Justin Seiser jseiser
jseiser
/ values.yaml
Created
June 20, 2025 15:47
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| enablePodDisruptionBudget: true | |
| commonLabels: # This is a hack for Pod Monitor Until | |
| release: kube-prometheus-stack | |
| deploymentStrategy: | |
| rollingUpdate: | |
| maxUnavailable: 1 | |
| maxSurge: 25% | |
| enablePodAntiAffinity: true | |
| proxy: | |
| logFormat: json |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| apiVersion: cert-manager.io/v1 | |
| kind: Issuer | |
| metadata: | |
| name: linkerd-webhook-trust-root-issuer | |
| namespace: cert-manager | |
| spec: | |
| selfSigned: {} | |
| --- | |
| apiVersion: cert-manager.io/v1 | |
| kind: Certificate |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| apiVersion: cert-manager.io/v1 | |
| kind: Issuer | |
| metadata: | |
| name: linkerd-trust-root-issuer | |
| namespace: cert-manager | |
| spec: | |
| selfSigned: {} | |
| --- | |
| apiVersion: cert-manager.io/v1 | |
| kind: Certificate |
jseiser
/ gist:aa6549dd4b05aab6e5783b3a6c60907b
Created
May 27, 2025 19:37
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| ➜ ~ docker logs iptvboss | |
| Setting iptvboss user and group id to 1000 and 1000... | |
| Installing cronitor... | |
| Cronitor installed successfully. | |
| Starting the cron daemon | |
| The cron daemon started successfully. | |
| CRON_SCHEDULE set for 0 0 * * * as defined. Updated the cron job schedule. | |
| Creating a new monitor named 'BOSS'. | |
| Created monitor with key: 5iVG3Y | |
| Updated crontab with monitor ID: 5iVG3Y |
jseiser
/ gist:8f064367e679dbd4cf1efaf2befacce1
Created
April 16, 2025 19:33
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| logging { | |
| level = "info" | |
| format = "json" | |
| } | |
| otelcol.receiver.otlp "default" { | |
| debug_metrics { | |
| disable_high_cardinality_metrics = true | |
| } | |
| grpc { |
jseiser
/ gist:7d9d5697f30a05e824e5c0c0a97c8840
Created
March 10, 2025 19:23
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| {"name":"renovate","hostname":"runner-equgucjxw-project-360-concurrent-0-nh53ldde","pid":36,"level":20,"logContext":"4f_fQV0iowxru7jDe3NZ1","msg":"Using RE2 regex engine","time":"2025-03-10T19:15:44.527Z","v":0} | |
| {"name":"renovate","hostname":"runner-equgucjxw-project-360-concurrent-0-nh53ldde","pid":36,"level":20,"logContext":"4f_fQV0iowxru7jDe3NZ1","msg":"Parsing configs","time":"2025-03-10T19:15:44.534Z","v":0} | |
| {"name":"renovate","hostname":"runner-equgucjxw-project-360-concurrent-0-nh53ldde","pid":36,"level":20,"logContext":"4f_fQV0iowxru7jDe3NZ1","msg":"No config file found on disk - skipping","time":"2025-03-10T19:15:44.538Z","v":0} | |
| {"name":"renovate","hostname":"runner-equgucjxw-project-360-concurrent-0-nh53ldde","pid":36,"level":20,"logContext":"4f_fQV0iowxru7jDe3NZ1","msg":"Converting GITHUB_COM_TOKEN into a global host rule","time":"2025-03-10T19:15:44.552Z","v":0} | |
| {"name":"renovate","hostname":"runner-equgucjxw-project-360-concurrent-0-nh53ldde","pid":36,"level":20,"logContext":"4f_fQV0iowxru7jDe3NZ |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| {"level":"info","ts":1733949964.5190644,"msg":"Copyright 2020-2023 the Vouch Proxy Authors"} | |
| {"level":"warn","ts":1733949964.5190883,"msg":"Vouch Proxy is free software with ABSOLUTELY NO WARRANTY."} | |
| {"level":"info","ts":1733949964.5198016,"msg":"Vouch Proxy configuration set from Environmental Variables"} | |
| {"level":"warn","ts":1733949964.5198212,"msg":"generating random session.key"} | |
| {"level":"info","ts":1733949964.5198524,"msg":"setting LogLevel to info"} | |
| {"level":"info","ts":1733949964.5198584,"msg":"configuring oidc OAuth with Endpoint https://auth.my.tld/oauth2/v1/authorize"} | |
| {"level":"info","ts":1733949964.5198927,"msg":"jwtcache: the returned headers for a valid jwt will be cached for 20 minutes"} | |
| {"level":"info","ts":1733949964.5201967,"msg":"starting Vouch Proxy","version":"012b2fd","buildtime":"2024-10-01T22:02:54Z","uname":"Linux","buildhost":"buildkitsandbox","branch":"HEAD","semver":"v0.41.0","listen":"http://0.0.0.0:9090","tls":false,"document_root":"","oauth.provider":"oidc"} | |
| {"level":"info","ts |
jseiser
/ gist:d76815dda8c1f019ece3532275804eb3
Created
December 11, 2024 20:39
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| nginx.ingress.kubernetes.io/auth-response-headers: X-Vouch-User | |
| nginx.ingress.kubernetes.io/auth-signin: https://vouch-ops-dev.my.tld/login?url=$scheme://$http_host$request_uri&vouch-failcount=$auth_resp_failcount&X-Vouch-Token=$auth_resp_jwt&error=$auth_resp_err | |
| nginx.ingress.kubernetes.io/auth-snippet: | | |
| auth_request_set $auth_resp_jwt $upstream_http_x_vouch_jwt; | |
| auth_request_set $auth_resp_err $upstream_http_x_vouch_err; | |
| auth_request_set $auth_resp_failcount $upstream_http_x_vouch_failcount; | |
| nginx.ingress.kubernetes.io/auth-url: https://vouch-ops-dev.my.tld/validate |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # Configuration checksum: 5462546966217761004 | |
| # setup custom paths that do not require root access | |
| pid /tmp/nginx/nginx.pid; | |
| load_module /etc/nginx/modules/ngx_http_modsecurity_module.so; | |
| daemon off; |
jseiser
/ gist:eb994613a32aeca80730edaf44a5ff80
Created
December 11, 2024 19:53
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| ``` | |
| Environment: | |
| VOUCH_PORT: 9090 | |
| VOUCH_LOGLEVEL: info | |
| VOUCH_TESTING: false | |
| VOUCH_ALLOWALLUSERS: true |
NewerOlder