# DO NOT COMMIT THE REAL VERSION OF THIS FILE.
# deploy/matomo-secret.yaml is gitignored — apply it manually once:
#
#   cp deploy/matomo-secret.yaml.example deploy/matomo-secret.yaml
#   # edit the passwords below, then:
#   kubectl apply -f deploy/matomo-secret.yaml
#   kubectl annotate secret matomo-secret -n solitaire \
#     argocd.argoproj.io/sync-options=Prune=false --overwrite
#
# Generate strong passwords with:
#   python3 -c "import secrets; print(secrets.token_urlsafe(18))"
apiVersion: v1
kind: Secret
metadata:
  name: matomo-secret
  namespace: solitaire
stringData:
  MYSQL_ROOT_PASSWORD: "CHANGE_ME"
  MYSQL_DATABASE: matomo
  MYSQL_USER: matomo
  MYSQL_PASSWORD: "CHANGE_ME"
  MATOMO_ADMIN_PASSWORD: "CHANGE_ME"