diff --git a/kubernetes/apps/default/github-pushover-notifier/app/config/config.yaml b/kubernetes/apps/default/github-pushover-notifier/app/config/config.yaml new file mode 100644 index 000000000..b92d5351f --- /dev/null +++ b/kubernetes/apps/default/github-pushover-notifier/app/config/config.yaml @@ -0,0 +1,2 @@ +repositories: + - siderolabs/talos diff --git a/kubernetes/apps/default/github-pushover-notifier/app/helmrelease.yaml b/kubernetes/apps/default/github-pushover-notifier/app/helmrelease.yaml new file mode 100644 index 000000000..0a6dc3ff3 --- /dev/null +++ b/kubernetes/apps/default/github-pushover-notifier/app/helmrelease.yaml @@ -0,0 +1,56 @@ +--- +# yaml-language-server: $schema=https://kubernetes-schemas.devbu.io/helmrelease_v2beta1.json +apiVersion: helm.toolkit.fluxcd.io/v2beta1 +kind: HelmRelease +metadata: + name: &app github-pushover-notifier + namespace: default +spec: + interval: 15m + chart: + spec: + chart: app-template + version: 1.3.2 + sourceRef: + kind: HelmRepository + name: bjw-s + namespace: flux-system + maxHistory: 3 + install: + createNamespace: true + remediation: + retries: 3 + upgrade: + cleanupOnFail: true + remediation: + retries: 3 + uninstall: + keepHistory: false + values: + controller: + replicas: 1 + strategy: Recreate + image: + repository: ghcr.io/auricom/github-pushover-notifier + tag: rolling@sha256:5b9f1ba592ec1bb0b964c3e1f01f37f6d8cd2ed967c23b0db97bfccc7470b820 + service: + main: + enabled: false + envFrom: + - secretRef: + name: github-pushover-notifier-secret + podAnnotations: + reloader.stakater.com/auto: "true" + resources: + requests: + cpu: 50m + memory: 250Mi + limits: + memory: 250Mi + persistence: + config: + enabled: true + type: configMap + name: github-pushover-notifier-configmap + mountPath: /app/config.yaml + subPath: config.yaml diff --git a/kubernetes/apps/default/github-pushover-notifier/app/kustomization.yaml b/kubernetes/apps/default/github-pushover-notifier/app/kustomization.yaml new file mode 100644 index 000000000..b7d8004d7 --- /dev/null +++ b/kubernetes/apps/default/github-pushover-notifier/app/kustomization.yaml @@ -0,0 +1,14 @@ +--- +# yaml-language-server: $schema=https://json.schemastore.org/kustomization +apiVersion: kustomize.config.k8s.io/v1beta1 +kind: Kustomization +namespace: default +resources: + - ./helmrelease.yaml + - ./secret.sops.yaml +configMapGenerator: + - name: github-pushover-notifier-configmap + files: + - ./config/config.yaml +generatorOptions: + disableNameSuffixHash: true diff --git a/kubernetes/apps/default/github-pushover-notifier/app/secret.sops.yaml b/kubernetes/apps/default/github-pushover-notifier/app/secret.sops.yaml new file mode 100644 index 000000000..bc9200f4c --- /dev/null +++ b/kubernetes/apps/default/github-pushover-notifier/app/secret.sops.yaml @@ -0,0 +1,30 @@ +# yamllint disable +apiVersion: v1 +kind: Secret +metadata: + name: github-pushover-notifier-secret + namespace: default +type: Opaque +stringData: + PUSHOVER_APP_TOKEN: ENC[AES256_GCM,data:vZCC9d3sOz/FslZ694zFWNhApc+TF/V+SIjT+HQH,iv:sbil13a6FnKX6zZOmfNb+e+nQak56xCkr3IETl26E1c=,tag:UzJEk2XvG/8yXqVjy0JeMA==,type:str] + PUSHOVER_USER_KEY: ENC[AES256_GCM,data:zgoGVo8k7xjuT0+W5AyAkGtJpmTkplW3wmAWqZrY,iv:8ZYZT1I7EOK2mfvjSY+4RfRHQeczYmxihfDHcjRpUSI=,tag:Vkq+ny1eVmAOHmBiAutuNg==,type:str] +sops: + kms: [] + gcp_kms: [] + azure_kv: [] + hc_vault: [] + age: + - recipient: age1hhurqwmfvl9m3vh3hk8urulfzcdsrep2ax2neazqt435yhpamu3qj20asg + enc: | + -----BEGIN AGE ENCRYPTED FILE----- + YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSBJaU16anJNV2pBZmxPR3h2 + bWREUnpjcTFvd05ZQ2E4VVBDdm1FL2k4WEYwCkdQSStTNWtpdjNkUW51WS9MekdC + VkpTUUFjSjY2a1JMOUtqOVh5M0JRR2sKLS0tIDRmcWpJSEVvaUp4U1lsaTZYZGNw + OGVKWU0zNUZJSFh4aFJxQWFsYm1VeFkKaDeI/hl7z0Qh8t5W39Kxu9ert1dt4xo+ + LX+MjpVqxiZNcfwROD4bkWeQSN+VsxoGOOyj4L15BlggNnlg+L7Hww== + -----END AGE ENCRYPTED FILE----- + lastmodified: "2023-03-15T23:05:03Z" + mac: ENC[AES256_GCM,data:GHQ9hgNkDb5vJw+CHrUbnRn2B3xB9+8wG5xP9k4flvl2AWCS1m+y/Mo9pjUcxyTGBvzY1wifQo0QSwqRZ4oOGKzV2jTFKpzgZ6d0G8SvIOySJP3fPxUAc0O/72zVZygovqy4guopORPSQn/Z5TNgAMwRBFZAI52TUUHHsJA/X5I=,iv:kLPgfAR7TgbtuxN3n8a1eiq8lCZWZ5k/UOXETGvbDPU=,tag:4jP4MLnTJBcznqnq/+VJpw==,type:str] + pgp: [] + encrypted_regex: ^(data|stringData)$ + version: 3.7.3 diff --git a/kubernetes/apps/default/github-pushover-notifier/ks.yaml b/kubernetes/apps/default/github-pushover-notifier/ks.yaml new file mode 100644 index 000000000..019dc044d --- /dev/null +++ b/kubernetes/apps/default/github-pushover-notifier/ks.yaml @@ -0,0 +1,23 @@ +--- +# yaml-language-server: $schema=https://kubernetes-schemas.devbu.io/kustomization_v1beta2.json +apiVersion: kustomize.toolkit.fluxcd.io/v1beta2 +kind: Kustomization +metadata: + name: cluster-apps-github-pushover-notifier + namespace: flux-system + labels: + substitution.flux.home.arpa/enabled: "true" +spec: + path: ./kubernetes/apps/default/github-pushover-notifier/app + prune: true + sourceRef: + kind: GitRepository + name: home-ops-kubernetes + healthChecks: + - apiVersion: helm.toolkit.fluxcd.io/v2beta1 + kind: HelmRelease + name: github-pushover-notifier + namespace: default + interval: 30m + retryInterval: 1m + timeout: 3m diff --git a/kubernetes/apps/default/kustomization.yaml b/kubernetes/apps/default/kustomization.yaml index 101c405ca..3277320db 100644 --- a/kubernetes/apps/default/kustomization.yaml +++ b/kubernetes/apps/default/kustomization.yaml @@ -17,6 +17,7 @@ resources: - ./flood/ks.yaml - ./freshrss/ks.yaml - ./gitea/ks.yaml + - ./github-pushover-notifier/ks.yaml - ./glauth/ks.yaml - ./hajimari/ks.yaml - ./home-assistant/ks.yaml