Go to file

Sascha Dodenhöft 00c7ec292f gongme: k8s Manifeste fuer initialen Cluster-Deploy

Namespace, StorageClass (Longhorn), Postgres, API, Web,
OAuth2-Proxy (Zitadel OIDC) und Traefik-Ingress fuer
https://gongme.expertfab.de.

Images: git.expertfab.de/expertfab/ef-gongme-{api,web}:latest
Auth: Zitadel hinter OAuth2-Proxy v7.7.1
TLS: cert-manager letsencrypt-ClusterIssuer

secret-oauth2.yaml enthaelt Platzhalter — CLIENT_ID/SECRET
muessen nach Zitadel-App-Anlage eingetragen werden.

Co-Authored-By: Claude Opus 4.7 <noreply@anthropic.com>

2026-06-07 13:19:46 +02:00

diagrams

Add storage flow & HA analysis diagram

2026-05-03 14:00:45 +02:00

docs

gongme: k8s Manifeste fuer initialen Cluster-Deploy

2026-06-07 13:19:46 +02:00

k8s

gongme: k8s Manifeste fuer initialen Cluster-Deploy

2026-06-07 13:19:46 +02:00

README.md

Initial commit: Infrastructure documentation

2026-05-03 13:46:47 +02:00

README.md

ExpertFab – Infrastruktur Dokumentation

Zentrale Dokumentation der ExpertFab IT-Infrastruktur.

Inhalt

Dokument	Beschreibung
docs/infrastructure.md	VM-Inventar, Proxmox-Hosts, Netzwerk
docs/access.md	SSH-Zugänge, API-Token, Credentials
docs/k3s.md	K3s-Cluster, Namespaces, Ingresses, ERPNext
docs/storage.md	Longhorn Storage, PVCs, StorageClasses

Schaubilder

Datei	Beschreibung
diagrams/k8s_cluster.png	Gesamte Infrastruktur (Proxmox + K3s)
diagrams/storage_architecture.png	Longhorn Storage Architektur

Schaubilder neu generieren:

cd diagrams
python3 k8s_cluster_diagram.py
python3 storage_diagram.py

Schnellzugriff

# Proxmox
ssh -i ~/.ssh/hetzner_key root@10.42.70.1

# K3s Control Plane
ssh -i ~/.ssh/hetzner_key sd@10.42.71.50

# kubectl (am Control Plane)
sudo KUBECONFIG=/etc/rancher/k3s/k3s.yaml kubectl get pods -A

# kubectl via Proxmox (ohne sudo-Passwort)
ssh -i ~/.ssh/hetzner_key root@10.42.70.1 \
  "qm guest exec 119 -- bash -c 'KUBECONFIG=/etc/rancher/k3s/k3s.yaml kubectl get pods -A'"

README.md Unescape Escape

ExpertFab – Infrastruktur Dokumentation

Inhalt

Schaubilder

Schnellzugriff

README.md