From 86df1f0730045e1ef8e9af1b06bd66faf79aed01 Mon Sep 17 00:00:00 2001
From: JJGadgets <git@jjgadgets.tech>
Date: Tue, 23 Apr 2024 14:11:20 +0800
Subject: [PATCH] fix(gotosocial): authentik netpols

---
 kube/deploy/apps/gotosocial/app/hr.yaml | 11 +++++++----
 1 file changed, 7 insertions(+), 4 deletions(-)

diff --git a/kube/deploy/apps/gotosocial/app/hr.yaml b/kube/deploy/apps/gotosocial/app/hr.yaml
index ff5bcffd..7f9928fb 100644
--- a/kube/deploy/apps/gotosocial/app/hr.yaml
+++ b/kube/deploy/apps/gotosocial/app/hr.yaml
@@ -22,15 +22,15 @@ spec:
       type: "deployment"
       replicas: 1
     image:
-      repository: "registry.jjgadgets.tech/jjgadgets/gotosocial"
+      repository: "jank.ing/jjgadgets/gotosocial"
       tag: "0.15.0@sha256:6c11ffd1de7016953965e58c95ed0d12bb858ef3276b01133a106fa30a5cd499"
     podLabels:
       ingress.home.arpa/nginx-internal: "allow"
       ingress.home.arpa/cloudflare: "allow"
       db.home.arpa/pg: "pg-gotosocial"
       s3.home.arpa/store: "rgw-${CLUSTER_NAME}"
-      egress.home.arpa/nginx-external: "allow"
-      egress.home.arpa/world: "allow"
+      authentik.home.arpa/https: "allow"
+      egress.home.arpa/internet: "allow"
       prom.home.arpa/kps: "allow"
     env:
       TZ: "${CONFIG_TZ}"
@@ -181,4 +181,7 @@ spec:
           failureThreshold: 300
     serviceMonitor:
       main:
-        enabled: true
\ No newline at end of file
+        enabled: true
+    hostAliases:
+      - ip: "${APP_IP_AUTHENTIK}"
+        hostnames: ["${APP_DNS_AUTHENTIK}"]