Saturn Homelab Kubernetes Cluster

My personal homelab running on four Raspberry Pis, replacing cloud services with self-hosted alternatives. Saturn serves as the master node with three workers, using Longhorn distributed storage on the Pi 5s' NVMe drives.

Infrastructure

The cluster runs k3s with Traefik for ingress and automatic SSL via cert-manager. Authelia provides SSO across all services. Monitoring uses Prometheus, Grafana, and Loki. Two domains handle different use cases: vaporwav.in for public services and saturn.sol for internal tools.

Application Management

Applications use Helm charts with Kustomize for customizations. Generated manifests are committed to git for full deployment visibility. Each app follows a standard structure with values files, patches, and deployment scripts.

Security

Secrets are stored in Kubernetes with secure generation scripts. Two-factor auth protects infrastructure while user services use single-factor. All traffic is encrypted with automatic certificate management.

Goals

Reduce cloud dependence while maintaining reliability and learning infrastructure skills. The setup uses mature technologies in a maintainable way that one person can operate long-term.