k3s/argocd/apps/plane/values-plane.yaml

apiVersion: argoproj.io/v1alpha1
kind: Application
metadata:
  name: plane
  finalizers:
    - resources-finalizer.argocd.argoproj.io
spec:
  ignoreDifferences:
    # PVCs - creationTimestamp ignorieren
    - group: ""
      kind: PersistentVolumeClaim
      jsonPointers:
        - /metadata/creationTimestamp
    
    # Jobs komplett ignorieren - sie sind immutable und werden von Helm Hooks verwaltet
    - group: batch
      kind: Job
      jsonPointers:
        - /spec
        - /metadata/annotations
        - /metadata/labels
        
    # StatefulSets - verschiedene dynamische Felder
    - group: apps
      kind: StatefulSet
      jsonPointers:
        - /spec/volumeClaimTemplates/0/metadata/creationTimestamp
        - /spec/volumeClaimTemplates/1/metadata/creationTimestamp
        - /spec/volumeClaimTemplates/2/metadata/creationTimestamp
        
  project: default
  source:
    repoURL: 'https://helm.plane.so/'
    chart: 'plane-ce'
    targetRevision: 1.*.*
    helm:
      values: |
        
        ingress:
          enabled: true
          appHost: "plane.innovation-hub-niedersachsen.de"
          ingressClass: "traefik"
          ingress_annotations:
            cert-manager.io/cluster-issuer: lets-encrypt
            traefik.ingress.kubernetes.io/router.entrypoints: websecure
        
        ssl:
          tls_secret_name: "plane-tls"
          createIssuer: false
          generateCerts: false

        #worker:
        #  replicas: 1
        #  memoryLimit: 4000Mi
        #  cpuLimit: 1500m
        #  cpuRequest: 500m
        #  memoryRequest: 1000Mi
        
        worker:
          env:
            - name: CELERYD_CONCURRENCY
              value: "10"
          replicas: 1
          memoryLimit: 8Gi
          cpuLimit: 1500m
          cpuRequest: 500m
          memoryRequest: 6Gi

        minio:
          local_setup: false

        postgres:
          local_setup: true

        env:
          pgdb_username: plane
          pgdb_password: plane
          pgdb_name: plane
          pgdb_remote_url: "postgresql://plane:plane@plane-pgdb.plane.svc.cluster.local:5432/plane"
          docstore_bucket: "plane-docstore"
          doc_upload_size_limit: "5242880"
          aws_access_key: "a0ccb47cc0994bf51ecd"
          aws_secret_access_key: "0d54ee2f943f2a56b8cafc3afe9cb1e2f9fecac2"
          aws_region: "eu-central-1"
          aws_s3_endpoint_url: "https://sws3.innovation-hub-niedersachsen.de"
          
  destination:
    server: 'https://kubernetes.default.svc'
    namespace: plane
    
  syncPolicy:
    managedNamespaceMetadata:
      labels:
        pod-security.kubernetes.io/enforce: "privileged"
    automated:
      selfHeal: true
      prune: true
    syncOptions:
      - CreateNamespace=true
      - RespectIgnoreDifferences=true
      - PruneLasre=true