Actualizando minio

La ultima version de minio borro el panel de administracion...

manifest/04-minio/minio.yml

@@ -31,7 +31,7 @@ spec:
             secretKeyRef:
               name: minio-secret
               key: pass
-        image: minio/minio:RELEASE.2025-03-12T18-04-18Z
+        image: minio/minio:RELEASE.2025-04-22T22-12-26Z
         args:
         - server
         - http://minio-0.minio.minio.svc.cluster.local/data

manifest/06-external-ingress/certificates.yml

@@ -1,221 +0,0 @@
-apiVersion: cert-manager.io/v1
-kind: Certificate
-metadata:
-  name: actual-certificate
-  namespace: external-services
-spec:
-  secretName: actual-skrd-fun-tls
-  dnsNames:
-    - "actual.skrd.fun"
-  issuerRef:
-    name: letsencrypt-prod
-    kind: ClusterIssuer
----
-apiVersion: cert-manager.io/v1
-kind: Certificate
-metadata:
-  name: haos-certificate
-  namespace: external-services
-spec:
-  secretName: haos-skrd-fun-tls
-  dnsNames:
-    - "haos.skrd.fun"
-  issuerRef:
-    name: letsencrypt-prod
-    kind: ClusterIssuer
----
-apiVersion: cert-manager.io/v1
-kind: Certificate
-metadata:
-  name: firefly-certificate
-  namespace: external-services
-spec:
-  secretName: firefly-skrd-fun-tls
-  dnsNames:
-    - "firefly.skrd.fun"
-  issuerRef:
-    name: letsencrypt-prod
-    kind: ClusterIssuer
----
-apiVersion: cert-manager.io/v1
-kind: Certificate
-metadata:
-  name: gametabs-certificate
-  namespace: external-services
-spec:
-  secretName: gametabs-skrd-fun-tls
-  dnsNames:
-    - "gametabs.skrd.fun"
-  issuerRef:
-    name: letsencrypt-prod
-    kind: ClusterIssuer
----
-apiVersion: cert-manager.io/v1
-kind: Certificate
-metadata:
-  name: git-certificate
-  namespace: external-services
-spec:
-  secretName: git-skrd-fun-tls
-  dnsNames:
-    - "git.skrd.fun"
-  issuerRef:
-    name: letsencrypt-prod
-    kind: ClusterIssuer
----
-apiVersion: cert-manager.io/v1
-kind: Certificate
-metadata:
-  name: jackett-certificate
-  namespace: external-services
-spec:
-  secretName: jackett-skrd-fun-tls
-  dnsNames:
-    - "jackett.skrd.fun"
-  issuerRef:
-    name: letsencrypt-prod
-    kind: ClusterIssuer
----
-apiVersion: cert-manager.io/v1
-kind: Certificate
-metadata:
-  name: jelly-certificate
-  namespace: external-services
-spec:
-  secretName: jelly-skrd-fun-tls
-  dnsNames:
-    - "jelly.skrd.fun"
-  issuerRef:
-    name: letsencrypt-prod
-    kind: ClusterIssuer
----
-apiVersion: cert-manager.io/v1
-kind: Certificate
-metadata:
-  name: navi-certificate
-  namespace: external-services
-spec:
-  secretName: navi-skrd-fun-tls
-  dnsNames:
-    - "navi.skrd.fun"
-  issuerRef:
-    name: letsencrypt-prod
-    kind: ClusterIssuer
----
-apiVersion: cert-manager.io/v1
-kind: Certificate
-metadata:
-  name: npm-certificate
-  namespace: external-services
-spec:
-  secretName: npm-skrd-fun-tls
-  dnsNames:
-    - "npm.skrd.fun"
-  issuerRef:
-    name: letsencrypt-prod
-    kind: ClusterIssuer
----
-apiVersion: cert-manager.io/v1
-kind: Certificate
-metadata:
-  name: omv-certificate
-  namespace: external-services
-spec:
-  secretName: omv-skrd-fun-tls
-  dnsNames:
-    - "omv.skrd.fun"
-  issuerRef:
-    name: letsencrypt-prod
-    kind: ClusterIssuer
----
-apiVersion: cert-manager.io/v1
-kind: Certificate
-metadata:
-  name: photos-certificate
-  namespace: external-services
-spec:
-  secretName: photos-skrd-fun-tls
-  dnsNames:
-    - "photos.skrd.fun"
-  issuerRef:
-    name: letsencrypt-prod
-    kind: ClusterIssuer
----
-apiVersion: cert-manager.io/v1
-kind: Certificate
-metadata:
-  name: pihole-certificate
-  namespace: external-services
-spec:
-  secretName: pihole-skrd-fun-tls
-  dnsNames:
-    - "pihole.skrd.fun"
-  issuerRef:
-    name: letsencrypt-prod
-    kind: ClusterIssuer
----
-apiVersion: cert-manager.io/v1
-kind: Certificate
-metadata:
-  name: portainer-certificate
-  namespace: external-services
-spec:
-  secretName: portainer-skrd-fun-tls
-  dnsNames:
-    - "portainer.skrd.fun"
-  issuerRef:
-    name: letsencrypt-prod
-    kind: ClusterIssuer
----
-apiVersion: cert-manager.io/v1
-kind: Certificate
-metadata:
-  name: radarr-certificate
-  namespace: external-services
-spec:
-  secretName: radarr-skrd-fun-tls
-  dnsNames:
-    - "radarr.skrd.fun"
-  issuerRef:
-    name: letsencrypt-prod
-    kind: ClusterIssuer
----
-apiVersion: cert-manager.io/v1
-kind: Certificate
-metadata:
-  name: sonarr-certificate
-  namespace: external-services
-spec:
-  secretName: sonarr-skrd-fun-tls
-  dnsNames:
-    - "sonarr.skrd.fun"
-  issuerRef:
-    name: letsencrypt-prod
-    kind: ClusterIssuer
----
-apiVersion: cert-manager.io/v1
-kind: Certificate
-metadata:
-  name: torrent-certificate
-  namespace: external-services
-spec:
-  secretName: torrent-skrd-fun-tls
-  dnsNames:
-    - "torrent.skrd.fun"
-  issuerRef:
-    name: letsencrypt-prod
-    kind: ClusterIssuer
----
-apiVersion: cert-manager.io/v1
-kind: Certificate
-metadata:
-  name: notes-certificate
-  namespace: external-services
-spec:
-  secretName: notes-skrd-fun-tls
-  dnsNames:
-    - "notes.skrd.fun"
-  issuerRef:
-    name: letsencrypt-prod
-    kind: ClusterIssuer
----

manifest/06-external-ingress/sites/firefly.yml

@@ -1,3 +1,16 @@
+apiVersion: cert-manager.io/v1
+kind: Certificate
+metadata:
+  name: firefly-certificate
+  namespace: external-services
+spec:
+  secretName: firefly-skrd-fun-tls
+  dnsNames:
+    - "firefly.skrd.fun"
+  issuerRef:
+    name: letsencrypt-prod
+    kind: ClusterIssuer
+---
 kind: Service
 apiVersion: v1
 metadata:

manifest/06-external-ingress/sites/gametabs.yml

@@ -1,3 +1,16 @@
+apiVersion: cert-manager.io/v1
+kind: Certificate
+metadata:
+  name: gametabs-certificate
+  namespace: external-services
+spec:
+  secretName: gametabs-skrd-fun-tls
+  dnsNames:
+    - "gametabs.skrd.fun"
+  issuerRef:
+    name: letsencrypt-prod
+    kind: ClusterIssuer
+---
 kind: Service
 apiVersion: v1
 metadata:

manifest/06-external-ingress/sites/git.yml

@@ -1,3 +1,16 @@
+apiVersion: cert-manager.io/v1
+kind: Certificate
+metadata:
+  name: git-certificate
+  namespace: external-services
+spec:
+  secretName: git-skrd-fun-tls
+  dnsNames:
+    - "git.skrd.fun"
+  issuerRef:
+    name: letsencrypt-prod
+    kind: ClusterIssuer
+---
 kind: Service
 apiVersion: v1
 metadata:

manifest/06-external-ingress/sites/hedgedoc.yml

@@ -1,3 +1,16 @@
+apiVersion: cert-manager.io/v1
+kind: Certificate
+metadata:
+  name: notes-certificate
+  namespace: external-services
+spec:
+  secretName: notes-skrd-fun-tls
+  dnsNames:
+    - "notes.skrd.fun"
+  issuerRef:
+    name: letsencrypt-prod
+    kind: ClusterIssuer
+---
 kind: Service
 apiVersion: v1
 metadata:

manifest/06-external-ingress/sites/home-assistant.yml

@@ -1,3 +1,16 @@
+apiVersion: cert-manager.io/v1
+kind: Certificate
+metadata:
+  name: haos-certificate
+  namespace: external-services
+spec:
+  secretName: haos-skrd-fun-tls
+  dnsNames:
+    - "haos.skrd.fun"
+  issuerRef:
+    name: letsencrypt-prod
+    kind: ClusterIssuer
+---
 kind: Service
 apiVersion: v1
 metadata:

manifest/06-external-ingress/sites/jackett.yml

@@ -1,3 +1,16 @@
+apiVersion: cert-manager.io/v1
+kind: Certificate
+metadata:
+  name: jackett-certificate
+  namespace: external-services
+spec:
+  secretName: jackett-skrd-fun-tls
+  dnsNames:
+    - "jackett.skrd.fun"
+  issuerRef:
+    name: letsencrypt-prod
+    kind: ClusterIssuer
+---
 kind: Service
 apiVersion: v1
 metadata:

manifest/06-external-ingress/sites/jelly.yml

@@ -1,3 +1,16 @@
+apiVersion: cert-manager.io/v1
+kind: Certificate
+metadata:
+  name: jelly-certificate
+  namespace: external-services
+spec:
+  secretName: jelly-skrd-fun-tls
+  dnsNames:
+    - "jelly.skrd.fun"
+  issuerRef:
+    name: letsencrypt-prod
+    kind: ClusterIssuer
+---
 kind: Service
 apiVersion: v1
 metadata:

manifest/06-external-ingress/sites/navi.yml

@@ -1,3 +1,16 @@
+apiVersion: cert-manager.io/v1
+kind: Certificate
+metadata:
+  name: navi-certificate
+  namespace: external-services
+spec:
+  secretName: navi-skrd-fun-tls
+  dnsNames:
+    - "navi.skrd.fun"
+  issuerRef:
+    name: letsencrypt-prod
+    kind: ClusterIssuer
+---
 kind: Service
 apiVersion: v1
 metadata:

manifest/06-external-ingress/sites/npm.yml

@@ -1,3 +1,16 @@
+apiVersion: cert-manager.io/v1
+kind: Certificate
+metadata:
+  name: npm-certificate
+  namespace: external-services
+spec:
+  secretName: npm-skrd-fun-tls
+  dnsNames:
+    - "npm.skrd.fun"
+  issuerRef:
+    name: letsencrypt-prod
+    kind: ClusterIssuer
+---
 kind: Service
 apiVersion: v1
 metadata:

manifest/06-external-ingress/sites/omv.yml

@@ -1,3 +1,16 @@
+apiVersion: cert-manager.io/v1
+kind: Certificate
+metadata:
+  name: omv-certificate
+  namespace: external-services
+spec:
+  secretName: omv-skrd-fun-tls
+  dnsNames:
+    - "omv.skrd.fun"
+  issuerRef:
+    name: letsencrypt-prod
+    kind: ClusterIssuer
+---
 kind: Service
 apiVersion: v1
 metadata:

manifest/06-external-ingress/sites/photos.yml

@@ -1,3 +1,16 @@
+apiVersion: cert-manager.io/v1
+kind: Certificate
+metadata:
+  name: photos-certificate
+  namespace: external-services
+spec:
+  secretName: photos-skrd-fun-tls
+  dnsNames:
+    - "photos.skrd.fun"
+  issuerRef:
+    name: letsencrypt-prod
+    kind: ClusterIssuer
+---
 kind: Service
 apiVersion: v1
 metadata:

manifest/06-external-ingress/sites/pihole.yml

@@ -1,3 +1,16 @@
+apiVersion: cert-manager.io/v1
+kind: Certificate
+metadata:
+  name: pihole-certificate
+  namespace: external-services
+spec:
+  secretName: pihole-skrd-fun-tls
+  dnsNames:
+    - "pihole.skrd.fun"
+  issuerRef:
+    name: letsencrypt-prod
+    kind: ClusterIssuer
+---
 kind: Service
 apiVersion: v1
 metadata:

manifest/06-external-ingress/sites/portainer.yml

@@ -1,3 +1,16 @@
+apiVersion: cert-manager.io/v1
+kind: Certificate
+metadata:
+  name: portainer-certificate
+  namespace: external-services
+spec:
+  secretName: portainer-skrd-fun-tls
+  dnsNames:
+    - "portainer.skrd.fun"
+  issuerRef:
+    name: letsencrypt-prod
+    kind: ClusterIssuer
+---
 kind: Service
 apiVersion: v1
 metadata:

manifest/06-external-ingress/sites/radarr.yml

@@ -1,3 +1,16 @@
+apiVersion: cert-manager.io/v1
+kind: Certificate
+metadata:
+  name: radarr-certificate
+  namespace: external-services
+spec:
+  secretName: radarr-skrd-fun-tls
+  dnsNames:
+    - "radarr.skrd.fun"
+  issuerRef:
+    name: letsencrypt-prod
+    kind: ClusterIssuer
+---
 kind: Service
 apiVersion: v1
 metadata:

manifest/06-external-ingress/sites/sonarr.yml

@@ -1,3 +1,16 @@
+apiVersion: cert-manager.io/v1
+kind: Certificate
+metadata:
+  name: sonarr-certificate
+  namespace: external-services
+spec:
+  secretName: sonarr-skrd-fun-tls
+  dnsNames:
+    - "sonarr.skrd.fun"
+  issuerRef:
+    name: letsencrypt-prod
+    kind: ClusterIssuer
+---
 kind: Service
 apiVersion: v1
 metadata:

manifest/06-external-ingress/sites/torrent.yml

@@ -1,3 +1,16 @@
+apiVersion: cert-manager.io/v1
+kind: Certificate
+metadata:
+  name: torrent-certificate
+  namespace: external-services
+spec:
+  secretName: torrent-skrd-fun-tls
+  dnsNames:
+    - "torrent.skrd.fun"
+  issuerRef:
+    name: letsencrypt-prod
+    kind: ClusterIssuer
+---
 kind: Service
 apiVersion: v1
 metadata:

manifest/08-dashboard/admin-user.yml

@@ -0,0 +1,5 @@
+apiVersion: v1
+kind: ServiceAccount
+metadata:
+  name: admin-user
+  namespace: kubernetes-dashboard

manifest/08-dashboard/dashboard.yml

@@ -0,0 +1,10 @@
+apiVersion: helm.cattle.io/v1
+kind: HelmChart
+metadata:
+  name: kubernetes-dashboard
+  namespace: kube-system
+spec:
+  repo: https://kubernetes.github.io/dashboard/
+  chart: kubernetes-dashboard
+  targetNamespace: kubernetes-dashboard
+  createNamespace: true

manifest/08-dashboard/get-secret.sh

@@ -0,0 +1,3 @@
+#!/usr/bin/env bash
+
+kubectl get secret admin-user -n kubernetes-dashboard -o jsonpath="{.data.token}" | base64 -d

manifest/08-dashboard/port-forward.sh

@@ -0,0 +1,3 @@
+#!/usr/bin/env bash
+
+kubectl -n kubernetes-dashboard port-forward svc/kubernetes-dashboard-kong-proxy 8443:443

manifest/08-dashboard/role-binding.yml

@@ -0,0 +1,12 @@
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRoleBinding
+metadata:
+  name: admin-user
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: ClusterRole
+  name: cluster-admin
+subjects:
+- kind: ServiceAccount
+  name: admin-user
+  namespace: kubernetes-dashboard

manifest/08-dashboard/secret.yml

@@ -0,0 +1,8 @@
+apiVersion: v1
+kind: Secret
+metadata:
+  name: admin-user
+  namespace: kubernetes-dashboard
+  annotations:
+    kubernetes.io/service-account.name: "admin-user"
+type: kubernetes.io/service-account-token