64 lines
1.8 KiB
YAML
64 lines
1.8 KiB
YAML
---
|
|
apiVersion: argoproj.io/v1alpha1
|
|
kind: Application
|
|
metadata:
|
|
name: vault-sm
|
|
namespace: argocd
|
|
spec:
|
|
destination:
|
|
name: ''
|
|
namespace: apps-fuku
|
|
server: https://kubernetes.default.svc
|
|
sources:
|
|
- chart: vaultwarden-kubernetes-secrets
|
|
repoURL: ghcr.io/antoniolago/charts
|
|
targetRevision: 1.3.0
|
|
helm:
|
|
valuesObject:
|
|
api:
|
|
enabled: true
|
|
service:
|
|
type: LoadBalancer
|
|
persistence:
|
|
storageClass: truenas-nfs-csi
|
|
dashboard:
|
|
enabled: true
|
|
service:
|
|
type: LoadBalancer
|
|
ingress:
|
|
enabled: true
|
|
className: traefik
|
|
hosts:
|
|
- host: vault-secrets.fuku
|
|
paths:
|
|
- path: /
|
|
pathType: Prefix
|
|
backend: dashboard
|
|
port: 80
|
|
- path: /api
|
|
pathType: Prefix
|
|
backend: api
|
|
port: 8080
|
|
env:
|
|
config:
|
|
VAULTWARDEN__SERVERURL: "https://vault.roboces.dev"
|
|
secrets:
|
|
BW_CLIENTID:
|
|
secretName: "vaultwarden-kubernetes-secrets"
|
|
secretKey: "BW_CLIENTID"
|
|
BW_CLIENTSECRET:
|
|
secretName: "vaultwarden-kubernetes-secrets"
|
|
secretKey: "BW_CLIENTSECRET"
|
|
VAULTWARDEN__MASTERPASSWORD:
|
|
secretName: "vaultwarden-kubernetes-secrets"
|
|
secretKey: "VAULTWARDEN__MASTERPASSWORD"
|
|
- path: k8s/services/vaultwarden-kubernetes-secrets
|
|
repoURL: https://git.roboces.dev/catalin/fukuops.git
|
|
targetRevision: main
|
|
project: fuku
|
|
syncPolicy:
|
|
automated:
|
|
prune: true
|
|
selfHeal: true
|
|
syncOptions:
|
|
- CreateNamespace=true
|