mthomson/fleet-infra
1
0
Fork 0
mirror of https://github.com/michaelthomson0797/fleet-infra.git synced 2026-02-04 04:59:54 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity
Files
043dfe5e42fbed216119107c4f8c151cf75aa4a5
fleet-infra/apps/nextcloud/release.yaml
Michael Thomson 043dfe5e42 update collabora
2026-01-12 14:32:06 -05:00

177 lines
4.3 KiB
YAML
Raw Blame History

apiVersion: helm.toolkit.fluxcd.io/v2
kind: HelmRelease
metadata:
name: nextcloud
namespace: nextcloud
spec:
chart:
spec:
chart: nextcloud
version: 8.x
sourceRef:
kind: HelmRepository
name: nextcloud
interval: 15m
releaseName: nextcloud
values:
image:
pullPolicy: Always
ingress:
enabled: true
className: traefik
annotations:
cert-manager.io/cluster-issuer: "letsencrypt-prod"
external-dns.alpha.kubernetes.io/target: michaelthomson.ddns.net
external-dns.alpha.kubernetes.io/cloudflare-proxied: "true"
traefik.ingress.kubernetes.io/router.entrypoints: websecure
traefik.ingress.kubernetes.io/router.tls: "true"
tls:
- hosts:
- nextcloud.michaelthomson.dev
secretName: nextclout-tls
labels: {}
path: /
pathType: Prefix
phpClientHttpsFix:
enabled: true
nextcloud:
host: nextcloud.michaelthomson.dev
username: admin
password: admin
datadir: /data
configs:
proxy.config.php: |-
<?php
$CONFIG = array (
'trusted_proxies' => array(
0 => '127.0.0.1',
1 => '10.0.0.0/8',
),
'forwarded_for_headers' => array('HTTP_X_FORWARDED_FOR'),
);
sqlite.config.php: |-
<?php
$CONFIG = array (
'sqlite.journal_mode' => 'WAL',
);
previews.config.php: |-
<?php
$CONFIG = array (
'enable_previews' => true,
'enabledPreviewProviders' => array (
'OC\Preview\Movie',
'OC\Preview\PNG',
'OC\Preview\JPEG',
'OC\Preview\GIF',
'OC\Preview\BMP',
'OC\Preview\XBitmap',
'OC\Preview\MP3',
'OC\Preview\MP4',
'OC\Preview\TXT',
'OC\Preview\MarkDown',
'OC\Preview\PDF'
),
);
internalDatabase:
enabled: false
externalDatabase:
enabled: true
type: postgresql
existingSecret:
enable: true
secretName: postgres-secret
usernameKey: username
passwordKey: password
postgresql:
enabled: true
image:
tag: 16.6.0
global:
postgresql:
auth:
existingSecret: postgres-secret
secretKeys:
adminPasswordKey: password
userPasswordKey: password
replicationPasswordKey: password
primary:
persistence:
enabled: true
existingClaim: pvc-postgres
persistence:
enabled: true
storageClass: longhorn
accessMode: ReadWriteOnce
size: 8Gi
nextcloudData:
enabled: true
storageClass: nfs-client
accessMode: ReadWriteOnce
size: 14Ti
redis:
enabled: true
auth:
existingSecret: nextcloud-redis-secret
existingSecretPasswordKey: password
global:
storageClass: longhorn
collabora:
enabled: true
# image:
# tag: 24.04.11.1.1
collabora:
extra_params: --o:ssl.enable=false --o:ssl.termination=true
existingSecret:
enabled: true
secretName: "collabora-secret"
usernameKey: "username"
passwordKey: "password"
# securityContext:
# runAsNonRoot: true
# privileged: true
# capabilities:
# add:
# - SYS_ADMIN
# - MKNOD
ingress:
enabled: true
annotations:
cert-manager.io/cluster-issuer: "letsencrypt-prod"
external-dns.alpha.kubernetes.io/target: michaelthomson.ddns.net
external-dns.alpha.kubernetes.io/cloudflare-proxied: "true"
traefik.ingress.kubernetes.io/router.entrypoints: websecure
traefik.ingress.kubernetes.io/router.tls: "true"
hosts:
- host: collabora.michaelthomson.dev
paths:
- path: /
pathType: ImplementationSpecific
tls:
- hosts:
- collabora.michaelthomson.dev
secretName: collabora-tls
cronjob:
enabled: true
livenessProbe:
enabled: false
readinessProbe:
enabled: false
Reference in New Issue View Git Blame Copy Permalink