bases:
  # - ../../namespaces/kubernetes-dashboard
  - ../../namespaces/gitea
  - ../../namespaces/grafana
  - ../../namespaces/monitoring
  - ../../namespaces/nextcloud

resources:
  - probes/external-services-bobcat-miner.yaml

images:
  - name: gitea/gitea
    newTag: 1.15.0
  - name: grafana/grafana
    newTag: 8.1.3
  - name: prom/node-exporter
    newTag: v0.18.1
  - name: prom/blackbox-exporter
    newName: badjware/blackbox-exporter-tweak
    newTag: 0.19.0-1
  - name: drone/drone
    newTag: 2.0.6
  - name: drone/drone-runner-kube
    newTag: 1.0.0-beta.9
  - name: nextcloud
    newName: badjware/nextcloud-tweak
    newTag: 22.1.0-2
  - name: postgres
    newTag: 9.6.23
  - name: redis
    newTag: 6.2.5

secretGenerator:
  - name: drone-secret
    type: Opaque
    namespace: gitea
    behavior: replace
    literals:
      - rpc_secret=${ssm:/k3s/prod/drone/gitea/rpc_secret}
      - database_secret=${ssm:/k3s/prod/drone/gitea/database_secret}
  # https://docs.drone.io/server/provider/gitea/
  - name: drone-gitea-oauth-secret
    type: Opaque
    namespace: gitea
    behavior: replace
    literals:
      - client_id=${ssm:/k3s/prod/drone/gitea/client_id}
      - client_secret=${ssm:/k3s/prod/drone/gitea/client_secret}
  - name: postgres-credentials
    type: Opaque
    namespace: nextcloud
    behavior: replace
    literals:
      - database=nextcloud
      - username=nextcloud
      - password=${ssm:/k3s/prod/nextcloud/postgres/password}
  - name: redis-credentials
    type: Opaque
    namespace: nextcloud
    behavior: replace
    literals:
      - password=${ssm:/k3s/prod/nextcloud/redis/password}

# allow "kubectl apply -l managed-by=kustomize --prune ..."
commonlabels:
  managed-by: kustomize

transformers:
  - transformers/placeholders.yaml
  - transformers/ssm-secrets.yaml

# patchesJson6902:
#   - target: 
#       version: v1
#       kind: Deployment
#       name: nextcloud
#     path: patches/nextcloud-deployment-patch.yaml

# patchesStrategicMerge:
#   - patches/blackbox-exporter-probe-patch.yaml