2025-12-24 13:40:48 +00:00
10 changed files with 19 additions and 19 deletions
--- a/docs/VLAN-NODE-IP-MIGRATION.md
+++ b/docs/VLAN-NODE-IP-MIGRATION.md
@@ -149,7 +149,7 @@ Test VLAN migration on a worker node first:

 ```bash
 # Apply updated config to n3
-cd /Users/michaeldileo/src/keyboard-vagabond
+cd /Users/<USERNAME>/src/keyboard-vagabond
 talosctl -e <NODE_3_EXTERNAL_IP> -n <NODE_3_EXTERNAL_IP> apply-config \
  --file machineconfigs/n3-vlan.yaml

--- a/docs/theme-digest.md
+++ b/docs/theme-digest.md
@@ -27,7 +27,7 @@ Here are some other reference sites from bigger instances:
 * https://pixelfed.social (click About and Explore)
 * https://piefed.social
 * https://bookwyrm.social
-* My personal blog: https://blog.michaeldileo.org for Write Freely
+* My personal blog: https://blog.<DOMAIN> for Write Freely


 These sevices generally support custom mascot icons and background banners. Themeing and custom CSS has varying degrees of support, though I have full access to the server, so I could override the built in CSS, though that could likely be an endeavor, which I'm not user would be worth the effort. 
--- a/manifests/applications/piefed/flower-monitoring.yaml
+++ b/manifests/applications/piefed/flower-monitoring.yaml
@@ -31,13 +31,13 @@ spec:
        - containerPort: 5555
        env:
        - name: CELERY_BROKER_URL
-          value: "redis://:9EE33616C76D42A68442228B918F0A7D@redis-ha-haproxy.redis-system.svc.cluster.local:6379/0"
+          value: "redis://:<REDIS_PASSWORD>@redis-ha-haproxy.redis-system.svc.cluster.local:6379/0"
        - name: FLOWER_PORT
          value: "5555"
        - name: FLOWER_BASIC_AUTH
-          value: "admin:flower123"  # Change this password!
+          value: "admin:<CHANGE_THIS_PASSWORD>"  # Change this password!
        - name: FLOWER_BROKER_API
-          value: "redis://:9EE33616C76D42A68442228B918F0A7D@redis-ha-haproxy.redis-system.svc.cluster.local:6379/0,redis://:9EE33616C76D42A68442228B918F0A7D@redis-ha-haproxy.redis-system.svc.cluster.local:6379/3"
+          value: "redis://:<REDIS_PASSWORD>@redis-ha-haproxy.redis-system.svc.cluster.local:6379/0,redis://:<REDIS_PASSWORD>@redis-ha-haproxy.redis-system.svc.cluster.local:6379/3"
        resources:
          requests:
            cpu: 100m
--- a/manifests/cluster/flux-system/gotk-sync.yaml
+++ b/manifests/cluster/flux-system/gotk-sync.yaml
@@ -11,7 +11,7 @@ spec:
    branch: k8s-fleet
  secretRef:
    name: flux-system
-  url: https://source.michaeldileo.org/michael_dileo/keyboard-vagabond.git
+  url: https://<GITEA_INSTANCE>/<USERNAME>/keyboard-vagabond.git
 ---
 apiVersion: kustomize.toolkit.fluxcd.io/v1
 kind: Kustomization
--- a/manifests/infrastructure/celery-monitoring/flower-deployment.yaml
+++ b/manifests/infrastructure/celery-monitoring/flower-deployment.yaml
@@ -26,13 +26,13 @@ spec:
        - containerPort: 5555
        env:
        - name: CELERY_BROKER_URL
-          value: "redis://:9EE33616C76D42A68442228B918F0A7D@redis-ha-haproxy.redis-system.svc.cluster.local:6379/0"
+          value: "redis://:<REDIS_PASSWORD>@redis-ha-haproxy.redis-system.svc.cluster.local:6379/0"
        - name: FLOWER_PORT
          value: "5555"
        # FLOWER_BASIC_AUTH removed - authentication handled by NGINX Ingress
        # This allows Kubernetes health checks to work properly
        - name: FLOWER_BROKER_API
-          value: "redis://:9EE33616C76D42A68442228B918F0A7D@redis-ha-haproxy.redis-system.svc.cluster.local:6379/0,redis://:9EE33616C76D42A68442228B918F0A7D@redis-ha-haproxy.redis-system.svc.cluster.local:6379/3"
+          value: "redis://:<REDIS_PASSWORD>@redis-ha-haproxy.redis-system.svc.cluster.local:6379/0,redis://:<REDIS_PASSWORD>@redis-ha-haproxy.redis-system.svc.cluster.local:6379/3"
        resources:
          requests:
            cpu: 100m
--- a/manifests/infrastructure/longhorn/S3-API-OPTIMIZATION.md
+++ b/manifests/infrastructure/longhorn/S3-API-OPTIMIZATION.md
@@ -141,7 +141,7 @@ kubectl get networkpolicy -n longhorn-system longhorn-block-s3-access
 kubectl get cronjobs -n longhorn-system | grep longhorn-.*-s3-access

 # 3. Test: S3 access should be blocked
-kubectl exec -n longhorn-system deploy/longhorn-ui -- curl -I https://eu-central-003.backblazeb2.com
+kubectl exec -n longhorn-system deploy/longhorn-ui -- curl -I https://<B2_ENDPOINT>
 # Expected: Connection timeout or network error
 ```

--- a/manifests/infrastructure/longhorn/S3-API-SOLUTION-FINAL.md
+++ b/manifests/infrastructure/longhorn/S3-API-SOLUTION-FINAL.md
@@ -36,7 +36,7 @@ Longhorn's `backupstore-poll-interval` setting controls how frequently Longhorn
 ```yaml
 data:
  default-resource.yaml: |-
-    "backup-target": "s3://longhorn-keyboard-vagabond@eu-central-003.backblazeb2.com/longhorn-backup"
+    "backup-target": "s3://<BUCKET_NAME>@<B2_ENDPOINT>/longhorn-backup"
    "backup-target-credential-secret": "backblaze-credentials"
    "backupstore-poll-interval": "86400"  # 24 hours
    "virtual-hosted-style": "true"
@@ -164,7 +164,7 @@ kubectl get jobs -n longhorn-system | grep backup

 # Check backup target connectivity (should work anytime)
 MANAGER_POD=$(kubectl get pods -n longhorn-system -l app=longhorn-manager --no-headers | head -1 | awk '{print $1}')
-kubectl exec -n longhorn-system "$MANAGER_POD" -c longhorn-manager -- curl -I https://eu-central-003.backblazeb2.com
+kubectl exec -n longhorn-system "$MANAGER_POD" -c longhorn-manager -- curl -I https://<B2_ENDPOINT>
 ```

 ## References
--- a/manifests/infrastructure/redis/bitnami/secret.yaml
+++ b/manifests/infrastructure/redis/bitnami/secret.yaml
@@ -5,6 +5,6 @@ metadata:
    namespace: redis-system
 type: Opaque
 stringData:
-    REDIS_PASSWORD: 9EE33616C76D42A68442228B918F0A7D
-    redis-password: 9EE33616C76D42A68442228B918F0A7D
-    redis-replica-password: 9EE33616C76D42A68442228B918F0A7D
+    REDIS_PASSWORD: <REDACTED>
+    redis-password: <REDACTED>
+    redis-replica-password: <REDACTED>
--- a/manifests/infrastructure/redis/secret.yaml
+++ b/manifests/infrastructure/redis/secret.yaml
@@ -5,5 +5,5 @@ metadata:
    namespace: redis-system
 type: Opaque
 stringData:
-    redis-password: 9EE33616C76D42A68442228B918F0A7D
-    redis-replica-password: 9EE33616C76D42A68442228B918F0A7D
+    redis-password: <REDACTED>
+    redis-replica-password: <REDACTED>
--- a/manifests/infrastructure/renovate/renovate.yaml
+++ b/manifests/infrastructure/renovate/renovate.yaml
@@ -39,9 +39,9 @@ spec:
          "extends": ["config:recommended"],
          "labels": ["renovate", "dependencies"],
          "platform": "gitea",
-          "endpoint": "https://source.michaeldileo.org/",
-          "repositories": ["michael_dileo/keyboard-vagabond"],
-          "gitAuthor": "Renovate Bot <renovate@michaeldileo.org>",
+          "endpoint": "https://<GITEA_INSTANCE>/",
+          "repositories": ["<USERNAME>/keyboard-vagabond"],
+          "gitAuthor": "Renovate Bot <renovate@<DOMAIN>>",
          "kubernetes": {
            "fileMatch": ["^manifests/.+\\.yaml$"]
          },