From 985ac1aa528ab53e335482e1536bc727d1e99713 Mon Sep 17 00:00:00 2001 From: xeruf <27jf@pm.me> Date: Sun, 18 Feb 2024 10:09:41 +0100 Subject: [PATCH] apps: add n8n, zammad, suitecrm --- apps/code/kustomization.yaml | 4 ++ apps/flow-kustomization.yaml | 13 ++++ apps/flow/kustomization.yaml | 5 ++ apps/flow/n8n-kustomization.yaml | 35 ++++++++++ apps/flow/n8n-secrets-kustomization.yaml | 22 ++++++ .../n8n-kustomization-variables.yaml | 7 ++ apps/flow/n8n-secrets/n8n-oauth-secret.yaml | 12 ++++ apps/flow/n8n-secrets/n8n-variables.yaml | 9 +++ apps/flow/n8n/n8n-oauth-client.yaml | 21 ++++++ apps/flow/n8n/n8n-pvc.yaml | 15 ++++ apps/flow/n8n/n8n-release.yaml | 27 +++++++ apps/flow/n8n/n8n-values-configmap.yaml | 53 ++++++++++++++ .../forgejo/forgejo-values-configmap.yaml | 2 +- apps/kustomization.yaml | 3 + apps/people-kustomization.yaml | 26 +++++++ apps/people/kustomization.yaml | 5 ++ apps/people/suitecrm-kustomization.yaml | 70 +++++++++++++++++++ .../suitecrm-secrets-kustomization.yaml | 22 ++++++ .../suitecrm-secrets/suitecrm-variables.yaml | 7 +- apps/support-kustomization.yaml | 13 ++++ apps/support/kustomization.yaml | 5 ++ apps/support/zammad-kustomization.yaml | 35 ++++++++++ .../support/zammad-secrets-kustomization.yaml | 22 ++++++ .../zammad-kustomization-variables.yaml | 7 ++ .../zammad-secrets/zammad-oauth-secret.yaml | 12 ++++ .../zammad-secrets/zammad-variables.yaml | 12 ++++ apps/support/zammad/zammad-postgres-pvc.yaml | 15 ++++ apps/support/zammad/zammad-release.yaml | 2 +- .../zammad/zammad-values-configmap.yaml | 48 ++++++++++--- apps/time/kustomization.yaml | 3 + 30 files changed, 518 insertions(+), 14 deletions(-) create mode 100644 apps/code/kustomization.yaml create mode 100644 apps/flow-kustomization.yaml create mode 100644 apps/flow/kustomization.yaml create mode 100644 apps/flow/n8n-kustomization.yaml create mode 100644 apps/flow/n8n-secrets-kustomization.yaml create mode 100644 apps/flow/n8n-secrets/n8n-kustomization-variables.yaml create mode 100644 apps/flow/n8n-secrets/n8n-oauth-secret.yaml create mode 100644 apps/flow/n8n-secrets/n8n-variables.yaml create mode 100644 apps/flow/n8n/n8n-oauth-client.yaml create mode 100644 apps/flow/n8n/n8n-pvc.yaml create mode 100644 apps/flow/n8n/n8n-release.yaml create mode 100644 apps/flow/n8n/n8n-values-configmap.yaml create mode 100644 apps/people-kustomization.yaml create mode 100644 apps/people/kustomization.yaml create mode 100644 apps/people/suitecrm-kustomization.yaml create mode 100644 apps/people/suitecrm-secrets-kustomization.yaml create mode 100644 apps/support-kustomization.yaml create mode 100644 apps/support/kustomization.yaml create mode 100644 apps/support/zammad-secrets-kustomization.yaml create mode 100644 apps/support/zammad-secrets/zammad-kustomization-variables.yaml create mode 100644 apps/support/zammad-secrets/zammad-oauth-secret.yaml create mode 100644 apps/support/zammad-secrets/zammad-variables.yaml create mode 100644 apps/support/zammad/zammad-postgres-pvc.yaml create mode 100644 apps/time/kustomization.yaml diff --git a/apps/code/kustomization.yaml b/apps/code/kustomization.yaml new file mode 100644 index 0000000..065ab6f --- /dev/null +++ b/apps/code/kustomization.yaml @@ -0,0 +1,4 @@ +apiVersion: kustomize.config.k8s.io/v1beta1 +kind: Kustomization +resources: + - gitea-kustomization.yaml diff --git a/apps/flow-kustomization.yaml b/apps/flow-kustomization.yaml new file mode 100644 index 0000000..f1e82d9 --- /dev/null +++ b/apps/flow-kustomization.yaml @@ -0,0 +1,13 @@ +--- +apiVersion: kustomize.toolkit.fluxcd.io/v1beta2 +kind: Kustomization +metadata: + name: add-flow + namespace: flux-system +spec: + interval: 10m + prune: true + path: ./apps/flow + sourceRef: + kind: GitRepository + name: stackspout diff --git a/apps/flow/kustomization.yaml b/apps/flow/kustomization.yaml new file mode 100644 index 0000000..ef0f4e6 --- /dev/null +++ b/apps/flow/kustomization.yaml @@ -0,0 +1,5 @@ +apiVersion: kustomize.config.k8s.io/v1beta1 +kind: Kustomization +resources: + - n8n-kustomization.yaml + - n8n-secrets-kustomization.yaml diff --git a/apps/flow/n8n-kustomization.yaml b/apps/flow/n8n-kustomization.yaml new file mode 100644 index 0000000..7a711b8 --- /dev/null +++ b/apps/flow/n8n-kustomization.yaml @@ -0,0 +1,35 @@ +--- +apiVersion: kustomize.toolkit.fluxcd.io/v1beta2 +kind: Kustomization +metadata: + name: n8n + namespace: flux-system +spec: + interval: 5m + retryInterval: 2m + timeout: 10m + wait: true + prune: true + path: ./apps/flow/n8n + sourceRef: + kind: GitRepository + name: stackspout + dependsOn: + - name: flux + - name: local-path-provisioner + - name: n8n-secrets + - name: nginx + - name: single-sign-on + postBuild: + substituteFrom: + - kind: Secret + name: stackspin-cluster-variables + - kind: ConfigMap + name: stackspin-n8n-kustomization-variables + - kind: Secret + name: stackspin-n8n-variables + # OIDC + - kind: Secret + name: stackspin-n8n-oauth-variables + - kind: ConfigMap + name: stackspin-single-sign-on-kustomization-variables diff --git a/apps/flow/n8n-secrets-kustomization.yaml b/apps/flow/n8n-secrets-kustomization.yaml new file mode 100644 index 0000000..719908b --- /dev/null +++ b/apps/flow/n8n-secrets-kustomization.yaml @@ -0,0 +1,22 @@ +--- +apiVersion: kustomize.toolkit.fluxcd.io/v1beta2 +kind: Kustomization +metadata: + name: n8n-secrets + namespace: flux-system +spec: + interval: 5m + timeout: 4m + wait: true + prune: true + path: ./apps/flow/n8n-secrets + sourceRef: + kind: GitRepository + name: stackspout + dependsOn: + - name: flux + - name: secrets-controller + postBuild: + substituteFrom: + - kind: Secret + name: stackspin-cluster-variables diff --git a/apps/flow/n8n-secrets/n8n-kustomization-variables.yaml b/apps/flow/n8n-secrets/n8n-kustomization-variables.yaml new file mode 100644 index 0000000..0f9f486 --- /dev/null +++ b/apps/flow/n8n-secrets/n8n-kustomization-variables.yaml @@ -0,0 +1,7 @@ +apiVersion: v1 +kind: ConfigMap +metadata: + name: stackspin-n8n-kustomization-variables + namespace: flux-system +data: + n8n_domain: flow.${domain} diff --git a/apps/flow/n8n-secrets/n8n-oauth-secret.yaml b/apps/flow/n8n-secrets/n8n-oauth-secret.yaml new file mode 100644 index 0000000..b5890ba --- /dev/null +++ b/apps/flow/n8n-secrets/n8n-oauth-secret.yaml @@ -0,0 +1,12 @@ +--- +apiVersion: secretgenerator.mittwald.de/v1alpha1 +kind: StringSecret +metadata: + name: stackspin-n8n-oauth-variables + namespace: flux-system +spec: + data: + client_id: n8n + fields: + - fieldName: client_secret + length: "32" diff --git a/apps/flow/n8n-secrets/n8n-variables.yaml b/apps/flow/n8n-secrets/n8n-variables.yaml new file mode 100644 index 0000000..911b617 --- /dev/null +++ b/apps/flow/n8n-secrets/n8n-variables.yaml @@ -0,0 +1,9 @@ +--- +apiVersion: secretgenerator.mittwald.de/v1alpha1 +kind: StringSecret +metadata: + name: stackspin-n8n-variables + namespace: flux-system +spec: + fields: + - fieldname: encryption_key diff --git a/apps/flow/n8n/n8n-oauth-client.yaml b/apps/flow/n8n/n8n-oauth-client.yaml new file mode 100644 index 0000000..f816def --- /dev/null +++ b/apps/flow/n8n/n8n-oauth-client.yaml @@ -0,0 +1,21 @@ +apiVersion: hydra.ory.sh/v1alpha1 +kind: OAuth2Client +metadata: + name: n8n-oauth-client + # Has to live in the same namespace as the stackspin-n8n-oauth-variables secret + namespace: flux-system +spec: + # TODO copied from wekan: https://github.com/wekan/wekan/wiki/Keycloak + grantTypes: + - authorization_code + - refresh_token + - client_credentials + - implicit + responseTypes: + - id_token + - code + scope: "openid profile email stackspin_roles" + secretName: stackspin-n8n-oauth-variables + #redirectUris: + # - https://${n8n_domain}/oauth/openid/ + #tokenEndpointAuthMethod: client_secret_post diff --git a/apps/flow/n8n/n8n-pvc.yaml b/apps/flow/n8n/n8n-pvc.yaml new file mode 100644 index 0000000..d2d1e5c --- /dev/null +++ b/apps/flow/n8n/n8n-pvc.yaml @@ -0,0 +1,15 @@ +apiVersion: v1 +kind: PersistentVolumeClaim +metadata: + name: n8n-data + namespace: stackspout + labels: + stackspin.net/backupSet: "n8n" +spec: + accessModes: + - ReadWriteOnce + volumeMode: Filesystem + resources: + requests: + storage: 2Gi + storageClassName: local-path diff --git a/apps/flow/n8n/n8n-release.yaml b/apps/flow/n8n/n8n-release.yaml new file mode 100644 index 0000000..b3383e9 --- /dev/null +++ b/apps/flow/n8n/n8n-release.yaml @@ -0,0 +1,27 @@ +apiVersion: helm.toolkit.fluxcd.io/v2beta1 +kind: HelmRelease +metadata: + name: n8n + namespace: stackspout +spec: + releaseName: n8n + chart: + spec: + chart: n8n + version: 1.0 # TODO + sourceRef: + kind: HelmRepository + name: n8n + namespace: flux-system + interval: 5m + valuesFrom: + - kind: ConfigMap + name: stackspout-n8n-values + optional: false + # Allow overriding values by ConfigMap or Secret + - kind: ConfigMap + name: stackspout-n8n-override + optional: true + - kind: Secret + name: stackspout-n8n-override + optional: true diff --git a/apps/flow/n8n/n8n-values-configmap.yaml b/apps/flow/n8n/n8n-values-configmap.yaml new file mode 100644 index 0000000..e68a681 --- /dev/null +++ b/apps/flow/n8n/n8n-values-configmap.yaml @@ -0,0 +1,53 @@ +apiVersion: v1 +kind: ConfigMap +metadata: + name: stackspin-n8n-values + namespace: stackspout +data: + values.yaml: | + n8n: + encryption_key: "${encryption_key}" + + commonLabels: + stackspin.net/backupSet: "n8n" + podLabels: + stackspin.net/backupSet: "n8n" + podAnnotations: + backup.velero.io/backup-volumes: "data" + + persistence: + enabled: true + type: existing + existingClaim: "n8n-data" + + ingress: + enabled: true + annotations: + kubernetes.io/tls-acme: "true" + hosts: + - host: "${n8n_domain}" + paths: + - path: / + pathType: Prefix + tls: + - secretName: n8n-tls + hosts: + - "${n8n_domain}" + + secret: + database: + type: sqlite + + # TODO Adjust n8n Mailing config + # mailer: + # enabled: "${outgoing_mail_enabled}" + # host: "${outgoing_mail_smtp_host}" + # port: "${outgoing_mail_smtp_port}" + # username: "${outgoing_mail_smtp_user}" + # password: "${outgoing_mail_smtp_password}" + # fromemail: "${outgoing_mail_from_address}" + # TODO Adjust n8n OpenID Connect Single Sign-On Configuration + # - name: Stackspin + # key: "${client_id}" + # secret: "${client_secret}" + # autoDiscoverUrl: 'https://${hydra_domain}/.well-known/openid-configuration' diff --git a/apps/forge/forgejo/forgejo-values-configmap.yaml b/apps/forge/forgejo/forgejo-values-configmap.yaml index 712c2b6..dc61de5 100644 --- a/apps/forge/forgejo/forgejo-values-configmap.yaml +++ b/apps/forge/forgejo/forgejo-values-configmap.yaml @@ -102,8 +102,8 @@ data: service: ssh: type: LoadBalancer - loadBalancerIP: "${ip_address}" hostPort: 22 externalTrafficPolicy: "Local" + loadBalancerIP: "${ip_address}" annotations: metallb.universe.tf/allow-shared-ip: "share-ipv4" diff --git a/apps/kustomization.yaml b/apps/kustomization.yaml index 7f9a34f..69637b8 100644 --- a/apps/kustomization.yaml +++ b/apps/kustomization.yaml @@ -4,3 +4,6 @@ resources: - ninja-kustomization.yaml - do-kustomization.yaml - forge-kustomization.yaml + - flow-kustomization.yaml + - support-kustomization.yaml + - people-kustomization.yaml diff --git a/apps/people-kustomization.yaml b/apps/people-kustomization.yaml new file mode 100644 index 0000000..83563d0 --- /dev/null +++ b/apps/people-kustomization.yaml @@ -0,0 +1,26 @@ +--- +apiVersion: kustomize.toolkit.fluxcd.io/v1beta2 +kind: Kustomization +metadata: + name: add-people + namespace: flux-system +spec: + interval: 10m + prune: true + path: ./apps/people + sourceRef: + kind: GitRepository + name: stackspout +--- +apiVersion: kustomize.toolkit.fluxcd.io/v1beta2 +kind: Kustomization +metadata: + name: add-people + namespace: flux-system +spec: + interval: 10m + prune: true + path: ./apps/people + sourceRef: + kind: GitRepository + name: stackspout diff --git a/apps/people/kustomization.yaml b/apps/people/kustomization.yaml new file mode 100644 index 0000000..5812388 --- /dev/null +++ b/apps/people/kustomization.yaml @@ -0,0 +1,5 @@ +apiVersion: kustomize.config.k8s.io/v1beta1 +kind: Kustomization +resources: + - suitecrm-kustomization.yaml + - suitecrm-secrets-kustomization.yaml diff --git a/apps/people/suitecrm-kustomization.yaml b/apps/people/suitecrm-kustomization.yaml new file mode 100644 index 0000000..0d9007c --- /dev/null +++ b/apps/people/suitecrm-kustomization.yaml @@ -0,0 +1,70 @@ +--- +apiVersion: kustomize.toolkit.fluxcd.io/v1beta2 +kind: Kustomization +metadata: + name: suitecrm + namespace: flux-system +spec: + interval: 5m + retryInterval: 2m + timeout: 10m + wait: true + prune: true + path: ./apps/people/suitecrm + sourceRef: + kind: GitRepository + name: stackspout + dependsOn: + - name: flux + - name: local-path-provisioner + - name: suitecrm-secrets + - name: nginx + - name: single-sign-on + postBuild: + substituteFrom: + - kind: Secret + name: stackspin-cluster-variables + - kind: ConfigMap + name: stackspin-suitecrm-kustomization-variables + - kind: Secret + name: stackspin-suitecrm-variables + # OIDC + - kind: Secret + name: stackspin-suitecrm-oauth-variables + - kind: ConfigMap + name: stackspin-single-sign-on-kustomization-variables +--- +apiVersion: kustomize.toolkit.fluxcd.io/v1beta2 +kind: Kustomization +metadata: + name: suitecrm + namespace: flux-system +spec: + interval: 5m + retryInterval: 2m + timeout: 10m + wait: true + prune: true + path: ./apps/people/suitecrm + sourceRef: + kind: GitRepository + name: stackspout + dependsOn: + - name: flux + - name: local-path-provisioner + - name: suitecrm-secrets + - name: nginx + - name: single-sign-on + postBuild: + substituteFrom: + - kind: Secret + name: stackspin-cluster-variables + #- kind: ConfigMap + # name: stackspin-suitecrm-kustomization-variables + - kind: Secret + name: stackspin-suitecrm-variables + # OIDC + #- kind: Secret + # name: stackspin-suitecrm-oauth-variables + #- kind: ConfigMap + # name: stackspin-single-sign-on-kustomization-variables diff --git a/apps/people/suitecrm-secrets-kustomization.yaml b/apps/people/suitecrm-secrets-kustomization.yaml new file mode 100644 index 0000000..72101c8 --- /dev/null +++ b/apps/people/suitecrm-secrets-kustomization.yaml @@ -0,0 +1,22 @@ +--- +apiVersion: kustomize.toolkit.fluxcd.io/v1beta2 +kind: Kustomization +metadata: + name: suitecrm-secrets + namespace: flux-system +spec: + interval: 5m + timeout: 4m + wait: true + prune: true + path: ./apps/people/suitecrm-secrets + sourceRef: + kind: GitRepository + name: stackspout + dependsOn: + - name: flux + - name: secrets-controller + postBuild: + substituteFrom: + - kind: Secret + name: stackspin-cluster-variables diff --git a/apps/people/suitecrm-secrets/suitecrm-variables.yaml b/apps/people/suitecrm-secrets/suitecrm-variables.yaml index 551c402..e67dc74 100644 --- a/apps/people/suitecrm-secrets/suitecrm-variables.yaml +++ b/apps/people/suitecrm-secrets/suitecrm-variables.yaml @@ -4,6 +4,7 @@ metadata: name: stackspin-suitecrm-variables namespace: flux-system data: - password: "{{ 32 | generate_password | b64encode }}" - mariadb_password: "{{ 32 | generate_password | b64encode }}" - mariadb_root_password: "{{ 32 | generate_password | b64encode }}" + fields: + - fieldName: password + - fieldName: mariadb_password + - fieldName: mariadb_root_password diff --git a/apps/support-kustomization.yaml b/apps/support-kustomization.yaml new file mode 100644 index 0000000..1802636 --- /dev/null +++ b/apps/support-kustomization.yaml @@ -0,0 +1,13 @@ +--- +apiVersion: kustomize.toolkit.fluxcd.io/v1beta2 +kind: Kustomization +metadata: + name: add-support + namespace: flux-system +spec: + interval: 10m + prune: true + path: ./apps/support + sourceRef: + kind: GitRepository + name: stackspout diff --git a/apps/support/kustomization.yaml b/apps/support/kustomization.yaml new file mode 100644 index 0000000..bc351d2 --- /dev/null +++ b/apps/support/kustomization.yaml @@ -0,0 +1,5 @@ +apiVersion: kustomize.config.k8s.io/v1beta1 +kind: Kustomization +resources: + - zammad-kustomization.yaml + - zammad-secrets-kustomization.yaml diff --git a/apps/support/zammad-kustomization.yaml b/apps/support/zammad-kustomization.yaml index ebc080a..9ae2afa 100644 --- a/apps/support/zammad-kustomization.yaml +++ b/apps/support/zammad-kustomization.yaml @@ -23,3 +23,38 @@ spec: name: stackspin-zammad-oauth-variables - kind: Secret name: stackspin-cluster-variables +--- +apiVersion: kustomize.toolkit.fluxcd.io/v1beta2 +kind: Kustomization +metadata: + name: zammad + namespace: flux-system +spec: + interval: 5m + retryInterval: 2m + timeout: 10m + wait: true + prune: true + path: ./apps/support/zammad + sourceRef: + kind: GitRepository + name: stackspout + dependsOn: + - name: flux + - name: local-path-provisioner + - name: zammad-secrets + - name: nginx + - name: single-sign-on + postBuild: + substituteFrom: + - kind: Secret + name: stackspin-cluster-variables + - kind: ConfigMap + name: stackspin-zammad-kustomization-variables + - kind: Secret + name: stackspin-zammad-variables + # OIDC + - kind: Secret + name: stackspin-zammad-oauth-variables + - kind: ConfigMap + name: stackspin-single-sign-on-kustomization-variables diff --git a/apps/support/zammad-secrets-kustomization.yaml b/apps/support/zammad-secrets-kustomization.yaml new file mode 100644 index 0000000..2dca6ae --- /dev/null +++ b/apps/support/zammad-secrets-kustomization.yaml @@ -0,0 +1,22 @@ +--- +apiVersion: kustomize.toolkit.fluxcd.io/v1beta2 +kind: Kustomization +metadata: + name: zammad-secrets + namespace: flux-system +spec: + interval: 5m + timeout: 4m + wait: true + prune: true + path: ./apps/support/zammad-secrets + sourceRef: + kind: GitRepository + name: stackspout + dependsOn: + - name: flux + - name: secrets-controller + postBuild: + substituteFrom: + - kind: Secret + name: stackspin-cluster-variables diff --git a/apps/support/zammad-secrets/zammad-kustomization-variables.yaml b/apps/support/zammad-secrets/zammad-kustomization-variables.yaml new file mode 100644 index 0000000..97f6aa5 --- /dev/null +++ b/apps/support/zammad-secrets/zammad-kustomization-variables.yaml @@ -0,0 +1,7 @@ +apiVersion: v1 +kind: ConfigMap +metadata: + name: stackspin-zammad-kustomization-variables + namespace: flux-system +data: + zammad_domain: support.${domain} diff --git a/apps/support/zammad-secrets/zammad-oauth-secret.yaml b/apps/support/zammad-secrets/zammad-oauth-secret.yaml new file mode 100644 index 0000000..a187ec4 --- /dev/null +++ b/apps/support/zammad-secrets/zammad-oauth-secret.yaml @@ -0,0 +1,12 @@ +--- +apiVersion: secretgenerator.mittwald.de/v1alpha1 +kind: StringSecret +metadata: + name: stackspin-zammad-oauth-variables + namespace: flux-system +spec: + data: + client_id: zammad + fields: + - fieldName: client_secret + length: "32" diff --git a/apps/support/zammad-secrets/zammad-variables.yaml b/apps/support/zammad-secrets/zammad-variables.yaml new file mode 100644 index 0000000..e096220 --- /dev/null +++ b/apps/support/zammad-secrets/zammad-variables.yaml @@ -0,0 +1,12 @@ +--- +apiVersion: secretgenerator.mittwald.de/v1alpha1 +kind: StringSecret +metadata: + name: stackspin-zammad-variables + namespace: flux-system +spec: + fields: + - fieldname: minio_password + - fieldname: redis_password + - fieldname: postgresql_password + - fieldname: postgresql_postgres_password diff --git a/apps/support/zammad/zammad-postgres-pvc.yaml b/apps/support/zammad/zammad-postgres-pvc.yaml new file mode 100644 index 0000000..ec6a430 --- /dev/null +++ b/apps/support/zammad/zammad-postgres-pvc.yaml @@ -0,0 +1,15 @@ +apiVersion: v1 +kind: PersistentVolumeClaim +metadata: + name: zammad-postgres + namespace: stackspout + labels: + stackspin.net/backupSet: "zammad" +spec: + accessModes: + - ReadWriteOnce + volumeMode: Filesystem + resources: + requests: + storage: 2Gi + storageClassName: local-path diff --git a/apps/support/zammad/zammad-release.yaml b/apps/support/zammad/zammad-release.yaml index 76664a8..d259618 100644 --- a/apps/support/zammad/zammad-release.yaml +++ b/apps/support/zammad/zammad-release.yaml @@ -8,7 +8,7 @@ spec: chart: spec: chart: zammad - version: # TODO + version: sourceRef: kind: HelmRepository name: zammad diff --git a/apps/support/zammad/zammad-values-configmap.yaml b/apps/support/zammad/zammad-values-configmap.yaml index 8af3491..801c814 100644 --- a/apps/support/zammad/zammad-values-configmap.yaml +++ b/apps/support/zammad/zammad-values-configmap.yaml @@ -5,26 +5,56 @@ metadata: namespace: stackspout data: values.yaml: | - # TODO verify structure matches chart + commonLabels: + stackspin.net/backupSet: "n8n" + podLabels: + stackspin.net/backupSet: "n8n" + podAnnotations: + backup.velero.io/backup-volumes: "data" + ingress: enabled: true - # Elaborate style annotations: kubernetes.io/tls-acme: "true" hosts: - - host: "support.${domain}" + - host: "${zammad_domain}" paths: - path: / pathType: Prefix tls: - secretName: zammad-tls hosts: - - "support.${domain}" - # Bitnami style - hostname: "support.${domain}" - tls: true - certManager: true - # TODO Configure PVC for data & database + - "${zammad_domain}" + + zammadConfig: + minio: + enabled: false + + minio: + auth: + rootUser: "zammadadmin" + rootPasswort: "${minio_password}" + + postgresql: + auth: + username: "zammad" + postgresPassword: "${postgresql_postgres_password}" + password: "${postgresql_password}" + persistence: + # TODO PVC Name & backup annotation + existingClaim: zammad-postgres + + redis: + auth: + password: "${redis_password}" + + persistence: + enabled: true + existingClaim: zammad-data + + autoWizard: + enabled: false + # TODO Adjust zammad Mailing config # mailer: # enabled: "${outgoing_mail_enabled}" diff --git a/apps/time/kustomization.yaml b/apps/time/kustomization.yaml new file mode 100644 index 0000000..d66211f --- /dev/null +++ b/apps/time/kustomization.yaml @@ -0,0 +1,3 @@ +apiVersion: kustomize.config.k8s.io/v1beta1 +kind: Kustomization +resources: