 +01:00
chart
deploy prometheus
2026-03-18 16:21:31 +01:00
clickhouse
no clickhouse pod on pi2
2026-01-03 19:17:04 +01:00
crowdsec
fix(crowdsec): use Recreate strategy for lapi to avoid RWO volume multi-attach
2026-04-16 10:25:10 +02:00
grafana
configure grafana with prometheus
2026-03-18 17:07:35 +01:00
hashicorp-vault
feat(vault): erp prod runtime may read the shared GCS backup creds (kv_read_paths)
2026-06-30 16:29:15 +02:00
pgbouncer
use internal .lab instead of failing duckdns.org
2025-12-31 17:54:36 +01:00
pgcat
use internal .lab instead of failing duckdns.org
2025-12-31 17:54:36 +01:00
plausible
use internal .lab instead of failing duckdns.org
2025-12-31 17:54:36 +01:00
prometheus
deploy prometheus
2026-03-18 16:21:31 +01:00
redis
use internal .lab instead of failing duckdns.org
2025-12-31 17:54:36 +01:00
tool
add tool/NOTES.txt
2025-08-27 18:54:16 +02:00
.gitignore
fixes
2025-12-09 12:14:57 +01:00
README.md
declare tools (#1)
2024-09-04 11:00:44 +02:00

README.md

Tools

CICD:
pousser la library helm dans le registre helm de gitea

pour chaque dossier de premier niveau contenant un fichier Chart.yaml (sauf les dossier library et chart)
le pousser dans le registre helm de gitea

pgbouncer

prometheus

hashicorp vault

experiment with sops

Reference in New Issue View Git Blame Copy Permalink
Description
No description provided
Readme 716 KiB
Languages
HCL 100%