k3s-cluster/cluster/apps/irc/znc/helm-release.yaml

98 lines
2.3 KiB
YAML

apiVersion: helm.toolkit.fluxcd.io/v2beta1
kind: HelmRelease
metadata:
name: znc
namespace: irc
spec:
interval: 5m
chart:
spec:
chart: app-template
version: 1.3.x
sourceRef:
kind: HelmRepository
name: bjws-charts
namespace: flux-system
values:
podLabels:
needsAuthentik: "yes"
# Add init container for pulling znc modules and putting them into the modules directory
initContainers:
pull-module-source:
image: alpine:latest
command:
- "sh"
- "-c"
- "rm -f /config/modules/ctcp_notifier.*; wget https://raw.githubusercontent.com/Zarthus/znc-modules/master/ctcp_notifier.cpp -P /config/modules"
volumeMounts:
- mountPath: /znc-data
name: config
image:
repository: znc
tag: latest
sidecars:
saslauthd-sidecar:
image: dweomer/saslauthd:latest
args: ["-a", "ldap", "-d", "1", "-O", "/znc-data/saslauthd.conf"]
volumeMounts:
- mountPath: /znc-data
name: config
- mountPath: /var/run/saslauthd
name: saslauthd-socket
env:
TZ: America/New_York
PGID: "1000"
PUID: "1000"
service:
main:
ports:
http:
port: 6501
probes:
liveness:
enabled: false
ingress:
main:
enabled: true
annotations:
traefik.ingress.kubernetes.io/router.entrypoints: websecure
traefik.ingress.kubernetes.io/router.middlewares: traefik-authentik@kubernetescrd
hosts:
- host: &host "znc.${SECRET_NEW_DOMAIN}"
paths:
- path: /
pathType: Prefix
tls:
- hosts:
- *host
secretName: wildcard-main-tls
persistence:
config:
enabled: true
type: hostPath
hostPath: /mnt/MainPool/Kubernetes/znc
mountPath: /znc-data
# This shared directory is used to share the unix socket between znc and saslauth
saslauthd-socket:
enabled: true
type: emptyDir
mountPath: /var/run/saslauthd/
medium: Memory
sizeLimit: 512Mi # Should be way more than enough
resources:
requests:
cpu: 1m
memory: 4Mi
limits:
memory: 200Mi