From a90954368e532678183bcd83154c267c3df6c1f9 Mon Sep 17 00:00:00 2001
From: Danny Bessems <danny@bessems.eu>
Date: Sun, 29 Sep 2024 13:59:09 +1000
Subject: [PATCH] Upgrade Argus;Upgrade Gitea

---
 README.md                                     | 68 ++++++-------------
 services/Argus/deployment-argus.yml           |  2 +-
 services/Gitea/deployment-gitea.yaml          |  3 +-
 ...istentvolume-flexvolsmb-sonarr-config.yaml |  2 +-
 4 files changed, 25 insertions(+), 50 deletions(-)

diff --git a/README.md b/README.md
index 93d8ec3..f9e783b 100644
--- a/README.md
+++ b/README.md
@@ -166,47 +166,41 @@ Create ArgoCD applicationset
 kubectl apply -f system/ArgoCD/applicationset-homelab.yml
 ```
 ### 5) Services
-##### 5.1) [Adminer](https://www.adminer.org/)    <small>(SQL management)</small>
+##### 5.1) [Argus]()    <small>(release management)</small>
 ```shell
-kubectl apply -f services/Adminer/configMap-Adminer.yml
-kubectl apply -f services/Adminer/deploy-Adminer.yml
-kubectl apply -f services/Adminer/sealedSecret-Adminer.yml
+kubectl apply -f services/Argus
 ```
-##### 5.2) [Vaultwarden](https://github.com/dani-garcia/vaultwarden)    <small>(password manager)</small>
+##### 5.2) [Authelia]()    <small>(single sign-on))</small>
+```shell
+kubectl apply -f services/Authelia
+```
+##### 5.3) [Vaultwarden](https://github.com/dani-garcia/vaultwarden)    <small>(password manager)</small>
 *Requires [mount.cifs](https://linux.die.net/man/8/mount.cifs)' option `nobrl`*
 ```shell
-kubectl apply -f services/Bitwarden/deploy-Bitwarden.yml
-kubectl apply -f services/Bitwarden/sealedSecret-Bitwarden.yml
+kubectl apply -f services/Vaultwarden
 ```
-##### 5.3) [DDclient](https://github.com/linuxserver/docker-ddclient)	<small>(dynamic dns)</small>
+##### 5.4) [DDclient](https://github.com/linuxserver/docker-ddclient)	<small>(dynamic dns)</small>
 ```shell
-kubectl apply -f services/DDclient/deploy-DDclient.yml
-kubectl apply -f services/DDclient/sealedSecret-DDclient.yml
-```
-##### 5.4) [DroneCI](https://drone.io/)    <small>(contineous delivery)</small>
-```shell
-kubectl apply -f services/DroneCI/deploy-DroneCI.yml
-kubectl apply -f services/DroneCI/sealedSecret-DroneCI.yml
+kubectl apply -f services/DDclient
 ```
 ##### 5.5) [Gitea](https://gitea.io/)    <small>(git repository)</small>
 ```shell
-kubectl apply -f services/Gitea/deploy-Gitea.yml
+kubectl apply -f services/Gitea
 ```
 ##### 5.6) [Gotify](https://gotify.net/)    <small>(notifications)</small>
 ```shell
-kubectl apply -f services/Gotify/deploy-Gotify.yml
+kubectl apply -f services/Gotify
 ```
 ##### 5.7) [Guacamole](https://guacamole.apache.org/doc/gug/guacamole-docker.html)    <small>(remote desktop gateway)</small>
-*Requires specifying a `uid` & `gid` in both the `securityContext` of the MySQL container and the `persistentVolume`*
+*Requires specifying a `uid` & `gid` in both the `securityContext` of the db container and the `persistentVolume`*
 ```shell
-kubectl apply -f services/Guacamole/deploy-Guacamole.yml
-kubectl apply -f services/Guacamole/sealedSecret-Guacamole.yml
+kubectl apply -f services/Guacamole
 ```
 Wait for the included containers to start, then perform the following commands to initialize the database:
 ```shell
-kubectl exec -i guacamole-<pod-id> --container guacamole -- /opt/guacamole/bin/initdb.sh --mysql > initdb.sql
-kubectl exec -i guacamole-<pod-id> --container mysql -- mysql -uguacamole -pguacamole guacamole < initdb.sql
-kubectl rollout restart deployment guacamole
+kubectl exec -n guacamole -i guacamole-<pod-id> --container guacamole -- /opt/guacamole/bin/initdb.sh --postgresql > initdb.sql
+kubectl exec -n guacamole -i guacamole-<pod-id> --container db -- psql -Uguacamole -f - < initdb.sql
+kubectl rollout restart deployment -n guacamole guacamole
 ```
 
 ##### 5.8) [Lighttpd](https://www.lighttpd.net/)    <small>(webserver)</small>
@@ -222,11 +216,7 @@ kubectl create secret generic --type=mount/smb smb-secret --from-literal=usernam
 kubectl apply -f services/PVR/persistentVolumeClaim-PVR.yml
 kubectl apply -f services/PVR/storageClass-PVR.yml
 ```
-###### 5.9.1) [Overseerr](https://overseerr.dev/)    <small>(request management)</small>
-```shell
-kubectl apply -f services/PVR/deploy-Overseerr.yml
-```
-###### 5.9.2) [Plex](https://www.plex.tv/)    <small>(media library)</small>
+###### 5.9.1) [Plex](https://www.plex.tv/)    <small>(media library)</small>
 *Due to usage of symlinks, partially incompatible with SMB-share-backed storage*
 ```shell
 kubectl apply -f services/PVR/deploy-Plex.yml
@@ -236,37 +226,23 @@ After deploying, Plex server needs to be *claimed* (=assigned to Plex-account):
 kubectl get endpoints Plex -n PVR
 ```
 Browse to the respective IP address (http://<nodeipaddress>:32440/web) and follow instructions.
-###### 5.9.3) [Prowlarr](https://github.com/Prowlarr/Prowlarr)    <small>(indexer management)</small>
+###### 5.9.2) [Prowlarr](https://github.com/Prowlarr/Prowlarr)    <small>(indexer management)</small>
 ```shell
 kubectl apply -f services/PVR/deploy-Prowlarr.yml
 ```
-###### 5.9.4) [Radarr](https://radarr.video/)    <small>(movie management)</small>
+###### 5.9.3) [Radarr](https://radarr.video/)    <small>(movie management)</small>
 ```shell
 kubectl apply -f services/PVR/deploy-Radarr.yml
 ```
-###### 5.9.5) [Readarr](https://readarr.com/)    <small>(book management)</small>
-```shell
-kubectl apply -f services/PVR/deploy-Readarr.yml
-```
-###### 5.9.6) [SABnzbd](https://sabnzbd.org/)    <small>(download client)</small>
+###### 5.9.4) [SABnzbd](https://sabnzbd.org/)    <small>(download client)</small>
 ```shell
 kubectl apply -f services/PVR/deploy-SABnzbd.yml
 ```
-###### 5.9.7) [Sonarr](https://sonarr.tv/)    <small>(tv management)</small>
+###### 5.9.5) [Sonarr](https://sonarr.tv/)    <small>(tv management)</small>
 ```shell
 kubectl apply -f services/PVR/deploy-Sonarr.yml
 ```
 
-##### 5.10) [Shaarli](https://github.com/shaarli/Shaarli)    <small>(bookmarks/notes)</small>
-```shell
-kubectl apply -f services/Shaarli/deploy-Shaarli.yml
-```
-
-##### 5.11) [Traefik-Certs-Dumper](https://github.com/ldez/traefik-certs-dumper)    <small>(certificate tooling)</small>
-```shell
-kubectl apply -f services/TraefikCertsDumper/deploy-TraefikCertsDumper.yml
-```
-
 ### 6) Miscellaneous
 *Various notes/useful links*
 
diff --git a/services/Argus/deployment-argus.yml b/services/Argus/deployment-argus.yml
index a756fc9..f4aa663 100644
--- a/services/Argus/deployment-argus.yml
+++ b/services/Argus/deployment-argus.yml
@@ -18,7 +18,7 @@ spec:
       serviceAccountName: argus
       containers:
       - name: argus
-        image: releaseargus/argus:0.16.0
+        image: releaseargus/argus:0.18.0
         args:
         - -config.file=/app/config/config.yml
         ports:
diff --git a/services/Gitea/deployment-gitea.yaml b/services/Gitea/deployment-gitea.yaml
index 13ccd18..d3b9c08 100644
--- a/services/Gitea/deployment-gitea.yaml
+++ b/services/Gitea/deployment-gitea.yaml
@@ -17,8 +17,7 @@ spec:
     spec:
       containers:
       - name: gitea
-        # image: bv11-cr01.bessems.eu/proxy/gitea/gitea:1.21
-        image: gitea/gitea:1.21
+        image: gitea/gitea:1.22
         imagePullPolicy: Always
         env:
         - name: DB_TYPE
diff --git a/services/PVR/Sonarr/persistentvolume-flexvolsmb-sonarr-config.yaml b/services/PVR/Sonarr/persistentvolume-flexvolsmb-sonarr-config.yaml
index 3b74c2f..b8d2de9 100644
--- a/services/PVR/Sonarr/persistentvolume-flexvolsmb-sonarr-config.yaml
+++ b/services/PVR/Sonarr/persistentvolume-flexvolsmb-sonarr-config.yaml
@@ -14,6 +14,6 @@ spec:
     secretRef:
       name: flexvolsmb-credentials
     options:
-      opts: file_mode=0777,dir_mode=0777,uid=1000,gid=1000,iocharset=utf8
+      opts: file_mode=0777,dir_mode=0777,uid=1000,gid=1000,iocharset=utf8,nobrl
       server: 192.168.154.225
       share: /K3s.Volumes/sonarr/config