Stop Outsourcing Identity: A Production Guide to Keycloak on Kubernetes
Feb 25 · 6 min read · Introduction: Take Back Control of Your Identity Over the last few months, we've built a platform that rivals small enterprise setups. We have established a resilient networking layer with automated T
Join discussion
The Path to Automated TLS - Part 3 Automated Certificates with Cert-Manager
Feb 6 · 6 min read · Introduction: Locking it Down - From HTTP to HTTPS In the preceding chapters, we established the networking foundation for a production-grade bare-metal Kubernetes platform. In Chapter 1, we implemented MetalLB to provide stable LoadBalancer IPs, so...
Join discussion
The Path to Automated TLS - Part 2 The Gateway to the Cluster - Traefik and Technitium
Feb 4 · 8 min read · Introduction: From IP Address to Intelligent Gateway In Chapter 1, we laid the foundational pillar by solving the bare-metal IP address problem with MetalLB. Our test NGINX service successfully acquired the IP 10.20.0.90, proving our cluster can now ...
Join discussion
The Path to Automated TLS - Part 1 Bridging the Gap - Networking with MetalLB
Feb 2 · 6 min read · The Path to Automated TLS: A Three-Part Guide The path to achieving fully automated, production-grade TLS on a bare-metal Kubernetes homelab is a rewarding but detailed journey. To do it justice, I've structured this guide as a three-part series... a...
Join discussion
From Vault to Pod: Automating Kubernetes Secrets with 1Password and External Secrets
Jan 23 · 6 min read · After building a Kubernetes cluster and setting up Argo CD to manage its configuration, what's the very next thing you should install? For me, both in production and in my homelab, the answer is always the same: External Secrets Operator. This post e...
Join discussion
Stop Drifting: How to Lock Down Your Cilium CNI with Argo CD
Jan 18 · 6 min read · In my last post, Stop Using the Wrong CNI: Why Your Homelab Deserves Cilium in 2026, we established a production-grade networking foundation for our Talos Kubernetes cluster. But a powerful CNI is only half the story. To truly manage our cluster like...
Join discussion
Stop Using the Wrong CNI: Why Your Homelab Deserves Cilium in 2026
Jan 11 · 6 min read · In my last post, The Four-Repo GitOps Structure for My Homelab Platform, I laid out the architectural blueprint for managing my homelab like a production environment. Building on the automation I detailed in my popular post, Need for Speed: Automatin...
Join discussion