--- # yaml-language-server: $schema=https://kubernetes-schemas.pages.dev/helm.toolkit.fluxcd.io/helmrelease_v2beta2.json apiVersion: helm.toolkit.fluxcd.io/v2beta2 kind: HelmRelease metadata: name: &app unifi namespace: default spec: interval: 30m chart: spec: chart: app-template version: 2.6.0 sourceRef: kind: HelmRepository name: bjw-s namespace: flux-system maxHistory: 2 install: createNamespace: true remediation: retries: 3 upgrade: cleanupOnFail: true remediation: retries: 3 uninstall: keepHistory: false values: controllers: main: annotations: reloader.stakater.com/auto: "true" containers: main: image: repository: jacobalberty/unifi tag: v8.0.28@sha256:f88940c7c713a6fd492be528953b83320deba91dfd86f3a499dd101223e043d5 pullPolicy: IfNotPresent env: RUNAS_UID0: "false" UNIFI_UID: "999" UNIFI_GID: "999" UNIFI_STDOUT: "true" JVM_INIT_HEAP_SIZE: JVM_MAX_HEAP_SIZE: 1024M resources: requests: memory: 2Gi cpu: 50m service: main: type: LoadBalancer externalTrafficPolicy: Local loadBalancerIP: ${CLUSTER_LB_UNIFI} ports: http: port: 8443 protocol: HTTPS controller: enabled: true port: 8080 protocol: TCP portal-http: enabled: false port: 8880 protocol: HTTP portal-https: enabled: false port: 8843 protocol: HTTPS speedtest: enabled: true port: 6789 protocol: TCP stun: enabled: true port: 3478 protocol: UDP syslog: enabled: true port: 5514 protocol: UDP discovery: enabled: true port: 10001 protocol: UDP ingress: main: enabled: true className: "nginx" annotations: nginx.ingress.kubernetes.io/backend-protocol: "HTTPS" hajimari.io/icon: mdi:lan hosts: - host: &host "{{ .Release.Name }}.${SECRET_CLUSTER_DOMAIN}" paths: - path: / service: name: main port: http tls: - hosts: - *host persistence: config: enabled: true existingClaim: *app globalMounts: - path: /unifi