# Include{groups} portals: open: # Include{portalLink} questions: # Include{global} # Include{controller} # Include{controllerDeployment} # Include{replicas} # Include{replica1} # Include{strategy} # Include{recreate} # Include{controllerExpert} # Include{controllerExpertExtraArgs} - variable: env group: "Container Configuration" label: "Image Environment" schema: additional_attrs: true type: dict attrs: - variable: PORT label: "PORT" description: "If you change this variable you have to create two new port forwardings with the corresponding ports one for TCP and one for UDP." schema: type: string default: "5349" - variable: SECRET label: "SECRET" description: "Create your own secret and enter it here or leave empty and the server creats a secret that is stored into secret.txt in the main directory of the container (generate it for example in a linux terminal with the command openssl rand -hex 32 without quotes)." schema: type: string default: "" - variable: REALM label: "REALM" description: "Your hostname (eg example.org without quotes)." schema: type: string default: "" - variable: CERT_FILE label: "CERT_FILE" description: "Name of the certification file (leave empty if the server should create one or replace it with your own)." schema: type: string default: "cert.pem" - variable: PRIVKEY_FILE label: "PRIVKEY_FILE" description: "Name of the private key file (leave empty if the server should create one or replace it with your own)." schema: type: string default: "privkey.pem" - variable: DH_FILE label: "DH_FILE" description: "Name of the DiffieHellman key file (leave empty if the server should create one or replace it with your own - also plase look under the Show more settings tab if you want to generate a bigger or smaller key default is 2048)." schema: type: string default: "dhparam.pem" - variable: DISPLAY_SECRETS label: "DISPLAY_SECRETS" description: "Display your secrets in the log (set to true or leave empty to disable it)." schema: type: string default: "true" - variable: CA_COUNTRY label: "CA_COUNTRY" description: "Country code for your certificate if the server should create one (two letters eg US without quotes - also plase look under the Show more settings tab there are more settings for generating your certificate)." schema: type: string default: "" - variable: EXTRA_PARAMS label: "EXTRA_PARAMS" description: "Here you can enter your Extra Startup Parameters if needed (you can get a full list of commands from here httpsgithub.comcoturncoturnwikiturnserver)" schema: type: string default: "" - variable: TOTAL_QUOTA label: "TOTAL_QUOTA" description: "Total allocations quota global limit on concurrent allocations (only change if you know what you are doing)." schema: type: string default: "100" - variable: MAX_BPS label: "MAX_BPS" description: "Max bytes-per-second bandwidth a TURN session is allowed to handle (input and output network streams are treated separately). Anything above that limit will be dropped or temporary suppressed - within the available buffer limits (only change if you know what you are doing)." schema: type: string default: "0" - variable: CIPHER_LIST label: "CIPHER_LIST" description: "Allowed OpenSSL cipher list for TLSDTLS connections (only change if you know what you are doing)." schema: type: string default: "ECDHE-RSA-AES256-GCM-SHA512:DHE-RSA-AES256-GCM-SHA512:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-SHA384" - variable: CERT_LENGTH label: "CERT_LENGTH" description: "Enter your preferred key length (the higher the value the longer it takes to generate the certificate)." schema: type: string default: "2048" - variable: CERT_VALID_DAYS label: "CERT_VALID_DAYS" description: "Specify how long that the certificate should be valid in days." schema: type: string default: "3650" - variable: CA_STATE_PROV label: "CA_STATE_PROV" description: "Specify your state or province." schema: type: string default: "None" - variable: CA_LOCALITY label: "CA_LOCALITY" description: "Specify your locality." schema: type: string default: "None" - variable: CA_ORGANIZATION label: "CA_ORGANIZATION" description: "Specify your organiszation." schema: type: string default: "None" - variable: DH_LENGTH label: "DH_LENGTH" description: "Enter your preferred key length (the higher the value the longer it takes to generate the key)." schema: type: string default: "2048" - variable: CLI_PASSWORD label: "CLI_PASSWORD" description: "Enter your CLI password or leave empty if you want that the server creates a random one (please note that you have to manually enable the console with the --cli-port PORT - PORT stands for your preferred port - in the Extra Startup Parameters and create the corresponding port)." schema: type: string default: "" - variable: LISTENING_IP label: "LISTENING_IP" description: "Specify the listening port (only change if you know what you are doing)." schema: type: string default: "0.0.0.0" - variable: UMASK label: "UMASK" description: "Container Variable 000" schema: type: string default: "000" - variable: DATA_PERM label: "DATA_PERM" description: "Container Variable DATAPERM" schema: type: string default: "770" # Include{containerConfig} # Include{serviceRoot} - variable: main label: "Main Service" description: "The Primary service on which the healthcheck runs, often the webUI" schema: additional_attrs: true type: dict attrs: # Include{serviceSelectorLoadBalancer} # Include{serviceSelectorExtras} - variable: main label: "Main Service Port Configuration" schema: additional_attrs: true type: dict attrs: - variable: port label: "Port" description: "This port exposes the container port on the service" schema: type: int default: 5349 required: true # Include{advancedPortTCP} - variable: targetPort label: "Target Port" description: "The internal(!) port on the container the Application runs on" schema: type: int default: 5349 - variable: udpports label: 'udpports service' description: "UDP Port" schema: additional_attrs: true type: dict attrs: # Include{serviceSelectorLoadBalancer} # Include{serviceSelectorExtras} - variable: udpports label: "udpports Service Port Configuration" schema: additional_attrs: true type: dict attrs: - variable: port label: "Port" description: "This port exposes the container port on the service" schema: type: int default: 5349 required: true # Include{advancedPortUDP} - variable: targetPort label: "Target Port" description: "The internal(!) port on the container the Application runs on" schema: type: int default: 5349 # Include{serviceExpertRoot} default: false # Include{serviceExpert} # Include{serviceList} # Include{persistenceRoot} - variable: containerpath label: "containerpath Storage" description: "Container Path stun-turn" schema: additional_attrs: true type: dict attrs: # Include{persistenceBasic} # Include{persistenceAdvanced} # Include{persistenceList} # Include{ingressRoot} - variable: main label: "Main Ingress" schema: additional_attrs: true type: dict attrs: # Include{ingressDefault} # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressExpert} # Include{ingressList} # Include{security} # Include{securityContextAdvancedRoot} - variable: privileged label: "Privileged mode" schema: type: boolean default: false - variable: readOnlyRootFilesystem label: "ReadOnly Root Filesystem" schema: type: boolean default: false - variable: allowPrivilegeEscalation label: "Allow Privilege Escalation" schema: type: boolean default: false - variable: runAsNonRoot label: "runAsNonRoot" schema: type: boolean default: false # Include{securityContextAdvanced} # Include{podSecurityContextRoot} - variable: runAsUser label: "runAsUser" description: "The UserID of the user running the application" schema: type: int default: 0 - variable: runAsGroup label: "runAsGroup" description: The groupID this App of the user running the application" schema: type: int default: 0 - variable: fsGroup label: "fsGroup" description: "The group that should own ALL storage." schema: type: int default: 568 # Include{podSecurityContextAdvanced} # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} # Include{promtail} # Include{netshoot} # Include{vpn} # Include{documentation}