--- apiVersion: helm.toolkit.fluxcd.io/v2beta2 kind: HelmRelease metadata: name: {{ .Release.Name }}-auth spec: chart: spec: sourceRef: kind: GitRepository name: "wrenix-helm-charts" namespace: "flux-system" chart: "./authentik-application" reconcileStrategy: "Revision" install: {{- toYaml .Values.commons.helm.release.install | nindent 4 }} test: {{- toYaml .Values.commons.helm.release.test | nindent 4 }} upgrade: {{- toYaml .Values.commons.helm.release.upgrade | nindent 4 }} driftDetection: {{- toYaml .Values.commons.helm.release.driftDetection | nindent 4 }} interval: 10m values: {{- $domain := .Values.ingress.host | default (printf "money.%s" .Values.commons.ingress.domain) }} {{- $url := printf "https://%s" $domain }} blueprint: authentik: domain: "https://{{ .Values.commons.auth.host | default (printf "auth.%s" .Values.commons.ingress.domain) }}" provider: name: "Firefly III" type: "proxy" proxy: externalHost: {{ $url | quote }} skipPathRegex: | /favicon.ico /v3-local/logo/logo-session.png /api/.* ingress: enabled: true domain: {{ $domain | quote }} backend: {{ .Values.commons.auth.authentik.backend }} {{- with $.Values.commons.ingress.annotations }} annotations: {{- toYaml . | nindent 14 }} {{- end }} {{- if $.Values.commons.ingress.tls.enabled }} tls: {{- with $.Values.commons.ingress.tls.override }} {{- toYaml . | nindent 14 }} {{- else }} - secretName: "{{ .Release.Name }}-cert" hosts: - {{ $domain | quote }} {{- end }} {{- end }} groups: - slug: "mycloud - users" bindID: "06415890-7d9e-4f54-9749-f6eebc3008a9" application: policyEngineMode: "any" openInNewTab: true publisher: "WrenIX's myCloud" slug: "mycloud-firefly-iii" group: "Office" name: "FireFly III" launchURL: {{ $url | quote }} icon: "{{ $url }}/v3-local/logo/logo-session.png" description: "A free and open source personal finance manager."