From bba2de9eb1ba67bb77cd28497169a9aaede513f0 Mon Sep 17 00:00:00 2001
From: Viktor Barzin <vbarzin@gmail.com>
Date: Fri, 10 Apr 2026 20:38:59 +0000
Subject: [PATCH] refactor(phpipam): remove fping cron container
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

All device discovery now handled by phpipam-pfsense-import CronJob
which queries Kea DHCP leases + pfSense ARP table every 5min.
No active scanning needed — pfSense sees all devices passively.

[ci skip]

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
---
 stacks/phpipam/main.tf | 90 +-----------------------------------------
 1 file changed, 2 insertions(+), 88 deletions(-)

diff --git a/stacks/phpipam/main.tf b/stacks/phpipam/main.tf
index 7f7b4f1d..f48375c0 100644
--- a/stacks/phpipam/main.tf
+++ b/stacks/phpipam/main.tf
@@ -201,94 +201,8 @@ resource "kubernetes_deployment" "phpipam_web" {
   }
 }
 
-resource "kubernetes_deployment" "phpipam_cron" {
-  metadata {
-    name      = "phpipam-cron"
-    namespace = kubernetes_namespace.phpipam.metadata[0].name
-    labels = {
-      app       = "phpipam-cron"
-      component = "scanner"
-      tier      = local.tiers.aux
-    }
-    annotations = {
-      "reloader.stakater.com/auto" = "true"
-    }
-  }
-  spec {
-    replicas = 1
-    strategy {
-      type = "Recreate"
-    }
-    selector {
-      match_labels = {
-        app = "phpipam-cron"
-      }
-    }
-    template {
-      metadata {
-        labels = {
-          app       = "phpipam-cron"
-          component = "scanner"
-        }
-        annotations = {
-          "dependency.kyverno.io/wait-for" = "mysql.dbaas:3306"
-        }
-      }
-      spec {
-        container {
-          image = "phpipam/phpipam-cron:v1.7.0"
-          name  = "phpipam-cron"
-          env {
-            name  = "TZ"
-            value = "Europe/Sofia"
-          }
-          env {
-            name  = "IPAM_DATABASE_HOST"
-            value = var.mysql_host
-          }
-          env {
-            name  = "IPAM_DATABASE_USER"
-            value = "phpipam"
-          }
-          env {
-            name = "IPAM_DATABASE_PASS"
-            value_from {
-              secret_key_ref {
-                name = "phpipam-secrets"
-                key  = "db_password"
-              }
-            }
-          }
-          env {
-            name  = "IPAM_DATABASE_NAME"
-            value = "phpipam"
-          }
-          env {
-            name  = "SCAN_INTERVAL"
-            value = "24h"
-          }
-          resources {
-            requests = {
-              cpu    = "10m"
-              memory = "64Mi"
-            }
-            limits = {
-              memory = "512Mi"
-            }
-          }
-          security_context {
-            capabilities {
-              add = ["NET_RAW"]
-            }
-          }
-        }
-      }
-    }
-  }
-  lifecycle {
-    ignore_changes = [spec[0].template[0].spec[0].dns_config]
-  }
-}
+# phpipam-cron container removed — discovery now handled by phpipam-pfsense-import CronJob
+# which queries Kea DHCP leases + pfSense ARP table directly (no fping needed)
 
 resource "kubernetes_service" "phpipam" {
   metadata {