---
# yaml-language-server: $schema=https://raw.githubusercontent.com/fluxcd-community/flux2-schemas/main/helmrelease-helm-v2beta1.json
apiVersion: helm.toolkit.fluxcd.io/v2beta1
kind: HelmRelease
metadata:
  name: authentik-redis
  namespace: security
spec:
  interval: 30m
  chart:
    spec:
      chart: app-template
      version: 2.0.3
      interval: 30m
      sourceRef:
        kind: HelmRepository
        name: bjw-s
        namespace: flux-system

  values:
    controllers:
      main:
        annotations:
          secret.reloader.stakater.com/reload: authentik-redis-secret

        pod:
          automountServiceAccountToken: false

        containers:
          main:
            image:
              repository: public.ecr.aws/docker/library/redis
              tag: 7.2.1
            command:
              - sh
            args:
              - -c
              - >-
                redis-server --requirepass $REDIS_PASSWORD
            env:
              REDIS_PORT: &port 6379
              REDIS_PASSWORD:
                valueFrom:
                  secretKeyRef:
                    name: authentik-redis-secret
                    key: AUTHENTIK_REDIS_PASSWORD
            resources:
              requests:
                cpu: 5m
                memory: 128M
              limits:
                memory: 256M

    service:
      main:
        ports:
          http:
            enabled: false
          redis:
            enabled: true
            port: *port