alexlebens/infrastructure
1
0
Fork 0
Code Issues 1 Pull Requests 5 Actions Activity
Files
52b759b75c165b395fdf6fa72f18d9ac254d7818
infrastructure/clusters/cl01tl/helm/vaultwarden/values.yaml
Renovate Bot 25f618e63d
Some checks are pending
renovate/stability-days Updates have not met minimum release age requirement
Details
render-manifests / render-manifests (pull_request) Successful in 55s
Details
lint-test-helm / lint-helm (pull_request) Successful in 2m26s
Details
lint-test-helm / validate-kubeconform (pull_request) Has been skipped
Details
chore(deps): update vaultwarden to v1.35.8
2026-04-26 00:11:48 +00:00

94 lines
2.5 KiB
YAML
Raw Blame History

vaultwarden:
controllers:
main:
type: deployment
replicas: 1
strategy: Recreate
containers:
main:
image:
repository: ghcr.io/dani-garcia/vaultwarden
tag: 1.35.8@sha256:c4f6056fe0c288a052a223cecd263a90d1dda1a0177bb5b054a363a6c7b211d9
env:
- name: DOMAIN
value: https://passwords.alexlebens.dev
- name: SIGNUPS_ALLOWED
value: "false"
- name: INVITATIONS_ALLOWED
value: "false"
- name: DATABASE_URL
valueFrom:
secretKeyRef:
name: vaultwarden-postgresql-18-cluster-app
key: uri
- name: SSO_ENABLED
value: true
- name: SSO_SIGNUPS_MATCH_EMAIL
value: true
- name: SSO_AUTHORITY
value: https://auth.alexlebens.dev/application/o/vaultwarden/
- name: SSO_SCOPES
value: "email profile offline_access"
- name: SSO_CLIENT_ID
valueFrom:
secretKeyRef:
name: vaultwarden-oidc-authentik
key: SSO_CLIENT_ID
- name: SSO_CLIENT_SECRET
valueFrom:
secretKeyRef:
name: vaultwarden-oidc-authentik
key: SSO_CLIENT_SECRET
resources:
requests:
cpu: 10m
memory: 30Mi
service:
main:
controller: main
ports:
http:
port: 80
targetPort: 80
persistence:
config:
forceRename: vaultwarden-data
storageClass: ceph-block
accessMode: ReadWriteOnce
size: 5Gi
advancedMounts:
main:
main:
- path: /data
readOnly: false
postgres-18-cluster:
mode: recovery
recovery:
method: objectStore
objectStore:
index: 1
backup:
objectStore:
- name: garage-local
index: 1
destinationBucket: postgres-backups
externalSecretCredentialPath: /garage/home-infra/postgres-backups
isWALArchiver: true
scheduledBackups:
- name: live-backup
suspend: false
immediate: true
schedule: "0 0 0 * * *"
backupName: garage-local
volsync-target-data:
pvcTarget: vaultwarden-data
local:
enabled: true
schedule: 0 0 0 * * *
remote:
enabled: true
schedule: 0 0 0 * * *
external:
enabled: true
schedule: 0 0 0 * * *
Reference in New Issue View Git Blame Copy Permalink