MarcusVRP pushed to branch main at Root / Kubernetes / FluxCD Commits: 6dedc9ec by marcusvrp at 2025-08-01T05:31:13-03:00 feat(matrix): use external postgres database - - - - - 2 changed files: - apps/base/matrix/es.yaml - apps/base/matrix/helmrelease.yaml Changes: ===================================== apps/base/matrix/es.yaml ===================================== @@ -11,47 +11,19 @@ spec: target: name: matrix data: - # - secretKey: oidcClientId - # remoteRef: - # key: matrix - # property: oidcClientId - # - secretKey: oidcClientSecret - # remoteRef: - # key: matrix - # property: oidcClientSecret - # - secretKey: postgresHost - # remoteRef: - # key: matrix - # property: postgresHost - # - secretKey: postgresPassword - # remoteRef: - # key: matrix - # property: postgresPassword - # - secretKey: postgresUser - # remoteRef: - # key: matrix - # property: postgresUser - # - secretKey: s3AccessKey - # remoteRef: - # key: matrix - # property: s3AccessKey - # - secretKey: s3Bucket - # remoteRef: - # key: matrix - # property: s3Bucket - # - secretKey: s3Endpoint - # remoteRef: - # key: matrix - # property: s3Endpoint - # - secretKey: s3SecretAccessKey - # remoteRef: - # key: matrix - # property: s3SecretAccessKey - secretKey: masOidcConfig remoteRef: key: matrix property: masOidcConfig - - secretKey: synapseOidcConfig + - secretKey: synapseS3Config remoteRef: key: matrix - property: synapseOidcConfig + property: synapseS3Config + - secretKey: synapsePostgresPassword + remoteRef: + key: matrix + property: synapsePostgresPassword + - secretKey: masPostgresPassword + remoteRef: + key: matrix + property: masPostgresPassword ===================================== apps/base/matrix/helmrelease.yaml ===================================== @@ -19,12 +19,28 @@ spec: cert-manager.io/cluster-issuer: letsencrypt-wildcard tlsSecret: matrix-tls postgres: - enabled: true + # do not use **internal** postgres db + enabled: false synapse: + image: harbor.c3sl.ufpr.br/root/synapse ingress: host: synapse.matrix.c3sl.ufpr.br tlsSecret: synapse-tls + postgres: + host: postgres.c3sl.ufpr.br + user: matrix-synapse + database: matrix-synapse + password: + secret: matrix + secretKey: synapsePostgresPassword additional: + allow-search-users: + config: | + user_directory: + enabled: true + search_all_users: true + prefer_local_users: true + show_locked_users: false custom-config: config: | report_stats: false @@ -44,10 +60,20 @@ spec: enable_notifs: true notif_for_new_users: true validation_token_lifetime: 15m + s3-config: + configSecret: matrix + configSecretKey: synapseS3Config matrixAuthenticationService: ingress: host: auth.matrix.c3sl.ufpr.br tlsSecret: mas-tls + postgres: + host: postgres.c3sl.ufpr.br + user: matrix-auth + database: matrix-auth + password: + secret: matrix + secretKey: masPostgresPassword additional: button-text: config: | View it on GitLab: https://gitlab.c3sl.ufpr.br/root/k8s/fluxcd/-/commit/6dedc9ec82affe8483b5a8b... -- View it on GitLab: https://gitlab.c3sl.ufpr.br/root/k8s/fluxcd/-/commit/6dedc9ec82affe8483b5a8b... You're receiving this email because of your account on gitlab.c3sl.ufpr.br.