github-personal/Biohazard
1
0
Fork 0
mirror of https://github.com/outbackdingo/Biohazard.git synced 2026-01-27 10:18:27 +00:00
Code Issues Packages Projects Releases Wiki Activity

feat(navidrome): add edit container, fix ingress

Browse Source
This commit is contained in:
JJGadgets
2025-04-13 03:23:00 +08:00
parent 2098531ed3
commit d4ab4cc8f4
2 changed files with 96 additions and 29 deletions
Download Patch File Download Diff File Expand all files Collapse all files

38
.github/workflows/renovate-sort-prs.py vendored Normal file
View File

@@ -0,0 +1,38 @@
from os import environ
import requests
from operator import itemgetter
import re
repo = environ.get("GITHUB_REPOSITORY")
ghToken = environ.get("GH_TOKEN")
req = requests.get(url = f"https://api.github.com/repos/{repo}/pulls", headers = {"Authorization": f"Token {ghToken}", "Accept": "application/vnd.github+json"})
prData: list[dict[str, str]] = [{k: v for k, v in d.items() if k in ["title", "html_url"]} for d in req.json()] # pyright: ignore[reportAny]]
for d in prData:
r = re.search(r"(feat|fix|chore)\(([^/]*)/(.*)\)(!*): (?:[a-zA-Z]*) *([^ ]*) *(?:➼|to) v*([^ ]+)[ -]*([a-zA-Z]*)$", d["title"])
if r.group(4) == "!":
d["type"] = "1"
if r.group(1) == "feat":
d["type"] = "2"
if r.group(1) == "fix":
d["type"] = "3"
if r.group(1) == "chore":
d["type"] = "4"
else:
d["type"] = "5"
d["datasource"] = r.group(2)
d["depName"] = r.group(3)
d["oldVersion"] = r.group(5)
d["newVersion"] = r.group(6)
if r.group(7):
d["cluster"] = r.group(7)
else:
d["cluster"] = ""
prData.sort(key = itemgetter("newVersion"), reverse=True)
prData.sort(key = itemgetter("depName", "datasource", "cluster", "type", "oldVersion"))
# print(prData)
for d in prData:
print(f"[{d['title']}]({d['html_url']})")

87
kube/deploy/apps/media/navidrome/app/hr.yaml
View File

@@ -67,10 +67,39 @@ spec:
resources:
requests:
cpu: "10m"
memory: "128Mi"
limits:
cpu: "1"
memory: "512Mi"
memory: "150Mi"
probes:
liveness:
enabled: true
readiness:
enabled: true
edit:
image: &img
repository: ghcr.io/home-operations/beets
tag: 2.2.0@sha256:3e7deec6333a51975458966bd70ecedc1156edfda30faaf2a346f3b79fda82fe
command: ["/usr/bin/catatonit", "--", "/usr/bin/env", "bash", "-c", "sleep infinity"] # just the CLI ma'am, just the CLI
env:
TZ: "${CONFIG_TZ}"
VIRTUAL_ENV: /.venv
PATH: "/.venv/bin:$(PATH)"
envFrom: &envFrom
- secretRef:
name: navidrome-secrets
securityContext: &sc
runAsUser: 65534
readOnlyRootFilesystem: true
allowPrivilegeEscalation: false
capabilities:
drop: ["ALL"]
resources:
requests:
cpu: "0m"
memory: "0Mi"
limits:
cpu: "2"
memory: "2Gi"
probes:
liveness:
enabled: true
@@ -86,28 +115,15 @@ spec:
appProtocol: http
ingress:
main:
className: nginx-internal
annotations: {}
hosts:
- host: &host "${APP_DNS_NAVIDROME:=navidrome}"
paths: &paths
- path: /
pathType: Prefix
service:
identifier: navidrome
port: http
tls:
- hosts: [*host]
auth-signin:
className: nginx-internal
annotations:
nginx.ingress.kubernetes.io/auth-signin: |-
https://${APP_DNS_NAVIDROME}/outpost.goauthentik.io/start?rd=$escaped_request_uri
hosts:
- host: &host "${APP_DNS_NAVIDROME:=navidrome}"
paths: &paths
paths:
- path: /
pathType: Exact
pathType: Prefix
service:
identifier: navidrome
port: http
@@ -136,22 +152,35 @@ spec:
path: /data
media:
existingClaim: media-data
globalMounts:
- subPath: Music
path: /media/ceph
readOnly: true
advancedMounts:
navidrome:
edit:
- &mount
subPath: Music
path: /media/ceph
main:
- <<: *mount
readOnly: true
bulk:
existingClaim: media-bulk
advancedMounts:
navidrome:
edit:
- subPath: music-edit-venv
path: /.venv
nfs:
type: nfs
server: "${IP_TRUENAS:=127.0.0.1}"
path: "${PATH_NAS_MEDIA:=/media}"
globalMounts:
- subPath: Music
path: /media/nfs
readOnly: true
tmp:
type: emptyDir
medium: Memory
sizeLimit: 128Mi
advancedMounts:
navidrome:
edit:
- &mount
subPath: Music
path: /media/nfs
main:
- <<: *mount
readOnly: true
defaultPodOptions:
automountServiceAccountToken: false
enableServiceLinks: false