Blame - helmfile/base/helmfile.yaml - pcloud

blob: 276096ed8de892d3707848257a7cabb58544f64c [file] [log] [blame]

giolekva	5cd3216	2021-11-05 20:10:19 +0400	[diff] [blame]	1	repositories:
giolekva	11881b5	2021-11-27 16:51:58 +0400	[diff] [blame]	2	- name: appscode
				3	url: https://charts.appscode.com/stable/
giolekva	5cd3216	2021-11-05 20:10:19 +0400	[diff] [blame]	4	- name: ingress-nginx
				5	url: https://kubernetes.github.io/ingress-nginx
giolekva	11881b5	2021-11-27 16:51:58 +0400	[diff] [blame]	6	- name: jetstack
				7	url: https://charts.jetstack.io
				8	- name: bwolf
				9	url: https://bwolf.github.io/cert-manager-webhook-gandi
giolekva	163e33c	2021-11-28 17:52:03 +0400	[diff] [blame]	10	- name: metallb
				11	url: https://metallb.github.io/metallb
giolekva	8fc32ce	2021-11-28 19:37:53 +0400	[diff] [blame]	12	- name: longhorn
				13	url: https://charts.longhorn.io
giolekva	f216f2c	2021-12-01 17:29:25 +0400	[diff] [blame]	14	- name: ory
				15	url: https://k8s.ory.sh/helm/charts
giolekva	5cd3216	2021-11-05 20:10:19 +0400	[diff] [blame]	16
				17	helmDefaults:
				18	tillerless: true
giolekva	11881b5	2021-11-27 16:51:58 +0400	[diff] [blame]	19	waitForJobs: false
				20	createNamespace: true
giolekva	5cd3216	2021-11-05 20:10:19 +0400	[diff] [blame]	21
				22	releases:
giolekva	163e33c	2021-11-28 17:52:03 +0400	[diff] [blame]	23	- name: metallb
				24	chart: metallb/metallb
				25	version: 0.11.0
				26	namespace: {{ .Values.name }}-networking-metallb
				27	values:
				28	- fullnameOverride: {{ .Values.name }}-metallb
				29	- configInline:
				30	address-pools:
				31	- name: default
				32	protocol: layer2
				33	addresses:
				34	- {{ .Values.loadBalancerIPRange }}
				35	- controller:
				36	image:
				37	repository: quay.io/metallb/controller
				38	tag: v0.11
				39	pullPolicy: IfNotPresent
				40	- speaker:
				41	image:
				42	repository: quay.io/metallb/speaker
				43	tag: v0.11
				44	pullPolicy: IfNotPresent
giolekva	883992b	2021-11-27 21:13:28 +0400	[diff] [blame]	45	- name: ingress-public
				46	chart: ingress-nginx/ingress-nginx
				47	version: 4.0.3
				48	namespace: {{ .Values.name }}-ingress-public
				49	values:
				50	- fullnameOverride: {{ .Values.name }}-ingress-public
				51	- controller:
				52	service:
				53	type: LoadBalancer
				54	ingressClassByName: true
				55	ingressClassResource:
				56	name: {{ .Values.name }}-ingress-public
				57	enabled: true
				58	default: false
				59	controllerValue: k8s.io/{{ .Values.name }}-ingress-public
				60	config:
				61	proxy-body-size: 100M
				62	- tcp:
				63	25: {{ .Values.name }}-mail-gateway/maddy:25
giolekva	11881b5	2021-11-27 16:51:58 +0400	[diff] [blame]	64	- name: kubed
				65	chart: appscode/kubed
				66	version: v0.12.0
				67	namespace: {{ .Values.name }}-kubed
giolekva	5cd3216	2021-11-05 20:10:19 +0400	[diff] [blame]	68	values:
giolekva	11881b5	2021-11-27 16:51:58 +0400	[diff] [blame]	69	- enableAnalytics: false
				70	- fullnameOverride: {{ .Values.name }}-kubed
				71	- operator:
				72	registry: appscode
				73	repository: kubed
				74	tag: v0.12.0
				75	- criticalAddon: true
				76	- config:
				77	clusterName: {{ .Values.name }}
				78	- name: cert-manager
				79	chart: jetstack/cert-manager
				80	version: v1.6
				81	namespace: {{ .Values.name }}-cert-manager
				82	values:
				83	- installCRDs: true
				84	- fullnameOverride: {{ .Values.name}}-cert-manager
				85	- image:
				86	tag: v1.6.1
				87	pullPolicy: IfNotPresent
				88	- resources:
				89	requests:
				90	cpu: "100m"
				91	memory: "50M"
				92	limits:
				93	cpu: "250m"
				94	memory: "150M"
				95	- tolerations:
				96	- key: "pcloud"
				97	operator: "Equal"
				98	value: "role"
				99	effect: "NoSchedule"
				100	- cainjector:
				101	resources:
				102	requests:
				103	cpu: "100m"
				104	memory: "50M"
				105	limits:
				106	cpu: "250m"
				107	memory: "150M"
				108	tolerations:
				109	- key: "pcloud"
				110	operator: "Equal"
				111	value: "role"
				112	effect: "NoSchedule"
				113	- webhook:
				114	resources:
				115	requests:
				116	cpu: "100m"
				117	memory: "50M"
				118	limits:
				119	cpu: "250m"
				120	memory: "150M"
				121	tolerations:
				122	- key: "pcloud"
				123	operator: "Equal"
				124	value: "role"
				125	effect: "NoSchedule"
				126	- name: cert-manager-gandi
				127	chart: bwolf/cert-manager-webhook-gandi
				128	version: v0.2.0
				129	namespace: {{ .Values.name }}-cert-manager
				130	values:
				131	- certManager:
				132	namespace: {{ .Values.name }}-cert-manager
				133	serviceAccountName: {{ .Values.name }}-cert-manager
				134	- fullnameOverride: {{ .Values.name }}-cert-manager-webhook-gandi
				135	- image:
				136	repository: giolekva/cert-manager-webhook-gandi
				137	tag: v0.2.0
				138	pullPolicy: IfNotPresent
				139	- logLevel: 2
				140	- resources:
				141	requests:
				142	cpu: "100m"
				143	memory: "50M"
				144	limits:
				145	cpu: "250m"
				146	memory: "150M"
				147	- tolerations:
				148	- key: "pcloud"
				149	operator: "Equal"
				150	value: "role"
				151	effect: "NoSchedule"
giolekva	8fc32ce	2021-11-28 19:37:53 +0400	[diff] [blame]	152	- name: longhorn
				153	chart: longhorn/longhorn
				154	version: v1.1.2
				155	# TODO(giolekva): pcloud-storage-longhorn ? https://github.com/longhorn/longhorn/issues/2034
				156	namespace: longhorn-system
				157	values:
				158	- defaultSettings:
				159	defaultDataPath: {{ .Values.storageDir }}
				160	- persistence:
				161	defaultClassReplicaCount: 2
				162	- service:
				163	ui:
				164	type: LoadBalancer
				165	- ingress:
				166	# TODO(giolekva): maybe run separate Nebula network for pcloud infrastructure services?
				167	enabled: false
				168	# ngressClassName: nginx-private
				169	# tls: true
				170	# host: longhorn.pcloud
				171	# annotations:
				172	# cert-manager.io/cluster-issuer: "selfsigned-ca"
				173	# acme.cert-manager.io/http01-edit-in-place: "true"
giolekva	3423ac2	2021-11-28 20:47:34 +0400	[diff] [blame]	174	- name: mail-gateway
				175	chart: ../../charts/mail-gateway
				176	namespace: {{ .Values.name }}-mail-gateway
				177	values:
giolekva	3423ac2	2021-11-28 20:47:34 +0400	[diff] [blame]	178	- domains:
				179	primary:
				180	name: lekva.me
giolekva	ee3a57b	2021-12-01 16:18:23 +0400	[diff] [blame]	181	namespace: lekva-app-maddy
				182	mx: mail.lekva.me
				183	certificateIssuer: lekva-public
giolekva	3423ac2	2021-11-28 20:47:34 +0400	[diff] [blame]	184	others:
				185	- name: shve.li
				186	namespace: shveli-app-maddy
				187	- persistence:
				188	size: 100Gi
giolekva	f216f2c	2021-12-01 17:29:25 +0400	[diff] [blame]	189	- name: oauth2-manager
				190	chart: ory/hydra-maester
				191	version: v0.20.1
				192	namespace: {{ .Values.name }}-oauth2-manager
				193	values:
				194	- fullnameOverride: {{ .Values.name }}-hydra-maester
				195	- image:
				196	repository: giolekva/ory-hydra-maester
				197	tag: latest
				198	pullPolicy: IfNotPresent
				199	- adminService:
				200	name: hydra # IGNORED
				201	port: 80
giolekva	7e73ba7	2021-12-03 13:14:20 +0400	[diff] [blame^]	202	- name: nebula-controller
				203	chart: ../../charts/nebula
				204	namespace: {{ .Values.name }}-nebula-controller
				205	values:
				206	- controller:
				207	image:
				208	repository: giolekva/nebula-controller
				209	tag: latest
				210	pullPolicy: Always
				211	- manage:
				212	image:
				213	repository: giolekva/nebula-web
				214	tag: latest
				215	pullPolicy: Always
giolekva	5cd3216	2021-11-05 20:10:19 +0400	[diff] [blame]	216
				217	environments:
giolekva	11881b5	2021-11-27 16:51:58 +0400	[diff] [blame]	218	prod:
giolekva	5cd3216	2021-11-05 20:10:19 +0400	[diff] [blame]	219	values:
giolekva	163e33c	2021-11-28 17:52:03 +0400	[diff] [blame]	220	- name: pcloud
				221	- loadBalancerIPRange: 192.168.0.200-192.168.0.250
giolekva	8fc32ce	2021-11-28 19:37:53 +0400	[diff] [blame]	222	- storageDir: /pcloud-storage/longhorn