2022-07-22 20:19:45 +00:00
|
|
|
image:
|
|
|
|
pullPolicy: IfNotPresent
|
2023-11-17 10:22:57 +00:00
|
|
|
repository: ghcr.io/drakkan/sftpgo
|
2024-06-22 00:44:29 +00:00
|
|
|
tag: v2.6.2-plugins@sha256:f1426b79fb243a43fd3dcc739cf2c9560f9f56bbe280a75a44968ce41aceb1ea
|
2022-07-22 20:19:45 +00:00
|
|
|
securityContext:
|
2023-07-02 17:19:34 +00:00
|
|
|
container:
|
|
|
|
runAsNonRoot: false
|
|
|
|
readOnlyRootFilesystem: false
|
|
|
|
runAsUser: 0
|
|
|
|
runAsGroup: 0
|
2022-07-22 20:19:45 +00:00
|
|
|
service:
|
2023-07-02 17:19:34 +00:00
|
|
|
main:
|
|
|
|
ports:
|
|
|
|
main:
|
|
|
|
port: 2221
|
|
|
|
protocol: http
|
|
|
|
targetPort: 8080
|
2022-07-22 20:19:45 +00:00
|
|
|
ftpport:
|
|
|
|
enabled: true
|
|
|
|
ports:
|
|
|
|
ftpport:
|
|
|
|
enabled: true
|
|
|
|
port: 2121
|
2023-07-02 17:19:34 +00:00
|
|
|
protocol: http
|
2022-07-22 20:19:45 +00:00
|
|
|
targetPort: 2121
|
|
|
|
passiveports:
|
|
|
|
enabled: true
|
|
|
|
ports:
|
|
|
|
passiveports:
|
|
|
|
enabled: true
|
|
|
|
port: 50000
|
2023-07-02 17:19:34 +00:00
|
|
|
protocol: http
|
2022-07-22 20:19:45 +00:00
|
|
|
targetPort: 50000
|
|
|
|
sftpport:
|
|
|
|
enabled: true
|
|
|
|
ports:
|
|
|
|
sftpport:
|
|
|
|
enabled: true
|
|
|
|
port: 2022
|
2023-07-02 17:19:34 +00:00
|
|
|
protocol: tcp
|
2022-07-22 20:19:45 +00:00
|
|
|
targetPort: 2022
|
|
|
|
webdavport:
|
|
|
|
enabled: true
|
|
|
|
ports:
|
|
|
|
webdavport:
|
|
|
|
enabled: true
|
|
|
|
port: 10080
|
2023-07-02 17:19:34 +00:00
|
|
|
protocol: tcp
|
2022-07-22 20:19:45 +00:00
|
|
|
targetPort: 10080
|
2023-07-03 20:26:13 +00:00
|
|
|
workload:
|
|
|
|
main:
|
|
|
|
podSpec:
|
|
|
|
containers:
|
|
|
|
main:
|
|
|
|
env:
|
|
|
|
SFTPGO_COMMON__DEFENDER__ENABLED: "true"
|
|
|
|
SFTPGO_FTPD__BINDINGS__0__DEBUG: "0"
|
|
|
|
SFTPGO_FTPD__BINDINGS__0__FORCE_PASSIVE_IP: 10.0.0.10
|
|
|
|
SFTPGO_FTPD__BINDINGS__0__PORT: "2121"
|
|
|
|
SFTPGO_FTPD__PASSIVE_PORT_RANGE__END: "50100"
|
|
|
|
SFTPGO_FTPD__PASSIVE_PORT_RANGE__START: "50000"
|
|
|
|
SFTPGO_WEBDAVD__BINDINGS__0__PORT: "10080"
|
2024-04-02 15:38:31 +00:00
|
|
|
# plugins section
|
|
|
|
# each plugin will require couple more manual settings due to
|
|
|
|
# how they can each be combined differently. see docs on truecharts website
|
|
|
|
# ref - https://github.com/sftpgo/sftpgo-plugin-auth
|
|
|
|
SFTPGO_PLUGIN_AUTH_LDAP_URL: "ldap://192.168.1.5:389"
|
|
|
|
SFTPGO_PLUGIN_AUTH_LDAP_BASE_DN: "dc=mylab,dc=local"
|
|
|
|
SFTPGO_PLUGIN_AUTH_LDAP_BIND_DN: "cn=Administrator,cn=users,dc=mylab,dc=local"
|
|
|
|
SFTPGO_PLUGIN_AUTH_LDAP_PASSWORD: "Password.123456"
|
|
|
|
SFTPGO_PLUGIN_AUTH_LDAP_SEARCH_QUERY: "(&(objectClass=user)(sAMAccountType=805306368)(sAMAccountName=%username%))"
|
|
|
|
SFTPGO_PLUGIN_AUTH_LDAP_GROUP_ATTRIBUTES: "memberOf"
|
|
|
|
SFTPGO_PLUGIN_AUTH_PRIMARY_GROUP_PREFIX: ""
|
|
|
|
SFTPGO_PLUGIN_AUTH_SECONDARY_GROUP_PREFIX: ""
|
|
|
|
SFTPGO_PLUGIN_AUTH_MEMBERSHIP_GROUP_PREFIX: ""
|
|
|
|
SFTPGO_PLUGIN_AUTH_REQUIRE_GROUPS: ""
|
|
|
|
SFTPGO_PLUGIN_AUTH_STARTTLS: "0"
|
|
|
|
SFTPGO_PLUGIN_AUTH_USERS_BASE_DIR: "/mnt/home"
|
|
|
|
SFTPGO_PLUGIN_AUTH_CACHE_TIME: 0
|
|
|
|
SFTPGO_PLUGIN_AUTH_SKIP_TLS_VERIFY: "0"
|
|
|
|
SFTPGO_PLUGIN_AUTH_CA_CERTIFICATES: ""
|
|
|
|
# ref - https://github.com/sftpgo/sftpgo-plugin-eventsearch
|
|
|
|
SFTPGO_PLUGIN_EVENTSEARCH_DRIVER: ""
|
|
|
|
SFTPGO_PLUGIN_EVENTSEARCH_DSN: ""
|
|
|
|
# ref - https://github.com/sftpgo/sftpgo-plugin-eventstore
|
|
|
|
SFTPGO_PLUGIN_EVENTSTORE_DRIVER: ""
|
|
|
|
SFTPGO_PLUGIN_EVENTSTORE_DSN: ""
|
|
|
|
SFTPGO_PLUGIN_EVENTSTORE_INSTANCE_ID: ""
|
|
|
|
SFTPGO_PLUGIN_EVENTSTORE_RETENTION: "0"
|
|
|
|
# ref - https://github.com/sftpgo/sftpgo-plugin-geoipfilter
|
|
|
|
SFTPGO_PLUGIN_GEOIPFILTER_DB_FILE: "/mnt/database/geolite.db"
|
|
|
|
SFTPGO_PLUGIN_GEOIPFILTER_ALLOWED_COUNTRIES: "JP"
|
|
|
|
SFTPGO_PLUGIN_GEOIPFILTER_DENIED_COUNTRIES: "KP"
|
|
|
|
# ref - https://github.com/sftpgo/sftpgo-plugin-kms
|
|
|
|
# ref - https://github.com/sftpgo/sftpgo-plugin-pubsub
|
|
|
|
|
2023-07-03 20:26:13 +00:00
|
|
|
persistence:
|
|
|
|
backupdirectory:
|
|
|
|
enabled: true
|
|
|
|
mountPath: /srv/sftpgo/backups
|
|
|
|
configpath:
|
|
|
|
enabled: true
|
|
|
|
mountPath: /var/lib/sftpgo
|
|
|
|
data:
|
|
|
|
enabled: true
|
|
|
|
mountPath: /srv/sftpgo/data
|
|
|
|
shareaccess:
|
|
|
|
enabled: true
|
|
|
|
mountPath: /shareaccess
|
2022-08-08 21:25:02 +00:00
|
|
|
portal:
|
2023-07-02 17:19:34 +00:00
|
|
|
open:
|
|
|
|
enabled: true
|