No description
- TypeScript 94.5%
- Nix 5.5%
| .planning/codebase | ||
| cluster | ||
| docs | ||
| scripts | ||
| AGENTS.md | ||
| flake.lock | ||
| flake.nix | ||
| Readme.md | ||
Homelab GitOps
This repo holds the Flux GitOps configuration for my homelab Kubernetes
cluster. Core manifests live in cluster/, and cluster/kustomization.yaml
assembles the full tree. Infrastructure components are grouped under
cluster/infrastructure/<service>/.
Prerequisites
nixfor the dev shell (recommended).kubectl,flux,helm, andcilium-cli(available vianix develop).- Cluster access for reconcile commands.
Common commands
nix develop
kubectl kustomize cluster
flux reconcile kustomization -n flux-system infrastructure
flux get kustomizations
Repository structure
cluster/: main GitOps manifests andcluster/kustomization.yaml.cluster/flux-system/: Flux bootstrap manifests.cluster/infrastructure/: service components (each hashelmrepo.yaml,helmrelease.yaml,namespace.yaml, andkustomization.yaml).docs/: operational notes, includingdocs/http-proxy-guide.md.
Notes
- Secrets are referenced via 1Password items (see
cluster/infrastructure/1password/andcluster/infrastructure/cert-manager/secret.yaml); do not commit plaintext secrets. - The cluster is IPv6-only; external access may require the HTTP proxy guide.
Todo
- traefik
- longhorn
- external dns
- cert-maanger
- longhorn backups
- kanidm
- expose longhorn website
- expose traefik website
- oauth proxy
- harbor
- forjego
- immich
- pastebin of some kind
- kanidm operator
- woodpecker
- monitoring
- website
- figure out why metrics not being reported in lens