apiVersion: v1
kind: ConfigMap
metadata:
  name: stackspin-gitea-values
  namespace: stackspout
data:
  values.yaml: |
    ingress:
      enabled: true
      annotations:
        kubernetes.io/tls-acme: "true"
        nginx.ingress.kubernetes.io/proxy-body-size: "50m"
      hosts:
        - host: "code.${domain}"
          paths:
             - path: /
               pathType: Prefix
      tls:
        - secretName: gitea-tls
          hosts:
            - "code.${domain}"
    gitea:
      # https://gitea.com/gitea/helm-chart/src/branch/main#oauth2-settings
      oauth:
        - name: Stackspin
          provider: "openidConnect"
          key: "${client_id}"
          secret: "${client_secret}"
          autoDiscoverUrl: "https://sso.${domain}/.well-known/openid-configuration"
          iconUrl: "https://dashboard.${domain}/favicon-32x32.png"
      # https://docs.gitea.io/en-us/config-cheat-sheet
      config:
        repository:
          DEFAULT_PUSH_CREATE_PRIVATE: false
          ENABLE_PUSH_CREATE_USER: true
          ENABLE_PUSH_CREATE_ORG: true
        server:
          ROOT_URL: "https://code.${domain}"
          LANDING_PAGE: login
        openid:
          ENABLE_OPENID_SIGNUP: true
        service:
          DISABLE_REGISTRATION: false
          ALLOW_ONLY_EXTERNAL_REGISTRATION: true
        log:
          LEVEL: "Trace"
    persistence:
      enabled: true
      existingClaim: gitea-data
    postgresql:
      persistence:
        enabled: true
        existingClaim: gitea-postgres
    service:
      ssh:
        hostPort: 22