---
- name: Create HedgeDoc namespace
  kubernetes.core.k8s:
    name: hedgedoc
    api_version: v1
    kind: Namespace
    state: present
    definition:
      metadata:
        labels:
          prometheus: default

- name: Create HedgeDoc secrets
  kubernetes.core.k8s:
    state: present
    definition:
      apiVersion: v1
      kind: Secret
      metadata:
        name: hedgedoc-secret-config
        namespace: hedgedoc
      data:
        # Auth
        CMD_OAUTH2_CLIENT_ID: "{{ hedgedoc.auth.clientId | b64encode }}"
        CMD_OAUTH2_CLIENT_SECRET: "{{ hedgedoc.auth.clientSecret | b64encode }}"

        # DB
        CMD_DB_URL: "{{ 'postgres://%s:%s@postgres-15-postgresql.postgres.svc.cluster.local:5432/hedgedoc' | format(hedgedoc.db.user, hedgedoc.db.password)  | b64encode }}"

        # Image upload
        CMD_MINIO_ACCESS_KEY: "{{ minio.rootUser | b64encode }}"
        CMD_MINIO_SECRET_KEY: "{{ minio.rootPassword | b64encode }}"

        CMD_SESSION_SECRET: "{{ hedgedoc.session.secret | b64encode}}"

- name: Deploy HedgeDoc kustomization
  k8s:
    definition: "{{ lookup('kubernetes.core.kustomize', dir=([role_path, 'files'] | path_join)) }}"