|
|
0d0fd95991
|
feat: deploy Wave 2 - CrowdSec + Velero
- CrowdSec: LAPI + Agent with containerd runtime, Traefik log acquisition
- Velero: with AWS plugin, placeholder BSL (needs S3 storage config later)
- Both with reduced resources for 4GB VPS
|
2026-02-19 23:06:26 +00:00 |
|
|
|
b69cc16002
|
fix: remove Authelia default_redirection_url conflicting with authelia_url
|
2026-02-19 22:56:50 +00:00 |
|
|
|
98e073ad82
|
fix: correct Authelia and Trivy Operator chart values
- Authelia: remove invalid server.address, use chart auto-generated secrets
- Trivy: use clusterComplianceEnabled=false instead of empty cron
|
2026-02-19 22:49:35 +00:00 |
|
|
|
c2a803d28b
|
feat: deploy Wave 1 - Vaultwarden, Uptime Kuma, Trivy Operator, Authelia
GitOps manifests for security stack Wave 1:
- Vaultwarden (vault.davidepiu.xyz) - password manager
- Uptime Kuma (status.davidepiu.xyz) - uptime monitoring
- Trivy Operator - vulnerability scanning
- Authelia (auth.davidepiu.xyz) - SSO + 2FA
All with NetworkPolicies for Traefik ingress.
|
2026-02-19 22:44:34 +00:00 |
|
