infrastructure/clusters/cl01tl/applications/outline/values.yaml

outline:
  controllers:
    main:
      type: deployment
      replicas: 1
      strategy: Recreate
      revisionHistoryLimit: 3
      containers:
        main:
          image:
            repository: outlinewiki/outline
            tag: 0.87.3
            pullPolicy: IfNotPresent
          env:
            - name: NODE_ENV
              value: production
            - name: URL
              value: https://wiki.alexlebens.dev
            - name: PORT
              value: 3000
            - name: SECRET_KEY
              valueFrom:
                secretKeyRef:
                  name: outline-key-secret
                  key: secret-key
            - name: UTILS_SECRET
              valueFrom:
                secretKeyRef:
                  name: outline-key-secret
                  key: utils-key
            - name: POSTGRES_USERNAME
              valueFrom:
                secretKeyRef:
                  name: outline-postgresql-17-cluster-app
                  key: username
            - name: POSTGRES_PASSWORD
              valueFrom:
                secretKeyRef:
                  name: outline-postgresql-17-cluster-app
                  key: password
            - name: POSTGRES_DATABASE_NAME
              valueFrom:
                secretKeyRef:
                  name: outline-postgresql-17-cluster-app
                  key: dbname
            - name: POSTGRES_DATABASE_HOST
              valueFrom:
                secretKeyRef:
                  name: outline-postgresql-17-cluster-app
                  key: host
            - name: POSTGRES_DATABASE_PORT
              valueFrom:
                secretKeyRef:
                  name: outline-postgresql-17-cluster-app
                  key: port
            - name: DATABASE_URL
              value: postgres://$(POSTGRES_USERNAME):$(POSTGRES_PASSWORD)@$(POSTGRES_DATABASE_HOST):$(POSTGRES_DATABASE_PORT)/$(POSTGRES_DATABASE_NAME)
            - name: DATABASE_URL_TEST
              value: postgres://$(POSTGRES_USERNAME):$(POSTGRES_PASSWORD)@$(POSTGRES_DATABASE_HOST):$(POSTGRES_DATABASE_PORT)/$(POSTGRES_DATABASE_NAME)-test
            - name: DATABASE_CONNECTION_POOL_MIN
              value: "2"
            - name: DATABASE_CONNECTION_POOL_MAX
              value: "20"
            - name: PGSSLMODE
              value: disable
            - name: REDIS_URL
              value: redis://redis-replication-outline-master.outline:6379
            - name: FILE_STORAGE
              value: s3
            - name: AWS_ACCESS_KEY_ID
              valueFrom:
                secretKeyRef:
                  name: ceph-bucket-outline
                  key: AWS_ACCESS_KEY_ID
            - name: AWS_SECRET_ACCESS_KEY
              valueFrom:
                secretKeyRef:
                  name: ceph-bucket-outline
                  key: AWS_SECRET_ACCESS_KEY
            - name: AWS_REGION
              value: us-east-1
            - name: AWS_S3_UPLOAD_BUCKET_NAME
              valueFrom:
                configMapKeyRef:
                  name: ceph-bucket-outline
                  key: BUCKET_NAME
            - name: AWS_S3_UPLOAD_BUCKET_URL
              value: https://objects.alexlebens.dev
            - name: AWS_S3_FORCE_PATH_STYLE
              value: true
            - name: AWS_S3_ACL
              value: private
            - name: FILE_STORAGE_UPLOAD_MAX_SIZE
              value: "26214400"
            - name: FORCE_HTTPS
              value: false
            - name: ENABLE_UPDATES
              value: false
            - name: WEB_CONCURRENCY
              value: 1
            - name: FILE_STORAGE_IMPORT_MAX_SIZE
              value: 5120000
            - name: LOG_LEVEL
              value: info
            - name: DEFAULT_LANGUAGE
              value: en_US
            - name: RATE_LIMITER_ENABLED
              value: false
            - name: DEVELOPMENT_UNSAFE_INLINE_CSP
              value: false
            - name: OIDC_CLIENT_ID
              valueFrom:
                secretKeyRef:
                  name: outline-oidc-secret
                  key: client
            - name: OIDC_CLIENT_SECRET
              valueFrom:
                secretKeyRef:
                  name: outline-oidc-secret
                  key: secret
            - name: OIDC_AUTH_URI
              value: https://auth.alexlebens.dev/application/o/authorize/
            - name: OIDC_TOKEN_URI
              value: https://auth.alexlebens.dev/application/o/token/
            - name: OIDC_USERINFO_URI
              value: https://auth.alexlebens.dev/application/o/userinfo/
            - name: OIDC_USERNAME_CLAIM
              value: email
            - name: OIDC_DISPLAY_NAME
              value: Authentik
            - name: OIDC_SCOPES
              value: openid profile email
          resources:
            requests:
              cpu: 10m
              memory: 512Mi
  service:
    main:
      controller: main
      ports:
        http:
          port: 3000
          targetPort: 3000
          protocol: HTTP
cloudflared-outline:
  existingSecretName: outline-cloudflared-secret
  name: cloudflared-outline
postgres-17-cluster:
  mode: standalone
  cluster:
    storage:
      storageClass: local-path
    walStorage:
      storageClass: local-path
    monitoring:
      enabled: true
      prometheusRule:
        enabled: true
  recovery:
    method: objectStore
    objectStore:
      endpointURL: https://nyc3.digitaloceanspaces.com
      destinationPath: s3://postgres-backups-ce540ddf106d186bbddca68a/cl01tl/outline/outline-postgresql-17-cluster
      endpointCredentials: outline-postgresql-17-cluster-backup-secret
      recoveryIndex: 2
  backup:
    enabled: true
    endpointURL: https://nyc3.digitaloceanspaces.com
    destinationPath: s3://postgres-backups-ce540ddf106d186bbddca68a/cl01tl/outline/outline-postgresql-17-cluster
    endpointCredentials: outline-postgresql-17-cluster-backup-secret
    backupIndex: 2
    retentionPolicy: "7d"