Erich Blume
2bea048dbf
## Summary - Mirrors `tailscale/tailscale` on forge (`mirrors/tailscale`) - Replaces vendored `operator.yaml` (495 KB / 5,386 lines) with ArgoCD apps sourcing the upstream static manifest, pinned via `targetRevision: v1.94.2` - Adds `tailscale-operator-base` app for indri and `tailscale-operator-base-ringtail` for ringtail - Local kustomization retains only ProxyClass and DNSConfig custom resources - Updates `[[tailscale-operator]]` doc to reflect new sourcing ## Deployment and Testing - [ ] Register `mirrors/tailscale` repo in ArgoCD (it needs to know about the new repo) - [ ] Sync `apps` app to pick up the new `tailscale-operator-base` app definitions - [ ] Sync `tailscale-operator-base` — verify CRDs, RBAC, operator Deployment come up - [ ] Sync `tailscale-operator` — verify ProxyClass, DNSConfig still apply cleanly - [ ] Verify existing Tailscale Ingresses still work (ProxyGroup pods healthy) - [ ] Repeat for ringtail cluster - [ ] After merge: apps already point at tags, no revision reset needed Reviewed-on: #295
25 lines
760 B
YAML
25 lines
760 B
YAML
# ProxyClass: default
|
|
#
|
|
# Specifies fully-qualified image names for Tailscale proxy pods.
|
|
# This ensures consistent behavior across different container runtimes.
|
|
#
|
|
# Version must match targetRevision in argocd/apps/tailscale-operator-base.yaml.
|
|
#
|
|
# Usage:
|
|
# Add this annotation to any Tailscale Service or Ingress:
|
|
# tailscale.com/proxy-class: "default"
|
|
#
|
|
# This tells the operator to use the fully-qualified image names defined below
|
|
# when creating the proxy pod for that resource.
|
|
---
|
|
apiVersion: tailscale.com/v1alpha1
|
|
kind: ProxyClass
|
|
metadata:
|
|
name: default
|
|
spec:
|
|
statefulSet:
|
|
pod:
|
|
tailscaleContainer:
|
|
image: docker.io/tailscale/tailscale:v1.94.2
|
|
tailscaleInitContainer:
|
|
image: docker.io/tailscale/tailscale:v1.94.2
|