# Default values for freeleaps-devops-reconciler
replicaCount: 1

reconciler:
  image:
    repository: freeleaps/reconciler
    pullPolicy: IfNotPresent
    tag: "1.1.0"

imagePullSecrets: []
nameOverride: ""
fullnameOverride: ""

# Operator Configuration
operator:
  clusterwide: false
  priority: 100
  peeringName: "freeleaps-devops-reconciler"
  namespaces:
    - "freeleaps-devops-system"
  debug: false

serviceAccount:
  create: true
  annotations: {}
  name: ""

rbac:
  create: true
  additionalRules: []

podAnnotations: {}

podSecurityContext:
  fsGroup: 1000
  runAsNonRoot: true
  runAsUser: 1000

securityContext:
  allowPrivilegeEscalation: false
  capabilities:
    drop:
      - ALL
  readOnlyRootFilesystem: true
  runAsNonRoot: true
  runAsUser: 1000

service:
  type: ClusterIP
  port: 8080
  targetPort: 8080

ingress:
  enabled: false
  className: ""
  annotations: {}
  hosts:
    - host: devops-reconciler.local
      paths:
        - path: /
          pathType: Prefix
  tls: []

resources:
  limits:
    cpu: 500m
    memory: 512Mi
  requests:
    cpu: 100m
    memory: 128Mi

nodeSelector: {}
tolerations: []
affinity: {}

# Environment Configuration
env:
  # General Configuration
  reconcilerDebug: "false"
  defaultHttpTimeout: "30s"
  k8sClusterDomain: "kubernetes.default.svc.freeleaps.cluster"
  kubernetesApiTimeout: "30s"
  autoDiscoverK8sClusterDomainMaxRetries: "5"
  logLevel: "INFO"
  logFormat: "text"
  operatorNamespace: "freeleaps-devops-system"
  reconcileInterval: "30s"
  allowHttpGitUrls: "false"

  # RabbitMQ Configuration
  rabbitmq:
    host: "freeleaps-alpha-rabbitmq-cluster.freeleaps-alpha.svc.freeleaps.cluster"
    port: "5672"
    vhost: "/"
    inputQueue: "freeleaps.devops.reconciler.input"
    outputQueue: "freeleaps.devops.reconciler.output"
    enableExchangeBinding: "true"
    inputExchange: "freeleaps.notification.exchange"
    inputExchangeType: "direct"
    inputRoutingKey: "freeleaps.devops.reconciler.input"
    outputExchange: "freeleaps.notification.exchange"
    outputRoutingKey: "freeleaps.devops.reconciler.output"

  # Jenkins Configuration
  jenkins:
    endpoint: "http://jenkins.freeleaps-devops-system.svc.freeleaps.cluster:8080"
    apiTimeout: "30"
    folderCreationRetryCount: "3"

  # ArgoCD Configuration
  argocd:
    endpoint: "http://argocd-server.freeleaps-devops-system.svc.freeleaps.cluster:80"
    apiTimeout: "30"
    resourceCreationTimeout: "300"

  # Network Resource Management
  networkResources:
    domainTemplate: "{env}.{project_id}.internalmathmast.com"
    ingressClassName: "nginx"
    certManagerClusterIssuer: "internal-mathmast-com"
    ingressControllerIp: "4.155.160.32"
    dnsCreationTimeout: "300"
    certificateIssuanceTimeout: "600"
    ingressReadyTimeout: "300"
    networkResourceCleanupTimeout: "300"
    networkResourceRetryCount: "3"
    networkResourceRetryDelay: "30"

# Secret data
secrets:
  # RabbitMQ credentials
  rabbitmqCredentials:
    username: "user"
    password: "4O80YlxnlhHrjzaM"

  # Jenkins credentials
  jenkinsCredentials:
    username: "admin"
    token: "119fe346a7d5e1fc7f9ed4d98eac3e73ee"

  # ArgoCD credentials
  argocdCredentials:
    username: "admin"
    password: "ELvjjaHupgWomLj9"

  # Default Git credentials
  defaultGitCredentials:
    username: "freeleaps"
    password: "r8sA8CPHD9!bt6d"

  # Default Docker Registry credentials
  defaultDockerRegistryCredentials:
    username: "freeleapsdevops"
    password: "dckr_pat_y-KsBOwcEGTdCQDsAb-NBz9_beg"

  # Docker Registry PAT credentials
  dockerRegistryPat:
    username: "freeleapsdevops"
    token: "dckr_pat_UHFbzDZk-gZSM2UhRgnmTCMis9g"

  # Azure Key Vault configuration
  azureKeyVault:
    endpoint: "https://freeleaps-secrets.vault.azure.net/"
    clientId: "b6be5b92-25a8-482d-8dcd-7321bf2f83d9"
    clientSecret: "4Nx8Q~fYFM~V~3otsN7YB4GPRQ0R8CHJ7XtpLcVA"
    tenantId: "cf151ee8-5c2c-4fe7-a1c4-809ba43c9f24"
    subscriptionId: "0a280068-dec4-4bf0-9f04-65b64f412b50"
    resourceGroup: "k8s"
    name: "freeleaps-secrets"

  # Azure DNS configuration
  azureDns:
    subscriptionId: "0a280068-dec4-4bf0-9f04-65b64f412b50"
    tenantId: "cf151ee8-5c2c-4fe7-a1c4-809ba43c9f24"
    clientId: "b6be5b92-25a8-482d-8dcd-7321bf2f83d9"
    clientSecret: "4Nx8Q~fYFM~V~3otsN7YB4GPRQ0R8CHJ7XtpLcVA"
    resourceGroup: "k8s"
    zoneName: "internalmathmast.com"

# Monitoring
monitoring:
  serviceMonitor:
    enabled: false
    interval: 30s
    scrapeTimeout: 10s
    labels: {}
  grafanaDashboard:
    enabled: false
    labels: {}

# Health checks
healthcheck:
  livenessProbe:
    enabled: true
    httpGet:
      path: /healthz
      port: 8080
    initialDelaySeconds: 30
    periodSeconds: 10
    timeoutSeconds: 5
    failureThreshold: 3
  readinessProbe:
    enabled: true
    httpGet:
      path: /ready
      port: 8080
    initialDelaySeconds: 5
    periodSeconds: 5
    timeoutSeconds: 3
    failureThreshold: 3

# Deployment strategy
strategy:
  type: RollingUpdate
  rollingUpdate:
    maxUnavailable: 1
    maxSurge: 1

# Network Policy
networkPolicy:
  enabled: false
  ingress: []
  egress: []

# CRDs Management
crds:
  install: false
  keep: true