MacroPower
diff --git a/‎apps/external/certs/base/kcl.mod
Lines changed: 6 additions & 0 deletions b/‎apps/external/certs/base/kcl.mod
Lines changed: 6 additions & 0 deletions
diff --git a/‎apps/external/certs/base/kcl.mod.lock
Lines changed: 57 additions & 0 deletions b/‎apps/external/certs/base/kcl.mod.lock
Lines changed: 57 additions & 0 deletions
diff --git a/‎apps/external/certs/base/main.k
Lines changed: 22 additions & 0 deletions b/‎apps/external/certs/base/main.k
Lines changed: 22 additions & 0 deletions
diff --git a/‎apps/external/certs/base/values.yaml
Lines changed: 45 additions & 0 deletions b/‎apps/external/certs/base/values.yaml
Lines changed: 45 additions & 0 deletions
diff --git a/‎apps/external/certs/mgmt/.app.yaml
Lines changed: 5 additions & 0 deletions b/‎apps/external/certs/mgmt/.app.yaml
Lines changed: 5 additions & 0 deletions
diff --git a/‎apps/external/certs/mgmt/kcl.mod
Lines changed: 9 additions & 0 deletions b/‎apps/external/certs/mgmt/kcl.mod
Lines changed: 9 additions & 0 deletions
diff --git a/‎apps/external/certs/mgmt/kcl.mod.lock
Lines changed: 61 additions & 0 deletions b/‎apps/external/certs/mgmt/kcl.mod.lock
Lines changed: 61 additions & 0 deletions
diff --git a/‎apps/external/certs/mgmt/main.k
Lines changed: 10 additions & 0 deletions b/‎apps/external/certs/mgmt/main.k
Lines changed: 10 additions & 0 deletions
diff --git a/‎apps/external/secrets/base/main.k
Lines changed: 1 addition & 1 deletion b/‎apps/external/secrets/base/main.k
Lines changed: 1 addition & 1 deletion
@@ -0,0 +1,6 @@
+[package]
+name = "external_certs_base"
+version = "0.1.0"
+
+[dependencies]
+external = { path = "../../_tenant/shared" }
@@ -0,0 +1,57 @@
+[dependencies]
+  [dependencies.charts]
+    name = "charts"
+    full_name = "charts_0.1.0"
+    version = "0.1.0"
+  [dependencies.cilium]
+    name = "cilium"
+    full_name = "cilium_0.4.1"
+    version = "0.4.1"
+    sum = "YmVvSokDKgHSwDc7XRfVyNdniLwF+lA57/Vgi60MDGo="
+    reg = "ghcr.io"
+    repo = "kcl-lang/cilium"
+    oci_tag = "0.4.1"
+  [dependencies.external]
+    name = "external"
+    full_name = "external_0.1.0"
+    version = "0.1.0"
+  [dependencies.external_tenant]
+    name = "external_tenant"
+    full_name = "external_tenant_0.1.0"
+    version = "0.1.0"
+  [dependencies.filepath]
+    name = "filepath"
+    full_name = "filepath_0.12.0"
+    version = "0.12.0"
+    sum = "zok5+7YXY/qutpo/CnjoJRbrvjWclw40zkBrB2peSa4="
+    reg = "ghcr.io"
+    repo = "macropower/kclipper/filepath"
+    oci_tag = "0.12.0"
+  [dependencies.helm]
+    name = "helm"
+    full_name = "helm_0.12.0"
+    version = "0.12.0"
+    sum = "7vrtMRNYMwG+F+lTKbmp0eC/yh0mHwWv0rYV4oP5h9I="
+    reg = "ghcr.io"
+    repo = "macropower/kclipper/helm"
+    oci_tag = "0.12.0"
+  [dependencies.json_merge_patch]
+    name = "json_merge_patch"
+    full_name = "json_merge_patch_0.1.1"
+    version = "0.1.1"
+    sum = "o1aamShk1L2MGjnN9u3IErRZ3xBNDxgmFxXsGVMt8Wk="
+    reg = "ghcr.io"
+    repo = "kcl-lang/json_merge_patch"
+    oci_tag = "0.1.1"
+  [dependencies.k8s]
+    name = "k8s"
+    full_name = "k8s_1.31.2"
+    version = "1.31.2"
+    sum = "xBZgPsnpVVyWBpahuPQHReeRx28eUHGFoaPeqbct+vs="
+    reg = "ghcr.io"
+    repo = "kcl-lang/k8s"
+    oci_tag = "1.31.2"
+  [dependencies.konfig]
+    name = "konfig"
+    full_name = "konfig_0.0.1"
+    version = "0.0.1"
@@ -0,0 +1,22 @@
+import file
+
+import charts.cert_manager
+import external
+import konfig.models.frontend
+import konfig.utils
+
+_values = utils.read_yaml(file.current(), "values.yaml")
+
+app: frontend.App {
+    name = "certs"
+    tenantName = external.tenant.name
+    namespace = "{}-{}".format(tenantName, name)
+
+    charts.cert_manager = cert_manager.Chart {
+        values: _values | cert_manager.Values {
+            global: {
+                leaderElection.namespace = namespace
+            }
+        }
+    }
+}
@@ -0,0 +1,45 @@
+# yaml-language-server: $schema=../../../../charts/cert_manager/values.schema.json
+
+replicaCount: 2
+
+## When enableCertificateOwnerRef is enabled, secrets will be automatically
+## removed when the certificate resource is deleted.
+##
+enableCertificateOwnerRef: true
+
+extraArgs:
+  - --logging-format=json
+  - --dns01-recursive-nameservers-only
+  - --dns01-recursive-nameservers=1.1.1.1:53,1.0.0.1:53
+
+prometheus:
+  servicemonitor:
+    enabled: false
+
+resources:
+  requests:
+    cpu: 1m
+    memory: 100Mi
+  limits:
+    cpu: 100m
+    memory: 100Mi
+
+webhook:
+  replicaCount: 2
+  resources:
+    requests:
+      cpu: 1m
+      memory: 100Mi
+    limits:
+      cpu: 100m
+      memory: 100Mi
+
+cainjector:
+  replicaCount: 2
+  resources:
+    requests:
+      cpu: 1m
+      memory: 250Mi
+    limits:
+      cpu: 100m
+      memory: 250Mi
@@ -0,0 +1,5 @@
+# yaml-language-server: $schema=../../../../konfig/models/frontend/patch.schema.json
+
+syncPolicy:
+  automated:
+    selfHeal: true
@@ -0,0 +1,9 @@
+[package]
+name = "external_certs_mgmt"
+version = "0.1.0"
+
+[dependencies]
+external_certs_base = { path = "../base" }
+
+[profile]
+entries = ["main.k", "${konfig:KCL_MOD}/models/render/render.k"]
@@ -0,0 +1,61 @@
+[dependencies]
+  [dependencies.charts]
+    name = "charts"
+    full_name = "charts_0.1.0"
+    version = "0.1.0"
+  [dependencies.cilium]
+    name = "cilium"
+    full_name = "cilium_0.4.1"
+    version = "0.4.1"
+    sum = "YmVvSokDKgHSwDc7XRfVyNdniLwF+lA57/Vgi60MDGo="
+    reg = "ghcr.io"
+    repo = "kcl-lang/cilium"
+    oci_tag = "0.4.1"
+  [dependencies.external]
+    name = "external"
+    full_name = "external_0.1.0"
+    version = "0.1.0"
+  [dependencies.external_certs_base]
+    name = "external_certs_base"
+    full_name = "external_certs_base_0.1.0"
+    version = "0.1.0"
+  [dependencies.external_tenant]
+    name = "external_tenant"
+    full_name = "external_tenant_0.1.0"
+    version = "0.1.0"
+  [dependencies.filepath]
+    name = "filepath"
+    full_name = "filepath_0.12.0"
+    version = "0.12.0"
+    sum = "zok5+7YXY/qutpo/CnjoJRbrvjWclw40zkBrB2peSa4="
+    reg = "ghcr.io"
+    repo = "macropower/kclipper/filepath"
+    oci_tag = "0.12.0"
+  [dependencies.helm]
+    name = "helm"
+    full_name = "helm_0.12.0"
+    version = "0.12.0"
+    sum = "7vrtMRNYMwG+F+lTKbmp0eC/yh0mHwWv0rYV4oP5h9I="
+    reg = "ghcr.io"
+    repo = "macropower/kclipper/helm"
+    oci_tag = "0.12.0"
+  [dependencies.json_merge_patch]
+    name = "json_merge_patch"
+    full_name = "json_merge_patch_0.1.1"
+    version = "0.1.1"
+    sum = "o1aamShk1L2MGjnN9u3IErRZ3xBNDxgmFxXsGVMt8Wk="
+    reg = "ghcr.io"
+    repo = "kcl-lang/json_merge_patch"
+    oci_tag = "0.1.1"
+  [dependencies.k8s]
+    name = "k8s"
+    full_name = "k8s_1.31.2"
+    version = "1.31.2"
+    sum = "xBZgPsnpVVyWBpahuPQHReeRx28eUHGFoaPeqbct+vs="
+    reg = "ghcr.io"
+    repo = "kcl-lang/k8s"
+    oci_tag = "1.31.2"
+  [dependencies.konfig]
+    name = "konfig"
+    full_name = "konfig_0.0.1"
+    version = "0.0.1"
@@ -0,0 +1,10 @@
+import charts.cert_manager
+import external_certs_base
+
+_baseValues = external_certs_base.app.charts.cert_manager.values
+
+app = external_certs_base.app | {
+    charts.cert_manager.values = _baseValues | cert_manager.Values {
+        replicaCount = 2
+    }
+}
@@ -9,7 +9,7 @@ import konfig.utils
 _values = utils.read_yaml(file.current(), "values.yaml")
 
 app: frontend.App {
-    name = "system"
+    name = "secrets"
     tenantName = external.tenant.name
 
     charts.external_secrets = external_secrets.Chart {