From 760f8830a8d7637809d603a2102cc277449ce0a5 Mon Sep 17 00:00:00 2001
From: Scrublord MacBad <Scrublord@Mac.Bad>
Date: Tue, 21 Apr 2026 20:33:02 +0200
Subject: [PATCH] fix: resolve schema violations for postgres and well-known

---
 apps/production/element-server-suite.yaml | 39 +++++++++++------------
 1 file changed, 18 insertions(+), 21 deletions(-)

diff --git a/apps/production/element-server-suite.yaml b/apps/production/element-server-suite.yaml
index 06698a3..7dbfedf 100644
--- a/apps/production/element-server-suite.yaml
+++ b/apps/production/element-server-suite.yaml
@@ -14,44 +14,41 @@ spec:
         name: element-ess-oci
         namespace: flux-system
   values:
-    # Wichtig: serverName muss an die Wurzel!
-    serverName: axion1337.chat
+    # 1. Globale Einstellungen (Das Fundament)
+    global:
+      domainName: axion1337.chat
+      postgresql:
+        existingSecret: matrix-postgres-auth
 
-    # Globale Ingress-Einstellungen (Traefik & SSL)
-    ingress:
-      className: traefik
-      annotations:
-        cert-manager.io/cluster-issuer: letsencrypt-prod
-        traefik.ingress.kubernetes.io/router.tls: "true"
+    # 2. Interne Postgres deaktivieren (verhindert den /postgres Fehler)
+    postgres:
+      enabled: false
 
-    # 1. Synapse
+    # 3. Synapse (API auf matrix.axion1337.chat)
     synapse:
       enabled: true
       ingress:
         host: matrix.axion1337.chat
 
-    # 2. Element Web
+    # 4. Element Web (Client auf axion1337.chat)
     elementWeb:
       enabled: true
       ingress:
         host: axion1337.chat
 
-    # 3. Element Admin (Der Service für admin.axion1337.chat)
+    # 5. Element Admin (Konsole auf admin.axion1337.chat)
     elementAdmin:
       enabled: true
       ingress:
         host: admin.axion1337.chat
 
-    # 4. Well-Known Delegation (Pflicht für Föderation)
+    # 6. Well-Known (Ohne 'host', da automatisch via elementWeb)
     wellKnownDelegation:
       enabled: true
-      ingress:
-        host: axion1337.chat
 
-    # 5. Postgres (Verbindung zum externen DB-Secret)
-    postgres:
-      host: postgres-postgresql.database.svc.cluster.local # Dein DB-Host
-      user: postgres
-      password:
-        secret: matrix-postgres-auth
-        secretKey: password
\ No newline at end of file
+    # 7. Ingress-Basis (SSL & Traefik)
+    ingress:
+      className: traefik
+      annotations:
+        cert-manager.io/cluster-issuer: letsencrypt-prod
+        traefik.ingress.kubernetes.io/router.tls: "true"
\ No newline at end of file