installation/Helmfile_eks.yaml

repositories:
- name: kyverno
  url: https://kyverno.github.io/kyverno/
- name: prometheus-opencost-exporter
  url: https://prometheus-community.github.io/helm-charts
- name: prometheus
  url: https://prometheus-community.github.io/helm-charts
- name: grafana
  url: https://grafana.github.io/helm-charts
- name: vpa
  url: https://charts.fairwinds.com/stable
- name: cert-manager
  url: https://charts.jetstack.io
- name: fairwinds-stable
  url: https://charts.fairwinds.com/stable

---
helmDefaults:
  wait: true
  timeout: 1200
---
environments:
  default:
    values:
    - "./config/{{ requiredEnv "HOST_ENV" }}/enabled.yaml"
---
releases:
- name: kyverno
  version: "3.2.6"
  chart: kyverno/kyverno
  condition: kyverno.enabled
  namespace: finops-stack
  values:
  - "./config/common/kyverno-values.yaml"
  - "./config/{{ requiredEnv "HOST_ENV" }}/kyverno-values.yaml"  

- name: finops-policies
  version: "0.1.0"
  chart: "../charts/finops-policies"
  condition: finops-policies.enabled
  namespace: finops-stack
  disableValidationOnInstall: true
  needs:
  - kyverno

- name: cert-manager
  version: v1.15.3
  chart: cert-manager/cert-manager
  condition: cert-manager.enabled
  namespace: cert-manager
  values:
  - "./config/common/cert-manager-values.yaml"
  - "./config/{{ requiredEnv "HOST_ENV" }}/cert-manager-values.yaml"
  - global:
      leaderElection:
        namespace: cert-manager
      commonLabels:
        cost-center-label: "xyz"
  - serviceAccount:
      annotations:
        {{ env "CERT_MANAGER_SA_ANNOTATION" }}

- name: cert-manager-config
  version: "0.1.0"
  chart: "../charts/cert-manager-config"
  condition: cert-manager.enabled
  namespace: finops-stack
  disableValidationOnInstall: true
  needs:
  - cert-manager/cert-manager
  values:
  - email: {{ env "CERT_MANAGER_EMAIL" }}
  - grafanaTLSCert:
      hostname: {{ env "GRAFANA_FQDN" }}

- name: grafana
  version: "8.4.7"
  chart: grafana/grafana
  condition: grafana.enabled
  namespace: finops-stack
  values:
  - "./config/common/grafana-values.yaml"
  - "./config/{{ requiredEnv "HOST_ENV" }}/grafana-values.yaml"
  - adminUser: {{ env "GRAFANA_ADMIN_USER" }}
  - adminPassword: {{ env "GRAFANA_ADMIN_PW" }}
  - serviceAccount:
      annotations:
        {{ env "GRAFANA_SA_ANNOTATION" }}

  # If you don't require ingress via an FQDN remove this ingress section
  - ingress:
      enabled: {{ env "GRAFANA_INGRESS" }}
      annotations:
        kubernetes.io/ingress.global-static-ip-name: {{ env "GRAFANA_PUBLIC_IP_NAME" }}
      hosts:
      - {{ env "GRAFANA_FQDN" }}
    # If you don't require https access to the Grafana dashboard remove this tls section
      tls:
      - secretName: {{ env "GRAFANA_FQDN" }}-tls
        hosts:
        - {{ env "GRAFANA_FQDN" }}
  needs:
  - cert-manager/cert-manager

- name: vpa
  version: "4.5.0"
  chart: "vpa/vpa"
  condition: vpa.enabled
  namespace: finops-stack
  values:
  - "./config/common/vpa-values.yaml"

- name: prometheus-opencost-exporter
  version: "0.1.1"
  chart: "prometheus-opencost-exporter/prometheus-opencost-exporter"
  condition: opencost-exporter.enabled
  namespace: finops-stack
  values:
  - "./config/common/prometheus-opencost-exporter-values.yaml"
  - "./config/{{ requiredEnv "HOST_ENV" }}/prometheus-opencost-exporter-values.yaml"

- name: finops-stack-opencost-templates
  version: "0.1.0"
  chart: "../charts/opencost-config"
  condition: opencost-templates.enabled
  namespace: finops-stack
  disableValidationOnInstall: true
  values:
  - "./config/{{ requiredEnv "HOST_ENV" }}/opencost-templates-values.yaml"

- name: goldilocks
  version: "9.0.0"
  chart: fairwinds-stable/goldilocks
  condition: goldilocks.enabled
  namespace: finops-stack
  values:
  - "./config/common/goldilocks-values.yaml"

 