--- # yaml-language-server: $schema=https://raw.githubusercontent.com/fluxcd-community/flux2-schemas/main/helmrelease-helm-v2beta1.json apiVersion: helm.toolkit.fluxcd.io/v2beta1 kind: HelmRelease metadata: name: &app kresus namespace: default spec: interval: 30m chart: spec: chart: app-template version: 1.5.1 sourceRef: kind: HelmRepository name: bjw-s namespace: flux-system maxHistory: 2 install: createNamespace: true remediation: retries: 3 upgrade: cleanupOnFail: true remediation: retries: 3 uninstall: keepHistory: false values: initContainers: 01-init-db: image: ghcr.io/auricom/postgres-init:15.4 imagePullPolicy: IfNotPresent envFrom: - secretRef: name: kresus-secret controller: annotations: reloader.stakater.com/auto: "true" image: repository: ghcr.io/auricom/kresus tag: 0.19.4@sha256:80a340c5cfd511c9e069e187c374a5aeeeb7eaa2c75353c596991bd8e2f9376a imagePullPolicy: IfNotPresent service: main: ports: http: port: 9876 env: HOST: 0.0.0.0 PORT: 9876 LC_ALL: C.UTF-8 LANG: C.UTF-8 KRESUS_DB_TYPE: postgres KRESUS_DIR: /config KRESUS_EMAIL_HOST: mailrise.default.svc.cluster.local KRESUS_EMAIL_PORT: 8025 KRESUS_EMAIL_TRANSPORT: smtp KRESUS_EMAIL_FROM: kresus@mailrise.home.arpa KRESUS_PYTHON_EXEC: python3 NODE_ENV: production envFrom: - secretRef: name: kresus-secret persistence: config: enabled: true existingClaim: kresus-config mountPath: /config woob: enabled: true type: emptyDir mountPath: /mnt/woob podSecurityContext: runAsUser: 568 runAsGroup: 568 fsGroup: 568 fsGroupChangePolicy: "OnRootMismatch" ingress: main: enabled: true ingressClassName: "nginx" annotations: auth.home.arpa/enabled: "true" hajimari.io/icon: mdi:cash hosts: - host: &host "cash.${SECRET_CLUSTER_DOMAIN}" paths: - path: / pathType: Prefix tls: - hosts: - *host resources: requests: cpu: 100m memory: 256Mi