2022-01-17 23:27:08 +00:00
# Include{groups}
portals : {}
questions :
# Include{global}
- variable : controller
group : "Controller"
label : ""
schema :
2022-01-21 00:35:59 +00:00
additional_attrs : true
2022-01-17 23:27:08 +00:00
type : dict
attrs :
- variable : advanced
label : "Show Advanced Controller Settings"
schema :
type : boolean
default : false
show_subquestions_if : true
subquestions :
- variable : type
description : "Please specify type of workload to deploy"
label : "(Advanced) Controller Type"
schema :
type : string
default : "deployment"
required : true
enum :
- value : "deployment"
description : "Deployment"
- value : "statefulset"
description : "Statefulset"
- value : "daemonset"
description : "Daemonset"
- variable : replicas
description : "Number of desired pod replicas"
label : "Desired Replicas"
schema :
type : int
default : 1
required : true
- variable : strategy
description : "Please specify type of workload to deploy"
label : "(Advanced) Update Strategy"
schema :
type : string
default : "Recreate"
required : true
enum :
- value : "Recreate"
description : "Recreate: Kill existing pods before creating new ones"
- value : "RollingUpdate"
description : "RollingUpdate: Create new pods and then kill old ones"
- value : "OnDelete"
description : "(Legacy) OnDelete: ignore .spec.template changes"
# Include{controllerExpert}
- variable : env
group : "Container Configuration"
label : "Image Environment"
schema :
2022-01-21 00:35:59 +00:00
additional_attrs : true
2022-01-17 23:27:08 +00:00
type : dict
attrs :
- variable : CLAMAV_NO_CLAMD
label : "NO CLAMD"
description : "Do not start clamd."
schema :
type : boolean
default : false
- variable : CLAMAV_NO_FRESHCLAMD
label : "NO FRESHCLAMD"
description : "Do not start the freshclam daemon."
schema :
type : boolean
default : false
- variable : CLAMAV_NO_MILTERD
label : "NO MILTERD"
description : "Do not start the clamav-milter daemon."
schema :
type : boolean
default : true
- variable : CLAMD_STARTUP_TIMEOUT
label : "STARTUP TIMEOUT"
description : "Seconds to wait for clamd to start."
schema :
type : int
default : 1800
- variable : FRESHCLAM_CHECKS
label : "FRESHCLAM CHECKS "
description : "Freshclam daily update frequency."
schema :
type : int
default : 1
2022-03-26 23:16:14 +00:00
- variable : clamav
group : "Container Configuration"
label : "ClamAV Cron Configuration"
schema :
additional_attrs : true
type : dict
attrs :
- variable : cron_enabled
label : "Enable cronjob"
description : "Enables automatic scan for /scandir"
schema :
type : boolean
default : false
show_subquestions_if : true
subquestions :
- variable : cron_schedule
label : "Cron Schedule"
description : "Enter a valid cron schedule"
schema :
type : string
default : "@daily"
required : true
- variable : log_file_name
label : "Log File Name"
description : "Log file name for the scan report. You will find this report in /logs/FILENAME_DATEFORMAT"
schema :
type : string
default : "clamscan_report"
required : true
- variable : date_format
label : "Date Format"
description : "Date format for the log file"
schema :
type : string
default : "MM-DD-YYYY_HH.MM.SS"
required : true
enum :
- value : "+%m-%d-%Y_%H.%M.%S"
description : "MM-DD-YYYY_HH.MM.SS"
- value : "+%Y-%m-%d_%H.%M.%S"
description : "YYYY-MM-DD_HH.MM.SS"
- value : "+%H.%M.%S_%m-%d-%Y"
description : "HH.MM.SS_MM-DD-YYYY"
- value : "+%H.%M.%S_%Y-%m-%d"
description : "HH.MM.SS_YYYY-MM-DD"
- variable : extra_args
label : "Extra Args"
description : "Set extra args for clamscan here. (https://linux.die.net/man/1/clamscan). We already set --log, --database and --recursive. Do not add those here."
schema :
type : string
default : ""
2022-01-17 23:27:08 +00:00
# Include{containerConfig}
- variable : service
group : "Networking and Services"
label : "Configure Service(s)"
schema :
2022-01-21 00:35:59 +00:00
additional_attrs : true
2022-01-17 23:27:08 +00:00
type : dict
attrs :
- variable : main
label : "Main Service"
description : "The Primary service on which the healthcheck runs, often the webUI"
schema :
2022-01-21 00:35:59 +00:00
additional_attrs : true
2022-01-17 23:27:08 +00:00
type : dict
attrs :
# Include{serviceSelector}
- variable : main
label : "Main Service Port Configuration"
schema :
2022-01-21 00:35:59 +00:00
additional_attrs : true
2022-01-17 23:27:08 +00:00
type : dict
attrs :
- variable : port
label : "Port"
description : "This port exposes the container port on the service"
schema :
type : int
default : 3310
required : true
- variable : advanced
label : "Show Advanced settings"
schema :
type : boolean
default : false
show_subquestions_if : true
subquestions :
- variable : enabled
label : "Enable the port"
schema :
type : boolean
default : true
- variable : protocol
label : "Port Type"
schema :
type : string
default : "HTTP"
enum :
- value : HTTP
description : "HTTP"
- value : "HTTPS"
description : "HTTPS"
- value : TCP
description : "TCP"
- value : "UDP"
description : "UDP"
- variable : nodePort
label : "Node Port (Optional)"
description : "This port gets exposed to the node. Only considered when service type is NodePort, Simple or LoadBalancer"
schema :
type : int
min : 9000
max : 65535
- variable : targetPort
label : "Target Port"
description : "The internal(!) port on the container the Application runs on"
schema :
type : int
default : 3310
- variable : milter
label : "Milter Service"
description : "The Primary service on which the healthcheck runs, often the webUI"
schema :
2022-01-21 00:35:59 +00:00
additional_attrs : true
2022-01-17 23:27:08 +00:00
type : dict
attrs :
# Include{serviceSelector}
- variable : milter
label : "Main Service Port Configuration"
schema :
2022-01-21 00:35:59 +00:00
additional_attrs : true
2022-01-17 23:27:08 +00:00
type : dict
attrs :
- variable : port
label : "Port"
description : "This port exposes the container port on the service"
schema :
type : int
default : 7357
required : true
- variable : advanced
label : "Show Advanced settings"
schema :
type : boolean
default : false
show_subquestions_if : true
subquestions :
- variable : enabled
label : "Enable the port"
schema :
type : boolean
default : true
- variable : protocol
label : "Port Type"
schema :
type : string
default : "HTTP"
enum :
- value : HTTP
description : "HTTP"
- value : "HTTPS"
description : "HTTPS"
- value : TCP
description : "TCP"
- value : "UDP"
description : "UDP"
- variable : nodePort
label : "Node Port (Optional)"
description : "This port gets exposed to the node. Only considered when service type is NodePort, Simple or LoadBalancer"
schema :
type : int
min : 9000
max : 65535
- variable : targetPort
label : "Target Port"
description : "The internal(!) port on the container the Application runs on"
schema :
type : int
default : 7357
- variable : serviceexpert
group : "Networking and Services"
label : "Show Expert Config"
schema :
type : boolean
default : false
show_subquestions_if : true
subquestions :
- variable : hostNetwork
group : "Networking and Services"
label : "Host-Networking (Complicated)"
schema :
type : boolean
default : false
# Include{serviceExpert}
# Include{serviceList}
- variable : persistence
label : "Integrated Persistent Storage"
description : "Integrated Persistent Storage"
group : "Storage and Persistence"
schema :
2022-01-21 00:35:59 +00:00
additional_attrs : true
2022-01-17 23:27:08 +00:00
type : dict
attrs :
- variable : sigdatabase
label : "App Signature Database Storage"
description : "Stores the Application Signature Database."
schema :
2022-01-21 00:35:59 +00:00
additional_attrs : true
2022-01-17 23:27:08 +00:00
type : dict
attrs :
# Include{persistenceBasic}
# Include{persistenceAdvanced}
- variable : scandir
label : "App Scan Dir Storage"
2022-03-26 23:16:14 +00:00
description : "Stores the Application Scan Directory. (By default set to readOnly)"
schema :
additional_attrs : true
type : dict
attrs :
# Include{persistenceBasic}
# Include{persistenceAdvanced}
- variable : logs
label : "App Logs Storage"
description : "Stores the Application Logs."
2022-01-17 23:27:08 +00:00
schema :
2022-01-21 00:35:59 +00:00
additional_attrs : true
2022-01-17 23:27:08 +00:00
type : dict
attrs :
# Include{persistenceBasic}
# Include{persistenceAdvanced}
# Include{persistenceList}
- variable : ingress
label : ""
group : "Ingress"
schema :
2022-01-21 00:35:59 +00:00
additional_attrs : true
2022-01-17 23:27:08 +00:00
type : dict
attrs :
- variable : main
label : "Main Ingress"
schema :
2022-01-21 00:35:59 +00:00
additional_attrs : true
2022-01-17 23:27:08 +00:00
type : dict
attrs :
# Include{ingressDefault}
# Include{ingressTLS}
# Include{ingressTraefik}
# Include{ingressExpert}
# Include{ingressList}
2022-03-03 14:04:31 +00:00
# Include{security}
2022-01-17 23:27:08 +00:00
- variable : advancedSecurity
label : "Show Advanced Security Settings"
group : "Security and Permissions"
schema :
type : boolean
default : false
show_subquestions_if : true
subquestions :
- variable : securityContext
label : "Security Context"
schema :
2022-01-21 00:35:59 +00:00
additional_attrs : true
2022-01-17 23:27:08 +00:00
type : dict
attrs :
- variable : privileged
label : "Privileged mode"
schema :
type : boolean
default : false
- variable : readOnlyRootFilesystem
label : "ReadOnly Root Filesystem"
schema :
type : boolean
default : false
- variable : allowPrivilegeEscalation
label : "Allow Privilege Escalation"
schema :
type : boolean
default : false
- variable : runAsNonRoot
label : "runAsNonRoot"
schema :
type : boolean
default : false
# Include{securityContextAdvanced}
- variable : podSecurityContext
group : "Security and Permissions"
label : "Pod Security Context"
schema :
2022-01-21 00:35:59 +00:00
additional_attrs : true
2022-01-17 23:27:08 +00:00
type : dict
attrs :
- variable : runAsUser
label : "runAsUser"
description : "The UserID of the user running the application"
schema :
type : int
default : 0
- variable : runAsGroup
label : "runAsGroup"
2022-04-20 07:35:54 +00:00
description : "The groupID this App of the user running the application"
2022-01-17 23:27:08 +00:00
schema :
type : int
default : 0
- variable : fsGroup
label : "fsGroup"
description : "The group that should own ALL storage."
schema :
type : int
default : 568
# Include{podSecurityContextAdvanced}
# Include{resources}
# Include{advanced}
# Include{addons}