viktor/infra
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

fix cluster health: pin actualbudget, spread MySQL, scale grampsweb, fix GPU toleration

Browse source 
- Pin actualbudget/actual-server from edge to 26.3.0 (all 3 instances) to
  prevent recurring migration breakage from rolling nightly builds
- Add podAntiAffinity to MySQL InnoDB Cluster to spread replicas across nodes,
  relieving memory pressure on k8s-node4
- Scale grampsweb to 0 replicas (unused, consuming 1.7Gi memory)
- Add GPU toleration Kyverno policy to Terraform using patchesJson6902 instead
  of patchStrategicMerge to fix toleration array being overwritten (caused
  caretta DaemonSet pod to be unable to schedule on k8s-master)

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
This commit is contained in:
Viktor Barzin 2026-03-11 11:43:00 +00:00
parent 8565d90d23
commit ccbbd4bc19
4 changed files with 71 additions and 9 deletions
Download patch file Download diff file Expand all files Collapse all files

10
stacks/actualbudget/main.tf
View file

@ -1,9 +1,9 @@
variable "tls_secret_name" {
type = string
type = string
sensitive = true
}
variable "actualbudget_credentials" {
type = map(any)
type = map(any)
sensitive = true
}
variable "nfs_server" { type = string }
@ -37,7 +37,7 @@ module "tls_secret" {
module "viktor" {
source = "./factory"
name = "viktor"
tag = "edge"
tag = "26.3.0"
tls_secret_name = var.tls_secret_name
nfs_server = var.nfs_server
depends_on = [kubernetes_namespace.actualbudget]
@ -58,7 +58,7 @@ module "viktor" {
module "anca" {
source = "./factory"
name = "anca"
tag = "edge"
tag = "26.3.0"
tls_secret_name = var.tls_secret_name
nfs_server = var.nfs_server
depends_on = [kubernetes_namespace.actualbudget]
@ -79,7 +79,7 @@ module "anca" {
module "emo" {
source = "./factory"
name = "emo"
tag = "edge"
tag = "26.3.0"
tls_secret_name = var.tls_secret_name
nfs_server = var.nfs_server
depends_on = [kubernetes_namespace.actualbudget]