From 436d29b1339a643669d1e1b9947d6c251d5ad513 Mon Sep 17 00:00:00 2001
From: auricom <github@xpander.eml.cc>
Date: Sun, 6 Dec 2020 19:20:45 +0100
Subject: [PATCH] add bitwardenrs

---
 cluster/data/_namespace.yaml              |  7 +++
 cluster/data/bitwardenrs.yaml             | 60 +++++++++++++++++++++++
 cluster/monitoring/syslog-ng.yaml         |  6 +--
 secrets/helmrelease-data-bitwardenrs.yaml | 36 ++++++++++++++
 4 files changed, 106 insertions(+), 3 deletions(-)
 create mode 100644 cluster/data/_namespace.yaml
 create mode 100644 cluster/data/bitwardenrs.yaml
 create mode 100644 secrets/helmrelease-data-bitwardenrs.yaml

diff --git a/cluster/data/_namespace.yaml b/cluster/data/_namespace.yaml
new file mode 100644
index 000000000..806f7497a
--- /dev/null
+++ b/cluster/data/_namespace.yaml
@@ -0,0 +1,7 @@
+---
+apiVersion: v1
+kind: Namespace
+metadata:
+  name: data
+  labels:
+    goldilocks.fairwinds.com/enabled: "true"
\ No newline at end of file
diff --git a/cluster/data/bitwardenrs.yaml b/cluster/data/bitwardenrs.yaml
new file mode 100644
index 000000000..e108b1176
--- /dev/null
+++ b/cluster/data/bitwardenrs.yaml
@@ -0,0 +1,60 @@
+---
+apiVersion: helm.toolkit.fluxcd.io/v2beta1
+kind: HelmRelease
+metadata:
+  name: bitwardenrs
+  namespace: data
+spec:
+  interval: 5m
+  chart:
+    spec:
+      # renovate: registryUrl=https://k8s-at-home.com/charts/
+      chart: bitwardenrs
+      version: 1.0.1
+      sourceRef:
+        kind: HelmRepository
+        name: k8s-at-home-charts
+        namespace: flux-system
+      interval: 5m
+  values:
+    image:
+      repository: bitwardenrs/server
+      tag: 1.17.0-alpine
+      pullPolicy: IfNotPresent
+    bitwardenrs:
+      domain: ""
+      signupsAllowed: false
+      websockets:
+        enabled: true
+        port: 3012
+      admin:
+        enabled: true
+        disableAdminToken: false
+        existingSecret:
+          enabled: false
+          name: ""
+          tokenKey: ""
+    podSecurityContext:
+      runAsUser: 568
+      runAsGroup: 568
+      fsGroup: 568
+    persistence:
+      type: statefulset
+      enabled: true
+      existingClaim: bitwardenrs-config
+  valuesFrom:
+  - kind: ConfigMap
+    name: helmrelease-data-bitwardenrs
+---
+apiVersion: v1
+kind: PersistentVolumeClaim
+metadata:
+  name: bitwardenrs-config
+  namespace: data
+spec:
+  accessModes:
+  - ReadWriteOnce
+  storageClassName: longhorn-backups
+  resources:
+    requests:
+      storage: 1Gi
diff --git a/cluster/monitoring/syslog-ng.yaml b/cluster/monitoring/syslog-ng.yaml
index b4acd4749..838457f81 100644
--- a/cluster/monitoring/syslog-ng.yaml
+++ b/cluster/monitoring/syslog-ng.yaml
@@ -79,9 +79,9 @@ data:
 apiVersion: v1
 kind: Service
 metadata:
-  annotations:
-    prometheus.io/probe: "true"
-    prometheus.io/protocol: tcp
+  #annotations:
+  #  prometheus.io/probe: "true"
+  #  prometheus.io/protocol: tcp
   labels:
     app.kubernetes.io/instance: syslog-ng
     app.kubernetes.io/name: syslog-ng
diff --git a/secrets/helmrelease-data-bitwardenrs.yaml b/secrets/helmrelease-data-bitwardenrs.yaml
new file mode 100644
index 000000000..1348c68b8
--- /dev/null
+++ b/secrets/helmrelease-data-bitwardenrs.yaml
@@ -0,0 +1,36 @@
+apiVersion: v1
+data:
+    values.yaml: ENC[AES256_GCM,data:mlRjGDV0wFMO89AMKTVhLk6JyvQjpX4NbKniUBfYDdI4No9grmS+OQIVUqojMitO3ahMOoX1VxTVx91oOGzZA5M8Hp48M3koaA+XkAYuYGIHsNnwhM9xEdoJ+psaFONq6MViqCn98cd+tCbxLgi2QJaFI3HsIVN6OeFsKgRPOyH8LHofzZnLYRhvb3rRd5ty7BvPG8vAiOcqIsyFXn2bBs/cGxtgjk3mopSww6TXY0xlpaCcbg1wDXrq5+/vveYaKWyXYvjyC7T9slxth6vKV1PEbXryWGUZfl9L0RXmx+j+swMkiJJYPrK5,iv:NzSZdkS08M4wCgXVOtqZpe0zmoPscTGdnYZZD3Alm4Q=,tag:5VgywBmb5JzLPb7jlUUxbA==,type:str]
+kind: ConfigMap
+metadata:
+    creationTimestamp: null
+    name: helmrelease-data-bitwardenrs
+    namespace: data
+sops:
+    kms: []
+    gcp_kms: []
+    azure_kv: []
+    hc_vault: []
+    lastmodified: '2020-12-06T18:20:41Z'
+    mac: ENC[AES256_GCM,data:n3GxY2mk4DR+QAkhVdeUUbwlQ9Y2TXl+5uUM2Y6fj8cwqLv2ZODjz/QkDY/FU+KfwZcJ21S4cJJLGHdcQcRbd5cPAjo2IHzqHeLt9qS3cpa96a3/OFo1yeVnPMVX7ZM8hHWu9/u9YoVBvd5RHhPw3VT/o0cSJfVrQFW8qDn8Mbg=,iv:PiE6mshvlPUV03XMiQDosZCQPd78iwFbOqb8hiPtND8=,tag:R4wAjkORXyuuUwADeVpBRA==,type:str]
+    pgp:
+    -   created_at: '2020-12-06T18:20:41Z'
+        enc: |
+            -----BEGIN PGP MESSAGE-----
+
+            hQGMA/JorPHm1g9XAQv/dVtMIABbvbGgrg5+FgeV5jV8S0T0X6BoNyZ1gC62gP3h
+            GKtKYdJ46IVuQ9zpyyW3kN3XV+wwSvMR6WlrhyCK7+KuB4b/lwdc421abahD1FQi
+            OtfmCVr4WPGWh1rcNKGRPhTATvfL21r4LBFdvgh2O+Ejoc+mkEMNS/ukhMa68JaO
+            lY1QrFa3fat5rCwELytFNnewueieRqOnkFY4+WkPcYlrJJMDwIqayGH2Sb1EZzlk
+            nKdvgTNeuGpfABU397urh6tbnJn7XOaMhAqFLTp1NJ1d8qthql5PqZ4lBrdqVx0e
+            0MI2XT2kGCdnBnvsZ05L0Ump6Vilf7hd3PMGo3bwcE3cFKVnvTY4enHl3wFQoenl
+            GQhA1UEXH/7MDC4MS/ovF4jtnjwKopVtPC3NoLd0JrJjeeWM9B0hTpo7qKF4X8n/
+            Pb7fEAxemcQKVLE/v44GN8hbaEHvA9QE08ekip+zCbWB8F1bVBOPYnfSRoe/KUrO
+            o7cWVYi1qP32AOSK8ZYG0lwBv4dSjaAYNGgOxsBm37dEfRYX6GB3cztucbmwlw8f
+            BfMsDGGCjB9gASi32HfoH/jXnJ9q7NTIe4qEj/tAvhpThMvlrSXBtDtHLhdRiaVC
+            CD2RWjtvrYueIR+pIg==
+            =qW1m
+            -----END PGP MESSAGE-----
+        fp: C8F8A49D04A1AB639F8EA21CDBA4B1DCB1FA5BDD
+    encrypted_regex: ^(data|stringData)$
+    version: 3.6.1