Externalize Tailscale operator to forge mirror #295

Merged

eblume merged 3 commits from externalize-tailscale-operator-base into main

2026-03-15 17:44:35 -07:00

Author	SHA1	Message	Date
Erich Blume	7b0f642066	Exclude upstream placeholder OAuth Secret from kustomize build The upstream manifest includes a Secret with empty client_id/client_secret placeholders. We manage this via ExternalSecret, so drop the upstream copy to avoid ownership conflicts in ArgoCD. Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>	2026-03-15 17:43:53 -07:00
Erich Blume	2bc0852680	Switch to kustomize remote resource for upstream manifest Use HTTPS raw URL from forge mirror instead of a separate ArgoCD app. Pins operator image to v1.94.2 via kustomize images transformer, avoiding the upstream's floating "stable" tag. Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>	2026-03-15 17:42:34 -07:00
Erich Blume	56224867fa	Externalize Tailscale operator to forge mirror Replace vendored operator.yaml (495 KB) with ArgoCD apps sourcing the upstream static manifest from mirrors/tailscale on forge, pinned to v1.94.2 via targetRevision. Adds apps for both indri and ringtail clusters. Local kustomization retains only ProxyClass and DNSConfig. Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>	2026-03-15 17:33:32 -07:00

Author

SHA1

Message

Date

Erich Blume

7b0f642066

Exclude upstream placeholder OAuth Secret from kustomize build

The upstream manifest includes a Secret with empty client_id/client_secret
placeholders. We manage this via ExternalSecret, so drop the upstream copy
to avoid ownership conflicts in ArgoCD.

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>

2026-03-15 17:43:53 -07:00

Erich Blume

2bc0852680

Switch to kustomize remote resource for upstream manifest

Use HTTPS raw URL from forge mirror instead of a separate ArgoCD app.
Pins operator image to v1.94.2 via kustomize images transformer,
avoiding the upstream's floating "stable" tag.

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>

2026-03-15 17:42:34 -07:00

Erich Blume

56224867fa

Externalize Tailscale operator to forge mirror

Replace vendored operator.yaml (495 KB) with ArgoCD apps sourcing the
upstream static manifest from mirrors/tailscale on forge, pinned to
v1.94.2 via targetRevision. Adds apps for both indri and ringtail
clusters. Local kustomization retains only ProxyClass and DNSConfig.

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>

2026-03-15 17:33:32 -07:00