bases: - ../../namespaces/kubernetes-dashboard - ../../namespaces/gitea - ../../namespaces/grafana - ../../namespaces/monitoring - ../../namespaces/nextcloud images: - name: gitea/gitea newtag: 1.15.0 - name: grafana newtag: 8.1.2 - name: prom/node-exporter newtag: v0.18.1 - name: drone/drone newtag: 2.0.6 - name: drone/drone-runner-kube newtag: 1.0.0-beta.9 - name: nextcloud newtag: 22.1.0 - name: postgres newtag: 9.6.23 - name: redis newtag: 6.2.5 secretGenerator: - name: drone-secret type: Opaque namespace: gitea behavior: replace literals: - rpc_secret=${ssm:/k3s/prod/drone/gitea/rpc_secret} # https://docs.drone.io/server/provider/gitea/ - name: drone-gitea-oauth-secret type: Opaque namespace: gitea behavior: replace literals: - client_id=${ssm:/k3s/prod/drone/gitea/client_id} - client_secret=${ssm:/k3s/prod/drone/gitea/client_secret} - name: postgres-credentials type: Opaque namespace: nextcloud behavior: replace literals: - database=nextcloud - username=nextcloud - password=${ssm:/k3s/prod/nextcloud/postgres/password} - name: redis-credentials type: Opaque namespace: nextcloud behavior: replace literals: - password=${ssm:/k3s/prod/nextcloud/redis/password} # allow "kubectl apply -l managed-by=kustomize --prune ..." commonlabels: managed-by: kustomize transformers: - transformers/placeholders.yaml - transformers/ssm-secrets.yaml # patchesJson6902: # - target: # version: v1 # kind: Deployment # name: nextcloud # path: patches/nextcloud-deployment-patch.yaml