stem95su: scheduled Drive->site sync CronJob (every 10m)

CronJob stem95su-gdrive-sync (*/10) mounts the content PVC RW and
rclone-syncs the read-only Drive folder "claude" (stem claude/files) onto
it (rclone/rclone:1.74.3, scope=drive.readonly, empty-source guard +
--max-delete 25). ESO ExternalSecret stem95su-rclone <- Vault
secret/stem95su. Requires the GCP OAuth app published to Production or the
refresh token expires ~weekly.

Lands the gdrive-sync stack on master (it had landed on a feature branch
by accident on the shared devvm checkout).

Co-Authored-By: Claude Opus 4.8 <noreply@anthropic.com>
This commit is contained in:
Viktor Barzin 2026-06-09 08:42:26 +00:00
parent 05b50d2b96
commit 6d224861c4
1168 changed files with 120 additions and 358547 deletions

View file

@ -1,36 +0,0 @@
# Post-Mortem: Pipeline E2E Test
| Field | Value |
|-------|-------|
| **Date** | 2026-04-14 |
| **Duration** | N/A |
| **Severity** | SEV3 |
| **Affected Services** | None (test) |
| **Status** | Draft |
## Summary
Test post-mortem to validate the automated TODO implementation pipeline end-to-end.
## Prevention Plan
| Priority | Action | Type | Details | Status |
|----------|--------|------|---------|--------|
| P2 | Add Uptime Kuma monitor for Proxmox web UI port 8006 | Monitor | TCP check on 192.168.1.127:8006 to detect PVE management plane down | TODO |
| P2 | Migrate Alertmanager to encrypted storage | Architecture | Move from NFS to proxmox-lvm-encrypted to avoid circular alerting dependency | TODO |
## Lessons Learned
1. Automated post-mortem pipelines reduce mean time to remediation.
## Follow-up Implementation
_This section is auto-populated by the postmortem-todo-resolver agent._
| Date | Action | Priority | Type | Commit | Implemented By |
|------|--------|----------|------|--------|----------------|
# E2E test 17:12
# E2E validation 17:27:45
# Final E2E test Tue Apr 14 05:43:38 PM UTC 2026
# 1776188690