eblume/blumeops
1
1
Fork 0
Code Issues Pull requests Projects Releases 83 Packages Wiki Activity Actions

Deploy Paperless-ngx document management #328

Merged
eblume merged 8 commits from deploy-paperless into main 2026-04-08 17:54:13 -07:00
Conversation 0 Commits 8 Files changed 21 +578

8 commits

Author SHA1 Message Date
Erich Blume
3027fa6089 Disable local self-service registration in paperless 
Users must be added via Authentik OIDC; eblume is the only local account.

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
 2026-04-08 17:50:49 -07:00
Erich Blume
ba5c3a6bae Add Authentik OIDC provider and application for Paperless 
Blueprint with confidential client, ExternalSecret for client secret,
and worker env var injection — follows existing service pattern.

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
 2026-04-08 17:49:24 -07:00
Erich Blume
0bde34d6e1 Fix paperless port: override k8s-injected PAPERLESS_PORT env var 
Kubernetes auto-injects PAPERLESS_PORT=tcp://... for a service named
'paperless', which conflicts with Granian's --port flag. Explicitly
set PAPERLESS_PORT=8000 to take precedence.

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
 2026-04-08 17:39:53 -07:00
Erich Blume
919ad04e30 Pin paperless and redis image tags from registry 
Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
 2026-04-08 17:34:17 -07:00
Erich Blume
42f6299eaa Rewrite paperless Dockerfile to match upstream structure 
Add syntax directive for BuildKit, use COPY --from=source instead of
inline git clone, fix s6-overlay arch mapping, use upstream jbig2enc
v0.30 trixie build, and enable RUN --mount=type=cache for Python deps.

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
 2026-04-08 17:03:31 -07:00
Erich Blume
fba339e543 Fix jbig2enc download: ADD doesn't expand shell subcommands 
Use curl in a RUN instead of ADD so $(dpkg --print-architecture)
is evaluated by the shell.

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
 2026-04-08 16:44:11 -07:00
Erich Blume
d036782b43 Fix paperless admin username and email 
Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
 2026-04-08 16:38:57 -07:00
Erich Blume
041c47acfb Deploy Paperless-ngx document management system 
Add paperless-ngx (v2.20.13) as a new ArgoCD-managed service on indri
with Authentik OIDC SSO, PostgreSQL on blumeops-pg, Redis sidecar, and
NFS document storage on sifaka. Includes Dockerfile built from forge
mirror, full k8s manifests, Caddy route, 1Password secrets, and
reference documentation.

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
 2026-04-08 16:33:34 -07:00