apiVersion: helm.toolkit.fluxcd.io/v2beta1 kind: HelmRelease metadata: name: znc namespace: irc spec: interval: 5m chart: spec: chart: app-template version: 1.3.x sourceRef: kind: HelmRepository name: bjws-charts namespace: flux-system values: podLabels: needsAuthentik: "yes" # Add init container for pulling znc modules and putting them into the modules directory initContainers: pull-module-source: image: alpine:latest command: - "sh" - "-c" - "rm -f /config/modules/ctcp_notifier.*; wget https://raw.githubusercontent.com/Zarthus/znc-modules/master/ctcp_notifier.cpp -P /config/modules" volumeMounts: - mountPath: /znc-data name: config image: repository: znc tag: latest sidecars: saslauthd-sidecar: image: dweomer/saslauthd:latest args: ["-a", "ldap", "-d", "1", "-O", "/znc-data/saslauthd.conf"] volumeMounts: - mountPath: /znc-data name: config - mountPath: /var/run/saslauthd name: saslauthd-socket env: TZ: America/New_York PGID: "1000" PUID: "1000" service: main: ports: http: port: 6501 probes: liveness: enabled: false ingress: main: enabled: true annotations: traefik.ingress.kubernetes.io/router.entrypoints: websecure traefik.ingress.kubernetes.io/router.middlewares: traefik-authentik@kubernetescrd hosts: - host: &host "znc.${SECRET_NEW_DOMAIN}" paths: - path: / pathType: Prefix tls: - hosts: - *host secretName: wildcard-main-tls persistence: config: enabled: true type: hostPath hostPath: /mnt/MainPool/Kubernetes/znc mountPath: /znc-data # This shared directory is used to share the unix socket between znc and saslauth saslauthd-socket: enabled: true type: emptyDir mountPath: /var/run/saslauthd/ medium: Memory sizeLimit: 512Mi # Should be way more than enough resources: requests: cpu: 1m memory: 4Mi limits: memory: 200Mi