Commit new App releases for TrueCharts
Signed-off-by: TrueCharts-Bot <bot@truecharts.org>
This commit is contained in:
@@ -3,4 +3,4 @@ dependencies:
|
||||
repository: https://truecharts.org/
|
||||
version: 6.6.1
|
||||
digest: sha256:fa5fa632be8581b6755b1bc247d0251de150963b75fe1e8c524727b7dffb7835
|
||||
generated: "2021-07-20T08:35:49.207324606Z"
|
||||
generated: "2021-07-20T08:41:50.114543999Z"
|
||||
|
||||
@@ -3,4 +3,4 @@ dependencies:
|
||||
repository: https://truecharts.org/
|
||||
version: 6.6.1
|
||||
digest: sha256:fa5fa632be8581b6755b1bc247d0251de150963b75fe1e8c524727b7dffb7835
|
||||
generated: "2021-07-20T08:35:51.266470435Z"
|
||||
generated: "2021-07-20T08:41:52.224976262Z"
|
||||
|
||||
@@ -3,4 +3,4 @@ dependencies:
|
||||
repository: https://truecharts.org/
|
||||
version: 6.6.1
|
||||
digest: sha256:fa5fa632be8581b6755b1bc247d0251de150963b75fe1e8c524727b7dffb7835
|
||||
generated: "2021-07-20T08:35:53.19840709Z"
|
||||
generated: "2021-07-20T08:41:54.238360837Z"
|
||||
|
||||
@@ -3,4 +3,4 @@ dependencies:
|
||||
repository: https://truecharts.org/
|
||||
version: 6.6.1
|
||||
digest: sha256:fa5fa632be8581b6755b1bc247d0251de150963b75fe1e8c524727b7dffb7835
|
||||
generated: "2021-07-20T08:35:55.11661347Z"
|
||||
generated: "2021-07-20T08:41:56.24006983Z"
|
||||
|
||||
@@ -3,4 +3,4 @@ dependencies:
|
||||
repository: https://truecharts.org/
|
||||
version: 6.6.1
|
||||
digest: sha256:fa5fa632be8581b6755b1bc247d0251de150963b75fe1e8c524727b7dffb7835
|
||||
generated: "2021-07-20T08:35:57.058054646Z"
|
||||
generated: "2021-07-20T08:41:58.373191225Z"
|
||||
|
||||
@@ -3,4 +3,4 @@ dependencies:
|
||||
repository: https://truecharts.org/
|
||||
version: 6.6.1
|
||||
digest: sha256:fa5fa632be8581b6755b1bc247d0251de150963b75fe1e8c524727b7dffb7835
|
||||
generated: "2021-07-20T08:35:58.994759866Z"
|
||||
generated: "2021-07-20T08:42:00.364745552Z"
|
||||
|
||||
@@ -3,4 +3,4 @@ dependencies:
|
||||
repository: https://truecharts.org/
|
||||
version: 6.6.1
|
||||
digest: sha256:fa5fa632be8581b6755b1bc247d0251de150963b75fe1e8c524727b7dffb7835
|
||||
generated: "2021-07-20T08:36:00.933974851Z"
|
||||
generated: "2021-07-20T08:42:02.397142152Z"
|
||||
|
||||
@@ -3,4 +3,4 @@ dependencies:
|
||||
repository: https://truecharts.org/
|
||||
version: 6.6.1
|
||||
digest: sha256:fa5fa632be8581b6755b1bc247d0251de150963b75fe1e8c524727b7dffb7835
|
||||
generated: "2021-07-20T08:36:02.84204774Z"
|
||||
generated: "2021-07-20T08:42:04.454914322Z"
|
||||
|
||||
@@ -3,4 +3,4 @@ dependencies:
|
||||
repository: https://truecharts.org/
|
||||
version: 6.6.1
|
||||
digest: sha256:fa5fa632be8581b6755b1bc247d0251de150963b75fe1e8c524727b7dffb7835
|
||||
generated: "2021-07-20T08:36:04.86796883Z"
|
||||
generated: "2021-07-20T08:42:06.489078955Z"
|
||||
|
||||
@@ -3,4 +3,4 @@ dependencies:
|
||||
repository: https://truecharts.org/
|
||||
version: 6.6.1
|
||||
digest: sha256:fa5fa632be8581b6755b1bc247d0251de150963b75fe1e8c524727b7dffb7835
|
||||
generated: "2021-07-20T08:36:06.79660578Z"
|
||||
generated: "2021-07-20T08:42:08.487396866Z"
|
||||
|
||||
@@ -3,4 +3,4 @@ dependencies:
|
||||
repository: https://truecharts.org/
|
||||
version: 6.6.1
|
||||
digest: sha256:fa5fa632be8581b6755b1bc247d0251de150963b75fe1e8c524727b7dffb7835
|
||||
generated: "2021-07-20T08:36:08.714163556Z"
|
||||
generated: "2021-07-20T08:42:10.546165447Z"
|
||||
|
||||
9
stable/nextcloud/1.4.0/CONFIG.md
Normal file
9
stable/nextcloud/1.4.0/CONFIG.md
Normal file
@@ -0,0 +1,9 @@
|
||||
# Configuration Options
|
||||
|
||||
##### Connecting to other apps
|
||||
If you need to connect this App to other Apps on TrueNAS SCALE, please refer to our "Linking Apps Together" guide:
|
||||
https://truecharts.org/manual/linking/
|
||||
|
||||
|
||||
##### Available config options
|
||||
In the future this page is going to contain an automated list of options available in the installation/edit UI.
|
||||
12
stable/nextcloud/1.4.0/Chart.lock
Normal file
12
stable/nextcloud/1.4.0/Chart.lock
Normal file
@@ -0,0 +1,12 @@
|
||||
dependencies:
|
||||
- name: common
|
||||
repository: https://truecharts.org/
|
||||
version: 6.6.1
|
||||
- name: postgresql
|
||||
repository: https://charts.bitnami.com/bitnami
|
||||
version: 10.6.0
|
||||
- name: redis
|
||||
repository: https://charts.bitnami.com/bitnami
|
||||
version: 14.7.2
|
||||
digest: sha256:910b8dc35cb005eab9dc21b16b7d477b3f54a512f10c48c5f6ebe03bdfb886c2
|
||||
generated: "2021-07-20T08:42:16.618874929Z"
|
||||
39
stable/nextcloud/1.4.0/Chart.yaml
Normal file
39
stable/nextcloud/1.4.0/Chart.yaml
Normal file
@@ -0,0 +1,39 @@
|
||||
apiVersion: v2
|
||||
appVersion: auto
|
||||
dependencies:
|
||||
- name: common
|
||||
repository: https://truecharts.org/
|
||||
version: 6.6.1
|
||||
- condition: postgresql.enabled
|
||||
name: postgresql
|
||||
repository: https://charts.bitnami.com/bitnami
|
||||
version: 10.6.0
|
||||
- condition: redis.enabled
|
||||
name: redis
|
||||
repository: https://charts.bitnami.com/bitnami
|
||||
version: 14.7.2
|
||||
deprecated: false
|
||||
description: A private cloud server that puts the control and security of your own
|
||||
data back into your hands.
|
||||
home: https://nextcloud.com/
|
||||
icon: https://upload.wikimedia.org/wikipedia/commons/thumb/6/60/Nextcloud_Logo.svg/1280px-Nextcloud_Logo.svg.png
|
||||
keywords:
|
||||
- nextcloud
|
||||
- storage
|
||||
- http
|
||||
- web
|
||||
- php
|
||||
kubeVersion: '>=1.16.0-0'
|
||||
maintainers:
|
||||
- email: info@truecharts.org
|
||||
name: TrueCharts
|
||||
url: truecharts.org
|
||||
- email: kjeld@schouten-lebbing.nl
|
||||
name: Ornias1993
|
||||
url: truecharts.org
|
||||
name: nextcloud
|
||||
sources:
|
||||
- https://github.com/nextcloud/docker
|
||||
- https://github.com/nextcloud/helm
|
||||
type: application
|
||||
version: 1.4.0
|
||||
57
stable/nextcloud/1.4.0/README.md
Normal file
57
stable/nextcloud/1.4.0/README.md
Normal file
@@ -0,0 +1,57 @@
|
||||
# Introduction
|
||||
|
||||
  
|
||||
|
||||
A private cloud server that puts the control and security of your own data back into your hands.
|
||||
|
||||
TrueCharts are designed to be installed as TrueNAS SCALE app only. We can not guarantee this charts works as a stand-alone helm installation.
|
||||
**This chart is not maintained by the upstream project and any issues with the chart should be raised [here](https://github.com/truecharts/apps/issues/new/choose)**
|
||||
|
||||
## Source Code
|
||||
|
||||
* <https://github.com/nextcloud/docker>
|
||||
* <https://github.com/nextcloud/helm>
|
||||
|
||||
## Requirements
|
||||
|
||||
Kubernetes: `>=1.16.0-0`
|
||||
|
||||
## Dependencies
|
||||
|
||||
| Repository | Name | Version |
|
||||
|------------|------|---------|
|
||||
| https://charts.bitnami.com/bitnami | postgresql | 10.5.1 |
|
||||
| https://charts.bitnami.com/bitnami | redis | 14.6.3 |
|
||||
| https://truecharts.org/ | common | 6.5.2 |
|
||||
|
||||
## Installing the Chart
|
||||
|
||||
To install the chart with the release name `nextcloud`
|
||||
|
||||
- Open TrueNAS SCALE
|
||||
- Go to Apps
|
||||
- Click "Install" for this specific Apps
|
||||
- Fill out the configuration form
|
||||
|
||||
## Uninstalling the Chart
|
||||
|
||||
To uninstall the `nextcloud` deployment
|
||||
|
||||
- Open TrueNAS SCALE
|
||||
- Go to Apps
|
||||
- Go to "Installed Apps"
|
||||
- Expand the menu in the top-right corner of this App
|
||||
- Click "Remove" for this specific Apps
|
||||
|
||||
The command removes all the Kubernetes components associated with the chart **including storage volumes** _(Except hostPath Storage)_ and deletes the release.
|
||||
|
||||
## Support
|
||||
|
||||
- See the [Wiki](https://truecharts.org)
|
||||
- Open a [issue](https://github.com/truecharts/apps/issues/new/choose)
|
||||
- Ask a [question](https://github.com/truecharts/apps/discussions)
|
||||
|
||||
|
||||
----------------------------------------------
|
||||
Autogenerated from chart metadata using [helm-docs v1.5.0](https://github.com/norwoodj/helm-docs/releases/v1.5.0)
|
||||
All Rights Reserved - The TrueCharts Project
|
||||
1
stable/nextcloud/1.4.0/app-readme.md
Normal file
1
stable/nextcloud/1.4.0/app-readme.md
Normal file
@@ -0,0 +1 @@
|
||||
A private cloud server that puts the control and security of your own
|
||||
BIN
stable/nextcloud/1.4.0/charts/common-6.6.1.tgz
Normal file
BIN
stable/nextcloud/1.4.0/charts/common-6.6.1.tgz
Normal file
Binary file not shown.
BIN
stable/nextcloud/1.4.0/charts/postgresql-10.6.0.tgz
Normal file
BIN
stable/nextcloud/1.4.0/charts/postgresql-10.6.0.tgz
Normal file
Binary file not shown.
BIN
stable/nextcloud/1.4.0/charts/redis-14.7.2.tgz
Normal file
BIN
stable/nextcloud/1.4.0/charts/redis-14.7.2.tgz
Normal file
Binary file not shown.
186
stable/nextcloud/1.4.0/ix_values.yaml
Normal file
186
stable/nextcloud/1.4.0/ix_values.yaml
Normal file
@@ -0,0 +1,186 @@
|
||||
##
|
||||
# This file contains Values.yaml content that gets added to the output of questions.yaml
|
||||
# It's ONLY meant for content that the user is NOT expected to change.
|
||||
# Example: Everything under "image" is not included in questions.yaml but is included here.
|
||||
##
|
||||
|
||||
image:
|
||||
repository: nextcloud
|
||||
pullPolicy: IfNotPresent
|
||||
tag: 22.0.0
|
||||
|
||||
strategy:
|
||||
type: Recreate
|
||||
|
||||
env: {}
|
||||
|
||||
|
||||
envTpl:
|
||||
POSTGRES_DB: "{{ .Values.postgresql.postgresqlDatabase }}"
|
||||
POSTGRES_USER: "{{ .Values.postgresql.postgresqlUsername }}"
|
||||
|
||||
envFrom:
|
||||
- configMapRef:
|
||||
name: nextcloudconfig
|
||||
|
||||
envValueFrom:
|
||||
POSTGRES_PASSWORD:
|
||||
secretKeyRef:
|
||||
name: dbcreds
|
||||
key: postgresql-password
|
||||
POSTGRES_HOST:
|
||||
secretKeyRef:
|
||||
name: dbcreds
|
||||
key: host
|
||||
REDIS_HOST:
|
||||
secretKeyRef:
|
||||
name: rediscreds
|
||||
key: masterhost
|
||||
REDIS_HOST_PASSWORD:
|
||||
secretKeyRef:
|
||||
name: rediscreds
|
||||
key: redis-password
|
||||
|
||||
initContainers:
|
||||
- name: init-postgresdb
|
||||
image: postgres:13.1
|
||||
command:
|
||||
- "sh"
|
||||
- "-c"
|
||||
- "until pg_isready -U nextcloud -h ${pghost} ; do sleep 2 ; done"
|
||||
imagePullPolicy: IfNotPresent
|
||||
env:
|
||||
- name: pghost
|
||||
valueFrom:
|
||||
secretKeyRef:
|
||||
name: dbcreds
|
||||
key: plainhost
|
||||
|
||||
additionalContainers:
|
||||
- name: hpb
|
||||
image: nextcloud:21.0.2
|
||||
imagePullPolicy: IfNotPresent
|
||||
command:
|
||||
- "/bin/bash"
|
||||
- "-c"
|
||||
- "--"
|
||||
args:
|
||||
- 'while [ ! -f "/var/www/html/custom_apps/notify_push/bin/x86_64/notify_push" ]; do sleep 30; echo "notify_push not found, waiting"; done && /var/www/html/custom_apps/notify_push/bin/x86_64/notify_push /var/www/html/config/config.php'
|
||||
env:
|
||||
- name: PORT
|
||||
value: "7867"
|
||||
envFrom:
|
||||
- configMapRef:
|
||||
name: hpbconfig
|
||||
ports:
|
||||
- name: hpb
|
||||
containerPort: 7867
|
||||
volumeMounts:
|
||||
- mountPath: /var/www/html
|
||||
name: data
|
||||
securityContext:
|
||||
runAsUser: 33
|
||||
runAsGroup: 33
|
||||
|
||||
# -- Probe configuration
|
||||
# -- [[ref]](https://kubernetes.io/docs/tasks/configure-pod-container/configure-liveness-readiness-startup-probes/)
|
||||
# @default -- See below
|
||||
probes:
|
||||
# -- Liveness probe configuration
|
||||
# @default -- See below
|
||||
liveness:
|
||||
custom: true
|
||||
# -- If a HTTP probe is used (default for HTTP/HTTPS services) this path is used
|
||||
# @default -- "/"
|
||||
spec:
|
||||
httpGet:
|
||||
path: /status.php
|
||||
port: 80
|
||||
httpHeaders:
|
||||
- name: Host
|
||||
value: "test.fakedomain.dns"
|
||||
initialDelaySeconds: 10
|
||||
periodSeconds: 10
|
||||
timeoutSeconds: 2
|
||||
failureThreshold: 5
|
||||
|
||||
# -- Redainess probe configuration
|
||||
# @default -- See below
|
||||
readiness:
|
||||
custom: true
|
||||
# -- If a HTTP probe is used (default for HTTP/HTTPS services) this path is used
|
||||
# @default -- "/"
|
||||
spec:
|
||||
httpGet:
|
||||
path: /status.php
|
||||
port: 80
|
||||
httpHeaders:
|
||||
- name: Host
|
||||
value: "test.fakedomain.dns"
|
||||
initialDelaySeconds: 10
|
||||
periodSeconds: 10
|
||||
timeoutSeconds: 2
|
||||
failureThreshold: 5
|
||||
|
||||
# -- Startup probe configuration
|
||||
# @default -- See below
|
||||
startup:
|
||||
custom: true
|
||||
# -- If a HTTP probe is used (default for HTTP/HTTPS services) this path is used
|
||||
# @default -- "/"
|
||||
spec:
|
||||
httpGet:
|
||||
path: /status.php
|
||||
port: 80
|
||||
httpHeaders:
|
||||
- name: Host
|
||||
value: "test.fakedomain.dns"
|
||||
initialDelaySeconds: 10
|
||||
periodSeconds: 10
|
||||
timeoutSeconds: 2
|
||||
failureThreshold: 5
|
||||
|
||||
## Cronjob to execute Nextcloud background tasks
|
||||
## ref: https://docs.nextcloud.com/server/latest/admin_manual/configuration_server/background_jobs_configuration.html#webcron
|
||||
##
|
||||
cronjob:
|
||||
# Every 5 minutes
|
||||
# Note: Setting this to any any other value than 5 minutes might
|
||||
# cause issues with how nextcloud background jobs are executed
|
||||
schedule: "*/5 * * * *"
|
||||
annotations: {}
|
||||
failedJobsHistoryLimit: 5
|
||||
successfulJobsHistoryLimit: 2
|
||||
|
||||
# Enabled postgres
|
||||
# ... for more options see https://github.com/bitnami/charts/tree/master/bitnami/postgresql
|
||||
postgresql:
|
||||
enabled: true
|
||||
postgresqlUsername: nextcloud
|
||||
postgresqlDatabase: nextcloud
|
||||
existingSecret: dbcreds
|
||||
persistence:
|
||||
enabled: true
|
||||
existingClaim: db
|
||||
|
||||
# Enabled redis
|
||||
# ... for more options see https://github.com/bitnami/charts/tree/master/bitnami/redis
|
||||
redis:
|
||||
architecture: standalone
|
||||
enabled: true
|
||||
auth:
|
||||
existingSecret: rediscreds
|
||||
existingSecretPasswordKey: redis-password
|
||||
master:
|
||||
persistence:
|
||||
enabled: true
|
||||
existingClaim: redismaster
|
||||
replica:
|
||||
replicaCount: 0
|
||||
persistence:
|
||||
enabled: false
|
||||
|
||||
##
|
||||
# Most other defaults are set in questions.yaml
|
||||
# For other options please refer to the wiki, default_values.yaml or the common library chart
|
||||
##
|
||||
1055
stable/nextcloud/1.4.0/questions.yaml
Normal file
1055
stable/nextcloud/1.4.0/questions.yaml
Normal file
File diff suppressed because it is too large
Load Diff
33
stable/nextcloud/1.4.0/templates/_configmap.tpl
Normal file
33
stable/nextcloud/1.4.0/templates/_configmap.tpl
Normal file
@@ -0,0 +1,33 @@
|
||||
{{/* Define the configmap */}}
|
||||
{{- define "nextcloud.configmap" -}}
|
||||
|
||||
{{- $hosts := "" }}
|
||||
{{- if .Values.ingress.main.enabled }}
|
||||
{{ range $index, $host := .Values.ingress.main.hosts }}
|
||||
{{- if $index }}
|
||||
{{ $hosts = ( printf "%v %v" $hosts $host.host ) }}
|
||||
{{- else }}
|
||||
{{ $hosts = ( printf "%s" $host.host ) }}
|
||||
{{- end }}
|
||||
{{ end }}
|
||||
{{- end }}
|
||||
---
|
||||
apiVersion: v1
|
||||
kind: ConfigMap
|
||||
metadata:
|
||||
name: nextcloudconfig
|
||||
data:
|
||||
NEXTCLOUD_TRUSTED_DOMAINS: {{ ( printf "%v %v %v %v %v" "test.fakedomain.dns" ( .Values.env.NODE_IP | default "localhost" ) ( printf "%v-%v" .Release.Name "nextcloud" ) ( printf "%v-%v" .Release.Name "nextcloud-hpb" ) $hosts ) | quote }}
|
||||
{{- if .Values.ingress.main.enabled }}
|
||||
APACHE_DISABLE_REWRITE_IP: "1"
|
||||
{{- end }}
|
||||
|
||||
---
|
||||
apiVersion: v1
|
||||
kind: ConfigMap
|
||||
metadata:
|
||||
name: hpbconfig
|
||||
data:
|
||||
NEXTCLOUD_URL: {{ ( printf "%v-%v" .Release.Name "nextcloud" ) | quote }}
|
||||
|
||||
{{- end -}}
|
||||
51
stable/nextcloud/1.4.0/templates/_cronjob.tpl
Normal file
51
stable/nextcloud/1.4.0/templates/_cronjob.tpl
Normal file
@@ -0,0 +1,51 @@
|
||||
{{/* Define the cronjob */}}
|
||||
{{- define "nextcloud.cronjob" -}}
|
||||
{{- $jobName := include "common.names.fullname" . -}}
|
||||
|
||||
---
|
||||
apiVersion: batch/v1beta1
|
||||
kind: CronJob
|
||||
metadata:
|
||||
name: {{ printf "%s-cronjob" $jobName }}
|
||||
labels:
|
||||
{{- include "common.labels" . | nindent 4 }}
|
||||
spec:
|
||||
schedule: "{{ .Values.cronjob.schedule }}"
|
||||
concurrencyPolicy: Forbid
|
||||
{{- with .Values.cronjob.failedJobsHistoryLimit }}
|
||||
failedJobsHistoryLimit: {{ . }}
|
||||
{{- end }}
|
||||
{{- with .Values.cronjob.successfulJobsHistoryLimit }}
|
||||
successfulJobsHistoryLimit: {{ . }}
|
||||
{{- end }}
|
||||
jobTemplate:
|
||||
metadata:
|
||||
spec:
|
||||
template:
|
||||
metadata:
|
||||
spec:
|
||||
restartPolicy: Never
|
||||
{{- with (include "common.controller.volumes" . | trim) }}
|
||||
volumes:
|
||||
{{- nindent 12 . }}
|
||||
{{- end }}
|
||||
containers:
|
||||
- name: {{ .Chart.Name }}
|
||||
image: "{{ .Values.image.repository }}:{{ default .Values.image.tag }}"
|
||||
imagePullPolicy: {{ default .Values.image.pullPolicy }}
|
||||
command: [ "php" ]
|
||||
args:
|
||||
- "-f"
|
||||
- "/var/www/html/cron.php"
|
||||
# Will mount configuration files as www-data (id: 33) by default for nextcloud
|
||||
{{- with (include "common.controller.volumeMounts" . | trim) }}
|
||||
volumeMounts:
|
||||
{{ nindent 16 . }}
|
||||
{{- end }}
|
||||
securityContext:
|
||||
runAsUser: 33
|
||||
runAsGroup: 33
|
||||
resources:
|
||||
{{ toYaml .Values.resources | indent 16 }}
|
||||
|
||||
{{- end -}}
|
||||
50
stable/nextcloud/1.4.0/templates/_secrets.tpl
Normal file
50
stable/nextcloud/1.4.0/templates/_secrets.tpl
Normal file
@@ -0,0 +1,50 @@
|
||||
{{/* Define the secrets */}}
|
||||
{{- define "nextcloud.secrets" -}}
|
||||
|
||||
---
|
||||
|
||||
apiVersion: v1
|
||||
kind: Secret
|
||||
metadata:
|
||||
labels:
|
||||
{{- include "common.labels" . | nindent 4 }}
|
||||
name: dbcreds
|
||||
{{- $previous := lookup "v1" "Secret" .Release.Namespace "dbcreds" }}
|
||||
{{- $dbPass := "" }}
|
||||
data:
|
||||
{{- if $previous }}
|
||||
{{- $dbPass = ( index $previous.data "postgresql-password" ) | b64dec }}
|
||||
postgresql-password: {{ ( index $previous.data "postgresql-password" ) }}
|
||||
postgresql-postgres-password: {{ ( index $previous.data "postgresql-postgres-password" ) }}
|
||||
{{- else }}
|
||||
{{- $dbPass = randAlphaNum 50 }}
|
||||
postgresql-password: {{ $dbPass | b64enc | quote }}
|
||||
postgresql-postgres-password: {{ randAlphaNum 50 | b64enc | quote }}
|
||||
{{- end }}
|
||||
url: {{ ( printf "%v%v:%v@%v-%v:%v/%v" "postgresql://" .Values.postgresql.postgresqlUsername $dbPass .Release.Name "postgresql" "5432" .Values.postgresql.postgresqlDatabase ) | b64enc | quote }}
|
||||
host: {{ ( printf "%v-%v:5432" .Release.Name "postgresql" ) | b64enc | quote }}
|
||||
plainhost: {{ ( printf "%v-%v" .Release.Name "postgresql" ) | b64enc | quote }}
|
||||
type: Opaque
|
||||
|
||||
---
|
||||
|
||||
apiVersion: v1
|
||||
kind: Secret
|
||||
metadata:
|
||||
labels:
|
||||
{{- include "common.labels" . | nindent 4 }}
|
||||
name: rediscreds
|
||||
{{- $redisprevious := lookup "v1" "Secret" .Release.Namespace "rediscreds" }}
|
||||
{{- $redisPass := "" }}
|
||||
data:
|
||||
{{- if $redisprevious }}
|
||||
{{- $redisPass = ( index $redisprevious.data "redis-password" ) | b64dec }}
|
||||
redis-password: {{ ( index $redisprevious.data "redis-password" ) }}
|
||||
{{- else }}
|
||||
{{- $redisPass = randAlphaNum 50 }}
|
||||
redis-password: {{ $redisPass | b64enc | quote }}
|
||||
{{- end }}
|
||||
masterhost: {{ ( printf "%v-%v" .Release.Name "redis-master" ) | b64enc | quote }}
|
||||
slavehost: {{ ( printf "%v-%v" .Release.Name "redis-master" ) | b64enc | quote }}
|
||||
type: Opaque
|
||||
{{- end -}}
|
||||
14
stable/nextcloud/1.4.0/templates/common.yaml
Normal file
14
stable/nextcloud/1.4.0/templates/common.yaml
Normal file
@@ -0,0 +1,14 @@
|
||||
{{/* Make sure all variables are set properly */}}
|
||||
{{- include "common.values.setup" . }}
|
||||
|
||||
{{/* Render the templates */}}
|
||||
{{ include "common.all" . }}
|
||||
|
||||
{{/* Render configmap for nextcloud */}}
|
||||
{{- include "nextcloud.configmap" . }}
|
||||
|
||||
{{/* Render secrets for nextcloud */}}
|
||||
{{- include "nextcloud.secrets" . }}
|
||||
|
||||
{{/* Render cronjob for nextcloud */}}
|
||||
{{- include "nextcloud.cronjob" . }}
|
||||
224
stable/nextcloud/1.4.0/test_values.yaml
Normal file
224
stable/nextcloud/1.4.0/test_values.yaml
Normal file
@@ -0,0 +1,224 @@
|
||||
# Default values for Bitwarden.
|
||||
|
||||
image:
|
||||
repository: nextcloud
|
||||
pullPolicy: IfNotPresent
|
||||
tag: 22.0.0
|
||||
|
||||
strategy:
|
||||
type: Recreate
|
||||
|
||||
service:
|
||||
main:
|
||||
ports:
|
||||
main:
|
||||
port: 80
|
||||
hpb:
|
||||
enabled: true
|
||||
ports:
|
||||
hpb:
|
||||
enabled: true
|
||||
port: 7867
|
||||
|
||||
env:
|
||||
NEXTCLOUD_ADMIN_USER: "admin"
|
||||
NEXTCLOUD_ADMIN_PASSWORD: "adminpass"
|
||||
TRUSTED_PROXIES: "172.16.0.0/16"
|
||||
|
||||
envTpl:
|
||||
POSTGRES_DB: "{{ .Values.postgresql.postgresqlDatabase }}"
|
||||
POSTGRES_USER: "{{ .Values.postgresql.postgresqlUsername }}"
|
||||
|
||||
envFrom:
|
||||
- configMapRef:
|
||||
name: nextcloudconfig
|
||||
|
||||
envValueFrom:
|
||||
POSTGRES_PASSWORD:
|
||||
secretKeyRef:
|
||||
name: dbcreds
|
||||
key: postgresql-password
|
||||
POSTGRES_HOST:
|
||||
secretKeyRef:
|
||||
name: dbcreds
|
||||
key: host
|
||||
REDIS_HOST:
|
||||
secretKeyRef:
|
||||
name: rediscreds
|
||||
key: masterhost
|
||||
REDIS_HOST_PASSWORD:
|
||||
secretKeyRef:
|
||||
name: rediscreds
|
||||
key: redis-password
|
||||
|
||||
persistence:
|
||||
data:
|
||||
enabled: true
|
||||
mountPath: "/var/www/html"
|
||||
type: pvc
|
||||
accessMode: ReadWriteOnce
|
||||
size: "100Gi"
|
||||
|
||||
db:
|
||||
noMount: true
|
||||
forceName: "db"
|
||||
enabled: true
|
||||
type: pvc
|
||||
accessMode: ReadWriteOnce
|
||||
size: "100Gi"
|
||||
|
||||
redismaster:
|
||||
noMount: true
|
||||
forceName: "redismaster"
|
||||
enabled: true
|
||||
type: pvc
|
||||
accessMode: ReadWriteOnce
|
||||
size: "100Gi"
|
||||
|
||||
initContainers:
|
||||
- name: init-postgresdb
|
||||
image: postgres:13.1
|
||||
command:
|
||||
- "sh"
|
||||
- "-c"
|
||||
- "until pg_isready -U nextcloud -h ${pghost} ; do sleep 2 ; done"
|
||||
imagePullPolicy: IfNotPresent
|
||||
env:
|
||||
- name: pghost
|
||||
valueFrom:
|
||||
secretKeyRef:
|
||||
name: dbcreds
|
||||
key: plainhost
|
||||
|
||||
additionalContainers:
|
||||
- name: hpb
|
||||
image: nextcloud:21.0.2
|
||||
imagePullPolicy: IfNotPresent
|
||||
command:
|
||||
- "/bin/bash"
|
||||
- "-c"
|
||||
- "--"
|
||||
args:
|
||||
- 'while [ ! -f "/var/www/html/custom_apps/notify_push/bin/x86_64/notify_push" ]; do sleep 30; echo "notify_push not found, waiting"; done && /var/www/html/custom_apps/notify_push/bin/x86_64/notify_push /var/www/html/config/config.php'
|
||||
env:
|
||||
- name: PORT
|
||||
value: "7867"
|
||||
envFrom:
|
||||
- configMapRef:
|
||||
name: hpbconfig
|
||||
ports:
|
||||
- name: hpb
|
||||
containerPort: 7867
|
||||
volumeMounts:
|
||||
- mountPath: /var/www/html
|
||||
name: data
|
||||
securityContext:
|
||||
runAsUser: 33
|
||||
runAsGroup: 33
|
||||
|
||||
|
||||
podSecurityContext:
|
||||
fsGroup: 33
|
||||
|
||||
# -- Probe configuration
|
||||
# -- [[ref]](https://kubernetes.io/docs/tasks/configure-pod-container/configure-liveness-readiness-startup-probes/)
|
||||
# @default -- See below
|
||||
probes:
|
||||
# -- Liveness probe configuration
|
||||
# @default -- See below
|
||||
liveness:
|
||||
custom: true
|
||||
# -- If a HTTP probe is used (default for HTTP/HTTPS services) this path is used
|
||||
# @default -- "/"
|
||||
spec:
|
||||
httpGet:
|
||||
path: /status.php
|
||||
port: 80
|
||||
httpHeaders:
|
||||
- name: Host
|
||||
value: "test.fakedomain.dns"
|
||||
initialDelaySeconds: 10
|
||||
periodSeconds: 10
|
||||
timeoutSeconds: 2
|
||||
failureThreshold: 5
|
||||
|
||||
# -- Redainess probe configuration
|
||||
# @default -- See below
|
||||
readiness:
|
||||
custom: true
|
||||
# -- If a HTTP probe is used (default for HTTP/HTTPS services) this path is used
|
||||
# @default -- "/"
|
||||
spec:
|
||||
httpGet:
|
||||
path: /status.php
|
||||
port: 80
|
||||
httpHeaders:
|
||||
- name: Host
|
||||
value: "test.fakedomain.dns"
|
||||
initialDelaySeconds: 10
|
||||
periodSeconds: 10
|
||||
timeoutSeconds: 2
|
||||
failureThreshold: 5
|
||||
|
||||
# -- Startup probe configuration
|
||||
# @default -- See below
|
||||
startup:
|
||||
custom: true
|
||||
# -- If a HTTP probe is used (default for HTTP/HTTPS services) this path is used
|
||||
# @default -- "/"
|
||||
spec:
|
||||
httpGet:
|
||||
path: /status.php
|
||||
port: 80
|
||||
httpHeaders:
|
||||
- name: Host
|
||||
value: "test.fakedomain.dns"
|
||||
initialDelaySeconds: 10
|
||||
periodSeconds: 10
|
||||
timeoutSeconds: 2
|
||||
failureThreshold: 5
|
||||
|
||||
|
||||
## Cronjob to execute Nextcloud background tasks
|
||||
## ref: https://docs.nextcloud.com/server/latest/admin_manual/configuration_server/background_jobs_configuration.html#webcron
|
||||
##
|
||||
cronjob:
|
||||
# Every 5 minutes
|
||||
# Note: Setting this to any any other value than 5 minutes might
|
||||
# cause issues with how nextcloud background jobs are executed
|
||||
schedule: "*/5 * * * *"
|
||||
annotations: {}
|
||||
failedJobsHistoryLimit: 5
|
||||
successfulJobsHistoryLimit: 2
|
||||
|
||||
# Enabled postgres
|
||||
# ... for more options see https://github.com/bitnami/charts/tree/master/bitnami/postgresql
|
||||
postgresql:
|
||||
volumePermissions:
|
||||
enabled: true
|
||||
enabled: true
|
||||
postgresqlUsername: nextcloud
|
||||
postgresqlDatabase: nextcloud
|
||||
existingSecret: dbcreds
|
||||
persistence:
|
||||
enabled: false
|
||||
existingClaim: db
|
||||
|
||||
# Enabled redis
|
||||
# ... for more options see https://github.com/bitnami/charts/tree/master/bitnami/redis
|
||||
redis:
|
||||
volumePermissions:
|
||||
enabled: true
|
||||
architecture: standalone
|
||||
enabled: true
|
||||
auth:
|
||||
existingSecret: rediscreds
|
||||
existingSecretPasswordKey: redis-password
|
||||
master:
|
||||
persistence:
|
||||
enabled: false
|
||||
existingClaim: redismaster
|
||||
replica:
|
||||
replicaCount: 0
|
||||
persistence:
|
||||
enabled: false
|
||||
0
stable/nextcloud/1.4.0/values.yaml
Normal file
0
stable/nextcloud/1.4.0/values.yaml
Normal file
@@ -3,4 +3,4 @@ dependencies:
|
||||
repository: https://truecharts.org/
|
||||
version: 6.6.1
|
||||
digest: sha256:fa5fa632be8581b6755b1bc247d0251de150963b75fe1e8c524727b7dffb7835
|
||||
generated: "2021-07-20T08:36:23.249722872Z"
|
||||
generated: "2021-07-20T08:42:24.299330286Z"
|
||||
|
||||
@@ -3,4 +3,4 @@ dependencies:
|
||||
repository: https://truecharts.org/
|
||||
version: 6.6.1
|
||||
digest: sha256:fa5fa632be8581b6755b1bc247d0251de150963b75fe1e8c524727b7dffb7835
|
||||
generated: "2021-07-20T08:36:25.184359448Z"
|
||||
generated: "2021-07-20T08:42:26.281844795Z"
|
||||
|
||||
@@ -3,4 +3,4 @@ dependencies:
|
||||
repository: https://truecharts.org/
|
||||
version: 6.6.1
|
||||
digest: sha256:fa5fa632be8581b6755b1bc247d0251de150963b75fe1e8c524727b7dffb7835
|
||||
generated: "2021-07-20T08:36:27.094212209Z"
|
||||
generated: "2021-07-20T08:42:28.232180215Z"
|
||||
|
||||
@@ -3,4 +3,4 @@ dependencies:
|
||||
repository: https://truecharts.org/
|
||||
version: 6.6.1
|
||||
digest: sha256:fa5fa632be8581b6755b1bc247d0251de150963b75fe1e8c524727b7dffb7835
|
||||
generated: "2021-07-20T08:36:29.041832251Z"
|
||||
generated: "2021-07-20T08:42:30.28135259Z"
|
||||
|
||||
@@ -3,4 +3,4 @@ dependencies:
|
||||
repository: https://truecharts.org/
|
||||
version: 6.6.1
|
||||
digest: sha256:fa5fa632be8581b6755b1bc247d0251de150963b75fe1e8c524727b7dffb7835
|
||||
generated: "2021-07-20T08:36:31.001055343Z"
|
||||
generated: "2021-07-20T08:42:32.273212492Z"
|
||||
|
||||
@@ -3,4 +3,4 @@ dependencies:
|
||||
repository: https://truecharts.org/
|
||||
version: 6.6.1
|
||||
digest: sha256:fa5fa632be8581b6755b1bc247d0251de150963b75fe1e8c524727b7dffb7835
|
||||
generated: "2021-07-20T08:36:32.917725116Z"
|
||||
generated: "2021-07-20T08:42:34.274097454Z"
|
||||
|
||||
@@ -3,4 +3,4 @@ dependencies:
|
||||
repository: https://truecharts.org/
|
||||
version: 6.6.1
|
||||
digest: sha256:fa5fa632be8581b6755b1bc247d0251de150963b75fe1e8c524727b7dffb7835
|
||||
generated: "2021-07-20T08:36:34.821141518Z"
|
||||
generated: "2021-07-20T08:42:36.326629452Z"
|
||||
|
||||
@@ -3,4 +3,4 @@ dependencies:
|
||||
repository: https://truecharts.org/
|
||||
version: 6.6.1
|
||||
digest: sha256:fa5fa632be8581b6755b1bc247d0251de150963b75fe1e8c524727b7dffb7835
|
||||
generated: "2021-07-20T08:36:36.737656788Z"
|
||||
generated: "2021-07-20T08:42:38.364949634Z"
|
||||
|
||||
@@ -3,4 +3,4 @@ dependencies:
|
||||
repository: https://truecharts.org/
|
||||
version: 6.6.1
|
||||
digest: sha256:fa5fa632be8581b6755b1bc247d0251de150963b75fe1e8c524727b7dffb7835
|
||||
generated: "2021-07-20T08:36:38.693355559Z"
|
||||
generated: "2021-07-20T08:42:40.385287215Z"
|
||||
|
||||
@@ -3,4 +3,4 @@ dependencies:
|
||||
repository: https://truecharts.org/
|
||||
version: 6.6.1
|
||||
digest: sha256:fa5fa632be8581b6755b1bc247d0251de150963b75fe1e8c524727b7dffb7835
|
||||
generated: "2021-07-20T08:36:40.648422916Z"
|
||||
generated: "2021-07-20T08:42:42.419984127Z"
|
||||
|
||||
@@ -3,4 +3,4 @@ dependencies:
|
||||
repository: https://truecharts.org/
|
||||
version: 6.6.1
|
||||
digest: sha256:fa5fa632be8581b6755b1bc247d0251de150963b75fe1e8c524727b7dffb7835
|
||||
generated: "2021-07-20T08:36:42.560112927Z"
|
||||
generated: "2021-07-20T08:42:44.448322268Z"
|
||||
|
||||
@@ -3,4 +3,4 @@ dependencies:
|
||||
repository: https://truecharts.org/
|
||||
version: 6.6.1
|
||||
digest: sha256:fa5fa632be8581b6755b1bc247d0251de150963b75fe1e8c524727b7dffb7835
|
||||
generated: "2021-07-20T08:36:44.503486946Z"
|
||||
generated: "2021-07-20T08:42:46.391173913Z"
|
||||
|
||||
9
stable/vaultwarden/3.6.0/CONFIG.md
Normal file
9
stable/vaultwarden/3.6.0/CONFIG.md
Normal file
@@ -0,0 +1,9 @@
|
||||
# Configuration Options
|
||||
|
||||
##### Connecting to other apps
|
||||
If you need to connect this App to other Apps on TrueNAS SCALE, please refer to our "Linking Apps Together" guide:
|
||||
https://truecharts.org/manual/linking/
|
||||
|
||||
|
||||
##### Available config options
|
||||
In the future this page is going to contain an automated list of options available in the installation/edit UI.
|
||||
9
stable/vaultwarden/3.6.0/Chart.lock
Normal file
9
stable/vaultwarden/3.6.0/Chart.lock
Normal file
@@ -0,0 +1,9 @@
|
||||
dependencies:
|
||||
- name: common
|
||||
repository: https://truecharts.org/
|
||||
version: 6.6.1
|
||||
- name: postgresql
|
||||
repository: https://charts.bitnami.com/bitnami
|
||||
version: 10.6.0
|
||||
digest: sha256:fa3e9887daa1ece0a1046559ddcdf6631b7568a3b7961c97f2d6892a91a0b349
|
||||
generated: "2021-07-20T08:42:50.757934485Z"
|
||||
34
stable/vaultwarden/3.6.0/Chart.yaml
Normal file
34
stable/vaultwarden/3.6.0/Chart.yaml
Normal file
@@ -0,0 +1,34 @@
|
||||
apiVersion: v2
|
||||
appVersion: auto
|
||||
dependencies:
|
||||
- name: common
|
||||
repository: https://truecharts.org/
|
||||
version: 6.6.1
|
||||
- condition: postgresql.enabled
|
||||
name: postgresql
|
||||
repository: https://charts.bitnami.com/bitnami
|
||||
version: 10.6.0
|
||||
deprecated: false
|
||||
description: Unofficial Bitwarden compatible server written in Rust
|
||||
home: https://github.com/truecharts/apps/tree/master/charts/stable/vaultwarden
|
||||
icon: https://raw.githubusercontent.com/bitwarden/brand/master/icons/256x256.png
|
||||
keywords:
|
||||
- bitwarden
|
||||
- bitwardenrs
|
||||
- bitwarden_rs
|
||||
- vaultwarden
|
||||
- password
|
||||
- rust
|
||||
kubeVersion: '>=1.16.0-0'
|
||||
maintainers:
|
||||
- email: info@truecharts.org
|
||||
name: TrueCharts
|
||||
url: truecharts.org
|
||||
- email: kjeld@schouten-lebbing.nl
|
||||
name: Ornias1993
|
||||
url: truecharts.org
|
||||
name: vaultwarden
|
||||
sources:
|
||||
- https://github.com/dani-garcia/vaultwarden
|
||||
type: application
|
||||
version: 3.6.0
|
||||
55
stable/vaultwarden/3.6.0/README.md
Normal file
55
stable/vaultwarden/3.6.0/README.md
Normal file
@@ -0,0 +1,55 @@
|
||||
# Introduction
|
||||
|
||||
  
|
||||
|
||||
Unofficial Bitwarden compatible server written in Rust
|
||||
|
||||
TrueCharts are designed to be installed as TrueNAS SCALE app only. We can not guarantee this charts works as a stand-alone helm installation.
|
||||
**This chart is not maintained by the upstream project and any issues with the chart should be raised [here](https://github.com/truecharts/apps/issues/new/choose)**
|
||||
|
||||
## Source Code
|
||||
|
||||
* <https://github.com/dani-garcia/vaultwarden>
|
||||
|
||||
## Requirements
|
||||
|
||||
Kubernetes: `>=1.16.0-0`
|
||||
|
||||
## Dependencies
|
||||
|
||||
| Repository | Name | Version |
|
||||
|------------|------|---------|
|
||||
| https://charts.bitnami.com/bitnami | postgresql | 10.5.1 |
|
||||
| https://truecharts.org/ | common | 6.5.2 |
|
||||
|
||||
## Installing the Chart
|
||||
|
||||
To install the chart with the release name `vaultwarden`
|
||||
|
||||
- Open TrueNAS SCALE
|
||||
- Go to Apps
|
||||
- Click "Install" for this specific Apps
|
||||
- Fill out the configuration form
|
||||
|
||||
## Uninstalling the Chart
|
||||
|
||||
To uninstall the `vaultwarden` deployment
|
||||
|
||||
- Open TrueNAS SCALE
|
||||
- Go to Apps
|
||||
- Go to "Installed Apps"
|
||||
- Expand the menu in the top-right corner of this App
|
||||
- Click "Remove" for this specific Apps
|
||||
|
||||
The command removes all the Kubernetes components associated with the chart **including storage volumes** _(Except hostPath Storage)_ and deletes the release.
|
||||
|
||||
## Support
|
||||
|
||||
- See the [Wiki](https://truecharts.org)
|
||||
- Open a [issue](https://github.com/truecharts/apps/issues/new/choose)
|
||||
- Ask a [question](https://github.com/truecharts/apps/discussions)
|
||||
|
||||
|
||||
----------------------------------------------
|
||||
Autogenerated from chart metadata using [helm-docs v1.5.0](https://github.com/norwoodj/helm-docs/releases/v1.5.0)
|
||||
All Rights Reserved - The TrueCharts Project
|
||||
3
stable/vaultwarden/3.6.0/app-readme.md
Normal file
3
stable/vaultwarden/3.6.0/app-readme.md
Normal file
@@ -0,0 +1,3 @@
|
||||
Unofficial Bitwarden compatible server written in Rust
|
||||
This App is supplied by TrueCharts, for more information please visit https://truecharts.org
|
||||
Unofficial Bitwarden compatible server written in Rust
|
||||
BIN
stable/vaultwarden/3.6.0/charts/common-6.6.1.tgz
Normal file
BIN
stable/vaultwarden/3.6.0/charts/common-6.6.1.tgz
Normal file
Binary file not shown.
BIN
stable/vaultwarden/3.6.0/charts/postgresql-10.6.0.tgz
Normal file
BIN
stable/vaultwarden/3.6.0/charts/postgresql-10.6.0.tgz
Normal file
Binary file not shown.
54
stable/vaultwarden/3.6.0/ix_values.yaml
Normal file
54
stable/vaultwarden/3.6.0/ix_values.yaml
Normal file
@@ -0,0 +1,54 @@
|
||||
##
|
||||
# This file contains Values.yaml content that gets added to the output of questions.yaml
|
||||
# It's ONLY meant for content that the user is NOT expected to change.
|
||||
# Example: Everything under "image" is not included in questions.yaml but is included here.
|
||||
##
|
||||
|
||||
image:
|
||||
repository: vaultwarden/server
|
||||
pullPolicy: IfNotPresent
|
||||
tag: 1.22.1
|
||||
|
||||
envTpl:
|
||||
DOMAIN: "https://{{ if .Values.ingress }}{{ if .Values.ingress.main.enabled }}{{ ( index .Values.ingress.main.hosts 0 ).host }}{{ else }}placeholder.com{{ end }}{{ else }}placeholder.com{{ end }}"
|
||||
|
||||
envFrom:
|
||||
- configMapRef:
|
||||
name: vaultwardenconfig
|
||||
- secretRef:
|
||||
name: vaultwardensecret
|
||||
|
||||
|
||||
envValueFrom:
|
||||
DATABASE_URL:
|
||||
secretKeyRef:
|
||||
name: dbcreds
|
||||
key: url
|
||||
|
||||
database:
|
||||
# Database type, must be one of: 'sqlite', 'mysql' or 'postgresql'.
|
||||
type: postgresql
|
||||
# Enable DB Write-Ahead-Log for SQLite, disabled for other databases. https://github.com/dani-garcia/bitwarden_rs/wiki/Running-without-WAL-enabled
|
||||
wal: false
|
||||
## URL for external databases (mysql://user:pass@host:port or postgresql://user:pass@host:port).
|
||||
# url: ""
|
||||
## Set the size of the database connection pool.
|
||||
# maxConnections: 10
|
||||
## Connection retries during startup, 0 for infinite. 1 second between retries.
|
||||
retries: 30
|
||||
|
||||
# Enabled postgres
|
||||
# ... for more options see https://github.com/bitnami/charts/tree/master/bitnami/postgresql
|
||||
postgresql:
|
||||
enabled: true
|
||||
postgresqlUsername: vaultwarden
|
||||
postgresqlDatabase: vaultwarden
|
||||
existingSecret: dbcreds
|
||||
persistence:
|
||||
enabled: true
|
||||
existingClaim: db
|
||||
|
||||
##
|
||||
# Most other defaults are set in questions.yaml
|
||||
# For other options please refer to the wiki, default_values.yaml or the common library chart
|
||||
##
|
||||
1193
stable/vaultwarden/3.6.0/questions.yaml
Normal file
1193
stable/vaultwarden/3.6.0/questions.yaml
Normal file
File diff suppressed because it is too large
Load Diff
116
stable/vaultwarden/3.6.0/templates/_configmap.tpl
Normal file
116
stable/vaultwarden/3.6.0/templates/_configmap.tpl
Normal file
@@ -0,0 +1,116 @@
|
||||
{{/* Define the configmap */}}
|
||||
{{- define "vaultwarden.configmap" -}}
|
||||
---
|
||||
apiVersion: v1
|
||||
kind: ConfigMap
|
||||
metadata:
|
||||
name: vaultwardenconfig
|
||||
data:
|
||||
ROCKET_PORT: "8080"
|
||||
SIGNUPS_ALLOWED: {{ .Values.vaultwarden.allowSignups | quote }}
|
||||
{{- if .Values.vaultwarden.signupDomains }}
|
||||
SIGNUPS_DOMAINS_WHITELIST: {{ join "," .Values.vaultwarden.signupDomains | quote }}
|
||||
{{- end }}
|
||||
{{- if and (eq .Values.vaultwarden.verifySignup true) (eq .Values.vaultwarden.smtp.enabled false) }}{{ required "Signup verification requires SMTP to be enabled" nil}}{{end}}
|
||||
SIGNUPS_VERIFY: {{ .Values.vaultwarden.verifySignup | quote }}
|
||||
{{- if and (eq .Values.vaultwarden.requireEmail true) (eq .Values.vaultwarden.smtp.enabled false) }}{{ required "Requiring emails for login depends on SMTP" nil}}{{end}}
|
||||
REQUIRE_DEVICE_EMAIL: {{ .Values.vaultwarden.requireEmail | quote }}
|
||||
{{- if .Values.vaultwarden.emailAttempts }}
|
||||
EMAIL_ATTEMPTS_LIMIT: {{ .Values.vaultwarden.emailAttempts | quote }}
|
||||
{{- end }}
|
||||
{{- if .Values.vaultwarden.emailTokenExpiration }}
|
||||
EMAIL_EXPIRATION_TIME: {{ .Values.vaultwarden.emailTokenExpiration | quote }}
|
||||
{{- end }}
|
||||
INVITATIONS_ALLOWED: {{ .Values.vaultwarden.allowInvitation | quote }}
|
||||
{{- if .Values.vaultwarden.defaultInviteName }}
|
||||
INVITATION_ORG_NAME: {{ .Values.vaultwarden.defaultInviteName | quote }}
|
||||
{{- end }}
|
||||
SHOW_PASSWORD_HINT: {{ .Values.vaultwarden.showPasswordHint | quote }}
|
||||
WEBSOCKET_ENABLED: {{ .Values.vaultwarden.enableWebsockets | quote }}
|
||||
WEB_VAULT_ENABLED: {{ .Values.vaultwarden.enableWebVault | quote }}
|
||||
ORG_CREATION_USERS: {{ .Values.vaultwarden.orgCreationUsers | quote }}
|
||||
{{- if .Values.vaultwarden.attachmentLimitOrg }}
|
||||
ORG_ATTACHMENT_LIMIT: {{ .Values.vaultwarden.attachmentLimitOrg | quote }}
|
||||
{{- end }}
|
||||
{{- if .Values.vaultwarden.attachmentLimitUser }}
|
||||
USER_ATTACHMENT_LIMIT: {{ .Values.vaultwarden.attachmentLimitUser | quote }}
|
||||
{{- end }}
|
||||
{{- if .Values.vaultwarden.hibpApiKey }}
|
||||
HIBP_API_KEY: {{ .Values.vaultwarden.hibpApiKey | quote }}
|
||||
{{- end }}
|
||||
{{- include "vaultwarden.dbTypeValid" . }}
|
||||
{{- if .Values.database.retries }}
|
||||
DB_CONNECTION_RETRIES: {{ .Values.database.retries | quote }}
|
||||
{{- end }}
|
||||
{{- if .Values.database.maxConnections }}
|
||||
DATABASE_MAX_CONNS: {{ .Values.database.maxConnections | quote }}
|
||||
{{- end }}
|
||||
{{- if eq .Values.vaultwarden.smtp.enabled true }}
|
||||
SMTP_HOST: {{ required "SMTP host is required to enable SMTP" .Values.vaultwarden.smtp.host | quote }}
|
||||
SMTP_FROM: {{ required "SMTP sender address ('from') is required to enable SMTP" .Values.vaultwarden.smtp.from | quote }}
|
||||
{{- if .Values.vaultwarden.smtp.fromName }}
|
||||
SMTP_FROM_NAME: {{ .Values.vaultwarden.smtp.fromName | quote }}
|
||||
{{- end }}
|
||||
{{- if .Values.vaultwarden.smtp.ssl }}
|
||||
SMTP_SSL: {{ .Values.vaultwarden.smtp.ssl | quote }}
|
||||
{{- end }}
|
||||
{{- if .Values.vaultwarden.smtp.port }}
|
||||
SMTP_PORT: {{ .Values.vaultwarden.smtp.port | quote }}
|
||||
{{- end }}
|
||||
{{- if .Values.vaultwarden.smtp.authMechanism }}
|
||||
SMTP_AUTH_MECHANISM: {{ .Values.vaultwarden.smtp.authMechanism | quote }}
|
||||
{{- end }}
|
||||
{{- if .Values.vaultwarden.smtp.heloName }}
|
||||
HELO_NAME: {{ .Values.vaultwarden.smtp.heloName | quote }}
|
||||
{{- end }}
|
||||
{{- if .Values.vaultwarden.smtp.timeout }}
|
||||
SMTP_TIMEOUT: {{ .Values.vaultwarden.smtp.timeout | quote }}
|
||||
{{- end }}
|
||||
{{- if .Values.vaultwarden.smtp.invalidHostname }}
|
||||
SMTP_ACCEPT_INVALID_HOSTNAMES: {{ .Values.vaultwarden.smtp.invalidHostname | quote }}
|
||||
{{- end }}
|
||||
{{- if .Values.vaultwarden.smtp.invalidCertificate }}
|
||||
SMTP_ACCEPT_INVALID_CERTS: {{ .Values.vaultwarden.smtp.invalidCertificate | quote }}
|
||||
{{- end }}
|
||||
{{- end }}
|
||||
{{- if .Values.vaultwarden.log.file }}
|
||||
LOG_FILE: {{ .Values.vaultwarden.log.file | quote }}
|
||||
{{- end }}
|
||||
{{- if or .Values.vaultwarden.log.level .Values.vaultwarden.log.timeFormat }}
|
||||
EXTENDED_LOGGING: "true"
|
||||
{{- end }}
|
||||
{{- if .Values.vaultwarden.log.level }}
|
||||
{{- include "vaultwarden.logLevelValid" . }}
|
||||
LOG_LEVEL: {{ .Values.vaultwarden.log.level | quote }}
|
||||
{{- end }}
|
||||
{{- if .Values.vaultwarden.log.timeFormat }}
|
||||
LOG_TIMESTAMP_FORMAT: {{ .Values.vaultwarden.log.timeFormat | quote }}
|
||||
{{- end }}
|
||||
{{- if .Values.vaultwarden.icons.disableDownload }}
|
||||
DISABLE_ICON_DOWNLOAD: {{ .Values.vaultwarden.icons.disableDownload | quote }}
|
||||
{{- if and (not .Values.vaultwarden.icons.cache) (eq .Values.vaultwarden.icons.disableDownload "true") }}
|
||||
ICON_CACHE_TTL: "0"
|
||||
{{- end }}
|
||||
{{- end }}
|
||||
{{- if .Values.vaultwarden.icons.cache }}
|
||||
ICON_CACHE_TTL: {{ .Values.vaultwarden.icons.cache | quote }}
|
||||
{{- end }}
|
||||
{{- if .Values.vaultwarden.icons.cacheFailed }}
|
||||
ICON_CACHE_NEGTTL: {{ .Values.vaultwarden.icons.cacheFailed | quote }}
|
||||
{{- end }}
|
||||
{{- if eq .Values.vaultwarden.admin.enabled true }}
|
||||
{{- if eq .Values.vaultwarden.admin.disableAdminToken true }}
|
||||
DISABLE_ADMIN_TOKEN: "true"
|
||||
{{- end }}
|
||||
{{- end }}
|
||||
{{- if eq .Values.vaultwarden.yubico.enabled true }}
|
||||
{{- if .Values.vaultwarden.yubico.server }}
|
||||
YUBICO_SERVER: {{ .Values.vaultwarden.yubico.server | quote }}
|
||||
{{- end }}
|
||||
{{- end }}
|
||||
{{- if eq .Values.database.type "sqlite" }}
|
||||
ENABLE_DB_WAL: {{ .Values.database.wal | quote }}
|
||||
{{- else }}
|
||||
ENABLE_DB_WAL: "false"
|
||||
{{- end }}
|
||||
{{- end -}}
|
||||
59
stable/vaultwarden/3.6.0/templates/_secrets.tpl
Normal file
59
stable/vaultwarden/3.6.0/templates/_secrets.tpl
Normal file
@@ -0,0 +1,59 @@
|
||||
{{/* Define the secrets */}}
|
||||
{{- define "vaultwarden.secrets" -}}
|
||||
|
||||
{{- $adminToken := "" }}
|
||||
{{- if eq .Values.vaultwarden.admin.enabled true }}
|
||||
{{- $adminToken = .Values.vaultwarden.admin.token | default (randAlphaNum 48) | b64enc | quote }}
|
||||
{{- end -}}
|
||||
|
||||
{{- $smtpUser := "" }}
|
||||
{{- if and (eq .Values.vaultwarden.smtp.enabled true ) (.Values.vaultwarden.smtp.user) }}
|
||||
{{- $smtpUser = .Values.vaultwarden.smtp.user | b64enc | quote }}
|
||||
{{- end -}}
|
||||
|
||||
{{- $yubicoClientId := "" }}
|
||||
{{- if eq .Values.vaultwarden.yubico.enabled true }}
|
||||
{{- $yubicoClientId = required "Yubico Client ID required" .Values.vaultwarden.yubico.clientId | toString | b64enc | quote }}
|
||||
{{- end -}}
|
||||
---
|
||||
|
||||
apiVersion: v1
|
||||
kind: Secret
|
||||
metadata:
|
||||
name: vaultwardensecret
|
||||
data:
|
||||
{{- if ne $adminToken "" }}
|
||||
ADMIN_TOKEN: {{ $adminToken }}
|
||||
{{- end }}
|
||||
{{- if ne $smtpUser "" }}
|
||||
SMTP_USERNAME: {{ $smtpUser }}
|
||||
SMTP_PASSWORD: {{ required "Must specify SMTP password" .Values.vaultwarden.smtp.password | b64enc | quote }}
|
||||
{{- end }}
|
||||
{{- if ne $yubicoClientId "" }}
|
||||
YUBICO_CLIENT_ID: {{ $yubicoClientId }}
|
||||
YUBICO_SECRET_KEY: {{ required "Yubico Secret Key required" .Values.vaultwarden.yubico.secretKey | b64enc | quote }}
|
||||
{{- end }}
|
||||
|
||||
---
|
||||
|
||||
apiVersion: v1
|
||||
kind: Secret
|
||||
metadata:
|
||||
labels:
|
||||
{{- include "common.labels" . | nindent 4 }}
|
||||
name: dbcreds
|
||||
{{- $previous := lookup "v1" "Secret" .Release.Namespace "dbcreds" }}
|
||||
{{- $dbPass := "" }}
|
||||
data:
|
||||
{{- if $previous }}
|
||||
{{- $dbPass = ( index $previous.data "postgresql-password" ) | b64dec }}
|
||||
postgresql-password: {{ ( index $previous.data "postgresql-password" ) }}
|
||||
postgresql-postgres-password: {{ ( index $previous.data "postgresql-postgres-password" ) }}
|
||||
{{- else }}
|
||||
{{- $dbPass = randAlphaNum 50 }}
|
||||
postgresql-password: {{ $dbPass | b64enc | quote }}
|
||||
postgresql-postgres-password: {{ randAlphaNum 50 | b64enc | quote }}
|
||||
{{- end }}
|
||||
url: {{ ( printf "%v%v:%v@%v-%v:%v/%v" "postgresql://" .Values.postgresql.postgresqlUsername $dbPass .Release.Name "postgresql" "5432" .Values.postgresql.postgresqlDatabase ) | b64enc | quote }}
|
||||
type: Opaque
|
||||
{{- end -}}
|
||||
17
stable/vaultwarden/3.6.0/templates/_validate.tpl
Normal file
17
stable/vaultwarden/3.6.0/templates/_validate.tpl
Normal file
@@ -0,0 +1,17 @@
|
||||
{{/*
|
||||
Ensure valid DB type is select, defaults to SQLite
|
||||
*/}}
|
||||
{{- define "vaultwarden.dbTypeValid" -}}
|
||||
{{- if not (or (eq .Values.database.type "postgresql") (eq .Values.database.type "mysql") (eq .Values.database.type "sqlite")) }}
|
||||
{{- required "Invalid database type" nil }}
|
||||
{{- end -}}
|
||||
{{- end -}}
|
||||
|
||||
{{/*
|
||||
Ensure log type is valid
|
||||
*/}}
|
||||
{{- define "vaultwarden.logLevelValid" -}}
|
||||
{{- if not (or (eq .Values.vaultwarden.log.level "trace") (eq .Values.vaultwarden.log.level "debug") (eq .Values.vaultwarden.log.level "info") (eq .Values.vaultwarden.log.level "warn") (eq .Values.vaultwarden.log.level "error") (eq .Values.vaultwarden.log.level "off")) }}
|
||||
{{- required "Invalid log level" nil }}
|
||||
{{- end }}
|
||||
{{- end }}
|
||||
11
stable/vaultwarden/3.6.0/templates/common.yaml
Normal file
11
stable/vaultwarden/3.6.0/templates/common.yaml
Normal file
@@ -0,0 +1,11 @@
|
||||
{{/* Make sure all variables are set properly */}}
|
||||
{{- include "common.values.setup" . }}
|
||||
|
||||
{{/* Render the templates */}}
|
||||
{{ include "common.all" . }}
|
||||
|
||||
{{/* Render configmap for vaultwarden */}}
|
||||
{{- include "vaultwarden.configmap" . }}
|
||||
|
||||
{{/* Render secrets for vaultwarden */}}
|
||||
{{- include "vaultwarden.secrets" . }}
|
||||
172
stable/vaultwarden/3.6.0/test_values.yaml
Normal file
172
stable/vaultwarden/3.6.0/test_values.yaml
Normal file
@@ -0,0 +1,172 @@
|
||||
# Default values for Bitwarden.
|
||||
|
||||
image:
|
||||
repository: vaultwarden/server
|
||||
pullPolicy: IfNotPresent
|
||||
tag: 1.22.1
|
||||
|
||||
strategy:
|
||||
type: Recreate
|
||||
|
||||
service:
|
||||
main:
|
||||
ports:
|
||||
main:
|
||||
port: 8080
|
||||
ws:
|
||||
ports:
|
||||
ws:
|
||||
enabled: true
|
||||
port: 3012
|
||||
|
||||
env: {}
|
||||
|
||||
envTpl:
|
||||
DOMAIN: "https://{{ if .Values.ingress }}{{ if .Values.ingress.main.enabled }}{{ ( index .Values.ingress.main.hosts 0 ).host }}{{ else }}placeholder.com{{ end }}{{ else }}placeholder.com{{ end }}"
|
||||
|
||||
envFrom:
|
||||
- configMapRef:
|
||||
name: vaultwardenconfig
|
||||
- secretRef:
|
||||
name: vaultwardensecret
|
||||
|
||||
envValueFrom:
|
||||
DATABASE_URL:
|
||||
secretKeyRef:
|
||||
name: dbcreds
|
||||
key: url
|
||||
|
||||
database:
|
||||
# Database type, must be one of: 'sqlite', 'mysql' or 'postgresql'.
|
||||
type: postgresql
|
||||
# Enable DB Write-Ahead-Log for SQLite, disabled for other databases. https://github.com/dani-garcia/bitwarden_rs/wiki/Running-without-WAL-enabled
|
||||
wal: true
|
||||
## URL for external databases (mysql://user:pass@host:port or postgresql://user:pass@host:port).
|
||||
# url: ""
|
||||
## Set the size of the database connection pool.
|
||||
# maxConnections: 10
|
||||
## Connection retries during startup, 0 for infinite. 1 second between retries.
|
||||
# retries: 15
|
||||
|
||||
# Set Bitwarden_rs application variables
|
||||
vaultwarden:
|
||||
# Allow any user to sign-up: https://github.com/dani-garcia/bitwarden_rs/wiki/Disable-registration-of-new-users
|
||||
allowSignups: true
|
||||
## Whitelist domains allowed to sign-up. 'allowSignups' is ignored if set.
|
||||
# signupDomains:
|
||||
# - domain.tld
|
||||
# Verify e-mail before login is enabled. SMTP must be enabled.
|
||||
verifySignup: false
|
||||
# When a user logs in an email is required to be sent. If sending the email fails the login attempt will fail. SMTP must be enabled.
|
||||
requireEmail: false
|
||||
## Maximum attempts before an email token is reset and a new email will need to be sent.
|
||||
# emailAttempts: 3
|
||||
## Email token validity in seconds.
|
||||
# emailTokenExpiration: 600
|
||||
# Allow invited users to sign-up even feature is disabled: https://github.com/dani-garcia/bitwarden_rs/wiki/Disable-invitations
|
||||
allowInvitation: true
|
||||
# Show password hints: https://github.com/dani-garcia/bitwarden_rs/wiki/Password-hint-display
|
||||
## Default organization name in invitation e-mails that are not coming from a specific organization.
|
||||
# defaultInviteName: ""
|
||||
showPasswordHint: true
|
||||
# Enable Websockets for notification. https://github.com/dani-garcia/bitwarden_rs/wiki/Enabling-WebSocket-notifications
|
||||
# Redirect HTTP path "/notifications/hub" to port 3012. Ingress/IngressRoute controllers are automatically configured.
|
||||
enableWebsockets: true
|
||||
# Enable Web Vault (static content). https://github.com/dani-garcia/bitwarden_rs/wiki/Disabling-or-overriding-the-Vault-interface-hosting
|
||||
enableWebVault: true
|
||||
# Restrict creation of orgs. Options are: 'all', 'none' or a comma-separated list of users.
|
||||
orgCreationUsers: all
|
||||
## Limit attachment disk usage per organization.
|
||||
# attachmentLimitOrg:
|
||||
## Limit attachment disk usage per user.
|
||||
# attachmentLimitUser:
|
||||
## HaveIBeenPwned API Key. Can be purchased at https://haveibeenpwned.com/API/Key.
|
||||
# hibpApiKey:
|
||||
|
||||
admin:
|
||||
# Enable admin portal.
|
||||
enabled: false
|
||||
# Disabling the admin token will make the admin portal accessible to anyone, use carefully: https://github.com/dani-garcia/bitwarden_rs/wiki/Disable-admin-token
|
||||
disableAdminToken: false
|
||||
## Token for admin login, will be generated if not defined. https://github.com/dani-garcia/bitwarden_rs/wiki/Enabling-admin-page
|
||||
# token:
|
||||
|
||||
# Enable SMTP. https://github.com/dani-garcia/bitwarden_rs/wiki/SMTP-configuration
|
||||
smtp:
|
||||
enabled: false
|
||||
# SMTP hostname, required if SMTP is enabled.
|
||||
host: ""
|
||||
# SMTP sender e-mail address, required if SMTP is enabled.
|
||||
from: ""
|
||||
## SMTP sender name, defaults to 'Bitwarden_RS'.
|
||||
# fromName: ""
|
||||
## Enable SSL connection.
|
||||
# ssl: true
|
||||
## SMTP port. Defaults to 25 without SSL, 587 with SSL.
|
||||
# port: 587
|
||||
## SMTP Authentication Mechanisms. Comma-separated options: 'Plain', 'Login' and 'Xoauth2'. Defaults to 'Plain'.
|
||||
# authMechanism: Plain
|
||||
## Hostname to be sent for SMTP HELO. Defaults to pod name.
|
||||
# heloName: ""
|
||||
## SMTP timeout.
|
||||
# timeout: 15
|
||||
## Accept SSL session if certificate is valid but hostname doesn't match. DANGEROUS, vulnerable to men-in-the-middle attacks!
|
||||
# invalidHostname: false
|
||||
## Accept invalid certificates. DANGEROUS, vulnerable to men-in-the-middle attacks!
|
||||
# invalidCertificate: false
|
||||
## SMTP username.
|
||||
# user: ""
|
||||
## SMTP password. Required is user is specified, ignored if no user provided.
|
||||
# password: ""
|
||||
|
||||
## Enable Yubico OTP authentication. https://github.com/dani-garcia/bitwarden_rs/wiki/Enabling-Yubikey-OTP-authentication
|
||||
yubico:
|
||||
enabled: false
|
||||
## Yubico server. Defaults to YubiCloud.
|
||||
# server:
|
||||
## Yubico ID and Secret Key.
|
||||
# clientId:
|
||||
# secretKey:
|
||||
|
||||
## Logging options. https://github.com/dani-garcia/bitwarden_rs/wiki/Logging
|
||||
log:
|
||||
# Log to file.
|
||||
file: ""
|
||||
# Log level. Options are "trace", "debug", "info", "warn", "error" or "off".
|
||||
level: "trace"
|
||||
## Log timestamp format. See https://docs.rs/chrono/0.4.15/chrono/format/strftime/index.html. Defaults to time in milliseconds.
|
||||
# timeFormat: ""
|
||||
|
||||
icons:
|
||||
# Disables download of external icons. Setting to true will still serve icons from cache (/data/icon_cache). TTL will default to zero.
|
||||
disableDownload: false
|
||||
## Cache time-to-live for icons fetched. 0 means no purging.
|
||||
# cache: 2592000
|
||||
## Cache time-to-live for icons that were not available. 0 means no purging.
|
||||
# cacheFailed: 259200
|
||||
|
||||
persistence:
|
||||
data:
|
||||
enabled: true
|
||||
mountPath: "/data"
|
||||
type: emptyDir
|
||||
|
||||
db:
|
||||
forceName: "db"
|
||||
enabled: true
|
||||
type: emptyDir
|
||||
|
||||
dbbackup:
|
||||
enabled: true
|
||||
type: emptyDir
|
||||
|
||||
# Enabled postgres
|
||||
# ... for more options see https://github.com/bitnami/charts/tree/master/bitnami/postgresql
|
||||
postgresql:
|
||||
enabled: true
|
||||
postgresqlUsername: vaultwarden
|
||||
postgresqlDatabase: vaultwarden
|
||||
existingSecret: dbcreds
|
||||
persistence:
|
||||
enabled: false
|
||||
existingClaim: db
|
||||
0
stable/vaultwarden/3.6.0/values.yaml
Normal file
0
stable/vaultwarden/3.6.0/values.yaml
Normal file
@@ -3,4 +3,4 @@ dependencies:
|
||||
repository: https://truecharts.org/
|
||||
version: 6.6.1
|
||||
digest: sha256:fa5fa632be8581b6755b1bc247d0251de150963b75fe1e8c524727b7dffb7835
|
||||
generated: "2021-07-20T08:36:53.974702551Z"
|
||||
generated: "2021-07-20T08:42:55.509256289Z"
|
||||
|
||||
Reference in New Issue
Block a user