diff --git a/authelia/kustomization.yaml b/authelia/kustomization.yaml index e824476..79eb7dd 100644 --- a/authelia/kustomization.yaml +++ b/authelia/kustomization.yaml @@ -57,4 +57,4 @@ patches: name: dch-root-ca images: - name: ghcr.io/authelia/authelia - newTag: 4.38.16 + newTag: 4.38.17 diff --git a/firefly-iii/kustomization.yaml b/firefly-iii/kustomization.yaml index afe32f2..694db58 100644 --- a/firefly-iii/kustomization.yaml +++ b/firefly-iii/kustomization.yaml @@ -55,4 +55,4 @@ patches: defaultMode: 0640 images: - name: docker.io/fireflyiii/core - newTag: version-6.1.21 + newTag: version-6.1.22 diff --git a/home-assistant/kustomization.yaml b/home-assistant/kustomization.yaml index 738951b..495a452 100644 --- a/home-assistant/kustomization.yaml +++ b/home-assistant/kustomization.yaml @@ -117,14 +117,14 @@ patches: name: dch-root-ca images: - name: ghcr.io/home-assistant/home-assistant - newTag: 2024.10.3 + newTag: 2024.11.2 - name: docker.io/rhasspy/wyoming-whisper newTag: 2.2.0 - name: docker.io/rhasspy/wyoming-piper newTag: 1.5.0 - name: docker.io/koenkk/zigbee2mqtt - newTag: 1.40.2 + newTag: 1.41.0 - name: docker.io/zwavejs/zwave-js-ui - newTag: 9.24.0 + newTag: 9.27.2 - name: docker.io/library/eclipse-mosquitto newTag: 2.0.20 diff --git a/paperless-ngx/kustomization.yaml b/paperless-ngx/kustomization.yaml index 91fe3fe..6006e6b 100644 --- a/paperless-ngx/kustomization.yaml +++ b/paperless-ngx/kustomization.yaml @@ -45,8 +45,8 @@ patches: images: - name: ghcr.io/paperless-ngx/paperless-ngx - newTag: 2.12.1 + newTag: 2.13.5 - name: docker.io/gotenberg/gotenberg - newTag: 8.12.0 + newTag: 8.13.0 - name: docker.io/apache/tika - newTag: 2.9.2.1 + newTag: 3.0.0.0 diff --git a/rabbitmq/rabbitmq.yaml b/rabbitmq/rabbitmq.yaml index b6f02db..cf8998a 100644 --- a/rabbitmq/rabbitmq.yaml +++ b/rabbitmq/rabbitmq.yaml @@ -1,19 +1,4 @@ apiVersion: v1 -kind: PersistentVolumeClaim -metadata: - name: rabbitmq - labels: - app.kubernetes.io/name: rabbitmq - app.kubernetes.io/component: rabbitmq -spec: - accessModes: - - ReadWriteOnce - resources: - requests: - storage: 1Gi - ---- -apiVersion: v1 kind: Service metadata: labels: @@ -51,7 +36,7 @@ spec: spec: containers: - name: rabbitmq - image: docker.io/library/rabbitmq:3.13-alpine + image: docker.io/library/rabbitmq:4.0-alpine ports: - name: amqps containerPort: 5671 @@ -82,7 +67,7 @@ spec: name: tmp subPath: tmp - mountPath: /var/lib/rabbitmq - name: rabbitmq-data + name: data subPath: data securityContext: runAsNonRoot: true @@ -98,10 +83,20 @@ spec: - name: rabbitmq-config configMap: name: rabbitmq - - name: rabbitmq-data - persistentVolumeClaim: - claimName: rabbitmq - name: tmp emptyDir: medium: Memory - + volumeClaimTemplates: + - apiVersion: v1 + kind: PersistentVolumeClaim + metadata: + name: data + labels: + app.kubernetes.io/name: rabbitmq + app.kubernetes.io/component: rabbitmq + spec: + accessModes: + - ReadWriteOnce + resources: + requests: + storage: 1Gi diff --git a/storage/longhorn-settings.yaml b/storage/longhorn-settings.yaml index a8e91d7..51cb66e 100644 --- a/storage/longhorn-settings.yaml +++ b/storage/longhorn-settings.yaml @@ -3,4 +3,4 @@ kind: Setting metadata: name: taint-toleration namespace: longhorn-system -value: du5t1n.me/machine=raspberrypi:NoExecute +value: du5t1n.me/machine=raspberrypi:NoExecute;node-role.kubernetes.io/longhorn:NoSchedule diff --git a/storage/longhorn.yaml b/storage/longhorn.yaml index 3732e65..cabb0f1 100644 --- a/storage/longhorn.yaml +++ b/storage/longhorn.yaml @@ -63,7 +63,7 @@ data: reclaimPolicy: "Delete" volumeBindingMode: Immediate parameters: - numberOfReplicas: "3" + numberOfReplicas: "2" staleReplicaTimeout: "30" fromBackup: "" fsType: "ext4" @@ -3877,6 +3877,9 @@ spec: - key: du5t1n.me/machine operator: Exists effect: NoExecute + - key: node-role.kubernetes.io/longhorn + operator: Exists + effect: NoSchedule initContainers: - name: wait-longhorn-admission-webhook image: longhornio/longhorn-manager:v1.4.1 @@ -4017,9 +4020,15 @@ spec: value: "longhornio/csi-snapshotter:v5.0.1" - name: CSI_LIVENESS_PROBE_IMAGE value: "longhornio/livenessprobe:v2.8.0" + nodeSelector: + node-role.kubernetes.io/longhorn: '' serviceAccountName: longhorn-service-account securityContext: runAsUser: 0 + tolerations: + - key: node-role.kubernetes.io/longhorn + operator: Exists + effect: NoSchedule --- # Source: longhorn/templates/deployment-recovery-backend.yaml apiVersion: apps/v1 @@ -4085,7 +4094,13 @@ spec: valueFrom: fieldRef: fieldPath: spec.nodeName + nodeSelector: + node-role.kubernetes.io/longhorn: '' serviceAccountName: longhorn-service-account + tolerations: + - key: node-role.kubernetes.io/longhorn + operator: Exists + effect: NoSchedule --- # Source: longhorn/templates/deployment-ui.yaml apiVersion: apps/v1 @@ -4099,7 +4114,7 @@ metadata: name: longhorn-ui namespace: longhorn-system spec: - replicas: 1 + replicas: 2 selector: matchLabels: app: longhorn-ui @@ -4142,6 +4157,12 @@ spec: value: "http://longhorn-backend:9500" - name: LONGHORN_UI_PORT value: "8000" + nodeSelector: + node-role.kubernetes.io/longhorn: '' + tolerations: + - key: node-role.kubernetes.io/longhorn + operator: Exists + effect: NoSchedule volumes: - emptyDir: {} name: nginx-cache @@ -4208,7 +4229,13 @@ spec: valueFrom: fieldRef: fieldPath: metadata.namespace + nodeSelector: + node-role.kubernetes.io/longhorn: '' serviceAccountName: longhorn-service-account + tolerations: + - key: node-role.kubernetes.io/longhorn + operator: Exists + effect: NoSchedule --- # Source: longhorn/templates/deployment-webhook.yaml apiVersion: apps/v1 @@ -4279,7 +4306,13 @@ spec: valueFrom: fieldRef: fieldPath: spec.nodeName + nodeSelector: + node-role.kubernetes.io/longhorn: '' serviceAccountName: longhorn-service-account + tolerations: + - key: node-role.kubernetes.io/longhorn + operator: Exists + effect: NoSchedule --- # Source: longhorn/templates/validate-psp-install.yaml #