host: {{ .StateValues.host }}

image: {{ requiredEnv "CI_REGISTRY_IMAGE" }}
imageTag: {{ .StateValues.deployTag | ternary (requiredEnv "CI_COMMIT_REF_NAME") (requiredEnv "CI_COMMIT_HG_SHORT_SHA") }}

backupPvcClaimName: backup

readinessProbeUrl: /login
livenessProbeUrl: /login

sessionsInRedis: true
scheduler: false

ingress:
  noindex: true
  clusterIssuer: null
  enabled: true
  tls:
    withSecret: false
  annotations:
    nginx.ingress.kubernetes.io/configuration-snippet: |
      more_set_headers "Vary: Origin";
      more_set_headers "Access-Control-Allow-Origin: https://rodolf.k.intra.logilab.fr";
      more_set_headers "Access-Control-Allow-Credentials: true";
      more_set_headers "Access-Control-Allow-Methods: GET,POST,OPTIONS";
      more_set_headers "Access-Control-Allow-Headers: Content-Type, X-Client-Name";
    nginx.ingress.kubernetes.io/enable-cors: "false"

# backup
backupBeforeCwUpgrade: {{ .StateValues.backupBeforeCwUpgrade }}
restoreDbWithLatestBackupBeforeHelmRelease: {{ .StateValues.restoreDbWithLatestBackupBeforeHelmRelease }}
backupCronJob: {{ .StateValues.backupCronJob }}

# database
runDbInitBeforeHelmRelease: true
resetDbBeforeHelmRelease: {{ .StateValues.resetDbBeforeHelmRelease }}
dropDbAfterDeletingHelmRelease: {{ .StateValues.dropDbAfterDeletingHelmRelease }}

env:
  CW_ACCESS_CONTROL_ALLOW_HEADERS: "*"
  CW_ACCESS_CONTROL_ALLOW_METHODS: GET, POST, OPTIONS
  CW_ACCESS_CONTROL_ALLOW_ORIGIN: https://rodolf.k.intra.logilab.fr
  CW_ACCESS_CONTROL_MAX_AGE: "1728000"
  CW_DB_HOST: pg.intra.logilab.fr
  CW_DB_PORT: 5432
  CW_DB_NAME: rodolf
  CW_DB_USER: rodolf
  PYRAMID_API_ENABLE_LOGIN_ROUTE: "yes"

secretEnv:
  CW_PASSWORD: {{ .StateValues.cwPassword }}
  CW_DB_PASSWORD: {{ .StateValues.cwDbPassword }}
  REDIS_SESSIONS_SECRET: {{ .StateValues.redisSessionsSecret }}