Add Immich photo management + migrate forge URLs #62

Merged

eblume merged 12 commits from feature/immich into main 2026-01-26 11:20:12 -08:00

Conversation 0 Commits 12 Files changed 33 +451 -34

eblume commented 2026-01-26 07:53:09 -08:00

Owner

Copy link

Summary

• Migrate all ArgoCD app repo URLs from indri.tail8d86e.ts.net:2200 to forge.ops.eblu.me:2222
• Add Immich self-hosted photo management service with:
  • Helm chart deployment via ArgoCD
  • PostgreSQL cluster with pgvecto.rs for AI vector search (immich-pg)
  • NFS storage on sifaka for photo library (2Ti)
  • Tailscale Ingress + Caddy proxy for photos.ops.eblu.me
  • Machine learning service for face/object recognition

Deployment and Testing

• Update ArgoCD repo-creds-forge secret with new URL (one-time manual step)
• Sync apps to pick up new applications
• Sync all existing apps to verify new forge URL works
• Sync blumeops-pg to deploy immich-pg cluster
• Wait for immich-pg to be healthy
• Create immich-db secret from auto-generated password
• Sync immich-storage (PV, PVC, Ingress)
• Sync immich (Helm chart)
• Run mise run provision-indri -- --tags caddy to add photos.ops.eblu.me
• Verify Immich UI is accessible

🤖 Generated with Claude Code

## Summary - Migrate all ArgoCD app repo URLs from `indri.tail8d86e.ts.net:2200` to `forge.ops.eblu.me:2222` - Add Immich self-hosted photo management service with: - Helm chart deployment via ArgoCD - PostgreSQL cluster with pgvecto.rs for AI vector search (immich-pg) - NFS storage on sifaka for photo library (2Ti) - Tailscale Ingress + Caddy proxy for `photos.ops.eblu.me` - Machine learning service for face/object recognition ## Deployment and Testing - [x] Update ArgoCD repo-creds-forge secret with new URL (one-time manual step) - [ ] Sync `apps` to pick up new applications - [ ] Sync all existing apps to verify new forge URL works - [ ] Sync `blumeops-pg` to deploy immich-pg cluster - [ ] Wait for immich-pg to be healthy - [ ] Create immich-db secret from auto-generated password - [ ] Sync `immich-storage` (PV, PVC, Ingress) - [ ] Sync `immich` (Helm chart) - [ ] Run `mise run provision-indri -- --tags caddy` to add photos.ops.eblu.me - [ ] Verify Immich UI is accessible 🤖 Generated with [Claude Code](https://claude.com/claude-code)

eblume added 2 commits 2026-01-26 07:53:10 -08:00

Migrate ArgoCD repos from indri:2200 to forge.ops.eblu.me:2222 ... dbc47d0231

Update all ArgoCD application repo URLs and SSH known hosts to use
the new Caddy-proxied forge endpoint instead of the legacy Tailscale
MagicDNS hostname.

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>

Add Immich photo management service ... 5482f74500

Deploy Immich via Helm chart with:
- PostgreSQL cluster with pgvecto.rs (immich-pg) for AI vector search
- NFS storage on sifaka for photo library
- Tailscale Ingress + Caddy proxy for photos.ops.eblu.me access
- Machine learning service for face/object recognition

Immich provides a self-hosted Google Photos/iCloud alternative with
AI-powered search, face recognition, and support for RAW files.

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>

eblume added 1 commit 2026-01-26 08:13:59 -08:00

Add rule: always use --context=minikube-indri with kubectl ... b01400bcbb

Prevent accidental operations against work clusters by requiring
explicit context specification on all kubectl commands.

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>

eblume added 1 commit 2026-01-26 09:51:59 -08:00

Fix immich-pg: remove shared_preload_libraries parameter ... 89e5edca56

CloudNativePG webhook rejects shared_preload_libraries as a "fixed"
parameter - it's managed by the container image itself.

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>

eblume added 1 commit 2026-01-26 09:58:00 -08:00

Fix immich-pg: use correct cloudnative-pgvecto.rs image ... f1f4575554

The image is ghcr.io/tensorchord/cloudnative-pgvecto.rs:17.5,
not tensorchord/cloudnative-vectorchord which doesn't exist.

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>

eblume added 1 commit 2026-01-26 10:05:21 -08:00

Fix immich-pg: use VectorChord with correct config ... 367b86710e

- Use cloudnative-vectorchord:17.7-1.0.0 image (not pgvecto.rs)
- Add shared_preload_libraries at postgresql level (not parameters)
- Create vector, vchord, cube, earthdistance extensions

Immich v1.133.0+ uses VectorChord as successor to pgvecto.rs.

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>

eblume added 1 commit 2026-01-26 10:09:25 -08:00

Fix immich-storage: exclude kustomization.yaml from includes ... 57b79baf26

kustomization.yaml is not a K8s resource - ArgoCD was trying to apply
it directly which fails. Only include the actual manifest files.

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>

eblume added 1 commit 2026-01-26 10:11:40 -08:00

Fix immich values.yaml: correct persistence structure ... c0333458fa

- Add 'data:' key under valkey.persistence
- Add 'enabled: true' for machine-learning cache

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>

eblume added 1 commit 2026-01-26 10:12:13 -08:00

Temp: point immich values at feature branch for testing ... 4832044a65

Will reset to main after PR merge.

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>

eblume added 1 commit 2026-01-26 10:17:18 -08:00

Fix immich values: add DB env vars under controllers.main ... 2818758817

The bjw-s common library expects env vars under
controllers.main.containers.main.env, not at the top level.

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>

eblume added 1 commit 2026-01-26 10:40:35 -08:00

Update Immich to chart v0.10.3 and app v2.4.1 ... 18f56a8890

- Update Helm chart from immich-0.10.0 to immich-0.10.3
- Update Immich to v2.4.1 (latest)
- Fix image tag structure for bjw-s common library

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>

eblume added 1 commit 2026-01-26 10:47:24 -08:00

Use VectorChord 0.5.0 for Immich compatibility ... 6b9b8bcc6f

Immich v2.4.1 requires VectorChord >=0.3 <0.6, but the 17.7-1.0.0
image has VectorChord 1.0.0. Use the 17-0.5.0 tag instead.

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>

eblume merged commit 8621996343 into main 2026-01-26 11:20:12 -08:00

eblume referenced this pull request from a commit 2026-01-26 11:20:12 -08:00

Add Immich photo management + migrate forge URLs (#62)

Sign in to join this conversation.

Reviewers

No reviewers

Labels

Clear labels

No items

No labels

Milestone

Clear milestone

No items

No milestone

Projects

Clear projects

No items

No project

Assignees

Clear assignees

No assignees

1 participant

Notifications

Subscribe

Due date

The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference

eblume/blumeops!62

No description provided.