From 37327d5288973f45f9307f15f514a9908167425a Mon Sep 17 00:00:00 2001 From: tectux Date: Sat, 5 Oct 2024 18:40:33 +0000 Subject: [PATCH 001/134] fix labels so that service can find pod --- conduit/templates/wellknown/deployment.yaml | 1 + 1 file changed, 1 insertion(+) diff --git a/conduit/templates/wellknown/deployment.yaml b/conduit/templates/wellknown/deployment.yaml index eded4fc..421a093 100644 --- a/conduit/templates/wellknown/deployment.yaml +++ b/conduit/templates/wellknown/deployment.yaml @@ -24,6 +24,7 @@ spec: {{- with .Values.wellknown.podLabels }} {{- toYaml . | nindent 8 }} {{- end }} + type: wellknown spec: {{- with .Values.imagePullSecrets }} imagePullSecrets: -- 2.45.3 From b530414bdd637d376d6336da24ee6d76d2ee6bef Mon Sep 17 00:00:00 2001 From: tectux Date: Sat, 5 Oct 2024 18:40:33 +0000 Subject: [PATCH 002/134] fix(conduit) labels so that service can find pod fix #184 (close #185) --- conduit/Chart.yaml | 2 +- conduit/README.adoc | 2 +- conduit/templates/wellknown/deployment.yaml | 1 + 3 files changed, 3 insertions(+), 2 deletions(-) diff --git a/conduit/Chart.yaml b/conduit/Chart.yaml index 94deeff..7f04d8f 100644 --- a/conduit/Chart.yaml +++ b/conduit/Chart.yaml @@ -3,7 +3,7 @@ name: conduit description: Conduit is a simple, fast and reliable chat server powered by Matrix. icon: https://conduit.rs/conduit.svg type: application -version: 0.3.4 +version: 0.3.5 # renovate: image=registry.gitlab.com/famedly/conduit/matrix-conduit appVersion: "0.8.0" maintainers: diff --git a/conduit/README.adoc b/conduit/README.adoc index e89ea51..aceed9c 100644 --- a/conduit/README.adoc +++ b/conduit/README.adoc @@ -2,7 +2,7 @@ = conduit -image::https://img.shields.io/badge/Version-0.3.4-informational?style=flat-square[Version: 0.3.4] +image::https://img.shields.io/badge/Version-0.3.5-informational?style=flat-square[Version: 0.3.5] image::https://img.shields.io/badge/Version-application-informational?style=flat-square[Type: application] image::https://img.shields.io/badge/AppVersion-0.8.0-informational?style=flat-square[AppVersion: 0.8.0] == Maintainers diff --git a/conduit/templates/wellknown/deployment.yaml b/conduit/templates/wellknown/deployment.yaml index eded4fc..421a093 100644 --- a/conduit/templates/wellknown/deployment.yaml +++ b/conduit/templates/wellknown/deployment.yaml @@ -24,6 +24,7 @@ spec: {{- with .Values.wellknown.podLabels }} {{- toYaml . | nindent 8 }} {{- end }} + type: wellknown spec: {{- with .Values.imagePullSecrets }} imagePullSecrets: -- 2.45.3 From 22bdadf94691c30f1a565a63a4c22a9372811475 Mon Sep 17 00:00:00 2001 From: WrenIX Date: Sun, 6 Oct 2024 14:06:23 +0200 Subject: [PATCH 003/134] fix(home-assistant): update AppVersion and zigbee2mqtt --- home-assistant/Chart.yaml | 4 ++-- home-assistant/README.adoc | 6 +++--- home-assistant/values.yaml | 2 +- 3 files changed, 6 insertions(+), 6 deletions(-) diff --git a/home-assistant/Chart.yaml b/home-assistant/Chart.yaml index a19958d..2c7cbb8 100644 --- a/home-assistant/Chart.yaml +++ b/home-assistant/Chart.yaml @@ -2,9 +2,9 @@ apiVersion: v2 name: home-assistant description: Home Assistant with tooling to run on an k3s pi type: application -version: 0.1.29 +version: 0.1.30 # renovate: image=ghcr.io/home-assistant/home-assistant -appVersion: "2024.9.3" +appVersion: "2024.10.1" maintainers: - name: WrenIX url: https://wrenix.eu diff --git a/home-assistant/README.adoc b/home-assistant/README.adoc index 7cd55c3..fdaff9e 100644 --- a/home-assistant/README.adoc +++ b/home-assistant/README.adoc @@ -2,9 +2,9 @@ = home-assistant -image::https://img.shields.io/badge/Version-0.1.29-informational?style=flat-square[Version: 0.1.29] +image::https://img.shields.io/badge/Version-0.1.30-informational?style=flat-square[Version: 0.1.30] image::https://img.shields.io/badge/Version-application-informational?style=flat-square[Type: application] -image::https://img.shields.io/badge/AppVersion-2024.9.3-informational?style=flat-square[AppVersion: 2024.9.3] +image::https://img.shields.io/badge/AppVersion-2024.10.1-informational?style=flat-square[AppVersion: 2024.10.1] == Maintainers .Maintainers @@ -384,7 +384,7 @@ helm uninstall home-assistant-release | zigbee2mqtt.image.tag | string -| `"1.40.1"` +| `"1.40.2"` | | zigbee2mqtt.ingress.hosts diff --git a/home-assistant/values.yaml b/home-assistant/values.yaml index 34d3832..50cd339 100644 --- a/home-assistant/values.yaml +++ b/home-assistant/values.yaml @@ -50,7 +50,7 @@ zigbee2mqtt: registry: docker.io repository: koenkk/zigbee2mqtt pullPolicy: IfNotPresent - tag: 1.40.1 + tag: 1.40.2 device: /dev/ttyACM0 securityContext: privileged: true -- 2.45.3 From af8f5968ac3dab77bd870d32d4993510d59ba025 Mon Sep 17 00:00:00 2001 From: WrenIX Date: Sun, 6 Oct 2024 14:08:15 +0200 Subject: [PATCH 004/134] fix(matrix-synapse): update nginx for well-known --- matrix-synapse/Chart.yaml | 2 +- matrix-synapse/README.adoc | 4 ++-- matrix-synapse/values.yaml | 2 +- 3 files changed, 4 insertions(+), 4 deletions(-) diff --git a/matrix-synapse/Chart.yaml b/matrix-synapse/Chart.yaml index 9ddf41e..663158c 100644 --- a/matrix-synapse/Chart.yaml +++ b/matrix-synapse/Chart.yaml @@ -4,7 +4,7 @@ name: matrix-synapse description: Matrix reference homeserver icon: https://matrix.org/images/matrix-logo.svg type: application -version: 0.3.5 +version: 0.3.6 # renovate: image=ghcr.io/element-hq/synapse appVersion: 1.116.0 maintainers: diff --git a/matrix-synapse/README.adoc b/matrix-synapse/README.adoc index 0da46f4..a483ba0 100644 --- a/matrix-synapse/README.adoc +++ b/matrix-synapse/README.adoc @@ -2,7 +2,7 @@ = matrix-synapse -image::https://img.shields.io/badge/Version-0.3.5-informational?style=flat-square[Version: 0.3.5] +image::https://img.shields.io/badge/Version-0.3.6-informational?style=flat-square[Version: 0.3.6] image::https://img.shields.io/badge/Version-application-informational?style=flat-square[Type: application] image::https://img.shields.io/badge/AppVersion-1.116.0-informational?style=flat-square[AppVersion: 1.116.0] == Maintainers @@ -629,7 +629,7 @@ helm uninstall matrix-synapse-release | wellknown.image.tag | string -| `"1.27.1"` +| `"1.27.2"` | | wellknown.nodeSelector diff --git a/matrix-synapse/values.yaml b/matrix-synapse/values.yaml index 3f9f812..c6356b3 100644 --- a/matrix-synapse/values.yaml +++ b/matrix-synapse/values.yaml @@ -613,7 +613,7 @@ wellknown: image: registry: docker.io repository: library/nginx - tag: 1.27.1 + tag: 1.27.2 pullPolicy: IfNotPresent replicaCount: 1 -- 2.45.3 From 9958ceb79f1eb45c22a788d70d42af8cd8a635b3 Mon Sep 17 00:00:00 2001 From: WrenIX Date: Sun, 6 Oct 2024 14:12:44 +0200 Subject: [PATCH 005/134] fix(conduit): use docker.io because of well tagged container images --- conduit/Chart.yaml | 4 ++-- conduit/README.adoc | 6 +++--- conduit/values.yaml | 4 ++-- 3 files changed, 7 insertions(+), 7 deletions(-) diff --git a/conduit/Chart.yaml b/conduit/Chart.yaml index 7f04d8f..519a205 100644 --- a/conduit/Chart.yaml +++ b/conduit/Chart.yaml @@ -3,8 +3,8 @@ name: conduit description: Conduit is a simple, fast and reliable chat server powered by Matrix. icon: https://conduit.rs/conduit.svg type: application -version: 0.3.5 -# renovate: image=registry.gitlab.com/famedly/conduit/matrix-conduit +version: 0.3.6 +# renovate: image=docker.io/matrixconduit/matrix-conduit appVersion: "0.8.0" maintainers: - name: WrenIX diff --git a/conduit/README.adoc b/conduit/README.adoc index aceed9c..43edaa1 100644 --- a/conduit/README.adoc +++ b/conduit/README.adoc @@ -2,7 +2,7 @@ = conduit -image::https://img.shields.io/badge/Version-0.3.5-informational?style=flat-square[Version: 0.3.5] +image::https://img.shields.io/badge/Version-0.3.6-informational?style=flat-square[Version: 0.3.6] image::https://img.shields.io/badge/Version-application-informational?style=flat-square[Type: application] image::https://img.shields.io/badge/AppVersion-0.8.0-informational?style=flat-square[AppVersion: 0.8.0] == Maintainers @@ -144,12 +144,12 @@ helm uninstall conduit-release | image.registry | string -| `"registry.gitlab.com"` +| `"docker.io"` | | image.repository | string -| `"famedly/conduit/matrix-conduit"` +| `"matrixconduit/matrix-conduit"` | | image.tag diff --git a/conduit/values.yaml b/conduit/values.yaml index 816237e..ea27974 100644 --- a/conduit/values.yaml +++ b/conduit/values.yaml @@ -5,8 +5,8 @@ replicaCount: 1 image: - registry: registry.gitlab.com - repository: famedly/conduit/matrix-conduit + registry: docker.io + repository: matrixconduit/matrix-conduit pullPolicy: IfNotPresent # Overrides the image tag whose default is the chart appVersion. tag: "" -- 2.45.3 From b44b87338ee659391edf187b2f47391a36370125 Mon Sep 17 00:00:00 2001 From: WrenIX Date: Sun, 6 Oct 2024 14:19:23 +0200 Subject: [PATCH 006/134] fix(conduit): update nginx for well-known --- conduit/Chart.yaml | 2 +- conduit/README.adoc | 4 ++-- conduit/values.yaml | 2 +- 3 files changed, 4 insertions(+), 4 deletions(-) diff --git a/conduit/Chart.yaml b/conduit/Chart.yaml index 519a205..5013d9a 100644 --- a/conduit/Chart.yaml +++ b/conduit/Chart.yaml @@ -3,7 +3,7 @@ name: conduit description: Conduit is a simple, fast and reliable chat server powered by Matrix. icon: https://conduit.rs/conduit.svg type: application -version: 0.3.6 +version: 0.3.7 # renovate: image=docker.io/matrixconduit/matrix-conduit appVersion: "0.8.0" maintainers: diff --git a/conduit/README.adoc b/conduit/README.adoc index 43edaa1..3aa417f 100644 --- a/conduit/README.adoc +++ b/conduit/README.adoc @@ -2,7 +2,7 @@ = conduit -image::https://img.shields.io/badge/Version-0.3.6-informational?style=flat-square[Version: 0.3.6] +image::https://img.shields.io/badge/Version-0.3.7-informational?style=flat-square[Version: 0.3.7] image::https://img.shields.io/badge/Version-application-informational?style=flat-square[Type: application] image::https://img.shields.io/badge/AppVersion-0.8.0-informational?style=flat-square[AppVersion: 0.8.0] == Maintainers @@ -349,7 +349,7 @@ helm uninstall conduit-release | wellknown.image.tag | string -| `"1.27.1"` +| `"1.27.2"` | | wellknown.nodeSelector diff --git a/conduit/values.yaml b/conduit/values.yaml index ea27974..d9cfd97 100644 --- a/conduit/values.yaml +++ b/conduit/values.yaml @@ -48,7 +48,7 @@ wellknown: registry: docker.io repository: library/nginx pullPolicy: IfNotPresent - tag: "1.27.1" + tag: "1.27.2" replicaCount: 1 podLabels: {} -- 2.45.3 From d3df54a036a17740d1d11dbcb92b4168a016e154 Mon Sep 17 00:00:00 2001 From: WrenIX Date: Thu, 10 Oct 2024 23:17:04 +0200 Subject: [PATCH 007/134] fix(stalwart-mail): update appVersion --- stalwart-mail/Chart.yaml | 6 +++--- stalwart-mail/README.adoc | 4 ++-- 2 files changed, 5 insertions(+), 5 deletions(-) diff --git a/stalwart-mail/Chart.yaml b/stalwart-mail/Chart.yaml index 27d304b..a171122 100644 --- a/stalwart-mail/Chart.yaml +++ b/stalwart-mail/Chart.yaml @@ -1,11 +1,11 @@ apiVersion: v2 name: stalwart-mail description: Helm Chart for Stalwart Mail Server - Secure & Modern All-in-One Mail Server (IMAP, JMAP, SMTP) -icon: https://stalw.art/home/apple-touch-icon.png +icon: https://stalw.art/img/apple-touch-icon.png type: application -version: 0.0.15 +version: 0.0.16 # renovate: image=docker.io/stalwartlabs/mail-server -appVersion: "0.10.1" +appVersion: "0.10.4" maintainers: - name: WrenIX url: https://wrenix.eu diff --git a/stalwart-mail/README.adoc b/stalwart-mail/README.adoc index d7b10a2..9be3f67 100644 --- a/stalwart-mail/README.adoc +++ b/stalwart-mail/README.adoc @@ -2,9 +2,9 @@ = stalwart-mail -image::https://img.shields.io/badge/Version-0.0.15-informational?style=flat-square[Version: 0.0.15] +image::https://img.shields.io/badge/Version-0.0.16-informational?style=flat-square[Version: 0.0.16] image::https://img.shields.io/badge/Version-application-informational?style=flat-square[Type: application] -image::https://img.shields.io/badge/AppVersion-0.10.1-informational?style=flat-square[AppVersion: 0.10.1] +image::https://img.shields.io/badge/AppVersion-0.10.4-informational?style=flat-square[AppVersion: 0.10.4] == Maintainers .Maintainers -- 2.45.3 From 0f400688df1541895bab5fce06b8fdf9fced51ec Mon Sep 17 00:00:00 2001 From: WrenIX Date: Thu, 10 Oct 2024 23:18:39 +0200 Subject: [PATCH 008/134] fix(gotosocial): no empty values in secret --- gotosocial/Chart.yaml | 2 +- gotosocial/README.adoc | 2 +- gotosocial/templates/secret.yaml | 24 ++++++++++++++++++------ 3 files changed, 20 insertions(+), 8 deletions(-) diff --git a/gotosocial/Chart.yaml b/gotosocial/Chart.yaml index 28384ea..549bde6 100644 --- a/gotosocial/Chart.yaml +++ b/gotosocial/Chart.yaml @@ -3,7 +3,7 @@ name: gotosocial description: With GoToSocial, you can keep in touch with your friends, post, read, and share images and articles. All without being tracked or advertised to! icon: https://docs.gotosocial.org/en/latest/assets/sloth.png type: application -version: 0.2.1 +version: 0.2.2 # renovate: image=docker.io/superseriousbusiness/gotosocial appVersion: "0.16.0" maintainers: diff --git a/gotosocial/README.adoc b/gotosocial/README.adoc index 2a139d0..fd3837d 100644 --- a/gotosocial/README.adoc +++ b/gotosocial/README.adoc @@ -2,7 +2,7 @@ = gotosocial -image::https://img.shields.io/badge/Version-0.2.1-informational?style=flat-square[Version: 0.2.1] +image::https://img.shields.io/badge/Version-0.2.2-informational?style=flat-square[Version: 0.2.2] image::https://img.shields.io/badge/Version-application-informational?style=flat-square[Type: application] image::https://img.shields.io/badge/AppVersion-0.16.0-informational?style=flat-square[AppVersion: 0.16.0] == Maintainers diff --git a/gotosocial/templates/secret.yaml b/gotosocial/templates/secret.yaml index 08f345b..070a6f6 100644 --- a/gotosocial/templates/secret.yaml +++ b/gotosocial/templates/secret.yaml @@ -12,7 +12,9 @@ data: TZ: {{ .tz | b64enc }} GTS_APPLICATION_NAME: {{ .applicationName | b64enc }} - GTS_LANDING_PAGE_USER: {{ .landingPageUser | b64enc }} + {{- with .landingPageUser }} + GTS_LANDING_PAGE_USER: {{ . | b64enc }} + {{- end }} GTS_HOST: {{ .host | b64enc }} GTS_ACCOUNT_DOMAIN: {{ .accountDomain | b64enc }} @@ -43,7 +45,9 @@ data: {{- end }}{{/* end-else-if sqlite */}} {{- with .instance }} - GTS_INSTANCE_LANGUAGES: {{ .languages | join "," | b64enc }} + {{- with .languages }} + GTS_INSTANCE_LANGUAGES: {{ . | join "," | b64enc }} + {{- end }} {{- with .federation }} GTS_INSTANCE_FEDERATION_MODE: {{ .mode | b64enc }} GTS_INSTANCE_FEDERATION_SPAM_FILTER: {{ toYaml .spamFilter | b64enc }} @@ -106,11 +110,19 @@ data: {{- end }}{{/* end-with oidc */}} {{- with .smtp }} - GTS_SMTP_HOST: {{ .host | default "" | b64enc }} + {{- with .host }} + GTS_SMTP_HOST: {{ . | b64enc }} + {{- end }} GTS_SMTP_PORT: {{ toYaml .port | b64enc }} - GTS_SMTP_USERNAME: {{ .username | default "" | b64enc }} - GTS_SMTP_PASSWORD: {{ .password | default "" | b64enc }} - GTS_SMTP_FROM: {{ .from | default "" | b64enc }} + {{- with .username }} + GTS_SMTP_USERNAME: {{ . | b64enc }} + {{- end }} + {{- with .password }} + GTS_SMTP_PASSWORD: {{ . | b64enc }} + {{- end }} + {{- with .from }} + GTS_SMTP_FROM: {{ . | b64enc }} + {{- end }} GTS_SMTP_DISCLOSE_RECIPIENTS: {{ toYaml .discloseRecipients | b64enc }} {{- end }}{{/* end-with smtp */}} -- 2.45.3 From 6c3deba125971803ab7c96dfe0d8267befb8f5b9 Mon Sep 17 00:00:00 2001 From: WrenIX Date: Fri, 11 Oct 2024 23:13:46 +0200 Subject: [PATCH 009/134] fix(home-assistant): update appVersion --- home-assistant/Chart.yaml | 4 ++-- home-assistant/README.adoc | 4 ++-- 2 files changed, 4 insertions(+), 4 deletions(-) diff --git a/home-assistant/Chart.yaml b/home-assistant/Chart.yaml index 2c7cbb8..67bf9d8 100644 --- a/home-assistant/Chart.yaml +++ b/home-assistant/Chart.yaml @@ -2,9 +2,9 @@ apiVersion: v2 name: home-assistant description: Home Assistant with tooling to run on an k3s pi type: application -version: 0.1.30 +version: 0.1.31 # renovate: image=ghcr.io/home-assistant/home-assistant -appVersion: "2024.10.1" +appVersion: "2024.10.2" maintainers: - name: WrenIX url: https://wrenix.eu diff --git a/home-assistant/README.adoc b/home-assistant/README.adoc index fdaff9e..5d9348a 100644 --- a/home-assistant/README.adoc +++ b/home-assistant/README.adoc @@ -2,9 +2,9 @@ = home-assistant -image::https://img.shields.io/badge/Version-0.1.30-informational?style=flat-square[Version: 0.1.30] +image::https://img.shields.io/badge/Version-0.1.31-informational?style=flat-square[Version: 0.1.31] image::https://img.shields.io/badge/Version-application-informational?style=flat-square[Type: application] -image::https://img.shields.io/badge/AppVersion-2024.10.1-informational?style=flat-square[AppVersion: 2024.10.1] +image::https://img.shields.io/badge/AppVersion-2024.10.2-informational?style=flat-square[AppVersion: 2024.10.2] == Maintainers .Maintainers -- 2.45.3 From 7df49a6afa1e9d722837dd211d69224630c93759 Mon Sep 17 00:00:00 2001 From: tectux Date: Sat, 5 Oct 2024 15:37:56 +0000 Subject: [PATCH 010/134] fix(conduit): wellknown custom deployment --- conduit/Chart.yaml | 4 +- conduit/README.adoc | 48 +++++++++++++-------- conduit/ci/empty-values.yaml | 0 conduit/ci/well-known-values.yaml | 22 ++++++++++ conduit/templates/deployment.yaml | 6 ++- conduit/templates/ingress.yaml | 9 ++++ conduit/templates/wellknown/configmap.yaml | 9 ++-- conduit/templates/wellknown/deployment.yaml | 14 +++--- conduit/values.yaml | 43 ++++++++++++++++-- 9 files changed, 120 insertions(+), 35 deletions(-) create mode 100644 conduit/ci/empty-values.yaml create mode 100644 conduit/ci/well-known-values.yaml diff --git a/conduit/Chart.yaml b/conduit/Chart.yaml index 5013d9a..54a8c3a 100644 --- a/conduit/Chart.yaml +++ b/conduit/Chart.yaml @@ -3,9 +3,9 @@ name: conduit description: Conduit is a simple, fast and reliable chat server powered by Matrix. icon: https://conduit.rs/conduit.svg type: application -version: 0.3.7 +version: 1.0.0 # renovate: image=docker.io/matrixconduit/matrix-conduit -appVersion: "0.8.0" +appVersion: "0.9.0" maintainers: - name: WrenIX url: https://wrenix.eu diff --git a/conduit/README.adoc b/conduit/README.adoc index 3aa417f..564a85e 100644 --- a/conduit/README.adoc +++ b/conduit/README.adoc @@ -2,9 +2,9 @@ = conduit -image::https://img.shields.io/badge/Version-0.3.7-informational?style=flat-square[Version: 0.3.7] +image::https://img.shields.io/badge/Version-1.0.0-informational?style=flat-square[Version: 1.0.0] image::https://img.shields.io/badge/Version-application-informational?style=flat-square[Type: application] -image::https://img.shields.io/badge/AppVersion-0.8.0-informational?style=flat-square[AppVersion: 0.8.0] +image::https://img.shields.io/badge/AppVersion-0.9.0-informational?style=flat-square[AppVersion: 0.9.0] == Maintainers .Maintainers @@ -127,10 +127,15 @@ helm uninstall conduit-release | `"matrix.org"` | -| conduit.wellKnownClient +| conduit.wellKnown.client | string -| `"your.server.name"` -| +| `""` +| client well-known configuration in conduit + +| conduit.wellKnown.server +| string +| `"https://your.server.name"` +| server well-known configuration in conduit | fullnameOverride | string @@ -307,15 +312,10 @@ helm uninstall conduit-release | `{}` | -| wellknown.client."m.homeserver".base_url -| string -| `"https://your.server.name/"` -| - -| wellknown.client."org.matrix.msc3575.proxy".url -| string -| `"https://your.server.name/"` -| +| wellknown.client +| object +| `{"m.homeserver":{"base_url":"https://your.server.name/"},"org.matrix.msc3575.proxy":{"url":"https://your.server.name/"}}` +| client entry in well-known | wellknown.containerPort | int @@ -324,7 +324,7 @@ helm uninstall conduit-release | wellknown.enabled | bool -| `true` +| `false` | | wellknown.env @@ -352,6 +352,11 @@ helm uninstall conduit-release | `"1.27.2"` | +| wellknown.nginxServerConf +| string +| `"server {\n listen {{ .containerPort }};\n server_name localhost;\n\n location /.well-known/matrix/server {\n return 200 {{ toJson .server | quote }};\n types { } default_type \"application/json; charset=utf-8\";\n }\n\n location /.well-known/matrix/client {\n return 200 {{ toJson .client | quote }};\n types { } default_type \"application/json; charset=utf-8\";\n add_header \"Access-Control-Allow-Origin\" *;\n }\n\n location / {\n # return 200 'Welcome to the your.server.name conduit server!';\n # types { } default_type \"text/plain; charset=utf-8\";\n return 404;\n }\n\n location /nginx_health {\n return 200 'OK';\n types { } default_type \"text/plain; charset=utf-8\";\n }\n}"` +| nginx config + | wellknown.nodeSelector | object | `{}` @@ -382,15 +387,20 @@ helm uninstall conduit-release | `{}` | +| wellknown.rewriteRoot +| bool +| `false` +| if ingress is enabled: specifies whether ingress should redirect the `/`-Location to the wellknown server + | wellknown.securityContext | object | `{}` | -| wellknown.server."m.server" -| string -| `"your.server.name:443"` -| +| wellknown.server +| object +| `{"m.server":"your.server.name:443"}` +| server entry in well-known | wellknown.service.annotations | object diff --git a/conduit/ci/empty-values.yaml b/conduit/ci/empty-values.yaml new file mode 100644 index 0000000..e69de29 diff --git a/conduit/ci/well-known-values.yaml b/conduit/ci/well-known-values.yaml new file mode 100644 index 0000000..0982dd2 --- /dev/null +++ b/conduit/ci/well-known-values.yaml @@ -0,0 +1,22 @@ +conduit: + server_name: test.wrenix.eu + wellKnown: + server: "overwritten-test:443" + client: "https://overwritten-test" + +wellknown: + enabled: true + +ingress: + enabled: true + annotations: + cert-manager.io/cluster-issuer: letsencrypt-prod + hosts: + - host: test.wrenix.eu + paths: + - path: / + pathType: Prefix + tls: + - secretName: test + hosts: + - test.wrenix.eu diff --git a/conduit/templates/deployment.yaml b/conduit/templates/deployment.yaml index 2145ec5..8c10770 100644 --- a/conduit/templates/deployment.yaml +++ b/conduit/templates/deployment.yaml @@ -97,10 +97,14 @@ spec: - name: "CONDUIT_REGISTRATION_TOKEN" value: {{ . | quote }} {{- end }} - {{- with .Values.conduit.wellKnownClient }} + {{- with .Values.conduit.wellKnown.client }} - name: "CONDUIT_WELL_KNOWN_CLIENT" value: {{ . | quote }} {{- end }} + {{- with .Values.conduit.wellKnown.server }} + - name: "CONDUIT_WELL_KNOWN_SERVER" + value: {{ . | quote }} + {{- end }} volumeMounts: - name: "data" mountPath: "/var/lib/matrix-conduit" diff --git a/conduit/templates/ingress.yaml b/conduit/templates/ingress.yaml index 1962e8b..851dbf3 100644 --- a/conduit/templates/ingress.yaml +++ b/conduit/templates/ingress.yaml @@ -76,5 +76,14 @@ spec: name: {{ include "conduit.fullname" . }}-wellknown port: name: http + {{- if .Values.wellknown.rewriteRoot }} + - path: / + pathType: Exact + backend: + service: + name: {{ include "conduit.fullname" . }}-wellknown + port: + name: http + {{- end }} {{- end }} {{- end }} diff --git a/conduit/templates/wellknown/configmap.yaml b/conduit/templates/wellknown/configmap.yaml index 868c59c..d902f1e 100644 --- a/conduit/templates/wellknown/configmap.yaml +++ b/conduit/templates/wellknown/configmap.yaml @@ -2,10 +2,11 @@ apiVersion: v1 kind: ConfigMap metadata: - name: {{ include "conduit.fullname" . }}-wellknown + name: {{ include "conduit.fullname" . }}-nginx-wellknown labels: {{- include "conduit.labels" . | nindent 4 }} data: - server: {{ toJson .Values.wellknown.server | quote }} - client: {{ toJson .Values.wellknown.client | quote }} -{{- end }} \ No newline at end of file + {{- with .Values.wellknown}} + default.conf: {{ tpl .nginxServerConf . | toYaml | nindent 4 }} + {{- end }} +{{- end }} diff --git a/conduit/templates/wellknown/deployment.yaml b/conduit/templates/wellknown/deployment.yaml index 421a093..9ccd0c7 100644 --- a/conduit/templates/wellknown/deployment.yaml +++ b/conduit/templates/wellknown/deployment.yaml @@ -47,17 +47,19 @@ spec: protocol: TCP livenessProbe: httpGet: - path: / + path: /nginx_health port: http readinessProbe: httpGet: - path: / + path: /nginx_health port: http resources: {{- toYaml .Values.wellknown.resources | nindent 12 }} volumeMounts: - - name: "data" - mountPath: "/usr/share/nginx/html/.well-known/matrix/" + - name: "wellknown-nginx-conf" + mountPath: "/etc/nginx/conf.d/default.conf" + subPath: default.conf + readOnly: true {{- with .Values.wellknown.nodeSelector }} nodeSelector: {{- toYaml . | nindent 8 }} @@ -71,7 +73,7 @@ spec: {{- toYaml . | nindent 8 }} {{- end }} volumes: - - name: "data" + - name: "wellknown-nginx-conf" configMap: - name: {{ include "conduit.fullname" . }}-wellknown + name: {{ include "conduit.fullname" . }}-nginx-wellknown {{- end }} diff --git a/conduit/values.yaml b/conduit/values.yaml index d9cfd97..2a39fbc 100644 --- a/conduit/values.yaml +++ b/conduit/values.yaml @@ -40,10 +40,14 @@ conduit: # log: "warn,rocket=off,_=off,sled=off" log: registrationToken: - wellKnownClient: "your.server.name" + wellKnown: + # -- client well-known configuration in conduit + client: "" + # -- server well-known configuration in conduit + server: "https://your.server.name" wellknown: - enabled: true + enabled: false image: registry: docker.io repository: library/nginx @@ -67,15 +71,48 @@ wellknown: port: 8080 annotations: {} - # TO EDIT: + # -- if ingress is enabled: specifies whether ingress should redirect the `/`-Location to the wellknown server + rewriteRoot: false + + # -- server entry in well-known server: "m.server": "your.server.name:443" + # -- client entry in well-known client: "m.homeserver": "base_url": "https://your.server.name/" "org.matrix.msc3575.proxy": "url": "https://your.server.name/" + # -- nginx config + nginxServerConf: |- + server { + listen {{ .containerPort }}; + server_name localhost; + + location /.well-known/matrix/server { + return 200 {{ toJson .server | quote }}; + types { } default_type "application/json; charset=utf-8"; + } + + location /.well-known/matrix/client { + return 200 {{ toJson .client | quote }}; + types { } default_type "application/json; charset=utf-8"; + add_header "Access-Control-Allow-Origin" *; + } + + location / { + # return 200 'Welcome to the your.server.name conduit server!'; + # types { } default_type "text/plain; charset=utf-8"; + return 404; + } + + location /nginx_health { + return 200 'OK'; + types { } default_type "text/plain; charset=utf-8"; + } + } + podLabels: {} podAnnotations: {} -- 2.45.3 From a4e242c9d520f2c9d6e5a45e23489234bfe6b82d Mon Sep 17 00:00:00 2001 From: WrenIX Date: Wed, 16 Oct 2024 18:33:56 +0200 Subject: [PATCH 011/134] fix(mautrix-signal): update appVersion --- mautrix-signal/Chart.yaml | 4 ++-- mautrix-signal/README.adoc | 4 ++-- 2 files changed, 4 insertions(+), 4 deletions(-) diff --git a/mautrix-signal/Chart.yaml b/mautrix-signal/Chart.yaml index a809c5d..c24f8bf 100644 --- a/mautrix-signal/Chart.yaml +++ b/mautrix-signal/Chart.yaml @@ -2,9 +2,9 @@ apiVersion: v2 name: mautrix-signal description: A Matrix-Signal puppeting bridge. type: application -version: 0.0.12 +version: 0.0.13 # renovate: image=dock.mau.dev/mautrix/signal -appVersion: "0.7.1" +appVersion: "0.7.2" maintainers: - name: WrenIX url: https://wrenix.eu diff --git a/mautrix-signal/README.adoc b/mautrix-signal/README.adoc index fd86794..34729a8 100644 --- a/mautrix-signal/README.adoc +++ b/mautrix-signal/README.adoc @@ -2,9 +2,9 @@ = mautrix-signal -image::https://img.shields.io/badge/Version-0.0.12-informational?style=flat-square[Version: 0.0.12] +image::https://img.shields.io/badge/Version-0.0.13-informational?style=flat-square[Version: 0.0.13] image::https://img.shields.io/badge/Version-application-informational?style=flat-square[Type: application] -image::https://img.shields.io/badge/AppVersion-0.7.1-informational?style=flat-square[AppVersion: 0.7.1] +image::https://img.shields.io/badge/AppVersion-0.7.2-informational?style=flat-square[AppVersion: 0.7.2] == Maintainers .Maintainers -- 2.45.3 From a79136028cc60fe114a017ab9aa03cec2e149911 Mon Sep 17 00:00:00 2001 From: WrenIX Date: Wed, 16 Oct 2024 18:34:36 +0200 Subject: [PATCH 012/134] fix(stalwart-mail): update appVersion --- stalwart-mail/Chart.yaml | 4 ++-- stalwart-mail/README.adoc | 4 ++-- 2 files changed, 4 insertions(+), 4 deletions(-) diff --git a/stalwart-mail/Chart.yaml b/stalwart-mail/Chart.yaml index a171122..d1675a3 100644 --- a/stalwart-mail/Chart.yaml +++ b/stalwart-mail/Chart.yaml @@ -3,9 +3,9 @@ name: stalwart-mail description: Helm Chart for Stalwart Mail Server - Secure & Modern All-in-One Mail Server (IMAP, JMAP, SMTP) icon: https://stalw.art/img/apple-touch-icon.png type: application -version: 0.0.16 +version: 0.0.17 # renovate: image=docker.io/stalwartlabs/mail-server -appVersion: "0.10.4" +appVersion: "0.10.5" maintainers: - name: WrenIX url: https://wrenix.eu diff --git a/stalwart-mail/README.adoc b/stalwart-mail/README.adoc index 9be3f67..daaa07a 100644 --- a/stalwart-mail/README.adoc +++ b/stalwart-mail/README.adoc @@ -2,9 +2,9 @@ = stalwart-mail -image::https://img.shields.io/badge/Version-0.0.16-informational?style=flat-square[Version: 0.0.16] +image::https://img.shields.io/badge/Version-0.0.17-informational?style=flat-square[Version: 0.0.17] image::https://img.shields.io/badge/Version-application-informational?style=flat-square[Type: application] -image::https://img.shields.io/badge/AppVersion-0.10.4-informational?style=flat-square[AppVersion: 0.10.4] +image::https://img.shields.io/badge/AppVersion-0.10.5-informational?style=flat-square[AppVersion: 0.10.5] == Maintainers .Maintainers -- 2.45.3 From c19794de4afe47e4f4e637fc0fb2c307f67d124b Mon Sep 17 00:00:00 2001 From: WrenIX Date: Wed, 16 Oct 2024 18:35:32 +0200 Subject: [PATCH 013/134] fix(matrix-synapse): update appVersion --- matrix-synapse/Chart.yaml | 4 ++-- matrix-synapse/README.adoc | 4 ++-- 2 files changed, 4 insertions(+), 4 deletions(-) diff --git a/matrix-synapse/Chart.yaml b/matrix-synapse/Chart.yaml index 663158c..7b9a44d 100644 --- a/matrix-synapse/Chart.yaml +++ b/matrix-synapse/Chart.yaml @@ -4,9 +4,9 @@ name: matrix-synapse description: Matrix reference homeserver icon: https://matrix.org/images/matrix-logo.svg type: application -version: 0.3.6 +version: 0.3.7 # renovate: image=ghcr.io/element-hq/synapse -appVersion: 1.116.0 +appVersion: 1.117.0 maintainers: - name: WrenIX url: https://wrenix.eu diff --git a/matrix-synapse/README.adoc b/matrix-synapse/README.adoc index a483ba0..78fdb47 100644 --- a/matrix-synapse/README.adoc +++ b/matrix-synapse/README.adoc @@ -2,9 +2,9 @@ = matrix-synapse -image::https://img.shields.io/badge/Version-0.3.6-informational?style=flat-square[Version: 0.3.6] +image::https://img.shields.io/badge/Version-0.3.7-informational?style=flat-square[Version: 0.3.7] image::https://img.shields.io/badge/Version-application-informational?style=flat-square[Type: application] -image::https://img.shields.io/badge/AppVersion-1.116.0-informational?style=flat-square[AppVersion: 1.116.0] +image::https://img.shields.io/badge/AppVersion-1.117.0-informational?style=flat-square[AppVersion: 1.117.0] == Maintainers .Maintainers -- 2.45.3 From e22b40e8e4dc7018df55c5cd5cebd7461fdf2f36 Mon Sep 17 00:00:00 2001 From: WrenIX Date: Wed, 16 Oct 2024 18:36:07 +0200 Subject: [PATCH 014/134] fix(gotosocial): update appVersion --- gotosocial/Chart.yaml | 4 ++-- gotosocial/README.adoc | 4 ++-- 2 files changed, 4 insertions(+), 4 deletions(-) diff --git a/gotosocial/Chart.yaml b/gotosocial/Chart.yaml index 549bde6..0d8ed5f 100644 --- a/gotosocial/Chart.yaml +++ b/gotosocial/Chart.yaml @@ -3,9 +3,9 @@ name: gotosocial description: With GoToSocial, you can keep in touch with your friends, post, read, and share images and articles. All without being tracked or advertised to! icon: https://docs.gotosocial.org/en/latest/assets/sloth.png type: application -version: 0.2.2 +version: 0.2.3 # renovate: image=docker.io/superseriousbusiness/gotosocial -appVersion: "0.16.0" +appVersion: "0.17.0" maintainers: - name: WrenIX url: https://wrenix.eu diff --git a/gotosocial/README.adoc b/gotosocial/README.adoc index fd3837d..e7d9f26 100644 --- a/gotosocial/README.adoc +++ b/gotosocial/README.adoc @@ -2,9 +2,9 @@ = gotosocial -image::https://img.shields.io/badge/Version-0.2.2-informational?style=flat-square[Version: 0.2.2] +image::https://img.shields.io/badge/Version-0.2.3-informational?style=flat-square[Version: 0.2.3] image::https://img.shields.io/badge/Version-application-informational?style=flat-square[Type: application] -image::https://img.shields.io/badge/AppVersion-0.16.0-informational?style=flat-square[AppVersion: 0.16.0] +image::https://img.shields.io/badge/AppVersion-0.17.0-informational?style=flat-square[AppVersion: 0.17.0] == Maintainers .Maintainers -- 2.45.3 From 48c65fe19f6fd60ad2ce84f9044f6af8900e2ed5 Mon Sep 17 00:00:00 2001 From: WrenIX Date: Wed, 16 Oct 2024 19:10:01 +0200 Subject: [PATCH 015/134] fix(home-assistant): add podmonitor (with given bearerTokenSecret) --- home-assistant/Chart.yaml | 2 +- home-assistant/README.adoc | 17 ++++++++++++++++- home-assistant/templates/deployment.yaml | 4 ++-- home-assistant/templates/podmonitor.yaml | 21 +++++++++++++++++++++ home-assistant/templates/service.yaml | 2 +- home-assistant/values.yaml | 6 ++++++ 6 files changed, 47 insertions(+), 5 deletions(-) create mode 100644 home-assistant/templates/podmonitor.yaml diff --git a/home-assistant/Chart.yaml b/home-assistant/Chart.yaml index 67bf9d8..3d76f34 100644 --- a/home-assistant/Chart.yaml +++ b/home-assistant/Chart.yaml @@ -2,7 +2,7 @@ apiVersion: v2 name: home-assistant description: Home Assistant with tooling to run on an k3s pi type: application -version: 0.1.31 +version: 0.2.0 # renovate: image=ghcr.io/home-assistant/home-assistant appVersion: "2024.10.2" maintainers: diff --git a/home-assistant/README.adoc b/home-assistant/README.adoc index 5d9348a..f549738 100644 --- a/home-assistant/README.adoc +++ b/home-assistant/README.adoc @@ -2,7 +2,7 @@ = home-assistant -image::https://img.shields.io/badge/Version-0.1.31-informational?style=flat-square[Version: 0.1.31] +image::https://img.shields.io/badge/Version-0.2.0-informational?style=flat-square[Version: 0.2.0] image::https://img.shields.io/badge/Version-application-informational?style=flat-square[Type: application] image::https://img.shields.io/badge/AppVersion-2024.10.2-informational?style=flat-square[AppVersion: 2024.10.2] == Maintainers @@ -282,6 +282,21 @@ helm uninstall home-assistant-release | `{}` | +| prometheus.podmonitor.bearerTokenSecret +| object +| `{}` +| + +| prometheus.podmonitor.enabled +| bool +| `false` +| + +| prometheus.podmonitor.labels +| object +| `{}` +| + | readinessProbe.httpGet.path | string | `"/"` diff --git a/home-assistant/templates/deployment.yaml b/home-assistant/templates/deployment.yaml index d7a8c3d..7424548 100644 --- a/home-assistant/templates/deployment.yaml +++ b/home-assistant/templates/deployment.yaml @@ -11,7 +11,7 @@ spec: selector: matchLabels: {{- include "home-assistant.selectorLabels" . | nindent 6 }} - type: main + app.kubernetes.io/component: home-assistant template: metadata: {{- with .Values.podAnnotations }} @@ -20,7 +20,7 @@ spec: {{- end }} labels: {{- include "home-assistant.labels" . | nindent 8 }} - type: main + app.kubernetes.io/component: home-assistant {{- with .Values.podLabels }} {{- toYaml . | nindent 8 }} {{- end }} diff --git a/home-assistant/templates/podmonitor.yaml b/home-assistant/templates/podmonitor.yaml new file mode 100644 index 0000000..1ef9aa6 --- /dev/null +++ b/home-assistant/templates/podmonitor.yaml @@ -0,0 +1,21 @@ +{{- if .Values.prometheus.podmonitor.enabled }} +apiVersion: monitoring.coreos.com/v1 +kind: PodMonitor +metadata: + name: {{ include "home-assistant.fullname" . }} + labels: + {{- include "home-assistant.labels" . | nindent 4 }} + {{- with .Values.prometheus.podmonitor.labels }} + {{- toYaml . | nindent 4 }} + {{- end }} +spec: + selector: + matchLabels: + {{- include "home-assistant.selectorLabels" . | nindent 6 }} + app.kubernetes.io/component: home-assistant + podMetricsEndpoints: + - port: http + path: "/api/prometheus" + bearerTokenSecret: + {{- toYaml .Values.prometheus.podmonitor.bearerTokenSecret | nindent 8 }} +{{- end }} diff --git a/home-assistant/templates/service.yaml b/home-assistant/templates/service.yaml index 116e90a..c7e68dd 100644 --- a/home-assistant/templates/service.yaml +++ b/home-assistant/templates/service.yaml @@ -8,7 +8,7 @@ spec: type: {{ .Values.service.type }} selector: {{- include "home-assistant.selectorLabels" . | nindent 4 }} - type: main + app.kubernetes.io/component: home-assistant ports: - port: {{ .Values.service.port }} targetPort: http diff --git a/home-assistant/values.yaml b/home-assistant/values.yaml index 50cd339..dcd5839 100644 --- a/home-assistant/values.yaml +++ b/home-assistant/values.yaml @@ -61,6 +61,12 @@ zigbee2mqtt: serial: port: /dev/ttyACM0 +prometheus: + podmonitor: + enabled: false + labels: {} + bearerTokenSecret: {} + persistence: enabled: false annotations: {} -- 2.45.3 From 34635afd4b5aaeedce42b784a9b6e46f44439d7e Mon Sep 17 00:00:00 2001 From: Calle Englund Date: Sat, 12 Oct 2024 00:52:43 +0200 Subject: [PATCH 016/134] feat(forgejo-runner): add hpa behavior support Allows customizing HPA behaviors when autoscaling is enabled. --- forgejo-runner/Chart.yaml | 2 +- forgejo-runner/README.adoc | 7 ++++++- forgejo-runner/templates/hpa.yaml | 4 ++++ forgejo-runner/values.yaml | 15 +++++++++++++++ 4 files changed, 26 insertions(+), 2 deletions(-) diff --git a/forgejo-runner/Chart.yaml b/forgejo-runner/Chart.yaml index 4b33137..17dc7be 100644 --- a/forgejo-runner/Chart.yaml +++ b/forgejo-runner/Chart.yaml @@ -2,7 +2,7 @@ apiVersion: v2 name: forgejo-runner description: Deploy runner for an forgejo instance (default codeberg.org) type: application -version: 0.2.14 +version: 0.3.0 # renovate: image=code.forgejo.org/forgejo/runner appVersion: "3.5.1" maintainers: diff --git a/forgejo-runner/README.adoc b/forgejo-runner/README.adoc index cda3c52..9d1ef98 100644 --- a/forgejo-runner/README.adoc +++ b/forgejo-runner/README.adoc @@ -2,7 +2,7 @@ = forgejo-runner -image::https://img.shields.io/badge/Version-0.2.14-informational?style=flat-square[Version: 0.2.14] +image::https://img.shields.io/badge/Version-0.3.0-informational?style=flat-square[Version: 0.3.0] image::https://img.shields.io/badge/Version-application-informational?style=flat-square[Type: application] image::https://img.shields.io/badge/AppVersion-3.5.1-informational?style=flat-square[AppVersion: 3.5.1] == Maintainers @@ -208,6 +208,11 @@ helm uninstall forgejo-runner-release | `{}` | +| autoscaling.behavior +| object +| `{}` +| behavior of HPA Example: scaleDown: stabilizationWindowSeconds: 300 policies: - type: Pods value: 1 periodSeconds: 60 scaleUp: stabilizationWindowSeconds: 0 policies: - type: Pods value: 1 periodSeconds: 60 + | autoscaling.enabled | bool | `false` diff --git a/forgejo-runner/templates/hpa.yaml b/forgejo-runner/templates/hpa.yaml index c221811..6779bfb 100644 --- a/forgejo-runner/templates/hpa.yaml +++ b/forgejo-runner/templates/hpa.yaml @@ -12,6 +12,10 @@ spec: name: {{ include "forgejo-runner.fullname" . }} minReplicas: {{ .Values.autoscaling.minReplicas }} maxReplicas: {{ .Values.autoscaling.maxReplicas }} + {{- with .Values.autoscaling.behavior }} + behavior: + {{- toYaml . | nindent 4 }} + {{- end }} metrics: {{- if .Values.autoscaling.targetCPUUtilizationPercentage }} - type: Resource diff --git a/forgejo-runner/values.yaml b/forgejo-runner/values.yaml index 2abfc83..b541353 100644 --- a/forgejo-runner/values.yaml +++ b/forgejo-runner/values.yaml @@ -191,6 +191,21 @@ autoscaling: enabled: false minReplicas: 1 maxReplicas: 100 + # -- behavior of HPA + # Example: + # scaleDown: + # stabilizationWindowSeconds: 300 + # policies: + # - type: Pods + # value: 1 + # periodSeconds: 60 + # scaleUp: + # stabilizationWindowSeconds: 0 + # policies: + # - type: Pods + # value: 1 + # periodSeconds: 60 + behavior: {} targetCPUUtilizationPercentage: 80 # targetMemoryUtilizationPercentage: 80 -- 2.45.3 From 24cbc8c2db4e3faa8ed8569eebe737d113f418f1 Mon Sep 17 00:00:00 2001 From: WrenIX Date: Tue, 22 Oct 2024 10:37:24 +0200 Subject: [PATCH 017/134] fix(home-assistant): update home-assistent and nats/mqtt --- home-assistant/Chart.yaml | 4 ++-- home-assistant/README.adoc | 6 +++--- home-assistant/values.yaml | 2 +- 3 files changed, 6 insertions(+), 6 deletions(-) diff --git a/home-assistant/Chart.yaml b/home-assistant/Chart.yaml index 3d76f34..01dd5c0 100644 --- a/home-assistant/Chart.yaml +++ b/home-assistant/Chart.yaml @@ -2,9 +2,9 @@ apiVersion: v2 name: home-assistant description: Home Assistant with tooling to run on an k3s pi type: application -version: 0.2.0 +version: 0.2.1 # renovate: image=ghcr.io/home-assistant/home-assistant -appVersion: "2024.10.2" +appVersion: "2024.10.3" maintainers: - name: WrenIX url: https://wrenix.eu diff --git a/home-assistant/README.adoc b/home-assistant/README.adoc index f549738..b536747 100644 --- a/home-assistant/README.adoc +++ b/home-assistant/README.adoc @@ -2,9 +2,9 @@ = home-assistant -image::https://img.shields.io/badge/Version-0.2.0-informational?style=flat-square[Version: 0.2.0] +image::https://img.shields.io/badge/Version-0.2.1-informational?style=flat-square[Version: 0.2.1] image::https://img.shields.io/badge/Version-application-informational?style=flat-square[Type: application] -image::https://img.shields.io/badge/AppVersion-2024.10.2-informational?style=flat-square[AppVersion: 2024.10.2] +image::https://img.shields.io/badge/AppVersion-2024.10.3-informational?style=flat-square[AppVersion: 2024.10.3] == Maintainers .Maintainers @@ -184,7 +184,7 @@ helm uninstall home-assistant-release | nats.image.tag | string -| `"2.10.21-scratch"` +| `"2.10.22-scratch"` | | nats.livenessProbe.tcpSocket.port diff --git a/home-assistant/values.yaml b/home-assistant/values.yaml index dcd5839..61da8e0 100644 --- a/home-assistant/values.yaml +++ b/home-assistant/values.yaml @@ -24,7 +24,7 @@ nats: registry: docker.io repository: library/nats pullPolicy: IfNotPresent - tag: "2.10.21-scratch" + tag: "2.10.22-scratch" service: port: nats: 4222 -- 2.45.3 From 83d2cdd1fd84a648efe2ab8319a7ed03aa3cde76 Mon Sep 17 00:00:00 2001 From: WrenIX Date: Tue, 22 Oct 2024 10:37:56 +0200 Subject: [PATCH 018/134] fix(hydrogen-web): update appVersion --- hydrogen-web/Chart.yaml | 4 ++-- hydrogen-web/README.adoc | 4 ++-- 2 files changed, 4 insertions(+), 4 deletions(-) diff --git a/hydrogen-web/Chart.yaml b/hydrogen-web/Chart.yaml index 94ba1f4..33de903 100644 --- a/hydrogen-web/Chart.yaml +++ b/hydrogen-web/Chart.yaml @@ -3,9 +3,9 @@ name: hydrogen-web description: A Helm Chart to install hydrogen-web (a nextgen Matrix Webclient) icon: https://raw.githubusercontent.com/element-hq/hydrogen-web/master/src/platform/web/assets/icon.svg type: application -version: 0.1.7 +version: 0.1.8 # renovate: image=ghcr.io/element-hq/hydrogen-web -appVersion: "0.5.0" +appVersion: "0.5.1" maintainers: - name: WrenIX url: https://wrenix.eu diff --git a/hydrogen-web/README.adoc b/hydrogen-web/README.adoc index 2ad1976..fc1a2e4 100644 --- a/hydrogen-web/README.adoc +++ b/hydrogen-web/README.adoc @@ -2,9 +2,9 @@ = hydrogen-web -image::https://img.shields.io/badge/Version-0.1.7-informational?style=flat-square[Version: 0.1.7] +image::https://img.shields.io/badge/Version-0.1.8-informational?style=flat-square[Version: 0.1.8] image::https://img.shields.io/badge/Version-application-informational?style=flat-square[Type: application] -image::https://img.shields.io/badge/AppVersion-0.5.0-informational?style=flat-square[AppVersion: 0.5.0] +image::https://img.shields.io/badge/AppVersion-0.5.1-informational?style=flat-square[AppVersion: 0.5.1] == Maintainers .Maintainers -- 2.45.3 From ec4f5a9235e171166dbdc3e59fda91789bba8226 Mon Sep 17 00:00:00 2001 From: WrenIX Date: Tue, 22 Oct 2024 10:38:14 +0200 Subject: [PATCH 019/134] fix(gotosocial): update appVersion --- gotosocial/Chart.yaml | 4 ++-- gotosocial/README.adoc | 4 ++-- 2 files changed, 4 insertions(+), 4 deletions(-) diff --git a/gotosocial/Chart.yaml b/gotosocial/Chart.yaml index 0d8ed5f..0010d48 100644 --- a/gotosocial/Chart.yaml +++ b/gotosocial/Chart.yaml @@ -3,9 +3,9 @@ name: gotosocial description: With GoToSocial, you can keep in touch with your friends, post, read, and share images and articles. All without being tracked or advertised to! icon: https://docs.gotosocial.org/en/latest/assets/sloth.png type: application -version: 0.2.3 +version: 0.2.4 # renovate: image=docker.io/superseriousbusiness/gotosocial -appVersion: "0.17.0" +appVersion: "0.17.1" maintainers: - name: WrenIX url: https://wrenix.eu diff --git a/gotosocial/README.adoc b/gotosocial/README.adoc index e7d9f26..e19341b 100644 --- a/gotosocial/README.adoc +++ b/gotosocial/README.adoc @@ -2,9 +2,9 @@ = gotosocial -image::https://img.shields.io/badge/Version-0.2.3-informational?style=flat-square[Version: 0.2.3] +image::https://img.shields.io/badge/Version-0.2.4-informational?style=flat-square[Version: 0.2.4] image::https://img.shields.io/badge/Version-application-informational?style=flat-square[Type: application] -image::https://img.shields.io/badge/AppVersion-0.17.0-informational?style=flat-square[AppVersion: 0.17.0] +image::https://img.shields.io/badge/AppVersion-0.17.1-informational?style=flat-square[AppVersion: 0.17.1] == Maintainers .Maintainers -- 2.45.3 From 65ea3b95eb222ea41b8051da83ce3b5f90c44d4f Mon Sep 17 00:00:00 2001 From: WrenIX Date: Wed, 30 Oct 2024 19:59:24 +0100 Subject: [PATCH 020/134] fix(forgejo-runner): update appVersion --- forgejo-runner/Chart.yaml | 2 +- forgejo-runner/README.adoc | 4 ++-- forgejo-runner/values.yaml | 2 +- 3 files changed, 4 insertions(+), 4 deletions(-) diff --git a/forgejo-runner/Chart.yaml b/forgejo-runner/Chart.yaml index 17dc7be..5b97763 100644 --- a/forgejo-runner/Chart.yaml +++ b/forgejo-runner/Chart.yaml @@ -2,7 +2,7 @@ apiVersion: v2 name: forgejo-runner description: Deploy runner for an forgejo instance (default codeberg.org) type: application -version: 0.3.0 +version: 0.3.1 # renovate: image=code.forgejo.org/forgejo/runner appVersion: "3.5.1" maintainers: diff --git a/forgejo-runner/README.adoc b/forgejo-runner/README.adoc index 9d1ef98..cf13474 100644 --- a/forgejo-runner/README.adoc +++ b/forgejo-runner/README.adoc @@ -2,7 +2,7 @@ = forgejo-runner -image::https://img.shields.io/badge/Version-0.3.0-informational?style=flat-square[Version: 0.3.0] +image::https://img.shields.io/badge/Version-0.3.1-informational?style=flat-square[Version: 0.3.1] image::https://img.shields.io/badge/Version-application-informational?style=flat-square[Type: application] image::https://img.shields.io/badge/AppVersion-3.5.1-informational?style=flat-square[AppVersion: 3.5.1] == Maintainers @@ -305,7 +305,7 @@ helm uninstall forgejo-runner-release | kubectl.image.tag | string -| `"1.31.1"` +| `"1.31.2"` | | nameOverride diff --git a/forgejo-runner/values.yaml b/forgejo-runner/values.yaml index b541353..bb065f2 100644 --- a/forgejo-runner/values.yaml +++ b/forgejo-runner/values.yaml @@ -147,7 +147,7 @@ kubectl: registry: docker.io repository: bitnami/kubectl pullPolicy: IfNotPresent - tag: 1.31.1 + tag: 1.31.2 serviceAccount: # Specifies whether a service account should be created -- 2.45.3 From d9c98abb3cd7bcdc2c0e0b32d9295001e1be01cb Mon Sep 17 00:00:00 2001 From: WrenIX Date: Wed, 30 Oct 2024 19:59:37 +0100 Subject: [PATCH 021/134] fix(home-assistant): update appVersion --- home-assistant/Chart.yaml | 4 ++-- home-assistant/README.adoc | 4 ++-- 2 files changed, 4 insertions(+), 4 deletions(-) diff --git a/home-assistant/Chart.yaml b/home-assistant/Chart.yaml index 01dd5c0..ed5d0c2 100644 --- a/home-assistant/Chart.yaml +++ b/home-assistant/Chart.yaml @@ -2,9 +2,9 @@ apiVersion: v2 name: home-assistant description: Home Assistant with tooling to run on an k3s pi type: application -version: 0.2.1 +version: 0.2.2 # renovate: image=ghcr.io/home-assistant/home-assistant -appVersion: "2024.10.3" +appVersion: "2024.10.4" maintainers: - name: WrenIX url: https://wrenix.eu diff --git a/home-assistant/README.adoc b/home-assistant/README.adoc index b536747..1827a9f 100644 --- a/home-assistant/README.adoc +++ b/home-assistant/README.adoc @@ -2,9 +2,9 @@ = home-assistant -image::https://img.shields.io/badge/Version-0.2.1-informational?style=flat-square[Version: 0.2.1] +image::https://img.shields.io/badge/Version-0.2.2-informational?style=flat-square[Version: 0.2.2] image::https://img.shields.io/badge/Version-application-informational?style=flat-square[Type: application] -image::https://img.shields.io/badge/AppVersion-2024.10.3-informational?style=flat-square[AppVersion: 2024.10.3] +image::https://img.shields.io/badge/AppVersion-2024.10.4-informational?style=flat-square[AppVersion: 2024.10.4] == Maintainers .Maintainers -- 2.45.3 From 31c8844c6ab1e004d05dfa5e2940bdaa774fba85 Mon Sep 17 00:00:00 2001 From: WrenIX Date: Wed, 30 Oct 2024 19:59:40 +0100 Subject: [PATCH 022/134] fix(jellyfin): update appVersion --- jellyfin/Chart.yaml | 4 ++-- jellyfin/README.adoc | 4 ++-- 2 files changed, 4 insertions(+), 4 deletions(-) diff --git a/jellyfin/Chart.yaml b/jellyfin/Chart.yaml index 09bcbc6..eea4f91 100644 --- a/jellyfin/Chart.yaml +++ b/jellyfin/Chart.yaml @@ -3,9 +3,9 @@ name: jellyfin description: The Free Software Media System icon: https://raw.githubusercontent.com/jellyfin/jellyfin-ux/master/branding/SVG/icon-transparent.svg type: application -version: 0.3.2 +version: 0.3.3 # renovate: image=ghcr.io/jellyfin/jellyfin -appVersion: "10.9.11" +appVersion: "10.10.0" maintainers: - name: WrenIX url: https://wrenix.eu diff --git a/jellyfin/README.adoc b/jellyfin/README.adoc index bb6114c..c6cf52d 100644 --- a/jellyfin/README.adoc +++ b/jellyfin/README.adoc @@ -2,9 +2,9 @@ = jellyfin -image::https://img.shields.io/badge/Version-0.3.2-informational?style=flat-square[Version: 0.3.2] +image::https://img.shields.io/badge/Version-0.3.3-informational?style=flat-square[Version: 0.3.3] image::https://img.shields.io/badge/Version-application-informational?style=flat-square[Type: application] -image::https://img.shields.io/badge/AppVersion-10.9.11-informational?style=flat-square[AppVersion: 10.9.11] +image::https://img.shields.io/badge/AppVersion-10.10.0-informational?style=flat-square[AppVersion: 10.10.0] == Maintainers .Maintainers -- 2.45.3 From 6423fe0d6c8a60f1912fa79672e8aacb8304044e Mon Sep 17 00:00:00 2001 From: WrenIX Date: Wed, 30 Oct 2024 19:59:42 +0100 Subject: [PATCH 023/134] fix(matrix-synapse): update appVersion --- matrix-synapse/Chart.yaml | 4 ++-- matrix-synapse/README.adoc | 4 ++-- 2 files changed, 4 insertions(+), 4 deletions(-) diff --git a/matrix-synapse/Chart.yaml b/matrix-synapse/Chart.yaml index 7b9a44d..3ae081e 100644 --- a/matrix-synapse/Chart.yaml +++ b/matrix-synapse/Chart.yaml @@ -4,9 +4,9 @@ name: matrix-synapse description: Matrix reference homeserver icon: https://matrix.org/images/matrix-logo.svg type: application -version: 0.3.7 +version: 0.3.8 # renovate: image=ghcr.io/element-hq/synapse -appVersion: 1.117.0 +appVersion: 1.118.0 maintainers: - name: WrenIX url: https://wrenix.eu diff --git a/matrix-synapse/README.adoc b/matrix-synapse/README.adoc index 78fdb47..9851e70 100644 --- a/matrix-synapse/README.adoc +++ b/matrix-synapse/README.adoc @@ -2,9 +2,9 @@ = matrix-synapse -image::https://img.shields.io/badge/Version-0.3.7-informational?style=flat-square[Version: 0.3.7] +image::https://img.shields.io/badge/Version-0.3.8-informational?style=flat-square[Version: 0.3.8] image::https://img.shields.io/badge/Version-application-informational?style=flat-square[Type: application] -image::https://img.shields.io/badge/AppVersion-1.117.0-informational?style=flat-square[AppVersion: 1.117.0] +image::https://img.shields.io/badge/AppVersion-1.118.0-informational?style=flat-square[AppVersion: 1.118.0] == Maintainers .Maintainers -- 2.45.3 From ebf8a3eba28f6c0413426420226b1a3f5482bc62 Mon Sep 17 00:00:00 2001 From: WrenIX Date: Wed, 30 Oct 2024 19:59:44 +0100 Subject: [PATCH 024/134] fix(ntfy): update appVersion --- ntfy/Chart.yaml | 2 +- ntfy/README.adoc | 4 ++-- ntfy/values.yaml | 2 +- 3 files changed, 4 insertions(+), 4 deletions(-) diff --git a/ntfy/Chart.yaml b/ntfy/Chart.yaml index a23aa7f..b8721e9 100644 --- a/ntfy/Chart.yaml +++ b/ntfy/Chart.yaml @@ -3,7 +3,7 @@ name: ntfy description: A Helm chart for Kubernetes icon: https://github.com/binwiederhier/ntfy/raw/main/web/public/static/images/pwa-512x512.png type: application -version: 0.4.3 +version: 0.4.4 # renovate: image=docker.io/binwiederhier/ntfy appVersion: "2.11.0" maintainers: diff --git a/ntfy/README.adoc b/ntfy/README.adoc index 12ade52..987cb13 100644 --- a/ntfy/README.adoc +++ b/ntfy/README.adoc @@ -2,7 +2,7 @@ = ntfy -image::https://img.shields.io/badge/Version-0.4.3-informational?style=flat-square[Version: 0.4.3] +image::https://img.shields.io/badge/Version-0.4.4-informational?style=flat-square[Version: 0.4.4] image::https://img.shields.io/badge/Version-application-informational?style=flat-square[Type: application] image::https://img.shields.io/badge/AppVersion-2.11.0-informational?style=flat-square[AppVersion: 2.11.0] == Maintainers @@ -159,7 +159,7 @@ helm uninstall ntfy-release | kubectl.image | object -| `{"pullPolicy":"IfNotPresent","registry":"docker.io","repository":"bitnami/kubectl","tag":"1.31.1"}` +| `{"pullPolicy":"IfNotPresent","registry":"docker.io","repository":"bitnami/kubectl","tag":"1.31.2"}` | image needed for setup (store generated VAPID / WebPush keys) | nameOverride diff --git a/ntfy/values.yaml b/ntfy/values.yaml index 59e5c4a..9898644 100644 --- a/ntfy/values.yaml +++ b/ntfy/values.yaml @@ -16,7 +16,7 @@ kubectl: registry: docker.io repository: bitnami/kubectl pullPolicy: IfNotPresent - tag: 1.31.1 + tag: 1.31.2 imagePullSecrets: [] nameOverride: "" -- 2.45.3 From d33ebc16e3d186aaf0804e8c03fd5f4904c1dd08 Mon Sep 17 00:00:00 2001 From: WrenIX Date: Fri, 1 Nov 2024 19:31:39 +0100 Subject: [PATCH 025/134] fix(matrix-synapse): adjust helm-hook for signing-key job --- matrix-synapse/Chart.yaml | 2 +- matrix-synapse/README.adoc | 8 ++++---- matrix-synapse/templates/signing-key/job.yaml | 20 ++++++++++++++++--- matrix-synapse/values.yaml | 8 ++++---- 4 files changed, 26 insertions(+), 12 deletions(-) diff --git a/matrix-synapse/Chart.yaml b/matrix-synapse/Chart.yaml index 3ae081e..7769841 100644 --- a/matrix-synapse/Chart.yaml +++ b/matrix-synapse/Chart.yaml @@ -4,7 +4,7 @@ name: matrix-synapse description: Matrix reference homeserver icon: https://matrix.org/images/matrix-logo.svg type: application -version: 0.3.8 +version: 0.3.9 # renovate: image=ghcr.io/element-hq/synapse appVersion: 1.118.0 maintainers: diff --git a/matrix-synapse/README.adoc b/matrix-synapse/README.adoc index 9851e70..8ebc57d 100644 --- a/matrix-synapse/README.adoc +++ b/matrix-synapse/README.adoc @@ -2,7 +2,7 @@ = matrix-synapse -image::https://img.shields.io/badge/Version-0.3.8-informational?style=flat-square[Version: 0.3.8] +image::https://img.shields.io/badge/Version-0.3.9-informational?style=flat-square[Version: 0.3.9] image::https://img.shields.io/badge/Version-application-informational?style=flat-square[Type: application] image::https://img.shields.io/badge/AppVersion-1.118.0-informational?style=flat-square[AppVersion: 1.118.0] == Maintainers @@ -407,10 +407,10 @@ helm uninstall matrix-synapse-release | `false` | -| signingkey.job.annotations +| signingkey.annotations | object -| `{}` -| +| `{"helm.sh/hook":"pre-install,pre-upgrade","helm.sh/hook-delete-policy":"before-hook-creation,hook-succeeded"}` +| Annotations to apply to the job and rbac for signing-key. | signingkey.job.enabled | bool diff --git a/matrix-synapse/templates/signing-key/job.yaml b/matrix-synapse/templates/signing-key/job.yaml index 6b8e7b6..c9a9979 100644 --- a/matrix-synapse/templates/signing-key/job.yaml +++ b/matrix-synapse/templates/signing-key/job.yaml @@ -14,7 +14,9 @@ metadata: {{- include "matrix-synapse.labels" . | nindent 4 }} app.kubernetes.io/component: signingkey-job annotations: - helm.sh/resource-policy: keep + "helm.sh/resource-policy": keep + "helm.sh/hook-delete-policy": "hook-failed" + "helm.sh/hook": "pre-install" type: Opaque --- apiVersion: v1 @@ -24,6 +26,10 @@ metadata: labels: {{- include "matrix-synapse.labels" . | nindent 4 }} app.kubernetes.io/component: signingkey-job + {{- with .Values.signingkey.annotations }} + annotations: + {{- toYaml . | nindent 4 }} + {{- end }} --- apiVersion: rbac.authorization.k8s.io/v1 kind: Role @@ -32,6 +38,10 @@ metadata: labels: {{- include "matrix-synapse.labels" . | nindent 4 }} app.kubernetes.io/component: signingkey-job + {{- with .Values.signingkey.annotations }} + annotations: + {{- toYaml . | nindent 4 }} + {{- end }} rules: - apiGroups: - "" @@ -51,6 +61,10 @@ metadata: labels: {{- include "matrix-synapse.labels" . | nindent 4 }} app.kubernetes.io/component: signingkey-job + {{- with .Values.signingkey.annotations }} + annotations: + {{- toYaml . | nindent 4 }} + {{- end }} roleRef: apiGroup: rbac.authorization.k8s.io kind: Role @@ -67,10 +81,10 @@ metadata: labels: {{- include "matrix-synapse.labels" . | nindent 4 }} app.kubernetes.io/component: signingkey-job + {{- with .Values.signingkey.annotations }} annotations: - {{- with .Values.signingkey.job.annotations }} {{- toYaml . | nindent 4 }} - {{- end }} + {{- end }} spec: ttlSecondsAfterFinished: 0 template: diff --git a/matrix-synapse/values.yaml b/matrix-synapse/values.yaml index c6356b3..151d7f9 100644 --- a/matrix-synapse/values.yaml +++ b/matrix-synapse/values.yaml @@ -36,6 +36,10 @@ publicServerName: ## The source of the signing key used by Synapse in federation. ## signingkey: + # -- Annotations to apply to the job and rbac for signing-key. + annotations: + "helm.sh/hook": "pre-install,pre-upgrade" + "helm.sh/hook-delete-policy": "before-hook-creation,hook-succeeded" ## Enable a Kubernetes job to generate and store a signing key if one does not ## exist. ## If you have already run a Matrix server at some point on your domain then @@ -50,10 +54,6 @@ signingkey: job: enabled: true - ## Annotations to apply to the signing-key-job. - ## - annotations: {} - publishImage: registry: docker.io repository: bitnami/kubectl -- 2.45.3 From ecd791d0cdc66c4f3f438867ba88cc26e223dac4 Mon Sep 17 00:00:00 2001 From: WrenIX Date: Fri, 1 Nov 2024 19:34:36 +0100 Subject: [PATCH 026/134] fix(matrix-synapse): upgrade postgresql - BREAKING CHANGES --- matrix-synapse/Chart.lock | 8 ++++---- matrix-synapse/Chart.yaml | 4 ++-- matrix-synapse/README.adoc | 2 +- 3 files changed, 7 insertions(+), 7 deletions(-) diff --git a/matrix-synapse/Chart.lock b/matrix-synapse/Chart.lock index 12e6b05..b6363b9 100644 --- a/matrix-synapse/Chart.lock +++ b/matrix-synapse/Chart.lock @@ -1,9 +1,9 @@ dependencies: - name: postgresql repository: https://charts.bitnami.com/bitnami - version: 15.5.22 + version: 16.0.0 - name: redis repository: https://charts.bitnami.com/bitnami - version: 20.0.2 -digest: sha256:425e5d35b097df991598f45a6df69b7c63f7ec5ffc4a5a204314398bb257e307 -generated: "2024-08-17T02:33:53.047931205Z" + version: 20.1.6 +digest: sha256:1e6f035c85e4d2b287318dc4f92bccf8ded11cb65c8a8ed84f30fe2acf407761 +generated: "2024-10-02T13:03:54.305028309Z" diff --git a/matrix-synapse/Chart.yaml b/matrix-synapse/Chart.yaml index 7769841..44bf3b1 100644 --- a/matrix-synapse/Chart.yaml +++ b/matrix-synapse/Chart.yaml @@ -4,7 +4,7 @@ name: matrix-synapse description: Matrix reference homeserver icon: https://matrix.org/images/matrix-logo.svg type: application -version: 0.3.9 +version: 1.0.0 # renovate: image=ghcr.io/element-hq/synapse appVersion: 1.118.0 maintainers: @@ -13,7 +13,7 @@ maintainers: dependencies: - name: postgresql - version: ^15.0.0 + version: ^16.0.0 repository: https://charts.bitnami.com/bitnami condition: postgresql.enabled - name: redis diff --git a/matrix-synapse/README.adoc b/matrix-synapse/README.adoc index 8ebc57d..5d5e290 100644 --- a/matrix-synapse/README.adoc +++ b/matrix-synapse/README.adoc @@ -2,7 +2,7 @@ = matrix-synapse -image::https://img.shields.io/badge/Version-0.3.9-informational?style=flat-square[Version: 0.3.9] +image::https://img.shields.io/badge/Version-1.0.0-informational?style=flat-square[Version: 1.0.0] image::https://img.shields.io/badge/Version-application-informational?style=flat-square[Type: application] image::https://img.shields.io/badge/AppVersion-1.118.0-informational?style=flat-square[AppVersion: 1.118.0] == Maintainers -- 2.45.3 From d350facac33bbd71a7c7d2bcb5f98f25202b185e Mon Sep 17 00:00:00 2001 From: WrenIX Date: Fri, 1 Nov 2024 19:42:35 +0100 Subject: [PATCH 027/134] fix(grampsweb): update appVersion --- grampsweb/Chart.yaml | 4 ++-- grampsweb/README.adoc | 4 ++-- 2 files changed, 4 insertions(+), 4 deletions(-) diff --git a/grampsweb/Chart.yaml b/grampsweb/Chart.yaml index b35a266..9c7da33 100644 --- a/grampsweb/Chart.yaml +++ b/grampsweb/Chart.yaml @@ -3,9 +3,9 @@ name: grampsweb description: A Helm chart for gramps web icon: https://raw.githubusercontent.com/gramps-project/Gramps.js/main/images/icon512.png type: application -version: 0.2.1 +version: 0.2.2 # renovate: image=ghcr.io/gramps-project/grampsweb -appVersion: "24.8.0" +appVersion: "24.10.0" maintainers: - name: WrenIX url: https://wrenix.eu diff --git a/grampsweb/README.adoc b/grampsweb/README.adoc index ba178ea..497fb6b 100644 --- a/grampsweb/README.adoc +++ b/grampsweb/README.adoc @@ -2,9 +2,9 @@ = grampsweb -image::https://img.shields.io/badge/Version-0.2.1-informational?style=flat-square[Version: 0.2.1] +image::https://img.shields.io/badge/Version-0.2.2-informational?style=flat-square[Version: 0.2.2] image::https://img.shields.io/badge/Version-application-informational?style=flat-square[Type: application] -image::https://img.shields.io/badge/AppVersion-24.8.0-informational?style=flat-square[AppVersion: 24.8.0] +image::https://img.shields.io/badge/AppVersion-24.10.0-informational?style=flat-square[AppVersion: 24.10.0] == Maintainers .Maintainers -- 2.45.3 From 84c91354892650461aac6498a7ac50bc13902622 Mon Sep 17 00:00:00 2001 From: WrenIX Date: Fri, 1 Nov 2024 19:43:49 +0100 Subject: [PATCH 028/134] fix(home-assistant): update zigbee2mqtt --- home-assistant/Chart.yaml | 2 +- home-assistant/README.adoc | 4 ++-- home-assistant/values.yaml | 2 +- 3 files changed, 4 insertions(+), 4 deletions(-) diff --git a/home-assistant/Chart.yaml b/home-assistant/Chart.yaml index ed5d0c2..de4ae1b 100644 --- a/home-assistant/Chart.yaml +++ b/home-assistant/Chart.yaml @@ -2,7 +2,7 @@ apiVersion: v2 name: home-assistant description: Home Assistant with tooling to run on an k3s pi type: application -version: 0.2.2 +version: 0.2.3 # renovate: image=ghcr.io/home-assistant/home-assistant appVersion: "2024.10.4" maintainers: diff --git a/home-assistant/README.adoc b/home-assistant/README.adoc index 1827a9f..0792440 100644 --- a/home-assistant/README.adoc +++ b/home-assistant/README.adoc @@ -2,7 +2,7 @@ = home-assistant -image::https://img.shields.io/badge/Version-0.2.2-informational?style=flat-square[Version: 0.2.2] +image::https://img.shields.io/badge/Version-0.2.3-informational?style=flat-square[Version: 0.2.3] image::https://img.shields.io/badge/Version-application-informational?style=flat-square[Type: application] image::https://img.shields.io/badge/AppVersion-2024.10.4-informational?style=flat-square[AppVersion: 2024.10.4] == Maintainers @@ -399,7 +399,7 @@ helm uninstall home-assistant-release | zigbee2mqtt.image.tag | string -| `"1.40.2"` +| `"1.41.0"` | | zigbee2mqtt.ingress.hosts diff --git a/home-assistant/values.yaml b/home-assistant/values.yaml index 61da8e0..f765128 100644 --- a/home-assistant/values.yaml +++ b/home-assistant/values.yaml @@ -50,7 +50,7 @@ zigbee2mqtt: registry: docker.io repository: koenkk/zigbee2mqtt pullPolicy: IfNotPresent - tag: 1.40.2 + tag: 1.41.0 device: /dev/ttyACM0 securityContext: privileged: true -- 2.45.3 From 2ee0926c9387b4ae70834fdc835861d9fd2985e4 Mon Sep 17 00:00:00 2001 From: WrenIX Date: Fri, 1 Nov 2024 19:45:12 +0100 Subject: [PATCH 029/134] fix(forgejo-runner): update appVersion --- forgejo-runner/Chart.yaml | 4 ++-- forgejo-runner/README.adoc | 4 ++-- 2 files changed, 4 insertions(+), 4 deletions(-) diff --git a/forgejo-runner/Chart.yaml b/forgejo-runner/Chart.yaml index 5b97763..39d9e6f 100644 --- a/forgejo-runner/Chart.yaml +++ b/forgejo-runner/Chart.yaml @@ -2,9 +2,9 @@ apiVersion: v2 name: forgejo-runner description: Deploy runner for an forgejo instance (default codeberg.org) type: application -version: 0.3.1 +version: 0.3.2 # renovate: image=code.forgejo.org/forgejo/runner -appVersion: "3.5.1" +appVersion: "4.0.1" maintainers: - name: WrenIX url: https://wrenix.eu diff --git a/forgejo-runner/README.adoc b/forgejo-runner/README.adoc index cf13474..6800450 100644 --- a/forgejo-runner/README.adoc +++ b/forgejo-runner/README.adoc @@ -2,9 +2,9 @@ = forgejo-runner -image::https://img.shields.io/badge/Version-0.3.1-informational?style=flat-square[Version: 0.3.1] +image::https://img.shields.io/badge/Version-0.3.2-informational?style=flat-square[Version: 0.3.2] image::https://img.shields.io/badge/Version-application-informational?style=flat-square[Type: application] -image::https://img.shields.io/badge/AppVersion-3.5.1-informational?style=flat-square[AppVersion: 3.5.1] +image::https://img.shields.io/badge/AppVersion-4.0.1-informational?style=flat-square[AppVersion: 4.0.1] == Maintainers .Maintainers -- 2.45.3 From 8e9066c8b4ceeb4e55f66fbb7bfc2143bab8425c Mon Sep 17 00:00:00 2001 From: WrenIX Date: Fri, 1 Nov 2024 22:11:21 +0100 Subject: [PATCH 030/134] fix(alertmanager-matrix): change registry for support arm64 (own build) --- alertmanager-matrix/Chart.yaml | 2 +- alertmanager-matrix/README.adoc | 6 +++--- alertmanager-matrix/values.yaml | 4 ++-- 3 files changed, 6 insertions(+), 6 deletions(-) diff --git a/alertmanager-matrix/Chart.yaml b/alertmanager-matrix/Chart.yaml index 078ad62..b130833 100644 --- a/alertmanager-matrix/Chart.yaml +++ b/alertmanager-matrix/Chart.yaml @@ -2,7 +2,7 @@ apiVersion: v2 name: alertmanager-matrix description: Service for managing and receiving Alertmanager alerts on Matrix type: application -version: 0.1.9 +version: 0.1.10 # renovate: image=docker.io/silkeh/alertmanager_matrix appVersion: "0.5.0" maintainers: diff --git a/alertmanager-matrix/README.adoc b/alertmanager-matrix/README.adoc index 5e347ba..1c44122 100644 --- a/alertmanager-matrix/README.adoc +++ b/alertmanager-matrix/README.adoc @@ -2,7 +2,7 @@ = alertmanager-matrix -image::https://img.shields.io/badge/Version-0.1.9-informational?style=flat-square[Version: 0.1.9] +image::https://img.shields.io/badge/Version-0.1.10-informational?style=flat-square[Version: 0.1.10] image::https://img.shields.io/badge/Version-application-informational?style=flat-square[Type: application] image::https://img.shields.io/badge/AppVersion-0.5.0-informational?style=flat-square[AppVersion: 0.5.0] == Maintainers @@ -214,12 +214,12 @@ helm uninstall alertmanager-matrix-release | image.registry | string -| `"docker.io"` +| `"registry.gitlab.com"` | | image.repository | string -| `"silkeh/alertmanager_matrix"` +| `"wrenix/alertmanager_matrix"` | | image.tag diff --git a/alertmanager-matrix/values.yaml b/alertmanager-matrix/values.yaml index e3cb5b1..e2e14ab 100644 --- a/alertmanager-matrix/values.yaml +++ b/alertmanager-matrix/values.yaml @@ -5,8 +5,8 @@ replicaCount: 1 image: - registry: docker.io - repository: silkeh/alertmanager_matrix + registry: registry.gitlab.com + repository: wrenix/alertmanager_matrix pullPolicy: IfNotPresent # Overrides the image tag whose default is the chart appVersion. # latest with current: -- 2.45.3 From dad41dade7c29847251b51ba856ccaa0377c06e1 Mon Sep 17 00:00:00 2001 From: WrenIX Date: Wed, 6 Nov 2024 11:23:00 +0100 Subject: [PATCH 031/134] fix(gotosocial): update appVersion --- gotosocial/Chart.yaml | 4 ++-- gotosocial/README.adoc | 4 ++-- 2 files changed, 4 insertions(+), 4 deletions(-) diff --git a/gotosocial/Chart.yaml b/gotosocial/Chart.yaml index 0010d48..2fb8f24 100644 --- a/gotosocial/Chart.yaml +++ b/gotosocial/Chart.yaml @@ -3,9 +3,9 @@ name: gotosocial description: With GoToSocial, you can keep in touch with your friends, post, read, and share images and articles. All without being tracked or advertised to! icon: https://docs.gotosocial.org/en/latest/assets/sloth.png type: application -version: 0.2.4 +version: 0.2.5 # renovate: image=docker.io/superseriousbusiness/gotosocial -appVersion: "0.17.1" +appVersion: "0.17.2" maintainers: - name: WrenIX url: https://wrenix.eu diff --git a/gotosocial/README.adoc b/gotosocial/README.adoc index e19341b..791d66a 100644 --- a/gotosocial/README.adoc +++ b/gotosocial/README.adoc @@ -2,9 +2,9 @@ = gotosocial -image::https://img.shields.io/badge/Version-0.2.4-informational?style=flat-square[Version: 0.2.4] +image::https://img.shields.io/badge/Version-0.2.5-informational?style=flat-square[Version: 0.2.5] image::https://img.shields.io/badge/Version-application-informational?style=flat-square[Type: application] -image::https://img.shields.io/badge/AppVersion-0.17.1-informational?style=flat-square[AppVersion: 0.17.1] +image::https://img.shields.io/badge/AppVersion-0.17.2-informational?style=flat-square[AppVersion: 0.17.2] == Maintainers .Maintainers -- 2.45.3 From 702e8cd796fea52a588350924ef89f677d49d859 Mon Sep 17 00:00:00 2001 From: WrenIX Date: Wed, 6 Nov 2024 11:23:03 +0100 Subject: [PATCH 032/134] fix(jellyfin): update appVersion --- jellyfin/Chart.yaml | 4 ++-- jellyfin/README.adoc | 4 ++-- 2 files changed, 4 insertions(+), 4 deletions(-) diff --git a/jellyfin/Chart.yaml b/jellyfin/Chart.yaml index eea4f91..f74de2f 100644 --- a/jellyfin/Chart.yaml +++ b/jellyfin/Chart.yaml @@ -3,9 +3,9 @@ name: jellyfin description: The Free Software Media System icon: https://raw.githubusercontent.com/jellyfin/jellyfin-ux/master/branding/SVG/icon-transparent.svg type: application -version: 0.3.3 +version: 0.3.4 # renovate: image=ghcr.io/jellyfin/jellyfin -appVersion: "10.10.0" +appVersion: "10.10.1" maintainers: - name: WrenIX url: https://wrenix.eu diff --git a/jellyfin/README.adoc b/jellyfin/README.adoc index c6cf52d..99aed48 100644 --- a/jellyfin/README.adoc +++ b/jellyfin/README.adoc @@ -2,9 +2,9 @@ = jellyfin -image::https://img.shields.io/badge/Version-0.3.3-informational?style=flat-square[Version: 0.3.3] +image::https://img.shields.io/badge/Version-0.3.4-informational?style=flat-square[Version: 0.3.4] image::https://img.shields.io/badge/Version-application-informational?style=flat-square[Type: application] -image::https://img.shields.io/badge/AppVersion-10.10.0-informational?style=flat-square[AppVersion: 10.10.0] +image::https://img.shields.io/badge/AppVersion-10.10.1-informational?style=flat-square[AppVersion: 10.10.1] == Maintainers .Maintainers -- 2.45.3 From 6eb0c854cf5dc8b65e3b7fae43a6be59ea6da4df Mon Sep 17 00:00:00 2001 From: WrenIX Date: Wed, 6 Nov 2024 22:38:14 +0100 Subject: [PATCH 033/134] fix(gotosocial): update appVersion --- README.md | 28 ++++++++ README.md.gotmpl | 61 ++++++++++++++++ gotosocial/Chart.yaml | 4 +- gotosocial/README.adoc | 4 +- gotosocial/README.md | 157 +++++++++++++++++++++++++++++++++++++++++ publish.sh | 7 +- 6 files changed, 254 insertions(+), 7 deletions(-) create mode 100644 README.md create mode 100644 README.md.gotmpl create mode 100644 gotosocial/README.md diff --git a/README.md b/README.md new file mode 100644 index 0000000..44274ac --- /dev/null +++ b/README.md @@ -0,0 +1,28 @@ ++++ +title = "Helm Chart" +template = "docs/section.html" +sort_by = "weight" +weight = 5 ++++ + +# Usage + +Helm must be installed and setup to your kubernetes cluster to use the charts. +Refer to Helm's [documentation](https://helm.sh/docs) to get started. +Once Helm has been set up correctly, fetch the charts as follows: + +```bash +helm pull oci://codeberg.org/wrenix/helm-charts/ +``` + +You can install a chart release using the following command: + +```bash +helm install oci://codeberg.org/wrenix/helm-charts/ --values values.yaml +``` + +To uninstall a chart release use `helm`'s delete command: + +```bash +helm uninstall +``` diff --git a/README.md.gotmpl b/README.md.gotmpl new file mode 100644 index 0000000..dd93d2c --- /dev/null +++ b/README.md.gotmpl @@ -0,0 +1,61 @@ ++++ +title = {{ .Name | quote }} +{{ if .Description }} +description = {{.Description | quote }} +{{ end }} + +weight = 30 +sort_by = "weight" +template = "docs/page.html" + +[extra] +toc = true ++++ + +{{- define "chart.prerequirements" }} +{{- end }} + +{{ template "chart.header" . }} +{{ template "chart.deprecationWarning" . }} + +{{ template "chart.badgesSection" . }} + +{{ template "chart.description" . }} + +{{ template "chart.homepageLine" . }} + +{{ template "chart.maintainersSection" . }} + +{{ template "chart.sourcesSection" . }} + + + +{{ template "chart.prerequirements" . }} + +## Usage + +Helm must be installed and setup to your kubernetes cluster to use the charts. +Refer to Helm's [documentation](https://helm.sh/docs) to get started. +Once Helm has been set up correctly, fetch the charts as follows: + +```bash +helm pull oci://codeberg.org/wrenix/helm-charts/{{ .Name }} +``` + +You can install a chart release using the following command: + +```bash +helm install {{ .Name }}-release oci://codeberg.org/wrenix/helm-charts/{{ .Name }} --values values.yaml +``` + +To uninstall a chart release use `helm`'s delete command: + +```bash +helm uninstall {{ .Name }}-release +``` + +{{ template "chart.requirementsSection" . }} + +{{ template "chart.valuesSection" . }} + +Autogenerated from chart metadata using [helm-docs](https://github.com/norwoodj/helm-docs) diff --git a/gotosocial/Chart.yaml b/gotosocial/Chart.yaml index 2fb8f24..9720d3b 100644 --- a/gotosocial/Chart.yaml +++ b/gotosocial/Chart.yaml @@ -3,9 +3,9 @@ name: gotosocial description: With GoToSocial, you can keep in touch with your friends, post, read, and share images and articles. All without being tracked or advertised to! icon: https://docs.gotosocial.org/en/latest/assets/sloth.png type: application -version: 0.2.5 +version: 0.2.6 # renovate: image=docker.io/superseriousbusiness/gotosocial -appVersion: "0.17.2" +appVersion: "0.17.3" maintainers: - name: WrenIX url: https://wrenix.eu diff --git a/gotosocial/README.adoc b/gotosocial/README.adoc index 791d66a..6eeb531 100644 --- a/gotosocial/README.adoc +++ b/gotosocial/README.adoc @@ -2,9 +2,9 @@ = gotosocial -image::https://img.shields.io/badge/Version-0.2.5-informational?style=flat-square[Version: 0.2.5] +image::https://img.shields.io/badge/Version-0.2.6-informational?style=flat-square[Version: 0.2.6] image::https://img.shields.io/badge/Version-application-informational?style=flat-square[Type: application] -image::https://img.shields.io/badge/AppVersion-0.17.2-informational?style=flat-square[AppVersion: 0.17.2] +image::https://img.shields.io/badge/AppVersion-0.17.3-informational?style=flat-square[AppVersion: 0.17.3] == Maintainers .Maintainers diff --git a/gotosocial/README.md b/gotosocial/README.md new file mode 100644 index 0000000..ffa48be --- /dev/null +++ b/gotosocial/README.md @@ -0,0 +1,157 @@ ++++ +title = "gotosocial" + +description = "With GoToSocial, you can keep in touch with your friends, post, read, and share images and articles. All without being tracked or advertised to!" + +weight = 30 +sort_by = "weight" +template = "docs/page.html" + +[extra] +toc = true ++++ + +# gotosocial + +![Version: 0.2.6](https://img.shields.io/badge/Version-0.2.6-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 0.17.3](https://img.shields.io/badge/AppVersion-0.17.3-informational?style=flat-square) + +With GoToSocial, you can keep in touch with your friends, post, read, and share images and articles. All without being tracked or advertised to! + +## Maintainers + +| Name | Email | Url | +| ---- | ------ | --- | +| WrenIX | | | + +## Usage + +Helm must be installed and setup to your kubernetes cluster to use the charts. +Refer to Helm's [documentation](https://helm.sh/docs) to get started. +Once Helm has been set up correctly, fetch the charts as follows: + +```bash +helm pull oci://codeberg.org/wrenix/helm-charts/gotosocial +``` + +You can install a chart release using the following command: + +```bash +helm install gotosocial-release oci://codeberg.org/wrenix/helm-charts/gotosocial --values values.yaml +``` + +To uninstall a chart release use `helm`'s delete command: + +```bash +helm uninstall gotosocial-release +``` + +## Values + +| Key | Type | Default | Description | +|-----|------|---------|-------------| +| affinity | object | `{}` | | +| autoscaling.enabled | bool | `false` | | +| autoscaling.maxReplicas | int | `100` | | +| autoscaling.minReplicas | int | `1` | | +| autoscaling.targetCPUUtilizationPercentage | int | `80` | | +| fullnameOverride | string | `""` | | +| global.image.pullPolicy | string | `nil` | if set it will overwrite all pullPolicy | +| global.image.registry | string | `nil` | if set it will overwrite all registry entries | +| gotosocial.accountDomain | string | `""` | | +| gotosocial.accounts.allowCustomCSS | bool | `false` | Allow accounts on this instance to set custom CSS for their profile pages and statuses. Enabling this setting will allow accounts to upload custom CSS via the /user settings page, which will then be rendered on the web view of the account's profile and statuses. For instances with public sign ups, it is **HIGHLY RECOMMENDED** to leave this setting on 'false', since setting it to true allows malicious accounts to make their profile pages misleading, unusable or even dangerous to visitors. In other words, you should only enable this setting if you trust the users on your instance not to produce harmful CSS. Regardless of what this value is set to, any uploaded CSS will not be federated to other instances, it will only be shown on profiles and statuses on *this* instance. | +| gotosocial.accounts.approvalRequired | bool | `true` | Do sign up requests require approval from an admin/moderator before an account can sign in/use the server? | +| gotosocial.accounts.customCSSLength | int | `10000` | If accounts-allow-custom-css is true, this is the permitted length in characters for CSS uploaded by accounts on this instance. No effect if accounts-allow-custom-css is false. | +| gotosocial.accounts.reasonRequired | bool | `true` | Are sign up requests required to submit a reason for the request (eg., an explanation of why they want to join the instance)? | +| gotosocial.accounts.registrationOpen | bool | `true` | Do we want people to be able to just submit sign up requests, or do we want invite only? | +| gotosocial.applicationName | string | `"gotosocial"` | | +| gotosocial.database.address | string | `""` | Database address or parameters. For Postgres, this should be the address or socket at which the database can be reached. | +| gotosocial.database.database | string | `"gotosocial"` | Name of the database to use within the provided database type. | +| gotosocial.database.password | string | `""` | Password to use for the database connection | +| gotosocial.database.port | int | `5432` | Port for database connection. | +| gotosocial.database.tlsCACert | string | `""` | Path to a CA certificate on the host machine for db certificate validation. If this is left empty, just the host certificates will be used. If filled in, the certificate will be loaded and added to host certificates. | +| gotosocial.database.tlsMode | string | `"disabled"` | Disable, enable, or require SSL/TLS connection to the database. If "disable" then no TLS connection will be attempted. If "enable" then TLS will be tried, but the database certificate won't be checked (for self-signed certs). If "require" then TLS will be required to make a connection, and a valid certificate must be presented. | +| gotosocial.database.type | string | `"sqlite"` | Database type. Options: ["postgres","sqlite"] | +| gotosocial.database.username | string | `""` | Username for the database connection. | +| gotosocial.host | string | `"localhost"` | | +| gotosocial.instance.deliverToSharedInboxes | bool | `true` | This flag tweaks whether GoToSocial will deliver ActivityPub messages to the shared inbox of a recipient, if one is available, instead of delivering each message to each actor who should receive a message individually. Shared inbox delivery can significantly reduce network load when delivering to multiple recipients share an inbox (eg., on large Mastodon instances). See: https://www.w3.org/TR/activitypub/#shared-inbox-delivery | +| gotosocial.instance.expose.peers | bool | `false` | Allow unauthenticated users to make queries to /api/v1/instance/peers?filter=open in order to see a list of instances that this instance 'peers' with. Even if set to 'false', then authenticated users (members of the instance) will still be able to query the endpoint. | +| gotosocial.instance.expose.publicTimeline | bool | `false` | This flag tweaks whether GoToSocial will deliver ActivityPub messages to the shared inbox of a recipient, if one is available, instead of delivering each message to each actor who should receive a message individually. Shared inbox delivery can significantly reduce network load when delivering to multiple recipients share an inbox (eg., on large Mastodon instances). See: https://www.w3.org/TR/activitypub/#shared-inbox-delivery | +| gotosocial.instance.expose.suspended | bool | `false` | Allow unauthenticated users to make queries to /api/v1/instance/peers?filter=suspended in order to see a list of instances that this instance blocks/suspends. Even if set to 'false', then authenticated users (members of the instance) will still be able to query the endpoint. WARNING: Setting this variable to 'true' may result in your instance being scraped by blocklist scrapers. See: https://docs.gotosocial.org/en/latest/admin/domain_blocks/#block-announce-bots | +| gotosocial.instance.expose.suspendedWeb | bool | `false` | Allow unauthenticated users to view /about/suspended, showing the HTML rendered list of instances that this instance blocks/suspends. | +| gotosocial.instance.federation.mode | string | `"blocklist"` | Federation mode to use for this instance. "blocklist" -- open federation by default. Only instances that are explicitly blocked will be denied (unless they are also explicitly allowed). "allowlist" -- closed federation by default. Only instances that are explicitly allowed will be able to interact with this instance. For more details on blocklist and allowlist modes, check the documentation at: https://docs.gotosocial.org/en/latest/admin/federation_modes Options: ["blocklist", "allowlist"] | +| gotosocial.instance.federation.spamFilter | bool | `false` | Enable spam filtering heuristics for messages entering your instance via the federation API. Regardless of what you set here, basic checks for message relevancy will still be performed, but you can try enabling this setting if you are being spammed with unwanted messages from other instances, and want to more strictly filter out spam messages. THIS IS CURRENTLY AN EXPERIMENTAL SETTING, AND MAY FILTER OUT LEGITIMATE MESSAGES, OR FAIL TO FILTER OUT SPAMMY MESSAGES. It is recommended to only enable this setting when the fediverse is in the midst of a spam wave, and you need to batten down the hatches to keep your instance usable. The decision of whether a message counts as spam or not is made based on the following heuristics, in order, where receiver = the account on your instance that received a message in their inbox, and requester = the account on a remote instance that sent the message. First, basic relevancy checks 1. Receiver follows requester. Return OK. 2. Statusable doesn't mention receiver. Return NotRelevant. If instance-federation-spam-filter = false, then return OK now. Otherwise check: 3. Receiver is locked and is followed by requester. Return OK. 4. Five or more people are mentioned. Return Spam. 5. Receiver follow (requests) a mentioned account. Return OK. 6. Statusable has a media attachment. Return Spam. 7. Statusable contains non-mention, non-hashtag links. Return Spam. Messages identified as spam will be dropped from your instance, and not inserted into the database, or into home timelines or notifications. | +| gotosocial.instance.injectMastodonVersion | bool | `false` | This flag will inject a Mastodon version into the version field that is included in /api/v1/instance. This version is often used by Mastodon clients to do API feature detection. By injecting a Mastodon compatible version, it is possible to cajole those clients to behave correctly with GoToSocial. | +| gotosocial.instance.languages | list | `[]` | BCP47 language tags to indicate preferred languages of users on this instance. If you provide these, you should provide these in order from most-preferred to least-preferred, but note that leaving out a language from this array doesn't mean it can't be used on this instance, it only means it won't be advertised as a preferred instance language. It is valid to provide no entries here; your instance will then have no particular preferred language. See here for commonly-used tags: https://en.wikipedia.org/wiki/IETF_language_tag#List_of_common_primary_language_subtags See here for all current tags: https://www.iana.org/assignments/language-subtag-registry/language-subtag-registry Example: ["nl", "en-gb", "fr"] | +| gotosocial.landingPageUser | string | `""` | | +| gotosocial.metrics.auth.enabled | bool | `false` | | +| gotosocial.metrics.auth.password | string | `""` | | +| gotosocial.metrics.auth.username | string | `""` | | +| gotosocial.metrics.enabled | bool | `true` | | +| gotosocial.oidc.adminGroups | list | `["admins"]` | If the returned ID token contains a 'groups' claim that matches one of the groups in oidc-admin-groups, then this user will be granted admin rights on the GtS instance | +| gotosocial.oidc.clientID | string | `""` | The ID for this client as registered with the OIDC provider. | +| gotosocial.oidc.clientSecret | string | `""` | The secret for this client as registered with the OIDC provider. | +| gotosocial.oidc.enabled | bool | `false` | Enable authentication with external OIDC provider. If set to true, then the other OIDC options must be set as well. If this is set to false, then the standard internal oauth flow will be used, where users sign in to GtS with username/password. | +| gotosocial.oidc.idpName | string | `""` | Name of the oidc idp (identity provider). This will be shown to users when they log in. | +| gotosocial.oidc.issuer | string | `""` | The OIDC issuer URI. This is where GtS will redirect users to for login. Typically this will look like a standard web URL. | +| gotosocial.oidc.linkExisting | bool | `false` | Link OIDC authenticated users to existing ones based on their email address. This is mostly intended for migration purposes if you were running previous versions of GTS which only correlated users with their email address. Should be set to false for most usecases. | +| gotosocial.oidc.scopes | list | `["openid","email","profile","groups"]` | Scopes to request from the OIDC provider. The returned values will be used to populate users created in GtS as a result of the authentication flow. 'openid' and 'email' are required. 'profile' is used to extract a username for the newly created user. 'groups' is optional and can be used to determine if a user is an admin based on oidc-admin-groups. | +| gotosocial.oidc.skipVerification | bool | `false` | Skip the normal verification flow of tokens returned from the OIDC provider, ie., don't check the expiry or signature. This should only be used in debugging or testing, never ever in a production environment as it's extremely unsafe! | +| gotosocial.smtp.discloseRecipients | bool | `false` | If true, when an email is sent that has multiple recipients, each recipient will be included in the To field, so that each recipient can see who else got the email, and they can 'reply all' to the other recipients if they want to. If false, email will be sent to Undisclosed Recipients, and each recipient will not be able to see who else received the email. It might be useful to change this setting to 'true' if you want to be able to discuss new moderation reports with other admins by 'replying-all' to the notification email. | +| gotosocial.smtp.from | string | `""` | 'From' address for sent emails. | +| gotosocial.smtp.host | string | `""` | The hostname of the smtp server you want to use. If this is not set, smtp will not be used to send emails, and you can ignore the other settings. | +| gotosocial.smtp.password | string | `""` | Password to use when authenticating with the smtp server. This should have been provided to you by your smtp host. | +| gotosocial.smtp.port | int | `0` | Port to use to connect to the smtp server. | +| gotosocial.smtp.username | string | `""` | Username to use when authenticating with the smtp server. This should have been provided to you by your smtp host. This is often, but not always, an email address. | +| gotosocial.storage.backend | string | `"local"` | Type of storage backend to use. Examples: ["local", "s3"] Default: "local" (storage on local disk) | +| gotosocial.storage.s3.accessKey | string | `""` | Access key part of the S3 credentials. Consider setting this value using environment variables to avoid leaking it via the config file Only required when running with the s3 storage backend. | +| gotosocial.storage.s3.bucket | string | `""` | Name of the storage bucket. If you have already encoded your bucket name in the storage-s3-endpoint, this value will be used as a directory containing your data. The bucket must exist prior to starting GoToSocial Only required when running with the s3 storage backend. | +| gotosocial.storage.s3.endpoint | string | `""` | API endpoint of the S3 compatible service. Only required when running with the s3 storage backend. GoToSocial uses "DNS-style" when accessing buckets. If you are using Scaleways object storage, please remove the "bucket name" from the endpoint address | +| gotosocial.storage.s3.proxy | bool | `false` | If data stored in S3 should be proxied through GoToSocial instead of redirecting to a presigned URL. | +| gotosocial.storage.s3.secretKey | string | `""` | Secret key part of the S3 credentials. Consider setting this value using environment variables to avoid leaking it via the config file Only required when running with the s3 storage backend. | +| gotosocial.storage.s3.useSSL | bool | `true` | Use SSL for S3 connections. Only set this to 'false' when testing locally. | +| gotosocial.tracing.enabled | bool | `false` | Enable OpenTelemetry based tracing support. | +| gotosocial.tracing.endpoint | string | `""` | Endpoint of the trace ingester. When using the gRPC or HTTP based transports, provide the endpoint as a single address/port combination without a protocol scheme. | +| gotosocial.tracing.insecureTransport | bool | `false` | Disable TLS for the gRPC and HTTP transport protocols. | +| gotosocial.tracing.transport | string | `"grpc"` | Set the transport protocol for the tracing system. Can either be "grpc" for OTLP gRPC, or "http" for OTLP HTTP. | +| gotosocial.tz | string | `"UTC"` | | +| image.pullPolicy | string | `"IfNotPresent"` | | +| image.registry | string | `"docker.io"` | | +| image.repository | string | `"superseriousbusiness/gotosocial"` | | +| image.tag | string | `""` | Overrides the image tag whose default is the chart appVersion. | +| imagePullSecrets | list | `[]` | | +| ingress.annotations | object | `{}` | | +| ingress.className | string | `""` | | +| ingress.enabled | bool | `false` | | +| ingress.hosts[0].host | string | `"chart-example.local"` | | +| ingress.hosts[0].paths[0].path | string | `"/"` | | +| ingress.hosts[0].paths[0].pathType | string | `"ImplementationSpecific"` | | +| ingress.tls | list | `[]` | | +| nameOverride | string | `""` | | +| nodeSelector | object | `{}` | | +| persistence.accessMode | string | `"ReadWriteOnce"` | accessMode | +| persistence.annotations | object | `{}` | | +| persistence.enabled | bool | `true` | Enable persistence using Persistent Volume Claims ref: http://kubernetes.io/docs/user-guide/persistent-volumes/ | +| persistence.existingClaim | string | `nil` | A manually managed Persistent Volume and Claim Requires persistence.enabled: true If defined, PVC must be created manually before volume will be bound | +| persistence.hostPath | string | `nil` | Do not create an PVC, direct use hostPath in Pod | +| persistence.size | string | `"10Gi"` | size | +| persistence.storageClass | string | `nil` | Persistent Volume Storage Class If defined, storageClassName: If set to "-", storageClassName: "", which disables dynamic provisioning If undefined (the default) or set to null, no storageClassName spec is set, choosing the default provisioner. (gp2 on AWS, standard on GKE, AWS & OpenStack) | +| podAnnotations | object | `{}` | | +| podLabels | object | `{}` | | +| podSecurityContext | object | `{}` | | +| prometheus.servicemonitor.enabled | bool | `false` | | +| prometheus.servicemonitor.labels | object | `{}` | | +| replicaCount | int | `1` | | +| resources | object | `{}` | | +| securityContext | object | `{}` | | +| service.port | int | `8080` | | +| service.type | string | `"ClusterIP"` | | +| serviceAccount.annotations | object | `{}` | Annotations to add to the service account | +| serviceAccount.automount | bool | `true` | Automatically mount a ServiceAccount's API credentials? | +| serviceAccount.create | bool | `false` | Specifies whether a service account should be created | +| serviceAccount.name | string | `""` | The name of the service account to use. If not set and create is true, a name is generated using the fullname template | +| tolerations | list | `[]` | | +| volumeMounts | list | `[]` | | +| volumes | list | `[]` | | + +Autogenerated from chart metadata using [helm-docs](https://github.com/norwoodj/helm-docs) + diff --git a/publish.sh b/publish.sh index b42943b..b676584 100755 --- a/publish.sh +++ b/publish.sh @@ -5,9 +5,6 @@ COMMIT_SCOPE=${2:-fix} COMMIT_MESSAGE=${1:-"update appVersion"} -helm-docs -t ./README.adoc.gotmpl -t _docs.gotmpl -o README.adoc - -./docs/modules/charts/generate.sh ct lint # || exit 1 @@ -50,6 +47,10 @@ for p in * ; do continue; fi fi + + helm-docs -t ./README.md.gotmpl -t _docs.gotmpl -o README.md -g "${p}" + helm-docs -t ./README.adoc.gotmpl -t _docs.gotmpl -o README.adoc -g "${p}" + helm package "${p}" helm push "${p}-${v}.tgz" "${HELM_REPO}"; -- 2.45.3 From d8c1b296f5284d88768da35143694e0b0c33aae8 Mon Sep 17 00:00:00 2001 From: WrenIX Date: Wed, 6 Nov 2024 22:50:54 +0100 Subject: [PATCH 034/134] fix(home-assistant): update appVersion --- README.md | 15 ++-- README.md.gotmpl | 15 +--- home-assistant/Chart.yaml | 5 +- home-assistant/README.adoc | 4 +- home-assistant/README.md | 120 ++++++++++++++++++++++++++++ home-assistant/artifacthub-repo.yml | 1 + publish.sh | 9 ++- 7 files changed, 145 insertions(+), 24 deletions(-) create mode 100644 home-assistant/README.md create mode 100644 home-assistant/artifacthub-repo.yml diff --git a/README.md b/README.md index 44274ac..bf954b6 100644 --- a/README.md +++ b/README.md @@ -1,11 +1,12 @@ -+++ -title = "Helm Chart" -template = "docs/section.html" -sort_by = "weight" -weight = 5 -+++ +--- +title: "Helm-Charts" +weight: 1 +cascade: + - url: /:sections/:title/ +url: /:sections +--- -# Usage +## Usage Helm must be installed and setup to your kubernetes cluster to use the charts. Refer to Helm's [documentation](https://helm.sh/docs) to get started. diff --git a/README.md.gotmpl b/README.md.gotmpl index dd93d2c..ffed287 100644 --- a/README.md.gotmpl +++ b/README.md.gotmpl @@ -1,16 +1,9 @@ -+++ -title = {{ .Name | quote }} +--- +title: {{ .Name | quote }} {{ if .Description }} -description = {{.Description | quote }} +description: {{.Description | quote }} {{ end }} - -weight = 30 -sort_by = "weight" -template = "docs/page.html" - -[extra] -toc = true -+++ +--- {{- define "chart.prerequirements" }} {{- end }} diff --git a/home-assistant/Chart.yaml b/home-assistant/Chart.yaml index de4ae1b..31ba2ae 100644 --- a/home-assistant/Chart.yaml +++ b/home-assistant/Chart.yaml @@ -1,10 +1,11 @@ apiVersion: v2 name: home-assistant description: Home Assistant with tooling to run on an k3s pi +icon: https://www.home-assistant.io/images/favicon-192x192.png type: application -version: 0.2.3 +version: 0.2.4 # renovate: image=ghcr.io/home-assistant/home-assistant -appVersion: "2024.10.4" +appVersion: "2024.11.0" maintainers: - name: WrenIX url: https://wrenix.eu diff --git a/home-assistant/README.adoc b/home-assistant/README.adoc index 0792440..07cca64 100644 --- a/home-assistant/README.adoc +++ b/home-assistant/README.adoc @@ -2,9 +2,9 @@ = home-assistant -image::https://img.shields.io/badge/Version-0.2.3-informational?style=flat-square[Version: 0.2.3] +image::https://img.shields.io/badge/Version-0.2.4-informational?style=flat-square[Version: 0.2.4] image::https://img.shields.io/badge/Version-application-informational?style=flat-square[Type: application] -image::https://img.shields.io/badge/AppVersion-2024.10.4-informational?style=flat-square[AppVersion: 2024.10.4] +image::https://img.shields.io/badge/AppVersion-2024.11.0-informational?style=flat-square[AppVersion: 2024.11.0] == Maintainers .Maintainers diff --git a/home-assistant/README.md b/home-assistant/README.md new file mode 100644 index 0000000..37246e0 --- /dev/null +++ b/home-assistant/README.md @@ -0,0 +1,120 @@ +--- +title: "home-assistant" + +description: "Home Assistant with tooling to run on an k3s pi" + +--- + +# home-assistant + +![Version: 0.2.4](https://img.shields.io/badge/Version-0.2.4-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 2024.11.0](https://img.shields.io/badge/AppVersion-2024.11.0-informational?style=flat-square) + +Home Assistant with tooling to run on an k3s pi + +## Maintainers + +| Name | Email | Url | +| ---- | ------ | --- | +| WrenIX | | | + +## Usage + +Helm must be installed and setup to your kubernetes cluster to use the charts. +Refer to Helm's [documentation](https://helm.sh/docs) to get started. +Once Helm has been set up correctly, fetch the charts as follows: + +```bash +helm pull oci://codeberg.org/wrenix/helm-charts/home-assistant +``` + +You can install a chart release using the following command: + +```bash +helm install home-assistant-release oci://codeberg.org/wrenix/helm-charts/home-assistant --values values.yaml +``` + +To uninstall a chart release use `helm`'s delete command: + +```bash +helm uninstall home-assistant-release +``` + +## Values + +| Key | Type | Default | Description | +|-----|------|---------|-------------| +| affinity | object | `{}` | | +| autoscaling.enabled | bool | `false` | | +| autoscaling.maxReplicas | int | `100` | | +| autoscaling.minReplicas | int | `1` | | +| autoscaling.targetCPUUtilizationPercentage | int | `80` | | +| fullnameOverride | string | `""` | | +| global.image.pullPolicy | string | `nil` | if set it will overwrite all pullPolicy | +| global.image.registry | string | `nil` | if set it will overwrite all registry entries | +| image.pullPolicy | string | `"IfNotPresent"` | | +| image.registry | string | `"ghcr.io"` | | +| image.repository | string | `"home-assistant/home-assistant"` | | +| image.tag | string | `""` | | +| imagePullSecrets | list | `[]` | | +| ingress.annotations | object | `{}` | | +| ingress.className | string | `""` | | +| ingress.enabled | bool | `false` | | +| ingress.hosts[0].host | string | `"chart-example.local"` | | +| ingress.hosts[0].paths[0].path | string | `"/"` | | +| ingress.hosts[0].paths[0].pathType | string | `"ImplementationSpecific"` | | +| ingress.tls | list | `[]` | | +| livenessProbe.httpGet.path | string | `"/"` | | +| livenessProbe.httpGet.port | string | `"http"` | | +| nameOverride | string | `""` | | +| nats.enabled | bool | `true` | | +| nats.image.pullPolicy | string | `"IfNotPresent"` | | +| nats.image.registry | string | `"docker.io"` | | +| nats.image.repository | string | `"library/nats"` | | +| nats.image.tag | string | `"2.10.22-scratch"` | | +| nats.livenessProbe.tcpSocket.port | string | `"nats"` | | +| nats.readinessProbe.tcpSocket.port | string | `"nats"` | | +| nats.resources.limits.cpu | string | `"100m"` | | +| nats.resources.limits.memory | string | `"128Mi"` | | +| nats.resources.requests.cpu | string | `"100m"` | | +| nats.resources.requests.memory | string | `"128Mi"` | | +| nats.service.port.mqtt | int | `1883` | | +| nats.service.port.nats | int | `4222` | | +| nodeSelector | object | `{}` | | +| persistence.accessMode | string | `"ReadWriteOnce"` | | +| persistence.annotations | object | `{}` | | +| persistence.enabled | bool | `false` | | +| persistence.existingClaim | string | `nil` | A manually managed Persistent Volume and Claim Requires persistence.enabled: true If defined, PVC must be created manually before volume will be bound | +| persistence.hostPath | string | `nil` | | +| persistence.size | string | `"1Gi"` | | +| persistence.storageClass | string | `nil` | data Persistent Volume Storage Class If defined, storageClassName: If set to "-", storageClassName: "", which disables dynamic provisioning If undefined (the default) or set to null, no storageClassName spec is set, choosing the default provisioner. (gp2 on AWS, standard on GKE, AWS & OpenStack) | +| podAnnotations | object | `{}` | | +| podLabels | object | `{}` | | +| podSecurityContext | object | `{}` | | +| prometheus.podmonitor.bearerTokenSecret | object | `{}` | | +| prometheus.podmonitor.enabled | bool | `false` | | +| prometheus.podmonitor.labels | object | `{}` | | +| readinessProbe.httpGet.path | string | `"/"` | | +| readinessProbe.httpGet.port | string | `"http"` | | +| replicaCount | int | `1` | | +| resources | object | `{}` | | +| securityContext | object | `{}` | | +| service.port | int | `80` | | +| service.type | string | `"ClusterIP"` | | +| serviceAccount.annotations | object | `{}` | Annotations to add to the service account | +| serviceAccount.create | bool | `true` | Specifies whether a service account should be created | +| serviceAccount.name | string | `""` | If not set and create is true, a name is generated using the fullname template | +| tolerations | list | `[]` | | +| volumeMounts | list | `[]` | | +| volumes | list | `[]` | | +| zigbee2mqtt.config.homeassistant | bool | `true` | | +| zigbee2mqtt.config.serial.port | string | `"/dev/ttyACM0"` | | +| zigbee2mqtt.device | string | `"/dev/ttyACM0"` | | +| zigbee2mqtt.enabled | bool | `true` | | +| zigbee2mqtt.image.pullPolicy | string | `"IfNotPresent"` | | +| zigbee2mqtt.image.registry | string | `"docker.io"` | | +| zigbee2mqtt.image.repository | string | `"koenkk/zigbee2mqtt"` | | +| zigbee2mqtt.image.tag | string | `"1.41.0"` | | +| zigbee2mqtt.ingress.hosts | list | `[]` | | +| zigbee2mqtt.securityContext.privileged | bool | `true` | | + +Autogenerated from chart metadata using [helm-docs](https://github.com/norwoodj/helm-docs) diff --git a/home-assistant/artifacthub-repo.yml b/home-assistant/artifacthub-repo.yml new file mode 100644 index 0000000..c801df4 --- /dev/null +++ b/home-assistant/artifacthub-repo.yml @@ -0,0 +1 @@ +repositoryID: a2209d76-d5e9-4809-ac29-536b59035c65 diff --git a/publish.sh b/publish.sh index b676584..a0644cf 100755 --- a/publish.sh +++ b/publish.sh @@ -1,6 +1,7 @@ #/bin/sh -HELM_REPO=${HELM_REPO:-oci://codeberg.org/wrenix/helm-charts} +HELM_REPO=${HELM_REPO:-codeberg.org/wrenix/helm-charts} +HELM_REPO_URL="oci://${HELM_REPO}" COMMIT_SCOPE=${2:-fix} COMMIT_MESSAGE=${1:-"update appVersion"} @@ -52,7 +53,11 @@ for p in * ; do helm-docs -t ./README.adoc.gotmpl -t _docs.gotmpl -o README.adoc -g "${p}" helm package "${p}" - helm push "${p}-${v}.tgz" "${HELM_REPO}"; + helm push "${p}-${v}.tgz" "${HELM_REPO_URL}"; + + oras push "${HELM_REPO}/${p}:artifacthub.io" \ + --config /dev/null:application/vnd.cncf.artifacthub.config.v1+yaml \ + "${p}/artifacthub-repo.yml":application/vnd.cncf.artifacthub.repository-metadata.layer.v1.yaml git add "${p}/" "docs/modules/charts/nav.adoc" "docs/modules/charts/pages/${p}.adoc" git commit -m "${COMMIT_SCOPE}(${p}): ${COMMIT_MESSAGE}" -- 2.45.3 From d75dcd14119b1ca6592043e06c1d67bea63adb48 Mon Sep 17 00:00:00 2001 From: WrenIX Date: Fri, 8 Nov 2024 15:40:34 +0100 Subject: [PATCH 035/134] fix(stalwart-mail): update appVersion --- stalwart-mail/Chart.yaml | 4 +- stalwart-mail/README.adoc | 4 +- stalwart-mail/README.md | 220 ++++++++++++++++++++++++++++++++++++++ 3 files changed, 224 insertions(+), 4 deletions(-) create mode 100644 stalwart-mail/README.md diff --git a/stalwart-mail/Chart.yaml b/stalwart-mail/Chart.yaml index d1675a3..6ed4192 100644 --- a/stalwart-mail/Chart.yaml +++ b/stalwart-mail/Chart.yaml @@ -3,9 +3,9 @@ name: stalwart-mail description: Helm Chart for Stalwart Mail Server - Secure & Modern All-in-One Mail Server (IMAP, JMAP, SMTP) icon: https://stalw.art/img/apple-touch-icon.png type: application -version: 0.0.17 +version: 0.0.18 # renovate: image=docker.io/stalwartlabs/mail-server -appVersion: "0.10.5" +appVersion: "0.10.6" maintainers: - name: WrenIX url: https://wrenix.eu diff --git a/stalwart-mail/README.adoc b/stalwart-mail/README.adoc index daaa07a..a8bbc16 100644 --- a/stalwart-mail/README.adoc +++ b/stalwart-mail/README.adoc @@ -2,9 +2,9 @@ = stalwart-mail -image::https://img.shields.io/badge/Version-0.0.17-informational?style=flat-square[Version: 0.0.17] +image::https://img.shields.io/badge/Version-0.0.18-informational?style=flat-square[Version: 0.0.18] image::https://img.shields.io/badge/Version-application-informational?style=flat-square[Type: application] -image::https://img.shields.io/badge/AppVersion-0.10.5-informational?style=flat-square[AppVersion: 0.10.5] +image::https://img.shields.io/badge/AppVersion-0.10.6-informational?style=flat-square[AppVersion: 0.10.6] == Maintainers .Maintainers diff --git a/stalwart-mail/README.md b/stalwart-mail/README.md new file mode 100644 index 0000000..f1d859a --- /dev/null +++ b/stalwart-mail/README.md @@ -0,0 +1,220 @@ +--- +title: "stalwart-mail" + +description: "Helm Chart for Stalwart Mail Server - Secure & Modern All-in-One Mail Server (IMAP, JMAP, SMTP)" + +--- + +# stalwart-mail + +![Version: 0.0.18](https://img.shields.io/badge/Version-0.0.18-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 0.10.6](https://img.shields.io/badge/AppVersion-0.10.6-informational?style=flat-square) + +Helm Chart for Stalwart Mail Server - Secure & Modern All-in-One Mail Server (IMAP, JMAP, SMTP) + +## Maintainers + +| Name | Email | Url | +| ---- | ------ | --- | +| WrenIX | | | + += Alpha + +WARNING +==== +We stop working on this Helm-Chart. +There are still many breaking change like: + +* https://github.com/stalwartlabs/mail-server/issues/211[storage.fts in toml configuration has two meanings] + +We hope that stalward mail-server becomes more stable. + +==== + +## Usage + +Helm must be installed and setup to your kubernetes cluster to use the charts. +Refer to Helm's [documentation](https://helm.sh/docs) to get started. +Once Helm has been set up correctly, fetch the charts as follows: + +```bash +helm pull oci://codeberg.org/wrenix/helm-charts/stalwart-mail +``` + +You can install a chart release using the following command: + +```bash +helm install stalwart-mail-release oci://codeberg.org/wrenix/helm-charts/stalwart-mail --values values.yaml +``` + +To uninstall a chart release use `helm`'s delete command: + +```bash +helm uninstall stalwart-mail-release +``` + +## Values + +### DKIM + +| Key | Type | Default | Description | +|-----|------|---------|-------------| +| config.auth.dkim.sign | list | `[{"if":"listener != 'smtp'","then":"['rsa', 'ed25519']"},{"else":false}]` | auth rule for signing with dkim | +| config.auth.dkim.verify | string | `"relaxed"` | verify of dkim signature (relaxed, strict, disable) | + +### Authentification + +| Key | Type | Default | Description | +|-----|------|---------|-------------| +| config.authentication.fallback-admin.secret | string | `"%{env:FALLBACK_ADMIN_SECRET}%"` | password for fallback authentfication (use env for store in secrets of kubernetes) | +| config.authentication.fallback-admin.user | string | `"admin"` | username for fallback authentfication | +| secrets.env.FALLBACK_ADMIN_SECRET | string | `"supersecret"` | password for fallback authentfication (env) | + +### Other Values + +| Key | Type | Default | Description | +|-----|------|---------|-------------| +| affinity | object | `{}` | | +| autoscaling.enabled | bool | `false` | | +| autoscaling.maxReplicas | int | `100` | | +| autoscaling.minReplicas | int | `1` | | +| autoscaling.targetCPUUtilizationPercentage | int | `80` | | +| certificate.certmanager.dnsNames[0] | string | `"chart-example.local"` | | +| certificate.certmanager.enabled | bool | `true` | | +| certificate.certmanager.issuerRef.group | string | `"cert-manager.io"` | | +| certificate.certmanager.issuerRef.kind | string | `"ClusterIssuer"` | | +| certificate.certmanager.issuerRef.name | string | `"letsencrypt-prod"` | | +| certificate.secretName | string | `nil` | not needed if certmanager is used | +| config.directory.internal.store | string | `"rocksdb"` | | +| config.directory.internal.type | string | `"internal"` | | +| config.metrics.prometheus.auth.secret | string | `"%{env:METRICS_SECRET}%"` | | +| config.metrics.prometheus.auth.username | string | `"%{env:METRICS_USERNAME}%"` | | +| config.metrics.prometheus.enable | bool | `true` | | +| config.server.listener.http.bind[0] | string | `"[::]:80"` | | +| config.server.listener.http.protocol | string | `"http"` | | +| config.server.listener.https.bind[0] | string | `"[::]:443"` | | +| config.server.listener.https.protocol | string | `"http"` | | +| config.server.listener.https.tls.implicit | bool | `true` | | +| config.server.listener.imap.bind[0] | string | `"[::]:143"` | | +| config.server.listener.imap.protocol | string | `"imap"` | | +| config.server.listener.imaptls.bind[0] | string | `"[::]:993"` | | +| config.server.listener.imaptls.protocol | string | `"imap"` | | +| config.server.listener.imaptls.tls.implicit | bool | `true` | | +| config.server.listener.pop3.bind[0] | string | `"[::]:110"` | | +| config.server.listener.pop3.protocol | string | `"pop3"` | | +| config.server.listener.pop3s.bind[0] | string | `"[::]:995"` | | +| config.server.listener.pop3s.protocol | string | `"pop3"` | | +| config.server.listener.pop3s.tls.implicit | bool | `true` | | +| config.server.listener.sieve.bind[0] | string | `"[::]:4190"` | | +| config.server.listener.sieve.protocol | string | `"managesieve"` | | +| config.server.listener.smtp.bind[0] | string | `"[::]:25"` | | +| config.server.listener.smtp.protocol | string | `"smtp"` | | +| config.server.listener.submission.bind[0] | string | `"[::]:587"` | | +| config.server.listener.submission.protocol | string | `"smtp"` | | +| config.server.listener.submissions.bind[0] | string | `"[::]:465"` | | +| config.server.listener.submissions.protocol | string | `"smtp"` | | +| config.server.listener.submissions.tls.implicit | bool | `true` | | +| config.storage.blob | string | `"rocksdb"` | | +| config.storage.data | string | `"rocksdb"` | | +| config.storage.directory | string | `"internal"` | | +| config.storage.fts | string | `"rocksdb"` | | +| config.storage.lookup | string | `"rocksdb"` | | +| config.store.rocksdb.compression | string | `"lz4"` | | +| config.store.rocksdb.path | string | `"/data"` | | +| config.store.rocksdb.type | string | `"rocksdb"` | | +| config.tracer.otel.enable | bool | `false` | | +| config.tracer.otel.endpoint | string | `"https://127.0.0.1/otel"` | | +| config.tracer.otel.headers | list | `[]` | headers for usage with http (e.g. 'Authorization: ') | +| config.tracer.otel.level | string | `"info"` | | +| config.tracer.otel.transport | string | `"grpc"` | grpc or http | +| config.tracer.otel.type | string | `"open-telemetry"` | | +| config.tracer.stdout.ansi | bool | `false` | | +| config.tracer.stdout.enable | bool | `true` | | +| config.tracer.stdout.level | string | `"info"` | | +| config.tracer.stdout.type | string | `"stdout"` | | +| env | list | `[]` | | +| fullnameOverride | string | `""` | | +| global.image.pullPolicy | string | `nil` | if set it will overwrite all pullPolicy | +| global.image.registry | string | `nil` | if set it will overwrite all registry entries | +| image.pullPolicy | string | `"IfNotPresent"` | | +| image.registry | string | `"docker.io"` | | +| image.repository | string | `"stalwartlabs/mail-server"` | | +| image.tag | string | `""` | Overrides the image tag whose default is the chart appVersion. | +| imagePullSecrets | list | `[]` | | +| ingress.annotations | object | `{}` | | +| ingress.className | string | `""` | | +| ingress.enabled | bool | `false` | | +| ingress.hosts[0].host | string | `"chart-example.local"` | | +| ingress.hosts[0].paths[0].path | string | `"/"` | | +| ingress.hosts[0].paths[0].pathType | string | `"ImplementationSpecific"` | | +| ingress.tls | list | `[]` | | +| livenessProbe.httpGet.path | string | `"/healthz/live"` | | +| livenessProbe.httpGet.port | string | `"http"` | | +| nameOverride | string | `""` | | +| nodeSelector | object | `{}` | | +| persistence.accessMode | string | `"ReadWriteOnce"` | accessMode | +| persistence.annotations | object | `{}` | | +| persistence.enabled | bool | `true` | Enable persistence using Persistent Volume Claims ref: http://kubernetes.io/docs/user-guide/persistent-volumes/ | +| persistence.existingClaim | string | `nil` | A manually managed Persistent Volume and Claim Requires persistence.enabled: true If defined, PVC must be created manually before volume will be bound | +| persistence.hostPath | string | `nil` | Do not create an PVC, direct use hostPath in Pod | +| persistence.size | string | `"10Gi"` | size | +| persistence.storageClass | string | `nil` | Persistent Volume Storage Class If defined, storageClassName: If set to "-", storageClassName: "", which disables dynamic provisioning If undefined (the default) or set to null, no storageClassName spec is set, choosing the default provisioner. (gp2 on AWS, standard on GKE, AWS & OpenStack) | +| podAnnotations | object | `{}` | | +| podLabels | object | `{}` | | +| podSecurityContext | object | `{}` | | +| prometheus.servicemonitor.enabled | bool | `false` | | +| prometheus.servicemonitor.labels | object | `{}` | | +| readinessProbe.httpGet.path | string | `"/healthz/ready"` | | +| readinessProbe.httpGet.port | string | `"http"` | | +| replicaCount | int | `1` | | +| resources | object | `{}` | | +| secrets.env.METRICS_SECRET | string | `"scrape_metrics_password"` | | +| secrets.env.METRICS_USERNAME | string | `"scrape_metrics_user"` | | +| securityContext | object | `{}` | | +| service.annotations | object | `{}` | | +| service.ipFamilies[0] | string | `"IPv4"` | | +| service.ipFamilyPolicy | string | `"SingleStack"` | other option is RequireDualStack | +| service.ports.http | int | `80` | | +| service.ports.https | int | `443` | | +| service.ports.imap | int | `143` | | +| service.ports.imaptls | int | `993` | | +| service.ports.pop3 | int | `110` | | +| service.ports.pop3s | int | `995` | | +| service.ports.sieve | int | `4190` | | +| service.ports.smtp | int | `25` | | +| service.ports.submission | int | `587` | | +| service.ports.submissions | int | `465` | | +| service.type | string | `"ClusterIP"` | | +| serviceAccount.annotations | object | `{}` | | +| serviceAccount.automount | bool | `true` | | +| serviceAccount.create | bool | `false` | | +| serviceAccount.name | string | `""` | | +| tolerations | list | `[]` | | +| traefik.enabled | bool | `false` | | +| traefik.ports.https.entrypoint | string | `"websecure"` | | +| traefik.ports.https.match | string | `nil` | | +| traefik.ports.https.passthroughTLS | bool | `true` | | +| traefik.ports.https.proxyProtocol | bool | `true` | | +| traefik.ports.imaptls.entrypoint | string | `"imaps"` | | +| traefik.ports.imaptls.match | string | `nil` | | +| traefik.ports.imaptls.passthroughTLS | bool | `true` | | +| traefik.ports.imaptls.proxyProtocol | bool | `true` | | +| traefik.ports.pop3s.entrypoint | string | `"pop3s"` | | +| traefik.ports.pop3s.match | string | `nil` | | +| traefik.ports.pop3s.passthroughTLS | bool | `true` | | +| traefik.ports.pop3s.proxyProtocol | bool | `true` | | +| traefik.ports.sieve.entrypoint | string | `"sieve"` | | +| traefik.ports.sieve.match | string | `nil` | | +| traefik.ports.sieve.passthroughTLS | bool | `true` | | +| traefik.ports.sieve.proxyProtocol | bool | `true` | | +| traefik.ports.smtp.entrypoint | string | `"smtp"` | | +| traefik.ports.smtp.match | string | `nil` | | +| traefik.ports.smtp.proxyProtocol | bool | `true` | | +| traefik.ports.submissions.entrypoint | string | `"smtps"` | | +| traefik.ports.submissions.match | string | `nil` | | +| traefik.ports.submissions.passthroughTLS | bool | `true` | | +| traefik.ports.submissions.proxyProtocol | bool | `true` | | +| volumeMounts | list | `[]` | | +| volumes | list | `[]` | | + +Autogenerated from chart metadata using [helm-docs](https://github.com/norwoodj/helm-docs) + -- 2.45.3 From 1d57a623fc3e356a239ae12ade7384d8c3ef3a7c Mon Sep 17 00:00:00 2001 From: WrenIX Date: Fri, 8 Nov 2024 15:43:25 +0100 Subject: [PATCH 036/134] chore: add debug output on publish.sh --- publish.sh | 4 ++++ 1 file changed, 4 insertions(+) diff --git a/publish.sh b/publish.sh index a0644cf..69b1f23 100755 --- a/publish.sh +++ b/publish.sh @@ -49,16 +49,20 @@ for p in * ; do fi fi + echo "update docs" helm-docs -t ./README.md.gotmpl -t _docs.gotmpl -o README.md -g "${p}" helm-docs -t ./README.adoc.gotmpl -t _docs.gotmpl -o README.adoc -g "${p}" + echo "package and push helm-chart" helm package "${p}" helm push "${p}-${v}.tgz" "${HELM_REPO_URL}"; + echo "update artifacthub.io" oras push "${HELM_REPO}/${p}:artifacthub.io" \ --config /dev/null:application/vnd.cncf.artifacthub.config.v1+yaml \ "${p}/artifacthub-repo.yml":application/vnd.cncf.artifacthub.repository-metadata.layer.v1.yaml + echo "push to git" git add "${p}/" "docs/modules/charts/nav.adoc" "docs/modules/charts/pages/${p}.adoc" git commit -m "${COMMIT_SCOPE}(${p}): ${COMMIT_MESSAGE}" git tag "${tag}" --no-sign; -- 2.45.3 From 50633fccbd4d6e0d48c8cd9686c98a7d4a213bcb Mon Sep 17 00:00:00 2001 From: WrenIX Date: Tue, 12 Nov 2024 11:16:30 +0100 Subject: [PATCH 037/134] fix(home-assistant): update AppVersion to v2024.11.1 --- home-assistant/Chart.yaml | 4 ++-- home-assistant/README.adoc | 4 ++-- home-assistant/README.md | 2 +- 3 files changed, 5 insertions(+), 5 deletions(-) diff --git a/home-assistant/Chart.yaml b/home-assistant/Chart.yaml index 31ba2ae..d41d167 100644 --- a/home-assistant/Chart.yaml +++ b/home-assistant/Chart.yaml @@ -3,9 +3,9 @@ name: home-assistant description: Home Assistant with tooling to run on an k3s pi icon: https://www.home-assistant.io/images/favicon-192x192.png type: application -version: 0.2.4 +version: 0.2.5 # renovate: image=ghcr.io/home-assistant/home-assistant -appVersion: "2024.11.0" +appVersion: "2024.11.1" maintainers: - name: WrenIX url: https://wrenix.eu diff --git a/home-assistant/README.adoc b/home-assistant/README.adoc index 07cca64..67841a2 100644 --- a/home-assistant/README.adoc +++ b/home-assistant/README.adoc @@ -2,9 +2,9 @@ = home-assistant -image::https://img.shields.io/badge/Version-0.2.4-informational?style=flat-square[Version: 0.2.4] +image::https://img.shields.io/badge/Version-0.2.5-informational?style=flat-square[Version: 0.2.5] image::https://img.shields.io/badge/Version-application-informational?style=flat-square[Type: application] -image::https://img.shields.io/badge/AppVersion-2024.11.0-informational?style=flat-square[AppVersion: 2024.11.0] +image::https://img.shields.io/badge/AppVersion-2024.11.1-informational?style=flat-square[AppVersion: 2024.11.1] == Maintainers .Maintainers diff --git a/home-assistant/README.md b/home-assistant/README.md index 37246e0..642f7ee 100644 --- a/home-assistant/README.md +++ b/home-assistant/README.md @@ -7,7 +7,7 @@ description: "Home Assistant with tooling to run on an k3s pi" # home-assistant -![Version: 0.2.4](https://img.shields.io/badge/Version-0.2.4-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 2024.11.0](https://img.shields.io/badge/AppVersion-2024.11.0-informational?style=flat-square) +![Version: 0.2.5](https://img.shields.io/badge/Version-0.2.5-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 2024.11.1](https://img.shields.io/badge/AppVersion-2024.11.1-informational?style=flat-square) Home Assistant with tooling to run on an k3s pi -- 2.45.3 From 16b3a74e747b597e6a9681b2220c598eb5433965 Mon Sep 17 00:00:00 2001 From: WrenIX Date: Tue, 12 Nov 2024 12:14:44 +0100 Subject: [PATCH 038/134] fix(authentik-application): add README in markdown --- authentik-application/Chart.yaml | 2 +- authentik-application/README.adoc | 2 +- authentik-application/README.md | 145 ++++++++++++++++++++++++++++++ 3 files changed, 147 insertions(+), 2 deletions(-) create mode 100644 authentik-application/README.md diff --git a/authentik-application/Chart.yaml b/authentik-application/Chart.yaml index f0d9780..4820932 100644 --- a/authentik-application/Chart.yaml +++ b/authentik-application/Chart.yaml @@ -2,7 +2,7 @@ apiVersion: v2 name: authentik-application description: "A Chart to deploy a secret for the authentik blueprint-sidecar." type: application -version: 0.4.2 +version: "0.4.3" maintainers: - name: WrenIX url: https://wrenix.eu diff --git a/authentik-application/README.adoc b/authentik-application/README.adoc index f25a352..71f4efc 100644 --- a/authentik-application/README.adoc +++ b/authentik-application/README.adoc @@ -2,7 +2,7 @@ = authentik-application -image::https://img.shields.io/badge/Version-0.4.2-informational?style=flat-square[Version: 0.4.2] +image::https://img.shields.io/badge/Version-0.4.3-informational?style=flat-square[Version: 0.4.3] image::https://img.shields.io/badge/Version-application-informational?style=flat-square[Type: application] == Maintainers diff --git a/authentik-application/README.md b/authentik-application/README.md new file mode 100644 index 0000000..83d2f8b --- /dev/null +++ b/authentik-application/README.md @@ -0,0 +1,145 @@ +--- +title: "authentik-application" + +description: "A Chart to deploy a secret for the authentik blueprint-sidecar." + +--- + +# authentik-application + +![Version: 0.4.3](https://img.shields.io/badge/Version-0.4.3-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) + +A Chart to deploy a secret for the authentik blueprint-sidecar. + +## Maintainers + +| Name | Email | Url | +| ---- | ------ | --- | +| WrenIX | | | + +## Pre-Requirement +Usage of https://github.com/goauthentik/helm/pull/146 + +## or manual: +Install authentik with this `values.yaml`: +```yaml +serviceAccount: + create: true + +additionalContainers: + - name: sidecar-blueprints + image: "ghcr.io/kiwigrid/k8s-sidecar:1.25.1" + env: + - name: "FOLDER" + value: "/blueprints/sidecar" + - name: "LABEL" + value: "goauthentik_blueprint" + - name: "LABEL_VALUE" + value: "1" + # - name: "NAMESPACE" + # value: "ALL" + - name: "RESOURCE" + value: "both" + - name: "UNIQUE_FILENAMES" + value: "true" + volumeMounts: + - name: sidecar-blueprints + mountPath: /blueprints/sidecar + +volumeMounts: + - name: sidecar-blueprints + mountPath: /blueprints/sidecar + +volumes: + - name: sidecar-blueprints + emptyDir: {} +``` + +And create an Role and bind them on to the ServiceAccount to read secrets: +```yaml +--- +apiVersion: rbac.authorization.k8s.io/v1 +kind: Role +metadata: + name: authentik-blueprint-sidecar +rules: + - apiGroups: [""] + resources: ["configmaps", "secrets"] + verbs: ["get", "watch", "list"] +--- +apiVersion: rbac.authorization.k8s.io/v1 +kind: RoleBinding +metadata: + name: authentik-blueprint-sidecar +roleRef: + apiGroup: rbac.authorization.k8s.io + kind: Role + name: authentik-blueprint-sidecar +subjects: + - kind: ServiceAccount + name: authentik +``` + +## Usage + +Helm must be installed and setup to your kubernetes cluster to use the charts. +Refer to Helm's [documentation](https://helm.sh/docs) to get started. +Once Helm has been set up correctly, fetch the charts as follows: + +```bash +helm pull oci://codeberg.org/wrenix/helm-charts/authentik-application +``` + +You can install a chart release using the following command: + +```bash +helm install authentik-application-release oci://codeberg.org/wrenix/helm-charts/authentik-application --values values.yaml +``` + +To uninstall a chart release use `helm`'s delete command: + +```bash +helm uninstall authentik-application-release +``` + +## Values + +| Key | Type | Default | Description | +|-----|------|---------|-------------| +| blueprint.application.bindPolicyID | string | `nil` | uuid for bindPolicyID for group - if not set generated on secret for be stable (or groups: [] filled) | +| blueprint.application.description | string | `""` | description of application | +| blueprint.application.group | string | `""` | put this application in authentik in group | +| blueprint.application.icon | string | `""` | icon of application (url) | +| blueprint.application.launchURL | string | `""` | | +| blueprint.application.name | string | `""` | application name in menu | +| blueprint.application.openInNewTab | bool | `false` | open application in new tab | +| blueprint.application.policyEngineMode | string | `"any"` | | +| blueprint.application.publisher | string | `""` | publisher of application | +| blueprint.application.slug | string | `"app-name"` | application slug | +| blueprint.authentik.domain | string | `"https://auth.wrenix.eu"` | domain to authentik, used in generated url (like issuer) | +| blueprint.groups | string | `nil` | authentik groups created / give access to this application disable any groups by set groups: [] (to a slice) example: - slug: "app: grafana-admin" parent: "app: infra" bindID: uuid | +| blueprint.labels | object | `{"goauthentik_blueprint":"1"}` | label of generated secret with blueprint | +| blueprint.provider.authorizationFlow | string | `"default-provider-authorization-implicit-consent"` | | +| blueprint.provider.enabled | bool | `true` | creat an provider for authentification (otherwise just a like in menu is created) | +| blueprint.provider.name | string | `""` | | +| blueprint.provider.oidc.clientID | string | `nil` | client id - generated if secret enabled | +| blueprint.provider.oidc.clientSecret | string | `nil` | client secret - generated if secret enabled | +| blueprint.provider.oidc.clientType | string | `"confidential"` | | +| blueprint.provider.oidc.redirectURL | string | `""` | | +| blueprint.provider.oidc.scopes | string | `nil` | Scope | +| blueprint.provider.oidc.signingKey | string | `""` | Need for non-curve / RSA | +| blueprint.provider.proxy.cookieDomain | string | `""` | | +| blueprint.provider.proxy.externalHost | string | `nil` | | +| blueprint.provider.proxy.ingress.annotations | list | `[]` | annotations to ingress for outpost | +| blueprint.provider.proxy.ingress.backend | string | `"authentik"` | service backend to authentik | +| blueprint.provider.proxy.ingress.domain | string | `nil` | domain of application (where outpost should be deployed) | +| blueprint.provider.proxy.ingress.enabled | bool | `false` | deploy ingress on application domain for e.g. logout (WIP) | +| blueprint.provider.proxy.ingress.tls | list | `[]` | tls to ingress for outpost | +| blueprint.provider.proxy.skipPathRegex | string | `""` | | +| blueprint.provider.saml | string | `nil` | | +| blueprint.provider.type | string | `"oidc"` | type of application connection, current support: oidc, saml and proxy | +| secret.labels | object | `{}` | label of secret to store generated secret | +| secret.name | string | `""` | name of secret to store generated secret (like clientI) | + +Autogenerated from chart metadata using [helm-docs](https://github.com/norwoodj/helm-docs) + -- 2.45.3 From 7239373db2cab232e1b9c53f1dc657878ab8898a Mon Sep 17 00:00:00 2001 From: WrenIX Date: Tue, 12 Nov 2024 12:14:49 +0100 Subject: [PATCH 039/134] fix(element-call): add README in markdown --- element-call/Chart.yaml | 2 +- element-call/README.adoc | 2 +- element-call/README.md | 118 +++++++++++++++++++++++++++++++++++++++ 3 files changed, 120 insertions(+), 2 deletions(-) create mode 100644 element-call/README.md diff --git a/element-call/Chart.yaml b/element-call/Chart.yaml index 0ae61a2..cb205e1 100644 --- a/element-call/Chart.yaml +++ b/element-call/Chart.yaml @@ -2,7 +2,7 @@ apiVersion: v2 name: element-call description: Run Element-Call and his dependencies type: application -version: 0.1.4 +version: "0.1.5" # renovate: image=ghcr.io/element-hq/element-call appVersion: "0.6.6" maintainers: diff --git a/element-call/README.adoc b/element-call/README.adoc index 039bb69..6cd058b 100644 --- a/element-call/README.adoc +++ b/element-call/README.adoc @@ -2,7 +2,7 @@ = element-call -image::https://img.shields.io/badge/Version-0.1.4-informational?style=flat-square[Version: 0.1.4] +image::https://img.shields.io/badge/Version-0.1.5-informational?style=flat-square[Version: 0.1.5] image::https://img.shields.io/badge/Version-application-informational?style=flat-square[Type: application] image::https://img.shields.io/badge/AppVersion-0.6.6-informational?style=flat-square[AppVersion: 0.6.6] == Maintainers diff --git a/element-call/README.md b/element-call/README.md new file mode 100644 index 0000000..4d0966d --- /dev/null +++ b/element-call/README.md @@ -0,0 +1,118 @@ +--- +title: "element-call" + +description: "Run Element-Call and his dependencies" + +--- + +# element-call + +![Version: 0.1.5](https://img.shields.io/badge/Version-0.1.5-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 0.6.6](https://img.shields.io/badge/AppVersion-0.6.6-informational?style=flat-square) + +Run Element-Call and his dependencies + +## Maintainers + +| Name | Email | Url | +| ---- | ------ | --- | +| WrenIX | | | + +## Usage + +Helm must be installed and setup to your kubernetes cluster to use the charts. +Refer to Helm's [documentation](https://helm.sh/docs) to get started. +Once Helm has been set up correctly, fetch the charts as follows: + +```bash +helm pull oci://codeberg.org/wrenix/helm-charts/element-call +``` + +You can install a chart release using the following command: + +```bash +helm install element-call-release oci://codeberg.org/wrenix/helm-charts/element-call --values values.yaml +``` + +To uninstall a chart release use `helm`'s delete command: + +```bash +helm uninstall element-call-release +``` + +## Values + +| Key | Type | Default | Description | +|-----|------|---------|-------------| +| autoscaling.enabled | bool | `false` | | +| autoscaling.maxReplicas | int | `100` | | +| autoscaling.minReplicas | int | `1` | | +| autoscaling.targetCPUUtilizationPercentage | int | `80` | | +| fullnameOverride | string | `""` | | +| global.image.pullPolicy | string | `nil` | if set it will overwrite all pullPolicy | +| global.image.registry | string | `nil` | if set it will overwrite all registry entries | +| imagePullSecrets | list | `[]` | | +| ingress.annotations | object | `{}` | | +| ingress.className | string | `""` | | +| ingress.enabled | bool | `false` | | +| ingress.tls | list | `[]` | | +| nameOverride | string | `""` | | +| service.call.affinity | object | `{}` | | +| service.call.config | object | `{}` | | +| service.call.image.pullPolicy | string | `"IfNotPresent"` | | +| service.call.image.registry | string | `"ghcr.io"` | | +| service.call.image.repository | string | `"element-hq/element-call"` | | +| service.call.image.tag | string | `nil` | Overrides the image tag whose default is the chart appVersion. | +| service.call.ingress.host | string | `nil` | | +| service.call.livenessProbe.httpGet.path | string | `"/"` | | +| service.call.livenessProbe.httpGet.port | string | `"http"` | | +| service.call.networkPolicy.egress.enabled | bool | `true` | activate egress no networkpolicy | +| service.call.networkPolicy.egress.extra | list | `[]` | egress rules | +| service.call.networkPolicy.enabled | bool | `false` | | +| service.call.networkPolicy.ingress.http | list | `[]` | ingress for http port (e.g. ingress-controller) | +| service.call.nodeSelector | object | `{}` | | +| service.call.podAnnotations | object | `{}` | | +| service.call.podLabels | object | `{}` | | +| service.call.podSecurityContext | object | `{}` | | +| service.call.readinessProbe.httpGet.path | string | `"/"` | | +| service.call.readinessProbe.httpGet.port | string | `"http"` | | +| service.call.replicaCount | int | `1` | | +| service.call.resources | object | `{}` | | +| service.call.securityContext | object | `{}` | | +| service.call.serviceAccount.annotations | object | `{}` | | +| service.call.serviceAccount.automount | bool | `true` | | +| service.call.serviceAccount.create | bool | `true` | | +| service.call.serviceAccount.name | string | `""` | | +| service.call.tolerations | list | `[]` | | +| service.lkJWT.affinity | object | `{}` | | +| service.lkJWT.config.key | string | `"devkey"` | | +| service.lkJWT.config.secret | string | `"secret"` | | +| service.lkJWT.config.url | string | `""` | | +| service.lkJWT.enabled | bool | `true` | | +| service.lkJWT.image.pullPolicy | string | `"IfNotPresent"` | | +| service.lkJWT.image.registry | string | `"ghcr.io"` | | +| service.lkJWT.image.repository | string | `"element-hq/lk-jwt-service"` | | +| service.lkJWT.image.tag | string | `"sha-4a29504"` | | +| service.lkJWT.ingress.host | string | `nil` | | +| service.lkJWT.livenessProbe.httpGet.path | string | `"/healthz"` | | +| service.lkJWT.livenessProbe.httpGet.port | string | `"http"` | | +| service.lkJWT.networkPolicy.egress.enabled | bool | `false` | activate egress no networkpolicy | +| service.lkJWT.networkPolicy.egress.extra | list | `[]` | egress rules | +| service.lkJWT.networkPolicy.enabled | bool | `false` | | +| service.lkJWT.networkPolicy.ingress.http | list | `[]` | ingress for http port (e.g. ingress-controller) | +| service.lkJWT.nodeSelector | object | `{}` | | +| service.lkJWT.podAnnotations | object | `{}` | | +| service.lkJWT.podLabels | object | `{}` | | +| service.lkJWT.podSecurityContext | object | `{}` | | +| service.lkJWT.readinessProbe.httpGet.path | string | `"/healthz"` | | +| service.lkJWT.readinessProbe.httpGet.port | string | `"http"` | | +| service.lkJWT.replicaCount | int | `1` | | +| service.lkJWT.resources | object | `{}` | | +| service.lkJWT.securityContext | object | `{}` | | +| service.lkJWT.serviceAccount.annotations | object | `{}` | | +| service.lkJWT.serviceAccount.automount | bool | `true` | | +| service.lkJWT.serviceAccount.create | bool | `true` | | +| service.lkJWT.serviceAccount.name | string | `""` | | +| service.lkJWT.tolerations | list | `[]` | | + +Autogenerated from chart metadata using [helm-docs](https://github.com/norwoodj/helm-docs) + -- 2.45.3 From 0335bfdb1294eb6929a1ef33be84221033cdd625 Mon Sep 17 00:00:00 2001 From: WrenIX Date: Tue, 12 Nov 2024 12:14:52 +0100 Subject: [PATCH 040/134] fix(gotosocial): add README in markdown --- gotosocial/Chart.yaml | 2 +- gotosocial/README.adoc | 2 +- gotosocial/README.md | 16 +++++----------- 3 files changed, 7 insertions(+), 13 deletions(-) diff --git a/gotosocial/Chart.yaml b/gotosocial/Chart.yaml index 9720d3b..455042a 100644 --- a/gotosocial/Chart.yaml +++ b/gotosocial/Chart.yaml @@ -3,7 +3,7 @@ name: gotosocial description: With GoToSocial, you can keep in touch with your friends, post, read, and share images and articles. All without being tracked or advertised to! icon: https://docs.gotosocial.org/en/latest/assets/sloth.png type: application -version: 0.2.6 +version: "0.2.7" # renovate: image=docker.io/superseriousbusiness/gotosocial appVersion: "0.17.3" maintainers: diff --git a/gotosocial/README.adoc b/gotosocial/README.adoc index 6eeb531..d1d3127 100644 --- a/gotosocial/README.adoc +++ b/gotosocial/README.adoc @@ -2,7 +2,7 @@ = gotosocial -image::https://img.shields.io/badge/Version-0.2.6-informational?style=flat-square[Version: 0.2.6] +image::https://img.shields.io/badge/Version-0.2.7-informational?style=flat-square[Version: 0.2.7] image::https://img.shields.io/badge/Version-application-informational?style=flat-square[Type: application] image::https://img.shields.io/badge/AppVersion-0.17.3-informational?style=flat-square[AppVersion: 0.17.3] == Maintainers diff --git a/gotosocial/README.md b/gotosocial/README.md index ffa48be..51d55e1 100644 --- a/gotosocial/README.md +++ b/gotosocial/README.md @@ -1,19 +1,13 @@ -+++ -title = "gotosocial" +--- +title: "gotosocial" -description = "With GoToSocial, you can keep in touch with your friends, post, read, and share images and articles. All without being tracked or advertised to!" +description: "With GoToSocial, you can keep in touch with your friends, post, read, and share images and articles. All without being tracked or advertised to!" -weight = 30 -sort_by = "weight" -template = "docs/page.html" - -[extra] -toc = true -+++ +--- # gotosocial -![Version: 0.2.6](https://img.shields.io/badge/Version-0.2.6-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 0.17.3](https://img.shields.io/badge/AppVersion-0.17.3-informational?style=flat-square) +![Version: 0.2.7](https://img.shields.io/badge/Version-0.2.7-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 0.17.3](https://img.shields.io/badge/AppVersion-0.17.3-informational?style=flat-square) With GoToSocial, you can keep in touch with your friends, post, read, and share images and articles. All without being tracked or advertised to! -- 2.45.3 From 7c926ac43280bb0c717a4aed4e6147818f8e532b Mon Sep 17 00:00:00 2001 From: WrenIX Date: Tue, 12 Nov 2024 12:14:55 +0100 Subject: [PATCH 041/134] fix(grampsweb): add README in markdown --- grampsweb/Chart.yaml | 2 +- grampsweb/README.adoc | 2 +- grampsweb/README.md | 102 ++++++++++++++++++++++++++++++++++++++++++ 3 files changed, 104 insertions(+), 2 deletions(-) create mode 100644 grampsweb/README.md diff --git a/grampsweb/Chart.yaml b/grampsweb/Chart.yaml index 9c7da33..eb69956 100644 --- a/grampsweb/Chart.yaml +++ b/grampsweb/Chart.yaml @@ -3,7 +3,7 @@ name: grampsweb description: A Helm chart for gramps web icon: https://raw.githubusercontent.com/gramps-project/Gramps.js/main/images/icon512.png type: application -version: 0.2.2 +version: "0.2.3" # renovate: image=ghcr.io/gramps-project/grampsweb appVersion: "24.10.0" maintainers: diff --git a/grampsweb/README.adoc b/grampsweb/README.adoc index 497fb6b..f2a8a2b 100644 --- a/grampsweb/README.adoc +++ b/grampsweb/README.adoc @@ -2,7 +2,7 @@ = grampsweb -image::https://img.shields.io/badge/Version-0.2.2-informational?style=flat-square[Version: 0.2.2] +image::https://img.shields.io/badge/Version-0.2.3-informational?style=flat-square[Version: 0.2.3] image::https://img.shields.io/badge/Version-application-informational?style=flat-square[Type: application] image::https://img.shields.io/badge/AppVersion-24.10.0-informational?style=flat-square[AppVersion: 24.10.0] == Maintainers diff --git a/grampsweb/README.md b/grampsweb/README.md new file mode 100644 index 0000000..3ae1274 --- /dev/null +++ b/grampsweb/README.md @@ -0,0 +1,102 @@ +--- +title: "grampsweb" + +description: "A Helm chart for gramps web" + +--- + +# grampsweb + +![Version: 0.2.3](https://img.shields.io/badge/Version-0.2.3-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 24.10.0](https://img.shields.io/badge/AppVersion-24.10.0-informational?style=flat-square) + +A Helm chart for gramps web + +## Maintainers + +| Name | Email | Url | +| ---- | ------ | --- | +| WrenIX | | | + +## Usage + +Helm must be installed and setup to your kubernetes cluster to use the charts. +Refer to Helm's [documentation](https://helm.sh/docs) to get started. +Once Helm has been set up correctly, fetch the charts as follows: + +```bash +helm pull oci://codeberg.org/wrenix/helm-charts/grampsweb +``` + +You can install a chart release using the following command: + +```bash +helm install grampsweb-release oci://codeberg.org/wrenix/helm-charts/grampsweb --values values.yaml +``` + +To uninstall a chart release use `helm`'s delete command: + +```bash +helm uninstall grampsweb-release +``` + +## Values + +| Key | Type | Default | Description | +|-----|------|---------|-------------| +| affinity | object | `{}` | | +| autoscaling.enabled | bool | `false` | | +| autoscaling.maxReplicas | int | `100` | | +| autoscaling.minReplicas | int | `1` | | +| autoscaling.targetCPUUtilizationPercentage | int | `80` | | +| fullnameOverride | string | `""` | | +| gramps.baseURL | string | `"https://gramps.example.org"` | Base URL where the API can be reached (e.g. https://mygramps.mydomain.com/). This is necessary e.g. to build correct passwort reset links | +| gramps.mail.from | string | `nil` | "From" address for automated e-mails | +| gramps.mail.host | string | `nil` | SMTP server host (e.g. for sending password reset e-mails) | +| gramps.mail.password | string | `nil` | SMTP server password | +| gramps.mail.port | int | `465` | SMTP server port. | +| gramps.mail.useTLS | bool | `true` | Boolean, whether to use TLS for sending e-mails. Defaults to true. When using STARTTLS, set this to false and use a port different from 25. | +| gramps.mail.username | string | `nil` | SMTP server username | +| gramps.mediaPrefixTree | bool | `false` | whether or not to use a separate subfolder for the media files of each tree. Defaults to False, but strongly recommend to use True in a multi-tree setup | +| gramps.tree | string | `"Gramps Web"` | To enable multi-tree support, the TREE config option must be set to a single asterisk `*` | +| image.pullPolicy | string | `"IfNotPresent"` | | +| image.registry | string | `"ghcr.io"` | | +| image.repository | string | `"gramps-project/grampsweb"` | | +| image.tag | string | `""` | | +| imagePullSecrets | list | `[]` | | +| ingress.annotations | object | `{}` | | +| ingress.className | string | `""` | | +| ingress.enabled | bool | `false` | | +| ingress.hosts[0].host | string | `"chart-example.local"` | | +| ingress.hosts[0].paths[0].path | string | `"/"` | | +| ingress.hosts[0].paths[0].pathType | string | `"ImplementationSpecific"` | | +| ingress.tls | list | `[]` | | +| nameOverride | string | `""` | | +| networkPolicy.egress.enabled | bool | `true` | activate egress no networkpolicy | +| networkPolicy.egress.extra | list | `[]` | egress rules | +| networkPolicy.enabled | bool | `false` | | +| networkPolicy.ingress.http | list | `[]` | ingress for http port (e.g. ingress-controller) | +| nodeSelector | object | `{}` | | +| persistence.accessMode | string | `"ReadWriteOnce"` | | +| persistence.annotations | object | `{}` | | +| persistence.enabled | bool | `true` | | +| persistence.existingClaim | string | `nil` | A manually managed Persistent Volume and Claim Requires persistence.enabled: true If defined, PVC must be created manually before volume will be bound | +| persistence.hostPath | string | `nil` | Do not create an PVC, direct use hostPath in Pod | +| persistence.size | string | `"5Gi"` | | +| persistence.storageClass | string | `nil` | Persistent Volume Storage Class If defined, storageClassName: If set to "-", storageClassName: "", which disables dynamic provisioning If undefined (the default) or set to null, no storageClassName spec is set, choosing the default provisioner. (gp2 on AWS, standard on GKE, AWS & OpenStack) | +| podAnnotations | object | `{}` | | +| podLabels | object | `{}` | | +| podSecurityContext | object | `{}` | | +| replicaCount | int | `1` | | +| resources | object | `{}` | | +| securityContext | object | `{}` | | +| service.port | int | `5000` | | +| service.type | string | `"ClusterIP"` | | +| serviceAccount.annotations | object | `{}` | | +| serviceAccount.automount | bool | `true` | | +| serviceAccount.create | bool | `true` | | +| serviceAccount.name | string | `""` | | +| tolerations | list | `[]` | | +| volumeMounts | list | `[]` | | +| volumes | list | `[]` | | + +Autogenerated from chart metadata using [helm-docs](https://github.com/norwoodj/helm-docs) -- 2.45.3 From 27564187fd9a6d0d89978f6c1ab3a77cf45814fd Mon Sep 17 00:00:00 2001 From: WrenIX Date: Tue, 12 Nov 2024 12:15:00 +0100 Subject: [PATCH 042/134] fix(hydrogen-web): add README in markdown --- hydrogen-web/Chart.yaml | 2 +- hydrogen-web/README.adoc | 2 +- hydrogen-web/README.md | 86 ++++++++++++++++++++++++++++++++++++++++ 3 files changed, 88 insertions(+), 2 deletions(-) create mode 100644 hydrogen-web/README.md diff --git a/hydrogen-web/Chart.yaml b/hydrogen-web/Chart.yaml index 33de903..b06ec87 100644 --- a/hydrogen-web/Chart.yaml +++ b/hydrogen-web/Chart.yaml @@ -3,7 +3,7 @@ name: hydrogen-web description: A Helm Chart to install hydrogen-web (a nextgen Matrix Webclient) icon: https://raw.githubusercontent.com/element-hq/hydrogen-web/master/src/platform/web/assets/icon.svg type: application -version: 0.1.8 +version: "0.1.9" # renovate: image=ghcr.io/element-hq/hydrogen-web appVersion: "0.5.1" maintainers: diff --git a/hydrogen-web/README.adoc b/hydrogen-web/README.adoc index fc1a2e4..21a65e4 100644 --- a/hydrogen-web/README.adoc +++ b/hydrogen-web/README.adoc @@ -2,7 +2,7 @@ = hydrogen-web -image::https://img.shields.io/badge/Version-0.1.8-informational?style=flat-square[Version: 0.1.8] +image::https://img.shields.io/badge/Version-0.1.9-informational?style=flat-square[Version: 0.1.9] image::https://img.shields.io/badge/Version-application-informational?style=flat-square[Type: application] image::https://img.shields.io/badge/AppVersion-0.5.1-informational?style=flat-square[AppVersion: 0.5.1] == Maintainers diff --git a/hydrogen-web/README.md b/hydrogen-web/README.md new file mode 100644 index 0000000..cc3ee37 --- /dev/null +++ b/hydrogen-web/README.md @@ -0,0 +1,86 @@ +--- +title: "hydrogen-web" + +description: "A Helm Chart to install hydrogen-web (a nextgen Matrix Webclient)" + +--- + +# hydrogen-web + +![Version: 0.1.9](https://img.shields.io/badge/Version-0.1.9-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 0.5.1](https://img.shields.io/badge/AppVersion-0.5.1-informational?style=flat-square) + +A Helm Chart to install hydrogen-web (a nextgen Matrix Webclient) + +## Maintainers + +| Name | Email | Url | +| ---- | ------ | --- | +| WrenIX | | | + +## Usage + +Helm must be installed and setup to your kubernetes cluster to use the charts. +Refer to Helm's [documentation](https://helm.sh/docs) to get started. +Once Helm has been set up correctly, fetch the charts as follows: + +```bash +helm pull oci://codeberg.org/wrenix/helm-charts/hydrogen-web +``` + +You can install a chart release using the following command: + +```bash +helm install hydrogen-web-release oci://codeberg.org/wrenix/helm-charts/hydrogen-web --values values.yaml +``` + +To uninstall a chart release use `helm`'s delete command: + +```bash +helm uninstall hydrogen-web-release +``` + +## Values + +| Key | Type | Default | Description | +|-----|------|---------|-------------| +| affinity | object | `{}` | | +| autoscaling.enabled | bool | `false` | | +| autoscaling.maxReplicas | int | `100` | | +| autoscaling.minReplicas | int | `1` | | +| autoscaling.targetCPUUtilizationPercentage | int | `80` | | +| fullnameOverride | string | `""` | | +| hydrogen.bugReportEndpointUrl" | string | `"https://element.io/bugreports/submit"` | | +| hydrogen.defaultHomeServer | string | `"matrix.org"` | | +| hydrogen.defaultTheme.dark | string | `"element-dark"` | | +| hydrogen.defaultTheme.light | string | `"element-light"` | | +| hydrogen.push.appId | string | `"io.element.hydrogen.web"` | | +| hydrogen.push.applicationServerKey | string | `"BC-gpSdVHEXhvHSHS0AzzWrQoukv2BE7KzpoPO_FfPacqOo3l1pdqz7rSgmB04pZCWaHPz7XRe6fjLaC-WPDopM"` | | +| hydrogen.push.gatewayUrl | string | `"https://matrix.org"` | | +| hydrogen.themeManifests[0] | string | `"assets/theme-element.json"` | | +| image.pullPolicy | string | `"IfNotPresent"` | | +| image.repository | string | `"ghcr.io/element-hq/hydrogen-web"` | | +| image.tag | string | `""` | | +| imagePullSecrets | list | `[]` | | +| ingress.annotations | object | `{}` | | +| ingress.className | string | `""` | | +| ingress.enabled | bool | `false` | | +| ingress.hosts[0].host | string | `"chart-example.local"` | | +| ingress.hosts[0].paths[0].path | string | `"/"` | | +| ingress.hosts[0].paths[0].pathType | string | `"ImplementationSpecific"` | | +| ingress.tls | list | `[]` | | +| nameOverride | string | `""` | | +| nodeSelector | object | `{}` | | +| podAnnotations | object | `{}` | | +| podLabels | object | `{}` | | +| podSecurityContext | object | `{}` | | +| replicaCount | int | `1` | | +| resources | object | `{}` | | +| securityContext | object | `{}` | | +| service.port | int | `8080` | | +| service.type | string | `"ClusterIP"` | | +| serviceAccount.annotations | object | `{}` | | +| serviceAccount.create | bool | `true` | | +| serviceAccount.name | string | `""` | | +| tolerations | list | `[]` | | + +Autogenerated from chart metadata using [helm-docs](https://github.com/norwoodj/helm-docs) -- 2.45.3 From 8bd352a9d7de04726899e8f4b95a13f8cb4d3043 Mon Sep 17 00:00:00 2001 From: WrenIX Date: Tue, 12 Nov 2024 12:15:03 +0100 Subject: [PATCH 043/134] fix(jellyfin): add README in markdown --- jellyfin/Chart.yaml | 2 +- jellyfin/README.adoc | 2 +- jellyfin/README.md | 102 +++++++++++++++++++++++++++++++++++++++++++ 3 files changed, 104 insertions(+), 2 deletions(-) create mode 100644 jellyfin/README.md diff --git a/jellyfin/Chart.yaml b/jellyfin/Chart.yaml index f74de2f..24c0f44 100644 --- a/jellyfin/Chart.yaml +++ b/jellyfin/Chart.yaml @@ -3,7 +3,7 @@ name: jellyfin description: The Free Software Media System icon: https://raw.githubusercontent.com/jellyfin/jellyfin-ux/master/branding/SVG/icon-transparent.svg type: application -version: 0.3.4 +version: "0.3.5" # renovate: image=ghcr.io/jellyfin/jellyfin appVersion: "10.10.1" maintainers: diff --git a/jellyfin/README.adoc b/jellyfin/README.adoc index 99aed48..0756342 100644 --- a/jellyfin/README.adoc +++ b/jellyfin/README.adoc @@ -2,7 +2,7 @@ = jellyfin -image::https://img.shields.io/badge/Version-0.3.4-informational?style=flat-square[Version: 0.3.4] +image::https://img.shields.io/badge/Version-0.3.5-informational?style=flat-square[Version: 0.3.5] image::https://img.shields.io/badge/Version-application-informational?style=flat-square[Type: application] image::https://img.shields.io/badge/AppVersion-10.10.1-informational?style=flat-square[AppVersion: 10.10.1] == Maintainers diff --git a/jellyfin/README.md b/jellyfin/README.md new file mode 100644 index 0000000..36df80e --- /dev/null +++ b/jellyfin/README.md @@ -0,0 +1,102 @@ +--- +title: "jellyfin" + +description: "The Free Software Media System" + +--- + +# jellyfin + +![Version: 0.3.5](https://img.shields.io/badge/Version-0.3.5-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 10.10.1](https://img.shields.io/badge/AppVersion-10.10.1-informational?style=flat-square) + +The Free Software Media System + +## Maintainers + +| Name | Email | Url | +| ---- | ------ | --- | +| WrenIX | | | + +## Usage + +Helm must be installed and setup to your kubernetes cluster to use the charts. +Refer to Helm's [documentation](https://helm.sh/docs) to get started. +Once Helm has been set up correctly, fetch the charts as follows: + +```bash +helm pull oci://codeberg.org/wrenix/helm-charts/jellyfin +``` + +You can install a chart release using the following command: + +```bash +helm install jellyfin-release oci://codeberg.org/wrenix/helm-charts/jellyfin --values values.yaml +``` + +To uninstall a chart release use `helm`'s delete command: + +```bash +helm uninstall jellyfin-release +``` + +## Values + +| Key | Type | Default | Description | +|-----|------|---------|-------------| +| affinity | object | `{}` | | +| autoscaling.enabled | bool | `false` | | +| autoscaling.maxReplicas | int | `100` | | +| autoscaling.minReplicas | int | `1` | | +| autoscaling.targetCPUUtilizationPercentage | int | `80` | | +| config.enabled | bool | `false` | | +| config.image | object | `{"pullPolicy":"IfNotPresent","registry":"ghcr.io","repository":"tomwright/dasel","tag":"2.8.1"}` | image to patch config | +| config.metrics | bool | `false` | | +| fullnameOverride | string | `""` | | +| global.image.pullPolicy | string | `nil` | if set it will overwrite all pullPolicy | +| global.image.registry | string | `nil` | if set it will overwrite all registry entries | +| grafana.dashboards.annotations | object | `{}` | | +| grafana.dashboards.enabled | bool | `false` | | +| grafana.dashboards.labels.grafana_dashboard | string | `"1"` | | +| image.pullPolicy | string | `"IfNotPresent"` | | +| image.registry | string | `"ghcr.io"` | | +| image.repository | string | `"jellyfin/jellyfin"` | | +| image.tag | string | `""` | Overrides the image tag whose default is the chart appVersion. | +| imagePullSecrets | list | `[]` | | +| ingress.annotations | object | `{}` | | +| ingress.className | string | `""` | | +| ingress.enabled | bool | `false` | | +| ingress.hosts[0].host | string | `"chart-example.local"` | | +| ingress.hosts[0].paths[0].path | string | `"/"` | | +| ingress.hosts[0].paths[0].pathType | string | `"ImplementationSpecific"` | | +| ingress.tls | list | `[]` | | +| nameOverride | string | `""` | | +| networkPolicy.egress.enabled | bool | `true` | activate egress no networkpolicy | +| networkPolicy.egress.extra | list | `[]` | egress rules | +| networkPolicy.enabled | bool | `false` | | +| networkPolicy.ingress.http | list | `[]` | ingress for http port (e.g. ingress-controller, prometheus) | +| nodeSelector | object | `{}` | | +| persistence.config.hostPath | string | `nil` | | +| persistence.config.nfs.path | string | `"/"` | | +| persistence.config.nfs.server | string | `nil` | | +| persistence.config.pvc.enabled | bool | `false` | | +| persistence.media.hostPath | string | `nil` | | +| persistence.media.nfs.path | string | `"/"` | | +| persistence.media.nfs.server | string | `nil` | | +| persistence.media.pvc.enabled | bool | `false` | | +| persistence.media.readOnly | bool | `true` | | +| podAnnotations | object | `{}` | | +| podLabels | object | `{}` | | +| podSecurityContext | object | `{}` | | +| prometheus.servicemonitor.enabled | bool | `false` | | +| prometheus.servicemonitor.labels | object | `{}` | | +| replicaCount | int | `1` | | +| resources | object | `{}` | | +| securityContext | object | `{}` | | +| service.port | int | `8096` | | +| service.type | string | `"ClusterIP"` | | +| serviceAccount.annotations | object | `{}` | | +| serviceAccount.create | bool | `true` | | +| serviceAccount.name | string | `""` | | +| tolerations | list | `[]` | | + +Autogenerated from chart metadata using [helm-docs](https://github.com/norwoodj/helm-docs) -- 2.45.3 From 32a8cc40cfc61e801dac22be171677bb87be9524 Mon Sep 17 00:00:00 2001 From: WrenIX Date: Tue, 12 Nov 2024 12:15:05 +0100 Subject: [PATCH 044/134] fix(matrix-authentication-service): add README in markdown --- matrix-authentication-service/Chart.yaml | 2 +- matrix-authentication-service/README.adoc | 2 +- matrix-authentication-service/README.md | 170 ++++++++++++++++++++++ 3 files changed, 172 insertions(+), 2 deletions(-) create mode 100644 matrix-authentication-service/README.md diff --git a/matrix-authentication-service/Chart.yaml b/matrix-authentication-service/Chart.yaml index 773a85e..e9792db 100644 --- a/matrix-authentication-service/Chart.yaml +++ b/matrix-authentication-service/Chart.yaml @@ -4,7 +4,7 @@ name: matrix-authentication-service description: OAuth2.0 + OpenID Provider for Matrix Homeservers (per MSC3861) icon: https://matrix.org/images/matrix-logo.svg type: application -version: 0.0.6 +version: "0.0.7" # renovate: image=ghcr.io/matrix-org/matrix-authentication-service appVersion: "0.11.0" maintainers: diff --git a/matrix-authentication-service/README.adoc b/matrix-authentication-service/README.adoc index a7e4d5d..263cb2b 100644 --- a/matrix-authentication-service/README.adoc +++ b/matrix-authentication-service/README.adoc @@ -2,7 +2,7 @@ = matrix-authentication-service -image::https://img.shields.io/badge/Version-0.0.6-informational?style=flat-square[Version: 0.0.6] +image::https://img.shields.io/badge/Version-0.0.7-informational?style=flat-square[Version: 0.0.7] image::https://img.shields.io/badge/Version-application-informational?style=flat-square[Type: application] image::https://img.shields.io/badge/AppVersion-0.11.0-informational?style=flat-square[AppVersion: 0.11.0] == Maintainers diff --git a/matrix-authentication-service/README.md b/matrix-authentication-service/README.md new file mode 100644 index 0000000..d29c6e3 --- /dev/null +++ b/matrix-authentication-service/README.md @@ -0,0 +1,170 @@ +--- +title: "matrix-authentication-service" + +description: "OAuth2.0 + OpenID Provider for Matrix Homeservers (per MSC3861)" + +--- + +# matrix-authentication-service + +![Version: 0.0.7](https://img.shields.io/badge/Version-0.0.7-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 0.11.0](https://img.shields.io/badge/AppVersion-0.11.0-informational?style=flat-square) + +OAuth2.0 + OpenID Provider for Matrix Homeservers (per MSC3861) + +## Maintainers + +| Name | Email | Url | +| ---- | ------ | --- | +| WrenIX | | | + +## Usage + +Helm must be installed and setup to your kubernetes cluster to use the charts. +Refer to Helm's [documentation](https://helm.sh/docs) to get started. +Once Helm has been set up correctly, fetch the charts as follows: + +```bash +helm pull oci://codeberg.org/wrenix/helm-charts/matrix-authentication-service +``` + +You can install a chart release using the following command: + +```bash +helm install matrix-authentication-service-release oci://codeberg.org/wrenix/helm-charts/matrix-authentication-service --values values.yaml +``` + +To uninstall a chart release use `helm`'s delete command: + +```bash +helm uninstall matrix-authentication-service-release +``` + +## Values + +| Key | Type | Default | Description | +|-----|------|---------|-------------| +| affinity | object | `{}` | | +| autoscaling.enabled | bool | `false` | | +| autoscaling.maxReplicas | int | `100` | | +| autoscaling.minReplicas | int | `1` | | +| autoscaling.targetCPUUtilizationPercentage | int | `80` | | +| config.branding.imprint | string | `nil` | | +| config.branding.logo_uri | string | `nil` | | +| config.branding.policy_uri | string | `nil` | | +| config.branding.service_name | string | `nil` | | +| config.branding.tos_uri | string | `nil` | | +| config.clients | list | `[]` | | +| config.database.connect_timeout | int | `30` | | +| config.database.database | string | `"sliding_sync"` | | +| config.database.host | string | `"localhost"` | | +| config.database.idle_timeout | int | `600` | | +| config.database.max_connections | int | `10` | | +| config.database.max_lifetime | int | `1800` | | +| config.database.min_connections | int | `0` | | +| config.database.password | string | `"secret"` | | +| config.database.port | int | `5432` | | +| config.database.username | string | `"sliding_sync"` | | +| config.email.from | string | `"\"Authentication Service\" "` | | +| config.email.reply_to | string | `"\"Authentication Service\" "` | | +| config.email.transport | string | `"blackhole"` | | +| config.experimental.access_token_ttl | int | `300` | | +| config.experimental.compat_token_ttl | int | `300` | | +| config.http.issuer | string | `"http://[::]:8080/"` | | +| config.http.listeners[0].binds[0].address | string | `"[::]:8080"` | | +| config.http.listeners[0].name | string | `"http"` | | +| config.http.listeners[0].proxy_protocol | bool | `false` | | +| config.http.listeners[0].resources[0].name | string | `"discovery"` | | +| config.http.listeners[0].resources[1].name | string | `"human"` | | +| config.http.listeners[0].resources[2].name | string | `"oauth"` | | +| config.http.listeners[0].resources[3].name | string | `"compat"` | | +| config.http.listeners[0].resources[4].name | string | `"graphql"` | | +| config.http.listeners[0].resources[4].playground | bool | `true` | | +| config.http.listeners[0].resources[5].name | string | `"assets"` | | +| config.http.listeners[0].resources[5].path | string | `"/usr/local/share/mas-cli/assets/"` | | +| config.http.listeners[1].binds[0].address | string | `"[::]:8081"` | | +| config.http.listeners[1].name | string | `"internal"` | | +| config.http.listeners[1].resources[0].name | string | `"health"` | | +| config.http.listeners[2].binds[0].address | string | `"[::]:9100"` | | +| config.http.listeners[2].name | string | `"metrics"` | | +| config.http.listeners[2].resources[0].name | string | `"prometheus"` | | +| config.http.public_base | string | `"http://[::]:8080/"` | | +| config.http.trusted_proxies[0] | string | `"192.128.0.0/16"` | | +| config.http.trusted_proxies[1] | string | `"172.16.0.0/12"` | | +| config.http.trusted_proxies[2] | string | `"10.0.0.0/10"` | | +| config.http.trusted_proxies[3] | string | `"127.0.0.1/8"` | | +| config.http.trusted_proxies[4] | string | `"fd00::/8"` | | +| config.http.trusted_proxies[5] | string | `"::1/128"` | | +| config.matrix.endpoint | string | `"http://localhost:8008/"` | | +| config.matrix.homeserver | string | `"localhost:8008"` | | +| config.matrix.secret | string | `"kPnqGbK9hmSRK41DZTgVJxfKVAiLrY6G"` | | +| config.passwords.enabled | bool | `true` | | +| config.passwords.schemes[0].algorithm | string | `"argon2id"` | | +| config.passwords.schemes[0].version | int | `1` | | +| config.policy.authorization_grant_entrypoint | string | `"authorization_grant/violation"` | | +| config.policy.client_registration_entrypoint | string | `"client_registration/violation"` | | +| config.policy.data | string | `nil` | | +| config.policy.email_entrypoint | string | `"email/violation"` | | +| config.policy.password_entrypoint | string | `"password/violation"` | | +| config.policy.register_entrypoint | string | `"register/violation"` | | +| config.policy.wasm_module | string | `"/usr/local/share/mas-cli/policy.wasm"` | | +| config.secrets.encryption | string | `nil` | | +| config.secrets.keys | list | `[]` | | +| config.telemetry.metrics.exporter | string | `"prometheus"` | | +| config.telemetry.sentry.dsn | string | `nil` | | +| config.telemetry.tracing.exporter | string | `"none"` | | +| config.telemetry.tracing.propagators | list | `[]` | | +| config.templates.assets_manifest | string | `"/usr/local/share/mas-cli/manifest.json"` | | +| config.templates.path | string | `"/usr/local/share/mas-cli/templates/"` | | +| config.templates.translations_path | string | `"/usr/local/share/mas-cli/translations/"` | | +| config.upstream_oauth2.providers | list | `[]` | | +| fullnameOverride | string | `""` | | +| global.image.pullPolicy | string | `nil` | if set it will overwrite all pullPolicy | +| global.image.registry | string | `nil` | if set it will overwrite all registry entries | +| image.pullPolicy | string | `"IfNotPresent"` | | +| image.registry | string | `"ghcr.io"` | | +| image.repository | string | `"matrix-org/matrix-authentication-service"` | | +| image.tag | string | `nil` | Overrides the image tag whose default is the chart appVersion. | +| imagePullSecrets | list | `[]` | | +| ingress.annotations | object | `{}` | | +| ingress.className | string | `""` | | +| ingress.enabled | bool | `false` | | +| ingress.hosts[0].host | string | `"auth.matrix.chart-example.local"` | | +| ingress.hosts[0].paths[0].path | string | `"/l"` | | +| ingress.hosts[0].paths[0].pathType | string | `"Prefix"` | | +| ingress.hosts[1].host | string | `"matrix.chart-example.local"` | | +| ingress.hosts[1].paths[0].path | string | `"/_matrix/client/v3/login"` | | +| ingress.hosts[1].paths[0].pathType | string | `"Exact"` | | +| ingress.hosts[1].paths[1].path | string | `"/_matrix/client/v3/logout"` | | +| ingress.hosts[1].paths[1].pathType | string | `"Exact"` | | +| ingress.hosts[1].paths[2].path | string | `"/_matrix/client/v3/refresh"` | | +| ingress.hosts[1].paths[2].pathType | string | `"Exact"` | | +| ingress.tls | list | `[]` | | +| livenessProbe.httpGet.path | string | `"/health"` | | +| livenessProbe.httpGet.port | string | `"internal"` | | +| nameOverride | string | `""` | | +| nodeSelector | object | `{}` | | +| podAnnotations | object | `{}` | | +| podLabels | object | `{}` | | +| podSecurityContext.fsGroup | int | `1000` | | +| prometheus.servicemonitor.enabled | bool | `false` | | +| prometheus.servicemonitor.labels | object | `{}` | | +| readinessProbe.httpGet.path | string | `"/health"` | | +| readinessProbe.httpGet.port | string | `"internal"` | | +| replicaCount | int | `1` | | +| resources | object | `{}` | | +| securityContext.capabilities.drop[0] | string | `"ALL"` | | +| securityContext.readOnlyRootFilesystem | bool | `true` | | +| securityContext.runAsNonRoot | bool | `true` | | +| securityContext.runAsUser | int | `1000` | | +| service.port.http | int | `8080` | | +| service.port.metrics | int | `9100` | | +| service.type | string | `"ClusterIP"` | | +| serviceAccount.annotations | object | `{}` | | +| serviceAccount.automount | bool | `true` | | +| serviceAccount.create | bool | `true` | | +| serviceAccount.name | string | `""` | | +| tolerations | list | `[]` | | +| volumeMounts | list | `[]` | | +| volumes | list | `[]` | | + +Autogenerated from chart metadata using [helm-docs](https://github.com/norwoodj/helm-docs) -- 2.45.3 From 86755ddff632bf128c3b852a5dc9b0993dd53411 Mon Sep 17 00:00:00 2001 From: WrenIX Date: Tue, 12 Nov 2024 12:15:09 +0100 Subject: [PATCH 045/134] fix(matrix-sliding-sync): add README in markdown --- matrix-sliding-sync/Chart.yaml | 2 +- matrix-sliding-sync/README.adoc | 2 +- matrix-sliding-sync/README.md | 108 ++++++++++++++++++++++++++++++++ 3 files changed, 110 insertions(+), 2 deletions(-) create mode 100644 matrix-sliding-sync/README.md diff --git a/matrix-sliding-sync/Chart.yaml b/matrix-sliding-sync/Chart.yaml index c9f2534..06c81bd 100644 --- a/matrix-sliding-sync/Chart.yaml +++ b/matrix-sliding-sync/Chart.yaml @@ -4,7 +4,7 @@ name: matrix-sliding-sync description: Proxy implementation of MSC3575's sync protocol. icon: https://matrix.org/images/matrix-logo.svg type: application -version: 0.2.1 +version: "0.2.2" # renovate: image=ghcr.io/matrix-org/sliding-sync appVersion: "0.99.19" maintainers: diff --git a/matrix-sliding-sync/README.adoc b/matrix-sliding-sync/README.adoc index 6ee9361..37179ba 100644 --- a/matrix-sliding-sync/README.adoc +++ b/matrix-sliding-sync/README.adoc @@ -2,7 +2,7 @@ = matrix-sliding-sync -image::https://img.shields.io/badge/Version-0.2.1-informational?style=flat-square[Version: 0.2.1] +image::https://img.shields.io/badge/Version-0.2.2-informational?style=flat-square[Version: 0.2.2] image::https://img.shields.io/badge/Version-application-informational?style=flat-square[Type: application] image::https://img.shields.io/badge/AppVersion-0.99.19-informational?style=flat-square[AppVersion: 0.99.19] == Maintainers diff --git a/matrix-sliding-sync/README.md b/matrix-sliding-sync/README.md new file mode 100644 index 0000000..422c3f3 --- /dev/null +++ b/matrix-sliding-sync/README.md @@ -0,0 +1,108 @@ +--- +title: "matrix-sliding-sync" + +description: "Proxy implementation of MSC3575's sync protocol." + +--- + +# matrix-sliding-sync + +![Version: 0.2.2](https://img.shields.io/badge/Version-0.2.2-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 0.99.19](https://img.shields.io/badge/AppVersion-0.99.19-informational?style=flat-square) + +Proxy implementation of MSC3575's sync protocol. + +## Maintainers + +| Name | Email | Url | +| ---- | ------ | --- | +| WrenIX | | | + +## Usage + +Helm must be installed and setup to your kubernetes cluster to use the charts. +Refer to Helm's [documentation](https://helm.sh/docs) to get started. +Once Helm has been set up correctly, fetch the charts as follows: + +```bash +helm pull oci://codeberg.org/wrenix/helm-charts/matrix-sliding-sync +``` + +You can install a chart release using the following command: + +```bash +helm install matrix-sliding-sync-release oci://codeberg.org/wrenix/helm-charts/matrix-sliding-sync --values values.yaml +``` + +To uninstall a chart release use `helm`'s delete command: + +```bash +helm uninstall matrix-sliding-sync-release +``` + +## Values + +| Key | Type | Default | Description | +|-----|------|---------|-------------| +| affinity | object | `{}` | | +| autoscaling.enabled | bool | `false` | | +| autoscaling.maxReplicas | int | `100` | | +| autoscaling.minReplicas | int | `1` | | +| autoscaling.targetCPUUtilizationPercentage | int | `80` | | +| config.homeserver | string | `"http://localhost:8008"` | | +| config.logLevel | string | `"INFO"` | | +| config.metrics | int | `9100` | | +| config.opentelemetry.password | string | `nil` | | +| config.opentelemetry.url | string | `nil` | | +| config.opentelemetry.username | string | `nil` | | +| config.postgresql.database | string | `"sliding_sync"` | | +| config.postgresql.host | string | `"localhost"` | | +| config.postgresql.maxConn | int | `0` | | +| config.postgresql.password | string | `"secret"` | | +| config.postgresql.port | int | `5432` | | +| config.postgresql.sslmode | string | `"disable"` | | +| config.postgresql.username | string | `"sliding_sync"` | | +| config.syncSecret | string | `nil` | | +| fullnameOverride | string | `""` | | +| global.image.pullPolicy | string | `nil` | if set it will overwrite all pullPolicy | +| global.image.registry | string | `nil` | if set it will overwrite all registry entries | +| grafana.dashboards.annotations | object | `{}` | | +| grafana.dashboards.enabled | bool | `false` | | +| grafana.dashboards.labels.grafana_dashboard | string | `"1"` | | +| image.pullPolicy | string | `"IfNotPresent"` | | +| image.registry | string | `"ghcr.io"` | | +| image.repository | string | `"matrix-org/sliding-sync"` | | +| image.tag | string | `nil` | Overrides the image tag whose default is the chart appVersion. | +| imagePullSecrets | list | `[]` | | +| ingress.annotations | object | `{}` | | +| ingress.className | string | `""` | | +| ingress.enabled | bool | `false` | | +| ingress.hosts[0].host | string | `"chart-example.local"` | | +| ingress.hosts[0].paths[0].path | string | `"/"` | | +| ingress.hosts[0].paths[0].pathType | string | `"ImplementationSpecific"` | | +| ingress.tls | list | `[]` | | +| livenessProbe.tcpSocket.port | string | `"http"` | | +| nameOverride | string | `""` | | +| nodeSelector | object | `{}` | | +| podAnnotations | object | `{}` | | +| podLabels | object | `{}` | | +| podSecurityContext.fsGroup | int | `2000` | | +| prometheus.servicemonitor.enabled | bool | `false` | | +| prometheus.servicemonitor.labels | object | `{}` | | +| readinessProbe.tcpSocket.port | string | `"http"` | | +| replicaCount | int | `1` | | +| resources | object | `{}` | | +| securityContext.capabilities.drop[0] | string | `"ALL"` | | +| securityContext.readOnlyRootFilesystem | bool | `true` | | +| securityContext.runAsNonRoot | bool | `true` | | +| securityContext.runAsUser | int | `1000` | | +| service.port | int | `8008` | | +| service.type | string | `"ClusterIP"` | | +| serviceAccount.annotations | object | `{}` | | +| serviceAccount.automount | bool | `true` | | +| serviceAccount.create | bool | `true` | | +| serviceAccount.name | string | `""` | | +| tolerations | list | `[]` | | +| volumeMounts | list | `[]` | | +| volumes | list | `[]` | | + +Autogenerated from chart metadata using [helm-docs](https://github.com/norwoodj/helm-docs) -- 2.45.3 From 5f946e11e607b9fc00524acfd6d4cbf3f743be55 Mon Sep 17 00:00:00 2001 From: WrenIX Date: Tue, 12 Nov 2024 12:15:11 +0100 Subject: [PATCH 046/134] fix(matrix-synapse): add README in markdown --- matrix-synapse/Chart.yaml | 2 +- matrix-synapse/README.adoc | 2 +- matrix-synapse/README.md | 279 +++++++++++++++++++++++++++++++++++++ 3 files changed, 281 insertions(+), 2 deletions(-) create mode 100644 matrix-synapse/README.md diff --git a/matrix-synapse/Chart.yaml b/matrix-synapse/Chart.yaml index 44bf3b1..b8fdaa6 100644 --- a/matrix-synapse/Chart.yaml +++ b/matrix-synapse/Chart.yaml @@ -4,7 +4,7 @@ name: matrix-synapse description: Matrix reference homeserver icon: https://matrix.org/images/matrix-logo.svg type: application -version: 1.0.0 +version: "1.0.1" # renovate: image=ghcr.io/element-hq/synapse appVersion: 1.118.0 maintainers: diff --git a/matrix-synapse/README.adoc b/matrix-synapse/README.adoc index 5d5e290..5e88f45 100644 --- a/matrix-synapse/README.adoc +++ b/matrix-synapse/README.adoc @@ -2,7 +2,7 @@ = matrix-synapse -image::https://img.shields.io/badge/Version-1.0.0-informational?style=flat-square[Version: 1.0.0] +image::https://img.shields.io/badge/Version-1.0.1-informational?style=flat-square[Version: 1.0.1] image::https://img.shields.io/badge/Version-application-informational?style=flat-square[Type: application] image::https://img.shields.io/badge/AppVersion-1.118.0-informational?style=flat-square[AppVersion: 1.118.0] == Maintainers diff --git a/matrix-synapse/README.md b/matrix-synapse/README.md new file mode 100644 index 0000000..aa19029 --- /dev/null +++ b/matrix-synapse/README.md @@ -0,0 +1,279 @@ +--- +title: "matrix-synapse" + +description: "Matrix reference homeserver" + +--- + +# matrix-synapse + +![Version: 1.0.1](https://img.shields.io/badge/Version-1.0.1-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 1.118.0](https://img.shields.io/badge/AppVersion-1.118.0-informational?style=flat-square) + +Matrix reference homeserver + +## Maintainers + +| Name | Email | Url | +| ---- | ------ | --- | +| WrenIX | | | + +## Usage + +Helm must be installed and setup to your kubernetes cluster to use the charts. +Refer to Helm's [documentation](https://helm.sh/docs) to get started. +Once Helm has been set up correctly, fetch the charts as follows: + +```bash +helm pull oci://codeberg.org/wrenix/helm-charts/matrix-synapse +``` + +You can install a chart release using the following command: + +```bash +helm install matrix-synapse-release oci://codeberg.org/wrenix/helm-charts/matrix-synapse --values values.yaml +``` + +To uninstall a chart release use `helm`'s delete command: + +```bash +helm uninstall matrix-synapse-release +``` + +## Requirements + +| Repository | Name | Version | +|------------|------|---------| +| https://charts.bitnami.com/bitnami | postgresql | ^16.0.0 | +| https://charts.bitnami.com/bitnami | redis | ^20.0.0 | + +## Values + +| Key | Type | Default | Description | +|-----|------|---------|-------------| +| config.bindAddresses | list | `["::"]` | The bind addresses to use for the default listeners | +| config.extraListeners | list | `[]` | | +| config.extraMainListenerTypes | list | `[]` | | +| config.reportStats | bool | `false` | | +| config.trustedKeyServers | list | `[{"server_name":"matrix.org"}]` | A set of trusted servers to contact if another server doesn't respond to a signing key request. | +| config.useStructuredLogging | bool | `false` | | +| externalPostgresql.database | string | `"synapse"` | | +| externalPostgresql.extraArgs | object | `{}` | Extra arguments for the database connection ref: https://github.com/matrix-org/synapse/blob/develop/docs/postgres.md#synapse-config | +| externalPostgresql.options | object | `{}` | set extra configuration ref: https://github.com/matrix-org/synapse/blob/develop/docs/postgres.md#synapse-config e.g. txn_limit, allow_unsafe_locale | +| externalPostgresql.port | int | `5432` | | +| externalPostgresql.username | string | `"synapse"` | | +| externalRedis.port | int | `6379` | | +| extraConfig | object | `{}` | | +| extraLoggers | object | `{}` | | +| extraSecrets | object | `{}` | | +| fullnameOverride | string | `nil` | Override the full name of the installed chart. | +| global.image.pullPolicy | string | `nil` | if set it will overwrite all pullPolicy | +| global.image.registry | string | `nil` | if set it will overwrite all registry entries | +| grafana.dashboards.annotations | object | `{}` | | +| grafana.dashboards.enabled | bool | `false` | | +| grafana.dashboards.labels.grafana_dashboard | string | `"1"` | | +| image.pullPolicy | string | `"IfNotPresent"` | | +| image.registry | string | `"ghcr.io"` | | +| image.repository | string | `"element-hq/synapse"` | | +| image.tag | string | `nil` | Overrides the image tag whose default is the chart appVersion. | +| ingress.annotations | object | `{}` | | +| ingress.csHosts | list | `[]` | | +| ingress.csPaths | list | `[]` | | +| ingress.enabled | bool | `true` | | +| ingress.hosts | list | `[]` | | +| ingress.includeServerName | bool | `true` | | +| ingress.includeUnderscoreSynapse | bool | `true` | | +| ingress.paths | list | `[]` | | +| ingress.tls | list | `[]` | | +| ingress.traefikPaths | bool | `false` | | +| ingress.wkHosts | list | `[]` | | +| nameOverride | string | `nil` | Override part of the installed name, will still keep release name. | +| persistence.accessMode | string | `"ReadWriteOnce"` | | +| persistence.annotations | object | `{}` | | +| persistence.enabled | bool | `true` | | +| persistence.existingClaim | string | `nil` | A manually managed Persistent Volume and Claim Requires persistence.enabled: true If defined, PVC must be created manually before volume will be bound | +| persistence.hostPath | string | `nil` | Do not create an PVC, direct use hostPath in Pod | +| persistence.size | string | `"10Gi"` | | +| persistence.storageClass | string | `nil` | Persistent Volume Storage Class If defined, storageClassName: If set to "-", storageClassName: "", which disables dynamic provisioning If undefined (the default) or set to null, no storageClassName spec is set, choosing the default provisioner. (gp2 on AWS, standard on GKE, AWS & OpenStack) | +| postgresql.auth.database | string | `"synapse"` | | +| postgresql.auth.password | string | `"synapse"` | | +| postgresql.auth.username | string | `"synapse"` | | +| postgresql.enabled | bool | `true` | | +| postgresql.extraArgs | object | `{}` | Extra arguments for the database connection ref: https://github.com/matrix-org/synapse/blob/develop/docs/postgres.md#synapse-config | +| postgresql.options | object | `{}` | set extra configuration ref: https://github.com/matrix-org/synapse/blob/develop/docs/postgres.md#synapse-config e.g. txn_limit, allow_unsafe_locale | +| postgresql.primary.initdb.args | string | `"--lc-collate=C --lc-ctype=C"` | | +| postgresql.primary.persistence.size | string | `"16Gi"` | | +| prometheus.podmonitor.enabled | bool | `false` | | +| prometheus.podmonitor.labels | object | `{}` | | +| prometheus.rules.additionalRules | list | `[]` | | +| prometheus.rules.defaults.enabled | bool | `true` | | +| prometheus.rules.enabled | bool | `false` | | +| prometheus.rules.labels | object | `{}` | | +| publicServerName | string | `nil` | The public Matrix server name, this will be used for any public URLs in config as well as for client API links in the ingress. | +| redis.architecture | string | `"standalone"` | | +| redis.auth.enabled | bool | `true` | | +| redis.auth.password | string | `"synapse"` | | +| redis.enabled | bool | `true` | | +| redis.master.kind | string | `"Deployment"` | | +| redis.master.persistence.enabled | bool | `false` | | +| redis.master.service.port | int | `6379` | | +| serverName | string | `nil` | The Matrix domain name, this is what will be used for the domain part in your MXIDs. | +| service.port | int | `8008` | | +| service.targetPort | string | `"http"` | | +| service.type | string | `"ClusterIP"` | | +| serviceAccount.annotations | object | `{}` | | +| serviceAccount.create | bool | `false` | | +| signingkey.annotations | object | `{"helm.sh/hook":"pre-install,pre-upgrade","helm.sh/hook-delete-policy":"before-hook-creation,hook-succeeded"}` | Annotations to apply to the job and rbac for signing-key. | +| signingkey.job.enabled | bool | `true` | | +| signingkey.job.publishImage.pullPolicy | string | `"IfNotPresent"` | | +| signingkey.job.publishImage.registry | string | `"docker.io"` | | +| signingkey.job.publishImage.repository | string | `"bitnami/kubectl"` | | +| signingkey.job.publishImage.tag | string | `"latest"` | | +| signingkey.resources | object | `{}` | | +| synapse.affinity | object | `{}` | | +| synapse.annotations | object | `{}` | | +| synapse.extraCommands | list | `[]` | | +| synapse.extraEnv | list | `[]` | | +| synapse.extraVolumeMounts | list | `[]` | | +| synapse.extraVolumes | list | `[]` | | +| synapse.labels | object | `{}` | | +| synapse.livenessProbe.httpGet.path | string | `"/health"` | | +| synapse.livenessProbe.httpGet.port | string | `"http"` | | +| synapse.nodeSelector | object | `{}` | | +| synapse.podSecurityContext | object | `{}` | | +| synapse.readinessProbe.httpGet.path | string | `"/health"` | | +| synapse.readinessProbe.httpGet.port | string | `"http"` | | +| synapse.resources | object | `{}` | | +| synapse.securityContext | object | `{}` | | +| synapse.startupProbe.failureThreshold | int | `12` | | +| synapse.startupProbe.httpGet.path | string | `"/health"` | | +| synapse.startupProbe.httpGet.port | string | `"http"` | | +| synapse.strategy.type | string | `"RollingUpdate"` | | +| synapse.tolerations | list | `[]` | | +| volumePermissions.enabled | bool | `false` | | +| volumePermissions.gid | int | `666` | | +| volumePermissions.image.pullPolicy | string | `"Always"` | | +| volumePermissions.image.registry | string | `"docker.io"` | | +| volumePermissions.image.repository | string | `"library/alpine"` | | +| volumePermissions.image.tag | string | `"3.20.3"` | | +| volumePermissions.resources | object | `{}` | | +| volumePermissions.uid | int | `666` | | +| wellknown.affinity | object | `{}` | | +| wellknown.client | object | `{}` | Data to serve on .well-known/matrix/client. m.homeserver: base_url: https://matrix.example.com | +| wellknown.containerPort | int | `80` | | +| wellknown.element | object | `{}` | Data to serve on .well-known/element/element.json call: widget_url: https://call.element.io | +| wellknown.enabled | bool | `false` | | +| wellknown.env | list | `[]` | | +| wellknown.image.pullPolicy | string | `"IfNotPresent"` | | +| wellknown.image.registry | string | `"docker.io"` | | +| wellknown.image.repository | string | `"library/nginx"` | | +| wellknown.image.tag | string | `"1.27.2"` | | +| wellknown.nodeSelector | object | `{}` | | +| wellknown.podAnnotations | list | `[]` | | +| wellknown.podLabels | object | `{}` | | +| wellknown.podSecurityContext | object | `{}` | | +| wellknown.replicaCount | int | `1` | | +| wellknown.resources | object | `{}` | | +| wellknown.securityContext | object | `{}` | | +| wellknown.server | object | `{}` | The host and port combo to serve on .well-known/matrix/server. m.server: matrix.example.com:443 | +| wellknown.service.annotations | object | `{}` | | +| wellknown.service.port | int | `8080` | | +| wellknown.service.type | string | `"ClusterIP"` | | +| wellknown.tolerations | list | `[]` | | +| workers.appservice.enabled | bool | `false` | | +| workers.appservice.generic | bool | `true` | | +| workers.appservice.name | string | `"appservices"` | | +| workers.default.affinity | object | `{}` | | +| workers.default.annotations | object | `{}` | | +| workers.default.extraCommands | list | `[]` | | +| workers.default.extraEnv | list | `[]` | | +| workers.default.livenessProbe.httpGet.path | string | `"/health"` | | +| workers.default.livenessProbe.httpGet.port | string | `"metrics"` | | +| workers.default.nodeSelector | object | `{}` | | +| workers.default.podSecurityContext | object | `{}` | | +| workers.default.readinessProbe.httpGet.path | string | `"/health"` | | +| workers.default.readinessProbe.httpGet.port | string | `"metrics"` | | +| workers.default.replicaCount | int | `1` | | +| workers.default.resources | object | `{}` | | +| workers.default.securityContext | object | `{}` | | +| workers.default.startupProbe.failureThreshold | int | `6` | | +| workers.default.startupProbe.httpGet.path | string | `"/health"` | | +| workers.default.startupProbe.httpGet.port | string | `"metrics"` | | +| workers.default.strategy.type | string | `"RollingUpdate"` | | +| workers.default.tolerations | list | `[]` | | +| workers.default.volumeMounts | list | `[]` | | +| workers.default.volumes | list | `[]` | | +| workers.federation_sender.enabled | bool | `false` | | +| workers.frontend_proxy.csPaths[0] | string | `"/_matrix/client/(api/v1|r0|v3|unstable)/keys/upload"` | | +| workers.frontend_proxy.enabled | bool | `false` | | +| workers.frontend_proxy.listeners[0] | string | `"client"` | | +| workers.generic_worker.csPaths[0] | string | `"/_matrix/client/(api/v1|r0|v3)/events$"` | | +| workers.generic_worker.csPaths[10] | string | `"/_matrix/client/(r0|v3|unstable)/account/3pid$"` | | +| workers.generic_worker.csPaths[11] | string | `"/_matrix/client/(r0|v3|unstable)/account/whoami$"` | | +| workers.generic_worker.csPaths[12] | string | `"/_matrix/client/(r0|v3|unstable)/devices$"` | | +| workers.generic_worker.csPaths[13] | string | `"/_matrix/client/versions$"` | | +| workers.generic_worker.csPaths[14] | string | `"/_matrix/client/(api/v1|r0|v3|unstable)/voip/turnServer$"` | | +| workers.generic_worker.csPaths[15] | string | `"/_matrix/client/(api/v1|r0|v3|unstable)/rooms/.*/event/"` | | +| workers.generic_worker.csPaths[16] | string | `"/_matrix/client/(api/v1|r0|v3|unstable)/joined_rooms$"` | | +| workers.generic_worker.csPaths[17] | string | `"/_matrix/client/(api/v1|r0|v3|unstable)/search$"` | | +| workers.generic_worker.csPaths[18] | string | `"/_matrix/client/(r0|v3|unstable)/keys/query$"` | | +| workers.generic_worker.csPaths[19] | string | `"/_matrix/client/(r0|v3|unstable)/keys/changes$"` | | +| workers.generic_worker.csPaths[1] | string | `"/_matrix/client/(api/v1|r0|v3|unstable)/createRoom$"` | | +| workers.generic_worker.csPaths[20] | string | `"/_matrix/client/(r0|v3|unstable)/keys/claim$"` | | +| workers.generic_worker.csPaths[21] | string | `"/_matrix/client/(r0|v3|unstable)/room_keys/"` | | +| workers.generic_worker.csPaths[22] | string | `"/_matrix/client/(api/v1|r0|v3|unstable)/login$"` | | +| workers.generic_worker.csPaths[23] | string | `"/_matrix/client/(r0|v3|unstable)/register$"` | | +| workers.generic_worker.csPaths[24] | string | `"/_matrix/client/v1/register/m.login.registration_token/validity$"` | | +| workers.generic_worker.csPaths[25] | string | `"/_matrix/client/(api/v1|r0|v3|unstable)/rooms/.*/redact"` | | +| workers.generic_worker.csPaths[26] | string | `"/_matrix/client/(api/v1|r0|v3|unstable)/rooms/.*/send"` | | +| workers.generic_worker.csPaths[27] | string | `"/_matrix/client/(api/v1|r0|v3|unstable)/rooms/.*/state/"` | | +| workers.generic_worker.csPaths[28] | string | `"/_matrix/client/(api/v1|r0|v3|unstable)/rooms/.*/(join|invite|leave|ban|unban|kick)$"` | | +| workers.generic_worker.csPaths[29] | string | `"/_matrix/client/(api/v1|r0|v3|unstable)/join/"` | | +| workers.generic_worker.csPaths[2] | string | `"/_matrix/client/(api/v1|r0|v3|unstable)/publicRooms$"` | | +| workers.generic_worker.csPaths[30] | string | `"/_matrix/client/(api/v1|r0|v3|unstable)/profile/"` | | +| workers.generic_worker.csPaths[31] | string | `"/_matrix/client/(r0|v3|unstable)/user_directory/search"` | | +| workers.generic_worker.csPaths[3] | string | `"/_matrix/client/(api/v1|r0|v3|unstable)/rooms/.*/joined_members$"` | | +| workers.generic_worker.csPaths[4] | string | `"/_matrix/client/(api/v1|r0|v3|unstable)/rooms/.*/context/"` | | +| workers.generic_worker.csPaths[5] | string | `"/_matrix/client/(api/v1|r0|v3|unstable)/rooms/.*/members$"` | | +| workers.generic_worker.csPaths[6] | string | `"/_matrix/client/(api/v1|r0|v3|unstable)/rooms/.*/state$"` | | +| workers.generic_worker.csPaths[7] | string | `"/_matrix/client/v1/rooms/.*/hierarchy$"` | | +| workers.generic_worker.csPaths[8] | string | `"/_matrix/client/unstable/org.matrix.msc2716/rooms/.*/batch_send$"` | | +| workers.generic_worker.csPaths[9] | string | `"/_matrix/client/unstable/im.nheko.summary/rooms/.*/summary$"` | | +| workers.generic_worker.enabled | bool | `false` | | +| workers.generic_worker.generic | bool | `true` | | +| workers.generic_worker.listeners[0] | string | `"client"` | | +| workers.generic_worker.listeners[1] | string | `"federation"` | | +| workers.generic_worker.paths[0] | string | `"/_matrix/federation/v1/event/"` | | +| workers.generic_worker.paths[10] | string | `"/_matrix/federation/(v1|v2)/send_leave/"` | | +| workers.generic_worker.paths[11] | string | `"/_matrix/federation/(v1|v2)/invite/"` | | +| workers.generic_worker.paths[12] | string | `"/_matrix/federation/v1/event_auth/"` | | +| workers.generic_worker.paths[13] | string | `"/_matrix/federation/v1/exchange_third_party_invite/"` | | +| workers.generic_worker.paths[14] | string | `"/_matrix/federation/v1/user/devices/"` | | +| workers.generic_worker.paths[15] | string | `"/_matrix/key/v2/query"` | | +| workers.generic_worker.paths[16] | string | `"/_matrix/federation/v1/hierarchy/"` | | +| workers.generic_worker.paths[17] | string | `"/_matrix/federation/v1/send/"` | | +| workers.generic_worker.paths[1] | string | `"/_matrix/federation/v1/state/"` | | +| workers.generic_worker.paths[2] | string | `"/_matrix/federation/v1/state_ids/"` | | +| workers.generic_worker.paths[3] | string | `"/_matrix/federation/v1/backfill/"` | | +| workers.generic_worker.paths[4] | string | `"/_matrix/federation/v1/get_missing_events/"` | | +| workers.generic_worker.paths[5] | string | `"/_matrix/federation/v1/publicRooms"` | | +| workers.generic_worker.paths[6] | string | `"/_matrix/federation/v1/query/"` | | +| workers.generic_worker.paths[7] | string | `"/_matrix/federation/v1/make_join/"` | | +| workers.generic_worker.paths[8] | string | `"/_matrix/federation/v1/make_leave/"` | | +| workers.generic_worker.paths[9] | string | `"/_matrix/federation/(v1|v2)/send_join/"` | | +| workers.media_repository.csPaths[0] | string | `"/_matrix/media/.*"` | | +| workers.media_repository.csPaths[1] | string | `"/_synapse/admin/v1/purge_media_cache$"` | | +| workers.media_repository.csPaths[2] | string | `"/_synapse/admin/v1/room/.*/media"` | | +| workers.media_repository.csPaths[3] | string | `"/_synapse/admin/v1/user/.*/media"` | | +| workers.media_repository.csPaths[4] | string | `"/_synapse/admin/v1/media/"` | | +| workers.media_repository.csPaths[5] | string | `"/_synapse/admin/v1/quarantine_media/"` | | +| workers.media_repository.csPaths[6] | string | `"/_synapse/admin/v1/users/.*/media$"` | | +| workers.media_repository.enabled | bool | `false` | | +| workers.media_repository.listeners[0] | string | `"media"` | | +| workers.media_repository.paths[0] | string | `"/_matrix/media/.*"` | | +| workers.pusher.enabled | bool | `false` | | +| workers.user_dir.csPaths[0] | string | `"/_matrix/client/(api/v1|r0|v3|unstable)/user_directory/search$"` | | +| workers.user_dir.enabled | bool | `false` | | +| workers.user_dir.listeners[0] | string | `"client"` | | +| workers.user_dir.name | string | `"userdir"` | | + +Autogenerated from chart metadata using [helm-docs](https://github.com/norwoodj/helm-docs) -- 2.45.3 From 99db5b44efa9b1b920e3cbf448c7f29dab8b6fc5 Mon Sep 17 00:00:00 2001 From: WrenIX Date: Tue, 12 Nov 2024 12:15:14 +0100 Subject: [PATCH 047/134] fix(miniserve): add README in markdown --- miniserve/Chart.yaml | 2 +- miniserve/README.adoc | 2 +- miniserve/README.md | 119 ++++++++++++++++++++++++++++++++++++++++++ 3 files changed, 121 insertions(+), 2 deletions(-) create mode 100644 miniserve/README.md diff --git a/miniserve/Chart.yaml b/miniserve/Chart.yaml index ce99ae8..fd683b0 100644 --- a/miniserve/Chart.yaml +++ b/miniserve/Chart.yaml @@ -3,7 +3,7 @@ name: miniserve description: A Helm chart for Kubernetes icon: https://raw.githubusercontent.com/svenstaro/miniserve/master/data/logo.svg type: application -version: 0.4.2 +version: "0.4.3" # renovate: image=docker.io/svenstaro/miniserve appVersion: "0.28.0" maintainers: diff --git a/miniserve/README.adoc b/miniserve/README.adoc index cd2b98f..c0f3d20 100644 --- a/miniserve/README.adoc +++ b/miniserve/README.adoc @@ -2,7 +2,7 @@ = miniserve -image::https://img.shields.io/badge/Version-0.4.2-informational?style=flat-square[Version: 0.4.2] +image::https://img.shields.io/badge/Version-0.4.3-informational?style=flat-square[Version: 0.4.3] image::https://img.shields.io/badge/Version-application-informational?style=flat-square[Type: application] image::https://img.shields.io/badge/AppVersion-0.28.0-informational?style=flat-square[AppVersion: 0.28.0] == Maintainers diff --git a/miniserve/README.md b/miniserve/README.md new file mode 100644 index 0000000..dc33a2b --- /dev/null +++ b/miniserve/README.md @@ -0,0 +1,119 @@ +--- +title: "miniserve" + +description: "A Helm chart for Kubernetes" + +--- + +# miniserve + +![Version: 0.4.3](https://img.shields.io/badge/Version-0.4.3-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 0.28.0](https://img.shields.io/badge/AppVersion-0.28.0-informational?style=flat-square) + +A Helm chart for Kubernetes + +## Maintainers + +| Name | Email | Url | +| ---- | ------ | --- | +| WrenIX | | | + +## Usage + +Helm must be installed and setup to your kubernetes cluster to use the charts. +Refer to Helm's [documentation](https://helm.sh/docs) to get started. +Once Helm has been set up correctly, fetch the charts as follows: + +```bash +helm pull oci://codeberg.org/wrenix/helm-charts/miniserve +``` + +You can install a chart release using the following command: + +```bash +helm install miniserve-release oci://codeberg.org/wrenix/helm-charts/miniserve --values values.yaml +``` + +To uninstall a chart release use `helm`'s delete command: + +```bash +helm uninstall miniserve-release +``` + +## Values + +| Key | Type | Default | Description | +|-----|------|---------|-------------| +| affinity | object | `{}` | | +| autoscaling.enabled | bool | `false` | | +| autoscaling.maxReplicas | int | `100` | | +| autoscaling.minReplicas | int | `1` | | +| autoscaling.targetCPUUtilizationPercentage | int | `80` | | +| data.args | list | `[]` | used for commandline flags | +| data.auth | string | `""` | Set authentication. Currently supported formats: username:password, username:sha256:hash, username:sha512:hash (e.g. joe:123, joe:sha256:a665a45920422f9d417e4867efdc4fb8a04a1f3fff1fa07e998e86f7f7a27ae3) | +| data.colorScheme | string | `"squirrel"` | Default color scheme | +| data.colorSchemeDark | string | `"archlinux"` | Default color scheme | +| data.dirsFirst | bool | `true` | List directories first | +| data.enable.tar | bool | `false` | Enable uncompressed tar archive generation | +| data.enable.tarGZ | bool | `false` | Enable gz-compressed tar archive generation | +| data.enable.zip | bool | `false` | Enable zip archive generation WARNING: Zipping large directories can result in out-of-memory exception because zip generation is done in memory and cannot be sent on the fly | +| data.hidden | bool | `false` | Show hidden files | +| data.hideThemeSelector | bool | `false` | Hide theme selector | +| data.hideVersionFooter | bool | `true` | Hide version footer | +| data.index | string | `"index.html"` | Normally, when miniserve serves a directory, it creates a listing for that directory. However, if a directory contains this file, miniserve will serve that file instead. | +| data.noSymlinks | bool | `false` | Hide symlinks in listing and prevent them from being followed | +| data.path | string | `"/data"` | Which path to serve | +| data.prettyURLs | bool | `false` | Activate Pretty URLs mode | +| data.qrcode | bool | `false` | Enable QR code display | +| data.readme | bool | `false` | Enable README.md rendering in directories | +| data.routePrefix | string | `""` | Use a specific route prefix | +| data.showSymlinkInfo | bool | `false` | Visualize symlinks in directory listing | +| data.showWGETFooter | bool | `true` | If enabled, display a wget command to recursively download the current directory | +| data.spa | bool | `false` | Activate SPA (Single Page Application) mode | +| data.title | string | `""` | Shown instead of host in page title and heading | +| data.upload.allowedDir | string | `""` | Enable file uploading (and optionally specify for which directory) | +| data.upload.mediaType | string | `""` | Specify uploadable media types: possible values image, audio, video | +| data.upload.mkdir | bool | `false` | Enable creating directories | +| data.upload.overwriteFiles | bool | `false` | Enable overriding existing files during file upload | +| data.upload.rawMediaType | string | `""` | Directly specify the uploadable media type expression | +| data.verbose | bool | `false` | Be verbose, includes emitting access logs | +| fullnameOverride | string | `""` | | +| image.pullPolicy | string | `"IfNotPresent"` | | +| image.repository | string | `"docker.io/svenstaro/miniserve"` | | +| image.tag | string | `""` | | +| imagePullSecrets | list | `[]` | | +| ingress.annotations | object | `{}` | | +| ingress.className | string | `""` | | +| ingress.enabled | bool | `false` | | +| ingress.hosts[0].host | string | `"chart-example.local"` | | +| ingress.hosts[0].paths[0].path | string | `"/"` | | +| ingress.hosts[0].paths[0].pathType | string | `"ImplementationSpecific"` | | +| ingress.tls | list | `[]` | | +| nameOverride | string | `""` | | +| networkPolicy.egress.enabled | bool | `true` | activate egress no networkpolicy | +| networkPolicy.egress.extra | list | `[]` | egress rules | +| networkPolicy.enabled | bool | `false` | | +| networkPolicy.ingress.http | list | `[]` | ingress for http port (e.g. ingress-controller) | +| nodeSelector | object | `{}` | | +| persistence.accessMode | string | `"ReadWriteOnce"` | | +| persistence.annotations | object | `{}` | | +| persistence.enabled | bool | `false` | | +| persistence.existingClaim | string | `nil` | A manually managed Persistent Volume and Claim Requires persistence.enabled: true If defined, PVC must be created manually before volume will be bound | +| persistence.hostPath | string | `nil` | | +| persistence.size | string | `"1Gi"` | | +| persistence.storageClass | string | `nil` | data Persistent Volume Storage Class If defined, storageClassName: If set to "-", storageClassName: "", which disables dynamic provisioning If undefined (the default) or set to null, no storageClassName spec is set, choosing the default provisioner. (gp2 on AWS, standard on GKE, AWS & OpenStack) | +| podAnnotations | object | `{}` | | +| podLabels | object | `{}` | | +| podSecurityContext | object | `{}` | | +| replicaCount | int | `1` | | +| resources.limits.memory | string | `"256Mi"` | | +| resources.requests.cpu | string | `"80m"` | | +| resources.requests.memory | string | `"128Mi"` | | +| securityContext | object | `{}` | | +| service.port | int | `8080` | | +| service.type | string | `"ClusterIP"` | | +| serviceAccount.annotations | object | `{}` | Annotations to add to the service account | +| serviceAccount.create | bool | `true` | Specifies whether a service account should be created | +| serviceAccount.name | string | `""` | If not set and create is true, a name is generated using the fullname template | +| tolerations | list | `[]` | | + +Autogenerated from chart metadata using [helm-docs](https://github.com/norwoodj/helm-docs) -- 2.45.3 From ce5a2c0fdb000fe9e0e8a3883add453b60dd0b30 Mon Sep 17 00:00:00 2001 From: WrenIX Date: Tue, 12 Nov 2024 12:15:16 +0100 Subject: [PATCH 048/134] fix(monitoring): add README in markdown --- monitoring/Chart.yaml | 2 +- monitoring/README.adoc | 2 +- monitoring/README.md | 73 ++++++++++++++++++++++++++++++++++++++++++ 3 files changed, 75 insertions(+), 2 deletions(-) create mode 100644 monitoring/README.md diff --git a/monitoring/Chart.yaml b/monitoring/Chart.yaml index b9a7c26..f6afb12 100644 --- a/monitoring/Chart.yaml +++ b/monitoring/Chart.yaml @@ -3,7 +3,7 @@ name: monitoring description: Deploy helper for probes and scrapeconfig of prometheus-operator icon: https://prometheus.io/assets/favicons/android-chrome-192x192.png type: application -version: 0.2.0 +version: "0.2.1" maintainers: - name: WrenIX url: https://wrenix.eu diff --git a/monitoring/README.adoc b/monitoring/README.adoc index 8747c51..3ccba34 100644 --- a/monitoring/README.adoc +++ b/monitoring/README.adoc @@ -2,7 +2,7 @@ = monitoring -image::https://img.shields.io/badge/Version-0.2.0-informational?style=flat-square[Version: 0.2.0] +image::https://img.shields.io/badge/Version-0.2.1-informational?style=flat-square[Version: 0.2.1] image::https://img.shields.io/badge/Version-application-informational?style=flat-square[Type: application] == Maintainers diff --git a/monitoring/README.md b/monitoring/README.md new file mode 100644 index 0000000..5378712 --- /dev/null +++ b/monitoring/README.md @@ -0,0 +1,73 @@ +--- +title: "monitoring" + +description: "Deploy helper for probes and scrapeconfig of prometheus-operator" + +--- + +# monitoring + +![Version: 0.2.1](https://img.shields.io/badge/Version-0.2.1-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) + +Deploy helper for probes and scrapeconfig of prometheus-operator + +## Maintainers + +| Name | Email | Url | +| ---- | ------ | --- | +| WrenIX | | | + +## Usage + +Helm must be installed and setup to your kubernetes cluster to use the charts. +Refer to Helm's [documentation](https://helm.sh/docs) to get started. +Once Helm has been set up correctly, fetch the charts as follows: + +```bash +helm pull oci://codeberg.org/wrenix/helm-charts/monitoring +``` + +You can install a chart release using the following command: + +```bash +helm install monitoring-release oci://codeberg.org/wrenix/helm-charts/monitoring --values values.yaml +``` + +To uninstall a chart release use `helm`'s delete command: + +```bash +helm uninstall monitoring-release +``` + +## Values + +| Key | Type | Default | Description | +|-----|------|---------|-------------| +| prober | list | `[{"ipv4":true,"ipv6":true,"name":"local","spec":{"path":"/probe","url":"prometheus-blackbox-exporter:9115"}}]` | prober for each the following probes are created (multiside probes) | +| prober[0] | object | `{"ipv4":true,"ipv6":true,"name":"local","spec":{"path":"/probe","url":"prometheus-blackbox-exporter:9115"}}` | name of prober | +| prober[0].ipv4 | bool | `true` | use this prober for ipv4 probes (default: true) | +| prober[0].ipv6 | bool | `true` | use this prober for ipv6 probes (default: true) | +| prober[0].spec | object | `{"path":"/probe","url":"prometheus-blackbox-exporter:9115"}` | spec of prober (like url, path, scheme ...) | +| probes[0] | object | `{"groups":{"framasoft":["framasoft.org","degooglisons-internet.org","framapiaf.org","framatube.org"]},"ipv4":true,"ipv6":true,"module":"http_2xx","name":"http"}` | probe module (suffix with _ipv4 and ipv6 if enabled) | +| probes[0].groups | object | `{"framasoft":["framasoft.org","degooglisons-internet.org","framapiaf.org","framatube.org"]}` | groups with targets | +| probes[0].ipv4 | bool | `true` | setup one for ipv4 (see module and his suffix - default: true) | +| probes[0].ipv6 | bool | `true` | setup one for ipv6 (see module and his suffix - default: true) | +| probes[0].name | string | `"http"` | name of probe | +| probes[1].groups | object | `{"digitalcourage":["digitalcourage.de","nuudel.digitalcourage.de","digitalcourage.social"]}` | groups with targets | +| probes[1].ipv4 | bool | `true` | setup one for ipv4 (see module and his suffix - default: true) | +| probes[1].ipv6 | bool | `false` | setup one for ipv6 (see module and his suffix - default: true) | +| probes[1].module | string | `"http_2xx"` | | +| probes[1].name | string | `"http-ipv4"` | name of probe | +| prometheus.probe.labels | object | `{"prometheus":"default"}` | labels on Probe | +| prometheus.scrape.labels | object | `{"prometheus":"default"}` | labels on ScrapeConfig | +| scrapes[0] | object | `{"groups":{"de":["ber.de.local:9100","fra.de.local:9100","ham.de.local:9100"],"ie":["dub.ie.local:9100","ork.ie.local:9100"]},"name":"nodes"}` | name of scrape | +| scrapes[0].groups | object | `{"de":["ber.de.local:9100","fra.de.local:9100","ham.de.local:9100"],"ie":["dub.ie.local:9100","ork.ie.local:9100"]}` | groups with targets | +| scrapes[1].auth.password | string | `nil` | basic auth password | +| scrapes[1].auth.token | string | `nil` | bearer token | +| scrapes[1].auth.username | string | `nil` | basic auth username | +| scrapes[1].groups | object | `{"de":["fra.de.s3.local:9000","ham.de.s3.local:9000"],"ie":["dub.ie.s3.local:9000"]}` | groups with targets | +| scrapes[1].metricsPath | string | `"/minio/v2/metrics/node"` | metric path on scrape | +| scrapes[1].name | string | `"minio"` | | +| scrapes[1].scheme | string | `"http"` | schema on scrape | + +Autogenerated from chart metadata using [helm-docs](https://github.com/norwoodj/helm-docs) -- 2.45.3 From 4a22a672c518a8e8cff5e6e63793ca00a4083b82 Mon Sep 17 00:00:00 2001 From: WrenIX Date: Tue, 12 Nov 2024 12:15:19 +0100 Subject: [PATCH 049/134] fix(ntfy): add README in markdown --- ntfy/Chart.yaml | 2 +- ntfy/README.adoc | 2 +- ntfy/README.md | 157 +++++++++++++++++++++++++++++++++++++++++++++++ 3 files changed, 159 insertions(+), 2 deletions(-) create mode 100644 ntfy/README.md diff --git a/ntfy/Chart.yaml b/ntfy/Chart.yaml index b8721e9..2cacbf0 100644 --- a/ntfy/Chart.yaml +++ b/ntfy/Chart.yaml @@ -3,7 +3,7 @@ name: ntfy description: A Helm chart for Kubernetes icon: https://github.com/binwiederhier/ntfy/raw/main/web/public/static/images/pwa-512x512.png type: application -version: 0.4.4 +version: "0.4.5" # renovate: image=docker.io/binwiederhier/ntfy appVersion: "2.11.0" maintainers: diff --git a/ntfy/README.adoc b/ntfy/README.adoc index 987cb13..67269d2 100644 --- a/ntfy/README.adoc +++ b/ntfy/README.adoc @@ -2,7 +2,7 @@ = ntfy -image::https://img.shields.io/badge/Version-0.4.4-informational?style=flat-square[Version: 0.4.4] +image::https://img.shields.io/badge/Version-0.4.5-informational?style=flat-square[Version: 0.4.5] image::https://img.shields.io/badge/Version-application-informational?style=flat-square[Type: application] image::https://img.shields.io/badge/AppVersion-2.11.0-informational?style=flat-square[AppVersion: 2.11.0] == Maintainers diff --git a/ntfy/README.md b/ntfy/README.md new file mode 100644 index 0000000..b8348bf --- /dev/null +++ b/ntfy/README.md @@ -0,0 +1,157 @@ +--- +title: "ntfy" + +description: "A Helm chart for Kubernetes" + +--- + +# ntfy + +![Version: 0.4.5](https://img.shields.io/badge/Version-0.4.5-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 2.11.0](https://img.shields.io/badge/AppVersion-2.11.0-informational?style=flat-square) + +A Helm chart for Kubernetes + +## Maintainers + +| Name | Email | Url | +| ---- | ------ | --- | +| WrenIX | | | + +## Usage + +Helm must be installed and setup to your kubernetes cluster to use the charts. +Refer to Helm's [documentation](https://helm.sh/docs) to get started. +Once Helm has been set up correctly, fetch the charts as follows: + +```bash +helm pull oci://codeberg.org/wrenix/helm-charts/ntfy +``` + +You can install a chart release using the following command: + +```bash +helm install ntfy-release oci://codeberg.org/wrenix/helm-charts/ntfy --values values.yaml +``` + +To uninstall a chart release use `helm`'s delete command: + +```bash +helm uninstall ntfy-release +``` + +## Values + +| Key | Type | Default | Description | +|-----|------|---------|-------------| +| affinity | object | `{}` | | +| autoscaling.enabled | bool | `false` | | +| autoscaling.maxReplicas | int | `100` | | +| autoscaling.minReplicas | int | `1` | | +| autoscaling.targetCPUUtilizationPercentage | int | `80` | | +| env | list | `[]` | set env in container for usage Environment variables | +| envFrom | list | `[]` | set envFrom in container for usage of ConfigMaps or Secrets as a bunch of Environment variables | +| fullnameOverride | string | `""` | | +| grafana.dashboards.annotations | object | `{}` | | +| grafana.dashboards.enabled | bool | `false` | | +| grafana.dashboards.labels.grafana_dashboard | string | `"1"` | | +| image.pullPolicy | string | `"IfNotPresent"` | | +| image.repository | string | `"binwiederhier/ntfy"` | | +| image.tag | string | `""` | | +| imagePullSecrets | list | `[]` | | +| ingress.annotations | object | `{}` | | +| ingress.className | string | `""` | | +| ingress.enabled | bool | `false` | | +| ingress.hosts[0].host | string | `"chart-example.local"` | | +| ingress.hosts[0].paths[0].path | string | `"/"` | | +| ingress.hosts[0].paths[0].pathType | string | `"ImplementationSpecific"` | | +| ingress.tls | list | `[]` | | +| kubectl.image | object | `{"pullPolicy":"IfNotPresent","registry":"docker.io","repository":"bitnami/kubectl","tag":"1.31.2"}` | image needed for setup (store generated VAPID / WebPush keys) | +| nameOverride | string | `""` | | +| networkPolicy.egress.enabled | bool | `true` | activate egress no networkpolicy | +| networkPolicy.egress.extra | list | `[]` | egress rules | +| networkPolicy.enabled | bool | `false` | | +| networkPolicy.ingress.http | list | `[]` | ingress for http port (e.g. ingress-controller) | +| networkPolicy.ingress.metrics | list | `[]` | ingress for metrics port (e.g. prometheus) | +| networkPolicy.ingress.smtp | list | `[]` | ingress for smtp | +| nodeSelector | object | `{}` | | +| ntfy.attachment.cacheDir | string | `nil` | | +| ntfy.attachment.expireDuration | string | `"3h"` | | +| ntfy.attachment.sizeLimit.file | string | `"15M"` | | +| ntfy.attachment.sizeLimit.total | string | `"5G"` | | +| ntfy.auth.defaultAccess | string | `"read-write"` | | +| ntfy.auth.file | string | `nil` | | +| ntfy.auth.startupQueries | string | `nil` | | +| ntfy.baseURL | string | `"https://ntfy.example.org"` | | +| ntfy.behindProxy | bool | `true` | | +| ntfy.cache.batch.size | int | `0` | | +| ntfy.cache.batch.timeout | string | `"0s"` | | +| ntfy.cache.duration | string | `"12h"` | | +| ntfy.cache.file | string | `nil` | | +| ntfy.cache.startupQueries | string | `nil` | | +| ntfy.enableLogin | bool | `false` | | +| ntfy.enableReservations | bool | `false` | | +| ntfy.enableSignup | bool | `false` | | +| ntfy.firebaseKeyFile | string | `nil` | | +| ntfy.globalTopicLimit | int | `15000` | | +| ntfy.keepaliveInterval | string | `"45s"` | | +| ntfy.listen.certFile | string | `nil` | | +| ntfy.listen.http | string | `":80"` | | +| ntfy.listen.https | string | `nil` | | +| ntfy.listen.keyFile | string | `nil` | | +| ntfy.listen.unix | string | `nil` | | +| ntfy.listen.unixMode | string | `nil` | | +| ntfy.managerInterval | string | `"1m"` | | +| ntfy.metrics.enable | bool | `true` | | +| ntfy.metrics.port | int | `9000` | | +| ntfy.smtp.sender.addr | string | `nil` | | +| ntfy.smtp.sender.from | string | `nil` | | +| ntfy.smtp.sender.pass | string | `nil` | | +| ntfy.smtp.sender.user | string | `nil` | | +| ntfy.smtp.server.addrPrefix | string | `nil` | | +| ntfy.smtp.server.domain | string | `nil` | | +| ntfy.upstreamBaseURL | string | `"https://ntfy.sh"` | | +| ntfy.visitor.attachment.dailyBandwidthLimit | string | `"500M"` | | +| ntfy.visitor.attachment.totalSizeLimit | string | `"100M"` | | +| ntfy.visitor.email.limitBurst | int | `16` | | +| ntfy.visitor.email.limitReplenish | string | `"1h"` | | +| ntfy.visitor.request.limitBurst | int | `60` | | +| ntfy.visitor.request.limitExemptHosts | string | `""` | | +| ntfy.visitor.request.limitReplenish | string | `"5s"` | | +| ntfy.visitor.subscriberRateLimiting | bool | `false` | | +| ntfy.visitor.subscriptionLimit | int | `30` | | +| ntfy.webPush.emailAddress | string | `""` | | +| ntfy.webPush.file | string | `"/data/webpush.db"` | | +| ntfy.webPush.keys.create | bool | `false` | | +| ntfy.webPush.keys.private | string | `nil` | | +| ntfy.webPush.keys.public | string | `nil` | | +| ntfy.webRoot | string | `"app"` | | +| persistence.accessMode | string | `"ReadWriteOnce"` | | +| persistence.annotations | object | `{}` | | +| persistence.enabled | bool | `false` | | +| persistence.existingClaim | string | `nil` | A manually managed Persistent Volume and Claim Requires persistence.enabled: true If defined, PVC must be created manually before volume will be bound | +| persistence.hostPath | string | `nil` | Create a PV on Node with given hostPath storageClass has to be manual | +| persistence.size | string | `"1Gi"` | | +| persistence.storageClass | string | `nil` | data Persistent Volume Storage Class If defined, storageClassName: If set to "-", storageClassName: "", which disables dynamic provisioning If undefined (the default) or set to null, no storageClassName spec is set, choosing the default provisioner. (gp2 on AWS, standard on GKE, AWS & OpenStack) | +| podAnnotations | object | `{}` | | +| podLabels | object | `{}` | | +| podSecurityContext | object | `{}` | set securityContext on pod level | +| prometheus.rules.additionalRules | list | `[]` | | +| prometheus.rules.enabled | bool | `false` | | +| prometheus.rules.labels | object | `{}` | | +| prometheus.servicemonitor.enabled | bool | `false` | | +| prometheus.servicemonitor.labels | object | `{}` | | +| replicaCount | int | `1` | | +| resources | object | `{}` | | +| securityContext | object | `{}` | set securityContext on container level | +| service.http.port | int | `80` | | +| service.http.type | string | `"ClusterIP"` | | +| service.smtp.enabled | bool | `false` | | +| service.smtp.port | int | `25` | | +| service.smtp.type | string | `"LoadBalancer"` | | +| serviceAccount.annotations | object | `{}` | | +| serviceAccount.create | bool | `true` | | +| serviceAccount.name | string | `""` | | +| tolerations | list | `[]` | | +| updateStrategy.type | string | `"Recreate"` | | + +Autogenerated from chart metadata using [helm-docs](https://github.com/norwoodj/helm-docs) -- 2.45.3 From 4e6beb2b62f9b51fbe8995c0e45671f103d48ed6 Mon Sep 17 00:00:00 2001 From: WrenIX Date: Tue, 12 Nov 2024 12:15:21 +0100 Subject: [PATCH 050/134] fix(postgresql): add README in markdown --- postgresql/Chart.yaml | 2 +- postgresql/README.adoc | 2 +- postgresql/README.md | 90 ++++++++++++++++++++++++++++++++++++++++++ 3 files changed, 92 insertions(+), 2 deletions(-) create mode 100644 postgresql/README.md diff --git a/postgresql/Chart.yaml b/postgresql/Chart.yaml index c1f0079..49b3dab 100644 --- a/postgresql/Chart.yaml +++ b/postgresql/Chart.yaml @@ -4,7 +4,7 @@ name: "postgresql" description: "A Helm chart for running PostgreSQL (Postgres) database" icon: https://wiki.postgresql.org/images/a/a4/PostgreSQL_logo.3colors.svg type: "application" -version: "0.2.0" +version: "0.2.1" # renovate: image=docker.io/library/postgres appVersion: "17.0-alpine" maintainers: diff --git a/postgresql/README.adoc b/postgresql/README.adoc index 74cbb7a..0fa7a1e 100644 --- a/postgresql/README.adoc +++ b/postgresql/README.adoc @@ -2,7 +2,7 @@ = postgresql -image::https://img.shields.io/badge/Version-0.2.0-informational?style=flat-square[Version: 0.2.0] +image::https://img.shields.io/badge/Version-0.2.1-informational?style=flat-square[Version: 0.2.1] image::https://img.shields.io/badge/Version-application-informational?style=flat-square[Type: application] image::https://img.shields.io/badge/AppVersion-17.0-alpine-informational?style=flat-square[AppVersion: 17.0-alpine] == Maintainers diff --git a/postgresql/README.md b/postgresql/README.md new file mode 100644 index 0000000..509d5ee --- /dev/null +++ b/postgresql/README.md @@ -0,0 +1,90 @@ +--- +title: "postgresql" + +description: "A Helm chart for running PostgreSQL (Postgres) database" + +--- + +# postgresql + +![Version: 0.2.1](https://img.shields.io/badge/Version-0.2.1-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 17.0-alpine](https://img.shields.io/badge/AppVersion-17.0--alpine-informational?style=flat-square) + +A Helm chart for running PostgreSQL (Postgres) database + +## Maintainers + +| Name | Email | Url | +| ---- | ------ | --- | +| WrenIX | | | + +## Usage + +Helm must be installed and setup to your kubernetes cluster to use the charts. +Refer to Helm's [documentation](https://helm.sh/docs) to get started. +Once Helm has been set up correctly, fetch the charts as follows: + +```bash +helm pull oci://codeberg.org/wrenix/helm-charts/postgresql +``` + +You can install a chart release using the following command: + +```bash +helm install postgresql-release oci://codeberg.org/wrenix/helm-charts/postgresql --values values.yaml +``` + +To uninstall a chart release use `helm`'s delete command: + +```bash +helm uninstall postgresql-release +``` + +## Values + +| Key | Type | Default | Description | +|-----|------|---------|-------------| +| affinity | object | `{}` | | +| autoupgrade.enabled | bool | `true` | | +| autoupgrade.image.pullPolicy | string | `"IfNotPresent"` | | +| autoupgrade.image.registry | string | `"docker.io"` | | +| autoupgrade.image.repository | string | `"pgautoupgrade/pgautoupgrade"` | | +| autoupgrade.image.tag | string | `"17-alpine"` | | +| autoupgrade.securityContext | object | `{}` | | +| fullnameOverride | string | `""` | | +| global.image.pullPolicy | string | `nil` | if set it will overwrite all pullPolicy | +| global.image.registry | string | `nil` | if set it will overwrite all registry entries | +| image.pullPolicy | string | `"IfNotPresent"` | | +| image.registry | string | `"docker.io"` | | +| image.repository | string | `"library/postgres"` | | +| image.tag | string | `""` | | +| imagePullSecrets | list | `[]` | | +| job.annotations | object | `{"helm.sh/hook":"post-install,post-upgrade","helm.sh/hook-delete-policy":"before-hook-creation,hook-succeeded"}` | Annotations (usefull to delete job by helm afterwards) | +| job.databases | object | `{}` | Bootstrap databases into postgresql server. When databases already exists, they will stay untouched. databases: "name_of_database": owner: "existing_user_which_will_get_grant" additionalParams: "" # Optional | +| job.enabled | bool | `true` | Enable database bootstrapping. | +| job.retries | int | `60` | Amount of retries while waiting for postgresql server is available. | +| job.users | object | `{}` | Bootstrap users into postgresql server. When users already exists, they will stay untouched. users: username: RandomPassword0#" | +| job.wait | int | `5` | Time to wait in each wait in each iteration until postgresql server is available. | +| nameOverride | string | `""` | | +| nodeSelector | object | `{}` | | +| persistence.accessMode | string | `"ReadWriteOnce"` | | +| persistence.annotations | object | `{}` | | +| persistence.enabled | bool | `true` | | +| persistence.existingClaim | string | `nil` | A manually managed Persistent Volume and Claim Requires persistence.enabled: true If defined, PVC must be created manually before volume will be bound | +| persistence.hostPath | string | `nil` | Do not create an PVC, direct use hostPath in Pod | +| persistence.size | string | `"1Gi"` | | +| persistence.storageClass | string | `nil` | Persistent Volume Storage Class If defined, storageClassName: If set to "-", storageClassName: "", which disables dynamic provisioning If undefined (the default) or set to null, no storageClassName spec is set, choosing the default provisioner. (gp2 on AWS, standard on GKE, AWS & OpenStack) | +| podAnnotations | object | `{}` | | +| podLabels | object | `{}` | | +| podSecurityContext | object | `{}` | | +| postgres.password | string | `"SUPERSTRONGPW"` | Database password. | +| postgres.user | string | `"postgres"` | Database user. | +| resources | object | `{}` | | +| securityContext | object | `{}` | | +| service.port | int | `5432` | | +| service.type | string | `"ClusterIP"` | | +| serviceAccount.annotations | object | `{}` | | +| serviceAccount.create | bool | `false` | | +| serviceAccount.name | string | `""` | | +| tolerations | list | `[]` | | + +Autogenerated from chart metadata using [helm-docs](https://github.com/norwoodj/helm-docs) -- 2.45.3 From 5bc85aca1edad7156666f4cba7337b577105d092 Mon Sep 17 00:00:00 2001 From: WrenIX Date: Tue, 12 Nov 2024 12:15:24 +0100 Subject: [PATCH 051/134] fix(speedtest-exporter): add README in markdown --- speedtest-exporter/Chart.yaml | 2 +- speedtest-exporter/README.adoc | 2 +- speedtest-exporter/README.md | 98 ++++++++++++++++++++++++++++++++++ 3 files changed, 100 insertions(+), 2 deletions(-) create mode 100644 speedtest-exporter/README.md diff --git a/speedtest-exporter/Chart.yaml b/speedtest-exporter/Chart.yaml index 869ba45..6f0c203 100644 --- a/speedtest-exporter/Chart.yaml +++ b/speedtest-exporter/Chart.yaml @@ -3,7 +3,7 @@ name: speedtest-exporter description: icon: https://b.cdnst.net/images/favicons/favicon-180.png type: application -version: 0.2.0 +version: "0.2.1" # renovate: image=ghcr.io/miguelndecarvalho/speedtest-exporter appVersion: "3.5.4" maintainers: diff --git a/speedtest-exporter/README.adoc b/speedtest-exporter/README.adoc index 18c62b9..3c767c6 100644 --- a/speedtest-exporter/README.adoc +++ b/speedtest-exporter/README.adoc @@ -2,7 +2,7 @@ = speedtest-exporter -image::https://img.shields.io/badge/Version-0.2.0-informational?style=flat-square[Version: 0.2.0] +image::https://img.shields.io/badge/Version-0.2.1-informational?style=flat-square[Version: 0.2.1] image::https://img.shields.io/badge/Version-application-informational?style=flat-square[Type: application] image::https://img.shields.io/badge/AppVersion-3.5.4-informational?style=flat-square[AppVersion: 3.5.4] == Maintainers diff --git a/speedtest-exporter/README.md b/speedtest-exporter/README.md new file mode 100644 index 0000000..0c88a0f --- /dev/null +++ b/speedtest-exporter/README.md @@ -0,0 +1,98 @@ +--- +title: "speedtest-exporter" + +--- + +# speedtest-exporter + +![Version: 0.2.1](https://img.shields.io/badge/Version-0.2.1-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 3.5.4](https://img.shields.io/badge/AppVersion-3.5.4-informational?style=flat-square) + +## Maintainers + +| Name | Email | Url | +| ---- | ------ | --- | +| WrenIX | | | + +## Usage + +Helm must be installed and setup to your kubernetes cluster to use the charts. +Refer to Helm's [documentation](https://helm.sh/docs) to get started. +Once Helm has been set up correctly, fetch the charts as follows: + +```bash +helm pull oci://codeberg.org/wrenix/helm-charts/speedtest-exporter +``` + +You can install a chart release using the following command: + +```bash +helm install speedtest-exporter-release oci://codeberg.org/wrenix/helm-charts/speedtest-exporter --values values.yaml +``` + +To uninstall a chart release use `helm`'s delete command: + +```bash +helm uninstall speedtest-exporter-release +``` + +## Values + +| Key | Type | Default | Description | +|-----|------|---------|-------------| +| affinity | object | `{}` | | +| autoscaling.enabled | bool | `false` | | +| autoscaling.maxReplicas | int | `100` | | +| autoscaling.minReplicas | int | `1` | | +| autoscaling.targetCPUUtilizationPercentage | int | `80` | | +| config.cacheFor | int | `0` | cache result for seconds | +| config.server | string | `nil` | speedtest-serverid | +| config.timeout | int | `90` | timeout of speedtest | +| fullnameOverride | string | `""` | | +| global.image.pullPolicy | string | `nil` | if set it will overwrite all pullPolicy | +| global.image.registry | string | `nil` | if set it will overwrite all registry entries | +| grafana.dashboards.annotations | object | `{}` | | +| grafana.dashboards.enabled | bool | `false` | | +| grafana.dashboards.labels.grafana_dashboard | string | `"1"` | | +| image.pullPolicy | string | `"IfNotPresent"` | | +| image.registry | string | `"ghcr.io"` | | +| image.repository | string | `"miguelndecarvalho/speedtest-exporter"` | | +| image.tag | string | `""` | | +| imagePullSecrets | list | `[]` | | +| ingress.annotations | object | `{}` | | +| ingress.className | string | `""` | | +| ingress.enabled | bool | `false` | | +| ingress.hosts[0].host | string | `"chart-example.local"` | | +| ingress.hosts[0].paths[0].path | string | `"/"` | | +| ingress.hosts[0].paths[0].pathType | string | `"ImplementationSpecific"` | | +| ingress.tls | list | `[]` | | +| livenessProbe.httpGet.path | string | `"/"` | | +| livenessProbe.httpGet.port | string | `"http"` | | +| nameOverride | string | `""` | | +| networkPolicy.egress.enabled | bool | `false` | activate egress no networkpolicy | +| networkPolicy.egress.extra | list | `[]` | egress rules | +| networkPolicy.enabled | bool | `false` | | +| networkPolicy.ingress.http | list | `[]` | ingress for http port (e.g. ingress-controller, prometheus) | +| nodeSelector | object | `{}` | | +| podAnnotations | object | `{}` | | +| podLabels | object | `{}` | | +| podSecurityContext | object | `{}` | | +| prometheus.servicemonitor.enabled | bool | `false` | | +| prometheus.servicemonitor.interval | string | `"1h"` | interval | +| prometheus.servicemonitor.labels | object | `{}` | | +| prometheus.servicemonitor.scrapeTimeout | string | `"2m"` | scrape timeout | +| readinessProbe.httpGet.path | string | `"/"` | | +| readinessProbe.httpGet.port | string | `"http"` | | +| replicaCount | int | `1` | | +| resources | object | `{}` | | +| securityContext | object | `{}` | | +| service.port | int | `80` | | +| service.type | string | `"ClusterIP"` | | +| serviceAccount.annotations | object | `{}` | | +| serviceAccount.automount | bool | `true` | | +| serviceAccount.create | bool | `true` | | +| serviceAccount.name | string | `""` | | +| tolerations | list | `[]` | | +| volumeMounts | list | `[]` | | +| volumes | list | `[]` | | + +Autogenerated from chart metadata using [helm-docs](https://github.com/norwoodj/helm-docs) -- 2.45.3 From 0d12449bd8725d9c4caa85b34224667285e28cb0 Mon Sep 17 00:00:00 2001 From: WrenIX Date: Tue, 12 Nov 2024 12:24:16 +0100 Subject: [PATCH 052/134] fix(alertmanager-matrix): add README in markdown --- alertmanager-matrix/Chart.yaml | 2 +- alertmanager-matrix/README.adoc | 2 +- alertmanager-matrix/README.md | 110 ++++++++++++++++++++++++++++++++ 3 files changed, 112 insertions(+), 2 deletions(-) create mode 100644 alertmanager-matrix/README.md diff --git a/alertmanager-matrix/Chart.yaml b/alertmanager-matrix/Chart.yaml index b130833..2195783 100644 --- a/alertmanager-matrix/Chart.yaml +++ b/alertmanager-matrix/Chart.yaml @@ -2,7 +2,7 @@ apiVersion: v2 name: alertmanager-matrix description: Service for managing and receiving Alertmanager alerts on Matrix type: application -version: 0.1.10 +version: "0.1.11" # renovate: image=docker.io/silkeh/alertmanager_matrix appVersion: "0.5.0" maintainers: diff --git a/alertmanager-matrix/README.adoc b/alertmanager-matrix/README.adoc index 1c44122..55dd37b 100644 --- a/alertmanager-matrix/README.adoc +++ b/alertmanager-matrix/README.adoc @@ -2,7 +2,7 @@ = alertmanager-matrix -image::https://img.shields.io/badge/Version-0.1.10-informational?style=flat-square[Version: 0.1.10] +image::https://img.shields.io/badge/Version-0.1.11-informational?style=flat-square[Version: 0.1.11] image::https://img.shields.io/badge/Version-application-informational?style=flat-square[Type: application] image::https://img.shields.io/badge/AppVersion-0.5.0-informational?style=flat-square[AppVersion: 0.5.0] == Maintainers diff --git a/alertmanager-matrix/README.md b/alertmanager-matrix/README.md new file mode 100644 index 0000000..ddb4ed3 --- /dev/null +++ b/alertmanager-matrix/README.md @@ -0,0 +1,110 @@ +--- +title: "alertmanager-matrix" + +description: "Service for managing and receiving Alertmanager alerts on Matrix" + +--- + +# alertmanager-matrix + +![Version: 0.1.11](https://img.shields.io/badge/Version-0.1.11-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 0.5.0](https://img.shields.io/badge/AppVersion-0.5.0-informational?style=flat-square) + +Service for managing and receiving Alertmanager alerts on Matrix + +## Maintainers + +| Name | Email | Url | +| ---- | ------ | --- | +| WrenIX | | | + +## Usage + +Helm must be installed and setup to your kubernetes cluster to use the charts. +Refer to Helm's [documentation](https://helm.sh/docs) to get started. +Once Helm has been set up correctly, fetch the charts as follows: + +```bash +helm pull oci://codeberg.org/wrenix/helm-charts/alertmanager-matrix +``` + +You can install a chart release using the following command: + +```bash +helm install alertmanager-matrix-release oci://codeberg.org/wrenix/helm-charts/alertmanager-matrix --values values.yaml +``` + +To uninstall a chart release use `helm`'s delete command: + +```bash +helm uninstall alertmanager-matrix-release +``` + +## Values + +| Key | Type | Default | Description | +|-----|------|---------|-------------| +| affinity | object | `{}` | | +| autoscaling.enabled | bool | `false` | | +| autoscaling.maxReplicas | int | `100` | | +| autoscaling.minReplicas | int | `1` | | +| autoscaling.targetCPUUtilizationPercentage | int | `80` | | +| bot.alertmanager | string | `"http://localhost:9093"` | | +| bot.colors.alert | string | `"black"` | | +| bot.colors.critical | string | `"red"` | | +| bot.colors.error | string | `"red"` | | +| bot.colors.info | string | `"blue"` | | +| bot.colors.information | string | `"blue"` | | +| bot.colors.resolved | string | `"green"` | | +| bot.colors.silenced | string | `"gray"` | | +| bot.colors.warning | string | `"orange"` | | +| bot.icons.alert | string | `"🔔️"` | | +| bot.icons.critical | string | `"🚨"` | | +| bot.icons.error | string | `"🚨"` | | +| bot.icons.info | string | `"ℹ️"` | | +| bot.icons.information | string | `"ℹ️"` | | +| bot.icons.resolved | string | `"✅"` | | +| bot.icons.silenced | string | `"🔕"` | | +| bot.icons.warning | string | `"⚠️"` | | +| bot.matrix.homeserver | string | `"http://localhost:8008"` | | +| bot.matrix.rooms[0] | string | `"!not_existing:matrix.org"` | | +| bot.matrix.rooms[1] | string | `"!also_not_existing:matrix.org"` | | +| bot.matrix.token | string | `"SECRET_TOKEN"` | | +| bot.matrix.userID | string | `"bot"` | | +| bot.messageType | string | `"m.notice"` | | +| bot.showLabels | bool | `false` | | +| bot.template.html | string | `"{{ range .Alerts }}\n \n {{.StatusString|icon}}\n {{.StatusString|upper}}\n {{.AlertName}}:\n \n {{.Summary}}\n {{if ne .Fingerprint \"\"}}\n ({{.Fingerprint}})\n {{end}}\n {{if $.ShowLabels}}\n
\n Labels:\n {{.LabelString}}\n {{end}}\n
\n{{- end -}}\n"` | | +| bot.template.text | string | `"{{ range .Alerts }}\n {{- .StatusString|icon}} {{ .StatusString|upper }}{{ .AlertName }}: {{ .Summary }} {{ if ne .Fingerprint \"\" -}}\n ({{.Fingerprint}})\n {{- end}}\n {{- if $.ShowLabels -}}\n , labels:\n {{- .LabelString}}\n {{- end }}\n{{ end -}}\n"` | | +| fullnameOverride | string | `""` | | +| image.pullPolicy | string | `"IfNotPresent"` | | +| image.registry | string | `"registry.gitlab.com"` | | +| image.repository | string | `"wrenix/alertmanager_matrix"` | | +| image.tag | string | `""` | | +| imagePullSecrets | list | `[]` | | +| ingress.annotations | object | `{}` | | +| ingress.className | string | `""` | | +| ingress.enabled | bool | `false` | | +| ingress.hosts[0].host | string | `"chart-example.local"` | | +| ingress.hosts[0].paths[0].path | string | `"/"` | | +| ingress.hosts[0].paths[0].pathType | string | `"ImplementationSpecific"` | | +| ingress.tls | list | `[]` | | +| logging.additionalFilters | list | `[]` | Add other filters to Flow | +| logging.dedot | string | `nil` | if an filter (here or global) for dedot is active - for disable set `null` | +| logging.enabled | bool | `false` | Deploy Flow for logging-operator | +| logging.globalOutputRefs | list | `["default"]` | Flows globalOutputRefs for use of ClusterOutputs | +| logging.localOutputRefs | list | `[]` | Flows localOutputRefs for use of Outputs | +| nameOverride | string | `""` | | +| nodeSelector | object | `{}` | | +| podAnnotations | object | `{}` | | +| podLabels | object | `{}` | | +| podSecurityContext | object | `{}` | | +| replicaCount | int | `1` | | +| resources | object | `{}` | | +| securityContext | object | `{}` | | +| service.port | int | `4051` | | +| service.type | string | `"ClusterIP"` | | +| serviceAccount.annotations | object | `{}` | | +| serviceAccount.create | bool | `true` | | +| serviceAccount.name | string | `""` | | +| tolerations | list | `[]` | | + +Autogenerated from chart metadata using [helm-docs](https://github.com/norwoodj/helm-docs) -- 2.45.3 From d8004bcb81da6985f89154126445c5223853818d Mon Sep 17 00:00:00 2001 From: WrenIX Date: Tue, 12 Nov 2024 12:24:32 +0100 Subject: [PATCH 053/134] fix(conduit): add README in markdown --- conduit/Chart.yaml | 2 +- conduit/README.adoc | 2 +- conduit/README.md | 122 ++++++++++++++++++++++++++++++++++++++++++++ 3 files changed, 124 insertions(+), 2 deletions(-) create mode 100644 conduit/README.md diff --git a/conduit/Chart.yaml b/conduit/Chart.yaml index 54a8c3a..b9c8857 100644 --- a/conduit/Chart.yaml +++ b/conduit/Chart.yaml @@ -3,7 +3,7 @@ name: conduit description: Conduit is a simple, fast and reliable chat server powered by Matrix. icon: https://conduit.rs/conduit.svg type: application -version: 1.0.0 +version: "1.0.1" # renovate: image=docker.io/matrixconduit/matrix-conduit appVersion: "0.9.0" maintainers: diff --git a/conduit/README.adoc b/conduit/README.adoc index 564a85e..dbc045d 100644 --- a/conduit/README.adoc +++ b/conduit/README.adoc @@ -2,7 +2,7 @@ = conduit -image::https://img.shields.io/badge/Version-1.0.0-informational?style=flat-square[Version: 1.0.0] +image::https://img.shields.io/badge/Version-1.0.1-informational?style=flat-square[Version: 1.0.1] image::https://img.shields.io/badge/Version-application-informational?style=flat-square[Type: application] image::https://img.shields.io/badge/AppVersion-0.9.0-informational?style=flat-square[AppVersion: 0.9.0] == Maintainers diff --git a/conduit/README.md b/conduit/README.md new file mode 100644 index 0000000..16a14dd --- /dev/null +++ b/conduit/README.md @@ -0,0 +1,122 @@ +--- +title: "conduit" + +description: "Conduit is a simple, fast and reliable chat server powered by Matrix." + +--- + +# conduit + +![Version: 1.0.1](https://img.shields.io/badge/Version-1.0.1-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 0.9.0](https://img.shields.io/badge/AppVersion-0.9.0-informational?style=flat-square) + +Conduit is a simple, fast and reliable chat server powered by Matrix. + +## Maintainers + +| Name | Email | Url | +| ---- | ------ | --- | +| WrenIX | | | + +## Usage + +Helm must be installed and setup to your kubernetes cluster to use the charts. +Refer to Helm's [documentation](https://helm.sh/docs) to get started. +Once Helm has been set up correctly, fetch the charts as follows: + +```bash +helm pull oci://codeberg.org/wrenix/helm-charts/conduit +``` + +You can install a chart release using the following command: + +```bash +helm install conduit-release oci://codeberg.org/wrenix/helm-charts/conduit --values values.yaml +``` + +To uninstall a chart release use `helm`'s delete command: + +```bash +helm uninstall conduit-release +``` + +## Values + +| Key | Type | Default | Description | +|-----|------|---------|-------------| +| affinity | object | `{}` | | +| autoscaling.enabled | bool | `false` | | +| autoscaling.maxReplicas | int | `100` | | +| autoscaling.minReplicas | int | `1` | | +| autoscaling.targetCPUUtilizationPercentage | int | `80` | | +| conduit.allowEncryption | bool | `true` | | +| conduit.allowFederation | bool | `true` | | +| conduit.allowRegistration | bool | `false` | | +| conduit.allowRoomCreation | bool | `true` | | +| conduit.allowUnstableRoomVersions | bool | `true` | | +| conduit.log | string | `nil` | | +| conduit.maxConcurrentRequests | string | `nil` | | +| conduit.maxRequestSize | string | `"20000000"` | in bytes default 20 MB | +| conduit.registrationToken | string | `nil` | | +| conduit.server_name | string | `"your.server.name"` | | +| conduit.trustedServers[0] | string | `"matrix.org"` | | +| conduit.wellKnown.client | string | `""` | client well-known configuration in conduit | +| conduit.wellKnown.server | string | `"https://your.server.name"` | server well-known configuration in conduit | +| fullnameOverride | string | `""` | | +| image.pullPolicy | string | `"IfNotPresent"` | | +| image.registry | string | `"docker.io"` | | +| image.repository | string | `"matrixconduit/matrix-conduit"` | | +| image.tag | string | `""` | | +| imagePullSecrets | list | `[]` | | +| ingress.annotations | object | `{}` | | +| ingress.className | string | `""` | | +| ingress.enabled | bool | `false` | | +| ingress.hosts[0].host | string | `"chart-example.local"` | | +| ingress.hosts[0].paths[0].path | string | `"/"` | | +| ingress.hosts[0].paths[0].pathType | string | `"ImplementationSpecific"` | | +| ingress.tls | list | `[]` | | +| nameOverride | string | `""` | | +| nodeSelector | object | `{}` | | +| persistence.accessMode | string | `"ReadWriteOnce"` | | +| persistence.annotations | object | `{}` | | +| persistence.enabled | bool | `true` | | +| persistence.existingClaim | string | `nil` | A manually managed Persistent Volume and Claim Requires persistence.enabled: true If defined, PVC must be created manually before volume will be bound | +| persistence.hostPath | string | `nil` | Do not create an PVC, direct use hostPath in Pod | +| persistence.size | string | `"1Gi"` | | +| persistence.storageClass | string | `nil` | Persistent Volume Storage Class If defined, storageClassName: If set to "-", storageClassName: "", which disables dynamic provisioning If undefined (the default) or set to null, no storageClassName spec is set, choosing the default provisioner. (gp2 on AWS, standard on GKE, AWS & OpenStack) | +| podAnnotations | object | `{}` | | +| podLabels | object | `{}` | | +| podSecurityContext | object | `{}` | | +| replicaCount | int | `1` | | +| resources | object | `{}` | | +| securityContext | object | `{}` | | +| service.port | int | `6167` | | +| service.type | string | `"ClusterIP"` | | +| serviceAccount.annotations | object | `{}` | | +| serviceAccount.create | bool | `true` | | +| serviceAccount.name | string | `""` | | +| tolerations | list | `[]` | | +| wellknown.affinity | object | `{}` | | +| wellknown.client | object | `{"m.homeserver":{"base_url":"https://your.server.name/"},"org.matrix.msc3575.proxy":{"url":"https://your.server.name/"}}` | client entry in well-known | +| wellknown.containerPort | int | `80` | | +| wellknown.enabled | bool | `false` | | +| wellknown.env | list | `[]` | | +| wellknown.image.pullPolicy | string | `"IfNotPresent"` | | +| wellknown.image.registry | string | `"docker.io"` | | +| wellknown.image.repository | string | `"library/nginx"` | | +| wellknown.image.tag | string | `"1.27.2"` | | +| wellknown.nginxServerConf | string | `"server {\n listen {{ .containerPort }};\n server_name localhost;\n\n location /.well-known/matrix/server {\n return 200 {{ toJson .server | quote }};\n types { } default_type \"application/json; charset=utf-8\";\n }\n\n location /.well-known/matrix/client {\n return 200 {{ toJson .client | quote }};\n types { } default_type \"application/json; charset=utf-8\";\n add_header \"Access-Control-Allow-Origin\" *;\n }\n\n location / {\n # return 200 'Welcome to the your.server.name conduit server!';\n # types { } default_type \"text/plain; charset=utf-8\";\n return 404;\n }\n\n location /nginx_health {\n return 200 'OK';\n types { } default_type \"text/plain; charset=utf-8\";\n }\n}"` | nginx config | +| wellknown.nodeSelector | object | `{}` | | +| wellknown.podAnnotations | list | `[]` | | +| wellknown.podLabels | object | `{}` | | +| wellknown.podSecurityContext | object | `{}` | | +| wellknown.replicaCount | int | `1` | | +| wellknown.resources | object | `{}` | | +| wellknown.rewriteRoot | bool | `false` | if ingress is enabled: specifies whether ingress should redirect the `/`-Location to the wellknown server | +| wellknown.securityContext | object | `{}` | | +| wellknown.server | object | `{"m.server":"your.server.name:443"}` | server entry in well-known | +| wellknown.service.annotations | object | `{}` | | +| wellknown.service.port | int | `8080` | | +| wellknown.service.type | string | `"ClusterIP"` | | +| wellknown.tolerations | list | `[]` | | + +Autogenerated from chart metadata using [helm-docs](https://github.com/norwoodj/helm-docs) -- 2.45.3 From 92acda05be2e9cae7dd2c6afdee005a1a5f4a893 Mon Sep 17 00:00:00 2001 From: WrenIX Date: Tue, 12 Nov 2024 12:24:34 +0100 Subject: [PATCH 054/134] fix(forgejo-runner): add README in markdown --- forgejo-runner/Chart.yaml | 2 +- forgejo-runner/README.adoc | 2 +- forgejo-runner/README.md | 152 +++++++++++++++++++++++++++++++++++++ 3 files changed, 154 insertions(+), 2 deletions(-) create mode 100644 forgejo-runner/README.md diff --git a/forgejo-runner/Chart.yaml b/forgejo-runner/Chart.yaml index 39d9e6f..0e2aa64 100644 --- a/forgejo-runner/Chart.yaml +++ b/forgejo-runner/Chart.yaml @@ -2,7 +2,7 @@ apiVersion: v2 name: forgejo-runner description: Deploy runner for an forgejo instance (default codeberg.org) type: application -version: 0.3.2 +version: "0.3.3" # renovate: image=code.forgejo.org/forgejo/runner appVersion: "4.0.1" maintainers: diff --git a/forgejo-runner/README.adoc b/forgejo-runner/README.adoc index 6800450..56e496f 100644 --- a/forgejo-runner/README.adoc +++ b/forgejo-runner/README.adoc @@ -2,7 +2,7 @@ = forgejo-runner -image::https://img.shields.io/badge/Version-0.3.2-informational?style=flat-square[Version: 0.3.2] +image::https://img.shields.io/badge/Version-0.3.3-informational?style=flat-square[Version: 0.3.3] image::https://img.shields.io/badge/Version-application-informational?style=flat-square[Type: application] image::https://img.shields.io/badge/AppVersion-4.0.1-informational?style=flat-square[AppVersion: 4.0.1] == Maintainers diff --git a/forgejo-runner/README.md b/forgejo-runner/README.md new file mode 100644 index 0000000..8f2101d --- /dev/null +++ b/forgejo-runner/README.md @@ -0,0 +1,152 @@ +--- +title: "forgejo-runner" + +description: "Deploy runner for an forgejo instance (default codeberg.org)" + +--- + +# forgejo-runner + +![Version: 0.3.3](https://img.shields.io/badge/Version-0.3.3-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 4.0.1](https://img.shields.io/badge/AppVersion-4.0.1-informational?style=flat-square) + +Deploy runner for an forgejo instance (default codeberg.org) + +## Maintainers + +| Name | Email | Url | +| ---- | ------ | --- | +| WrenIX | | | + +== Accessing docker socket inside job containers + +To access the docker socket inside the job containers, the following example values may be used (see `values-dind-bypass.yaml`): + +[source,yaml] +---- +runner: + config: + create: true + existingSecret: "" + file: + log: + level: "info" + runner: + file: ".runner" + capacity: 1 + envs: + A_TEST_ENV_NAME_1: null + A_TEST_ENV_NAME_2: null + DOCKER_HOST: tcp://127.0.0.1:2376 + DOCKER_TLS_VERIFY: 1 + DOCKER_CERT_PATH: /certs/client + container: + network: host + enable_ipv6: false + privileged: false + options: -v /certs/client:/certs/client + valid_volumes: + - /certs/client + +---- + +## Usage + +Helm must be installed and setup to your kubernetes cluster to use the charts. +Refer to Helm's [documentation](https://helm.sh/docs) to get started. +Once Helm has been set up correctly, fetch the charts as follows: + +```bash +helm pull oci://codeberg.org/wrenix/helm-charts/forgejo-runner +``` + +You can install a chart release using the following command: + +```bash +helm install forgejo-runner-release oci://codeberg.org/wrenix/helm-charts/forgejo-runner --values values.yaml +``` + +To uninstall a chart release use `helm`'s delete command: + +```bash +helm uninstall forgejo-runner-release +``` + +## Values + +### Configuration yaml of runner (see: https://code.forgejo.org/forgejo/runner/src/branch/main/internal/pkg/config/config.example.yaml) + +| Key | Type | Default | Description | +|-----|------|---------|-------------| +| runner.config.file.cache.dir | string | `""` | The directory to store the cache data. If it's empty, the cache data will be stored in $HOME/.cache/actcache. | +| runner.config.file.cache.enabled | bool | `true` | Enable cache server to use actions/cache. | +| runner.config.file.cache.external_server | string | `""` | The external cache server URL. Valid only when enable is true. If it's specified, act_runner will use this URL as the ACTIONS_CACHE_URL rather than start a server by itself. The URL should generally end with "/". | +| runner.config.file.cache.host | string | `""` | The host of the cache server. It's not for the address to listen, but the address to connect from job containers. So 0.0.0.0 is a bad choice, leave it empty to detect automatically. | +| runner.config.file.cache.port | int | `0` | The port of the cache server. 0 means to use a random available port. | +| runner.config.file.container.docker_host | string | `""` | overrides the docker client host with the specified one. If it's empty, act_runner will find an available docker host automatically. If it's "-", act_runner will find an available docker host automatically, but the docker host won't be mounted to the job containers and service containers. If it's not empty or "-", the specified docker host will be used. An error will be returned if it doesn't work. | +| runner.config.file.container.enable_ipv6 | bool | `false` | Whether to create networks with IPv6 enabled. Requires the Docker daemon to be set up accordingly. Only takes effect if "network" is set to "". | +| runner.config.file.container.force_pull | bool | `false` | Pull docker image(s) even if already present | +| runner.config.file.container.network | string | `""` | Specifies the network to which the container will connect. Could be host, bridge or the name of a custom network. If it's empty, create a network automatically. | +| runner.config.file.container.options | string | `nil` | And other options to be used when the container is started (eg, `--add-host=my.forgejo.url:host-gateway`). | +| runner.config.file.container.privileged | bool | `false` | And other options to be used when the container is started (eg, `--add-host=my.forgejo.url:host-gateway`). | +| runner.config.file.container.valid_volumes | list | `[]` | Volumes (including bind mounts) can be mounted to containers. Glob syntax is supported, see https://github.com/gobwas/glob You can specify multiple volumes. If the sequence is empty, no volumes can be mounted. For example, if you only allow containers to mount the `data` volume and all the json files in `/src`, you should change the config to: valid_volumes: - data - /src/*.json If you want to allow any volume, please use the following configuration: valid_volumes: - '**' | +| runner.config.file.container.workdir_parent | string | `nil` | The parent directory of a job's working directory. If it's empty, /workspace will be used. | +| runner.config.file.host.workdir_parent | string | `nil` | The parent directory of a job's working directory. If it's empty, $HOME/.cache/act/ will be used. | +| runner.config.file.log.level | string | `"info"` | The level of logging, can be trace, debug, info, warn, error, fatal | +| runner.config.file.runner.capacity | int | `1` | Execute how many tasks concurrently at the same time. | +| runner.config.file.runner.env_file | string | `".env"` | Extra environment variables to run jobs from a file. It will be ignored if it's empty or the file doesn't exist. | +| runner.config.file.runner.envs | object | `{"A_TEST_ENV_NAME_1":"a_test_env_value_1","A_TEST_ENV_NAME_2":"a_test_env_value_2"}` | Extra environment variables to run jobs. | +| runner.config.file.runner.fetch_interval | string | `"2s"` | The interval for fetching the job from the Forgejo instance. | +| runner.config.file.runner.fetch_timeout | string | `"5s"` | The timeout for fetching the job from the Forgejo instance. | +| runner.config.file.runner.file | string | `".runner"` | Runner config which contains id and token of this runner (autogenerate with create) | +| runner.config.file.runner.insecure | bool | `false` | Whether skip verifying the TLS certificate of the Forgejo instance. | +| runner.config.file.runner.labels | list | `[]` | The labels of a runner are used to determine which jobs the runner can run, and how to run them. Like: ["macos-arm64:host", "ubuntu-latest:docker://node:16-bullseye", "ubuntu-22.04:docker://node:16-bullseye"] If it's empty when registering, it will ask for inputting labels. If it's empty when execute `deamon`, will use labels in `.runner` file. | +| runner.config.file.runner.timeout | string | `"3h"` | The timeout for a job to be finished. Please note that the Forgejo instance also has a timeout (3h by default) for the job. So the job could be stopped by the Forgejo instance if it's timeout is shorter than this. | + +### Other Values + +| Key | Type | Default | Description | +|-----|------|---------|-------------| +| affinity | object | `{}` | | +| autoscaling.behavior | object | `{}` | behavior of HPA Example: scaleDown: stabilizationWindowSeconds: 300 policies: - type: Pods value: 1 periodSeconds: 60 scaleUp: stabilizationWindowSeconds: 0 policies: - type: Pods value: 1 periodSeconds: 60 | +| autoscaling.enabled | bool | `false` | | +| autoscaling.maxReplicas | int | `100` | | +| autoscaling.minReplicas | int | `1` | | +| autoscaling.targetCPUUtilizationPercentage | int | `80` | | +| dind.image.pullPolicy | string | `"IfNotPresent"` | | +| dind.image.registry | string | `"docker.io"` | | +| dind.image.repository | string | `"library/docker"` | | +| dind.image.tag | string | `"27.3.1-dind"` | | +| extraEnvVars | list | `[]` | Additional environment variables to be set on runner container Example: extraEnvVars: - name: FOO value: "bar" | +| fullnameOverride | string | `""` | | +| image.pullPolicy | string | `"IfNotPresent"` | | +| image.registry | string | `"code.forgejo.org"` | | +| image.repository | string | `"forgejo/runner"` | | +| image.tag | string | `""` | | +| imagePullSecrets | list | `[]` | | +| kubectl.image.pullPolicy | string | `"IfNotPresent"` | | +| kubectl.image.registry | string | `"docker.io"` | | +| kubectl.image.repository | string | `"bitnami/kubectl"` | | +| kubectl.image.tag | string | `"1.31.2"` | | +| nameOverride | string | `""` | | +| nodeSelector | object | `{}` | | +| podAnnotations | object | `{}` | | +| podLabels | object | `{}` | | +| podSecurityContext | object | `{}` | | +| replicaCount | int | `1` | | +| resources | object | `{}` | | +| runner.config.create | bool | `true` | | +| runner.config.existingSecret | string | `""` | use existingSecret instatt | +| runner.config.instance | string | `"https://codeberg.org"` | | +| runner.config.name | string | `nil` | | +| runner.config.token | string | `nil` | | +| securityContext.privileged | bool | `true` | | +| serviceAccount.annotations | object | `{}` | | +| serviceAccount.automount | bool | `true` | | +| serviceAccount.create | bool | `true` | | +| serviceAccount.name | string | `""` | | +| tolerations | list | `[]` | | +| volumeMounts | list | `[]` | | +| volumes | list | `[]` | | + +Autogenerated from chart metadata using [helm-docs](https://github.com/norwoodj/helm-docs) + -- 2.45.3 From 101feb46a631eee1a88968993e184898dd372219 Mon Sep 17 00:00:00 2001 From: WrenIX Date: Wed, 13 Nov 2024 19:29:09 +0100 Subject: [PATCH 055/134] fix(matrix-synapse): update appVersion --- matrix-synapse/Chart.yaml | 4 ++-- matrix-synapse/README.adoc | 4 ++-- matrix-synapse/README.md | 2 +- 3 files changed, 5 insertions(+), 5 deletions(-) diff --git a/matrix-synapse/Chart.yaml b/matrix-synapse/Chart.yaml index b8fdaa6..e5f3c65 100644 --- a/matrix-synapse/Chart.yaml +++ b/matrix-synapse/Chart.yaml @@ -4,9 +4,9 @@ name: matrix-synapse description: Matrix reference homeserver icon: https://matrix.org/images/matrix-logo.svg type: application -version: "1.0.1" +version: "1.0.2" # renovate: image=ghcr.io/element-hq/synapse -appVersion: 1.118.0 +appVersion: 1.119.0 maintainers: - name: WrenIX url: https://wrenix.eu diff --git a/matrix-synapse/README.adoc b/matrix-synapse/README.adoc index 5e88f45..f9b57bb 100644 --- a/matrix-synapse/README.adoc +++ b/matrix-synapse/README.adoc @@ -2,9 +2,9 @@ = matrix-synapse -image::https://img.shields.io/badge/Version-1.0.1-informational?style=flat-square[Version: 1.0.1] +image::https://img.shields.io/badge/Version-1.0.2-informational?style=flat-square[Version: 1.0.2] image::https://img.shields.io/badge/Version-application-informational?style=flat-square[Type: application] -image::https://img.shields.io/badge/AppVersion-1.118.0-informational?style=flat-square[AppVersion: 1.118.0] +image::https://img.shields.io/badge/AppVersion-1.119.0-informational?style=flat-square[AppVersion: 1.119.0] == Maintainers .Maintainers diff --git a/matrix-synapse/README.md b/matrix-synapse/README.md index aa19029..01cf440 100644 --- a/matrix-synapse/README.md +++ b/matrix-synapse/README.md @@ -7,7 +7,7 @@ description: "Matrix reference homeserver" # matrix-synapse -![Version: 1.0.1](https://img.shields.io/badge/Version-1.0.1-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 1.118.0](https://img.shields.io/badge/AppVersion-1.118.0-informational?style=flat-square) +![Version: 1.0.2](https://img.shields.io/badge/Version-1.0.2-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 1.119.0](https://img.shields.io/badge/AppVersion-1.119.0-informational?style=flat-square) Matrix reference homeserver -- 2.45.3 From 3c3c09dd2cea726ce78dbb9cf2e0a3a60f832378 Mon Sep 17 00:00:00 2001 From: WrenIX Date: Tue, 12 Nov 2024 12:41:26 +0100 Subject: [PATCH 056/134] feat(mautrix)!: move mautrix-signal to a generic helm-chart for mautrix --- .../.helmignore | 0 mautrix-bridge/Chart.yaml | 8 + .../README.adoc | 28 +-- mautrix-bridge/README.md | 225 ++++++++++++++++++ mautrix-bridge/_docs.gotmpl | 5 + .../templates/NOTES.txt | 8 +- .../templates/_helpers.tpl | 20 +- .../templates/deployment.yaml | 16 +- .../templates/hpa.yaml | 6 +- .../templates/ingress.yaml | 4 +- .../templates/pvc.yaml | 4 +- .../templates/secrets.yaml | 4 +- .../templates/service.yaml | 6 +- .../templates/serviceaccount.yaml | 4 +- .../templates/tests/test-connection.yaml | 6 +- mautrix-bridge/values-signal.yaml | 52 ++++ mautrix-bridge/values-slack.yaml | 39 +++ .../values.yaml | 5 +- mautrix-signal/Chart.yaml | 10 - mautrix-signal/_docs.gotmpl | 14 -- 20 files changed, 379 insertions(+), 85 deletions(-) rename {mautrix-signal => mautrix-bridge}/.helmignore (100%) create mode 100644 mautrix-bridge/Chart.yaml rename {mautrix-signal => mautrix-bridge}/README.adoc (97%) create mode 100644 mautrix-bridge/README.md create mode 100644 mautrix-bridge/_docs.gotmpl rename {mautrix-signal => mautrix-bridge}/templates/NOTES.txt (86%) rename {mautrix-signal => mautrix-bridge}/templates/_helpers.tpl (74%) rename {mautrix-signal => mautrix-bridge}/templates/deployment.yaml (86%) rename {mautrix-signal => mautrix-bridge}/templates/hpa.yaml (84%) rename {mautrix-signal => mautrix-bridge}/templates/ingress.yaml (94%) rename {mautrix-signal => mautrix-bridge}/templates/pvc.yaml (84%) rename {mautrix-signal => mautrix-bridge}/templates/secrets.yaml (92%) rename {mautrix-signal => mautrix-bridge}/templates/service.yaml (65%) rename {mautrix-signal => mautrix-bridge}/templates/serviceaccount.yaml (70%) rename {mautrix-signal => mautrix-bridge}/templates/tests/test-connection.yaml (53%) create mode 100644 mautrix-bridge/values-signal.yaml create mode 100644 mautrix-bridge/values-slack.yaml rename {mautrix-signal => mautrix-bridge}/values.yaml (99%) delete mode 100644 mautrix-signal/Chart.yaml delete mode 100644 mautrix-signal/_docs.gotmpl diff --git a/mautrix-signal/.helmignore b/mautrix-bridge/.helmignore similarity index 100% rename from mautrix-signal/.helmignore rename to mautrix-bridge/.helmignore diff --git a/mautrix-bridge/Chart.yaml b/mautrix-bridge/Chart.yaml new file mode 100644 index 0000000..4a99de6 --- /dev/null +++ b/mautrix-bridge/Chart.yaml @@ -0,0 +1,8 @@ +apiVersion: v2 +name: mautrix-bridge +description: A Matrix puppeting bridge mautrix. +type: application +version: 0.0.13 +maintainers: + - name: WrenIX + url: https://wrenix.eu diff --git a/mautrix-signal/README.adoc b/mautrix-bridge/README.adoc similarity index 97% rename from mautrix-signal/README.adoc rename to mautrix-bridge/README.adoc index 34729a8..0261fc1 100644 --- a/mautrix-signal/README.adoc +++ b/mautrix-bridge/README.adoc @@ -1,10 +1,9 @@ -= mautrix-signal += mautrix-bridge image::https://img.shields.io/badge/Version-0.0.13-informational?style=flat-square[Version: 0.0.13] image::https://img.shields.io/badge/Version-application-informational?style=flat-square[Type: application] -image::https://img.shields.io/badge/AppVersion-0.7.2-informational?style=flat-square[AppVersion: 0.7.2] == Maintainers .Maintainers @@ -16,18 +15,9 @@ image::https://img.shields.io/badge/AppVersion-0.7.2-informational?style=flat-sq | |=== -= Alpha - -WARNING -==== -We stop working on this Helm-Chart. -There are still many breaking change like: - -* https://github.com/stalwartlabs/mail-server/issues/211[storage.fts in toml configuration has two meanings] - -We hope that stalward mail-server becomes more stable. - -==== +For use of the bridge: +* **signal**, use the `./values-signal.yaml` +* **slack**, use the `./values-slack.yaml` == Usage @@ -37,21 +27,21 @@ Once Helm has been set up correctly, fetch the charts as follows: [source,bash] ---- -helm pull oci://codeberg.org/wrenix/helm-charts/mautrix-signal +helm pull oci://codeberg.org/wrenix/helm-charts/mautrix-bridge ---- You can install a chart release using the following command: [source,bash] ---- -helm install mautrix-signal-release oci://codeberg.org/wrenix/helm-charts/mautrix-signal --values values.yaml +helm install mautrix-bridge-release oci://codeberg.org/wrenix/helm-charts/mautrix-bridge --values values.yaml ---- To uninstall a chart release use `helm`'s delete command: [source,bash] ---- -helm uninstall mautrix-signal-release +helm uninstall mautrix-bridge-release ---- == Values @@ -252,7 +242,7 @@ helm uninstall mautrix-signal-release | config.bridge.command_prefix | string -| `"!signal"` +| `"!bridge"` | The prefix for commands. Only required in non-management rooms. | config.bridge.mute_only_on_create @@ -707,7 +697,7 @@ helm uninstall mautrix-signal-release | image.repository | string -| `"mautrix/signal"` +| `""` | | image.tag diff --git a/mautrix-bridge/README.md b/mautrix-bridge/README.md new file mode 100644 index 0000000..449ac9d --- /dev/null +++ b/mautrix-bridge/README.md @@ -0,0 +1,225 @@ +--- +title: "mautrix-bridge" + +description: "A Matrix puppeting bridge mautrix." + +--- + +# mautrix-bridge + +![Version: 0.0.13](https://img.shields.io/badge/Version-0.0.13-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) + +A Matrix puppeting bridge mautrix. + +## Maintainers + +| Name | Email | Url | +| ---- | ------ | --- | +| WrenIX | | | + +For use of the bridge: +* **signal**, use the `./values-signal.yaml` +* **slack**, use the `./values-slack.yaml` + +## Usage + +Helm must be installed and setup to your kubernetes cluster to use the charts. +Refer to Helm's [documentation](https://helm.sh/docs) to get started. +Once Helm has been set up correctly, fetch the charts as follows: + +```bash +helm pull oci://codeberg.org/wrenix/helm-charts/mautrix-bridge +``` + +You can install a chart release using the following command: + +```bash +helm install mautrix-bridge-release oci://codeberg.org/wrenix/helm-charts/mautrix-bridge --values values.yaml +``` + +To uninstall a chart release use `helm`'s delete command: + +```bash +helm uninstall mautrix-bridge-release +``` + +## Values + +| Key | Type | Default | Description | +|-----|------|---------|-------------| +| affinity | object | `{}` | | +| autoscaling.enabled | bool | `false` | | +| autoscaling.maxReplicas | int | `100` | | +| autoscaling.minReplicas | int | `1` | | +| autoscaling.targetCPUUtilizationPercentage | int | `80` | | +| config.appservice.address | string | `"http://localhost:29328"` | The address that the homeserver can use to connect to this appservice. | +| config.appservice.as_token | string | `""` | | +| config.appservice.async_transactions | bool | `false` | Should incoming events be handled asynchronously? This may be necessary for large public instances with lots of messages going through. However, messages will not be guaranteed to be bridged in the same order they were sent in. | +| config.appservice.bot.avatar | string | `"mxc://maunium.net/wPJgTQbZOtpBFmDNkiNEMDUp"` | | +| config.appservice.bot.displayname | string | `"Signal bridge bot"` | Display name and avatar for bot. Set to "remove" to remove display name/avatar, leave empty to leave display name/avatar as-is. | +| config.appservice.bot.username | string | `"signalbot"` | Username of the appservice bot. | +| config.appservice.ephemeral_events | bool | `true` | Whether or not to receive ephemeral events via appservice transactions. Requires MSC2409 support (i.e. Synapse 1.22+). | +| config.appservice.hostname | string | `"0.0.0.0"` | The hostname and port where this appservice should listen. | +| config.appservice.hs_token | string | `""` | | +| config.appservice.id | string | `"signal"` | The unique ID of this appservice. | +| config.appservice.port | int | `29328` | | +| config.appservice.public_address | string | `nil` | | +| config.appservice.username_template | string | `"signal_{{.}}"` | Localpart template of MXIDs for Signal users. {{.}} is replaced with the internal ID of the Signal user. | +| config.backfill.enabled | bool | `false` | Whether to do backfilling at all. | +| config.backfill.max_catchup_messages | int | `500` | Maximum number of missed messages to backfill after bridge restarts. | +| config.backfill.max_initial_messages | int | `50` | Maximum number of messages to backfill in empty rooms. | +| config.backfill.queue.batch_delay | int | `20` | Delay between batches in seconds. | +| config.backfill.queue.batch_size | int | `100` | Number of messages to backfill in one batch. | +| config.backfill.queue.enabled | bool | `false` | Should the backfill queue be enabled? | +| config.backfill.queue.max_batches | int | `-1` | Maximum number of batches to backfill per portal. If set to -1, all available messages will be backfilled. | +| config.backfill.queue.max_batches_override | object | `{}` | Optional network-specific overrides for max batches. Interpretation of this field depends on the network connector. | +| config.backfill.threads.max_initial_messages | int | `50` | Maximum number of messages to backfill in a new thread. | +| config.backfill.unread_hours_threshold | int | `720` | If a backfilled chat is older than this number of hours, mark it as read even if it's unread on the remote network. | +| config.bridge.bridge_matrix_leave | bool | `false` | Should leaving Matrix rooms be bridged as leaving groups on the remote network? | +| config.bridge.cleanup_on_logout.bad_credentials.private | string | `"nothing"` | | +| config.bridge.cleanup_on_logout.bad_credentials.relayed | string | `"nothing"` | | +| config.bridge.cleanup_on_logout.bad_credentials.shared_has_users | string | `"nothing"` | | +| config.bridge.cleanup_on_logout.bad_credentials.shared_no_users | string | `"nothing"` | | +| config.bridge.cleanup_on_logout.enabled | bool | `false` | Should cleanup on logout be enabled at all? | +| config.bridge.cleanup_on_logout.manual.private | string | `"nothing"` | Action for private portals which will never be shared with other Matrix users. | +| config.bridge.cleanup_on_logout.manual.relayed | string | `"nothing"` | Action for portals with a relay user configured. | +| config.bridge.cleanup_on_logout.manual.shared_has_users | string | `"nothing"` | Action for portals which have other logged-in Matrix users. | +| config.bridge.cleanup_on_logout.manual.shared_no_users | string | `"nothing"` | Action for portals which may be shared, but don't currently have any other Matrix users. | +| config.bridge.command_prefix | string | `"!bridge"` | The prefix for commands. Only required in non-management rooms. | +| config.bridge.mute_only_on_create | bool | `true` | Should room mute status only be synced when creating the portal? Like tags, mutes can't currently be synced back to the remote network. | +| config.bridge.permissions | object | `{"*":"relay","@admin:example.com":"admin","example.com":"user"}` | Permissions for using the bridge. Permitted values: relay - Talk through the relaybot (if enabled), no access otherwise commands - Access to use commands in the bridge, but not login. user - Access to use the bridge with puppeting. admin - Full access, user level with some additional administration tools. Permitted keys: * - All Matrix users domain - All users on that homeserver mxid - Specific user | +| config.bridge.personal_filtering_spaces | bool | `true` | Should the bridge create a space for each login containing the rooms that account is in? | +| config.bridge.private_chat_portal_meta | bool | `false` | Whether the bridge should set names and avatars explicitly for DM portals. This is only necessary when using clients that don't support MSC4171. | +| config.bridge.relay.admin_only | bool | `true` | Should only admins be allowed to set themselves as relay users? | +| config.bridge.relay.default_relays | list | `[]` | List of user login IDs which anyone can set as a relay, as long as the relay user is in the room. | +| config.bridge.relay.displayname_format | string | `"{{ .DisambiguatedName }}"` | For networks that support per-message displaynames (i.e. Slack and Discord), the template for those names. This has all the Sender variables available under message_formats (but without the .Sender prefix). Note that you need to manually remove the displayname from message_formats above. | +| config.bridge.relay.enabled | bool | `false` | Whether relay mode should be allowed. If allowed, `!wa set-relay` can be used to turn any authenticated user into a relaybot for that chat. | +| config.bridge.relay.message_formats | object | `{"m.audio":"{{ .Sender.DisambiguatedName }} sent an audio file{{ if .Caption }}: {{ .Caption }}{{ end }}","m.emote":"* {{ .Sender.DisambiguatedName }} {{ .Message }}","m.file":"{{ .Sender.DisambiguatedName }} sent a file{{ if .Caption }}: {{ .Caption }}{{ end }}","m.image":"{{ .Sender.DisambiguatedName }} sent an image{{ if .Caption }}: {{ .Caption }}{{ end }}","m.location":"{{ .Sender.DisambiguatedName }} sent a location{{ if .Caption }}: {{ .Caption }}{{ end }}","m.notice":"{{ .Sender.DisambiguatedName }}: {{ .Message }}","m.text":"{{ .Sender.DisambiguatedName }}: {{ .Message }}","m.video":"{{ .Sender.DisambiguatedName }} sent a video{{ if .Caption }}: {{ .Caption }}{{ end }}"}` | The formats to use when sending messages via the relaybot. Available variables: .Sender.UserID - The Matrix user ID of the sender. .Sender.Displayname - The display name of the sender (if set). .Sender.RequiresDisambiguation - Whether the sender's name may be confused with the name of another user in the room. .Sender.DisambiguatedName - The disambiguated name of the sender. This will be the displayname if set, plus the user ID in parentheses if the displayname is not unique. If the displayname is not set, this is just the user ID. .Message - The `formatted_body` field of the message. .Caption - The `formatted_body` field of the message, if it's a caption. Otherwise an empty string. .FileName - The name of the file being sent. | +| config.bridge.tag_only_on_create | bool | `true` | Should room tags only be synced when creating the portal? Tags mean things like favorite/pin and archive/low priority. Tags currently can't be synced back to the remote network, so a continuous sync means tagging from Matrix will be undone. | +| config.database.max_conn_idle_time | string | `nil` | Maximum connection idle time and lifetime before they're closed. Disabled if null. Parsed with https://pkg.go.dev/time#ParseDuration | +| config.database.max_conn_lifetime | string | `nil` | | +| config.database.max_idle_conns | int | `2` | | +| config.database.max_open_conns | int | `20` | Maximum number of connections. Mostly relevant for Postgres. | +| config.database.type | string | `"postgres"` | The database type. "sqlite3-fk-wal" and "postgres" are supported. | +| config.database.uri | string | `"postgres://user:password@host/database?sslmode=disable"` | The database URI. SQLite: A raw file path is supported, but `file:?_txlock=immediate` is recommended. https://github.com/mattn/go-sqlite3#connection-string Postgres: Connection string. For example, postgres://user:password@host/database?sslmode=disable To connect via Unix socket, use something like postgres:///dbname?host=/var/run/postgresql | +| config.direct_media.allow_proxy | bool | `true` | If the remote network supports media downloads over HTTP, then the bridge will use MSC3860/MSC3916 media download redirects if the requester supports it. Optionally, you can force redirects and not allow proxying at all by setting this to false. This option does nothing if the remote network does not support media downloads over HTTP. | +| config.direct_media.enabled | bool | `false` | Should custom mxc:// URIs be used instead of reuploading media? | +| config.direct_media.media_id_prefix | string | `nil` | Optionally specify a custom prefix for the media ID part of the MXC URI. | +| config.direct_media.server_key | string | `""` | Matrix server signing key to make the federation tester pass, same format as synapse's .signing.key file. This key is also used to sign the mxc:// URIs to ensure only the bridge can generate them. | +| config.direct_media.server_name | string | `"discord-media.example.com"` | The server name to use for the custom mxc:// URIs. This server name will effectively be a real Matrix server, it just won't implement anything other than media. You must either set up .well-known delegation from this domain to the bridge, or proxy the domain directly to the bridge. | +| config.direct_media.well_known_response | string | `nil` | Optionally a custom .well-known response. This defaults to `server_name:443` | +| config.double_puppet.allow_discovery | bool | `false` | Whether to allow client API URL discovery for other servers. When using this option, users on other servers can use double puppeting even if their server URLs aren't explicitly added to the servers map above. | +| config.double_puppet.secrets | object | `{"example.com":"as_token:foobar"}` | Shared secrets for automatic double puppeting. See https://docs.mau.fi/bridges/general/double-puppeting.html for instructions. | +| config.double_puppet.servers | object | `{"example.com":"https://example.com"}` | Servers to always allow double puppeting from. This is only for other servers and should NOT contain the server the bridge is on. | +| config.encryption.allow | bool | `false` | Allow encryption, work in group chat rooms with e2ee enabled | +| config.encryption.allow_key_sharing | bool | `false` | Enable key sharing? If enabled, key requests for rooms where users are in will be fulfilled. You must use a client that supports requesting keys from other users to use this feature. | +| config.encryption.appservice | bool | `false` | Whether to use MSC2409/MSC3202 instead of /sync long polling for receiving encryption-related data. | +| config.encryption.default | bool | `false` | Default to encryption, force-enable encryption in all portals the bridge creates This will cause the bridge bot to be in private chats for the encryption to work properly. | +| config.encryption.delete_keys | object | `{"delete_fully_used_on_decrypt":false,"delete_on_device_delete":false,"delete_outbound_on_ack":false,"delete_outdated_inbound":false,"delete_prev_on_new_session":false,"dont_store_outbound":false,"periodically_delete_expired":false,"ratchet_on_decrypt":false}` | Options for deleting megolm sessions from the bridge. | +| config.encryption.delete_keys.delete_fully_used_on_decrypt | bool | `false` | Delete fully used keys (index >= max_messages) after decrypting messages. | +| config.encryption.delete_keys.delete_on_device_delete | bool | `false` | Delete megolm sessions received from a device when the device is deleted. | +| config.encryption.delete_keys.delete_outbound_on_ack | bool | `false` | Beeper-specific: delete outbound sessions when hungryserv confirms that the user has uploaded the key to key backup. | +| config.encryption.delete_keys.delete_outdated_inbound | bool | `false` | Delete inbound megolm sessions that don't have the received_at field used for automatic ratcheting and expired session deletion. This is meant as a migration to delete old keys prior to the bridge update. | +| config.encryption.delete_keys.delete_prev_on_new_session | bool | `false` | Delete previous megolm sessions from same device when receiving a new one. | +| config.encryption.delete_keys.dont_store_outbound | bool | `false` | Don't store outbound sessions in the inbound table. | +| config.encryption.delete_keys.periodically_delete_expired | bool | `false` | Periodically delete megolm sessions when 2x max_age has passed since receiving the session. | +| config.encryption.delete_keys.ratchet_on_decrypt | bool | `false` | Ratchet megolm sessions forward after decrypting messages. | +| config.encryption.pickle_key | string | `nil` | | +| config.encryption.plaintext_mentions | string | `nil` | | +| config.encryption.require | bool | `false` | Require encryption, drop any unencrypted messages. | +| config.encryption.rotation.disable_device_change_key_rotation | bool | `false` | Disable rotating keys when a user's devices change? You should not enable this option unless you understand all the implications. | +| config.encryption.rotation.enable_custom | bool | `false` | Enable custom Megolm room key rotation settings. Note that these settings will only apply to rooms created after this option is set. | +| config.encryption.rotation.messages | int | `100` | The maximum number of messages that should be sent with a given a session before changing it. The Matrix spec recommends 100 as the default. | +| config.encryption.rotation.milliseconds | int | `604800000` | The maximum number of milliseconds a session should be used before changing it. The Matrix spec recommends 604800000 (a week) as the default. | +| config.encryption.verification_levels.receive | string | `"unverified"` | Minimum level for which the bridge should send keys to when bridging messages from Signal to Matrix. | +| config.encryption.verification_levels.send | string | `"unverified"` | Minimum level that the bridge should accept for incoming Matrix messages. | +| config.encryption.verification_levels.share | string | `"cross-signed-tofu"` | Minimum level that the bridge should require for accepting key requests. | +| config.homeserver.address | string | `"https://matrix.example.com"` | The address that this appservice can use to connect to the homeserver. | +| config.homeserver.async_media | bool | `false` | Does the homeserver support https://github.com/matrix-org/matrix-spec-proposals/pull/2246? | +| config.homeserver.domain | string | `"example.com"` | The domain of the homeserver (also known as server_name, used for MXIDs, etc). | +| config.homeserver.message_send_checkpoint_endpoint | string | `nil` | Endpoint for reporting per-message status. | +| config.homeserver.ping_interval_seconds | int | `0` | How often should the websocket be pinged? Pinging will be disabled if this is zero. | +| config.homeserver.public_address | string | `nil` | | +| config.homeserver.software | string | `"standard"` | What software is the homeserver running? Standard Matrix homeservers like Synapse, Dendrite and Conduit should just use "standard" here. | +| config.homeserver.status_endpoint | string | `nil` | The URL to push real-time bridge status to. If set, the bridge will make POST requests to this URL whenever a user's Signal connection state changes. The bridge will use the appservice as_token to authorize requests. | +| config.homeserver.websocket | bool | `false` | Should the bridge use a websocket for connecting to the homeserver? The server side is currently not documented anywhere and is only implemented by mautrix-wsproxy, mautrix-asmux (deprecated), and hungryserv (proprietary). | +| config.homeserver.websocket_proxy | string | `""` | | +| config.logging.min_level | string | `"warn"` | | +| config.logging.writers[0].format | string | `"json"` | | +| config.logging.writers[0].type | string | `"stdout"` | | +| config.management_room_text.additional_help | string | `""` | Optional extra text sent when joining a management room. | +| config.management_room_text.welcome | string | `"Hello, I'm a Signal bridge bot."` | Sent when joining a room. | +| config.management_room_text.welcome_connected | string | `"Use `help` for help."` | Sent when joining a management room and the user is already logged in. | +| config.management_room_text.welcome_unconnected | string | `"Use `help` for help or `login` to log in."` | Sent when joining a management room and the user is not logged in. | +| config.matrix.delivery_receipts | bool | `false` | Should the bridge send a read receipt from the bridge bot when a message has been sent to Signal? | +| config.matrix.federate_rooms | bool | `true` | Whether or not created rooms should have federation enabled. If false, created portal rooms will never be federated. | +| config.matrix.message_error_notices | bool | `true` | Whether the bridge should send error notices via m.notice events when a message fails to bridge. | +| config.matrix.message_status_events | bool | `false` | Whether the bridge should send the message status as a custom com.beeper.message_send_status event. | +| config.matrix.sync_direct_chat_list | bool | `false` | Should the bridge update the m.direct account data event when double puppeting is enabled. Note that updating the m.direct event is not atomic (except with mautrix-asmux) and is therefore prone to race conditions. | +| config.provisioning.debug_endpoints | bool | `false` | Enable debug API at /debug with provisioning authentication. | +| config.provisioning.prefix | string | `"/_matrix/provision"` | Prefix for the provisioning API paths. | +| config.provisioning.shared_secret | string | `"generate"` | Shared secret for authentication. If set to "generate", a random secret will be generated, or if set to "disable", the provisioning API will be disabled. | +| config.public_media.enabled | bool | `false` | Should public media be enabled at all? The public_address field under the appservice section MUST be set when enabling public media. | +| config.public_media.expiry | int | `0` | Number of seconds that public media URLs are valid for. If set to 0, URLs will never expire. | +| config.public_media.hash_length | int | `32` | Length of hash to use for public media URLs. Must be between 0 and 32. | +| config.public_media.signing_key | string | `"generate"` | A key for signing public media URLs. If set to "generate", a random key will be generated. | +| config.signal.device_name | string | `"mautrix-signal"` | Default device name that shows up in the Signal app. | +| config.signal.displayname_template | string | `"{{ printf \"%s (%s) %s\" (or .ProfileName .ContactName \"Unknown user\") (or .PhoneNumber \"Unknown number\" (or .AboutEmoji \"\")}}"` | Displayname template for Signal users. This is also used as the room name in DMs if private_chat_portal_meta is enabled. {{.ProfileName}} - The Signal profile name set by the user. {{.ContactName}} - The name for the user from your phone's contact list. This is not safe on multi-user instances. {{.PhoneNumber}} - The phone number of the user. {{.UUID}} - The UUID of the Signal user. {{.AboutEmoji}} - The emoji set by the user in their profile. | +| config.signal.location_format | string | `"https://www.openstreetmap.org/?mlat=%[1]s&mlon=%[2]s"` | | +| config.signal.note_to_self_avatar | string | `"mxc://maunium.net/REBIVrqjZwmaWpssCZpBlmlL"` | | +| config.signal.number_in_topic | bool | `true` | Should the Signal user's phone number be included in the room topic in private chat portal rooms? | +| config.signal.sync_contacts_on_startup | bool | `true` | Should the bridge request the user's contact list from the phone on startup? | +| config.signal.use_contact_avatars | bool | `false` | Should avatars from the user's contact list be used? This is not safe on multi-user instances. | +| config.signal.use_outdated_profiles | bool | `false` | Should the bridge sync ghost user info even if profile fetching fails? This is not safe on multi-user instances. | +| fullnameOverride | string | `""` | | +| global.image.pullPolicy | string | `nil` | if set it will overwrite all pullPolicy | +| global.image.registry | string | `nil` | if set it will overwrite all registry entries | +| image.pullPolicy | string | `"IfNotPresent"` | | +| image.registry | string | `"dock.mau.dev"` | | +| image.repository | string | `""` | | +| image.tag | string | `""` | | +| imagePullSecrets | list | `[]` | | +| ingress.annotations | object | `{}` | | +| ingress.className | string | `""` | | +| ingress.enabled | bool | `false` | | +| ingress.hosts[0].host | string | `"chart-example.local"` | | +| ingress.hosts[0].paths[0].path | string | `"/"` | | +| ingress.hosts[0].paths[0].pathType | string | `"ImplementationSpecific"` | | +| ingress.tls | list | `[]` | | +| livenessProbe.httpGet.path | string | `"/_matrix/mau/live"` | | +| livenessProbe.httpGet.port | string | `"http"` | | +| nameOverride | string | `""` | | +| nodeSelector | object | `{}` | | +| persistence.accessMode | string | `"ReadWriteOnce"` | accessMode | +| persistence.annotations | object | `{}` | | +| persistence.enabled | bool | `true` | Enable persistence using Persistent Volume Claims ref: http://kubernetes.io/docs/user-guide/persistent-volumes/ | +| persistence.existingClaim | string | `nil` | A manually managed Persistent Volume and Claim Requires persistence.enabled: true If defined, PVC must be created manually before volume will be bound | +| persistence.hostPath | string | `nil` | Do not create an PVC, direct use hostPath in Pod | +| persistence.size | string | `"10Gi"` | size | +| persistence.storageClass | string | `nil` | Persistent Volume Storage Class If defined, storageClassName: If set to "-", storageClassName: "", which disables dynamic provisioning If undefined (the default) or set to null, no storageClassName spec is set, choosing the default provisioner. (gp2 on AWS, standard on GKE, AWS & OpenStack) | +| podAnnotations | object | `{}` | | +| podLabels | object | `{}` | | +| podSecurityContext | object | `{}` | | +| readinessProbe.httpGet.path | string | `"/_matrix/mau/ready"` | | +| readinessProbe.httpGet.port | string | `"http"` | | +| registration."de.sorunome.msc2409.push_ephemeral" | bool | `true` | | +| registration.namespaces.users[0].exclusive | bool | `true` | | +| registration.namespaces.users[0].regex | string | `"^@signalbot:example.org$"` | | +| registration.namespaces.users[1].exclusive | bool | `true` | | +| registration.namespaces.users[1].regex | string | `"^@signal_.*:example.org$"` | | +| registration.push_ephemeral | bool | `true` | | +| registration.rate_limited | bool | `false` | | +| replicaCount | int | `1` | | +| resources | object | `{}` | | +| securityContext | object | `{}` | | +| service.type | string | `"ClusterIP"` | | +| serviceAccount.annotations | object | `{}` | | +| serviceAccount.automount | bool | `false` | | +| serviceAccount.create | bool | `false` | | +| serviceAccount.name | string | `""` | | +| tolerations | list | `[]` | | +| volumeMounts | list | `[]` | | +| volumes | list | `[]` | | + +Autogenerated from chart metadata using [helm-docs](https://github.com/norwoodj/helm-docs) + diff --git a/mautrix-bridge/_docs.gotmpl b/mautrix-bridge/_docs.gotmpl new file mode 100644 index 0000000..97820d7 --- /dev/null +++ b/mautrix-bridge/_docs.gotmpl @@ -0,0 +1,5 @@ +{{ define "chart.prerequirements" -}} +For use of the bridge: +* **signal**, use the `./values-signal.yaml` +* **slack**, use the `./values-slack.yaml` +{{ end }} diff --git a/mautrix-signal/templates/NOTES.txt b/mautrix-bridge/templates/NOTES.txt similarity index 86% rename from mautrix-signal/templates/NOTES.txt rename to mautrix-bridge/templates/NOTES.txt index d1e86ce..3041f61 100644 --- a/mautrix-signal/templates/NOTES.txt +++ b/mautrix-bridge/templates/NOTES.txt @@ -6,16 +6,16 @@ {{- end }} {{- end }} {{- else if contains "NodePort" .Values.service.type }} - export NODE_PORT=$(kubectl get --namespace {{ .Release.Namespace }} -o jsonpath="{.spec.ports[0].nodePort}" services {{ include "mautrix-signal.fullname" . }}) + export NODE_PORT=$(kubectl get --namespace {{ .Release.Namespace }} -o jsonpath="{.spec.ports[0].nodePort}" services {{ include "mautrix-bridge.fullname" . }}) export NODE_IP=$(kubectl get nodes --namespace {{ .Release.Namespace }} -o jsonpath="{.items[0].status.addresses[0].address}") echo http://$NODE_IP:$NODE_PORT {{- else if contains "LoadBalancer" .Values.service.type }} NOTE: It may take a few minutes for the LoadBalancer IP to be available. - You can watch the status of by running 'kubectl get --namespace {{ .Release.Namespace }} svc -w {{ include "mautrix-signal.fullname" . }}' - export SERVICE_IP=$(kubectl get svc --namespace {{ .Release.Namespace }} {{ include "mautrix-signal.fullname" . }} --template "{{"{{ range (index .status.loadBalancer.ingress 0) }}{{.}}{{ end }}"}}") + You can watch the status of by running 'kubectl get --namespace {{ .Release.Namespace }} svc -w {{ include "mautrix-bridge.fullname" . }}' + export SERVICE_IP=$(kubectl get svc --namespace {{ .Release.Namespace }} {{ include "mautrix-bridge.fullname" . }} --template "{{"{{ range (index .status.loadBalancer.ingress 0) }}{{.}}{{ end }}"}}") echo http://$SERVICE_IP:{{ .Values.service.port }} {{- else if contains "ClusterIP" .Values.service.type }} - export POD_NAME=$(kubectl get pods --namespace {{ .Release.Namespace }} -l "app.kubernetes.io/name={{ include "mautrix-signal.name" . }},app.kubernetes.io/instance={{ .Release.Name }}" -o jsonpath="{.items[0].metadata.name}") + export POD_NAME=$(kubectl get pods --namespace {{ .Release.Namespace }} -l "app.kubernetes.io/name={{ include "mautrix-bridge.name" . }},app.kubernetes.io/instance={{ .Release.Name }}" -o jsonpath="{.items[0].metadata.name}") export CONTAINER_PORT=$(kubectl get pod --namespace {{ .Release.Namespace }} $POD_NAME -o jsonpath="{.spec.containers[0].ports[0].containerPort}") echo "Visit http://127.0.0.1:8080 to use your application" kubectl --namespace {{ .Release.Namespace }} port-forward $POD_NAME 8080:$CONTAINER_PORT diff --git a/mautrix-signal/templates/_helpers.tpl b/mautrix-bridge/templates/_helpers.tpl similarity index 74% rename from mautrix-signal/templates/_helpers.tpl rename to mautrix-bridge/templates/_helpers.tpl index 4d2b93f..e4f9350 100644 --- a/mautrix-signal/templates/_helpers.tpl +++ b/mautrix-bridge/templates/_helpers.tpl @@ -1,7 +1,7 @@ {{/* Expand the name of the chart. */}} -{{- define "mautrix-signal.name" -}} +{{- define "mautrix-bridge.name" -}} {{- default .Chart.Name .Values.nameOverride | trunc 63 | trimSuffix "-" }} {{- end }} @@ -10,7 +10,7 @@ Create a default fully qualified app name. We truncate at 63 chars because some Kubernetes name fields are limited to this (by the DNS naming spec). If release name contains chart name it will be used as a full name. */}} -{{- define "mautrix-signal.fullname" -}} +{{- define "mautrix-bridge.fullname" -}} {{- if .Values.fullnameOverride }} {{- .Values.fullnameOverride | trunc 63 | trimSuffix "-" }} {{- else }} @@ -26,16 +26,16 @@ If release name contains chart name it will be used as a full name. {{/* Create chart name and version as used by the chart label. */}} -{{- define "mautrix-signal.chart" -}} +{{- define "mautrix-bridge.chart" -}} {{- printf "%s-%s" .Chart.Name .Chart.Version | replace "+" "_" | trunc 63 | trimSuffix "-" }} {{- end }} {{/* Common labels */}} -{{- define "mautrix-signal.labels" -}} -helm.sh/chart: {{ include "mautrix-signal.chart" . }} -{{ include "mautrix-signal.selectorLabels" . }} +{{- define "mautrix-bridge.labels" -}} +helm.sh/chart: {{ include "mautrix-bridge.chart" . }} +{{ include "mautrix-bridge.selectorLabels" . }} {{- if .Chart.AppVersion }} app.kubernetes.io/version: {{ .Chart.AppVersion | quote }} {{- end }} @@ -45,17 +45,17 @@ app.kubernetes.io/managed-by: {{ .Release.Service }} {{/* Selector labels */}} -{{- define "mautrix-signal.selectorLabels" -}} -app.kubernetes.io/name: {{ include "mautrix-signal.name" . }} +{{- define "mautrix-bridge.selectorLabels" -}} +app.kubernetes.io/name: {{ include "mautrix-bridge.name" . }} app.kubernetes.io/instance: {{ .Release.Name }} {{- end }} {{/* Create the name of the service account to use */}} -{{- define "mautrix-signal.serviceAccountName" -}} +{{- define "mautrix-bridge.serviceAccountName" -}} {{- if .Values.serviceAccount.create }} -{{- default (include "mautrix-signal.fullname" .) .Values.serviceAccount.name }} +{{- default (include "mautrix-bridge.fullname" .) .Values.serviceAccount.name }} {{- else }} {{- default "default" .Values.serviceAccount.name }} {{- end }} diff --git a/mautrix-signal/templates/deployment.yaml b/mautrix-bridge/templates/deployment.yaml similarity index 86% rename from mautrix-signal/templates/deployment.yaml rename to mautrix-bridge/templates/deployment.yaml index dacb6e6..0d798c2 100644 --- a/mautrix-signal/templates/deployment.yaml +++ b/mautrix-bridge/templates/deployment.yaml @@ -1,16 +1,16 @@ apiVersion: apps/v1 kind: Deployment metadata: - name: {{ include "mautrix-signal.fullname" . }} + name: {{ include "mautrix-bridge.fullname" . }} labels: - {{- include "mautrix-signal.labels" . | nindent 4 }} + {{- include "mautrix-bridge.labels" . | nindent 4 }} spec: {{- if not .Values.autoscaling.enabled }} replicas: {{ .Values.replicaCount }} {{- end }} selector: matchLabels: - {{- include "mautrix-signal.selectorLabels" . | nindent 6 }} + {{- include "mautrix-bridge.selectorLabels" . | nindent 6 }} template: metadata: annotations: @@ -19,7 +19,7 @@ spec: {{- toYaml . | nindent 8 }} {{- end }} labels: - {{- include "mautrix-signal.labels" . | nindent 8 }} + {{- include "mautrix-bridge.labels" . | nindent 8 }} {{- with .Values.podLabels }} {{- toYaml . | nindent 8 }} {{- end }} @@ -28,7 +28,7 @@ spec: imagePullSecrets: {{- toYaml . | nindent 8 }} {{- end }} - serviceAccountName: {{ include "mautrix-signal.serviceAccountName" . }} + serviceAccountName: {{ include "mautrix-bridge.serviceAccountName" . }} securityContext: {{- toYaml .Values.podSecurityContext | nindent 8 }} containers: @@ -36,7 +36,7 @@ spec: securityContext: {{- toYaml .Values.securityContext | nindent 12 }} {{- with .Values.image }} - image: "{{ coalesce $.Values.global.image.registry .registry }}/{{ .repository }}:{{ .tag | default (printf "v%s" $.Chart.AppVersion) }}" + image: "{{ coalesce $.Values.global.image.registry .registry }}/{{ .repository }}:{{ .tag }}" imagePullPolicy: {{ coalesce $.Values.global.image.pullPolicy .pullPolicy }} {{- end }} ports: @@ -64,7 +64,7 @@ spec: volumes: - name: config secret: - secretName: {{ include "mautrix-signal.fullname" . }} + secretName: {{ include "mautrix-bridge.fullname" . }} items: - key: config.yaml path: config.yaml @@ -78,7 +78,7 @@ spec: path: {{ .Values.persistence.hostPath | quote }} {{- else }}{{/* else .persistence.hostPath */}} persistentVolumeClaim: - claimName: {{ coalesce .Values.persistence.existingClaim (include "mautrix-signal.fullname" .) }} + claimName: {{ coalesce .Values.persistence.existingClaim (include "mautrix-bridge.fullname" .) }} {{- end }}{{/* end-else .persistence.hostPath */}} {{- else }}{{/* else .persistence.enabled */}} emptyDir: {} diff --git a/mautrix-signal/templates/hpa.yaml b/mautrix-bridge/templates/hpa.yaml similarity index 84% rename from mautrix-signal/templates/hpa.yaml rename to mautrix-bridge/templates/hpa.yaml index 79085d1..9eeec5b 100644 --- a/mautrix-signal/templates/hpa.yaml +++ b/mautrix-bridge/templates/hpa.yaml @@ -2,14 +2,14 @@ apiVersion: autoscaling/v2 kind: HorizontalPodAutoscaler metadata: - name: {{ include "mautrix-signal.fullname" . }} + name: {{ include "mautrix-bridge.fullname" . }} labels: - {{- include "mautrix-signal.labels" . | nindent 4 }} + {{- include "mautrix-bridge.labels" . | nindent 4 }} spec: scaleTargetRef: apiVersion: apps/v1 kind: Deployment - name: {{ include "mautrix-signal.fullname" . }} + name: {{ include "mautrix-bridge.fullname" . }} minReplicas: {{ .Values.autoscaling.minReplicas }} maxReplicas: {{ .Values.autoscaling.maxReplicas }} metrics: diff --git a/mautrix-signal/templates/ingress.yaml b/mautrix-bridge/templates/ingress.yaml similarity index 94% rename from mautrix-signal/templates/ingress.yaml rename to mautrix-bridge/templates/ingress.yaml index 3f43dfe..3ebc28e 100644 --- a/mautrix-signal/templates/ingress.yaml +++ b/mautrix-bridge/templates/ingress.yaml @@ -1,5 +1,5 @@ {{- if .Values.ingress.enabled -}} -{{- $fullName := include "mautrix-signal.fullname" . -}} +{{- $fullName := include "mautrix-bridge.fullname" . -}} {{- $svcPort := .Values.service.port -}} {{- if and .Values.ingress.className (not (semverCompare ">=1.18-0" .Capabilities.KubeVersion.GitVersion)) }} {{- if not (hasKey .Values.ingress.annotations "kubernetes.io/ingress.class") }} @@ -17,7 +17,7 @@ kind: Ingress metadata: name: {{ $fullName }} labels: - {{- include "mautrix-signal.labels" . | nindent 4 }} + {{- include "mautrix-bridge.labels" . | nindent 4 }} {{- with .Values.ingress.annotations }} annotations: {{- toYaml . | nindent 4 }} diff --git a/mautrix-signal/templates/pvc.yaml b/mautrix-bridge/templates/pvc.yaml similarity index 84% rename from mautrix-signal/templates/pvc.yaml rename to mautrix-bridge/templates/pvc.yaml index ebf1997..52ddf3d 100644 --- a/mautrix-signal/templates/pvc.yaml +++ b/mautrix-bridge/templates/pvc.yaml @@ -8,9 +8,9 @@ kind: PersistentVolumeClaim apiVersion: v1 metadata: - name: {{ template "mautrix-signal.fullname" $ }} + name: {{ template "mautrix-bridge.fullname" $ }} labels: - {{- include "mautrix-signal.labels" $ | nindent 4 }} + {{- include "mautrix-bridge.labels" $ | nindent 4 }} {{- with .annotations }} annotations: {{ toYaml . | indent 4 }} diff --git a/mautrix-signal/templates/secrets.yaml b/mautrix-bridge/templates/secrets.yaml similarity index 92% rename from mautrix-signal/templates/secrets.yaml rename to mautrix-bridge/templates/secrets.yaml index e802f45..f024ead 100644 --- a/mautrix-signal/templates/secrets.yaml +++ b/mautrix-bridge/templates/secrets.yaml @@ -1,5 +1,5 @@ --- -{{ $secretName := include "mautrix-signal.fullname" . }} +{{ $secretName := include "mautrix-bridge.fullname" . }} {{- $asToken := get .Values.config.appservice "as_token" }} {{- $hsToken := get .Values.config.appservice "hs_token" }} {{- $senderLocalpart := false }} @@ -20,7 +20,7 @@ kind: Secret metadata: name: {{ $secretName }} labels: - {{- include "mautrix-signal.labels" . | nindent 4 }} + {{- include "mautrix-bridge.labels" . | nindent 4 }} type: Opaque data: as_token: {{ $asToken | b64enc }} diff --git a/mautrix-signal/templates/service.yaml b/mautrix-bridge/templates/service.yaml similarity index 65% rename from mautrix-signal/templates/service.yaml rename to mautrix-bridge/templates/service.yaml index 1f9e3a7..541a761 100644 --- a/mautrix-signal/templates/service.yaml +++ b/mautrix-bridge/templates/service.yaml @@ -2,14 +2,14 @@ apiVersion: v1 kind: Service metadata: - name: {{ include "mautrix-signal.fullname" . }} + name: {{ include "mautrix-bridge.fullname" . }} labels: - {{- include "mautrix-signal.labels" . | nindent 4 }} + {{- include "mautrix-bridge.labels" . | nindent 4 }} spec: type: {{ .Values.service.type }} publishNotReadyAddresses: true selector: - {{- include "mautrix-signal.selectorLabels" . | nindent 4 }} + {{- include "mautrix-bridge.selectorLabels" . | nindent 4 }} ports: - port: {{ .Values.config.appservice.port }} targetPort: http diff --git a/mautrix-signal/templates/serviceaccount.yaml b/mautrix-bridge/templates/serviceaccount.yaml similarity index 70% rename from mautrix-signal/templates/serviceaccount.yaml rename to mautrix-bridge/templates/serviceaccount.yaml index 147935d..9940f45 100644 --- a/mautrix-signal/templates/serviceaccount.yaml +++ b/mautrix-bridge/templates/serviceaccount.yaml @@ -2,9 +2,9 @@ apiVersion: v1 kind: ServiceAccount metadata: - name: {{ include "mautrix-signal.serviceAccountName" . }} + name: {{ include "mautrix-bridge.serviceAccountName" . }} labels: - {{- include "mautrix-signal.labels" . | nindent 4 }} + {{- include "mautrix-bridge.labels" . | nindent 4 }} {{- with .Values.serviceAccount.annotations }} annotations: {{- toYaml . | nindent 4 }} diff --git a/mautrix-signal/templates/tests/test-connection.yaml b/mautrix-bridge/templates/tests/test-connection.yaml similarity index 53% rename from mautrix-signal/templates/tests/test-connection.yaml rename to mautrix-bridge/templates/tests/test-connection.yaml index c82b1bd..ae40be7 100644 --- a/mautrix-signal/templates/tests/test-connection.yaml +++ b/mautrix-bridge/templates/tests/test-connection.yaml @@ -1,9 +1,9 @@ apiVersion: v1 kind: Pod metadata: - name: "{{ include "mautrix-signal.fullname" . }}-test-connection" + name: "{{ include "mautrix-bridge.fullname" . }}-test-connection" labels: - {{- include "mautrix-signal.labels" . | nindent 4 }} + {{- include "mautrix-bridge.labels" . | nindent 4 }} annotations: "helm.sh/hook": test spec: @@ -11,5 +11,5 @@ spec: - name: wget image: busybox command: ['wget'] - args: ['{{ include "mautrix-signal.fullname" . }}:{{ .Values.service.port }}'] + args: ['{{ include "mautrix-bridge.fullname" . }}:{{ .Values.service.port }}'] restartPolicy: Never diff --git a/mautrix-bridge/values-signal.yaml b/mautrix-bridge/values-signal.yaml new file mode 100644 index 0000000..4751c30 --- /dev/null +++ b/mautrix-bridge/values-signal.yaml @@ -0,0 +1,52 @@ +image: + repository: mautrix/signal + tag: "v0.7.2" + +config: + bridge: + command_prefix: '!signal' + database: + uri: postgres://user:password@host/maturix-signal?sslmode=disable + appservice: + id: signal + bot: + username: signalbot + displayname: Signal bridge bot + avatar: mxc://maunium.net/wPJgTQbZOtpBFmDNkiNEMDUp + username_template: signal_{{.}} + + management_room_text: + welcome: "Hello, I'm a Signal bridge bot." + + signal: + # -- Displayname template for Signal users. This is also used as the room name in DMs if private_chat_portal_meta is enabled. + # {{.ProfileName}} - The Signal profile name set by the user. + # {{.ContactName}} - The name for the user from your phone's contact list. This is not safe on multi-user instances. + # {{.PhoneNumber}} - The phone number of the user. + # {{.UUID}} - The UUID of the Signal user. + # {{.AboutEmoji}} - The emoji set by the user in their profile. + displayname_template: '{{ printf "%s (%s) %s" (or .ProfileName .ContactName "Unknown user") (or .PhoneNumber "Unknown number" (or .AboutEmoji "")}}' + # -- Should avatars from the user's contact list be used? This is not safe on multi-user instances. + use_contact_avatars: false + # -- Should the bridge request the user's contact list from the phone on startup? + sync_contacts_on_startup: true + # -- Should the bridge sync ghost user info even if profile fetching fails? This is not safe on multi-user instances. + use_outdated_profiles: false + # -- Should the Signal user's phone number be included in the room topic in private chat portal rooms? + number_in_topic: true + # -- Default device name that shows up in the Signal app. + device_name: mautrix-signal + # Avatar image for the Note to Self room. + note_to_self_avatar: mxc://maunium.net/REBIVrqjZwmaWpssCZpBlmlL + # Format for generating URLs from location messages for sending to Signal. + # Google Maps: 'https://www.google.com/maps/place/%[1]s,%[2]s' + # OpenStreetMap: 'https://www.openstreetmap.org/?mlat=%[1]s&mlon=%[2]s' + location_format: 'https://www.openstreetmap.org/?mlat=%[1]s&mlon=%[2]s' + +registration: + namespaces: + users: + - regex: ^@signalbot:example.org$ + exclusive: true + - regex: ^@signal_.*:example.org$ + exclusive: true diff --git a/mautrix-bridge/values-slack.yaml b/mautrix-bridge/values-slack.yaml new file mode 100644 index 0000000..2117acf --- /dev/null +++ b/mautrix-bridge/values-slack.yaml @@ -0,0 +1,39 @@ +image: + repository: mautrix/slack + tag: "v0.1.2" + +config: + bridge: + command_prefix: '!slack' + database: + uri: postgres://user:password@host/mautrix-slack?sslmode=disable + appservice: + id: slack + bot: + username: slackbot + displayname: "Slack bridge bot" + avatar: "mxc://maunium.net/pVtzLmChZejGxLqmXtQjFxem" + username_template: slack_{{.}} + + management_room_text: + welcome: "Hello, I'm a Slack bridge bot." + + slack: + displayname_template: '{{or .Profile.DisplayName .Profile.RealName .Name}}{{if .IsBot}} (bot){{end}}' + channel_name_template: '{{if and .IsChannel (not .IsPrivate)}}#{{end}}{{.Name}}{{if .IsNoteToSelf}} (you){{end}}' + team_name_template: "{{ .Name }}" + custom_emoji_reactions: true + workspace_avatar_in_rooms: false + participant_sync_count: 5 + participant_sync_only_on_create: true + mute_channels_by_default: false + backfill: + conversation_count: -1 + +registration: + namespaces: + users: + - regex: ^@slackbot:example.org$ + exclusive: true + - regex: ^@slack_.*:example.org$ + exclusive: true diff --git a/mautrix-signal/values.yaml b/mautrix-bridge/values.yaml similarity index 99% rename from mautrix-signal/values.yaml rename to mautrix-bridge/values.yaml index c54fb47..e7a25ea 100644 --- a/mautrix-signal/values.yaml +++ b/mautrix-bridge/values.yaml @@ -9,8 +9,7 @@ replicaCount: 1 image: registry: dock.mau.dev - repository: mautrix/signal - # Overrides the image tag whose default is the chart appVersion. + repository: "" tag: "" pullPolicy: IfNotPresent @@ -22,7 +21,7 @@ config: # Bridge config bridge: # -- The prefix for commands. Only required in non-management rooms. - command_prefix: '!signal' + command_prefix: '!bridge' # -- Should the bridge create a space for each login containing the rooms that account is in? personal_filtering_spaces: true # -- Whether the bridge should set names and avatars explicitly for DM portals. diff --git a/mautrix-signal/Chart.yaml b/mautrix-signal/Chart.yaml deleted file mode 100644 index c24f8bf..0000000 --- a/mautrix-signal/Chart.yaml +++ /dev/null @@ -1,10 +0,0 @@ -apiVersion: v2 -name: mautrix-signal -description: A Matrix-Signal puppeting bridge. -type: application -version: 0.0.13 -# renovate: image=dock.mau.dev/mautrix/signal -appVersion: "0.7.2" -maintainers: - - name: WrenIX - url: https://wrenix.eu diff --git a/mautrix-signal/_docs.gotmpl b/mautrix-signal/_docs.gotmpl deleted file mode 100644 index 61d69af..0000000 --- a/mautrix-signal/_docs.gotmpl +++ /dev/null @@ -1,14 +0,0 @@ -{{ define "chart.prerequirements" -}} -= Alpha - -WARNING -==== -We stop working on this Helm-Chart. -There are still many breaking change like: - -* https://github.com/stalwartlabs/mail-server/issues/211[storage.fts in toml configuration has two meanings] - -We hope that stalward mail-server becomes more stable. - -==== -{{ end }} -- 2.45.3 From 3b4b6961dbfe0bcec76b34bf28e816ceb8af074e Mon Sep 17 00:00:00 2001 From: WrenIX Date: Fri, 15 Nov 2024 17:58:00 +0100 Subject: [PATCH 057/134] fix(postgresql): update appVersion --- postgresql/Chart.yaml | 4 ++-- postgresql/README.adoc | 4 ++-- postgresql/README.md | 2 +- 3 files changed, 5 insertions(+), 5 deletions(-) diff --git a/postgresql/Chart.yaml b/postgresql/Chart.yaml index 49b3dab..d6ba6bc 100644 --- a/postgresql/Chart.yaml +++ b/postgresql/Chart.yaml @@ -4,9 +4,9 @@ name: "postgresql" description: "A Helm chart for running PostgreSQL (Postgres) database" icon: https://wiki.postgresql.org/images/a/a4/PostgreSQL_logo.3colors.svg type: "application" -version: "0.2.1" +version: "0.2.2" # renovate: image=docker.io/library/postgres -appVersion: "17.0-alpine" +appVersion: "17.1-alpine" maintainers: - name: WrenIX url: https://wrenix.eu diff --git a/postgresql/README.adoc b/postgresql/README.adoc index 0fa7a1e..0303a36 100644 --- a/postgresql/README.adoc +++ b/postgresql/README.adoc @@ -2,9 +2,9 @@ = postgresql -image::https://img.shields.io/badge/Version-0.2.1-informational?style=flat-square[Version: 0.2.1] +image::https://img.shields.io/badge/Version-0.2.2-informational?style=flat-square[Version: 0.2.2] image::https://img.shields.io/badge/Version-application-informational?style=flat-square[Type: application] -image::https://img.shields.io/badge/AppVersion-17.0-alpine-informational?style=flat-square[AppVersion: 17.0-alpine] +image::https://img.shields.io/badge/AppVersion-17.1-alpine-informational?style=flat-square[AppVersion: 17.1-alpine] == Maintainers .Maintainers diff --git a/postgresql/README.md b/postgresql/README.md index 509d5ee..419489b 100644 --- a/postgresql/README.md +++ b/postgresql/README.md @@ -7,7 +7,7 @@ description: "A Helm chart for running PostgreSQL (Postgres) database" # postgresql -![Version: 0.2.1](https://img.shields.io/badge/Version-0.2.1-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 17.0-alpine](https://img.shields.io/badge/AppVersion-17.0--alpine-informational?style=flat-square) +![Version: 0.2.2](https://img.shields.io/badge/Version-0.2.2-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 17.1-alpine](https://img.shields.io/badge/AppVersion-17.1--alpine-informational?style=flat-square) A Helm chart for running PostgreSQL (Postgres) database -- 2.45.3 From bcef18fc3638acd95c66567b0ab0acb840bd9716 Mon Sep 17 00:00:00 2001 From: WrenIX Date: Mon, 18 Nov 2024 14:56:22 +0100 Subject: [PATCH 058/134] fix(home-assistant): update appVersion --- grampsweb/Chart.yaml | 4 ++-- grampsweb/README.adoc | 4 ++-- grampsweb/README.md | 2 +- home-assistant/Chart.yaml | 4 ++-- home-assistant/README.adoc | 4 ++-- home-assistant/README.md | 2 +- 6 files changed, 10 insertions(+), 10 deletions(-) diff --git a/grampsweb/Chart.yaml b/grampsweb/Chart.yaml index eb69956..10f4b92 100644 --- a/grampsweb/Chart.yaml +++ b/grampsweb/Chart.yaml @@ -3,9 +3,9 @@ name: grampsweb description: A Helm chart for gramps web icon: https://raw.githubusercontent.com/gramps-project/Gramps.js/main/images/icon512.png type: application -version: "0.2.3" +version: "0.2.4" # renovate: image=ghcr.io/gramps-project/grampsweb -appVersion: "24.10.0" +appVersion: "24.11.0" maintainers: - name: WrenIX url: https://wrenix.eu diff --git a/grampsweb/README.adoc b/grampsweb/README.adoc index f2a8a2b..0613b81 100644 --- a/grampsweb/README.adoc +++ b/grampsweb/README.adoc @@ -2,9 +2,9 @@ = grampsweb -image::https://img.shields.io/badge/Version-0.2.3-informational?style=flat-square[Version: 0.2.3] +image::https://img.shields.io/badge/Version-0.2.4-informational?style=flat-square[Version: 0.2.4] image::https://img.shields.io/badge/Version-application-informational?style=flat-square[Type: application] -image::https://img.shields.io/badge/AppVersion-24.10.0-informational?style=flat-square[AppVersion: 24.10.0] +image::https://img.shields.io/badge/AppVersion-24.11.0-informational?style=flat-square[AppVersion: 24.11.0] == Maintainers .Maintainers diff --git a/grampsweb/README.md b/grampsweb/README.md index 3ae1274..9a5867a 100644 --- a/grampsweb/README.md +++ b/grampsweb/README.md @@ -7,7 +7,7 @@ description: "A Helm chart for gramps web" # grampsweb -![Version: 0.2.3](https://img.shields.io/badge/Version-0.2.3-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 24.10.0](https://img.shields.io/badge/AppVersion-24.10.0-informational?style=flat-square) +![Version: 0.2.4](https://img.shields.io/badge/Version-0.2.4-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 24.11.0](https://img.shields.io/badge/AppVersion-24.11.0-informational?style=flat-square) A Helm chart for gramps web diff --git a/home-assistant/Chart.yaml b/home-assistant/Chart.yaml index d41d167..fa3c65c 100644 --- a/home-assistant/Chart.yaml +++ b/home-assistant/Chart.yaml @@ -3,9 +3,9 @@ name: home-assistant description: Home Assistant with tooling to run on an k3s pi icon: https://www.home-assistant.io/images/favicon-192x192.png type: application -version: 0.2.5 +version: 0.2.6 # renovate: image=ghcr.io/home-assistant/home-assistant -appVersion: "2024.11.1" +appVersion: "2024.11.2" maintainers: - name: WrenIX url: https://wrenix.eu diff --git a/home-assistant/README.adoc b/home-assistant/README.adoc index 67841a2..2b039c1 100644 --- a/home-assistant/README.adoc +++ b/home-assistant/README.adoc @@ -2,9 +2,9 @@ = home-assistant -image::https://img.shields.io/badge/Version-0.2.5-informational?style=flat-square[Version: 0.2.5] +image::https://img.shields.io/badge/Version-0.2.6-informational?style=flat-square[Version: 0.2.6] image::https://img.shields.io/badge/Version-application-informational?style=flat-square[Type: application] -image::https://img.shields.io/badge/AppVersion-2024.11.1-informational?style=flat-square[AppVersion: 2024.11.1] +image::https://img.shields.io/badge/AppVersion-2024.11.2-informational?style=flat-square[AppVersion: 2024.11.2] == Maintainers .Maintainers diff --git a/home-assistant/README.md b/home-assistant/README.md index 642f7ee..10e7c9f 100644 --- a/home-assistant/README.md +++ b/home-assistant/README.md @@ -7,7 +7,7 @@ description: "Home Assistant with tooling to run on an k3s pi" # home-assistant -![Version: 0.2.5](https://img.shields.io/badge/Version-0.2.5-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 2024.11.1](https://img.shields.io/badge/AppVersion-2024.11.1-informational?style=flat-square) +![Version: 0.2.6](https://img.shields.io/badge/Version-0.2.6-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 2024.11.2](https://img.shields.io/badge/AppVersion-2024.11.2-informational?style=flat-square) Home Assistant with tooling to run on an k3s pi -- 2.45.3 From 4f25dbc235e35432e85e75636e09be5710670a8e Mon Sep 17 00:00:00 2001 From: WrenIX Date: Mon, 18 Nov 2024 14:56:29 +0100 Subject: [PATCH 059/134] fix(jellyfin): update appVersion --- jellyfin/Chart.yaml | 4 ++-- jellyfin/README.adoc | 4 ++-- jellyfin/README.md | 2 +- 3 files changed, 5 insertions(+), 5 deletions(-) diff --git a/jellyfin/Chart.yaml b/jellyfin/Chart.yaml index 24c0f44..0848d72 100644 --- a/jellyfin/Chart.yaml +++ b/jellyfin/Chart.yaml @@ -3,9 +3,9 @@ name: jellyfin description: The Free Software Media System icon: https://raw.githubusercontent.com/jellyfin/jellyfin-ux/master/branding/SVG/icon-transparent.svg type: application -version: "0.3.5" +version: "0.3.6" # renovate: image=ghcr.io/jellyfin/jellyfin -appVersion: "10.10.1" +appVersion: "10.10.2" maintainers: - name: WrenIX url: https://wrenix.eu diff --git a/jellyfin/README.adoc b/jellyfin/README.adoc index 0756342..ba92f60 100644 --- a/jellyfin/README.adoc +++ b/jellyfin/README.adoc @@ -2,9 +2,9 @@ = jellyfin -image::https://img.shields.io/badge/Version-0.3.5-informational?style=flat-square[Version: 0.3.5] +image::https://img.shields.io/badge/Version-0.3.6-informational?style=flat-square[Version: 0.3.6] image::https://img.shields.io/badge/Version-application-informational?style=flat-square[Type: application] -image::https://img.shields.io/badge/AppVersion-10.10.1-informational?style=flat-square[AppVersion: 10.10.1] +image::https://img.shields.io/badge/AppVersion-10.10.2-informational?style=flat-square[AppVersion: 10.10.2] == Maintainers .Maintainers diff --git a/jellyfin/README.md b/jellyfin/README.md index 36df80e..e6b3507 100644 --- a/jellyfin/README.md +++ b/jellyfin/README.md @@ -7,7 +7,7 @@ description: "The Free Software Media System" # jellyfin -![Version: 0.3.5](https://img.shields.io/badge/Version-0.3.5-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 10.10.1](https://img.shields.io/badge/AppVersion-10.10.1-informational?style=flat-square) +![Version: 0.3.6](https://img.shields.io/badge/Version-0.3.6-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 10.10.2](https://img.shields.io/badge/AppVersion-10.10.2-informational?style=flat-square) The Free Software Media System -- 2.45.3 From 2d624653a8df0396ba4aa0a69c35e8d0ac1c1ff0 Mon Sep 17 00:00:00 2001 From: WrenIX Date: Mon, 18 Nov 2024 15:01:52 +0100 Subject: [PATCH 060/134] fix(forgejo-runner): update appVersion --- forgejo-runner/Chart.yaml | 4 ++-- forgejo-runner/README.adoc | 13 +++++++++---- forgejo-runner/README.md | 5 +++-- forgejo-runner/values.yaml | 11 +++++++---- 4 files changed, 21 insertions(+), 12 deletions(-) diff --git a/forgejo-runner/Chart.yaml b/forgejo-runner/Chart.yaml index 0e2aa64..cb24bdc 100644 --- a/forgejo-runner/Chart.yaml +++ b/forgejo-runner/Chart.yaml @@ -2,9 +2,9 @@ apiVersion: v2 name: forgejo-runner description: Deploy runner for an forgejo instance (default codeberg.org) type: application -version: "0.3.3" +version: "0.4.0" # renovate: image=code.forgejo.org/forgejo/runner -appVersion: "4.0.1" +appVersion: "5.0.0" maintainers: - name: WrenIX url: https://wrenix.eu diff --git a/forgejo-runner/README.adoc b/forgejo-runner/README.adoc index 56e496f..4024835 100644 --- a/forgejo-runner/README.adoc +++ b/forgejo-runner/README.adoc @@ -2,9 +2,9 @@ = forgejo-runner -image::https://img.shields.io/badge/Version-0.3.3-informational?style=flat-square[Version: 0.3.3] +image::https://img.shields.io/badge/Version-0.4.0-informational?style=flat-square[Version: 0.4.0] image::https://img.shields.io/badge/Version-application-informational?style=flat-square[Type: application] -image::https://img.shields.io/badge/AppVersion-4.0.1-informational?style=flat-square[AppVersion: 4.0.1] +image::https://img.shields.io/badge/AppVersion-5.0.0-informational?style=flat-square[AppVersion: 5.0.0] == Maintainers .Maintainers @@ -106,8 +106,8 @@ helm uninstall forgejo-runner-release | runner.config.file.container.docker_host | string -| `""` -| overrides the docker client host with the specified one. If it's empty, act_runner will find an available docker host automatically. If it's "-", act_runner will find an available docker host automatically, but the docker host won't be mounted to the job containers and service containers. If it's not empty or "-", the specified docker host will be used. An error will be returned if it doesn't work. +| `"-"` +| overrides the docker client host with the specified one. If "-", an available docker host will automatically be found. If empty, an available docker host will automatically be found and mounted in the job container (e.g. /var/run/docker.sock). Otherwise the specified docker host will be used and an error will be returned if it doesn't work. | runner.config.file.container.enable_ipv6 | bool @@ -149,6 +149,11 @@ helm uninstall forgejo-runner-release | `nil` | The parent directory of a job's working directory. If it's empty, $HOME/.cache/act/ will be used. +| runner.config.file.log.job_level +| string +| `"info"` +| The level of logging for jobs, can be trace, debug, info, earn, error, fatal + | runner.config.file.log.level | string | `"info"` diff --git a/forgejo-runner/README.md b/forgejo-runner/README.md index 8f2101d..e66d543 100644 --- a/forgejo-runner/README.md +++ b/forgejo-runner/README.md @@ -7,7 +7,7 @@ description: "Deploy runner for an forgejo instance (default codeberg.org)" # forgejo-runner -![Version: 0.3.3](https://img.shields.io/badge/Version-0.3.3-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 4.0.1](https://img.shields.io/badge/AppVersion-4.0.1-informational?style=flat-square) +![Version: 0.4.0](https://img.shields.io/badge/Version-0.4.0-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 5.0.0](https://img.shields.io/badge/AppVersion-5.0.0-informational?style=flat-square) Deploy runner for an forgejo instance (default codeberg.org) @@ -82,7 +82,7 @@ helm uninstall forgejo-runner-release | runner.config.file.cache.external_server | string | `""` | The external cache server URL. Valid only when enable is true. If it's specified, act_runner will use this URL as the ACTIONS_CACHE_URL rather than start a server by itself. The URL should generally end with "/". | | runner.config.file.cache.host | string | `""` | The host of the cache server. It's not for the address to listen, but the address to connect from job containers. So 0.0.0.0 is a bad choice, leave it empty to detect automatically. | | runner.config.file.cache.port | int | `0` | The port of the cache server. 0 means to use a random available port. | -| runner.config.file.container.docker_host | string | `""` | overrides the docker client host with the specified one. If it's empty, act_runner will find an available docker host automatically. If it's "-", act_runner will find an available docker host automatically, but the docker host won't be mounted to the job containers and service containers. If it's not empty or "-", the specified docker host will be used. An error will be returned if it doesn't work. | +| runner.config.file.container.docker_host | string | `"-"` | overrides the docker client host with the specified one. If "-", an available docker host will automatically be found. If empty, an available docker host will automatically be found and mounted in the job container (e.g. /var/run/docker.sock). Otherwise the specified docker host will be used and an error will be returned if it doesn't work. | | runner.config.file.container.enable_ipv6 | bool | `false` | Whether to create networks with IPv6 enabled. Requires the Docker daemon to be set up accordingly. Only takes effect if "network" is set to "". | | runner.config.file.container.force_pull | bool | `false` | Pull docker image(s) even if already present | | runner.config.file.container.network | string | `""` | Specifies the network to which the container will connect. Could be host, bridge or the name of a custom network. If it's empty, create a network automatically. | @@ -91,6 +91,7 @@ helm uninstall forgejo-runner-release | runner.config.file.container.valid_volumes | list | `[]` | Volumes (including bind mounts) can be mounted to containers. Glob syntax is supported, see https://github.com/gobwas/glob You can specify multiple volumes. If the sequence is empty, no volumes can be mounted. For example, if you only allow containers to mount the `data` volume and all the json files in `/src`, you should change the config to: valid_volumes: - data - /src/*.json If you want to allow any volume, please use the following configuration: valid_volumes: - '**' | | runner.config.file.container.workdir_parent | string | `nil` | The parent directory of a job's working directory. If it's empty, /workspace will be used. | | runner.config.file.host.workdir_parent | string | `nil` | The parent directory of a job's working directory. If it's empty, $HOME/.cache/act/ will be used. | +| runner.config.file.log.job_level | string | `"info"` | The level of logging for jobs, can be trace, debug, info, earn, error, fatal | | runner.config.file.log.level | string | `"info"` | The level of logging, can be trace, debug, info, warn, error, fatal | | runner.config.file.runner.capacity | int | `1` | Execute how many tasks concurrently at the same time. | | runner.config.file.runner.env_file | string | `".env"` | Extra environment variables to run jobs from a file. It will be ignored if it's empty or the file doesn't exist. | diff --git a/forgejo-runner/values.yaml b/forgejo-runner/values.yaml index bb065f2..4c73930 100644 --- a/forgejo-runner/values.yaml +++ b/forgejo-runner/values.yaml @@ -30,6 +30,9 @@ runner: # -- The level of logging, can be trace, debug, info, warn, error, fatal # @section -- Configuration yaml of runner (see: https://code.forgejo.org/forgejo/runner/src/branch/main/internal/pkg/config/config.example.yaml) level: "info" + # -- The level of logging for jobs, can be trace, debug, info, earn, error, fatal + # @section -- Configuration yaml of runner (see: https://code.forgejo.org/forgejo/runner/src/branch/main/internal/pkg/config/config.example.yaml) + job_level: info runner: # -- Runner config which contains id and token of this runner (autogenerate with create) # @section -- Configuration yaml of runner (see: https://code.forgejo.org/forgejo/runner/src/branch/main/internal/pkg/config/config.example.yaml) @@ -122,11 +125,11 @@ runner: # @section -- Configuration yaml of runner (see: https://code.forgejo.org/forgejo/runner/src/branch/main/internal/pkg/config/config.example.yaml) valid_volumes: [] # -- overrides the docker client host with the specified one. - # If it's empty, act_runner will find an available docker host automatically. - # If it's "-", act_runner will find an available docker host automatically, but the docker host won't be mounted to the job containers and service containers. - # If it's not empty or "-", the specified docker host will be used. An error will be returned if it doesn't work. + # If "-", an available docker host will automatically be found. + # If empty, an available docker host will automatically be found and mounted in the job container (e.g. /var/run/docker.sock). + # Otherwise the specified docker host will be used and an error will be returned if it doesn't work. # @section -- Configuration yaml of runner (see: https://code.forgejo.org/forgejo/runner/src/branch/main/internal/pkg/config/config.example.yaml) - docker_host: "" + docker_host: "-" # -- Pull docker image(s) even if already present # @section -- Configuration yaml of runner (see: https://code.forgejo.org/forgejo/runner/src/branch/main/internal/pkg/config/config.example.yaml) force_pull: false -- 2.45.3 From a7b0cfb92c1e41373811a032dbbe610329a2cafd Mon Sep 17 00:00:00 2001 From: WrenIX Date: Mon, 18 Nov 2024 15:15:16 +0100 Subject: [PATCH 061/134] fix(mautrix-bridge): update appVersion --- mautrix-bridge/Chart.yaml | 2 +- mautrix-bridge/README.adoc | 6 +++--- mautrix-bridge/README.md | 6 +++--- mautrix-bridge/_docs.gotmpl | 4 ++-- .../signal/values.yaml} | 2 +- .../{values-slack.yaml => bridge-values/slack/values.yaml} | 2 +- 6 files changed, 11 insertions(+), 11 deletions(-) rename mautrix-bridge/{values-signal.yaml => bridge-values/signal/values.yaml} (99%) rename mautrix-bridge/{values-slack.yaml => bridge-values/slack/values.yaml} (98%) diff --git a/mautrix-bridge/Chart.yaml b/mautrix-bridge/Chart.yaml index 4a99de6..07aae71 100644 --- a/mautrix-bridge/Chart.yaml +++ b/mautrix-bridge/Chart.yaml @@ -2,7 +2,7 @@ apiVersion: v2 name: mautrix-bridge description: A Matrix puppeting bridge mautrix. type: application -version: 0.0.13 +version: 0.0.14 maintainers: - name: WrenIX url: https://wrenix.eu diff --git a/mautrix-bridge/README.adoc b/mautrix-bridge/README.adoc index 0261fc1..d5b46f5 100644 --- a/mautrix-bridge/README.adoc +++ b/mautrix-bridge/README.adoc @@ -2,7 +2,7 @@ = mautrix-bridge -image::https://img.shields.io/badge/Version-0.0.13-informational?style=flat-square[Version: 0.0.13] +image::https://img.shields.io/badge/Version-0.0.14-informational?style=flat-square[Version: 0.0.14] image::https://img.shields.io/badge/Version-application-informational?style=flat-square[Type: application] == Maintainers @@ -16,8 +16,8 @@ image::https://img.shields.io/badge/Version-application-informational?style=flat |=== For use of the bridge: -* **signal**, use the `./values-signal.yaml` -* **slack**, use the `./values-slack.yaml` +* **signal**, use the `./bridge-values/signal/values.yaml` +* **slack**, use the `./bridge-values/slack/values.yaml` == Usage diff --git a/mautrix-bridge/README.md b/mautrix-bridge/README.md index 449ac9d..25c00c6 100644 --- a/mautrix-bridge/README.md +++ b/mautrix-bridge/README.md @@ -7,7 +7,7 @@ description: "A Matrix puppeting bridge mautrix." # mautrix-bridge -![Version: 0.0.13](https://img.shields.io/badge/Version-0.0.13-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) +![Version: 0.0.14](https://img.shields.io/badge/Version-0.0.14-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) A Matrix puppeting bridge mautrix. @@ -18,8 +18,8 @@ A Matrix puppeting bridge mautrix. | WrenIX | | | For use of the bridge: -* **signal**, use the `./values-signal.yaml` -* **slack**, use the `./values-slack.yaml` +* **signal**, use the `./bridge-values/signal/values.yaml` +* **slack**, use the `./bridge-values/slack/values.yaml` ## Usage diff --git a/mautrix-bridge/_docs.gotmpl b/mautrix-bridge/_docs.gotmpl index 97820d7..867fd60 100644 --- a/mautrix-bridge/_docs.gotmpl +++ b/mautrix-bridge/_docs.gotmpl @@ -1,5 +1,5 @@ {{ define "chart.prerequirements" -}} For use of the bridge: -* **signal**, use the `./values-signal.yaml` -* **slack**, use the `./values-slack.yaml` +* **signal**, use the `./bridge-values/signal/values.yaml` +* **slack**, use the `./bridge-values/slack/values.yaml` {{ end }} diff --git a/mautrix-bridge/values-signal.yaml b/mautrix-bridge/bridge-values/signal/values.yaml similarity index 99% rename from mautrix-bridge/values-signal.yaml rename to mautrix-bridge/bridge-values/signal/values.yaml index 4751c30..71e00a5 100644 --- a/mautrix-bridge/values-signal.yaml +++ b/mautrix-bridge/bridge-values/signal/values.yaml @@ -1,6 +1,6 @@ image: repository: mautrix/signal - tag: "v0.7.2" + tag: "v0.7.3" config: bridge: diff --git a/mautrix-bridge/values-slack.yaml b/mautrix-bridge/bridge-values/slack/values.yaml similarity index 98% rename from mautrix-bridge/values-slack.yaml rename to mautrix-bridge/bridge-values/slack/values.yaml index 2117acf..2db34d6 100644 --- a/mautrix-bridge/values-slack.yaml +++ b/mautrix-bridge/bridge-values/slack/values.yaml @@ -1,6 +1,6 @@ image: repository: mautrix/slack - tag: "v0.1.2" + tag: "v0.1.3" config: bridge: -- 2.45.3 From 24900e0048ba36f3789e5812bf4a68de452e6d73 Mon Sep 17 00:00:00 2001 From: WrenIX Date: Wed, 20 Nov 2024 23:09:50 +0100 Subject: [PATCH 062/134] fix(forgejo-runner): update appVersion --- forgejo-runner/Chart.yaml | 4 ++-- forgejo-runner/_docs.gotmpl | 12 ++++++++---- 2 files changed, 10 insertions(+), 6 deletions(-) diff --git a/forgejo-runner/Chart.yaml b/forgejo-runner/Chart.yaml index cb24bdc..4021236 100644 --- a/forgejo-runner/Chart.yaml +++ b/forgejo-runner/Chart.yaml @@ -2,9 +2,9 @@ apiVersion: v2 name: forgejo-runner description: Deploy runner for an forgejo instance (default codeberg.org) type: application -version: "0.4.0" +version: "0.4.1" # renovate: image=code.forgejo.org/forgejo/runner -appVersion: "5.0.0" +appVersion: "5.0.1" maintainers: - name: WrenIX url: https://wrenix.eu diff --git a/forgejo-runner/_docs.gotmpl b/forgejo-runner/_docs.gotmpl index 87225e0..7df525c 100644 --- a/forgejo-runner/_docs.gotmpl +++ b/forgejo-runner/_docs.gotmpl @@ -1,11 +1,15 @@ {{ define "chart.prerequirements" -}} -== Accessing docker socket inside job containers +{{< callout type="warning" >}} +Me, wrenix, switch to woodpecker and maybe does not test every change. +{{< /callout >}} + +## Accessing docker socket inside job containers To access the docker socket inside the job containers, the following example values may be used (see `values-dind-bypass.yaml`): -[source,yaml] ----- +``` yaml {filename="values.yaml"} {{ .Files.Get "values-dind-bypass.yaml" }} ----- +``` + {{ end }} -- 2.45.3 From dde49d45cd40b04cbc9705d17dd53f49a1b1b18a Mon Sep 17 00:00:00 2001 From: WrenIX Date: Wed, 20 Nov 2024 23:09:53 +0100 Subject: [PATCH 063/134] fix(jellyfin): update appVersion --- jellyfin/Chart.yaml | 4 ++-- jellyfin/README.adoc | 4 ++-- jellyfin/README.md | 2 +- 3 files changed, 5 insertions(+), 5 deletions(-) diff --git a/jellyfin/Chart.yaml b/jellyfin/Chart.yaml index 0848d72..486f1c2 100644 --- a/jellyfin/Chart.yaml +++ b/jellyfin/Chart.yaml @@ -3,9 +3,9 @@ name: jellyfin description: The Free Software Media System icon: https://raw.githubusercontent.com/jellyfin/jellyfin-ux/master/branding/SVG/icon-transparent.svg type: application -version: "0.3.6" +version: "0.3.7" # renovate: image=ghcr.io/jellyfin/jellyfin -appVersion: "10.10.2" +appVersion: "10.10.3" maintainers: - name: WrenIX url: https://wrenix.eu diff --git a/jellyfin/README.adoc b/jellyfin/README.adoc index ba92f60..c9946bb 100644 --- a/jellyfin/README.adoc +++ b/jellyfin/README.adoc @@ -2,9 +2,9 @@ = jellyfin -image::https://img.shields.io/badge/Version-0.3.6-informational?style=flat-square[Version: 0.3.6] +image::https://img.shields.io/badge/Version-0.3.7-informational?style=flat-square[Version: 0.3.7] image::https://img.shields.io/badge/Version-application-informational?style=flat-square[Type: application] -image::https://img.shields.io/badge/AppVersion-10.10.2-informational?style=flat-square[AppVersion: 10.10.2] +image::https://img.shields.io/badge/AppVersion-10.10.3-informational?style=flat-square[AppVersion: 10.10.3] == Maintainers .Maintainers diff --git a/jellyfin/README.md b/jellyfin/README.md index e6b3507..f814921 100644 --- a/jellyfin/README.md +++ b/jellyfin/README.md @@ -7,7 +7,7 @@ description: "The Free Software Media System" # jellyfin -![Version: 0.3.6](https://img.shields.io/badge/Version-0.3.6-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 10.10.2](https://img.shields.io/badge/AppVersion-10.10.2-informational?style=flat-square) +![Version: 0.3.7](https://img.shields.io/badge/Version-0.3.7-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 10.10.3](https://img.shields.io/badge/AppVersion-10.10.3-informational?style=flat-square) The Free Software Media System -- 2.45.3 From 4604e5fe6da0dcb8bdbb62f00f8669c795361fc7 Mon Sep 17 00:00:00 2001 From: WrenIX Date: Wed, 20 Nov 2024 23:24:36 +0100 Subject: [PATCH 064/134] chore(forgejo-runner): doc syntax --- forgejo-runner/README.adoc | 15 +++++++++------ forgejo-runner/README.md | 13 ++++++++----- forgejo-runner/_docs.gotmpl | 3 ++- publish.sh | 7 ++++++- 4 files changed, 25 insertions(+), 13 deletions(-) diff --git a/forgejo-runner/README.adoc b/forgejo-runner/README.adoc index 4024835..86fd72f 100644 --- a/forgejo-runner/README.adoc +++ b/forgejo-runner/README.adoc @@ -2,9 +2,9 @@ = forgejo-runner -image::https://img.shields.io/badge/Version-0.4.0-informational?style=flat-square[Version: 0.4.0] +image::https://img.shields.io/badge/Version-0.4.1-informational?style=flat-square[Version: 0.4.1] image::https://img.shields.io/badge/Version-application-informational?style=flat-square[Type: application] -image::https://img.shields.io/badge/AppVersion-5.0.0-informational?style=flat-square[AppVersion: 5.0.0] +image::https://img.shields.io/badge/AppVersion-5.0.1-informational?style=flat-square[AppVersion: 5.0.1] == Maintainers .Maintainers @@ -16,12 +16,15 @@ image::https://img.shields.io/badge/AppVersion-5.0.0-informational?style=flat-sq | |=== -== Accessing docker socket inside job containers +{{< callout type="warning" >}} +Me, wrenix, switch to woodpecker and maybe does not test every change. +{{< /callout >}} + +## Accessing docker socket inside job containers To access the docker socket inside the job containers, the following example values may be used (see `values-dind-bypass.yaml`): -[source,yaml] ----- +``` yaml {filename="values.yaml"} runner: config: create: true @@ -46,7 +49,7 @@ runner: valid_volumes: - /certs/client ----- +``` == Usage diff --git a/forgejo-runner/README.md b/forgejo-runner/README.md index e66d543..81fa6ee 100644 --- a/forgejo-runner/README.md +++ b/forgejo-runner/README.md @@ -7,7 +7,7 @@ description: "Deploy runner for an forgejo instance (default codeberg.org)" # forgejo-runner -![Version: 0.4.0](https://img.shields.io/badge/Version-0.4.0-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 5.0.0](https://img.shields.io/badge/AppVersion-5.0.0-informational?style=flat-square) +![Version: 0.4.1](https://img.shields.io/badge/Version-0.4.1-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 5.0.1](https://img.shields.io/badge/AppVersion-5.0.1-informational?style=flat-square) Deploy runner for an forgejo instance (default codeberg.org) @@ -17,12 +17,15 @@ Deploy runner for an forgejo instance (default codeberg.org) | ---- | ------ | --- | | WrenIX | | | -== Accessing docker socket inside job containers +{{< callout type="warning" >}} +Me, wrenix, switch to woodpecker and maybe does not test every change. +{{< /callout >}} + +## Accessing docker socket inside job containers To access the docker socket inside the job containers, the following example values may be used (see `values-dind-bypass.yaml`): -[source,yaml] ----- +``` yaml {filename="values.yaml"} runner: config: create: true @@ -47,7 +50,7 @@ runner: valid_volumes: - /certs/client ----- +``` ## Usage diff --git a/forgejo-runner/_docs.gotmpl b/forgejo-runner/_docs.gotmpl index 7df525c..42e2cf5 100644 --- a/forgejo-runner/_docs.gotmpl +++ b/forgejo-runner/_docs.gotmpl @@ -1,8 +1,9 @@ {{ define "chart.prerequirements" -}} +{{` {{< callout type="warning" >}} Me, wrenix, switch to woodpecker and maybe does not test every change. {{< /callout >}} - +`}} ## Accessing docker socket inside job containers To access the docker socket inside the job containers, the following example values may be used (see `values-dind-bypass.yaml`): diff --git a/publish.sh b/publish.sh index 69b1f23..3cd653f 100755 --- a/publish.sh +++ b/publish.sh @@ -40,7 +40,8 @@ for p in * ; do if [ "$tag" == "$lastTag" ]; then echo "changed helmchart should create new pkg - diff line count has:" echo $(git diff "${lastTag}" -- "${p}" | wc -l); - exit 1 + echo + continue; fi else echo "nothing todo" @@ -49,6 +50,7 @@ for p in * ; do fi fi + set -e echo "update docs" helm-docs -t ./README.md.gotmpl -t _docs.gotmpl -o README.md -g "${p}" helm-docs -t ./README.adoc.gotmpl -t _docs.gotmpl -o README.adoc -g "${p}" @@ -58,15 +60,18 @@ for p in * ; do helm push "${p}-${v}.tgz" "${HELM_REPO_URL}"; echo "update artifacthub.io" + set +e oras push "${HELM_REPO}/${p}:artifacthub.io" \ --config /dev/null:application/vnd.cncf.artifacthub.config.v1+yaml \ "${p}/artifacthub-repo.yml":application/vnd.cncf.artifacthub.repository-metadata.layer.v1.yaml echo "push to git" + set -e git add "${p}/" "docs/modules/charts/nav.adoc" "docs/modules/charts/pages/${p}.adoc" git commit -m "${COMMIT_SCOPE}(${p}): ${COMMIT_MESSAGE}" git tag "${tag}" --no-sign; git push --tags origin main; + set +e echo done -- 2.45.3 From aba9ed1241a7471445211eaa22139a120b87fa0b Mon Sep 17 00:00:00 2001 From: WrenIX Date: Thu, 21 Nov 2024 16:39:42 +0100 Subject: [PATCH 065/134] fix(forgejo-runner): update appVersion --- forgejo-runner/Chart.yaml | 4 ++-- forgejo-runner/README.adoc | 4 ++-- forgejo-runner/README.md | 2 +- 3 files changed, 5 insertions(+), 5 deletions(-) diff --git a/forgejo-runner/Chart.yaml b/forgejo-runner/Chart.yaml index 4021236..c880296 100644 --- a/forgejo-runner/Chart.yaml +++ b/forgejo-runner/Chart.yaml @@ -2,9 +2,9 @@ apiVersion: v2 name: forgejo-runner description: Deploy runner for an forgejo instance (default codeberg.org) type: application -version: "0.4.1" +version: "0.4.2" # renovate: image=code.forgejo.org/forgejo/runner -appVersion: "5.0.1" +appVersion: "5.0.2" maintainers: - name: WrenIX url: https://wrenix.eu diff --git a/forgejo-runner/README.adoc b/forgejo-runner/README.adoc index 86fd72f..b6f4980 100644 --- a/forgejo-runner/README.adoc +++ b/forgejo-runner/README.adoc @@ -2,9 +2,9 @@ = forgejo-runner -image::https://img.shields.io/badge/Version-0.4.1-informational?style=flat-square[Version: 0.4.1] +image::https://img.shields.io/badge/Version-0.4.2-informational?style=flat-square[Version: 0.4.2] image::https://img.shields.io/badge/Version-application-informational?style=flat-square[Type: application] -image::https://img.shields.io/badge/AppVersion-5.0.1-informational?style=flat-square[AppVersion: 5.0.1] +image::https://img.shields.io/badge/AppVersion-5.0.2-informational?style=flat-square[AppVersion: 5.0.2] == Maintainers .Maintainers diff --git a/forgejo-runner/README.md b/forgejo-runner/README.md index 81fa6ee..9b6547d 100644 --- a/forgejo-runner/README.md +++ b/forgejo-runner/README.md @@ -7,7 +7,7 @@ description: "Deploy runner for an forgejo instance (default codeberg.org)" # forgejo-runner -![Version: 0.4.1](https://img.shields.io/badge/Version-0.4.1-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 5.0.1](https://img.shields.io/badge/AppVersion-5.0.1-informational?style=flat-square) +![Version: 0.4.2](https://img.shields.io/badge/Version-0.4.2-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 5.0.2](https://img.shields.io/badge/AppVersion-5.0.2-informational?style=flat-square) Deploy runner for an forgejo instance (default codeberg.org) -- 2.45.3 From 0d4554f5457185edd8e906ab61d62f64562eef6c Mon Sep 17 00:00:00 2001 From: WrenIX Date: Thu, 21 Nov 2024 16:41:46 +0100 Subject: [PATCH 066/134] fix(forgejo-runner): update kubectl to v1.31.3 --- forgejo-runner/Chart.yaml | 2 +- forgejo-runner/README.adoc | 4 ++-- forgejo-runner/README.md | 4 ++-- forgejo-runner/values.yaml | 2 +- 4 files changed, 6 insertions(+), 6 deletions(-) diff --git a/forgejo-runner/Chart.yaml b/forgejo-runner/Chart.yaml index c880296..552f223 100644 --- a/forgejo-runner/Chart.yaml +++ b/forgejo-runner/Chart.yaml @@ -2,7 +2,7 @@ apiVersion: v2 name: forgejo-runner description: Deploy runner for an forgejo instance (default codeberg.org) type: application -version: "0.4.2" +version: "0.4.3" # renovate: image=code.forgejo.org/forgejo/runner appVersion: "5.0.2" maintainers: diff --git a/forgejo-runner/README.adoc b/forgejo-runner/README.adoc index b6f4980..5222872 100644 --- a/forgejo-runner/README.adoc +++ b/forgejo-runner/README.adoc @@ -2,7 +2,7 @@ = forgejo-runner -image::https://img.shields.io/badge/Version-0.4.2-informational?style=flat-square[Version: 0.4.2] +image::https://img.shields.io/badge/Version-0.4.3-informational?style=flat-square[Version: 0.4.3] image::https://img.shields.io/badge/Version-application-informational?style=flat-square[Type: application] image::https://img.shields.io/badge/AppVersion-5.0.2-informational?style=flat-square[AppVersion: 5.0.2] == Maintainers @@ -313,7 +313,7 @@ helm uninstall forgejo-runner-release | kubectl.image.tag | string -| `"1.31.2"` +| `"1.31.3"` | | nameOverride diff --git a/forgejo-runner/README.md b/forgejo-runner/README.md index 9b6547d..b10ee77 100644 --- a/forgejo-runner/README.md +++ b/forgejo-runner/README.md @@ -7,7 +7,7 @@ description: "Deploy runner for an forgejo instance (default codeberg.org)" # forgejo-runner -![Version: 0.4.2](https://img.shields.io/badge/Version-0.4.2-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 5.0.2](https://img.shields.io/badge/AppVersion-5.0.2-informational?style=flat-square) +![Version: 0.4.3](https://img.shields.io/badge/Version-0.4.3-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 5.0.2](https://img.shields.io/badge/AppVersion-5.0.2-informational?style=flat-square) Deploy runner for an forgejo instance (default codeberg.org) @@ -130,7 +130,7 @@ helm uninstall forgejo-runner-release | kubectl.image.pullPolicy | string | `"IfNotPresent"` | | | kubectl.image.registry | string | `"docker.io"` | | | kubectl.image.repository | string | `"bitnami/kubectl"` | | -| kubectl.image.tag | string | `"1.31.2"` | | +| kubectl.image.tag | string | `"1.31.3"` | | | nameOverride | string | `""` | | | nodeSelector | object | `{}` | | | podAnnotations | object | `{}` | | diff --git a/forgejo-runner/values.yaml b/forgejo-runner/values.yaml index 4c73930..84a18b5 100644 --- a/forgejo-runner/values.yaml +++ b/forgejo-runner/values.yaml @@ -150,7 +150,7 @@ kubectl: registry: docker.io repository: bitnami/kubectl pullPolicy: IfNotPresent - tag: 1.31.2 + tag: 1.31.3 serviceAccount: # Specifies whether a service account should be created -- 2.45.3 From 8dc748c9d170bb7b06f6b1eb635e49a39802046a Mon Sep 17 00:00:00 2001 From: WrenIX Date: Thu, 21 Nov 2024 16:42:09 +0100 Subject: [PATCH 067/134] fix(ntfy): update kubectl to v1.31.3 --- ntfy/Chart.yaml | 2 +- ntfy/README.adoc | 4 ++-- ntfy/README.md | 4 ++-- ntfy/values.yaml | 2 +- 4 files changed, 6 insertions(+), 6 deletions(-) diff --git a/ntfy/Chart.yaml b/ntfy/Chart.yaml index 2cacbf0..60fe69a 100644 --- a/ntfy/Chart.yaml +++ b/ntfy/Chart.yaml @@ -3,7 +3,7 @@ name: ntfy description: A Helm chart for Kubernetes icon: https://github.com/binwiederhier/ntfy/raw/main/web/public/static/images/pwa-512x512.png type: application -version: "0.4.5" +version: "0.4.6" # renovate: image=docker.io/binwiederhier/ntfy appVersion: "2.11.0" maintainers: diff --git a/ntfy/README.adoc b/ntfy/README.adoc index 67269d2..5c77215 100644 --- a/ntfy/README.adoc +++ b/ntfy/README.adoc @@ -2,7 +2,7 @@ = ntfy -image::https://img.shields.io/badge/Version-0.4.5-informational?style=flat-square[Version: 0.4.5] +image::https://img.shields.io/badge/Version-0.4.6-informational?style=flat-square[Version: 0.4.6] image::https://img.shields.io/badge/Version-application-informational?style=flat-square[Type: application] image::https://img.shields.io/badge/AppVersion-2.11.0-informational?style=flat-square[AppVersion: 2.11.0] == Maintainers @@ -159,7 +159,7 @@ helm uninstall ntfy-release | kubectl.image | object -| `{"pullPolicy":"IfNotPresent","registry":"docker.io","repository":"bitnami/kubectl","tag":"1.31.2"}` +| `{"pullPolicy":"IfNotPresent","registry":"docker.io","repository":"bitnami/kubectl","tag":"1.31.3"}` | image needed for setup (store generated VAPID / WebPush keys) | nameOverride diff --git a/ntfy/README.md b/ntfy/README.md index b8348bf..d16f434 100644 --- a/ntfy/README.md +++ b/ntfy/README.md @@ -7,7 +7,7 @@ description: "A Helm chart for Kubernetes" # ntfy -![Version: 0.4.5](https://img.shields.io/badge/Version-0.4.5-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 2.11.0](https://img.shields.io/badge/AppVersion-2.11.0-informational?style=flat-square) +![Version: 0.4.6](https://img.shields.io/badge/Version-0.4.6-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 2.11.0](https://img.shields.io/badge/AppVersion-2.11.0-informational?style=flat-square) A Helm chart for Kubernetes @@ -65,7 +65,7 @@ helm uninstall ntfy-release | ingress.hosts[0].paths[0].path | string | `"/"` | | | ingress.hosts[0].paths[0].pathType | string | `"ImplementationSpecific"` | | | ingress.tls | list | `[]` | | -| kubectl.image | object | `{"pullPolicy":"IfNotPresent","registry":"docker.io","repository":"bitnami/kubectl","tag":"1.31.2"}` | image needed for setup (store generated VAPID / WebPush keys) | +| kubectl.image | object | `{"pullPolicy":"IfNotPresent","registry":"docker.io","repository":"bitnami/kubectl","tag":"1.31.3"}` | image needed for setup (store generated VAPID / WebPush keys) | | nameOverride | string | `""` | | | networkPolicy.egress.enabled | bool | `true` | activate egress no networkpolicy | | networkPolicy.egress.extra | list | `[]` | egress rules | diff --git a/ntfy/values.yaml b/ntfy/values.yaml index 9898644..410cde1 100644 --- a/ntfy/values.yaml +++ b/ntfy/values.yaml @@ -16,7 +16,7 @@ kubectl: registry: docker.io repository: bitnami/kubectl pullPolicy: IfNotPresent - tag: 1.31.2 + tag: 1.31.3 imagePullSecrets: [] nameOverride: "" -- 2.45.3 From f1c3954586d01b8838fb200f1e9de4376b5852dd Mon Sep 17 00:00:00 2001 From: WrenIX Date: Thu, 21 Nov 2024 16:45:16 +0100 Subject: [PATCH 068/134] chore(global): drop asciidoc support --- README.adoc | 26 ------ README.adoc.gotmpl | 87 ------------------- docs/antora.yml | 8 -- docs/modules/ROOT/nav.adoc | 1 - docs/modules/ROOT/pages/index.adoc | 1 - docs/modules/charts/generate.sh | 16 ---- docs/modules/charts/nav.adoc | 24 ----- .../charts/pages/alertmanager-matrix.adoc | 1 - .../charts/pages/alertmanager-ntfy.adoc | 1 - .../charts/pages/authentik-application.adoc | 1 - docs/modules/charts/pages/conduit.adoc | 1 - docs/modules/charts/pages/element-call.adoc | 1 - docs/modules/charts/pages/forgejo-runner.adoc | 1 - docs/modules/charts/pages/gotosocial.adoc | 1 - docs/modules/charts/pages/grampsweb.adoc | 1 - docs/modules/charts/pages/headscale-ui.adoc | 1 - docs/modules/charts/pages/headscale.adoc | 1 - docs/modules/charts/pages/home-assistant.adoc | 1 - docs/modules/charts/pages/hydrogen-web.adoc | 1 - docs/modules/charts/pages/jellyfin.adoc | 1 - .../pages/matrix-authentication-service.adoc | 1 - .../charts/pages/matrix-sliding-sync.adoc | 1 - docs/modules/charts/pages/matrix-synapse.adoc | 1 - docs/modules/charts/pages/mautrix-signal.adoc | 1 - docs/modules/charts/pages/miniserve.adoc | 1 - docs/modules/charts/pages/monitoring.adoc | 1 - docs/modules/charts/pages/ntfy.adoc | 1 - docs/modules/charts/pages/postgresql.adoc | 1 - .../charts/pages/speedtest-exporter.adoc | 1 - docs/modules/charts/pages/stalwart-mail.adoc | 1 - publish.sh | 4 +- 31 files changed, 2 insertions(+), 188 deletions(-) delete mode 100644 README.adoc delete mode 100644 README.adoc.gotmpl delete mode 100644 docs/antora.yml delete mode 100644 docs/modules/ROOT/nav.adoc delete mode 120000 docs/modules/ROOT/pages/index.adoc delete mode 100755 docs/modules/charts/generate.sh delete mode 100644 docs/modules/charts/nav.adoc delete mode 120000 docs/modules/charts/pages/alertmanager-matrix.adoc delete mode 120000 docs/modules/charts/pages/alertmanager-ntfy.adoc delete mode 120000 docs/modules/charts/pages/authentik-application.adoc delete mode 120000 docs/modules/charts/pages/conduit.adoc delete mode 120000 docs/modules/charts/pages/element-call.adoc delete mode 120000 docs/modules/charts/pages/forgejo-runner.adoc delete mode 120000 docs/modules/charts/pages/gotosocial.adoc delete mode 120000 docs/modules/charts/pages/grampsweb.adoc delete mode 120000 docs/modules/charts/pages/headscale-ui.adoc delete mode 120000 docs/modules/charts/pages/headscale.adoc delete mode 120000 docs/modules/charts/pages/home-assistant.adoc delete mode 120000 docs/modules/charts/pages/hydrogen-web.adoc delete mode 120000 docs/modules/charts/pages/jellyfin.adoc delete mode 120000 docs/modules/charts/pages/matrix-authentication-service.adoc delete mode 120000 docs/modules/charts/pages/matrix-sliding-sync.adoc delete mode 120000 docs/modules/charts/pages/matrix-synapse.adoc delete mode 120000 docs/modules/charts/pages/mautrix-signal.adoc delete mode 120000 docs/modules/charts/pages/miniserve.adoc delete mode 120000 docs/modules/charts/pages/monitoring.adoc delete mode 120000 docs/modules/charts/pages/ntfy.adoc delete mode 120000 docs/modules/charts/pages/postgresql.adoc delete mode 120000 docs/modules/charts/pages/speedtest-exporter.adoc delete mode 120000 docs/modules/charts/pages/stalwart-mail.adoc diff --git a/README.adoc b/README.adoc deleted file mode 100644 index 1203432..0000000 --- a/README.adoc +++ /dev/null @@ -1,26 +0,0 @@ -= helm-charts - -== Usage - -Helm must be installed and setup to your kubernetes cluster to use the charts. -Refer to Helm's https://helm.sh/docs[documentation] to get started. -Once Helm has been set up correctly, fetch the charts as follows: - -[source,bash] ----- -helm pull oci://codeberg.org/wrenix/helm-charts/ ----- - -You can install a chart release using the following command: - -[source,bash] ----- -helm install oci://codeberg.org/wrenix/helm-charts/ --values values.yaml ----- - -To uninstall a chart release use `helm`'s delete command: - -[source,bash] ----- -helm uninstall ----- diff --git a/README.adoc.gotmpl b/README.adoc.gotmpl deleted file mode 100644 index 05424bd..0000000 --- a/README.adoc.gotmpl +++ /dev/null @@ -1,87 +0,0 @@ -{{ define "chart.header" }}= {{ .Name }} -{{ end }} -{{ define "chart.versionBadge" }} -image::https://img.shields.io/badge/Version-{{ .Version | replace "-" "--" }}-informational?style=flat-square[Version: {{ .Version }}]{{end}} -{{ define "chart.typeBadge" }} -image::https://img.shields.io/badge/Version-{{ .Type }}-informational?style=flat-square[Type: {{ .Type }}]{{end}} -{{ define "chart.appVersionBadge" }}{{- if (ne .AppVersion "") }} -image::https://img.shields.io/badge/AppVersion-{{ .AppVersion }}-informational?style=flat-square[AppVersion: {{ .AppVersion }}]{{ end }}{{end}} -{{ define "chart.maintainersHeader" }}== Maintainers{{ end }} -{{ define "chart.maintainersTable" }}.Maintainers -|=== -| Name | Email | Url - {{- range .Maintainers }} - -| {{ .Name }} -| {{ if .Email }}<{{ .Email }}>{{ end }} -| {{ if .Url }}<{{ .Url }}>{{ end }} - {{- end }} -|=== -{{ end }} -{{ define "chart.valuesHeader" }}== Values{{ end }} -{{ define "chart.valuesTable" -}} -{{- if .Sections.Sections -}} -{{- range .Sections.Sections }} -.Values {{.SectionName }} -{{ template "chart.valuesOneTable" .SectionItems }} -{{- end }}{{/* range sections*/}} -{{- if .Sections.DefaultSection.SectionItems -}} -.Values {{.Sections.DefaultSection.SectionName }} -{{ template "chart.valuesOneTable" .Sections.DefaultSection.SectionItems }} -{{- end }}{{/* end default section */}} -{{- else }}{{/* if no sections */}} -.Values -{{ template "chart.valuesOneTable" .Values }} -{{- end }} -{{ end }}{{/* end chart.valuesTable */}} -{{ define "chart.valuesOneTable" -}} -|=== -| Key | Type | Default | Description - {{- range . }} - -| {{ .Key }} -| {{ .Type }} -| {{ if .Default }}{{ .Default }}{{ else }}{{ .AutoDefault }}{{ end }} -| {{ if .Description }}{{ .Description }}{{ else }}{{ .AutoDescription }}{{ end }} - {{- end }} -|=== -{{ end }}{{/* end chart.valuesOneTable */}} - -{{- define "chart.prerequirements" -}}{{- end -}} - -{{ template "chart.header" . }} -{{ template "chart.deprecationWarning" . }} - -{{ template "chart.badgesSection" . }} -{{ template "chart.maintainersSection" . }} - -{{ template "chart.prerequirements" . }} - -== Usage - -Helm must be installed and setup to your kubernetes cluster to use the charts. -Refer to Helm's https://helm.sh/docs[documentation] to get started. -Once Helm has been set up correctly, fetch the charts as follows: - -[source,bash] ----- -helm pull oci://codeberg.org/wrenix/helm-charts/{{ template "chart.name" . }} ----- - -You can install a chart release using the following command: - -[source,bash] ----- -helm install {{ template "chart.name" . }}-release oci://codeberg.org/wrenix/helm-charts/{{ template "chart.name" . }} --values values.yaml ----- - -To uninstall a chart release use `helm`'s delete command: - -[source,bash] ----- -helm uninstall {{ template "chart.name" . }}-release ----- - -{{ template "chart.valuesSection" . }} - -Autogenerated from chart metadata using https://github.com/norwoodj/helm-docs[helm-docs] diff --git a/docs/antora.yml b/docs/antora.yml deleted file mode 100644 index 1bbd506..0000000 --- a/docs/antora.yml +++ /dev/null @@ -1,8 +0,0 @@ -name: wrenix-helm -title: "WrenIX's Helm charts" -version: - main: latest - -nav: - - modules/ROOT/nav.adoc - - modules/charts/nav.adoc diff --git a/docs/modules/ROOT/nav.adoc b/docs/modules/ROOT/nav.adoc deleted file mode 100644 index 5d67faa..0000000 --- a/docs/modules/ROOT/nav.adoc +++ /dev/null @@ -1 +0,0 @@ -* xref:index.adoc[Home] diff --git a/docs/modules/ROOT/pages/index.adoc b/docs/modules/ROOT/pages/index.adoc deleted file mode 120000 index 2cfd4f7..0000000 --- a/docs/modules/ROOT/pages/index.adoc +++ /dev/null @@ -1 +0,0 @@ -../../../../README.adoc \ No newline at end of file diff --git a/docs/modules/charts/generate.sh b/docs/modules/charts/generate.sh deleted file mode 100755 index 8be5646..0000000 --- a/docs/modules/charts/generate.sh +++ /dev/null @@ -1,16 +0,0 @@ -#!/bin/sh -ROOT_DIR="./docs/modules/charts/" - -rm "${ROOT_DIR}/pages/"*".adoc" - -echo "* charts" > "${ROOT_DIR}/nav.adoc" -for name in * ; do - if \ - [ ! -d $name ] || \ - [ ! -f $name/Chart.yaml ] \ - ; then - continue; - fi - ln -sf "../../../../${name}/README.adoc" "${ROOT_DIR}/pages/${name}.adoc"; - echo "** xref:${name}.adoc[${name}]" >> "${ROOT_DIR}/nav.adoc" -done diff --git a/docs/modules/charts/nav.adoc b/docs/modules/charts/nav.adoc deleted file mode 100644 index 017ce21..0000000 --- a/docs/modules/charts/nav.adoc +++ /dev/null @@ -1,24 +0,0 @@ -* charts -** xref:alertmanager-matrix.adoc[alertmanager-matrix] -** xref:alertmanager-ntfy.adoc[alertmanager-ntfy] -** xref:authentik-application.adoc[authentik-application] -** xref:conduit.adoc[conduit] -** xref:element-call.adoc[element-call] -** xref:forgejo-runner.adoc[forgejo-runner] -** xref:gotosocial.adoc[gotosocial] -** xref:grampsweb.adoc[grampsweb] -** xref:headscale.adoc[headscale] -** xref:headscale-ui.adoc[headscale-ui] -** xref:home-assistant.adoc[home-assistant] -** xref:hydrogen-web.adoc[hydrogen-web] -** xref:jellyfin.adoc[jellyfin] -** xref:matrix-authentication-service.adoc[matrix-authentication-service] -** xref:matrix-sliding-sync.adoc[matrix-sliding-sync] -** xref:matrix-synapse.adoc[matrix-synapse] -** xref:mautrix-signal.adoc[mautrix-signal] -** xref:miniserve.adoc[miniserve] -** xref:monitoring.adoc[monitoring] -** xref:ntfy.adoc[ntfy] -** xref:postgresql.adoc[postgresql] -** xref:speedtest-exporter.adoc[speedtest-exporter] -** xref:stalwart-mail.adoc[stalwart-mail] diff --git a/docs/modules/charts/pages/alertmanager-matrix.adoc b/docs/modules/charts/pages/alertmanager-matrix.adoc deleted file mode 120000 index ff1eee6..0000000 --- a/docs/modules/charts/pages/alertmanager-matrix.adoc +++ /dev/null @@ -1 +0,0 @@ -../../../../alertmanager-matrix/README.adoc \ No newline at end of file diff --git a/docs/modules/charts/pages/alertmanager-ntfy.adoc b/docs/modules/charts/pages/alertmanager-ntfy.adoc deleted file mode 120000 index e2a0a08..0000000 --- a/docs/modules/charts/pages/alertmanager-ntfy.adoc +++ /dev/null @@ -1 +0,0 @@ -../../../../alertmanager-ntfy/README.adoc \ No newline at end of file diff --git a/docs/modules/charts/pages/authentik-application.adoc b/docs/modules/charts/pages/authentik-application.adoc deleted file mode 120000 index 70e47ed..0000000 --- a/docs/modules/charts/pages/authentik-application.adoc +++ /dev/null @@ -1 +0,0 @@ -../../../../authentik-application/README.adoc \ No newline at end of file diff --git a/docs/modules/charts/pages/conduit.adoc b/docs/modules/charts/pages/conduit.adoc deleted file mode 120000 index 6875802..0000000 --- a/docs/modules/charts/pages/conduit.adoc +++ /dev/null @@ -1 +0,0 @@ -../../../../conduit/README.adoc \ No newline at end of file diff --git a/docs/modules/charts/pages/element-call.adoc b/docs/modules/charts/pages/element-call.adoc deleted file mode 120000 index c551b35..0000000 --- a/docs/modules/charts/pages/element-call.adoc +++ /dev/null @@ -1 +0,0 @@ -../../../../element-call/README.adoc \ No newline at end of file diff --git a/docs/modules/charts/pages/forgejo-runner.adoc b/docs/modules/charts/pages/forgejo-runner.adoc deleted file mode 120000 index 0eb60e0..0000000 --- a/docs/modules/charts/pages/forgejo-runner.adoc +++ /dev/null @@ -1 +0,0 @@ -../../../../forgejo-runner/README.adoc \ No newline at end of file diff --git a/docs/modules/charts/pages/gotosocial.adoc b/docs/modules/charts/pages/gotosocial.adoc deleted file mode 120000 index 3bff7d2..0000000 --- a/docs/modules/charts/pages/gotosocial.adoc +++ /dev/null @@ -1 +0,0 @@ -../../../../gotosocial/README.adoc \ No newline at end of file diff --git a/docs/modules/charts/pages/grampsweb.adoc b/docs/modules/charts/pages/grampsweb.adoc deleted file mode 120000 index a22b6d5..0000000 --- a/docs/modules/charts/pages/grampsweb.adoc +++ /dev/null @@ -1 +0,0 @@ -../../../../grampsweb/README.adoc \ No newline at end of file diff --git a/docs/modules/charts/pages/headscale-ui.adoc b/docs/modules/charts/pages/headscale-ui.adoc deleted file mode 120000 index bcac646..0000000 --- a/docs/modules/charts/pages/headscale-ui.adoc +++ /dev/null @@ -1 +0,0 @@ -../../../../headscale-ui/README.adoc \ No newline at end of file diff --git a/docs/modules/charts/pages/headscale.adoc b/docs/modules/charts/pages/headscale.adoc deleted file mode 120000 index ae41e9a..0000000 --- a/docs/modules/charts/pages/headscale.adoc +++ /dev/null @@ -1 +0,0 @@ -../../../../headscale/README.adoc \ No newline at end of file diff --git a/docs/modules/charts/pages/home-assistant.adoc b/docs/modules/charts/pages/home-assistant.adoc deleted file mode 120000 index d31bc71..0000000 --- a/docs/modules/charts/pages/home-assistant.adoc +++ /dev/null @@ -1 +0,0 @@ -../../../../home-assistant/README.adoc \ No newline at end of file diff --git a/docs/modules/charts/pages/hydrogen-web.adoc b/docs/modules/charts/pages/hydrogen-web.adoc deleted file mode 120000 index bfe8227..0000000 --- a/docs/modules/charts/pages/hydrogen-web.adoc +++ /dev/null @@ -1 +0,0 @@ -../../../../hydrogen-web/README.adoc \ No newline at end of file diff --git a/docs/modules/charts/pages/jellyfin.adoc b/docs/modules/charts/pages/jellyfin.adoc deleted file mode 120000 index 90b210f..0000000 --- a/docs/modules/charts/pages/jellyfin.adoc +++ /dev/null @@ -1 +0,0 @@ -../../../../jellyfin/README.adoc \ No newline at end of file diff --git a/docs/modules/charts/pages/matrix-authentication-service.adoc b/docs/modules/charts/pages/matrix-authentication-service.adoc deleted file mode 120000 index 7f372d3..0000000 --- a/docs/modules/charts/pages/matrix-authentication-service.adoc +++ /dev/null @@ -1 +0,0 @@ -../../../../matrix-authentication-service/README.adoc \ No newline at end of file diff --git a/docs/modules/charts/pages/matrix-sliding-sync.adoc b/docs/modules/charts/pages/matrix-sliding-sync.adoc deleted file mode 120000 index abf59a4..0000000 --- a/docs/modules/charts/pages/matrix-sliding-sync.adoc +++ /dev/null @@ -1 +0,0 @@ -../../../../matrix-sliding-sync/README.adoc \ No newline at end of file diff --git a/docs/modules/charts/pages/matrix-synapse.adoc b/docs/modules/charts/pages/matrix-synapse.adoc deleted file mode 120000 index 88889a5..0000000 --- a/docs/modules/charts/pages/matrix-synapse.adoc +++ /dev/null @@ -1 +0,0 @@ -../../../../matrix-synapse/README.adoc \ No newline at end of file diff --git a/docs/modules/charts/pages/mautrix-signal.adoc b/docs/modules/charts/pages/mautrix-signal.adoc deleted file mode 120000 index 1376c24..0000000 --- a/docs/modules/charts/pages/mautrix-signal.adoc +++ /dev/null @@ -1 +0,0 @@ -../../../../mautrix-signal/README.adoc \ No newline at end of file diff --git a/docs/modules/charts/pages/miniserve.adoc b/docs/modules/charts/pages/miniserve.adoc deleted file mode 120000 index c268382..0000000 --- a/docs/modules/charts/pages/miniserve.adoc +++ /dev/null @@ -1 +0,0 @@ -../../../../miniserve/README.adoc \ No newline at end of file diff --git a/docs/modules/charts/pages/monitoring.adoc b/docs/modules/charts/pages/monitoring.adoc deleted file mode 120000 index 5852e47..0000000 --- a/docs/modules/charts/pages/monitoring.adoc +++ /dev/null @@ -1 +0,0 @@ -../../../../monitoring/README.adoc \ No newline at end of file diff --git a/docs/modules/charts/pages/ntfy.adoc b/docs/modules/charts/pages/ntfy.adoc deleted file mode 120000 index b037d84..0000000 --- a/docs/modules/charts/pages/ntfy.adoc +++ /dev/null @@ -1 +0,0 @@ -../../../../ntfy/README.adoc \ No newline at end of file diff --git a/docs/modules/charts/pages/postgresql.adoc b/docs/modules/charts/pages/postgresql.adoc deleted file mode 120000 index 05240d6..0000000 --- a/docs/modules/charts/pages/postgresql.adoc +++ /dev/null @@ -1 +0,0 @@ -../../../../postgresql/README.adoc \ No newline at end of file diff --git a/docs/modules/charts/pages/speedtest-exporter.adoc b/docs/modules/charts/pages/speedtest-exporter.adoc deleted file mode 120000 index 76661ca..0000000 --- a/docs/modules/charts/pages/speedtest-exporter.adoc +++ /dev/null @@ -1 +0,0 @@ -../../../../speedtest-exporter/README.adoc \ No newline at end of file diff --git a/docs/modules/charts/pages/stalwart-mail.adoc b/docs/modules/charts/pages/stalwart-mail.adoc deleted file mode 120000 index 36173e1..0000000 --- a/docs/modules/charts/pages/stalwart-mail.adoc +++ /dev/null @@ -1 +0,0 @@ -../../../../stalwart-mail/README.adoc \ No newline at end of file diff --git a/publish.sh b/publish.sh index 3cd653f..9851df7 100755 --- a/publish.sh +++ b/publish.sh @@ -53,7 +53,7 @@ for p in * ; do set -e echo "update docs" helm-docs -t ./README.md.gotmpl -t _docs.gotmpl -o README.md -g "${p}" - helm-docs -t ./README.adoc.gotmpl -t _docs.gotmpl -o README.adoc -g "${p}" + rm "${p}/README.adoc" echo "package and push helm-chart" helm package "${p}" @@ -67,7 +67,7 @@ for p in * ; do echo "push to git" set -e - git add "${p}/" "docs/modules/charts/nav.adoc" "docs/modules/charts/pages/${p}.adoc" + git add "${p}/" git commit -m "${COMMIT_SCOPE}(${p}): ${COMMIT_MESSAGE}" git tag "${tag}" --no-sign; git push --tags origin main; -- 2.45.3 From 330095207ec5218a5cad2b03eee71762f90d2405 Mon Sep 17 00:00:00 2001 From: WrenIX Date: Thu, 21 Nov 2024 17:38:07 +0100 Subject: [PATCH 069/134] chore(ci): improve publish.sh script --- publish.sh | 5 +++++ 1 file changed, 5 insertions(+) diff --git a/publish.sh b/publish.sh index 9851df7..99f92f3 100755 --- a/publish.sh +++ b/publish.sh @@ -12,6 +12,7 @@ ct lint # || exit 1 for p in * ; do if \ [ ! -d $p ] || \ + [ $p == docs ] || \ [ ! -f $p/Chart.yaml ] \ ; then continue @@ -54,16 +55,20 @@ for p in * ; do echo "update docs" helm-docs -t ./README.md.gotmpl -t _docs.gotmpl -o README.md -g "${p}" rm "${p}/README.adoc" + echo echo "package and push helm-chart" helm package "${p}" helm push "${p}-${v}.tgz" "${HELM_REPO_URL}"; + oras tag "${HELM_REPO}/${p}:${v}" "${v%\.[0-9]*}" "${v%\.[0-9]*\.[0-9]*}" "latest" + echo echo "update artifacthub.io" set +e oras push "${HELM_REPO}/${p}:artifacthub.io" \ --config /dev/null:application/vnd.cncf.artifacthub.config.v1+yaml \ "${p}/artifacthub-repo.yml":application/vnd.cncf.artifacthub.repository-metadata.layer.v1.yaml + echo echo "push to git" set -e -- 2.45.3 From 2b846996510750d8178e615df86fc6de6c7b6f2e Mon Sep 17 00:00:00 2001 From: WrenIX Date: Sat, 21 Sep 2024 17:11:35 +0200 Subject: [PATCH 070/134] fix(headscale)!: update to v0.23.0 with breaking changes --- headscale-ui/Chart.yaml | 4 +- headscale-ui/README.adoc | 251 -------------- headscale-ui/README.md | 87 +++++ headscale/Chart.yaml | 6 +- headscale/README.adoc | 491 ---------------------------- headscale/README.md | 145 ++++++++ headscale/templates/deployment.yaml | 3 +- headscale/templates/jobs.yaml | 69 ++-- headscale/templates/secret.yaml | 2 +- headscale/values.yaml | 33 +- publish.sh | 2 +- 11 files changed, 299 insertions(+), 794 deletions(-) delete mode 100644 headscale-ui/README.adoc create mode 100644 headscale-ui/README.md delete mode 100644 headscale/README.adoc create mode 100644 headscale/README.md diff --git a/headscale-ui/Chart.yaml b/headscale-ui/Chart.yaml index 5ce6be0..f8a7fe6 100644 --- a/headscale-ui/Chart.yaml +++ b/headscale-ui/Chart.yaml @@ -3,9 +3,9 @@ name: headscale-ui description: A simple Headscale web UI for small-scale deployments. icon: https://raw.githubusercontent.com/gurucomputing/headscale-ui/master/static/favicon.png type: application -version: 0.2.0 +version: 0.2.1 # renovate: image=ghcr.io/gurucomputing/headscale-ui -appVersion: "2024.02.24-beta1" +appVersion: "2024.10.10" maintainers: - name: WrenIX url: https://wrenix.eu diff --git a/headscale-ui/README.adoc b/headscale-ui/README.adoc deleted file mode 100644 index cf34c93..0000000 --- a/headscale-ui/README.adoc +++ /dev/null @@ -1,251 +0,0 @@ - - -= headscale-ui - -image::https://img.shields.io/badge/Version-0.2.0-informational?style=flat-square[Version: 0.2.0] -image::https://img.shields.io/badge/Version-application-informational?style=flat-square[Type: application] -image::https://img.shields.io/badge/AppVersion-2024.02.24-beta1-informational?style=flat-square[AppVersion: 2024.02.24-beta1] -== Maintainers - -.Maintainers -|=== -| Name | Email | Url - -| WrenIX -| -| -|=== - -== Usage - -Helm must be installed and setup to your kubernetes cluster to use the charts. -Refer to Helm's https://helm.sh/docs[documentation] to get started. -Once Helm has been set up correctly, fetch the charts as follows: - -[source,bash] ----- -helm pull oci://codeberg.org/wrenix/helm-charts/headscale-ui ----- - -You can install a chart release using the following command: - -[source,bash] ----- -helm install headscale-ui-release oci://codeberg.org/wrenix/helm-charts/headscale-ui --values values.yaml ----- - -To uninstall a chart release use `helm`'s delete command: - -[source,bash] ----- -helm uninstall headscale-ui-release ----- - -== Values - -.Values -|=== -| Key | Type | Default | Description - -| affinity -| object -| `{}` -| - -| autoscaling.enabled -| bool -| `false` -| - -| autoscaling.maxReplicas -| int -| `100` -| - -| autoscaling.minReplicas -| int -| `1` -| - -| autoscaling.targetCPUUtilizationPercentage -| int -| `80` -| - -| fullnameOverride -| string -| `""` -| - -| global.image.pullPolicy -| string -| `nil` -| if set it will overwrite all pullPolicy - -| global.image.registry -| string -| `nil` -| if set it will overwrite all registry entries - -| image.pullPolicy -| string -| `"IfNotPresent"` -| - -| image.registry -| string -| `"ghcr.io"` -| - -| image.repository -| string -| `"gurucomputing/headscale-ui"` -| - -| image.tag -| string -| `""` -| - -| imagePullSecrets -| list -| `[]` -| - -| ingress.annotations -| object -| `{}` -| - -| ingress.className -| string -| `""` -| - -| ingress.enabled -| bool -| `false` -| - -| ingress.hosts[0].host -| string -| `"chart-example.local"` -| - -| ingress.hosts[0].paths[0].path -| string -| `"/"` -| - -| ingress.hosts[0].paths[0].pathType -| string -| `"ImplementationSpecific"` -| - -| ingress.tls -| list -| `[]` -| - -| nameOverride -| string -| `""` -| - -| networkPolicy.egress.enabled -| bool -| `true` -| activate egress no networkpolicy - -| networkPolicy.egress.extra -| list -| `[]` -| egress rules - -| networkPolicy.enabled -| bool -| `false` -| - -| networkPolicy.ingress.http -| list -| `[]` -| ingress for http port (e.g. ingress-controller) - -| networkPolicy.ingress.https -| list -| `[]` -| - -| nodeSelector -| object -| `{}` -| - -| podAnnotations -| object -| `{}` -| - -| podLabels -| object -| `{}` -| - -| podSecurityContext -| object -| `{}` -| - -| replicaCount -| int -| `1` -| - -| resources -| object -| `{}` -| - -| securityContext -| object -| `{}` -| - -| service.port.http -| int -| `8080` -| - -| service.port.https -| int -| `8443` -| - -| service.type -| string -| `"ClusterIP"` -| - -| serviceAccount.annotations -| object -| `{}` -| - -| serviceAccount.create -| bool -| `true` -| - -| serviceAccount.name -| string -| `""` -| - -| tolerations -| list -| `[]` -| -|=== - -Autogenerated from chart metadata using https://github.com/norwoodj/helm-docs[helm-docs] diff --git a/headscale-ui/README.md b/headscale-ui/README.md new file mode 100644 index 0000000..87cf2d0 --- /dev/null +++ b/headscale-ui/README.md @@ -0,0 +1,87 @@ +--- +title: "headscale-ui" + +description: "A simple Headscale web UI for small-scale deployments." + +--- + +# headscale-ui + +![Version: 0.2.1](https://img.shields.io/badge/Version-0.2.1-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 2024.10.10](https://img.shields.io/badge/AppVersion-2024.10.10-informational?style=flat-square) + +A simple Headscale web UI for small-scale deployments. + +## Maintainers + +| Name | Email | Url | +| ---- | ------ | --- | +| WrenIX | | | + +## Usage + +Helm must be installed and setup to your kubernetes cluster to use the charts. +Refer to Helm's [documentation](https://helm.sh/docs) to get started. +Once Helm has been set up correctly, fetch the charts as follows: + +```bash +helm pull oci://codeberg.org/wrenix/helm-charts/headscale-ui +``` + +You can install a chart release using the following command: + +```bash +helm install headscale-ui-release oci://codeberg.org/wrenix/helm-charts/headscale-ui --values values.yaml +``` + +To uninstall a chart release use `helm`'s delete command: + +```bash +helm uninstall headscale-ui-release +``` + +## Values + +| Key | Type | Default | Description | +|-----|------|---------|-------------| +| affinity | object | `{}` | | +| autoscaling.enabled | bool | `false` | | +| autoscaling.maxReplicas | int | `100` | | +| autoscaling.minReplicas | int | `1` | | +| autoscaling.targetCPUUtilizationPercentage | int | `80` | | +| fullnameOverride | string | `""` | | +| global.image.pullPolicy | string | `nil` | if set it will overwrite all pullPolicy | +| global.image.registry | string | `nil` | if set it will overwrite all registry entries | +| image.pullPolicy | string | `"IfNotPresent"` | | +| image.registry | string | `"ghcr.io"` | | +| image.repository | string | `"gurucomputing/headscale-ui"` | | +| image.tag | string | `""` | | +| imagePullSecrets | list | `[]` | | +| ingress.annotations | object | `{}` | | +| ingress.className | string | `""` | | +| ingress.enabled | bool | `false` | | +| ingress.hosts[0].host | string | `"chart-example.local"` | | +| ingress.hosts[0].paths[0].path | string | `"/"` | | +| ingress.hosts[0].paths[0].pathType | string | `"ImplementationSpecific"` | | +| ingress.tls | list | `[]` | | +| nameOverride | string | `""` | | +| networkPolicy.egress.enabled | bool | `true` | activate egress no networkpolicy | +| networkPolicy.egress.extra | list | `[]` | egress rules | +| networkPolicy.enabled | bool | `false` | | +| networkPolicy.ingress.http | list | `[]` | ingress for http port (e.g. ingress-controller) | +| networkPolicy.ingress.https | list | `[]` | | +| nodeSelector | object | `{}` | | +| podAnnotations | object | `{}` | | +| podLabels | object | `{}` | | +| podSecurityContext | object | `{}` | | +| replicaCount | int | `1` | | +| resources | object | `{}` | | +| securityContext | object | `{}` | | +| service.port.http | int | `8080` | | +| service.port.https | int | `8443` | | +| service.type | string | `"ClusterIP"` | | +| serviceAccount.annotations | object | `{}` | | +| serviceAccount.create | bool | `true` | | +| serviceAccount.name | string | `""` | | +| tolerations | list | `[]` | | + +Autogenerated from chart metadata using [helm-docs](https://github.com/norwoodj/helm-docs) diff --git a/headscale/Chart.yaml b/headscale/Chart.yaml index 3224f12..b461907 100644 --- a/headscale/Chart.yaml +++ b/headscale/Chart.yaml @@ -3,9 +3,9 @@ name: headscale description: An open source, self-hosted implementation of the Tailscale control server. icon: https://raw.githubusercontent.com/juanfont/headscale/56a7b1e34952c3e0306a134b2be9b4277f5d8d6e/docs/logo/headscale3-dots.svg type: application -version: 0.4.0 -# renovate: image=docker.io/headscale/headscale -appVersion: "0.22.3" +version: 1.0.0 +# renovate: image=ghcr.io/headscale/headscale +appVersion: "0.23.0" maintainers: - name: WrenIX url: https://wrenix.eu diff --git a/headscale/README.adoc b/headscale/README.adoc deleted file mode 100644 index af1405c..0000000 --- a/headscale/README.adoc +++ /dev/null @@ -1,491 +0,0 @@ - - -= headscale - -image::https://img.shields.io/badge/Version-0.4.0-informational?style=flat-square[Version: 0.4.0] -image::https://img.shields.io/badge/Version-application-informational?style=flat-square[Type: application] -image::https://img.shields.io/badge/AppVersion-0.22.3-informational?style=flat-square[AppVersion: 0.22.3] -== Maintainers - -.Maintainers -|=== -| Name | Email | Url - -| WrenIX -| -| -|=== - -== Usage - -Helm must be installed and setup to your kubernetes cluster to use the charts. -Refer to Helm's https://helm.sh/docs[documentation] to get started. -Once Helm has been set up correctly, fetch the charts as follows: - -[source,bash] ----- -helm pull oci://codeberg.org/wrenix/helm-charts/headscale ----- - -You can install a chart release using the following command: - -[source,bash] ----- -helm install headscale-release oci://codeberg.org/wrenix/helm-charts/headscale --values values.yaml ----- - -To uninstall a chart release use `helm`'s delete command: - -[source,bash] ----- -helm uninstall headscale-release ----- - -== Values - -.Values -|=== -| Key | Type | Default | Description - -| affinity -| object -| `{}` -| - -| autoscaling.enabled -| bool -| `false` -| - -| autoscaling.maxReplicas -| int -| `100` -| - -| autoscaling.minReplicas -| int -| `1` -| - -| autoscaling.targetCPUUtilizationPercentage -| int -| `80` -| - -| fullnameOverride -| string -| `""` -| - -| headscale.certmanager.dnsNames[0] -| string -| `"example.com"` -| - -| headscale.certmanager.enabled -| bool -| `true` -| - -| headscale.certmanager.issuerRef.group -| string -| `"cert-manager.io"` -| - -| headscale.certmanager.issuerRef.kind -| string -| `"ClusterIssuer"` -| - -| headscale.certmanager.issuerRef.name -| string -| `"letsencrypt-prod"` -| - -| headscale.config.db_path -| string -| `"/var/lib/headscale/db.sqlite"` -| - -| headscale.config.db_type -| string -| `"sqlite3"` -| - -| headscale.config.derp.paths -| list -| `[]` -| - -| headscale.config.derp.server.enabled -| bool -| `true` -| - -| headscale.config.derp.server.region_code -| string -| `"headscale"` -| - -| headscale.config.derp.server.region_id -| int -| `999` -| - -| headscale.config.derp.server.region_name -| string -| `"Headscale Embedded DERP"` -| - -| headscale.config.derp.server.stun_listen_addr -| string -| `"0.0.0.0:3478"` -| - -| headscale.config.derp.update_frequency -| string -| `"24h"` -| - -| headscale.config.derp.urls -| list -| `[]` -| - -| headscale.config.disable_check_updates -| bool -| `true` -| - -| headscale.config.grpc_listen_addr -| string -| `":50443"` -| - -| headscale.config.listen_addr -| string -| `":8080"` -| - -| headscale.config.metrics_listen_addr -| string -| `":9090"` -| - -| headscale.config.noise.private_key_path -| string -| `"/etc/headscale/secrets/noise.key"` -| - -| headscale.config.private_key_path -| string -| `"/etc/headscale/secrets/wireguard.key"` -| - -| headscale.config.server_url -| string -| `"http://127.0.0.1:8080"` -| - -| headscale.config.tls_cert_path -| string -| `"/etc/headscale/certs/tls.crt"` -| - -| headscale.config.tls_key_path -| string -| `"/etc/headscale/certs/tls.key"` -| - -| headscale.keys.create -| bool -| `true` -| Create a new private key, if not exists - -| headscale.keys.existingSecret -| string -| `""` -| Use an existing secret - -| image.pullPolicy -| string -| `"IfNotPresent"` -| - -| image.registry -| string -| `"ghcr.io"` -| - -| image.repository -| string -| `"juanfont/headscale"` -| - -| image.tag -| string -| `""` -| - -| imagePullSecrets -| list -| `[]` -| - -| ingress.annotations -| object -| `{}` -| - -| ingress.className -| string -| `""` -| - -| ingress.enabled -| bool -| `false` -| - -| ingress.hosts[0].host -| string -| `"chart-example.local"` -| - -| ingress.hosts[0].paths[0].path -| string -| `"/"` -| - -| ingress.hosts[0].paths[0].pathType -| string -| `"ImplementationSpecific"` -| - -| ingress.tls -| list -| `[]` -| - -| nameOverride -| string -| `""` -| - -| networkPolicy.egress.enabled -| bool -| `false` -| activate egress no networkpolicy - -| networkPolicy.egress.extra -| list -| `[]` -| egress rules - -| networkPolicy.enabled -| bool -| `false` -| - -| networkPolicy.ingress.derp -| list -| `[{"ipBlock":{"cidr":"0.0.0.0/0"}},{"ipBlock":{"cidr":"::/0"}}]` -| ingress for derp - -| networkPolicy.ingress.grpc -| list -| `[]` -| ingress for grpc port - -| networkPolicy.ingress.http -| list -| `[]` -| ingress for http port (e.g. ingress-controller) - -| networkPolicy.ingress.metrics -| list -| `[]` -| ingress for metrics port (e.g. prometheus) - -| nodeSelector -| object -| `{}` -| - -| persistence.accessMode -| string -| `"ReadWriteOnce"` -| - -| persistence.annotations -| object -| `{}` -| - -| persistence.enabled -| bool -| `false` -| - -| persistence.existingClaim -| string -| `nil` -| A manually managed Persistent Volume and Claim Requires persistence.enabled: true If defined, PVC must be created manually before volume will be bound - -| persistence.hostPath -| string -| `nil` -| Create a PV on Node with given hostPath storageClass has to be manual - -| persistence.size -| string -| `"1Gi"` -| - -| persistence.storageClass -| string -| `nil` -| data Persistent Volume Storage Class If defined, storageClassName: If set to "-", storageClassName: "", which disables dynamic provisioning If undefined (the default) or set to null, no storageClassName spec is set, choosing the default provisioner. (gp2 on AWS, standard on GKE, AWS & OpenStack) - -| podAnnotations -| object -| `{}` -| - -| podLabels -| object -| `{}` -| - -| podSecurityContext -| object -| `{}` -| - -| prometheus.rules.additionalRules -| list -| `[]` -| - -| prometheus.rules.defaults.enabled -| bool -| `true` -| - -| prometheus.rules.defaults.filter -| string -| `""` -| - -| prometheus.rules.defaults.lastUpdates.critical -| int -| `3600` -| - -| prometheus.rules.defaults.lastUpdates.info -| int -| `300` -| - -| prometheus.rules.defaults.lastUpdates.warning -| int -| `600` -| - -| prometheus.rules.enabled -| bool -| `false` -| - -| prometheus.rules.labels -| object -| `{}` -| - -| prometheus.servicemonitor.enabled -| bool -| `false` -| - -| prometheus.servicemonitor.labels -| object -| `{}` -| - -| replicaCount -| int -| `1` -| - -| resources -| object -| `{}` -| - -| securityContext -| object -| `{}` -| - -| service.annotations -| string -| `nil` -| - -| service.derp.annotations -| string -| `nil` -| - -| service.derp.port -| int -| `3478` -| - -| service.derp.type -| string -| `"LoadBalancer"` -| - -| service.port.grpc -| int -| `50443` -| - -| service.port.http -| int -| `8080` -| - -| service.port.metrics -| int -| `9090` -| - -| service.type -| string -| `"ClusterIP"` -| - -| serviceAccount.annotations -| object -| `{}` -| - -| serviceAccount.create -| bool -| `true` -| - -| serviceAccount.name -| string -| `""` -| - -| tolerations -| list -| `[]` -| -|=== - -Autogenerated from chart metadata using https://github.com/norwoodj/helm-docs[helm-docs] diff --git a/headscale/README.md b/headscale/README.md new file mode 100644 index 0000000..3e80569 --- /dev/null +++ b/headscale/README.md @@ -0,0 +1,145 @@ +--- +title: "headscale" + +description: "An open source, self-hosted implementation of the Tailscale control server." + +--- + +# headscale + +![Version: 1.0.0](https://img.shields.io/badge/Version-1.0.0-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 0.23.0](https://img.shields.io/badge/AppVersion-0.23.0-informational?style=flat-square) + +An open source, self-hosted implementation of the Tailscale control server. + +## Maintainers + +| Name | Email | Url | +| ---- | ------ | --- | +| WrenIX | | | + +## Usage + +Helm must be installed and setup to your kubernetes cluster to use the charts. +Refer to Helm's [documentation](https://helm.sh/docs) to get started. +Once Helm has been set up correctly, fetch the charts as follows: + +```bash +helm pull oci://codeberg.org/wrenix/helm-charts/headscale +``` + +You can install a chart release using the following command: + +```bash +helm install headscale-release oci://codeberg.org/wrenix/helm-charts/headscale --values values.yaml +``` + +To uninstall a chart release use `helm`'s delete command: + +```bash +helm uninstall headscale-release +``` + +## Values + +| Key | Type | Default | Description | +|-----|------|---------|-------------| +| affinity | object | `{}` | | +| autoscaling.enabled | bool | `false` | | +| autoscaling.maxReplicas | int | `100` | | +| autoscaling.minReplicas | int | `1` | | +| autoscaling.targetCPUUtilizationPercentage | int | `80` | | +| fullnameOverride | string | `""` | | +| headscale.certmanager.dnsNames[0] | string | `"example.com"` | | +| headscale.certmanager.enabled | bool | `true` | | +| headscale.certmanager.issuerRef.group | string | `"cert-manager.io"` | | +| headscale.certmanager.issuerRef.kind | string | `"ClusterIssuer"` | | +| headscale.certmanager.issuerRef.name | string | `"letsencrypt-prod"` | | +| headscale.config.database.postgres.host | string | `"localhost"` | | +| headscale.config.database.postgres.name | string | `"headscale"` | | +| headscale.config.database.postgres.pass | string | `"bar"` | | +| headscale.config.database.postgres.port | int | `5432` | | +| headscale.config.database.postgres.user | string | `"foo"` | | +| headscale.config.database.sqlite.path | string | `"/var/lib/headscale/db.sqlite"` | | +| headscale.config.database.type | string | `"sqlite"` | | +| headscale.config.derp.paths | list | `[]` | | +| headscale.config.derp.server.enabled | bool | `true` | | +| headscale.config.derp.server.private_key_path | string | `"/etc/headscale/secrets/derp.key"` | | +| headscale.config.derp.server.region_code | string | `"headscale"` | | +| headscale.config.derp.server.region_id | int | `999` | | +| headscale.config.derp.server.region_name | string | `"Headscale Embedded DERP"` | | +| headscale.config.derp.server.stun_listen_addr | string | `"0.0.0.0:3478"` | | +| headscale.config.derp.update_frequency | string | `"24h"` | | +| headscale.config.derp.urls | list | `[]` | | +| headscale.config.disable_check_updates | bool | `true` | | +| headscale.config.dns.base_domain | string | `"example.com"` | | +| headscale.config.grpc_listen_addr | string | `":50443"` | | +| headscale.config.listen_addr | string | `":8080"` | | +| headscale.config.metrics_listen_addr | string | `":9090"` | | +| headscale.config.noise.private_key_path | string | `"/etc/headscale/secrets/noise.key"` | | +| headscale.config.prefixes.allocation | string | `"sequential"` | | +| headscale.config.prefixes.v4 | string | `"100.64.0.0/10"` | | +| headscale.config.prefixes.v6 | string | `"fd7a:115c:a1e0::/48"` | | +| headscale.config.private_key_path | string | `"/etc/headscale/secrets/wireguard.key"` | | +| headscale.config.server_url | string | `"http://127.0.0.1:8080"` | | +| headscale.config.tls_cert_path | string | `"/etc/headscale/certs/tls.crt"` | | +| headscale.config.tls_key_path | string | `"/etc/headscale/certs/tls.key"` | | +| headscale.keys.create | bool | `true` | Create a new private key, if not exists | +| headscale.keys.existingSecret | string | `""` | Use an existing secret | +| image.pullPolicy | string | `"IfNotPresent"` | | +| image.registry | string | `"ghcr.io"` | | +| image.repository | string | `"juanfont/headscale"` | | +| image.tag | string | `""` | | +| imagePullSecrets | list | `[]` | | +| ingress.annotations | object | `{}` | | +| ingress.className | string | `""` | | +| ingress.enabled | bool | `false` | | +| ingress.hosts[0].host | string | `"chart-example.local"` | | +| ingress.hosts[0].paths[0].path | string | `"/"` | | +| ingress.hosts[0].paths[0].pathType | string | `"ImplementationSpecific"` | | +| ingress.tls | list | `[]` | | +| nameOverride | string | `""` | | +| networkPolicy.egress.enabled | bool | `false` | activate egress no networkpolicy | +| networkPolicy.egress.extra | list | `[]` | egress rules | +| networkPolicy.enabled | bool | `false` | | +| networkPolicy.ingress.derp | list | `[{"ipBlock":{"cidr":"0.0.0.0/0"}},{"ipBlock":{"cidr":"::/0"}}]` | ingress for derp | +| networkPolicy.ingress.grpc | list | `[]` | ingress for grpc port | +| networkPolicy.ingress.http | list | `[]` | ingress for http port (e.g. ingress-controller) | +| networkPolicy.ingress.metrics | list | `[]` | ingress for metrics port (e.g. prometheus) | +| nodeSelector | object | `{}` | | +| persistence.accessMode | string | `"ReadWriteOnce"` | | +| persistence.annotations | object | `{}` | | +| persistence.enabled | bool | `false` | | +| persistence.existingClaim | string | `nil` | A manually managed Persistent Volume and Claim Requires persistence.enabled: true If defined, PVC must be created manually before volume will be bound | +| persistence.hostPath | string | `nil` | Create a PV on Node with given hostPath storageClass has to be manual | +| persistence.size | string | `"1Gi"` | | +| persistence.storageClass | string | `nil` | data Persistent Volume Storage Class If defined, storageClassName: If set to "-", storageClassName: "", which disables dynamic provisioning If undefined (the default) or set to null, no storageClassName spec is set, choosing the default provisioner. (gp2 on AWS, standard on GKE, AWS & OpenStack) | +| podAnnotations | object | `{}` | | +| podLabels | object | `{}` | | +| podSecurityContext | object | `{}` | | +| prometheus.rules.additionalRules | list | `[]` | | +| prometheus.rules.defaults.enabled | bool | `true` | | +| prometheus.rules.defaults.filter | string | `""` | | +| prometheus.rules.defaults.lastUpdates.critical | int | `3600` | | +| prometheus.rules.defaults.lastUpdates.info | int | `300` | | +| prometheus.rules.defaults.lastUpdates.warning | int | `600` | | +| prometheus.rules.enabled | bool | `false` | | +| prometheus.rules.labels | object | `{}` | | +| prometheus.servicemonitor.enabled | bool | `false` | | +| prometheus.servicemonitor.labels | object | `{}` | | +| replicaCount | int | `1` | | +| resources | object | `{}` | | +| securityContext | object | `{}` | | +| service.annotations | string | `nil` | | +| service.derp.annotations | string | `nil` | | +| service.derp.port | int | `3478` | | +| service.derp.type | string | `"LoadBalancer"` | | +| service.port.grpc | int | `50443` | | +| service.port.http | int | `8080` | | +| service.port.metrics | int | `9090` | | +| service.type | string | `"ClusterIP"` | | +| serviceAccount.annotations | object | `{}` | | +| serviceAccount.create | bool | `true` | | +| serviceAccount.name | string | `""` | | +| tolerations | list | `[]` | | + +Autogenerated from chart metadata using [helm-docs](https://github.com/norwoodj/helm-docs) diff --git a/headscale/templates/deployment.yaml b/headscale/templates/deployment.yaml index 981420f..be2b749 100644 --- a/headscale/templates/deployment.yaml +++ b/headscale/templates/deployment.yaml @@ -40,7 +40,6 @@ spec: {{- end }} imagePullPolicy: {{ .Values.image.pullPolicy }} args: - - "headscale" - "serve" ports: - name: http @@ -110,6 +109,8 @@ spec: path: "wireguard.key" - key: "noise.key" path: "noise.key" + - key: "derp.key" + path: "derp.key" {{- if .Values.headscale.certmanager.enabled }} - name: certs secret: diff --git a/headscale/templates/jobs.yaml b/headscale/templates/jobs.yaml index 92d46de..f848d1c 100644 --- a/headscale/templates/jobs.yaml +++ b/headscale/templates/jobs.yaml @@ -76,34 +76,10 @@ spec: spec: restartPolicy: "Never" serviceAccount: {{ $name }} - containers: - - name: upload-key - image: bitnami/kubectl - command: - - sh - - -c - - | - # check if key already exists - key=$(kubectl get secret {{ $secretName }} -o jsonpath="{.data['wireguard.key']}" 2> /dev/null) - [ $? -ne 0 ] && echo "Failed to get existing secret" && exit 1 - [ -n "$key" ] && echo "Key already created, exiting." && exit 0 - # wait for wireguard key - while [ ! -f /etc/headscale/secrets/wireguard.key ]; do - echo "Waiting for wireguard key.." - sleep 5; - done - # update secret - kubectl patch secret {{ $secretName }} -p "{\"data\":{\"wireguard.key\":\"$(base64 /etc/headscale/secrets/wireguard.key | tr -d '\n')\"}}" - kubectl patch secret {{ $secretName }} -p "{\"data\":{\"noise.key\":\"$(base64 /etc/headscale/secrets/noise.key | tr -d '\n')\"}}" - [ $? -ne 0 ] && echo "Failed to update secret." && exit 1 - echo "Signing key successfully created." - volumeMounts: - - mountPath: /etc/headscale/secrets - name: secrets - readOnly: true + initContainers: - name: generate-key {{- with .Values.image }} - image: "{{ .registry }}/{{ .repository }}:{{ .tag | default $.Chart.AppVersion }}" + image: "{{ .registry }}/{{ .repository }}:{{ .tag | default $.Chart.AppVersion }}-debug" {{- end }} imagePullPolicy: {{ .Values.image.pullPolicy }} command: @@ -111,16 +87,49 @@ spec: - -c - | set -e - /bin/headscale generate private-key | tail -1 | sed 's/privkey://' > /etc/headscale/secrets/wireguard.key - chown 1001:1001 /etc/headscale/secrets/wireguard.key - /bin/headscale generate private-key | tail -1 | sed 's/privkey://' > /etc/headscale/secrets/noise.key - chown 1001:1001 /etc/headscale/secrets/noise.key + echo "generate private-keys" + headscale generate private-key --output json > /etc/headscale/secrets/wireguard.json + headscale generate private-key --output json > /etc/headscale/secrets/noise.json + headscale generate private-key --output json > /etc/headscale/secrets/derp.json + ls /etc/headscale/secrets/ volumeMounts: - name: config mountPath: "/etc/headscale" readOnly: true - mountPath: "/etc/headscale/secrets" name: secrets + containers: + - name: upload-key + image: bitnami/kubectl + command: + - sh + - -c + - | + # check if key already exists + key=$(kubectl get secret {{ $secretName }} -o jsonpath="{.data}" 2> /dev/null) + [ $? -ne 0 ] && echo "Failed to get existing secret" && exit 1 + if ! echo $key | jq -e 'has("wireguard.key")' 2> /dev/null ; then + echo "store wireguard.key" + kubectl patch secret {{ $secretName }} -p "{\"data\":{\"wireguard.key\":\"$(jq -r '.["private_key"] | split(":")[1] | @base64' /etc/headscale/secrets/wireguard.json)\"}}" + fi + if ! echo $key | jq -e 'has("noise.key")' 2> /dev/null ; then + echo "store noise.key" + kubectl patch secret {{ $secretName }} -p "{\"data\":{\"noise.key\":\"$(jq -r '.["private_key"] | @base64' /etc/headscale/secrets/noise.json)\"}}" + elif ! echo $key | jq -e '.["noise.key"] |@base64d | contains("privkey")' 2> /dev/null ; then + echo "patch noise.key" + newKey="privkey:$(echo $key | jq -r '.["noise.key"]|@base64d')" + kubectl patch secret {{ $secretName }} -p "{\"data\":{\"noise.key\":\"$(echo $newKey | base64 -w0)\"}}" + fi + if ! echo $key | jq -e 'has("derp.key")' 2> /dev/null ; then + echo "store derp.key" + kubectl patch secret {{ $secretName }} -p "{\"data\":{\"derp.key\":\"$(jq -r '.["private_key"] | @base64' /etc/headscale/secrets/derp.json)\"}}" + fi + [ $? -ne 0 ] && echo "Failed to update secret." && exit 1 + echo "Signing key successfully created." + volumeMounts: + - mountPath: /etc/headscale/secrets + name: secrets + readOnly: true volumes: - name: config secret: diff --git a/headscale/templates/secret.yaml b/headscale/templates/secret.yaml index 5963e2c..467ea1f 100644 --- a/headscale/templates/secret.yaml +++ b/headscale/templates/secret.yaml @@ -4,7 +4,7 @@ kind: Secret metadata: name: {{ include "headscale.fullname" . }} annotations: - "helm.sh/hook": "pre-install" + "helm.sh/hook": "pre-install,pre-upgrade" config-hash: {{ toYaml .Values.headscale.config | sha256sum | trunc 32 }} type: Opaque stringData: diff --git a/headscale/values.yaml b/headscale/values.yaml index 63cf39e..d90e827 100644 --- a/headscale/values.yaml +++ b/headscale/values.yaml @@ -36,21 +36,20 @@ headscale: grpc_listen_addr: ":50443" server_url: http://127.0.0.1:8080 + disable_check_updates: true # SQLite config - db_type: sqlite3 - - # For production: - db_path: /var/lib/headscale/db.sqlite - - # # Postgres config - # If using a Unix socket to connect to Postgres, set the socket path in the 'host' field and leave 'port' blank. - # db_type: postgres - # db_host: localhost - # db_port: 5432 - # db_name: headscale - # db_user: foo - # db_pass: bar + database: + type: sqlite + sqlite: + # For production: + path: /var/lib/headscale/db.sqlite + postgres: + host: localhost + port: 5432 + name: headscale + user: foo + pass: bar private_key_path: "/etc/headscale/secrets/wireguard.key" noise: private_key_path: "/etc/headscale/secrets/noise.key" @@ -59,6 +58,10 @@ headscale: ## Use already defined certificates: tls_cert_path: "/etc/headscale/certs/tls.crt" tls_key_path: "/etc/headscale/certs/tls.key" + prefixes: + v6: fd7a:115c:a1e0::/48 + v4: 100.64.0.0/10 + allocation: sequential derp: server: enabled: true @@ -66,12 +69,14 @@ headscale: region_code: "headscale" region_name: "Headscale Embedded DERP" stun_listen_addr: "0.0.0.0:3478" + private_key_path: "/etc/headscale/secrets/derp.key" urls: [] # - https://controlplane.tailscale.com/derpmap/default paths: [] # auto_update_enabled: true update_frequency: 24h - disable_check_updates: true + dns: + base_domain: example.com prometheus: servicemonitor: diff --git a/publish.sh b/publish.sh index 99f92f3..c281d2d 100755 --- a/publish.sh +++ b/publish.sh @@ -54,7 +54,7 @@ for p in * ; do set -e echo "update docs" helm-docs -t ./README.md.gotmpl -t _docs.gotmpl -o README.md -g "${p}" - rm "${p}/README.adoc" + rm -f "${p}/README.adoc" echo echo "package and push helm-chart" -- 2.45.3 From f59683cf4b5f66d348370a2d8660a678be86150d Mon Sep 17 00:00:00 2001 From: WrenIX Date: Thu, 21 Nov 2024 21:42:14 +0100 Subject: [PATCH 071/134] chore(ci): improve publish.sh script --- publish.sh | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/publish.sh b/publish.sh index c281d2d..d0596e5 100755 --- a/publish.sh +++ b/publish.sh @@ -71,9 +71,9 @@ for p in * ; do echo echo "push to git" - set -e git add "${p}/" git commit -m "${COMMIT_SCOPE}(${p}): ${COMMIT_MESSAGE}" + set -e git tag "${tag}" --no-sign; git push --tags origin main; set +e -- 2.45.3 From 441c4f64a9ccf120cb254a6259d9a29e953b654d Mon Sep 17 00:00:00 2001 From: WrenIX Date: Thu, 21 Nov 2024 21:50:18 +0100 Subject: [PATCH 072/134] fix(alertmanager-ntfy): update appVersion --- alertmanager-ntfy/Chart.yaml | 6 +- alertmanager-ntfy/README.adoc | 301 ---------------------------------- alertmanager-ntfy/README.md | 97 +++++++++++ alertmanager-ntfy/values.yaml | 2 +- 4 files changed, 101 insertions(+), 305 deletions(-) delete mode 100644 alertmanager-ntfy/README.adoc create mode 100644 alertmanager-ntfy/README.md diff --git a/alertmanager-ntfy/Chart.yaml b/alertmanager-ntfy/Chart.yaml index 2a3dd8a..5b2e5e1 100644 --- a/alertmanager-ntfy/Chart.yaml +++ b/alertmanager-ntfy/Chart.yaml @@ -2,9 +2,9 @@ apiVersion: v2 name: alertmanager-ntfy description: Receiver for alertmanager to forward to ntfy.sh type: application -version: 0.1.4 -# renovate: image=docker.io/xenrox/ntfy-alertmanager -appVersion: "0.3.0" +version: 0.1.5 +# renovate: image=codeberg.org/xenrox/ntfy-alertmanager +appVersion: "0.4.0" maintainers: - name: WrenIX url: https://wrenix.eu diff --git a/alertmanager-ntfy/README.adoc b/alertmanager-ntfy/README.adoc deleted file mode 100644 index 8da8363..0000000 --- a/alertmanager-ntfy/README.adoc +++ /dev/null @@ -1,301 +0,0 @@ - - -= alertmanager-ntfy - -image::https://img.shields.io/badge/Version-0.1.4-informational?style=flat-square[Version: 0.1.4] -image::https://img.shields.io/badge/Version-application-informational?style=flat-square[Type: application] -image::https://img.shields.io/badge/AppVersion-0.3.0-informational?style=flat-square[AppVersion: 0.3.0] -== Maintainers - -.Maintainers -|=== -| Name | Email | Url - -| WrenIX -| -| -|=== - -== Usage - -Helm must be installed and setup to your kubernetes cluster to use the charts. -Refer to Helm's https://helm.sh/docs[documentation] to get started. -Once Helm has been set up correctly, fetch the charts as follows: - -[source,bash] ----- -helm pull oci://codeberg.org/wrenix/helm-charts/alertmanager-ntfy ----- - -You can install a chart release using the following command: - -[source,bash] ----- -helm install alertmanager-ntfy-release oci://codeberg.org/wrenix/helm-charts/alertmanager-ntfy --values values.yaml ----- - -To uninstall a chart release use `helm`'s delete command: - -[source,bash] ----- -helm uninstall alertmanager-ntfy-release ----- - -== Values - -.Values -|=== -| Key | Type | Default | Description - -| affinity -| object -| `{}` -| - -| autoscaling.enabled -| bool -| `false` -| - -| autoscaling.maxReplicas -| int -| `100` -| - -| autoscaling.minReplicas -| int -| `1` -| - -| autoscaling.targetCPUUtilizationPercentage -| int -| `80` -| - -| fullnameOverride -| string -| `""` -| - -| image.pullPolicy -| string -| `"IfNotPresent"` -| - -| image.registry -| string -| `"docker.io"` -| - -| image.repository -| string -| `"xenrox/ntfy-alertmanager"` -| - -| image.tag -| string -| `""` -| - -| imagePullSecrets -| list -| `[]` -| - -| ingress.annotations -| object -| `{}` -| - -| ingress.className -| string -| `""` -| - -| ingress.enabled -| bool -| `false` -| - -| ingress.hosts[0].host -| string -| `"chart-example.local"` -| - -| ingress.hosts[0].paths[0].path -| string -| `"/"` -| - -| ingress.hosts[0].paths[0].pathType -| string -| `"ImplementationSpecific"` -| - -| ingress.tls -| list -| `[]` -| - -| nameOverride -| string -| `""` -| - -| nodeSelector -| object -| `{}` -| - -| ntfyAlertmanager.labels.entries[0].label -| string -| `"severity"` -| - -| ntfyAlertmanager.labels.entries[0].priority -| int -| `5` -| - -| ntfyAlertmanager.labels.entries[0].tags[0] -| string -| `"rotating_light"` -| - -| ntfyAlertmanager.labels.entries[0].value -| string -| `"critical"` -| - -| ntfyAlertmanager.labels.entries[1].label -| string -| `"severity"` -| - -| ntfyAlertmanager.labels.entries[1].priority -| int -| `1` -| - -| ntfyAlertmanager.labels.entries[1].value -| string -| `"info"` -| - -| ntfyAlertmanager.labels.entries[2].label -| string -| `"instance"` -| - -| ntfyAlertmanager.labels.entries[2].tags[0] -| string -| `"computer"` -| - -| ntfyAlertmanager.labels.entries[2].tags[1] -| string -| `"example"` -| - -| ntfyAlertmanager.labels.entries[2].value -| string -| `"example.com"` -| - -| ntfyAlertmanager.labels.order[0] -| string -| `"severity"` -| - -| ntfyAlertmanager.labels.order[1] -| string -| `"instance"` -| - -| ntfyAlertmanager.logLevel -| string -| `"info"` -| - -| ntfyAlertmanager.ntfy.topic -| string -| `"https://ntfy.sh/alertmanager-alerts"` -| - -| ntfyAlertmanager.port -| int -| `80` -| - -| ntfyAlertmanager.resolved.tags[0] -| string -| `"resolved"` -| - -| ntfyAlertmanager.resolved.tags[1] -| string -| `"partying_face"` -| - -| podAnnotations -| object -| `{}` -| - -| podLabels -| object -| `{}` -| - -| podSecurityContext -| object -| `{}` -| - -| replicaCount -| int -| `1` -| - -| resources -| object -| `{}` -| - -| securityContext -| object -| `{}` -| - -| service.port -| int -| `80` -| - -| service.type -| string -| `"ClusterIP"` -| - -| serviceAccount.annotations -| object -| `{}` -| - -| serviceAccount.create -| bool -| `true` -| - -| serviceAccount.name -| string -| `""` -| - -| tolerations -| list -| `[]` -| -|=== - -Autogenerated from chart metadata using https://github.com/norwoodj/helm-docs[helm-docs] diff --git a/alertmanager-ntfy/README.md b/alertmanager-ntfy/README.md new file mode 100644 index 0000000..d36a0f3 --- /dev/null +++ b/alertmanager-ntfy/README.md @@ -0,0 +1,97 @@ +--- +title: "alertmanager-ntfy" + +description: "Receiver for alertmanager to forward to ntfy.sh" + +--- + +# alertmanager-ntfy + +![Version: 0.1.5](https://img.shields.io/badge/Version-0.1.5-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 0.4.0](https://img.shields.io/badge/AppVersion-0.4.0-informational?style=flat-square) + +Receiver for alertmanager to forward to ntfy.sh + +## Maintainers + +| Name | Email | Url | +| ---- | ------ | --- | +| WrenIX | | | + +## Usage + +Helm must be installed and setup to your kubernetes cluster to use the charts. +Refer to Helm's [documentation](https://helm.sh/docs) to get started. +Once Helm has been set up correctly, fetch the charts as follows: + +```bash +helm pull oci://codeberg.org/wrenix/helm-charts/alertmanager-ntfy +``` + +You can install a chart release using the following command: + +```bash +helm install alertmanager-ntfy-release oci://codeberg.org/wrenix/helm-charts/alertmanager-ntfy --values values.yaml +``` + +To uninstall a chart release use `helm`'s delete command: + +```bash +helm uninstall alertmanager-ntfy-release +``` + +## Values + +| Key | Type | Default | Description | +|-----|------|---------|-------------| +| affinity | object | `{}` | | +| autoscaling.enabled | bool | `false` | | +| autoscaling.maxReplicas | int | `100` | | +| autoscaling.minReplicas | int | `1` | | +| autoscaling.targetCPUUtilizationPercentage | int | `80` | | +| fullnameOverride | string | `""` | | +| image.pullPolicy | string | `"IfNotPresent"` | | +| image.registry | string | `"codeberg.org"` | | +| image.repository | string | `"xenrox/ntfy-alertmanager"` | | +| image.tag | string | `""` | | +| imagePullSecrets | list | `[]` | | +| ingress.annotations | object | `{}` | | +| ingress.className | string | `""` | | +| ingress.enabled | bool | `false` | | +| ingress.hosts[0].host | string | `"chart-example.local"` | | +| ingress.hosts[0].paths[0].path | string | `"/"` | | +| ingress.hosts[0].paths[0].pathType | string | `"ImplementationSpecific"` | | +| ingress.tls | list | `[]` | | +| nameOverride | string | `""` | | +| nodeSelector | object | `{}` | | +| ntfyAlertmanager.labels.entries[0].label | string | `"severity"` | | +| ntfyAlertmanager.labels.entries[0].priority | int | `5` | | +| ntfyAlertmanager.labels.entries[0].tags[0] | string | `"rotating_light"` | | +| ntfyAlertmanager.labels.entries[0].value | string | `"critical"` | | +| ntfyAlertmanager.labels.entries[1].label | string | `"severity"` | | +| ntfyAlertmanager.labels.entries[1].priority | int | `1` | | +| ntfyAlertmanager.labels.entries[1].value | string | `"info"` | | +| ntfyAlertmanager.labels.entries[2].label | string | `"instance"` | | +| ntfyAlertmanager.labels.entries[2].tags[0] | string | `"computer"` | | +| ntfyAlertmanager.labels.entries[2].tags[1] | string | `"example"` | | +| ntfyAlertmanager.labels.entries[2].value | string | `"example.com"` | | +| ntfyAlertmanager.labels.order[0] | string | `"severity"` | | +| ntfyAlertmanager.labels.order[1] | string | `"instance"` | | +| ntfyAlertmanager.logLevel | string | `"info"` | | +| ntfyAlertmanager.ntfy.topic | string | `"https://ntfy.sh/alertmanager-alerts"` | | +| ntfyAlertmanager.port | int | `80` | | +| ntfyAlertmanager.resolved.tags[0] | string | `"resolved"` | | +| ntfyAlertmanager.resolved.tags[1] | string | `"partying_face"` | | +| podAnnotations | object | `{}` | | +| podLabels | object | `{}` | | +| podSecurityContext | object | `{}` | | +| replicaCount | int | `1` | | +| resources | object | `{}` | | +| securityContext | object | `{}` | | +| service.port | int | `80` | | +| service.type | string | `"ClusterIP"` | | +| serviceAccount.annotations | object | `{}` | | +| serviceAccount.create | bool | `true` | | +| serviceAccount.name | string | `""` | | +| tolerations | list | `[]` | | + +Autogenerated from chart metadata using [helm-docs](https://github.com/norwoodj/helm-docs) diff --git a/alertmanager-ntfy/values.yaml b/alertmanager-ntfy/values.yaml index 870a7ce..405a4d0 100644 --- a/alertmanager-ntfy/values.yaml +++ b/alertmanager-ntfy/values.yaml @@ -5,7 +5,7 @@ replicaCount: 1 image: - registry: docker.io + registry: codeberg.org repository: xenrox/ntfy-alertmanager pullPolicy: IfNotPresent # Overrides the image tag whose default is the chart appVersion. -- 2.45.3 From 3bc284a797650403f2cad11cf2774841458bfb27 Mon Sep 17 00:00:00 2001 From: WrenIX Date: Fri, 22 Nov 2024 15:21:11 +0100 Subject: [PATCH 073/134] fix(element-call): update appVersion --- element-call/Chart.yaml | 4 +- element-call/README.adoc | 402 --------------------------------------- element-call/README.md | 2 +- 3 files changed, 3 insertions(+), 405 deletions(-) delete mode 100644 element-call/README.adoc diff --git a/element-call/Chart.yaml b/element-call/Chart.yaml index cb205e1..e8e8825 100644 --- a/element-call/Chart.yaml +++ b/element-call/Chart.yaml @@ -2,9 +2,9 @@ apiVersion: v2 name: element-call description: Run Element-Call and his dependencies type: application -version: "0.1.5" +version: "0.1.6" # renovate: image=ghcr.io/element-hq/element-call -appVersion: "0.6.6" +appVersion: "0.7.0" maintainers: - name: WrenIX url: https://wrenix.eu diff --git a/element-call/README.adoc b/element-call/README.adoc deleted file mode 100644 index 6cd058b..0000000 --- a/element-call/README.adoc +++ /dev/null @@ -1,402 +0,0 @@ - - -= element-call - -image::https://img.shields.io/badge/Version-0.1.5-informational?style=flat-square[Version: 0.1.5] -image::https://img.shields.io/badge/Version-application-informational?style=flat-square[Type: application] -image::https://img.shields.io/badge/AppVersion-0.6.6-informational?style=flat-square[AppVersion: 0.6.6] -== Maintainers - -.Maintainers -|=== -| Name | Email | Url - -| WrenIX -| -| -|=== - -== Usage - -Helm must be installed and setup to your kubernetes cluster to use the charts. -Refer to Helm's https://helm.sh/docs[documentation] to get started. -Once Helm has been set up correctly, fetch the charts as follows: - -[source,bash] ----- -helm pull oci://codeberg.org/wrenix/helm-charts/element-call ----- - -You can install a chart release using the following command: - -[source,bash] ----- -helm install element-call-release oci://codeberg.org/wrenix/helm-charts/element-call --values values.yaml ----- - -To uninstall a chart release use `helm`'s delete command: - -[source,bash] ----- -helm uninstall element-call-release ----- - -== Values - -.Values -|=== -| Key | Type | Default | Description - -| autoscaling.enabled -| bool -| `false` -| - -| autoscaling.maxReplicas -| int -| `100` -| - -| autoscaling.minReplicas -| int -| `1` -| - -| autoscaling.targetCPUUtilizationPercentage -| int -| `80` -| - -| fullnameOverride -| string -| `""` -| - -| global.image.pullPolicy -| string -| `nil` -| if set it will overwrite all pullPolicy - -| global.image.registry -| string -| `nil` -| if set it will overwrite all registry entries - -| imagePullSecrets -| list -| `[]` -| - -| ingress.annotations -| object -| `{}` -| - -| ingress.className -| string -| `""` -| - -| ingress.enabled -| bool -| `false` -| - -| ingress.tls -| list -| `[]` -| - -| nameOverride -| string -| `""` -| - -| service.call.affinity -| object -| `{}` -| - -| service.call.config -| object -| `{}` -| - -| service.call.image.pullPolicy -| string -| `"IfNotPresent"` -| - -| service.call.image.registry -| string -| `"ghcr.io"` -| - -| service.call.image.repository -| string -| `"element-hq/element-call"` -| - -| service.call.image.tag -| string -| `nil` -| Overrides the image tag whose default is the chart appVersion. - -| service.call.ingress.host -| string -| `nil` -| - -| service.call.livenessProbe.httpGet.path -| string -| `"/"` -| - -| service.call.livenessProbe.httpGet.port -| string -| `"http"` -| - -| service.call.networkPolicy.egress.enabled -| bool -| `true` -| activate egress no networkpolicy - -| service.call.networkPolicy.egress.extra -| list -| `[]` -| egress rules - -| service.call.networkPolicy.enabled -| bool -| `false` -| - -| service.call.networkPolicy.ingress.http -| list -| `[]` -| ingress for http port (e.g. ingress-controller) - -| service.call.nodeSelector -| object -| `{}` -| - -| service.call.podAnnotations -| object -| `{}` -| - -| service.call.podLabels -| object -| `{}` -| - -| service.call.podSecurityContext -| object -| `{}` -| - -| service.call.readinessProbe.httpGet.path -| string -| `"/"` -| - -| service.call.readinessProbe.httpGet.port -| string -| `"http"` -| - -| service.call.replicaCount -| int -| `1` -| - -| service.call.resources -| object -| `{}` -| - -| service.call.securityContext -| object -| `{}` -| - -| service.call.serviceAccount.annotations -| object -| `{}` -| - -| service.call.serviceAccount.automount -| bool -| `true` -| - -| service.call.serviceAccount.create -| bool -| `true` -| - -| service.call.serviceAccount.name -| string -| `""` -| - -| service.call.tolerations -| list -| `[]` -| - -| service.lkJWT.affinity -| object -| `{}` -| - -| service.lkJWT.config.key -| string -| `"devkey"` -| - -| service.lkJWT.config.secret -| string -| `"secret"` -| - -| service.lkJWT.config.url -| string -| `""` -| - -| service.lkJWT.enabled -| bool -| `true` -| - -| service.lkJWT.image.pullPolicy -| string -| `"IfNotPresent"` -| - -| service.lkJWT.image.registry -| string -| `"ghcr.io"` -| - -| service.lkJWT.image.repository -| string -| `"element-hq/lk-jwt-service"` -| - -| service.lkJWT.image.tag -| string -| `"sha-4a29504"` -| - -| service.lkJWT.ingress.host -| string -| `nil` -| - -| service.lkJWT.livenessProbe.httpGet.path -| string -| `"/healthz"` -| - -| service.lkJWT.livenessProbe.httpGet.port -| string -| `"http"` -| - -| service.lkJWT.networkPolicy.egress.enabled -| bool -| `false` -| activate egress no networkpolicy - -| service.lkJWT.networkPolicy.egress.extra -| list -| `[]` -| egress rules - -| service.lkJWT.networkPolicy.enabled -| bool -| `false` -| - -| service.lkJWT.networkPolicy.ingress.http -| list -| `[]` -| ingress for http port (e.g. ingress-controller) - -| service.lkJWT.nodeSelector -| object -| `{}` -| - -| service.lkJWT.podAnnotations -| object -| `{}` -| - -| service.lkJWT.podLabels -| object -| `{}` -| - -| service.lkJWT.podSecurityContext -| object -| `{}` -| - -| service.lkJWT.readinessProbe.httpGet.path -| string -| `"/healthz"` -| - -| service.lkJWT.readinessProbe.httpGet.port -| string -| `"http"` -| - -| service.lkJWT.replicaCount -| int -| `1` -| - -| service.lkJWT.resources -| object -| `{}` -| - -| service.lkJWT.securityContext -| object -| `{}` -| - -| service.lkJWT.serviceAccount.annotations -| object -| `{}` -| - -| service.lkJWT.serviceAccount.automount -| bool -| `true` -| - -| service.lkJWT.serviceAccount.create -| bool -| `true` -| - -| service.lkJWT.serviceAccount.name -| string -| `""` -| - -| service.lkJWT.tolerations -| list -| `[]` -| -|=== - -Autogenerated from chart metadata using https://github.com/norwoodj/helm-docs[helm-docs] - diff --git a/element-call/README.md b/element-call/README.md index 4d0966d..7e8806e 100644 --- a/element-call/README.md +++ b/element-call/README.md @@ -7,7 +7,7 @@ description: "Run Element-Call and his dependencies" # element-call -![Version: 0.1.5](https://img.shields.io/badge/Version-0.1.5-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 0.6.6](https://img.shields.io/badge/AppVersion-0.6.6-informational?style=flat-square) +![Version: 0.1.6](https://img.shields.io/badge/Version-0.1.6-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 0.7.0](https://img.shields.io/badge/AppVersion-0.7.0-informational?style=flat-square) Run Element-Call and his dependencies -- 2.45.3 From 3294de9ddffbeb5debfc288592deb12ff18411f3 Mon Sep 17 00:00:00 2001 From: WrenIX Date: Fri, 22 Nov 2024 15:21:34 +0100 Subject: [PATCH 074/134] fix(home-assistant): update appVersion --- home-assistant/Chart.yaml | 4 +- home-assistant/README.adoc | 416 ------------------------------------- home-assistant/README.md | 2 +- 3 files changed, 3 insertions(+), 419 deletions(-) delete mode 100644 home-assistant/README.adoc diff --git a/home-assistant/Chart.yaml b/home-assistant/Chart.yaml index fa3c65c..1f00635 100644 --- a/home-assistant/Chart.yaml +++ b/home-assistant/Chart.yaml @@ -3,9 +3,9 @@ name: home-assistant description: Home Assistant with tooling to run on an k3s pi icon: https://www.home-assistant.io/images/favicon-192x192.png type: application -version: 0.2.6 +version: 0.2.7 # renovate: image=ghcr.io/home-assistant/home-assistant -appVersion: "2024.11.2" +appVersion: "2024.11.3" maintainers: - name: WrenIX url: https://wrenix.eu diff --git a/home-assistant/README.adoc b/home-assistant/README.adoc deleted file mode 100644 index 2b039c1..0000000 --- a/home-assistant/README.adoc +++ /dev/null @@ -1,416 +0,0 @@ - - -= home-assistant - -image::https://img.shields.io/badge/Version-0.2.6-informational?style=flat-square[Version: 0.2.6] -image::https://img.shields.io/badge/Version-application-informational?style=flat-square[Type: application] -image::https://img.shields.io/badge/AppVersion-2024.11.2-informational?style=flat-square[AppVersion: 2024.11.2] -== Maintainers - -.Maintainers -|=== -| Name | Email | Url - -| WrenIX -| -| -|=== - -== Usage - -Helm must be installed and setup to your kubernetes cluster to use the charts. -Refer to Helm's https://helm.sh/docs[documentation] to get started. -Once Helm has been set up correctly, fetch the charts as follows: - -[source,bash] ----- -helm pull oci://codeberg.org/wrenix/helm-charts/home-assistant ----- - -You can install a chart release using the following command: - -[source,bash] ----- -helm install home-assistant-release oci://codeberg.org/wrenix/helm-charts/home-assistant --values values.yaml ----- - -To uninstall a chart release use `helm`'s delete command: - -[source,bash] ----- -helm uninstall home-assistant-release ----- - -== Values - -.Values -|=== -| Key | Type | Default | Description - -| affinity -| object -| `{}` -| - -| autoscaling.enabled -| bool -| `false` -| - -| autoscaling.maxReplicas -| int -| `100` -| - -| autoscaling.minReplicas -| int -| `1` -| - -| autoscaling.targetCPUUtilizationPercentage -| int -| `80` -| - -| fullnameOverride -| string -| `""` -| - -| global.image.pullPolicy -| string -| `nil` -| if set it will overwrite all pullPolicy - -| global.image.registry -| string -| `nil` -| if set it will overwrite all registry entries - -| image.pullPolicy -| string -| `"IfNotPresent"` -| - -| image.registry -| string -| `"ghcr.io"` -| - -| image.repository -| string -| `"home-assistant/home-assistant"` -| - -| image.tag -| string -| `""` -| - -| imagePullSecrets -| list -| `[]` -| - -| ingress.annotations -| object -| `{}` -| - -| ingress.className -| string -| `""` -| - -| ingress.enabled -| bool -| `false` -| - -| ingress.hosts[0].host -| string -| `"chart-example.local"` -| - -| ingress.hosts[0].paths[0].path -| string -| `"/"` -| - -| ingress.hosts[0].paths[0].pathType -| string -| `"ImplementationSpecific"` -| - -| ingress.tls -| list -| `[]` -| - -| livenessProbe.httpGet.path -| string -| `"/"` -| - -| livenessProbe.httpGet.port -| string -| `"http"` -| - -| nameOverride -| string -| `""` -| - -| nats.enabled -| bool -| `true` -| - -| nats.image.pullPolicy -| string -| `"IfNotPresent"` -| - -| nats.image.registry -| string -| `"docker.io"` -| - -| nats.image.repository -| string -| `"library/nats"` -| - -| nats.image.tag -| string -| `"2.10.22-scratch"` -| - -| nats.livenessProbe.tcpSocket.port -| string -| `"nats"` -| - -| nats.readinessProbe.tcpSocket.port -| string -| `"nats"` -| - -| nats.resources.limits.cpu -| string -| `"100m"` -| - -| nats.resources.limits.memory -| string -| `"128Mi"` -| - -| nats.resources.requests.cpu -| string -| `"100m"` -| - -| nats.resources.requests.memory -| string -| `"128Mi"` -| - -| nats.service.port.mqtt -| int -| `1883` -| - -| nats.service.port.nats -| int -| `4222` -| - -| nodeSelector -| object -| `{}` -| - -| persistence.accessMode -| string -| `"ReadWriteOnce"` -| - -| persistence.annotations -| object -| `{}` -| - -| persistence.enabled -| bool -| `false` -| - -| persistence.existingClaim -| string -| `nil` -| A manually managed Persistent Volume and Claim Requires persistence.enabled: true If defined, PVC must be created manually before volume will be bound - -| persistence.hostPath -| string -| `nil` -| - -| persistence.size -| string -| `"1Gi"` -| - -| persistence.storageClass -| string -| `nil` -| data Persistent Volume Storage Class If defined, storageClassName: If set to "-", storageClassName: "", which disables dynamic provisioning If undefined (the default) or set to null, no storageClassName spec is set, choosing the default provisioner. (gp2 on AWS, standard on GKE, AWS & OpenStack) - -| podAnnotations -| object -| `{}` -| - -| podLabels -| object -| `{}` -| - -| podSecurityContext -| object -| `{}` -| - -| prometheus.podmonitor.bearerTokenSecret -| object -| `{}` -| - -| prometheus.podmonitor.enabled -| bool -| `false` -| - -| prometheus.podmonitor.labels -| object -| `{}` -| - -| readinessProbe.httpGet.path -| string -| `"/"` -| - -| readinessProbe.httpGet.port -| string -| `"http"` -| - -| replicaCount -| int -| `1` -| - -| resources -| object -| `{}` -| - -| securityContext -| object -| `{}` -| - -| service.port -| int -| `80` -| - -| service.type -| string -| `"ClusterIP"` -| - -| serviceAccount.annotations -| object -| `{}` -| Annotations to add to the service account - -| serviceAccount.create -| bool -| `true` -| Specifies whether a service account should be created - -| serviceAccount.name -| string -| `""` -| If not set and create is true, a name is generated using the fullname template - -| tolerations -| list -| `[]` -| - -| volumeMounts -| list -| `[]` -| - -| volumes -| list -| `[]` -| - -| zigbee2mqtt.config.homeassistant -| bool -| `true` -| - -| zigbee2mqtt.config.serial.port -| string -| `"/dev/ttyACM0"` -| - -| zigbee2mqtt.device -| string -| `"/dev/ttyACM0"` -| - -| zigbee2mqtt.enabled -| bool -| `true` -| - -| zigbee2mqtt.image.pullPolicy -| string -| `"IfNotPresent"` -| - -| zigbee2mqtt.image.registry -| string -| `"docker.io"` -| - -| zigbee2mqtt.image.repository -| string -| `"koenkk/zigbee2mqtt"` -| - -| zigbee2mqtt.image.tag -| string -| `"1.41.0"` -| - -| zigbee2mqtt.ingress.hosts -| list -| `[]` -| - -| zigbee2mqtt.securityContext.privileged -| bool -| `true` -| -|=== - -Autogenerated from chart metadata using https://github.com/norwoodj/helm-docs[helm-docs] diff --git a/home-assistant/README.md b/home-assistant/README.md index 10e7c9f..f68f6b7 100644 --- a/home-assistant/README.md +++ b/home-assistant/README.md @@ -7,7 +7,7 @@ description: "Home Assistant with tooling to run on an k3s pi" # home-assistant -![Version: 0.2.6](https://img.shields.io/badge/Version-0.2.6-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 2024.11.2](https://img.shields.io/badge/AppVersion-2024.11.2-informational?style=flat-square) +![Version: 0.2.7](https://img.shields.io/badge/Version-0.2.7-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 2024.11.3](https://img.shields.io/badge/AppVersion-2024.11.3-informational?style=flat-square) Home Assistant with tooling to run on an k3s pi -- 2.45.3 From 8971235de6cfc7f92199376267da4a7518d28a33 Mon Sep 17 00:00:00 2001 From: WrenIX Date: Tue, 26 Nov 2024 11:32:23 +0100 Subject: [PATCH 075/134] fix(postgresql): update appVersion --- postgresql/Chart.yaml | 4 +- postgresql/README.adoc | 266 ----------------------------------------- postgresql/README.md | 2 +- 3 files changed, 3 insertions(+), 269 deletions(-) delete mode 100644 postgresql/README.adoc diff --git a/postgresql/Chart.yaml b/postgresql/Chart.yaml index d6ba6bc..904d0b0 100644 --- a/postgresql/Chart.yaml +++ b/postgresql/Chart.yaml @@ -4,9 +4,9 @@ name: "postgresql" description: "A Helm chart for running PostgreSQL (Postgres) database" icon: https://wiki.postgresql.org/images/a/a4/PostgreSQL_logo.3colors.svg type: "application" -version: "0.2.2" +version: "0.2.3" # renovate: image=docker.io/library/postgres -appVersion: "17.1-alpine" +appVersion: "17.2-alpine" maintainers: - name: WrenIX url: https://wrenix.eu diff --git a/postgresql/README.adoc b/postgresql/README.adoc deleted file mode 100644 index 0303a36..0000000 --- a/postgresql/README.adoc +++ /dev/null @@ -1,266 +0,0 @@ - - -= postgresql - -image::https://img.shields.io/badge/Version-0.2.2-informational?style=flat-square[Version: 0.2.2] -image::https://img.shields.io/badge/Version-application-informational?style=flat-square[Type: application] -image::https://img.shields.io/badge/AppVersion-17.1-alpine-informational?style=flat-square[AppVersion: 17.1-alpine] -== Maintainers - -.Maintainers -|=== -| Name | Email | Url - -| WrenIX -| -| -|=== - -== Usage - -Helm must be installed and setup to your kubernetes cluster to use the charts. -Refer to Helm's https://helm.sh/docs[documentation] to get started. -Once Helm has been set up correctly, fetch the charts as follows: - -[source,bash] ----- -helm pull oci://codeberg.org/wrenix/helm-charts/postgresql ----- - -You can install a chart release using the following command: - -[source,bash] ----- -helm install postgresql-release oci://codeberg.org/wrenix/helm-charts/postgresql --values values.yaml ----- - -To uninstall a chart release use `helm`'s delete command: - -[source,bash] ----- -helm uninstall postgresql-release ----- - -== Values - -.Values -|=== -| Key | Type | Default | Description - -| affinity -| object -| `{}` -| - -| autoupgrade.enabled -| bool -| `true` -| - -| autoupgrade.image.pullPolicy -| string -| `"IfNotPresent"` -| - -| autoupgrade.image.registry -| string -| `"docker.io"` -| - -| autoupgrade.image.repository -| string -| `"pgautoupgrade/pgautoupgrade"` -| - -| autoupgrade.image.tag -| string -| `"17-alpine"` -| - -| autoupgrade.securityContext -| object -| `{}` -| - -| fullnameOverride -| string -| `""` -| - -| global.image.pullPolicy -| string -| `nil` -| if set it will overwrite all pullPolicy - -| global.image.registry -| string -| `nil` -| if set it will overwrite all registry entries - -| image.pullPolicy -| string -| `"IfNotPresent"` -| - -| image.registry -| string -| `"docker.io"` -| - -| image.repository -| string -| `"library/postgres"` -| - -| image.tag -| string -| `""` -| - -| imagePullSecrets -| list -| `[]` -| - -| job.annotations -| object -| `{"helm.sh/hook":"post-install,post-upgrade","helm.sh/hook-delete-policy":"before-hook-creation,hook-succeeded"}` -| Annotations (usefull to delete job by helm afterwards) - -| job.databases -| object -| `{}` -| Bootstrap databases into postgresql server. When databases already exists, they will stay untouched. databases: "name_of_database": owner: "existing_user_which_will_get_grant" additionalParams: "" # Optional - -| job.enabled -| bool -| `true` -| Enable database bootstrapping. - -| job.retries -| int -| `60` -| Amount of retries while waiting for postgresql server is available. - -| job.users -| object -| `{}` -| Bootstrap users into postgresql server. When users already exists, they will stay untouched. users: username: RandomPassword0#" - -| job.wait -| int -| `5` -| Time to wait in each wait in each iteration until postgresql server is available. - -| nameOverride -| string -| `""` -| - -| nodeSelector -| object -| `{}` -| - -| persistence.accessMode -| string -| `"ReadWriteOnce"` -| - -| persistence.annotations -| object -| `{}` -| - -| persistence.enabled -| bool -| `true` -| - -| persistence.existingClaim -| string -| `nil` -| A manually managed Persistent Volume and Claim Requires persistence.enabled: true If defined, PVC must be created manually before volume will be bound - -| persistence.hostPath -| string -| `nil` -| Do not create an PVC, direct use hostPath in Pod - -| persistence.size -| string -| `"1Gi"` -| - -| persistence.storageClass -| string -| `nil` -| Persistent Volume Storage Class If defined, storageClassName: If set to "-", storageClassName: "", which disables dynamic provisioning If undefined (the default) or set to null, no storageClassName spec is set, choosing the default provisioner. (gp2 on AWS, standard on GKE, AWS & OpenStack) - -| podAnnotations -| object -| `{}` -| - -| podLabels -| object -| `{}` -| - -| podSecurityContext -| object -| `{}` -| - -| postgres.password -| string -| `"SUPERSTRONGPW"` -| Database password. - -| postgres.user -| string -| `"postgres"` -| Database user. - -| resources -| object -| `{}` -| - -| securityContext -| object -| `{}` -| - -| service.port -| int -| `5432` -| - -| service.type -| string -| `"ClusterIP"` -| - -| serviceAccount.annotations -| object -| `{}` -| - -| serviceAccount.create -| bool -| `false` -| - -| serviceAccount.name -| string -| `""` -| - -| tolerations -| list -| `[]` -| -|=== - -Autogenerated from chart metadata using https://github.com/norwoodj/helm-docs[helm-docs] diff --git a/postgresql/README.md b/postgresql/README.md index 419489b..7c7f5ac 100644 --- a/postgresql/README.md +++ b/postgresql/README.md @@ -7,7 +7,7 @@ description: "A Helm chart for running PostgreSQL (Postgres) database" # postgresql -![Version: 0.2.2](https://img.shields.io/badge/Version-0.2.2-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 17.1-alpine](https://img.shields.io/badge/AppVersion-17.1--alpine-informational?style=flat-square) +![Version: 0.2.3](https://img.shields.io/badge/Version-0.2.3-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 17.2-alpine](https://img.shields.io/badge/AppVersion-17.2--alpine-informational?style=flat-square) A Helm chart for running PostgreSQL (Postgres) database -- 2.45.3 From 74f448cb9a553d56b7ca01020d0360fa42a95b74 Mon Sep 17 00:00:00 2001 From: WrenIX Date: Sat, 30 Nov 2024 00:19:14 +0100 Subject: [PATCH 076/134] fix(conduit): update appVersion --- conduit/Chart.yaml | 2 +- conduit/README.adoc | 426 -------------------------------------------- conduit/README.md | 4 +- conduit/values.yaml | 2 +- 4 files changed, 4 insertions(+), 430 deletions(-) delete mode 100644 conduit/README.adoc diff --git a/conduit/Chart.yaml b/conduit/Chart.yaml index b9c8857..f08ac21 100644 --- a/conduit/Chart.yaml +++ b/conduit/Chart.yaml @@ -3,7 +3,7 @@ name: conduit description: Conduit is a simple, fast and reliable chat server powered by Matrix. icon: https://conduit.rs/conduit.svg type: application -version: "1.0.1" +version: "1.0.2" # renovate: image=docker.io/matrixconduit/matrix-conduit appVersion: "0.9.0" maintainers: diff --git a/conduit/README.adoc b/conduit/README.adoc deleted file mode 100644 index dbc045d..0000000 --- a/conduit/README.adoc +++ /dev/null @@ -1,426 +0,0 @@ - - -= conduit - -image::https://img.shields.io/badge/Version-1.0.1-informational?style=flat-square[Version: 1.0.1] -image::https://img.shields.io/badge/Version-application-informational?style=flat-square[Type: application] -image::https://img.shields.io/badge/AppVersion-0.9.0-informational?style=flat-square[AppVersion: 0.9.0] -== Maintainers - -.Maintainers -|=== -| Name | Email | Url - -| WrenIX -| -| -|=== - -== Usage - -Helm must be installed and setup to your kubernetes cluster to use the charts. -Refer to Helm's https://helm.sh/docs[documentation] to get started. -Once Helm has been set up correctly, fetch the charts as follows: - -[source,bash] ----- -helm pull oci://codeberg.org/wrenix/helm-charts/conduit ----- - -You can install a chart release using the following command: - -[source,bash] ----- -helm install conduit-release oci://codeberg.org/wrenix/helm-charts/conduit --values values.yaml ----- - -To uninstall a chart release use `helm`'s delete command: - -[source,bash] ----- -helm uninstall conduit-release ----- - -== Values - -.Values -|=== -| Key | Type | Default | Description - -| affinity -| object -| `{}` -| - -| autoscaling.enabled -| bool -| `false` -| - -| autoscaling.maxReplicas -| int -| `100` -| - -| autoscaling.minReplicas -| int -| `1` -| - -| autoscaling.targetCPUUtilizationPercentage -| int -| `80` -| - -| conduit.allowEncryption -| bool -| `true` -| - -| conduit.allowFederation -| bool -| `true` -| - -| conduit.allowRegistration -| bool -| `false` -| - -| conduit.allowRoomCreation -| bool -| `true` -| - -| conduit.allowUnstableRoomVersions -| bool -| `true` -| - -| conduit.log -| string -| `nil` -| - -| conduit.maxConcurrentRequests -| string -| `nil` -| - -| conduit.maxRequestSize -| string -| `"20000000"` -| in bytes default 20 MB - -| conduit.registrationToken -| string -| `nil` -| - -| conduit.server_name -| string -| `"your.server.name"` -| - -| conduit.trustedServers[0] -| string -| `"matrix.org"` -| - -| conduit.wellKnown.client -| string -| `""` -| client well-known configuration in conduit - -| conduit.wellKnown.server -| string -| `"https://your.server.name"` -| server well-known configuration in conduit - -| fullnameOverride -| string -| `""` -| - -| image.pullPolicy -| string -| `"IfNotPresent"` -| - -| image.registry -| string -| `"docker.io"` -| - -| image.repository -| string -| `"matrixconduit/matrix-conduit"` -| - -| image.tag -| string -| `""` -| - -| imagePullSecrets -| list -| `[]` -| - -| ingress.annotations -| object -| `{}` -| - -| ingress.className -| string -| `""` -| - -| ingress.enabled -| bool -| `false` -| - -| ingress.hosts[0].host -| string -| `"chart-example.local"` -| - -| ingress.hosts[0].paths[0].path -| string -| `"/"` -| - -| ingress.hosts[0].paths[0].pathType -| string -| `"ImplementationSpecific"` -| - -| ingress.tls -| list -| `[]` -| - -| nameOverride -| string -| `""` -| - -| nodeSelector -| object -| `{}` -| - -| persistence.accessMode -| string -| `"ReadWriteOnce"` -| - -| persistence.annotations -| object -| `{}` -| - -| persistence.enabled -| bool -| `true` -| - -| persistence.existingClaim -| string -| `nil` -| A manually managed Persistent Volume and Claim Requires persistence.enabled: true If defined, PVC must be created manually before volume will be bound - -| persistence.hostPath -| string -| `nil` -| Do not create an PVC, direct use hostPath in Pod - -| persistence.size -| string -| `"1Gi"` -| - -| persistence.storageClass -| string -| `nil` -| Persistent Volume Storage Class If defined, storageClassName: If set to "-", storageClassName: "", which disables dynamic provisioning If undefined (the default) or set to null, no storageClassName spec is set, choosing the default provisioner. (gp2 on AWS, standard on GKE, AWS & OpenStack) - -| podAnnotations -| object -| `{}` -| - -| podLabels -| object -| `{}` -| - -| podSecurityContext -| object -| `{}` -| - -| replicaCount -| int -| `1` -| - -| resources -| object -| `{}` -| - -| securityContext -| object -| `{}` -| - -| service.port -| int -| `6167` -| - -| service.type -| string -| `"ClusterIP"` -| - -| serviceAccount.annotations -| object -| `{}` -| - -| serviceAccount.create -| bool -| `true` -| - -| serviceAccount.name -| string -| `""` -| - -| tolerations -| list -| `[]` -| - -| wellknown.affinity -| object -| `{}` -| - -| wellknown.client -| object -| `{"m.homeserver":{"base_url":"https://your.server.name/"},"org.matrix.msc3575.proxy":{"url":"https://your.server.name/"}}` -| client entry in well-known - -| wellknown.containerPort -| int -| `80` -| - -| wellknown.enabled -| bool -| `false` -| - -| wellknown.env -| list -| `[]` -| - -| wellknown.image.pullPolicy -| string -| `"IfNotPresent"` -| - -| wellknown.image.registry -| string -| `"docker.io"` -| - -| wellknown.image.repository -| string -| `"library/nginx"` -| - -| wellknown.image.tag -| string -| `"1.27.2"` -| - -| wellknown.nginxServerConf -| string -| `"server {\n listen {{ .containerPort }};\n server_name localhost;\n\n location /.well-known/matrix/server {\n return 200 {{ toJson .server | quote }};\n types { } default_type \"application/json; charset=utf-8\";\n }\n\n location /.well-known/matrix/client {\n return 200 {{ toJson .client | quote }};\n types { } default_type \"application/json; charset=utf-8\";\n add_header \"Access-Control-Allow-Origin\" *;\n }\n\n location / {\n # return 200 'Welcome to the your.server.name conduit server!';\n # types { } default_type \"text/plain; charset=utf-8\";\n return 404;\n }\n\n location /nginx_health {\n return 200 'OK';\n types { } default_type \"text/plain; charset=utf-8\";\n }\n}"` -| nginx config - -| wellknown.nodeSelector -| object -| `{}` -| - -| wellknown.podAnnotations -| list -| `[]` -| - -| wellknown.podLabels -| object -| `{}` -| - -| wellknown.podSecurityContext -| object -| `{}` -| - -| wellknown.replicaCount -| int -| `1` -| - -| wellknown.resources -| object -| `{}` -| - -| wellknown.rewriteRoot -| bool -| `false` -| if ingress is enabled: specifies whether ingress should redirect the `/`-Location to the wellknown server - -| wellknown.securityContext -| object -| `{}` -| - -| wellknown.server -| object -| `{"m.server":"your.server.name:443"}` -| server entry in well-known - -| wellknown.service.annotations -| object -| `{}` -| - -| wellknown.service.port -| int -| `8080` -| - -| wellknown.service.type -| string -| `"ClusterIP"` -| - -| wellknown.tolerations -| list -| `[]` -| -|=== - -Autogenerated from chart metadata using https://github.com/norwoodj/helm-docs[helm-docs] diff --git a/conduit/README.md b/conduit/README.md index 16a14dd..077d31e 100644 --- a/conduit/README.md +++ b/conduit/README.md @@ -7,7 +7,7 @@ description: "Conduit is a simple, fast and reliable chat server powered by Matr # conduit -![Version: 1.0.1](https://img.shields.io/badge/Version-1.0.1-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 0.9.0](https://img.shields.io/badge/AppVersion-0.9.0-informational?style=flat-square) +![Version: 1.0.2](https://img.shields.io/badge/Version-1.0.2-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 0.9.0](https://img.shields.io/badge/AppVersion-0.9.0-informational?style=flat-square) Conduit is a simple, fast and reliable chat server powered by Matrix. @@ -103,7 +103,7 @@ helm uninstall conduit-release | wellknown.image.pullPolicy | string | `"IfNotPresent"` | | | wellknown.image.registry | string | `"docker.io"` | | | wellknown.image.repository | string | `"library/nginx"` | | -| wellknown.image.tag | string | `"1.27.2"` | | +| wellknown.image.tag | string | `"1.27.3"` | | | wellknown.nginxServerConf | string | `"server {\n listen {{ .containerPort }};\n server_name localhost;\n\n location /.well-known/matrix/server {\n return 200 {{ toJson .server | quote }};\n types { } default_type \"application/json; charset=utf-8\";\n }\n\n location /.well-known/matrix/client {\n return 200 {{ toJson .client | quote }};\n types { } default_type \"application/json; charset=utf-8\";\n add_header \"Access-Control-Allow-Origin\" *;\n }\n\n location / {\n # return 200 'Welcome to the your.server.name conduit server!';\n # types { } default_type \"text/plain; charset=utf-8\";\n return 404;\n }\n\n location /nginx_health {\n return 200 'OK';\n types { } default_type \"text/plain; charset=utf-8\";\n }\n}"` | nginx config | | wellknown.nodeSelector | object | `{}` | | | wellknown.podAnnotations | list | `[]` | | diff --git a/conduit/values.yaml b/conduit/values.yaml index 2a39fbc..9e45997 100644 --- a/conduit/values.yaml +++ b/conduit/values.yaml @@ -52,7 +52,7 @@ wellknown: registry: docker.io repository: library/nginx pullPolicy: IfNotPresent - tag: "1.27.2" + tag: "1.27.3" replicaCount: 1 podLabels: {} -- 2.45.3 From 994721a8a422e37d76ba3645ab0eacb3db27e69d Mon Sep 17 00:00:00 2001 From: WrenIX Date: Sat, 30 Nov 2024 00:19:17 +0100 Subject: [PATCH 077/134] fix(element-call): update appVersion --- element-call/Chart.yaml | 4 ++-- element-call/README.md | 2 +- 2 files changed, 3 insertions(+), 3 deletions(-) diff --git a/element-call/Chart.yaml b/element-call/Chart.yaml index e8e8825..9f27a48 100644 --- a/element-call/Chart.yaml +++ b/element-call/Chart.yaml @@ -2,9 +2,9 @@ apiVersion: v2 name: element-call description: Run Element-Call and his dependencies type: application -version: "0.1.6" +version: "0.1.7" # renovate: image=ghcr.io/element-hq/element-call -appVersion: "0.7.0" +appVersion: "0.7.1" maintainers: - name: WrenIX url: https://wrenix.eu diff --git a/element-call/README.md b/element-call/README.md index 7e8806e..1c85841 100644 --- a/element-call/README.md +++ b/element-call/README.md @@ -7,7 +7,7 @@ description: "Run Element-Call and his dependencies" # element-call -![Version: 0.1.6](https://img.shields.io/badge/Version-0.1.6-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 0.7.0](https://img.shields.io/badge/AppVersion-0.7.0-informational?style=flat-square) +![Version: 0.1.7](https://img.shields.io/badge/Version-0.1.7-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 0.7.1](https://img.shields.io/badge/AppVersion-0.7.1-informational?style=flat-square) Run Element-Call and his dependencies -- 2.45.3 From 910947134ca4550d291f7b3e3e17ac2958f314eb Mon Sep 17 00:00:00 2001 From: WrenIX Date: Sat, 30 Nov 2024 00:19:20 +0100 Subject: [PATCH 078/134] fix(forgejo-runner): update appVersion --- forgejo-runner/Chart.yaml | 4 +- forgejo-runner/README.adoc | 421 ------------------------------------- forgejo-runner/README.md | 2 +- 3 files changed, 3 insertions(+), 424 deletions(-) delete mode 100644 forgejo-runner/README.adoc diff --git a/forgejo-runner/Chart.yaml b/forgejo-runner/Chart.yaml index 552f223..5728f82 100644 --- a/forgejo-runner/Chart.yaml +++ b/forgejo-runner/Chart.yaml @@ -2,9 +2,9 @@ apiVersion: v2 name: forgejo-runner description: Deploy runner for an forgejo instance (default codeberg.org) type: application -version: "0.4.3" +version: "0.4.4" # renovate: image=code.forgejo.org/forgejo/runner -appVersion: "5.0.2" +appVersion: "5.0.3" maintainers: - name: WrenIX url: https://wrenix.eu diff --git a/forgejo-runner/README.adoc b/forgejo-runner/README.adoc deleted file mode 100644 index 5222872..0000000 --- a/forgejo-runner/README.adoc +++ /dev/null @@ -1,421 +0,0 @@ - - -= forgejo-runner - -image::https://img.shields.io/badge/Version-0.4.3-informational?style=flat-square[Version: 0.4.3] -image::https://img.shields.io/badge/Version-application-informational?style=flat-square[Type: application] -image::https://img.shields.io/badge/AppVersion-5.0.2-informational?style=flat-square[AppVersion: 5.0.2] -== Maintainers - -.Maintainers -|=== -| Name | Email | Url - -| WrenIX -| -| -|=== - -{{< callout type="warning" >}} -Me, wrenix, switch to woodpecker and maybe does not test every change. -{{< /callout >}} - -## Accessing docker socket inside job containers - -To access the docker socket inside the job containers, the following example values may be used (see `values-dind-bypass.yaml`): - -``` yaml {filename="values.yaml"} -runner: - config: - create: true - existingSecret: "" - file: - log: - level: "info" - runner: - file: ".runner" - capacity: 1 - envs: - A_TEST_ENV_NAME_1: null - A_TEST_ENV_NAME_2: null - DOCKER_HOST: tcp://127.0.0.1:2376 - DOCKER_TLS_VERIFY: 1 - DOCKER_CERT_PATH: /certs/client - container: - network: host - enable_ipv6: false - privileged: false - options: -v /certs/client:/certs/client - valid_volumes: - - /certs/client - -``` - -== Usage - -Helm must be installed and setup to your kubernetes cluster to use the charts. -Refer to Helm's https://helm.sh/docs[documentation] to get started. -Once Helm has been set up correctly, fetch the charts as follows: - -[source,bash] ----- -helm pull oci://codeberg.org/wrenix/helm-charts/forgejo-runner ----- - -You can install a chart release using the following command: - -[source,bash] ----- -helm install forgejo-runner-release oci://codeberg.org/wrenix/helm-charts/forgejo-runner --values values.yaml ----- - -To uninstall a chart release use `helm`'s delete command: - -[source,bash] ----- -helm uninstall forgejo-runner-release ----- - -== Values - -.Values Configuration yaml of runner (see: https://code.forgejo.org/forgejo/runner/src/branch/main/internal/pkg/config/config.example.yaml) -|=== -| Key | Type | Default | Description - -| runner.config.file.cache.dir -| string -| `""` -| The directory to store the cache data. If it's empty, the cache data will be stored in $HOME/.cache/actcache. - -| runner.config.file.cache.enabled -| bool -| `true` -| Enable cache server to use actions/cache. - -| runner.config.file.cache.external_server -| string -| `""` -| The external cache server URL. Valid only when enable is true. If it's specified, act_runner will use this URL as the ACTIONS_CACHE_URL rather than start a server by itself. The URL should generally end with "/". - -| runner.config.file.cache.host -| string -| `""` -| The host of the cache server. It's not for the address to listen, but the address to connect from job containers. So 0.0.0.0 is a bad choice, leave it empty to detect automatically. - -| runner.config.file.cache.port -| int -| `0` -| The port of the cache server. 0 means to use a random available port. - -| runner.config.file.container.docker_host -| string -| `"-"` -| overrides the docker client host with the specified one. If "-", an available docker host will automatically be found. If empty, an available docker host will automatically be found and mounted in the job container (e.g. /var/run/docker.sock). Otherwise the specified docker host will be used and an error will be returned if it doesn't work. - -| runner.config.file.container.enable_ipv6 -| bool -| `false` -| Whether to create networks with IPv6 enabled. Requires the Docker daemon to be set up accordingly. Only takes effect if "network" is set to "". - -| runner.config.file.container.force_pull -| bool -| `false` -| Pull docker image(s) even if already present - -| runner.config.file.container.network -| string -| `""` -| Specifies the network to which the container will connect. Could be host, bridge or the name of a custom network. If it's empty, create a network automatically. - -| runner.config.file.container.options -| string -| `nil` -| And other options to be used when the container is started (eg, `--add-host=my.forgejo.url:host-gateway`). - -| runner.config.file.container.privileged -| bool -| `false` -| And other options to be used when the container is started (eg, `--add-host=my.forgejo.url:host-gateway`). - -| runner.config.file.container.valid_volumes -| list -| `[]` -| Volumes (including bind mounts) can be mounted to containers. Glob syntax is supported, see https://github.com/gobwas/glob You can specify multiple volumes. If the sequence is empty, no volumes can be mounted. For example, if you only allow containers to mount the `data` volume and all the json files in `/src`, you should change the config to: valid_volumes: - data - /src/*.json If you want to allow any volume, please use the following configuration: valid_volumes: - '**' - -| runner.config.file.container.workdir_parent -| string -| `nil` -| The parent directory of a job's working directory. If it's empty, /workspace will be used. - -| runner.config.file.host.workdir_parent -| string -| `nil` -| The parent directory of a job's working directory. If it's empty, $HOME/.cache/act/ will be used. - -| runner.config.file.log.job_level -| string -| `"info"` -| The level of logging for jobs, can be trace, debug, info, earn, error, fatal - -| runner.config.file.log.level -| string -| `"info"` -| The level of logging, can be trace, debug, info, warn, error, fatal - -| runner.config.file.runner.capacity -| int -| `1` -| Execute how many tasks concurrently at the same time. - -| runner.config.file.runner.env_file -| string -| `".env"` -| Extra environment variables to run jobs from a file. It will be ignored if it's empty or the file doesn't exist. - -| runner.config.file.runner.envs -| object -| `{"A_TEST_ENV_NAME_1":"a_test_env_value_1","A_TEST_ENV_NAME_2":"a_test_env_value_2"}` -| Extra environment variables to run jobs. - -| runner.config.file.runner.fetch_interval -| string -| `"2s"` -| The interval for fetching the job from the Forgejo instance. - -| runner.config.file.runner.fetch_timeout -| string -| `"5s"` -| The timeout for fetching the job from the Forgejo instance. - -| runner.config.file.runner.file -| string -| `".runner"` -| Runner config which contains id and token of this runner (autogenerate with create) - -| runner.config.file.runner.insecure -| bool -| `false` -| Whether skip verifying the TLS certificate of the Forgejo instance. - -| runner.config.file.runner.labels -| list -| `[]` -| The labels of a runner are used to determine which jobs the runner can run, and how to run them. Like: ["macos-arm64:host", "ubuntu-latest:docker://node:16-bullseye", "ubuntu-22.04:docker://node:16-bullseye"] If it's empty when registering, it will ask for inputting labels. If it's empty when execute `deamon`, will use labels in `.runner` file. - -| runner.config.file.runner.timeout -| string -| `"3h"` -| The timeout for a job to be finished. Please note that the Forgejo instance also has a timeout (3h by default) for the job. So the job could be stopped by the Forgejo instance if it's timeout is shorter than this. -|=== -.Values Other Values -|=== -| Key | Type | Default | Description - -| affinity -| object -| `{}` -| - -| autoscaling.behavior -| object -| `{}` -| behavior of HPA Example: scaleDown: stabilizationWindowSeconds: 300 policies: - type: Pods value: 1 periodSeconds: 60 scaleUp: stabilizationWindowSeconds: 0 policies: - type: Pods value: 1 periodSeconds: 60 - -| autoscaling.enabled -| bool -| `false` -| - -| autoscaling.maxReplicas -| int -| `100` -| - -| autoscaling.minReplicas -| int -| `1` -| - -| autoscaling.targetCPUUtilizationPercentage -| int -| `80` -| - -| dind.image.pullPolicy -| string -| `"IfNotPresent"` -| - -| dind.image.registry -| string -| `"docker.io"` -| - -| dind.image.repository -| string -| `"library/docker"` -| - -| dind.image.tag -| string -| `"27.3.1-dind"` -| - -| extraEnvVars -| list -| `[]` -| Additional environment variables to be set on runner container Example: extraEnvVars: - name: FOO value: "bar" - -| fullnameOverride -| string -| `""` -| - -| image.pullPolicy -| string -| `"IfNotPresent"` -| - -| image.registry -| string -| `"code.forgejo.org"` -| - -| image.repository -| string -| `"forgejo/runner"` -| - -| image.tag -| string -| `""` -| - -| imagePullSecrets -| list -| `[]` -| - -| kubectl.image.pullPolicy -| string -| `"IfNotPresent"` -| - -| kubectl.image.registry -| string -| `"docker.io"` -| - -| kubectl.image.repository -| string -| `"bitnami/kubectl"` -| - -| kubectl.image.tag -| string -| `"1.31.3"` -| - -| nameOverride -| string -| `""` -| - -| nodeSelector -| object -| `{}` -| - -| podAnnotations -| object -| `{}` -| - -| podLabels -| object -| `{}` -| - -| podSecurityContext -| object -| `{}` -| - -| replicaCount -| int -| `1` -| - -| resources -| object -| `{}` -| - -| runner.config.create -| bool -| `true` -| - -| runner.config.existingSecret -| string -| `""` -| use existingSecret instatt - -| runner.config.instance -| string -| `"https://codeberg.org"` -| - -| runner.config.name -| string -| `nil` -| - -| runner.config.token -| string -| `nil` -| - -| securityContext.privileged -| bool -| `true` -| - -| serviceAccount.annotations -| object -| `{}` -| - -| serviceAccount.automount -| bool -| `true` -| - -| serviceAccount.create -| bool -| `true` -| - -| serviceAccount.name -| string -| `""` -| - -| tolerations -| list -| `[]` -| - -| volumeMounts -| list -| `[]` -| - -| volumes -| list -| `[]` -| -|=== - -Autogenerated from chart metadata using https://github.com/norwoodj/helm-docs[helm-docs] - diff --git a/forgejo-runner/README.md b/forgejo-runner/README.md index b10ee77..e3a36b4 100644 --- a/forgejo-runner/README.md +++ b/forgejo-runner/README.md @@ -7,7 +7,7 @@ description: "Deploy runner for an forgejo instance (default codeberg.org)" # forgejo-runner -![Version: 0.4.3](https://img.shields.io/badge/Version-0.4.3-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 5.0.2](https://img.shields.io/badge/AppVersion-5.0.2-informational?style=flat-square) +![Version: 0.4.4](https://img.shields.io/badge/Version-0.4.4-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 5.0.3](https://img.shields.io/badge/AppVersion-5.0.3-informational?style=flat-square) Deploy runner for an forgejo instance (default codeberg.org) -- 2.45.3 From 8dc0ef5abbcdae0faef79332fd4d5fe9695f2687 Mon Sep 17 00:00:00 2001 From: WrenIX Date: Sat, 30 Nov 2024 00:19:23 +0100 Subject: [PATCH 079/134] fix(matrix-synapse): update appVersion --- matrix-synapse/Chart.yaml | 4 +- matrix-synapse/README.adoc | 1176 ------------------------------------ matrix-synapse/README.md | 4 +- matrix-synapse/values.yaml | 2 +- 4 files changed, 5 insertions(+), 1181 deletions(-) delete mode 100644 matrix-synapse/README.adoc diff --git a/matrix-synapse/Chart.yaml b/matrix-synapse/Chart.yaml index e5f3c65..8cdc1b9 100644 --- a/matrix-synapse/Chart.yaml +++ b/matrix-synapse/Chart.yaml @@ -4,9 +4,9 @@ name: matrix-synapse description: Matrix reference homeserver icon: https://matrix.org/images/matrix-logo.svg type: application -version: "1.0.2" +version: "1.0.3" # renovate: image=ghcr.io/element-hq/synapse -appVersion: 1.119.0 +appVersion: 1.120.0 maintainers: - name: WrenIX url: https://wrenix.eu diff --git a/matrix-synapse/README.adoc b/matrix-synapse/README.adoc deleted file mode 100644 index f9b57bb..0000000 --- a/matrix-synapse/README.adoc +++ /dev/null @@ -1,1176 +0,0 @@ - - -= matrix-synapse - -image::https://img.shields.io/badge/Version-1.0.2-informational?style=flat-square[Version: 1.0.2] -image::https://img.shields.io/badge/Version-application-informational?style=flat-square[Type: application] -image::https://img.shields.io/badge/AppVersion-1.119.0-informational?style=flat-square[AppVersion: 1.119.0] -== Maintainers - -.Maintainers -|=== -| Name | Email | Url - -| WrenIX -| -| -|=== - -== Usage - -Helm must be installed and setup to your kubernetes cluster to use the charts. -Refer to Helm's https://helm.sh/docs[documentation] to get started. -Once Helm has been set up correctly, fetch the charts as follows: - -[source,bash] ----- -helm pull oci://codeberg.org/wrenix/helm-charts/matrix-synapse ----- - -You can install a chart release using the following command: - -[source,bash] ----- -helm install matrix-synapse-release oci://codeberg.org/wrenix/helm-charts/matrix-synapse --values values.yaml ----- - -To uninstall a chart release use `helm`'s delete command: - -[source,bash] ----- -helm uninstall matrix-synapse-release ----- - -== Values - -.Values -|=== -| Key | Type | Default | Description - -| config.bindAddresses -| list -| `["::"]` -| The bind addresses to use for the default listeners - -| config.extraListeners -| list -| `[]` -| - -| config.extraMainListenerTypes -| list -| `[]` -| - -| config.reportStats -| bool -| `false` -| - -| config.trustedKeyServers -| list -| `[{"server_name":"matrix.org"}]` -| A set of trusted servers to contact if another server doesn't respond to a signing key request. - -| config.useStructuredLogging -| bool -| `false` -| - -| externalPostgresql.database -| string -| `"synapse"` -| - -| externalPostgresql.extraArgs -| object -| `{}` -| Extra arguments for the database connection ref: https://github.com/matrix-org/synapse/blob/develop/docs/postgres.md#synapse-config - -| externalPostgresql.options -| object -| `{}` -| set extra configuration ref: https://github.com/matrix-org/synapse/blob/develop/docs/postgres.md#synapse-config e.g. txn_limit, allow_unsafe_locale - -| externalPostgresql.port -| int -| `5432` -| - -| externalPostgresql.username -| string -| `"synapse"` -| - -| externalRedis.port -| int -| `6379` -| - -| extraConfig -| object -| `{}` -| - -| extraLoggers -| object -| `{}` -| - -| extraSecrets -| object -| `{}` -| - -| fullnameOverride -| string -| `nil` -| Override the full name of the installed chart. - -| global.image.pullPolicy -| string -| `nil` -| if set it will overwrite all pullPolicy - -| global.image.registry -| string -| `nil` -| if set it will overwrite all registry entries - -| grafana.dashboards.annotations -| object -| `{}` -| - -| grafana.dashboards.enabled -| bool -| `false` -| - -| grafana.dashboards.labels.grafana_dashboard -| string -| `"1"` -| - -| image.pullPolicy -| string -| `"IfNotPresent"` -| - -| image.registry -| string -| `"ghcr.io"` -| - -| image.repository -| string -| `"element-hq/synapse"` -| - -| image.tag -| string -| `nil` -| Overrides the image tag whose default is the chart appVersion. - -| ingress.annotations -| object -| `{}` -| - -| ingress.csHosts -| list -| `[]` -| - -| ingress.csPaths -| list -| `[]` -| - -| ingress.enabled -| bool -| `true` -| - -| ingress.hosts -| list -| `[]` -| - -| ingress.includeServerName -| bool -| `true` -| - -| ingress.includeUnderscoreSynapse -| bool -| `true` -| - -| ingress.paths -| list -| `[]` -| - -| ingress.tls -| list -| `[]` -| - -| ingress.traefikPaths -| bool -| `false` -| - -| ingress.wkHosts -| list -| `[]` -| - -| nameOverride -| string -| `nil` -| Override part of the installed name, will still keep release name. - -| persistence.accessMode -| string -| `"ReadWriteOnce"` -| - -| persistence.annotations -| object -| `{}` -| - -| persistence.enabled -| bool -| `true` -| - -| persistence.existingClaim -| string -| `nil` -| A manually managed Persistent Volume and Claim Requires persistence.enabled: true If defined, PVC must be created manually before volume will be bound - -| persistence.hostPath -| string -| `nil` -| Do not create an PVC, direct use hostPath in Pod - -| persistence.size -| string -| `"10Gi"` -| - -| persistence.storageClass -| string -| `nil` -| Persistent Volume Storage Class If defined, storageClassName: If set to "-", storageClassName: "", which disables dynamic provisioning If undefined (the default) or set to null, no storageClassName spec is set, choosing the default provisioner. (gp2 on AWS, standard on GKE, AWS & OpenStack) - -| postgresql.auth.database -| string -| `"synapse"` -| - -| postgresql.auth.password -| string -| `"synapse"` -| - -| postgresql.auth.username -| string -| `"synapse"` -| - -| postgresql.enabled -| bool -| `true` -| - -| postgresql.extraArgs -| object -| `{}` -| Extra arguments for the database connection ref: https://github.com/matrix-org/synapse/blob/develop/docs/postgres.md#synapse-config - -| postgresql.options -| object -| `{}` -| set extra configuration ref: https://github.com/matrix-org/synapse/blob/develop/docs/postgres.md#synapse-config e.g. txn_limit, allow_unsafe_locale - -| postgresql.primary.initdb.args -| string -| `"--lc-collate=C --lc-ctype=C"` -| - -| postgresql.primary.persistence.size -| string -| `"16Gi"` -| - -| prometheus.podmonitor.enabled -| bool -| `false` -| - -| prometheus.podmonitor.labels -| object -| `{}` -| - -| prometheus.rules.additionalRules -| list -| `[]` -| - -| prometheus.rules.defaults.enabled -| bool -| `true` -| - -| prometheus.rules.enabled -| bool -| `false` -| - -| prometheus.rules.labels -| object -| `{}` -| - -| publicServerName -| string -| `nil` -| The public Matrix server name, this will be used for any public URLs in config as well as for client API links in the ingress. - -| redis.architecture -| string -| `"standalone"` -| - -| redis.auth.enabled -| bool -| `true` -| - -| redis.auth.password -| string -| `"synapse"` -| - -| redis.enabled -| bool -| `true` -| - -| redis.master.kind -| string -| `"Deployment"` -| - -| redis.master.persistence.enabled -| bool -| `false` -| - -| redis.master.service.port -| int -| `6379` -| - -| serverName -| string -| `nil` -| The Matrix domain name, this is what will be used for the domain part in your MXIDs. - -| service.port -| int -| `8008` -| - -| service.targetPort -| string -| `"http"` -| - -| service.type -| string -| `"ClusterIP"` -| - -| serviceAccount.annotations -| object -| `{}` -| - -| serviceAccount.create -| bool -| `false` -| - -| signingkey.annotations -| object -| `{"helm.sh/hook":"pre-install,pre-upgrade","helm.sh/hook-delete-policy":"before-hook-creation,hook-succeeded"}` -| Annotations to apply to the job and rbac for signing-key. - -| signingkey.job.enabled -| bool -| `true` -| - -| signingkey.job.publishImage.pullPolicy -| string -| `"IfNotPresent"` -| - -| signingkey.job.publishImage.registry -| string -| `"docker.io"` -| - -| signingkey.job.publishImage.repository -| string -| `"bitnami/kubectl"` -| - -| signingkey.job.publishImage.tag -| string -| `"latest"` -| - -| signingkey.resources -| object -| `{}` -| - -| synapse.affinity -| object -| `{}` -| - -| synapse.annotations -| object -| `{}` -| - -| synapse.extraCommands -| list -| `[]` -| - -| synapse.extraEnv -| list -| `[]` -| - -| synapse.extraVolumeMounts -| list -| `[]` -| - -| synapse.extraVolumes -| list -| `[]` -| - -| synapse.labels -| object -| `{}` -| - -| synapse.livenessProbe.httpGet.path -| string -| `"/health"` -| - -| synapse.livenessProbe.httpGet.port -| string -| `"http"` -| - -| synapse.nodeSelector -| object -| `{}` -| - -| synapse.podSecurityContext -| object -| `{}` -| - -| synapse.readinessProbe.httpGet.path -| string -| `"/health"` -| - -| synapse.readinessProbe.httpGet.port -| string -| `"http"` -| - -| synapse.resources -| object -| `{}` -| - -| synapse.securityContext -| object -| `{}` -| - -| synapse.startupProbe.failureThreshold -| int -| `12` -| - -| synapse.startupProbe.httpGet.path -| string -| `"/health"` -| - -| synapse.startupProbe.httpGet.port -| string -| `"http"` -| - -| synapse.strategy.type -| string -| `"RollingUpdate"` -| - -| synapse.tolerations -| list -| `[]` -| - -| volumePermissions.enabled -| bool -| `false` -| - -| volumePermissions.gid -| int -| `666` -| - -| volumePermissions.image.pullPolicy -| string -| `"Always"` -| - -| volumePermissions.image.registry -| string -| `"docker.io"` -| - -| volumePermissions.image.repository -| string -| `"library/alpine"` -| - -| volumePermissions.image.tag -| string -| `"3.20.3"` -| - -| volumePermissions.resources -| object -| `{}` -| - -| volumePermissions.uid -| int -| `666` -| - -| wellknown.affinity -| object -| `{}` -| - -| wellknown.client -| object -| `{}` -| Data to serve on .well-known/matrix/client. m.homeserver: base_url: https://matrix.example.com - -| wellknown.containerPort -| int -| `80` -| - -| wellknown.element -| object -| `{}` -| Data to serve on .well-known/element/element.json call: widget_url: https://call.element.io - -| wellknown.enabled -| bool -| `false` -| - -| wellknown.env -| list -| `[]` -| - -| wellknown.image.pullPolicy -| string -| `"IfNotPresent"` -| - -| wellknown.image.registry -| string -| `"docker.io"` -| - -| wellknown.image.repository -| string -| `"library/nginx"` -| - -| wellknown.image.tag -| string -| `"1.27.2"` -| - -| wellknown.nodeSelector -| object -| `{}` -| - -| wellknown.podAnnotations -| list -| `[]` -| - -| wellknown.podLabels -| object -| `{}` -| - -| wellknown.podSecurityContext -| object -| `{}` -| - -| wellknown.replicaCount -| int -| `1` -| - -| wellknown.resources -| object -| `{}` -| - -| wellknown.securityContext -| object -| `{}` -| - -| wellknown.server -| object -| `{}` -| The host and port combo to serve on .well-known/matrix/server. m.server: matrix.example.com:443 - -| wellknown.service.annotations -| object -| `{}` -| - -| wellknown.service.port -| int -| `8080` -| - -| wellknown.service.type -| string -| `"ClusterIP"` -| - -| wellknown.tolerations -| list -| `[]` -| - -| workers.appservice.enabled -| bool -| `false` -| - -| workers.appservice.generic -| bool -| `true` -| - -| workers.appservice.name -| string -| `"appservices"` -| - -| workers.default.affinity -| object -| `{}` -| - -| workers.default.annotations -| object -| `{}` -| - -| workers.default.extraCommands -| list -| `[]` -| - -| workers.default.extraEnv -| list -| `[]` -| - -| workers.default.livenessProbe.httpGet.path -| string -| `"/health"` -| - -| workers.default.livenessProbe.httpGet.port -| string -| `"metrics"` -| - -| workers.default.nodeSelector -| object -| `{}` -| - -| workers.default.podSecurityContext -| object -| `{}` -| - -| workers.default.readinessProbe.httpGet.path -| string -| `"/health"` -| - -| workers.default.readinessProbe.httpGet.port -| string -| `"metrics"` -| - -| workers.default.replicaCount -| int -| `1` -| - -| workers.default.resources -| object -| `{}` -| - -| workers.default.securityContext -| object -| `{}` -| - -| workers.default.startupProbe.failureThreshold -| int -| `6` -| - -| workers.default.startupProbe.httpGet.path -| string -| `"/health"` -| - -| workers.default.startupProbe.httpGet.port -| string -| `"metrics"` -| - -| workers.default.strategy.type -| string -| `"RollingUpdate"` -| - -| workers.default.tolerations -| list -| `[]` -| - -| workers.default.volumeMounts -| list -| `[]` -| - -| workers.default.volumes -| list -| `[]` -| - -| workers.federation_sender.enabled -| bool -| `false` -| - -| workers.frontend_proxy.csPaths[0] -| string -| `"/_matrix/client/(api/v1|r0|v3|unstable)/keys/upload"` -| - -| workers.frontend_proxy.enabled -| bool -| `false` -| - -| workers.frontend_proxy.listeners[0] -| string -| `"client"` -| - -| workers.generic_worker.csPaths[0] -| string -| `"/_matrix/client/(api/v1|r0|v3)/events$"` -| - -| workers.generic_worker.csPaths[10] -| string -| `"/_matrix/client/(r0|v3|unstable)/account/3pid$"` -| - -| workers.generic_worker.csPaths[11] -| string -| `"/_matrix/client/(r0|v3|unstable)/account/whoami$"` -| - -| workers.generic_worker.csPaths[12] -| string -| `"/_matrix/client/(r0|v3|unstable)/devices$"` -| - -| workers.generic_worker.csPaths[13] -| string -| `"/_matrix/client/versions$"` -| - -| workers.generic_worker.csPaths[14] -| string -| `"/_matrix/client/(api/v1|r0|v3|unstable)/voip/turnServer$"` -| - -| workers.generic_worker.csPaths[15] -| string -| `"/_matrix/client/(api/v1|r0|v3|unstable)/rooms/.*/event/"` -| - -| workers.generic_worker.csPaths[16] -| string -| `"/_matrix/client/(api/v1|r0|v3|unstable)/joined_rooms$"` -| - -| workers.generic_worker.csPaths[17] -| string -| `"/_matrix/client/(api/v1|r0|v3|unstable)/search$"` -| - -| workers.generic_worker.csPaths[18] -| string -| `"/_matrix/client/(r0|v3|unstable)/keys/query$"` -| - -| workers.generic_worker.csPaths[19] -| string -| `"/_matrix/client/(r0|v3|unstable)/keys/changes$"` -| - -| workers.generic_worker.csPaths[1] -| string -| `"/_matrix/client/(api/v1|r0|v3|unstable)/createRoom$"` -| - -| workers.generic_worker.csPaths[20] -| string -| `"/_matrix/client/(r0|v3|unstable)/keys/claim$"` -| - -| workers.generic_worker.csPaths[21] -| string -| `"/_matrix/client/(r0|v3|unstable)/room_keys/"` -| - -| workers.generic_worker.csPaths[22] -| string -| `"/_matrix/client/(api/v1|r0|v3|unstable)/login$"` -| - -| workers.generic_worker.csPaths[23] -| string -| `"/_matrix/client/(r0|v3|unstable)/register$"` -| - -| workers.generic_worker.csPaths[24] -| string -| `"/_matrix/client/v1/register/m.login.registration_token/validity$"` -| - -| workers.generic_worker.csPaths[25] -| string -| `"/_matrix/client/(api/v1|r0|v3|unstable)/rooms/.*/redact"` -| - -| workers.generic_worker.csPaths[26] -| string -| `"/_matrix/client/(api/v1|r0|v3|unstable)/rooms/.*/send"` -| - -| workers.generic_worker.csPaths[27] -| string -| `"/_matrix/client/(api/v1|r0|v3|unstable)/rooms/.*/state/"` -| - -| workers.generic_worker.csPaths[28] -| string -| `"/_matrix/client/(api/v1|r0|v3|unstable)/rooms/.*/(join|invite|leave|ban|unban|kick)$"` -| - -| workers.generic_worker.csPaths[29] -| string -| `"/_matrix/client/(api/v1|r0|v3|unstable)/join/"` -| - -| workers.generic_worker.csPaths[2] -| string -| `"/_matrix/client/(api/v1|r0|v3|unstable)/publicRooms$"` -| - -| workers.generic_worker.csPaths[30] -| string -| `"/_matrix/client/(api/v1|r0|v3|unstable)/profile/"` -| - -| workers.generic_worker.csPaths[31] -| string -| `"/_matrix/client/(r0|v3|unstable)/user_directory/search"` -| - -| workers.generic_worker.csPaths[3] -| string -| `"/_matrix/client/(api/v1|r0|v3|unstable)/rooms/.*/joined_members$"` -| - -| workers.generic_worker.csPaths[4] -| string -| `"/_matrix/client/(api/v1|r0|v3|unstable)/rooms/.*/context/"` -| - -| workers.generic_worker.csPaths[5] -| string -| `"/_matrix/client/(api/v1|r0|v3|unstable)/rooms/.*/members$"` -| - -| workers.generic_worker.csPaths[6] -| string -| `"/_matrix/client/(api/v1|r0|v3|unstable)/rooms/.*/state$"` -| - -| workers.generic_worker.csPaths[7] -| string -| `"/_matrix/client/v1/rooms/.*/hierarchy$"` -| - -| workers.generic_worker.csPaths[8] -| string -| `"/_matrix/client/unstable/org.matrix.msc2716/rooms/.*/batch_send$"` -| - -| workers.generic_worker.csPaths[9] -| string -| `"/_matrix/client/unstable/im.nheko.summary/rooms/.*/summary$"` -| - -| workers.generic_worker.enabled -| bool -| `false` -| - -| workers.generic_worker.generic -| bool -| `true` -| - -| workers.generic_worker.listeners[0] -| string -| `"client"` -| - -| workers.generic_worker.listeners[1] -| string -| `"federation"` -| - -| workers.generic_worker.paths[0] -| string -| `"/_matrix/federation/v1/event/"` -| - -| workers.generic_worker.paths[10] -| string -| `"/_matrix/federation/(v1|v2)/send_leave/"` -| - -| workers.generic_worker.paths[11] -| string -| `"/_matrix/federation/(v1|v2)/invite/"` -| - -| workers.generic_worker.paths[12] -| string -| `"/_matrix/federation/v1/event_auth/"` -| - -| workers.generic_worker.paths[13] -| string -| `"/_matrix/federation/v1/exchange_third_party_invite/"` -| - -| workers.generic_worker.paths[14] -| string -| `"/_matrix/federation/v1/user/devices/"` -| - -| workers.generic_worker.paths[15] -| string -| `"/_matrix/key/v2/query"` -| - -| workers.generic_worker.paths[16] -| string -| `"/_matrix/federation/v1/hierarchy/"` -| - -| workers.generic_worker.paths[17] -| string -| `"/_matrix/federation/v1/send/"` -| - -| workers.generic_worker.paths[1] -| string -| `"/_matrix/federation/v1/state/"` -| - -| workers.generic_worker.paths[2] -| string -| `"/_matrix/federation/v1/state_ids/"` -| - -| workers.generic_worker.paths[3] -| string -| `"/_matrix/federation/v1/backfill/"` -| - -| workers.generic_worker.paths[4] -| string -| `"/_matrix/federation/v1/get_missing_events/"` -| - -| workers.generic_worker.paths[5] -| string -| `"/_matrix/federation/v1/publicRooms"` -| - -| workers.generic_worker.paths[6] -| string -| `"/_matrix/federation/v1/query/"` -| - -| workers.generic_worker.paths[7] -| string -| `"/_matrix/federation/v1/make_join/"` -| - -| workers.generic_worker.paths[8] -| string -| `"/_matrix/federation/v1/make_leave/"` -| - -| workers.generic_worker.paths[9] -| string -| `"/_matrix/federation/(v1|v2)/send_join/"` -| - -| workers.media_repository.csPaths[0] -| string -| `"/_matrix/media/.*"` -| - -| workers.media_repository.csPaths[1] -| string -| `"/_synapse/admin/v1/purge_media_cache$"` -| - -| workers.media_repository.csPaths[2] -| string -| `"/_synapse/admin/v1/room/.*/media"` -| - -| workers.media_repository.csPaths[3] -| string -| `"/_synapse/admin/v1/user/.*/media"` -| - -| workers.media_repository.csPaths[4] -| string -| `"/_synapse/admin/v1/media/"` -| - -| workers.media_repository.csPaths[5] -| string -| `"/_synapse/admin/v1/quarantine_media/"` -| - -| workers.media_repository.csPaths[6] -| string -| `"/_synapse/admin/v1/users/.*/media$"` -| - -| workers.media_repository.enabled -| bool -| `false` -| - -| workers.media_repository.listeners[0] -| string -| `"media"` -| - -| workers.media_repository.paths[0] -| string -| `"/_matrix/media/.*"` -| - -| workers.pusher.enabled -| bool -| `false` -| - -| workers.user_dir.csPaths[0] -| string -| `"/_matrix/client/(api/v1|r0|v3|unstable)/user_directory/search$"` -| - -| workers.user_dir.enabled -| bool -| `false` -| - -| workers.user_dir.listeners[0] -| string -| `"client"` -| - -| workers.user_dir.name -| string -| `"userdir"` -| -|=== - -Autogenerated from chart metadata using https://github.com/norwoodj/helm-docs[helm-docs] diff --git a/matrix-synapse/README.md b/matrix-synapse/README.md index 01cf440..6401309 100644 --- a/matrix-synapse/README.md +++ b/matrix-synapse/README.md @@ -7,7 +7,7 @@ description: "Matrix reference homeserver" # matrix-synapse -![Version: 1.0.2](https://img.shields.io/badge/Version-1.0.2-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 1.119.0](https://img.shields.io/badge/AppVersion-1.119.0-informational?style=flat-square) +![Version: 1.0.3](https://img.shields.io/badge/Version-1.0.3-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 1.120.0](https://img.shields.io/badge/AppVersion-1.120.0-informational?style=flat-square) Matrix reference homeserver @@ -166,7 +166,7 @@ helm uninstall matrix-synapse-release | wellknown.image.pullPolicy | string | `"IfNotPresent"` | | | wellknown.image.registry | string | `"docker.io"` | | | wellknown.image.repository | string | `"library/nginx"` | | -| wellknown.image.tag | string | `"1.27.2"` | | +| wellknown.image.tag | string | `"1.27.3"` | | | wellknown.nodeSelector | object | `{}` | | | wellknown.podAnnotations | list | `[]` | | | wellknown.podLabels | object | `{}` | | diff --git a/matrix-synapse/values.yaml b/matrix-synapse/values.yaml index 151d7f9..96a88d5 100644 --- a/matrix-synapse/values.yaml +++ b/matrix-synapse/values.yaml @@ -613,7 +613,7 @@ wellknown: image: registry: docker.io repository: library/nginx - tag: 1.27.2 + tag: 1.27.3 pullPolicy: IfNotPresent replicaCount: 1 -- 2.45.3 From 9a8fba28eeb9003ad4b96ccde04f9e975d495a13 Mon Sep 17 00:00:00 2001 From: WrenIX Date: Wed, 4 Dec 2024 00:14:45 +0100 Subject: [PATCH 080/134] fix(home-assistant): update appVersion --- home-assistant/Chart.yaml | 2 +- home-assistant/README.md | 4 ++-- home-assistant/values.yaml | 2 +- 3 files changed, 4 insertions(+), 4 deletions(-) diff --git a/home-assistant/Chart.yaml b/home-assistant/Chart.yaml index 1f00635..781e0f9 100644 --- a/home-assistant/Chart.yaml +++ b/home-assistant/Chart.yaml @@ -3,7 +3,7 @@ name: home-assistant description: Home Assistant with tooling to run on an k3s pi icon: https://www.home-assistant.io/images/favicon-192x192.png type: application -version: 0.2.7 +version: 0.2.8 # renovate: image=ghcr.io/home-assistant/home-assistant appVersion: "2024.11.3" maintainers: diff --git a/home-assistant/README.md b/home-assistant/README.md index f68f6b7..ac29e65 100644 --- a/home-assistant/README.md +++ b/home-assistant/README.md @@ -7,7 +7,7 @@ description: "Home Assistant with tooling to run on an k3s pi" # home-assistant -![Version: 0.2.7](https://img.shields.io/badge/Version-0.2.7-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 2024.11.3](https://img.shields.io/badge/AppVersion-2024.11.3-informational?style=flat-square) +![Version: 0.2.8](https://img.shields.io/badge/Version-0.2.8-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 2024.11.3](https://img.shields.io/badge/AppVersion-2024.11.3-informational?style=flat-square) Home Assistant with tooling to run on an k3s pi @@ -113,7 +113,7 @@ helm uninstall home-assistant-release | zigbee2mqtt.image.pullPolicy | string | `"IfNotPresent"` | | | zigbee2mqtt.image.registry | string | `"docker.io"` | | | zigbee2mqtt.image.repository | string | `"koenkk/zigbee2mqtt"` | | -| zigbee2mqtt.image.tag | string | `"1.41.0"` | | +| zigbee2mqtt.image.tag | string | `"1.42.0"` | | | zigbee2mqtt.ingress.hosts | list | `[]` | | | zigbee2mqtt.securityContext.privileged | bool | `true` | | diff --git a/home-assistant/values.yaml b/home-assistant/values.yaml index f765128..ad0c253 100644 --- a/home-assistant/values.yaml +++ b/home-assistant/values.yaml @@ -50,7 +50,7 @@ zigbee2mqtt: registry: docker.io repository: koenkk/zigbee2mqtt pullPolicy: IfNotPresent - tag: 1.41.0 + tag: 1.42.0 device: /dev/ttyACM0 securityContext: privileged: true -- 2.45.3 From ef1353514070eb0a056f1ff88cdfb18c83ff29ca Mon Sep 17 00:00:00 2001 From: WrenIX Date: Wed, 4 Dec 2024 00:14:51 +0100 Subject: [PATCH 081/134] fix(matrix-synapse): update appVersion --- matrix-synapse/Chart.yaml | 4 ++-- matrix-synapse/README.md | 2 +- 2 files changed, 3 insertions(+), 3 deletions(-) diff --git a/matrix-synapse/Chart.yaml b/matrix-synapse/Chart.yaml index 8cdc1b9..860c947 100644 --- a/matrix-synapse/Chart.yaml +++ b/matrix-synapse/Chart.yaml @@ -4,9 +4,9 @@ name: matrix-synapse description: Matrix reference homeserver icon: https://matrix.org/images/matrix-logo.svg type: application -version: "1.0.3" +version: "1.0.4" # renovate: image=ghcr.io/element-hq/synapse -appVersion: 1.120.0 +appVersion: 1.120.2 maintainers: - name: WrenIX url: https://wrenix.eu diff --git a/matrix-synapse/README.md b/matrix-synapse/README.md index 6401309..0c15575 100644 --- a/matrix-synapse/README.md +++ b/matrix-synapse/README.md @@ -7,7 +7,7 @@ description: "Matrix reference homeserver" # matrix-synapse -![Version: 1.0.3](https://img.shields.io/badge/Version-1.0.3-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 1.120.0](https://img.shields.io/badge/AppVersion-1.120.0-informational?style=flat-square) +![Version: 1.0.4](https://img.shields.io/badge/Version-1.0.4-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 1.120.2](https://img.shields.io/badge/AppVersion-1.120.2-informational?style=flat-square) Matrix reference homeserver -- 2.45.3 From e12fb35a846b49f3bdbd175a90b224b4abe18c85 Mon Sep 17 00:00:00 2001 From: WrenIX Date: Fri, 6 Dec 2024 23:32:39 +0100 Subject: [PATCH 082/134] fix(home-assistant): update --- home-assistant/Chart.yaml | 4 ++-- home-assistant/README.md | 2 +- 2 files changed, 3 insertions(+), 3 deletions(-) diff --git a/home-assistant/Chart.yaml b/home-assistant/Chart.yaml index 781e0f9..5781bf5 100644 --- a/home-assistant/Chart.yaml +++ b/home-assistant/Chart.yaml @@ -3,9 +3,9 @@ name: home-assistant description: Home Assistant with tooling to run on an k3s pi icon: https://www.home-assistant.io/images/favicon-192x192.png type: application -version: 0.2.8 +version: 0.2.9 # renovate: image=ghcr.io/home-assistant/home-assistant -appVersion: "2024.11.3" +appVersion: "2024.12.1" maintainers: - name: WrenIX url: https://wrenix.eu diff --git a/home-assistant/README.md b/home-assistant/README.md index ac29e65..5c8e09d 100644 --- a/home-assistant/README.md +++ b/home-assistant/README.md @@ -7,7 +7,7 @@ description: "Home Assistant with tooling to run on an k3s pi" # home-assistant -![Version: 0.2.8](https://img.shields.io/badge/Version-0.2.8-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 2024.11.3](https://img.shields.io/badge/AppVersion-2024.11.3-informational?style=flat-square) +![Version: 0.2.9](https://img.shields.io/badge/Version-0.2.9-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 2024.12.1](https://img.shields.io/badge/AppVersion-2024.12.1-informational?style=flat-square) Home Assistant with tooling to run on an k3s pi -- 2.45.3 From ebb3dd435e5f3ae968cf91db70cfb36fbe86604a Mon Sep 17 00:00:00 2001 From: WrenIX Date: Fri, 6 Dec 2024 23:32:44 +0100 Subject: [PATCH 083/134] fix(matrix-synapse): update --- matrix-synapse/Chart.yaml | 2 +- matrix-synapse/README.md | 4 ++-- matrix-synapse/values.yaml | 2 +- 3 files changed, 4 insertions(+), 4 deletions(-) diff --git a/matrix-synapse/Chart.yaml b/matrix-synapse/Chart.yaml index 860c947..91d1511 100644 --- a/matrix-synapse/Chart.yaml +++ b/matrix-synapse/Chart.yaml @@ -4,7 +4,7 @@ name: matrix-synapse description: Matrix reference homeserver icon: https://matrix.org/images/matrix-logo.svg type: application -version: "1.0.4" +version: "1.0.5" # renovate: image=ghcr.io/element-hq/synapse appVersion: 1.120.2 maintainers: diff --git a/matrix-synapse/README.md b/matrix-synapse/README.md index 0c15575..4846c70 100644 --- a/matrix-synapse/README.md +++ b/matrix-synapse/README.md @@ -7,7 +7,7 @@ description: "Matrix reference homeserver" # matrix-synapse -![Version: 1.0.4](https://img.shields.io/badge/Version-1.0.4-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 1.120.2](https://img.shields.io/badge/AppVersion-1.120.2-informational?style=flat-square) +![Version: 1.0.5](https://img.shields.io/badge/Version-1.0.5-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 1.120.2](https://img.shields.io/badge/AppVersion-1.120.2-informational?style=flat-square) Matrix reference homeserver @@ -154,7 +154,7 @@ helm uninstall matrix-synapse-release | volumePermissions.image.pullPolicy | string | `"Always"` | | | volumePermissions.image.registry | string | `"docker.io"` | | | volumePermissions.image.repository | string | `"library/alpine"` | | -| volumePermissions.image.tag | string | `"3.20.3"` | | +| volumePermissions.image.tag | string | `"3.21.0"` | | | volumePermissions.resources | object | `{}` | | | volumePermissions.uid | int | `666` | | | wellknown.affinity | object | `{}` | | diff --git a/matrix-synapse/values.yaml b/matrix-synapse/values.yaml index 96a88d5..7d4042f 100644 --- a/matrix-synapse/values.yaml +++ b/matrix-synapse/values.yaml @@ -794,7 +794,7 @@ volumePermissions: image: registry: docker.io repository: library/alpine - tag: 3.20.3 + tag: 3.21.0 pullPolicy: Always ## Optionally specify an array of imagePullSecrets. -- 2.45.3 From 16145e25489192959be460cd7568b814a6e0d4c2 Mon Sep 17 00:00:00 2001 From: WrenIX Date: Sun, 8 Dec 2024 22:29:01 +0100 Subject: [PATCH 084/134] fix(grampsweb): update appVersion --- grampsweb/Chart.yaml | 4 +- grampsweb/README.adoc | 326 ------------------------------------------ grampsweb/README.md | 2 +- 3 files changed, 3 insertions(+), 329 deletions(-) delete mode 100644 grampsweb/README.adoc diff --git a/grampsweb/Chart.yaml b/grampsweb/Chart.yaml index 10f4b92..ec0590c 100644 --- a/grampsweb/Chart.yaml +++ b/grampsweb/Chart.yaml @@ -3,9 +3,9 @@ name: grampsweb description: A Helm chart for gramps web icon: https://raw.githubusercontent.com/gramps-project/Gramps.js/main/images/icon512.png type: application -version: "0.2.4" +version: "0.2.5" # renovate: image=ghcr.io/gramps-project/grampsweb -appVersion: "24.11.0" +appVersion: "24.12.1" maintainers: - name: WrenIX url: https://wrenix.eu diff --git a/grampsweb/README.adoc b/grampsweb/README.adoc deleted file mode 100644 index 0613b81..0000000 --- a/grampsweb/README.adoc +++ /dev/null @@ -1,326 +0,0 @@ - - -= grampsweb - -image::https://img.shields.io/badge/Version-0.2.4-informational?style=flat-square[Version: 0.2.4] -image::https://img.shields.io/badge/Version-application-informational?style=flat-square[Type: application] -image::https://img.shields.io/badge/AppVersion-24.11.0-informational?style=flat-square[AppVersion: 24.11.0] -== Maintainers - -.Maintainers -|=== -| Name | Email | Url - -| WrenIX -| -| -|=== - -== Usage - -Helm must be installed and setup to your kubernetes cluster to use the charts. -Refer to Helm's https://helm.sh/docs[documentation] to get started. -Once Helm has been set up correctly, fetch the charts as follows: - -[source,bash] ----- -helm pull oci://codeberg.org/wrenix/helm-charts/grampsweb ----- - -You can install a chart release using the following command: - -[source,bash] ----- -helm install grampsweb-release oci://codeberg.org/wrenix/helm-charts/grampsweb --values values.yaml ----- - -To uninstall a chart release use `helm`'s delete command: - -[source,bash] ----- -helm uninstall grampsweb-release ----- - -== Values - -.Values -|=== -| Key | Type | Default | Description - -| affinity -| object -| `{}` -| - -| autoscaling.enabled -| bool -| `false` -| - -| autoscaling.maxReplicas -| int -| `100` -| - -| autoscaling.minReplicas -| int -| `1` -| - -| autoscaling.targetCPUUtilizationPercentage -| int -| `80` -| - -| fullnameOverride -| string -| `""` -| - -| gramps.baseURL -| string -| `"https://gramps.example.org"` -| Base URL where the API can be reached (e.g. https://mygramps.mydomain.com/). This is necessary e.g. to build correct passwort reset links - -| gramps.mail.from -| string -| `nil` -| "From" address for automated e-mails - -| gramps.mail.host -| string -| `nil` -| SMTP server host (e.g. for sending password reset e-mails) - -| gramps.mail.password -| string -| `nil` -| SMTP server password - -| gramps.mail.port -| int -| `465` -| SMTP server port. - -| gramps.mail.useTLS -| bool -| `true` -| Boolean, whether to use TLS for sending e-mails. Defaults to true. When using STARTTLS, set this to false and use a port different from 25. - -| gramps.mail.username -| string -| `nil` -| SMTP server username - -| gramps.mediaPrefixTree -| bool -| `false` -| whether or not to use a separate subfolder for the media files of each tree. Defaults to False, but strongly recommend to use True in a multi-tree setup - -| gramps.tree -| string -| `"Gramps Web"` -| To enable multi-tree support, the TREE config option must be set to a single asterisk `*` - -| image.pullPolicy -| string -| `"IfNotPresent"` -| - -| image.registry -| string -| `"ghcr.io"` -| - -| image.repository -| string -| `"gramps-project/grampsweb"` -| - -| image.tag -| string -| `""` -| - -| imagePullSecrets -| list -| `[]` -| - -| ingress.annotations -| object -| `{}` -| - -| ingress.className -| string -| `""` -| - -| ingress.enabled -| bool -| `false` -| - -| ingress.hosts[0].host -| string -| `"chart-example.local"` -| - -| ingress.hosts[0].paths[0].path -| string -| `"/"` -| - -| ingress.hosts[0].paths[0].pathType -| string -| `"ImplementationSpecific"` -| - -| ingress.tls -| list -| `[]` -| - -| nameOverride -| string -| `""` -| - -| networkPolicy.egress.enabled -| bool -| `true` -| activate egress no networkpolicy - -| networkPolicy.egress.extra -| list -| `[]` -| egress rules - -| networkPolicy.enabled -| bool -| `false` -| - -| networkPolicy.ingress.http -| list -| `[]` -| ingress for http port (e.g. ingress-controller) - -| nodeSelector -| object -| `{}` -| - -| persistence.accessMode -| string -| `"ReadWriteOnce"` -| - -| persistence.annotations -| object -| `{}` -| - -| persistence.enabled -| bool -| `true` -| - -| persistence.existingClaim -| string -| `nil` -| A manually managed Persistent Volume and Claim Requires persistence.enabled: true If defined, PVC must be created manually before volume will be bound - -| persistence.hostPath -| string -| `nil` -| Do not create an PVC, direct use hostPath in Pod - -| persistence.size -| string -| `"5Gi"` -| - -| persistence.storageClass -| string -| `nil` -| Persistent Volume Storage Class If defined, storageClassName: If set to "-", storageClassName: "", which disables dynamic provisioning If undefined (the default) or set to null, no storageClassName spec is set, choosing the default provisioner. (gp2 on AWS, standard on GKE, AWS & OpenStack) - -| podAnnotations -| object -| `{}` -| - -| podLabels -| object -| `{}` -| - -| podSecurityContext -| object -| `{}` -| - -| replicaCount -| int -| `1` -| - -| resources -| object -| `{}` -| - -| securityContext -| object -| `{}` -| - -| service.port -| int -| `5000` -| - -| service.type -| string -| `"ClusterIP"` -| - -| serviceAccount.annotations -| object -| `{}` -| - -| serviceAccount.automount -| bool -| `true` -| - -| serviceAccount.create -| bool -| `true` -| - -| serviceAccount.name -| string -| `""` -| - -| tolerations -| list -| `[]` -| - -| volumeMounts -| list -| `[]` -| - -| volumes -| list -| `[]` -| -|=== - -Autogenerated from chart metadata using https://github.com/norwoodj/helm-docs[helm-docs] diff --git a/grampsweb/README.md b/grampsweb/README.md index 9a5867a..c773d6f 100644 --- a/grampsweb/README.md +++ b/grampsweb/README.md @@ -7,7 +7,7 @@ description: "A Helm chart for gramps web" # grampsweb -![Version: 0.2.4](https://img.shields.io/badge/Version-0.2.4-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 24.11.0](https://img.shields.io/badge/AppVersion-24.11.0-informational?style=flat-square) +![Version: 0.2.5](https://img.shields.io/badge/Version-0.2.5-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 24.12.1](https://img.shields.io/badge/AppVersion-24.12.1-informational?style=flat-square) A Helm chart for gramps web -- 2.45.3 From e97206fa9643d724c62e109b74351f6967524330 Mon Sep 17 00:00:00 2001 From: WrenIX Date: Sun, 8 Dec 2024 22:29:04 +0100 Subject: [PATCH 085/134] fix(stalwart-mail): update appVersion --- stalwart-mail/Chart.yaml | 4 +- stalwart-mail/README.adoc | 809 -------------------------------------- stalwart-mail/README.md | 2 +- 3 files changed, 3 insertions(+), 812 deletions(-) delete mode 100644 stalwart-mail/README.adoc diff --git a/stalwart-mail/Chart.yaml b/stalwart-mail/Chart.yaml index 6ed4192..79ee075 100644 --- a/stalwart-mail/Chart.yaml +++ b/stalwart-mail/Chart.yaml @@ -3,9 +3,9 @@ name: stalwart-mail description: Helm Chart for Stalwart Mail Server - Secure & Modern All-in-One Mail Server (IMAP, JMAP, SMTP) icon: https://stalw.art/img/apple-touch-icon.png type: application -version: 0.0.18 +version: 0.0.19 # renovate: image=docker.io/stalwartlabs/mail-server -appVersion: "0.10.6" +appVersion: "0.10.7" maintainers: - name: WrenIX url: https://wrenix.eu diff --git a/stalwart-mail/README.adoc b/stalwart-mail/README.adoc deleted file mode 100644 index a8bbc16..0000000 --- a/stalwart-mail/README.adoc +++ /dev/null @@ -1,809 +0,0 @@ - - -= stalwart-mail - -image::https://img.shields.io/badge/Version-0.0.18-informational?style=flat-square[Version: 0.0.18] -image::https://img.shields.io/badge/Version-application-informational?style=flat-square[Type: application] -image::https://img.shields.io/badge/AppVersion-0.10.6-informational?style=flat-square[AppVersion: 0.10.6] -== Maintainers - -.Maintainers -|=== -| Name | Email | Url - -| WrenIX -| -| -|=== - -= Alpha - -WARNING -==== -We stop working on this Helm-Chart. -There are still many breaking change like: - -* https://github.com/stalwartlabs/mail-server/issues/211[storage.fts in toml configuration has two meanings] - -We hope that stalward mail-server becomes more stable. - -==== - -== Usage - -Helm must be installed and setup to your kubernetes cluster to use the charts. -Refer to Helm's https://helm.sh/docs[documentation] to get started. -Once Helm has been set up correctly, fetch the charts as follows: - -[source,bash] ----- -helm pull oci://codeberg.org/wrenix/helm-charts/stalwart-mail ----- - -You can install a chart release using the following command: - -[source,bash] ----- -helm install stalwart-mail-release oci://codeberg.org/wrenix/helm-charts/stalwart-mail --values values.yaml ----- - -To uninstall a chart release use `helm`'s delete command: - -[source,bash] ----- -helm uninstall stalwart-mail-release ----- - -== Values - -.Values DKIM -|=== -| Key | Type | Default | Description - -| config.auth.dkim.sign -| list -| `[{"if":"listener != 'smtp'","then":"['rsa', 'ed25519']"},{"else":false}]` -| auth rule for signing with dkim - -| config.auth.dkim.verify -| string -| `"relaxed"` -| verify of dkim signature (relaxed, strict, disable) -|=== - -.Values Authentification -|=== -| Key | Type | Default | Description - -| config.authentication.fallback-admin.secret -| string -| `"%{env:FALLBACK_ADMIN_SECRET}%"` -| password for fallback authentfication (use env for store in secrets of kubernetes) - -| config.authentication.fallback-admin.user -| string -| `"admin"` -| username for fallback authentfication - -| secrets.env.FALLBACK_ADMIN_SECRET -| string -| `"supersecret"` -| password for fallback authentfication (env) -|=== -.Values Other Values -|=== -| Key | Type | Default | Description - -| affinity -| object -| `{}` -| - -| autoscaling.enabled -| bool -| `false` -| - -| autoscaling.maxReplicas -| int -| `100` -| - -| autoscaling.minReplicas -| int -| `1` -| - -| autoscaling.targetCPUUtilizationPercentage -| int -| `80` -| - -| certificate.certmanager.dnsNames[0] -| string -| `"chart-example.local"` -| - -| certificate.certmanager.enabled -| bool -| `true` -| - -| certificate.certmanager.issuerRef.group -| string -| `"cert-manager.io"` -| - -| certificate.certmanager.issuerRef.kind -| string -| `"ClusterIssuer"` -| - -| certificate.certmanager.issuerRef.name -| string -| `"letsencrypt-prod"` -| - -| certificate.secretName -| string -| `nil` -| not needed if certmanager is used - -| config.directory.internal.store -| string -| `"rocksdb"` -| - -| config.directory.internal.type -| string -| `"internal"` -| - -| config.metrics.prometheus.auth.secret -| string -| `"%{env:METRICS_SECRET}%"` -| - -| config.metrics.prometheus.auth.username -| string -| `"%{env:METRICS_USERNAME}%"` -| - -| config.metrics.prometheus.enable -| bool -| `true` -| - -| config.server.listener.http.bind[0] -| string -| `"[::]:80"` -| - -| config.server.listener.http.protocol -| string -| `"http"` -| - -| config.server.listener.https.bind[0] -| string -| `"[::]:443"` -| - -| config.server.listener.https.protocol -| string -| `"http"` -| - -| config.server.listener.https.tls.implicit -| bool -| `true` -| - -| config.server.listener.imap.bind[0] -| string -| `"[::]:143"` -| - -| config.server.listener.imap.protocol -| string -| `"imap"` -| - -| config.server.listener.imaptls.bind[0] -| string -| `"[::]:993"` -| - -| config.server.listener.imaptls.protocol -| string -| `"imap"` -| - -| config.server.listener.imaptls.tls.implicit -| bool -| `true` -| - -| config.server.listener.pop3.bind[0] -| string -| `"[::]:110"` -| - -| config.server.listener.pop3.protocol -| string -| `"pop3"` -| - -| config.server.listener.pop3s.bind[0] -| string -| `"[::]:995"` -| - -| config.server.listener.pop3s.protocol -| string -| `"pop3"` -| - -| config.server.listener.pop3s.tls.implicit -| bool -| `true` -| - -| config.server.listener.sieve.bind[0] -| string -| `"[::]:4190"` -| - -| config.server.listener.sieve.protocol -| string -| `"managesieve"` -| - -| config.server.listener.smtp.bind[0] -| string -| `"[::]:25"` -| - -| config.server.listener.smtp.protocol -| string -| `"smtp"` -| - -| config.server.listener.submission.bind[0] -| string -| `"[::]:587"` -| - -| config.server.listener.submission.protocol -| string -| `"smtp"` -| - -| config.server.listener.submissions.bind[0] -| string -| `"[::]:465"` -| - -| config.server.listener.submissions.protocol -| string -| `"smtp"` -| - -| config.server.listener.submissions.tls.implicit -| bool -| `true` -| - -| config.storage.blob -| string -| `"rocksdb"` -| - -| config.storage.data -| string -| `"rocksdb"` -| - -| config.storage.directory -| string -| `"internal"` -| - -| config.storage.fts -| string -| `"rocksdb"` -| - -| config.storage.lookup -| string -| `"rocksdb"` -| - -| config.store.rocksdb.compression -| string -| `"lz4"` -| - -| config.store.rocksdb.path -| string -| `"/data"` -| - -| config.store.rocksdb.type -| string -| `"rocksdb"` -| - -| config.tracer.otel.enable -| bool -| `false` -| - -| config.tracer.otel.endpoint -| string -| `"https://127.0.0.1/otel"` -| - -| config.tracer.otel.headers -| list -| `[]` -| headers for usage with http (e.g. 'Authorization: ') - -| config.tracer.otel.level -| string -| `"info"` -| - -| config.tracer.otel.transport -| string -| `"grpc"` -| grpc or http - -| config.tracer.otel.type -| string -| `"open-telemetry"` -| - -| config.tracer.stdout.ansi -| bool -| `false` -| - -| config.tracer.stdout.enable -| bool -| `true` -| - -| config.tracer.stdout.level -| string -| `"info"` -| - -| config.tracer.stdout.type -| string -| `"stdout"` -| - -| env -| list -| `[]` -| - -| fullnameOverride -| string -| `""` -| - -| global.image.pullPolicy -| string -| `nil` -| if set it will overwrite all pullPolicy - -| global.image.registry -| string -| `nil` -| if set it will overwrite all registry entries - -| image.pullPolicy -| string -| `"IfNotPresent"` -| - -| image.registry -| string -| `"docker.io"` -| - -| image.repository -| string -| `"stalwartlabs/mail-server"` -| - -| image.tag -| string -| `""` -| Overrides the image tag whose default is the chart appVersion. - -| imagePullSecrets -| list -| `[]` -| - -| ingress.annotations -| object -| `{}` -| - -| ingress.className -| string -| `""` -| - -| ingress.enabled -| bool -| `false` -| - -| ingress.hosts[0].host -| string -| `"chart-example.local"` -| - -| ingress.hosts[0].paths[0].path -| string -| `"/"` -| - -| ingress.hosts[0].paths[0].pathType -| string -| `"ImplementationSpecific"` -| - -| ingress.tls -| list -| `[]` -| - -| livenessProbe.httpGet.path -| string -| `"/healthz/live"` -| - -| livenessProbe.httpGet.port -| string -| `"http"` -| - -| nameOverride -| string -| `""` -| - -| nodeSelector -| object -| `{}` -| - -| persistence.accessMode -| string -| `"ReadWriteOnce"` -| accessMode - -| persistence.annotations -| object -| `{}` -| - -| persistence.enabled -| bool -| `true` -| Enable persistence using Persistent Volume Claims ref: http://kubernetes.io/docs/user-guide/persistent-volumes/ - -| persistence.existingClaim -| string -| `nil` -| A manually managed Persistent Volume and Claim Requires persistence.enabled: true If defined, PVC must be created manually before volume will be bound - -| persistence.hostPath -| string -| `nil` -| Do not create an PVC, direct use hostPath in Pod - -| persistence.size -| string -| `"10Gi"` -| size - -| persistence.storageClass -| string -| `nil` -| Persistent Volume Storage Class If defined, storageClassName: If set to "-", storageClassName: "", which disables dynamic provisioning If undefined (the default) or set to null, no storageClassName spec is set, choosing the default provisioner. (gp2 on AWS, standard on GKE, AWS & OpenStack) - -| podAnnotations -| object -| `{}` -| - -| podLabels -| object -| `{}` -| - -| podSecurityContext -| object -| `{}` -| - -| prometheus.servicemonitor.enabled -| bool -| `false` -| - -| prometheus.servicemonitor.labels -| object -| `{}` -| - -| readinessProbe.httpGet.path -| string -| `"/healthz/ready"` -| - -| readinessProbe.httpGet.port -| string -| `"http"` -| - -| replicaCount -| int -| `1` -| - -| resources -| object -| `{}` -| - -| secrets.env.METRICS_SECRET -| string -| `"scrape_metrics_password"` -| - -| secrets.env.METRICS_USERNAME -| string -| `"scrape_metrics_user"` -| - -| securityContext -| object -| `{}` -| - -| service.annotations -| object -| `{}` -| - -| service.ipFamilies[0] -| string -| `"IPv4"` -| - -| service.ipFamilyPolicy -| string -| `"SingleStack"` -| other option is RequireDualStack - -| service.ports.http -| int -| `80` -| - -| service.ports.https -| int -| `443` -| - -| service.ports.imap -| int -| `143` -| - -| service.ports.imaptls -| int -| `993` -| - -| service.ports.pop3 -| int -| `110` -| - -| service.ports.pop3s -| int -| `995` -| - -| service.ports.sieve -| int -| `4190` -| - -| service.ports.smtp -| int -| `25` -| - -| service.ports.submission -| int -| `587` -| - -| service.ports.submissions -| int -| `465` -| - -| service.type -| string -| `"ClusterIP"` -| - -| serviceAccount.annotations -| object -| `{}` -| - -| serviceAccount.automount -| bool -| `true` -| - -| serviceAccount.create -| bool -| `false` -| - -| serviceAccount.name -| string -| `""` -| - -| tolerations -| list -| `[]` -| - -| traefik.enabled -| bool -| `false` -| - -| traefik.ports.https.entrypoint -| string -| `"websecure"` -| - -| traefik.ports.https.match -| string -| `nil` -| - -| traefik.ports.https.passthroughTLS -| bool -| `true` -| - -| traefik.ports.https.proxyProtocol -| bool -| `true` -| - -| traefik.ports.imaptls.entrypoint -| string -| `"imaps"` -| - -| traefik.ports.imaptls.match -| string -| `nil` -| - -| traefik.ports.imaptls.passthroughTLS -| bool -| `true` -| - -| traefik.ports.imaptls.proxyProtocol -| bool -| `true` -| - -| traefik.ports.pop3s.entrypoint -| string -| `"pop3s"` -| - -| traefik.ports.pop3s.match -| string -| `nil` -| - -| traefik.ports.pop3s.passthroughTLS -| bool -| `true` -| - -| traefik.ports.pop3s.proxyProtocol -| bool -| `true` -| - -| traefik.ports.sieve.entrypoint -| string -| `"sieve"` -| - -| traefik.ports.sieve.match -| string -| `nil` -| - -| traefik.ports.sieve.passthroughTLS -| bool -| `true` -| - -| traefik.ports.sieve.proxyProtocol -| bool -| `true` -| - -| traefik.ports.smtp.entrypoint -| string -| `"smtp"` -| - -| traefik.ports.smtp.match -| string -| `nil` -| - -| traefik.ports.smtp.proxyProtocol -| bool -| `true` -| - -| traefik.ports.submissions.entrypoint -| string -| `"smtps"` -| - -| traefik.ports.submissions.match -| string -| `nil` -| - -| traefik.ports.submissions.passthroughTLS -| bool -| `true` -| - -| traefik.ports.submissions.proxyProtocol -| bool -| `true` -| - -| volumeMounts -| list -| `[]` -| - -| volumes -| list -| `[]` -| -|=== - -Autogenerated from chart metadata using https://github.com/norwoodj/helm-docs[helm-docs] - diff --git a/stalwart-mail/README.md b/stalwart-mail/README.md index f1d859a..e57b3bb 100644 --- a/stalwart-mail/README.md +++ b/stalwart-mail/README.md @@ -7,7 +7,7 @@ description: "Helm Chart for Stalwart Mail Server - Secure & Modern All-in-One M # stalwart-mail -![Version: 0.0.18](https://img.shields.io/badge/Version-0.0.18-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 0.10.6](https://img.shields.io/badge/AppVersion-0.10.6-informational?style=flat-square) +![Version: 0.0.19](https://img.shields.io/badge/Version-0.0.19-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 0.10.7](https://img.shields.io/badge/AppVersion-0.10.7-informational?style=flat-square) Helm Chart for Stalwart Mail Server - Secure & Modern All-in-One Mail Server (IMAP, JMAP, SMTP) -- 2.45.3 From 874545454213409b9eab24ed23334ee0571d84be Mon Sep 17 00:00:00 2001 From: WrenIX Date: Wed, 11 Dec 2024 13:18:49 +0100 Subject: [PATCH 086/134] fix(home-assistant): update --- home-assistant/Chart.yaml | 4 ++-- home-assistant/README.md | 4 ++-- home-assistant/values.yaml | 2 +- 3 files changed, 5 insertions(+), 5 deletions(-) diff --git a/home-assistant/Chart.yaml b/home-assistant/Chart.yaml index 5781bf5..d4bcec0 100644 --- a/home-assistant/Chart.yaml +++ b/home-assistant/Chart.yaml @@ -3,9 +3,9 @@ name: home-assistant description: Home Assistant with tooling to run on an k3s pi icon: https://www.home-assistant.io/images/favicon-192x192.png type: application -version: 0.2.9 +version: 0.2.10 # renovate: image=ghcr.io/home-assistant/home-assistant -appVersion: "2024.12.1" +appVersion: "2024.12.2" maintainers: - name: WrenIX url: https://wrenix.eu diff --git a/home-assistant/README.md b/home-assistant/README.md index 5c8e09d..bb562d2 100644 --- a/home-assistant/README.md +++ b/home-assistant/README.md @@ -7,7 +7,7 @@ description: "Home Assistant with tooling to run on an k3s pi" # home-assistant -![Version: 0.2.9](https://img.shields.io/badge/Version-0.2.9-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 2024.12.1](https://img.shields.io/badge/AppVersion-2024.12.1-informational?style=flat-square) +![Version: 0.2.10](https://img.shields.io/badge/Version-0.2.10-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 2024.12.2](https://img.shields.io/badge/AppVersion-2024.12.2-informational?style=flat-square) Home Assistant with tooling to run on an k3s pi @@ -70,7 +70,7 @@ helm uninstall home-assistant-release | nats.image.pullPolicy | string | `"IfNotPresent"` | | | nats.image.registry | string | `"docker.io"` | | | nats.image.repository | string | `"library/nats"` | | -| nats.image.tag | string | `"2.10.22-scratch"` | | +| nats.image.tag | string | `"2.10.23-scratch"` | | | nats.livenessProbe.tcpSocket.port | string | `"nats"` | | | nats.readinessProbe.tcpSocket.port | string | `"nats"` | | | nats.resources.limits.cpu | string | `"100m"` | | diff --git a/home-assistant/values.yaml b/home-assistant/values.yaml index ad0c253..3656a95 100644 --- a/home-assistant/values.yaml +++ b/home-assistant/values.yaml @@ -24,7 +24,7 @@ nats: registry: docker.io repository: library/nats pullPolicy: IfNotPresent - tag: "2.10.22-scratch" + tag: "2.10.23-scratch" service: port: nats: 4222 -- 2.45.3 From c01b429f5246c4f9630cbce9c27fcc745b39e532 Mon Sep 17 00:00:00 2001 From: WrenIX Date: Wed, 11 Dec 2024 13:20:49 +0100 Subject: [PATCH 087/134] fix(forgejo-runner): update dependencies --- forgejo-runner/Chart.yaml | 2 +- forgejo-runner/README.md | 6 +++--- forgejo-runner/values.yaml | 4 ++-- 3 files changed, 6 insertions(+), 6 deletions(-) diff --git a/forgejo-runner/Chart.yaml b/forgejo-runner/Chart.yaml index 5728f82..b890c37 100644 --- a/forgejo-runner/Chart.yaml +++ b/forgejo-runner/Chart.yaml @@ -2,7 +2,7 @@ apiVersion: v2 name: forgejo-runner description: Deploy runner for an forgejo instance (default codeberg.org) type: application -version: "0.4.4" +version: "0.4.5" # renovate: image=code.forgejo.org/forgejo/runner appVersion: "5.0.3" maintainers: diff --git a/forgejo-runner/README.md b/forgejo-runner/README.md index e3a36b4..c54b285 100644 --- a/forgejo-runner/README.md +++ b/forgejo-runner/README.md @@ -7,7 +7,7 @@ description: "Deploy runner for an forgejo instance (default codeberg.org)" # forgejo-runner -![Version: 0.4.4](https://img.shields.io/badge/Version-0.4.4-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 5.0.3](https://img.shields.io/badge/AppVersion-5.0.3-informational?style=flat-square) +![Version: 0.4.5](https://img.shields.io/badge/Version-0.4.5-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 5.0.3](https://img.shields.io/badge/AppVersion-5.0.3-informational?style=flat-square) Deploy runner for an forgejo instance (default codeberg.org) @@ -119,7 +119,7 @@ helm uninstall forgejo-runner-release | dind.image.pullPolicy | string | `"IfNotPresent"` | | | dind.image.registry | string | `"docker.io"` | | | dind.image.repository | string | `"library/docker"` | | -| dind.image.tag | string | `"27.3.1-dind"` | | +| dind.image.tag | string | `"27.4.0-dind"` | | | extraEnvVars | list | `[]` | Additional environment variables to be set on runner container Example: extraEnvVars: - name: FOO value: "bar" | | fullnameOverride | string | `""` | | | image.pullPolicy | string | `"IfNotPresent"` | | @@ -130,7 +130,7 @@ helm uninstall forgejo-runner-release | kubectl.image.pullPolicy | string | `"IfNotPresent"` | | | kubectl.image.registry | string | `"docker.io"` | | | kubectl.image.repository | string | `"bitnami/kubectl"` | | -| kubectl.image.tag | string | `"1.31.3"` | | +| kubectl.image.tag | string | `"1.31.4"` | | | nameOverride | string | `""` | | | nodeSelector | object | `{}` | | | podAnnotations | object | `{}` | | diff --git a/forgejo-runner/values.yaml b/forgejo-runner/values.yaml index 84a18b5..2003933 100644 --- a/forgejo-runner/values.yaml +++ b/forgejo-runner/values.yaml @@ -144,13 +144,13 @@ dind: registry: docker.io repository: library/docker pullPolicy: IfNotPresent - tag: 27.3.1-dind + tag: 27.4.0-dind kubectl: image: registry: docker.io repository: bitnami/kubectl pullPolicy: IfNotPresent - tag: 1.31.3 + tag: 1.31.4 serviceAccount: # Specifies whether a service account should be created -- 2.45.3 From b3fd15e30f5c3d83671297b0a667fa1506000578 Mon Sep 17 00:00:00 2001 From: WrenIX Date: Wed, 11 Dec 2024 13:20:56 +0100 Subject: [PATCH 088/134] fix(ntfy): update dependencies --- ntfy/Chart.yaml | 2 +- ntfy/README.adoc | 601 ----------------------------------------------- ntfy/README.md | 4 +- ntfy/values.yaml | 2 +- 4 files changed, 4 insertions(+), 605 deletions(-) delete mode 100644 ntfy/README.adoc diff --git a/ntfy/Chart.yaml b/ntfy/Chart.yaml index 60fe69a..02c1304 100644 --- a/ntfy/Chart.yaml +++ b/ntfy/Chart.yaml @@ -3,7 +3,7 @@ name: ntfy description: A Helm chart for Kubernetes icon: https://github.com/binwiederhier/ntfy/raw/main/web/public/static/images/pwa-512x512.png type: application -version: "0.4.6" +version: "0.4.7" # renovate: image=docker.io/binwiederhier/ntfy appVersion: "2.11.0" maintainers: diff --git a/ntfy/README.adoc b/ntfy/README.adoc deleted file mode 100644 index 5c77215..0000000 --- a/ntfy/README.adoc +++ /dev/null @@ -1,601 +0,0 @@ - - -= ntfy - -image::https://img.shields.io/badge/Version-0.4.6-informational?style=flat-square[Version: 0.4.6] -image::https://img.shields.io/badge/Version-application-informational?style=flat-square[Type: application] -image::https://img.shields.io/badge/AppVersion-2.11.0-informational?style=flat-square[AppVersion: 2.11.0] -== Maintainers - -.Maintainers -|=== -| Name | Email | Url - -| WrenIX -| -| -|=== - -== Usage - -Helm must be installed and setup to your kubernetes cluster to use the charts. -Refer to Helm's https://helm.sh/docs[documentation] to get started. -Once Helm has been set up correctly, fetch the charts as follows: - -[source,bash] ----- -helm pull oci://codeberg.org/wrenix/helm-charts/ntfy ----- - -You can install a chart release using the following command: - -[source,bash] ----- -helm install ntfy-release oci://codeberg.org/wrenix/helm-charts/ntfy --values values.yaml ----- - -To uninstall a chart release use `helm`'s delete command: - -[source,bash] ----- -helm uninstall ntfy-release ----- - -== Values - -.Values -|=== -| Key | Type | Default | Description - -| affinity -| object -| `{}` -| - -| autoscaling.enabled -| bool -| `false` -| - -| autoscaling.maxReplicas -| int -| `100` -| - -| autoscaling.minReplicas -| int -| `1` -| - -| autoscaling.targetCPUUtilizationPercentage -| int -| `80` -| - -| env -| list -| `[]` -| set env in container for usage Environment variables - -| envFrom -| list -| `[]` -| set envFrom in container for usage of ConfigMaps or Secrets as a bunch of Environment variables - -| fullnameOverride -| string -| `""` -| - -| grafana.dashboards.annotations -| object -| `{}` -| - -| grafana.dashboards.enabled -| bool -| `false` -| - -| grafana.dashboards.labels.grafana_dashboard -| string -| `"1"` -| - -| image.pullPolicy -| string -| `"IfNotPresent"` -| - -| image.repository -| string -| `"binwiederhier/ntfy"` -| - -| image.tag -| string -| `""` -| - -| imagePullSecrets -| list -| `[]` -| - -| ingress.annotations -| object -| `{}` -| - -| ingress.className -| string -| `""` -| - -| ingress.enabled -| bool -| `false` -| - -| ingress.hosts[0].host -| string -| `"chart-example.local"` -| - -| ingress.hosts[0].paths[0].path -| string -| `"/"` -| - -| ingress.hosts[0].paths[0].pathType -| string -| `"ImplementationSpecific"` -| - -| ingress.tls -| list -| `[]` -| - -| kubectl.image -| object -| `{"pullPolicy":"IfNotPresent","registry":"docker.io","repository":"bitnami/kubectl","tag":"1.31.3"}` -| image needed for setup (store generated VAPID / WebPush keys) - -| nameOverride -| string -| `""` -| - -| networkPolicy.egress.enabled -| bool -| `true` -| activate egress no networkpolicy - -| networkPolicy.egress.extra -| list -| `[]` -| egress rules - -| networkPolicy.enabled -| bool -| `false` -| - -| networkPolicy.ingress.http -| list -| `[]` -| ingress for http port (e.g. ingress-controller) - -| networkPolicy.ingress.metrics -| list -| `[]` -| ingress for metrics port (e.g. prometheus) - -| networkPolicy.ingress.smtp -| list -| `[]` -| ingress for smtp - -| nodeSelector -| object -| `{}` -| - -| ntfy.attachment.cacheDir -| string -| `nil` -| - -| ntfy.attachment.expireDuration -| string -| `"3h"` -| - -| ntfy.attachment.sizeLimit.file -| string -| `"15M"` -| - -| ntfy.attachment.sizeLimit.total -| string -| `"5G"` -| - -| ntfy.auth.defaultAccess -| string -| `"read-write"` -| - -| ntfy.auth.file -| string -| `nil` -| - -| ntfy.auth.startupQueries -| string -| `nil` -| - -| ntfy.baseURL -| string -| `"https://ntfy.example.org"` -| - -| ntfy.behindProxy -| bool -| `true` -| - -| ntfy.cache.batch.size -| int -| `0` -| - -| ntfy.cache.batch.timeout -| string -| `"0s"` -| - -| ntfy.cache.duration -| string -| `"12h"` -| - -| ntfy.cache.file -| string -| `nil` -| - -| ntfy.cache.startupQueries -| string -| `nil` -| - -| ntfy.enableLogin -| bool -| `false` -| - -| ntfy.enableReservations -| bool -| `false` -| - -| ntfy.enableSignup -| bool -| `false` -| - -| ntfy.firebaseKeyFile -| string -| `nil` -| - -| ntfy.globalTopicLimit -| int -| `15000` -| - -| ntfy.keepaliveInterval -| string -| `"45s"` -| - -| ntfy.listen.certFile -| string -| `nil` -| - -| ntfy.listen.http -| string -| `":80"` -| - -| ntfy.listen.https -| string -| `nil` -| - -| ntfy.listen.keyFile -| string -| `nil` -| - -| ntfy.listen.unix -| string -| `nil` -| - -| ntfy.listen.unixMode -| string -| `nil` -| - -| ntfy.managerInterval -| string -| `"1m"` -| - -| ntfy.metrics.enable -| bool -| `true` -| - -| ntfy.metrics.port -| int -| `9000` -| - -| ntfy.smtp.sender.addr -| string -| `nil` -| - -| ntfy.smtp.sender.from -| string -| `nil` -| - -| ntfy.smtp.sender.pass -| string -| `nil` -| - -| ntfy.smtp.sender.user -| string -| `nil` -| - -| ntfy.smtp.server.addrPrefix -| string -| `nil` -| - -| ntfy.smtp.server.domain -| string -| `nil` -| - -| ntfy.upstreamBaseURL -| string -| `"https://ntfy.sh"` -| - -| ntfy.visitor.attachment.dailyBandwidthLimit -| string -| `"500M"` -| - -| ntfy.visitor.attachment.totalSizeLimit -| string -| `"100M"` -| - -| ntfy.visitor.email.limitBurst -| int -| `16` -| - -| ntfy.visitor.email.limitReplenish -| string -| `"1h"` -| - -| ntfy.visitor.request.limitBurst -| int -| `60` -| - -| ntfy.visitor.request.limitExemptHosts -| string -| `""` -| - -| ntfy.visitor.request.limitReplenish -| string -| `"5s"` -| - -| ntfy.visitor.subscriberRateLimiting -| bool -| `false` -| - -| ntfy.visitor.subscriptionLimit -| int -| `30` -| - -| ntfy.webPush.emailAddress -| string -| `""` -| - -| ntfy.webPush.file -| string -| `"/data/webpush.db"` -| - -| ntfy.webPush.keys.create -| bool -| `false` -| - -| ntfy.webPush.keys.private -| string -| `nil` -| - -| ntfy.webPush.keys.public -| string -| `nil` -| - -| ntfy.webRoot -| string -| `"app"` -| - -| persistence.accessMode -| string -| `"ReadWriteOnce"` -| - -| persistence.annotations -| object -| `{}` -| - -| persistence.enabled -| bool -| `false` -| - -| persistence.existingClaim -| string -| `nil` -| A manually managed Persistent Volume and Claim Requires persistence.enabled: true If defined, PVC must be created manually before volume will be bound - -| persistence.hostPath -| string -| `nil` -| Create a PV on Node with given hostPath storageClass has to be manual - -| persistence.size -| string -| `"1Gi"` -| - -| persistence.storageClass -| string -| `nil` -| data Persistent Volume Storage Class If defined, storageClassName: If set to "-", storageClassName: "", which disables dynamic provisioning If undefined (the default) or set to null, no storageClassName spec is set, choosing the default provisioner. (gp2 on AWS, standard on GKE, AWS & OpenStack) - -| podAnnotations -| object -| `{}` -| - -| podLabels -| object -| `{}` -| - -| podSecurityContext -| object -| `{}` -| set securityContext on pod level - -| prometheus.rules.additionalRules -| list -| `[]` -| - -| prometheus.rules.enabled -| bool -| `false` -| - -| prometheus.rules.labels -| object -| `{}` -| - -| prometheus.servicemonitor.enabled -| bool -| `false` -| - -| prometheus.servicemonitor.labels -| object -| `{}` -| - -| replicaCount -| int -| `1` -| - -| resources -| object -| `{}` -| - -| securityContext -| object -| `{}` -| set securityContext on container level - -| service.http.port -| int -| `80` -| - -| service.http.type -| string -| `"ClusterIP"` -| - -| service.smtp.enabled -| bool -| `false` -| - -| service.smtp.port -| int -| `25` -| - -| service.smtp.type -| string -| `"LoadBalancer"` -| - -| serviceAccount.annotations -| object -| `{}` -| - -| serviceAccount.create -| bool -| `true` -| - -| serviceAccount.name -| string -| `""` -| - -| tolerations -| list -| `[]` -| - -| updateStrategy.type -| string -| `"Recreate"` -| -|=== - -Autogenerated from chart metadata using https://github.com/norwoodj/helm-docs[helm-docs] diff --git a/ntfy/README.md b/ntfy/README.md index d16f434..73c3c18 100644 --- a/ntfy/README.md +++ b/ntfy/README.md @@ -7,7 +7,7 @@ description: "A Helm chart for Kubernetes" # ntfy -![Version: 0.4.6](https://img.shields.io/badge/Version-0.4.6-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 2.11.0](https://img.shields.io/badge/AppVersion-2.11.0-informational?style=flat-square) +![Version: 0.4.7](https://img.shields.io/badge/Version-0.4.7-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 2.11.0](https://img.shields.io/badge/AppVersion-2.11.0-informational?style=flat-square) A Helm chart for Kubernetes @@ -65,7 +65,7 @@ helm uninstall ntfy-release | ingress.hosts[0].paths[0].path | string | `"/"` | | | ingress.hosts[0].paths[0].pathType | string | `"ImplementationSpecific"` | | | ingress.tls | list | `[]` | | -| kubectl.image | object | `{"pullPolicy":"IfNotPresent","registry":"docker.io","repository":"bitnami/kubectl","tag":"1.31.3"}` | image needed for setup (store generated VAPID / WebPush keys) | +| kubectl.image | object | `{"pullPolicy":"IfNotPresent","registry":"docker.io","repository":"bitnami/kubectl","tag":"1.31.4"}` | image needed for setup (store generated VAPID / WebPush keys) | | nameOverride | string | `""` | | | networkPolicy.egress.enabled | bool | `true` | activate egress no networkpolicy | | networkPolicy.egress.extra | list | `[]` | egress rules | diff --git a/ntfy/values.yaml b/ntfy/values.yaml index 410cde1..bf99387 100644 --- a/ntfy/values.yaml +++ b/ntfy/values.yaml @@ -16,7 +16,7 @@ kubectl: registry: docker.io repository: bitnami/kubectl pullPolicy: IfNotPresent - tag: 1.31.3 + tag: 1.31.4 imagePullSecrets: [] nameOverride: "" -- 2.45.3 From 2407101ec0439e50306c6f8641fb635fdc4ebc24 Mon Sep 17 00:00:00 2001 From: WrenIX Date: Thu, 12 Dec 2024 22:33:45 +0100 Subject: [PATCH 089/134] feat(pretix): init --- pretix/.gitignore | 1 + pretix/.helmignore | 23 ++ pretix/Chart.lock | 9 + pretix/Chart.yaml | 25 ++ pretix/README.md | 280 ++++++++++++++++++ pretix/ci/all-values.yaml | 10 + pretix/ci/empty-values.yaml | 0 pretix/templates/NOTES.txt | 22 ++ pretix/templates/_helpers.tpl | 62 ++++ .../configmap_grafana_dashboards.yaml | 14 + pretix/templates/cronjob.yaml | 84 ++++++ pretix/templates/deployment.yaml | 101 +++++++ pretix/templates/hpa.yaml | 32 ++ pretix/templates/ingress.yaml | 43 +++ pretix/templates/job-migrate.yaml | 81 +++++ pretix/templates/prometheus-rules.yaml | 29 ++ pretix/templates/pvc.yaml | 29 ++ pretix/templates/secrets.yaml | 13 + pretix/templates/service.yaml | 20 ++ pretix/templates/serviceaccount.yaml | 13 + pretix/templates/servicemonitor.yaml | 36 +++ pretix/templates/tests/test-connection.yaml | 15 + pretix/values.yaml | 224 ++++++++++++++ 23 files changed, 1166 insertions(+) create mode 100644 pretix/.gitignore create mode 100644 pretix/.helmignore create mode 100644 pretix/Chart.lock create mode 100644 pretix/Chart.yaml create mode 100644 pretix/README.md create mode 100644 pretix/ci/all-values.yaml create mode 100644 pretix/ci/empty-values.yaml create mode 100644 pretix/templates/NOTES.txt create mode 100644 pretix/templates/_helpers.tpl create mode 100644 pretix/templates/configmap_grafana_dashboards.yaml create mode 100644 pretix/templates/cronjob.yaml create mode 100644 pretix/templates/deployment.yaml create mode 100644 pretix/templates/hpa.yaml create mode 100644 pretix/templates/ingress.yaml create mode 100644 pretix/templates/job-migrate.yaml create mode 100644 pretix/templates/prometheus-rules.yaml create mode 100644 pretix/templates/pvc.yaml create mode 100644 pretix/templates/secrets.yaml create mode 100644 pretix/templates/service.yaml create mode 100644 pretix/templates/serviceaccount.yaml create mode 100644 pretix/templates/servicemonitor.yaml create mode 100644 pretix/templates/tests/test-connection.yaml create mode 100644 pretix/values.yaml diff --git a/pretix/.gitignore b/pretix/.gitignore new file mode 100644 index 0000000..948259a --- /dev/null +++ b/pretix/.gitignore @@ -0,0 +1 @@ +charts/*.tgz diff --git a/pretix/.helmignore b/pretix/.helmignore new file mode 100644 index 0000000..0e8a0eb --- /dev/null +++ b/pretix/.helmignore @@ -0,0 +1,23 @@ +# Patterns to ignore when building packages. +# This supports shell glob matching, relative path matching, and +# negation (prefixed with !). Only one pattern per line. +.DS_Store +# Common VCS dirs +.git/ +.gitignore +.bzr/ +.bzrignore +.hg/ +.hgignore +.svn/ +# Common backup files +*.swp +*.bak +*.tmp +*.orig +*~ +# Various IDEs +.project +.idea/ +*.tmproj +.vscode/ diff --git a/pretix/Chart.lock b/pretix/Chart.lock new file mode 100644 index 0000000..9498c2b --- /dev/null +++ b/pretix/Chart.lock @@ -0,0 +1,9 @@ +dependencies: +- name: postgresql + repository: oci://docker.io/bitnamicharts + version: 16.3.0 +- name: redis + repository: oci://docker.io/bitnamicharts + version: 20.5.0 +digest: sha256:7126a34c5cb99dc7bf96ee997009392d629bd6d0e57af288eec2d73b548a5d47 +generated: "2024-12-12T23:28:46.938657955+01:00" diff --git a/pretix/Chart.yaml b/pretix/Chart.yaml new file mode 100644 index 0000000..fc952b2 --- /dev/null +++ b/pretix/Chart.yaml @@ -0,0 +1,25 @@ +apiVersion: v2 +name: pretix +description: Reinventing ticket presales, one ticket at a time. +type: application +version: 0.1.0 +# renovate: image=docker.io/pretix/standalone +appVersion: "2024.11.0" +keywords: + - event-tickets +maintainers: + - name: WrenIX + url: https://wrenix.eu +sources: + - https://github.com/pretix/pretix + - https://codeberg.org/wrenix/helm-charts/src/branch/main/pretix + - https://hub.docker.com/r/pretix/standalone +dependencies: + - name: postgresql + version: "16.3.0" + repository: "oci://docker.io/bitnamicharts" + condition: postgresql.enabled + - name: redis + version: "20.5.0" + repository: "oci://docker.io/bitnamicharts" + condition: redis.enabled diff --git a/pretix/README.md b/pretix/README.md new file mode 100644 index 0000000..26580c1 --- /dev/null +++ b/pretix/README.md @@ -0,0 +1,280 @@ +--- +title: "pretix" + +description: "Reinventing ticket presales, one ticket at a time." + +--- + +# pretix + +![Version: 0.1.0](https://img.shields.io/badge/Version-0.1.0-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 2024.11.0](https://img.shields.io/badge/AppVersion-2024.11.0-informational?style=flat-square) + +Reinventing ticket presales, one ticket at a time. + +## Maintainers + +| Name | Email | Url | +| ---- | ------ | --- | +| WrenIX | | | + +## Source Code + +* +* +* + +## Usage + +Helm must be installed and setup to your kubernetes cluster to use the charts. +Refer to Helm's [documentation](https://helm.sh/docs) to get started. +Once Helm has been set up correctly, fetch the charts as follows: + +```bash +helm pull oci://codeberg.org/wrenix/helm-charts/pretix +``` + +You can install a chart release using the following command: + +```bash +helm install pretix-release oci://codeberg.org/wrenix/helm-charts/pretix --values values.yaml +``` + +To uninstall a chart release use `helm`'s delete command: + +```bash +helm uninstall pretix-release +``` + +## Requirements + +| Repository | Name | Version | +|------------|------|---------| +| oci://docker.io/bitnamicharts | postgresql | 16.3.0 | +| oci://docker.io/bitnamicharts | redis | 20.5.0 | + +## Values + +| Key | Type | Default | Description | +|-----|------|---------|-------------| +| affinity | object | `{}` | | +| autoscaling.enabled | bool | `false` | | +| autoscaling.maxReplicas | int | `100` | | +| autoscaling.minReplicas | int | `1` | | +| autoscaling.targetCPUUtilizationPercentage | int | `80` | | +| cronSchedule | string | `"*/30 * * * *"` | | +| env.PRETIX_CELERY_BACKEND | string | `"redis://pretix-redis-master/1"` | | +| env.PRETIX_CELERY_BROKER | string | `"redis://pretix-redis-master/2"` | | +| env.PRETIX_DATABASE_BACKEND | string | `"postgresql"` | | +| env.PRETIX_DATABASE_HOST | string | `"pretix-postgresql"` | | +| env.PRETIX_DATABASE_NAME | string | `"pretix"` | | +| env.PRETIX_DATABASE_PASSWORD | string | `"pretix"` | | +| env.PRETIX_DATABASE_USER | string | `"pretix"` | | +| env.PRETIX_MAIL_FROM | string | `"test@example.com"` | | +| env.PRETIX_MAIL_HOST | string | `nil` | | +| env.PRETIX_MAIL_PASSWORD | string | `nil` | | +| env.PRETIX_MAIL_PORT | int | `587` | | +| env.PRETIX_MAIL_TLS | bool | `true` | | +| env.PRETIX_MAIL_USER | string | `nil` | | +| env.PRETIX_METRICS_ENABLED | bool | `false` | | +| env.PRETIX_METRICS_PASSPHRASE | string | `"pretix"` | | +| env.PRETIX_METRICS_USER | string | `"pretix"` | | +| env.PRETIX_PRETIX_CURRENCY | string | `"EUR"` | | +| env.PRETIX_PRETIX_DATADIR | string | `"/data"` | | +| env.PRETIX_PRETIX_INSTANCE_NAME | string | `"Pretix Helm"` | | +| env.PRETIX_PRETIX_TRUST_X_FORWARDED_FOR | string | `"on"` | | +| env.PRETIX_PRETIX_TRUST_X_FORWARDED_PROTO | string | `"on"` | | +| env.PRETIX_PRETIX_URL | string | `"http://localhost"` | | +| env.PRETIX_REDIS_LOCATION | string | `"redis://pretix-redis-master/0"` | | +| env.PRETIX_REDIS_SESSIONS | bool | `true` | | +| fullnameOverride | string | `""` | | +| grafana.dashboards.annotations | object | `{}` | | +| grafana.dashboards.enabled | bool | `false` | | +| grafana.dashboards.labels.grafana_dashboard | string | `"1"` | | +| image.pullPolicy | string | `"IfNotPresent"` | | +| image.registry | string | `"docker.io"` | | +| image.repository | string | `"pretix/standalone"` | | +| image.tag | string | `""` | | +| imagePullSecrets | list | `[]` | | +| ingress.annotations | object | `{}` | | +| ingress.className | string | `""` | | +| ingress.enabled | bool | `false` | | +| ingress.hosts[0].host | string | `"chart-example.local"` | | +| ingress.hosts[0].paths[0].path | string | `"/"` | | +| ingress.hosts[0].paths[0].pathType | string | `"ImplementationSpecific"` | | +| ingress.tls | list | `[]` | | +| livenessProbe.httpGet.httpHeaders[0].name | string | `"host"` | | +| livenessProbe.httpGet.httpHeaders[0].value | string | `"localhost"` | | +| livenessProbe.httpGet.path | string | `"/healthcheck/"` | | +| livenessProbe.httpGet.port | string | `"http"` | | +| nameOverride | string | `""` | | +| nodeSelector | object | `{}` | | +| persistence.accessMode | string | `"ReadWriteOnce"` | | +| persistence.annotations | object | `{}` | | +| persistence.enabled | bool | `true` | | +| persistence.existingClaim | string | `nil` | A manually managed Persistent Volume and Claim Requires persistence.enabled: true If defined, PVC must be created manually before volume will be bound | +| persistence.hostPath | string | `nil` | Do not create an PVC, direct use hostPath in Pod | +| persistence.size | string | `"5Gi"` | | +| persistence.storageClass | string | `nil` | Persistent Volume Storage Class If defined, storageClassName: If set to "-", storageClassName: "", which disables dynamic provisioning If undefined (the default) or set to null, no storageClassName spec is set, choosing the default provisioner. (gp2 on AWS, standard on GKE, AWS & OpenStack) | +| podAnnotations | object | `{}` | | +| podLabels | object | `{}` | | +| podSecurityContext | object | `{}` | | +| postgresql.auth.database | string | `"pretix"` | | +| postgresql.auth.password | string | `"pretix"` | | +| postgresql.auth.postgresPassword | string | `"supersecureadminpassword"` | | +| postgresql.auth.username | string | `"pretix"` | | +| postgresql.enabled | bool | `true` | | +| prometheus.rules.additionalRules | list | `[]` | | +| prometheus.rules.enabled | bool | `false` | | +| prometheus.rules.labels | object | `{}` | | +| prometheus.servicemonitor.enabled | bool | `false` | broken, Host need to be localhost on request (instatt of ip) needs: https://github.com/prometheus-operator/prometheus-operator/pull/7003 | +| prometheus.servicemonitor.interval | string | `nil` | interval | +| prometheus.servicemonitor.labels | object | `{}` | | +| prometheus.servicemonitor.scrapeTimeout | string | `nil` | scrape timeout | +| readinessProbe.httpGet.httpHeaders[0].name | string | `"host"` | | +| readinessProbe.httpGet.httpHeaders[0].value | string | `"localhost"` | | +| readinessProbe.httpGet.path | string | `"/healthcheck/"` | | +| readinessProbe.httpGet.port | string | `"http"` | | +| redis.architecture | string | `"standalone"` | | +| redis.auth.enabled | bool | `false` | | +| redis.enabled | bool | `true` | | +| replicas.taskworker | int | `1` | | +| replicas.web | int | `1` | | +| resources | object | `{}` | | +| securityContext | object | `{}` | | +| service.port | int | `80` | | +| service.type | string | `"ClusterIP"` | | +| serviceAccount.annotations | object | `{}` | | +| serviceAccount.automount | bool | `true` | | +| serviceAccount.create | bool | `true` | | +| serviceAccount.name | string | `""` | | +| tolerations | list | `[]` | | +| volumeMounts | list | `[]` | | +| volumes | list | `[]` | | + +Autogenerated from chart metadata using [helm-docs](https://github.com/norwoodj/helm-docs) +# pretix + +![Version: 0.1.0](https://img.shields.io/badge/Version-0.1.0-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 2024.11.0](https://img.shields.io/badge/AppVersion-2024.11.0-informational?style=flat-square) + +Reinventing ticket presales, one ticket at a time. + +## Maintainers + +| Name | Email | Url | +| ---- | ------ | --- | +| WrenIX | | | + +## Source Code + +* +* +* + +## Requirements + +| Repository | Name | Version | +|------------|------|---------| +| oci://docker.io/bitnamicharts | postgresql | 16.3.0 | +| oci://docker.io/bitnamicharts | redis | 20.5.0 | + +## Values + +| Key | Type | Default | Description | +|-----|------|---------|-------------| +| affinity | object | `{}` | | +| autoscaling.enabled | bool | `false` | | +| autoscaling.maxReplicas | int | `100` | | +| autoscaling.minReplicas | int | `1` | | +| autoscaling.targetCPUUtilizationPercentage | int | `80` | | +| cronSchedule | string | `"*/30 * * * *"` | | +| env.PRETIX_CELERY_BACKEND | string | `"redis://pretix-redis-master/1"` | | +| env.PRETIX_CELERY_BROKER | string | `"redis://pretix-redis-master/2"` | | +| env.PRETIX_DATABASE_BACKEND | string | `"postgresql"` | | +| env.PRETIX_DATABASE_HOST | string | `"pretix-postgresql"` | | +| env.PRETIX_DATABASE_NAME | string | `"pretix"` | | +| env.PRETIX_DATABASE_PASSWORD | string | `"pretix"` | | +| env.PRETIX_DATABASE_USER | string | `"pretix"` | | +| env.PRETIX_MAIL_FROM | string | `"test@example.com"` | | +| env.PRETIX_MAIL_HOST | string | `nil` | | +| env.PRETIX_MAIL_PASSWORD | string | `nil` | | +| env.PRETIX_MAIL_PORT | int | `587` | | +| env.PRETIX_MAIL_TLS | bool | `true` | | +| env.PRETIX_MAIL_USER | string | `nil` | | +| env.PRETIX_METRICS_ENABLED | bool | `false` | | +| env.PRETIX_METRICS_PASSPHRASE | string | `"pretix"` | | +| env.PRETIX_METRICS_USER | string | `"pretix"` | | +| env.PRETIX_PRETIX_CURRENCY | string | `"EUR"` | | +| env.PRETIX_PRETIX_DATADIR | string | `"/data"` | | +| env.PRETIX_PRETIX_INSTANCE_NAME | string | `"Pretix Helm"` | | +| env.PRETIX_PRETIX_TRUST_X_FORWARDED_FOR | string | `"on"` | | +| env.PRETIX_PRETIX_TRUST_X_FORWARDED_PROTO | string | `"on"` | | +| env.PRETIX_PRETIX_URL | string | `"http://localhost"` | | +| env.PRETIX_REDIS_LOCATION | string | `"redis://pretix-redis-master/0"` | | +| env.PRETIX_REDIS_SESSIONS | bool | `true` | | +| fullnameOverride | string | `""` | | +| grafana.dashboards.annotations | object | `{}` | | +| grafana.dashboards.enabled | bool | `false` | | +| grafana.dashboards.labels.grafana_dashboard | string | `"1"` | | +| image.pullPolicy | string | `"IfNotPresent"` | | +| image.registry | string | `"docker.io"` | | +| image.repository | string | `"pretix/standalone"` | | +| image.tag | string | `""` | | +| imagePullSecrets | list | `[]` | | +| ingress.annotations | object | `{}` | | +| ingress.className | string | `""` | | +| ingress.enabled | bool | `false` | | +| ingress.hosts[0].host | string | `"chart-example.local"` | | +| ingress.hosts[0].paths[0].path | string | `"/"` | | +| ingress.hosts[0].paths[0].pathType | string | `"ImplementationSpecific"` | | +| ingress.tls | list | `[]` | | +| livenessProbe.httpGet.httpHeaders[0].name | string | `"host"` | | +| livenessProbe.httpGet.httpHeaders[0].value | string | `"localhost"` | | +| livenessProbe.httpGet.path | string | `"/healthcheck/"` | | +| livenessProbe.httpGet.port | string | `"http"` | | +| nameOverride | string | `""` | | +| nodeSelector | object | `{}` | | +| persistence.accessMode | string | `"ReadWriteOnce"` | | +| persistence.annotations | object | `{}` | | +| persistence.enabled | bool | `true` | | +| persistence.existingClaim | string | `nil` | A manually managed Persistent Volume and Claim Requires persistence.enabled: true If defined, PVC must be created manually before volume will be bound | +| persistence.hostPath | string | `nil` | Do not create an PVC, direct use hostPath in Pod | +| persistence.size | string | `"5Gi"` | | +| persistence.storageClass | string | `nil` | Persistent Volume Storage Class If defined, storageClassName: If set to "-", storageClassName: "", which disables dynamic provisioning If undefined (the default) or set to null, no storageClassName spec is set, choosing the default provisioner. (gp2 on AWS, standard on GKE, AWS & OpenStack) | +| podAnnotations | object | `{}` | | +| podLabels | object | `{}` | | +| podSecurityContext | object | `{}` | | +| postgresql.auth.database | string | `"pretix"` | | +| postgresql.auth.password | string | `"pretix"` | | +| postgresql.auth.postgresPassword | string | `"supersecureadminpassword"` | | +| postgresql.auth.username | string | `"pretix"` | | +| postgresql.enabled | bool | `true` | | +| prometheus.rules.additionalRules | list | `[]` | | +| prometheus.rules.enabled | bool | `false` | | +| prometheus.rules.labels | object | `{}` | | +| prometheus.servicemonitor.enabled | bool | `false` | broken, Host need to be localhost on request (instatt of ip) needs: https://github.com/prometheus-operator/prometheus-operator/pull/7003 | +| prometheus.servicemonitor.interval | string | `nil` | interval | +| prometheus.servicemonitor.labels | object | `{}` | | +| prometheus.servicemonitor.scrapeTimeout | string | `nil` | scrape timeout | +| readinessProbe.httpGet.httpHeaders[0].name | string | `"host"` | | +| readinessProbe.httpGet.httpHeaders[0].value | string | `"localhost"` | | +| readinessProbe.httpGet.path | string | `"/healthcheck/"` | | +| readinessProbe.httpGet.port | string | `"http"` | | +| redis.architecture | string | `"standalone"` | | +| redis.auth.enabled | bool | `false` | | +| redis.enabled | bool | `true` | | +| replicas.taskworker | int | `1` | | +| replicas.web | int | `1` | | +| resources | object | `{}` | | +| securityContext | object | `{}` | | +| service.port | int | `80` | | +| service.type | string | `"ClusterIP"` | | +| serviceAccount.annotations | object | `{}` | | +| serviceAccount.automount | bool | `true` | | +| serviceAccount.create | bool | `true` | | +| serviceAccount.name | string | `""` | | +| tolerations | list | `[]` | | +| volumeMounts | list | `[]` | | +| volumes | list | `[]` | | + +---------------------------------------------- +Autogenerated from chart metadata using [helm-docs v1.14.2](https://github.com/norwoodj/helm-docs/releases/v1.14.2) diff --git a/pretix/ci/all-values.yaml b/pretix/ci/all-values.yaml new file mode 100644 index 0000000..a79e60c --- /dev/null +++ b/pretix/ci/all-values.yaml @@ -0,0 +1,10 @@ +env: + a: a + +persistence: + enabled: true + +ingress: + enabled: true + annotations: + a: a diff --git a/pretix/ci/empty-values.yaml b/pretix/ci/empty-values.yaml new file mode 100644 index 0000000..e69de29 diff --git a/pretix/templates/NOTES.txt b/pretix/templates/NOTES.txt new file mode 100644 index 0000000..2215ad7 --- /dev/null +++ b/pretix/templates/NOTES.txt @@ -0,0 +1,22 @@ +1. Get the application URL by running these commands: +{{- if .Values.ingress.enabled }} +{{- range $host := .Values.ingress.hosts }} + {{- range .paths }} + http{{ if $.Values.ingress.tls }}s{{ end }}://{{ $host.host }}{{ .path }} + {{- end }} +{{- end }} +{{- else if contains "NodePort" .Values.service.type }} + export NODE_PORT=$(kubectl get --namespace {{ .Release.Namespace }} -o jsonpath="{.spec.ports[0].nodePort}" services {{ include "pretix.fullname" . }}) + export NODE_IP=$(kubectl get nodes --namespace {{ .Release.Namespace }} -o jsonpath="{.items[0].status.addresses[0].address}") + echo http://$NODE_IP:$NODE_PORT +{{- else if contains "LoadBalancer" .Values.service.type }} + NOTE: It may take a few minutes for the LoadBalancer IP to be available. + You can watch its status by running 'kubectl get --namespace {{ .Release.Namespace }} svc -w {{ include "pretix.fullname" . }}' + export SERVICE_IP=$(kubectl get svc --namespace {{ .Release.Namespace }} {{ include "pretix.fullname" . }} --template "{{"{{ range (index .status.loadBalancer.ingress 0) }}{{.}}{{ end }}"}}") + echo http://$SERVICE_IP:{{ .Values.service.port }} +{{- else if contains "ClusterIP" .Values.service.type }} + export POD_NAME=$(kubectl get pods --namespace {{ .Release.Namespace }} -l "app.kubernetes.io/name={{ include "pretix.name" . }},app.kubernetes.io/instance={{ .Release.Name }}" -o jsonpath="{.items[0].metadata.name}") + export CONTAINER_PORT=$(kubectl get pod --namespace {{ .Release.Namespace }} $POD_NAME -o jsonpath="{.spec.containers[0].ports[0].containerPort}") + echo "Visit http://127.0.0.1:8080 to use your application" + kubectl --namespace {{ .Release.Namespace }} port-forward $POD_NAME 8080:$CONTAINER_PORT +{{- end }} diff --git a/pretix/templates/_helpers.tpl b/pretix/templates/_helpers.tpl new file mode 100644 index 0000000..f482705 --- /dev/null +++ b/pretix/templates/_helpers.tpl @@ -0,0 +1,62 @@ +{{/* +Expand the name of the chart. +*/}} +{{- define "pretix.name" -}} +{{- default .Chart.Name .Values.nameOverride | trunc 63 | trimSuffix "-" }} +{{- end }} + +{{/* +Create a default fully qualified app name. +We truncate at 63 chars because some Kubernetes name fields are limited to this (by the DNS naming spec). +If release name contains chart name it will be used as a full name. +*/}} +{{- define "pretix.fullname" -}} +{{- if .Values.fullnameOverride }} +{{- .Values.fullnameOverride | trunc 63 | trimSuffix "-" }} +{{- else }} +{{- $name := default .Chart.Name .Values.nameOverride }} +{{- if contains $name .Release.Name }} +{{- .Release.Name | trunc 63 | trimSuffix "-" }} +{{- else }} +{{- printf "%s-%s" .Release.Name $name | trunc 63 | trimSuffix "-" }} +{{- end }} +{{- end }} +{{- end }} + +{{/* +Create chart name and version as used by the chart label. +*/}} +{{- define "pretix.chart" -}} +{{- printf "%s-%s" .Chart.Name .Chart.Version | replace "+" "_" | trunc 63 | trimSuffix "-" }} +{{- end }} + +{{/* +Common labels +*/}} +{{- define "pretix.labels" -}} +helm.sh/chart: {{ include "pretix.chart" . }} +{{ include "pretix.selectorLabels" . }} +{{- if .Chart.AppVersion }} +app.kubernetes.io/version: {{ .Chart.AppVersion | quote }} +{{- end }} +app.kubernetes.io/managed-by: {{ .Release.Service }} +{{- end }} + +{{/* +Selector labels +*/}} +{{- define "pretix.selectorLabels" -}} +app.kubernetes.io/name: {{ include "pretix.name" . }} +app.kubernetes.io/instance: {{ .Release.Name }} +{{- end }} + +{{/* +Create the name of the service account to use +*/}} +{{- define "pretix.serviceAccountName" -}} +{{- if .Values.serviceAccount.create }} +{{- default (include "pretix.fullname" .) .Values.serviceAccount.name }} +{{- else }} +{{- default "default" .Values.serviceAccount.name }} +{{- end }} +{{- end }} diff --git a/pretix/templates/configmap_grafana_dashboards.yaml b/pretix/templates/configmap_grafana_dashboards.yaml new file mode 100644 index 0000000..d9ff230 --- /dev/null +++ b/pretix/templates/configmap_grafana_dashboards.yaml @@ -0,0 +1,14 @@ +{{- if .Values.grafana.dashboards.enabled }} +--- +apiVersion: v1 +kind: ConfigMap +metadata: + name: {{ include "pretix.fullname" . }}-grafana-dashboards + labels: + {{- include "pretix.labels" . | nindent 4 }} + {{- toYaml .Values.grafana.dashboards.labels | nindent 4 }} + annotations: + {{- toYaml .Values.grafana.dashboards.annotations | nindent 4 }} +data: + {{- (.Files.Glob "grafana_dashboards/*.json" ).AsConfig | nindent 2 }} +{{- end }} diff --git a/pretix/templates/cronjob.yaml b/pretix/templates/cronjob.yaml new file mode 100644 index 0000000..8ddfe27 --- /dev/null +++ b/pretix/templates/cronjob.yaml @@ -0,0 +1,84 @@ +apiVersion: batch/v1 +kind: CronJob +metadata: + name: {{ include "pretix.fullname" . }} + labels: + {{- include "pretix.labels" . | nindent 4 }} +spec: + schedule: {{ .Values.cronSchedule | quote }} + jobTemplate: + spec: + template: + metadata: + annotations: + checksum/secret: {{ toYaml $.Values.env | sha256sum }} + {{- with .Values.podAnnotations }} + {{- toYaml . | nindent 12 }} + {{- end }} + labels: + {{- include "pretix.labels" . | nindent 12 }} + app.kubernetes.io/component: cronjob + {{- with .Values.podLabels }} + {{- toYaml . | nindent 12 }} + {{- end }} + spec: + {{- with .Values.imagePullSecrets }} + imagePullSecrets: + {{- toYaml . | nindent 12 }} + {{- end }} + serviceAccountName: {{ include "pretix.serviceAccountName" . }} + securityContext: + {{- toYaml .Values.podSecurityContext | nindent 12 }} + restartPolicy: OnFailure + containers: + - name: {{ .Chart.Name }} + securityContext: + {{- toYaml .Values.securityContext | nindent 16 }} + {{- with .Values.image }} + image: "{{ .registry }}/{{ .repository }}:{{ .tag | default $.Chart.AppVersion }}" + imagePullPolicy: {{ .pullPolicy }} + {{- end }} + envFrom: + - secretRef: + name: {{ include "pretix.fullname" . }} + env: + # Migrations are handled by helm hooks in pretix-migrate.yaml + - name: AUTOMIGRATE + value: "skip" + command: [ "pretix" ] + args: [ "cron" ] + resources: + {{- toYaml .Values.resources | nindent 16 }} + volumeMounts: + - name: pretix-data + mountPath: /data + {{- with .Values.volumeMounts }} + {{- toYaml . | nindent 16 }} + {{- end }} + volumes: + - name: pretix-data + {{- if .Values.persistence.hostPath }} + hostPath: + type: Directory + path: {{ .Values.persistence.hostPath | quote }} + {{- else if .Values.persistence.enabled }} + persistentVolumeClaim: + claimName: {{ with .Values.persistence.existingClaim }}{{ . }}{{- else }}{{ template "pretix.fullname" . }}{{- end }} + {{- else }} + emptyDir: {} + {{- end }} + {{- with .Values.volumes }} + {{- toYaml . | nindent 12 }} + {{- end }} + {{- with .Values.nodeSelector }} + nodeSelector: + {{- toYaml . | nindent 12 }} + {{- end }} + {{- with .Values.affinity }} + affinity: + {{- toYaml . | nindent 12 }} + {{- end }} + {{- with .Values.tolerations }} + tolerations: + {{- toYaml . | nindent 12 }} + {{- end }} diff --git a/pretix/templates/deployment.yaml b/pretix/templates/deployment.yaml new file mode 100644 index 0000000..20dc63d --- /dev/null +++ b/pretix/templates/deployment.yaml @@ -0,0 +1,101 @@ +{{- range $component := list "web" "taskworker" }} +--- +apiVersion: apps/v1 +kind: Deployment +metadata: + name: {{ include "pretix.fullname" $ }}-{{ $component }} + labels: + {{- include "pretix.labels" $ | nindent 4 }} + app.kubernetes.io/component: {{ $component }} +spec: + {{- if not $.Values.autoscaling.enabled }} + replicas: {{ get $.Values.replicas $component }} + {{- end }} + selector: + matchLabels: + {{- include "pretix.selectorLabels" $ | nindent 6 }} + app.kubernetes.io/component: {{ $component }} + template: + metadata: + annotations: + checksum/secret: {{ toYaml $.Values.env | sha256sum }} + {{- with $.Values.podAnnotations }} + {{- toYaml . | nindent 8 }} + {{- end }} + labels: + {{- include "pretix.labels" $ | nindent 8 }} + app.kubernetes.io/component: {{ $component }} + {{- with $.Values.podLabels }} + {{- toYaml . | nindent 8 }} + {{- end }} + spec: + {{- with $.Values.imagePullSecrets }} + imagePullSecrets: + {{- toYaml . | nindent 8 }} + {{- end }} + serviceAccountName: {{ include "pretix.serviceAccountName" $ }} + securityContext: + {{- toYaml $.Values.podSecurityContext | nindent 8 }} + containers: + - name: {{ $.Chart.Name }} + securityContext: + {{- toYaml $.Values.securityContext | nindent 12 }} + {{- with $.Values.image }} + image: "{{ .registry }}/{{ .repository }}:{{ .tag | default $.Chart.AppVersion }}" + imagePullPolicy: {{ .pullPolicy }} + {{- end }} + env: + # Migrations are handled by helm hooks in pretix-migrate.yaml + - name: AUTOMIGRATE + value: "skip" + envFrom: + - secretRef: + name: {{ include "pretix.fullname" $ }} + command: [ "pretix" ] + args: [ {{ $component | quote }} ] + {{- if (eq $component "web") }} + ports: + - name: http + containerPort: {{ $.Values.service.port }} + protocol: TCP + livenessProbe: + {{- toYaml $.Values.livenessProbe | nindent 12 }} + readinessProbe: + {{- toYaml $.Values.readinessProbe | nindent 12 }} + {{- end }} + resources: + {{- toYaml $.Values.resources | nindent 12 }} + volumeMounts: + - name: pretix-data + mountPath: /data + {{- with $.Values.volumeMounts }} + {{- toYaml . | nindent 12 }} + {{- end }} + volumes: + - name: pretix-data + {{- if $.Values.persistence.hostPath }} + hostPath: + type: Directory + path: {{ $.Values.persistence.hostPath | quote }} + {{- else if $.Values.persistence.enabled }} + persistentVolumeClaim: + claimName: {{ with $.Values.persistence.existingClaim }}{{ . }}{{- else }}{{ template "pretix.fullname" $ }}{{- end }} + {{- else }} + emptyDir: {} + {{- end }} + {{- with $.Values.volumes }} + {{- toYaml . | nindent 8 }} + {{- end }} + {{- with $.Values.nodeSelector }} + nodeSelector: + {{- toYaml . | nindent 8 }} + {{- end }} + {{- with $.Values.affinity }} + affinity: + {{- toYaml . | nindent 8 }} + {{- end }} + {{- with $.Values.tolerations }} + tolerations: + {{- toYaml . | nindent 8 }} + {{- end }} +{{- end }} diff --git a/pretix/templates/hpa.yaml b/pretix/templates/hpa.yaml new file mode 100644 index 0000000..6ad556c --- /dev/null +++ b/pretix/templates/hpa.yaml @@ -0,0 +1,32 @@ +{{- if .Values.autoscaling.enabled }} +apiVersion: autoscaling/v2 +kind: HorizontalPodAutoscaler +metadata: + name: {{ include "pretix.fullname" . }} + labels: + {{- include "pretix.labels" . | nindent 4 }} +spec: + scaleTargetRef: + apiVersion: apps/v1 + kind: Deployment + name: {{ include "pretix.fullname" . }} + minReplicas: {{ .Values.autoscaling.minReplicas }} + maxReplicas: {{ .Values.autoscaling.maxReplicas }} + metrics: + {{- if .Values.autoscaling.targetCPUUtilizationPercentage }} + - type: Resource + resource: + name: cpu + target: + type: Utilization + averageUtilization: {{ .Values.autoscaling.targetCPUUtilizationPercentage }} + {{- end }} + {{- if .Values.autoscaling.targetMemoryUtilizationPercentage }} + - type: Resource + resource: + name: memory + target: + type: Utilization + averageUtilization: {{ .Values.autoscaling.targetMemoryUtilizationPercentage }} + {{- end }} +{{- end }} diff --git a/pretix/templates/ingress.yaml b/pretix/templates/ingress.yaml new file mode 100644 index 0000000..7ab4d99 --- /dev/null +++ b/pretix/templates/ingress.yaml @@ -0,0 +1,43 @@ +{{- if .Values.ingress.enabled -}} +apiVersion: networking.k8s.io/v1 +kind: Ingress +metadata: + name: {{ include "pretix.fullname" . }} + labels: + {{- include "pretix.labels" . | nindent 4 }} + {{- with .Values.ingress.annotations }} + annotations: + {{- toYaml . | nindent 4 }} + {{- end }} +spec: + {{- with .Values.ingress.className }} + ingressClassName: {{ . }} + {{- end }} + {{- if .Values.ingress.tls }} + tls: + {{- range .Values.ingress.tls }} + - hosts: + {{- range .hosts }} + - {{ . | quote }} + {{- end }} + secretName: {{ .secretName }} + {{- end }} + {{- end }} + rules: + {{- range .Values.ingress.hosts }} + - host: {{ .host | quote }} + http: + paths: + {{- range .paths }} + - path: {{ .path }} + {{- with .pathType }} + pathType: {{ . }} + {{- end }} + backend: + service: + name: {{ include "pretix.fullname" $ }}-web + port: + name: http + {{- end }} + {{- end }} +{{- end }} diff --git a/pretix/templates/job-migrate.yaml b/pretix/templates/job-migrate.yaml new file mode 100644 index 0000000..aabb446 --- /dev/null +++ b/pretix/templates/job-migrate.yaml @@ -0,0 +1,81 @@ +apiVersion: batch/v1 +kind: Job +metadata: + name: {{ include "pretix.fullname" . }}-migrate + labels: + {{- include "pretix.labels" . | nindent 4 }} + annotations: + helm.sh/hook: post-install,post-upgrade + helm.sh/hook-weight: "5" + helm.sh/hook-delete-policy: hook-succeeded +spec: + template: + metadata: + annotations: + checksum/secret: {{ toYaml .Values.env | sha256sum }} + {{- with .Values.podAnnotations }} + {{- toYaml . | nindent 8 }} + {{- end }} + labels: + {{- include "pretix.labels" . | nindent 8 }} + app.kubernetes.io/component: cronjob + {{- with .Values.podLabels }} + {{- toYaml . | nindent 8 }} + {{- end }} + spec: + {{- with .Values.imagePullSecrets }} + imagePullSecrets: + {{- toYaml . | nindent 8 }} + {{- end }} + serviceAccountName: {{ include "pretix.serviceAccountName" . }} + securityContext: + {{- toYaml .Values.podSecurityContext | nindent 8 }} + restartPolicy: OnFailure + containers: + - name: {{ .Chart.Name }} + securityContext: + {{- toYaml .Values.securityContext | nindent 12 }} + {{- with .Values.image }} + image: "{{ .registry }}/{{ .repository }}:{{ .tag | default $.Chart.AppVersion }}" + imagePullPolicy: {{ .pullPolicy }} + {{- end }} + envFrom: + - secretRef: + name: {{ include "pretix.fullname" . }} + command: [ "pretix" ] + args: [ "migrate" ] + resources: + {{- toYaml .Values.resources | nindent 12 }} + volumeMounts: + - name: pretix-data + mountPath: /data + {{- with .Values.volumeMounts }} + {{- toYaml . | nindent 12 }} + {{- end }} + volumes: + - name: pretix-data + {{- if .Values.persistence.hostPath }} + hostPath: + type: Directory + path: {{ .Values.persistence.hostPath | quote }} + {{- else if .Values.persistence.enabled }} + persistentVolumeClaim: + claimName: {{ with .Values.persistence.existingClaim }}{{ . }}{{- else }}{{ template "pretix.fullname" . }}{{- end }} + {{- else }} + emptyDir: {} + {{- end }} + {{- with .Values.volumes }} + {{- toYaml . | nindent 8 }} + {{- end }} + {{- with .Values.nodeSelector }} + nodeSelector: + {{- toYaml . | nindent 8 }} + {{- end }} + {{- with .Values.affinity }} + affinity: + {{- toYaml . | nindent 8 }} + {{- end }} + {{- with .Values.tolerations }} + tolerations: + {{- toYaml . | nindent 8 }} + {{- end }} diff --git a/pretix/templates/prometheus-rules.yaml b/pretix/templates/prometheus-rules.yaml new file mode 100644 index 0000000..b229eb7 --- /dev/null +++ b/pretix/templates/prometheus-rules.yaml @@ -0,0 +1,29 @@ +{{- if and .Values.prometheus.rules.enabled }} +apiVersion: monitoring.coreos.com/v1 +kind: PrometheusRule +metadata: + name: {{ include "pretix.fullname" . }} + labels: + {{- include "pretix.labels" . | nindent 4 }} + {{- with .Values.prometheus.rules.labels }} + {{- toYaml . | nindent 4 }} + {{- end }} +spec: + groups: + - name: {{ template "pretix.fullname" . }}-Additional + rules: + - alert: "pretix: error in task" + expr: rate(pretix_task_runs_total{status!="success"}[1h])!=0 + for: 5m + labels: + severity: critical + annotations: + {{` + summary: "pretix task of {{ $labels.instance }} has an error on {{ $labels.task_name }} in the last hour" + `}} + {{- with .Values.prometheus.rules.additionalRules }} + - name: {{ template "pretix.fullname" $ }}-Additional + rules: + {{- toYaml . | nindent 8 }} + {{- end }} +{{- end }} diff --git a/pretix/templates/pvc.yaml b/pretix/templates/pvc.yaml new file mode 100644 index 0000000..3f694e5 --- /dev/null +++ b/pretix/templates/pvc.yaml @@ -0,0 +1,29 @@ +{{- if and + .Values.persistence.enabled + (not .Values.persistence.hostPath) + (not .Values.persistence.existingClaim) +}} +kind: PersistentVolumeClaim +apiVersion: v1 +metadata: + name: {{ template "pretix.fullname" . }} + labels: + {{- include "pretix.labels" . | nindent 4 }} + {{- with .Values.persistence.annotations }} + annotations: + {{ toYaml . | indent 4 }} + {{- end }} +spec: + accessModes: + - {{ .Values.persistence.accessMode | quote }} + resources: + requests: + storage: {{ .Values.persistence.size | quote }} + {{- with .Values.persistence.storageClass }} + {{- if (eq "-" .) }} + storageClassName: "" + {{- else }} + storageClassName: {{ . | quote }} + {{- end }} + {{- end }} +{{- end -}} diff --git a/pretix/templates/secrets.yaml b/pretix/templates/secrets.yaml new file mode 100644 index 0000000..6c377e0 --- /dev/null +++ b/pretix/templates/secrets.yaml @@ -0,0 +1,13 @@ +--- +apiVersion: v1 +kind: Secret +metadata: + name: {{ include "pretix.fullname" . }} + labels: + {{- include "pretix.labels" . | nindent 4 }} + annotations: + checksum/secret: {{ toYaml $.Values.env | sha256sum }} +data: + {{- range $name, $value := .Values.env }} + {{ $name }}: {{ toYaml $value | b64enc }} + {{- end }} diff --git a/pretix/templates/service.yaml b/pretix/templates/service.yaml new file mode 100644 index 0000000..2dff661 --- /dev/null +++ b/pretix/templates/service.yaml @@ -0,0 +1,20 @@ +{{- range $component := list "web" "taskworker" }} +--- +apiVersion: v1 +kind: Service +metadata: + name: {{ include "pretix.fullname" $ }}-{{ $component }} + labels: + {{- include "pretix.labels" $ | nindent 4 }} + app.kubernetes.io/component: {{ $component }} +spec: + type: {{ $.Values.service.type }} + selector: + {{- include "pretix.selectorLabels" $ | nindent 4 }} + app.kubernetes.io/component: {{ $component }} + ports: + - port: {{ $.Values.service.port }} + targetPort: http + protocol: TCP + name: http +{{- end }} diff --git a/pretix/templates/serviceaccount.yaml b/pretix/templates/serviceaccount.yaml new file mode 100644 index 0000000..108fb1b --- /dev/null +++ b/pretix/templates/serviceaccount.yaml @@ -0,0 +1,13 @@ +{{- if .Values.serviceAccount.create -}} +apiVersion: v1 +kind: ServiceAccount +metadata: + name: {{ include "pretix.serviceAccountName" . }} + labels: + {{- include "pretix.labels" . | nindent 4 }} + {{- with .Values.serviceAccount.annotations }} + annotations: + {{- toYaml . | nindent 4 }} + {{- end }} +automountServiceAccountToken: {{ .Values.serviceAccount.automount }} +{{- end }} diff --git a/pretix/templates/servicemonitor.yaml b/pretix/templates/servicemonitor.yaml new file mode 100644 index 0000000..9c167fd --- /dev/null +++ b/pretix/templates/servicemonitor.yaml @@ -0,0 +1,36 @@ +{{- if and .Values.prometheus.servicemonitor.enabled }} +apiVersion: monitoring.coreos.com/v1 +kind: ServiceMonitor +metadata: + name: {{ include "pretix.fullname" . }} + labels: + {{- include "pretix.labels" . | nindent 4 }} + {{- with .Values.prometheus.servicemonitor.labels }} + {{- toYaml . | nindent 4 }} + {{- end }} +spec: + selector: + matchLabels: + {{- include "pretix.selectorLabels" . | nindent 6 }} + app.kubernetes.io/component: web + endpoints: + - port: http + path: "/metrics" + enableHttp2: false + basicAuth: + username: + name: {{ include "pretix.fullname" . }} + key: PRETIX_METRICS_USER + password: + name: {{ include "pretix.fullname" . }} + key: PRETIX_METRICS_PASSPHRASE + {{- with .Values.prometheus.servicemonitor }} + {{- with .interval }} + interval: {{ . }} + {{- end }} + {{- with .scrapeTimeout }} + scrapeTimeout: {{ . }} + {{- end }} + {{- end }} +{{- end }} + diff --git a/pretix/templates/tests/test-connection.yaml b/pretix/templates/tests/test-connection.yaml new file mode 100644 index 0000000..904e9ba --- /dev/null +++ b/pretix/templates/tests/test-connection.yaml @@ -0,0 +1,15 @@ +apiVersion: v1 +kind: Pod +metadata: + name: "{{ include "pretix.fullname" . }}-test-connection" + labels: + {{- include "pretix.labels" . | nindent 4 }} + annotations: + "helm.sh/hook": test +spec: + containers: + - name: wget + image: busybox + command: ['wget'] + args: ['{{ include "pretix.fullname" . }}:{{ .Values.service.port }}'] + restartPolicy: Never diff --git a/pretix/values.yaml b/pretix/values.yaml new file mode 100644 index 0000000..406460d --- /dev/null +++ b/pretix/values.yaml @@ -0,0 +1,224 @@ +# Default values for pretix. +# This is a YAML-formatted file. +# Declare variables to be passed into your templates. + +# This will set the replicaset count more information can be found here: https://kubernetes.io/docs/concepts/workloads/controllers/replicaset/ +replicas: + web: 1 + taskworker: 1 + +# This sets the container image more information can be found here: https://kubernetes.io/docs/concepts/containers/images/ +image: + registry: docker.io + repository: pretix/standalone + # This sets the pull policy for images. + pullPolicy: IfNotPresent + # Overrides the image tag whose default is the chart appVersion. + tag: "" + +cronSchedule: "*/30 * * * *" + +env: + PRETIX_PRETIX_INSTANCE_NAME: Pretix Helm + PRETIX_PRETIX_URL: http://localhost + PRETIX_PRETIX_CURRENCY: EUR + PRETIX_PRETIX_DATADIR: /data + PRETIX_PRETIX_TRUST_X_FORWARDED_FOR: on + PRETIX_PRETIX_TRUST_X_FORWARDED_PROTO: on + PRETIX_MAIL_FROM: test@example.com + PRETIX_MAIL_HOST: + PRETIX_MAIL_USER: + PRETIX_MAIL_PASSWORD: + PRETIX_MAIL_PORT: 587 + PRETIX_MAIL_TLS: True + PRETIX_DATABASE_BACKEND: postgresql + PRETIX_DATABASE_NAME: pretix + PRETIX_DATABASE_USER: pretix + PRETIX_DATABASE_PASSWORD: pretix + PRETIX_DATABASE_HOST: pretix-postgresql + PRETIX_REDIS_LOCATION: redis://pretix-redis-master/0 + PRETIX_REDIS_SESSIONS: true + PRETIX_CELERY_BACKEND: redis://pretix-redis-master/1 + PRETIX_CELERY_BROKER: redis://pretix-redis-master/2 + PRETIX_METRICS_ENABLED: false + PRETIX_METRICS_USER: pretix + PRETIX_METRICS_PASSPHRASE: pretix + +# This is for the secretes for pulling an image from a private repository more information can be found here: https://kubernetes.io/docs/tasks/configure-pod-container/pull-image-private-registry/ +imagePullSecrets: [] +# This is to override the chart name. +nameOverride: "" +fullnameOverride: "" + +#This section builds out the service account more information can be found here: https://kubernetes.io/docs/concepts/security/service-accounts/ +serviceAccount: + # Specifies whether a service account should be created + create: true + # Automatically mount a ServiceAccount's API credentials? + automount: true + # Annotations to add to the service account + annotations: {} + # The name of the service account to use. + # If not set and create is true, a name is generated using the fullname template + name: "" + +# This is for setting Kubernetes Annotations to a Pod. +# For more information checkout: https://kubernetes.io/docs/concepts/overview/working-with-objects/annotations/ +podAnnotations: {} + +# This is for setting Kubernetes Labels to a Pod. +# For more information checkout: https://kubernetes.io/docs/concepts/overview/working-with-objects/labels/ +podLabels: {} + +podSecurityContext: {} + # fsGroup: 2000 + +securityContext: {} + # capabilities: + # drop: + # - ALL + # readOnlyRootFilesystem: true + # runAsNonRoot: true + # runAsUser: 1000 + +## Enable persistence using Persistent Volume Claims +## ref: http://kubernetes.io/docs/user-guide/persistent-volumes/ +## +persistence: + enabled: true + annotations: {} + # -- Persistent Volume Storage Class + # If defined, storageClassName: + # If set to "-", storageClassName: "", which disables dynamic provisioning + # If undefined (the default) or set to null, no storageClassName spec is + # set, choosing the default provisioner. (gp2 on AWS, standard on + # GKE, AWS & OpenStack) + # + storageClass: + + # -- A manually managed Persistent Volume and Claim + # Requires persistence.enabled: true + # If defined, PVC must be created manually before volume will be bound + existingClaim: + + # -- Do not create an PVC, direct use hostPath in Pod + hostPath: + accessMode: ReadWriteOnce + size: 5Gi + +# This is for setting up a service more information can be found here: https://kubernetes.io/docs/concepts/services-networking/service/ +service: + # This sets the service type more information can be found here: https://kubernetes.io/docs/concepts/services-networking/service/#publishing-services-service-types + type: ClusterIP + # This sets the ports more information can be found here: https://kubernetes.io/docs/concepts/services-networking/service/#field-spec-ports + port: 80 + +prometheus: + servicemonitor: + # -- broken, Host need to be localhost on request (instatt of ip) + # needs: https://github.com/prometheus-operator/prometheus-operator/pull/7003 + enabled: false + labels: {} + # -- interval + interval: + # -- scrape timeout + scrapeTimeout: + rules: + enabled: false + labels: {} + # current no default alertrules are provided + additionalRules: [] + +grafana: + dashboards: + enabled: false + labels: + grafana_dashboard: "1" + annotations: {} + +# This block is for setting up the ingress for more information can be found here: https://kubernetes.io/docs/concepts/services-networking/ingress/ +ingress: + enabled: false + className: "" + annotations: {} + # kubernetes.io/ingress.class: nginx + # kubernetes.io/tls-acme: "true" + hosts: + - host: chart-example.local + paths: + - path: / + pathType: ImplementationSpecific + tls: [] + # - secretName: chart-example-tls + # hosts: + # - chart-example.local + +resources: {} + # We usually recommend not to specify default resources and to leave this as a conscious + # choice for the user. This also increases chances charts run on environments with little + # resources, such as Minikube. If you do want to specify resources, uncomment the following + # lines, adjust them as necessary, and remove the curly braces after 'resources:'. + # limits: + # cpu: 100m + # memory: 128Mi + # requests: + # cpu: 100m + # memory: 128Mi + +# This is to setup the liveness and readiness probes more information can be found here: https://kubernetes.io/docs/tasks/configure-pod-container/configure-liveness-readiness-startup-probes/ +livenessProbe: + httpGet: + path: /healthcheck/ + port: http + httpHeaders: + - name: "host" + value: localhost +readinessProbe: + httpGet: + path: /healthcheck/ + port: http + httpHeaders: + - name: "host" + value: localhost + +#This section is for setting up autoscaling more information can be found here: https://kubernetes.io/docs/concepts/workloads/autoscaling/ +autoscaling: + enabled: false + minReplicas: 1 + maxReplicas: 100 + targetCPUUtilizationPercentage: 80 + # targetMemoryUtilizationPercentage: 80 + +# Additional volumes on the output Deployment definition. +volumes: [] +# - name: foo +# secret: +# secretName: mysecret +# optional: false + +# Additional volumeMounts on the output Deployment definition. +volumeMounts: [] +# - name: foo +# mountPath: "/etc/foo" +# readOnly: true + +nodeSelector: {} + +tolerations: [] + +affinity: {} + + +postgresql: + enabled: true + auth: + database: pretix + username: pretix + password: pretix + postgresPassword: supersecureadminpassword + +redis: + enabled: true + architecture: standalone + auth: + enabled: false -- 2.45.3 From 3b45ef423f2dfac325801116339c1a0a3764fcbd Mon Sep 17 00:00:00 2001 From: WrenIX Date: Tue, 17 Dec 2024 14:18:55 +0100 Subject: [PATCH 090/134] fix(forgejo-runner): update appVersion --- forgejo-runner/Chart.yaml | 4 ++-- forgejo-runner/README.md | 2 +- 2 files changed, 3 insertions(+), 3 deletions(-) diff --git a/forgejo-runner/Chart.yaml b/forgejo-runner/Chart.yaml index b890c37..8a0fee0 100644 --- a/forgejo-runner/Chart.yaml +++ b/forgejo-runner/Chart.yaml @@ -2,9 +2,9 @@ apiVersion: v2 name: forgejo-runner description: Deploy runner for an forgejo instance (default codeberg.org) type: application -version: "0.4.5" +version: "0.4.6" # renovate: image=code.forgejo.org/forgejo/runner -appVersion: "5.0.3" +appVersion: "5.0.4" maintainers: - name: WrenIX url: https://wrenix.eu diff --git a/forgejo-runner/README.md b/forgejo-runner/README.md index c54b285..66eb3ac 100644 --- a/forgejo-runner/README.md +++ b/forgejo-runner/README.md @@ -7,7 +7,7 @@ description: "Deploy runner for an forgejo instance (default codeberg.org)" # forgejo-runner -![Version: 0.4.5](https://img.shields.io/badge/Version-0.4.5-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 5.0.3](https://img.shields.io/badge/AppVersion-5.0.3-informational?style=flat-square) +![Version: 0.4.6](https://img.shields.io/badge/Version-0.4.6-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 5.0.4](https://img.shields.io/badge/AppVersion-5.0.4-informational?style=flat-square) Deploy runner for an forgejo instance (default codeberg.org) -- 2.45.3 From 4b5e489ab422d9ad8b53f725216bf12ec619cbaf Mon Sep 17 00:00:00 2001 From: WrenIX Date: Tue, 17 Dec 2024 14:19:05 +0100 Subject: [PATCH 091/134] fix(home-assistant): update appVersion --- home-assistant/Chart.yaml | 4 ++-- home-assistant/README.md | 2 +- 2 files changed, 3 insertions(+), 3 deletions(-) diff --git a/home-assistant/Chart.yaml b/home-assistant/Chart.yaml index d4bcec0..853fa12 100644 --- a/home-assistant/Chart.yaml +++ b/home-assistant/Chart.yaml @@ -3,9 +3,9 @@ name: home-assistant description: Home Assistant with tooling to run on an k3s pi icon: https://www.home-assistant.io/images/favicon-192x192.png type: application -version: 0.2.10 +version: 0.2.11 # renovate: image=ghcr.io/home-assistant/home-assistant -appVersion: "2024.12.2" +appVersion: "2024.12.3" maintainers: - name: WrenIX url: https://wrenix.eu diff --git a/home-assistant/README.md b/home-assistant/README.md index bb562d2..29e42d8 100644 --- a/home-assistant/README.md +++ b/home-assistant/README.md @@ -7,7 +7,7 @@ description: "Home Assistant with tooling to run on an k3s pi" # home-assistant -![Version: 0.2.10](https://img.shields.io/badge/Version-0.2.10-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 2024.12.2](https://img.shields.io/badge/AppVersion-2024.12.2-informational?style=flat-square) +![Version: 0.2.11](https://img.shields.io/badge/Version-0.2.11-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 2024.12.3](https://img.shields.io/badge/AppVersion-2024.12.3-informational?style=flat-square) Home Assistant with tooling to run on an k3s pi -- 2.45.3 From ceb661a790edfbaae120e97189949c39a813a0c9 Mon Sep 17 00:00:00 2001 From: WrenIX Date: Tue, 17 Dec 2024 14:19:08 +0100 Subject: [PATCH 092/134] fix(matrix-synapse): update appVersion --- matrix-synapse/Chart.lock | 12 ++++++------ matrix-synapse/Chart.yaml | 12 ++++++------ matrix-synapse/README.md | 6 +++--- 3 files changed, 15 insertions(+), 15 deletions(-) diff --git a/matrix-synapse/Chart.lock b/matrix-synapse/Chart.lock index b6363b9..090b707 100644 --- a/matrix-synapse/Chart.lock +++ b/matrix-synapse/Chart.lock @@ -1,9 +1,9 @@ dependencies: - name: postgresql - repository: https://charts.bitnami.com/bitnami - version: 16.0.0 + repository: oci://docker.io/bitnamicharts + version: 16.3.1 - name: redis - repository: https://charts.bitnami.com/bitnami - version: 20.1.6 -digest: sha256:1e6f035c85e4d2b287318dc4f92bccf8ded11cb65c8a8ed84f30fe2acf407761 -generated: "2024-10-02T13:03:54.305028309Z" + repository: oci://docker.io/bitnamicharts + version: 20.6.0 +digest: sha256:3120275674c549a4083939646d931cfb718447511da021bd7b46cb0fed1dbefb +generated: "2024-12-17T14:14:44.769791567+01:00" diff --git a/matrix-synapse/Chart.yaml b/matrix-synapse/Chart.yaml index 91d1511..3666f99 100644 --- a/matrix-synapse/Chart.yaml +++ b/matrix-synapse/Chart.yaml @@ -4,19 +4,19 @@ name: matrix-synapse description: Matrix reference homeserver icon: https://matrix.org/images/matrix-logo.svg type: application -version: "1.0.5" +version: "1.0.6" # renovate: image=ghcr.io/element-hq/synapse -appVersion: 1.120.2 +appVersion: 1.121.1 maintainers: - name: WrenIX url: https://wrenix.eu dependencies: - name: postgresql - version: ^16.0.0 - repository: https://charts.bitnami.com/bitnami + version: "^16.3.1" + repository: "oci://docker.io/bitnamicharts" condition: postgresql.enabled - name: redis - version: ^20.0.0 - repository: https://charts.bitnami.com/bitnami + version: "20.6.0" + repository: "oci://docker.io/bitnamicharts" condition: redis.enabled diff --git a/matrix-synapse/README.md b/matrix-synapse/README.md index 4846c70..dc7f7cf 100644 --- a/matrix-synapse/README.md +++ b/matrix-synapse/README.md @@ -7,7 +7,7 @@ description: "Matrix reference homeserver" # matrix-synapse -![Version: 1.0.5](https://img.shields.io/badge/Version-1.0.5-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 1.120.2](https://img.shields.io/badge/AppVersion-1.120.2-informational?style=flat-square) +![Version: 1.0.6](https://img.shields.io/badge/Version-1.0.6-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 1.121.1](https://img.shields.io/badge/AppVersion-1.121.1-informational?style=flat-square) Matrix reference homeserver @@ -43,8 +43,8 @@ helm uninstall matrix-synapse-release | Repository | Name | Version | |------------|------|---------| -| https://charts.bitnami.com/bitnami | postgresql | ^16.0.0 | -| https://charts.bitnami.com/bitnami | redis | ^20.0.0 | +| oci://docker.io/bitnamicharts | postgresql | ^16.3.1 | +| oci://docker.io/bitnamicharts | redis | 20.6.0 | ## Values -- 2.45.3 From 1807f781d9b01adb3b74d72090b5f931fa4529e2 Mon Sep 17 00:00:00 2001 From: WrenIX Date: Tue, 17 Dec 2024 14:19:11 +0100 Subject: [PATCH 093/134] fix(pretix): update appVersion --- pretix/Chart.lock | 8 ++++---- pretix/Chart.yaml | 6 +++--- pretix/README.md | 12 ++++++------ 3 files changed, 13 insertions(+), 13 deletions(-) diff --git a/pretix/Chart.lock b/pretix/Chart.lock index 9498c2b..308c0e5 100644 --- a/pretix/Chart.lock +++ b/pretix/Chart.lock @@ -1,9 +1,9 @@ dependencies: - name: postgresql repository: oci://docker.io/bitnamicharts - version: 16.3.0 + version: 16.3.2 - name: redis repository: oci://docker.io/bitnamicharts - version: 20.5.0 -digest: sha256:7126a34c5cb99dc7bf96ee997009392d629bd6d0e57af288eec2d73b548a5d47 -generated: "2024-12-12T23:28:46.938657955+01:00" + version: 20.6.0 +digest: sha256:0c91ccf00207fb231290572b9e516212e5bf518511d3b887409111ea568b61c9 +generated: "2024-12-17T14:17:08.440769741+01:00" diff --git a/pretix/Chart.yaml b/pretix/Chart.yaml index fc952b2..bdd8ef1 100644 --- a/pretix/Chart.yaml +++ b/pretix/Chart.yaml @@ -2,7 +2,7 @@ apiVersion: v2 name: pretix description: Reinventing ticket presales, one ticket at a time. type: application -version: 0.1.0 +version: 0.1.1 # renovate: image=docker.io/pretix/standalone appVersion: "2024.11.0" keywords: @@ -16,10 +16,10 @@ sources: - https://hub.docker.com/r/pretix/standalone dependencies: - name: postgresql - version: "16.3.0" + version: "^16.3.1" repository: "oci://docker.io/bitnamicharts" condition: postgresql.enabled - name: redis - version: "20.5.0" + version: "20.6.0" repository: "oci://docker.io/bitnamicharts" condition: redis.enabled diff --git a/pretix/README.md b/pretix/README.md index 26580c1..c81e383 100644 --- a/pretix/README.md +++ b/pretix/README.md @@ -7,7 +7,7 @@ description: "Reinventing ticket presales, one ticket at a time." # pretix -![Version: 0.1.0](https://img.shields.io/badge/Version-0.1.0-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 2024.11.0](https://img.shields.io/badge/AppVersion-2024.11.0-informational?style=flat-square) +![Version: 0.1.1](https://img.shields.io/badge/Version-0.1.1-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 2024.11.0](https://img.shields.io/badge/AppVersion-2024.11.0-informational?style=flat-square) Reinventing ticket presales, one ticket at a time. @@ -49,8 +49,8 @@ helm uninstall pretix-release | Repository | Name | Version | |------------|------|---------| -| oci://docker.io/bitnamicharts | postgresql | 16.3.0 | -| oci://docker.io/bitnamicharts | redis | 20.5.0 | +| oci://docker.io/bitnamicharts | postgresql | ^16.3.1 | +| oci://docker.io/bitnamicharts | redis | 20.6.0 | ## Values @@ -154,7 +154,7 @@ helm uninstall pretix-release Autogenerated from chart metadata using [helm-docs](https://github.com/norwoodj/helm-docs) # pretix -![Version: 0.1.0](https://img.shields.io/badge/Version-0.1.0-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 2024.11.0](https://img.shields.io/badge/AppVersion-2024.11.0-informational?style=flat-square) +![Version: 0.1.1](https://img.shields.io/badge/Version-0.1.1-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 2024.11.0](https://img.shields.io/badge/AppVersion-2024.11.0-informational?style=flat-square) Reinventing ticket presales, one ticket at a time. @@ -174,8 +174,8 @@ Reinventing ticket presales, one ticket at a time. | Repository | Name | Version | |------------|------|---------| -| oci://docker.io/bitnamicharts | postgresql | 16.3.0 | -| oci://docker.io/bitnamicharts | redis | 20.5.0 | +| oci://docker.io/bitnamicharts | postgresql | ^16.3.1 | +| oci://docker.io/bitnamicharts | redis | 20.6.0 | ## Values -- 2.45.3 From de664fc68b3401f55a21232acba25fe204d601b3 Mon Sep 17 00:00:00 2001 From: WrenIX Date: Tue, 17 Dec 2024 17:40:26 +0100 Subject: [PATCH 094/134] fix(mautrix-bridge): update mautrix-bridge --- mautrix-bridge/Chart.yaml | 2 +- mautrix-bridge/README.adoc | 920 ------------------ mautrix-bridge/README.md | 2 +- .../bridge-values/signal/values.yaml | 2 +- .../bridge-values/slack/values.yaml | 2 +- 5 files changed, 4 insertions(+), 924 deletions(-) delete mode 100644 mautrix-bridge/README.adoc diff --git a/mautrix-bridge/Chart.yaml b/mautrix-bridge/Chart.yaml index 07aae71..1ac228b 100644 --- a/mautrix-bridge/Chart.yaml +++ b/mautrix-bridge/Chart.yaml @@ -2,7 +2,7 @@ apiVersion: v2 name: mautrix-bridge description: A Matrix puppeting bridge mautrix. type: application -version: 0.0.14 +version: 0.0.15 maintainers: - name: WrenIX url: https://wrenix.eu diff --git a/mautrix-bridge/README.adoc b/mautrix-bridge/README.adoc deleted file mode 100644 index d5b46f5..0000000 --- a/mautrix-bridge/README.adoc +++ /dev/null @@ -1,920 +0,0 @@ - - -= mautrix-bridge - -image::https://img.shields.io/badge/Version-0.0.14-informational?style=flat-square[Version: 0.0.14] -image::https://img.shields.io/badge/Version-application-informational?style=flat-square[Type: application] -== Maintainers - -.Maintainers -|=== -| Name | Email | Url - -| WrenIX -| -| -|=== - -For use of the bridge: -* **signal**, use the `./bridge-values/signal/values.yaml` -* **slack**, use the `./bridge-values/slack/values.yaml` - -== Usage - -Helm must be installed and setup to your kubernetes cluster to use the charts. -Refer to Helm's https://helm.sh/docs[documentation] to get started. -Once Helm has been set up correctly, fetch the charts as follows: - -[source,bash] ----- -helm pull oci://codeberg.org/wrenix/helm-charts/mautrix-bridge ----- - -You can install a chart release using the following command: - -[source,bash] ----- -helm install mautrix-bridge-release oci://codeberg.org/wrenix/helm-charts/mautrix-bridge --values values.yaml ----- - -To uninstall a chart release use `helm`'s delete command: - -[source,bash] ----- -helm uninstall mautrix-bridge-release ----- - -== Values - -.Values -|=== -| Key | Type | Default | Description - -| affinity -| object -| `{}` -| - -| autoscaling.enabled -| bool -| `false` -| - -| autoscaling.maxReplicas -| int -| `100` -| - -| autoscaling.minReplicas -| int -| `1` -| - -| autoscaling.targetCPUUtilizationPercentage -| int -| `80` -| - -| config.appservice.address -| string -| `"http://localhost:29328"` -| The address that the homeserver can use to connect to this appservice. - -| config.appservice.as_token -| string -| `""` -| - -| config.appservice.async_transactions -| bool -| `false` -| Should incoming events be handled asynchronously? This may be necessary for large public instances with lots of messages going through. However, messages will not be guaranteed to be bridged in the same order they were sent in. - -| config.appservice.bot.avatar -| string -| `"mxc://maunium.net/wPJgTQbZOtpBFmDNkiNEMDUp"` -| - -| config.appservice.bot.displayname -| string -| `"Signal bridge bot"` -| Display name and avatar for bot. Set to "remove" to remove display name/avatar, leave empty to leave display name/avatar as-is. - -| config.appservice.bot.username -| string -| `"signalbot"` -| Username of the appservice bot. - -| config.appservice.ephemeral_events -| bool -| `true` -| Whether or not to receive ephemeral events via appservice transactions. Requires MSC2409 support (i.e. Synapse 1.22+). - -| config.appservice.hostname -| string -| `"0.0.0.0"` -| The hostname and port where this appservice should listen. - -| config.appservice.hs_token -| string -| `""` -| - -| config.appservice.id -| string -| `"signal"` -| The unique ID of this appservice. - -| config.appservice.port -| int -| `29328` -| - -| config.appservice.public_address -| string -| `nil` -| - -| config.appservice.username_template -| string -| `"signal_{{.}}"` -| Localpart template of MXIDs for Signal users. {{.}} is replaced with the internal ID of the Signal user. - -| config.backfill.enabled -| bool -| `false` -| Whether to do backfilling at all. - -| config.backfill.max_catchup_messages -| int -| `500` -| Maximum number of missed messages to backfill after bridge restarts. - -| config.backfill.max_initial_messages -| int -| `50` -| Maximum number of messages to backfill in empty rooms. - -| config.backfill.queue.batch_delay -| int -| `20` -| Delay between batches in seconds. - -| config.backfill.queue.batch_size -| int -| `100` -| Number of messages to backfill in one batch. - -| config.backfill.queue.enabled -| bool -| `false` -| Should the backfill queue be enabled? - -| config.backfill.queue.max_batches -| int -| `-1` -| Maximum number of batches to backfill per portal. If set to -1, all available messages will be backfilled. - -| config.backfill.queue.max_batches_override -| object -| `{}` -| Optional network-specific overrides for max batches. Interpretation of this field depends on the network connector. - -| config.backfill.threads.max_initial_messages -| int -| `50` -| Maximum number of messages to backfill in a new thread. - -| config.backfill.unread_hours_threshold -| int -| `720` -| If a backfilled chat is older than this number of hours, mark it as read even if it's unread on the remote network. - -| config.bridge.bridge_matrix_leave -| bool -| `false` -| Should leaving Matrix rooms be bridged as leaving groups on the remote network? - -| config.bridge.cleanup_on_logout.bad_credentials.private -| string -| `"nothing"` -| - -| config.bridge.cleanup_on_logout.bad_credentials.relayed -| string -| `"nothing"` -| - -| config.bridge.cleanup_on_logout.bad_credentials.shared_has_users -| string -| `"nothing"` -| - -| config.bridge.cleanup_on_logout.bad_credentials.shared_no_users -| string -| `"nothing"` -| - -| config.bridge.cleanup_on_logout.enabled -| bool -| `false` -| Should cleanup on logout be enabled at all? - -| config.bridge.cleanup_on_logout.manual.private -| string -| `"nothing"` -| Action for private portals which will never be shared with other Matrix users. - -| config.bridge.cleanup_on_logout.manual.relayed -| string -| `"nothing"` -| Action for portals with a relay user configured. - -| config.bridge.cleanup_on_logout.manual.shared_has_users -| string -| `"nothing"` -| Action for portals which have other logged-in Matrix users. - -| config.bridge.cleanup_on_logout.manual.shared_no_users -| string -| `"nothing"` -| Action for portals which may be shared, but don't currently have any other Matrix users. - -| config.bridge.command_prefix -| string -| `"!bridge"` -| The prefix for commands. Only required in non-management rooms. - -| config.bridge.mute_only_on_create -| bool -| `true` -| Should room mute status only be synced when creating the portal? Like tags, mutes can't currently be synced back to the remote network. - -| config.bridge.permissions -| object -| `{"*":"relay","@admin:example.com":"admin","example.com":"user"}` -| Permissions for using the bridge. Permitted values: relay - Talk through the relaybot (if enabled), no access otherwise commands - Access to use commands in the bridge, but not login. user - Access to use the bridge with puppeting. admin - Full access, user level with some additional administration tools. Permitted keys: * - All Matrix users domain - All users on that homeserver mxid - Specific user - -| config.bridge.personal_filtering_spaces -| bool -| `true` -| Should the bridge create a space for each login containing the rooms that account is in? - -| config.bridge.private_chat_portal_meta -| bool -| `false` -| Whether the bridge should set names and avatars explicitly for DM portals. This is only necessary when using clients that don't support MSC4171. - -| config.bridge.relay.admin_only -| bool -| `true` -| Should only admins be allowed to set themselves as relay users? - -| config.bridge.relay.default_relays -| list -| `[]` -| List of user login IDs which anyone can set as a relay, as long as the relay user is in the room. - -| config.bridge.relay.displayname_format -| string -| `"{{ .DisambiguatedName }}"` -| For networks that support per-message displaynames (i.e. Slack and Discord), the template for those names. This has all the Sender variables available under message_formats (but without the .Sender prefix). Note that you need to manually remove the displayname from message_formats above. - -| config.bridge.relay.enabled -| bool -| `false` -| Whether relay mode should be allowed. If allowed, `!wa set-relay` can be used to turn any authenticated user into a relaybot for that chat. - -| config.bridge.relay.message_formats -| object -| `{"m.audio":"{{ .Sender.DisambiguatedName }} sent an audio file{{ if .Caption }}: {{ .Caption }}{{ end }}","m.emote":"* {{ .Sender.DisambiguatedName }} {{ .Message }}","m.file":"{{ .Sender.DisambiguatedName }} sent a file{{ if .Caption }}: {{ .Caption }}{{ end }}","m.image":"{{ .Sender.DisambiguatedName }} sent an image{{ if .Caption }}: {{ .Caption }}{{ end }}","m.location":"{{ .Sender.DisambiguatedName }} sent a location{{ if .Caption }}: {{ .Caption }}{{ end }}","m.notice":"{{ .Sender.DisambiguatedName }}: {{ .Message }}","m.text":"{{ .Sender.DisambiguatedName }}: {{ .Message }}","m.video":"{{ .Sender.DisambiguatedName }} sent a video{{ if .Caption }}: {{ .Caption }}{{ end }}"}` -| The formats to use when sending messages via the relaybot. Available variables: .Sender.UserID - The Matrix user ID of the sender. .Sender.Displayname - The display name of the sender (if set). .Sender.RequiresDisambiguation - Whether the sender's name may be confused with the name of another user in the room. .Sender.DisambiguatedName - The disambiguated name of the sender. This will be the displayname if set, plus the user ID in parentheses if the displayname is not unique. If the displayname is not set, this is just the user ID. .Message - The `formatted_body` field of the message. .Caption - The `formatted_body` field of the message, if it's a caption. Otherwise an empty string. .FileName - The name of the file being sent. - -| config.bridge.tag_only_on_create -| bool -| `true` -| Should room tags only be synced when creating the portal? Tags mean things like favorite/pin and archive/low priority. Tags currently can't be synced back to the remote network, so a continuous sync means tagging from Matrix will be undone. - -| config.database.max_conn_idle_time -| string -| `nil` -| Maximum connection idle time and lifetime before they're closed. Disabled if null. Parsed with https://pkg.go.dev/time#ParseDuration - -| config.database.max_conn_lifetime -| string -| `nil` -| - -| config.database.max_idle_conns -| int -| `2` -| - -| config.database.max_open_conns -| int -| `20` -| Maximum number of connections. Mostly relevant for Postgres. - -| config.database.type -| string -| `"postgres"` -| The database type. "sqlite3-fk-wal" and "postgres" are supported. - -| config.database.uri -| string -| `"postgres://user:password@host/database?sslmode=disable"` -| The database URI. SQLite: A raw file path is supported, but `file:?_txlock=immediate` is recommended. https://github.com/mattn/go-sqlite3#connection-string Postgres: Connection string. For example, postgres://user:password@host/database?sslmode=disable To connect via Unix socket, use something like postgres:///dbname?host=/var/run/postgresql - -| config.direct_media.allow_proxy -| bool -| `true` -| If the remote network supports media downloads over HTTP, then the bridge will use MSC3860/MSC3916 media download redirects if the requester supports it. Optionally, you can force redirects and not allow proxying at all by setting this to false. This option does nothing if the remote network does not support media downloads over HTTP. - -| config.direct_media.enabled -| bool -| `false` -| Should custom mxc:// URIs be used instead of reuploading media? - -| config.direct_media.media_id_prefix -| string -| `nil` -| Optionally specify a custom prefix for the media ID part of the MXC URI. - -| config.direct_media.server_key -| string -| `""` -| Matrix server signing key to make the federation tester pass, same format as synapse's .signing.key file. This key is also used to sign the mxc:// URIs to ensure only the bridge can generate them. - -| config.direct_media.server_name -| string -| `"discord-media.example.com"` -| The server name to use for the custom mxc:// URIs. This server name will effectively be a real Matrix server, it just won't implement anything other than media. You must either set up .well-known delegation from this domain to the bridge, or proxy the domain directly to the bridge. - -| config.direct_media.well_known_response -| string -| `nil` -| Optionally a custom .well-known response. This defaults to `server_name:443` - -| config.double_puppet.allow_discovery -| bool -| `false` -| Whether to allow client API URL discovery for other servers. When using this option, users on other servers can use double puppeting even if their server URLs aren't explicitly added to the servers map above. - -| config.double_puppet.secrets -| object -| `{"example.com":"as_token:foobar"}` -| Shared secrets for automatic double puppeting. See https://docs.mau.fi/bridges/general/double-puppeting.html for instructions. - -| config.double_puppet.servers -| object -| `{"example.com":"https://example.com"}` -| Servers to always allow double puppeting from. This is only for other servers and should NOT contain the server the bridge is on. - -| config.encryption.allow -| bool -| `false` -| Allow encryption, work in group chat rooms with e2ee enabled - -| config.encryption.allow_key_sharing -| bool -| `false` -| Enable key sharing? If enabled, key requests for rooms where users are in will be fulfilled. You must use a client that supports requesting keys from other users to use this feature. - -| config.encryption.appservice -| bool -| `false` -| Whether to use MSC2409/MSC3202 instead of /sync long polling for receiving encryption-related data. - -| config.encryption.default -| bool -| `false` -| Default to encryption, force-enable encryption in all portals the bridge creates This will cause the bridge bot to be in private chats for the encryption to work properly. - -| config.encryption.delete_keys -| object -| `{"delete_fully_used_on_decrypt":false,"delete_on_device_delete":false,"delete_outbound_on_ack":false,"delete_outdated_inbound":false,"delete_prev_on_new_session":false,"dont_store_outbound":false,"periodically_delete_expired":false,"ratchet_on_decrypt":false}` -| Options for deleting megolm sessions from the bridge. - -| config.encryption.delete_keys.delete_fully_used_on_decrypt -| bool -| `false` -| Delete fully used keys (index >= max_messages) after decrypting messages. - -| config.encryption.delete_keys.delete_on_device_delete -| bool -| `false` -| Delete megolm sessions received from a device when the device is deleted. - -| config.encryption.delete_keys.delete_outbound_on_ack -| bool -| `false` -| Beeper-specific: delete outbound sessions when hungryserv confirms that the user has uploaded the key to key backup. - -| config.encryption.delete_keys.delete_outdated_inbound -| bool -| `false` -| Delete inbound megolm sessions that don't have the received_at field used for automatic ratcheting and expired session deletion. This is meant as a migration to delete old keys prior to the bridge update. - -| config.encryption.delete_keys.delete_prev_on_new_session -| bool -| `false` -| Delete previous megolm sessions from same device when receiving a new one. - -| config.encryption.delete_keys.dont_store_outbound -| bool -| `false` -| Don't store outbound sessions in the inbound table. - -| config.encryption.delete_keys.periodically_delete_expired -| bool -| `false` -| Periodically delete megolm sessions when 2x max_age has passed since receiving the session. - -| config.encryption.delete_keys.ratchet_on_decrypt -| bool -| `false` -| Ratchet megolm sessions forward after decrypting messages. - -| config.encryption.pickle_key -| string -| `nil` -| - -| config.encryption.plaintext_mentions -| string -| `nil` -| - -| config.encryption.require -| bool -| `false` -| Require encryption, drop any unencrypted messages. - -| config.encryption.rotation.disable_device_change_key_rotation -| bool -| `false` -| Disable rotating keys when a user's devices change? You should not enable this option unless you understand all the implications. - -| config.encryption.rotation.enable_custom -| bool -| `false` -| Enable custom Megolm room key rotation settings. Note that these settings will only apply to rooms created after this option is set. - -| config.encryption.rotation.messages -| int -| `100` -| The maximum number of messages that should be sent with a given a session before changing it. The Matrix spec recommends 100 as the default. - -| config.encryption.rotation.milliseconds -| int -| `604800000` -| The maximum number of milliseconds a session should be used before changing it. The Matrix spec recommends 604800000 (a week) as the default. - -| config.encryption.verification_levels.receive -| string -| `"unverified"` -| Minimum level for which the bridge should send keys to when bridging messages from Signal to Matrix. - -| config.encryption.verification_levels.send -| string -| `"unverified"` -| Minimum level that the bridge should accept for incoming Matrix messages. - -| config.encryption.verification_levels.share -| string -| `"cross-signed-tofu"` -| Minimum level that the bridge should require for accepting key requests. - -| config.homeserver.address -| string -| `"https://matrix.example.com"` -| The address that this appservice can use to connect to the homeserver. - -| config.homeserver.async_media -| bool -| `false` -| Does the homeserver support https://github.com/matrix-org/matrix-spec-proposals/pull/2246? - -| config.homeserver.domain -| string -| `"example.com"` -| The domain of the homeserver (also known as server_name, used for MXIDs, etc). - -| config.homeserver.message_send_checkpoint_endpoint -| string -| `nil` -| Endpoint for reporting per-message status. - -| config.homeserver.ping_interval_seconds -| int -| `0` -| How often should the websocket be pinged? Pinging will be disabled if this is zero. - -| config.homeserver.public_address -| string -| `nil` -| - -| config.homeserver.software -| string -| `"standard"` -| What software is the homeserver running? Standard Matrix homeservers like Synapse, Dendrite and Conduit should just use "standard" here. - -| config.homeserver.status_endpoint -| string -| `nil` -| The URL to push real-time bridge status to. If set, the bridge will make POST requests to this URL whenever a user's Signal connection state changes. The bridge will use the appservice as_token to authorize requests. - -| config.homeserver.websocket -| bool -| `false` -| Should the bridge use a websocket for connecting to the homeserver? The server side is currently not documented anywhere and is only implemented by mautrix-wsproxy, mautrix-asmux (deprecated), and hungryserv (proprietary). - -| config.homeserver.websocket_proxy -| string -| `""` -| - -| config.logging.min_level -| string -| `"warn"` -| - -| config.logging.writers[0].format -| string -| `"json"` -| - -| config.logging.writers[0].type -| string -| `"stdout"` -| - -| config.management_room_text.additional_help -| string -| `""` -| Optional extra text sent when joining a management room. - -| config.management_room_text.welcome -| string -| `"Hello, I'm a Signal bridge bot."` -| Sent when joining a room. - -| config.management_room_text.welcome_connected -| string -| `"Use `help` for help."` -| Sent when joining a management room and the user is already logged in. - -| config.management_room_text.welcome_unconnected -| string -| `"Use `help` for help or `login` to log in."` -| Sent when joining a management room and the user is not logged in. - -| config.matrix.delivery_receipts -| bool -| `false` -| Should the bridge send a read receipt from the bridge bot when a message has been sent to Signal? - -| config.matrix.federate_rooms -| bool -| `true` -| Whether or not created rooms should have federation enabled. If false, created portal rooms will never be federated. - -| config.matrix.message_error_notices -| bool -| `true` -| Whether the bridge should send error notices via m.notice events when a message fails to bridge. - -| config.matrix.message_status_events -| bool -| `false` -| Whether the bridge should send the message status as a custom com.beeper.message_send_status event. - -| config.matrix.sync_direct_chat_list -| bool -| `false` -| Should the bridge update the m.direct account data event when double puppeting is enabled. Note that updating the m.direct event is not atomic (except with mautrix-asmux) and is therefore prone to race conditions. - -| config.provisioning.debug_endpoints -| bool -| `false` -| Enable debug API at /debug with provisioning authentication. - -| config.provisioning.prefix -| string -| `"/_matrix/provision"` -| Prefix for the provisioning API paths. - -| config.provisioning.shared_secret -| string -| `"generate"` -| Shared secret for authentication. If set to "generate", a random secret will be generated, or if set to "disable", the provisioning API will be disabled. - -| config.public_media.enabled -| bool -| `false` -| Should public media be enabled at all? The public_address field under the appservice section MUST be set when enabling public media. - -| config.public_media.expiry -| int -| `0` -| Number of seconds that public media URLs are valid for. If set to 0, URLs will never expire. - -| config.public_media.hash_length -| int -| `32` -| Length of hash to use for public media URLs. Must be between 0 and 32. - -| config.public_media.signing_key -| string -| `"generate"` -| A key for signing public media URLs. If set to "generate", a random key will be generated. - -| config.signal.device_name -| string -| `"mautrix-signal"` -| Default device name that shows up in the Signal app. - -| config.signal.displayname_template -| string -| `"{{ printf \"%s (%s) %s\" (or .ProfileName .ContactName \"Unknown user\") (or .PhoneNumber \"Unknown number\" (or .AboutEmoji \"\")}}"` -| Displayname template for Signal users. This is also used as the room name in DMs if private_chat_portal_meta is enabled. {{.ProfileName}} - The Signal profile name set by the user. {{.ContactName}} - The name for the user from your phone's contact list. This is not safe on multi-user instances. {{.PhoneNumber}} - The phone number of the user. {{.UUID}} - The UUID of the Signal user. {{.AboutEmoji}} - The emoji set by the user in their profile. - -| config.signal.location_format -| string -| `"https://www.openstreetmap.org/?mlat=%[1]s&mlon=%[2]s"` -| - -| config.signal.note_to_self_avatar -| string -| `"mxc://maunium.net/REBIVrqjZwmaWpssCZpBlmlL"` -| - -| config.signal.number_in_topic -| bool -| `true` -| Should the Signal user's phone number be included in the room topic in private chat portal rooms? - -| config.signal.sync_contacts_on_startup -| bool -| `true` -| Should the bridge request the user's contact list from the phone on startup? - -| config.signal.use_contact_avatars -| bool -| `false` -| Should avatars from the user's contact list be used? This is not safe on multi-user instances. - -| config.signal.use_outdated_profiles -| bool -| `false` -| Should the bridge sync ghost user info even if profile fetching fails? This is not safe on multi-user instances. - -| fullnameOverride -| string -| `""` -| - -| global.image.pullPolicy -| string -| `nil` -| if set it will overwrite all pullPolicy - -| global.image.registry -| string -| `nil` -| if set it will overwrite all registry entries - -| image.pullPolicy -| string -| `"IfNotPresent"` -| - -| image.registry -| string -| `"dock.mau.dev"` -| - -| image.repository -| string -| `""` -| - -| image.tag -| string -| `""` -| - -| imagePullSecrets -| list -| `[]` -| - -| ingress.annotations -| object -| `{}` -| - -| ingress.className -| string -| `""` -| - -| ingress.enabled -| bool -| `false` -| - -| ingress.hosts[0].host -| string -| `"chart-example.local"` -| - -| ingress.hosts[0].paths[0].path -| string -| `"/"` -| - -| ingress.hosts[0].paths[0].pathType -| string -| `"ImplementationSpecific"` -| - -| ingress.tls -| list -| `[]` -| - -| livenessProbe.httpGet.path -| string -| `"/_matrix/mau/live"` -| - -| livenessProbe.httpGet.port -| string -| `"http"` -| - -| nameOverride -| string -| `""` -| - -| nodeSelector -| object -| `{}` -| - -| persistence.accessMode -| string -| `"ReadWriteOnce"` -| accessMode - -| persistence.annotations -| object -| `{}` -| - -| persistence.enabled -| bool -| `true` -| Enable persistence using Persistent Volume Claims ref: http://kubernetes.io/docs/user-guide/persistent-volumes/ - -| persistence.existingClaim -| string -| `nil` -| A manually managed Persistent Volume and Claim Requires persistence.enabled: true If defined, PVC must be created manually before volume will be bound - -| persistence.hostPath -| string -| `nil` -| Do not create an PVC, direct use hostPath in Pod - -| persistence.size -| string -| `"10Gi"` -| size - -| persistence.storageClass -| string -| `nil` -| Persistent Volume Storage Class If defined, storageClassName: If set to "-", storageClassName: "", which disables dynamic provisioning If undefined (the default) or set to null, no storageClassName spec is set, choosing the default provisioner. (gp2 on AWS, standard on GKE, AWS & OpenStack) - -| podAnnotations -| object -| `{}` -| - -| podLabels -| object -| `{}` -| - -| podSecurityContext -| object -| `{}` -| - -| readinessProbe.httpGet.path -| string -| `"/_matrix/mau/ready"` -| - -| readinessProbe.httpGet.port -| string -| `"http"` -| - -| registration."de.sorunome.msc2409.push_ephemeral" -| bool -| `true` -| - -| registration.namespaces.users[0].exclusive -| bool -| `true` -| - -| registration.namespaces.users[0].regex -| string -| `"^@signalbot:example.org$"` -| - -| registration.namespaces.users[1].exclusive -| bool -| `true` -| - -| registration.namespaces.users[1].regex -| string -| `"^@signal_.*:example.org$"` -| - -| registration.push_ephemeral -| bool -| `true` -| - -| registration.rate_limited -| bool -| `false` -| - -| replicaCount -| int -| `1` -| - -| resources -| object -| `{}` -| - -| securityContext -| object -| `{}` -| - -| service.type -| string -| `"ClusterIP"` -| - -| serviceAccount.annotations -| object -| `{}` -| - -| serviceAccount.automount -| bool -| `false` -| - -| serviceAccount.create -| bool -| `false` -| - -| serviceAccount.name -| string -| `""` -| - -| tolerations -| list -| `[]` -| - -| volumeMounts -| list -| `[]` -| - -| volumes -| list -| `[]` -| -|=== - -Autogenerated from chart metadata using https://github.com/norwoodj/helm-docs[helm-docs] - diff --git a/mautrix-bridge/README.md b/mautrix-bridge/README.md index 25c00c6..0a31bdd 100644 --- a/mautrix-bridge/README.md +++ b/mautrix-bridge/README.md @@ -7,7 +7,7 @@ description: "A Matrix puppeting bridge mautrix." # mautrix-bridge -![Version: 0.0.14](https://img.shields.io/badge/Version-0.0.14-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) +![Version: 0.0.15](https://img.shields.io/badge/Version-0.0.15-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) A Matrix puppeting bridge mautrix. diff --git a/mautrix-bridge/bridge-values/signal/values.yaml b/mautrix-bridge/bridge-values/signal/values.yaml index 71e00a5..eddff59 100644 --- a/mautrix-bridge/bridge-values/signal/values.yaml +++ b/mautrix-bridge/bridge-values/signal/values.yaml @@ -1,6 +1,6 @@ image: repository: mautrix/signal - tag: "v0.7.3" + tag: "v0.7.4" config: bridge: diff --git a/mautrix-bridge/bridge-values/slack/values.yaml b/mautrix-bridge/bridge-values/slack/values.yaml index 2db34d6..2057b0f 100644 --- a/mautrix-bridge/bridge-values/slack/values.yaml +++ b/mautrix-bridge/bridge-values/slack/values.yaml @@ -1,6 +1,6 @@ image: repository: mautrix/slack - tag: "v0.1.3" + tag: "v0.1.4" config: bridge: -- 2.45.3 From ece35cce9c479735bb1ba2616e17aa1f35455dc1 Mon Sep 17 00:00:00 2001 From: WrenIX Date: Mon, 23 Dec 2024 12:03:17 +0100 Subject: [PATCH 095/134] fix(forgejo-runner): update dependencies --- forgejo-runner/Chart.yaml | 2 +- forgejo-runner/README.md | 6 +++--- forgejo-runner/values.yaml | 4 ++-- 3 files changed, 6 insertions(+), 6 deletions(-) diff --git a/forgejo-runner/Chart.yaml b/forgejo-runner/Chart.yaml index 8a0fee0..88d94e4 100644 --- a/forgejo-runner/Chart.yaml +++ b/forgejo-runner/Chart.yaml @@ -2,7 +2,7 @@ apiVersion: v2 name: forgejo-runner description: Deploy runner for an forgejo instance (default codeberg.org) type: application -version: "0.4.6" +version: "0.4.7" # renovate: image=code.forgejo.org/forgejo/runner appVersion: "5.0.4" maintainers: diff --git a/forgejo-runner/README.md b/forgejo-runner/README.md index 66eb3ac..3871194 100644 --- a/forgejo-runner/README.md +++ b/forgejo-runner/README.md @@ -7,7 +7,7 @@ description: "Deploy runner for an forgejo instance (default codeberg.org)" # forgejo-runner -![Version: 0.4.6](https://img.shields.io/badge/Version-0.4.6-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 5.0.4](https://img.shields.io/badge/AppVersion-5.0.4-informational?style=flat-square) +![Version: 0.4.7](https://img.shields.io/badge/Version-0.4.7-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 5.0.4](https://img.shields.io/badge/AppVersion-5.0.4-informational?style=flat-square) Deploy runner for an forgejo instance (default codeberg.org) @@ -119,7 +119,7 @@ helm uninstall forgejo-runner-release | dind.image.pullPolicy | string | `"IfNotPresent"` | | | dind.image.registry | string | `"docker.io"` | | | dind.image.repository | string | `"library/docker"` | | -| dind.image.tag | string | `"27.4.0-dind"` | | +| dind.image.tag | string | `"27.4.1-dind"` | | | extraEnvVars | list | `[]` | Additional environment variables to be set on runner container Example: extraEnvVars: - name: FOO value: "bar" | | fullnameOverride | string | `""` | | | image.pullPolicy | string | `"IfNotPresent"` | | @@ -130,7 +130,7 @@ helm uninstall forgejo-runner-release | kubectl.image.pullPolicy | string | `"IfNotPresent"` | | | kubectl.image.registry | string | `"docker.io"` | | | kubectl.image.repository | string | `"bitnami/kubectl"` | | -| kubectl.image.tag | string | `"1.31.4"` | | +| kubectl.image.tag | string | `"1.32.0"` | | | nameOverride | string | `""` | | | nodeSelector | object | `{}` | | | podAnnotations | object | `{}` | | diff --git a/forgejo-runner/values.yaml b/forgejo-runner/values.yaml index 2003933..cb0b17f 100644 --- a/forgejo-runner/values.yaml +++ b/forgejo-runner/values.yaml @@ -144,13 +144,13 @@ dind: registry: docker.io repository: library/docker pullPolicy: IfNotPresent - tag: 27.4.0-dind + tag: 27.4.1-dind kubectl: image: registry: docker.io repository: bitnami/kubectl pullPolicy: IfNotPresent - tag: 1.31.4 + tag: 1.32.0 serviceAccount: # Specifies whether a service account should be created -- 2.45.3 From 8d6d7560a87f1aed7522fc5e492d2abfa3145fcb Mon Sep 17 00:00:00 2001 From: WrenIX Date: Mon, 23 Dec 2024 12:04:19 +0100 Subject: [PATCH 096/134] fix(ntfy): update dependencies --- ntfy/Chart.yaml | 2 +- ntfy/README.md | 4 ++-- ntfy/values.yaml | 2 +- 3 files changed, 4 insertions(+), 4 deletions(-) diff --git a/ntfy/Chart.yaml b/ntfy/Chart.yaml index 02c1304..032b8cf 100644 --- a/ntfy/Chart.yaml +++ b/ntfy/Chart.yaml @@ -3,7 +3,7 @@ name: ntfy description: A Helm chart for Kubernetes icon: https://github.com/binwiederhier/ntfy/raw/main/web/public/static/images/pwa-512x512.png type: application -version: "0.4.7" +version: "0.4.8" # renovate: image=docker.io/binwiederhier/ntfy appVersion: "2.11.0" maintainers: diff --git a/ntfy/README.md b/ntfy/README.md index 73c3c18..b88c448 100644 --- a/ntfy/README.md +++ b/ntfy/README.md @@ -7,7 +7,7 @@ description: "A Helm chart for Kubernetes" # ntfy -![Version: 0.4.7](https://img.shields.io/badge/Version-0.4.7-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 2.11.0](https://img.shields.io/badge/AppVersion-2.11.0-informational?style=flat-square) +![Version: 0.4.8](https://img.shields.io/badge/Version-0.4.8-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 2.11.0](https://img.shields.io/badge/AppVersion-2.11.0-informational?style=flat-square) A Helm chart for Kubernetes @@ -65,7 +65,7 @@ helm uninstall ntfy-release | ingress.hosts[0].paths[0].path | string | `"/"` | | | ingress.hosts[0].paths[0].pathType | string | `"ImplementationSpecific"` | | | ingress.tls | list | `[]` | | -| kubectl.image | object | `{"pullPolicy":"IfNotPresent","registry":"docker.io","repository":"bitnami/kubectl","tag":"1.31.4"}` | image needed for setup (store generated VAPID / WebPush keys) | +| kubectl.image | object | `{"pullPolicy":"IfNotPresent","registry":"docker.io","repository":"bitnami/kubectl","tag":"1.32.0"}` | image needed for setup (store generated VAPID / WebPush keys) | | nameOverride | string | `""` | | | networkPolicy.egress.enabled | bool | `true` | activate egress no networkpolicy | | networkPolicy.egress.extra | list | `[]` | egress rules | diff --git a/ntfy/values.yaml b/ntfy/values.yaml index bf99387..10e51ec 100644 --- a/ntfy/values.yaml +++ b/ntfy/values.yaml @@ -16,7 +16,7 @@ kubectl: registry: docker.io repository: bitnami/kubectl pullPolicy: IfNotPresent - tag: 1.31.4 + tag: 1.32.0 imagePullSecrets: [] nameOverride: "" -- 2.45.3 From 742b680c63604d43be41824042d325d06c29f5c7 Mon Sep 17 00:00:00 2001 From: WrenIX Date: Mon, 23 Dec 2024 12:04:56 +0100 Subject: [PATCH 097/134] fix(home-assistant): update dependencies --- home-assistant/Chart.yaml | 2 +- home-assistant/README.md | 4 ++-- home-assistant/values.yaml | 2 +- 3 files changed, 4 insertions(+), 4 deletions(-) diff --git a/home-assistant/Chart.yaml b/home-assistant/Chart.yaml index 853fa12..dc6a3bf 100644 --- a/home-assistant/Chart.yaml +++ b/home-assistant/Chart.yaml @@ -3,7 +3,7 @@ name: home-assistant description: Home Assistant with tooling to run on an k3s pi icon: https://www.home-assistant.io/images/favicon-192x192.png type: application -version: 0.2.11 +version: 0.2.12 # renovate: image=ghcr.io/home-assistant/home-assistant appVersion: "2024.12.3" maintainers: diff --git a/home-assistant/README.md b/home-assistant/README.md index 29e42d8..cbf9f4b 100644 --- a/home-assistant/README.md +++ b/home-assistant/README.md @@ -7,7 +7,7 @@ description: "Home Assistant with tooling to run on an k3s pi" # home-assistant -![Version: 0.2.11](https://img.shields.io/badge/Version-0.2.11-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 2024.12.3](https://img.shields.io/badge/AppVersion-2024.12.3-informational?style=flat-square) +![Version: 0.2.12](https://img.shields.io/badge/Version-0.2.12-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 2024.12.3](https://img.shields.io/badge/AppVersion-2024.12.3-informational?style=flat-square) Home Assistant with tooling to run on an k3s pi @@ -70,7 +70,7 @@ helm uninstall home-assistant-release | nats.image.pullPolicy | string | `"IfNotPresent"` | | | nats.image.registry | string | `"docker.io"` | | | nats.image.repository | string | `"library/nats"` | | -| nats.image.tag | string | `"2.10.23-scratch"` | | +| nats.image.tag | string | `"2.10.24-scratch"` | | | nats.livenessProbe.tcpSocket.port | string | `"nats"` | | | nats.readinessProbe.tcpSocket.port | string | `"nats"` | | | nats.resources.limits.cpu | string | `"100m"` | | diff --git a/home-assistant/values.yaml b/home-assistant/values.yaml index 3656a95..a3e051c 100644 --- a/home-assistant/values.yaml +++ b/home-assistant/values.yaml @@ -24,7 +24,7 @@ nats: registry: docker.io repository: library/nats pullPolicy: IfNotPresent - tag: "2.10.23-scratch" + tag: "2.10.24-scratch" service: port: nats: 4222 -- 2.45.3 From ef6a0315aff3a65a281a4278c5565000984d944f Mon Sep 17 00:00:00 2001 From: WrenIX Date: Mon, 23 Dec 2024 12:07:24 +0100 Subject: [PATCH 098/134] fix(matrix-synapse): update redis and postgresql --- matrix-synapse/Chart.lock | 8 ++++---- matrix-synapse/Chart.yaml | 4 ++-- matrix-synapse/README.md | 4 ++-- 3 files changed, 8 insertions(+), 8 deletions(-) diff --git a/matrix-synapse/Chart.lock b/matrix-synapse/Chart.lock index 090b707..72aca1a 100644 --- a/matrix-synapse/Chart.lock +++ b/matrix-synapse/Chart.lock @@ -1,9 +1,9 @@ dependencies: - name: postgresql repository: oci://docker.io/bitnamicharts - version: 16.3.1 + version: 16.3.4 - name: redis repository: oci://docker.io/bitnamicharts - version: 20.6.0 -digest: sha256:3120275674c549a4083939646d931cfb718447511da021bd7b46cb0fed1dbefb -generated: "2024-12-17T14:14:44.769791567+01:00" + version: 20.6.1 +digest: sha256:665df7526ab6a366a2d588fd0269eafb28b8b798e16e2df0c61b43095aa97219 +generated: "2024-12-23T12:06:19.941471462+01:00" diff --git a/matrix-synapse/Chart.yaml b/matrix-synapse/Chart.yaml index 3666f99..7a5263d 100644 --- a/matrix-synapse/Chart.yaml +++ b/matrix-synapse/Chart.yaml @@ -4,7 +4,7 @@ name: matrix-synapse description: Matrix reference homeserver icon: https://matrix.org/images/matrix-logo.svg type: application -version: "1.0.6" +version: "1.0.7" # renovate: image=ghcr.io/element-hq/synapse appVersion: 1.121.1 maintainers: @@ -17,6 +17,6 @@ dependencies: repository: "oci://docker.io/bitnamicharts" condition: postgresql.enabled - name: redis - version: "20.6.0" + version: "20.6.1" repository: "oci://docker.io/bitnamicharts" condition: redis.enabled diff --git a/matrix-synapse/README.md b/matrix-synapse/README.md index dc7f7cf..802a8cd 100644 --- a/matrix-synapse/README.md +++ b/matrix-synapse/README.md @@ -7,7 +7,7 @@ description: "Matrix reference homeserver" # matrix-synapse -![Version: 1.0.6](https://img.shields.io/badge/Version-1.0.6-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 1.121.1](https://img.shields.io/badge/AppVersion-1.121.1-informational?style=flat-square) +![Version: 1.0.7](https://img.shields.io/badge/Version-1.0.7-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 1.121.1](https://img.shields.io/badge/AppVersion-1.121.1-informational?style=flat-square) Matrix reference homeserver @@ -44,7 +44,7 @@ helm uninstall matrix-synapse-release | Repository | Name | Version | |------------|------|---------| | oci://docker.io/bitnamicharts | postgresql | ^16.3.1 | -| oci://docker.io/bitnamicharts | redis | 20.6.0 | +| oci://docker.io/bitnamicharts | redis | 20.6.1 | ## Values -- 2.45.3 From 5dc32f9722258d7247bc0f144bc153e21eb56f07 Mon Sep 17 00:00:00 2001 From: WrenIX Date: Mon, 23 Dec 2024 12:07:33 +0100 Subject: [PATCH 099/134] fix(pretix): update redis and postgresql --- pretix/Chart.lock | 8 ++++---- pretix/Chart.yaml | 4 ++-- pretix/README.md | 8 ++++---- 3 files changed, 10 insertions(+), 10 deletions(-) diff --git a/pretix/Chart.lock b/pretix/Chart.lock index 308c0e5..ea43fe0 100644 --- a/pretix/Chart.lock +++ b/pretix/Chart.lock @@ -1,9 +1,9 @@ dependencies: - name: postgresql repository: oci://docker.io/bitnamicharts - version: 16.3.2 + version: 16.3.4 - name: redis repository: oci://docker.io/bitnamicharts - version: 20.6.0 -digest: sha256:0c91ccf00207fb231290572b9e516212e5bf518511d3b887409111ea568b61c9 -generated: "2024-12-17T14:17:08.440769741+01:00" + version: 20.6.1 +digest: sha256:665df7526ab6a366a2d588fd0269eafb28b8b798e16e2df0c61b43095aa97219 +generated: "2024-12-23T12:06:39.521620501+01:00" diff --git a/pretix/Chart.yaml b/pretix/Chart.yaml index bdd8ef1..6b5833e 100644 --- a/pretix/Chart.yaml +++ b/pretix/Chart.yaml @@ -2,7 +2,7 @@ apiVersion: v2 name: pretix description: Reinventing ticket presales, one ticket at a time. type: application -version: 0.1.1 +version: 0.1.2 # renovate: image=docker.io/pretix/standalone appVersion: "2024.11.0" keywords: @@ -20,6 +20,6 @@ dependencies: repository: "oci://docker.io/bitnamicharts" condition: postgresql.enabled - name: redis - version: "20.6.0" + version: "20.6.1" repository: "oci://docker.io/bitnamicharts" condition: redis.enabled diff --git a/pretix/README.md b/pretix/README.md index c81e383..62bb464 100644 --- a/pretix/README.md +++ b/pretix/README.md @@ -7,7 +7,7 @@ description: "Reinventing ticket presales, one ticket at a time." # pretix -![Version: 0.1.1](https://img.shields.io/badge/Version-0.1.1-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 2024.11.0](https://img.shields.io/badge/AppVersion-2024.11.0-informational?style=flat-square) +![Version: 0.1.2](https://img.shields.io/badge/Version-0.1.2-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 2024.11.0](https://img.shields.io/badge/AppVersion-2024.11.0-informational?style=flat-square) Reinventing ticket presales, one ticket at a time. @@ -50,7 +50,7 @@ helm uninstall pretix-release | Repository | Name | Version | |------------|------|---------| | oci://docker.io/bitnamicharts | postgresql | ^16.3.1 | -| oci://docker.io/bitnamicharts | redis | 20.6.0 | +| oci://docker.io/bitnamicharts | redis | 20.6.1 | ## Values @@ -154,7 +154,7 @@ helm uninstall pretix-release Autogenerated from chart metadata using [helm-docs](https://github.com/norwoodj/helm-docs) # pretix -![Version: 0.1.1](https://img.shields.io/badge/Version-0.1.1-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 2024.11.0](https://img.shields.io/badge/AppVersion-2024.11.0-informational?style=flat-square) +![Version: 0.1.2](https://img.shields.io/badge/Version-0.1.2-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 2024.11.0](https://img.shields.io/badge/AppVersion-2024.11.0-informational?style=flat-square) Reinventing ticket presales, one ticket at a time. @@ -175,7 +175,7 @@ Reinventing ticket presales, one ticket at a time. | Repository | Name | Version | |------------|------|---------| | oci://docker.io/bitnamicharts | postgresql | ^16.3.1 | -| oci://docker.io/bitnamicharts | redis | 20.6.0 | +| oci://docker.io/bitnamicharts | redis | 20.6.1 | ## Values -- 2.45.3 From 033e49c5c0da32eaed1b7d51ee1872a69ccdc738 Mon Sep 17 00:00:00 2001 From: WrenIX Date: Mon, 23 Dec 2024 12:09:16 +0100 Subject: [PATCH 100/134] fix(home-assistant): update appVersion --- home-assistant/Chart.yaml | 4 ++-- home-assistant/README.md | 2 +- 2 files changed, 3 insertions(+), 3 deletions(-) diff --git a/home-assistant/Chart.yaml b/home-assistant/Chart.yaml index dc6a3bf..92ab999 100644 --- a/home-assistant/Chart.yaml +++ b/home-assistant/Chart.yaml @@ -3,9 +3,9 @@ name: home-assistant description: Home Assistant with tooling to run on an k3s pi icon: https://www.home-assistant.io/images/favicon-192x192.png type: application -version: 0.2.12 +version: 0.2.13 # renovate: image=ghcr.io/home-assistant/home-assistant -appVersion: "2024.12.3" +appVersion: "2024.12.5" maintainers: - name: WrenIX url: https://wrenix.eu diff --git a/home-assistant/README.md b/home-assistant/README.md index cbf9f4b..17dc2aa 100644 --- a/home-assistant/README.md +++ b/home-assistant/README.md @@ -7,7 +7,7 @@ description: "Home Assistant with tooling to run on an k3s pi" # home-assistant -![Version: 0.2.12](https://img.shields.io/badge/Version-0.2.12-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 2024.12.3](https://img.shields.io/badge/AppVersion-2024.12.3-informational?style=flat-square) +![Version: 0.2.13](https://img.shields.io/badge/Version-0.2.13-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 2024.12.5](https://img.shields.io/badge/AppVersion-2024.12.5-informational?style=flat-square) Home Assistant with tooling to run on an k3s pi -- 2.45.3 From 6ca7741a915e5fcd8c9a018d38954a5bf70296c8 Mon Sep 17 00:00:00 2001 From: WrenIX Date: Fri, 3 Jan 2025 13:42:52 +0100 Subject: [PATCH 101/134] fix(grampsweb): update appVersion --- grampsweb/Chart.yaml | 4 ++-- grampsweb/README.md | 2 +- 2 files changed, 3 insertions(+), 3 deletions(-) diff --git a/grampsweb/Chart.yaml b/grampsweb/Chart.yaml index ec0590c..14b651e 100644 --- a/grampsweb/Chart.yaml +++ b/grampsweb/Chart.yaml @@ -3,9 +3,9 @@ name: grampsweb description: A Helm chart for gramps web icon: https://raw.githubusercontent.com/gramps-project/Gramps.js/main/images/icon512.png type: application -version: "0.2.5" +version: "0.2.6" # renovate: image=ghcr.io/gramps-project/grampsweb -appVersion: "24.12.1" +appVersion: "24.12.2" maintainers: - name: WrenIX url: https://wrenix.eu diff --git a/grampsweb/README.md b/grampsweb/README.md index c773d6f..7d4b0d4 100644 --- a/grampsweb/README.md +++ b/grampsweb/README.md @@ -7,7 +7,7 @@ description: "A Helm chart for gramps web" # grampsweb -![Version: 0.2.5](https://img.shields.io/badge/Version-0.2.5-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 24.12.1](https://img.shields.io/badge/AppVersion-24.12.1-informational?style=flat-square) +![Version: 0.2.6](https://img.shields.io/badge/Version-0.2.6-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 24.12.2](https://img.shields.io/badge/AppVersion-24.12.2-informational?style=flat-square) A Helm chart for gramps web -- 2.45.3 From fc7a229fcc550e27e7b597bdebecc3e847d4e2d3 Mon Sep 17 00:00:00 2001 From: WrenIX Date: Fri, 3 Jan 2025 14:18:54 +0100 Subject: [PATCH 102/134] feat(autopush): init - WIP --- autopush/.gitignore | 2 + autopush/.helmignore | 22 ++ autopush/Chart.lock | 6 + autopush/Chart.yaml | 17 ++ autopush/README.md | 149 ++++++++++ autopush/_docs.gotmpl | 15 + autopush/ci/ct-empty-values.yaml | 0 autopush/ci/ct-monitor-values.yaml | 6 + autopush/container/Containerfile | 15 + autopush/container/requirements.txt | 1 + autopush/container/setup.py | 5 + autopush/templates/_helpers.tpl | 93 ++++++ .../templates/autoconnect/deployment.yaml | 91 ++++++ autopush/templates/autoconnect/service.yaml | 22 ++ .../templates/autoendpoint/deployment.yaml | 88 ++++++ autopush/templates/autoendpoint/service.yaml | 22 ++ autopush/templates/ingress.yaml | 41 +++ autopush/templates/secret.yaml | 45 +++ autopush/templates/serviceaccount.yaml | 13 + autopush/templates/servicemonitor.yaml | 17 ++ autopush/values.yaml | 279 ++++++++++++++++++ 21 files changed, 949 insertions(+) create mode 100644 autopush/.gitignore create mode 100644 autopush/.helmignore create mode 100644 autopush/Chart.lock create mode 100644 autopush/Chart.yaml create mode 100644 autopush/README.md create mode 100644 autopush/_docs.gotmpl create mode 100644 autopush/ci/ct-empty-values.yaml create mode 100644 autopush/ci/ct-monitor-values.yaml create mode 100644 autopush/container/Containerfile create mode 100644 autopush/container/requirements.txt create mode 100644 autopush/container/setup.py create mode 100644 autopush/templates/_helpers.tpl create mode 100644 autopush/templates/autoconnect/deployment.yaml create mode 100644 autopush/templates/autoconnect/service.yaml create mode 100644 autopush/templates/autoendpoint/deployment.yaml create mode 100644 autopush/templates/autoendpoint/service.yaml create mode 100644 autopush/templates/ingress.yaml create mode 100644 autopush/templates/secret.yaml create mode 100644 autopush/templates/serviceaccount.yaml create mode 100644 autopush/templates/servicemonitor.yaml create mode 100644 autopush/values.yaml diff --git a/autopush/.gitignore b/autopush/.gitignore new file mode 100644 index 0000000..31014c3 --- /dev/null +++ b/autopush/.gitignore @@ -0,0 +1,2 @@ +charts/*.tgz +values_test.yaml diff --git a/autopush/.helmignore b/autopush/.helmignore new file mode 100644 index 0000000..50af031 --- /dev/null +++ b/autopush/.helmignore @@ -0,0 +1,22 @@ +# Patterns to ignore when building packages. +# This supports shell glob matching, relative path matching, and +# negation (prefixed with !). Only one pattern per line. +.DS_Store +# Common VCS dirs +.git/ +.gitignore +.bzr/ +.bzrignore +.hg/ +.hgignore +.svn/ +# Common backup files +*.swp +*.bak +*.tmp +*~ +# Various IDEs +.project +.idea/ +*.tmproj +.vscode/ diff --git a/autopush/Chart.lock b/autopush/Chart.lock new file mode 100644 index 0000000..50a66e1 --- /dev/null +++ b/autopush/Chart.lock @@ -0,0 +1,6 @@ +dependencies: +- name: redis + repository: oci://docker.io/bitnamicharts + version: 20.6.1 +digest: sha256:c792eb1f889b58718def58d4bb80d370a1f5ddfc093e5902ab3d87441a4a769f +generated: "2025-01-03T14:55:39.364820359+01:00" diff --git a/autopush/Chart.yaml b/autopush/Chart.yaml new file mode 100644 index 0000000..b6fb901 --- /dev/null +++ b/autopush/Chart.yaml @@ -0,0 +1,17 @@ +apiVersion: v2 +name: autopush +description: A Helm chart for Kubernetes +icon: +type: application +version: 0.0.1 +# renovate: image=docker.io/mozilla-services/autopush-rs +appVersion: "1.72.2" +maintainers: + - name: WrenIX + url: https://wrenix.eu + +dependencies: + - name: redis + version: "20.6.1" + repository: "oci://docker.io/bitnamicharts" + condition: redis.internal diff --git a/autopush/README.md b/autopush/README.md new file mode 100644 index 0000000..c5fa170 --- /dev/null +++ b/autopush/README.md @@ -0,0 +1,149 @@ +--- +title: "autopush" + +description: "A Helm chart for Kubernetes" + +--- + +# autopush + +![Version: 0.0.1](https://img.shields.io/badge/Version-0.0.1-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 1.72.2](https://img.shields.io/badge/AppVersion-1.72.2-informational?style=flat-square) + +A Helm chart for Kubernetes + +## Maintainers + +| Name | Email | Url | +| ---- | ------ | --- | +| WrenIX | | | + += Beta + +WARNING +==== +We let it run in production, but it is not stable / complete. + +TODOs: + - [ ] official container with redis backend, see: https://github.com/mozilla-services/autopush-rs/pull/813 + - [ ] automatical create CRYPT_KEY (instatt of key) + - [ ] better ingress / host name support + - [ ] Improve monitoring with alerts and grafana dashboard + +==== + +## Usage + +Helm must be installed and setup to your kubernetes cluster to use the charts. +Refer to Helm's [documentation](https://helm.sh/docs) to get started. +Once Helm has been set up correctly, fetch the charts as follows: + +```bash +helm pull oci://codeberg.org/wrenix/helm-charts/autopush +``` + +You can install a chart release using the following command: + +```bash +helm install autopush-release oci://codeberg.org/wrenix/helm-charts/autopush --values values.yaml +``` + +To uninstall a chart release use `helm`'s delete command: + +```bash +helm uninstall autopush-release +``` + +## Requirements + +| Repository | Name | Version | +|------------|------|---------| +| oci://docker.io/bitnamicharts | redis | 20.6.1 | + +## Values + +| Key | Type | Default | Description | +|-----|------|---------|-------------| +| autoconnect.affinity | object | `{}` | | +| autoconnect.image.pullPolicy | string | `"IfNotPresent"` | | +| autoconnect.image.registry | string | `"codeberg.org"` | | +| autoconnect.image.repository | string | `"wrenix/autopush/autoconnect"` | | +| autoconnect.image.tag | string | `"latest"` | | +| autoconnect.livenessProbe | object | `{"httpGet":{"path":"/health","port":"http"}}` | This is to setup the liveness and readiness probes more information can be found here: https://kubernetes.io/docs/tasks/configure-pod-container/configure-liveness-readiness-startup-probes/ | +| autoconnect.nodeSelector | object | `{}` | | +| autoconnect.podAnnotations | object | `{}` | This is for setting Kubernetes Annotations to a Pod. For more information checkout: https://kubernetes.io/docs/concepts/overview/working-with-objects/annotations/ | +| autoconnect.podLabels | object | `{}` | This is for setting Kubernetes Labels to a Pod. For more information checkout: https://kubernetes.io/docs/concepts/overview/working-with-objects/labels/ | +| autoconnect.podSecurityContext | object | `{}` | | +| autoconnect.readinessProbe.httpGet.path | string | `"/health"` | | +| autoconnect.readinessProbe.httpGet.port | string | `"http"` | | +| autoconnect.replicaCount | int | `1` | This will set the replicaset count more information can be found here: https://kubernetes.io/docs/concepts/workloads/controllers/replicaset/ | +| autoconnect.resources | object | `{}` | We usually recommend not to specify default resources and to leave this as a conscious choice for the user. This also increases chances charts run on environments with little resources, such as Minikube. If you do want to specify resources, uncomment the following lines, adjust them as necessary, and remove the curly braces after 'resources:'. limits: cpu: 100m memory: 128Mi requests: cpu: 100m memory: 128Mi | +| autoconnect.securityContext | object | `{}` | securityContext capabilities: drop: - ALL readOnlyRootFilesystem: true runAsNonRoot: true runAsUser: 1000 | +| autoconnect.service.port | int | `80` | | +| autoconnect.service.type | string | `"ClusterIP"` | | +| autoconnect.tolerations | list | `[]` | | +| autoconnect.volumeMounts | list | `[]` | Additional volumeMounts on the output Deployment definition. - name: foo mountPath: "/etc/foo" readOnly: true | +| autoendpoint.affinity | object | `{}` | | +| autoendpoint.image.pullPolicy | string | `"IfNotPresent"` | | +| autoendpoint.image.registry | string | `"codeberg.org"` | | +| autoendpoint.image.repository | string | `"wrenix/autopush/autoendpoint"` | | +| autoendpoint.image.tag | string | `"latest"` | | +| autoendpoint.livenessProbe | object | `{"httpGet":{"path":"/health","port":"http"}}` | This is to setup the liveness and readiness probes more information can be found here: https://kubernetes.io/docs/tasks/configure-pod-container/configure-liveness-readiness-startup-probes/ | +| autoendpoint.nodeSelector | object | `{}` | | +| autoendpoint.podAnnotations | object | `{}` | | +| autoendpoint.podLabels | object | `{}` | | +| autoendpoint.podSecurityContext | object | `{}` | | +| autoendpoint.readinessProbe.httpGet.path | string | `"/health"` | | +| autoendpoint.readinessProbe.httpGet.port | string | `"http"` | | +| autoendpoint.replicaCount | int | `1` | This will set the replicaset count more information can be found here: https://kubernetes.io/docs/concepts/workloads/controllers/replicaset/ | +| autoendpoint.resources | object | `{}` | We usually recommend not to specify default resources and to leave this as a conscious choice for the user. This also increases chances charts run on environments with little resources, such as Minikube. If you do want to specify resources, uncomment the following lines, adjust them as necessary, and remove the curly braces after 'resources:'. limits: cpu: 100m memory: 128Mi requests: cpu: 100m memory: 128Mi | +| autoendpoint.securityContext | object | `{}` | | +| autoendpoint.service.port | int | `80` | | +| autoendpoint.service.type | string | `"ClusterIP"` | | +| autoendpoint.tolerations | list | `[]` | | +| autoendpoint.volumeMounts | list | `[]` | Additional volumeMounts on the output Deployment definition. - name: foo mountPath: "/etc/foo" readOnly: true | +| config.cryptoKey | string | `""` | run https://github.com/mozilla-services/autopush-rs/blob/master/scripts/fernet_key.py | +| config.logs.backtrace | bool | `false` | enable backtrace of autopush | +| config.logs.level | string | `"warn"` | set log level of autopush | +| fullnameOverride | string | `""` | | +| global.image.pullPolicy | string | `nil` | if set it will overwrite all pullPolicy | +| global.image.registry | string | `nil` | if set it will overwrite all registry entries | +| imagePullSecrets | list | `[]` | This is for the secretes for pulling an image from a private repository more information can be found here: https://kubernetes.io/docs/tasks/configure-pod-container/pull-image-private-registry/ | +| ingress.annotations | object | `{}` | | +| ingress.className | string | `""` | | +| ingress.enabled | bool | `false` | | +| ingress.host | string | `"chart-example.local"` | | +| ingress.tls | list | `[]` | | +| nameOverride | string | `""` | This is to override the chart name. | +| prometheus.enabled | bool | `true` | start statsd sidecar and configure | +| prometheus.image.pullPolicy | string | `"IfNotPresent"` | | +| prometheus.image.registry | string | `"docker.io"` | | +| prometheus.image.repository | string | `"prom/statsd-exporter"` | | +| prometheus.image.tag | string | `"v0.28.0"` | | +| prometheus.livenessProbe | object | `{"httpGet":{"path":"/","port":"metrics"}}` | This is to setup the liveness and readiness probes more information can be found here: https://kubernetes.io/docs/tasks/configure-pod-container/configure-liveness-readiness-startup-probes/ | +| prometheus.readinessProbe.httpGet.path | string | `"/"` | | +| prometheus.readinessProbe.httpGet.port | string | `"metrics"` | | +| prometheus.resources | object | `{}` | We usually recommend not to specify default resources and to leave this as a conscious choice for the user. This also increases chances charts run on environments with little resources, such as Minikube. If you do want to specify resources, uncomment the following lines, adjust them as necessary, and remove the curly braces after 'resources:'. limits: cpu: 100m memory: 128Mi requests: cpu: 100m memory: 128Mi | +| prometheus.securityContext | object | `{}` | securityContext capabilities: drop: - ALL readOnlyRootFilesystem: true runAsNonRoot: true runAsUser: 1000 | +| prometheus.servicemonitor.enabled | bool | `false` | | +| prometheus.servicemonitor.labels | object | `{}` | | +| prometheus.volumeMounts | list | `[]` | Additional volumeMounts on the output Deployment definition. - name: foo mountPath: "/etc/foo" readOnly: true | +| redis.architecture | string | `"standalone"` | | +| redis.auth.enabled | bool | `true` | | +| redis.auth.existingSecret | string | `nil` | Or use existing secret with "redis-password" key instead of static password | +| redis.auth.password | string | `"autopush"` | XXX Change me! | +| redis.dbid | int | `0` | Database ID for non-default database | +| redis.external.existingSecretPasswordKey | string | `"redis-password"` | Password key to be retrieved from existing secret | +| redis.external.host | string | `"redis"` | | +| redis.external.port | int | `6379` | | +| redis.internal | bool | `true` | | +| redis.master.kind | string | `"Deployment"` | | +| redis.master.persistence.enabled | bool | `false` | | +| redis.master.service.port | int | `6379` | | +| serviceAccount.annotations | object | `{}` | | +| serviceAccount.automount | bool | `true` | | +| serviceAccount.create | bool | `true` | | +| serviceAccount.name | string | `""` | | +| volumes | list | `[]` | Additional volumes on the output Deployment definition. - name: foo secret: secretName: mysecret optional: false | + +Autogenerated from chart metadata using [helm-docs](https://github.com/norwoodj/helm-docs) + diff --git a/autopush/_docs.gotmpl b/autopush/_docs.gotmpl new file mode 100644 index 0000000..fb13262 --- /dev/null +++ b/autopush/_docs.gotmpl @@ -0,0 +1,15 @@ +{{ define "chart.prerequirements" -}} += Beta + +WARNING +==== +We let it run in production, but it is not stable / complete. + +TODOs: + - [ ] official container with redis backend, see: https://github.com/mozilla-services/autopush-rs/pull/813 + - [ ] automatical create CRYPT_KEY (instatt of key) + - [ ] better ingress / host name support + - [ ] Improve monitoring with alerts and grafana dashboard + +==== +{{ end }} diff --git a/autopush/ci/ct-empty-values.yaml b/autopush/ci/ct-empty-values.yaml new file mode 100644 index 0000000..e69de29 diff --git a/autopush/ci/ct-monitor-values.yaml b/autopush/ci/ct-monitor-values.yaml new file mode 100644 index 0000000..f589e9d --- /dev/null +++ b/autopush/ci/ct-monitor-values.yaml @@ -0,0 +1,6 @@ +prometheus: + enabled: true + servicemonitor: + enabled: true + labels: + prometheus: default diff --git a/autopush/container/Containerfile b/autopush/container/Containerfile new file mode 100644 index 0000000..1535ff5 --- /dev/null +++ b/autopush/container/Containerfile @@ -0,0 +1,15 @@ +FROM python:3.8-slim + +# Set the working directory +WORKDIR /app + +# Copy the requirements file +COPY requirements.txt . + +# Install any needed packages +RUN pip install -r requirements.txt + +# Copy the application code into the container +COPY setup.py setup.py + +CMD ["python", "setup.py"] diff --git a/autopush/container/requirements.txt b/autopush/container/requirements.txt new file mode 100644 index 0000000..0d38bc5 --- /dev/null +++ b/autopush/container/requirements.txt @@ -0,0 +1 @@ +cryptography diff --git a/autopush/container/setup.py b/autopush/container/setup.py new file mode 100644 index 0000000..3cbdcd2 --- /dev/null +++ b/autopush/container/setup.py @@ -0,0 +1,5 @@ +#!/bin/env python3 +from cryptography.fernet import Fernet + +if __name__ == '__main__': + print(Fernet.generate_key().decode("UTF-8")) diff --git a/autopush/templates/_helpers.tpl b/autopush/templates/_helpers.tpl new file mode 100644 index 0000000..237e348 --- /dev/null +++ b/autopush/templates/_helpers.tpl @@ -0,0 +1,93 @@ +{{/* +Expand the name of the chart. +*/}} +{{- define "autopush.name" -}} +{{- default .Chart.Name .Values.nameOverride | trunc 63 | trimSuffix "-" }} +{{- end }} + +{{/* +Create a default fully qualified app name. +We truncate at 63 chars because some Kubernetes name fields are limited to this (by the DNS naming spec). +If release name contains chart name it will be used as a full name. +*/}} +{{- define "autopush.fullname" -}} +{{- if .Values.fullnameOverride }} +{{- .Values.fullnameOverride | trunc 63 | trimSuffix "-" }} +{{- else }} +{{- $name := default .Chart.Name .Values.nameOverride }} +{{- if contains $name .Release.Name }} +{{- .Release.Name | trunc 63 | trimSuffix "-" }} +{{- else }} +{{- printf "%s-%s" .Release.Name $name | trunc 63 | trimSuffix "-" }} +{{- end }} +{{- end }} +{{- end }} + +{{/* +Create chart name and version as used by the chart label. +*/}} +{{- define "autopush.chart" -}} +{{- printf "%s-%s" .Chart.Name .Chart.Version | replace "+" "_" | trunc 63 | trimSuffix "-" }} +{{- end }} + +{{/* +Common labels +*/}} +{{- define "autopush.labels" -}} +helm.sh/chart: {{ include "autopush.chart" . }} +{{ include "autopush.selectorLabels" . }} +{{- if .Chart.AppVersion }} +app.kubernetes.io/version: {{ .Chart.AppVersion | quote }} +{{- end }} +app.kubernetes.io/managed-by: {{ .Release.Service }} +{{- end }} + +{{/* +Selector labels +*/}} +{{- define "autopush.selectorLabels" -}} +app.kubernetes.io/name: {{ include "autopush.name" . }} +app.kubernetes.io/instance: {{ .Release.Name }} +{{- end }} + +{{/* +Create the name of the service account to use +*/}} +{{- define "autopush.serviceAccountName" -}} +{{- if .Values.serviceAccount.create }} +{{- default (include "autopush.fullname" .) .Values.serviceAccount.name }} +{{- else }} +{{- default "default" .Values.serviceAccount.name }} +{{- end }} +{{- end }} + +{{/* +Prometheus-sidecar +*/}} +{{- define "autopush.containerPrometheus" -}} +{{- with .Values.prometheus }} +{{- if .enabled }} +- name: statsd-exporter + securityContext: + {{- toYaml .securityContext | nindent 4 }} + {{- with .image }} + image: "{{ coalesce $.Values.global.image.registry .registry }}/{{ .repository }}:{{ .tag }}" + imagePullPolicy: {{ coalesce $.Values.global.image.pullPolicy .pullPolicy }} + {{- end }} + ports: + - name: metrics + containerPort: 9102 + protocol: TCP + livenessProbe: + {{- toYaml .livenessProbe | nindent 4 }} + readinessProbe: + {{- toYaml .readinessProbe | nindent 4 }} + resources: + {{- toYaml .resources | nindent 4 }} + {{- with .volumeMounts }} + volumeMounts: + {{- toYaml . | nindent 4 }} + {{- end }} +{{- end }} +{{- end }} +{{- end }} diff --git a/autopush/templates/autoconnect/deployment.yaml b/autopush/templates/autoconnect/deployment.yaml new file mode 100644 index 0000000..0f1f3bb --- /dev/null +++ b/autopush/templates/autoconnect/deployment.yaml @@ -0,0 +1,91 @@ +{{- with .Values.autoconnect }} +apiVersion: apps/v1 +kind: Deployment +metadata: + name: {{ include "autopush.fullname" $ }}-autoconnect + labels: + {{- include "autopush.labels" $ | nindent 4 }} +spec: + replicas: {{ .replicaCount }} + selector: + matchLabels: + {{- include "autopush.selectorLabels" $ | nindent 6 }} + app.kubernetes.io/component: autoconnect + template: + metadata: + {{- with .podAnnotations }} + annotations: + {{- toYaml . | nindent 8 }} + {{- end }} + labels: + {{- include "autopush.labels" $ | nindent 8 }} + app.kubernetes.io/component: autoconnect + {{- with .podLabels }} + {{- toYaml . | nindent 8 }} + {{- end }} + spec: + {{- with .imagePullSecrets }} + imagePullSecrets: + {{- toYaml . | nindent 8 }} + {{- end }} + serviceAccountName: {{ include "autopush.serviceAccountName" $ }} + securityContext: + {{- toYaml .podSecurityContext | nindent 8 }} + containers: + - name: autoconnect + securityContext: + {{- toYaml .securityContext | nindent 12 }} + {{- with .image }} + image: "{{ coalesce $.Values.global.image.registry .registry }}/{{ .repository }}:{{ .tag | default (printf "v%s" $.Chart.AppVersion) }}" + imagePullPolicy: {{ coalesce $.Values.global.image.pullPolicy .pullPolicy }} + {{- end }} + envFrom: + - secretRef: + name: {{ include "autopush.fullname" $ }}-env + env: + - name: "AUTOCONNECT__DB_DSN" + {{- if $.Values.redis.auth.enabled }} + value: "redis://:$(REDIS_HOST_PASSWORD)@$(REDIS_HOST)" + {{- else }} + value: "redis://$(REDIS_HOST)" + {{- end }} + - name: "AUTOCONNECT__CRYPTO_KEY" + valueFrom: + secretKeyRef: + name: {{ include "autopush.fullname" $ }}-env + key: "CRYPTO_KEY" + ports: + - name: http + containerPort: 8080 + protocol: TCP + - name: router + containerPort: 8081 + protocol: TCP + livenessProbe: + {{- toYaml .livenessProbe | nindent 12 }} + readinessProbe: + {{- toYaml .readinessProbe | nindent 12 }} + resources: + {{- toYaml .resources | nindent 12 }} + {{- with .volumeMounts }} + volumeMounts: + {{- toYaml . | nindent 12 }} + {{- end }} + {{- include "autopush.containerPrometheus" $ | nindent 8 }} + {{- with .volumes }} + volumes: + {{- toYaml . | nindent 8 }} + {{- end }} + {{- with .nodeSelector }} + nodeSelector: + {{- toYaml . | nindent 8 }} + {{- end }} + {{- with .affinity }} + affinity: + {{- toYaml . | nindent 8 }} + {{- end }} + {{- with .tolerations }} + tolerations: + {{- toYaml . | nindent 8 }} + {{- end }} +{{- end }} diff --git a/autopush/templates/autoconnect/service.yaml b/autopush/templates/autoconnect/service.yaml new file mode 100644 index 0000000..2a54f55 --- /dev/null +++ b/autopush/templates/autoconnect/service.yaml @@ -0,0 +1,22 @@ +apiVersion: v1 +kind: Service +metadata: + name: {{ include "autopush.fullname" . }}-autoconnect + labels: + {{- include "autopush.labels" . | nindent 4 }} +spec: + type: {{ .Values.autoconnect.service.type }} + selector: + {{- include "autopush.selectorLabels" . | nindent 4 }} + app.kubernetes.io/component: autoconnect + ports: + - port: {{ .Values.autoconnect.service.port }} + targetPort: http + protocol: TCP + name: http + {{- if .Values.prometheus.enabled }} + - port: 9100 + targetPort: metrics + protocol: TCP + name: metrics + {{- end }} diff --git a/autopush/templates/autoendpoint/deployment.yaml b/autopush/templates/autoendpoint/deployment.yaml new file mode 100644 index 0000000..f738b48 --- /dev/null +++ b/autopush/templates/autoendpoint/deployment.yaml @@ -0,0 +1,88 @@ +{{- with .Values.autoendpoint }} +apiVersion: apps/v1 +kind: Deployment +metadata: + name: {{ include "autopush.fullname" $ }}-autoendpoint + labels: + {{- include "autopush.labels" $ | nindent 4 }} +spec: + replicas: {{ .replicaCount }} + selector: + matchLabels: + {{- include "autopush.selectorLabels" $ | nindent 6 }} + app.kubernetes.io/component: autoendpoint + template: + metadata: + {{- with .podAnnotations }} + annotations: + {{- toYaml . | nindent 8 }} + {{- end }} + labels: + {{- include "autopush.labels" $ | nindent 8 }} + app.kubernetes.io/component: autoendpoint + {{- with .podLabels }} + {{- toYaml . | nindent 8 }} + {{- end }} + spec: + {{- with .imagePullSecrets }} + imagePullSecrets: + {{- toYaml . | nindent 8 }} + {{- end }} + serviceAccountName: {{ include "autopush.serviceAccountName" $ }} + securityContext: + {{- toYaml .podSecurityContext | nindent 8 }} + containers: + - name: autoendpoint + securityContext: + {{- toYaml .securityContext | nindent 12 }} + {{- with .image }} + image: "{{ coalesce $.Values.global.image.registry .registry }}/{{ .repository }}:{{ .tag | default (printf "v%s" $.Chart.AppVersion) }}" + imagePullPolicy: {{ coalesce $.Values.global.image.pullPolicy .pullPolicy }} + {{- end }} + envFrom: + - secretRef: + name: {{ include "autopush.fullname" $ }}-env + env: + - name: "AUTOEND__DB_DSN" + {{- if $.Values.redis.auth.enabled }} + value: "redis://:$(REDIS_HOST_PASSWORD)@$(REDIS_HOST)" + {{- else }} + value: "redis://$(REDIS_HOST)" + {{- end }} + - name: "AUTOEND__CRYPTO_KEYS" + valueFrom: + secretKeyRef: + name: {{ include "autopush.fullname" $ }}-env + key: "CRYPTO_KEY" + ports: + - name: http + containerPort: 8000 + protocol: TCP + livenessProbe: + {{- toYaml .livenessProbe | nindent 12 }} + readinessProbe: + {{- toYaml .readinessProbe | nindent 12 }} + resources: + {{- toYaml .resources | nindent 12 }} + {{- with .volumeMounts }} + volumeMounts: + {{- toYaml . | nindent 12 }} + {{- end }} + {{- include "autopush.containerPrometheus" $ | nindent 8 }} + {{- with .volumes }} + volumes: + {{- toYaml . | nindent 8 }} + {{- end }} + {{- with .nodeSelector }} + nodeSelector: + {{- toYaml . | nindent 8 }} + {{- end }} + {{- with .affinity }} + affinity: + {{- toYaml . | nindent 8 }} + {{- end }} + {{- with .tolerations }} + tolerations: + {{- toYaml . | nindent 8 }} + {{- end }} +{{- end }} diff --git a/autopush/templates/autoendpoint/service.yaml b/autopush/templates/autoendpoint/service.yaml new file mode 100644 index 0000000..ef7abb3 --- /dev/null +++ b/autopush/templates/autoendpoint/service.yaml @@ -0,0 +1,22 @@ +apiVersion: v1 +kind: Service +metadata: + name: {{ include "autopush.fullname" . }}-autoendpoint + labels: + {{- include "autopush.labels" . | nindent 4 }} +spec: + type: {{ .Values.autoendpoint.service.type }} + selector: + {{- include "autopush.selectorLabels" . | nindent 4 }} + app.kubernetes.io/component: autoendpoint + ports: + - port: {{ .Values.autoendpoint.service.port }} + targetPort: http + protocol: TCP + name: http + {{- if .Values.prometheus.enabled }} + - port: 9100 + targetPort: metrics + protocol: TCP + name: metrics + {{- end }} diff --git a/autopush/templates/ingress.yaml b/autopush/templates/ingress.yaml new file mode 100644 index 0000000..d53ba34 --- /dev/null +++ b/autopush/templates/ingress.yaml @@ -0,0 +1,41 @@ +{{- if .Values.ingress.enabled -}} +apiVersion: networking.k8s.io/v1 +kind: Ingress +metadata: + name: {{ include "autopush.fullname" . }} + labels: + {{- include "autopush.labels" . | nindent 4 }} + {{- with .Values.ingress.annotations }} + annotations: + {{- toYaml . | nindent 4 }} + {{- end }} +spec: + {{- with .Values.ingress.className }} + ingressClassName: {{ . }} + {{- end }} + {{- with .Values.ingress.tls }} + tls: + {{- toYaml . | nindent 4 }} + {{- end }} + rules: + - host: {{ .Values.ingress.host | quote }} + http: + paths: + - path: / + pathType: Prefix + backend: + service: + name: {{ include "autopush.fullname" $ }}-autoconnect + port: + name: http + - host: {{ printf "updates.%s" .Values.ingress.host | quote }} + http: + paths: + - path: / + pathType: Prefix + backend: + service: + name: {{ include "autopush.fullname" $ }}-autoendpoint + port: + name: http +{{- end }} diff --git a/autopush/templates/secret.yaml b/autopush/templates/secret.yaml new file mode 100644 index 0000000..46fe7f1 --- /dev/null +++ b/autopush/templates/secret.yaml @@ -0,0 +1,45 @@ +--- +apiVersion: v1 +kind: Secret +metadata: + name: {{ include "autopush.fullname" . }}-env + annotations: + "helm.sh/hook": "pre-install,pre-upgrade" +type: Opaque +data: + {{/* GLOBAL */}} + RUST_BACKTRACE: {{ ternary "1" "0" .Values.config.logs.backtrace | b64enc }} + RUST_LOG: {{ .Values.config.logs.level | b64enc }} + {{- with .Values.redis }} + {{- if .auth.enabled }} + {{- with .auth.password }} + REDIS_HOST_PASSWORD: {{ . | b64enc }} + {{- end }} + {{- end }} + {{- if .internal }} + REDIS_HOST: {{ printf "%s-redis-master:%.0f/%.0f" (include "autopush.fullname" $) .master.service.port .dbid | b64enc }} + {{- else }} + REDIS_HOST: {{ printf "%s:%s/$.0f" .external.host .external.port .dbid | b64enc }} + {{- end }} + {{- end }} + CRYPTO_KEY: {{ printf "[%s]" .Values.config.cryptoKey | b64enc }} + {{/* autoconnect */}} + {{- if .Values.ingress.tls }} + AUTOCONNECT__ENDPOINT_SCHEME: {{ "https" | b64enc }} + AUTOCONNECT__ENDPOINT_PORT: {{ "443" | b64enc }} + {{- else }} + AUTOCONNECT__ENDPOINT_SCHEME: {{ "http" | b64enc }} + AUTOCONNECT__ENDPOINT_PORT: {{ "80" | b64enc }} + {{- end }} + AUTOCONNECT__ENDPOINT_HOSTNAME: {{ printf "updates.%s" .Values.ingress.host | b64enc }} + AUTOCONNECT__ROUTER_HOSTNAME: {{ printf "%s-autoconnect" (include "autopush.fullname" .) | b64enc }} + {{- if .Values.prometheus.enabled }} + AUTOCONNECT__STATSD_HOST: {{ "127.0.0.1" | b64enc}} + AUTOCONNECT__STATSD_PORT: {{ "9125" | b64enc }} + {{- end }} + {{/* autoendpoint */}} + AUTOEND__HOST: {{ "::" | b64enc }} + {{- if .Values.prometheus.enabled }} + AUTOEND__STATSD_HOST: {{ "127.0.0.1" | b64enc }} + AUTOEND__STATSD_PORT: {{ "9125" | b64enc }} + {{- end }} diff --git a/autopush/templates/serviceaccount.yaml b/autopush/templates/serviceaccount.yaml new file mode 100644 index 0000000..f341e97 --- /dev/null +++ b/autopush/templates/serviceaccount.yaml @@ -0,0 +1,13 @@ +{{- if .Values.serviceAccount.create -}} +apiVersion: v1 +kind: ServiceAccount +metadata: + name: {{ include "autopush.serviceAccountName" . }} + labels: + {{- include "autopush.labels" . | nindent 4 }} + {{- with .Values.serviceAccount.annotations }} + annotations: + {{- toYaml . | nindent 4 }} + {{- end }} +automountServiceAccountToken: {{ .Values.serviceAccount.automount }} +{{- end }} diff --git a/autopush/templates/servicemonitor.yaml b/autopush/templates/servicemonitor.yaml new file mode 100644 index 0000000..87b7f82 --- /dev/null +++ b/autopush/templates/servicemonitor.yaml @@ -0,0 +1,17 @@ +{{- if and .Values.prometheus.enabled .Values.prometheus.servicemonitor.enabled }} +apiVersion: monitoring.coreos.com/v1 +kind: ServiceMonitor +metadata: + name: {{ include "autopush.fullname" . }} + labels: + {{- include "autopush.labels" . | nindent 4 }} + {{- with .Values.prometheus.servicemonitor.labels }} + {{- toYaml . | nindent 4 }} + {{- end }} +spec: + selector: + matchLabels: + {{- include "autopush.selectorLabels" . | nindent 6 }} + endpoints: + - port: metrics +{{- end }} diff --git a/autopush/values.yaml b/autopush/values.yaml new file mode 100644 index 0000000..ac0fabc --- /dev/null +++ b/autopush/values.yaml @@ -0,0 +1,279 @@ +global: + image: + # -- if set it will overwrite all registry entries + registry: + # -- if set it will overwrite all pullPolicy + pullPolicy: + +# -- This is for the secretes for pulling an image from a private repository more information can be found here: https://kubernetes.io/docs/tasks/configure-pod-container/pull-image-private-registry/ +imagePullSecrets: [] +# -- This is to override the chart name. +nameOverride: "" +fullnameOverride: "" + + + + +config: + logs: + # -- set log level of autopush + level: warn + # -- enable backtrace of autopush + backtrace: false + # -- run https://github.com/mozilla-services/autopush-rs/blob/master/scripts/fernet_key.py + cryptoKey: "" + +prometheus: + # -- start statsd sidecar and configure + enabled: true + + servicemonitor: + enabled: false + labels: {} + + image: + registry: docker.io + repository: prom/statsd-exporter + pullPolicy: IfNotPresent + tag: v0.28.0 + + # -- securityContext + # capabilities: + # drop: + # - ALL + # readOnlyRootFilesystem: true + # runAsNonRoot: true + # runAsUser: 1000 + securityContext: {} + + # -- We usually recommend not to specify default resources and to leave this as a conscious + # choice for the user. This also increases chances charts run on environments with little + # resources, such as Minikube. If you do want to specify resources, uncomment the following + # lines, adjust them as necessary, and remove the curly braces after 'resources:'. + # limits: + # cpu: 100m + # memory: 128Mi + # requests: + # cpu: 100m + # memory: 128Mi + resources: {} + + # -- This is to setup the liveness and readiness probes more information can be found here: https://kubernetes.io/docs/tasks/configure-pod-container/configure-liveness-readiness-startup-probes/ + livenessProbe: + httpGet: + path: / + port: metrics + readinessProbe: + httpGet: + path: / + port: metrics + + # -- Additional volumeMounts on the output Deployment definition. + # - name: foo + # mountPath: "/etc/foo" + # readOnly: true + volumeMounts: [] + +## This configuration is for the internal Redis that's deployed for use with +## workers/sharding, for an external Redis server you want to set enabled to +## false and configure the externalRedis block. +## +redis: + internal: true + # -- Database ID for non-default database + dbid: 0 + + auth: + enabled: true + # -- XXX Change me! + password: autopush + + # -- Or use existing secret with "redis-password" key instead of static password + existingSecret: + external: + host: redis + port: 6379 + + # -- Password key to be retrieved from existing secret + existingSecretPasswordKey: redis-password + + + architecture: standalone + master: + kind: Deployment + persistence: + enabled: false + service: + port: 6379 + + + +autoconnect: + # -- This will set the replicaset count more information can be found here: https://kubernetes.io/docs/concepts/workloads/controllers/replicaset/ + replicaCount: 1 + image: + registry: codeberg.org + repository: wrenix/autopush/autoconnect + pullPolicy: IfNotPresent + tag: latest + # -- This is for setting Kubernetes Annotations to a Pod. + # For more information checkout: https://kubernetes.io/docs/concepts/overview/working-with-objects/annotations/ + podAnnotations: {} + # -- This is for setting Kubernetes Labels to a Pod. + # For more information checkout: https://kubernetes.io/docs/concepts/overview/working-with-objects/labels/ + podLabels: {} + + nodeSelector: {} + + tolerations: [] + + affinity: {} + + podSecurityContext: {} + # fsGroup: 2000 + + # -- securityContext + # capabilities: + # drop: + # - ALL + # readOnlyRootFilesystem: true + # runAsNonRoot: true + # runAsUser: 1000 + securityContext: {} + + # This is for setting up a service more information can be found here: https://kubernetes.io/docs/concepts/services-networking/service/ + service: + # This sets the service type more information can be found here: https://kubernetes.io/docs/concepts/services-networking/service/#publishing-services-service-types + type: ClusterIP + # This sets the ports more information can be found here: https://kubernetes.io/docs/concepts/services-networking/service/#field-spec-ports + port: 80 + + # -- We usually recommend not to specify default resources and to leave this as a conscious + # choice for the user. This also increases chances charts run on environments with little + # resources, such as Minikube. If you do want to specify resources, uncomment the following + # lines, adjust them as necessary, and remove the curly braces after 'resources:'. + # limits: + # cpu: 100m + # memory: 128Mi + # requests: + # cpu: 100m + # memory: 128Mi + resources: {} + + # -- This is to setup the liveness and readiness probes more information can be found here: https://kubernetes.io/docs/tasks/configure-pod-container/configure-liveness-readiness-startup-probes/ + livenessProbe: + httpGet: + path: /health + port: http + readinessProbe: + httpGet: + path: /health + port: http + + # -- Additional volumeMounts on the output Deployment definition. + # - name: foo + # mountPath: "/etc/foo" + # readOnly: true + volumeMounts: [] + +autoendpoint: + # -- This will set the replicaset count more information can be found here: https://kubernetes.io/docs/concepts/workloads/controllers/replicaset/ + replicaCount: 1 + image: + registry: codeberg.org + repository: wrenix/autopush/autoendpoint + pullPolicy: IfNotPresent + tag: latest + + # This is for setting Kubernetes Annotations to a Pod. + # For more information checkout: https://kubernetes.io/docs/concepts/overview/working-with-objects/annotations/ + podAnnotations: {} + # This is for setting Kubernetes Labels to a Pod. + # For more information checkout: https://kubernetes.io/docs/concepts/overview/working-with-objects/labels/ + podLabels: {} + + nodeSelector: {} + + tolerations: [] + + affinity: {} + + podSecurityContext: {} + # fsGroup: 2000 + + securityContext: {} + # capabilities: + # drop: + # - ALL + # readOnlyRootFilesystem: true + # runAsNonRoot: true + # runAsUser: 1000 + + # This is for setting up a service more information can be found here: https://kubernetes.io/docs/concepts/services-networking/service/ + service: + # This sets the service type more information can be found here: https://kubernetes.io/docs/concepts/services-networking/service/#publishing-services-service-types + type: ClusterIP + # This sets the ports more information can be found here: https://kubernetes.io/docs/concepts/services-networking/service/#field-spec-ports + port: 80 + + # -- We usually recommend not to specify default resources and to leave this as a conscious + # choice for the user. This also increases chances charts run on environments with little + # resources, such as Minikube. If you do want to specify resources, uncomment the following + # lines, adjust them as necessary, and remove the curly braces after 'resources:'. + # limits: + # cpu: 100m + # memory: 128Mi + # requests: + # cpu: 100m + # memory: 128Mi + resources: {} + + # -- This is to setup the liveness and readiness probes more information can be found here: https://kubernetes.io/docs/tasks/configure-pod-container/configure-liveness-readiness-startup-probes/ + livenessProbe: + httpGet: + path: /health + port: http + readinessProbe: + httpGet: + path: /health + port: http + + # -- Additional volumeMounts on the output Deployment definition. + # - name: foo + # mountPath: "/etc/foo" + # readOnly: true + volumeMounts: [] + + +#This section builds out the service account more information can be found here: https://kubernetes.io/docs/concepts/security/service-accounts/ +serviceAccount: + # Specifies whether a service account should be created + create: true + # Automatically mount a ServiceAccount's API credentials? + automount: true + # Annotations to add to the service account + annotations: {} + # The name of the service account to use. + # If not set and create is true, a name is generated using the fullname template + name: "" + +# This block is for setting up the ingress for more information can be found here: https://kubernetes.io/docs/concepts/services-networking/ingress/ +ingress: + enabled: false + className: "" + annotations: {} + # kubernetes.io/ingress.class: nginx + # kubernetes.io/tls-acme: "true" + host: chart-example.local + tls: [] + # - secretName: chart-example-tls + # hosts: + # - chart-example.local + + +# -- Additional volumes on the output Deployment definition. +# - name: foo +# secret: +# secretName: mysecret +# optional: false +volumes: [] -- 2.45.3 From 6f78c0c59221c93e2a132fadbf2c62085eeb5901 Mon Sep 17 00:00:00 2001 From: WrenIX Date: Mon, 6 Jan 2025 19:53:34 +0100 Subject: [PATCH 103/134] fix(home-assistant): update AppVersion and deps --- home-assistant/Chart.yaml | 4 ++-- home-assistant/README.md | 4 ++-- home-assistant/values.yaml | 2 +- 3 files changed, 5 insertions(+), 5 deletions(-) diff --git a/home-assistant/Chart.yaml b/home-assistant/Chart.yaml index 92ab999..595443c 100644 --- a/home-assistant/Chart.yaml +++ b/home-assistant/Chart.yaml @@ -3,9 +3,9 @@ name: home-assistant description: Home Assistant with tooling to run on an k3s pi icon: https://www.home-assistant.io/images/favicon-192x192.png type: application -version: 0.2.13 +version: 0.2.14 # renovate: image=ghcr.io/home-assistant/home-assistant -appVersion: "2024.12.5" +appVersion: "2025.1.0" maintainers: - name: WrenIX url: https://wrenix.eu diff --git a/home-assistant/README.md b/home-assistant/README.md index 17dc2aa..2b81108 100644 --- a/home-assistant/README.md +++ b/home-assistant/README.md @@ -7,7 +7,7 @@ description: "Home Assistant with tooling to run on an k3s pi" # home-assistant -![Version: 0.2.13](https://img.shields.io/badge/Version-0.2.13-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 2024.12.5](https://img.shields.io/badge/AppVersion-2024.12.5-informational?style=flat-square) +![Version: 0.2.14](https://img.shields.io/badge/Version-0.2.14-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 2025.1.0](https://img.shields.io/badge/AppVersion-2025.1.0-informational?style=flat-square) Home Assistant with tooling to run on an k3s pi @@ -113,7 +113,7 @@ helm uninstall home-assistant-release | zigbee2mqtt.image.pullPolicy | string | `"IfNotPresent"` | | | zigbee2mqtt.image.registry | string | `"docker.io"` | | | zigbee2mqtt.image.repository | string | `"koenkk/zigbee2mqtt"` | | -| zigbee2mqtt.image.tag | string | `"1.42.0"` | | +| zigbee2mqtt.image.tag | string | `"2.0.0"` | | | zigbee2mqtt.ingress.hosts | list | `[]` | | | zigbee2mqtt.securityContext.privileged | bool | `true` | | diff --git a/home-assistant/values.yaml b/home-assistant/values.yaml index a3e051c..ac3519b 100644 --- a/home-assistant/values.yaml +++ b/home-assistant/values.yaml @@ -50,7 +50,7 @@ zigbee2mqtt: registry: docker.io repository: koenkk/zigbee2mqtt pullPolicy: IfNotPresent - tag: 1.42.0 + tag: 2.0.0 device: /dev/ttyACM0 securityContext: privileged: true -- 2.45.3 From 68a9192f1122e21bce91203484ffa2c42787cdef Mon Sep 17 00:00:00 2001 From: WrenIX Date: Mon, 6 Jan 2025 19:55:30 +0100 Subject: [PATCH 104/134] fix(autopush): update python on helper --- autopush/Chart.yaml | 2 +- autopush/README.md | 2 +- autopush/container/Containerfile | 2 +- 3 files changed, 3 insertions(+), 3 deletions(-) diff --git a/autopush/Chart.yaml b/autopush/Chart.yaml index b6fb901..b6bc30c 100644 --- a/autopush/Chart.yaml +++ b/autopush/Chart.yaml @@ -3,7 +3,7 @@ name: autopush description: A Helm chart for Kubernetes icon: type: application -version: 0.0.1 +version: 0.0.2 # renovate: image=docker.io/mozilla-services/autopush-rs appVersion: "1.72.2" maintainers: diff --git a/autopush/README.md b/autopush/README.md index c5fa170..c0ff0a4 100644 --- a/autopush/README.md +++ b/autopush/README.md @@ -7,7 +7,7 @@ description: "A Helm chart for Kubernetes" # autopush -![Version: 0.0.1](https://img.shields.io/badge/Version-0.0.1-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 1.72.2](https://img.shields.io/badge/AppVersion-1.72.2-informational?style=flat-square) +![Version: 0.0.2](https://img.shields.io/badge/Version-0.0.2-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 1.72.2](https://img.shields.io/badge/AppVersion-1.72.2-informational?style=flat-square) A Helm chart for Kubernetes diff --git a/autopush/container/Containerfile b/autopush/container/Containerfile index 1535ff5..25167df 100644 --- a/autopush/container/Containerfile +++ b/autopush/container/Containerfile @@ -1,4 +1,4 @@ -FROM python:3.8-slim +FROM python:3.13-slim # Set the working directory WORKDIR /app -- 2.45.3 From 947486dc81f6c485be76338acf09cf1ebc1ed395 Mon Sep 17 00:00:00 2001 From: WrenIX Date: Mon, 6 Jan 2025 19:56:08 +0100 Subject: [PATCH 105/134] fix(stalwart-mail): update appVersion --- stalwart-mail/Chart.yaml | 4 ++-- stalwart-mail/README.md | 2 +- 2 files changed, 3 insertions(+), 3 deletions(-) diff --git a/stalwart-mail/Chart.yaml b/stalwart-mail/Chart.yaml index 79ee075..23a65d9 100644 --- a/stalwart-mail/Chart.yaml +++ b/stalwart-mail/Chart.yaml @@ -3,9 +3,9 @@ name: stalwart-mail description: Helm Chart for Stalwart Mail Server - Secure & Modern All-in-One Mail Server (IMAP, JMAP, SMTP) icon: https://stalw.art/img/apple-touch-icon.png type: application -version: 0.0.19 +version: 0.0.20 # renovate: image=docker.io/stalwartlabs/mail-server -appVersion: "0.10.7" +appVersion: "0.11.1" maintainers: - name: WrenIX url: https://wrenix.eu diff --git a/stalwart-mail/README.md b/stalwart-mail/README.md index e57b3bb..8e21e27 100644 --- a/stalwart-mail/README.md +++ b/stalwart-mail/README.md @@ -7,7 +7,7 @@ description: "Helm Chart for Stalwart Mail Server - Secure & Modern All-in-One M # stalwart-mail -![Version: 0.0.19](https://img.shields.io/badge/Version-0.0.19-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 0.10.7](https://img.shields.io/badge/AppVersion-0.10.7-informational?style=flat-square) +![Version: 0.0.20](https://img.shields.io/badge/Version-0.0.20-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 0.11.1](https://img.shields.io/badge/AppVersion-0.11.1-informational?style=flat-square) Helm Chart for Stalwart Mail Server - Secure & Modern All-in-One Mail Server (IMAP, JMAP, SMTP) -- 2.45.3 From a88e6e86017b8f6c13a9c487399e764578111bc6 Mon Sep 17 00:00:00 2001 From: WrenIX Date: Tue, 7 Jan 2025 12:36:15 +0100 Subject: [PATCH 106/134] fix(home-assistant): new config for helmchart --- home-assistant/Chart.yaml | 2 +- home-assistant/README.md | 4 ++-- home-assistant/templates/zigbee2mqtt/configmap.yaml | 4 +++- home-assistant/values.yaml | 3 ++- 4 files changed, 8 insertions(+), 5 deletions(-) diff --git a/home-assistant/Chart.yaml b/home-assistant/Chart.yaml index 595443c..2df0e1c 100644 --- a/home-assistant/Chart.yaml +++ b/home-assistant/Chart.yaml @@ -3,7 +3,7 @@ name: home-assistant description: Home Assistant with tooling to run on an k3s pi icon: https://www.home-assistant.io/images/favicon-192x192.png type: application -version: 0.2.14 +version: 0.3.0 # renovate: image=ghcr.io/home-assistant/home-assistant appVersion: "2025.1.0" maintainers: diff --git a/home-assistant/README.md b/home-assistant/README.md index 2b81108..9b41b52 100644 --- a/home-assistant/README.md +++ b/home-assistant/README.md @@ -7,7 +7,7 @@ description: "Home Assistant with tooling to run on an k3s pi" # home-assistant -![Version: 0.2.14](https://img.shields.io/badge/Version-0.2.14-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 2025.1.0](https://img.shields.io/badge/AppVersion-2025.1.0-informational?style=flat-square) +![Version: 0.3.0](https://img.shields.io/badge/Version-0.3.0-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 2025.1.0](https://img.shields.io/badge/AppVersion-2025.1.0-informational?style=flat-square) Home Assistant with tooling to run on an k3s pi @@ -106,7 +106,7 @@ helm uninstall home-assistant-release | tolerations | list | `[]` | | | volumeMounts | list | `[]` | | | volumes | list | `[]` | | -| zigbee2mqtt.config.homeassistant | bool | `true` | | +| zigbee2mqtt.config.homeassistant.enabled | bool | `true` | | | zigbee2mqtt.config.serial.port | string | `"/dev/ttyACM0"` | | | zigbee2mqtt.device | string | `"/dev/ttyACM0"` | | | zigbee2mqtt.enabled | bool | `true` | | diff --git a/home-assistant/templates/zigbee2mqtt/configmap.yaml b/home-assistant/templates/zigbee2mqtt/configmap.yaml index 3e09a29..94705ab 100644 --- a/home-assistant/templates/zigbee2mqtt/configmap.yaml +++ b/home-assistant/templates/zigbee2mqtt/configmap.yaml @@ -10,7 +10,9 @@ data: ZIGBEE2MQTT_CONFIG_ADVANCED_LOG_OUTPUT: '["console"]' {{- with .Values.zigbee2mqtt.config }} {{- with .homeassistant }} - ZIGBEE2MQTT_CONFIG_HOMEASSISTANT: {{ . | quote }} + {{- with .enabled }} + ZIGBEE2MQTT_CONFIG_HOMEASSISTANT_ENABLED: {{ . | quote }} + {{- end }} {{- end }} {{- range $key, $value := .serial}} ZIGBEE2MQTT_CONFIG_SERIAL_{{ $key | upper }}: {{ $value | quote }} diff --git a/home-assistant/values.yaml b/home-assistant/values.yaml index ac3519b..8afd727 100644 --- a/home-assistant/values.yaml +++ b/home-assistant/values.yaml @@ -57,7 +57,8 @@ zigbee2mqtt: ingress: hosts: [] config: - homeassistant: true + homeassistant: + enabled: true serial: port: /dev/ttyACM0 -- 2.45.3 From c6d73fc92c92ce12725c745d0716537588a593f7 Mon Sep 17 00:00:00 2001 From: WrenIX Date: Tue, 7 Jan 2025 13:48:58 +0100 Subject: [PATCH 107/134] fix(autopush): add autoend endpoint_url again --- autopush/Chart.yaml | 2 +- autopush/README.md | 2 +- autopush/templates/secret.yaml | 5 +++++ 3 files changed, 7 insertions(+), 2 deletions(-) diff --git a/autopush/Chart.yaml b/autopush/Chart.yaml index b6bc30c..eacdf2c 100644 --- a/autopush/Chart.yaml +++ b/autopush/Chart.yaml @@ -3,7 +3,7 @@ name: autopush description: A Helm chart for Kubernetes icon: type: application -version: 0.0.2 +version: 0.0.3 # renovate: image=docker.io/mozilla-services/autopush-rs appVersion: "1.72.2" maintainers: diff --git a/autopush/README.md b/autopush/README.md index c0ff0a4..f0613d5 100644 --- a/autopush/README.md +++ b/autopush/README.md @@ -7,7 +7,7 @@ description: "A Helm chart for Kubernetes" # autopush -![Version: 0.0.2](https://img.shields.io/badge/Version-0.0.2-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 1.72.2](https://img.shields.io/badge/AppVersion-1.72.2-informational?style=flat-square) +![Version: 0.0.3](https://img.shields.io/badge/Version-0.0.3-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 1.72.2](https://img.shields.io/badge/AppVersion-1.72.2-informational?style=flat-square) A Helm chart for Kubernetes diff --git a/autopush/templates/secret.yaml b/autopush/templates/secret.yaml index 46fe7f1..54d5f0f 100644 --- a/autopush/templates/secret.yaml +++ b/autopush/templates/secret.yaml @@ -39,6 +39,11 @@ data: {{- end }} {{/* autoendpoint */}} AUTOEND__HOST: {{ "::" | b64enc }} + {{- if .Values.ingress.tls }} + AUTOEND__ENDPOINT_URL: {{ printf "https://updates.%s" .Values.ingress.host | b64enc }} + {{- else }} + AUTOEND__ENDPOINT_URL: {{ printf "http://updates.%s" .Values.ingress.host | b64enc }} + {{- end }} {{- if .Values.prometheus.enabled }} AUTOEND__STATSD_HOST: {{ "127.0.0.1" | b64enc }} AUTOEND__STATSD_PORT: {{ "9125" | b64enc }} -- 2.45.3 From 7813b1540de5fdcf26c203d4699239b84d17a41b Mon Sep 17 00:00:00 2001 From: WrenIX Date: Tue, 7 Jan 2025 15:42:47 +0100 Subject: [PATCH 108/134] fix(stalwart-mail): add default allowed-ip for health-check --- stalwart-mail/Chart.yaml | 2 +- stalwart-mail/README.md | 3 ++- stalwart-mail/values.yaml | 2 ++ 3 files changed, 5 insertions(+), 2 deletions(-) diff --git a/stalwart-mail/Chart.yaml b/stalwart-mail/Chart.yaml index 23a65d9..63d66d0 100644 --- a/stalwart-mail/Chart.yaml +++ b/stalwart-mail/Chart.yaml @@ -3,7 +3,7 @@ name: stalwart-mail description: Helm Chart for Stalwart Mail Server - Secure & Modern All-in-One Mail Server (IMAP, JMAP, SMTP) icon: https://stalw.art/img/apple-touch-icon.png type: application -version: 0.0.20 +version: 0.0.21 # renovate: image=docker.io/stalwartlabs/mail-server appVersion: "0.11.1" maintainers: diff --git a/stalwart-mail/README.md b/stalwart-mail/README.md index 8e21e27..9407581 100644 --- a/stalwart-mail/README.md +++ b/stalwart-mail/README.md @@ -7,7 +7,7 @@ description: "Helm Chart for Stalwart Mail Server - Secure & Modern All-in-One M # stalwart-mail -![Version: 0.0.20](https://img.shields.io/badge/Version-0.0.20-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 0.11.1](https://img.shields.io/badge/AppVersion-0.11.1-informational?style=flat-square) +![Version: 0.0.21](https://img.shields.io/badge/Version-0.0.21-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 0.11.1](https://img.shields.io/badge/AppVersion-0.11.1-informational?style=flat-square) Helm Chart for Stalwart Mail Server - Secure & Modern All-in-One Mail Server (IMAP, JMAP, SMTP) @@ -89,6 +89,7 @@ helm uninstall stalwart-mail-release | config.metrics.prometheus.auth.secret | string | `"%{env:METRICS_SECRET}%"` | | | config.metrics.prometheus.auth.username | string | `"%{env:METRICS_USERNAME}%"` | | | config.metrics.prometheus.enable | bool | `true` | | +| config.server.allowed-ip."10.42.0.1/16" | string | `""` | | | config.server.listener.http.bind[0] | string | `"[::]:80"` | | | config.server.listener.http.protocol | string | `"http"` | | | config.server.listener.https.bind[0] | string | `"[::]:443"` | | diff --git a/stalwart-mail/values.yaml b/stalwart-mail/values.yaml index 30ec5c9..29efe2e 100644 --- a/stalwart-mail/values.yaml +++ b/stalwart-mail/values.yaml @@ -62,6 +62,8 @@ config: bind: ["[::]:443"] tls: implicit: true + allowed-ip: + "10.42.0.1/16": "" storage: data: "rocksdb" -- 2.45.3 From 527147cf8edf9562f372d49e71c122f28834243e Mon Sep 17 00:00:00 2001 From: WrenIX Date: Tue, 7 Jan 2025 15:43:29 +0100 Subject: [PATCH 109/134] fix(home-assistant): update appVersion --- home-assistant/Chart.yaml | 4 ++-- home-assistant/README.md | 2 +- 2 files changed, 3 insertions(+), 3 deletions(-) diff --git a/home-assistant/Chart.yaml b/home-assistant/Chart.yaml index 2df0e1c..072d21d 100644 --- a/home-assistant/Chart.yaml +++ b/home-assistant/Chart.yaml @@ -3,9 +3,9 @@ name: home-assistant description: Home Assistant with tooling to run on an k3s pi icon: https://www.home-assistant.io/images/favicon-192x192.png type: application -version: 0.3.0 +version: 0.3.1 # renovate: image=ghcr.io/home-assistant/home-assistant -appVersion: "2025.1.0" +appVersion: "2025.1.1" maintainers: - name: WrenIX url: https://wrenix.eu diff --git a/home-assistant/README.md b/home-assistant/README.md index 9b41b52..9680429 100644 --- a/home-assistant/README.md +++ b/home-assistant/README.md @@ -7,7 +7,7 @@ description: "Home Assistant with tooling to run on an k3s pi" # home-assistant -![Version: 0.3.0](https://img.shields.io/badge/Version-0.3.0-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 2025.1.0](https://img.shields.io/badge/AppVersion-2025.1.0-informational?style=flat-square) +![Version: 0.3.1](https://img.shields.io/badge/Version-0.3.1-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 2025.1.1](https://img.shields.io/badge/AppVersion-2025.1.1-informational?style=flat-square) Home Assistant with tooling to run on an k3s pi -- 2.45.3 From 59d61d8fe95ea8ea8acd023869b428fa6d8f5c75 Mon Sep 17 00:00:00 2001 From: WrenIX Date: Tue, 7 Jan 2025 15:45:21 +0100 Subject: [PATCH 110/134] fix(matrix-synapse): update helper --- matrix-synapse/Chart.yaml | 2 +- matrix-synapse/README.md | 4 ++-- matrix-synapse/values.yaml | 2 +- 3 files changed, 4 insertions(+), 4 deletions(-) diff --git a/matrix-synapse/Chart.yaml b/matrix-synapse/Chart.yaml index 7a5263d..927b794 100644 --- a/matrix-synapse/Chart.yaml +++ b/matrix-synapse/Chart.yaml @@ -4,7 +4,7 @@ name: matrix-synapse description: Matrix reference homeserver icon: https://matrix.org/images/matrix-logo.svg type: application -version: "1.0.7" +version: "1.0.8" # renovate: image=ghcr.io/element-hq/synapse appVersion: 1.121.1 maintainers: diff --git a/matrix-synapse/README.md b/matrix-synapse/README.md index 802a8cd..fa040f3 100644 --- a/matrix-synapse/README.md +++ b/matrix-synapse/README.md @@ -7,7 +7,7 @@ description: "Matrix reference homeserver" # matrix-synapse -![Version: 1.0.7](https://img.shields.io/badge/Version-1.0.7-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 1.121.1](https://img.shields.io/badge/AppVersion-1.121.1-informational?style=flat-square) +![Version: 1.0.8](https://img.shields.io/badge/Version-1.0.8-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 1.121.1](https://img.shields.io/badge/AppVersion-1.121.1-informational?style=flat-square) Matrix reference homeserver @@ -154,7 +154,7 @@ helm uninstall matrix-synapse-release | volumePermissions.image.pullPolicy | string | `"Always"` | | | volumePermissions.image.registry | string | `"docker.io"` | | | volumePermissions.image.repository | string | `"library/alpine"` | | -| volumePermissions.image.tag | string | `"3.21.0"` | | +| volumePermissions.image.tag | string | `"3.21.1"` | | | volumePermissions.resources | object | `{}` | | | volumePermissions.uid | int | `666` | | | wellknown.affinity | object | `{}` | | diff --git a/matrix-synapse/values.yaml b/matrix-synapse/values.yaml index 7d4042f..3661bab 100644 --- a/matrix-synapse/values.yaml +++ b/matrix-synapse/values.yaml @@ -794,7 +794,7 @@ volumePermissions: image: registry: docker.io repository: library/alpine - tag: 3.21.0 + tag: 3.21.1 pullPolicy: Always ## Optionally specify an array of imagePullSecrets. -- 2.45.3 From 1dd3eeb6b2a400281d32ab462c0bbaec35dfa2d0 Mon Sep 17 00:00:00 2001 From: WrenIX Date: Wed, 8 Jan 2025 22:18:21 +0100 Subject: [PATCH 111/134] fix(authentik-application): redirect_uris --- authentik-application/Chart.yaml | 2 +- authentik-application/README.adoc | 284 ------------------ authentik-application/README.md | 2 +- .../files/provider/oidc.yaml.gotmpl | 3 +- 4 files changed, 4 insertions(+), 287 deletions(-) delete mode 100644 authentik-application/README.adoc diff --git a/authentik-application/Chart.yaml b/authentik-application/Chart.yaml index 4820932..487396c 100644 --- a/authentik-application/Chart.yaml +++ b/authentik-application/Chart.yaml @@ -2,7 +2,7 @@ apiVersion: v2 name: authentik-application description: "A Chart to deploy a secret for the authentik blueprint-sidecar." type: application -version: "0.4.3" +version: "0.4.4" maintainers: - name: WrenIX url: https://wrenix.eu diff --git a/authentik-application/README.adoc b/authentik-application/README.adoc deleted file mode 100644 index 71f4efc..0000000 --- a/authentik-application/README.adoc +++ /dev/null @@ -1,284 +0,0 @@ - - -= authentik-application - -image::https://img.shields.io/badge/Version-0.4.3-informational?style=flat-square[Version: 0.4.3] -image::https://img.shields.io/badge/Version-application-informational?style=flat-square[Type: application] -== Maintainers - -.Maintainers -|=== -| Name | Email | Url - -| WrenIX -| -| -|=== - -## Pre-Requirement -Usage of https://github.com/goauthentik/helm/pull/146 - -## or manual: -Install authentik with this `values.yaml`: -```yaml -serviceAccount: - create: true - -additionalContainers: - - name: sidecar-blueprints - image: "ghcr.io/kiwigrid/k8s-sidecar:1.25.1" - env: - - name: "FOLDER" - value: "/blueprints/sidecar" - - name: "LABEL" - value: "goauthentik_blueprint" - - name: "LABEL_VALUE" - value: "1" - # - name: "NAMESPACE" - # value: "ALL" - - name: "RESOURCE" - value: "both" - - name: "UNIQUE_FILENAMES" - value: "true" - volumeMounts: - - name: sidecar-blueprints - mountPath: /blueprints/sidecar - -volumeMounts: - - name: sidecar-blueprints - mountPath: /blueprints/sidecar - -volumes: - - name: sidecar-blueprints - emptyDir: {} -``` - -And create an Role and bind them on to the ServiceAccount to read secrets: -```yaml ---- -apiVersion: rbac.authorization.k8s.io/v1 -kind: Role -metadata: - name: authentik-blueprint-sidecar -rules: - - apiGroups: [""] - resources: ["configmaps", "secrets"] - verbs: ["get", "watch", "list"] ---- -apiVersion: rbac.authorization.k8s.io/v1 -kind: RoleBinding -metadata: - name: authentik-blueprint-sidecar -roleRef: - apiGroup: rbac.authorization.k8s.io - kind: Role - name: authentik-blueprint-sidecar -subjects: - - kind: ServiceAccount - name: authentik -``` - -== Usage - -Helm must be installed and setup to your kubernetes cluster to use the charts. -Refer to Helm's https://helm.sh/docs[documentation] to get started. -Once Helm has been set up correctly, fetch the charts as follows: - -[source,bash] ----- -helm pull oci://codeberg.org/wrenix/helm-charts/authentik-application ----- - -You can install a chart release using the following command: - -[source,bash] ----- -helm install authentik-application-release oci://codeberg.org/wrenix/helm-charts/authentik-application --values values.yaml ----- - -To uninstall a chart release use `helm`'s delete command: - -[source,bash] ----- -helm uninstall authentik-application-release ----- - -== Values - -.Values -|=== -| Key | Type | Default | Description - -| blueprint.application.bindPolicyID -| string -| `nil` -| uuid for bindPolicyID for group - if not set generated on secret for be stable (or groups: [] filled) - -| blueprint.application.description -| string -| `""` -| description of application - -| blueprint.application.group -| string -| `""` -| put this application in authentik in group - -| blueprint.application.icon -| string -| `""` -| icon of application (url) - -| blueprint.application.launchURL -| string -| `""` -| - -| blueprint.application.name -| string -| `""` -| application name in menu - -| blueprint.application.openInNewTab -| bool -| `false` -| open application in new tab - -| blueprint.application.policyEngineMode -| string -| `"any"` -| - -| blueprint.application.publisher -| string -| `""` -| publisher of application - -| blueprint.application.slug -| string -| `"app-name"` -| application slug - -| blueprint.authentik.domain -| string -| `"https://auth.wrenix.eu"` -| domain to authentik, used in generated url (like issuer) - -| blueprint.groups -| string -| `nil` -| authentik groups created / give access to this application disable any groups by set groups: [] (to a slice) example: - slug: "app: grafana-admin" parent: "app: infra" bindID: uuid - -| blueprint.labels -| object -| `{"goauthentik_blueprint":"1"}` -| label of generated secret with blueprint - -| blueprint.provider.authorizationFlow -| string -| `"default-provider-authorization-implicit-consent"` -| - -| blueprint.provider.enabled -| bool -| `true` -| creat an provider for authentification (otherwise just a like in menu is created) - -| blueprint.provider.name -| string -| `""` -| - -| blueprint.provider.oidc.clientID -| string -| `nil` -| client id - generated if secret enabled - -| blueprint.provider.oidc.clientSecret -| string -| `nil` -| client secret - generated if secret enabled - -| blueprint.provider.oidc.clientType -| string -| `"confidential"` -| - -| blueprint.provider.oidc.redirectURL -| string -| `""` -| - -| blueprint.provider.oidc.scopes -| string -| `nil` -| Scope - -| blueprint.provider.oidc.signingKey -| string -| `""` -| Need for non-curve / RSA - -| blueprint.provider.proxy.cookieDomain -| string -| `""` -| - -| blueprint.provider.proxy.externalHost -| string -| `nil` -| - -| blueprint.provider.proxy.ingress.annotations -| list -| `[]` -| annotations to ingress for outpost - -| blueprint.provider.proxy.ingress.backend -| string -| `"authentik"` -| service backend to authentik - -| blueprint.provider.proxy.ingress.domain -| string -| `nil` -| domain of application (where outpost should be deployed) - -| blueprint.provider.proxy.ingress.enabled -| bool -| `false` -| deploy ingress on application domain for e.g. logout (WIP) - -| blueprint.provider.proxy.ingress.tls -| list -| `[]` -| tls to ingress for outpost - -| blueprint.provider.proxy.skipPathRegex -| string -| `""` -| - -| blueprint.provider.saml -| string -| `nil` -| - -| blueprint.provider.type -| string -| `"oidc"` -| type of application connection, current support: oidc, saml and proxy - -| secret.labels -| object -| `{}` -| label of secret to store generated secret - -| secret.name -| string -| `""` -| name of secret to store generated secret (like clientI) -|=== - -Autogenerated from chart metadata using https://github.com/norwoodj/helm-docs[helm-docs] - diff --git a/authentik-application/README.md b/authentik-application/README.md index 83d2f8b..d030537 100644 --- a/authentik-application/README.md +++ b/authentik-application/README.md @@ -7,7 +7,7 @@ description: "A Chart to deploy a secret for the authentik blueprint-sidecar." # authentik-application -![Version: 0.4.3](https://img.shields.io/badge/Version-0.4.3-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) +![Version: 0.4.4](https://img.shields.io/badge/Version-0.4.4-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) A Chart to deploy a secret for the authentik blueprint-sidecar. diff --git a/authentik-application/files/provider/oidc.yaml.gotmpl b/authentik-application/files/provider/oidc.yaml.gotmpl index 6468f57..9c7d82d 100644 --- a/authentik-application/files/provider/oidc.yaml.gotmpl +++ b/authentik-application/files/provider/oidc.yaml.gotmpl @@ -26,7 +26,8 @@ client_type: {{ .clientType | quote }} client_id: {{ $clientID | quote }} client_secret: {{ $clientSecret | quote }} - redirect_uris: {{ .redirectURL }} + redirect_uris: + - {{ .redirectURL | quote }} {{- with .tokenDuration }} access_token_validity: {{ . | quote }} {{- end }} -- 2.45.3 From 50d64e2bfbfd984031ce6637d369b9c916cf1ac8 Mon Sep 17 00:00:00 2001 From: WrenIX Date: Wed, 8 Jan 2025 22:33:17 +0100 Subject: [PATCH 112/134] fix(authentik-application): invalidation_flow on oidc --- authentik-application/Chart.yaml | 2 +- authentik-application/README.md | 3 ++- authentik-application/files/provider/oidc.yaml.gotmpl | 4 +++- authentik-application/values.yaml | 1 + 4 files changed, 7 insertions(+), 3 deletions(-) diff --git a/authentik-application/Chart.yaml b/authentik-application/Chart.yaml index 487396c..8a96b3e 100644 --- a/authentik-application/Chart.yaml +++ b/authentik-application/Chart.yaml @@ -2,7 +2,7 @@ apiVersion: v2 name: authentik-application description: "A Chart to deploy a secret for the authentik blueprint-sidecar." type: application -version: "0.4.4" +version: "0.4.5" maintainers: - name: WrenIX url: https://wrenix.eu diff --git a/authentik-application/README.md b/authentik-application/README.md index d030537..c91ec39 100644 --- a/authentik-application/README.md +++ b/authentik-application/README.md @@ -7,7 +7,7 @@ description: "A Chart to deploy a secret for the authentik blueprint-sidecar." # authentik-application -![Version: 0.4.4](https://img.shields.io/badge/Version-0.4.4-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) +![Version: 0.4.5](https://img.shields.io/badge/Version-0.4.5-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) A Chart to deploy a secret for the authentik blueprint-sidecar. @@ -121,6 +121,7 @@ helm uninstall authentik-application-release | blueprint.labels | object | `{"goauthentik_blueprint":"1"}` | label of generated secret with blueprint | | blueprint.provider.authorizationFlow | string | `"default-provider-authorization-implicit-consent"` | | | blueprint.provider.enabled | bool | `true` | creat an provider for authentification (otherwise just a like in menu is created) | +| blueprint.provider.invalidationFlow | string | `"default-provider-invalidation-flow"` | | | blueprint.provider.name | string | `""` | | | blueprint.provider.oidc.clientID | string | `nil` | client id - generated if secret enabled | | blueprint.provider.oidc.clientSecret | string | `nil` | client secret - generated if secret enabled | diff --git a/authentik-application/files/provider/oidc.yaml.gotmpl b/authentik-application/files/provider/oidc.yaml.gotmpl index 9c7d82d..cc80565 100644 --- a/authentik-application/files/provider/oidc.yaml.gotmpl +++ b/authentik-application/files/provider/oidc.yaml.gotmpl @@ -22,12 +22,14 @@ state: present attrs: authorization_flow: !Find [authentik_flows.flow, [slug, {{ .Values.blueprint.provider.authorizationFlow }}]] + invalidation_flow: !Find [authentik_flows.flow, [slug, {{ .Values.blueprint.provider.invalidationFlow }}]] {{- with .Values.blueprint.provider.oidc }} client_type: {{ .clientType | quote }} client_id: {{ $clientID | quote }} client_secret: {{ $clientSecret | quote }} redirect_uris: - - {{ .redirectURL | quote }} + - matching_mode: "strict" + url: {{ .redirectURL | quote }} {{- with .tokenDuration }} access_token_validity: {{ . | quote }} {{- end }} diff --git a/authentik-application/values.yaml b/authentik-application/values.yaml index 9db23c1..b3199e5 100644 --- a/authentik-application/values.yaml +++ b/authentik-application/values.yaml @@ -16,6 +16,7 @@ blueprint: enabled: true name: "" authorizationFlow: "default-provider-authorization-implicit-consent" + invalidationFlow: "default-provider-invalidation-flow" # -- type of application connection, current support: oidc, saml and proxy type: "oidc" oidc: -- 2.45.3 From b37f6fe61547d36a094ea10043ee0050b6f35686 Mon Sep 17 00:00:00 2001 From: WrenIX Date: Wed, 15 Jan 2025 22:06:38 +0100 Subject: [PATCH 113/134] fix(matrix-synapse): update dependencies --- matrix-synapse/Chart.lock | 8 ++++---- matrix-synapse/Chart.yaml | 4 ++-- matrix-synapse/README.md | 6 +++--- matrix-synapse/values.yaml | 2 +- 4 files changed, 10 insertions(+), 10 deletions(-) diff --git a/matrix-synapse/Chart.lock b/matrix-synapse/Chart.lock index 72aca1a..d7dc37a 100644 --- a/matrix-synapse/Chart.lock +++ b/matrix-synapse/Chart.lock @@ -1,9 +1,9 @@ dependencies: - name: postgresql repository: oci://docker.io/bitnamicharts - version: 16.3.4 + version: 16.4.3 - name: redis repository: oci://docker.io/bitnamicharts - version: 20.6.1 -digest: sha256:665df7526ab6a366a2d588fd0269eafb28b8b798e16e2df0c61b43095aa97219 -generated: "2024-12-23T12:06:19.941471462+01:00" + version: 20.6.3 +digest: sha256:dd37b0663f93a21ea0d23e5041b48efef3cef63a051f2942eb095d1b95e63d7d +generated: "2025-01-15T22:06:14.404148475+01:00" diff --git a/matrix-synapse/Chart.yaml b/matrix-synapse/Chart.yaml index 927b794..c6c09a3 100644 --- a/matrix-synapse/Chart.yaml +++ b/matrix-synapse/Chart.yaml @@ -4,7 +4,7 @@ name: matrix-synapse description: Matrix reference homeserver icon: https://matrix.org/images/matrix-logo.svg type: application -version: "1.0.8" +version: "1.0.9" # renovate: image=ghcr.io/element-hq/synapse appVersion: 1.121.1 maintainers: @@ -17,6 +17,6 @@ dependencies: repository: "oci://docker.io/bitnamicharts" condition: postgresql.enabled - name: redis - version: "20.6.1" + version: "20.6.3" repository: "oci://docker.io/bitnamicharts" condition: redis.enabled diff --git a/matrix-synapse/README.md b/matrix-synapse/README.md index fa040f3..467866e 100644 --- a/matrix-synapse/README.md +++ b/matrix-synapse/README.md @@ -7,7 +7,7 @@ description: "Matrix reference homeserver" # matrix-synapse -![Version: 1.0.8](https://img.shields.io/badge/Version-1.0.8-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 1.121.1](https://img.shields.io/badge/AppVersion-1.121.1-informational?style=flat-square) +![Version: 1.0.9](https://img.shields.io/badge/Version-1.0.9-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 1.121.1](https://img.shields.io/badge/AppVersion-1.121.1-informational?style=flat-square) Matrix reference homeserver @@ -44,7 +44,7 @@ helm uninstall matrix-synapse-release | Repository | Name | Version | |------------|------|---------| | oci://docker.io/bitnamicharts | postgresql | ^16.3.1 | -| oci://docker.io/bitnamicharts | redis | 20.6.1 | +| oci://docker.io/bitnamicharts | redis | 20.6.3 | ## Values @@ -154,7 +154,7 @@ helm uninstall matrix-synapse-release | volumePermissions.image.pullPolicy | string | `"Always"` | | | volumePermissions.image.registry | string | `"docker.io"` | | | volumePermissions.image.repository | string | `"library/alpine"` | | -| volumePermissions.image.tag | string | `"3.21.1"` | | +| volumePermissions.image.tag | string | `"3.21.2"` | | | volumePermissions.resources | object | `{}` | | | volumePermissions.uid | int | `666` | | | wellknown.affinity | object | `{}` | | diff --git a/matrix-synapse/values.yaml b/matrix-synapse/values.yaml index 3661bab..aaa0837 100644 --- a/matrix-synapse/values.yaml +++ b/matrix-synapse/values.yaml @@ -794,7 +794,7 @@ volumePermissions: image: registry: docker.io repository: library/alpine - tag: 3.21.1 + tag: 3.21.2 pullPolicy: Always ## Optionally specify an array of imagePullSecrets. -- 2.45.3 From 9c890d23dfa301f8d9e2e84551da9332ca0b9631 Mon Sep 17 00:00:00 2001 From: WrenIX Date: Wed, 15 Jan 2025 22:07:53 +0100 Subject: [PATCH 114/134] fix(home-assistant): update appVersion --- home-assistant/Chart.yaml | 4 ++-- home-assistant/README.md | 2 +- 2 files changed, 3 insertions(+), 3 deletions(-) diff --git a/home-assistant/Chart.yaml b/home-assistant/Chart.yaml index 072d21d..460b754 100644 --- a/home-assistant/Chart.yaml +++ b/home-assistant/Chart.yaml @@ -3,9 +3,9 @@ name: home-assistant description: Home Assistant with tooling to run on an k3s pi icon: https://www.home-assistant.io/images/favicon-192x192.png type: application -version: 0.3.1 +version: 0.3.2 # renovate: image=ghcr.io/home-assistant/home-assistant -appVersion: "2025.1.1" +appVersion: "2025.1.2" maintainers: - name: WrenIX url: https://wrenix.eu diff --git a/home-assistant/README.md b/home-assistant/README.md index 9680429..3fc80ec 100644 --- a/home-assistant/README.md +++ b/home-assistant/README.md @@ -7,7 +7,7 @@ description: "Home Assistant with tooling to run on an k3s pi" # home-assistant -![Version: 0.3.1](https://img.shields.io/badge/Version-0.3.1-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 2025.1.1](https://img.shields.io/badge/AppVersion-2025.1.1-informational?style=flat-square) +![Version: 0.3.2](https://img.shields.io/badge/Version-0.3.2-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 2025.1.2](https://img.shields.io/badge/AppVersion-2025.1.2-informational?style=flat-square) Home Assistant with tooling to run on an k3s pi -- 2.45.3 From e4086c91c790ec6b6dff27a9a13c17e697a8b8e5 Mon Sep 17 00:00:00 2001 From: WrenIX Date: Wed, 15 Jan 2025 22:09:33 +0100 Subject: [PATCH 115/134] fix(forgejo-runner): updates --- forgejo-runner/Chart.yaml | 4 ++-- forgejo-runner/README.md | 4 ++-- forgejo-runner/values.yaml | 2 +- 3 files changed, 5 insertions(+), 5 deletions(-) diff --git a/forgejo-runner/Chart.yaml b/forgejo-runner/Chart.yaml index 88d94e4..d9b3457 100644 --- a/forgejo-runner/Chart.yaml +++ b/forgejo-runner/Chart.yaml @@ -2,9 +2,9 @@ apiVersion: v2 name: forgejo-runner description: Deploy runner for an forgejo instance (default codeberg.org) type: application -version: "0.4.7" +version: "0.4.8" # renovate: image=code.forgejo.org/forgejo/runner -appVersion: "5.0.4" +appVersion: "6.0.1" maintainers: - name: WrenIX url: https://wrenix.eu diff --git a/forgejo-runner/README.md b/forgejo-runner/README.md index 3871194..b56db0f 100644 --- a/forgejo-runner/README.md +++ b/forgejo-runner/README.md @@ -7,7 +7,7 @@ description: "Deploy runner for an forgejo instance (default codeberg.org)" # forgejo-runner -![Version: 0.4.7](https://img.shields.io/badge/Version-0.4.7-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 5.0.4](https://img.shields.io/badge/AppVersion-5.0.4-informational?style=flat-square) +![Version: 0.4.8](https://img.shields.io/badge/Version-0.4.8-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 6.0.1](https://img.shields.io/badge/AppVersion-6.0.1-informational?style=flat-square) Deploy runner for an forgejo instance (default codeberg.org) @@ -119,7 +119,7 @@ helm uninstall forgejo-runner-release | dind.image.pullPolicy | string | `"IfNotPresent"` | | | dind.image.registry | string | `"docker.io"` | | | dind.image.repository | string | `"library/docker"` | | -| dind.image.tag | string | `"27.4.1-dind"` | | +| dind.image.tag | string | `"27.5.0-dind"` | | | extraEnvVars | list | `[]` | Additional environment variables to be set on runner container Example: extraEnvVars: - name: FOO value: "bar" | | fullnameOverride | string | `""` | | | image.pullPolicy | string | `"IfNotPresent"` | | diff --git a/forgejo-runner/values.yaml b/forgejo-runner/values.yaml index cb0b17f..2802ed6 100644 --- a/forgejo-runner/values.yaml +++ b/forgejo-runner/values.yaml @@ -144,7 +144,7 @@ dind: registry: docker.io repository: library/docker pullPolicy: IfNotPresent - tag: 27.4.1-dind + tag: 27.5.0-dind kubectl: image: registry: docker.io -- 2.45.3 From 7ae56a29d3ec8a2495fcb855acdc18160772f21f Mon Sep 17 00:00:00 2001 From: WrenIX Date: Wed, 15 Jan 2025 22:12:12 +0100 Subject: [PATCH 116/134] fix(autopush): update dependencies redis --- autopush/Chart.lock | 6 +++--- autopush/Chart.yaml | 4 ++-- autopush/README.md | 4 ++-- 3 files changed, 7 insertions(+), 7 deletions(-) diff --git a/autopush/Chart.lock b/autopush/Chart.lock index 50a66e1..374ae78 100644 --- a/autopush/Chart.lock +++ b/autopush/Chart.lock @@ -1,6 +1,6 @@ dependencies: - name: redis repository: oci://docker.io/bitnamicharts - version: 20.6.1 -digest: sha256:c792eb1f889b58718def58d4bb80d370a1f5ddfc093e5902ab3d87441a4a769f -generated: "2025-01-03T14:55:39.364820359+01:00" + version: 20.6.3 +digest: sha256:393d6daa4bc8cdb66a7b6b34571a98e240890e994cb717e6bd2886dab67d196b +generated: "2025-01-15T22:10:56.598818643+01:00" diff --git a/autopush/Chart.yaml b/autopush/Chart.yaml index eacdf2c..a57c4f9 100644 --- a/autopush/Chart.yaml +++ b/autopush/Chart.yaml @@ -3,7 +3,7 @@ name: autopush description: A Helm chart for Kubernetes icon: type: application -version: 0.0.3 +version: 0.0.4 # renovate: image=docker.io/mozilla-services/autopush-rs appVersion: "1.72.2" maintainers: @@ -12,6 +12,6 @@ maintainers: dependencies: - name: redis - version: "20.6.1" + version: "20.6.3" repository: "oci://docker.io/bitnamicharts" condition: redis.internal diff --git a/autopush/README.md b/autopush/README.md index f0613d5..997d018 100644 --- a/autopush/README.md +++ b/autopush/README.md @@ -7,7 +7,7 @@ description: "A Helm chart for Kubernetes" # autopush -![Version: 0.0.3](https://img.shields.io/badge/Version-0.0.3-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 1.72.2](https://img.shields.io/badge/AppVersion-1.72.2-informational?style=flat-square) +![Version: 0.0.4](https://img.shields.io/badge/Version-0.0.4-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 1.72.2](https://img.shields.io/badge/AppVersion-1.72.2-informational?style=flat-square) A Helm chart for Kubernetes @@ -57,7 +57,7 @@ helm uninstall autopush-release | Repository | Name | Version | |------------|------|---------| -| oci://docker.io/bitnamicharts | redis | 20.6.1 | +| oci://docker.io/bitnamicharts | redis | 20.6.3 | ## Values -- 2.45.3 From 4e6de7e2bbbd32a9cac543323537918060c0df48 Mon Sep 17 00:00:00 2001 From: WrenIX Date: Wed, 15 Jan 2025 22:12:16 +0100 Subject: [PATCH 117/134] fix(pretix): update dependencies redis --- pretix/Chart.lock | 8 ++++---- pretix/Chart.yaml | 4 ++-- pretix/README.md | 8 ++++---- 3 files changed, 10 insertions(+), 10 deletions(-) diff --git a/pretix/Chart.lock b/pretix/Chart.lock index ea43fe0..d8fae94 100644 --- a/pretix/Chart.lock +++ b/pretix/Chart.lock @@ -1,9 +1,9 @@ dependencies: - name: postgresql repository: oci://docker.io/bitnamicharts - version: 16.3.4 + version: 16.4.3 - name: redis repository: oci://docker.io/bitnamicharts - version: 20.6.1 -digest: sha256:665df7526ab6a366a2d588fd0269eafb28b8b798e16e2df0c61b43095aa97219 -generated: "2024-12-23T12:06:39.521620501+01:00" + version: 20.6.3 +digest: sha256:dd37b0663f93a21ea0d23e5041b48efef3cef63a051f2942eb095d1b95e63d7d +generated: "2025-01-15T22:10:16.363478706+01:00" diff --git a/pretix/Chart.yaml b/pretix/Chart.yaml index 6b5833e..ae5420a 100644 --- a/pretix/Chart.yaml +++ b/pretix/Chart.yaml @@ -2,7 +2,7 @@ apiVersion: v2 name: pretix description: Reinventing ticket presales, one ticket at a time. type: application -version: 0.1.2 +version: 0.1.3 # renovate: image=docker.io/pretix/standalone appVersion: "2024.11.0" keywords: @@ -20,6 +20,6 @@ dependencies: repository: "oci://docker.io/bitnamicharts" condition: postgresql.enabled - name: redis - version: "20.6.1" + version: "20.6.3" repository: "oci://docker.io/bitnamicharts" condition: redis.enabled diff --git a/pretix/README.md b/pretix/README.md index 62bb464..d322cb9 100644 --- a/pretix/README.md +++ b/pretix/README.md @@ -7,7 +7,7 @@ description: "Reinventing ticket presales, one ticket at a time." # pretix -![Version: 0.1.2](https://img.shields.io/badge/Version-0.1.2-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 2024.11.0](https://img.shields.io/badge/AppVersion-2024.11.0-informational?style=flat-square) +![Version: 0.1.3](https://img.shields.io/badge/Version-0.1.3-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 2024.11.0](https://img.shields.io/badge/AppVersion-2024.11.0-informational?style=flat-square) Reinventing ticket presales, one ticket at a time. @@ -50,7 +50,7 @@ helm uninstall pretix-release | Repository | Name | Version | |------------|------|---------| | oci://docker.io/bitnamicharts | postgresql | ^16.3.1 | -| oci://docker.io/bitnamicharts | redis | 20.6.1 | +| oci://docker.io/bitnamicharts | redis | 20.6.3 | ## Values @@ -154,7 +154,7 @@ helm uninstall pretix-release Autogenerated from chart metadata using [helm-docs](https://github.com/norwoodj/helm-docs) # pretix -![Version: 0.1.2](https://img.shields.io/badge/Version-0.1.2-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 2024.11.0](https://img.shields.io/badge/AppVersion-2024.11.0-informational?style=flat-square) +![Version: 0.1.3](https://img.shields.io/badge/Version-0.1.3-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 2024.11.0](https://img.shields.io/badge/AppVersion-2024.11.0-informational?style=flat-square) Reinventing ticket presales, one ticket at a time. @@ -175,7 +175,7 @@ Reinventing ticket presales, one ticket at a time. | Repository | Name | Version | |------------|------|---------| | oci://docker.io/bitnamicharts | postgresql | ^16.3.1 | -| oci://docker.io/bitnamicharts | redis | 20.6.1 | +| oci://docker.io/bitnamicharts | redis | 20.6.3 | ## Values -- 2.45.3 From e5099620cdd660e8971fe5b704ef6409459c8ebe Mon Sep 17 00:00:00 2001 From: WrenIX Date: Thu, 16 Jan 2025 15:38:52 +0100 Subject: [PATCH 118/134] fix(autopush): add first prometheus rules --- autopush/Chart.yaml | 2 +- autopush/README.md | 7 ++++- autopush/templates/prometheus-rules.yaml | 38 ++++++++++++++++++++++++ autopush/values.yaml | 7 +++++ 4 files changed, 52 insertions(+), 2 deletions(-) create mode 100644 autopush/templates/prometheus-rules.yaml diff --git a/autopush/Chart.yaml b/autopush/Chart.yaml index a57c4f9..4f826d7 100644 --- a/autopush/Chart.yaml +++ b/autopush/Chart.yaml @@ -3,7 +3,7 @@ name: autopush description: A Helm chart for Kubernetes icon: type: application -version: 0.0.4 +version: 0.0.5 # renovate: image=docker.io/mozilla-services/autopush-rs appVersion: "1.72.2" maintainers: diff --git a/autopush/README.md b/autopush/README.md index 997d018..fcf6fc7 100644 --- a/autopush/README.md +++ b/autopush/README.md @@ -7,7 +7,7 @@ description: "A Helm chart for Kubernetes" # autopush -![Version: 0.0.4](https://img.shields.io/badge/Version-0.0.4-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 1.72.2](https://img.shields.io/badge/AppVersion-1.72.2-informational?style=flat-square) +![Version: 0.0.5](https://img.shields.io/badge/Version-0.0.5-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 1.72.2](https://img.shields.io/badge/AppVersion-1.72.2-informational?style=flat-square) A Helm chart for Kubernetes @@ -123,6 +123,11 @@ helm uninstall autopush-release | prometheus.readinessProbe.httpGet.path | string | `"/"` | | | prometheus.readinessProbe.httpGet.port | string | `"metrics"` | | | prometheus.resources | object | `{}` | We usually recommend not to specify default resources and to leave this as a conscious choice for the user. This also increases chances charts run on environments with little resources, such as Minikube. If you do want to specify resources, uncomment the following lines, adjust them as necessary, and remove the curly braces after 'resources:'. limits: cpu: 100m memory: 128Mi requests: cpu: 100m memory: 128Mi | +| prometheus.rules.additionalRules | list | `[]` | | +| prometheus.rules.default.alertLabels | object | `{}` | | +| prometheus.rules.default.enabled | bool | `true` | | +| prometheus.rules.enabled | bool | `false` | | +| prometheus.rules.labels | object | `{}` | | | prometheus.securityContext | object | `{}` | securityContext capabilities: drop: - ALL readOnlyRootFilesystem: true runAsNonRoot: true runAsUser: 1000 | | prometheus.servicemonitor.enabled | bool | `false` | | | prometheus.servicemonitor.labels | object | `{}` | | diff --git a/autopush/templates/prometheus-rules.yaml b/autopush/templates/prometheus-rules.yaml new file mode 100644 index 0000000..c7d1b34 --- /dev/null +++ b/autopush/templates/prometheus-rules.yaml @@ -0,0 +1,38 @@ +{{- if and .Values.prometheus.rules.enabled }} +apiVersion: monitoring.coreos.com/v1 +kind: PrometheusRule +metadata: + name: {{ include "autopush.fullname" . }} + labels: + {{- include "autopush.labels" . | nindent 4 }} + {{- with .Values.prometheus.rules.labels }} + {{- toYaml . | nindent 4 }} + {{- end }} +spec: + groups: + {{- if .Values.prometheus.rules.default.enabled }} + - name: {{ template "autopush.fullname" . }}-Endpoint + rules: + - alert: "autopush: No Subscription API Error" + expr: 'sum(increase(autoendpoint_api_error_no_subscription{}[1h])) without (container,endpoint,pod,instance) > 0' + for: 5m + labels: + severity: critical + {{- with .Values.prometheus.rules.default.alertLabels }} + {{- toYaml . | nindent 12 }} + {{- end }} + annotations: + {{` + summary: "autoendpoint: No Subscription API Error in {{ $labels.namespace }}/{{ $labels.job }} increate in the last hour" + `}} + {{/* + - name: {{ template "autopush.fullname" . }}-Push + rules: + */}} + {{- end }} + {{- with .Values.prometheus.rules.additionalRules }} + - name: {{ template "autopush.fullname" $ }}-Additional + rules: + {{- toYaml . | nindent 8 }} + {{- end }} +{{- end }} diff --git a/autopush/values.yaml b/autopush/values.yaml index ac0fabc..7ce041f 100644 --- a/autopush/values.yaml +++ b/autopush/values.yaml @@ -30,6 +30,13 @@ prometheus: servicemonitor: enabled: false labels: {} + rules: + enabled: false + labels: {} + default: + enabled: true + alertLabels: {} + additionalRules: [] image: registry: docker.io -- 2.45.3 From d2e147987b6c0f9fc3610d6c26f3a9153886141a Mon Sep 17 00:00:00 2001 From: WrenIX Date: Thu, 16 Jan 2025 17:22:01 +0100 Subject: [PATCH 119/134] fix(autopush): add grafana dashboards (first draft) --- autopush/Chart.yaml | 2 +- autopush/README.md | 7 +- autopush/grafana_dashboards/overview.json | 355 ++++++++++++++++++ .../configmap_grafana_dashboards.yaml | 14 + autopush/values.yaml | 18 +- 5 files changed, 386 insertions(+), 10 deletions(-) create mode 100644 autopush/grafana_dashboards/overview.json create mode 100644 autopush/templates/configmap_grafana_dashboards.yaml diff --git a/autopush/Chart.yaml b/autopush/Chart.yaml index 4f826d7..23c3d26 100644 --- a/autopush/Chart.yaml +++ b/autopush/Chart.yaml @@ -3,7 +3,7 @@ name: autopush description: A Helm chart for Kubernetes icon: type: application -version: 0.0.5 +version: 0.0.6 # renovate: image=docker.io/mozilla-services/autopush-rs appVersion: "1.72.2" maintainers: diff --git a/autopush/README.md b/autopush/README.md index fcf6fc7..a92269b 100644 --- a/autopush/README.md +++ b/autopush/README.md @@ -7,7 +7,7 @@ description: "A Helm chart for Kubernetes" # autopush -![Version: 0.0.5](https://img.shields.io/badge/Version-0.0.5-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 1.72.2](https://img.shields.io/badge/AppVersion-1.72.2-informational?style=flat-square) +![Version: 0.0.6](https://img.shields.io/badge/Version-0.0.6-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 1.72.2](https://img.shields.io/badge/AppVersion-1.72.2-informational?style=flat-square) A Helm chart for Kubernetes @@ -70,7 +70,7 @@ helm uninstall autopush-release | autoconnect.image.tag | string | `"latest"` | | | autoconnect.livenessProbe | object | `{"httpGet":{"path":"/health","port":"http"}}` | This is to setup the liveness and readiness probes more information can be found here: https://kubernetes.io/docs/tasks/configure-pod-container/configure-liveness-readiness-startup-probes/ | | autoconnect.nodeSelector | object | `{}` | | -| autoconnect.podAnnotations | object | `{}` | This is for setting Kubernetes Annotations to a Pod. For more information checkout: https://kubernetes.io/docs/concepts/overview/working-with-objects/annotations/ | +| autoconnect.podAnnotations | object | `{}` | This is for setting Kubernetes Annotations to a Pod. For more information checkout: https://kubernetes.io/docs/concepts/overview/working-with-objects/annotations/ | | autoconnect.podLabels | object | `{}` | This is for setting Kubernetes Labels to a Pod. For more information checkout: https://kubernetes.io/docs/concepts/overview/working-with-objects/labels/ | | autoconnect.podSecurityContext | object | `{}` | | | autoconnect.readinessProbe.httpGet.path | string | `"/health"` | | @@ -107,6 +107,9 @@ helm uninstall autopush-release | fullnameOverride | string | `""` | | | global.image.pullPolicy | string | `nil` | if set it will overwrite all pullPolicy | | global.image.registry | string | `nil` | if set it will overwrite all registry entries | +| grafana.dashboards.annotations | object | `{}` | | +| grafana.dashboards.enabled | bool | `false` | | +| grafana.dashboards.labels.grafana_dashboard | string | `"1"` | | | imagePullSecrets | list | `[]` | This is for the secretes for pulling an image from a private repository more information can be found here: https://kubernetes.io/docs/tasks/configure-pod-container/pull-image-private-registry/ | | ingress.annotations | object | `{}` | | | ingress.className | string | `""` | | diff --git a/autopush/grafana_dashboards/overview.json b/autopush/grafana_dashboards/overview.json new file mode 100644 index 0000000..f0c0390 --- /dev/null +++ b/autopush/grafana_dashboards/overview.json @@ -0,0 +1,355 @@ +{ + "annotations": { + "list": [ + { + "builtIn": 1, + "datasource": { + "type": "grafana", + "uid": "-- Grafana --" + }, + "enable": true, + "hide": true, + "iconColor": "rgba(0, 211, 255, 1)", + "name": "Annotations & Alerts", + "type": "dashboard" + } + ] + }, + "editable": true, + "fiscalYearStartMonth": 0, + "graphTooltip": 0, + "links": [], + "panels": [ + { + "collapsed": false, + "gridPos": { + "h": 1, + "w": 24, + "x": 0, + "y": 0 + }, + "id": 4, + "panels": [], + "title": "Push", + "type": "row" + }, + { + "datasource": { + "type": "prometheus", + "uid": "${DS_PROMETHEUS}" + }, + "fieldConfig": { + "defaults": { + "color": { + "mode": "palette-classic" + }, + "custom": { + "hideFrom": { + "legend": false, + "tooltip": false, + "viz": false + } + }, + "mappings": [] + }, + "overrides": [] + }, + "gridPos": { + "h": 8, + "w": 9, + "x": 0, + "y": 1 + }, + "id": 1, + "options": { + "legend": { + "displayMode": "list", + "placement": "bottom", + "showLegend": true, + "values": [ + "percent" + ] + }, + "pieType": "pie", + "reduceOptions": { + "calcs": [ + "lastNotNull" + ], + "fields": "", + "values": false + }, + "tooltip": { + "mode": "single", + "sort": "none" + } + }, + "pluginVersion": "11.4.0", + "targets": [ + { + "datasource": { + "type": "prometheus", + "uid": "${DS_PROMETHEUS}" + }, + "editorMode": "code", + "expr": "sum(increase(autopush_notification_message_retrieved{namespace=~\"$namespace\"}[$__range])) without (container,endpoint,instance,pod,job,service)", + "legendFormat": "Retrieved: {{namespace}}", + "range": true, + "refId": "A" + }, + { + "datasource": { + "type": "prometheus", + "uid": "${DS_PROMETHEUS}" + }, + "editorMode": "code", + "expr": "sum(increase(autopush_notification_message_deleted{namespace=~\"$namespace\"}[$__range])) without (container,endpoint,instance,pod,job,service)", + "hide": false, + "instant": false, + "legendFormat": "Deleted: {{namespace}}", + "range": true, + "refId": "B" + } + ], + "title": "Notification Message", + "transparent": true, + "type": "piechart" + }, + { + "datasource": { + "type": "prometheus", + "uid": "${DS_PROMETHEUS}" + }, + "fieldConfig": { + "defaults": { + "color": { + "mode": "palette-classic" + }, + "custom": { + "hideFrom": { + "legend": false, + "tooltip": false, + "viz": false + } + }, + "mappings": [] + }, + "overrides": [] + }, + "gridPos": { + "h": 8, + "w": 8, + "x": 10, + "y": 1 + }, + "id": 2, + "options": { + "legend": { + "displayMode": "list", + "placement": "right", + "showLegend": true, + "values": [ + "percent" + ] + }, + "pieType": "pie", + "reduceOptions": { + "calcs": [ + "lastNotNull" + ], + "fields": "", + "values": false + }, + "tooltip": { + "mode": "single", + "sort": "none" + } + }, + "pluginVersion": "11.4.0", + "targets": [ + { + "datasource": { + "type": "prometheus", + "uid": "${DS_PROMETHEUS}" + }, + "editorMode": "code", + "expr": "sum(increase(autopush_ua_notification_sent{namespace=~\"$namespace\"}[$__range])) without (container,endpoint,instance,pod,job,service)", + "hide": false, + "instant": false, + "legendFormat": "OS: {{namespace}}/{{os}}", + "range": true, + "refId": "A" + } + ], + "title": "UA Notify Send", + "transparent": true, + "type": "piechart" + }, + { + "collapsed": false, + "gridPos": { + "h": 1, + "w": 24, + "x": 0, + "y": 9 + }, + "id": 5, + "panels": [], + "title": "Endpoint", + "type": "row" + }, + { + "datasource": { + "type": "prometheus", + "uid": "${DS_PROMETHEUS}" + }, + "fieldConfig": { + "defaults": { + "color": { + "mode": "palette-classic" + }, + "custom": { + "axisBorderShow": false, + "axisCenteredZero": false, + "axisColorMode": "text", + "axisLabel": "", + "axisPlacement": "auto", + "barAlignment": 0, + "barWidthFactor": 0.6, + "drawStyle": "line", + "fillOpacity": 0, + "gradientMode": "none", + "hideFrom": { + "legend": false, + "tooltip": false, + "viz": false + }, + "insertNulls": false, + "lineInterpolation": "linear", + "lineWidth": 1, + "pointSize": 5, + "scaleDistribution": { + "type": "linear" + }, + "showPoints": "auto", + "spanNulls": false, + "stacking": { + "group": "A", + "mode": "none" + }, + "thresholdsStyle": { + "mode": "off" + } + }, + "mappings": [], + "thresholds": { + "mode": "absolute", + "steps": [ + { + "color": "green", + "value": null + }, + { + "color": "red", + "value": 80 + } + ] + } + }, + "overrides": [] + }, + "gridPos": { + "h": 8, + "w": 12, + "x": 0, + "y": 10 + }, + "id": 3, + "options": { + "legend": { + "calcs": [], + "displayMode": "list", + "placement": "bottom", + "showLegend": true + }, + "tooltip": { + "mode": "single", + "sort": "none" + } + }, + "pluginVersion": "11.4.0", + "targets": [ + { + "datasource": { + "type": "prometheus", + "uid": "${DS_PROMETHEUS}" + }, + "editorMode": "code", + "expr": "sum(increase(autoendpoint_api_error_no_subscription{namespace=~\"$namespace\"}[$__range])) without(container,endpoint,instance,pod,service,job)", + "legendFormat": "__auto", + "range": true, + "refId": "A" + } + ], + "title": "No Subscription API Error", + "transparent": true, + "type": "timeseries" + } + ], + "preload": false, + "refresh": "", + "schemaVersion": 40, + "tags": [], + "templating": { + "list": [ + { + "current": { + "text": "Prometheus", + "value": "prometheus" + }, + "label": "datasource", + "name": "DS_PROMETHEUS", + "options": [], + "query": "prometheus", + "refresh": 1, + "regex": "", + "type": "datasource" + }, + { + "current": { + "text": [ + "chaos-autopush" + ], + "value": [ + "chaos-autopush" + ] + }, + "datasource": { + "type": "prometheus", + "uid": "${DS_PROMETHEUS}" + }, + "definition": "label_values(statsd_exporter_build_info,namespace)", + "includeAll": true, + "multi": true, + "name": "namespace", + "options": [], + "query": { + "qryType": 1, + "query": "label_values(statsd_exporter_build_info,namespace)", + "refId": "PrometheusVariableQueryEditor-VariableQuery" + }, + "refresh": 1, + "regex": "", + "type": "query" + } + ] + }, + "time": { + "from": "now-24h", + "to": "now" + }, + "timepicker": {}, + "timezone": "browser", + "title": "Autopush: Overview", + "version": 0, + "weekStart": "" +} diff --git a/autopush/templates/configmap_grafana_dashboards.yaml b/autopush/templates/configmap_grafana_dashboards.yaml new file mode 100644 index 0000000..0b8850c --- /dev/null +++ b/autopush/templates/configmap_grafana_dashboards.yaml @@ -0,0 +1,14 @@ +{{- if .Values.grafana.dashboards.enabled }} +--- +apiVersion: v1 +kind: ConfigMap +metadata: + name: {{ include "autopush.fullname" . }}-grafana-dashboards + labels: + {{- include "autopush.labels" . | nindent 4 }} + {{- toYaml .Values.grafana.dashboards.labels | nindent 4 }} + annotations: + {{- toYaml .Values.grafana.dashboards.annotations | nindent 4 }} +data: + {{- (.Files.Glob "grafana_dashboards/*.json" ).AsConfig | nindent 2 }} +{{- end }} diff --git a/autopush/values.yaml b/autopush/values.yaml index 7ce041f..11e251a 100644 --- a/autopush/values.yaml +++ b/autopush/values.yaml @@ -12,8 +12,6 @@ nameOverride: "" fullnameOverride: "" - - config: logs: # -- set log level of autopush @@ -81,6 +79,13 @@ prometheus: # readOnly: true volumeMounts: [] +grafana: + dashboards: + enabled: false + labels: + grafana_dashboard: "1" + annotations: {} + ## This configuration is for the internal Redis that's deployed for use with ## workers/sharding, for an external Redis server you want to set enabled to ## false and configure the externalRedis block. @@ -96,7 +101,7 @@ redis: password: autopush # -- Or use existing secret with "redis-password" key instead of static password - existingSecret: + existingSecret: external: host: redis port: 6379 @@ -114,7 +119,6 @@ redis: port: 6379 - autoconnect: # -- This will set the replicaset count more information can be found here: https://kubernetes.io/docs/concepts/workloads/controllers/replicaset/ replicaCount: 1 @@ -124,7 +128,7 @@ autoconnect: pullPolicy: IfNotPresent tag: latest # -- This is for setting Kubernetes Annotations to a Pod. - # For more information checkout: https://kubernetes.io/docs/concepts/overview/working-with-objects/annotations/ + # For more information checkout: https://kubernetes.io/docs/concepts/overview/working-with-objects/annotations/ podAnnotations: {} # -- This is for setting Kubernetes Labels to a Pod. # For more information checkout: https://kubernetes.io/docs/concepts/overview/working-with-objects/labels/ @@ -193,7 +197,7 @@ autoendpoint: tag: latest # This is for setting Kubernetes Annotations to a Pod. - # For more information checkout: https://kubernetes.io/docs/concepts/overview/working-with-objects/annotations/ + # For more information checkout: https://kubernetes.io/docs/concepts/overview/working-with-objects/annotations/ podAnnotations: {} # This is for setting Kubernetes Labels to a Pod. # For more information checkout: https://kubernetes.io/docs/concepts/overview/working-with-objects/labels/ @@ -252,7 +256,7 @@ autoendpoint: volumeMounts: [] -#This section builds out the service account more information can be found here: https://kubernetes.io/docs/concepts/security/service-accounts/ +# This section builds out the service account more information can be found here: https://kubernetes.io/docs/concepts/security/service-accounts/ serviceAccount: # Specifies whether a service account should be created create: true -- 2.45.3 From 6a13f3072b3526b1abb6d1c197647b75e5524a49 Mon Sep 17 00:00:00 2001 From: WrenIX Date: Fri, 17 Jan 2025 23:41:46 +0100 Subject: [PATCH 120/134] fix(matrix-synapse): update appVersion --- matrix-synapse/Chart.yaml | 4 ++-- matrix-synapse/README.md | 2 +- 2 files changed, 3 insertions(+), 3 deletions(-) diff --git a/matrix-synapse/Chart.yaml b/matrix-synapse/Chart.yaml index c6c09a3..bc640ab 100644 --- a/matrix-synapse/Chart.yaml +++ b/matrix-synapse/Chart.yaml @@ -4,9 +4,9 @@ name: matrix-synapse description: Matrix reference homeserver icon: https://matrix.org/images/matrix-logo.svg type: application -version: "1.0.9" +version: "1.0.10" # renovate: image=ghcr.io/element-hq/synapse -appVersion: 1.121.1 +appVersion: 1.122.0 maintainers: - name: WrenIX url: https://wrenix.eu diff --git a/matrix-synapse/README.md b/matrix-synapse/README.md index 467866e..16517fb 100644 --- a/matrix-synapse/README.md +++ b/matrix-synapse/README.md @@ -7,7 +7,7 @@ description: "Matrix reference homeserver" # matrix-synapse -![Version: 1.0.9](https://img.shields.io/badge/Version-1.0.9-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 1.121.1](https://img.shields.io/badge/AppVersion-1.121.1-informational?style=flat-square) +![Version: 1.0.10](https://img.shields.io/badge/Version-1.0.10-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 1.122.0](https://img.shields.io/badge/AppVersion-1.122.0-informational?style=flat-square) Matrix reference homeserver -- 2.45.3 From 679f8f54ad2672ed2cf8fd7faf1bf368ab296efe Mon Sep 17 00:00:00 2001 From: WrenIX Date: Fri, 17 Jan 2025 23:42:56 +0100 Subject: [PATCH 121/134] fix(forgejo-runner): update dependencies kubectl --- forgejo-runner/Chart.yaml | 2 +- forgejo-runner/README.md | 4 ++-- forgejo-runner/values.yaml | 2 +- 3 files changed, 4 insertions(+), 4 deletions(-) diff --git a/forgejo-runner/Chart.yaml b/forgejo-runner/Chart.yaml index d9b3457..8ed9b65 100644 --- a/forgejo-runner/Chart.yaml +++ b/forgejo-runner/Chart.yaml @@ -2,7 +2,7 @@ apiVersion: v2 name: forgejo-runner description: Deploy runner for an forgejo instance (default codeberg.org) type: application -version: "0.4.8" +version: "0.4.9" # renovate: image=code.forgejo.org/forgejo/runner appVersion: "6.0.1" maintainers: diff --git a/forgejo-runner/README.md b/forgejo-runner/README.md index b56db0f..b62df46 100644 --- a/forgejo-runner/README.md +++ b/forgejo-runner/README.md @@ -7,7 +7,7 @@ description: "Deploy runner for an forgejo instance (default codeberg.org)" # forgejo-runner -![Version: 0.4.8](https://img.shields.io/badge/Version-0.4.8-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 6.0.1](https://img.shields.io/badge/AppVersion-6.0.1-informational?style=flat-square) +![Version: 0.4.9](https://img.shields.io/badge/Version-0.4.9-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 6.0.1](https://img.shields.io/badge/AppVersion-6.0.1-informational?style=flat-square) Deploy runner for an forgejo instance (default codeberg.org) @@ -130,7 +130,7 @@ helm uninstall forgejo-runner-release | kubectl.image.pullPolicy | string | `"IfNotPresent"` | | | kubectl.image.registry | string | `"docker.io"` | | | kubectl.image.repository | string | `"bitnami/kubectl"` | | -| kubectl.image.tag | string | `"1.32.0"` | | +| kubectl.image.tag | string | `"1.32.1"` | | | nameOverride | string | `""` | | | nodeSelector | object | `{}` | | | podAnnotations | object | `{}` | | diff --git a/forgejo-runner/values.yaml b/forgejo-runner/values.yaml index 2802ed6..215c73c 100644 --- a/forgejo-runner/values.yaml +++ b/forgejo-runner/values.yaml @@ -150,7 +150,7 @@ kubectl: registry: docker.io repository: bitnami/kubectl pullPolicy: IfNotPresent - tag: 1.32.0 + tag: 1.32.1 serviceAccount: # Specifies whether a service account should be created -- 2.45.3 From 8afa8af7bd0fb3ea2a5df5416b7df3230df97e39 Mon Sep 17 00:00:00 2001 From: WrenIX Date: Fri, 17 Jan 2025 23:42:59 +0100 Subject: [PATCH 122/134] fix(ntfy): update dependencies kubectl --- ntfy/Chart.yaml | 2 +- ntfy/README.md | 4 ++-- ntfy/values.yaml | 2 +- 3 files changed, 4 insertions(+), 4 deletions(-) diff --git a/ntfy/Chart.yaml b/ntfy/Chart.yaml index 032b8cf..43d3f8c 100644 --- a/ntfy/Chart.yaml +++ b/ntfy/Chart.yaml @@ -3,7 +3,7 @@ name: ntfy description: A Helm chart for Kubernetes icon: https://github.com/binwiederhier/ntfy/raw/main/web/public/static/images/pwa-512x512.png type: application -version: "0.4.8" +version: "0.4.9" # renovate: image=docker.io/binwiederhier/ntfy appVersion: "2.11.0" maintainers: diff --git a/ntfy/README.md b/ntfy/README.md index b88c448..e325dda 100644 --- a/ntfy/README.md +++ b/ntfy/README.md @@ -7,7 +7,7 @@ description: "A Helm chart for Kubernetes" # ntfy -![Version: 0.4.8](https://img.shields.io/badge/Version-0.4.8-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 2.11.0](https://img.shields.io/badge/AppVersion-2.11.0-informational?style=flat-square) +![Version: 0.4.9](https://img.shields.io/badge/Version-0.4.9-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 2.11.0](https://img.shields.io/badge/AppVersion-2.11.0-informational?style=flat-square) A Helm chart for Kubernetes @@ -65,7 +65,7 @@ helm uninstall ntfy-release | ingress.hosts[0].paths[0].path | string | `"/"` | | | ingress.hosts[0].paths[0].pathType | string | `"ImplementationSpecific"` | | | ingress.tls | list | `[]` | | -| kubectl.image | object | `{"pullPolicy":"IfNotPresent","registry":"docker.io","repository":"bitnami/kubectl","tag":"1.32.0"}` | image needed for setup (store generated VAPID / WebPush keys) | +| kubectl.image | object | `{"pullPolicy":"IfNotPresent","registry":"docker.io","repository":"bitnami/kubectl","tag":"1.32.1"}` | image needed for setup (store generated VAPID / WebPush keys) | | nameOverride | string | `""` | | | networkPolicy.egress.enabled | bool | `true` | activate egress no networkpolicy | | networkPolicy.egress.extra | list | `[]` | egress rules | diff --git a/ntfy/values.yaml b/ntfy/values.yaml index 10e51ec..4206140 100644 --- a/ntfy/values.yaml +++ b/ntfy/values.yaml @@ -16,7 +16,7 @@ kubectl: registry: docker.io repository: bitnami/kubectl pullPolicy: IfNotPresent - tag: 1.32.0 + tag: 1.32.1 imagePullSecrets: [] nameOverride: "" -- 2.45.3 From 76fd94a39e4405eff1ed1bf07b64f629fe225d98 Mon Sep 17 00:00:00 2001 From: WrenIX Date: Fri, 17 Jan 2025 23:45:14 +0100 Subject: [PATCH 123/134] fix(stalwart-mail): update appVersion --- stalwart-mail/Chart.yaml | 4 ++-- stalwart-mail/README.md | 2 +- 2 files changed, 3 insertions(+), 3 deletions(-) diff --git a/stalwart-mail/Chart.yaml b/stalwart-mail/Chart.yaml index 63d66d0..3c0cd1f 100644 --- a/stalwart-mail/Chart.yaml +++ b/stalwart-mail/Chart.yaml @@ -3,9 +3,9 @@ name: stalwart-mail description: Helm Chart for Stalwart Mail Server - Secure & Modern All-in-One Mail Server (IMAP, JMAP, SMTP) icon: https://stalw.art/img/apple-touch-icon.png type: application -version: 0.0.21 +version: 0.0.22 # renovate: image=docker.io/stalwartlabs/mail-server -appVersion: "0.11.1" +appVersion: "0.11.2" maintainers: - name: WrenIX url: https://wrenix.eu diff --git a/stalwart-mail/README.md b/stalwart-mail/README.md index 9407581..caf25e1 100644 --- a/stalwart-mail/README.md +++ b/stalwart-mail/README.md @@ -7,7 +7,7 @@ description: "Helm Chart for Stalwart Mail Server - Secure & Modern All-in-One M # stalwart-mail -![Version: 0.0.21](https://img.shields.io/badge/Version-0.0.21-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 0.11.1](https://img.shields.io/badge/AppVersion-0.11.1-informational?style=flat-square) +![Version: 0.0.22](https://img.shields.io/badge/Version-0.0.22-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 0.11.2](https://img.shields.io/badge/AppVersion-0.11.2-informational?style=flat-square) Helm Chart for Stalwart Mail Server - Secure & Modern All-in-One Mail Server (IMAP, JMAP, SMTP) -- 2.45.3 From de8e16c4de58f9f1512fdc593b2e3b175883a335 Mon Sep 17 00:00:00 2001 From: WrenIX Date: Fri, 17 Jan 2025 23:54:12 +0100 Subject: [PATCH 124/134] fix(mautrix-bridge): update signal --- mautrix-bridge/Chart.yaml | 2 +- mautrix-bridge/README.md | 2 +- .../bridge-values/signal/values.yaml | 2 +- mautrix-bridge/values.yaml | 34 +++++++++---------- 4 files changed, 20 insertions(+), 20 deletions(-) diff --git a/mautrix-bridge/Chart.yaml b/mautrix-bridge/Chart.yaml index 1ac228b..8793e12 100644 --- a/mautrix-bridge/Chart.yaml +++ b/mautrix-bridge/Chart.yaml @@ -2,7 +2,7 @@ apiVersion: v2 name: mautrix-bridge description: A Matrix puppeting bridge mautrix. type: application -version: 0.0.15 +version: 0.0.16 maintainers: - name: WrenIX url: https://wrenix.eu diff --git a/mautrix-bridge/README.md b/mautrix-bridge/README.md index 0a31bdd..e87da16 100644 --- a/mautrix-bridge/README.md +++ b/mautrix-bridge/README.md @@ -7,7 +7,7 @@ description: "A Matrix puppeting bridge mautrix." # mautrix-bridge -![Version: 0.0.15](https://img.shields.io/badge/Version-0.0.15-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) +![Version: 0.0.16](https://img.shields.io/badge/Version-0.0.16-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) A Matrix puppeting bridge mautrix. diff --git a/mautrix-bridge/bridge-values/signal/values.yaml b/mautrix-bridge/bridge-values/signal/values.yaml index eddff59..629a640 100644 --- a/mautrix-bridge/bridge-values/signal/values.yaml +++ b/mautrix-bridge/bridge-values/signal/values.yaml @@ -1,6 +1,6 @@ image: repository: mautrix/signal - tag: "v0.7.4" + tag: "v0.7.5" config: bridge: diff --git a/mautrix-bridge/values.yaml b/mautrix-bridge/values.yaml index e7a25ea..76ff0e6 100644 --- a/mautrix-bridge/values.yaml +++ b/mautrix-bridge/values.yaml @@ -97,7 +97,7 @@ config: # This has all the Sender variables available under message_formats (but without the .Sender prefix). # Note that you need to manually remove the displayname from message_formats above. displayname_format: "{{ .DisambiguatedName }}" - + # -- Permissions for using the bridge. # Permitted values: # relay - Talk through the relaybot (if enabled), no access otherwise @@ -160,7 +160,7 @@ config: # -- How often should the websocket be pinged? Pinging will be disabled if this is zero. ping_interval_seconds: 0 - + # Application service host/registration related details. # Changing these values requires regeneration of the registration. appservice: @@ -211,7 +211,7 @@ config: # -- Whether or not created rooms should have federation enabled. # If false, created portal rooms will never be federated. federate_rooms: true - + # Settings for provisioning API provisioning: # -- Prefix for the provisioning API paths. @@ -274,23 +274,23 @@ config: unread_hours_threshold: 720 # Settings for backfilling threads within other backfills. threads: - # -- Maximum number of messages to backfill in a new thread. - max_initial_messages: 50 + # -- Maximum number of messages to backfill in a new thread. + max_initial_messages: 50 # Settings for the backwards backfill queue. This only applies when connecting to # Beeper as standard Matrix servers don't support inserting messages into history. queue: - # -- Should the backfill queue be enabled? - enabled: false - # -- Number of messages to backfill in one batch. - batch_size: 100 - # -- Delay between batches in seconds. - batch_delay: 20 - # -- Maximum number of batches to backfill per portal. - # If set to -1, all available messages will be backfilled. - max_batches: -1 - # -- Optional network-specific overrides for max batches. - # Interpretation of this field depends on the network connector. - max_batches_override: {} + # -- Should the backfill queue be enabled? + enabled: false + # -- Number of messages to backfill in one batch. + batch_size: 100 + # -- Delay between batches in seconds. + batch_delay: 20 + # -- Maximum number of batches to backfill per portal. + # If set to -1, all available messages will be backfilled. + max_batches: -1 + # -- Optional network-specific overrides for max batches. + # Interpretation of this field depends on the network connector. + max_batches_override: {} # Settings for enabling double puppeting -- 2.45.3 From fa40436ef093e25a26b76378303f06d15cb85c94 Mon Sep 17 00:00:00 2001 From: WrenIX Date: Sat, 18 Jan 2025 00:55:41 +0100 Subject: [PATCH 125/134] fix(stalwart-mail): update AppVersion after fix https://github.com/stalwartlabs/mail-server/issues/1104 --- stalwart-mail/Chart.yaml | 4 ++-- stalwart-mail/README.md | 2 +- 2 files changed, 3 insertions(+), 3 deletions(-) diff --git a/stalwart-mail/Chart.yaml b/stalwart-mail/Chart.yaml index 3c0cd1f..88b95e4 100644 --- a/stalwart-mail/Chart.yaml +++ b/stalwart-mail/Chart.yaml @@ -3,9 +3,9 @@ name: stalwart-mail description: Helm Chart for Stalwart Mail Server - Secure & Modern All-in-One Mail Server (IMAP, JMAP, SMTP) icon: https://stalw.art/img/apple-touch-icon.png type: application -version: 0.0.22 +version: 0.0.23 # renovate: image=docker.io/stalwartlabs/mail-server -appVersion: "0.11.2" +appVersion: "0.11.3" maintainers: - name: WrenIX url: https://wrenix.eu diff --git a/stalwart-mail/README.md b/stalwart-mail/README.md index caf25e1..14abf7d 100644 --- a/stalwart-mail/README.md +++ b/stalwart-mail/README.md @@ -7,7 +7,7 @@ description: "Helm Chart for Stalwart Mail Server - Secure & Modern All-in-One M # stalwart-mail -![Version: 0.0.22](https://img.shields.io/badge/Version-0.0.22-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 0.11.2](https://img.shields.io/badge/AppVersion-0.11.2-informational?style=flat-square) +![Version: 0.0.23](https://img.shields.io/badge/Version-0.0.23-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 0.11.3](https://img.shields.io/badge/AppVersion-0.11.3-informational?style=flat-square) Helm Chart for Stalwart Mail Server - Secure & Modern All-in-One Mail Server (IMAP, JMAP, SMTP) -- 2.45.3 From ff40a7f712f03536504b3d44ba7c33af957c5559 Mon Sep 17 00:00:00 2001 From: WrenIX Date: Sat, 18 Jan 2025 14:56:51 +0100 Subject: [PATCH 126/134] fix(autopush): redis to persistence --- autopush/Chart.yaml | 2 +- autopush/README.md | 9 ++++++--- autopush/values.yaml | 13 ++++++++++--- 3 files changed, 17 insertions(+), 7 deletions(-) diff --git a/autopush/Chart.yaml b/autopush/Chart.yaml index 23c3d26..828f7a1 100644 --- a/autopush/Chart.yaml +++ b/autopush/Chart.yaml @@ -3,7 +3,7 @@ name: autopush description: A Helm chart for Kubernetes icon: type: application -version: 0.0.6 +version: 0.0.7 # renovate: image=docker.io/mozilla-services/autopush-rs appVersion: "1.72.2" maintainers: diff --git a/autopush/README.md b/autopush/README.md index a92269b..6100cf5 100644 --- a/autopush/README.md +++ b/autopush/README.md @@ -7,7 +7,7 @@ description: "A Helm chart for Kubernetes" # autopush -![Version: 0.0.6](https://img.shields.io/badge/Version-0.0.6-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 1.72.2](https://img.shields.io/badge/AppVersion-1.72.2-informational?style=flat-square) +![Version: 0.0.7](https://img.shields.io/badge/Version-0.0.7-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 1.72.2](https://img.shields.io/badge/AppVersion-1.72.2-informational?style=flat-square) A Helm chart for Kubernetes @@ -137,16 +137,19 @@ helm uninstall autopush-release | prometheus.volumeMounts | list | `[]` | Additional volumeMounts on the output Deployment definition. - name: foo mountPath: "/etc/foo" readOnly: true | | redis.architecture | string | `"standalone"` | | | redis.auth.enabled | bool | `true` | | +| redis.auth.existingSecret | string | `""` | name of an existing secret with Redis credentials (instead of auth.password), must be created ahead of time | | redis.auth.existingSecret | string | `nil` | Or use existing secret with "redis-password" key instead of static password | +| redis.auth.existingSecretPasswordKey | string | `""` | Password key to be retrieved from existing secret | | redis.auth.password | string | `"autopush"` | XXX Change me! | | redis.dbid | int | `0` | Database ID for non-default database | | redis.external.existingSecretPasswordKey | string | `"redis-password"` | Password key to be retrieved from existing secret | | redis.external.host | string | `"redis"` | | | redis.external.port | int | `6379` | | +| redis.global.storageClass | string | `""` | | | redis.internal | bool | `true` | | -| redis.master.kind | string | `"Deployment"` | | -| redis.master.persistence.enabled | bool | `false` | | +| redis.master.persistence.enabled | bool | `true` | | | redis.master.service.port | int | `6379` | | +| redis.replica.persistence.enabled | bool | `true` | | | serviceAccount.annotations | object | `{}` | | | serviceAccount.automount | bool | `true` | | | serviceAccount.create | bool | `true` | | diff --git a/autopush/values.yaml b/autopush/values.yaml index 11e251a..2a51115 100644 --- a/autopush/values.yaml +++ b/autopush/values.yaml @@ -99,6 +99,10 @@ redis: enabled: true # -- XXX Change me! password: autopush + # -- name of an existing secret with Redis credentials (instead of auth.password), must be created ahead of time + existingSecret: "" + # -- Password key to be retrieved from existing secret + existingSecretPasswordKey: "" # -- Or use existing secret with "redis-password" key instead of static password existingSecret: @@ -111,13 +115,16 @@ redis: architecture: standalone + global: + storageClass: "" master: - kind: Deployment persistence: - enabled: false + enabled: true service: port: 6379 - + replica: + persistence: + enabled: true autoconnect: # -- This will set the replicaset count more information can be found here: https://kubernetes.io/docs/concepts/workloads/controllers/replicaset/ -- 2.45.3 From b8969440b7ee1fb38dc04302f34956efb5cf5e57 Mon Sep 17 00:00:00 2001 From: WrenIX Date: Sat, 18 Jan 2025 14:56:55 +0100 Subject: [PATCH 127/134] fix(matrix-synapse): redis to persistence --- matrix-synapse/Chart.yaml | 2 +- matrix-synapse/README.md | 12 ++++++++---- matrix-synapse/values.yaml | 24 +++++++++++++----------- 3 files changed, 22 insertions(+), 16 deletions(-) diff --git a/matrix-synapse/Chart.yaml b/matrix-synapse/Chart.yaml index bc640ab..bffccdb 100644 --- a/matrix-synapse/Chart.yaml +++ b/matrix-synapse/Chart.yaml @@ -4,7 +4,7 @@ name: matrix-synapse description: Matrix reference homeserver icon: https://matrix.org/images/matrix-logo.svg type: application -version: "1.0.10" +version: "1.0.11" # renovate: image=ghcr.io/element-hq/synapse appVersion: 1.122.0 maintainers: diff --git a/matrix-synapse/README.md b/matrix-synapse/README.md index 16517fb..fc5347e 100644 --- a/matrix-synapse/README.md +++ b/matrix-synapse/README.md @@ -7,7 +7,7 @@ description: "Matrix reference homeserver" # matrix-synapse -![Version: 1.0.10](https://img.shields.io/badge/Version-1.0.10-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 1.122.0](https://img.shields.io/badge/AppVersion-1.122.0-informational?style=flat-square) +![Version: 1.0.11](https://img.shields.io/badge/Version-1.0.11-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 1.122.0](https://img.shields.io/badge/AppVersion-1.122.0-informational?style=flat-square) Matrix reference homeserver @@ -111,11 +111,15 @@ helm uninstall matrix-synapse-release | publicServerName | string | `nil` | The public Matrix server name, this will be used for any public URLs in config as well as for client API links in the ingress. | | redis.architecture | string | `"standalone"` | | | redis.auth.enabled | bool | `true` | | -| redis.auth.password | string | `"synapse"` | | +| redis.auth.existingSecret | string | `nil` | Or use existing secret with "redis-password" key instead of static password | +| redis.auth.existingSecret | string | `""` | name of an existing secret with Redis credentials (instead of auth.password), must be created ahead of time | +| redis.auth.existingSecretPasswordKey | string | `""` | Password key to be retrieved from existing secret | +| redis.auth.password | string | `"synapse"` | XXX Change me! | | redis.enabled | bool | `true` | | -| redis.master.kind | string | `"Deployment"` | | -| redis.master.persistence.enabled | bool | `false` | | +| redis.global.storageClass | string | `""` | | +| redis.master.persistence.enabled | bool | `true` | | | redis.master.service.port | int | `6379` | | +| redis.replica.persistence.enabled | bool | `true` | | | serverName | string | `nil` | The Matrix domain name, this is what will be used for the domain part in your MXIDs. | | service.port | int | `8008` | | | service.targetPort | string | `"http"` | | diff --git a/matrix-synapse/values.yaml b/matrix-synapse/values.yaml index aaa0837..1343b15 100644 --- a/matrix-synapse/values.yaml +++ b/matrix-synapse/values.yaml @@ -721,25 +721,27 @@ redis: auth: enabled: true - # XXX Change me! + # -- XXX Change me! password: synapse + # -- name of an existing secret with Redis credentials (instead of auth.password), must be created ahead of time + existingSecret: "" + # -- Password key to be retrieved from existing secret + existingSecretPasswordKey: "" - ## Or use existing secret with "redis-password" key - ## instead of static password - ## - # existingSecret: redis-secret + # -- Or use existing secret with "redis-password" key instead of static password + existingSecret: architecture: standalone + global: + storageClass: "" master: - kind: Deployment persistence: - ## Note that Synapse only uses redis as a synchronization utility, so no - ## data will ever need to be persisted. - ## - enabled: false + enabled: true service: port: 6379 - + replica: + persistence: + enabled: true ## An externally configured Redis server to use for workers/sharding. ## externalRedis: -- 2.45.3 From e2052a56ff3fe219f48fcf99c2e92a3ddeeee466 Mon Sep 17 00:00:00 2001 From: WrenIX Date: Sat, 18 Jan 2025 14:56:59 +0100 Subject: [PATCH 128/134] fix(pretix): redis to persistence --- pretix/Chart.yaml | 2 +- pretix/README.md | 44 ++++++++++++++++++++++++++++---------------- pretix/values.yaml | 35 ++++++++++++++++++++++++----------- 3 files changed, 53 insertions(+), 28 deletions(-) diff --git a/pretix/Chart.yaml b/pretix/Chart.yaml index ae5420a..05e3379 100644 --- a/pretix/Chart.yaml +++ b/pretix/Chart.yaml @@ -2,7 +2,7 @@ apiVersion: v2 name: pretix description: Reinventing ticket presales, one ticket at a time. type: application -version: 0.1.3 +version: 0.1.4 # renovate: image=docker.io/pretix/standalone appVersion: "2024.11.0" keywords: diff --git a/pretix/README.md b/pretix/README.md index d322cb9..97bfc7e 100644 --- a/pretix/README.md +++ b/pretix/README.md @@ -7,7 +7,7 @@ description: "Reinventing ticket presales, one ticket at a time." # pretix -![Version: 0.1.3](https://img.shields.io/badge/Version-0.1.3-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 2024.11.0](https://img.shields.io/badge/AppVersion-2024.11.0-informational?style=flat-square) +![Version: 0.1.4](https://img.shields.io/badge/Version-0.1.4-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 2024.11.0](https://img.shields.io/badge/AppVersion-2024.11.0-informational?style=flat-square) Reinventing ticket presales, one ticket at a time. @@ -62,8 +62,8 @@ helm uninstall pretix-release | autoscaling.minReplicas | int | `1` | | | autoscaling.targetCPUUtilizationPercentage | int | `80` | | | cronSchedule | string | `"*/30 * * * *"` | | -| env.PRETIX_CELERY_BACKEND | string | `"redis://pretix-redis-master/1"` | | -| env.PRETIX_CELERY_BROKER | string | `"redis://pretix-redis-master/2"` | | +| env.PRETIX_CELERY_BACKEND | string | `"redis://:changeme@pretix-redis-master/1"` | | +| env.PRETIX_CELERY_BROKER | string | `"redis://:changeme@pretix-redis-master/2"` | | | env.PRETIX_DATABASE_BACKEND | string | `"postgresql"` | | | env.PRETIX_DATABASE_HOST | string | `"pretix-postgresql"` | | | env.PRETIX_DATABASE_NAME | string | `"pretix"` | | @@ -81,10 +81,10 @@ helm uninstall pretix-release | env.PRETIX_PRETIX_CURRENCY | string | `"EUR"` | | | env.PRETIX_PRETIX_DATADIR | string | `"/data"` | | | env.PRETIX_PRETIX_INSTANCE_NAME | string | `"Pretix Helm"` | | -| env.PRETIX_PRETIX_TRUST_X_FORWARDED_FOR | string | `"on"` | | -| env.PRETIX_PRETIX_TRUST_X_FORWARDED_PROTO | string | `"on"` | | +| env.PRETIX_PRETIX_TRUST_X_FORWARDED_FOR | bool | `true` | | +| env.PRETIX_PRETIX_TRUST_X_FORWARDED_PROTO | bool | `true` | | | env.PRETIX_PRETIX_URL | string | `"http://localhost"` | | -| env.PRETIX_REDIS_LOCATION | string | `"redis://pretix-redis-master/0"` | | +| env.PRETIX_REDIS_LOCATION | string | `"redis://:changeme@pretix-redis-master/0"` | | | env.PRETIX_REDIS_SESSIONS | bool | `true` | | | fullnameOverride | string | `""` | | | grafana.dashboards.annotations | object | `{}` | | @@ -129,14 +129,20 @@ helm uninstall pretix-release | prometheus.servicemonitor.enabled | bool | `false` | broken, Host need to be localhost on request (instatt of ip) needs: https://github.com/prometheus-operator/prometheus-operator/pull/7003 | | prometheus.servicemonitor.interval | string | `nil` | interval | | prometheus.servicemonitor.labels | object | `{}` | | -| prometheus.servicemonitor.scrapeTimeout | string | `nil` | scrape timeout | +| prometheus.servicemonitor.scrapeTimeout | string | `nil` | scrape timeout | | readinessProbe.httpGet.httpHeaders[0].name | string | `"host"` | | | readinessProbe.httpGet.httpHeaders[0].value | string | `"localhost"` | | | readinessProbe.httpGet.path | string | `"/healthcheck/"` | | | readinessProbe.httpGet.port | string | `"http"` | | | redis.architecture | string | `"standalone"` | | -| redis.auth.enabled | bool | `false` | | +| redis.auth.enabled | bool | `true` | | +| redis.auth.existingSecret | string | `""` | name of an existing secret with Redis credentials (instead of auth.password), must be created ahead of time | +| redis.auth.existingSecretPasswordKey | string | `""` | Password key to be retrieved from existing secret | +| redis.auth.password | string | `"changeme"` | | | redis.enabled | bool | `true` | | +| redis.global.storageClass | string | `""` | | +| redis.master.persistence.enabled | bool | `true` | | +| redis.replica.persistence.enabled | bool | `true` | | | replicas.taskworker | int | `1` | | | replicas.web | int | `1` | | | resources | object | `{}` | | @@ -154,7 +160,7 @@ helm uninstall pretix-release Autogenerated from chart metadata using [helm-docs](https://github.com/norwoodj/helm-docs) # pretix -![Version: 0.1.3](https://img.shields.io/badge/Version-0.1.3-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 2024.11.0](https://img.shields.io/badge/AppVersion-2024.11.0-informational?style=flat-square) +![Version: 0.1.4](https://img.shields.io/badge/Version-0.1.4-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 2024.11.0](https://img.shields.io/badge/AppVersion-2024.11.0-informational?style=flat-square) Reinventing ticket presales, one ticket at a time. @@ -187,8 +193,8 @@ Reinventing ticket presales, one ticket at a time. | autoscaling.minReplicas | int | `1` | | | autoscaling.targetCPUUtilizationPercentage | int | `80` | | | cronSchedule | string | `"*/30 * * * *"` | | -| env.PRETIX_CELERY_BACKEND | string | `"redis://pretix-redis-master/1"` | | -| env.PRETIX_CELERY_BROKER | string | `"redis://pretix-redis-master/2"` | | +| env.PRETIX_CELERY_BACKEND | string | `"redis://:changeme@pretix-redis-master/1"` | | +| env.PRETIX_CELERY_BROKER | string | `"redis://:changeme@pretix-redis-master/2"` | | | env.PRETIX_DATABASE_BACKEND | string | `"postgresql"` | | | env.PRETIX_DATABASE_HOST | string | `"pretix-postgresql"` | | | env.PRETIX_DATABASE_NAME | string | `"pretix"` | | @@ -206,10 +212,10 @@ Reinventing ticket presales, one ticket at a time. | env.PRETIX_PRETIX_CURRENCY | string | `"EUR"` | | | env.PRETIX_PRETIX_DATADIR | string | `"/data"` | | | env.PRETIX_PRETIX_INSTANCE_NAME | string | `"Pretix Helm"` | | -| env.PRETIX_PRETIX_TRUST_X_FORWARDED_FOR | string | `"on"` | | -| env.PRETIX_PRETIX_TRUST_X_FORWARDED_PROTO | string | `"on"` | | +| env.PRETIX_PRETIX_TRUST_X_FORWARDED_FOR | bool | `true` | | +| env.PRETIX_PRETIX_TRUST_X_FORWARDED_PROTO | bool | `true` | | | env.PRETIX_PRETIX_URL | string | `"http://localhost"` | | -| env.PRETIX_REDIS_LOCATION | string | `"redis://pretix-redis-master/0"` | | +| env.PRETIX_REDIS_LOCATION | string | `"redis://:changeme@pretix-redis-master/0"` | | | env.PRETIX_REDIS_SESSIONS | bool | `true` | | | fullnameOverride | string | `""` | | | grafana.dashboards.annotations | object | `{}` | | @@ -254,14 +260,20 @@ Reinventing ticket presales, one ticket at a time. | prometheus.servicemonitor.enabled | bool | `false` | broken, Host need to be localhost on request (instatt of ip) needs: https://github.com/prometheus-operator/prometheus-operator/pull/7003 | | prometheus.servicemonitor.interval | string | `nil` | interval | | prometheus.servicemonitor.labels | object | `{}` | | -| prometheus.servicemonitor.scrapeTimeout | string | `nil` | scrape timeout | +| prometheus.servicemonitor.scrapeTimeout | string | `nil` | scrape timeout | | readinessProbe.httpGet.httpHeaders[0].name | string | `"host"` | | | readinessProbe.httpGet.httpHeaders[0].value | string | `"localhost"` | | | readinessProbe.httpGet.path | string | `"/healthcheck/"` | | | readinessProbe.httpGet.port | string | `"http"` | | | redis.architecture | string | `"standalone"` | | -| redis.auth.enabled | bool | `false` | | +| redis.auth.enabled | bool | `true` | | +| redis.auth.existingSecret | string | `""` | name of an existing secret with Redis credentials (instead of auth.password), must be created ahead of time | +| redis.auth.existingSecretPasswordKey | string | `""` | Password key to be retrieved from existing secret | +| redis.auth.password | string | `"changeme"` | | | redis.enabled | bool | `true` | | +| redis.global.storageClass | string | `""` | | +| redis.master.persistence.enabled | bool | `true` | | +| redis.replica.persistence.enabled | bool | `true` | | | replicas.taskworker | int | `1` | | | replicas.web | int | `1` | | | resources | object | `{}` | | diff --git a/pretix/values.yaml b/pretix/values.yaml index 406460d..f839a79 100644 --- a/pretix/values.yaml +++ b/pretix/values.yaml @@ -23,23 +23,23 @@ env: PRETIX_PRETIX_URL: http://localhost PRETIX_PRETIX_CURRENCY: EUR PRETIX_PRETIX_DATADIR: /data - PRETIX_PRETIX_TRUST_X_FORWARDED_FOR: on - PRETIX_PRETIX_TRUST_X_FORWARDED_PROTO: on + PRETIX_PRETIX_TRUST_X_FORWARDED_FOR: true + PRETIX_PRETIX_TRUST_X_FORWARDED_PROTO: true PRETIX_MAIL_FROM: test@example.com PRETIX_MAIL_HOST: PRETIX_MAIL_USER: PRETIX_MAIL_PASSWORD: PRETIX_MAIL_PORT: 587 - PRETIX_MAIL_TLS: True + PRETIX_MAIL_TLS: true PRETIX_DATABASE_BACKEND: postgresql PRETIX_DATABASE_NAME: pretix PRETIX_DATABASE_USER: pretix PRETIX_DATABASE_PASSWORD: pretix PRETIX_DATABASE_HOST: pretix-postgresql - PRETIX_REDIS_LOCATION: redis://pretix-redis-master/0 + PRETIX_REDIS_LOCATION: redis://:changeme@pretix-redis-master/0 PRETIX_REDIS_SESSIONS: true - PRETIX_CELERY_BACKEND: redis://pretix-redis-master/1 - PRETIX_CELERY_BROKER: redis://pretix-redis-master/2 + PRETIX_CELERY_BACKEND: redis://:changeme@pretix-redis-master/1 + PRETIX_CELERY_BROKER: redis://:changeme@pretix-redis-master/2 PRETIX_METRICS_ENABLED: false PRETIX_METRICS_USER: pretix PRETIX_METRICS_PASSPHRASE: pretix @@ -50,7 +50,7 @@ imagePullSecrets: [] nameOverride: "" fullnameOverride: "" -#This section builds out the service account more information can be found here: https://kubernetes.io/docs/concepts/security/service-accounts/ +# This section builds out the service account more information can be found here: https://kubernetes.io/docs/concepts/security/service-accounts/ serviceAccount: # Specifies whether a service account should be created create: true @@ -63,7 +63,7 @@ serviceAccount: name: "" # This is for setting Kubernetes Annotations to a Pod. -# For more information checkout: https://kubernetes.io/docs/concepts/overview/working-with-objects/annotations/ +# For more information checkout: https://kubernetes.io/docs/concepts/overview/working-with-objects/annotations/ podAnnotations: {} # This is for setting Kubernetes Labels to a Pod. @@ -121,7 +121,7 @@ prometheus: labels: {} # -- interval interval: - # -- scrape timeout + # -- scrape timeout scrapeTimeout: rules: enabled: false @@ -181,7 +181,7 @@ readinessProbe: - name: "host" value: localhost -#This section is for setting up autoscaling more information can be found here: https://kubernetes.io/docs/concepts/workloads/autoscaling/ +# This section is for setting up autoscaling more information can be found here: https://kubernetes.io/docs/concepts/workloads/autoscaling/ autoscaling: enabled: false minReplicas: 1 @@ -221,4 +221,17 @@ redis: enabled: true architecture: standalone auth: - enabled: false + enabled: true + password: 'changeme' + # -- name of an existing secret with Redis credentials (instead of auth.password), must be created ahead of time + existingSecret: "" + # -- Password key to be retrieved from existing secret + existingSecretPasswordKey: "" + global: + storageClass: "" + master: + persistence: + enabled: true + replica: + persistence: + enabled: true -- 2.45.3 From db242ac7f69859d9e41328ad702d1615127e11af Mon Sep 17 00:00:00 2001 From: WrenIX Date: Sun, 19 Jan 2025 23:55:11 +0100 Subject: [PATCH 129/134] fix(autopush): add router of autoconnect to service --- autopush/Chart.yaml | 2 +- autopush/README.md | 7 ++++--- autopush/templates/autoconnect/deployment.yaml | 2 +- autopush/templates/autoconnect/service.yaml | 6 +++++- autopush/templates/secret.yaml | 1 + autopush/values.yaml | 4 +++- 6 files changed, 15 insertions(+), 7 deletions(-) diff --git a/autopush/Chart.yaml b/autopush/Chart.yaml index 828f7a1..0d77753 100644 --- a/autopush/Chart.yaml +++ b/autopush/Chart.yaml @@ -3,7 +3,7 @@ name: autopush description: A Helm chart for Kubernetes icon: type: application -version: 0.0.7 +version: 0.0.8 # renovate: image=docker.io/mozilla-services/autopush-rs appVersion: "1.72.2" maintainers: diff --git a/autopush/README.md b/autopush/README.md index 6100cf5..8c6eb95 100644 --- a/autopush/README.md +++ b/autopush/README.md @@ -7,7 +7,7 @@ description: "A Helm chart for Kubernetes" # autopush -![Version: 0.0.7](https://img.shields.io/badge/Version-0.0.7-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 1.72.2](https://img.shields.io/badge/AppVersion-1.72.2-informational?style=flat-square) +![Version: 0.0.8](https://img.shields.io/badge/Version-0.0.8-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 1.72.2](https://img.shields.io/badge/AppVersion-1.72.2-informational?style=flat-square) A Helm chart for Kubernetes @@ -78,7 +78,8 @@ helm uninstall autopush-release | autoconnect.replicaCount | int | `1` | This will set the replicaset count more information can be found here: https://kubernetes.io/docs/concepts/workloads/controllers/replicaset/ | | autoconnect.resources | object | `{}` | We usually recommend not to specify default resources and to leave this as a conscious choice for the user. This also increases chances charts run on environments with little resources, such as Minikube. If you do want to specify resources, uncomment the following lines, adjust them as necessary, and remove the curly braces after 'resources:'. limits: cpu: 100m memory: 128Mi requests: cpu: 100m memory: 128Mi | | autoconnect.securityContext | object | `{}` | securityContext capabilities: drop: - ALL readOnlyRootFilesystem: true runAsNonRoot: true runAsUser: 1000 | -| autoconnect.service.port | int | `80` | | +| autoconnect.service.ports.http | int | `80` | | +| autoconnect.service.ports.router | int | `8081` | | | autoconnect.service.type | string | `"ClusterIP"` | | | autoconnect.tolerations | list | `[]` | | | autoconnect.volumeMounts | list | `[]` | Additional volumeMounts on the output Deployment definition. - name: foo mountPath: "/etc/foo" readOnly: true | @@ -137,8 +138,8 @@ helm uninstall autopush-release | prometheus.volumeMounts | list | `[]` | Additional volumeMounts on the output Deployment definition. - name: foo mountPath: "/etc/foo" readOnly: true | | redis.architecture | string | `"standalone"` | | | redis.auth.enabled | bool | `true` | | -| redis.auth.existingSecret | string | `""` | name of an existing secret with Redis credentials (instead of auth.password), must be created ahead of time | | redis.auth.existingSecret | string | `nil` | Or use existing secret with "redis-password" key instead of static password | +| redis.auth.existingSecret | string | `""` | name of an existing secret with Redis credentials (instead of auth.password), must be created ahead of time | | redis.auth.existingSecretPasswordKey | string | `""` | Password key to be retrieved from existing secret | | redis.auth.password | string | `"autopush"` | XXX Change me! | | redis.dbid | int | `0` | Database ID for non-default database | diff --git a/autopush/templates/autoconnect/deployment.yaml b/autopush/templates/autoconnect/deployment.yaml index 0f1f3bb..de027ec 100644 --- a/autopush/templates/autoconnect/deployment.yaml +++ b/autopush/templates/autoconnect/deployment.yaml @@ -59,7 +59,7 @@ spec: containerPort: 8080 protocol: TCP - name: router - containerPort: 8081 + containerPort: {{ .service.ports.router }} protocol: TCP livenessProbe: {{- toYaml .livenessProbe | nindent 12 }} diff --git a/autopush/templates/autoconnect/service.yaml b/autopush/templates/autoconnect/service.yaml index 2a54f55..5f12030 100644 --- a/autopush/templates/autoconnect/service.yaml +++ b/autopush/templates/autoconnect/service.yaml @@ -10,10 +10,14 @@ spec: {{- include "autopush.selectorLabels" . | nindent 4 }} app.kubernetes.io/component: autoconnect ports: - - port: {{ .Values.autoconnect.service.port }} + - port: {{ .Values.autoconnect.service.ports.http }} targetPort: http protocol: TCP name: http + - port: {{ .Values.autoconnect.service.ports.router }} + targetPort: router + protocol: TCP + name: router {{- if .Values.prometheus.enabled }} - port: 9100 targetPort: metrics diff --git a/autopush/templates/secret.yaml b/autopush/templates/secret.yaml index 54d5f0f..bb84a35 100644 --- a/autopush/templates/secret.yaml +++ b/autopush/templates/secret.yaml @@ -33,6 +33,7 @@ data: {{- end }} AUTOCONNECT__ENDPOINT_HOSTNAME: {{ printf "updates.%s" .Values.ingress.host | b64enc }} AUTOCONNECT__ROUTER_HOSTNAME: {{ printf "%s-autoconnect" (include "autopush.fullname" .) | b64enc }} + AUTOCONNECT__ROUTER_PORT: {{ toYaml .Values.autoconnect.service.ports.router | b64enc }} {{- if .Values.prometheus.enabled }} AUTOCONNECT__STATSD_HOST: {{ "127.0.0.1" | b64enc}} AUTOCONNECT__STATSD_PORT: {{ "9125" | b64enc }} diff --git a/autopush/values.yaml b/autopush/values.yaml index 2a51115..bb4504b 100644 --- a/autopush/values.yaml +++ b/autopush/values.yaml @@ -164,7 +164,9 @@ autoconnect: # This sets the service type more information can be found here: https://kubernetes.io/docs/concepts/services-networking/service/#publishing-services-service-types type: ClusterIP # This sets the ports more information can be found here: https://kubernetes.io/docs/concepts/services-networking/service/#field-spec-ports - port: 80 + ports: + http: 80 + router: 8081 # -- We usually recommend not to specify default resources and to leave this as a conscious # choice for the user. This also increases chances charts run on environments with little -- 2.45.3 From c39a8e05b869592b0eaa9531e8fd9eadc5010d73 Mon Sep 17 00:00:00 2001 From: WrenIX Date: Mon, 20 Jan 2025 15:03:13 +0100 Subject: [PATCH 130/134] fix(headscale-ui): update appVersion --- headscale-ui/Chart.yaml | 4 ++-- headscale-ui/README.md | 2 +- 2 files changed, 3 insertions(+), 3 deletions(-) diff --git a/headscale-ui/Chart.yaml b/headscale-ui/Chart.yaml index f8a7fe6..5c486cd 100644 --- a/headscale-ui/Chart.yaml +++ b/headscale-ui/Chart.yaml @@ -3,9 +3,9 @@ name: headscale-ui description: A simple Headscale web UI for small-scale deployments. icon: https://raw.githubusercontent.com/gurucomputing/headscale-ui/master/static/favicon.png type: application -version: 0.2.1 +version: 0.2.2 # renovate: image=ghcr.io/gurucomputing/headscale-ui -appVersion: "2024.10.10" +appVersion: "2025.01.20" maintainers: - name: WrenIX url: https://wrenix.eu diff --git a/headscale-ui/README.md b/headscale-ui/README.md index 87cf2d0..6692895 100644 --- a/headscale-ui/README.md +++ b/headscale-ui/README.md @@ -7,7 +7,7 @@ description: "A simple Headscale web UI for small-scale deployments." # headscale-ui -![Version: 0.2.1](https://img.shields.io/badge/Version-0.2.1-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 2024.10.10](https://img.shields.io/badge/AppVersion-2024.10.10-informational?style=flat-square) +![Version: 0.2.2](https://img.shields.io/badge/Version-0.2.2-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 2025.01.20](https://img.shields.io/badge/AppVersion-2025.01.20-informational?style=flat-square) A simple Headscale web UI for small-scale deployments. -- 2.45.3 From f656f15e85c2c4c8fbd5b99098f8e56115adb9c8 Mon Sep 17 00:00:00 2001 From: WrenIX Date: Tue, 21 Jan 2025 18:52:36 +0100 Subject: [PATCH 131/134] fix(home-assistant): update appVersion --- home-assistant/Chart.yaml | 4 ++-- home-assistant/README.md | 2 +- 2 files changed, 3 insertions(+), 3 deletions(-) diff --git a/home-assistant/Chart.yaml b/home-assistant/Chart.yaml index 460b754..62cdbed 100644 --- a/home-assistant/Chart.yaml +++ b/home-assistant/Chart.yaml @@ -3,9 +3,9 @@ name: home-assistant description: Home Assistant with tooling to run on an k3s pi icon: https://www.home-assistant.io/images/favicon-192x192.png type: application -version: 0.3.2 +version: 0.3.3 # renovate: image=ghcr.io/home-assistant/home-assistant -appVersion: "2025.1.2" +appVersion: "2025.1.3" maintainers: - name: WrenIX url: https://wrenix.eu diff --git a/home-assistant/README.md b/home-assistant/README.md index 3fc80ec..8532654 100644 --- a/home-assistant/README.md +++ b/home-assistant/README.md @@ -7,7 +7,7 @@ description: "Home Assistant with tooling to run on an k3s pi" # home-assistant -![Version: 0.3.2](https://img.shields.io/badge/Version-0.3.2-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 2025.1.2](https://img.shields.io/badge/AppVersion-2025.1.2-informational?style=flat-square) +![Version: 0.3.3](https://img.shields.io/badge/Version-0.3.3-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 2025.1.3](https://img.shields.io/badge/AppVersion-2025.1.3-informational?style=flat-square) Home Assistant with tooling to run on an k3s pi -- 2.45.3 From 174cf19d2cd32f09e92db7971b5f09a1720c33e3 Mon Sep 17 00:00:00 2001 From: WrenIX Date: Wed, 22 Jan 2025 21:04:03 +0100 Subject: [PATCH 132/134] fix(jellyfin): update appVersion --- jellyfin/Chart.yaml | 4 +- jellyfin/README.adoc | 326 ------------------------------------------- jellyfin/README.md | 2 +- 3 files changed, 3 insertions(+), 329 deletions(-) delete mode 100644 jellyfin/README.adoc diff --git a/jellyfin/Chart.yaml b/jellyfin/Chart.yaml index 486f1c2..1566162 100644 --- a/jellyfin/Chart.yaml +++ b/jellyfin/Chart.yaml @@ -3,9 +3,9 @@ name: jellyfin description: The Free Software Media System icon: https://raw.githubusercontent.com/jellyfin/jellyfin-ux/master/branding/SVG/icon-transparent.svg type: application -version: "0.3.7" +version: "0.3.8" # renovate: image=ghcr.io/jellyfin/jellyfin -appVersion: "10.10.3" +appVersion: "10.10.4" maintainers: - name: WrenIX url: https://wrenix.eu diff --git a/jellyfin/README.adoc b/jellyfin/README.adoc deleted file mode 100644 index c9946bb..0000000 --- a/jellyfin/README.adoc +++ /dev/null @@ -1,326 +0,0 @@ - - -= jellyfin - -image::https://img.shields.io/badge/Version-0.3.7-informational?style=flat-square[Version: 0.3.7] -image::https://img.shields.io/badge/Version-application-informational?style=flat-square[Type: application] -image::https://img.shields.io/badge/AppVersion-10.10.3-informational?style=flat-square[AppVersion: 10.10.3] -== Maintainers - -.Maintainers -|=== -| Name | Email | Url - -| WrenIX -| -| -|=== - -== Usage - -Helm must be installed and setup to your kubernetes cluster to use the charts. -Refer to Helm's https://helm.sh/docs[documentation] to get started. -Once Helm has been set up correctly, fetch the charts as follows: - -[source,bash] ----- -helm pull oci://codeberg.org/wrenix/helm-charts/jellyfin ----- - -You can install a chart release using the following command: - -[source,bash] ----- -helm install jellyfin-release oci://codeberg.org/wrenix/helm-charts/jellyfin --values values.yaml ----- - -To uninstall a chart release use `helm`'s delete command: - -[source,bash] ----- -helm uninstall jellyfin-release ----- - -== Values - -.Values -|=== -| Key | Type | Default | Description - -| affinity -| object -| `{}` -| - -| autoscaling.enabled -| bool -| `false` -| - -| autoscaling.maxReplicas -| int -| `100` -| - -| autoscaling.minReplicas -| int -| `1` -| - -| autoscaling.targetCPUUtilizationPercentage -| int -| `80` -| - -| config.enabled -| bool -| `false` -| - -| config.image -| object -| `{"pullPolicy":"IfNotPresent","registry":"ghcr.io","repository":"tomwright/dasel","tag":"2.8.1"}` -| image to patch config - -| config.metrics -| bool -| `false` -| - -| fullnameOverride -| string -| `""` -| - -| global.image.pullPolicy -| string -| `nil` -| if set it will overwrite all pullPolicy - -| global.image.registry -| string -| `nil` -| if set it will overwrite all registry entries - -| grafana.dashboards.annotations -| object -| `{}` -| - -| grafana.dashboards.enabled -| bool -| `false` -| - -| grafana.dashboards.labels.grafana_dashboard -| string -| `"1"` -| - -| image.pullPolicy -| string -| `"IfNotPresent"` -| - -| image.registry -| string -| `"ghcr.io"` -| - -| image.repository -| string -| `"jellyfin/jellyfin"` -| - -| image.tag -| string -| `""` -| Overrides the image tag whose default is the chart appVersion. - -| imagePullSecrets -| list -| `[]` -| - -| ingress.annotations -| object -| `{}` -| - -| ingress.className -| string -| `""` -| - -| ingress.enabled -| bool -| `false` -| - -| ingress.hosts[0].host -| string -| `"chart-example.local"` -| - -| ingress.hosts[0].paths[0].path -| string -| `"/"` -| - -| ingress.hosts[0].paths[0].pathType -| string -| `"ImplementationSpecific"` -| - -| ingress.tls -| list -| `[]` -| - -| nameOverride -| string -| `""` -| - -| networkPolicy.egress.enabled -| bool -| `true` -| activate egress no networkpolicy - -| networkPolicy.egress.extra -| list -| `[]` -| egress rules - -| networkPolicy.enabled -| bool -| `false` -| - -| networkPolicy.ingress.http -| list -| `[]` -| ingress for http port (e.g. ingress-controller, prometheus) - -| nodeSelector -| object -| `{}` -| - -| persistence.config.hostPath -| string -| `nil` -| - -| persistence.config.nfs.path -| string -| `"/"` -| - -| persistence.config.nfs.server -| string -| `nil` -| - -| persistence.config.pvc.enabled -| bool -| `false` -| - -| persistence.media.hostPath -| string -| `nil` -| - -| persistence.media.nfs.path -| string -| `"/"` -| - -| persistence.media.nfs.server -| string -| `nil` -| - -| persistence.media.pvc.enabled -| bool -| `false` -| - -| persistence.media.readOnly -| bool -| `true` -| - -| podAnnotations -| object -| `{}` -| - -| podLabels -| object -| `{}` -| - -| podSecurityContext -| object -| `{}` -| - -| prometheus.servicemonitor.enabled -| bool -| `false` -| - -| prometheus.servicemonitor.labels -| object -| `{}` -| - -| replicaCount -| int -| `1` -| - -| resources -| object -| `{}` -| - -| securityContext -| object -| `{}` -| - -| service.port -| int -| `8096` -| - -| service.type -| string -| `"ClusterIP"` -| - -| serviceAccount.annotations -| object -| `{}` -| - -| serviceAccount.create -| bool -| `true` -| - -| serviceAccount.name -| string -| `""` -| - -| tolerations -| list -| `[]` -| -|=== - -Autogenerated from chart metadata using https://github.com/norwoodj/helm-docs[helm-docs] diff --git a/jellyfin/README.md b/jellyfin/README.md index f814921..e5aaf8d 100644 --- a/jellyfin/README.md +++ b/jellyfin/README.md @@ -7,7 +7,7 @@ description: "The Free Software Media System" # jellyfin -![Version: 0.3.7](https://img.shields.io/badge/Version-0.3.7-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 10.10.3](https://img.shields.io/badge/AppVersion-10.10.3-informational?style=flat-square) +![Version: 0.3.8](https://img.shields.io/badge/Version-0.3.8-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 10.10.4](https://img.shields.io/badge/AppVersion-10.10.4-informational?style=flat-square) The Free Software Media System -- 2.45.3 From 24286723f0285e3d34565b375fe6bd7e74f7f6cc Mon Sep 17 00:00:00 2001 From: WrenIX Date: Wed, 22 Jan 2025 21:04:58 +0100 Subject: [PATCH 133/134] fix(forgejo-runner): update appVersion --- forgejo-runner/Chart.yaml | 4 ++-- forgejo-runner/README.md | 2 +- 2 files changed, 3 insertions(+), 3 deletions(-) diff --git a/forgejo-runner/Chart.yaml b/forgejo-runner/Chart.yaml index 8ed9b65..56218fe 100644 --- a/forgejo-runner/Chart.yaml +++ b/forgejo-runner/Chart.yaml @@ -2,9 +2,9 @@ apiVersion: v2 name: forgejo-runner description: Deploy runner for an forgejo instance (default codeberg.org) type: application -version: "0.4.9" +version: "0.4.10" # renovate: image=code.forgejo.org/forgejo/runner -appVersion: "6.0.1" +appVersion: "6.1.0" maintainers: - name: WrenIX url: https://wrenix.eu diff --git a/forgejo-runner/README.md b/forgejo-runner/README.md index b62df46..40b20f8 100644 --- a/forgejo-runner/README.md +++ b/forgejo-runner/README.md @@ -7,7 +7,7 @@ description: "Deploy runner for an forgejo instance (default codeberg.org)" # forgejo-runner -![Version: 0.4.9](https://img.shields.io/badge/Version-0.4.9-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 6.0.1](https://img.shields.io/badge/AppVersion-6.0.1-informational?style=flat-square) +![Version: 0.4.10](https://img.shields.io/badge/Version-0.4.10-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 6.1.0](https://img.shields.io/badge/AppVersion-6.1.0-informational?style=flat-square) Deploy runner for an forgejo instance (default codeberg.org) -- 2.45.3 From 6de9ec016b99ae4e88df3eb21df97bdb9358a10e Mon Sep 17 00:00:00 2001 From: WrenIX Date: Wed, 22 Jan 2025 21:29:58 +0100 Subject: [PATCH 134/134] fix(autopush): add unifiedpush common-proxies support --- autopush/Chart.yaml | 2 +- autopush/README.md | 29 +++++- autopush/templates/autoconnect/service.yaml | 1 + autopush/templates/autoendpoint/service.yaml | 1 + autopush/templates/ingress.yaml | 22 +++++ autopush/templates/servicemonitor.yaml | 1 + .../templates/unifiedpush/deployment.yaml | 97 +++++++++++++++++++ autopush/templates/unifiedpush/service.yaml | 19 ++++ autopush/values.yaml | 79 +++++++++++++++ 9 files changed, 248 insertions(+), 3 deletions(-) create mode 100644 autopush/templates/unifiedpush/deployment.yaml create mode 100644 autopush/templates/unifiedpush/service.yaml diff --git a/autopush/Chart.yaml b/autopush/Chart.yaml index 0d77753..727c3dc 100644 --- a/autopush/Chart.yaml +++ b/autopush/Chart.yaml @@ -3,7 +3,7 @@ name: autopush description: A Helm chart for Kubernetes icon: type: application -version: 0.0.8 +version: 0.0.9 # renovate: image=docker.io/mozilla-services/autopush-rs appVersion: "1.72.2" maintainers: diff --git a/autopush/README.md b/autopush/README.md index 8c6eb95..057e0e6 100644 --- a/autopush/README.md +++ b/autopush/README.md @@ -7,7 +7,7 @@ description: "A Helm chart for Kubernetes" # autopush -![Version: 0.0.8](https://img.shields.io/badge/Version-0.0.8-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 1.72.2](https://img.shields.io/badge/AppVersion-1.72.2-informational?style=flat-square) +![Version: 0.0.9](https://img.shields.io/badge/Version-0.0.9-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 1.72.2](https://img.shields.io/badge/AppVersion-1.72.2-informational?style=flat-square) A Helm chart for Kubernetes @@ -138,8 +138,8 @@ helm uninstall autopush-release | prometheus.volumeMounts | list | `[]` | Additional volumeMounts on the output Deployment definition. - name: foo mountPath: "/etc/foo" readOnly: true | | redis.architecture | string | `"standalone"` | | | redis.auth.enabled | bool | `true` | | -| redis.auth.existingSecret | string | `nil` | Or use existing secret with "redis-password" key instead of static password | | redis.auth.existingSecret | string | `""` | name of an existing secret with Redis credentials (instead of auth.password), must be created ahead of time | +| redis.auth.existingSecret | string | `nil` | Or use existing secret with "redis-password" key instead of static password | | redis.auth.existingSecretPasswordKey | string | `""` | Password key to be retrieved from existing secret | | redis.auth.password | string | `"autopush"` | XXX Change me! | | redis.dbid | int | `0` | Database ID for non-default database | @@ -155,6 +155,31 @@ helm uninstall autopush-release | serviceAccount.automount | bool | `true` | | | serviceAccount.create | bool | `true` | | | serviceAccount.name | string | `""` | | +| unifiedPush.affinity | object | `{}` | | +| unifiedPush.config.gateway.allowedHosts | list | `[]` | | +| unifiedPush.config.gateway.generic.enable | bool | `true` | | +| unifiedPush.config.gateway.matrix.enable | bool | `true` | | +| unifiedPush.config.uaid | string | `""` | | +| unifiedPush.config.verbose | bool | `false` | | +| unifiedPush.enabled | bool | `false` | | +| unifiedPush.image.pullPolicy | string | `"IfNotPresent"` | | +| unifiedPush.image.registry | string | `"docker.io"` | | +| unifiedPush.image.repository | string | `"unifiedpush/common-proxies"` | | +| unifiedPush.image.tag | string | `"v2.2.0"` | | +| unifiedPush.livenessProbe | object | `{"httpGet":{"path":"/health","port":"http"}}` | This is to setup the liveness and readiness probes more information can be found here: https://kubernetes.io/docs/tasks/configure-pod-container/configure-liveness-readiness-startup-probes/ | +| unifiedPush.nodeSelector | object | `{}` | | +| unifiedPush.podAnnotations | object | `{}` | | +| unifiedPush.podLabels | object | `{}` | | +| unifiedPush.podSecurityContext | object | `{}` | | +| unifiedPush.readinessProbe.httpGet.path | string | `"/health"` | | +| unifiedPush.readinessProbe.httpGet.port | string | `"http"` | | +| unifiedPush.replicaCount | int | `1` | This will set the replicaset count more information can be found here: https://kubernetes.io/docs/concepts/workloads/controllers/replicaset/ | +| unifiedPush.resources | object | `{}` | We usually recommend not to specify default resources and to leave this as a conscious choice for the user. This also increases chances charts run on environments with little resources, such as Minikube. If you do want to specify resources, uncomment the following lines, adjust them as necessary, and remove the curly braces after 'resources:'. limits: cpu: 100m memory: 128Mi requests: cpu: 100m memory: 128Mi | +| unifiedPush.securityContext | object | `{}` | | +| unifiedPush.service.port | int | `80` | | +| unifiedPush.service.type | string | `"ClusterIP"` | | +| unifiedPush.tolerations | list | `[]` | | +| unifiedPush.volumeMounts | list | `[]` | Additional volumeMounts on the output Deployment definition. - name: foo mountPath: "/etc/foo" readOnly: true | | volumes | list | `[]` | Additional volumes on the output Deployment definition. - name: foo secret: secretName: mysecret optional: false | Autogenerated from chart metadata using [helm-docs](https://github.com/norwoodj/helm-docs) diff --git a/autopush/templates/autoconnect/service.yaml b/autopush/templates/autoconnect/service.yaml index 5f12030..b94b1fc 100644 --- a/autopush/templates/autoconnect/service.yaml +++ b/autopush/templates/autoconnect/service.yaml @@ -4,6 +4,7 @@ metadata: name: {{ include "autopush.fullname" . }}-autoconnect labels: {{- include "autopush.labels" . | nindent 4 }} + app.kubernetes.io/metrics: "true" spec: type: {{ .Values.autoconnect.service.type }} selector: diff --git a/autopush/templates/autoendpoint/service.yaml b/autopush/templates/autoendpoint/service.yaml index ef7abb3..94f3eac 100644 --- a/autopush/templates/autoendpoint/service.yaml +++ b/autopush/templates/autoendpoint/service.yaml @@ -4,6 +4,7 @@ metadata: name: {{ include "autopush.fullname" . }}-autoendpoint labels: {{- include "autopush.labels" . | nindent 4 }} + app.kubernetes.io/metrics: "true" spec: type: {{ .Values.autoendpoint.service.type }} selector: diff --git a/autopush/templates/ingress.yaml b/autopush/templates/ingress.yaml index d53ba34..a5e2dd4 100644 --- a/autopush/templates/ingress.yaml +++ b/autopush/templates/ingress.yaml @@ -38,4 +38,26 @@ spec: name: {{ include "autopush.fullname" $ }}-autoendpoint port: name: http + {{- with .Values.unifiedPush }} + {{- if .enabled }} + {{- if .config.gateway.generic.enable }} + - path: /generic/ + pathType: Prefix + backend: + service: + name: {{ include "autopush.fullname" $ }}-unifiedpush + port: + name: http + {{- end }} + {{- if .config.gateway.matrix.enable }} + - path: /_matrix/push/v1/notify + pathType: Prefix + backend: + service: + name: {{ include "autopush.fullname" $ }}-unifiedpush + port: + name: http + {{- end }} + {{- end }} + {{- end }} {{- end }} diff --git a/autopush/templates/servicemonitor.yaml b/autopush/templates/servicemonitor.yaml index 87b7f82..44569c5 100644 --- a/autopush/templates/servicemonitor.yaml +++ b/autopush/templates/servicemonitor.yaml @@ -12,6 +12,7 @@ spec: selector: matchLabels: {{- include "autopush.selectorLabels" . | nindent 6 }} + app.kubernetes.io/metrics: "true" endpoints: - port: metrics {{- end }} diff --git a/autopush/templates/unifiedpush/deployment.yaml b/autopush/templates/unifiedpush/deployment.yaml new file mode 100644 index 0000000..62ddbd5 --- /dev/null +++ b/autopush/templates/unifiedpush/deployment.yaml @@ -0,0 +1,97 @@ +{{- with .Values.unifiedPush }} +{{- if .enabled }} +apiVersion: apps/v1 +kind: Deployment +metadata: + name: {{ include "autopush.fullname" $ }}-unifiedpush + labels: + {{- include "autopush.labels" $ | nindent 4 }} +spec: + replicas: {{ .replicaCount }} + selector: + matchLabels: + {{- include "autopush.selectorLabels" $ | nindent 6 }} + app.kubernetes.io/component: unifiedpush + template: + metadata: + {{- with .podAnnotations }} + annotations: + {{- toYaml . | nindent 8 }} + {{- end }} + labels: + {{- include "autopush.labels" $ | nindent 8 }} + app.kubernetes.io/component: unifiedpush + {{- with .podLabels }} + {{- toYaml . | nindent 8 }} + {{- end }} + spec: + {{- with .imagePullSecrets }} + imagePullSecrets: + {{- toYaml . | nindent 8 }} + {{- end }} + serviceAccountName: {{ include "autopush.serviceAccountName" $ }} + securityContext: + {{- toYaml .podSecurityContext | nindent 8 }} + containers: + - name: common-proxies + securityContext: + {{- toYaml .securityContext | nindent 12 }} + {{- with .image }} + image: "{{ coalesce $.Values.global.image.registry .registry }}/{{ .repository }}:{{ .tag | default (printf "v%s" $.Chart.AppVersion) }}" + imagePullPolicy: {{ coalesce $.Values.global.image.pullPolicy .pullPolicy }} + {{- end }} + env: + - name: "UP_LISTEN" + value: ":8080" + {{- if .config.verbose }} + - name: "UP_VERBOSE" + value: "true" + {{- end }} + {{- with .config.uaid }} + - name: "UP_UAID" + value: {{ . | quote }} + {{- end }} + {{- if .config.gateway.generic.enable }} + - name: "UP_GATEWAY_GENERIC_ENABLE" + value: "true" + {{- end }} + {{- if .config.gateway.matrix.enable }} + - name: "UP_GATEWAY_MATRIX_ENABLE" + value: "true" + {{- end }} + {{- with .config.gateway.allowedHosts }} + - name: "UP_GATEWAY_ALLOWEDHOSTS" + value: {{ join "," . | quote }} + {{- end }} + ports: + - name: http + containerPort: 8080 + protocol: TCP + livenessProbe: + {{- toYaml .livenessProbe | nindent 12 }} + readinessProbe: + {{- toYaml .readinessProbe | nindent 12 }} + resources: + {{- toYaml .resources | nindent 12 }} + {{- with .volumeMounts }} + volumeMounts: + {{- toYaml . | nindent 12 }} + {{- end }} + {{- with .volumes }} + volumes: + {{- toYaml . | nindent 8 }} + {{- end }} + {{- with .nodeSelector }} + nodeSelector: + {{- toYaml . | nindent 8 }} + {{- end }} + {{- with .affinity }} + affinity: + {{- toYaml . | nindent 8 }} + {{- end }} + {{- with .tolerations }} + tolerations: + {{- toYaml . | nindent 8 }} + {{- end }} +{{- end }} +{{- end }} diff --git a/autopush/templates/unifiedpush/service.yaml b/autopush/templates/unifiedpush/service.yaml new file mode 100644 index 0000000..300a35c --- /dev/null +++ b/autopush/templates/unifiedpush/service.yaml @@ -0,0 +1,19 @@ +{{- if .Values.unifiedPush.enabled }} +apiVersion: v1 +kind: Service +metadata: + name: {{ include "autopush.fullname" . }}-unifiedpush + labels: + app.kubernetes.io/metrics: "true" + {{- include "autopush.labels" . | nindent 4 }} +spec: + type: {{ .Values.unifiedPush.service.type }} + selector: + {{- include "autopush.selectorLabels" . | nindent 4 }} + app.kubernetes.io/component: unifiedpush + ports: + - port: {{ .Values.unifiedPush.service.port }} + targetPort: http + protocol: TCP + name: http +{{- end }} diff --git a/autopush/values.yaml b/autopush/values.yaml index bb4504b..e17ad54 100644 --- a/autopush/values.yaml +++ b/autopush/values.yaml @@ -264,6 +264,85 @@ autoendpoint: # readOnly: true volumeMounts: [] +unifiedPush: + enabled: false + # -- This will set the replicaset count more information can be found here: https://kubernetes.io/docs/concepts/workloads/controllers/replicaset/ + replicaCount: 1 + image: + registry: docker.io + repository: unifiedpush/common-proxies + pullPolicy: IfNotPresent + tag: "v2.2.0" + + config: + verbose: false + uaid: "" + gateway: + generic: + enable: true + matrix: + enable: true + allowedHosts: [] + + # This is for setting Kubernetes Annotations to a Pod. + # For more information checkout: https://kubernetes.io/docs/concepts/overview/working-with-objects/annotations/ + podAnnotations: {} + # This is for setting Kubernetes Labels to a Pod. + # For more information checkout: https://kubernetes.io/docs/concepts/overview/working-with-objects/labels/ + podLabels: {} + + nodeSelector: {} + + tolerations: [] + + affinity: {} + + podSecurityContext: {} + # fsGroup: 2000 + + securityContext: {} + # capabilities: + # drop: + # - ALL + # readOnlyRootFilesystem: true + # runAsNonRoot: true + # runAsUser: 1000 + + # This is for setting up a service more information can be found here: https://kubernetes.io/docs/concepts/services-networking/service/ + service: + # This sets the service type more information can be found here: https://kubernetes.io/docs/concepts/services-networking/service/#publishing-services-service-types + type: ClusterIP + # This sets the ports more information can be found here: https://kubernetes.io/docs/concepts/services-networking/service/#field-spec-ports + port: 80 + + # -- We usually recommend not to specify default resources and to leave this as a conscious + # choice for the user. This also increases chances charts run on environments with little + # resources, such as Minikube. If you do want to specify resources, uncomment the following + # lines, adjust them as necessary, and remove the curly braces after 'resources:'. + # limits: + # cpu: 100m + # memory: 128Mi + # requests: + # cpu: 100m + # memory: 128Mi + resources: {} + + # -- This is to setup the liveness and readiness probes more information can be found here: https://kubernetes.io/docs/tasks/configure-pod-container/configure-liveness-readiness-startup-probes/ + livenessProbe: + httpGet: + path: /health + port: http + readinessProbe: + httpGet: + path: /health + port: http + + # -- Additional volumeMounts on the output Deployment definition. + # - name: foo + # mountPath: "/etc/foo" + # readOnly: true + volumeMounts: [] + # This section builds out the service account more information can be found here: https://kubernetes.io/docs/concepts/security/service-accounts/ serviceAccount: -- 2.45.3