Cloned2Preserve
/
TrueChartsClone
mirror of https://github.com/truecharts/charts.git
1
0
Fork 0
Code
TrueChartsClone/charts/stable/wg-easy/questions.yaml

393 lines
13 KiB
YAML
Raw Normal View History

feat(wg-easy): Add WG-Easy Chart (#2982) * Add WG-Easy Chart Initial run of creating my own chart from "scratch". Let's see if it runs, especially with the sysctl * Apply suggestions from code review Thanks for fixing the icons lol Co-authored-by: Stavros Kois <47820033+stavros-k@users.noreply.github.com> * Apply suggestions from code review * Update charts/incubator/wg-easy/Chart.yaml * its always that enable :D * Update values.yaml Hopefully fixing the quotation marks fixes the sysctls error, otherwise I'm putting this in the wrong place lol * Remove the likely unnecessary sysctl Let’s see how it runs without net.ipv4.conf.all.src_valid_mark since you can’t set it kubernetes * Update values.yaml * Fixed the repository for wg-easy Had wrong URL and their latest version was changed 4 hours ago * Added missing env-vars to wg-easy Needs WG_HOST and PASSWORD, the rest people can add themselves * Update charts/incubator/wg-easy/values.yaml * recommit * emtpy space * Added PUID and PGID to values Added more stuff to see if the container will pass tests * Fixed trailing spaces * identation * Update charts/incubator/wg-easy/values.yaml Co-authored-by: Stavros Kois <47820033+stavros-k@users.noreply.github.com> * Update charts/incubator/wg-easy/values.yaml Co-authored-by: Stavros Kois <47820033+stavros-k@users.noreply.github.com> * Update charts/incubator/wg-easy/questions.yaml Co-authored-by: Stavros Kois <47820033+stavros-k@users.noreply.github.com>
2022-06-29 10:18:48 +00:00
# Include{groups}
portals:
open:
protocols:
- "$kubernetes-resource_configmap_portal_protocol"
host:
- "$kubernetes-resource_configmap_portal_host"
ports:
- "$kubernetes-resource_configmap_portal_port"
questions:
- variable: portal
group: "Container Image"
label: "Configure Portal Button"
schema:
type: dict
hidden: true
attrs:
- variable: enabled
label: "Enable"
description: "enable the portal button"
schema:
hidden: true
editable: false
type: boolean
default: true
# Include{global}
- variable: controller
group: "Controller"
label: ""
schema:
additional_attrs: true
type: dict
attrs:
- variable: advanced
label: "Show Advanced Controller Settings"
schema:
type: boolean
default: false
show_subquestions_if: true
subquestions:
- variable: type
description: "Please specify type of workload to deploy"
label: "(Advanced) Controller Type"
schema:
type: string
default: "deployment"
required: true
enum:
- value: "deployment"
description: "Deployment"
- value: "statefulset"
description: "Statefulset"
- value: "daemonset"
description: "Daemonset"
- variable: replicas
description: "Number of desired pod replicas"
label: "Desired Replicas"
schema:
type: int
default: 1
required: true
- variable: strategy
description: "Please specify type of workload to deploy"
label: "(Advanced) Update Strategy"
schema:
type: string
default: "Recreate"
required: true
enum:
- value: "Recreate"
description: "Recreate: Kill existing pods before creating new ones"
- value: "RollingUpdate"
description: "RollingUpdate: Create new pods and then kill old ones"
- value: "OnDelete"
description: "(Legacy) OnDelete: ignore .spec.template changes"
# Include{controllerExpert}
- variable: env
group: "Container Configuration"
label: "Image Environment"
schema:
additional_attrs: true
type: dict
attrs:
- variable: WG_HOST
label: "WG_HOST"
description: "The public hostname of your VPN server."
schema:
type: string
required: true
default: ""
feat(wg-easy): move to stable and add some envs (#3027) Co-authored-by: Stavros kois <s.kois@outlook.com>
2022-07-02 11:27:00 +00:00
- variable: WG_MTU
label: "WG_MTU"
description: "The MTU the clients will use. Server uses default WG MTU."
schema:
type: int
default: 1420
- variable: WG_PERSISTENT_KEEPALIVE
label: "WG_PERSISTENT_KEEPALIVE"
description: "Value in seconds to keep the connection open."
schema:
type: int
default: 0
- variable: WG_DEFAULT_ADDRESS
label: "WG_DEFAULT_ADDRESS"
description: "Clients IP address range."
schema:
type: string
default: "10.8.0.x"
- variable: WG_DEFAULT_DNS
label: "WG_DEFAULT_DNS"
description: "Clients default DNS IP"
schema:
type: string
default: "1.1.1.1"
- variable: WG_ALLOWED_IPS
label: "WG_ALLOWED_IPS"
description: "Allowed IPs clients will use."
schema:
type: string
default: "0.0.0.0/0, ::/0"
feat(wg-easy): Add WG-Easy Chart (#2982) * Add WG-Easy Chart Initial run of creating my own chart from "scratch". Let's see if it runs, especially with the sysctl * Apply suggestions from code review Thanks for fixing the icons lol Co-authored-by: Stavros Kois <47820033+stavros-k@users.noreply.github.com> * Apply suggestions from code review * Update charts/incubator/wg-easy/Chart.yaml * its always that enable :D * Update values.yaml Hopefully fixing the quotation marks fixes the sysctls error, otherwise I'm putting this in the wrong place lol * Remove the likely unnecessary sysctl Let’s see how it runs without net.ipv4.conf.all.src_valid_mark since you can’t set it kubernetes * Update values.yaml * Fixed the repository for wg-easy Had wrong URL and their latest version was changed 4 hours ago * Added missing env-vars to wg-easy Needs WG_HOST and PASSWORD, the rest people can add themselves * Update charts/incubator/wg-easy/values.yaml * recommit * emtpy space * Added PUID and PGID to values Added more stuff to see if the container will pass tests * Fixed trailing spaces * identation * Update charts/incubator/wg-easy/values.yaml Co-authored-by: Stavros Kois <47820033+stavros-k@users.noreply.github.com> * Update charts/incubator/wg-easy/values.yaml Co-authored-by: Stavros Kois <47820033+stavros-k@users.noreply.github.com> * Update charts/incubator/wg-easy/questions.yaml Co-authored-by: Stavros Kois <47820033+stavros-k@users.noreply.github.com>
2022-06-29 10:18:48 +00:00
- variable: secretEnv
group: "Container Configuration"
label: "Image Secrets"
schema:
additional_attrs: true
type: dict
attrs:
- variable: PASSWORD
label: "ADMIN_PASSWORD"
schema:
type: string
private: true
required: true
default: ""
# Include{containerConfig}
- variable: service
group: "Networking and Services"
label: "Configure Service(s)"
schema:
additional_attrs: true
type: dict
attrs:
- variable: main
label: "Main Service"
description: "The Primary service on which the healthcheck runs, often the webUI"
schema:
additional_attrs: true
type: dict
attrs:
# Include{serviceSelector}
- variable: main
label: "Web GUI port configuration"
schema:
additional_attrs: true
type: dict
attrs:
- variable: port
label: "Port"
description: "This port exposes the container port on the service"
schema:
type: int
default: 51821
required: true
- variable: advanced
label: "Show Advanced settings"
schema:
type: boolean
default: false
show_subquestions_if: true
subquestions:
- variable: enabled
label: "Enable the port"
schema:
type: boolean
default: true
- variable: protocol
label: "Port Type"
schema:
type: string
default: "TCP"
enum:
- value: HTTP
description: "HTTP"
- value: "HTTPS"
description: "HTTPS"
- value: TCP
description: "TCP"
- value: "UDP"
description: "UDP"
- variable: nodePort
label: "Node Port (Optional)"
description: "This port gets exposed to the node. Only considered when service type is NodePort, Simple or LoadBalancer"
schema:
type: int
min: 9000
max: 65535
- variable: targetPort
label: "Target Port"
description: "The internal(!) port on the container the Application runs on"
schema:
type: int
default: 51821
- variable: vpn
label: "Wireguard Internal"
description: "Wireguard Internal Port"
schema:
additional_attrs: true
type: dict
attrs:
# Include{serviceSelector}
- variable: vpn
label: "Wireguard Interal Port"
description: "Omada Controller or EAP Discovery Utility discovers Omada devices."
schema:
additional_attrs: true
type: dict
attrs:
- variable: port
label: "Port"
description: "This port exposes the container port on the service"
schema:
type: int
default: 51820
required: true
- variable: advanced
label: "Show Advanced settings"
schema:
type: boolean
default: false
show_subquestions_if: true
subquestions:
- variable: protocol
label: "Port Type"
schema:
type: string
default: "UDP"
enum:
- value: HTTP
description: "HTTP"
- value: "HTTPS"
description: "HTTPS"
- value: TCP
description: "TCP"
- value: "UDP"
description: "UDP"
- variable: nodePort
label: "Node Port (Optional)"
description: "This port gets exposed to the node. Only considered when service type is NodePort, Simple or LoadBalancer"
schema:
type: int
min: 9000
max: 65535
- variable: targetPort
label: "Target Port"
description: "The internal(!) port on the container the Application runs on"
schema:
type: int
default: 51820
- variable: serviceexpert
group: "Networking and Services"
label: "Show Expert Config"
schema:
type: boolean
default: false
show_subquestions_if: true
subquestions:
- variable: hostNetwork
group: "Networking and Services"
label: "Host-Networking (Complicated)"
schema:
type: boolean
default: false
# Include{serviceExpert}
# Include{serviceList}
- variable: persistence
label: "Integrated Persistent Storage"
description: "Integrated Persistent Storage"
group: "Storage and Persistence"
schema:
additional_attrs: true
type: dict
attrs:
- variable: config
label: "App Config Storage"
description: "Stores the Application Configuration."
schema:
additional_attrs: true
type: dict
attrs:
# Include{persistenceBasic}
# Include{persistenceAdvanced}
# Include{persistenceList}
- variable: ingress
label: ""
group: "Ingress"
schema:
additional_attrs: true
type: dict
attrs:
- variable: main
label: "Main Ingress"
schema:
additional_attrs: true
type: dict
attrs:
# Include{ingressDefault}
# Include{ingressTLS}
# Include{ingressTraefik}
# Include{ingressExpert}
# Include{ingressList}
# Include{security}
- variable: advancedSecurity
label: "Show Advanced Security Settings"
group: "Security and Permissions"
schema:
type: boolean
default: false
show_subquestions_if: true
subquestions:
- variable: securityContext
label: "Security Context"
schema:
additional_attrs: true
type: dict
attrs:
- variable: privileged
label: "Privileged mode"
schema:
type: boolean
default: false
- variable: readOnlyRootFilesystem
label: "ReadOnly Root Filesystem"
schema:
type: boolean
default: false
- variable: allowPrivilegeEscalation
label: "Allow Privilege Escalation"
schema:
type: boolean
default: false
- variable: runAsNonRoot
label: "runAsNonRoot"
schema:
type: boolean
default: false
# Include{securityContextAdvanced}
- variable: podSecurityContext
group: "Security and Permissions"
label: "Pod Security Context"
schema:
additional_attrs: true
type: dict
attrs:
- variable: runAsUser
label: "runAsUser"
description: "The UserID of the user running the application"
schema:
type: int
default: 0
- variable: runAsGroup
label: "runAsGroup"
description: "The groupID this App of the user running the application"
schema:
type: int
default: 0
- variable: fsGroup
label: "fsGroup"
description: "The group that should own ALL storage."
schema:
type: int
default: 568
# Include{podSecurityContextAdvanced}
# Include{resources}
# Include{advanced}
# Include{addons}