Files
homelab/k8s/core/argocd/values.yaml

106 lines
2.5 KiB
YAML
Raw Normal View History

2025-04-06 17:24:01 +01:00
# Argo CD Helm Chart Values
global:
domain: ag.hexor.cy
2025-04-16 17:26:42 +03:00
nodeSelector:
kubernetes.io/hostname: master.tail2fe2d.ts.net
2025-04-06 17:24:01 +01:00
logging:
format: text
level: info
crds:
install: true
keep: true # Recommended to keep true so CRDs are not deleted on uninstall
configs:
2025-04-06 18:13:16 +01:00
params:
server.insecure: "true"
2025-04-06 17:24:01 +01:00
cm:
create: true
kustomize.buildOptions: --enable-helm
application.instanceLabelKey: argocd.argoproj.io/instance
admin.enabled: true
2025-04-06 19:54:48 +01:00
timeout.reconciliation: 60s
2025-04-12 13:18:15 +01:00
oidc.config: |
name: Authentik
issuer: https://idm.hexor.cy/application/o/argocd/
clientID: $oidc-creds:id
clientSecret: $oidc-creds:secret
requestedScopes: ["openid", "profile", "email", "groups"]
requestedIDTokenClaims: {"groups": {"essential": true}}
2025-04-06 17:24:01 +01:00
rbac:
create: true
policy.default: ""
2025-04-06 19:54:48 +01:00
policy.csv: |
g, k8s_dashboard, role:admin
2025-04-06 17:24:01 +01:00
secret:
2025-04-06 20:06:53 +01:00
createSecret: true
2025-04-06 17:24:01 +01:00
argocdServerAdminPassword: "" # <--- SET BCRYPT HASH HERE OR MANAGE EXTERNALLY
controller:
replicas: 1
2025-04-12 13:18:15 +01:00
nodeSelector:
kubernetes.io/hostname: master.tail2fe2d.ts.net
2025-04-06 17:24:01 +01:00
# Add resources (requests/limits), PDB etc. if needed
# Dex OIDC provider
dex:
2025-04-12 13:18:15 +01:00
replicas: 1
nodeSelector:
kubernetes.io/hostname: master.tail2fe2d.ts.net
enabled: false
2025-04-06 17:24:01 +01:00
# Standard Redis disabled because Redis HA is enabled
redis:
2025-04-16 17:26:42 +03:00
enabled: true
2025-04-06 17:24:01 +01:00
# Redis HA (replaces standard Redis)
redis-ha:
2025-04-16 17:17:05 +03:00
enabled: false
2025-04-06 17:24:01 +01:00
# Default settings usually work, including auth via 'argocd-redis' secret.
# Assumes 'redisSecretInit' job is enabled (default) to create the secret.
2025-04-16 17:17:05 +03:00
# haproxy:
# enabled: true
# redis:
# config:
# # Disable Redis disk persistence for cache performance (Argo CD uses it as a cache)
# save: '""'
2025-04-06 17:24:01 +01:00
# Argo CD Server (API and UI)
server:
2025-04-06 18:04:25 +01:00
replicas: 1
2025-04-12 13:18:15 +01:00
nodeSelector:
kubernetes.io/hostname: master.tail2fe2d.ts.net
2025-04-06 17:24:01 +01:00
ingress:
2025-04-06 18:10:38 +01:00
enabled: false
2025-04-06 17:37:12 +01:00
2025-04-06 17:24:01 +01:00
certificate:
2025-04-06 18:04:25 +01:00
enabled: false
2025-04-06 17:37:12 +01:00
2025-04-06 17:34:39 +01:00
certificateSecret:
enabled: false
2025-04-06 17:24:01 +01:00
# Repository Server
repoServer:
replicas: 1
2025-04-12 13:18:15 +01:00
nodeSelector:
kubernetes.io/hostname: master.tail2fe2d.ts.net
2025-04-06 17:24:01 +01:00
# Add resources (requests/limits), PDB etc. if needed
# ApplicationSet Controller
applicationSet:
enabled: true # Enabled by default
replicas: 1
2025-04-12 13:18:15 +01:00
nodeSelector:
kubernetes.io/hostname: master.tail2fe2d.ts.net
2025-04-06 17:24:01 +01:00
# Add resources (requests/limits), PDB etc. if needed
# Notifications Controller
notifications:
enabled: true # Enabled by default
2025-04-12 13:18:15 +01:00
replicas: 1
nodeSelector:
kubernetes.io/hostname: master.tail2fe2d.ts.net
2025-04-06 17:24:01 +01:00
# Add notifiers, triggers, templates configurations if needed