{ nixhelm, system, ... }: { config = { kubernetes = { helm.releases.longhorn = { chart = nixhelm.chartsDerivations.${system}.longhorn.longhorn; includeCRDs = true; values = { defaultSettings = { defaultDataPath = "/mnt/longhorn"; storageMinimalAvailablePercentage = 0; }; persistence = { defaultClassReplicaCount = 2; }; }; }; resources = { ingresses.longhorn = { metadata.annotations = { "cert-manager.io/cluster-issuer" = "letsencrypt"; "traefik.ingress.kubernetes.io/router.entrypoints" = "localsecure"; }; spec = { ingressClassName = "traefik"; rules = [{ host = "longhorn.kun.is"; http.paths = [{ path = "/"; pathType = "Prefix"; backend.service = { name = "longhorn-frontend"; port.number = 80; }; }]; }]; tls = [{ secretName = "longhorn-tls"; hosts = [ "longhorn.kun.is" ]; }]; }; }; }; }; }; }