clusterConfig:
  manifests: https://gitlab.com/oceanbox/manifests.git
  policies: policies/sys
  resources: resources/sys
  distro: "" #[nixos, talos]
  env: "" #[dev, test, staging, prod]
  initca: ""
  domain: ".local"
  apiserver: ""
  apiserverip: ""
  etcd_nodes: []
  k8s_nodes: []
  cluster: ""
  ingress_nodes: []
  ingress_replica_count: 3
  fileserver: ""
  acme_email: ""
  nodenames: []
  nodes: []
  s3:
    hosts: []
    patterns: []
    cidr: []
  ingress_clusterissuer: "letsencrypt-production"
  ingress_whitelist_ips:
    - 10.0.0.0/8
    - 172.16.0.0/12
    - 192.168.0.0/16
    - 172.19.255.0/24
  oidc: []
    #- name: azure-oidc
    #  provider: azuread
    #  tenant: "https://login.microsoftonline.com/<tenant>/oauth2/v2.0"
    #  secret_ref:
    #    name: azure-oidc
    #  group_id: "<group_id>"
    #- name: github-oidc
    #  provider: github
    #  secret_ref:
    #    name: github-oidc
    #  allowed_organizations: <org>
    #  allowed_teams: <team-id>

install:
  argo:
    argocd:
      enabled: true
    apps:
      enabled: true
    rollouts:
      enabled: false
    workflows:
      enabled: false
  atlantis:
    enabled: false
    envs:
      - prod
      - staging
  sorcerer:
    enabled: false
    envs:
      - prod
      - staging
  openfga:
    enabled: false
    envs:
      - prod
      - staging

  cilium:
    enabled: false
  linkerd:
    enabled: true
  thanos:
    enabled: false
  prometheus:
    enabled: true
  nfs_provisioner:
    enabled: true
  cert_manager:
    autosync: true
  kubernetes_dashboard:
    enabled: false
  metrics_server:
    autosync: true
  nginx:
    enabled: true
  kyverno:
    enabled: false
  velero:
    enabled: true
  x509_exporter:
    enabled: true
  downscaler:
    enabled: false
  actions_runner_controller:
    enabled: false
  gitlab_runner:
    enabled: true
  postgres_operator:
    enabled: true
  rabbitmq_operator:
    enabled: false
  jaeger_operator:
    enabled: false
  loki:
    enabled: false
  tempo:
    enabled: false
  otel:
    enabled: false
  promtail:
    enabled: false
  mariadb_operator:
    enabled: false
  chartmuseum:
    enabled: false
  clickhouse_operator:
    enabled: false
  oncall:
    enabled: false
  dapr:
    enable: true
  busynix.enable: false
  headscale.enable: false
  plausible.enable: false
  dex.enable: false
  keycloak.enable: false
  rabbitmq.enable: false
  redis.enable: false
  wordpress.enable: false
  yolo-dl.enable: false
  yolo-registry.enable: false
  osm-tile-server.enable: false
  geoserver.enable: false