Fix state

2022-05-08 20:27:01 +02:00 · 2022-05-08 20:27:01 +02:00 · e92c44f7f1
commit e92c44f7f1
parent 062d39324e
6 changed files with 1596 additions and 77 deletions
--- a/main.tf
+++ b/main.tf
@ -61,7 +61,7 @@ module "kube-hetzner" {
      taints = [
        "server-usage=storage:NoSchedule"
      ],
-      count = 1
+      count = 2
    }
  ]
@ -76,24 +76,24 @@ module "kube-hetzner" {
  # Adding extra firewall rules, like opening a port
  # More info on the format here https://registry.terraform.io/providers/hetznercloud/hcloud/latest/docs/resources/firewall
-  # extra_firewall_rules = [
+  extra_firewall_rules = [
-  #   # For Postgres
+    #   # For Postgres
-  #   {
+    #   {
-  #     direction       = "in"
+    #     direction       = "in"
-  #     protocol        = "tcp"
+    #     protocol        = "tcp"
-  #     port            = "5432"
+    #     port            = "5432"
-  #     source_ips      = ["0.0.0.0/0", "::/0"]
+    #     source_ips      = ["0.0.0.0/0", "::/0"]
-  #     destination_ips = [] # Won't be used for this rule 
+    #     destination_ips = [] # Won't be used for this rule 
-  #   },
+    #   },
-  #   # To Allow ArgoCD access to resources via SSH
+    #   # To Allow ArgoCD access to resources via SSH
-  #   {
+    {
-  #     direction       = "out"
+      direction       = "out"
-  #     protocol        = "tcp"
+      protocol        = "tcp"
-  #     port            = "22"
+      port            = "22"
-  #     source_ips      = [] # Won't be used for this rule 
+      source_ips      = [] # Won't be used for this rule 
-  #     destination_ips = ["0.0.0.0/0", "::/0"]
+      destination_ips = ["0.0.0.0/0", "::/0"]
-  #   }
+    }
-  # ]
+  ]
  # If you want to configure additional Arguments for traefik, enter them here as a list and in the form of traefik CLI arguments; see https://doc.traefik.io/traefik/reference/static-configuration/cli/
  # Example: traefik_additional_options = ["--log.level=DEBUG", "--tracing=true"]
@ -124,7 +124,10 @@ module "dns" {
 module "flux" {
  source    = "./modules/flux"
  path      = "clank"
-  namespace = "clank"
+  namespace = "flux-system"
  url       = "ssh://git@git.front.kjuulh.io/clank/kubernetes-state.git"
  branch    = "main"
  ssh_private_key_pem = file(".keys/id_clank")
  ssh_public_key_pem = file(".keys/id_clank.pub")
 }
--- a/modules/flux/main.tf
+++ b/modules/flux/main.tf
@ -68,6 +68,13 @@ resource "kubectl_manifest" "sync" {
  yaml_body  = each.value
 }
 locals {
  known_hosts = <<EOT
 git.front.kjuulh.io ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIGJdO0Tw0e/Fa78g1Xszc4oKaOPbTwl7RTAaGQb0TrV8
 git.front.kjuulh.io ecdsa-sha2-nistp256 AAAAE2VjZHNhLXNoYTItbmlzdHAyNTYAAAAIbmlzdHAyNTYAAABBBO61xoa0ON2Y8rpIB6R9PFxg9HUxMym8Z5I4vYUC+/UnzaDx9YUEGo3Vig9wBo6Hc2lAp0BIwH/d5d6uBBEIj/Y=
 EOT
 }
 # Generate a Kubernetes secret with the Git credentials
 resource "kubernetes_secret" "main" {
  depends_on = [kubectl_manifest.apply]
@ -78,7 +85,20 @@ resource "kubernetes_secret" "main" {
  }
  data = {
-    username = "git"
+    identity = var.ssh_private_key_pem
-    password = var.flux_token
+    "identity.pub" = var.ssh_public_key_pem
    #    identity       = <<EOT
    #-----BEGIN OPENSSH PRIVATE KEY-----
    #b3BlbnNzaC1rZXktdjEAAAAABG5vbmUAAAAEbm9uZQAAAAAAAAABAAAAMwAAAAtzc2gtZW
    #QyNTUxOQAAACBYZYPLAjLRZhUHfk4yTLmiQTDmdWPIgZTI+dGLgpY/GAAAAJgGvLdRBry3
    #UQAAAAtzc2gtZWQyNTUxOQAAACBYZYPLAjLRZhUHfk4yTLmiQTDmdWPIgZTI+dGLgpY/GA
    #AAAEBmqJkdSt8H6HIVzV6Na8ukBOj4Bywd970sQVPWAz8Ug1hlg8sCMtFmFQd+TjJMuaJB
    #MOZ1Y8iBlMj50YuClj8YAAAAEWNvbnRhY3RAa2p1dWxoLmlvAQIDBA==
    #-----END OPENSSH PRIVATE KEY-----
    #EOT
    #    "identity.pub" = <<EOT
    #ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIFhlg8sCMtFmFQd+TjJMuaJBMOZ1Y8iBlMj50YuClj8Y contact@kjuulh.io
    #EOT
    known_hosts    = local.known_hosts
  }
 }
--- a/modules/flux/providers.tf
+++ b/modules/flux/providers.tf
@ -2,7 +2,7 @@
 terraform {
  required_providers {
    flux = {
-      source = "fluxcd/flux"
+      source  = "fluxcd/flux"
      version = "0.14.1"
    }
    kubectl = {
--- a/modules/flux/variables.tf
+++ b/modules/flux/variables.tf
@ -17,3 +17,14 @@ variable "branch" {
  type     = string
  nullable = false
 }
 variable "ssh_private_key_pem" {
  type     = string
  nullable = false
  sensitive = true
 }
 variable "ssh_public_key_pem" {
  type     = string
  nullable = false
 }
--- a/terraform.tfstate
+++ b/terraform.tfstate
@ -1,7 +1,7 @@
 {
  "version": 4,
  "terraform_version": "1.1.7",
-  "serial": 90,
+  "serial": 194,
  "lineage": "04d648e3-bdd4-2cef-384a-6564647940db",
  "outputs": {},
  "resources": [
@ -309,6 +309,7 @@
          "sensitive_attributes": [],
          "private": "eyJlMmJmYjczMC1lY2FhLTExZTYtOGY4OC0zNDM2M2JjN2M0YzAiOnsiY3JlYXRlIjo2MDAwMDAwMDAwMDB9LCJzY2hlbWFfdmVyc2lvbiI6IjEifQ==",
          "dependencies": [
            "module.flux.data.flux_install.main",
            "module.flux.data.kubectl_file_documents.apply",
            "module.flux.kubernetes_namespace.flux_system"
          ]
@ -343,6 +344,7 @@
          "sensitive_attributes": [],
          "private": "eyJlMmJmYjczMC1lY2FhLTExZTYtOGY4OC0zNDM2M2JjN2M0YzAiOnsiY3JlYXRlIjo2MDAwMDAwMDAwMDB9LCJzY2hlbWFfdmVyc2lvbiI6IjEifQ==",
          "dependencies": [
            "module.flux.data.flux_install.main",
            "module.flux.data.kubectl_file_documents.apply",
            "module.flux.kubernetes_namespace.flux_system"
          ]
@ -377,6 +379,7 @@
          "sensitive_attributes": [],
          "private": "eyJlMmJmYjczMC1lY2FhLTExZTYtOGY4OC0zNDM2M2JjN2M0YzAiOnsiY3JlYXRlIjo2MDAwMDAwMDAwMDB9LCJzY2hlbWFfdmVyc2lvbiI6IjEifQ==",
          "dependencies": [
            "module.flux.data.flux_install.main",
            "module.flux.data.kubectl_file_documents.apply",
            "module.flux.kubernetes_namespace.flux_system"
          ]
@ -411,6 +414,7 @@
          "sensitive_attributes": [],
          "private": "eyJlMmJmYjczMC1lY2FhLTExZTYtOGY4OC0zNDM2M2JjN2M0YzAiOnsiY3JlYXRlIjo2MDAwMDAwMDAwMDB9LCJzY2hlbWFfdmVyc2lvbiI6IjEifQ==",
          "dependencies": [
            "module.flux.data.flux_install.main",
            "module.flux.data.kubectl_file_documents.apply",
            "module.flux.kubernetes_namespace.flux_system"
          ]
@ -445,6 +449,7 @@
          "sensitive_attributes": [],
          "private": "eyJlMmJmYjczMC1lY2FhLTExZTYtOGY4OC0zNDM2M2JjN2M0YzAiOnsiY3JlYXRlIjo2MDAwMDAwMDAwMDB9LCJzY2hlbWFfdmVyc2lvbiI6IjEifQ==",
          "dependencies": [
            "module.flux.data.flux_install.main",
            "module.flux.data.kubectl_file_documents.apply",
            "module.flux.kubernetes_namespace.flux_system"
          ]
@ -479,6 +484,7 @@
          "sensitive_attributes": [],
          "private": "eyJlMmJmYjczMC1lY2FhLTExZTYtOGY4OC0zNDM2M2JjN2M0YzAiOnsiY3JlYXRlIjo2MDAwMDAwMDAwMDB9LCJzY2hlbWFfdmVyc2lvbiI6IjEifQ==",
          "dependencies": [
            "module.flux.data.flux_install.main",
            "module.flux.data.kubectl_file_documents.apply",
            "module.flux.kubernetes_namespace.flux_system"
          ]
@ -513,6 +519,7 @@
          "sensitive_attributes": [],
          "private": "eyJlMmJmYjczMC1lY2FhLTExZTYtOGY4OC0zNDM2M2JjN2M0YzAiOnsiY3JlYXRlIjo2MDAwMDAwMDAwMDB9LCJzY2hlbWFfdmVyc2lvbiI6IjEifQ==",
          "dependencies": [
            "module.flux.data.flux_install.main",
            "module.flux.data.kubectl_file_documents.apply",
            "module.flux.kubernetes_namespace.flux_system"
          ]
@ -547,6 +554,7 @@
          "sensitive_attributes": [],
          "private": "eyJlMmJmYjczMC1lY2FhLTExZTYtOGY4OC0zNDM2M2JjN2M0YzAiOnsiY3JlYXRlIjo2MDAwMDAwMDAwMDB9LCJzY2hlbWFfdmVyc2lvbiI6IjEifQ==",
          "dependencies": [
            "module.flux.data.flux_install.main",
            "module.flux.data.kubectl_file_documents.apply",
            "module.flux.kubernetes_namespace.flux_system"
          ]
@ -581,6 +589,7 @@
          "sensitive_attributes": [],
          "private": "eyJlMmJmYjczMC1lY2FhLTExZTYtOGY4OC0zNDM2M2JjN2M0YzAiOnsiY3JlYXRlIjo2MDAwMDAwMDAwMDB9LCJzY2hlbWFfdmVyc2lvbiI6IjEifQ==",
          "dependencies": [
            "module.flux.data.flux_install.main",
            "module.flux.data.kubectl_file_documents.apply",
            "module.flux.kubernetes_namespace.flux_system"
          ]
@ -597,14 +606,14 @@
            "ignore_fields": null,
            "kind": "Deployment",
            "live_manifest_incluster": "e4a3b3bfd6bd6ffd2658edf4addbe86e4de9eb9ed18ac572badad9ac837f4824",
-            "live_uid": "f99f730b-1576-4b2b-a30a-1e199ae2934a",
+            "live_uid": "595c94bd-2897-4105-a6eb-f7f3d28aef31",
            "name": "helm-controller",
            "namespace": "flux-system",
            "override_namespace": null,
            "sensitive_fields": null,
            "server_side_apply": false,
            "timeouts": null,
-            "uid": "f99f730b-1576-4b2b-a30a-1e199ae2934a",
+            "uid": "595c94bd-2897-4105-a6eb-f7f3d28aef31",
            "validate_schema": true,
            "wait": null,
            "wait_for_rollout": true,
@ -615,6 +624,7 @@
          "sensitive_attributes": [],
          "private": "eyJlMmJmYjczMC1lY2FhLTExZTYtOGY4OC0zNDM2M2JjN2M0YzAiOnsiY3JlYXRlIjo2MDAwMDAwMDAwMDB9LCJzY2hlbWFfdmVyc2lvbiI6IjEifQ==",
          "dependencies": [
            "module.flux.data.flux_install.main",
            "module.flux.data.kubectl_file_documents.apply",
            "module.flux.kubernetes_namespace.flux_system"
          ]
@ -631,14 +641,14 @@
            "ignore_fields": null,
            "kind": "Deployment",
            "live_manifest_incluster": "2826c2c4389823e3aaf89d714a101f295d74b565e99bd2a4d7436ce727817cea",
-            "live_uid": "e96f7550-2bbb-4736-8dd7-7cb071bed832",
+            "live_uid": "7ea37437-55b7-4168-883a-1754bbeccd07",
            "name": "kustomize-controller",
            "namespace": "flux-system",
            "override_namespace": null,
            "sensitive_fields": null,
            "server_side_apply": false,
            "timeouts": null,
-            "uid": "e96f7550-2bbb-4736-8dd7-7cb071bed832",
+            "uid": "7ea37437-55b7-4168-883a-1754bbeccd07",
            "validate_schema": true,
            "wait": null,
            "wait_for_rollout": true,
@ -649,6 +659,7 @@
          "sensitive_attributes": [],
          "private": "eyJlMmJmYjczMC1lY2FhLTExZTYtOGY4OC0zNDM2M2JjN2M0YzAiOnsiY3JlYXRlIjo2MDAwMDAwMDAwMDB9LCJzY2hlbWFfdmVyc2lvbiI6IjEifQ==",
          "dependencies": [
            "module.flux.data.flux_install.main",
            "module.flux.data.kubectl_file_documents.apply",
            "module.flux.kubernetes_namespace.flux_system"
          ]
@ -665,14 +676,14 @@
            "ignore_fields": null,
            "kind": "Deployment",
            "live_manifest_incluster": "6540cfaf3a1ae420ceb422d5fe5768c84e0297aae12d61c0204ad49d6c7f24c5",
-            "live_uid": "e1270c9d-a52f-44b3-9605-43648d00b976",
+            "live_uid": "240b64d6-e55b-4e86-bdb7-cfd022661d13",
            "name": "notification-controller",
            "namespace": "flux-system",
            "override_namespace": null,
            "sensitive_fields": null,
            "server_side_apply": false,
            "timeouts": null,
-            "uid": "e1270c9d-a52f-44b3-9605-43648d00b976",
+            "uid": "240b64d6-e55b-4e86-bdb7-cfd022661d13",
            "validate_schema": true,
            "wait": null,
            "wait_for_rollout": true,
@ -683,6 +694,7 @@
          "sensitive_attributes": [],
          "private": "eyJlMmJmYjczMC1lY2FhLTExZTYtOGY4OC0zNDM2M2JjN2M0YzAiOnsiY3JlYXRlIjo2MDAwMDAwMDAwMDB9LCJzY2hlbWFfdmVyc2lvbiI6IjEifQ==",
          "dependencies": [
            "module.flux.data.flux_install.main",
            "module.flux.data.kubectl_file_documents.apply",
            "module.flux.kubernetes_namespace.flux_system"
          ]
@ -699,14 +711,14 @@
            "ignore_fields": null,
            "kind": "Deployment",
            "live_manifest_incluster": "e1aba2209a36f10008a7a3ad79fcfbe50d58900fcb41060ab652fcf6364d6b7f",
-            "live_uid": "2ab81815-bcee-4227-b0a6-14f0a71128d7",
+            "live_uid": "f06006e9-a0d5-492b-bedc-76bd68b508e6",
            "name": "source-controller",
            "namespace": "flux-system",
            "override_namespace": null,
            "sensitive_fields": null,
            "server_side_apply": false,
            "timeouts": null,
-            "uid": "2ab81815-bcee-4227-b0a6-14f0a71128d7",
+            "uid": "f06006e9-a0d5-492b-bedc-76bd68b508e6",
            "validate_schema": true,
            "wait": null,
            "wait_for_rollout": true,
@ -717,6 +729,7 @@
          "sensitive_attributes": [],
          "private": "eyJlMmJmYjczMC1lY2FhLTExZTYtOGY4OC0zNDM2M2JjN2M0YzAiOnsiY3JlYXRlIjo2MDAwMDAwMDAwMDB9LCJzY2hlbWFfdmVyc2lvbiI6IjEifQ==",
          "dependencies": [
            "module.flux.data.flux_install.main",
            "module.flux.data.kubectl_file_documents.apply",
            "module.flux.kubernetes_namespace.flux_system"
          ]
@ -751,6 +764,7 @@
          "sensitive_attributes": [],
          "private": "eyJlMmJmYjczMC1lY2FhLTExZTYtOGY4OC0zNDM2M2JjN2M0YzAiOnsiY3JlYXRlIjo2MDAwMDAwMDAwMDB9LCJzY2hlbWFfdmVyc2lvbiI6IjEifQ==",
          "dependencies": [
            "module.flux.data.flux_install.main",
            "module.flux.data.kubectl_file_documents.apply",
            "module.flux.kubernetes_namespace.flux_system"
          ]
@ -785,6 +799,7 @@
          "sensitive_attributes": [],
          "private": "eyJlMmJmYjczMC1lY2FhLTExZTYtOGY4OC0zNDM2M2JjN2M0YzAiOnsiY3JlYXRlIjo2MDAwMDAwMDAwMDB9LCJzY2hlbWFfdmVyc2lvbiI6IjEifQ==",
          "dependencies": [
            "module.flux.data.flux_install.main",
            "module.flux.data.kubectl_file_documents.apply",
            "module.flux.kubernetes_namespace.flux_system"
          ]
@ -819,6 +834,7 @@
          "sensitive_attributes": [],
          "private": "eyJlMmJmYjczMC1lY2FhLTExZTYtOGY4OC0zNDM2M2JjN2M0YzAiOnsiY3JlYXRlIjo2MDAwMDAwMDAwMDB9LCJzY2hlbWFfdmVyc2lvbiI6IjEifQ==",
          "dependencies": [
            "module.flux.data.flux_install.main",
            "module.flux.data.kubectl_file_documents.apply",
            "module.flux.kubernetes_namespace.flux_system"
          ]
@ -835,14 +851,14 @@
            "ignore_fields": null,
            "kind": "Namespace",
            "live_manifest_incluster": "36cd74a4c6ef912d14993e6713511346b84b91b559cdcaefa1987bc9820c3340",
-            "live_uid": "6efff1cb-ca2a-425d-a374-3e5298232c28",
+            "live_uid": "0e244da8-b9b0-4053-bf00-7bedb468e182",
            "name": "flux-system",
            "namespace": null,
            "override_namespace": null,
            "sensitive_fields": null,
            "server_side_apply": false,
            "timeouts": null,
-            "uid": "6efff1cb-ca2a-425d-a374-3e5298232c28",
+            "uid": "0e244da8-b9b0-4053-bf00-7bedb468e182",
            "validate_schema": true,
            "wait": null,
            "wait_for_rollout": true,
@ -853,6 +869,7 @@
          "sensitive_attributes": [],
          "private": "eyJlMmJmYjczMC1lY2FhLTExZTYtOGY4OC0zNDM2M2JjN2M0YzAiOnsiY3JlYXRlIjo2MDAwMDAwMDAwMDB9LCJzY2hlbWFfdmVyc2lvbiI6IjEifQ==",
          "dependencies": [
            "module.flux.data.flux_install.main",
            "module.flux.data.kubectl_file_documents.apply",
            "module.flux.kubernetes_namespace.flux_system"
          ]
@ -869,14 +886,14 @@
            "ignore_fields": null,
            "kind": "Service",
            "live_manifest_incluster": "2bed8e777b97150ef0f8eb7ce6e224b6d4518449b38f9f1dd1f799f187211e33",
-            "live_uid": "17c56462-4b20-4570-b367-53e95d6cda56",
+            "live_uid": "2977a59e-2fd1-4f92-a998-1d95f4a2d1ea",
            "name": "notification-controller",
            "namespace": "flux-system",
            "override_namespace": null,
            "sensitive_fields": null,
            "server_side_apply": false,
            "timeouts": null,
-            "uid": "17c56462-4b20-4570-b367-53e95d6cda56",
+            "uid": "2977a59e-2fd1-4f92-a998-1d95f4a2d1ea",
            "validate_schema": true,
            "wait": null,
            "wait_for_rollout": true,
@ -887,6 +904,7 @@
          "sensitive_attributes": [],
          "private": "eyJlMmJmYjczMC1lY2FhLTExZTYtOGY4OC0zNDM2M2JjN2M0YzAiOnsiY3JlYXRlIjo2MDAwMDAwMDAwMDB9LCJzY2hlbWFfdmVyc2lvbiI6IjEifQ==",
          "dependencies": [
            "module.flux.data.flux_install.main",
            "module.flux.data.kubectl_file_documents.apply",
            "module.flux.kubernetes_namespace.flux_system"
          ]
@ -903,14 +921,14 @@
            "ignore_fields": null,
            "kind": "Service",
            "live_manifest_incluster": "d56847b2a9516b2994b8bef69ba399ef8afb109c538adbe59446204688e1eae3",
-            "live_uid": "71e09a24-9009-472c-8cd1-41da5c2f559b",
+            "live_uid": "72cd6273-2019-4e1f-868a-485931ba1855",
            "name": "source-controller",
            "namespace": "flux-system",
            "override_namespace": null,
            "sensitive_fields": null,
            "server_side_apply": false,
            "timeouts": null,
-            "uid": "71e09a24-9009-472c-8cd1-41da5c2f559b",
+            "uid": "72cd6273-2019-4e1f-868a-485931ba1855",
            "validate_schema": true,
            "wait": null,
            "wait_for_rollout": true,
@ -921,6 +939,7 @@
          "sensitive_attributes": [],
          "private": "eyJlMmJmYjczMC1lY2FhLTExZTYtOGY4OC0zNDM2M2JjN2M0YzAiOnsiY3JlYXRlIjo2MDAwMDAwMDAwMDB9LCJzY2hlbWFfdmVyc2lvbiI6IjEifQ==",
          "dependencies": [
            "module.flux.data.flux_install.main",
            "module.flux.data.kubectl_file_documents.apply",
            "module.flux.kubernetes_namespace.flux_system"
          ]
@ -937,14 +956,14 @@
            "ignore_fields": null,
            "kind": "Service",
            "live_manifest_incluster": "32478dcd63b2b822236c495158f3253df5ba5b88831fbeaa2b1198d7a0b472d7",
-            "live_uid": "bd9d4461-afc7-4c45-b090-cf2642dd76a9",
+            "live_uid": "02d74f76-90d5-4da6-90e8-2a51a51d278b",
            "name": "webhook-receiver",
            "namespace": "flux-system",
            "override_namespace": null,
            "sensitive_fields": null,
            "server_side_apply": false,
            "timeouts": null,
-            "uid": "bd9d4461-afc7-4c45-b090-cf2642dd76a9",
+            "uid": "02d74f76-90d5-4da6-90e8-2a51a51d278b",
            "validate_schema": true,
            "wait": null,
            "wait_for_rollout": true,
@ -955,6 +974,7 @@
          "sensitive_attributes": [],
          "private": "eyJlMmJmYjczMC1lY2FhLTExZTYtOGY4OC0zNDM2M2JjN2M0YzAiOnsiY3JlYXRlIjo2MDAwMDAwMDAwMDB9LCJzY2hlbWFfdmVyc2lvbiI6IjEifQ==",
          "dependencies": [
            "module.flux.data.flux_install.main",
            "module.flux.data.kubectl_file_documents.apply",
            "module.flux.kubernetes_namespace.flux_system"
          ]
@ -971,14 +991,14 @@
            "ignore_fields": null,
            "kind": "ServiceAccount",
            "live_manifest_incluster": "b2aad3f57dca6ad5856d63af0e01b5be04fd424032893aceb9b21bbc92c347a5",
-            "live_uid": "c04ad926-5ba4-4fe8-bca9-ff8643e71f18",
+            "live_uid": "aa9711e9-e81e-439e-a807-abb2e2ab7cfe",
            "name": "helm-controller",
            "namespace": "flux-system",
            "override_namespace": null,
            "sensitive_fields": null,
            "server_side_apply": false,
            "timeouts": null,
-            "uid": "c04ad926-5ba4-4fe8-bca9-ff8643e71f18",
+            "uid": "aa9711e9-e81e-439e-a807-abb2e2ab7cfe",
            "validate_schema": true,
            "wait": null,
            "wait_for_rollout": true,
@ -989,6 +1009,7 @@
          "sensitive_attributes": [],
          "private": "eyJlMmJmYjczMC1lY2FhLTExZTYtOGY4OC0zNDM2M2JjN2M0YzAiOnsiY3JlYXRlIjo2MDAwMDAwMDAwMDB9LCJzY2hlbWFfdmVyc2lvbiI6IjEifQ==",
          "dependencies": [
            "module.flux.data.flux_install.main",
            "module.flux.data.kubectl_file_documents.apply",
            "module.flux.kubernetes_namespace.flux_system"
          ]
@ -1005,14 +1026,14 @@
            "ignore_fields": null,
            "kind": "ServiceAccount",
            "live_manifest_incluster": "8a14f17da2d09e6c888837953b3962a88d06f405df66028ff154a94d4dfa0d09",
-            "live_uid": "d10373ac-3971-4971-902d-c729903f3a43",
+            "live_uid": "c73c43a2-52f9-42df-bf2b-897016848dda",
            "name": "kustomize-controller",
            "namespace": "flux-system",
            "override_namespace": null,
            "sensitive_fields": null,
            "server_side_apply": false,
            "timeouts": null,
-            "uid": "d10373ac-3971-4971-902d-c729903f3a43",
+            "uid": "c73c43a2-52f9-42df-bf2b-897016848dda",
            "validate_schema": true,
            "wait": null,
            "wait_for_rollout": true,
@ -1023,6 +1044,7 @@
          "sensitive_attributes": [],
          "private": "eyJlMmJmYjczMC1lY2FhLTExZTYtOGY4OC0zNDM2M2JjN2M0YzAiOnsiY3JlYXRlIjo2MDAwMDAwMDAwMDB9LCJzY2hlbWFfdmVyc2lvbiI6IjEifQ==",
          "dependencies": [
            "module.flux.data.flux_install.main",
            "module.flux.data.kubectl_file_documents.apply",
            "module.flux.kubernetes_namespace.flux_system"
          ]
@ -1039,14 +1061,14 @@
            "ignore_fields": null,
            "kind": "ServiceAccount",
            "live_manifest_incluster": "846badceb5abc1172a04ac98661eded224067c4084bf88be0eb70075af5a53d1",
-            "live_uid": "e5fdb23e-8b89-49e1-af18-a659bc46e585",
+            "live_uid": "743f674e-2fa2-48d1-ae58-36a2354b44ba",
            "name": "notification-controller",
            "namespace": "flux-system",
            "override_namespace": null,
            "sensitive_fields": null,
            "server_side_apply": false,
            "timeouts": null,
-            "uid": "e5fdb23e-8b89-49e1-af18-a659bc46e585",
+            "uid": "743f674e-2fa2-48d1-ae58-36a2354b44ba",
            "validate_schema": true,
            "wait": null,
            "wait_for_rollout": true,
@ -1057,6 +1079,7 @@
          "sensitive_attributes": [],
          "private": "eyJlMmJmYjczMC1lY2FhLTExZTYtOGY4OC0zNDM2M2JjN2M0YzAiOnsiY3JlYXRlIjo2MDAwMDAwMDAwMDB9LCJzY2hlbWFfdmVyc2lvbiI6IjEifQ==",
          "dependencies": [
            "module.flux.data.flux_install.main",
            "module.flux.data.kubectl_file_documents.apply",
            "module.flux.kubernetes_namespace.flux_system"
          ]
@ -1073,14 +1096,14 @@
            "ignore_fields": null,
            "kind": "ServiceAccount",
            "live_manifest_incluster": "1d5862fdb063737cfa82134235c3dec3144c1c11ac78041a3c187751b6c2ed76",
-            "live_uid": "f4dc0287-a9d2-4e46-b7bc-9fcbe6e0a87a",
+            "live_uid": "2e6d3b1e-37e0-4d53-83a4-65721bef5cbb",
            "name": "source-controller",
            "namespace": "flux-system",
            "override_namespace": null,
            "sensitive_fields": null,
            "server_side_apply": false,
            "timeouts": null,
-            "uid": "f4dc0287-a9d2-4e46-b7bc-9fcbe6e0a87a",
+            "uid": "2e6d3b1e-37e0-4d53-83a4-65721bef5cbb",
            "validate_schema": true,
            "wait": null,
            "wait_for_rollout": true,
@ -1091,6 +1114,7 @@
          "sensitive_attributes": [],
          "private": "eyJlMmJmYjczMC1lY2FhLTExZTYtOGY4OC0zNDM2M2JjN2M0YzAiOnsiY3JlYXRlIjo2MDAwMDAwMDAwMDB9LCJzY2hlbWFfdmVyc2lvbiI6IjEifQ==",
          "dependencies": [
            "module.flux.data.flux_install.main",
            "module.flux.data.kubectl_file_documents.apply",
            "module.flux.kubernetes_namespace.flux_system"
          ]
@ -1116,14 +1140,14 @@
            "ignore_fields": null,
            "kind": "Kustomization",
            "live_manifest_incluster": "76983d95c6d6af709777da0d4f83096cef10b2b6e625b0116db581080e962f87",
-            "live_uid": "92676cb4-aa2b-4a03-8b73-68fcc35a231b",
+            "live_uid": "29dd19f1-dc61-4ad1-97fb-e10e69359515",
            "name": "flux-system",
            "namespace": "flux-system",
            "override_namespace": null,
            "sensitive_fields": null,
            "server_side_apply": false,
            "timeouts": null,
-            "uid": "92676cb4-aa2b-4a03-8b73-68fcc35a231b",
+            "uid": "29dd19f1-dc61-4ad1-97fb-e10e69359515",
            "validate_schema": true,
            "wait": null,
            "wait_for_rollout": true,
@ -1134,6 +1158,7 @@
          "sensitive_attributes": [],
          "private": "eyJlMmJmYjczMC1lY2FhLTExZTYtOGY4OC0zNDM2M2JjN2M0YzAiOnsiY3JlYXRlIjo2MDAwMDAwMDAwMDB9LCJzY2hlbWFfdmVyc2lvbiI6IjEifQ==",
          "dependencies": [
            "module.flux.data.flux_sync.main",
            "module.flux.data.kubectl_file_documents.sync",
            "module.flux.kubernetes_namespace.flux_system"
          ]
@ -1150,14 +1175,14 @@
            "ignore_fields": null,
            "kind": "GitRepository",
            "live_manifest_incluster": "f159fca85740fe805d8ac4569899db00ab9cd9245350a7a56b689eafc490bedb",
-            "live_uid": "717c8ee0-5537-4664-866f-a71f831cd3be",
+            "live_uid": "d2fea749-8f58-4ead-be65-bc2be53cb80e",
            "name": "flux-system",
            "namespace": "flux-system",
            "override_namespace": null,
            "sensitive_fields": null,
            "server_side_apply": false,
            "timeouts": null,
-            "uid": "717c8ee0-5537-4664-866f-a71f831cd3be",
+            "uid": "d2fea749-8f58-4ead-be65-bc2be53cb80e",
            "validate_schema": true,
            "wait": null,
            "wait_for_rollout": true,
@ -1168,6 +1193,7 @@
          "sensitive_attributes": [],
          "private": "eyJlMmJmYjczMC1lY2FhLTExZTYtOGY4OC0zNDM2M2JjN2M0YzAiOnsiY3JlYXRlIjo2MDAwMDAwMDAwMDB9LCJzY2hlbWFfdmVyc2lvbiI6IjEifQ==",
          "dependencies": [
            "module.flux.data.flux_sync.main",
            "module.flux.data.kubectl_file_documents.sync",
            "module.flux.kubernetes_namespace.flux_system"
          ]
@ -1184,16 +1210,20 @@
        {
          "schema_version": 0,
          "attributes": {
-            "id": "clank",
+            "id": "flux-system",
            "metadata": [
              {
-                "annotations": null,
+                "annotations": {},
                "generate_name": "",
                "generation": 0,
-                "labels": null,
+                "labels": {
-                "name": "clank",
+                  "app.kubernetes.io/instance": "flux-system",
-                "resource_version": "18511",
+                  "app.kubernetes.io/part-of": "flux",
-                "uid": "e8025c5b-00a7-4b20-9e0b-8215413b8147"
+                  "app.kubernetes.io/version": "latest"
                },
                "name": "flux-system",
                "resource_version": "36003",
                "uid": "0e244da8-b9b0-4053-bf00-7bedb468e182"
              }
            ],
            "timeouts": null
@ -1203,6 +1233,62 @@
        }
      ]
    },
    {
      "module": "module.flux",
      "mode": "managed",
      "type": "kubernetes_secret",
      "name": "main",
      "provider": "module.flux.provider[\"registry.terraform.io/hashicorp/kubernetes\"]",
      "instances": [
        {
          "schema_version": 0,
          "attributes": {
            "binary_data": null,
            "data": {
              "identity": "-----BEGIN OPENSSH PRIVATE KEY-----\nb3BlbnNzaC1rZXktdjEAAAAABG5vbmUAAAAEbm9uZQAAAAAAAAABAAAAMwAAAAtzc2gtZW\nQyNTUxOQAAACBYZYPLAjLRZhUHfk4yTLmiQTDmdWPIgZTI+dGLgpY/GAAAAJgGvLdRBry3\nUQAAAAtzc2gtZWQyNTUxOQAAACBYZYPLAjLRZhUHfk4yTLmiQTDmdWPIgZTI+dGLgpY/GA\nAAAEBmqJkdSt8H6HIVzV6Na8ukBOj4Bywd970sQVPWAz8Ug1hlg8sCMtFmFQd+TjJMuaJB\nMOZ1Y8iBlMj50YuClj8YAAAAEWNvbnRhY3RAa2p1dWxoLmlvAQIDBA==\n-----END OPENSSH PRIVATE KEY-----\n",
              "identity.pub": "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIFhlg8sCMtFmFQd+TjJMuaJBMOZ1Y8iBlMj50YuClj8Y contact@kjuulh.io\n",
              "known_hosts": "git.front.kjuulh.io ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIGJdO0Tw0e/Fa78g1Xszc4oKaOPbTwl7RTAaGQb0TrV8\ngit.front.kjuulh.io ecdsa-sha2-nistp256 AAAAE2VjZHNhLXNoYTItbmlzdHAyNTYAAAAIbmlzdHAyNTYAAABBBO61xoa0ON2Y8rpIB6R9PFxg9HUxMym8Z5I4vYUC+/UnzaDx9YUEGo3Vig9wBo6Hc2lAp0BIwH/d5d6uBBEIj/Y=\n"
            },
            "id": "flux-system/flux-system",
            "immutable": false,
            "metadata": [
              {
                "annotations": {},
                "generate_name": "",
                "generation": 0,
                "labels": {},
                "name": "flux-system",
                "namespace": "flux-system",
                "resource_version": "40687",
                "uid": "e4b26a74-1433-4a38-a126-63f7dec801f0"
              }
            ],
            "type": "Opaque"
          },
          "sensitive_attributes": [
            [
              {
                "type": "get_attr",
                "value": "data"
              },
              {
                "type": "index",
                "value": {
                  "value": "identity",
                  "type": "string"
                }
              }
            ]
          ],
          "private": "bnVsbA==",
          "dependencies": [
            "module.flux.data.flux_sync.main",
            "module.flux.data.kubectl_file_documents.apply",
            "module.flux.kubectl_manifest.apply"
          ]
        }
      ]
    },
    {
      "module": "module.kube-hetzner",
      "mode": "data",
@ -1334,6 +1420,11 @@
            "network_zone": "eu-central",
            "service": null,
            "target": [
              {
                "label_selector": "",
                "server_id": 20289430,
                "type": "server"
              },
              {
                "label_selector": "",
                "server_id": 20285807,
@ -1452,12 +1543,27 @@
              {
                "label_selector": "",
                "server": 20285811
              },
              {
                "label_selector": "",
                "server": 20289430
              }
            ],
            "id": "385507",
            "labels": {},
            "name": "clank",
            "rule": [
              {
                "description": "",
                "destination_ips": [
                  "0.0.0.0/0",
                  "::/0"
                ],
                "direction": "out",
                "port": "22",
                "protocol": "tcp",
                "source_ips": []
              },
              {
                "description": "",
                "destination_ips": [
@ -1758,7 +1864,8 @@
            "servers": [
              20285807,
              20285809,
-              20285811
+              20285811,
              20289430
            ],
            "type": "spread"
          },
@ -1996,6 +2103,37 @@
            "module.kube-hetzner.null_resource.first_control_plane",
            "module.kube-hetzner.random_password.k3s_token"
          ]
        },
        {
          "index_key": "2-1-storage1",
          "schema_version": 0,
          "attributes": {
            "id": "8807962960687335091",
            "triggers": {
              "agent_id": "20289430"
            }
          },
          "sensitive_attributes": [],
          "private": "bnVsbA==",
          "dependencies": [
            "module.kube-hetzner.hcloud_firewall.k3s",
            "module.kube-hetzner.hcloud_network.k3s",
            "module.kube-hetzner.hcloud_network_subnet.agent",
            "module.kube-hetzner.hcloud_network_subnet.control_plane",
            "module.kube-hetzner.hcloud_placement_group.agent",
            "module.kube-hetzner.hcloud_placement_group.control_plane",
            "module.kube-hetzner.hcloud_ssh_key.k3s",
            "module.kube-hetzner.module.agents.data.cloudinit_config.config",
            "module.kube-hetzner.module.agents.hcloud_server.server",
            "module.kube-hetzner.module.agents.hcloud_server_network.server",
            "module.kube-hetzner.module.agents.random_string.server",
            "module.kube-hetzner.module.control_planes.data.cloudinit_config.config",
            "module.kube-hetzner.module.control_planes.hcloud_server.server",
            "module.kube-hetzner.module.control_planes.hcloud_server_network.server",
            "module.kube-hetzner.module.control_planes.random_string.server",
            "module.kube-hetzner.null_resource.first_control_plane",
            "module.kube-hetzner.random_password.k3s_token"
          ]
        }
      ]
    },
@ -2680,6 +2818,159 @@
        }
      ]
    },
    {
      "module": "module.kube-hetzner.module.agents[\"2-1-storage1\"]",
      "mode": "data",
      "type": "cloudinit_config",
      "name": "config",
      "provider": "provider[\"registry.terraform.io/hashicorp/cloudinit\"]",
      "instances": [
        {
          "schema_version": 0,
          "attributes": {
            "base64_encode": true,
            "boundary": "MIMEBOUNDARY",
            "gzip": true,
            "id": "4262392169",
            "part": [
              {
                "content": "#cloud-config\n\nwrite_files:\n\n# Configure the private network interface\n- content: |\n    BOOTPROTO='dhcp'\n    STARTMODE='auto'\n  path: /etc/sysconfig/network/ifcfg-eth1\n\n# Disable ssh password authentication\n- content: |\n    PasswordAuthentication no\n    X11Forwarding no\n    MaxAuthTries 2\n    AllowTcpForwarding no\n    AllowAgentForwarding no\n    AuthorizedKeysFile .ssh/authorized_keys\n  path: /etc/ssh/sshd_config.d/kube-hetzner.conf\n\n# Set reboot method as \"kured\"\n- content: |\n    REBOOT_METHOD=kured\n  path: /etc/transactional-update.conf\n\n# Create Rancher repo config\n- content: |\n    [rancher-k3s-common-stable]\n    name=Rancher K3s Common (stable)\n    baseurl=https://rpm.rancher.io/k3s/stable/common/microos/noarch\n    enabled=1\n    gpgcheck=1\n    repo_gpgcheck=0\n    gpgkey=https://rpm.rancher.io/public.key\n  path: /etc/zypp/repos.d/rancher-k3s-common.repo\n\n# Add ssh authorized keys\nssh_authorized_keys:\n  - ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIOmlyNDEGxQxnXOLGMn80DwjPt+CqCy17UaW9MSBphOy contact@kjuulh.io\n\n# Resize /var, not /, as that's the last partition in MicroOS image.\ngrowpart:\n    devices: [\"/var\"]\n\n# Make sure the hostname is set correctly\nhostname: clank-storage1-cgr\npreserve_hostname: true\n\nruncmd:\n\n# As above, make sure the hostname is not reset\n- [sed, '-i', 's/NETCONFIG_NIS_SETDOMAINNAME=\"yes\"/NETCONFIG_NIS_SETDOMAINNAME=\"no\"/g', /etc/sysconfig/network/config]\n- [sed, '-i', 's/DHCLIENT_SET_HOSTNAME=\"yes\"/DHCLIENT_SET_HOSTNAME=\"no\"/g', /etc/sysconfig/network/dhcp]\n\n# We set Cloudflare DNS servers, followed by Google as a backup\n- [sed, '-i', 's/NETCONFIG_DNS_STATIC_SERVERS=\"\"/NETCONFIG_DNS_STATIC_SERVERS=\"1.1.1.1 1.0.0.1 8.8.8.8\"/g', /etc/sysconfig/network/config]\n\n# Bounds the amount of logs that can survive on the system\n- [sed, '-i', 's/#SystemMaxUse=/SystemMaxUse=3G/g', /etc/systemd/journald.conf]\n- [sed, '-i', 's/#MaxRetentionSec=/MaxRetentionSec=1week/g', /etc/systemd/journald.conf]\n\n# Reduces the default number of snapshots from 2-10 number limit, to 4 and from 4-10 number limit important, to 2\n- [sed, '-i', 's/NUMBER_LIMIT=\"2-10\"/NUMBER_LIMIT=\"4\"/g', /etc/snapper/configs/root]\n- [sed, '-i', 's/NUMBER_LIMIT_IMPORTANT=\"4-10\"/NUMBER_LIMIT_IMPORTANT=\"3\"/g', /etc/snapper/configs/root]\n\n# Disables unneeded services\n- [systemctl, disable, '--now', 'rebootmgr.service']\n",
                "content_type": "text/cloud-config",
                "filename": "init.cfg",
                "merge_type": ""
              }
            ],
            "rendered": "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"
          },
          "sensitive_attributes": []
        }
      ]
    },
    {
      "module": "module.kube-hetzner.module.agents[\"2-1-storage1\"]",
      "mode": "managed",
      "type": "hcloud_server",
      "name": "server",
      "provider": "module.kube-hetzner.provider[\"registry.terraform.io/hetznercloud/hcloud\"]",
      "instances": [
        {
          "schema_version": 0,
          "attributes": {
            "backup_window": "",
            "backups": false,
            "datacenter": "fsn1-dc14",
            "delete_protection": false,
            "firewall_ids": [
              385507
            ],
            "id": "20289430",
            "ignore_remote_firewall_ids": false,
            "image": "ubuntu-20.04",
            "ipv4_address": "49.12.247.85",
            "ipv6_address": "2a01:4f8:c012:d246::1",
            "ipv6_network": "2a01:4f8:c012:d246::/64",
            "iso": null,
            "keep_disk": false,
            "labels": {
              "engine": "k3s",
              "provisioner": "terraform"
            },
            "location": "fsn1",
            "name": "clank-storage1-cgr",
            "network": [],
            "placement_group_id": 41238,
            "rebuild_protection": false,
            "rescue": "linux64",
            "server_type": "cpx11",
            "ssh_keys": [
              "6372775"
            ],
            "status": "running",
            "timeouts": null,
            "user_data": "1yw8VGJRSEcjXrZpwCMw7s5ae8A="
          },
          "sensitive_attributes": [],
          "private": "eyJlMmJmYjczMC1lY2FhLTExZTYtOGY4OC0zNDM2M2JjN2M0YzAiOnsiY3JlYXRlIjo1NDAwMDAwMDAwMDAwfX0=",
          "dependencies": [
            "module.kube-hetzner.hcloud_firewall.k3s",
            "module.kube-hetzner.hcloud_network.k3s",
            "module.kube-hetzner.hcloud_network_subnet.agent",
            "module.kube-hetzner.hcloud_placement_group.agent",
            "module.kube-hetzner.hcloud_ssh_key.k3s",
            "module.kube-hetzner.module.agents.data.cloudinit_config.config",
            "module.kube-hetzner.module.agents.random_string.server"
          ]
        }
      ]
    },
    {
      "module": "module.kube-hetzner.module.agents[\"2-1-storage1\"]",
      "mode": "managed",
      "type": "hcloud_server_network",
      "name": "server",
      "provider": "module.kube-hetzner.provider[\"registry.terraform.io/hetznercloud/hcloud\"]",
      "instances": [
        {
          "schema_version": 0,
          "attributes": {
            "alias_ips": [],
            "id": "20289430-1628275",
            "ip": "10.2.0.102",
            "mac_address": "86:00:00:0f:27:a2",
            "network_id": null,
            "server_id": 20289430,
            "subnet_id": "1628275-10.2.0.0/16"
          },
          "sensitive_attributes": [],
          "private": "bnVsbA==",
          "dependencies": [
            "module.kube-hetzner.hcloud_firewall.k3s",
            "module.kube-hetzner.hcloud_network.k3s",
            "module.kube-hetzner.hcloud_network_subnet.agent",
            "module.kube-hetzner.hcloud_placement_group.agent",
            "module.kube-hetzner.hcloud_ssh_key.k3s",
            "module.kube-hetzner.module.agents.data.cloudinit_config.config",
            "module.kube-hetzner.module.agents.hcloud_server.server",
            "module.kube-hetzner.module.agents.random_string.server"
          ]
        }
      ]
    },
    {
      "module": "module.kube-hetzner.module.agents[\"2-1-storage1\"]",
      "mode": "managed",
      "type": "random_string",
      "name": "server",
      "provider": "provider[\"registry.terraform.io/hashicorp/random\"]",
      "instances": [
        {
          "schema_version": 1,
          "attributes": {
            "id": "cgr",
            "keepers": {
              "name": "clank-storage1"
            },
            "length": 3,
            "lower": true,
            "min_lower": 0,
            "min_numeric": 0,
            "min_special": 0,
            "min_upper": 0,
            "number": false,
            "override_special": null,
            "result": "cgr",
            "special": false,
            "upper": false
          },
          "sensitive_attributes": [],
          "private": "eyJzY2hlbWFfdmVyc2lvbiI6IjEifQ==",
          "dependencies": [
            "module.kube-hetzner.hcloud_network.k3s",
            "module.kube-hetzner.hcloud_network_subnet.agent"
          ]
        }
      ]
    },
    {
      "module": "module.kube-hetzner.module.control_planes[\"0-0-control-plane-fsn1\"]",
      "mode": "data",
--- a/terraform.tfstate.backup
+++ b/terraform.tfstate.backup