Installer: pihole + root-ca-server + fix bitwarden cert issuer name
diff --git a/helmfile/users/helmfile.yaml b/helmfile/users/helmfile.yaml
index 8d94879..7c62f46 100644
--- a/helmfile/users/helmfile.yaml
+++ b/helmfile/users/helmfile.yaml
@@ -85,6 +85,8 @@
ingressClass: nginx
- private:
name: {{ .Values.id }}-private
+ domain: {{ .Values.id }}
+ ingressClassName: {{ .Values.id }}-ingress-private
- name: core-auth-storage # TODO(giolekva): merge with core-auth
chart: bitnami/postgresql
version: 10.13.5
@@ -475,6 +477,50 @@
- configMerge:
configName: config-to-merge
fileName: to-merge.yaml
+- name: pihole
+ chart: ../../charts/pihole
+ namespace: {{ .Values.id }}-app-pihole
+ createNamespace: true
+ values:
+ - domain: {{ .Values.id }}
+ - pihole:
+ image:
+ repository: "pihole/pihole"
+ tag: v5.8.1
+ persistentVolumeClaim:
+ enabled: true
+ size: 5Gi
+ adminPassword: "admin"
+ ingress:
+ enabled: false
+ serviceDhcp:
+ enabled: false
+ serviceDns:
+ type: ClusterIP
+ serviceWeb:
+ type: ClusterIP
+ http:
+ enabled: true
+ https:
+ enabled: false
+ virtualHost: pihole.{{ .Values.id }}
+ resources:
+ requests:
+ cpu: "250m"
+ memory: "100M"
+ limits:
+ cpu: "500m"
+ memory: "250M"
+ - oauth2:
+ clientId: pihole
+ clientSecret: ""
+ secretName: oauth2-secret
+ configName: oauth2-proxy
+ hydraAdmin: http://hydra-admin
+ - hydraPublic: https://hydra.{{ .Values.domain }}/
+ - profileUrl: https://accounts-ui.{{ .Values.domain }}
+ - certificateIssuer: {{ .Values.id }}-private
+ - ingressClassName: {{ .Values.id }}-ingress-private
environments:
shveli: