icecheng/freeleaps-ops
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
478 Commits 1 Branch 0 Tags 29 MiB
8d149418fc
Commit Graph

67 Commits

Author SHA1 Message Date
zhenyus
8d149418fc feat(auth): add infra-auth-retriever script for retrieving service authentication 
Signed-off-by: zhenyus <zhenyus@mathmast.com>
 2025-03-04 00:31:44 +08:00
zhenyus
ee02d8f511 feat(rabbitmq): update storage class and enable clustering with custom settings 
Signed-off-by: zhenyus <zhenyus@mathmast.com>
 2025-02-22 06:17:24 +08:00
dongli
1c75c52563 add worker-05 2025-02-18 22:50:15 -08:00
dongli
b837dcf346 use wwwadmin 2025-02-18 21:57:47 -08:00
zhenyus
9923bc1ada Merge branch 'master' of https://dev.azure.com/freeleaps/freeleaps-ops/_git/freeleaps-ops 2025-02-19 13:55:55 +08:00
zhenyus
3e8e02bf15 doc(readme): add instructions for cluster scaling and anonymous auth enabling 
Signed-off-by: zhenyus <zhenyus@mathmast.com>
 2025-02-19 13:55:53 +08:00
dongli
f789f0d05c use wwwadmin 2025-02-18 21:54:25 -08:00
zhenyus
b450a86083 fix(inventory): comment out unused worker nodes for clarity 
Signed-off-by: zhenyus <zhenyus@mathmast.com>
 2025-02-19 12:31:32 +08:00
zhenyus
66126db4cf fix(k8s-cluster): uncomment kube_oidc_username_prefix for clarity 
Signed-off-by: zhenyus <zhenyus@mathmast.com>
 2025-02-19 12:31:08 +08:00
zhenyus
b8675f081f fix: command error when upgrade cluster 
Signed-off-by: zhenyus <zhenyus@mathmast.com>
 2025-02-18 13:55:16 +08:00
zhenyus
b299e0b86e doc(manifests): add pre settings for cluster 
Signed-off-by: zhenyus <zhenyus@mathmast.com>
 2025-02-18 13:33:22 +08:00
zhenyus
a5866494e1 doc(manifests): add pre settings for cluster 
Signed-off-by: zhenyus <zhenyus@mathmast.com>
 2025-02-18 13:15:20 +08:00
zhenyus
69ceddfa22 fix(kubespray): syntax error in k8s-cluster.yml 
Signed-off-by: zhenyus <zhenyus@mathmast.com>
 2025-02-18 13:00:27 +08:00
zhenyus
0e256f8708 chore(git): code staging 
Signed-off-by: zhenyus <zhenyus@mathmast.com>
 2025-02-17 14:02:49 +08:00
zhenyus
37b574ba50 fix(pipeline): change file permissions to executable for Ansible and script files 
Signed-off-by: zhenyus <zhenyus@mathmast.com>
 2025-02-10 15:39:49 +08:00
zhenyus
d110546ff9 fix(pipeline): change file permissions from executable to non-executable for script files 
Signed-off-by: zhenyus <zhenyus@mathmast.com>
 2025-02-10 15:39:41 +08:00
孙振宇
3af74b7931 feat(dashboard): add nginx ingress dashboard 
Signed-off-by: 孙振宇 <>
 2025-01-16 17:36:07 +08:00
孙振宇
b91d2192ba feat(k8s): add Jenkins certificate and Azure Blob Storage configuration 
Signed-off-by: 孙振宇 <>
 2025-01-16 17:00:31 +08:00
孙振宇
c1967c7ab2 feat(k8s): add security hardening instructions for kube-apiserver and service account configuration 
Signed-off-by: 孙振宇 <>
 2025-01-14 06:58:52 +08:00
孙振宇
1ea5fa49f4 feat(k8s): add Azure Blob Storage CSI driver configuration and resources 
Signed-off-by: 孙振宇 <>
 2025-01-14 06:06:45 +08:00
孙振宇
2e848585ad fix(k8s): update Alertmanager notification title template for Microsoft Teams 
Signed-off-by: 孙振宇 <>
 2025-01-13 20:37:13 +08:00
孙振宇
d22d094811 fix(k8s): correct template syntax in Alertmanager configuration for Microsoft Teams 
Signed-off-by: 孙振宇 <>
 2025-01-13 19:56:57 +08:00
孙振宇
5c273b8d6d feat(k8s): add Alertmanager configuration for Microsoft Teams notifications 
Signed-off-by: 孙振宇 <>
 2025-01-13 19:55:57 +08:00
孙振宇
841ef17655 feat(k8s): update OIDC username prefix to allow full claim value 
Signed-off-by: 孙振宇 <>
 2025-01-13 19:34:48 +08:00
孙振宇
6574c07350 feat(k8s): enhance freeleaps cluster login script and add RBAC bindings 
Signed-off-by: 孙振宇 <>
 2025-01-13 19:10:06 +08:00
孙振宇
cfa135eff5 feat(k8s): update OIDC username claim and add self-signed issuer for Microsoft Entra ID 
Signed-off-by: 孙振宇 <>
 2025-01-13 17:48:40 +08:00
孙振宇
bfc2577e0d feat(k8s): add freeleaps cluster login script and update OIDC configuration 
Signed-off-by: 孙振宇 <>
 2025-01-13 16:44:00 +08:00
孙振宇
e71c27f587 feat(ansible): add upgrade cluster script and update OIDC URL 
Signed-off-by: 孙振宇 <>
 2025-01-13 13:56:33 +08:00
孙振宇
a5941cf798 feat(ansible): add upgrade control plane script with pre-checks 
Signed-off-by: 孙振宇 <>
 2025-01-13 13:16:52 +08:00
孙振宇
1cf128bd58 fix(k8s): enable oidc auth feature 
Signed-off-by: 孙振宇 <>
 2025-01-13 13:15:41 +08:00
孙振宇
561906df63 feat(k8s): enable integrates with Microsoft Entra ID 
Signed-off-by: 孙振宇 <>
 2025-01-13 13:10:07 +08:00
孙振宇
1753ce658e fix(manifests): update Grafana ingress path to remove wildcard and set pathType 
Signed-off-by: 孙振宇 <>
 2025-01-13 02:57:13 +08:00
孙振宇
84650c4dd7 fix(ingress-nginx): disable hostPort in values.yaml 
Signed-off-by: 孙振宇 <>
 2025-01-13 02:50:06 +08:00
孙振宇
463cdf3d85 fix(manifests): update Grafana ingress to use ingressClassName and correct indentation 
Signed-off-by: 孙振宇 <>
 2025-01-13 02:47:09 +08:00
孙振宇
9448d1c684 fix(manifests): add missing ingress class annotation for Grafana ingress 
Signed-off-by: 孙振宇 <>
 2025-01-13 02:41:01 +08:00
孙振宇
bd448c08d2 fix(manifests): correct indentation for annotations in Grafana ingress configuration 
Signed-off-by: 孙振宇 <>
 2025-01-13 02:28:42 +08:00
孙振宇
5200451d11 feat(manifests): add annotations for Grafana ingress to configure service upstream and upstream vhost 
Signed-off-by: 孙振宇 <>
 2025-01-13 02:27:08 +08:00
孙振宇
cd6735510b fix(manifests): update apiVersion for Grafana ingress to networking.k8s.io/v1 
Signed-off-by: 孙振宇 <>
 2025-01-13 02:09:31 +08:00
孙振宇
4a463e489f feat(manifests): add Grafana ingress and TLS certificate configuration 
Signed-off-by: 孙振宇 <>
 2025-01-13 02:08:21 +08:00
孙振宇
30fc78315d fix(manifests): update NodePort values for ingress-nginx service 
Signed-off-by: 孙振宇 <>
 2025-01-13 01:36:43 +08:00
孙振宇
da5e00bc31 feat(manifests): update ingress-nginx configuration for NodePort service type and enable metrics, serviceMonitor, and prometheusRule 
Signed-off-by: 孙振宇 <>
 2025-01-13 01:34:42 +08:00
孙振宇
cea95ef680 fix(manifests): disable issuerRef for prometheus-stack 2025-01-13 01:24:35 +08:00
孙振宇
d2b104e22d fix(manifests): change cluster domain 2025-01-13 01:12:57 +08:00
孙振宇
32b6a20b22 chore(manifests): remove unused namespace for freeleaps-controls-system 
Signed-off-by: 孙振宇 <>
 2025-01-13 01:05:22 +08:00
孙振宇
38d10f0e81 feat(manifests): update Grafana and kube-state-metrics to use freeleaps-monitoring-system namespace; enable ThanosRuler and configure Prometheus storage 
Signed-off-by: 孙振宇 <>
 2025-01-13 00:52:41 +08:00
孙振宇
51efcea05e feat(manifests): add namespace for freeleaps monitoring system 
Signed-off-by: 孙振宇 <>
 2025-01-13 00:19:11 +08:00
孙振宇
c2e01c63c0 feat(manifests): add infra service manifests 2025-01-13 00:16:43 +08:00
孙振宇
01b16cd60c feat(manifests): add OpenEBS storage system manifests and initialization script 
Signed-off-by: 孙振宇 <>
 2025-01-12 15:57:02 +08:00
孙振宇
24d662f18b fix(config): update load balancer domain name and nodelocaldns IP address 
Signed-off-by: 孙振宇 <>
 2025-01-12 05:38:35 +08:00
孙振宇
8422bc2fb3 feat(docs): update README with Ansible directory information and adjust nodelocaldns IP 
Signed-off-by: 孙振宇 <>
 2025-01-12 04:56:08 +08:00