TrueChartsClone/charts/enterprise/blocky/questions.yaml

863 lines
29 KiB
YAML
Raw Normal View History

# Include{groups}
portals:
open:
# Include{portalLink}
questions:
# Include{global}
# Include{workload}
# Include{workloadDeployment}
# Include{replicas1}
# Include{podSpec}
# Include{containerMain}
# Include{containerBasic}
# Include{containerAdvanced}
- variable: webUI
group: App Configuration
label: WebUI Configuration
schema:
additional_attrs: true
type: dict
attrs:
- variable: enabled
label: Enable Web UI
description: Enables Web UI
schema:
type: boolean
default: true
- variable: apiURL
label: API URL
description: API URL for webUI, including port. Only used when not using ingress
schema:
type: string
default: "http://127.0.0.1:4000"
- variable: overrideDefaults
group: App Configuration
label: Override Default Upstreams
description: Overrides the predefined DNS server upstream list
schema:
type: boolean
default: false
show_subquestions_if: true
subquestions:
- variable: defaultUpstreams
label: Default Upstreams
schema:
type: list
default: []
items:
- variable: upstreamEntry
label: Upstream Entry
schema:
type: string
required: true
default: ""
- variable: upstreams
group: App Configuration
label: Upstreams Groups
description: Refer to
<br /><a href="https://0xerr0r.github.io/blocky/configuration/#upstream-configuration" target="_blank" rel="noopener noreferrer">https://0xerr0r.github.io/blocky/configuration/#upstream-configuration</a>
schema:
type: list
default: []
items:
- variable: upstreamsGroupEntry
label: Upstreams Group Entry
schema:
additional_attrs: true
type: dict
attrs:
- variable: name
label: Group Name
schema:
type: string
required: true
default: ""
- variable: upstreams
label: Upstreams
schema:
type: list
required: true
default: []
items:
- variable: upstreamEntry
label: upstream Entry
schema:
type: string
required: true
default: ""
- variable: bootstrapDns
group: App Configuration
label: Bootstrap DNS
description: Used to resolve upstream DoH and DoT servers that are specified as hostnames.
<br />Refer to <a href="https://0xerr0r.github.io/blocky/configuration/#bootstrap-dns-configuration" target="_blank" rel="noopener noreferrer">https://0xerr0r.github.io/blocky/configuration/#bootstrap-dns-configuration</a>
schema:
additional_attrs: true
type: dict
attrs:
- variable: upstream
label: Upstream
schema:
type: string
default: ""
- variable: ips
label: IPs
schema:
type: list
default: []
items:
- variable: ipEntry
label: IP Entry
schema:
type: string
required: true
default: ""
feat(blocky): allow additional bootstrapdns (#7816) **Description** <!-- Please include a summary of the change and which issue is fixed. Please also include relevant motivation and context. List any dependencies that are required for this change. --> ⚒️ Fixes #7797 **⚙️ Type of change** - [ ] ⚙️ Feature/App addition - [ ] 🪛 Bugfix - [ ] ⚠️ Breaking change (fix or feature that would cause existing functionality to not work as expected) - [ ] 🔃 Refactor of current code **🧪 How Has This Been Tested?** <!-- Please describe the tests that you ran to verify your changes. Provide instructions so we can reproduce. Please also list any relevant details for your test configuration --> **📃 Notes:** <!-- Please enter any other relevant information here --> **✔️ Checklist:** - [ ] ⚖️ My code follows the style guidelines of this project - [ ] 👀 I have performed a self-review of my own code - [ ] #️⃣ I have commented my code, particularly in hard-to-understand areas - [ ] 📄 I have made corresponding changes to the documentation - [ ] ⚠️ My changes generate no new warnings - [ ] 🧪 I have added tests to this description that prove my fix is effective or that my feature works - [ ] ⬆️ I increased versions for any altered app according to semantic versioning **➕ App addition** If this PR is an app addition please make sure you have done the following. - [ ] 🪞 I have opened a PR on [truecharts/containers](https://github.com/truecharts/containers) adding the container to TrueCharts mirror repo. - [ ] 🖼️ I have added an icon in the Chart's root directory called `icon.png` --- _Please don't blindly check all the boxes. Read them and only check those that apply. Those checkboxes are there for the reviewer to see what is this all about and the status of this PR with a quick glance._ --------- Signed-off-by: Stavros Kois <47820033+stavros-k@users.noreply.github.com>
2023-03-22 06:48:58 +00:00
- variable: additionalBootstrapDns
group: App Configuration
label: Additional Bootstrap DNS
schema:
type: list
show_if: [[ "bootstrapDns", "!=", {"upstream": "", "ips": []} ]]
default: []
items:
- variable: additionalBootstrapDnsEntry
label: Additional Bootstrap DNS Entry
schema:
additional_attrs: true
type: dict
attrs:
- variable: upstream
label: Upstream
schema:
type: string
default: ""
- variable: ips
label: IPs
schema:
type: list
default: []
items:
- variable: ipEntry
label: IP Entry
schema:
type: string
required: true
default: ""
- variable: filtering
group: App Configuration
label: Filtering
description: Define one or more DNS query types; all queries with these types will be dropped
<br />Refer to <a href="https://0xerr0r.github.io/blocky/configuration/#filtering" target="_blank" rel="noopener noreferrer">https://0xerr0r.github.io/blocky/configuration/#filtering</a>
schema:
additional_attrs: true
type: dict
attrs:
- variable: queryTypes
label: Query Types
schema:
type: list
default: []
items:
- variable: queryTypeEntry
label: Query Type Entry
schema:
type: string
required: true
default: ""
- variable: customDNS
group: App Configuration
label: Custom DNS
description: Define your own domain name to IP mappings.
<br />Refer to <a href="https://0xerr0r.github.io/blocky/configuration/#custom-dns" target="_blank" rel="noopener noreferrer">https://0xerr0r.github.io/blocky/configuration/#custom-dns</a>
schema:
additional_attrs: true
type: dict
attrs:
- variable: customTTL
label: Custom TTL
schema:
type: string
default: 1h
- variable: filterUnmappedTypes
label: Filter Unmapped Types
schema:
type: boolean
default: true
- variable: rewrite
label: Rewrite
schema:
type: list
default: []
items:
- variable: rewriteEntry
label: Rewrite Entry
schema:
type: dict
additional_attrs: true
attrs:
- variable: in
label: In
schema:
type: string
required: true
default: ""
- variable: out
label: Out
schema:
type: string
required: true
default: ""
- variable: mapping
label: Mapping
schema:
type: list
default: []
items:
- variable: mappingEntry
label: Mapping Entry
schema:
type: dict
additional_attrs: true
attrs:
- variable: domain
label: Domain
schema:
type: string
required: true
default: ""
- variable: dnsserver
label: DNS Server
schema:
type: string
required: true
default: ""
- variable: clientLookup
group: App Configuration
label: Client Lookup
description: Blocky can try to resolve a user-friendly client name from the IP address or server URL (DoT and DoH)
<br />Refer to <a href="https://0xerr0r.github.io/blocky/configuration/#client-name-lookup" target="_blank" rel="noopener noreferrer">https://0xerr0r.github.io/blocky/configuration/#client-name-lookup</a>
schema:
additional_attrs: true
type: dict
attrs:
- variable: upstream
label: Upstream
schema:
type: string
default: ""
- variable: singleNameOrder
label: Single Name Order
schema:
type: list
default: []
items:
- variable: singleNameEntry
label: Single Name Entry
schema:
type: string
required: true
default: ""
- variable: clients
label: Clients
schema:
type: list
default: []
items:
- variable: clientEntry
label: Client Entry
schema:
type: dict
additional_attrs: true
attrs:
- variable: domain
label: Domain
schema:
type: string
required: true
default: ""
- variable: ips
label: IPs
schema:
type: list
default: []
items:
- variable: ipEntry
label: IP Entry
schema:
type: string
required: true
default: ""
- variable: caching
group: App Configuration
label: Caching
description: Refer to
<br /><a href="https://0xerr0r.github.io/blocky/configuration/#caching" target="_blank" rel="noopener noreferrer">https://0xerr0r.github.io/blocky/configuration/#caching</a>
schema:
additional_attrs: true
type: dict
attrs:
- variable: minTime
label: Min Time
schema:
type: string
default: 5m
- variable: maxTime
label: Max Time
schema:
type: string
default: 30m
- variable: maxItemsCount
label: Max Items Count
schema:
type: int
default: 0
- variable: prefetching
label: Prefetching
schema:
type: boolean
default: false
- variable: prefetchExpires
label: Prefetch Expires
schema:
type: string
default: 2h
- variable: prefetchThreshold
label: Prefetch Threshold
schema:
type: int
default: 5
- variable: prefetchMaxItemsCount
label: Prefetch Max Items Count
schema:
type: int
default: 0
- variable: cacheTimeNegative
label: Cache Time Negative
schema:
type: string
default: 30m
- variable: conditional
group: App Configuration
label: Conditional
description: Define which DNS resolver(s) should be used for queries for the particular domain
<br />Refer to <a href="https://0xerr0r.github.io/blocky/configuration/#conditional-dns-resolution" target="_blank" rel="noopener noreferrer">https://0xerr0r.github.io/blocky/configuration/#conditional-dns-resolution</a>
schema:
additional_attrs: true
type: dict
attrs:
- variable: rewrite
label: Rewrite
schema:
type: list
default: []
items:
- variable: rewriteEntry
label: Rewrite Entry
schema:
type: dict
additional_attrs: true
attrs:
- variable: in
label: In
schema:
type: string
required: true
default: ""
- variable: out
label: Out
schema:
type: string
required: true
default: ""
- variable: mapping
label: Mapping
schema:
type: list
default: []
items:
- variable: mappingEntry
label: Mapping Entry
schema:
type: dict
additional_attrs: true
attrs:
- variable: domain
label: Domain
schema:
type: string
required: true
default: ""
- variable: dnsserver
label: DNS Server
schema:
type: string
required: true
default: ""
- variable: blocking
group: App Configuration
label: Blocking
description: Each black or whitelist can be either a path to the local file or a URL to download. All Urls must be grouped to a group name.
<br />Refer to <a href="https://0xerr0r.github.io/blocky/configuration/#blocking-and-whitelisting" target="_blank" rel="noopener noreferrer">https://0xerr0r.github.io/blocky/configuration/#blocking-and-whitelisting</a>
schema:
additional_attrs: true
type: dict
attrs:
- variable: blockType
label: Block Type
description: Set the response should be sent to the client, if a requested query is blocked
schema:
type: string
default: nxDomain
- variable: blockTTL
label: Block TTL
description: Set the TTL for answers to blocked domains
schema:
type: string
default: 6h
- variable: refreshPeriod
label: Refresh Period
description: Set how often blocky should refresh list cache
schema:
type: string
default: 4h
- variable: downloadTimeout
label: Download Timeout
description: Download attempt timeout
schema:
type: string
default: 60s
- variable: downloadAttempts
label: Download Attempts
description: How many download attempts should be performed
schema:
type: int
default: 3
- variable: downloadCooldown
label: Download Cooldown
description: Time between the download attempts
schema:
type: string
default: 2s
fix(blocky): fix additional bootstap dns (#8029) **Description** <!-- Please include a summary of the change and which issue is fixed. Please also include relevant motivation and context. List any dependencies that are required for this change. --> ⚒️ Fixes #8014 ⚒️ Fixes #7990 **⚙️ Type of change** - [ ] ⚙️ Feature/App addition - [ ] 🪛 Bugfix - [ ] ⚠️ Breaking change (fix or feature that would cause existing functionality to not work as expected) - [ ] 🔃 Refactor of current code **🧪 How Has This Been Tested?** <!-- Please describe the tests that you ran to verify your changes. Provide instructions so we can reproduce. Please also list any relevant details for your test configuration --> **📃 Notes:** <!-- Please enter any other relevant information here --> **✔️ Checklist:** - [ ] ⚖️ My code follows the style guidelines of this project - [ ] 👀 I have performed a self-review of my own code - [ ] #️⃣ I have commented my code, particularly in hard-to-understand areas - [ ] 📄 I have made corresponding changes to the documentation - [ ] ⚠️ My changes generate no new warnings - [ ] 🧪 I have added tests to this description that prove my fix is effective or that my feature works - [ ] ⬆️ I increased versions for any altered app according to semantic versioning **➕ App addition** If this PR is an app addition please make sure you have done the following. - [ ] 🪞 I have opened a PR on [truecharts/containers](https://github.com/truecharts/containers) adding the container to TrueCharts mirror repo. - [ ] 🖼️ I have added an icon in the Chart's root directory called `icon.png` --- _Please don't blindly check all the boxes. Read them and only check those that apply. Those checkboxes are there for the reviewer to see what is this all about and the status of this PR with a quick glance._
2023-04-15 12:12:31 +00:00
- variable: startStrategy
label: Start Strategy
description: |
blocking: all blocking lists will be loaded before DNS resolution starts.</br>
failOnError: like blocking but blocky will shut down if any download fails.</br>
fast: DNS resolution starts immediately without blocking which will be enabled after list load is completed
schema:
fix(blocky): fix additional bootstap dns (#8029) **Description** <!-- Please include a summary of the change and which issue is fixed. Please also include relevant motivation and context. List any dependencies that are required for this change. --> ⚒️ Fixes #8014 ⚒️ Fixes #7990 **⚙️ Type of change** - [ ] ⚙️ Feature/App addition - [ ] 🪛 Bugfix - [ ] ⚠️ Breaking change (fix or feature that would cause existing functionality to not work as expected) - [ ] 🔃 Refactor of current code **🧪 How Has This Been Tested?** <!-- Please describe the tests that you ran to verify your changes. Provide instructions so we can reproduce. Please also list any relevant details for your test configuration --> **📃 Notes:** <!-- Please enter any other relevant information here --> **✔️ Checklist:** - [ ] ⚖️ My code follows the style guidelines of this project - [ ] 👀 I have performed a self-review of my own code - [ ] #️⃣ I have commented my code, particularly in hard-to-understand areas - [ ] 📄 I have made corresponding changes to the documentation - [ ] ⚠️ My changes generate no new warnings - [ ] 🧪 I have added tests to this description that prove my fix is effective or that my feature works - [ ] ⬆️ I increased versions for any altered app according to semantic versioning **➕ App addition** If this PR is an app addition please make sure you have done the following. - [ ] 🪞 I have opened a PR on [truecharts/containers](https://github.com/truecharts/containers) adding the container to TrueCharts mirror repo. - [ ] 🖼️ I have added an icon in the Chart's root directory called `icon.png` --- _Please don't blindly check all the boxes. Read them and only check those that apply. Those checkboxes are there for the reviewer to see what is this all about and the status of this PR with a quick glance._
2023-04-15 12:12:31 +00:00
type: string
default: blocking
enum:
- value: blocking
description: Blocking
- value: failOnError
description: Fail On Error
- value: fast
description: Fast
- variable: processingConcurrency
label: Processing Concurrency
description: Sets how many list-groups can be processed at the same time
schema:
type: int
default: 4
- variable: whitelist
label: Whitelist
description: Define whitelists, either URL or file
schema:
type: list
default: []
items:
- variable: whitelistEntry
label: Whitelist Group Entry
schema:
additional_attrs: true
type: dict
attrs:
- variable: name
label: Group Name
schema:
type: string
required: true
default: ""
- variable: lists
label: Lists
schema:
type: list
required: true
default: []
items:
- variable: listEntry
label: List Entry
schema:
type: string
required: true
default: ""
- variable: blacklist
label: Blacklist
description: Define blacklists, either URL or file
schema:
type: list
default: []
items:
- variable: blacklistEntry
label: Blacklist Group Entry
schema:
additional_attrs: true
type: dict
attrs:
- variable: name
label: Group Name
schema:
type: string
required: true
default: ""
- variable: lists
label: Lists
schema:
type: list
required: true
default: []
items:
- variable: listEntry
label: List Entry
schema:
type: string
required: true
default: ""
- variable: clientGroupsBlock
label: Client Groups Block
description: Define, which blocking group(s) should be used for which client in your network.
schema:
type: list
default: []
items:
- variable: clientGroupBlockEntry
label: Client Group Block Entry
schema:
additional_attrs: true
type: dict
attrs:
- variable: name
label: Client Group Name
schema:
type: string
required: true
default: ""
- variable: groups
label: Groups
schema:
type: list
required: true
default: []
items:
- variable: groupEntry
label: Group Entry
schema:
type: string
required: true
default: ""
- variable: hostsFile
group: App Configuration
label: Hosts File
description: You can enable resolving of entries, located in local hosts file.
<br />Refer to <a href="https://0xerr0r.github.io/blocky/configuration/#hosts-file" target="_blank" rel="noopener noreferrer">https://0xerr0r.github.io/blocky/configuration/#hosts-file</a>
schema:
additional_attrs: true
type: dict
attrs:
- variable: enabled
label: Enabled
schema:
type: boolean
default: false
show_subquestions_if: true
subquestions:
- variable: filePath
label: File Path
schema:
type: string
default: /etc/hosts
- variable: hostsTTL
label: Hosts TTL
schema:
type: string
default: 60m
- variable: refreshPeriod
label: Refresh Period
schema:
type: string
default: 30m
- variable: queryLog
group: App Configuration
label: Query Logging configuration
schema:
additional_attrs: true
type: dict
attrs:
- variable: type
label: Type
schema:
type: string
default: ""
enum:
- value: ""
description: Console
- value: postgresql
description: postgresql
- value: csv
description: csv
- value: csv-client
description: csv-client
- variable: target
label: Target
schema:
type: string
show_if: [["type", "!=", "postgresql"]]
default: "/var/log/something"
- variable: logRetentionDays
label: Log Retention Days
schema:
type: int
default: 0
- variable: creationAttempts
label: Creation Attempts
schema:
type: int
default: 3
- variable: creationCooldown
label: Creation Cooldown
schema:
type: string
default: 2s
- variable: k8sgateway
group: App Configuration
label: k8s-Gateway Configuration
schema:
additional_attrs: true
type: dict
attrs:
- variable: enabled
label: Enable k8s-Gateway
description: Enables k8s-Gateway
schema:
type: boolean
default: true
show_subquestions_if: true
subquestions:
- variable: domains
label: Domains
description: Please refer to CoreDNS docs for options
schema:
type: list
default: []
items:
- variable: domainEntry
label: ""
schema:
additional_attrs: true
type: dict
attrs:
- variable: domain
label: Domain name
schema:
type: string
required: true
default: example.com
- variable: dnsChallenge
label: Forward dnsChallenge
description: Optional configuration option for DNS01 challenge that will redirect all acme
schema:
additional_attrs: true
type: dict
attrs:
- variable: enabled
label: Enable
schema:
type: boolean
default: false
show_subquestions_if: true
subquestions:
- variable: domain
label: Forward to Domain
schema:
type: string
required: true
default: dns01.clouddns.com
- variable: advancedOptions
label: Advanced Options
schema:
type: boolean
default: false
show_if: [["enabled", "=", "true"]]
show_subquestions_if: true
subquestions:
- variable: ttl
label: ttl
description: TTL for non-apex responses (in seconds)
schema:
type: int
default: 300
- variable: watchedResources
label: Watched Resources
description: imit what kind of resources to watch, e.g. Ingress
schema:
type: list
default: []
items:
- variable: watchedResource
label: Watched Resource
schema:
type: string
default: ""
- variable: secondary
label: Secondary DNS Server Service
description: Service name of a secondary DNS server (should be serviceName.namespace)
schema:
type: string
default: ""
- variable: apex
label: Apex
description: Override the default `serviceName.namespace` domain apex
schema:
type: string
default: ""
# Include{containerConfig}
feat(enterprise, dependency and tailscale): add podOptions to SCALE GUI (#8109) **Description** This adds the podOptions GUI section to: - Tailscale - Enterprise train - Dependency train Other trains will follow later. **⚙️ Type of change** - [x] ⚙️ Feature/App addition - [x] 🪛 Bugfix - [ ] ⚠️ Breaking change (fix or feature that would cause existing functionality to not work as expected) - [x] 🔃 Refactor of current code **🧪 How Has This Been Tested?** <!-- Please describe the tests that you ran to verify your changes. Provide instructions so we can reproduce. Please also list any relevant details for your test configuration --> **📃 Notes:** <!-- Please enter any other relevant information here --> **✔️ Checklist:** - [ ] ⚖️ My code follows the style guidelines of this project - [ ] 👀 I have performed a self-review of my own code - [ ] #️⃣ I have commented my code, particularly in hard-to-understand areas - [ ] 📄 I have made corresponding changes to the documentation - [ ] ⚠️ My changes generate no new warnings - [ ] 🧪 I have added tests to this description that prove my fix is effective or that my feature works - [ ] ⬆️ I increased versions for any altered app according to semantic versioning **➕ App addition** If this PR is an app addition please make sure you have done the following. - [ ] 🪞 I have opened a PR on [truecharts/containers](https://github.com/truecharts/containers) adding the container to TrueCharts mirror repo. - [ ] 🖼️ I have added an icon in the Chart's root directory called `icon.png` --- _Please don't blindly check all the boxes. Read them and only check those that apply. Those checkboxes are there for the reviewer to see what is this all about and the status of this PR with a quick glance._
2023-04-21 13:32:34 +00:00
# Include{podOptions}
# Include{serviceRoot}
- variable: main
label: Main Service
description: The Primary service on which the healthcheck runs, often the webUI
schema:
additional_attrs: true
type: dict
attrs:
# Include{serviceSelectorLoadBalancer}
# Include{serviceSelectorExtras}
- variable: main
label: Main Service Port Configuration
schema:
additional_attrs: true
type: dict
attrs:
- variable: port
label: Port
description: This port exposes the container port on the service
schema:
type: int
default: 4000
required: true
- variable: dnstcp
label: DNS TCP Service
description: The DNS TCP service
schema:
additional_attrs: true
type: dict
attrs:
# Include{serviceSelectorLoadBalancer}
# Include{serviceSelectorExtras}
- variable: dnstcp
label: DNS TCP Port Configuration
schema:
additional_attrs: true
type: dict
attrs:
- variable: port
label: Port
description: This port exposes the container port on the service
schema:
type: int
default: 53
required: true
- variable: dnsudp
label: DNS UDP Service
description: The DNS UDP service
schema:
additional_attrs: true
type: dict
attrs:
# Include{serviceSelectorLoadBalancer}
# Include{serviceSelectorExtras}
- variable: dnsudp
label: DNS UDP Port Configuration
schema:
additional_attrs: true
type: dict
attrs:
- variable: port
label: Port
description: This port exposes the container port on the service
schema:
type: int
default: 53
required: true
- variable: dot
label: DoT Service
description: "DNS-over-TLS service"
schema:
additional_attrs: true
type: dict
attrs:
# Include{serviceSelectorClusterIP}
# Include{serviceSelectorExtras}
- variable: dot
label: DoT Port Configuration
schema:
additional_attrs: true
type: dict
attrs:
- variable: port
label: Port
description: This port exposes the container port on the service
schema:
type: int
default: 853
required: true
# Include{serviceExpertRoot}
default: false
# Include{serviceExpert}
# Include{serviceList}
# Include{persistenceList}
# Include{ingressRoot}
- variable: main
label: Main Ingress
schema:
additional_attrs: true
type: dict
attrs:
# Include{ingressDefault}
# Include{ingressTLS}
# Include{ingressTraefik}
# Include{ingressList}
2023-03-01 08:30:36 +00:00
# Include{securityContextRoot}
BREAKING CHANGE refactor: port all enterprise apps to new common and add apps (#7738) * use new common * more porting and add notes.txt * portals * add vaultwarden and authelia to enterprise * some changes * authelia porting * fix grafana * fixup metallb * more * traefik * some initial blocky work * fixes * more work on enterprise train * containers * labels * no message * some more fixes * update questions for new enterprise apps * something * remove postgresql dependency from enterprise train apps * fix some traefik bugs * remove prometheus affinities for now * authelia postgresql fixes * bump and fix install test errors * bump common for probe fixes * fix questions * more questions fixes * add some metrics improvements * some more fixes * whoops * some authelia fixes * fix blocky and authelia * bump common for postgresql fixes * hmm * bump common * bump redis to disable double manifest loading * dont enc secrets for authelia * traefik, blocky and authelia fixes * traefik caps on protocols * bump redis for password fixes * ensure roles are clusterwide * ok * redis/common bumps * remove blocky webui and change config location * whoops * redis fix * more blocky tryouts * authelia whoops * bump blocky version * disable prometheus controller * oops * bump common on prometheus for custom service selector labels * rename prometheus selector labels on service * damn * more work * blocky 100 tryout * blocky root tryout * fix blocky config and remove fsgroup * dont drop caps * Update common.yaml Signed-off-by: Kjeld Schouten-Lebbing <kjeld@schouten-lebbing.nl> * Update values.yaml Signed-off-by: Kjeld Schouten-Lebbing <kjeld@schouten-lebbing.nl> * Update values.yaml Signed-off-by: Kjeld Schouten-Lebbing <kjeld@schouten-lebbing.nl> * revert update for blocky * use old-style mount for blocky * put update back for blocky * add initial postgresl query log support * hmm * small lint * bump common --------- Signed-off-by: Kjeld Schouten-Lebbing <kjeld@schouten-lebbing.nl> Co-authored-by: Stavros kois <s.kois@outlook.com> Co-authored-by: Stavros Kois <47820033+stavros-k@users.noreply.github.com>
2023-03-04 12:42:14 +00:00
- variable: runAsUser
label: "runAsUser"
description: "The UserID of the user running the application"
schema:
type: int
default: 568
- variable: runAsGroup
label: "runAsGroup"
description: "The groupID of the user running the application"
schema:
type: int
default: 568
2023-03-01 08:30:36 +00:00
# Include{securityContextContainer}
# Include{securityContextAdvanced}
# Include{securityContextPod}
BREAKING CHANGE refactor: port all enterprise apps to new common and add apps (#7738) * use new common * more porting and add notes.txt * portals * add vaultwarden and authelia to enterprise * some changes * authelia porting * fix grafana * fixup metallb * more * traefik * some initial blocky work * fixes * more work on enterprise train * containers * labels * no message * some more fixes * update questions for new enterprise apps * something * remove postgresql dependency from enterprise train apps * fix some traefik bugs * remove prometheus affinities for now * authelia postgresql fixes * bump and fix install test errors * bump common for probe fixes * fix questions * more questions fixes * add some metrics improvements * some more fixes * whoops * some authelia fixes * fix blocky and authelia * bump common for postgresql fixes * hmm * bump common * bump redis to disable double manifest loading * dont enc secrets for authelia * traefik, blocky and authelia fixes * traefik caps on protocols * bump redis for password fixes * ensure roles are clusterwide * ok * redis/common bumps * remove blocky webui and change config location * whoops * redis fix * more blocky tryouts * authelia whoops * bump blocky version * disable prometheus controller * oops * bump common on prometheus for custom service selector labels * rename prometheus selector labels on service * damn * more work * blocky 100 tryout * blocky root tryout * fix blocky config and remove fsgroup * dont drop caps * Update common.yaml Signed-off-by: Kjeld Schouten-Lebbing <kjeld@schouten-lebbing.nl> * Update values.yaml Signed-off-by: Kjeld Schouten-Lebbing <kjeld@schouten-lebbing.nl> * Update values.yaml Signed-off-by: Kjeld Schouten-Lebbing <kjeld@schouten-lebbing.nl> * revert update for blocky * use old-style mount for blocky * put update back for blocky * add initial postgresl query log support * hmm * small lint * bump common --------- Signed-off-by: Kjeld Schouten-Lebbing <kjeld@schouten-lebbing.nl> Co-authored-by: Stavros kois <s.kois@outlook.com> Co-authored-by: Stavros Kois <47820033+stavros-k@users.noreply.github.com>
2023-03-04 12:42:14 +00:00
- variable: fsGroup
label: "fsGroup"
description: "The group that should own ALL storage."
schema:
type: int
default: 568
# Include{resources}
# Include{metrics}
BREAKING CHANGE refactor: port all enterprise apps to new common and add apps (#7738) * use new common * more porting and add notes.txt * portals * add vaultwarden and authelia to enterprise * some changes * authelia porting * fix grafana * fixup metallb * more * traefik * some initial blocky work * fixes * more work on enterprise train * containers * labels * no message * some more fixes * update questions for new enterprise apps * something * remove postgresql dependency from enterprise train apps * fix some traefik bugs * remove prometheus affinities for now * authelia postgresql fixes * bump and fix install test errors * bump common for probe fixes * fix questions * more questions fixes * add some metrics improvements * some more fixes * whoops * some authelia fixes * fix blocky and authelia * bump common for postgresql fixes * hmm * bump common * bump redis to disable double manifest loading * dont enc secrets for authelia * traefik, blocky and authelia fixes * traefik caps on protocols * bump redis for password fixes * ensure roles are clusterwide * ok * redis/common bumps * remove blocky webui and change config location * whoops * redis fix * more blocky tryouts * authelia whoops * bump blocky version * disable prometheus controller * oops * bump common on prometheus for custom service selector labels * rename prometheus selector labels on service * damn * more work * blocky 100 tryout * blocky root tryout * fix blocky config and remove fsgroup * dont drop caps * Update common.yaml Signed-off-by: Kjeld Schouten-Lebbing <kjeld@schouten-lebbing.nl> * Update values.yaml Signed-off-by: Kjeld Schouten-Lebbing <kjeld@schouten-lebbing.nl> * Update values.yaml Signed-off-by: Kjeld Schouten-Lebbing <kjeld@schouten-lebbing.nl> * revert update for blocky * use old-style mount for blocky * put update back for blocky * add initial postgresl query log support * hmm * small lint * bump common --------- Signed-off-by: Kjeld Schouten-Lebbing <kjeld@schouten-lebbing.nl> Co-authored-by: Stavros kois <s.kois@outlook.com> Co-authored-by: Stavros Kois <47820033+stavros-k@users.noreply.github.com>
2023-03-04 12:42:14 +00:00
# Include{prometheusRule}
# Include{advanced}
# Include{addons}
# Include{codeserver}
2023-03-01 08:30:36 +00:00
# Include{netshoot}
# Include{vpn}
# Include{documentation}