infrastructure/kustomization.yaml

apiVersion: kustomize.config.k8s.io/v1beta1
kind: Kustomization

resources:
# Core infrastructure
- providers.yaml
- provider-configs.yaml
- namespaces.yaml
- external-dns.yaml
- ambassador-listeners.yaml

# Certificate management
- cert-manager/

# Authentication system
- auth/
- keycloak-config.yaml

# Secret management
- sealed-secrets.yaml

# Applications
- forgejo-k8s.yaml
- pomerium-allinone.yaml
- pomerium-dns.yaml
- vaultwarden.yaml
- keycloak-nge6-dns.yaml

# Argo Workflows
- argo-workflows/

# Exclude problematic directories:
# - flux/ (managed by Flux itself)
# - pomerium/ (Helm chart)
# - gitea/ (legacy, replaced by forgejo)
# - bin/ (binaries)
# - cookies.txt, DEPLOYMENT.md (not Kubernetes manifests)