apiVersion: helm.toolkit.fluxcd.io/v2beta1 kind: HelmRelease metadata: name: dendron namespace: default spec: interval: 5m chart: spec: chart: app-template version: 1.3.x sourceRef: kind: HelmRepository name: bjws-charts namespace: flux-system values: image: repository: oci.${SECRET_NEW_DOMAIN}/seanomik/dendron-codeserver tag: v0.0.3 imagePullSecrets: - name: orca-puller service: main: ports: http: port: 8080 probes: liveness: enabled: false ingress: main: enabled: true annotations: cert-manager.io/cluster-issuer: letsencrypt-production traefik.ingress.kubernetes.io/router.entrypoints: websecure traefik.ingress.kubernetes.io/router.middlewares: traefik-authentik@kubernetescrd hosts: - host: &host "dendron.${SECRET_NEW_DOMAIN}" paths: - path: / pathType: Prefix tls: - hosts: - *host secretName: wildcard-main-tls podSecurityContext: runAsNonRoot: true runAsUser: 10000 runAsGroup: 10000 fsGroup: 10000 fsGroupChangePolicy: OnRootMismatch persistence: data: enabled: true type: hostPath hostPath: /mnt/MainPool/Kubernetes/dendron/notes mountPath: /notes user-config: enabled: true type: hostPath hostPath: /mnt/MainPool/Kubernetes/dendron/code-settings mountPath: /home/coder/.local/share/code-server/User ssh-private: enabled: true type: secret name: dendron-secret readOnly: false mountPath: /home/coder/.ssh/id_rsa subPath: id_rsa ssh-config: enabled: true type: secret name: dendron-secret readOnly: false mountPath: /home/coder/.ssh/config subPath: config codeserver-config: enabled: true type: configMap name: dendron-config readOnly: false mountPath: /home/coder/.config/code-server resources: requests: cpu: 1m