25714eeef6
- Add hcloud-csi prototype (Hetzner Cloud CSI driver) - Add cloudnative-pg prototype (CNPG operator) - Add CNPG Cluster CR for Forgejo (2 instances, lean config for 4GB nodes) - Add 20Gi hcloud-volumes PVC for Forgejo git repos - Switch Forgejo from SQLite to PostgreSQL (forgejo-cnpg-rw service) - Switch Forgejo persistence to hcloud-volumes (forgejo-git-storage) - Fix ClusterRoleBinding subject namespaces for hcloud-csi and CNPG - Fix CNPG webhook service namespace references Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
99 lines
2.4 KiB
YAML
99 lines
2.4 KiB
YAML
apiVersion: admissionregistration.k8s.io/v1
|
|
kind: ValidatingWebhookConfiguration
|
|
metadata:
|
|
annotations:
|
|
a8r.io/repository: ssh://git@git.tr1ceracop.de:222/gitea_admin/k8s-and-chill.git
|
|
labels:
|
|
app.kubernetes.io/instance: cloudnative-pg
|
|
app.kubernetes.io/managed-by: Helm
|
|
app.kubernetes.io/name: cloudnative-pg
|
|
app.kubernetes.io/version: 1.25.0
|
|
helm.sh/chart: cloudnative-pg-0.23.0
|
|
name: cnpg-validating-webhook-configuration
|
|
namespace: cnpg-system
|
|
webhooks:
|
|
- admissionReviewVersions:
|
|
- v1
|
|
clientConfig:
|
|
service:
|
|
name: cnpg-webhook-service
|
|
namespace: cnpg-system
|
|
path: /validate-postgresql-cnpg-io-v1-backup
|
|
port: 443
|
|
failurePolicy: Fail
|
|
name: vbackup.cnpg.io
|
|
rules:
|
|
- apiGroups:
|
|
- postgresql.cnpg.io
|
|
apiVersions:
|
|
- v1
|
|
operations:
|
|
- CREATE
|
|
- UPDATE
|
|
resources:
|
|
- backups
|
|
sideEffects: None
|
|
- admissionReviewVersions:
|
|
- v1
|
|
clientConfig:
|
|
service:
|
|
name: cnpg-webhook-service
|
|
namespace: cnpg-system
|
|
path: /validate-postgresql-cnpg-io-v1-cluster
|
|
port: 443
|
|
failurePolicy: Fail
|
|
name: vcluster.cnpg.io
|
|
rules:
|
|
- apiGroups:
|
|
- postgresql.cnpg.io
|
|
apiVersions:
|
|
- v1
|
|
operations:
|
|
- CREATE
|
|
- UPDATE
|
|
resources:
|
|
- clusters
|
|
sideEffects: None
|
|
- admissionReviewVersions:
|
|
- v1
|
|
clientConfig:
|
|
service:
|
|
name: cnpg-webhook-service
|
|
namespace: cnpg-system
|
|
path: /validate-postgresql-cnpg-io-v1-scheduledbackup
|
|
port: 443
|
|
failurePolicy: Fail
|
|
name: vscheduledbackup.cnpg.io
|
|
rules:
|
|
- apiGroups:
|
|
- postgresql.cnpg.io
|
|
apiVersions:
|
|
- v1
|
|
operations:
|
|
- CREATE
|
|
- UPDATE
|
|
resources:
|
|
- scheduledbackups
|
|
sideEffects: None
|
|
- admissionReviewVersions:
|
|
- v1
|
|
clientConfig:
|
|
service:
|
|
name: cnpg-webhook-service
|
|
namespace: cnpg-system
|
|
path: /validate-postgresql-cnpg-io-v1-pooler
|
|
port: 443
|
|
failurePolicy: Fail
|
|
name: vpooler.cnpg.io
|
|
rules:
|
|
- apiGroups:
|
|
- postgresql.cnpg.io
|
|
apiVersions:
|
|
- v1
|
|
operations:
|
|
- CREATE
|
|
- UPDATE
|
|
resources:
|
|
- poolers
|
|
sideEffects: None
|