Nik Afiq
dc86a961be
- Create .env.example for API credentials - Update .gitignore to include .env file - Add cluster issuer configurations for internal CA and Let's Encrypt - Implement porkbun-secret.sh for creating Kubernetes secrets - Define Helm values for cert-manager, Gitea, and Pihole with TLS settings
77 lines
1.4 KiB
YAML
77 lines
1.4 KiB
YAML
# Gitea Helm values
|
|
# Deploy:
|
|
# helm upgrade --install gitea gitea-charts/gitea \
|
|
# --namespace gitea --create-namespace \
|
|
# -f values/gitea.yaml
|
|
|
|
replicaCount: 1
|
|
|
|
image:
|
|
tag: "1.23"
|
|
|
|
ingress:
|
|
enabled: true
|
|
className: traefik
|
|
annotations:
|
|
traefik.ingress.kubernetes.io/router.entrypoints: websecure
|
|
traefik.ingress.kubernetes.io/router.tls: "true"
|
|
cert-manager.io/cluster-issuer: internal-ca-issuer
|
|
hosts:
|
|
- host: gitea.home.arpa
|
|
paths:
|
|
- path: /
|
|
pathType: Prefix
|
|
tls:
|
|
- secretName: gitea-tls
|
|
hosts:
|
|
- gitea.home.arpa
|
|
|
|
gitea:
|
|
admin:
|
|
username: nik
|
|
password: changeme123
|
|
email: nik.afiq98@ymail.com
|
|
|
|
config:
|
|
server:
|
|
DOMAIN: gitea.home.arpa
|
|
ROOT_URL: https://gitea.home.arpa
|
|
SSH_DOMAIN: gitea.home.arpa
|
|
SSH_PORT: 2222
|
|
repository:
|
|
DEFAULT_PRIVATE: true
|
|
service:
|
|
DISABLE_REGISTRATION: true
|
|
|
|
persistence:
|
|
enabled: true
|
|
storageClass: ""
|
|
accessModes:
|
|
- ReadWriteOnce
|
|
size: 10Gi
|
|
volumeName: ""
|
|
existingClaim: ""
|
|
annotations:
|
|
helm.sh/resource-policy: keep
|
|
|
|
postgresql:
|
|
enabled: true
|
|
primary:
|
|
persistence:
|
|
annotations:
|
|
helm.sh/resource-policy: keep
|
|
global:
|
|
postgresql:
|
|
auth:
|
|
password: gitea-db-password
|
|
username: gitea
|
|
database: gitea
|
|
|
|
service:
|
|
ssh:
|
|
type: LoadBalancer
|
|
port: 2222
|
|
loadBalancerIP: 192.168.7.77
|
|
|
|
postgresql-ha:
|
|
enabled: false |