apiVersion: apps/v1 kind: Deployment metadata: name: mealie spec: selector: matchLabels: app: mealie template: metadata: labels: app: mealie spec: containers: - name: mealie image: ghcr.io/mealie-recipes/mealie:latest resources: limits: memory: "500Mi" cpu: "500m" ports: - containerPort: 9000 volumeMounts: - mountPath: /app/data name: mealie-pvc env: - name: ALLOW_SIGNUP value: "false" - name: PUID value: "1000" - name: PGID value: "1000" - name: TZ value: Europe/London - name: BASE_URL value: https://mealie.foxhawk.co.uk - name: DB_ENGINE value: postgres - name: POSTGRES_USER valueFrom: secretKeyRef: name: mealie-db key: username - name: POSTGRES_PASSWORD valueFrom: secretKeyRef: name: mealie-db key: password - name: POSTGRES_SERVER value: mealie-db - name: POSTGRES_PORT value: "5432" - name: POSTGRES_DB value: mealie - name: OIDC_AUTH_ENABLED value: "true" - name: OIDC_SIGNUP_ENABLED value: "true" - name: OIDC_CONFIGURATION_URL value: "https://authentik.foxhawk.co.uk/application/o/mealie/.well-known/openid-configuration" - name: OIDC_CLIENT_ID valueFrom: secretKeyRef: name: mealie-oidc key: client-id - name: OIDC_CLIENT_SECRET valueFrom: secretKeyRef: name: mealie-oidc key: client-secret - name: OIDC_ADMIN_GROUP valueFrom: secretKeyRef: name: mealie-oidc key: admin-group - name: OIDC_AUTO_REDIRECT value: "false" - name: OIDC_PROVIDER_NAME value: "Authentik" volumes: - name: mealie-pvc persistentVolumeClaim: claimName: mealie --- apiVersion: v1 kind: PersistentVolumeClaim metadata: name: mealie spec: resources: requests: storage: 1G volumeMode: Filesystem accessModes: - ReadWriteOnce