refactor: manage Helm config and cache with env

    done

  }

  function get_helm_opts() {

    echo "${TRACE+--debug} --registry-config $CI_PROJECT_DIR/.config/helm/registry.json --repository-cache $CI_PROJECT_DIR/.cache/helm/repository --repository-config $CI_PROJECT_DIR/.config/helm/repositories.yaml"

  }

  function setup_kubeconfig() {

    if [ -n "$1" ]; then

      export KUBECONFIG="$CI_PROJECT_DIR/.kubeconfig"

    # Use cacheable folders

    mkdir -p "$CI_PROJECT_DIR/.config/helm/"

    mkdir -p "$CI_PROJECT_DIR/.cache/helm/repository/"

    ln -s "$CI_PROJECT_DIR/.cache" ~/.cache

    ln -s "$CI_PROJECT_DIR/.config" ~/.config

    helm_opts=$(get_helm_opts)

    # Install helm repositories

    for repo in $HELM_REPOS

          log_info "--- login to OCI-registry \\e[32m${repo_name}\\e[0m: \\e[33;1m${registry_host}\\e[0m"

          export HELM_EXPERIMENTAL_OCI=1

          # shellcheck disable=SC2086

          echo "$repo_password" | helm $helm_opts registry login "$registry_host" --username "$repo_user" --password-stdin

          echo "$repo_password" | helm ${TRACE+--debug} registry login "$registry_host" --username "$repo_user" --password-stdin

        else

          log_warn "--- OCI-registry \\e[32m${repo_name}\\e[0m (\\e[33;1m${repo_url}\\e[0m) defined, but no credentials found (\$HELM_REPO_${repo_name_ssc}_USER/\$HELM_REPO_${repo_name_ssc}_PASSWORD)"

        fi

        then

          log_info "--- add repository \\e[32m${repo_name}\\e[0m: \\e[33;1m${repo_url}\\e[0m (with user/password auth)"

          # shellcheck disable=SC2086

          echo "$repo_password" | helm $helm_opts repo add "$repo_name" "$repo_url" --username "$repo_user" --password-stdin

          echo "$repo_password" | helm ${TRACE+--debug} repo add "$repo_name" "$repo_url" --username "$repo_user" --password-stdin

        else

          log_info "--- add repository \\e[32m${repo_name}\\e[0m: \\e[33;1m${repo_url}\\e[0m (unauthenticated)"

          # shellcheck disable=SC2086

          helm $helm_opts repo add "$repo_name" "$repo_url"

          helm ${TRACE+--debug} repo add "$repo_name" "$repo_url"

        fi

      fi

    done

    # shellcheck disable=SC2086

    helm $helm_opts repo update

    helm ${TRACE+--debug} repo update

  }

  function awkenvsubst() {

      log_info "--- \\e[32mpre-deploy hook\\e[0m (\\e[33;1m${prescript}\\e[0m) not found: skip"

    fi

    helm_opts=$(get_helm_opts)

    helm_opts=${TRACE+--debug}

    helm_opts="$helm_opts --set ${HELM_ENV_VALUE_NAME}=$environment_type"

    helm_opts="$helm_opts --set ${HELM_HOSTNAME_VALUE_NAME}=$hostname"

      log_info "--- \\e[32mpre-delete hook\\e[0m (\\e[33;1m${prescript}\\e[0m) not found: skip"

    fi

    helm_opts=$(get_helm_opts)

    helm_opts=${TRACE+--debug}

    if [ -f "$CI_PROJECT_DIR/.kubeconfig" ]; then

      log_info "--- using \\e[32mkubeconfig\\e[0m: \\e[33;1m$CI_PROJECT_DIR/.kubeconfig\\e[0m"

    log_info "--- \$environment_name: \\e[33;1m${environment_name}\\e[0m"

    log_info "--- \$environment_type: \\e[33;1m${environment_type}\\e[0m"

    helm_opts=$(get_helm_opts)

    helm_opts=${TRACE+--debug}

    if [ -f "$CI_PROJECT_DIR/.kubeconfig" ]; then

      log_info "--- using \\e[32mkubeconfig\\e[0m: \\e[33;1m$CI_PROJECT_DIR/.kubeconfig\\e[0m"

    fi

    add_helm_repositories

    helm_opts=$(get_helm_opts)

    # helm package

    # shellcheck disable=SC2086

    helm $helm_opts $HELM_PACKAGE_ARGS $helm_version_opts $HELM_CHART_DIR --destination helm_packages

    helm ${TRACE+--debug} $HELM_PACKAGE_ARGS $helm_version_opts $HELM_CHART_DIR --destination helm_packages

  }

  function helm_publish() {

    helm_opts=$(get_helm_opts)

    helm_package=$(ls -1 ./helm_packages/*.tgz 2>/dev/null || echo "")

    if [[ -z "$helm_package" ]]; then

      log_error "No package found to deploy"

      then

        registry_host=$(echo "$HELM_PUBLISH_URL" | awk -F[/:] '{print $4}')

        # shellcheck disable=SC2086

        echo "$password" | helm $helm_opts registry login "$registry_host" --username "$username" --password-stdin

        echo "$password" | helm ${TRACE+--debug} registry login "$registry_host" --username "$username" --password-stdin

        # enable OCI support prior to v3.8.0

        export HELM_EXPERIMENTAL_OCI=1

        # shellcheck disable=SC2086

        helm $helm_opts push "$helm_package" "$HELM_PUBLISH_URL"

        helm ${TRACE+--debug} push "$helm_package" "$HELM_PUBLISH_URL"

      else

        log_info "Installing cm-push plugin (version ${HELM_CM_PUSH_PLUGIN_VERSION:-latest})..."

        # shellcheck disable=SC2086

        helm $helm_opts plugin install ${HELM_CM_PUSH_PLUGIN_VERSION:+--version "$HELM_CM_PUSH_PLUGIN_VERSION"} https://github.com/chartmuseum/helm-push || true

        helm ${TRACE+--debug} plugin install ${HELM_CM_PUSH_PLUGIN_VERSION:+--version "$HELM_CM_PUSH_PLUGIN_VERSION"} https://github.com/chartmuseum/helm-push || true

        # shellcheck disable=SC2086

        helm $helm_opts cm-push --username "$username" --password "$password" "$helm_package" "$HELM_PUBLISH_URL"

        helm ${TRACE+--debug} cm-push --username "$username" --password "$password" "$helm_package" "$HELM_PUBLISH_URL"

      fi

      ;;

    post)

  services:

    - name: "$TBC_TRACKING_IMAGE"

      command: ["--service", "helm", "3.3.2" ]

  variables:

    HELM_CACHE_HOME: $CI_PROJECT_DIR/.cache/helm

    HELM_CONFIG_HOME: $CI_PROJECT_DIR/.config/helm

  before_script:

    - *helm-scripts

    - install_ca_certs "${CUSTOM_CA_CERTS:-$DEFAULT_CA_CERTS}"