2025-04-06 17:24:01 +01:00
|
|
|
# Argo CD Helm Chart Values
|
|
|
|
|
|
|
|
|
|
global:
|
|
|
|
|
domain: ag.hexor.cy
|
|
|
|
|
logging:
|
|
|
|
|
format: text
|
|
|
|
|
level: info
|
|
|
|
|
|
|
|
|
|
crds:
|
|
|
|
|
install: true
|
|
|
|
|
keep: true # Recommended to keep true so CRDs are not deleted on uninstall
|
|
|
|
|
|
|
|
|
|
configs:
|
2025-04-06 18:13:16 +01:00
|
|
|
params:
|
|
|
|
|
server.insecure: "true"
|
2025-04-06 17:24:01 +01:00
|
|
|
cm:
|
|
|
|
|
create: true
|
|
|
|
|
kustomize.buildOptions: --enable-helm
|
|
|
|
|
application.instanceLabelKey: argocd.argoproj.io/instance
|
|
|
|
|
admin.enabled: true
|
2025-04-06 19:54:48 +01:00
|
|
|
timeout.reconciliation: 60s
|
2025-04-12 13:18:15 +01:00
|
|
|
oidc.config: |
|
|
|
|
|
name: Authentik
|
|
|
|
|
issuer: https://idm.hexor.cy/application/o/argocd/
|
|
|
|
|
clientID: $oidc-creds:id
|
|
|
|
|
clientSecret: $oidc-creds:secret
|
|
|
|
|
requestedScopes: ["openid", "profile", "email", "groups"]
|
|
|
|
|
requestedIDTokenClaims: {"groups": {"essential": true}}
|
2025-04-06 17:24:01 +01:00
|
|
|
rbac:
|
|
|
|
|
create: true
|
|
|
|
|
policy.default: ""
|
2025-04-06 19:54:48 +01:00
|
|
|
policy.csv: |
|
|
|
|
|
g, k8s_dashboard, role:admin
|
2025-04-06 17:24:01 +01:00
|
|
|
|
|
|
|
|
secret:
|
2025-04-06 20:06:53 +01:00
|
|
|
createSecret: true
|
2025-04-06 17:24:01 +01:00
|
|
|
argocdServerAdminPassword: "" # <--- SET BCRYPT HASH HERE OR MANAGE EXTERNALLY
|
|
|
|
|
|
|
|
|
|
controller:
|
|
|
|
|
replicas: 1
|
2025-04-12 13:18:15 +01:00
|
|
|
nodeSelector:
|
|
|
|
|
kubernetes.io/hostname: master.tail2fe2d.ts.net
|
2025-04-06 17:24:01 +01:00
|
|
|
# Add resources (requests/limits), PDB etc. if needed
|
|
|
|
|
|
|
|
|
|
# Dex OIDC provider
|
|
|
|
|
dex:
|
2025-04-12 13:18:15 +01:00
|
|
|
replicas: 1
|
|
|
|
|
nodeSelector:
|
|
|
|
|
kubernetes.io/hostname: master.tail2fe2d.ts.net
|
|
|
|
|
enabled: false
|
2025-04-06 17:24:01 +01:00
|
|
|
|
|
|
|
|
# Standard Redis disabled because Redis HA is enabled
|
|
|
|
|
redis:
|
|
|
|
|
enabled: false
|
|
|
|
|
|
|
|
|
|
# Redis HA (replaces standard Redis)
|
|
|
|
|
redis-ha:
|
|
|
|
|
enabled: true
|
|
|
|
|
# Default settings usually work, including auth via 'argocd-redis' secret.
|
|
|
|
|
# Assumes 'redisSecretInit' job is enabled (default) to create the secret.
|
|
|
|
|
haproxy:
|
|
|
|
|
enabled: true
|
|
|
|
|
redis:
|
|
|
|
|
config:
|
|
|
|
|
# Disable Redis disk persistence for cache performance (Argo CD uses it as a cache)
|
|
|
|
|
save: '""'
|
|
|
|
|
|
|
|
|
|
# Argo CD Server (API and UI)
|
|
|
|
|
server:
|
2025-04-06 18:04:25 +01:00
|
|
|
replicas: 1
|
2025-04-12 13:18:15 +01:00
|
|
|
nodeSelector:
|
|
|
|
|
kubernetes.io/hostname: master.tail2fe2d.ts.net
|
2025-04-06 17:24:01 +01:00
|
|
|
ingress:
|
2025-04-06 18:10:38 +01:00
|
|
|
enabled: false
|
2025-04-06 17:37:12 +01:00
|
|
|
|
2025-04-06 17:24:01 +01:00
|
|
|
certificate:
|
2025-04-06 18:04:25 +01:00
|
|
|
enabled: false
|
2025-04-06 17:37:12 +01:00
|
|
|
|
2025-04-06 17:34:39 +01:00
|
|
|
certificateSecret:
|
|
|
|
|
enabled: false
|
2025-04-06 17:24:01 +01:00
|
|
|
|
|
|
|
|
# Repository Server
|
|
|
|
|
repoServer:
|
|
|
|
|
replicas: 1
|
2025-04-12 13:18:15 +01:00
|
|
|
nodeSelector:
|
|
|
|
|
kubernetes.io/hostname: master.tail2fe2d.ts.net
|
2025-04-06 17:24:01 +01:00
|
|
|
# Add resources (requests/limits), PDB etc. if needed
|
|
|
|
|
|
|
|
|
|
# ApplicationSet Controller
|
|
|
|
|
applicationSet:
|
|
|
|
|
enabled: true # Enabled by default
|
|
|
|
|
replicas: 1
|
2025-04-12 13:18:15 +01:00
|
|
|
nodeSelector:
|
|
|
|
|
kubernetes.io/hostname: master.tail2fe2d.ts.net
|
2025-04-06 17:24:01 +01:00
|
|
|
# Add resources (requests/limits), PDB etc. if needed
|
|
|
|
|
|
|
|
|
|
# Notifications Controller
|
|
|
|
|
notifications:
|
|
|
|
|
enabled: true # Enabled by default
|
2025-04-12 13:18:15 +01:00
|
|
|
replicas: 1
|
|
|
|
|
nodeSelector:
|
|
|
|
|
kubernetes.io/hostname: master.tail2fe2d.ts.net
|
2025-04-06 17:24:01 +01:00
|
|
|
# Add notifiers, triggers, templates configurations if needed
|
