feat(#785): allow other namespaces

Updated helm-chart and scripts to allow to deploy
ainari in other namespaces than the default namespace.

Signed-off-by: Tobias Anker <tobias.anker@kitsunemimi.moe>

Author: kitsudaiki

.secrets.baseline

@@ -147,7 +147,7 @@
         "filename": "deploy/k8s/ainari/templates/dashboard/dashboard-certificate.yaml",
         "hashed_secret": "387096ca171f7ddf839bfa51b70c17c1c790d2d2",
         "is_verified": false,
-        "line_number": 6
+        "line_number": 20
       }
     ],
     "deploy/k8s/ainari/templates/dashboard/dashboard-deployment.yaml": [
@@ -156,7 +156,7 @@
         "filename": "deploy/k8s/ainari/templates/dashboard/dashboard-deployment.yaml",
         "hashed_secret": "387096ca171f7ddf839bfa51b70c17c1c790d2d2",
         "is_verified": false,
-        "line_number": 65
+        "line_number": 79
       }
     ],
     "deploy/k8s/ainari/templates/hanami/hanami-certificate.yaml": [
@@ -165,7 +165,7 @@
         "filename": "deploy/k8s/ainari/templates/hanami/hanami-certificate.yaml",
         "hashed_secret": "a1b78300299f72872366d7a0c32a5f19512c9d32",
         "is_verified": false,
-        "line_number": 6
+        "line_number": 20
       }
     ],
     "deploy/k8s/ainari/templates/hanami/hanami-deployment.yaml": [
@@ -174,7 +174,7 @@
         "filename": "deploy/k8s/ainari/templates/hanami/hanami-deployment.yaml",
         "hashed_secret": "a1b78300299f72872366d7a0c32a5f19512c9d32",
         "is_verified": false,
-        "line_number": 82
+        "line_number": 96
       }
     ],
     "deploy/k8s/ainari/templates/internal-api-key-secret.yaml": [
@@ -183,7 +183,7 @@
         "filename": "deploy/k8s/ainari/templates/internal-api-key-secret.yaml",
         "hashed_secret": "4bd5d8c8ea23b9df9875444c45a4c044026409b6",
         "is_verified": false,
-        "line_number": 7
+        "line_number": 21
       }
     ],
     "deploy/k8s/ainari/templates/miko/miko-certificate.yaml": [
@@ -192,7 +192,7 @@
         "filename": "deploy/k8s/ainari/templates/miko/miko-certificate.yaml",
         "hashed_secret": "298bddaea9b4590f81a8c8c5629e7a6417415c64",
         "is_verified": false,
-        "line_number": 6
+        "line_number": 20
       }
     ],
     "deploy/k8s/ainari/templates/miko/miko-deployment.yaml": [
@@ -201,14 +201,14 @@
         "filename": "deploy/k8s/ainari/templates/miko/miko-deployment.yaml",
         "hashed_secret": "a8fd869cf678cfd350b2aa8fb2bc4e030c75e11d",
         "is_verified": false,
-        "line_number": 66
+        "line_number": 80
       },
       {
         "type": "Secret Keyword",
         "filename": "deploy/k8s/ainari/templates/miko/miko-deployment.yaml",
         "hashed_secret": "298bddaea9b4590f81a8c8c5629e7a6417415c64",
         "is_verified": false,
-        "line_number": 72
+        "line_number": 86
       }
     ],
     "deploy/k8s/ainari/templates/omamori/omamori-certificate.yaml": [
@@ -217,7 +217,7 @@
         "filename": "deploy/k8s/ainari/templates/omamori/omamori-certificate.yaml",
         "hashed_secret": "b42d97659f427e4287f30f0cd8bdc2ac5d3b10b5",
         "is_verified": false,
-        "line_number": 6
+        "line_number": 20
       }
     ],
     "deploy/k8s/ainari/templates/omamori/omamori-config.yaml": [
@@ -226,7 +226,7 @@
         "filename": "deploy/k8s/ainari/templates/omamori/omamori-config.yaml",
         "hashed_secret": "88066d49d453bb7bb3cefca34e9d5d9b08a0dca8",
         "is_verified": false,
-        "line_number": 5
+        "line_number": 19
       }
     ],
     "deploy/k8s/ainari/templates/omamori/omamori-deployment.yaml": [
@@ -235,16 +235,16 @@
         "filename": "deploy/k8s/ainari/templates/omamori/omamori-deployment.yaml",
         "hashed_secret": "b42d97659f427e4287f30f0cd8bdc2ac5d3b10b5",
         "is_verified": false,
-        "line_number": 77
+        "line_number": 91
       }
     ],
-    "deploy/k8s/ainari/templates/onsen/onsen-deployment.yaml": [
+    "deploy/k8s/ainari/templates/onsen/onsen-statefulset.yaml": [
       {
         "type": "Secret Keyword",
-        "filename": "deploy/k8s/ainari/templates/onsen/onsen-deployment.yaml",
+        "filename": "deploy/k8s/ainari/templates/onsen/onsen-statefulset.yaml",
         "hashed_secret": "a191d9cb43e3f682b350dcdc74b2167ff78ed3b4",
         "is_verified": false,
-        "line_number": 80
+        "line_number": 94
       }
     ],
     "deploy/k8s/ainari/templates/ryokan/ryokan-certificate.yaml": [
@@ -253,7 +253,7 @@
         "filename": "deploy/k8s/ainari/templates/ryokan/ryokan-certificate.yaml",
         "hashed_secret": "04f5ffaec2d0437e26b1e224de6915e15247989f",
         "is_verified": false,
-        "line_number": 6
+        "line_number": 20
       }
     ],
     "deploy/k8s/ainari/templates/ryokan/ryokan-deployment.yaml": [
@@ -262,14 +262,14 @@
         "filename": "deploy/k8s/ainari/templates/ryokan/ryokan-deployment.yaml",
         "hashed_secret": "04f5ffaec2d0437e26b1e224de6915e15247989f",
         "is_verified": false,
-        "line_number": 94
+        "line_number": 108
       },
       {
         "type": "Secret Keyword",
         "filename": "deploy/k8s/ainari/templates/ryokan/ryokan-deployment.yaml",
         "hashed_secret": "8ecbfb09891f75ade7c286346fe355113e680af7",
         "is_verified": false,
-        "line_number": 100
+        "line_number": 114
       }
     ],
     "deploy/k8s/ainari/templates/sakura/sakura-certificate.yaml": [
@@ -278,23 +278,23 @@
         "filename": "deploy/k8s/ainari/templates/sakura/sakura-certificate.yaml",
         "hashed_secret": "1db3a3e51c405b71091fd7885f714805187b5785",
         "is_verified": false,
-        "line_number": 6
+        "line_number": 20
       }
     ],
-    "deploy/k8s/ainari/templates/sakura/sakura-deployment.yaml": [
+    "deploy/k8s/ainari/templates/sakura/sakura-statefulset.yaml": [
       {
         "type": "Secret Keyword",
-        "filename": "deploy/k8s/ainari/templates/sakura/sakura-deployment.yaml",
+        "filename": "deploy/k8s/ainari/templates/sakura/sakura-statefulset.yaml",
         "hashed_secret": "1db3a3e51c405b71091fd7885f714805187b5785",
         "is_verified": false,
-        "line_number": 90
+        "line_number": 130
       },
       {
         "type": "Secret Keyword",
-        "filename": "deploy/k8s/ainari/templates/sakura/sakura-deployment.yaml",
+        "filename": "deploy/k8s/ainari/templates/sakura/sakura-statefulset.yaml",
         "hashed_secret": "845e1c68668309b563d8a17950b9529de8b3616e",
         "is_verified": false,
-        "line_number": 96
+        "line_number": 136
       }
     ],
     "deploy/k8s/ainari/templates/torii/torii-certificate.yaml": [
@@ -303,7 +303,7 @@
         "filename": "deploy/k8s/ainari/templates/torii/torii-certificate.yaml",
         "hashed_secret": "88f7f6dda5e81f2e7958ef4d21771d2c66f2351a",
         "is_verified": false,
-        "line_number": 6
+        "line_number": 20
       }
     ],
     "deploy/k8s/ainari/templates/torii/torii-deployment.yaml": [
@@ -312,7 +312,7 @@
         "filename": "deploy/k8s/ainari/templates/torii/torii-deployment.yaml",
         "hashed_secret": "88f7f6dda5e81f2e7958ef4d21771d2c66f2351a",
         "is_verified": false,
-        "line_number": 77
+        "line_number": 91
       }
     ],
     "deploy/k8s/wg_gen.py": [
@@ -321,21 +321,21 @@
         "filename": "deploy/k8s/wg_gen.py",
         "hashed_secret": "a191d9cb43e3f682b350dcdc74b2167ff78ed3b4",
         "is_verified": false,
-        "line_number": 36
+        "line_number": 37
       },
       {
         "type": "Secret Keyword",
         "filename": "deploy/k8s/wg_gen.py",
         "hashed_secret": "8ecbfb09891f75ade7c286346fe355113e680af7",
         "is_verified": false,
-        "line_number": 41
+        "line_number": 42
       },
       {
         "type": "Secret Keyword",
         "filename": "deploy/k8s/wg_gen.py",
         "hashed_secret": "845e1c68668309b563d8a17950b9529de8b3616e",
         "is_verified": false,
-        "line_number": 42
+        "line_number": 43
       }
     ],
     "docs/deployer/config/omamori_config.md": [
@@ -604,5 +604,5 @@
       }
     ]
   },
-  "generated_at": "2025-12-20T19:40:52Z"
+  "generated_at": "2026-01-04T15:26:24Z"
 }

deploy/k8s/ainari/templates/hanami/hanami-config.yaml

@@ -31,6 +31,6 @@ data:
     file_path = "/etc/ainari/hanami/hanami_db"
     
     [miko]
-    address = "https://miko-tls-service.default.svc.cluster.local:8443"
+    address = "https://miko-tls-service.{{ .Release.Namespace }}.svc.cluster.local:8443"
 
 kind: ConfigMap

deploy/k8s/ainari/templates/miko/miko-config.yaml

@@ -35,18 +35,18 @@ data:
 
     [endpoints.hanami]
     public_address = "https://{{ .Values.hanami.api.domain }}:443"
-    internal_address = "https://hanami-tls-service.default.svc.cluster.local:8443"
+    internal_address = "https://hanami-tls-service.{{ .Release.Namespace }}.svc.cluster.local:8443"
 
     [endpoints.ryokan]
     public_address = "https://{{ .Values.ryokan.api.domain }}:443"
-    internal_address = "https://ryokan-tls-service.default.svc.cluster.local:8443"
+    internal_address = "https://ryokan-tls-service.{{ .Release.Namespace }}.svc.cluster.local:8443"
 
     [endpoints.torii]
     public_address = "https://{{ .Values.torii.api.domain }}:443"
-    internal_address = "https://torii-tls-service.default.svc.cluster.local:8443"
+    internal_address = "https://torii-tls-service.{{ .Release.Namespace }}.svc.cluster.local:8443"
 
     [endpoints.omamori]
     public_address = "https://{{ .Values.omamori.api.domain }}:443"
-    internal_address = "https://omamori-tls-service.default.svc.cluster.local:8443"
+    internal_address = "https://omamori-tls-service.{{ .Release.Namespace }}.svc.cluster.local:8443"
 
 kind: ConfigMap

deploy/k8s/ainari/templates/miko/miko-nginx-config.yaml

@@ -96,14 +96,14 @@ data:
         {
             listen 80;
             server_tokens off;
-            server_name miko-tls-service.default.svc.cluster.local";
+            server_name miko-tls-service.{{ .Release.Namespace }}.svc.cluster.local";
             return 301 https://$host$request_uri;
         }
 
         server
         {
             server_tokens off;
-            server_name miko-tls-service.default.svc.cluster.local";
+            server_name miko-tls-service.{{ .Release.Namespace }}.svc.cluster.local";
 
             listen 8443 ssl;
             listen [::]:8443 ssl;
@@ -155,7 +155,7 @@ data:
 
                 proxy_pass http://127.0.0.1:11417/;
                 proxy_read_timeout 180;
-                proxy_redirect http://127.0.0.1:11417 https://miko-tls-service.default.svc.cluster.local";
+                proxy_redirect http://127.0.0.1:11417 https://miko-tls-service.{{ .Release.Namespace }}.svc.cluster.local";
             }
         }
     }

deploy/k8s/ainari/templates/omamori/omamori-config.yaml

@@ -31,7 +31,7 @@ data:
     file_path = "/etc/ainari/omamori/omamori_db"
     
     [miko]
-    address = "https://miko-tls-service.default.svc.cluster.local:8443"
+    address = "https://miko-tls-service.{{ .Release.Namespace }}.svc.cluster.local:8443"
 
     [simple_crypto]
     key_b64 = "q9vN4CjOQm5wKzyzjZtS7t4oQp8oQK1JvU5xgq8vFzE="

deploy/k8s/ainari/templates/onsen/onsen-config.yaml

@@ -26,6 +26,6 @@ data:
     location = "/tmp/onsen"
     
     [miko]
-    address = "https://miko-tls-service.default.svc.cluster.local:8443"
+    address = "https://miko-tls-service.{{ .Release.Namespace }}.svc.cluster.local:8443"
     
 kind: ConfigMap

deploy/k8s/ainari/templates/ryokan/ryokan-config.yaml

@@ -34,6 +34,6 @@ data:
     file_path = "/etc/ainari/ryokan/ryokan_db"
     
     [miko]
-    address = "https://miko-tls-service.default.svc.cluster.local:8443"
+    address = "https://miko-tls-service.{{ .Release.Namespace }}.svc.cluster.local:8443"
 
 kind: ConfigMap

deploy/k8s/ainari/templates/sakura/sakura-config.yaml

@@ -20,7 +20,7 @@ data:
     debug = true
     log_path = ""
     skip_tls_verification = true
-    address = "https://sakura-tls-service.default.svc.cluster.local:8443"
+    address = "https://sakura-tls-service.{{ .Release.Namespace }}.svc.cluster.local:8443"
 
     [processing]
     max_number_of_threads = {{ .Values.sakura.processing.max_number_of_threads }}
@@ -38,6 +38,6 @@ data:
     file_path = "/etc/ainari/sakura/sakura_db"
     
     [miko]
-    address = "https://miko-tls-service.default.svc.cluster.local:8443"
+    address = "https://miko-tls-service.{{ .Release.Namespace }}.svc.cluster.local:8443"
 
 kind: ConfigMap

deploy/k8s/ainari/templates/torii/torii-config.yaml

@@ -31,7 +31,7 @@ data:
     file_path = "/etc/ainari/torii/torii_db"
     
     [miko]
-    address = "https://miko-tls-service.default.svc.cluster.local:8443"
+    address = "https://miko-tls-service.{{ .Release.Namespace }}.svc.cluster.local:8443"
 
     [ports]
     min_port = {{ .Values.torii.port_range.start }}

deploy/k8s/wg_gen.py

@@ -11,10 +11,11 @@
   - pip install jinja2
 
 Usage:
-  python wg_k8s_gen.py
-  (edit the CONFIG section below for endpoints, clients, namespace, etc.)
+  python wg_k8s_gen.py --namespace $NAMESPACE
+  (edit the CONFIG section below for endpoints, clients, etc.)
 """
 
+import argparse
 import subprocess
 import sys
 from jinja2 import Template
@@ -23,7 +24,7 @@
 # CONFIG (edit as needed)
 # ----------------------------
 NAMESPACE = "default"
-SERVER_ENDPOINT = "wg-onsen.default.svc.cluster.local:51820"  # used in client Peer Endpoint
+SERVER_ENDPOINT = f"wg-onsen.{NAMESPACE}.svc.cluster.local:51820"  # used in client Peer Endpoint
 NETWORK = "10.10.0."
 NETWORK_MASK = "/24"
 
@@ -121,6 +122,13 @@ def k8s_create_secret_from_string(secret_name: str, key_name: str, content: str,
 # Main flow
 # ----------------------------
 def main():
+    parser = argparse.ArgumentParser()
+    parser.add_argument('--namespace', dest='namespace', type=str)
+    args = parser.parse_args()
+
+    NAMESPACE = args.namespace
+    SERVER_ENDPOINT = f"wg-onsen.{NAMESPACE}.svc.cluster.local:51820"
+
     # 1) Generate server keypair
     print("Generating server keypair...")
     server_priv, server_pub = gen_keypair()