From b4452ceb6ced7e1d4a2aa3d47e5d330fd19aa683 Mon Sep 17 00:00:00 2001 From: gitea-admin Date: Mon, 18 May 2026 23:34:33 +0000 Subject: [PATCH 1/7] feat(pelican): deploy Pelican Panel with database and ingress --- deployments/pelican/externalsecret-db.yaml | 19 +++++++++++++++++++ 1 file changed, 19 insertions(+) create mode 100644 deployments/pelican/externalsecret-db.yaml diff --git a/deployments/pelican/externalsecret-db.yaml b/deployments/pelican/externalsecret-db.yaml new file mode 100644 index 0000000..b769d89 --- /dev/null +++ b/deployments/pelican/externalsecret-db.yaml @@ -0,0 +1,19 @@ +apiVersion: external-secrets.io/v1beta1 +kind: ExternalSecret +metadata: + name: pelican-panel-db + namespace: pelican +spec: + refreshInterval: 1h + target: + name: pelican-panel-db + creationPolicy: Owner + data: + - secretKey: DB_PASSWORD + remoteRef: + key: secret/data/Talos Cluster/pelican/panel/db + property: DB_PASSWORD + - secretKey: DB_USER + remoteRef: + key: secret/data/Talos Cluster/pelican/panel/db + property: DB_USER -- 2.52.0 From 2445c058fc2727290ed06508480d68a5737b0112 Mon Sep 17 00:00:00 2001 From: gitea-admin Date: Mon, 18 May 2026 23:34:33 +0000 Subject: [PATCH 2/7] feat(pelican): deploy Pelican Panel with database and ingress --- deployments/pelican/externalsecret-app.yaml | 23 +++++++++++++++++++++ 1 file changed, 23 insertions(+) create mode 100644 deployments/pelican/externalsecret-app.yaml diff --git a/deployments/pelican/externalsecret-app.yaml b/deployments/pelican/externalsecret-app.yaml new file mode 100644 index 0000000..916dc91 --- /dev/null +++ b/deployments/pelican/externalsecret-app.yaml @@ -0,0 +1,23 @@ +apiVersion: external-secrets.io/v1beta1 +kind: ExternalSecret +metadata: + name: pelican-panel-app + namespace: pelican +spec: + refreshInterval: 1h + target: + name: pelican-panel-app + creationPolicy: Owner + data: + - secretKey: APP_KEY + remoteRef: + key: secret/data/Talos Cluster/pelican/panel/app + property: APP_KEY + - secretKey: SESSION_SECURE + remoteRef: + key: secret/data/Talos Cluster/pelican/panel/app + property: SESSION_SECURE + - secretKey: OAUTH_CLIENT_SECRET + remoteRef: + key: secret/data/Talos Cluster/pelican/panel/app + property: OAUTH_CLIENT_SECRET -- 2.52.0 From 325497178929da6eb24d395fbe987d30d2d39f2c Mon Sep 17 00:00:00 2001 From: gitea-admin Date: Mon, 18 May 2026 23:34:33 +0000 Subject: [PATCH 3/7] feat(pelican): deploy Pelican Panel with database and ingress --- deployments/pelican/externalsecret-autostart.yaml | 15 +++++++++++++++ 1 file changed, 15 insertions(+) create mode 100644 deployments/pelican/externalsecret-autostart.yaml diff --git a/deployments/pelican/externalsecret-autostart.yaml b/deployments/pelican/externalsecret-autostart.yaml new file mode 100644 index 0000000..76b0760 --- /dev/null +++ b/deployments/pelican/externalsecret-autostart.yaml @@ -0,0 +1,15 @@ +apiVersion: external-secrets.io/v1beta1 +kind: ExternalSecret +metadata: + name: pelican-autostart-key + namespace: pelican +spec: + refreshInterval: 1h + target: + name: pelican-autostart-key + creationPolicy: Owner + data: + - secretKey: api_key + remoteRef: + key: secret/data/Talos Cluster/pelican/panel/autostart + property: api_key -- 2.52.0 From c797588088dff68fe9ce005c703458b95ff55d0e Mon Sep 17 00:00:00 2001 From: gitea-admin Date: Mon, 18 May 2026 23:34:34 +0000 Subject: [PATCH 4/7] feat(pelican): deploy Pelican Panel with database and ingress --- deployments/pelican/storage.yaml | 25 +++++++++++++++++++++++++ 1 file changed, 25 insertions(+) create mode 100644 deployments/pelican/storage.yaml diff --git a/deployments/pelican/storage.yaml b/deployments/pelican/storage.yaml new file mode 100644 index 0000000..ee8daa8 --- /dev/null +++ b/deployments/pelican/storage.yaml @@ -0,0 +1,25 @@ +apiVersion: v1 +kind: PersistentVolumeClaim +metadata: + name: pelican-data + namespace: pelican +spec: + accessModes: + - ReadWriteOnce + resources: + requests: + storage: 20Gi + storageClassName: longhorn +--- +apiVersion: v1 +kind: PersistentVolumeClaim +metadata: + name: pelican-logs + namespace: pelican +spec: + accessModes: + - ReadWriteOnce + resources: + requests: + storage: 5Gi + storageClassName: longhorn -- 2.52.0 From 8e7c1a2ffdb5338ef0826263d5ece7a17340e9f8 Mon Sep 17 00:00:00 2001 From: gitea-admin Date: Mon, 18 May 2026 23:34:34 +0000 Subject: [PATCH 5/7] feat(pelican): deploy Pelican Panel with database and ingress --- deployments/pelican/deployment.yaml | 107 ++++++++++++++++++++++++++++ 1 file changed, 107 insertions(+) create mode 100644 deployments/pelican/deployment.yaml diff --git a/deployments/pelican/deployment.yaml b/deployments/pelican/deployment.yaml new file mode 100644 index 0000000..6a69277 --- /dev/null +++ b/deployments/pelican/deployment.yaml @@ -0,0 +1,107 @@ +apiVersion: apps/v1 +kind: Deployment +metadata: + name: pelican-panel + namespace: pelican + labels: + app.kubernetes.io/name: pelican + app.kubernetes.io/component: panel + app.kubernetes.io/managed-by: orion +spec: + replicas: 2 + strategy: + type: RollingUpdate + rollingUpdate: + maxSurge: 1 + maxUnavailable: 0 + selector: + matchLabels: + app.kubernetes.io/name: pelican + app.kubernetes.io/component: panel + template: + metadata: + labels: + app.kubernetes.io/name: pelican + app.kubernetes.io/component: panel + spec: + containers: + - name: panel + image: ghcr.io/pelican-dev/panel:latest + ports: + - name: http + containerPort: 8080 + protocol: TCP + env: + - name: APP_ENV + value: production + - name: APP_NAME + value: "Pelican" + - name: APP_URL + value: "https://pelican.khalisio.com" + - name: DB_HOST + value: postgres.pelican.svc.cluster.local + - name: DB_PORT + value: "5432" + - name: DB_DATABASE + value: pelican + - name: DB_USERNAME + valueFrom: + secretKeyRef: + name: pelican-panel-db + key: DB_USER + - name: DB_PASSWORD + valueFrom: + secretKeyRef: + name: pelican-panel-db + key: DB_PASSWORD + - name: APP_KEY + valueFrom: + secretKeyRef: + name: pelican-panel-app + key: APP_KEY + - name: SESSION_SECURE + valueFrom: + secretKeyRef: + name: pelican-panel-app + key: SESSION_SECURE + - name: OAUTH_CLIENT_SECRET + valueFrom: + secretKeyRef: + name: pelican-panel-app + key: OAUTH_CLIENT_SECRET + - name: OAUTH_CLIENT_ID + value: pelican-panel + - name: OAUTH_BASE_URI + value: "https://pelican.khalisio.com" + - name: OAUTH_AUTH_SERVER_URI + value: "https://auth.khalisio.com" + - name: OAUTH_CLIENT_PORTAL_URI + value: "https://auth.khalisio.com" + - name: OAUTH_CLIENT_ADMIN_URI + value: "https://auth.khalisio.com" + - name: CACHE_DRIVER + value: file + - name: SESSION_DRIVER + value: file + volumeMounts: + - name: data + mountPath: /var/www/app/storage + - name: logs + mountPath: /var/www/app/storage/logs + - name: uploads + mountPath: /var/www/app/public/uploads + - name: pufferpanel + mountPath: /var/www/app/storage/pufferpanel + volumes: + - name: data + persistentVolumeClaim: + claimName: pelican-data + - name: logs + persistentVolumeClaim: + claimName: pelican-logs + - name: uploads + persistentVolumeClaim: + claimName: pelican-data + - name: pufferpanel + persistentVolumeClaim: + claimName: pelican-data -- 2.52.0 From 613b584630f287b3d281c74c100630c9d07db405 Mon Sep 17 00:00:00 2001 From: gitea-admin Date: Mon, 18 May 2026 23:34:34 +0000 Subject: [PATCH 6/7] feat(pelican): deploy Pelican Panel with database and ingress --- deployments/pelican/service.yaml | 18 ++++++++++++++++++ 1 file changed, 18 insertions(+) create mode 100644 deployments/pelican/service.yaml diff --git a/deployments/pelican/service.yaml b/deployments/pelican/service.yaml new file mode 100644 index 0000000..6ca110e --- /dev/null +++ b/deployments/pelican/service.yaml @@ -0,0 +1,18 @@ +apiVersion: v1 +kind: Service +metadata: + name: pelican-panel + namespace: pelican + labels: + app.kubernetes.io/name: pelican + app.kubernetes.io/component: panel +spec: + type: ClusterIP + selector: + app.kubernetes.io/name: pelican + app.kubernetes.io/component: panel + ports: + - name: http + port: 80 + targetPort: 8080 + protocol: TCP -- 2.52.0 From c212339187c50674474900e0c7d246138ba8eded Mon Sep 17 00:00:00 2001 From: gitea-admin Date: Mon, 18 May 2026 23:34:35 +0000 Subject: [PATCH 7/7] feat(pelican): deploy Pelican Panel with database and ingress --- deployments/pelican/ingress.yaml | 19 +++++++++++++++++++ 1 file changed, 19 insertions(+) create mode 100644 deployments/pelican/ingress.yaml diff --git a/deployments/pelican/ingress.yaml b/deployments/pelican/ingress.yaml new file mode 100644 index 0000000..644cb7e --- /dev/null +++ b/deployments/pelican/ingress.yaml @@ -0,0 +1,19 @@ +apiVersion: traefik.containo.us/v1alpha1 +kind: IngressRoute +metadata: + name: pelican-panel + namespace: pelican + annotations: + cert-manager.io/cluster-issuer: letsencrypt-prod +spec: + entryPoints: + - websecure + tls: + secretName: pelican-panel-tls + routes: + - match: Host(`pelican.khalisio.com`) + kind: Rule + services: + - name: pelican-panel + port: 80 + scheme: http -- 2.52.0