Commit Graph

Select branches

Hide Pull Requests

hetzner

main

v0.1.0-stable

Mono Color

• dcb2675b67 Upgrade Rancher to 2.13.3 for K8s 1.34 compatibility micqdf 2026-03-24 21:42:51 +00:00
• b40bec7e0e Fix Rancher: use Doppler secret instead of hardcoded password micqdf 2026-03-24 21:13:23 +00:00
• efe0c0cfd5 Fix Rancher: upgrade to 2.10.3 for K8s 1.34 compatibility micqdf 2026-03-24 20:29:38 +00:00
• c61d9f9c1d Remove traefik-config dependency from Rancher micqdf 2026-03-24 20:02:08 +00:00
• 60ceac4624 Fix Rancher access: add kubectl port-forward + tailscale serve setup micqdf 2026-03-24 20:01:57 +00:00
• 47b384a337 Fix Rancher access: add Tailscale service for Traefik with port 9442, fix deployment order micqdf 2026-03-24 19:40:37 +00:00
• ecf17113fb Fix Rancher deployment: add cattle-system namespace, fix Traefik config with port 9442 micqdf 2026-03-24 19:09:28 +00:00
• 4ffbcfa312 Add Rancher management UI micqdf 2026-03-24 01:53:04 +00:00
• 8745bcda47 Fix Weave GitOps image tag - remove invalid v0.41.0 micqdf 2026-03-24 01:39:48 +00:00
• e47ec2a3e7 Update Weave GitOps to v0.41.0 to support HelmRelease v2 API micqdf 2026-03-24 01:33:10 +00:00
• 45c899d2bd Configure Weave GitOps to use Doppler-managed admin credentials micqdf 2026-03-24 01:01:30 +00:00
• 0e52d8f159 Use Tailscale DNS names instead of IPs for TLS SANs micqdf 2026-03-23 23:50:48 +00:00
• 4726db2b5b Add Tailscale IPs to k3s TLS SANs for secure tailnet access micqdf 2026-03-23 23:04:00 +00:00
• 90d105e5ea Fix kube_api_endpoint variable passing for HA cluster micqdf 2026-03-23 03:01:53 +00:00
• 952a80a742 Fix HA cluster join via Load Balancer private IP micqdf 2026-03-23 02:56:41 +00:00
• 4965017b86 Fix Load Balancer network attachment micqdf 2026-03-23 02:44:35 +00:00
• b2b9c38b91 Fix Load Balancer output attribute - use ipv4 instead of ipv4_address micqdf 2026-03-23 02:40:50 +00:00
• ff31cb4e74 Implement HA control plane with Load Balancer (3-3 topology) micqdf 2026-03-23 02:39:39 +00:00
• 8b4a445b37 Update STABLE_BASELINE.md - CCM/CSI integration achieved micqdf 2026-03-23 02:25:00 +00:00
• e447795395 Install helm binary in ccm-deploy role before using it micqdf 2026-03-23 00:07:39 +00:00
• 31b82c9371 Deploy CCM via Ansible before workers join to fix external cloud provider micqdf 2026-03-22 23:58:03 +00:00
• cadfedacf1 Fix providerID health check - use shell module for piped grep micqdf 2026-03-22 22:55:55 +00:00
• 561cd67b0c Enable Hetzner CCM and CSI for cloud provider integration micqdf 2026-03-22 22:26:21 +00:00
• 4eebbca648 docs: update README for deferred observability baseline micqdf 2026-03-22 01:04:53 +00:00
• 7b5d794dfc fix: update health checks for deferred observability micqdf 2026-03-22 01:04:27 +00:00
• 8643bbfc12 fix: defer observability to get clean baseline micqdf 2026-03-22 01:03:55 +00:00
• 84f446c2e6 fix: restore observability timeouts to 5 minutes micqdf 2026-03-22 00:43:37 +00:00
• d446e86ece fix: use static grafana password, remove externalsecret dependency micqdf 2026-03-22 00:43:21 +00:00
• 90c7f565e0 fix: remove tailscale ingress dependencies from observability micqdf 2026-03-22 00:42:35 +00:00
• 989848fa89 fix: increase observability timeouts to 10 minutes micqdf 2026-03-21 19:34:43 +00:00
• 56e5807474 fix: create doppler ClusterSecretStore after ESO is installed micqdf 2026-03-21 19:19:43 +00:00
• df0511148c fix: unsuspend tailscale operator for stable baseline micqdf 2026-03-21 19:03:39 +00:00
• 894e6275b1 docs: update stable baseline to defer ccm/csi micqdf 2026-03-21 18:41:36 +00:00
• a01cf435d4 fix: skip ccm/csi waits for stable baseline - using k3s embedded micqdf 2026-03-21 18:40:53 +00:00
• 84f77c4a68 fix: use kubectl patch instead of apply for flux controller nodeSelector micqdf 2026-03-21 18:05:41 +00:00
• 2e4196688c fix: bootstrap flux in phases - crds first, then resources micqdf 2026-03-21 17:42:39 +00:00
• 8d1f9f4944 fix: add k3s reset logic for primary control plane micqdf 2026-03-21 16:10:17 +00:00
• d4fd43e2f5 refactor: simplify k3s-server bootstrap for micqdf 2026-03-21 15:48:33 +00:00
• 48a80c362c fix: disable external cloud-provider kubelet arg for stable baseline micqdf 2026-03-21 14:36:54 +00:00
• fcf7f139ff fix: use public api endpoint for flux bootstrap micqdf 2026-03-21 00:07:51 +00:00
• 7139ae322d fix: bootstrap flux during cluster deploy micqdf 2026-03-20 10:37:11 +00:00
• 528a8dc210 fix: defer doppler store until eso is installed micqdf 2026-03-20 09:30:17 +00:00
• 349f75729a fix: bootstrap tailscale namespace before secret micqdf 2026-03-20 09:24:35 +00:00
• 522626a52b refactor: simplify stable cluster baseline micqdf 2026-03-20 02:24:37 +00:00
• 5bd4c41c2d fix: restore k3s agent bootstrap micqdf 2026-03-20 01:50:16 +00:00
• 3e41f71b1b fix: harden terraform destroy workflow micqdf 2026-03-19 23:26:03 +00:00
• 9d2f30de32 fix: prepare k3s for external cloud provider micqdf 2026-03-17 01:21:23 +00:00
• 08a3031276 refactor: retire imperative addon roles micqdf 2026-03-17 01:04:02 +00:00
• e3ce91db62 fix: align flux ccm with live deployment micqdf 2026-03-11 18:17:16 +00:00
• bed8e4afc8 feat: migrate core addons toward flux micqdf 2026-03-11 17:43:35 +00:00
• 2d4de6cff8 fix: bootstrap doppler store outside flux micqdf 2026-03-09 02:58:26 +00:00
• 4a83d981c8 fix: skip dry-run validation for doppler store sync micqdf 2026-03-09 02:52:08 +00:00
• d188a51ef6 fix: move doppler store manifests out of ignored path micqdf 2026-03-09 02:45:46 +00:00
• 646ef16258 fix: stabilize flux and external secrets reconciliation micqdf 2026-03-09 02:25:27 +00:00
• 6f2e056b98 feat: sync runtime secrets from doppler micqdf 2026-03-09 00:25:41 +00:00
• e10a70475f fix: right-size flux observability workloads micqdf 2026-03-08 05:17:22 +00:00
• f95e0051a5 feat: automate private tailnet access on cp1 micqdf 2026-03-08 04:16:06 +00:00
• 7c15ac5846 feat: add flux ui on shared tailscale endpoint micqdf 2026-03-07 12:30:17 +00:00
• 4c104f74e8 feat: route observability through one tailscale endpoint micqdf 2026-03-07 01:04:03 +00:00
• be04602bfb fix: make flux bootstrap reachable from cluster micqdf 2026-03-07 00:38:29 +00:00
• 06c1356f1e feat: expose flux observability services over tailscale micqdf 2026-03-05 00:43:29 +00:00
• 86fb5d5b90 fix: move observability gitops gating to role level micqdf 2026-03-05 00:17:25 +00:00
• 8b403cd1d6 feat: migrate observability stack to flux gitops micqdf 2026-03-04 23:38:40 +00:00
• 480a079dc8 fix: fail fast when loki datasource has no labels micqdf 2026-03-04 21:00:01 +00:00
• ff8e32daf5 fix: add loki nodeport fallback for grafana datasource reachability micqdf 2026-03-04 19:39:16 +00:00
• eb1ad0bea7 fix: make grafana prometheus datasource resilient with nodeport fallback micqdf 2026-03-04 19:22:31 +00:00
• 9ff9d1e633 fix: clear stale helm pending revisions before kube-prometheus upgrade micqdf 2026-03-04 18:35:55 +00:00
• 6177b581e4 fix: correct dashboard verification checks and retry helm upgrade lock micqdf 2026-03-04 08:48:30 +00:00
• b1e21c4a4b fix: speed up dashboards workflow firewall apply and set TF_VAR env micqdf 2026-03-04 03:54:56 +00:00
• 2f166ed9e7 feat: manage grafana content as code with fast dashboard workflow micqdf 2026-03-04 03:36:01 +00:00
• 1c39274df7 feat: stabilize tailscale observability exposure with declarative proxy class micqdf 2026-03-04 01:37:00 +00:00
• 28eaa36ec4 fix: use tag:k8s for tailscale operator default tags micqdf 2026-03-04 00:57:33 +00:00
• 02fa71c0aa fix: use tag:k8 for tailscale operator default tag micqdf 2026-03-04 00:27:47 +00:00
• 2bbf05cdca fix: make tailscale operator non-blocking by default and gate observability patching on readiness micqdf 2026-03-03 21:47:16 +00:00
• 213c1fb4e4 fix: detect tailscale tag permission errors and clean access output micqdf 2026-03-03 08:51:25 +00:00
• 414ac73c25 fix: fail fast on tailscale oauth 403 with actionable message micqdf 2026-03-02 23:57:53 +00:00
• 542d7a6be5 fix: align tailscale proxy tags with operator tags micqdf 2026-03-02 23:36:18 +00:00
• 210b617cc9 fix: pin tailscale operator to control-plane node for DNS stability micqdf 2026-03-02 23:32:36 +00:00
• 3686249e31 chore: remove blocking Tailscale endpoint retries in observability micqdf 2026-03-02 22:47:55 +00:00
• f56d1447c1 fix: make Tailscale endpoint wait non-blocking in observability micqdf 2026-03-02 22:08:36 +00:00
• 63247b79a6 fix: harden Tailscale operator rollout with preflight and diagnostics micqdf 2026-03-02 21:39:47 +00:00
• f6e159406a ci: retrigger with correct chart name micqdf 2026-03-02 21:15:44 +00:00
• 0ae1c9395c fix: use correct chart name tailscale/tailscale-operator micqdf 2026-03-02 21:15:37 +00:00
• 272c5ddc6e ci: retrigger with fixed Tailscale operator version micqdf 2026-03-02 21:04:01 +00:00
• eb6bf3862a fix: update Tailscale operator chart version to 1.95.91 micqdf 2026-03-02 21:03:53 +00:00
• 5a3f7550fe docs: add Gitea secrets setup guide for Tailscale operator micqdf 2026-03-02 20:29:19 +00:00
• a0ed6523ec feat: add Tailscale Kubernetes Operator for Grafana/Prometheus access micqdf 2026-03-02 20:28:51 +00:00
• 4f61a840c7 ci: retrigger with non-blocking Loki install micqdf 2026-03-02 19:41:55 +00:00
• d876430703 fix: remove Helm wait flag, check Loki rollout separately micqdf 2026-03-02 19:41:46 +00:00
• 56b6216257 ci: retrigger after Helm lock cleanup micqdf 2026-03-02 19:18:29 +00:00
• 91fe2e658c fix: clear stuck Helm lock before Loki install micqdf 2026-03-02 19:18:23 +00:00
• 13cec1aa28 ci: retrigger with YAML fix micqdf 2026-03-02 18:29:25 +00:00
• bc133e65d3 fix: quote failed_when expression for YAML parsing micqdf 2026-03-02 18:29:16 +00:00
• df4fdb5496 ci: retrigger with Loki fixes micqdf 2026-03-02 18:21:23 +00:00
• cec7c42efb fix: disable Loki caches and canary, use chart v6.10.0 micqdf 2026-03-02 18:21:22 +00:00
• ee692620b5 ci: retrigger with Loki v6.10.0 micqdf 2026-03-02 17:59:37 +00:00
• a6d327fa1f fix: re-enable Loki with v6.10.0 and minimal working config micqdf 2026-03-02 17:59:31 +00:00
• fe6cb39eaf ci: retrigger with Loki disabled micqdf 2026-03-02 17:07:59 +00:00
• feaefd28a1 fix: disable Loki to unblock pipeline - will re-enable separately micqdf 2026-03-02 17:07:51 +00:00
• 80ab59e22d ci: retrigger with enhanced Loki diagnostics micqdf 2026-03-02 14:44:31 +00:00