apiVersion: argoproj.io/v1alpha1 kind: Application metadata: name: nextcloud namespace: {{ .Values.spec.namespace }} finalizers: - resources-finalizer.argocd.argoproj.io spec: destination: namespace: {{ .Values.spec.namespace }} name: {{ .Values.spec.destination.name }} project: {{ .Values.spec.project }} syncPolicy: automated: prune: true selfHeal: true source: chart: nextcloud repoURL: https://nextcloud.github.io/helm/ targetRevision: 2.12.1 helm: releaseName: nextcloud values: | ingress: enabled: true # className: nginx annotations: {} # nginx.ingress.kubernetes.io/proxy-body-size: 4G # kubernetes.io/tls-acme: "true" # cert-manager.io/cluster-issuer: letsencrypt-prod # nginx.ingress.kubernetes.io/server-snippet: |- # server_tokens off; # proxy_hide_header X-Powered-By; # rewrite ^/.well-known/webfinger /public.php?service=webfinger last; # rewrite ^/.well-known/host-meta /public.php?service=host-meta last; # rewrite ^/.well-known/host-meta.json /public.php?service=host-meta-json; # location = /.well-known/carddav { # return 301 $scheme://$host/remote.php/dav; # } # location = /.well-known/caldav { # return 301 $scheme://$host/remote.php/dav; # } # location = /robots.txt { # allow all; # log_not_found off; # access_log off; # } # location ~ ^/(?:build|tests|config|lib|3rdparty|templates|data)/ { # deny all; # } # location ~ ^/(?:autotest|occ|issue|indie|db_|console) { # deny all; # } # tls: # - secretName: nextcloud-tls # hosts: # - nextcloud.kube.home labels: {} path: / pathType: Prefix nextcloud: host: newcloud.kaisers.info username: admin password: changeme