home/kubernetes-deployments
2
0
Fork 0
Code Issues 3 Pull requests Projects Releases Packages Wiki Activity Actions

Add Mealie service

Browse source
This commit is contained in:
Pim Kunis 2025-02-16 10:45:40 +01:00
parent 268559dbce
commit 028d7e781d
11 changed files with 206 additions and 5 deletions
Download patch file Download diff file Expand all files Collapse all files

2
modules/bootstrap-default.nix
View file

@ -63,6 +63,7 @@
tailscale = {};
ntfy = {};
authentik = {};
mealie = {};
};
nodes =
@ -134,6 +135,7 @@
keepassxc.storage = "100Mi";
authentik-db.storage = "10Gi";
authentik-redis.storage = "5Gi";
mealie.storage = "3Gi";
};
tailscaleIngresses.tailscale-longhorn = {

1
modules/default.nix
View file

@ -30,5 +30,6 @@
./ntfy.nix
./minecraft.nix
./authentik.nix
./mealie.nix
];
}

76
modules/mealie.nix Normal file
View file

@ -0,0 +1,76 @@
{
lib,
config,
utils,
...
}: {
options.mealie.enable = lib.mkEnableOption "mealie";
config = lib.mkIf config.mealie.enable {
kubernetes.resources = {
deployments.mealie.spec = {
selector.matchLabels.app = "mealie";
strategy = {
type = "RollingUpdate";
rollingUpdate = {
maxSurge = 0;
maxUnavailable = 1;
};
};
template = {
metadata.labels.app = "mealie";
spec = {
containers.mealie = {
image = utils.mkNixNGImage "mealie";
ports.web.containerPort = 8000;
env = {
SMTP_USER.value = "ref+sops://secrets.yml#/smtp2go/username";
SMTP_PASSWORD.value = "ref+sops://secrets.yml#/smtp2go/password";
OIDC_CLIENT_SECRET.value = "ref+sops://secrets.yml#/authentik/oauth2/mealie/client_secret";
};
volumeMounts = [
{
name = "mealie";
mountPath = "/data";
}
];
};
volumes.mealie.persistentVolumeClaim.claimName = "mealie";
};
};
};
services.mealie.spec = {
selector.app = "mealie";
ports.web = {
port = 80;
targetPort = "web";
};
};
};
lab = {
ingresses.mealie = {
host = "mealie.kun.is";
service = {
name = "mealie";
portName = "web";
};
};
longhorn.persistentVolumeClaim.mealie = {
volumeName = "mealie";
storage = "3Gi";
};
};
};
}