apiVersion: kustomize.config.k8s.io/v1beta1
kind: Kustomization

# Local dev overlay — targets Lima VM running k3s on macOS
# Deploy with: kubectl apply -k overlays/local/
#
# NOTE: base/mesh (Linkerd) is excluded here. Linkerd is bootstrapped
# separately by scripts/local-up.sh via the Linkerd CLI, which avoids
# the identity cert bootstrapping problem at kustomize render time.
#
# DOMAIN_SUFFIX substitution: local-up.sh pipes `kustomize build | sed` to
# replace DOMAIN_SUFFIX with <LIMA_IP>.sslip.io before kubectl apply.

resources:
  - ../../base/ingress
  - ../../base/ory
  - ../../base/data
  - ../../base/storage
  - ../../base/lasuite
  - ../../base/media
  - ../../base/devtools

images:
  # Local dev: image is built and imported directly into k3s containerd.
  # imagePullPolicy: Never is set in values-pingora.yaml so k3s never tries to pull.
  # Production overlay points this at src.DOMAIN_SUFFIX/sunbeam/sunbeam-proxy:latest.
  - name: sunbeam-proxy
    newName: sunbeam-proxy
    newTag: dev

patches:
  # Add hostPort for TURN relay range on Lima VM
  - path: values-pingora.yaml
    target:
      kind: Deployment
      name: pingora

  # Downgrade LiveKit TURN service from LoadBalancer → ClusterIP (klipper would take hostPort 443)
  - path: values-livekit.yaml
    target:
      kind: Service
      name: livekit-server-turn

  # Apply §10.7 memory limits to all Deployments
  - path: values-resources.yaml