From 643572e7ebb3d6edb5b78079832559b973d5e15b Mon Sep 17 00:00:00 2001
From: titver968 <vermesan@hotmail.com>
Date: Tue, 21 Oct 2025 15:54:35 +0200
Subject: [PATCH] plane fix

---
 argocd/apps/seaweedfs/seaweedfs.yaml | 149 +++++++++++++++++----------
 1 file changed, 97 insertions(+), 52 deletions(-)

diff --git a/argocd/apps/seaweedfs/seaweedfs.yaml b/argocd/apps/seaweedfs/seaweedfs.yaml
index aa5d95b..399ce7b 100644
--- a/argocd/apps/seaweedfs/seaweedfs.yaml
+++ b/argocd/apps/seaweedfs/seaweedfs.yaml
@@ -1,67 +1,109 @@
 apiVersion: argoproj.io/v1alpha1
 kind: Application
 metadata:
-  name: seaweedfs
+  name: plane
   finalizers:
-  - resources-finalizer.argocd.argoproj.io
+    - resources-finalizer.argocd.argoproj.io
 spec:
+  # Health Check für Worker überspringen (temporär)
+  ignoreDifferences:
+    # PVCs - creationTimestamp und Status ignorieren
+    - group: ""
+      kind: PersistentVolumeClaim
+      jsonPointers:
+        - /metadata/creationTimestamp
+        - /status
+    
+    # StatefulSets - alle volumeClaimTemplates komplett ignorieren
+    - group: apps
+      kind: StatefulSet
+      jsonPointers:
+        - /spec/volumeClaimTemplates
+        - /status
+        - /spec/replicas
+    
+    # Worker Deployment - Replica Status ignorieren
+    - group: apps
+      kind: Deployment
+      name: plane-worker-wl
+      jsonPointers:
+        - /status
+        
   project: default
   source:
-    repoURL: 'https://seaweedfs.github.io/seaweedfs/helm'
-    chart: seaweedfs
-    targetRevision: 4.0.393
+    repoURL: 'https://helm.plane.so/'
+    chart: 'plane-ce'
+    targetRevision: 1.3.1
     helm:
       values: |
-        master:
+        
+        ingress:
           enabled: true
+          appHost: "plane.innovation-hub-niedersachsen.de"
+          ingressClass: "traefik"
+          ingress_annotations:
+            cert-manager.io/cluster-issuer: lets-encrypt-staging
+            traefik.ingress.kubernetes.io/router.entrypoints: websecure
+        
+        ssl:
+          tls_secret_name: "plane-tls"
+          createIssuer: false
+          generateCerts: false
+        
+        minio:
+          local_setup: false
+        
+        env:
+          docstore_bucket: "plane-docstore"
+          doc_upload_size_limit: "5242880"
+          aws_access_key: "a0ccb47cc0994bf51ecd"
+          aws_secret_access_key: "0d54ee2f943f2a56b8cafc3afe9cb1e2f9fecac2"
+          aws_region: "eu-central-1"
+          aws_s3_endpoint_url: "https://sws3.innovation-hub-niedersachsen.de"
+          # Celery Worker Konfiguration - Reduziere Concurrency für Stabilität
+          CELERY_WORKER_CONCURRENCY: "4"
+          CELERY_WORKER_MAX_TASKS_PER_CHILD: "500"
+          CELERY_WORKER_MAX_MEMORY_PER_CHILD: "100000"
+        
+        # Worker-spezifische Einstellungen
+        worker:
+          # Reduziere Replicas falls zu viele Workers laufen
           replicas: 1
-
-        volume:
-          enabled: true
-          replicas: 1
-
-        filer:
-          enabled: true
-          replicas: 1
-
-        s3:
-          enabled: true
-          replicas: 1
-          port: 8333
-          httpsPort: 8433
-          enableAuth: true
-          existingConfigSecret: "admin-s3-secret"
-          ingress:
-            enabled: true
-            className: "traefik"
-            host: "sws3.innovation-hub-niedersachsen.de"
-            # additional ingress annotations for the s3 endpoint
-            annotations:
-              kubernetes.io/ingress.class: "traefik"
-              traefik.ingress.kubernetes.io/router.entrypoints: "websecure"
-              traefik.ingress.kubernetes.io/router.tls: "true"
-              cert-manager.io/cluster-issuer: "lets-encrypt"
-              # traefik.ingress.kubernetes.io/headers.customRequestHeaders: |
-              #  X-Forwarded-Proto = https
-              #traefik.ingress.kubernetes.io/headers.customResponseHeaders: |
-              #  Access-Control-Allow-Origin: "*"
-              #  Access-Control-Allow-Methods: "GET, OPTIONS, PUT, POST, DELETE"
-              #  Access-Control-Allow-Headers: "DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range"
-              #  Access-Control-Expose-Headers: "Content-Length,Content-Range"
-              #  Referrer-Policy: no-referrer-when-downgrade
-            hosts:
-              - host: "sws3.innovation-hub-niedersachsen.de"
-                paths:
-                  - path: /
-                    pathType: Prefix
-            tls:
-              - secretName: "sws3.innovation-hub-niedersachsen.de-tls"
-                hosts:
-                  - "sws3.innovation-hub-niedersachsen.de"
-                  
+          # Celery Concurrency (Anzahl paralleler Worker-Prozesse)
+          concurrency: 4
+          resources:
+            requests:
+              memory: "512Mi"
+              cpu: "200m"
+            limits:
+              memory: "2Gi"
+              cpu: "1000m"
+          # Exec-basierte Probes für Celery Worker
+          readinessProbe:
+            exec:
+              command:
+                - /bin/sh
+                - -c
+                - celery -A plane inspect ping -d celery@$HOSTNAME
+            initialDelaySeconds: 30
+            periodSeconds: 30
+            timeoutSeconds: 10
+            failureThreshold: 3
+          livenessProbe:
+            exec:
+              command:
+                - /bin/sh
+                - -c
+                - celery -A plane inspect ping -d celery@$HOSTNAME
+            initialDelaySeconds: 60
+            periodSeconds: 60
+            timeoutSeconds: 10
+            failureThreshold: 3
+          
   destination:
     server: 'https://kubernetes.default.svc'
-    namespace: seaweedfs
+    namespace: plane
+    
   syncPolicy:
     managedNamespaceMetadata:
       labels:
@@ -70,4 +112,7 @@ spec:
       selfHeal: true
       prune: true
     syncOptions:
-      - CreateNamespace=true
\ No newline at end of file
+      - CreateNamespace=true
+      - ServerSideApply=true
+      - PruneLast=true
+      - RespectIgnoreDifferences=true
\ No newline at end of file