104 lines
3.4 KiB
YAML
104 lines
3.4 KiB
YAML
# Multi-source: native Helm (no Kustomize helmCharts → no **--enable-helm**). One Git source uses
|
|
# **ref: values** (for **$values/...**) and **path** (Kustomize) together — see multiple_sources docs.
|
|
#
|
|
# Helm order: Kyverno before kube-prometheus so policy webhooks can resolve during sync; see
|
|
# **kube-prometheus-stack/values.yaml** (cert-manager admission TLS — avoids Kyverno failing pre-hook Jobs).
|
|
#
|
|
# https://argo-cd.readthedocs.io/en/stable/user-guide/multiple_sources/
|
|
apiVersion: argoproj.io/v1alpha1
|
|
kind: Application
|
|
metadata:
|
|
name: noble-platform
|
|
namespace: argocd
|
|
finalizers:
|
|
- resources-finalizer.argocd.argoproj.io/background
|
|
spec:
|
|
project: default
|
|
sources:
|
|
- repoURL: https://kyverno.github.io/kyverno/
|
|
chart: kyverno
|
|
targetRevision: "3.7.1"
|
|
helm:
|
|
releaseName: kyverno
|
|
namespace: kyverno
|
|
valueFiles:
|
|
- $values/clusters/noble/apps/kyverno/values.yaml
|
|
- repoURL: https://kyverno.github.io/kyverno/
|
|
chart: kyverno-policies
|
|
targetRevision: "3.7.1"
|
|
helm:
|
|
releaseName: kyverno-policies
|
|
namespace: kyverno
|
|
valueFiles:
|
|
- $values/clusters/noble/apps/kyverno/policies-values.yaml
|
|
- repoURL: https://bitnami-labs.github.io/sealed-secrets
|
|
chart: sealed-secrets
|
|
targetRevision: "2.18.4"
|
|
helm:
|
|
releaseName: sealed-secrets
|
|
namespace: sealed-secrets
|
|
valueFiles:
|
|
- $values/clusters/noble/apps/sealed-secrets/values.yaml
|
|
- repoURL: https://charts.external-secrets.io
|
|
chart: external-secrets
|
|
targetRevision: "2.2.0"
|
|
helm:
|
|
releaseName: external-secrets
|
|
namespace: external-secrets
|
|
valueFiles:
|
|
- $values/clusters/noble/apps/external-secrets/values.yaml
|
|
- repoURL: https://helm.releases.hashicorp.com
|
|
chart: vault
|
|
targetRevision: "0.32.0"
|
|
helm:
|
|
releaseName: vault
|
|
namespace: vault
|
|
valueFiles:
|
|
- $values/clusters/noble/apps/vault/values.yaml
|
|
- repoURL: https://prometheus-community.github.io/helm-charts
|
|
chart: kube-prometheus-stack
|
|
targetRevision: "82.15.1"
|
|
helm:
|
|
releaseName: kube-prometheus
|
|
namespace: monitoring
|
|
valueFiles:
|
|
- $values/clusters/noble/apps/kube-prometheus-stack/values.yaml
|
|
- repoURL: https://grafana.github.io/helm-charts
|
|
chart: loki
|
|
targetRevision: "6.55.0"
|
|
helm:
|
|
releaseName: loki
|
|
namespace: loki
|
|
valueFiles:
|
|
- $values/clusters/noble/apps/loki/values.yaml
|
|
- repoURL: https://fluent.github.io/helm-charts
|
|
chart: fluent-bit
|
|
targetRevision: "0.56.0"
|
|
helm:
|
|
releaseName: fluent-bit
|
|
namespace: logging
|
|
valueFiles:
|
|
- $values/clusters/noble/apps/fluent-bit/values.yaml
|
|
- repoURL: https://kubernetes-sigs.github.io/headlamp/
|
|
chart: headlamp
|
|
targetRevision: "0.40.1"
|
|
helm:
|
|
releaseName: headlamp
|
|
namespace: headlamp
|
|
valueFiles:
|
|
- $values/clusters/noble/apps/headlamp/values.yaml
|
|
- repoURL: https://gitea.pcenicni.ca/gsdavidp/home-server.git
|
|
targetRevision: HEAD
|
|
ref: values
|
|
path: clusters/noble/apps
|
|
destination:
|
|
server: https://kubernetes.default.svc
|
|
namespace: default
|
|
syncPolicy:
|
|
automated:
|
|
prune: true
|
|
selfHeal: true
|
|
syncOptions:
|
|
- CreateNamespace=true
|
|
- ServerSideApply=true
|