HomeInfra/HetznerTerra
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
262 Commits 1 Branch 1 Tag
ceefcc3b29d34912b595cf894defd85e848370ab
Commit Graph

10 Commits

Author SHA1 Message Date
MichaelFisher1997
0d339b3163 fix: Use rancher/kubectl image for rancher-backup hook
All checks were successful
Deploy Cluster / Terraform (push) Successful in 53s
Details
Deploy Cluster / Ansible (push) Successful in 5m41s
Details 
bitnami/kubectl:1.34 tag doesn't exist. rancher/kubectl is already
available in the cluster's image cache.
 2026-04-02 01:00:27 +00:00
MichaelFisher1997
30ccf13c82 fix: Use postRenderer to replace broken kuberlr-kubectl image in rancher-backup hook
Some checks failed
Deploy Cluster / Terraform (push) Successful in 55s
Details
Deploy Cluster / Ansible (push) Has been cancelled
Details 
The chart's post-install hook hardcodes rancher/kuberlr-kubectl which
can't download kubectl. Use Flux postRenderers to patch the job image
to bitnami/kubectl at render time.
 2026-04-02 00:51:50 +00:00
MichaelFisher1997
75e3604f30 fix: Skip post-install hooks for rancher-backup HelmRelease
Some checks failed
Deploy Cluster / Terraform (push) Successful in 57s
Details
Deploy Cluster / Ansible (push) Has been cancelled
Details 
The chart's post-install hook uses rancher/kuberlr-kubectl which fails
to download kubectl. The SA automountServiceAccountToken is managed
manually, so the hook is unnecessary.
 2026-04-02 00:45:03 +00:00
MichaelFisher1997
2c3a49c2e0 fix: Rename B2 secret keys to match rancher-backup operator expectations
Some checks failed
Deploy Cluster / Terraform (push) Successful in 51s
Details
Deploy Cluster / Ansible (push) Has been cancelled
Details 
The operator expects accessKey/secretKey, not aws_access_key_id/aws_secret_access_key.
 2026-03-30 00:05:13 +00:00
MichaelFisher1997
a7ce3dcc1a fix: Remove s3 block from rancher-backup HelmRelease values
All checks were successful
Deploy Cluster / Terraform (push) Successful in 49s
Details
Deploy Cluster / Ansible (push) Successful in 6m12s
Details 
The S3 config caused the operator to try downloading kubectl, which fails in the container.
S3 credentials are correctly configured in the Backup CR and ExternalSecret instead.
 2026-03-29 23:47:21 +00:00
MichaelFisher1997
c251672618 fix: Configure S3 bucketName for rancher-backup operator
Some checks failed
Deploy Cluster / Terraform (push) Successful in 50s
Details
Deploy Cluster / Ansible (push) Has been cancelled
Details
2026-03-29 23:01:18 +00:00
MichaelFisher1997
89364e8f37 fix: Add dependsOn for rancher-backup operator to wait for CRDs
Some checks failed
Deploy Cluster / Terraform (push) Successful in 50s
Details
Deploy Cluster / Ansible (push) Has been cancelled
Details
2026-03-29 22:57:22 +00:00
MichaelFisher1997
20d7a6f777 fix: Install rancher-backup CRD chart before operator
Some checks failed
Deploy Cluster / Terraform (push) Successful in 50s
Details
Deploy Cluster / Ansible (push) Has been cancelled
Details 
The rancher-backup operator requires CRDs from the rancher-backup-crd
chart to be installed first.
 2026-03-29 22:51:34 +00:00
MichaelFisher1997
afb1782d38 fix: Separate Backup CRs into their own kustomization
All checks were successful
Deploy Cluster / Terraform (push) Successful in 41s
Details
Deploy Cluster / Ansible (push) Successful in 5m57s
Details 
The Backup and Restore CRs need the rancher-backup CRDs to exist first.
Moved them to a separate kustomization that depends on the operator being ready.
 2026-03-29 22:22:29 +00:00
MichaelFisher1997
f2c506b350 refactor: Replace CNPG external DB with rancher-backup operator
All checks were successful
Deploy Cluster / Terraform (push) Successful in 48s
Details
Deploy Cluster / Ansible (push) Successful in 6m5s
Details 
Rancher 2.x uses embedded etcd, not an external PostgreSQL database.
The CATTLE_DB_CATTLE_* env vars are Rancher v1 only and were ignored.

- Remove all CNPG (CloudNativePG) cluster, operator, and related configs
- Remove external DB env vars from Rancher HelmRelease
- Remove rancher-db-password ExternalSecret
- Add rancher-backup operator HelmRelease (v106.0.2+up8.1.0)
- Add B2 credentials ExternalSecret for backup storage
- Add recurring Backup CR (daily at 03:00, 7 day retention)
- Add commented-out Restore CR for rebuild recovery
- Update Flux dependency graph accordingly
 2026-03-29 21:53:16 +00:00