2024.4.0

What's Changed

• Add optional user tasks to Taskfile.yaml by @wasurerarenai in #1354
• Add the option for assigning a specific SSH key to a node. by @aegiru in #1356
• feat!(kube-vip): Enable flux taking over kube-vip post-deployment. by @smbonn2005 in #1357
• Add talosconfig to .gitignore by @joryirving in #1366
• Update echo-server app-template ingress' v3 service identifier by @wasurerarenai in #1374
• feat(talos): change from net.ifnames to a macaddr deviceSelector by @onedr0p in #1376
• Add kernel modules required by cilium by @prehor in #1377
• fix: Update deprecated allowSchedulingOnMasters field to allowSchedulingOnControlPlanes by @jfroy in #1380
• feat: Make the cluster name configurable by @jfroy in #1379
• Fix cilium to use k3s paths for binPath and confPath by @prehor in #1381
• Fix (renovate): Invalid escape character in string. by @remkolems in #1384
• feat: Support remotely-managed cloudflare tunnels by @jfroy in #1378
• Revert "Fix cilium to use k3s paths for binPath and confPath" by @onedr0p in #1388
• fix(metrics-server): Remove --kubelet-insecure-tls by @jfroy in #1389
• Disable node.ssh_user check by @wasurerarenai in #1395

New Contributors

• @aegiru made their first contribution in #1356
• @jfroy made their first contribution in #1380

Full Changelog: 2024.3.0...2024.4.0

2024.3.0

What's Changed

• feat: Talos network vlan tagging by @wasurerarenai in #1282
• Update extensions.json: added Todo Tree by @remkolems in #1283
• fix(cloudflare): Update ingress-nginx-external-controller service name by @wasurerarenai in #1285
• feat: upgrade k3s to 1.29.1 and enable the spegel embedded registry by @onedr0p in #1284
• feat: distribution is a dict and nodes and cluster are top level by @onedr0p in #1288
• fix(talos): Mount openebs-hostpath in kubelet by @wasurerarenai in #1289
• feat(k0s): unsupport it by @onedr0p in #1291
• feat(talos): Add cilium bgpControlPlane support and CNI security settings by @wasurerarenai in #1296
• Add note about device selection in Cilium Helm Release by @prehor in #1297
• Fix Talos SUC ServiceAccount by @wouterbouvy in #1298
• fix(bootstrap): patch flux resource names to match oci manifests by @surskitt in #1299
• Talos: remove deprecated System Extentions and move to schematicID by @wouterbouvy in #1309
• Adding kernel argument to disable predictable NIC naming. Fixes VIP by @wouterbouvy in #1310
• fix(cilium): Correct L2 kustomization exclusion logic by @wasurerarenai in #1314
• feat(talos): Add secureboot & tpm-based disk encryption support by @wasurerarenai in #1315
• feat(talos): Add option to specify other gateway by @wouterbouvy in #1316
• Talos: One-liner deployment code by @wouterbouvy in #1317
• Allow users to optionally override templates by @wasurerarenai in #1319
• feat(talos): Allow users to include talhelper patches by @wasurerarenai in #1320
• refactor!: project updates by @onedr0p in #1326
• Update config.sample.yaml by @wasurerarenai in #1331
• fix(cilium): disable BPF masquerade by @JJGadgets in #1334
• fix(talos): Update envvar for talosconfig by @krobertson in #1336
• fix(talos): remove system-upgrade-controller by @onedr0p in #1337
• Fix cluster-kube-vip playbook by @prehor in #1338
• fix: Allow users to optionally override templates by @wasurerarenai in #1340
• fix: identation fix by @willianpaixao in #1353

New Contributors

• @remkolems made their first contribution in #1283
• @surskitt made their first contribution in #1299
• @JJGadgets made their first contribution in #1334
• @krobertson made their first contribution in #1336

Full Changelog: 2024.2.0...2024.3.0

2024.2.0

What's Changed

• feat: removal of all addons by @onedr0p in #1247
• fix: address talos comments by @onedr0p in #1253
• fix: remove local hostpath and cilium lb vars and update k0s by @onedr0p in #1261
• feat: update network and cert-manager ns by @onedr0p in #1263
• fix: update taskfiles and validation logic by @onedr0p in #1264
• fixes: lychee pipeline workflow by @axeII in #1266
• feat: refactor config file by @onedr0p in #1267
• feat: update jinja delimiters back to default by @onedr0p in #1269
• feat: rename repo to cluster-template by @onedr0p in #1270
• feat: add first class support for private github repos by @onedr0p in #1271
• feat: Support talhelper NodeConfig additions by @wasurerarenai in #1273
• fix: talos customization multiline string and ansible raw/endraw by @onedr0p in #1275
• feat: update system-upgrade namespace and include support for k0s by @onedr0p in #1278
• feat: enabled monitors everywhere and standardize resources a bit by @onedr0p in #1281

New Contributors

• @wasurerarenai made their first contribution in #1273

Full Changelog: 2024.1.1...2024.2.0

2024.1.1

Important

All addons are being removed after this release, see this PR for more details.

What's Changed

• feat!: refactor namespaces and add descheduler by @onedr0p in #1110
• Change back to output file by @LilDrunkenSmurf in #1113
• add k0s support by @brunnels in #1123
• Replace Hajimari with Homepage by @LilDrunkenSmurf in #1127
• fix: Bump Homepage Memory Req & Limit by @smbonn2005 in #1140
• feat: attempt to add a e2e workflow by @onedr0p in #1143
• fix: Updates to taskfiles and e2e workflow by @onedr0p in #1144
• fix: update cluster-rollout-update to be k0s compatible by @onedr0p in #1149
• feat: update e2e test to account for testing ipv6 by @onedr0p in #1150
• fix: only remove duplicate metrics in kps if distro is k3s by @onedr0p in #1151
• I found minor spelling errors by @haraldkoch in #1153
• chore: add ci tests for k0s by @onedr0p in #1152
• feat: set lstrip on ansible template task and remove comments by @onedr0p in #1155
• feat: replace ansible templating with makejinja by @onedr0p in #1156
• feat: remove the need for raw jinja blocks by @onedr0p in #1158
• feat: add kubeconform workflow and make kubeconform/kustomize required by @onedr0p in #1159
• fix: update Ansible taskfile by @onedr0p in #1160
• fix: update makeninja - rename Archfile - check for k0sctl by @onedr0p in #1161
• feat: change jinja block/start delimiters for renovate support by @onedr0p in #1163
• fix: bump makejinja and add force flag to Taskfile by @onedr0p in #1166
• feat: change jinja variable start/end delimiters to avoid conflicts with go templating by @onedr0p in #1168
• fix: kube-vip was not rendering when enabled by @onedr0p in #1169
• fix: add tls sans options for k3s too by @onedr0p in #1170
• feat: add ansible lint, update taskfiles, and makejinja to not strip trailing newlines by @onedr0p in #1172
• feat: add python version check by @onedr0p in #1176
• feat: add spegel support for k0s by @onedr0p in #1178
• feat: enable etcd monitoring for k0s by @onedr0p in #1179
• feat: add partial support, change k0s config filename, always use NLLB for k0s by @onedr0p in #1180
• feat: k0s add reset hooks for cleaning up cilium by @onedr0p in #1183
• fix: ansible dir should only exist for k3s and k0s by @onedr0p in #1191
• don't copy files to controller only role by @brunnels in #1193
• feat: add talos support by @onedr0p in #1192
• fix: keep included k3s coredns by @onedr0p in #1197
• feat: add custom dns server support by @onedr0p in #1199
• fix: use requires in taskfiles when needed by @onedr0p in #1201
• fix: add talos docs to root readme by @onedr0p in #1203
• feat: k0s remove isolated controllers support and ansible prepare playbook by @onedr0p in #1205
• feat: added longhorn addon by @brunnels in #1204
• feat: add advanced features to config by @onedr0p in #1208
• fix: resolved several issues with flux tasks by @brunnels in #1209
• feat: added csi_driver_smb addon by @brunnels in #1213
• feat: add pre-defined secrets to csi-driver-smb addon by @brunnels in #1215
• feat: migrate to python for data validation by @onedr0p in #1214
• feat: rename addon vars to addon_ prefix and simplify logic in jinja templates by @onedr0p in #1216
• Fix devcontainers environment with latest changes by @giannoug in #1212
• feat: move various config options to advanced flags by @onedr0p in #1217
• feat: more changes to templating by @onedr0p in #1218
• fix: few small tweaks to validation by @brunnels in #1219
• fix: updated csi-drivers for k0s and simplified smb by @brunnels in #1220
• feat: update makejinja to 2.5.0 by @onedr0p in #1221
• feat: add spegel to core components by @onedr0p in #1225
• feat: Do not rely on k0s file uploads - instead use curl by @onedr0p in #1229
• feat: implement kube-vip for k0s & k3s in daemonset mode by @onedr0p in #1230
• feat: update kube-vip ansible playbook for k0s and k3s - ipv6 config changes by @onedr0p in #1234
• chore: improvements to e2e workflow by @onedr0p in #1235
• feat: add devcontainer container on ghcr by @onedr0p in #1240
• feat: switch devcontainer to alpine 🚀 by @onedr0p in #1241
• feat: more improvements to devcontainer and arm64 by @onedr0p in #1242
• Update addons.sample.yaml with correct namespace for kubernetes-dashboard by @granth7 in #1243
• feat: implement mjfilter file for templates by @onedr0p in #1244
• fix: cluster user settings and secrets should be optional by @onedr0p in #1245
• feat: implement SUC for talos by @onedr0p in #1246

New Contributors

• @brunnels made their first contribution in #1123
• @smbonn2005 made their first contribution in #1140
• @haraldkoch made their first contribution in #1153
• @granth7 made their first contribution in #1243

Full Changelog: 2024.1.0...2024.1.1

2024.1.0

What's Changed

• [bootstrap] fix: remove conflicting condition for immutable flag and state:absent by @sp3nx0r in #1064
• [bootstrap] feat: target cluster ansible plays only to kubernetes in case other hosts are used by @sp3nx0r in #1065
• [bootstrap] fix: fixed required variable validation assertion by @gregmulvaney in #1074
• [readme] specify an actual internal ingress for conditional DNS forwarding test by @sp3nx0r in #1075
• Revert "[bootstrap] fix: fixed required variable validation assertion" by @gregmulvaney in #1076
• [bootstrap] fix: Fixed required variable validation assertions by @gregmulvaney in #1077
• Set dev container Python version to 3.10.13 by @giannoug in #1104
• Fix SOPS_AGE_KEY_FILE env variable in dev container by @giannoug in #1105
• Add direnv to dev container definition by @giannoug in #1107
• Install jq in task brew:deps by @prehor in #1108

New Contributors

• @sp3nx0r made their first contribution in #1064
• @gregmulvaney made their first contribution in #1074
• @giannoug made their first contribution in #1104
• @prehor made their first contribution in #1108

Full Changelog: 2023.12.0...2024.1.0

2023.12.0

What's Changed

• Fix echo-server template ingress className by @goochs in #1009
• chore(deps): update ansible-lint to 6.22.0 by @renovate in #1013
• fix(container): update image weave-gitops to v4.0.34 by @renovate in #1010
• fix(helm): update chart reloader to 1.0.51 by @renovate in #1011
• chore(deps): update ansible to 8.6.1 - autoclosed by @renovate in #1012
• feat(container): update image app-template to v2.2.0 by @renovate in #1014
• feat(helm): update chart csi-driver-nfs to v4.5.0 by @renovate in #1015
• feat(container)!: Update image kube-prometheus-stack to v54 by @renovate in #1016
• feat(container): update image kube-prometheus-stack to v54.1.0 by @renovate in #1023
• feat(ansible)!: Update community.general to 8.0.2 - autoclosed by @renovate in #1024
• fix(helm): update chart reloader to 1.0.52 by @renovate in #1021
• fix(helm): update chart grafana to 7.0.6 by @renovate in #1020
• fix(helm): update chart cilium to 1.14.4 by @renovate in #1019
• fix(ansible): update community.sops to 1.6.7 by @renovate in #1018
• fix(github-release): update local-path-provisioner to v0.0.25 by @renovate in #1027
• fix(helm): update chart grafana to 7.0.8 - autoclosed by @renovate in #1028
• feat(container): update image app-template to v2.3.0 by @renovate in #1029
• feat(container): update image kube-prometheus-stack to v54.2.0 by @renovate in #1030
• chore(deps): update ansible to 9.0.1 by @renovate in #1031
• feat(ansible)!: Update kubernetes.core to 3.0.0 by @renovate in #1032
• Update cluster-rollout-update.yaml.j2 by @PrymalInstynct in #1035
• feat!: Update Flux ks names and add volsync and snapshot-controller by @onedr0p in #1036
• fix(github-release): update k3s-io/k3s to v1.28.3+k3s2 by @renovate in #1040
• fix(container): update image weave-gitops to v4.0.35 by @renovate in #1039
• fix(container): update image kube-prometheus-stack to v54.2.2 by @renovate in #1038
• Fixed: topology for ingress-nginx instances due to labels not matching by @erenfro in #1041
• System Upgrade Controller install failed due to missing /etc/pki dir by @PrymalInstynct in #1043
• Add first attempt at devcontainer by @moenzuel in #1025

New Contributors

• @goochs made their first contribution in #1009
• @erenfro made their first contribution in #1041
• @moenzuel made their first contribution in #1025

Full Changelog: 2023.11.0...2023.12.0

2023.11.0

What's Changed

• fix(helm): update chart reloader to 1.0.42 by @renovate in #966
• fix(helm): update chart grafana to 6.60.2 by @renovate in #965
• fix(helm): update chart coredns to 1.27.1 by @renovate in #964
• fix(container): update image ghcr.io/kube-vip/kube-vip to v0.6.3 by @renovate in #963
• feat(container): update image kube-prometheus-stack to v51.3.0 by @renovate in #968
• fix(helm): update chart grafana to 6.60.4 by @renovate in #972
• feat(container): update image kube-prometheus-stack to v51.4.0 by @renovate in #973
• fix(container): update image weave-gitops to v4.0.32 by @renovate in #975
• fix(helm): update chart reloader to 1.0.43 by @renovate in #977
• feat(container): update image kube-prometheus-stack to v51.6.1 by @renovate in #979
• chore(deps): update ansible to 8.5.0 - autoclosed by @renovate in #978
• fix(github-release): update flux group to v2.1.2 (patch) by @renovate in #976
• feat(container): update image kube-prometheus-stack to v51.7.0 by @renovate in #982
• feat(container): update image kube-prometheus-stack to v51.8.1 by @renovate in #983
• fix(helm): update chart grafana to 6.60.6 by @renovate in #981
• feat(helm): update chart grafana to 6.61.1 by @renovate in #988
• feat(container): update image kube-prometheus-stack to v51.10.0 by @renovate in #987
• fix(helm): update chart reloader to 1.0.46 by @renovate in #985
• fix(helm): update chart cilium to 1.14.3 by @renovate in #984
• chore(deps): update ansible-lint to 6.21.1 by @renovate in #986
• fix: #990 don't disable apparmor unless it's installed by @b- in #991
• fix(container): update image weave-gitops to v4.0.33 by @renovate in #992
• fix(helm): update chart reloader to 1.0.48 by @renovate in #993
• feat(container)!: Update image kube-prometheus-stack to v52 by @renovate in #994
• feat(container): update image kube-prometheus-stack to v52.1.0 by @renovate in #995
• fix(helm): update chart reloader to 1.0.50 by @renovate in #997
• feat(helm)!: Update chart grafana to 7.0.1 by @renovate in #998
• fix(helm): update chart cert-manager to v1.13.2 by @renovate in #999
• fix(container): update image docker.io/jmalloc/echo-server to v0.3.6 by @renovate in #1000
• feat(container): update image docker.io/cloudflare/cloudflared to v2023.10.0 by @renovate in #1004
• feat(helm): update chart coredns to 1.28.1 - autoclosed by @renovate in #1005
• fix(github-release): update k3s-io/k3s to v1.28.3+k3s1 by @renovate in #1002
• fix(helm): update chart grafana to 7.0.3 by @renovate in #1008

New Contributors

• @b- made their first contribution in #991

Full Changelog: 2023.10.0...2023.11.0

2023.10.0

What's Changed

• fix(helm): update chart coredns to 1.24.4 by @renovate in #897
• fix(helm): update chart reloader to 1.0.36 by @renovate in #900
• fix(helm): update chart grafana to 6.58.8 - autoclosed by @renovate in #899
• fix(helm): update chart coredns to 1.24.5 by @renovate in #898
• fix(container): update image ghcr.io/kube-vip/kube-vip to v0.6.1 by @renovate in #901
• feat(helm): update chart coredns to 1.26.0 by @renovate in #907
• fix(helm): update chart grafana to 6.58.9 by @renovate in #904
• feat(ansible): update community.general to 7.3.0 by @renovate in #906
• chore(deps): update ansible to 8.3.0 by @renovate in #905
• fix(container): update image weave-gitops to v4.0.28 by @renovate in #902
• Rename internal/external nginx to ingress by @mrueg in #910
• fix: kubernetes-dashboard version 7.x.x was yanked from the helm repo by @arthurgeek in #911
• feat(ansible): add branch reference as variable in gitrepository by @oscaromeu in #919
• fix(helm): update chart reloader to 1.0.39 by @renovate in #915
• feat(container): update image docker.io/cloudflare/cloudflared to v2023.8.1 - autoclosed by @renovate in #917
• feat(helm): update chart grafana to 6.59.0 by @renovate in #914
• chore(deps): update ansible-lint to 6.18.0 by @renovate in #916
• fix(ansible): update community.sops to 1.6.5 by @renovate in #912
• feat(github-release): update flux group to v2.1.0 (minor) by @renovate in #918
• fix(container): update image ghcr.io/kube-vip/kube-vip to v0.6.2 by @renovate in #913
• fix(helm): update chart cilium to 1.14.1 by @renovate in #903
• fix(helm): update chart cert-manager to v1.12.4 by @renovate in #924
• fix(github-release): update rancher/system-upgrade-controller to v0.13.1 by @renovate in #923
• fix(container): update image weave-gitops to v4.0.29 by @renovate in #922
• fix(container): update image docker.io/cloudflare/cloudflared to v2023.8.2 by @renovate in #921
• feat(github-action)!: Update actions/checkout action to v4.0.0 by @renovate in #932
• fix(helm): update chart external-dns to 1.13.1 by @renovate in #926
• chore(deps): update ansible-lint to 6.19.0 by @renovate in #929
• fix(helm): update chart grafana to 6.59.4 by @renovate in #927
• fix(helm): update chart reloader to 1.0.40 by @renovate in #928
• feat(ansible): update ansible.utils to 2.11.0 by @renovate in #930
• feat(helm): update chart cert-manager to v1.13.0 by @renovate in #937
• feat(ansible): update community.general to 7.4.0 by @renovate in #936
• chore(deps): update ansible to 8.4.0 by @renovate in #935
• Allow the usage of external address by @samip5 in #938
• fix(helm): update chart cilium to 1.14.2 by @renovate in #934
• fix(ansible/ipv6): Cluster and Service CIDRs didin't get populated for v6 by @samip5 in #939
• fix(ansible/net-valid): The external address fact. by @samip5 in #941
• Adding permission to read repo on flux-diff workflow (mandatory for private repos) by @janpfischer in #946
• fix(ansible): update community.sops to 1.6.6 by @renovate in #942
• fix(container): update image weave-gitops to v4.0.30 - autoclosed by @renovate in #943
• chore(deps): update ansible-lint to 6.20.0 by @renovate in #949
• chore(deps): update netaddr to 0.9.0 by @renovate in #950
• fix(helm): update chart reloader to 1.0.41 by @renovate in #948
• fix(github-release): update flux group to v2.1.1 (patch) by @renovate in #947
• feat(github-release): update k3s-io/k3s to v1.28.2+k3s1 by @renovate in #951
• fix(helm): update chart grafana to 6.59.5 by @renovate in #952
• chore(deps): update ansible-lint to 6.20.3 by @renovate in #955
• fix(helm): update chart cert-manager to v1.13.1 by @renovate in #957
• fix(container): update image weave-gitops to v4.0.31 by @renovate in #956
• feat(helm): update chart grafana to 6.60.1 by @renovate in #953
• feat(helm): update chart coredns to 1.27.0 by @renovate in #958

New Contributors

• @oscaromeu made their first contribution in #919
• @janpfischer made their first contribution in #946

Full Changelog: 2023.8.0...2023.10.0

2023.8.0

What's Changed

• Update README.md @osnabrugge (#896)
• update renovate section of README @alex-matthews (#894)
• bring setup steps under one L2 heading @alex-matthews (#893)
• add system requirements @alex-matthews (#892)
• fix(helm): update chart grafana to 6.58.7 @renovate (#889)
• fix(container): update image weave-gitops to v4.0.27 - autoclosed @renovate (#886)
• fix(ansible): update community.general to 7.2.1 @renovate (#885)
• fix(helm): update chart cert-manager to v1.12.3 @renovate (#875)
• fix(container): update image docker.io/cloudflare/cloudflared to v2023.7.3 @renovate (#874)
• fix(helm): update chart reloader to 1.0.33 @renovate (#873)
• fix(helm): update chart grafana to 6.58.6 @renovate (#872)
• fix(container): update image docker.io/cloudflare/cloudflared to v2023.7.2 - autoclosed @renovate (#871)
• chore(deps): update openshift to 0.13.2 @renovate (#870)
• Feat: add package and additional comments required @LilDrunkenSmurf (#869)
• feat: add support for cluster user secrets and settings @aumer-amr (#858)
• feat(github-release): update rancher/system-upgrade-controller to v0.13.0 @renovate (#868)
• fix(container): update image weave-gitops to v4.0.26 @renovate (#865)
• fix(helm): update chart kubernetes-dashboard to 7.0.3 @renovate (#866)
• fix(helm): update chart reloader to 1.0.32 @renovate (#867)
• fix(helm): update chart reloader to 1.0.31 @renovate (#864)
• Update patching playbook to utilize kubernetes.core collection @PrymalInstynct (#859)
• feat(helm): update chart grafana to 6.58.4 @renovate (#862)
• feat(ansible): update community.general to 7.2.0 - autoclosed @renovate (#861)
• fix(container): update image weave-gitops to v4.0.25 @renovate (#860)
• fix(kubernetes-templating): IPv6 support for Flux managed Cilium and … @samip5 (#857)
• IPv6 support 🚀 @samip5 (#855)
• fix(container): update image docker.io/cloudflare/cloudflared to v2023.7.1 @renovate (#853)
• fix(helm): update chart reloader to 1.0.30 @renovate (#854)
• chore: readme refactoring @onedr0p (#850)

Kubernetes

• fix(helm): update chart reloader to 1.0.35 @renovate (#895)
• feat: addon rss forwarder @aumer-amr (#876)
• feat(helm): update chart metrics-server to 3.11.0 @renovate (#891)
• fix(helm): update chart coredns to 1.24.3 @renovate (#888)
• fix(helm): update chart reloader to 1.0.34 @renovate (#890)
• fix(cloudflared): fixed origin server name @aumer-amr (#884)
• update ingress classNames in HelmReleases @alex-matthews (#883)
• feat!: Separate out internal and external nginx controllers @onedr0p (#880)
• fix(helm): update chart cilium to 1.14.0 @renovate (#879)
• fix(helm): update chart coredns to 1.24.2 @renovate (#878)

Github

• fix: change labeler to match new directory structure @aumer-amr (#877)
• refactor: install ansible with Python venv @onedr0p (#863)

Ansible

• fix(github-release): update k3s-io/k3s to v1.27.4+k3s1 @renovate (#887)
• fix(helm): update chart coredns to 1.24.3 @renovate (#888)
• fix(helm): update chart cilium to 1.14.0 @renovate (#879)
• fix(helm): update chart coredns to 1.24.2 @renovate (#878)

Full Changelog: 2023.7.0...v2023.8.0

2023.7.0

Since this is big overhaul I'd like to switched to calver release tags, lots of exciting changes but I'll list the most important.

• Marching forward with Debian 12, Ubuntu still works but with limited support.
• Cilium CNI replaces Calico
• Metallb dropped in favor of Cilium L2
• Configure bash script rewriten in Ansible
• Support for addons, current addons are hajimari, kubernetes-dashboard, csi-driver-nfs, weave-gitops, kube-prometheus-stack, and grafana. All addons are disabled by default.
• The ansible and kubernetes directories are completely templated out during task configure. This change makes it easier to expose more options in the configuration files and paved the way for supporting addons.

Thank you to everyone who helped support me and test changes thru out this refactoring. 🥰