Skip to content

Commit fd13aba

Browse files
committed
up
1 parent a82ac74 commit fd13aba

16 files changed

Lines changed: 138 additions & 89 deletions

File tree

infrastructure/controllers/1passwordconnect/kustomization.yaml

Lines changed: 4 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -1,6 +1,10 @@
11
apiVersion: kustomize.config.k8s.io/v1beta1
22
kind: Kustomization
33
namespace: 1passwordconnect
4+
5+
commonAnnotations:
6+
argocd.argoproj.io/sync-wave: "0"
7+
48
helmCharts:
59
- name: connect
610
repo: https://1password.github.io/connect-helm-charts

infrastructure/controllers/argocd/apps/infrastructure-appset.yaml

Lines changed: 4 additions & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -4,7 +4,7 @@ metadata:
44
name: infrastructure
55
namespace: argocd
66
annotations:
7-
argocd.argoproj.io/sync-wave: "2"
7+
argocd.argoproj.io/sync-wave: "4"
88
spec:
99
generators:
1010
- git:
@@ -28,7 +28,10 @@ spec:
2828
- path: infrastructure/storage/csi-driver-nfs
2929
- path: infrastructure/storage/csi-driver-smb
3030
- path: infrastructure/storage/local-storage
31+
- path: infrastructure/storage/longhorn
3132
- path: infrastructure/storage/openebs
33+
- path: infrastructure/storage/snapshot-controller
34+
- path: infrastructure/storage/volsync
3235
- path: infrastructure/database/*/*
3336
- path: infrastructure/crds
3437
template:

infrastructure/controllers/argocd/apps/monitoring-appset.yaml

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -4,7 +4,7 @@ metadata:
44
name: monitoring
55
namespace: argocd
66
annotations:
7-
argocd.argoproj.io/sync-wave: "3"
7+
argocd.argoproj.io/sync-wave: "5"
88
spec:
99
generators:
1010
- git:

infrastructure/controllers/argocd/apps/my-apps-appset.yaml

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -4,7 +4,7 @@ metadata:
44
name: my-apps
55
namespace: argocd
66
annotations:
7-
argocd.argoproj.io/sync-wave: "4"
7+
argocd.argoproj.io/sync-wave: "6"
88
spec:
99
generators:
1010
- git:

infrastructure/controllers/external-secrets/kustomization.yaml

Lines changed: 4 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -1,6 +1,10 @@
11
apiVersion: kustomize.config.k8s.io/v1beta1
22
kind: Kustomization
33
namespace: external-secrets
4+
5+
commonAnnotations:
6+
argocd.argoproj.io/sync-wave: "1"
7+
48
resources:
59
- external-secret.yaml
610
- cluster-secret-store.yaml

infrastructure/networking/cilium/values.yaml

Lines changed: 9 additions & 5 deletions
Original file line numberDiff line numberDiff line change
@@ -1,4 +1,8 @@
11
# Cilium Helm Values for Talos Proxmox Production Cluster
2+
# ArgoCD Sync Wave: 0 (Foundation - must deploy before everything else)
3+
annotations:
4+
argocd.argoproj.io/sync-wave: "0"
5+
26
# Cluster Configuration
37
cluster:
48
name: talos-prod-cluster
@@ -54,14 +58,14 @@ socketLB:
5458
# Enable Bandwidth Manager for better TCP performance
5559
bandwidthManager:
5660
enabled: true
57-
bbr: true # Enable BBR congestion control
61+
bbr: true # Enable BBR congestion control
5862

5963
# BPF Host Routing
6064
bpf:
6165
masquerade: true
6266
# Connection tracking improvements for better session handling
63-
ctTcpTimeout: 21600 # 6 hours (default is 6 hours but explicit is better)
64-
ctAnyTimeout: 3600 # 1 hour for non-TCP connections
67+
ctTcpTimeout: 21600 # 6 hours (default is 6 hours but explicit is better)
68+
ctAnyTimeout: 3600 # 1 hour for non-TCP connections
6569

6670
# L2 Announcements for LoadBalancer Services
6771
l2announcements:
@@ -92,7 +96,7 @@ gatewayAPI:
9296
externalTrafficPolicy: Local
9397
# Enable session affinity for consistent routing
9498
sessionAffinity: true
95-
sessionAffinityTimeoutSeconds: 10800 # 3 hours
99+
sessionAffinityTimeoutSeconds: 10800 # 3 hours
96100

97101
# Hubble (Observability)
98102
hubble:
@@ -113,4 +117,4 @@ operator:
113117
- labelSelector:
114118
matchLabels:
115119
io.cilium/app: operator
116-
topologyKey: kubernetes.io/hostname
120+
topologyKey: kubernetes.io/hostname

infrastructure/storage/csi-driver-nfs/namespace.yaml

Lines changed: 3 additions & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -2,7 +2,9 @@ apiVersion: v1
22
kind: Namespace
33
metadata:
44
name: csi-driver-nfs
5+
annotations:
6+
argocd.argoproj.io/sync-wave: "2"
57
labels:
68
pod-security.kubernetes.io/enforce: privileged
79
pod-security.kubernetes.io/audit: privileged
8-
pod-security.kubernetes.io/warn: privileged
10+
pod-security.kubernetes.io/warn: privileged

infrastructure/storage/csi-driver-smb/namespace.yaml

Lines changed: 3 additions & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -2,7 +2,9 @@ apiVersion: v1
22
kind: Namespace
33
metadata:
44
name: csi-driver-smb
5+
annotations:
6+
argocd.argoproj.io/sync-wave: "2"
57
labels:
68
pod-security.kubernetes.io/enforce: privileged
79
pod-security.kubernetes.io/audit: privileged
8-
pod-security.kubernetes.io/warn: privileged
10+
pod-security.kubernetes.io/warn: privileged

infrastructure/storage/longhorn/namespace.yaml

Lines changed: 2 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -2,5 +2,7 @@ apiVersion: v1
22
kind: Namespace
33
metadata:
44
name: longhorn-system
5+
annotations:
6+
argocd.argoproj.io/sync-wave: "2"
57
labels:
68
pod-security.kubernetes.io/enforce: privileged

infrastructure/storage/openebs/namespace.yaml

Lines changed: 2 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -2,6 +2,8 @@ apiVersion: v1
22
kind: Namespace
33
metadata:
44
name: openebs
5+
annotations:
6+
argocd.argoproj.io/sync-wave: "2"
57
labels:
68
pod-security.kubernetes.io/audit: privileged
79
pod-security.kubernetes.io/enforce: privileged

0 commit comments

Comments
 (0)