apiVersion: argoproj.io/v1alpha1 kind: Application metadata: name: "authentik" namespace: {{ .Values.spec.namespace }} finalizers: - resources-finalizer.argocd.argoproj.io spec: destination: namespace: "authentik" name: {{ .Values.spec.destination.name }} project: {{ .Values.spec.project }} syncPolicy: automated: prune: true selfHeal: true source: chart: "authentik" repoURL: "https://charts.goauthentik.io/" targetRevision: "2022.6.1" helm: releaseName: "authentik" values: | authentik: # This sends anonymous usage-data, stack traces on errors and # performance data to sentry.beryju.org, and is fully opt-in error_reporting: enabled: false email: # -- SMTP Server emails are sent from, fully optional host: "mail.your-server.de" port: 587 # -- SMTP credentials, when left empty, not authentication will be done username: "authentik@kaisers.info" # -- Enable either use_tls or use_ssl, they can't be enabled at the same time. use_tls: true # -- Connection timeout timeout: 30 # -- Email from address, can either be in the format "foo@bar.baz" or "authentik " from: "authentik " envFrom: - secretRef: name: 'authentik-kaisers-info-secrets' ingress: enabled: true annotations: cert-manager.io/cluster-issuer: "letsencrypt-prod" traefik.ingress.kubernetes.io/redirect-entry-point: "https" hosts: - host: "authentik.kaisers.info" paths: - path: "/" pathType: "Prefix" tls: - secretName: "authentik-kaisers-info-tls" hosts: - "authentik.kaisers.info" postgresql: enabled: true existingSecret: authentik-kaisers-info-postgresql-secrets primary: persistence: size: 2Gi redis: enabled: true master: persistence: size: 2Gi