diff --git a/helmfile/apps/jitsi/helmfile.yaml b/helmfile/apps/jitsi/helmfile.yaml index 2dab3cb0..4afa8854 100644 --- a/helmfile/apps/jitsi/helmfile.yaml +++ b/helmfile/apps/jitsi/helmfile.yaml @@ -7,6 +7,8 @@ repositories: url: >- {{ env "PRIVATE_IMAGE_REGISTRY_URL" | default "external-registry.souvap-univention.de/sovereign-workplace/souvap/tooling/charts/sovereign-workplace-jitsi" }} + verify: true + keyring: ../../../pubkey.gpg releases: - name: "jitsi" chart: "jitsi-repo/sovereign-workplace-jitsi" diff --git a/helmfile/apps/jitsi/values-jitsi.gotmpl b/helmfile/apps/jitsi/values-jitsi.gotmpl index b7f1ec7b..75c931e5 100644 --- a/helmfile/apps/jitsi/values-jitsi.gotmpl +++ b/helmfile/apps/jitsi/values-jitsi.gotmpl @@ -11,6 +11,9 @@ global: imagePullSecrets: {{ .Values.global.imagePullSecrets | toYaml | nindent 4 }} +cleanup: + deletePodsOnSuccess: {{ .Values.cleanup.deletePodsOnSuccess }} + image: imagePullPolicy: "{{ .Values.global.imagePullPolicy }}" registry: "{{ .Values.global.imageRegistry }}" diff --git a/helmfile/apps/keycloak-bootstrap/values-bootstrap.gotmpl b/helmfile/apps/keycloak-bootstrap/values-bootstrap.gotmpl index ca6c5506..f85ec5d1 100644 --- a/helmfile/apps/keycloak-bootstrap/values-bootstrap.gotmpl +++ b/helmfile/apps/keycloak-bootstrap/values-bootstrap.gotmpl @@ -11,6 +11,10 @@ global: imagePullSecrets: {{ .Values.global.imagePullSecrets | toYaml | nindent 4 }} +cleanup: + deletePodsOnSuccess: {{ .Values.cleanup.deletePodsOnSuccess }} + keepPVCOnDelete: {{ .Values.cleanup.keepPVCOnDelete }} + config: administrator: password: "{{ .Values.secrets.keycloak.adminPassword }}" diff --git a/helmfile/apps/keycloak-bootstrap/values-bootstrap.yaml b/helmfile/apps/keycloak-bootstrap/values-bootstrap.yaml index 9da971a7..b9e7f6a8 100644 --- a/helmfile/apps/keycloak-bootstrap/values-bootstrap.yaml +++ b/helmfile/apps/keycloak-bootstrap/values-bootstrap.yaml @@ -4,7 +4,4 @@ config: administrator: username: "kcadmin" - -cleanup: - deletePodsOnSuccess: true ... diff --git a/helmfile/apps/nextcloud/helmfile.yaml b/helmfile/apps/nextcloud/helmfile.yaml index 6b44d871..5cf47703 100644 --- a/helmfile/apps/nextcloud/helmfile.yaml +++ b/helmfile/apps/nextcloud/helmfile.yaml @@ -8,6 +8,8 @@ repositories: url: >- {{ env "PRIVATE_IMAGE_REGISTRY_URL" | default "external-registry.souvap-univention.de/sovereign-workplace/souvap/tooling/charts/sovereign-workplace-nextcloud-bootstrap" }} + verify: true + keyring: ../../../pubkey.gpg # yamllint enable rule:line-length - name: "nextcloud-repo" url: >- diff --git a/helmfile/apps/nextcloud/values-bootstrap.gotmpl b/helmfile/apps/nextcloud/values-bootstrap.gotmpl index a559f304..1cb6bba8 100644 --- a/helmfile/apps/nextcloud/values-bootstrap.gotmpl +++ b/helmfile/apps/nextcloud/values-bootstrap.gotmpl @@ -43,6 +43,11 @@ config: username: "{{ .Values.smtp.username }}" password: "{{ .Values.smtp.password }}" +cleanup: + deletePodsOnSuccess: {{ .Values.cleanup.deletePodsOnSuccess }} + deletePodsOnSuccessTimeout: {{ .Values.cleanup.deletePodsOnSuccessTimeout }} + keepPVCOnDelete: {{ .Values.cleanup.keepPVCOnDelete }} + image: imagePullPolicy: "{{ .Values.global.imagePullPolicy }}" registry: "{{ .Values.global.imageRegistry }}" diff --git a/helmfile/apps/nextcloud/values-bootstrap.yaml b/helmfile/apps/nextcloud/values-bootstrap.yaml index cde86ede..d8c942fb 100644 --- a/helmfile/apps/nextcloud/values-bootstrap.yaml +++ b/helmfile/apps/nextcloud/values-bootstrap.yaml @@ -13,7 +13,4 @@ config: ldapSearch: host: "univention-corporate-container" - -cleanup: - deletePodsOnSuccess: false ... diff --git a/helmfile/apps/open-xchange/helmfile.yaml b/helmfile/apps/open-xchange/helmfile.yaml index 781be0cf..c14d5a9e 100644 --- a/helmfile/apps/open-xchange/helmfile.yaml +++ b/helmfile/apps/open-xchange/helmfile.yaml @@ -41,7 +41,7 @@ releases: chart: "sovereign-workplace-open-xchange-bootstrap-repo/sovereign-workplace-open-xchange-bootstrap" version: "1.3.1" values: - - "values-openxchange-bootstrap.yaml" + - "values-openxchange-bootstrap.gotmpl" condition: "oxAppsuite.enabled" timeout: 900 diff --git a/helmfile/apps/open-xchange/values-openxchange-bootstrap.gotmpl b/helmfile/apps/open-xchange/values-openxchange-bootstrap.gotmpl index c96975da..893031cf 100644 --- a/helmfile/apps/open-xchange/values-openxchange-bootstrap.gotmpl +++ b/helmfile/apps/open-xchange/values-openxchange-bootstrap.gotmpl @@ -3,6 +3,10 @@ SPDX-FileCopyrightText: 2023 Bundesministerium des Innern und für Heimat, PG Ze SPDX-License-Identifier: Apache-2.0 */}} --- +cleanup: + deletePodsOnSuccess: {{ .Values.cleanup.deletePodsOnSuccess }} + deletePodsOnSuccessTimeout: {{ .Values.cleanup.deletePodsOnSuccessTimeout }} + image: registry: "{{ .Values.global.imageRegistry }}" url: "{{ .Values.images.openxchangeBootstrap.repository }}" diff --git a/helmfile/environments/default/debug.yaml b/helmfile/environments/default/debug.yaml new file mode 100644 index 00000000..a8f28a2b --- /dev/null +++ b/helmfile/environments/default/debug.yaml @@ -0,0 +1,13 @@ +# SPDX-FileCopyrightText: 2023 Bundesministerium des Innern und für Heimat, PG ZenDiS "Projektgruppe für Aufbau ZenDiS" +# SPDX-License-Identifier: Apache-2.0 +--- +cleanup: + # Keep Pods/Job logs after successful run. + deletePodsOnSuccess: true + # When deletePodsOnSuccess is enabled, the pod will be deleted after configured seconds. + deletePodsOnSuccessTimeout: 60 + # Keep persistence on deletion of this release. + keepPVCOnDelete: false + # Keep additional resources, like certificates on deletion of this release. + keepRessourceOnDelete: true +... \ No newline at end of file