Erich Blume
a8f4d00294
## Summary - Split k8s migration plan into phases folder for easier navigation - Added `tag:k8s` to Pulumi ACLs for Kubernetes workloads - Phase 1 work in progress ## Phase 1 Goals - Tailscale Kubernetes Operator - CloudNativePG Operator - PostgreSQL cluster for future app migrations ## Deployment and Testing - [ ] Review Phase 1 plan - [ ] `mise run tailnet-preview` to verify ACL changes - [ ] `mise run tailnet-up` to apply ACL changes - [ ] Create Tailscale OAuth client (manual) - [ ] Deploy operators and PostgreSQL cluster 🤖 Generated with [Claude Code](https://claude.com/claude-code) Reviewed-on: https://forge.tail8d86e.ts.net/eblume/blumeops/pulls/29
26 lines
811 B
YAML
26 lines
811 B
YAML
# ArgoCD Application for Tailscale Kubernetes Operator
|
|
# Note: OAuth secret is managed separately (not in git)
|
|
apiVersion: argoproj.io/v1alpha1
|
|
kind: Application
|
|
metadata:
|
|
name: tailscale-operator
|
|
namespace: argocd
|
|
spec:
|
|
project: default
|
|
# Tailscale operator mutates externalName from "placeholder" to actual proxy service
|
|
ignoreDifferences:
|
|
- group: ""
|
|
kind: Service
|
|
jsonPointers:
|
|
- /spec/externalName
|
|
source:
|
|
repoURL: ssh://forgejo@indri.tail8d86e.ts.net:2200/eblume/blumeops.git
|
|
targetRevision: feature/k8s-phase1-kickoff
|
|
path: argocd/manifests/tailscale-operator
|
|
destination:
|
|
server: https://kubernetes.default.svc
|
|
namespace: tailscale
|
|
syncPolicy:
|
|
syncOptions:
|
|
- CreateNamespace=true
|
|
# Manual sync only - no automated sync on git push
|