openproject commented

argocd/apps/openproject/values-openproject.yaml

@@ -1,99 +1,99 @@
-apiVersion: argoproj.io/v1alpha1
+#apiVersion: argoproj.io/v1alpha1
-kind: Application
+#kind: Application
-metadata:
+#metadata:
-  name: openproject
+#  name: openproject
-  finalizers:
+#  finalizers:
-    - resources-finalizer.argocd.argoproj.io
+#    - resources-finalizer.argocd.argoproj.io
-spec:
+#spec:
-  project: default
+#  project: default
-  source:
+#  source:
-    repoURL: 'https://charts.openproject.org'
+#    repoURL: 'https://charts.openproject.org'
-    chart: openproject
+#    chart: openproject
-    targetRevision: 11.*.*
+#    targetRevision: 11.*.*
-    helm:
+#    helm:
-      values: |
+#      values: |
-        develop: false
+#        develop: false
-        
+#        
-        ingress:
+#        ingress:
-          enabled: true
+#          enabled: true
-          ingressClassName: traefik
+#          ingressClassName: traefik
-          annotations:
+#          annotations:
-            kubernetes.io/ingress.class: traefik
+#            kubernetes.io/ingress.class: traefik
-            traefik.ingress.kubernetes.io/router.entrypoints: websecure
+#            traefik.ingress.kubernetes.io/router.entrypoints: websecure
-            traefik.ingress.kubernetes.io/router.tls: "true"
+#            traefik.ingress.kubernetes.io/router.tls: "true"
-            cert-manager.io/cluster-issuer: lets-encrypt-staging
+#            cert-manager.io/cluster-issuer: lets-encrypt-staging
-          host: "openproject.innovation-hub-niedersachsen.de"
+#          host: "openproject.innovation-hub-niedersachsen.de"
-          path: /
+#          path: /
-          pathType: "Prefix"
+#          pathType: "Prefix"
-          tls:
+#          tls:
-            enabled: true
+#            enabled: true
-            secretName: openproject-tls
+#            secretName: openproject-tls
-        
+#        
-        openproject:
+#        openproject:
-          https: true
+#          https: true
-          hsts: true
+#          hsts: true
-          seed_locale: "en"
+#          seed_locale: "en"
-          useTmpVolumes: "false"
+#          useTmpVolumes: "false"
-          admin_user:
+#          admin_user:
-            password: "admin"
+#            password: "admin"
-            password_reset: true
+#            password_reset: true
-            name: "OpenProject Admin"
+#            name: "OpenProject Admin"
-            mail: "inno-netz@innovation-hub-niedersachsen.de"
+#            mail: "inno-netz@innovation-hub-niedersachsen.de"
-        
+#        
-        memcached:
+#        memcached:
-          global:
+#          global:
-            readOnlyRootFilesystem: false
+#            readOnlyRootFilesystem: false
-        
+#        
-        containerSecurityContext:
+#        containerSecurityContext:
-          readOnlyRootFilesystem: false
+#          readOnlyRootFilesystem: false
-
+#
-        persistence:
+#        persistence:
-          enabled: false
+#          enabled: false
-          accessModes:
+#          accessModes:
-            - "ReadWriteOnce"
+#            - "ReadWriteOnce"
-
+#
-        s3:
+#        s3:
-          enabled: true
+#          enabled: true
-          auth:
+#          auth:
-            accessKeyId: "K7mNpQ2vRxL9wYtH3Zc8"
+#            accessKeyId: "K7mNpQ2vRxL9wYtH3Zc8"
-            secretAccessKey: "jX9fK2mP5nQ8rT1vW4yZ7bN0cM3hL6gF9dS2aE5k"
+#            secretAccessKey: "jX9fK2mP5nQ8rT1vW4yZ7bN0cM3hL6gF9dS2aE5k"
-          host: "sws3.innovation-hub-niedersachsen.de"
+#          host: "sws3.innovation-hub-niedersachsen.de"
-          port: 443
+#          port: 443
-          bucket: "openproject"
+#          bucket: "openproject"
-          # Add region if required by your S3 provider
+#          # Add region if required by your S3 provider
-          # region: "us-east-1"
+#          # region: "us-east-1"
-        
+#        
-        postgresql:
+#        postgresql:
-          bundled: true
+#          bundled: true
-          auth:
+#          auth:
-            # Option 1: Use existingSecret (recommended for production)
+#            # Option 1: Use existingSecret (recommended for production)
-            existingSecret: "postgresql-auth"
+#            existingSecret: "postgresql-auth"
-            # The secret must contain these keys:
+#            # The secret must contain these keys:
-            # - postgres-password (PostgreSQL superuser password)
+#            # - postgres-password (PostgreSQL superuser password)
-            # - password (openproject user password)
+#            # - password (openproject user password)
-            
+#            
-            # Option 2: Set passwords directly (not recommended for production)
+#            # Option 2: Set passwords directly (not recommended for production)
-            username: "openproject"
+#            username: "openproject"
-            # password: "openproject123"
+#            # password: "openproject123"
-            # postgresPassword: "postgres123"
+#            # postgresPassword: "postgres123"
-            database: "openproject"
+#            database: "openproject"
-          global:
+#          global:
-            readOnlyRootFilesystem: false
+#            readOnlyRootFilesystem: false
-          primary:
+#          primary:
-            persistence:
+#            persistence:
-              enabled: true
+#              enabled: true
-              size: 8Gi
+#              size: 8Gi
-  
+#  
-  destination:
+#  destination:
-    server: 'https://kubernetes.default.svc'
+#    server: 'https://kubernetes.default.svc'
-    namespace: openproject
+#    namespace: openproject
-  
+#  
-  syncPolicy:
+#  syncPolicy:
-    managedNamespaceMetadata:
+#    managedNamespaceMetadata:
-      labels:
+#      labels:
-        pod-security.kubernetes.io/enforce: "privileged"
+#        pod-security.kubernetes.io/enforce: "privileged"
-    automated:
+#    automated:
-      selfHeal: true
+#      selfHeal: true
-      prune: true
+#      prune: true
-    syncOptions:
+#    syncOptions:
-      - CreateNamespace=true
+#      - CreateNamespace=true