From 8655d2fb415fd003a5a02649117f438cb9d641be Mon Sep 17 00:00:00 2001
From: "copilot-swe-agent[bot]" <198982749+Copilot@users.noreply.github.com>
Date: Thu, 1 Jan 2026 20:11:00 +0000
Subject: [PATCH 1/2] Initial plan


From c2ff4fbb97a933f9f1357f7cead3399451452aa9 Mon Sep 17 00:00:00 2001
From: "copilot-swe-agent[bot]" <198982749+Copilot@users.noreply.github.com>
Date: Thu, 1 Jan 2026 20:15:24 +0000
Subject: [PATCH 2/2] Fix all Tailscale ingress backends and split Crafty
 UI/game ports

- Remove spec.rules[].host from all Tailscale ingresses (operator requirement)
- Keep TLS shortnames intact for hostname assignment
- Change Crafty Service hostname to crafty-controller-ports to avoid collision
- Fixed ingresses: crafty, paperless, homepage, omada, alloy, netbox, frigate

Co-authored-by: SRF-Audio <16975040+SRF-Audio@users.noreply.github.com>
---
 .../frigate_deploy/templates/frigate-homepage-ingress.yml.j2 | 3 +--
 .../netbox_deploy/templates/netbox-homepage-ingress.yml.j2   | 3 +--
 argocd/apps/observability/alloy.yml                          | 5 ++---
 argocd/apps/platform/homepage.yml                            | 3 +--
 argocd/apps/platform/omada-controller.yml                    | 3 +--
 k8s/crafty_controller/ingress.yml                            | 3 +--
 k8s/crafty_controller/service.yml                            | 2 +-
 k8s/paperless_ngx/ingress.yml                                | 3 +--
 8 files changed, 9 insertions(+), 16 deletions(-)

diff --git a/ansible/roles/frigate_deploy/templates/frigate-homepage-ingress.yml.j2 b/ansible/roles/frigate_deploy/templates/frigate-homepage-ingress.yml.j2
index cdfef7ad..30e261d9 100644
--- a/ansible/roles/frigate_deploy/templates/frigate-homepage-ingress.yml.j2
+++ b/ansible/roles/frigate_deploy/templates/frigate-homepage-ingress.yml.j2
@@ -16,8 +16,7 @@ metadata:
 spec:
   ingressClassName: tailscale
   rules:
-    - host: "{{ frigate_deploy_hostname }}"
-      http:
+    - http:
         paths:
           - path: /
             pathType: Prefix
diff --git a/ansible/roles/netbox_deploy/templates/netbox-homepage-ingress.yml.j2 b/ansible/roles/netbox_deploy/templates/netbox-homepage-ingress.yml.j2
index cd05dddc..9d67c5d9 100644
--- a/ansible/roles/netbox_deploy/templates/netbox-homepage-ingress.yml.j2
+++ b/ansible/roles/netbox_deploy/templates/netbox-homepage-ingress.yml.j2
@@ -12,8 +12,7 @@ metadata:
 spec:
   ingressClassName: tailscale
   rules:
-    - host: netbox
-      http:
+    - http:
         paths:
           - path: /
             pathType: Prefix
diff --git a/argocd/apps/observability/alloy.yml b/argocd/apps/observability/alloy.yml
index bc2e5ae2..10795cb4 100644
--- a/argocd/apps/observability/alloy.yml
+++ b/argocd/apps/observability/alloy.yml
@@ -189,11 +189,10 @@ spec:
             gethomepage.dev/description: "Telemetry collection agent"
             gethomepage.dev/group: "Observability"
             gethomepage.dev/icon: "grafana.png"
-          hosts:
-            - alloy.rohu-shark.ts.net
+          hosts: []
           tls:
             - hosts:
-                - alloy.rohu-shark.ts.net
+                - alloy
 
   destination:
     server: https://kubernetes.default.svc
diff --git a/argocd/apps/platform/homepage.yml b/argocd/apps/platform/homepage.yml
index a9524f4d..b9ef5c98 100644
--- a/argocd/apps/platform/homepage.yml
+++ b/argocd/apps/platform/homepage.yml
@@ -91,8 +91,7 @@ spec:
               gethomepage.dev/group: "Platform"
               gethomepage.dev/icon: "homepage.png"
             hosts:
-              - host: homepage.rohu-shark.ts.net
-                paths:
+              - paths:
                   - path: /
                     pathType: Prefix
             tls:
diff --git a/argocd/apps/platform/omada-controller.yml b/argocd/apps/platform/omada-controller.yml
index ec10dd83..7ca5d426 100644
--- a/argocd/apps/platform/omada-controller.yml
+++ b/argocd/apps/platform/omada-controller.yml
@@ -49,8 +49,7 @@ spec:
             gethomepage.dev/group: "Platform"
             gethomepage.dev/icon: "omada.png"
           hosts:
-            - host: omada.rohu-shark.ts.net
-              paths:
+            - paths:
                 - path: /
                   pathType: Prefix
           tls:
diff --git a/k8s/crafty_controller/ingress.yml b/k8s/crafty_controller/ingress.yml
index f5696099..7f298fd0 100644
--- a/k8s/crafty_controller/ingress.yml
+++ b/k8s/crafty_controller/ingress.yml
@@ -16,8 +16,7 @@ metadata:
 spec:
   ingressClassName: tailscale
   rules:
-    - host: crafty-controller.rohu-shark.ts.net
-      http:
+    - http:
         paths:
           - path: /
             pathType: Prefix
diff --git a/k8s/crafty_controller/service.yml b/k8s/crafty_controller/service.yml
index ab2e0665..c5675b99 100644
--- a/k8s/crafty_controller/service.yml
+++ b/k8s/crafty_controller/service.yml
@@ -8,7 +8,7 @@ metadata:
     app: crafty-controller
   annotations:
     tailscale.com/expose: "true"
-    tailscale.com/hostname: "crafty-controller"
+    tailscale.com/hostname: "crafty-controller-ports"
     tailscale.com/tags: "tag:k8s,tag:server-games"
     coachlight.io/tailscale-exposure: "service-nonweb"
 spec:
diff --git a/k8s/paperless_ngx/ingress.yml b/k8s/paperless_ngx/ingress.yml
index bca09ad3..8c70754b 100644
--- a/k8s/paperless_ngx/ingress.yml
+++ b/k8s/paperless_ngx/ingress.yml
@@ -20,8 +20,7 @@ metadata:
 spec:
   ingressClassName: tailscale
   rules:
-    - host: paperless.rohu-shark.ts.net
-      http:
+    - http:
         paths:
           - path: /
             pathType: Prefix