wn/home-automation
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Compare commits

base: wn:0.0.31
Branches Tags
wn:main wn:caroutlet wn:ui_redesign wn:api_message_processing_refactoring wn:homekit_integration wn:ui_fix_thermostats wn:groups_and_scenes wn:rules wn:shellies_relays wn:temperature_sensors wn:window_contacts wn:polyfill wn:dynamic_dashboard
wn:0.1.4 wn:0.1.3 wn:0.1.2 wn:0.1.1 wn:0.1.0 wn:0.0.35 wn:0.0.34 wn:0.0.33 wn:0.0.32 wn:0.0.31 wn:0.0.30 wn:0.0.29 wn:0.0.28 wn:0.0.27 wn:0.0.26-configchange wn:0.0.26 wn:0.0.25-configchange wn:0.0.25 wn:0.0.24 wn:0.0.23 wn:0.0.22 wn:0.0.21 wn:0.0.20 wn:0.0.19 wn:0.0.18 wn:0.0.17 wn:0.0.16 wn:0.0.15 wn:0.0.14 wn:0.0.13 wn:0.0.12 wn:0.0.11 wn:0.0.10 wn:0.0.9 wn:0.0.8 wn:0.0.7 wn:0.0.6 wn:0.0.5 wn:0.0.4-configchange wn:0.0.4 wn:0.0.3 wn:0.0.2 wn:0.0.1 wn:works_on_chrome_and_iphone
...
compare: wn:0.0.33
Branches Tags
wn:main wn:caroutlet wn:ui_redesign wn:api_message_processing_refactoring wn:homekit_integration wn:ui_fix_thermostats wn:groups_and_scenes wn:rules wn:shellies_relays wn:temperature_sensors wn:window_contacts wn:polyfill wn:dynamic_dashboard
wn:0.1.4 wn:0.1.3 wn:0.1.2 wn:0.1.1 wn:0.1.0 wn:0.0.35 wn:0.0.34 wn:0.0.33 wn:0.0.32 wn:0.0.31 wn:0.0.30 wn:0.0.29 wn:0.0.28 wn:0.0.27 wn:0.0.26-configchange wn:0.0.26 wn:0.0.25-configchange wn:0.0.25 wn:0.0.24 wn:0.0.23 wn:0.0.22 wn:0.0.21 wn:0.0.20 wn:0.0.19 wn:0.0.18 wn:0.0.17 wn:0.0.16 wn:0.0.15 wn:0.0.14 wn:0.0.13 wn:0.0.12 wn:0.0.11 wn:0.0.10 wn:0.0.9 wn:0.0.8 wn:0.0.7 wn:0.0.6 wn:0.0.5 wn:0.0.4-configchange wn:0.0.4 wn:0.0.3 wn:0.0.2 wn:0.0.1 wn:works_on_chrome_and_iphone

2 Commits
0.0.31 ... 0.0.33

Author SHA1 Message Date
Wolfgang Hottgenroth
205baa7e01 mtls fix 3
Some checks failed
ci/woodpecker/push/build/4 Pipeline was successful
Details
ci/woodpecker/push/predeploy Pipeline was successful
Details
ci/woodpecker/push/build/3 Pipeline was successful
Details
ci/woodpecker/push/build/2 Pipeline failed
Details
ci/woodpecker/push/deploy/2 unknown status
Details
ci/woodpecker/push/deploy/3 unknown status
Details
ci/woodpecker/push/build/1 Pipeline failed
Details
ci/woodpecker/push/deploy/1 unknown status
Details
ci/woodpecker/push/deploy/4 unknown status
Details
ci/woodpecker/tag/predeploy Pipeline was successful
Details
ci/woodpecker/tag/build/4 Pipeline was successful
Details
ci/woodpecker/tag/build/1 Pipeline was successful
Details
ci/woodpecker/tag/build/3 Pipeline was successful
Details
ci/woodpecker/tag/build/2 Pipeline was successful
Details
ci/woodpecker/tag/deploy/1 Pipeline was successful
Details
ci/woodpecker/tag/deploy/2 Pipeline was successful
Details
ci/woodpecker/tag/deploy/4 Pipeline was successful
Details
ci/woodpecker/tag/deploy/3 Pipeline was successful
Details
2025-11-29 22:19:12 +01:00
Wolfgang Hottgenroth
f3f9238d5f mtls fix 2
Some checks failed
ci/woodpecker/push/build/2 Pipeline was successful
Details
ci/woodpecker/push/build/1 Pipeline failed
Details
ci/woodpecker/push/predeploy Pipeline failed
Details
ci/woodpecker/push/build/3 Pipeline failed
Details
ci/woodpecker/push/build/4 Pipeline failed
Details
ci/woodpecker/push/deploy/1 unknown status
Details
ci/woodpecker/push/deploy/2 unknown status
Details
ci/woodpecker/push/deploy/3 unknown status
Details
ci/woodpecker/push/deploy/4 unknown status
Details
ci/woodpecker/tag/predeploy Pipeline was successful
Details
ci/woodpecker/tag/build/1 Pipeline was successful
Details
ci/woodpecker/tag/build/4 Pipeline was successful
Details
ci/woodpecker/tag/build/2 Pipeline was successful
Details
ci/woodpecker/tag/build/3 Pipeline was successful
Details
ci/woodpecker/tag/deploy/1 Pipeline was successful
Details
ci/woodpecker/tag/deploy/3 Pipeline was successful
Details
ci/woodpecker/tag/deploy/2 Pipeline was successful
Details
ci/woodpecker/tag/deploy/4 Pipeline was successful
Details
2025-11-29 22:02:11 +01:00
6 changed files with 242 additions and 11 deletions
Expand all files Collapse all files

2
.woodpecker/predeploy.yml
View File

@@ -33,7 +33,7 @@ steps:
--namespace=$NAMESPACE --namespace=$NAMESPACE
--dry-run=client -o yaml | kubectl apply -f - --dry-run=client -o yaml | kubectl apply -f -
- kubectl apply -f deployment/configmap.yaml -n $NAMESPACE - kubectl apply -f deployment/configmap.yaml -n $NAMESPACE
- kubectl apply -f deployment/mtls-config.yaml -n $NAMESPACE - kubectl apply -f deployment/mtls-config.yaml # NO NAMESPACE HERE
when: when:
event: [tag] event: [tag]

7
deployment/api-deployment.yaml
View File

@@ -107,11 +107,8 @@ metadata:
name: api-ingress name: api-ingress
annotations: annotations:
cert-manager.io/cluster-issuer: letsencrypt-production-http cert-manager.io/cluster-issuer: letsencrypt-production-http
traefik.ingress.kubernetes.io/router.middlewares: homea2-mtls-auth@kubernetescrd,homea2-security-headers@kubernetescrd traefik.ingress.kubernetes.io/router.middlewares: default-mtls-auth@kubernetescrd,default-security-headers@kubernetescrd
traefik.ingress.kubernetes.io/router.tls.options: homea2-homea2-mtls@kubernetescrd traefik.ingress.kubernetes.io/router.tls.options: default-homea2-mtls@kubernetescrd
# Traefik 2 mTLS Configuration
traefik.ingress.kubernetes.io/router.tls.options: homea2-mtls@kubernetescrd
traefik.ingress.kubernetes.io/router.middlewares: homea2-mtls-auth@kubernetescrd
spec: spec:
tls: tls:
- hosts: - hosts:

130
deployment/api-deployment.yaml.bak Normal file
View File

@@ -0,0 +1,130 @@
apiVersion: apps/v1
kind: Deployment
metadata:
name: api
namespace: homea2
labels:
app: api
component: home-automation
spec:
replicas: 1
selector:
matchLabels:
app: api
template:
metadata:
annotations:
reloader.stakater.com/auto: "true"
configmap.reloader.stakater.com/reload: "home-automation-environment,home-automation-config"
labels:
app: api
component: home-automation
spec:
containers:
- name: api
image: %IMAGE%
ports:
- containerPort: 8001
name: http
env:
- name: MQTT_BROKER
valueFrom:
configMapKeyRef:
name: home-automation-environment
key: SHARED_MQTT_BROKER
- name: MQTT_PORT
valueFrom:
configMapKeyRef:
name: home-automation-environment
key: SHARED_MQTT_PORT
- name: REDIS_HOST
valueFrom:
configMapKeyRef:
name: home-automation-environment
key: SHARED_REDIS_HOST
- name: REDIS_PORT
valueFrom:
configMapKeyRef:
name: home-automation-environment
key: SHARED_REDIS_PORT
- name: REDIS_DB
valueFrom:
configMapKeyRef:
name: home-automation-environment
key: SHARED_REDIS_DB
- name: REDIS_CHANNEL
valueFrom:
configMapKeyRef:
name: home-automation-environment
key: API_REDIS_CHANNEL
volumeMounts:
- name: config-volume
mountPath: /app/config
readOnly: true
livenessProbe:
httpGet:
path: /health
port: 8001
initialDelaySeconds: 30
periodSeconds: 10
readinessProbe:
httpGet:
path: /health
port: 8001
initialDelaySeconds: 5
periodSeconds: 5
resources:
limits:
cpu: 1000m
memory: 1Gi
requests:
cpu: 200m
memory: 256Mi
volumes:
- name: config-volume
configMap:
name: home-automation-config
---
apiVersion: v1
kind: Service
metadata:
name: api
labels:
app: api
component: home-automation
spec:
selector:
app: api
ports:
- port: 80
targetPort: 8001
name: http
type: ClusterIP
---
apiVersion: networking.k8s.io/v1
kind: Ingress
metadata:
name: api-ingress
annotations:
cert-manager.io/cluster-issuer: letsencrypt-production-http
traefik.ingress.kubernetes.io/router.middlewares: homea2-mtls-auth@kubernetescrd,homea2-security-headers@kubernetescrd
traefik.ingress.kubernetes.io/router.tls.options: homea2-homea2-mtls@kubernetescrd
# Traefik 2 mTLS Configuration
traefik.ingress.kubernetes.io/router.tls.options: homea2-mtls@kubernetescrd
traefik.ingress.kubernetes.io/router.middlewares: homea2-mtls-auth@kubernetescrd
spec:
tls:
- hosts:
- homea2-api.hottis.de
secretName: homea2-api-cert
rules:
- host: homea2-api.hottis.de
http:
paths:
- path: /
pathType: Prefix
backend:
service:
name: api
port:
number: 80

3
deployment/mtls-config.yaml
View File

@@ -2,6 +2,7 @@ apiVersion: traefik.containo.us/v1alpha1
kind: TLSOption kind: TLSOption
metadata: metadata:
name: homea2-mtls name: homea2-mtls
namespace: default
spec: spec:
clientAuth: clientAuth:
secretNames: secretNames:
@@ -19,6 +20,7 @@ apiVersion: traefik.containo.us/v1alpha1
kind: Middleware kind: Middleware
metadata: metadata:
name: mtls-auth name: mtls-auth
namespace: default
spec: spec:
headers: headers:
customRequestHeaders: customRequestHeaders:
@@ -35,6 +37,7 @@ apiVersion: traefik.containo.us/v1alpha1
kind: Middleware kind: Middleware
metadata: metadata:
name: security-headers name: security-headers
namespace: default
spec: spec:
headers: headers:
customResponseHeaders: customResponseHeaders:

7
deployment/ui-deployment.yaml
View File

@@ -84,11 +84,8 @@ metadata:
name: ui-ingress name: ui-ingress
annotations: annotations:
cert-manager.io/cluster-issuer: letsencrypt-production-http cert-manager.io/cluster-issuer: letsencrypt-production-http
traefik.ingress.kubernetes.io/router.middlewares: homea2-mtls-auth@kubernetescrd,homea2-security-headers@kubernetescrd traefik.ingress.kubernetes.io/router.middlewares: default-mtls-auth@kubernetescrd,default-security-headers@kubernetescrd
traefik.ingress.kubernetes.io/router.tls.options: homea2-homea2-mtls@kubernetescrd traefik.ingress.kubernetes.io/router.tls.options: default-homea2-mtls@kubernetescrd
# Traefik 2 mTLS Configuration
traefik.ingress.kubernetes.io/router.tls.options: homea2-mtls@kubernetescrd
traefik.ingress.kubernetes.io/router.middlewares: homea2-mtls-auth@kubernetescrd
spec: spec:
tls: tls:
- hosts: - hosts:

104
deployment/ui-deployment.yaml.bak Normal file
View File

@@ -0,0 +1,104 @@
apiVersion: apps/v1
kind: Deployment
metadata:
name: ui
namespace: homea2
labels:
app: ui
component: home-automation
spec:
replicas: 1
selector:
matchLabels:
app: ui
template:
metadata:
annotations:
reloader.stakater.com/auto: "true"
configmap.reloader.stakater.com/reload: "home-automation-environment"
labels:
app: ui
component: home-automation
spec:
containers:
- name: ui
image: %IMAGE%
ports:
- containerPort: 8002
name: http
env:
- name: UI_PORT
valueFrom:
configMapKeyRef:
name: home-automation-environment
key: UI_UI_PORT
- name: API_BASE
valueFrom:
configMapKeyRef:
name: home-automation-environment
key: UI_API_BASE
- name: BASE_PATH
valueFrom:
configMapKeyRef:
name: home-automation-environment
key: UI_BASE_PATH
livenessProbe:
httpGet:
path: /
port: 8002
initialDelaySeconds: 30
periodSeconds: 10
readinessProbe:
httpGet:
path: /
port: 8002
initialDelaySeconds: 5
periodSeconds: 5
resources:
limits:
cpu: 500m
memory: 512Mi
requests:
cpu: 100m
memory: 128Mi
---
apiVersion: v1
kind: Service
metadata:
name: ui
labels:
app: ui
component: home-automation
spec:
selector:
app: ui
ports:
- port: 80
targetPort: 8002
name: http
type: ClusterIP
---
apiVersion: networking.k8s.io/v1
kind: Ingress
metadata:
name: ui-ingress
annotations:
cert-manager.io/cluster-issuer: letsencrypt-production-http
traefik.ingress.kubernetes.io/router.middlewares: homea2-mtls-auth@kubernetescrd,homea2-security-headers@kubernetescrd
traefik.ingress.kubernetes.io/router.tls.options: homea2-homea2-mtls@kubernetescrd
spec:
tls:
- hosts:
- homea2.hottis.de
secretName: homea2-ui-cert
rules:
- host: homea2.hottis.de
http:
paths:
- path: /
pathType: Prefix
backend:
service:
name: ui
port:
number: 80