apiVersion: kustomize.config.k8s.io/v1beta1 kind: Kustomization namespace: home-assistant labels: - pairs: app.kubernetes.io/instance: home-assistant resources: - namespace.yaml - secrets.yaml - home-assistant.yaml - mosquitto-cert.yaml - mosquitto.yaml - zigbee2mqtt.yaml - zwavejs2mqtt.yaml - piper.yaml - whisper.yaml - ingress.yaml configMapGenerator: - name: home-assistant files: - configuration.yaml - groups.yaml - shell-command.yaml options: disableNameSuffixHash: true labels: app.kubernetes.io/name: home-assistant app.kubernetes.io/component: home-assistant app.kubernetes.io/part-of: home-assistant - name: mosquitto files: - mosquitto.conf patches: - patch: |- apiVersion: apps/v1 kind: StatefulSet metadata: name: home-assistant spec: template: spec: containers: - name: home-assistant env: - name: RECORDER_DB_PASSWORD valueFrom: secretKeyRef: name: home-assistant.homeassistant.default.credentials.postgresql.acid.zalan.do key: password - name: RECORDER_DB_USERNAME valueFrom: secretKeyRef: name: home-assistant.homeassistant.default.credentials.postgresql.acid.zalan.do key: username - name: RECORDER_DB_URL value: postgresql://$(RECORDER_DB_USERNAME):$(RECORDER_DB_PASSWORD)@default.postgresql/homeassistant volumeMounts: - mountPath: /run/config name: home-assistant-config readOnly: true - mountPath: /run/secrets/home-assistant name: home-assistant-secrets readOnly: true volumes: - name: home-assistant-config configMap: name: home-assistant defaultMode: 0600 - name: home-assistant-secrets secret: secretName: home-assistant defaultMode: 0640