--- # yaml-language-server: $schema=https://raw.githubusercontent.com/fluxcd-community/flux2-schemas/main/helmrelease-helm-v2beta1.json apiVersion: helm.toolkit.fluxcd.io/v2beta1 kind: HelmRelease metadata: name: &app unifi namespace: default spec: interval: 30m chart: spec: chart: app-template version: 2.3.0 sourceRef: kind: HelmRepository name: bjw-s namespace: flux-system maxHistory: 2 install: createNamespace: true remediation: retries: 3 upgrade: cleanupOnFail: true remediation: retries: 3 uninstall: keepHistory: false values: controllers: main: type: statefulset annotations: reloader.stakater.com/auto: "true" containers: main: image: repository: jacobalberty/unifi tag: v7.5.176 pullPolicy: IfNotPresent env: RUNAS_UID0: "false" UNIFI_UID: "999" UNIFI_GID: "999" UNIFI_STDOUT: "true" JVM_INIT_HEAP_SIZE: JVM_MAX_HEAP_SIZE: 1024M resources: requests: memory: 2Gi cpu: 50m statefulset: volumeClaimTemplates: - name: config accessMode: ReadWriteOnce size: 10Gi storageClass: rook-ceph-block globalMounts: - path: /unifi service: main: type: LoadBalancer externalTrafficPolicy: Local loadBalancerIP: ${CLUSTER_LB_UNIFI} ports: http: port: 8443 protocol: HTTPS controller: enabled: true port: 8080 protocol: TCP portal-http: enabled: false port: 8880 protocol: HTTP portal-https: enabled: false port: 8843 protocol: HTTPS speedtest: enabled: true port: 6789 protocol: TCP stun: enabled: true port: 3478 protocol: UDP syslog: enabled: true port: 5514 protocol: UDP discovery: enabled: true port: 10001 protocol: UDP ingress: main: enabled: true className: "nginx" annotations: nginx.ingress.kubernetes.io/backend-protocol: "HTTPS" hajimari.io/icon: mdi:lan hosts: - host: &host "{{ .Release.Name }}.${SECRET_CLUSTER_DOMAIN}" paths: - path: / service: name: main port: http tls: - hosts: - *host