Commit new Chart releases for TrueCharts

Signed-off-by: TrueCharts-Bot <bot@truecharts.org>

incubator/wireguard/0.0.1/CHANGELOG.md

@@ -0,0 +1,11 @@
+# Changelog
+
+
+
+## [wireguard-0.0.1]wireguard-0.0.1 (2022-08-28)
+
+### Feat
+
+- add standalone wireguard ([#3575](https://github.com/truecharts/charts/issues/3575))
+  
+  

incubator/wireguard/0.0.1/Chart.lock

@@ -0,0 +1,6 @@
+dependencies:
+- name: common
+  repository: https://library-charts.truecharts.org
+  version: 10.5.0
+digest: sha256:d3b7db30dfbaabd81fb7d0bcc2314601ed7e12a85ccc880e1e8df09799f38910
+generated: "2022-08-28T23:44:13.082290468Z"

incubator/wireguard/0.0.1/Chart.yaml

@@ -0,0 +1,27 @@
+apiVersion: v2
+appVersion: "1.0.202109"
+dependencies:
+  - name: common
+    repository: https://library-charts.truecharts.org
+    version: 10.5.0
+description: WireGuard® is an extremely simple yet fast and modern VPN that utilizes state-of-the-art cryptography.
+home: https://truecharts.org/docs/charts/incubator/wireguard
+icon: https://truecharts.org/img/hotlink-ok/chart-icons/wireguard.png
+keywords:
+  - wireguard
+  - vpn
+kubeVersion: ">=1.16.0-0"
+maintainers:
+  - email: info@truecharts.org
+    name: TrueCharts
+    url: https://truecharts.org
+name: wireguard
+sources:
+  - https://github.com/truecharts/charts/tree/master/charts/incubator/wireguard
+  - https://github.com/k8s-at-home/container-images/tree/main/apps/wireguard
+version: 0.0.1
+annotations:
+  truecharts.org/catagories: |
+    - network
+  truecharts.org/SCALE-support: "true"
+  truecharts.org/grade: U

incubator/wireguard/0.0.1/README.md

@@ -0,0 +1,108 @@
+# wireguard
+
+![Version: 0.0.1](https://img.shields.io/badge/Version-0.0.1-informational?style=flat-square) ![AppVersion: 1.0.202109](https://img.shields.io/badge/AppVersion-1.0.202109-informational?style=flat-square)
+
+WireGuard® is an extremely simple yet fast and modern VPN that utilizes state-of-the-art cryptography.
+
+TrueCharts can be installed as both *normal* Helm Charts or as Apps on TrueNAS SCALE.
+
+This readme is just an automatically generated general guide on installing our Helm Charts and Apps.
+For more information, please click here: [wireguard](https://truecharts.org/docs/charts/incubator/wireguard)
+
+**This chart is not maintained by the upstream project and any issues with the chart should be raised [here](https://github.com/truecharts/charts/issues/new/choose)**
+
+## Source Code
+
+* <https://github.com/truecharts/charts/tree/master/charts/incubator/wireguard>
+* <https://github.com/k8s-at-home/container-images/tree/main/apps/wireguard>
+
+## Requirements
+
+Kubernetes: `>=1.16.0-0`
+
+## Dependencies
+
+| Repository | Name | Version |
+|------------|------|---------|
+| https://library-charts.truecharts.org | common | 10.5.0 |
+
+## Installing the Chart
+
+### TrueNAS SCALE
+
+To install this Chart on TrueNAS SCALE check our [Quick-Start Guide](https://truecharts.org/docs/manual/SCALE%20Apps/Quick-Start%20Guides/Installing-an-App).
+
+### Helm
+
+To install the chart with the release name `wireguard`
+
+```console
+helm repo add TrueCharts https://charts.truecharts.org
+helm repo update
+helm install wireguard TrueCharts/wireguard
+```
+
+## Uninstall
+
+### TrueNAS SCALE
+
+**Upgrading, Rolling Back and Uninstalling the Chart**
+
+To upgrade, rollback or delete this Chart from TrueNAS SCALE check our [Quick-Start Guide](https://truecharts.org/docs/manual/SCALE%20Apps/Quick-Start%20Guides/Upgrade-rollback-delete-an-App).
+
+### Helm
+
+To uninstall the `wireguard` deployment
+
+```console
+helm uninstall wireguard
+```
+
+## Configuration
+
+### Helm
+
+#### Available Settings
+
+Read through the [values.yaml](./values.yaml) file. It has several commented out suggested values.
+Other values may be used from the [values.yaml](https://github.com/truecharts/library-charts/tree/main/charts/stable/common/values.yaml) from the [common library](https://github.com/k8s-at-home/library-charts/tree/main/charts/stable/common).
+
+#### Configure using the command line
+
+Specify each parameter using the `--set key=value[,key=value]` argument to `helm install`.
+
+```console
+helm install wireguard \
+  --set env.TZ="America/New York" \
+    TrueCharts/wireguard
+```
+
+#### Configure using a yaml file
+
+Alternatively, a YAML file that specifies the values for the above parameters can be provided while installing the chart.
+
+```console
+helm install wireguard TrueCharts/wireguard -f values.yaml
+```
+
+#### Connecting to other charts
+
+If you need to connect this Chart to other Charts on TrueNAS SCALE, please refer to our [Linking Charts Internally](https://truecharts.org/docs/manual/SCALE%20Apps/Quick-Start%20Guides/linking-apps) quick-start guide.
+
+## Support
+
+- Please check our [quick-start guides for TrueNAS SCALE](https://truecharts.org/docs/manual/SCALE%20Apps/Quick-Start%20Guides/Important-MUST-READ).
+- See the [Website](https://truecharts.org)
+- Check our [Discord](https://discord.gg/tVsPTHWTtr)
+- Open a [issue](https://github.com/truecharts/apps/issues/new/choose)
+
+---
+
+## Sponsor TrueCharts
+
+TrueCharts can only exist due to the incredible effort of our staff.
+Please consider making a [donation](https://truecharts.org/docs/about/sponsor) or contributing back to the project any way you can!
+
+---
+
+All Rights Reserved - The TrueCharts Project

incubator/wireguard/0.0.1/app-readme.md

@@ -0,0 +1,8 @@
+WireGuard® is an extremely simple yet fast and modern VPN that utilizes state-of-the-art cryptography.
+
+This App is supplied by TrueCharts, for more information visit the manual: [https://truecharts.org/docs/charts/incubator/wireguard](https://truecharts.org/docs/charts/incubator/wireguard)
+
+---
+
+TrueCharts can only exist due to the incredible effort of our staff.
+Please consider making a [donation](https://truecharts.org/docs/about/sponsor) or contributing back to the project any way you can!

incubator/wireguard/0.0.1/ix_values.yaml

@@ -0,0 +1,59 @@
+image:
+  repository: tccr.io/truecharts/wireguard
+  tag: v1.0.20210914@sha256:9f56e5660e8df8d4d38521ed73a4cc29fa24bf578007bfbe633e00184e2ebfbc
+  pullPolicy: IfNotPresent
+
+podSecurityContext:
+  runAsUser: 0
+  runAsGroup: 0
+
+securityContext:
+  runAsNonRoot: false
+  readOnlyRootFilesystem: false
+  capabilities:
+    add:
+      - NET_ADMIN
+      - SYS_MODULE
+
+wg:
+  killswitch: false
+  excludedIP4networks: []
+  excludedIP6networks: []
+  # Leave empty if you going to use the paste your config bellow
+  configFileHostPath: ""
+  config:
+    enabled: false
+    # Your wg config here eg:
+    data: |
+      [Interface]
+      Address = 10.0.0.1/24
+      ListenPort = 51820
+      PrivateKey = PRIVATE_KEY
+
+      [Peer]
+      PublicKey = PUBLIC_KEY
+      AllowedIPs = 10.0.0.0/24
+      Endpoint = wg.example:51820
+
+envFrom:
+  - configMapRef:
+      name: '{{ include "tc.common.names.fullname" . }}-wg-env-config'
+
+probes:
+  liveness:
+    enabled: false
+  readiness:
+    enabled: false
+  startup:
+    enabled: false
+
+service:
+  main:
+    ports:
+      main:
+        port: 51820
+        targetPort: 51820
+        protocol: UDP
+
+portal:
+  enabled: false

incubator/wireguard/0.0.1/templates/_configfilemount.tpl

@@ -0,0 +1,23 @@
+{{- define "wireguard.configfile" -}}
+{{- if and .Values.wg.configFileHostPath ( not .Values.wg.config.enable ) }}
+enabled: true
+type: hostPath
+readOnly: true
+hostPathType: File
+hostPath: {{ .Values.wg.configFileHostPath }}
+mountPath: /etc/wireguard/wg0.conf
+{{- end }}
+
+{{- if .Values.wg.config.enabled }}
+enabled: true
+type: secret
+readOnly: true
+defaultMode: "0600"
+objectName: '{{ printf "%s-wg-config-secret" (include "tc.common.names.fullname" .) }}'
+mountPath: /etc/wireguard
+items:
+  - key: wg0.conf
+    path: wg0.conf
+{{- end }}
+
+{{- end -}}

incubator/wireguard/0.0.1/templates/_configmap.tpl

@@ -0,0 +1,28 @@
+{{/* Define the secrets */}}
+{{- define "wg.env.configmap" -}}
+
+{{- $configName := printf "%s-wg-env-config" (include "tc.common.names.fullname" .) }}
+---
+apiVersion: v1
+kind: ConfigMap
+metadata:
+  name: {{ $configName }}
+  labels:
+    {{- include "tc.common.labels" . | nindent 4 }}
+data:
+  SEPARATOR: ";"
+  IPTABLES_BACKEND: nft
+  KILLSWITCH: {{ .Values.wg.killswitch | quote }}
+  {{- if .Values.wg.killswitch }}
+    {{- $excludedIP4net := "172.16.0.0/12" }}
+    {{- range .Values.wg.excludedIP4networks }}
+      {{- $excludedIP4net = ( printf "%v;%v" $excludedIP4net . ) }}
+    {{- end }}
+  KILLSWITCH_EXCLUDEDNETWORKS_IPV4: {{ $excludedIP4net | quote }}
+    {{- $excludedIP6net := "" }}
+    {{- range .Values.wg.excludedIP6networks }}
+      {{- $excludedIP6net = ( printf "%v;%v" $excludedIP6net . ) }}
+    {{- end }}
+  KILLSWITCH_EXCLUDEDNETWORKS_IPV6: {{ $excludedIP4net | quote }}
+  {{- end }}
+{{- end -}}

incubator/wireguard/0.0.1/templates/_secret.tpl

@@ -0,0 +1,16 @@
+{{/* Define the secrets */}}
+{{- define "wg.config-secret" -}}
+
+{{- $secretName := printf "%s-wg-config-secret" (include "tc.common.names.fullname" .) }}
+---
+apiVersion: v1
+kind: Secret
+type: Opaque
+metadata:
+  name: {{ $secretName }}
+  labels:
+    {{- include "tc.common.labels" . | nindent 4 }}
+data:
+  wg0.conf: |
+{{ .Values.wg.config.data | b64enc | indent 4 }}
+{{- end -}}

incubator/wireguard/0.0.1/templates/common.yaml

@@ -0,0 +1,12 @@
+{{/* Make sure all variables are set properly */}}
+{{- include "tc.common.loader.init" . }}
+
+{{/* Render config */}}
+{{- include "wg.env.configmap" . }}
+{{/* Render secret */}}
+{{- include "wg.config-secret" . }}
+
+{{- $_ := set .Values.persistence "configfile" (include "wireguard.configfile" . | fromYaml) -}}
+
+{{/* Render the templates */}}
+{{ include "tc.common.loader.apply" . }}

incubator/wireguard/item.yaml

@@ -0,0 +1,4 @@
+icon_url: https://truecharts.org/img/hotlink-ok/chart-icons/wireguard.png
+categories:
+- network
+