k8s-deployment/values/badhouseplants/values.mealie.yaml

---
ext-database:
  enabled: true
  name: mealie-postgres16
  instance: postgres16
  credentials:
    POSTGRES_SERVER: "{{ .Hostname }}"
    POSTGRES_PORT: "{{ .Port }}"

workload:
  containers:
    mealie:
      envFrom:
        - environment
        - secretRef:
            name: mealie-postgres16-creds
      livenessProbe:
        httpGet:
          port: 9000
      readinessProbe:
        httpGet:
          port: 9000

ingress:
  main:
    class: traefik
    annotations:
      kubernetes.io/tls-acme: "true"
      kubernetes.io/ingress.allow-http: "false"
      kubernetes.io/ingress.global-static-ip-name: ""
      cert-manager.io/cluster-issuer: badhouseplants-issuer-http01
      traefik.ingress.kubernetes.io/router.entrypoints: web,websecure
    rules:
      - host: mealie.badhouseplants.net
        http:
          paths:
            - backend:
                service:
                  name: "{{ include \"chart.fullname\" $ }}"
                  port: 
                    number: 9000
              path: /
              pathType: Prefix
    tls:
      - hosts:
          - mealie.badhouseplants.net
        secretName: mealie.badhouseplants.net
env:
  environment:
    sensitive: false
    data:
      ALLOW_SIGNUP: "true"
      PUID: "1000"
      PGID: "1000"
      TZ: Europe/Berlin
      MAX_WORKERS: "1"
      WEB_CONCURRENCY: "1"
      BASE_URL: https://mealie.badhosueplants.net
      DB_ENGINE: postgres
      OIDC_AUTH_ENABLED: "true"
      OIDC_SIGNUP_ENABLED: "true"
      OIDC_CONFIGURATION_URL: "https://authentik.badhouseplants.net/application/o/mealie/.well-known/openid-configuration"
      OIDC_CLIENT_ID: mealie
      OIDC_USER_GROUP: "Family"
      OIDC_ADMIN_GROUP: "DevOps"
      OIDC_AUTO_REDIRECT: "true"
      OIDC_PROVIDER_NAME: authentik
  secrets:
    sensitive: true
    data:
      POSTGRES_USER: ~
      POSTGRES_PASSWORD: ~
      POSTGRES_SERVER: ~
      POSTGRES_PORT: ~
      POSTGRES_DB: ~