diff --git a/charts/incubator/lldap/Chart.yaml b/charts/incubator/lldap/Chart.yaml index 771e2141da4..fa77b45fd7f 100644 --- a/charts/incubator/lldap/Chart.yaml +++ b/charts/incubator/lldap/Chart.yaml @@ -3,7 +3,7 @@ appVersion: "latest" dependencies: - name: common repository: https://library-charts.truecharts.org - version: 12.2.28 + version: 12.4.6 deprecated: false description: Lightweight ldap server for authentication and user management home: https://truecharts.org/charts/incubator/lldap @@ -23,7 +23,7 @@ sources: - https://github.com/truecharts/charts/tree/master/charts/incubator/lldap - https://github.com/nitnelave/lldap type: application -version: 0.0.2 +version: 0.1.0 annotations: truecharts.org/catagories: | - ldap diff --git a/charts/incubator/lldap/docs/installation-notes.md b/charts/incubator/lldap/docs/installation-notes.md new file mode 100644 index 00000000000..ccb08a80650 --- /dev/null +++ b/charts/incubator/lldap/docs/installation-notes.md @@ -0,0 +1,27 @@ +# Installation notes + +## Default Configuration + +LLDAP is configured using the default options generated by the application on first run. The exception to this is the 'Base DN for LDAP' option which has been exposed to the user. + +By default, LLDAP will use the following options: + +- Admin username: admin +- Admin password: password +- Base DN for LDAP: dc=example,dc=org +- LDAP port: 3890 + +> ⚠️ **WARNING**: The default configuration is not secure and should not be used in production. Please change the admin password for LDAP before using LLDAP in production. ⚠️ + +## Usage + +LLDAP can be used as the user backend for Authelia and Authentik as well as any other application that supports LDAP e.g. Jellyfin and Nextcloud. + +## Support + +- If you need more details or have a more custom setup the documentation on the [upstream](https://github.com/ldap/ldap) is very useful so check the descriptions of the options there including example configs for various apps. +- You can also reach us using [Discord](https://discord.gg/tVsPTHWTtr) for real-time feedback and support + +--- + +All Rights Reserved - The TrueCharts Project diff --git a/charts/incubator/lldap/questions.yaml b/charts/incubator/lldap/questions.yaml index 80d5b04a944..49ff9885ab3 100644 --- a/charts/incubator/lldap/questions.yaml +++ b/charts/incubator/lldap/questions.yaml @@ -4,41 +4,41 @@ portals: # Include{portalLink} questions: # Include{global} -# Include{controllerExpert} -# Include{fixedEnv} +# Include{workload} +# Include{workloadDeployment} +# Include{replicas1} +# Include{podSpec} +# Include{containerMain} + - variable: env + label: "" + group: "App Configuration" + schema: + additional_attrs: true + type: dict + attrs: + - variable: LLDAP_LDAP_BASE_DN + label: "Base DN for LDAP" + schema: + type: string + required: true + default: "dc=example,dc=com" +# Include{containerBasic} +# Include{containerAdvanced} # Include{containerConfig} - - variable: env - group: "App Configuration" - label: "Image Environment" - schema: - additional_attrs: true - type: dict - attrs: - - variable: LLDAP_LDAP_USER_PASS - group: "App Configuration" - label: "Admin Password" - schema: - type: string - required: true - default: "change me" - - variable: LLDAP_LDAP_BASE_DN - group: "App Configuration" - label: "Base DN for LDAP" - schema: - type: string - required: true - default: "dc=example,dc=com" # Include{serviceRoot} - variable: main label: "Main Service" description: "The Primary service on which the healthcheck runs, often the webUI" schema: + additional_attrs: true type: dict attrs: -# Include{serviceSelector} +# Include{serviceSelectorLoadBalancer} +# Include{serviceSelectorExtras} - variable: main label: "Main Service Port Configuration" schema: + additional_attrs: true type: dict attrs: - variable: port @@ -49,18 +49,27 @@ questions: default: 17170 required: true - variable: ldap - label: "LDAP Service Port Configuration" + label: "Additional service to accept LDAP connections" description: "The Service in which external sources will connect to the LDAP service" schema: + additional_attrs: true type: dict attrs: - - variable: port - label: "Port" - description: "This port exposes the container port on the service" - schema: - type: int - default: 3890 - required: true +# Include{serviceSelectorLoadBalancer} +# Include{serviceSelectorExtras} + - variable: ldap + label: "LDAP Service Port Configuration" + schema: + additional_attrs: true + type: dict + attrs: + - variable: port + label: "Port" + description: "This port exposes the container port on the service" + schema: + type: int + default: 3890 + required: true # Include{serviceExpertRoot} default: false # Include{serviceExpert} @@ -83,35 +92,33 @@ questions: # Include{ingressDefault} # Include{ingressTLS} # Include{ingressTraefik} -# Include{ingressExpert} # Include{ingressList} +# Include{securityContextRoot} + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" + schema: + type: int + default: 568 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID this App of the user running the application" + schema: + type: int + default: 568 + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 +# Include{securityContextContainer} # Include{securityContextAdvanced} -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 568 - - variable: runAsGroup - label: "runAsGroup" - description: "The groupID this App of the user running the application" - schema: - type: int - default: 568 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextPod} # Include{resources} # Include{advanced} -# Include{postgresql} -# Include{postgresqlBasics} # Include{addons} # Include{codeserver} -# Include{promtail} # Include{netshoot} # Include{vpn} +# Include{documentation} diff --git a/charts/incubator/lldap/values.yaml b/charts/incubator/lldap/values.yaml index 0ae1b3d2219..14afbb1f37e 100644 --- a/charts/incubator/lldap/values.yaml +++ b/charts/incubator/lldap/values.yaml @@ -15,7 +15,8 @@ service: port: 17170 ldap: ports: - main: + enabled: true + ldap: targetPort: 3890 port: 3890 @@ -28,7 +29,6 @@ workload: args: ["run"] env: LLDAP_LDAP_BASE_DN: "dc=example,dc=com" - LLDAP_LDAP_USER_PASS: "change me" LLDAP_JWT_SECRET: - secretRef: name: secrets