apiVersion: helm.toolkit.fluxcd.io/v2beta1 kind: HelmRelease metadata: name: nextcloud namespace: nextcloud spec: chart: spec: chart: nextcloud version: 6.x sourceRef: kind: HelmRepository name: nextcloud namespace: flux-system interval: 15m timeout: 5m releaseName: nextcloud values: ingress: enabled: true className: traefik annotations: traefik.ingress.kubernetes.io/router.entrypoints: websecure traefik.ingress.kubernetes.io/router.tls: "true" tls: - hosts: - nextcloud.michaelthomson.dev secretName: letsencrypt-wildcard-cert-michaelthomson.dev labels: {} path: / pathType: Prefix phpClientHttpsFix: enabled: true nextcloud: host: nextcloud.michaelthomson.dev username: admin password: admin datadir: /data persistence: enabled: true storageClass: longhorn accessMode: ReadWriteOnce size: 8Gi nextcloudData: enabled: true storageClass: nfs-client accessMode: ReadWriteOnce size: 14Ti redis: enabled: true auth: existingSecret: nextcloud-redis-secret existingSecretPasswordKey: password global: storageClass: longhorn collabora: enabled: true collabora: existingSecret: enabled: true secretName: "collabora-secret" usernameKey: "username" passwordKey: "password" securityContext: runAsNonRoot: true privileged: true capabilities: add: - SYS_ADMIN - MKNOD ingress: enabled: true annotations: traefik.ingress.kubernetes.io/router.entrypoints: websecure traefik.ingress.kubernetes.io/router.tls: "true" hosts: - host: collabora.michaelthomson.dev paths: - path: / pathType: ImplementationSpecific tls: - hosts: - collabora.michaelthomson.dev secretName: letsencrypt-wildcard-cert-michaelthomson.dev cronjob: enabled: true livenessProbe: enabled: false readinessProbe: enabled: false