mirror of
https://gitlab.opencode.de/bmi/opendesk/deployment/opendesk.git
synced 2025-12-06 15:31:38 +01:00
fix(helmfile): Use signed bitnami charts from openDesk Mirror Builds
This commit is contained in:
Dominik Kaminski
@@ -383,7 +383,7 @@ Helm Charts which are released via openDesk CI/CD process are always signed. The
|
|||||||
|
|
||||||
| Repository | OCI | Verifiable |
|
| Repository | OCI | Verifiable |
|
||||||
|--------------------------------------|:---:|:------------------:|
|
|--------------------------------------|:---:|:------------------:|
|
||||||
| bitnami-repo | yes | :x: |
|
| bitnami-repo (oD Build) | yes | :white_check_mark: |
|
||||||
| clamav-repo | yes | :white_check_mark: |
|
| clamav-repo | yes | :white_check_mark: |
|
||||||
| collabora-online-repo | no | :x: |
|
| collabora-online-repo | no | :x: |
|
||||||
| intercom-service-repo | yes | :white_check_mark: |
|
| intercom-service-repo | yes | :white_check_mark: |
|
||||||
|
|||||||
@@ -7,10 +7,10 @@ repositories:
|
|||||||
- name: "bitnami-repo"
|
- name: "bitnami-repo"
|
||||||
oci: true
|
oci: true
|
||||||
url: >-
|
url: >-
|
||||||
{{ env "PRIVATE_CHART_REPOSITORY_URL" |
|
{{ env "PRIVATE_IMAGE_REGISTRY_URL" |
|
||||||
default "registry-1.docker.io/bitnamicharts" }}
|
default "external-registry.souvap-univention.de/sovereign-workplace/souvap/tooling/charts/bitnami-charts" }}
|
||||||
# Bitnami charts are not signed, see https://github.com/bitnami/charts/issues/14491
|
verify: true
|
||||||
verify: false
|
keyring: "../../files/gpg-pubkeys/souvap-univention-de.gpg"
|
||||||
# openDesk Keycloak Theme
|
# openDesk Keycloak Theme
|
||||||
# Source: https://gitlab.opencode.de/bmi/souveraener_arbeitsplatz/components/charts/opendesk-keycloak-theme
|
# Source: https://gitlab.opencode.de/bmi/souveraener_arbeitsplatz/components/charts/opendesk-keycloak-theme
|
||||||
- name: "keycloak-theme-repo"
|
- name: "keycloak-theme-repo"
|
||||||
@@ -35,7 +35,7 @@ releases:
|
|||||||
condition: "keycloak.enabled"
|
condition: "keycloak.enabled"
|
||||||
- name: "keycloak"
|
- name: "keycloak"
|
||||||
chart: "bitnami-repo/keycloak"
|
chart: "bitnami-repo/keycloak"
|
||||||
version: "12.2.0"
|
version: "12.1.5"
|
||||||
values:
|
values:
|
||||||
- "values-keycloak.gotmpl"
|
- "values-keycloak.gotmpl"
|
||||||
- "values-keycloak.yaml"
|
- "values-keycloak.yaml"
|
||||||
|
|||||||
@@ -64,9 +64,9 @@ repositories:
|
|||||||
oci: true
|
oci: true
|
||||||
url: >-
|
url: >-
|
||||||
{{ env "PRIVATE_IMAGE_REGISTRY_URL" |
|
{{ env "PRIVATE_IMAGE_REGISTRY_URL" |
|
||||||
default "registry-1.docker.io/bitnamicharts" }}
|
default "external-registry.souvap-univention.de/sovereign-workplace/souvap/tooling/charts/bitnami-charts" }}
|
||||||
# Bitnami charts are not signed, see https://github.com/bitnami/charts/issues/14491
|
verify: true
|
||||||
verify: false
|
keyring: "../../files/gpg-pubkeys/souvap-univention-de.gpg"
|
||||||
|
|
||||||
releases:
|
releases:
|
||||||
- name: "opendesk-certificates"
|
- name: "opendesk-certificates"
|
||||||
|
|||||||
Reference in New Issue
Block a user