chore: add pre-commit config

.gitignore

@@ -13,4 +13,4 @@ terraform.rc
 *.retry
 .idea/
 secrets.yaml
-.env
+.env

.pre-commit-config.yaml

@@ -0,0 +1,17 @@
+repos:
+  - repo: https://github.com/pre-commit/pre-commit-hooks
+    rev: v3.2.0
+    hooks:
+      - id: trailing-whitespace
+      - id: end-of-file-fixer
+      - id: check-added-large-files
+      - id: check-executables-have-shebangs
+      - id: check-json
+      - id: pretty-format-json
+      - id: check-merge-conflict
+      - id: check-symlinks
+      - id: check-yaml
+        args:
+          - --allow-multiple-documents
+      - id: detect-private-key
+      - id: trailing-whitespace

ansible/ansible.cfg

@@ -1,3 +1,3 @@
 [defaults]
 inventory = inventory
-host_key_checking = False
+host_key_checking = False

ansible/k3s/playbooks/base.yml

@@ -3,4 +3,4 @@
 
   roles:
     - role: ../roles/base
-      become: yes
+      become: yes

ansible/k3s/playbooks/k3s.yml

@@ -9,4 +9,4 @@
       vars:
         first_master_hostname: "{{ groups['k3s_masters'][0] }}"
         is_first_master: "{{ inventory_hostname in groups['k3s_masters'][0] }}"
-        short_hostname: "{{ inventory_hostname.split('.')[0] }}"
+        short_hostname: "{{ inventory_hostname.split('.')[0] }}"

ansible/k3s/roles/base/tasks/main.yml

@@ -3,7 +3,7 @@
   community.general.timezone:
     name: "{{ system_timezone }}"
   when: (system_timezone is defined) and (system_timezone != "Your/Timezone")
-  
+
 - name: Enable IPv4 forwarding
   ansible.posix.sysctl:
     name: net.ipv4.ip_forward
@@ -33,4 +33,4 @@
 - import_tasks: mounts.yml
   name: Mount NFS shares
   tags:
-    - nfs
+    - nfs

ansible/k3s/roles/base/tasks/packages.yml

@@ -14,4 +14,4 @@
 - name: Update all packages
   apt:
     upgrade: dist
-    update_cache: yes
+    update_cache: yes

ansible/k3s/roles/k3s/tasks/agent.yml

@@ -14,4 +14,4 @@
     mode: 600
 
 - name: Install k3s agent
-  shell: "bash /tmp/k3s.install.sh agent"
+  shell: "bash /tmp/k3s.install.sh agent"

ansible/k3s/roles/k3s/tasks/download.yml

@@ -4,4 +4,3 @@
   get_url:
     url: https://get.k3s.io
     dest: /tmp/k3s.install.sh
-

ansible/k3s/roles/k3s/tasks/master.yml

@@ -16,4 +16,4 @@
     etcd_snapshot_dir: "/nfs/nas1/backups/{{ short_hostname }}"
 
 - name: Install k3s master
-  command: bash /tmp/k3s.install.sh
+  command: bash /tmp/k3s.install.sh

ansible/k3s/roles/k3s/templates/agent.config.yaml.j2

@@ -1,2 +1,2 @@
 token: {{ cluster_token }}
-server: https://{{ tls_san }}:6443
+server: https://{{ tls_san }}:6443

ansible/k3s/roles/k3s/vars/main.yml

@@ -1,4 +1,4 @@
 ---
 k3s_version: "v1.27.4+k3s1"
 tls_san: "{{ lookup('env', 'ANSIBLE_TLS_SAN') | mandatory }}"
-cluster_token: "{{ lookup('env', 'ANSIBLE_CLUSTER_TOKEN') | mandatory }}"
+cluster_token: "{{ lookup('env', 'ANSIBLE_CLUSTER_TOKEN') | mandatory }}"

ansible/k3s/sample.env

@@ -1,2 +1,2 @@
 ANSIBLE_K3S_CLUSTER_TOKEN=
-ANSIBLE_K3S_TLS_SAN=
+ANSIBLE_K3S_TLS_SAN=

ansible/nextcloud/role-promtail.yml

@@ -23,4 +23,4 @@
                   __path__: /mnt/share/data/cloud/data/{nextcloud,audit}.log
         promtail_config_limits_config:
           readline_rate_enabled: true
-          readline_rate_drop: true
+          readline_rate_drop: true

ansible/nextcloud/sample.env

@@ -1 +1 @@
-NEXTCLOUD_PROMTAIL_PASSWORD=superdupersecure
+NEXTCLOUD_PROMTAIL_PASSWORD=superdupersecure

ansible/requirements.yml

@@ -1,2 +1,2 @@
 - name: patrickjahns.promtail
-  version: 1.26.0
+  version: 1.26.0

k8s/argo-apps/loki.yaml

@@ -64,4 +64,4 @@ spec:
             persistence:
               enabled: true
               storageClass: default
-              size: 25Gi
+              size: 25Gi

k8s/argo-apps/miniflux.yaml

@@ -15,4 +15,4 @@ spec:
   sources: []
   project: roboces
   syncPolicy:
-    automated: {}
+    automated: {}

k8s/services/argo/project-fuku.yaml

@@ -18,4 +18,4 @@ spec:
     - https://git.roboces.dev/catalin/fukuops.git
     - https://charts.goauthentik.io/
     - https://kubereboot.github.io/charts
-    - https://sqljames.github.io/factorio-server-charts/
+    - https://sqljames.github.io/factorio-server-charts/

k8s/services/authentik/pvc.yaml

@@ -9,4 +9,4 @@ spec:
   storageClassName: "truenas-nfs-csi"
   resources:
     requests:
-      storage: 3Gi
+      storage: 3Gi

k8s/services/authentik/sealedsecrets.yaml

@@ -17,4 +17,3 @@ spec:
       name: secrets-authentik
       namespace: apps-fuku
     type: Opaque
-

k8s/services/dcsi/sealedsecrets.yaml

@@ -13,4 +13,3 @@ spec:
       name: secrets-dcsi
       namespace: democratic-csi
     type: Opaque
-

k8s/services/factorio/sealedsecrets.yaml

@@ -15,4 +15,3 @@ spec:
       name: secrets-factorio
       namespace: apps-fuku
     type: Opaque
-

k8s/services/loki/traefik-auth-middleware.yaml

@@ -5,4 +5,4 @@ metadata:
   namespace: monitoring
 spec:
   basicAuth:
-    secret: loki-auth-secret
+    secret: loki-auth-secret

k8s/services/miniflux/sealedsecrets.yaml

@@ -16,4 +16,3 @@ spec:
       creationTimestamp: null
       name: miniflux
       namespace: apps-roboces
-

tofu/modules/proxmox-vm/variables.tf

@@ -63,4 +63,4 @@ variable "disk_storage_name" {
   description = "Disk storage name"
   type        = string
   default     = "storage"
-}
+}

tofu/modules/truenas-vm/main.tf

@@ -5,4 +5,4 @@ terraform {
       version = "0.11.1"
     }
   }
-}
+}

tofu/proxmox/sample.env

@@ -1,4 +1,4 @@
 PM_USER=
 PM_PASS=
 PM_API_URL=
-TF_VAR_ci_password=
+TF_VAR_ci_password=