mirror of
https://github.com/auricom/home-cluster.git
synced 2025-09-30 23:45:25 +02:00
102 lines
2.8 KiB
YAML
102 lines
2.8 KiB
YAML
---
|
|
# yaml-language-server: $schema=https://raw.githubusercontent.com/fluxcd-community/flux2-schemas/main/helmrelease-helm-v2beta1.json
|
|
apiVersion: helm.toolkit.fluxcd.io/v2beta1
|
|
kind: HelmRelease
|
|
metadata:
|
|
name: truenas-certs-deploy
|
|
namespace: default
|
|
spec:
|
|
interval: 30m
|
|
chart:
|
|
spec:
|
|
chart: app-template
|
|
version: 1.5.1
|
|
sourceRef:
|
|
kind: HelmRepository
|
|
name: bjw-s
|
|
namespace: flux-system
|
|
maxHistory: 2
|
|
install:
|
|
createNamespace: true
|
|
remediation:
|
|
retries: 3
|
|
upgrade:
|
|
cleanupOnFail: true
|
|
remediation:
|
|
retries: 3
|
|
uninstall:
|
|
keepHistory: false
|
|
values:
|
|
controller:
|
|
type: cronjob
|
|
cronjob:
|
|
concurrencyPolicy: Forbid
|
|
schedule: "@daily"
|
|
restartPolicy: OnFailure
|
|
image:
|
|
repository: ghcr.io/auricom/kubectl
|
|
tag: 1.28.2@sha256:c501dc41a29b62346cc791b83e1f0d6755dcc1776b89d506f4c4a8e3fb63be41
|
|
command: ["/bin/bash", "/app/truenas-certs-deploy.sh"]
|
|
env:
|
|
HOSTNAME: truenas
|
|
TRUENAS_HOME: /mnt/storage/home/homelab
|
|
CERTS_DEPLOY_S3_ENABLED: "True"
|
|
envFrom:
|
|
- secretRef:
|
|
name: truenas-secret
|
|
service:
|
|
main:
|
|
enabled: false
|
|
persistence:
|
|
config:
|
|
enabled: true
|
|
type: configMap
|
|
name: truenas-certs-deploy-configmap
|
|
subPath: truenas-certs-deploy.sh
|
|
mountPath: /app/truenas-certs-deploy.sh
|
|
defaultMode: 0775
|
|
readOnly: true
|
|
config-python:
|
|
enabled: true
|
|
type: configMap
|
|
name: truenas-certs-deploy-configmap
|
|
subPath: truenas-certs-deploy.py
|
|
mountPath: /app/truenas-certs-deploy.py
|
|
defaultMode: 0775
|
|
readOnly: true
|
|
ssh:
|
|
enabled: true
|
|
type: secret
|
|
name: truenas-secret
|
|
subPath: TRUENAS_SSH_KEY
|
|
mountPath: /opt/id_rsa
|
|
defaultMode: 0775
|
|
readOnly: true
|
|
sidecars:
|
|
truenas-remote-certs-deploy:
|
|
image: ghcr.io/auricom/kubectl:1.28.2@sha256:c501dc41a29b62346cc791b83e1f0d6755dcc1776b89d506f4c4a8e3fb63be41
|
|
command: ["/bin/bash", "/app/truenas-certs-deploy.sh"]
|
|
env:
|
|
- name: HOSTNAME
|
|
value: truenas-remote
|
|
- name: TRUENAS_HOME
|
|
value: /mnt/vol1/home/homelab
|
|
- name: CERTS_DEPLOY_S3_ENABLED
|
|
value: "False"
|
|
envFrom:
|
|
- secretRef:
|
|
name: truenas-secret
|
|
volumeMounts:
|
|
- name: config
|
|
readOnly: true
|
|
mountPath: /app/truenas-certs-deploy.sh
|
|
subPath: truenas-certs-deploy.sh
|
|
- name: config-python
|
|
readOnly: true
|
|
mountPath: /app/truenas-certs-deploy.py
|
|
subPath: truenas-certs-deploy.py
|
|
- name: ssh
|
|
readOnly: true
|
|
mountPath: /opt/id_rsa
|
|
subPath: TRUENAS_SSH_KEY
|