Biohazard

scottk/Biohazard

Fork 0

mirror of https://github.com/outbackdingo/Biohazard.git synced 2026-03-20 05:39:29 +00:00

9e86d8f53f fix(rook-ceph): kustomization for netpol JJGadgets 2023-05-10 10:34:01 +08:00
061e25d1f7 fix(netpols): ingress-nginx to s3 rgw JJGadgets 2023-05-10 10:31:08 +08:00
d4e604b462 fix(rook-ceph): netpol allow CNPG to RGW JJGadgets 2023-05-10 09:54:25 +08:00
626d72563c fix(cnpg): netpols JJGadgets 2023-05-10 09:48:29 +08:00
cc3e8d3384 fix(cnpg): netpols JJGadgets 2023-05-10 09:31:17 +08:00
6aafc46c02 fix(cnpg): superuser username must be postgres JJGadgets 2023-05-10 09:09:06 +08:00
516b6a0ba3 fix(cnpg): s3 rgw & netpols JJGadgets 2023-05-10 08:58:59 +08:00
c8a79f709a fix(cnpg): netpols JJGadgets 2023-05-10 08:27:29 +08:00
131dba1c92 feat(cnpg): deploy JJGadgets 2023-05-10 07:43:20 +08:00
cbc1b09b71 feat: add cnpg, pg-default db JJGadgets 2023-05-10 07:40:10 +08:00
8df9bf6a9e feat(cilium): enable policy status in k get JJGadgets 2023-05-10 04:12:25 +08:00
33e3b60902 fix(velociraptor): probe port, OIDC URL JJGadgets 2023-05-08 19:35:30 +08:00
5a9c13fe9d fix(velociraptor): kustomize, sops JJGadgets 2023-05-08 19:26:27 +08:00
dfc4d15d30 fix(dns): netpols everywhere JJGadgets 2023-05-08 10:07:06 +08:00
e19eb90f04 fix(velociraptor): rm kustomization JJGadgets 2023-05-08 09:37:24 +08:00
cf527c83ae fix(velociraptor): insecure frontend, netpol JJGadgets 2023-05-08 08:58:03 +08:00
08603d5129 fix(velociraptor): SOPS entire config JJGadgets 2023-05-08 08:48:29 +08:00
955e2ec1ef fix(velociraptor): certs encryption JJGadgets 2023-05-08 08:05:59 +08:00
90c3f919ea fix(rook-ceph): netpol allow apiserver JJGadgets 2023-05-08 07:01:50 +08:00
94fdb391d2 fix(velociraptor): wrong kustomization.yaml path JJGadgets 2023-05-08 06:53:33 +08:00
fe9f0ee1b1 feat: add velociraptor JJGadgets 2023-05-08 06:50:31 +08:00
b5b02481b9 feat(rook-ceph): netpols, fix rgw labels JJGadgets 2023-05-07 21:00:52 +08:00
b089acf8dd feat: netpols everything! JJGadgets 2023-05-07 18:51:20 +08:00
9023050d73 feat(external-proxy-x): harden JJGadgets 2023-05-06 08:35:05 +08:00
3693d57c24 fix(cert-manager): fix cert output feature gate JJGadgets 2023-05-06 07:02:49 +08:00
f41fab5e6d feat(kanidm): expose via CF JJGadgets 2023-05-06 06:58:41 +08:00
17762823db feat(k8s-gateway): query Unbound & CloudFlare if fallthrough JJGadgets 2023-05-02 18:50:53 +08:00
f122f7525c fix(certs): ECC, output formats, key rotation JJGadgets 2023-05-02 05:14:24 +08:00
5e4ba272ce Merge branch 'main' of github.com:JJGadgets/Biohazard JJGadgets 2023-05-01 09:00:35 +08:00
1533e15443 fix(volsync): restic B2 same bucket, use subpath JJGadgets 2023-05-01 09:00:13 +08:00
019ec34b31 feat(kanidm): expose publicly JJGadgets 2023-05-01 04:13:28 +08:00
d5907df5ea fix(cilium): rm ipMasqAgent JJGadgets 2023-05-01 03:27:45 +08:00
bb0348182d feat(cilium): use full eBPF JJGadgets 2023-04-29 06:17:31 +08:00
2333d10d9b feat(external-proxy-x): add README JJGadgets 2023-04-27 04:05:54 +08:00
c13edf8efc feat(external-proxy-x): add check with SNI JJGadgets 2023-04-27 03:56:24 +08:00
75d2904133 feat: add HAProxy external-proxy-x, rm ingress-nginx PROXY protocol JJGadgets 2023-04-27 03:38:24 +08:00
5e73f466cb fix(ingress-nginx): reharden header sizes JJGadgets 2023-04-26 15:04:29 +08:00
95139dd581 fix(ingress-nginx): deharden header sizes JJGadgets 2023-04-26 03:57:31 +08:00
24b66ac86a fix(cloudflared): remove https:// from SNI JJGadgets 2023-04-25 19:15:57 +08:00
e5b5a66a14 fix(cloudflared): hostnames JJGadgets 2023-04-25 18:24:22 +08:00
8011095469 fix(cloudflared): hostnames JJGadgets 2023-04-25 18:17:36 +08:00
1a76c4ab2e fix(cloudflared): service names JJGadgets 2023-04-25 17:57:12 +08:00
f7d6934deb fix(cloudflared): external-dns for tunnel JJGadgets 2023-04-25 17:48:23 +08:00
8e3ab29290 revert: external-dns label filter JJGadgets 2023-04-25 08:14:30 +08:00
1b274aa77f fix: external-dns only use label filter JJGadgets 2023-04-25 08:12:53 +08:00
3d8794704e fix: external-dns use svc, label filter JJGadgets 2023-04-25 08:11:08 +08:00
4d947c5d65 feat(cloudflare): metrics listen JJGadgets 2023-04-25 07:52:32 +08:00
3fe410e3c7 feat(cloudflare): external-dns to tunnel JJGadgets 2023-04-25 07:45:06 +08:00
cb48bd5fac fix(cloudflare): fix secret JJGadgets 2023-04-25 07:37:35 +08:00
c1b1f300d3 fix(cloudflare): fix secret JJGadgets 2023-04-25 07:36:02 +08:00
03c5c3c399 fix(cloudflare): wrong ks path JJGadgets 2023-04-25 07:30:31 +08:00
6ccb71ec63 feat: add CloudFlare tunnel JJGadgets 2023-04-25 07:29:06 +08:00
042d64cdef fix(ingress-nginx): TZ envvar, publish k8s svc status JJGadgets 2023-04-23 16:12:46 +08:00
35ad1ef2fc Revert "feat(ingress-nginx): test Cilium BGP CP source IP" JJGadgets 2023-04-23 16:08:46 +08:00
84a6c1950e feat(ingress-nginx): test Cilium BGP CP source IP JJGadgets 2023-04-22 20:45:55 +08:00
1a9a7a8c2c fix(excalidraw): use authentik k8s integrated outpost JJGadgets 2023-04-22 03:46:55 +08:00
271a68a37b fix(flux): authentik forward-auth patch use k8s integrated outpost JJGadgets 2023-04-22 03:45:20 +08:00
41e2932c85 fix(authentik k8s integration): change namespace to ingress JJGadgets 2023-04-22 03:28:15 +08:00
737426d0ce Revert "fix(authentik): add k8s integration ServiceAccount secret (1.24+)" JJGadgets 2023-04-22 03:01:22 +08:00
860627eab0 fix(authentik): add k8s integration ServiceAccount secret (1.24+) JJGadgets 2023-04-22 00:45:16 +08:00
5bb89ece3e fix(authentik): add k8s integration ServiceAccount secret (1.24) JJGadgets 2023-04-21 20:22:01 +08:00
819d942a0d feat(authentik): expose outpost JJGadgets 2023-04-21 09:22:10 +08:00
48e7dfd316 fix(flux): forward-auth patch: fix labelSelector JJGadgets 2023-04-21 09:18:49 +08:00
85c006a87f fix(excalidraw): switch forward-auth to domain-level JJGadgets 2023-04-21 09:13:06 +08:00
2e2876fb62 feat(flux): switch forward-auth patches to domain-level JJGadgets 2023-04-21 09:11:17 +08:00
f764e49398 fix(authentik): change outpost domains JJGadgets 2023-04-21 08:59:15 +08:00
d2302ab176 fix(authentik,kanidm): revert domains JJGadgets 2023-04-21 08:49:04 +08:00
185631d90a feat(authentik): add outpost for remote server JJGadgets 2023-04-21 08:29:57 +08:00
835edd94d4 feat(flux): change domains for Authentik & Kanidm JJGadgets 2023-04-21 08:25:34 +08:00
27edf9f40b feat: add default ns deps JJGadgets 2023-04-21 07:36:05 +08:00
74c8e04ad9 feat: add authentik-remote-cluster JJGadgets 2023-04-21 07:05:55 +08:00
e8ef028dff fix(excalidraw): move to default namespace JJGadgets 2023-04-21 06:51:53 +08:00
902586b91c fix(authentik): move externalName svc to default namespace JJGadgets 2023-04-21 06:50:53 +08:00
76b744dd75 feat(flux): add IP_EC2_INGRESS JJGadgets 2023-04-21 06:20:11 +08:00
965f34f78b feat(excalidraw): expose publicly JJGadgets 2023-04-21 06:11:09 +08:00
fd78fcf20f fix(external-dns): un-DRY chart spec JJGadgets 2023-04-21 05:40:07 +08:00
50cd1b39ce fix(external-dns): CF_API_TOKEN for API token, not CF_API_KEY JJGadgets 2023-04-21 05:32:55 +08:00
cfb7d667a8 fix: authentik forward-auth patch app-template paths service syntax JJGadgets 2023-04-21 04:50:20 +08:00
a40a147c87 feat(excalidraw): forward-auth JJGadgets 2023-04-21 04:28:59 +08:00
77c1a9ed79 feat: add kustomize patches for Authentik forward auth on ingress-nginx JJGadgets 2023-04-21 04:28:29 +08:00
15033f3d6f feat: add excalidraw JJGadgets 2023-04-21 03:23:40 +08:00
d5bcae8990 feat: add excalidraw JJGadgets 2023-04-21 03:22:34 +08:00
17078a2915 fix(kanidm): override header buffer size JJGadgets 2023-04-19 19:09:57 +08:00
daafd6446c revert(kanidm): fix HTTPS via LBIP 443 to ingress JJGadgets 2023-04-19 04:23:48 +08:00
f733ed20d4 fix(kanidm): fix HTTPS via LBIP 443 to ingress JJGadgets 2023-04-18 21:00:38 +08:00
05ec1f9e4a fix(kanidm): svc changes, cron, initContainers JJGadgets 2023-04-18 20:07:18 +08:00
03e9b76803 fix(kanidm): hr volumeClaimTemplates JJGadgets 2023-04-18 11:36:32 +08:00
e006d4c443 fix(kanidm): hr repo JJGadgets 2023-04-18 10:45:21 +08:00
7986a56316 fix(kanidm): hr volumeClaimTemplates JJGadgets 2023-04-18 10:41:07 +08:00
bf539afe99 fix(kanidm): kustomization JJGadgets 2023-04-18 10:39:46 +08:00
2711ad80e1 fix(kanidm): kustomization JJGadgets 2023-04-18 10:38:57 +08:00
f55fd1b015 feat: add kanidm JJGadgets 2023-04-18 10:37:29 +08:00
94fc82c7f3 fix(volsync): remove unused, B2 cap JJGadgets 2023-04-17 05:08:36 +08:00
8685c269d6 fix(volsync): remove unused, B2 cap JJGadgets 2023-04-17 05:07:10 +08:00
c2a781fcb2 fix(node-exporter): priv namespace JJGadgets 2023-04-17 04:55:56 +08:00
be39dd1058 feat(monitoring): add KSM, node-exporter, KPS stuff, VMAgent JJGadgets 2023-04-17 04:11:12 +08:00
8ed7f27900 fix(ingress-nginx): switch to daemonset JJGadgets 2023-04-17 02:54:26 +08:00
89f69cb96b feat(victoria): add cluster JJGadgets 2023-04-17 02:34:29 +08:00
3ed4bb30ed feat(syncthing): add netpol JJGadgets 2023-04-09 04:02:31 +08:00
9f233292aa feat: add syncthing w/ ks.yaml JJGadgets 2023-04-09 00:10:30 +08:00

... 61 62 63 64 65 ...

Commit Graph Select branches Hide Pull Requests main Mono Color

Commit Graph

Select branches

Hide Pull Requests

main