{{/* Define the configs */}}
{{- define "synapse.secret" -}}
{{- $previous := lookup "v1" "Secret" .Release.Namespace "synapse-secret-macaroon" }}
{{- $msk := randAlphaNum 50 }}
{{- if $previous }}
{{- $msk = ( index $previous.data "key" ) | b64dec }}
{{- end }}
---
apiVersion: v1
kind: Secret
metadata:
  name: synapse-secret-macaroon
  labels:
  {{ include "tc.common.labels" . | nindent 4 }}
  annotations:
    rollme: {{ randAlphaNum 5 | quote }}
data:
  key: {{ $msk | b64enc }}
---
apiVersion: v1
kind: Secret
metadata:
  name: synapse-secret
  labels:
  {{ include "tc.common.labels" . | nindent 4 }}
  annotations:
    rollme: {{ randAlphaNum 5 | quote }}
stringData:
  secret.yaml: |
    {{- if .Values.mail.enabled }}
    email:
      enable_notifs: {{ .Values.mail.enabled }}
      notif_from: {{ .Values.mail.from }}
      smtp_host: {{ .Values.mail.host }}
      smtp_port: {{ .Values.mail.port }}
      smtp_user: {{ .Values.mail.username }}
      smtp_pass: {{ .Values.mail.password }}
      require_transport_security: {{ .Values.mail.requireTransportSecurity }}
    {{- end }}

    database:
        name: "psycopg2"
        args:
          user: "{{ .Values.postgresql.postgresqlUsername }}"
          password: {{ .Values.postgresql.postgresqlPassword }}
          database: "{{ .Values.postgresql.postgresqlDatabase }}"
          host: "{{ printf "%v-%v" .Release.Name "postgresql" }}"
          port: "5432"
          cp_min: 5
          cp_max: 10
          sslmode: "disable"

    {{- if .Values.matrix.sharedSecret }}
    registration_shared_secret: {{ .Values.matrix.sharedSecret }}
    {{- end }}

    macaroon_secret_key: {{ $msk }}

    {{- if .Values.coturn.enabled -}}
    turn_shared_secret: {{ include "matrix.coturn.sharedSecret" . }}
    {{- end }}

{{- end }}