mirror of
https://github.com/michaelthomson0797/fleet-infra.git
synced 2026-02-04 13:09:53 +00:00
54 lines
1.5 KiB
YAML
54 lines
1.5 KiB
YAML
apiVersion: helm.toolkit.fluxcd.io/v2
|
|
kind: HelmRelease
|
|
metadata:
|
|
name: vaultwarden
|
|
namespace: vaultwarden
|
|
spec:
|
|
chart:
|
|
spec:
|
|
chart: vaultwarden
|
|
version: 0.30.x
|
|
sourceRef:
|
|
kind: HelmRepository
|
|
name: vaultwarden
|
|
interval: 15m
|
|
releaseName: vaultwarden
|
|
values:
|
|
resourceType: Deployment
|
|
data:
|
|
name: "vaultwarden-data"
|
|
size: "15Gi"
|
|
class: "longhorn"
|
|
accessMode: "ReadWriteOnce"
|
|
domain: "https://vaultwarden.michaelthomson.dev"
|
|
signupsAllowed: false
|
|
signupsVerify: "true"
|
|
requireDeviceEmail: "true"
|
|
adminToken:
|
|
existingSecret: "admincreds-secret"
|
|
existingSecretKey: "ADMIN_TOKEN"
|
|
timeZone: "America/Toronto"
|
|
smtp:
|
|
existingSecret: "smtpcreds-secret"
|
|
host: "mail.michaelthomson.dev"
|
|
security: "force_tls"
|
|
port: 465
|
|
from: "vaultwarden@michaelthomson.dev"
|
|
fromName: "Vaultwarden"
|
|
username:
|
|
existingSecretKey: "SMTP_USERNAME"
|
|
password:
|
|
existingSecretKey: "SMTP_PASSWORD"
|
|
ingress:
|
|
enabled: true
|
|
class: "traefik"
|
|
additionalAnnotations:
|
|
external-dns.alpha.kubernetes.io/target: michaelthomson.ddns.net
|
|
external-dns.alpha.kubernetes.io/cloudflare-proxied: "true"
|
|
traefik.ingress.kubernetes.io/router.entrypoints: websecure
|
|
traefik.ingress.kubernetes.io/router.tls: "true"
|
|
labels: {}
|
|
tls: true
|
|
hostname: "vaultwarden.michaelthomson.dev"
|
|
tlsSecret: "letsencrypt-wildcard-cert-michaelthomson.dev"
|