mirror of
https://github.com/auricom/home-cluster.git
synced 2025-10-02 16:51:52 +02:00
98 lines
3.0 KiB
YAML
98 lines
3.0 KiB
YAML
---
|
|
# yaml-language-server: $schema=https://kubernetes-schemas.pages.dev/helm.toolkit.fluxcd.io/helmrelease_v2beta2.json
|
|
apiVersion: helm.toolkit.fluxcd.io/v2beta2
|
|
kind: HelmRelease
|
|
metadata:
|
|
name: &app photoprism
|
|
namespace: default
|
|
spec:
|
|
interval: 30m
|
|
chart:
|
|
spec:
|
|
chart: app-template
|
|
version: 2.5.0
|
|
sourceRef:
|
|
kind: HelmRepository
|
|
name: bjw-s
|
|
namespace: flux-system
|
|
maxHistory: 2
|
|
install:
|
|
createNamespace: true
|
|
remediation:
|
|
retries: 3
|
|
upgrade:
|
|
cleanupOnFail: true
|
|
remediation:
|
|
retries: 3
|
|
uninstall:
|
|
keepHistory: false
|
|
dependsOn:
|
|
- name: redis
|
|
namespace: database
|
|
values:
|
|
controllers:
|
|
main:
|
|
strategy: RollingUpdate
|
|
annotations:
|
|
reloader.stakater.com/auto: "true"
|
|
containers:
|
|
main:
|
|
image:
|
|
repository: docker.io/photoprism/photoprism
|
|
tag: latest@sha256:cbaf35b067efc179dee68ab703db8911c2ad306830831458abb369542ee4cf12
|
|
env:
|
|
PHOTOPRISM_STORAGE_PATH: &storage /config
|
|
PHOTOPRISM_ORIGINALS_PATH: &originals /mnt/storage/photo/Gallery
|
|
PHOTOPRISM_DEBUG: "false"
|
|
PHOTOPRISM_PUBLIC: "true"
|
|
PHOTOPRISM_SITE_URL: "https://photos.${SECRET_CLUSTER_DOMAIN}/"
|
|
PHOTOPRISM_ORIGINALS_LIMIT: 4000 # in MB (default 1000)
|
|
envFrom:
|
|
- secretRef:
|
|
name: photoprism-secret
|
|
resources:
|
|
requests:
|
|
cpu: 100m
|
|
memory: 256Mi
|
|
service:
|
|
main:
|
|
ports:
|
|
http:
|
|
port: 2342
|
|
ingress:
|
|
main:
|
|
enabled: true
|
|
className: "nginx"
|
|
annotations:
|
|
external-dns.alpha.kubernetes.io/enabled: "true"
|
|
external-dns.alpha.kubernetes.io/target: services.${SECRET_DOMAIN}.
|
|
nginx.ingress.kubernetes.io/auth-method: GET
|
|
nginx.ingress.kubernetes.io/auth-url: http://authelia.default.svc.cluster.local.:8888/api/verify
|
|
nginx.ingress.kubernetes.io/auth-signin: https://auth.${SECRET_CLUSTER_DOMAIN}?rm=$request_method
|
|
nginx.ingress.kubernetes.io/auth-response-headers: Remote-User,Remote-Name,Remote-Groups,Remote-Email
|
|
nginx.ingress.kubernetes.io/auth-snippet: proxy_set_header X-Forwarded-Method $request_method;
|
|
nginx.ingress.kubernetes.io/proxy-body-size: 4G
|
|
hajimari.io/icon: arcticons:photoprism
|
|
hosts:
|
|
- host: &host "{{ .Release.Name }}.${SECRET_CLUSTER_DOMAIN}"
|
|
paths:
|
|
- path: /
|
|
service:
|
|
name: main
|
|
port: http
|
|
tls:
|
|
- hosts:
|
|
- *host
|
|
persistence:
|
|
config:
|
|
enabled: true
|
|
existingClaim: *app
|
|
globalMounts:
|
|
- path: *storage
|
|
originals:
|
|
type: nfs
|
|
server: "192.168.9.10"
|
|
path: *originals
|
|
globalMounts:
|
|
- path: *originals
|