eblume/blumeops
1
1
Fork 0
Code Issues Pull requests Projects Releases 83 Packages Wiki Activity Actions
blumeops/argocd/manifests/databases/service-immich-pg-tailscale.yaml
Erich Blume 1b18748f51 Add borgmatic backups for authentik and immich databases 
Closes the gap where only miniflux and teslamate were backed up.
Authentik (blumeops-pg) just needed a config entry. Immich (immich-pg)
required a new borgmatic managed role, ExternalSecret, Tailscale
service, and Caddy L4 proxy on port 5433.

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
2026-03-27 16:52:41 -07:00

22 lines
581 B
YAML
Raw Blame History

# Tailscale LoadBalancer for immich-pg PostgreSQL access
# Canonical hostname: immich-pg.tail8d86e.ts.net
# Caddy L4 proxies pg.ops.eblu.me:5433 → this service for borgmatic backups
apiVersion: v1
kind: Service
metadata:
name: immich-pg-tailscale
namespace: databases
annotations:
tailscale.com/hostname: "immich-pg"
tailscale.com/proxy-class: "default"
spec:
type: LoadBalancer
loadBalancerClass: tailscale
selector:
cnpg.io/cluster: immich-pg
role: primary
ports:
- name: postgresql
port: 5432
targetPort: 5432
protocol: TCP
Reference in a new issue View git blame Copy permalink