viktor/infra
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
1464 commits 2 branches 0 tags 2.3 GiB
Commit graph

1464 commits

This branch
This branch
All branches
Author SHA1 Message Date
Viktor Barzin
596c02dfde Add audiblez-web service and refactor ebook2audiobook deployments 
Uncomment ebook2audiobook deployment with proper GPU tolerations
(set to 0 replicas). Disable audiblez CLI deployment in favor of
audiblez-web. Add new audiblez-web deployment, service, and ingress
with GPU support, large upload limits, and auth protection.
 2026-02-06 20:22:05 +00:00
Viktor Barzin
9689b67895 Add GPU node taint tolerations and enhance GPU memory exporter 
Add nvidia.com/gpu toleration to all GPU workloads (frigate, ollama)
to support NoSchedule taint on GPU nodes. Update nvidia operator
helm values with daemonset tolerations. Enhance GPU pod memory
exporter with Kubernetes API integration to resolve container IDs
to pod names/namespaces, adding RBAC resources for API access.
 2026-02-06 20:19:26 +00:00
Viktor Barzin
d9a4417257
add claude [ci skip] 2026-02-06 20:10:02 +00:00
Viktor Barzin
29567103d6 Add DRONE_WEBHOOK_SECRET for GitHub webhook authentication 
Fixes webhook signature validation failures causing 400 errors.
 2026-02-01 20:42:07 +00:00
Viktor Barzin
4a857ebefd Add per-pod GPU memory metrics exporter 
- Add DaemonSet that runs on GPU node and exposes Prometheus metrics
- Uses nvidia-smi to collect per-process GPU memory usage
- Maps PIDs to container IDs via /proc/<pid>/cgroup
- Exposes gpu_pod_memory_used_bytes metric at :9401/metrics
- Add Prometheus scrape config for gpu-pod-memory job

[ci skip]
 2026-01-31 16:58:14 +00:00
Viktor Barzin
09a5e3a273
Add crowdsec-blocklist-import CronJob 
Import public threat intelligence blocklists into CrowdSec daily at 4 AM.
Uses kubectl exec to run the import script inside an existing CrowdSec
agent pod that is already registered with the LAPI.

Source: https://github.com/wolffcatskyy/crowdsec-blocklist-import

[ci skip]
 2026-01-28 20:11:44 +00:00
Viktor Barzin
2ac92167c5
fix resume pdf generation [ci skip] 2026-01-28 19:42:13 +00:00
Viktor Barzin
eeabe652d3
upgrade immich to 2.5.0 [ci skip] 2026-01-28 19:41:52 +00:00
Viktor Barzin
078e1eeeef
add the yt-highlights app [ci skip] 2026-01-28 18:03:49 +00:00
Viktor Barzin
f867de6e7d
ad service for youtube video highlights [ci skip] 2026-01-28 17:58:39 +00:00
Viktor Barzin
19a41367ba
add reactive resume service [ci skip] 2026-01-28 17:57:39 +00:00
Viktor Barzin
92e58d3b62
increase the num of nvidia slices to 20 [ci skip] 2026-01-26 20:41:59 +00:00
Viktor Barzin
947c5d3d19 Add AFFiNE visual canvas for storytelling 
- Deploy AFFiNE as self-hosted visual canvas tool
- Uses shared PostgreSQL and Redis from cluster
- NFS storage for uploads and configuration
- Email configured via mailserver.viktorbarzin.me
- Ingress at affine.viktorbarzin.me

[ci skip]
 2026-01-25 21:40:39 +00:00
Viktor Barzin
a849e6fae8
add excalidraw with support for storing drawings per user [ci skip] 2026-01-25 00:46:26 +00:00
Viktor Barzin
8320d93ae7 Drone CI deploy commit [CI SKIP] 2026-01-25 00:15:19 +00:00
Viktor Barzin
75455716c0 Drone CI Update TLS Certificates Commit 2026-01-25 00:06:38 +00:00
Viktor Barzin
3bda3ab956
reduce the frequency of polling idrac and remove some duplicates [ci skip] 2026-01-24 18:47:22 +00:00
Viktor Barzin
6928fd29bb
add mcaptcha [ci skip] 2026-01-24 18:46:47 +00:00
Viktor Barzin
0b58abc7b7
add crowdsec rule ot skip my home ip[ci skip] 2026-01-24 18:46:12 +00:00
Viktor Barzin
fe05b1442c
use hcaptcha with nginx [ci skip] 2026-01-24 18:45:41 +00:00
Viktor Barzin
82ae4b411a
add mcaptcha but disabled as we found another way[ci skip] 2026-01-24 18:43:43 +00:00
Viktor Barzin
6e4cfb4c3a
add ollama-api ingress accessible only locally to allow claude code [ci skip] 2026-01-19 20:15:46 +00:00
Viktor Barzin
d8eab79593
preload immich models so they are always fresh [ci skip] 2026-01-19 20:15:09 +00:00
Viktor Barzin
c76e84cd77
add claude files [ci skip] 2026-01-18 15:40:43 +00:00
Viktor Barzin
9aa7328b9b
add boilerplate for adding basic auth as fallback when authentik is down [ci skip] 2026-01-18 14:05:24 +00:00
Viktor Barzin
4642522fd5
update resume to be a bit more working; still not workign but closer...[ci skip] 2026-01-18 14:05:01 +00:00
Viktor Barzin
cc419c68b7
disallow my sites from being iframed [ci skip] 2026-01-18 13:41:20 +00:00
Viktor Barzin
aa2acad165
add claude files to gitignore [ci skip] 2026-01-18 13:40:31 +00:00
Viktor Barzin
d751a5924c add prometheus alerts for deployment/statefulset/daemonset replica mismatches [ci skip] 
- Add DeploymentReplicasMismatch alert
- Add StatefulSetReplicasMismatch alert
- Add DaemonSetMissingPods alert
- Add .claude/ directory with remote executor and knowledge base
 2026-01-18 11:04:51 +00:00
Viktor Barzin
70952c2448
do not unload immich ML model [ci skip] 2026-01-17 23:39:46 +00:00
Viktor Barzin
1e17b73d92
add cronjob for weekly backups of nextcloud [ci skip] 2026-01-17 23:35:10 +00:00
Viktor Barzin
5609bbbaf3
dedup ram alert and increase threshold to 95% [ci skip] 2026-01-17 22:42:22 +00:00
Viktor Barzin
4ccf2298fa
add freedify [ci skip] 2026-01-17 22:40:35 +00:00
Viktor Barzin
0662d194e5
upgrade nextcloud and add external redis [ci skip] 2026-01-17 20:50:29 +00:00
Viktor Barzin
b30bab8bd7
add emo instance for actual budget [ci skip] 2026-01-17 15:01:29 +00:00
Viktor Barzin
a1fd715e4d
add speedtest deployment [ci skip] 2026-01-13 20:34:44 +00:00
Viktor Barzin
ecc3acbc1e empty keyserver httpasswrd as that is not ready yet [ci skip] 2026-01-12 18:27:54 +00:00
Viktor Barzin
88a62f90f5 scale grafana to 3 pods for resilience [ci skip] 2026-01-12 18:27:54 +00:00
Viktor Barzin
4e297d609b scale pgbouncer to 3 for resilience and run them on separate nodes [ci skip] 2026-01-12 18:27:54 +00:00
Viktor Barzin
16ed21aab2 Drone CI Update TLS Certificates Commit 2026-01-11 00:26:26 +00:00
Viktor Barzin
fa1588c490
upgrade vaultwarden [ci skip] 2026-01-10 22:47:22 +00:00
Viktor Barzin
49a5488789
upgrade ollama [ci skip] 2026-01-10 22:47:10 +00:00
Viktor Barzin
2f64f54914
move some tiers around [ci skip] 2026-01-10 22:47:00 +00:00
Viktor Barzin
07876da8ce
run descheduler hourly for more frequent updates [ci skip] 2026-01-10 21:03:42 +00:00
Viktor Barzin
9f34337d04
disable auth-response-headers for idrac and gw ingresses as they cause errors on the upstream [ci skip] 2026-01-10 20:41:00 +00:00
Viktor Barzin
bfa53c5455
add credentials for ab bank sync cronjob [ci skip] 2026-01-10 20:01:06 +00:00
Viktor Barzin
d83c5c5526
sclae tuya bridge to 3 pods for resilience [ci skip] 2026-01-10 19:27:57 +00:00
Viktor Barzin
bba7ad4d63
move crowdsec to croe services [ci skip] 2026-01-10 19:27:32 +00:00
Viktor Barzin
d9ff014c5e
add actualbudget-http-api plus a cronjob to periodically run bank sync [ci skip] 2026-01-10 19:27:14 +00:00
Viktor Barzin
448672590d
add serialized image pulls in the cloudinit image [ci skip] 2026-01-10 19:24:45 +00:00