Conversation
Co-authored-by: newsted <newsted@gmail.com>
Co-authored-by: newsted <newsted@gmail.com>
Co-authored-by: newsted <newsted@gmail.com>
|
Cursor Agent can help with this pull request. Just |
![cursor[bot]](https://avatars.githubusercontent.com/in/1210556?s=60&v=4){kind=small}
There was a problem hiding this comment.
This PR is being reviewed by Cursor Bugbot
Details
You are on the Bugbot Free tier. On this plan, Bugbot will review limited PRs each billing cycle.
To receive Bugbot reviews on all of your PRs, visit the Cursor dashboard to activate Pro and start your 14-day free trial.
| forward-addr: 9.9.9.9@853 | ||
| forward-addr: 149.112.112.112@853 | ||
| forward-ssl-upstream: yes | ||
|
|
There was a problem hiding this comment.
Bug: Duplicate Forward Zones Cause Configuration Failure
The Unbound configuration includes duplicate forward-zone blocks, both named ".". This invalid setup creates a conflict, leading to only one block being used or Unbound failing to start.
| persistentVolumeClaim: | ||
| claimName: vaultwarden-pvc | ||
| - name: vaultwarden-ssl | ||
| emptyDir: {} # Mount your SSL certificates here if needed |
There was a problem hiding this comment.
Bug: SSL Certificates Missing in EmptyDir Volume
The ROCKET_TLS environment variable expects SSL certificates at /ssl/cert.pem and /ssl/key.pem. However, the /ssl volume mount is configured as an emptyDir, meaning these certificate files won't be present. This mismatch will prevent Vaultwarden from properly enabling SSL/TLS.
2 participants
Add Kubernetes manifests and deployment script for a privacy-focused self-hosting stack on K3s using Longhorn and NFS storage.
This PR delivers a comprehensive set of Kubernetes YAMLs, a deployment script, and detailed documentation to set up various self-hosted privacy-focused services (e.g., Pi-hole, Nextcloud, Immich, Vaultwarden, WireGuard) on a K3s cluster. The services were identified and added iteratively based on user requests, drawing inspiration from an XDA Developers article.