--- # yaml-language-server: $schema=https://raw.githubusercontent.com/fluxcd-community/flux2-schemas/main/helmrelease-helm-v2beta1.json apiVersion: helm.toolkit.fluxcd.io/v2beta1 kind: HelmRelease metadata: name: &app kresus namespace: default spec: interval: 30m chart: spec: chart: app-template version: 1.5.1 sourceRef: kind: HelmRepository name: bjw-s namespace: flux-system maxHistory: 2 install: createNamespace: true remediation: retries: 3 upgrade: cleanupOnFail: true remediation: retries: 3 uninstall: keepHistory: false values: initContainers: 01-init-db: image: ghcr.io/auricom/postgres-init:15.4 imagePullPolicy: IfNotPresent envFrom: - secretRef: name: kresus-secret controller: annotations: reloader.stakater.com/auto: "true" image: repository: ghcr.io/auricom/kresus tag: 0.19.4@sha256:716ce4fa4fe63674c273e558919c12cadc64433c07d147b67ea7b65738eb7c35 imagePullPolicy: IfNotPresent service: main: ports: http: port: 9876 env: HOST: 0.0.0.0 PORT: 9876 LC_ALL: C.UTF-8 LANG: C.UTF-8 KRESUS_DB_TYPE: postgres KRESUS_DIR: /config KRESUS_EMAIL_HOST: mailrise.default.svc.cluster.local KRESUS_EMAIL_PORT: 8025 KRESUS_EMAIL_TRANSPORT: smtp KRESUS_EMAIL_FROM: kresus@mailrise.home.arpa KRESUS_PYTHON_EXEC: python3 KRESUS_WOOB_DIR: /woob NODE_ENV: production envFrom: - secretRef: name: kresus-secret persistence: config: enabled: true existingClaim: kresus-config mountPath: /config woob: enabled: true type: emptyDir mountPath: /mnt/woob podSecurityContext: runAsUser: 568 runAsGroup: 568 fsGroup: 568 fsGroupChangePolicy: "OnRootMismatch" ingress: main: enabled: true ingressClassName: "nginx" annotations: auth.home.arpa/enabled: "true" hajimari.io/icon: mdi:cash hosts: - host: &host "cash.${SECRET_CLUSTER_DOMAIN}" paths: - path: / pathType: Prefix tls: - hosts: - *host resources: requests: cpu: 100m memory: 256Mi