From 8c2c14f8102edff7a64acbffd5f99a5c878b362b Mon Sep 17 00:00:00 2001 From: Nick Adam Date: Mon, 19 Jan 2026 12:32:18 +0100 Subject: [PATCH] fix: pvc for authentik pgsql --- apps/authentik-app.yaml | 27 +++++++++++++++++++++++++++ apps/authentik/deployment.yaml | 1 + 2 files changed, 28 insertions(+) diff --git a/apps/authentik-app.yaml b/apps/authentik-app.yaml index bf5c952..a65299c 100644 --- a/apps/authentik-app.yaml +++ b/apps/authentik-app.yaml @@ -20,3 +20,30 @@ spec: selfHeal: true syncOptions: - CreateNamespace=true + ignoreDifferences: + # Ignoriere automatisch erstellte PVCs von StatefulSets (volumeClaimTemplates) + # Diese werden automatisch vom StatefulSet erstellt und müssen nicht im Git sein + - group: "" + kind: PersistentVolumeClaim + name: "postgres-data-authentik-postgresql-*" + jqPathExpressions: + - .metadata.annotations."pv.kubernetes.io/bind-completed" + - .metadata.annotations."pv.kubernetes.io/bound-by-controller" + - .metadata.annotations."volume.beta.kubernetes.io/storage-provisioner" + - .metadata.annotations."volume.kubernetes.io/storage-provisioner" + - .metadata.uid + - .metadata.resourceVersion + - .status + - .spec.storageClassName + - group: "" + kind: PersistentVolumeClaim + name: "redis-data-authentik-redis-*" + jqPathExpressions: + - .metadata.annotations."pv.kubernetes.io/bind-completed" + - .metadata.annotations."pv.kubernetes.io/bound-by-controller" + - .metadata.annotations."volume.beta.kubernetes.io/storage-provisioner" + - .metadata.annotations."volume.kubernetes.io/storage-provisioner" + - .metadata.uid + - .metadata.resourceVersion + - .status + - .spec.storageClassName diff --git a/apps/authentik/deployment.yaml b/apps/authentik/deployment.yaml index 50d25a5..1b53cfd 100644 --- a/apps/authentik/deployment.yaml +++ b/apps/authentik/deployment.yaml @@ -26,6 +26,7 @@ metadata: spec: accessModes: - ReadWriteOnce + storageClassName: longhorn resources: requests: storage: 1Gi