penpot: migrate to official chart

apps/design/penpot-secrets/penpot-variables.yaml

@@ -6,4 +6,4 @@ metadata:
   namespace: flux-system
 spec:
   fields:
-  - fieldName: password
+  - fieldName: api_key

apps/design/penpot/penpot-pvc.yaml

@@ -1,7 +1,7 @@
 apiVersion: v1
 kind: PersistentVolumeClaim
 metadata:
-  name: penpot-data
+  name: penpot-assets
   namespace: stackspout
   labels:
     stackspin.net/backupSet: "penpot"

apps/design/penpot/penpot-release.yaml

@@ -8,10 +8,10 @@ spec:
   chart:
     spec:
       chart: penpot
-      version: 4.0.12
+      version: 0.5.0
       sourceRef:
         kind: HelmRepository
-        name: truecharts
+        name: penpot
         namespace: flux-system
   interval: 5m
   valuesFrom:

apps/design/penpot/penpot-values-configmap.yaml

@@ -18,25 +18,32 @@ data:
       existingClaim: "penpot-data"
 
     ingress:
-      main:
+      enabled: true
-        enabled: true
+      annotations:
-        annotations:
+        kubernetes.io/tls-acme: "true"
-          kubernetes.io/tls-acme: "true"
+      hosts: ["${penpot_domain}"]
-        hosts:
+      #  - host: "${penpot_domain}"
-          - host: "${penpot_domain}"
+      #    paths:
-            paths:
+      #       - path: /
-               - path: /
+      #         pathType: Prefix
-                 pathType: Prefix
+      tls:
-        tls:
+        - secretName: penpot-tls
-          - secretName: penpot-tls
+          hosts:
-            hosts:
+            - "${penpot_domain}"
-              - "${penpot_domain}"
+      integrations:
-        integrations:
+        certManager:
-          certManager:
+          enabled: true
-            enabled: true
+
-    penpot:
+    config:
-      public_uri: "https://${penpot_domain}"
+      publicUri: "https://${penpot_domain}"
-      #registration_domain_whitelist: []
+      #apiSecretKey: "W8oErul6XcazLUhpsP_y0zttNSx_EkItWmD0TKTEvJuWSsjvkfEHxk9uNmrCOZ-p_Y6gIRV7yqQ4j04JcQX3xg"
+      apiSecretKey: "${api_key}"
+      # -- Comma separated list of allowed domains to register. Empty to allow all domains.
+      registrationDomainWhitelist: "ftt.gmbh"
+      telemetryEnabled: false
+      # -- The feature flags to enable. Check [the official docs](https://help.penpot.app/technical-guide/configuration/) for more info.
+      # @section -- Configuration parameters
+      #flags: "enable-registration enable-login-with-password disable-email-verification enable-smtp"
       #flags:
       #  backend_api_doc: false
       #  cors: false
@@ -50,24 +57,23 @@ data:
       #  registration: true
       #  secure_session_cookies: true
       #  user_feedback: false
-      identity_providers:
-        oidc:
-          enabled: true
-          client_id: "${client_id}"
-          client_secret: "${client_secret}"
-          base_uri: "https://${hydra_domain}"
-          #autoDiscoverUrl: 'https://${hydra_domain}/.well-known/openid-configuration'
       smtp:
         enabled: "${outgoing_mail_enabled}"
         host: "${outgoing_mail_smtp_host}"
         port: "${outgoing_mail_smtp_port}"
         username: "${outgoing_mail_smtp_user}"
-        pass: "${outgoing_mail_smtp_password}"
+        password: "${outgoing_mail_smtp_password}"
-        default_from: "${outgoing_mail_from_address}"
+        defaultFrom: "${outgoing_mail_from_address}"
-        default_reply_to: "${outgoing_mail_from_address}"
+        defaultReplyTo: "${outgoing_mail_from_address}"
+      providers:
+        oidc:
+          enabled: true
+          clientID: "${client_id}"
+          clientSecret: "${client_secret}"
+          baseURI: "https://${hydra_domain}"
+          #autoDiscoverUrl: 'https://${hydra_domain}/.well-known/openid-configuration'
 
     persistence:
       assets:
         enabled: true
-        mountPath: /opt/data/assets
+        existingClaim: "penpot-assets"
-        targetSelectAll: true

infrastructure/sources/penpot.yaml

@@ -0,0 +1,8 @@
+apiVersion: source.toolkit.fluxcd.io/v1beta1
+kind: HelmRepository
+metadata:
+  name: penpot
+  namespace: flux-system
+spec:
+  interval: 60m
+  url: https://helm.penpot.app/