remove metallb, update charts and readme

helm/jellyfin/.helmignore

@@ -0,0 +1,23 @@
+# Patterns to ignore when building packages.
+# This supports shell glob matching, relative path matching, and
+# negation (prefixed with !). Only one pattern per line.
+.DS_Store
+# Common VCS dirs
+.git/
+.gitignore
+.bzr/
+.bzrignore
+.hg/
+.hgignore
+.svn/
+# Common backup files
+*.swp
+*.bak
+*.tmp
+*.orig
+*~
+# Various IDEs
+.project
+.idea/
+*.tmproj
+.vscode/

helm/jellyfin/Chart.yaml

@@ -0,0 +1,23 @@
+apiVersion: v2
+name: Nextcloud
+description: A Simple Nextcloud Chart
+
+# A chart can be either an 'application' or a 'library' chart.
+#
+# Application charts are a collection of templates that can be packaged into versioned archives
+# to be deployed.
+#
+# Library charts provide useful utilities or functions for the chart developer. They're included as
+# a dependency of application charts to inject those utilities and functions into the rendering
+# pipeline. Library charts do not define any templates and therefore cannot be deployed.
+type: application
+
+# This is the chart version. This version number should be incremented each time you make changes
+# to the chart and its templates, including the app version.
+# Versions are expected to follow Semantic Versioning (https://semver.org/)
+version: 0.1.0
+
+# This is the version number of the application being deployed. This version number should be
+# incremented each time you make changes to the application. Versions are not expected to
+# follow Semantic Versioning. They should reflect the version the application is using.
+appVersion: 1.16.0

helm/jellyfin/templates/jellyfin.yaml

@@ -0,0 +1,141 @@
+apiVersion: apps/v1
+kind: Deployment
+metadata:
+  name: {{ .Release.Name }}
+spec:
+  selector:
+    matchLabels:
+      app.kubernetes.io/name: jellyfin
+  strategy:
+    type: Recreate
+  template:
+    metadata:
+      labels:
+        app.kubernetes.io/name: jellyfin
+    spec:
+      securityContext:
+        runAsUser: 1000
+        runAsGroup: 1000
+        fsGroup: 1000
+      containers:
+      - name: jellyfin
+        image: {{ .Values.jellyfin.image }}
+        ports:
+          - containerPort: 8096
+            name: http
+        volumeMounts:
+          - mountPath: /config
+            name: config
+          - mountPath: /cache
+            name: cache
+          - mountPath: /movies
+            name: movies
+          - mountPath: /shows
+            name: shows
+          - mountPath: /videos
+            name: videos
+        resources:
+          requests:
+            memory: "1Gi"
+            cpu: "1m"
+          limits:
+            memory: "8Gi"
+            cpu: "24"
+      volumes:
+      - name: config
+        persistentVolumeClaim:
+          claimName: {{ .Release.Name }}-config
+      - name: cache
+        persistentVolumeClaim:
+          claimName: {{ .Release.Name }}-cache
+      - name: movies
+        nfs:
+          server: democratic-csi-server.reeselink.com
+          path: /mnt/enc0/media/Movies
+          readOnly: true
+      - name: shows
+        nfs:
+          server: democratic-csi-server.reeselink.com
+          path: /mnt/enc0/media/Shows
+          readOnly: true
+      - name: videos
+        nfs:
+          server: democratic-csi-server.reeselink.com
+          path: /mnt/enc0/media/Videos
+          readOnly: true
+
+---
+
+apiVersion: v1
+kind: PersistentVolumeClaim
+metadata:
+  name: {{ .Release.Name }}-config
+  annotations:
+    "helm.sh/resource-policy": keep
+spec:
+  storageClassName: zfs-iscsi-enc0
+  accessModes:
+    - ReadWriteOnce
+  resources:
+    requests:
+      storage: 8Gi
+
+---
+
+apiVersion: v1
+kind: PersistentVolumeClaim
+metadata:
+  name: {{ .Release.Name }}-cache
+  annotations:
+    "helm.sh/resource-policy": keep
+spec:
+  storageClassName: zfs-iscsi-enc1
+  accessModes:
+    - ReadWriteOnce
+  resources:
+    requests:
+      storage: 128Gi
+
+---
+
+apiVersion: v1
+kind: Service
+metadata:
+  name: {{ .Release.Name }}
+spec:
+  type: ClusterIP
+  selector:
+    app.kubernetes.io/name: jellyfin
+  ports:
+  - name: http
+    protocol: TCP
+    port: 80
+    targetPort: http
+
+---
+
+apiVersion: networking.k8s.io/v1
+kind: Ingress
+metadata:
+  name: {{ .Release.Name }}
+  annotations:
+    cert-manager.io/cluster-issuer: letsencrypt
+    kubernetes.io/ingress.class: nginx
+    nginx.ingress.kubernetes.io/proxy-body-size: "0"
+    nginx.org/client-max-body-size: "0"
+spec:
+  rules:
+  - host: {{ .Values.jellyfin.domain }}
+    http:
+      paths:
+      - path: /
+        pathType: Prefix
+        backend:
+          service:
+            name: jellyfin
+            port:
+              name: http
+  tls:
+  - hosts:
+    - {{ .Values.jellyfin.domain }}
+    secretName: jellyfin-tls-cert

helm/jellyfin/values.yaml

@@ -0,0 +1,3 @@
+jellyfin:
+  image: jellyfin/jellyfin:latest
+  domain: jellyfin.reeseapps.com

helm/minecraft/values.yaml

@@ -1,7 +1,7 @@
 image: ducoterra/minecraft:latest
 get_server:
   image: ducoterra/get-minecraft:2.0.2
-server_version: "1.19.4"
+server_version: "1.20.1"
 port: 25565
 max_cpu: 4
 max_ram: 8

helm/nextcloud/templates/nextcloud.yaml

@@ -104,13 +104,7 @@ data:
   PHP_UPLOAD_LIMIT: 1000000M
   PHP_MEMORY_LIMIT: 2048M
   TRUSTED_PROXIES: 10.42.0.1/24
-  SMTP_HOST: email-smtp.us-east-2.amazonaws.com
-  SMTP_SECURE: tls
-  SMTP_PORT: "587"
-  SMTP_AUTHTYPE: LOGIN
-  SMTP_NAME: AKIA47PLXC3AOBYQITO2
-  MAIL_FROM_ADDRESS: server@nextcloud.reeseapps.com
-  MAIL_DOMAIN: nextcloud.reeseapps.com
+  APACHE_DISABLE_REWRITE_IP: "1"
 
 ---
 
@@ -218,23 +212,15 @@ spec:
       - name: html
         persistentVolumeClaim:
           claimName: {{ .Release.Name }}-html-iops
-        # emptyDir:
-        #   sizeLimit: 1Gi
       - name: data
         persistentVolumeClaim:
           claimName: {{ .Release.Name }}-data
-        # emptyDir:
-        #   sizeLimit: 1Gi
       - name: postgres
         persistentVolumeClaim:
           claimName: {{ .Release.Name }}-postgres-iops
-        # emptyDir:
-        #   sizeLimit: 1Gi
       - name: redis
         persistentVolumeClaim:
           claimName: {{ .Release.Name }}-redis-iops
-        # emptyDir:
-        #   sizeLimit: 1Gi
       - name: postgres-init
         secret:
           secretName: {{ .Release.Name }}-postgres-init
@@ -284,33 +270,13 @@ spec:
           - name: html
             persistentVolumeClaim:
               claimName: {{ .Release.Name }}-html-iops
-            # emptyDir:
-            #   sizeLimit: 1Gi
           - name: data
             persistentVolumeClaim:
               claimName: {{ .Release.Name }}-data
-            # emptyDir:
-            #   sizeLimit: 1Gi
           restartPolicy: OnFailure
 
 ---
 
-apiVersion: v1
-kind: PersistentVolumeClaim
-metadata:
-  name: {{ .Release.Name }}-html
-  annotations:
-    "helm.sh/resource-policy": keep
-spec:
-  storageClassName: zfs-iscsi-enc0
-  accessModes:
-    - ReadWriteOnce
-  resources:
-    requests:
-      storage: 16Gi
-
----
-
 apiVersion: v1
 kind: PersistentVolumeClaim
 metadata:
@@ -323,39 +289,7 @@ spec:
     - ReadWriteOnce
   resources:
     requests:
-      storage: 512Gi
-
----
-
-apiVersion: v1
-kind: PersistentVolumeClaim
-metadata:
-  name: {{ .Release.Name }}-postgres
-  annotations:
-    "helm.sh/resource-policy": keep
-spec:
-  storageClassName: zfs-iscsi-enc0
-  accessModes:
-    - ReadWriteOnce
-  resources:
-    requests:
-      storage: 32Gi
-
----
-
-apiVersion: v1
-kind: PersistentVolumeClaim
-metadata:
-  name: {{ .Release.Name }}-redis
-  annotations:
-    "helm.sh/resource-policy": keep
-spec:
-  storageClassName: zfs-iscsi-enc0
-  accessModes:
-    - ReadWriteOnce
-  resources:
-    requests:
-      storage: 1Gi
+      storage: 2Ti
 
 ---
 
@@ -440,22 +374,6 @@ metadata:
     kubernetes.io/ingress.class: nginx
     nginx.ingress.kubernetes.io/proxy-body-size: "0"
     nginx.org/client-max-body-size: "0"
-    nginx.org/server-snippets: |
-      location ^~ /.well-known {
-        # The rules in this block are an adaptation of the rules
-        # in `.htaccess` that concern `/.well-known`.
-
-        location = /.well-known/carddav { return 301 /remote.php/dav/; }
-        location = /.well-known/caldav  { return 301 /remote.php/dav/; }
-
-        location /.well-known/acme-challenge    { try_files $uri $uri/ =404; }
-        location /.well-known/pki-validation    { try_files $uri $uri/ =404; }
-
-        # Let Nextcloud's API for `/.well-known` URIs handle all other
-        # requests by passing them to the front-end controller.
-        return 301 /index.php$request_uri;
-      }
-
 spec:
   rules:
   - host: {{ .Values.nextcloud.domain }}

helm/snapdrop/.helmignore

@@ -0,0 +1,23 @@
+# Patterns to ignore when building packages.
+# This supports shell glob matching, relative path matching, and
+# negation (prefixed with !). Only one pattern per line.
+.DS_Store
+# Common VCS dirs
+.git/
+.gitignore
+.bzr/
+.bzrignore
+.hg/
+.hgignore
+.svn/
+# Common backup files
+*.swp
+*.bak
+*.tmp
+*.orig
+*~
+# Various IDEs
+.project
+.idea/
+*.tmproj
+.vscode/

helm/snapdrop/Chart.yaml

@@ -0,0 +1,23 @@
+apiVersion: v2
+name: Nextcloud
+description: A Simple Nextcloud Chart
+
+# A chart can be either an 'application' or a 'library' chart.
+#
+# Application charts are a collection of templates that can be packaged into versioned archives
+# to be deployed.
+#
+# Library charts provide useful utilities or functions for the chart developer. They're included as
+# a dependency of application charts to inject those utilities and functions into the rendering
+# pipeline. Library charts do not define any templates and therefore cannot be deployed.
+type: application
+
+# This is the chart version. This version number should be incremented each time you make changes
+# to the chart and its templates, including the app version.
+# Versions are expected to follow Semantic Versioning (https://semver.org/)
+version: 0.1.0
+
+# This is the version number of the application being deployed. This version number should be
+# incremented each time you make changes to the application. Versions are not expected to
+# follow Semantic Versioning. They should reflect the version the application is using.
+appVersion: 1.16.0

helm/snapdrop/templates/snapdrop.yaml

@@ -0,0 +1,111 @@
+apiVersion: v1
+kind: ConfigMap
+metadata:
+  name: {{ .Release.Name }}-snapdrop
+  annotations:
+    "helm.sh/resource-policy": keep
+data:
+  PUID: "1000"
+  PGID: "1000"
+  TZ: Etc/UTC
+
+---
+
+apiVersion: apps/v1
+kind: Deployment
+metadata:
+  name: {{ .Release.Name }}
+spec:
+  selector:
+    matchLabels:
+      app.kubernetes.io/name: snapdrop
+  strategy:
+    type: Recreate
+  template:
+    metadata:
+      labels:
+        app.kubernetes.io/name: snapdrop
+    spec:
+      containers:
+      - name: snapdrop
+        image: {{ .Values.snapdrop.image }}
+        ports:
+          - containerPort: 80
+            name: http
+        envFrom:
+          - configMapRef:
+              name: {{ .Release.Name }}-snapdrop
+        volumeMounts:
+          - mountPath: /config
+            name: config
+        resources:
+          requests:
+            memory: "1Gi"
+            cpu: "1m"
+          limits:
+            memory: "4Gi"
+            cpu: "4"
+      volumes:
+      - name: config
+        persistentVolumeClaim:
+          claimName: {{ .Release.Name }}-config
+
+---
+
+apiVersion: v1
+kind: PersistentVolumeClaim
+metadata:
+  name: {{ .Release.Name }}-config
+  annotations:
+    "helm.sh/resource-policy": keep
+spec:
+  storageClassName: zfs-iscsi-enc0
+  accessModes:
+    - ReadWriteOnce
+  resources:
+    requests:
+      storage: 8Gi
+
+---
+
+apiVersion: v1
+kind: Service
+metadata:
+  name: {{ .Release.Name }}
+spec:
+  type: ClusterIP
+  selector:
+    app.kubernetes.io/name: snapdrop
+  ports:
+  - name: http
+    protocol: TCP
+    port: 80
+    targetPort: http
+
+---
+
+apiVersion: networking.k8s.io/v1
+kind: Ingress
+metadata:
+  name: {{ .Release.Name }}
+  annotations:
+    cert-manager.io/cluster-issuer: letsencrypt
+    kubernetes.io/ingress.class: nginx
+    nginx.ingress.kubernetes.io/proxy-body-size: "0"
+    nginx.org/client-max-body-size: "0"
+spec:
+  rules:
+  - host: {{ .Values.snapdrop.domain }}
+    http:
+      paths:
+      - path: /
+        pathType: Prefix
+        backend:
+          service:
+            name: snapdrop
+            port:
+              name: http
+  tls:
+  - hosts:
+    - {{ .Values.snapdrop.domain }}
+    secretName: snapdrop-tls-cert

helm/snapdrop/values.yaml

@@ -0,0 +1,3 @@
+snapdrop:
+  image: linuxserver/snapdrop:latest
+  domain: snapdrop.reeseapps.com