1024 lines
40 KiB
YAML
1024 lines
40 KiB
YAML
# Include{groups}
|
|
portals:
|
|
open:
|
|
protocols:
|
|
- "http"
|
|
host:
|
|
- "$kubernetes-resource_configmap_portal_host"
|
|
ports:
|
|
- "$kubernetes-resource_configmap_portal_port"
|
|
path: "/dashboard/"
|
|
questions:
|
|
- variable: portal
|
|
group: "Container Image"
|
|
label: "Configure Portal Button"
|
|
schema:
|
|
type: dict
|
|
hidden: true
|
|
attrs:
|
|
- variable: enabled
|
|
label: "Enable"
|
|
description: "enable the portal button"
|
|
schema:
|
|
hidden: true
|
|
editable: false
|
|
type: boolean
|
|
default: true
|
|
# Include{global}
|
|
- variable: controller
|
|
group: "Controller"
|
|
label: ""
|
|
schema:
|
|
additional_attrs: true
|
|
type: dict
|
|
attrs:
|
|
- variable: advanced
|
|
label: "Show Advanced Controller Settings"
|
|
schema:
|
|
type: boolean
|
|
default: false
|
|
show_subquestions_if: true
|
|
subquestions:
|
|
- variable: type
|
|
description: "Please specify type of workload to deploy"
|
|
label: "(Advanced) Controller Type"
|
|
schema:
|
|
type: string
|
|
default: "deployment"
|
|
required: true
|
|
enum:
|
|
- value: "deployment"
|
|
description: "Deployment"
|
|
- value: "statefulset"
|
|
description: "Statefulset"
|
|
- value: "daemonset"
|
|
description: "Daemonset"
|
|
- variable: replicas
|
|
description: "Number of desired pod replicas"
|
|
label: "Desired Replicas"
|
|
schema:
|
|
type: int
|
|
default: 1
|
|
required: true
|
|
- variable: strategy
|
|
description: "Please specify type of workload to deploy"
|
|
label: "(Advanced) Update Strategy"
|
|
schema:
|
|
type: string
|
|
default: "RollingUpdate"
|
|
required: true
|
|
enum:
|
|
- value: "Recreate"
|
|
description: "Recreate: Kill existing pods before creating new ones"
|
|
- value: "RollingUpdate"
|
|
description: "RollingUpdate: Create new pods and then kill old ones"
|
|
- value: "OnDelete"
|
|
description: "(Legacy) OnDelete: ignore .spec.template changes"
|
|
# Include{controllerExpert}
|
|
|
|
# Include{containerConfig}
|
|
|
|
- variable: ingressClass
|
|
label: "ingressClass"
|
|
group: "App Configuration"
|
|
schema:
|
|
additional_attrs: true
|
|
type: dict
|
|
attrs:
|
|
- variable: enabled
|
|
label: "Enable"
|
|
description: "When enabled, ingressClass will match the entered name of this app"
|
|
schema:
|
|
type: boolean
|
|
default: false
|
|
show_subquestions_if: true
|
|
subquestions:
|
|
- variable: isDefaultClass
|
|
label: "isDefaultClass"
|
|
schema:
|
|
type: boolean
|
|
default: false
|
|
|
|
- variable: logs
|
|
label: "Logs"
|
|
group: "App Configuration"
|
|
schema:
|
|
additional_attrs: true
|
|
type: dict
|
|
attrs:
|
|
- variable: general
|
|
label: "General Logs"
|
|
schema:
|
|
additional_attrs: true
|
|
type: dict
|
|
attrs:
|
|
- variable: level
|
|
label: "Log Level"
|
|
schema:
|
|
type: string
|
|
default: "ERROR"
|
|
enum:
|
|
- value: "INFO"
|
|
description: "Info"
|
|
- value: "WARN"
|
|
description: "Warnings"
|
|
- value: "ERROR"
|
|
description: "Errors"
|
|
- value: "FATAL"
|
|
description: "Fatal Errors"
|
|
- value: "PANIC"
|
|
description: "Panics"
|
|
- value: "DEBUG"
|
|
description: "Debug"
|
|
- variable: format
|
|
label: "General Log format"
|
|
schema:
|
|
type: string
|
|
default: "common"
|
|
enum:
|
|
- value: "common"
|
|
description: "Common Log Format"
|
|
- value: "json"
|
|
description: "JSON"
|
|
- variable: access
|
|
label: "Access Logs"
|
|
schema:
|
|
additional_attrs: true
|
|
type: dict
|
|
attrs:
|
|
- variable: enabled
|
|
label: "Enable"
|
|
schema:
|
|
type: boolean
|
|
default: false
|
|
show_subquestions_if: true
|
|
subquestions:
|
|
- variable: enabledFilters
|
|
label: "Enable Filters"
|
|
schema:
|
|
type: boolean
|
|
default: false
|
|
show_subquestions_if: true
|
|
subquestions:
|
|
- variable: filters
|
|
label: "Filters"
|
|
schema:
|
|
additional_attrs: true
|
|
type: dict
|
|
attrs:
|
|
- variable: statuscodes
|
|
label: "Status codes"
|
|
schema:
|
|
type: string
|
|
default: "200,300-302"
|
|
- variable: retryattempts
|
|
label: "retryattempts"
|
|
schema:
|
|
type: boolean
|
|
default: true
|
|
- variable: minduration
|
|
label: "minduration"
|
|
schema:
|
|
type: string
|
|
default: "10ms"
|
|
- variable: fields
|
|
label: "Fields"
|
|
schema:
|
|
additional_attrs: true
|
|
type: dict
|
|
attrs:
|
|
- variable: general
|
|
label: "General"
|
|
schema:
|
|
additional_attrs: true
|
|
type: dict
|
|
attrs:
|
|
- variable: defaultmode
|
|
label: "Default Mode"
|
|
schema:
|
|
type: string
|
|
default: "keep"
|
|
enum:
|
|
- value: "keep"
|
|
description: "Keep"
|
|
- value: "drop"
|
|
description: "Drop"
|
|
- variable: headers
|
|
label: "Headers"
|
|
schema:
|
|
additional_attrs: true
|
|
type: dict
|
|
attrs:
|
|
- variable: defaultmode
|
|
label: "Default Mode"
|
|
schema:
|
|
type: string
|
|
default: "drop"
|
|
enum:
|
|
- value: "keep"
|
|
description: "Keep"
|
|
- value: "drop"
|
|
description: "Drop"
|
|
- variable: format
|
|
label: "Access Log format"
|
|
schema:
|
|
type: string
|
|
default: "common"
|
|
enum:
|
|
- value: "common"
|
|
description: "Common Log Format"
|
|
- value: "json"
|
|
description: "JSON"
|
|
- variable: middlewares
|
|
label: ""
|
|
group: "Middlewares"
|
|
schema:
|
|
additional_attrs: true
|
|
type: dict
|
|
attrs:
|
|
- variable: basicAuth
|
|
label: "basicAuth"
|
|
schema:
|
|
type: list
|
|
default: []
|
|
items:
|
|
- variable: basicAuthEntry
|
|
label: ""
|
|
schema:
|
|
additional_attrs: true
|
|
type: dict
|
|
attrs:
|
|
- variable: name
|
|
label: "Name"
|
|
schema:
|
|
type: string
|
|
required: true
|
|
default: ""
|
|
- variable: users
|
|
label: "Users"
|
|
schema:
|
|
type: list
|
|
default: []
|
|
items:
|
|
- variable: usersEntry
|
|
label: ""
|
|
schema:
|
|
additional_attrs: true
|
|
type: dict
|
|
attrs:
|
|
- variable: username
|
|
label: "Username"
|
|
schema:
|
|
type: string
|
|
required: true
|
|
default: ""
|
|
- variable: password
|
|
label: "Password"
|
|
schema:
|
|
type: string
|
|
required: true
|
|
default: ""
|
|
|
|
- variable: forwardAuth
|
|
label: "forwardAuth"
|
|
schema:
|
|
type: list
|
|
default: []
|
|
items:
|
|
- variable: basicAuthEntry
|
|
label: ""
|
|
schema:
|
|
additional_attrs: true
|
|
type: dict
|
|
attrs:
|
|
- variable: name
|
|
label: "Name"
|
|
schema:
|
|
type: string
|
|
required: true
|
|
default: ""
|
|
- variable: address
|
|
label: "Address"
|
|
schema:
|
|
type: string
|
|
required: true
|
|
default: ""
|
|
- variable: trustForwardHeader
|
|
label: "trustForwardHeader"
|
|
schema:
|
|
type: boolean
|
|
default: false
|
|
- variable: authResponseHeadersRegex
|
|
label: "authResponseHeadersRegex"
|
|
schema:
|
|
type: string
|
|
default: ""
|
|
- variable: authResponseHeaders
|
|
label: "authResponseHeaders"
|
|
schema:
|
|
type: list
|
|
default: []
|
|
items:
|
|
- variable: authResponseHeadersEntry
|
|
label: ""
|
|
schema:
|
|
type: string
|
|
default: ""
|
|
- variable: authRequestHeaders
|
|
label: "authRequestHeaders"
|
|
schema:
|
|
type: list
|
|
default: []
|
|
items:
|
|
- variable: authRequestHeadersEntry
|
|
label: ""
|
|
schema:
|
|
type: string
|
|
default: ""
|
|
- variable: chain
|
|
label: "chain"
|
|
schema:
|
|
type: list
|
|
default: []
|
|
items:
|
|
- variable: chainEntry
|
|
label: ""
|
|
schema:
|
|
additional_attrs: true
|
|
type: dict
|
|
attrs:
|
|
- variable: name
|
|
label: "Name"
|
|
schema:
|
|
type: string
|
|
required: true
|
|
- variable: middlewares
|
|
label: "Middlewares to Chain"
|
|
schema:
|
|
type: list
|
|
default: []
|
|
items:
|
|
- variable: name
|
|
label: "Name"
|
|
schema:
|
|
type: string
|
|
required: true
|
|
default: ""
|
|
|
|
- variable: redirectScheme
|
|
label: "redirectScheme"
|
|
schema:
|
|
type: list
|
|
default: []
|
|
items:
|
|
- variable: redirectSchemeEntry
|
|
label: ""
|
|
schema:
|
|
additional_attrs: true
|
|
type: dict
|
|
attrs:
|
|
- variable: name
|
|
label: "Name"
|
|
schema:
|
|
type: string
|
|
required: true
|
|
- variable: scheme
|
|
label: "Scheme"
|
|
schema:
|
|
type: string
|
|
required: true
|
|
default: "https"
|
|
enum:
|
|
- value: "https"
|
|
description: "https"
|
|
- value: "http"
|
|
description: "http"
|
|
- variable: permanent
|
|
label: "Permanent"
|
|
schema:
|
|
type: boolean
|
|
default: false
|
|
|
|
- variable: rateLimit
|
|
label: "rateLimit"
|
|
schema:
|
|
type: list
|
|
default: []
|
|
items:
|
|
- variable: rateLimitEntry
|
|
label: ""
|
|
schema:
|
|
additional_attrs: true
|
|
type: dict
|
|
attrs:
|
|
- variable: name
|
|
label: "Name"
|
|
schema:
|
|
type: string
|
|
required: true
|
|
- variable: average
|
|
label: "Average"
|
|
schema:
|
|
type: int
|
|
required: true
|
|
default: 300
|
|
- variable: burst
|
|
label: "Burst"
|
|
schema:
|
|
type: int
|
|
required: true
|
|
default: 200
|
|
|
|
- variable: redirectRegex
|
|
label: "redirectRegex"
|
|
schema:
|
|
type: list
|
|
default: []
|
|
items:
|
|
- variable: redirectRegexEntry
|
|
label: ""
|
|
schema:
|
|
additional_attrs: true
|
|
type: dict
|
|
attrs:
|
|
- variable: name
|
|
label: "Name"
|
|
schema:
|
|
type: string
|
|
required: true
|
|
- variable: regex
|
|
label: "Regex"
|
|
schema:
|
|
type: string
|
|
required: true
|
|
default: ""
|
|
- variable: replacement
|
|
label: "Replacement"
|
|
schema:
|
|
type: string
|
|
required: true
|
|
default: ""
|
|
- variable: permanent
|
|
label: "Permanent"
|
|
schema:
|
|
type: boolean
|
|
default: false
|
|
|
|
- variable: stripPrefixRegex
|
|
label: "stripPrefixRegex"
|
|
schema:
|
|
type: list
|
|
default: []
|
|
items:
|
|
- variable: stripPrefixRegexEntry
|
|
label: ""
|
|
schema:
|
|
additional_attrs: true
|
|
type: dict
|
|
attrs:
|
|
- variable: name
|
|
label: "Name"
|
|
schema:
|
|
type: string
|
|
required: true
|
|
- variable: regex
|
|
label: "Regex"
|
|
schema:
|
|
type: list
|
|
default: []
|
|
items:
|
|
- variable: regexEntry
|
|
label: "Regex"
|
|
schema:
|
|
type: string
|
|
required: true
|
|
default: ""
|
|
|
|
- variable: ipWhiteList
|
|
label: "ipWhiteList"
|
|
schema:
|
|
type: list
|
|
default: []
|
|
items:
|
|
- variable: ipWhiteListEntry
|
|
label: ""
|
|
schema:
|
|
additional_attrs: true
|
|
type: dict
|
|
attrs:
|
|
- variable: name
|
|
label: "Name"
|
|
schema:
|
|
type: string
|
|
required: true
|
|
default: ""
|
|
- variable: sourceRange
|
|
label: "Source Range"
|
|
schema:
|
|
type: list
|
|
default: []
|
|
items:
|
|
- variable: sourceRangeEntry
|
|
label: ""
|
|
schema:
|
|
type: string
|
|
required: true
|
|
default: ""
|
|
- variable: ipStrategy
|
|
label: "IP Strategy"
|
|
schema:
|
|
additional_attrs: true
|
|
type: dict
|
|
attrs:
|
|
- variable: depth
|
|
label: "Depth"
|
|
schema:
|
|
type: int
|
|
required: true
|
|
- variable: excludedIPs
|
|
label: "Excluded IPs"
|
|
schema:
|
|
type: list
|
|
default: []
|
|
items:
|
|
- variable: excludedIPsEntry
|
|
label: ""
|
|
schema:
|
|
type: string
|
|
required: true
|
|
default: ""
|
|
|
|
- variable: themePark
|
|
label: "theme.park"
|
|
schema:
|
|
type: list
|
|
default: []
|
|
items:
|
|
- variable: themeParkEntry
|
|
label: ""
|
|
schema:
|
|
additional_attrs: true
|
|
type: dict
|
|
attrs:
|
|
- variable: name
|
|
label: "Name"
|
|
description: This is a 3rd party plugin and not maintained by TrueCharts,
|
|
for more information go to <a href="https://github.com/packruler/traefik-themepark">traefik-themepark</a>
|
|
schema:
|
|
type: string
|
|
required: true
|
|
- variable: appName
|
|
label: App Name
|
|
description: Lower case, name of the app to be themed.
|
|
Go to <a href="https://docs.theme-park.dev/themes/">https://docs.theme-park.dev/themes/</a> to see supported apps.
|
|
schema:
|
|
type: string
|
|
required: true
|
|
- variable: themeName
|
|
label: Theme Name
|
|
description: Lower case, name of the theme to be applied.
|
|
Go to <a href="https://docs.theme-park.dev/theme-options/">https://docs.theme-park.dev/theme-options/</a> to see supported themes.
|
|
schema:
|
|
type: string
|
|
required: true
|
|
- variable: baseUrl
|
|
label: Base URL
|
|
description: Replace `https://theme-park.dev` URL for self-hosting reference.
|
|
schema:
|
|
type: string
|
|
required: true
|
|
default: https://theme-park.dev
|
|
|
|
- variable: service
|
|
group: "Networking and Services"
|
|
label: "Configure Service Entrypoint"
|
|
schema:
|
|
additional_attrs: true
|
|
type: dict
|
|
attrs:
|
|
- variable: main
|
|
label: "Main Service"
|
|
description: "The Primary service on which the healthcheck runs, often the webUI"
|
|
schema:
|
|
additional_attrs: true
|
|
type: dict
|
|
attrs:
|
|
# Include{serviceSelector}
|
|
- variable: main
|
|
label: "Main Entrypoint Configuration"
|
|
schema:
|
|
additional_attrs: true
|
|
type: dict
|
|
attrs:
|
|
- variable: advanced
|
|
label: "Show Advanced settings"
|
|
schema:
|
|
type: boolean
|
|
default: false
|
|
show_subquestions_if: true
|
|
subquestions:
|
|
- variable: protocol
|
|
label: "Port Type"
|
|
schema:
|
|
type: string
|
|
default: "HTTP"
|
|
enum:
|
|
- value: HTTP
|
|
description: "HTTP"
|
|
- value: "HTTPS"
|
|
description: "HTTPS"
|
|
- value: TCP
|
|
description: "TCP"
|
|
- value: "UDP"
|
|
description: "UDP"
|
|
- variable: nodePort
|
|
label: "Node Port (Optional)"
|
|
description: "This port gets exposed to the node. Only considered when service type is NodePort, Simple or LoadBalancer"
|
|
schema:
|
|
type: int
|
|
min: 9000
|
|
max: 65535
|
|
- variable: targetPort
|
|
label: "Target Port"
|
|
description: "The internal(!) port on the container the Application runs on"
|
|
schema:
|
|
type: int
|
|
default: 9000
|
|
|
|
- variable: port
|
|
label: "Entrypoints Port"
|
|
schema:
|
|
type: int
|
|
default: 9000
|
|
required: true
|
|
- variable: tcp
|
|
label: "TCP Service"
|
|
description: "The tcp Entrypoint service"
|
|
schema:
|
|
additional_attrs: true
|
|
type: dict
|
|
attrs:
|
|
# Include{serviceSelector}
|
|
- variable: web
|
|
label: "web Entrypoint Configuration"
|
|
schema:
|
|
additional_attrs: true
|
|
type: dict
|
|
attrs:
|
|
- variable: port
|
|
label: "Entrypoints Port"
|
|
schema:
|
|
type: int
|
|
default: 9080
|
|
required: true
|
|
- variable: advanced
|
|
label: "Show Advanced settings"
|
|
schema:
|
|
type: boolean
|
|
default: false
|
|
show_subquestions_if: true
|
|
subquestions:
|
|
- variable: protocol
|
|
label: "Port Type"
|
|
schema:
|
|
type: string
|
|
default: "HTTP"
|
|
enum:
|
|
- value: HTTP
|
|
description: "HTTP"
|
|
- value: "HTTPS"
|
|
description: "HTTPS"
|
|
- value: TCP
|
|
description: "TCP"
|
|
- value: "UDP"
|
|
description: "UDP"
|
|
- variable: nodePort
|
|
label: "Node Port (Optional)"
|
|
description: "This port gets exposed to the node. Only considered when service type is NodePort, Simple or LoadBalancer"
|
|
schema:
|
|
type: int
|
|
min: 9000
|
|
max: 65535
|
|
- variable: targetPort
|
|
label: "Target Port"
|
|
description: "The internal(!) port on the container the Application runs on"
|
|
schema:
|
|
type: int
|
|
- variable: redirectPort
|
|
label: "Redirect to Port"
|
|
schema:
|
|
type: int
|
|
- variable: redirectTo
|
|
label: "Redirect to Entrypoint"
|
|
schema:
|
|
type: string
|
|
default: "websecure"
|
|
- variable: forwardedHeaders
|
|
label: "Accept Forwarded Headers"
|
|
schema:
|
|
additional_attrs: true
|
|
type: dict
|
|
attrs:
|
|
- variable: enabled
|
|
label: "Enable"
|
|
schema:
|
|
type: boolean
|
|
default: false
|
|
show_subquestions_if: true
|
|
subquestions:
|
|
- variable: trustedIPs
|
|
label: "Trusted IPs"
|
|
schema:
|
|
type: list
|
|
default: []
|
|
items:
|
|
- variable: trustedIPsEntry
|
|
label: ""
|
|
schema:
|
|
type: string
|
|
required: true
|
|
default: ""
|
|
- variable: insecureMode
|
|
label: "Insecure Mode"
|
|
schema:
|
|
type: boolean
|
|
default: false
|
|
- variable: websecure
|
|
label: "websecure Entrypoints Configuration"
|
|
schema:
|
|
additional_attrs: true
|
|
type: dict
|
|
attrs:
|
|
- variable: port
|
|
label: "Entrypoints Port"
|
|
schema:
|
|
type: int
|
|
default: 9443
|
|
required: true
|
|
- variable: advanced
|
|
label: "Show Advanced settings"
|
|
schema:
|
|
type: boolean
|
|
default: false
|
|
show_subquestions_if: true
|
|
subquestions:
|
|
- variable: protocol
|
|
label: "Port Type"
|
|
schema:
|
|
type: string
|
|
default: "HTTPS"
|
|
enum:
|
|
- value: HTTP
|
|
description: "HTTP"
|
|
- value: "HTTPS"
|
|
description: "HTTPS"
|
|
- value: TCP
|
|
description: "TCP"
|
|
- value: "UDP"
|
|
description: "UDP"
|
|
- variable: nodePort
|
|
label: "Node Port (Optional)"
|
|
description: "This port gets exposed to the node. Only considered when service type is NodePort, Simple or LoadBalancer"
|
|
schema:
|
|
type: int
|
|
min: 9000
|
|
max: 65535
|
|
- variable: targetPort
|
|
label: "Target Port"
|
|
description: "The internal(!) port on the container the Application runs on"
|
|
schema:
|
|
type: int
|
|
- variable: redirectPort
|
|
label: "Redirect to Port"
|
|
schema:
|
|
type: int
|
|
- variable: redirectTo
|
|
label: "Redirect to Entrypoint"
|
|
schema:
|
|
type: string
|
|
- variable: forwardedHeaders
|
|
label: "Accept Forwarded Headers"
|
|
schema:
|
|
additional_attrs: true
|
|
type: dict
|
|
attrs:
|
|
- variable: enabled
|
|
label: "Enable"
|
|
schema:
|
|
type: boolean
|
|
default: false
|
|
show_subquestions_if: true
|
|
subquestions:
|
|
- variable: trustedIPs
|
|
label: "Trusted IPs"
|
|
schema:
|
|
type: list
|
|
default: []
|
|
items:
|
|
- variable: trustedIPsEntry
|
|
label: ""
|
|
schema:
|
|
type: ipaddr
|
|
required: true
|
|
default: ""
|
|
- variable: insecureMode
|
|
label: "Insecure Mode"
|
|
schema:
|
|
type: boolean
|
|
default: false
|
|
- variable: tls
|
|
label: "websecure Entrypoints Configuration"
|
|
schema:
|
|
type: dict
|
|
hidden: true
|
|
attrs:
|
|
- variable: enabled
|
|
label: "Enabled"
|
|
schema:
|
|
type: boolean
|
|
default: true
|
|
hidden: true
|
|
- variable: portsList
|
|
label: "Additional TCP Entrypoints"
|
|
schema:
|
|
type: list
|
|
default: []
|
|
items:
|
|
- variable: portsListEntry
|
|
label: "Custom Entrypoints"
|
|
schema:
|
|
additional_attrs: true
|
|
type: dict
|
|
attrs:
|
|
- variable: enabled
|
|
label: "Enable the port"
|
|
schema:
|
|
type: boolean
|
|
default: true
|
|
hidden: true
|
|
- variable: name
|
|
label: "Entrypoints Name"
|
|
schema:
|
|
type: string
|
|
default: ""
|
|
- variable: protocol
|
|
label: "Entrypoints Type"
|
|
schema:
|
|
type: string
|
|
default: "TCP"
|
|
enum:
|
|
- value: HTTP
|
|
description: "HTTP"
|
|
- value: "HTTPS"
|
|
description: "HTTPS"
|
|
- value: TCP
|
|
description: "TCP"
|
|
- variable: port
|
|
label: "Port"
|
|
description: "This port exposes the container port on the service"
|
|
schema:
|
|
type: int
|
|
required: true
|
|
- variable: tls
|
|
label: "websecure Entrypoints Configuration"
|
|
schema:
|
|
additional_attrs: true
|
|
type: dict
|
|
attrs:
|
|
- variable: enabled
|
|
label: "Enabled"
|
|
schema:
|
|
type: boolean
|
|
default: true
|
|
- variable: redirectPort
|
|
label: "Redirect to Port"
|
|
schema:
|
|
type: int
|
|
- variable: redirectTo
|
|
label: "Redirect to Entrypoint"
|
|
schema:
|
|
type: string
|
|
- variable: forwardedHeaders
|
|
label: "Accept Forwarded Headers"
|
|
schema:
|
|
additional_attrs: true
|
|
type: dict
|
|
attrs:
|
|
- variable: enabled
|
|
label: "Enable"
|
|
schema:
|
|
type: boolean
|
|
default: false
|
|
show_subquestions_if: true
|
|
subquestions:
|
|
- variable: trustedIPs
|
|
label: "Trusted IPs"
|
|
schema:
|
|
type: list
|
|
default: []
|
|
items:
|
|
- variable: trustedIPsEntry
|
|
label: ""
|
|
schema:
|
|
type: ipaddr
|
|
required: true
|
|
default: ""
|
|
- variable: insecureMode
|
|
label: "Insecure Mode"
|
|
schema:
|
|
type: boolean
|
|
default: false
|
|
- variable: ingress
|
|
label: ""
|
|
group: "Ingress"
|
|
schema:
|
|
additional_attrs: true
|
|
type: dict
|
|
attrs:
|
|
- variable: main
|
|
label: "Main Ingress"
|
|
schema:
|
|
additional_attrs: true
|
|
type: dict
|
|
attrs:
|
|
# Include{ingressDefault}
|
|
|
|
# Include{ingressTLS}
|
|
|
|
# Include{ingressTraefik}
|
|
|
|
# Include{ingressExpert}
|
|
|
|
# Include{ingressList}
|
|
|
|
# Include{security}
|
|
|
|
- variable: advancedSecurity
|
|
label: "Show Advanced Security Settings"
|
|
group: "Security and Permissions"
|
|
schema:
|
|
type: boolean
|
|
default: false
|
|
show_subquestions_if: true
|
|
subquestions:
|
|
- variable: securityContext
|
|
label: "Security Context"
|
|
schema:
|
|
additional_attrs: true
|
|
type: dict
|
|
attrs:
|
|
- variable: privileged
|
|
label: "Privileged mode"
|
|
schema:
|
|
type: boolean
|
|
default: false
|
|
- variable: readOnlyRootFilesystem
|
|
label: "ReadOnly Root Filesystem"
|
|
schema:
|
|
type: boolean
|
|
default: true
|
|
- variable: allowPrivilegeEscalation
|
|
label: "Allow Privilege Escalation"
|
|
schema:
|
|
type: boolean
|
|
default: false
|
|
- variable: runAsNonRoot
|
|
label: "runAsNonRoot"
|
|
schema:
|
|
type: boolean
|
|
default: true
|
|
# Include{securityContextAdvanced}
|
|
|
|
- variable: podSecurityContext
|
|
group: "Security and Permissions"
|
|
label: "Pod Security Context"
|
|
schema:
|
|
additional_attrs: true
|
|
type: dict
|
|
attrs:
|
|
- variable: runAsUser
|
|
label: "runAsUser"
|
|
description: "The UserID of the user running the application"
|
|
schema:
|
|
type: int
|
|
default: 568
|
|
- variable: runAsGroup
|
|
label: "runAsGroup"
|
|
description: "The groupID this App of the user running the application"
|
|
schema:
|
|
type: int
|
|
default: 568
|
|
- variable: fsGroup
|
|
label: "fsGroup"
|
|
description: "The group that should own ALL storage."
|
|
schema:
|
|
type: int
|
|
default: 568
|
|
# Include{podSecurityContextAdvanced}
|
|
|
|
# Include{resources}
|
|
|
|
# Include{advanced}
|
|
|
|
# Include{addons}
|