A apps/cgit/Dockerfile

@@ -0,0 +1,13 @@
+# WIP!
+
+FROM alpine
+
+RUN apk add cgit nginx fcgiwrap groff gettext spawn-fcgi
+
+RUN addgroup -S git && adduser -S git -G git
+RUN ln -sf /dev/stdout /var/log/nginx/access.log && ln -sf /dev/stderr /var/log/nginx/error.log
+
+COPY nginx/default.conf /etc/nginx/sites-enabled/default
+
+EXPOSE 80
+

A apps/pleroma/Dockerfile

@@ -0,0 +1,31 @@
+FROM elixir:1.11.4-alpine
+
+ENV UID=911 GID=911 \
+    MIX_ENV=prod
+
+ARG PLEROMA_VER=develop
+
+RUN apk -U upgrade \
+    && apk add --no-cache \
+    build-base \
+    cmake \
+    git \
+    file-dev
+
+RUN addgroup -g ${GID} pleroma \
+    && adduser -h /pleroma -s /bin/sh -D -G pleroma -u ${UID} pleroma
+
+USER pleroma
+WORKDIR /pleroma
+
+RUN git clone -b develop https://git.pleroma.social/pleroma/pleroma.git /pleroma \
+    && git checkout ${PLEROMA_VER}
+
+COPY config/secret.exs /pleroma/config/prod.secret.exs
+
+RUN mix local.rebar --force \
+    && mix local.hex --force \
+    && mix deps.get \
+    && mix compile
+
+CMD ["mix", "phx.server"]

M kubelet/readme → kube-system/readme

@@ -1,5 +1,8 @@
-kubelet
--------
+kube-system
+-----------
+
+
+KUBELET
 
 Set KUBELET_EXTRA_ARGS=--node-ip=192.168.4.X --resolv-conf=/run/systemd/resolve/resolv.conf
                                              [ this part only on Ubuntu hosts]
@@ -9,3 +12,9 @@ sudo update-alternatives --set ip6tables /usr/sbin/ip6tables-legacy
     sudo update-alternatives --set iptables /usr/sbin/iptables-legacy
 
 to switch to iptables. Uses nftables otherwise, which isn't suported.
+
+
+KUBE-CONTROLLER-MANAGER / KUBE-SCHEDULER
+
+Set '--leader-elect=false' in their manifests at
+/etc/kubernetes/manifests.

M readme → readme

@@ -3,6 +3,7 @@ -----
 
 Infra manifests and setup notes. Runs on Kubernetes.
 
+
 HOSTS
 
 Machines are in a Wireguard mesh.
@@ -24,3 +25,4 @@ APPLICATIONS
 
 · radicale: CardDAV/CalDAV server (dav.icyphox.sh)
 · registry: Self-hosted container registry
+· yarr: RSS reader