90 lines
2.2 KiB
YAML
90 lines
2.2 KiB
YAML
# services/jenkins/helmrelease.yaml
|
|
apiVersion: helm.toolkit.fluxcd.io/v2
|
|
kind: HelmRelease
|
|
metadata:
|
|
name: jenkins
|
|
namespace: jenkins
|
|
spec:
|
|
interval: 30m
|
|
chart:
|
|
spec:
|
|
chart: jenkins
|
|
version: 5.8.114
|
|
sourceRef:
|
|
kind: HelmRepository
|
|
name: jenkins
|
|
namespace: flux-system
|
|
install:
|
|
remediation:
|
|
retries: 3
|
|
upgrade:
|
|
remediation:
|
|
retries: 3
|
|
remediateLastFailure: true
|
|
cleanupOnFail: true
|
|
values:
|
|
controller:
|
|
jenkinsUrl: https://ci.bstein.dev
|
|
ingress:
|
|
enabled: true
|
|
hostName: ci.bstein.dev
|
|
ingressClassName: traefik
|
|
annotations:
|
|
cert-manager.io/cluster-issuer: letsencrypt
|
|
traefik.ingress.kubernetes.io/router.entrypoints: websecure
|
|
tls:
|
|
- secretName: jenkins-tls
|
|
hosts:
|
|
- ci.bstein.dev
|
|
installPlugins:
|
|
- kubernetes
|
|
- workflow-aggregator
|
|
- git
|
|
- configuration-as-code
|
|
- oic-auth
|
|
containerEnv:
|
|
- name: ENABLE_OIDC
|
|
value: "false"
|
|
- name: OIDC_CLIENT_ID
|
|
valueFrom:
|
|
secretKeyRef:
|
|
name: jenkins-oidc
|
|
key: clientId
|
|
optional: true
|
|
- name: OIDC_CLIENT_SECRET
|
|
valueFrom:
|
|
secretKeyRef:
|
|
name: jenkins-oidc
|
|
key: clientSecret
|
|
optional: true
|
|
- name: OIDC_AUTH_URL
|
|
valueFrom:
|
|
secretKeyRef:
|
|
name: jenkins-oidc
|
|
key: authorizationUrl
|
|
optional: true
|
|
- name: OIDC_TOKEN_URL
|
|
valueFrom:
|
|
secretKeyRef:
|
|
name: jenkins-oidc
|
|
key: tokenUrl
|
|
optional: true
|
|
- name: OIDC_USERINFO_URL
|
|
valueFrom:
|
|
secretKeyRef:
|
|
name: jenkins-oidc
|
|
key: userInfoUrl
|
|
optional: true
|
|
- name: OIDC_LOGOUT_URL
|
|
valueFrom:
|
|
secretKeyRef:
|
|
name: jenkins-oidc
|
|
key: logoutUrl
|
|
optional: true
|
|
persistence:
|
|
enabled: true
|
|
storageClass: astreae
|
|
size: 50Gi
|
|
serviceAccount:
|
|
create: true
|