flux-charts/mycloud-firefly-iii/templates/authentik-application.yaml

---
apiVersion: helm.toolkit.fluxcd.io/v2beta2
kind: HelmRelease
metadata:
  name: {{ .Release.Name }}-auth
spec:
  chart:
    spec:
      sourceRef:
        kind: GitRepository
        name: "wrenix-helm-charts"
        namespace: "flux-system"
      chart: "./authentik-application"
      reconcileStrategy: "Revision"
  install:
    {{- toYaml .Values.commons.helm.release.install | nindent 4 }}
  test:
    {{- toYaml .Values.commons.helm.release.test | nindent 4 }}
  upgrade:
    {{- toYaml .Values.commons.helm.release.upgrade | nindent 4 }}
  driftDetection:
    {{- toYaml .Values.commons.helm.release.driftDetection | nindent 4 }}
  interval: 10m
  values:
    {{- $domain := .Values.ingress.host | default (printf "money.%s" .Values.commons.ingress.domain) }}
    {{- $url := printf "https://%s" $domain }}
    blueprint:
      authentik:
        domain: "https://{{ .Values.commons.auth.host | default (printf "auth.%s" .Values.commons.ingress.domain) }}"
      provider:
        name: "Firefly III"
        type: "proxy"
        proxy:
          externalHost: {{ $url | quote }}
          skipPathRegex: |
            /favicon.ico
            /v3-local/logo/logo-session.png
            /api/.*
          ingress:
            enabled: true
            domain: {{ $domain | quote }}
            backend: {{ .Values.commons.auth.authentik.backend }}
            {{- with $.Values.commons.ingress.annotations }}
            annotations:
              {{- toYaml . | nindent 14 }}
            {{- end }}
            {{- if $.Values.commons.ingress.tls.enabled }}
            tls:
              {{- with $.Values.commons.ingress.tls.override }}
              {{- toYaml . | nindent 14 }}
              {{- else }}
              - secretName: "{{ .Release.Name }}-cert"
                hosts:
                  - {{ $domain | quote }}
              {{- end }}
            {{- end }}

      groups:
        - slug: "mycloud - users"
          bindID: "06415890-7d9e-4f54-9749-f6eebc3008a9"

      application:
        policyEngineMode: "any"
        openInNewTab: true
        publisher: "WrenIX's myCloud"
        slug: "mycloud-firefly-iii"
        group: "Office"
        name: "FireFly III"
        launchURL: {{ $url | quote }}
        icon: "{{ $url }}/v3-local/logo/logo-session.png"
        description: "A free and open source personal finance manager."