fix: harden cluster rebuild determinism

2026-04-30 07:36:27 +00:00
parent f52e657f9f
commit a33a993867
38 changed files with 865 additions and 289 deletions
@@ -1,22 +0,0 @@
-apiVersion: external-secrets.io/v1
-kind: ExternalSecret
-metadata:
-  name: grafana-admin
-  namespace: observability
-spec:
-  refreshInterval: 1h
-  secretStoreRef:
-    name: doppler-hetznerterra
-    kind: ClusterSecretStore
-  target:
-    name: grafana-admin-credentials
-    creationPolicy: Owner
-    template:
-      type: Opaque
-      data:
-        admin-user: admin
-        admin-password: "{{ .grafanaAdminPassword }}"
-  data:
-    - secretKey: grafanaAdminPassword
-      remoteRef:
-        key: GRAFANA_ADMIN_PASSWORD
@@ -1,8 +1,6 @@
 apiVersion: kustomize.config.k8s.io/v1beta1
 kind: Kustomization
 resources:
-  - namespace.yaml
-  - grafana-admin-externalsecret.yaml
  - ocirepository-loki.yaml
  - ocirepository-promtail.yaml
  - helmrelease-kube-prometheus-stack.yaml
@@ -1,4 +0,0 @@
-apiVersion: v1
-kind: Namespace
-metadata:
-  name: observability