# yaml-language-server: $schema=../../schemas/cluster.json
version:
  kubernetes: 1.34.1
  talos: 1.11.3
clusterEnv: staging
controlPlaneIp: 192.168.1.100
secretsFile: testing/secrets.yaml
nodes:
  - testing/talos-vm

base:
  kernelArgs:
    - talos.platform=metal
    - console=tty0
    - init_on_alloc=1
    - init_on_free=1
    - slab_nomerge
    - pti=on
    - consoleblank=0
    - nvme_core.io_timeout=4294967295
    - printk.devkmsg=on
    - selinux=1
    - lockdown=confidentiality
  patches:
    all:
      - system/hostname.yaml
      - system/install-disk.yaml
      - system/network.yaml
      - networking/vip.yaml
      - networking/tailscale.yaml
      - networking/cilium.yaml
      - spegel.yaml
      - storage/longhorn.yaml
      - storage/longhorn/user-volume.yaml
      - storage/local-path-provisioner/user-volume.yaml
      - storage/limit-ephemeral.yaml
      - metrics/all.yaml
    controlPlane:
      - system/allow-control-plane-workloads.yaml
      - sops.yaml
      - flux/cluster-variables.yaml
      - metrics/control-plane.yaml
      - networking/gateway-api.yaml
default:
  arch: amd64
  schematic: default.yaml
  network:
    interface: enp1s0
    netmask: 255.255.252.0
    gateway: 192.168.1.1
    dns:
      - 1.1.1.1
      - 8.8.8.8
    tailscale:
      server: https://headscale.huizinga.dev
      authKey:
        file: tailscale.key
      advertiseRoutes: true
  ntp: nl.pool.ntp.org
  sops:
    file: testing/age.key
  install:
    auto: true
    disk: /dev/vda