diff --git a/helmfile/apps/collabora/values.yaml.gotmpl b/helmfile/apps/collabora/values.yaml.gotmpl index b8ce028f..30a23ab1 100644 --- a/helmfile/apps/collabora/values.yaml.gotmpl +++ b/helmfile/apps/collabora/values.yaml.gotmpl @@ -84,6 +84,8 @@ ingress: hosts: - "{{ .Values.global.hosts.collabora }}.{{ .Values.global.domain }}" +podAnnotations: {} + podSecurityContext: fsGroup: 100 diff --git a/helmfile/apps/cryptpad/values.yaml.gotmpl b/helmfile/apps/cryptpad/values.yaml.gotmpl index 601c7b73..45674c21 100644 --- a/helmfile/apps/cryptpad/values.yaml.gotmpl +++ b/helmfile/apps/cryptpad/values.yaml.gotmpl @@ -53,6 +53,8 @@ ingress: persistence: enabled: false +podAnnotations: {} + podSecurityContext: fsGroup: 4001 diff --git a/helmfile/apps/element/values-element.yaml.gotmpl b/helmfile/apps/element/values-element.yaml.gotmpl index 0911e67f..4e9cfbb9 100644 --- a/helmfile/apps/element/values-element.yaml.gotmpl +++ b/helmfile/apps/element/values-element.yaml.gotmpl @@ -137,6 +137,8 @@ ingress: enabled: {{ .Values.ingress.tls.enabled }} secretName: {{ .Values.ingress.tls.secretName | quote }} +podAnnotations: {} + podSecurityContext: enabled: true fsGroup: 101 diff --git a/helmfile/apps/element/values-matrix-neoboard-widget.yaml.gotmpl b/helmfile/apps/element/values-matrix-neoboard-widget.yaml.gotmpl index d1d1bc5e..a26efec5 100644 --- a/helmfile/apps/element/values-matrix-neoboard-widget.yaml.gotmpl +++ b/helmfile/apps/element/values-matrix-neoboard-widget.yaml.gotmpl @@ -40,6 +40,8 @@ ingress: enabled: {{ .Values.ingress.tls.enabled }} secretName: {{ .Values.ingress.tls.secretName | quote }} +podAnnotations: {} + podSecurityContext: enabled: true fsGroup: 101 diff --git a/helmfile/apps/element/values-matrix-neochoice-widget.yaml.gotmpl b/helmfile/apps/element/values-matrix-neochoice-widget.yaml.gotmpl index 6a2a7a60..fae1af06 100644 --- a/helmfile/apps/element/values-matrix-neochoice-widget.yaml.gotmpl +++ b/helmfile/apps/element/values-matrix-neochoice-widget.yaml.gotmpl @@ -40,6 +40,8 @@ ingress: enabled: {{ .Values.ingress.tls.enabled }} secretName: {{ .Values.ingress.tls.secretName | quote }} +podAnnotations: {} + podSecurityContext: enabled: true fsGroup: 101 diff --git a/helmfile/apps/element/values-matrix-neodatefix-bot-bootstrap.yaml.gotmpl b/helmfile/apps/element/values-matrix-neodatefix-bot-bootstrap.yaml.gotmpl index d89786d5..3e1b9347 100644 --- a/helmfile/apps/element/values-matrix-neodatefix-bot-bootstrap.yaml.gotmpl +++ b/helmfile/apps/element/values-matrix-neodatefix-bot-bootstrap.yaml.gotmpl @@ -26,6 +26,8 @@ image: fullnameOverride: "matrix-neodatefix-bot-bootstrap" +podAnnotations: {} + securityContext: allowPrivilegeEscalation: false capabilities: diff --git a/helmfile/apps/element/values-matrix-neodatefix-bot.yaml.gotmpl b/helmfile/apps/element/values-matrix-neodatefix-bot.yaml.gotmpl index 02ad11ac..7407e016 100644 --- a/helmfile/apps/element/values-matrix-neodatefix-bot.yaml.gotmpl +++ b/helmfile/apps/element/values-matrix-neodatefix-bot.yaml.gotmpl @@ -68,6 +68,8 @@ persistence: size: {{ .Values.persistence.size.matrixNeoDateFixBot | quote }} storageClass: {{ .Values.persistence.storageClassNames.RWO | quote }} +podAnnotations: {} + podSecurityContext: enabled: true fsGroup: 101 diff --git a/helmfile/apps/element/values-matrix-neodatefix-widget.yaml.gotmpl b/helmfile/apps/element/values-matrix-neodatefix-widget.yaml.gotmpl index ddcaa1ea..cbdd156a 100644 --- a/helmfile/apps/element/values-matrix-neodatefix-widget.yaml.gotmpl +++ b/helmfile/apps/element/values-matrix-neodatefix-widget.yaml.gotmpl @@ -45,6 +45,8 @@ ingress: enabled: {{ .Values.ingress.tls.enabled }} secretName: {{ .Values.ingress.tls.secretName | quote }} +podAnnotations: {} + podSecurityContext: enabled: true fsGroup: 101 diff --git a/helmfile/apps/element/values-matrix-user-verification-service-bootstrap.yaml.gotmpl b/helmfile/apps/element/values-matrix-user-verification-service-bootstrap.yaml.gotmpl index 08c4a7e5..044a77e9 100644 --- a/helmfile/apps/element/values-matrix-user-verification-service-bootstrap.yaml.gotmpl +++ b/helmfile/apps/element/values-matrix-user-verification-service-bootstrap.yaml.gotmpl @@ -26,6 +26,8 @@ image: fullnameOverride: "opendesk-matrix-user-verification-service-bootstrap" +podAnnotations: {} + securityContext: allowPrivilegeEscalation: false capabilities: diff --git a/helmfile/apps/element/values-matrix-user-verification-service.yaml.gotmpl b/helmfile/apps/element/values-matrix-user-verification-service.yaml.gotmpl index 9bdf1796..5b47ece4 100644 --- a/helmfile/apps/element/values-matrix-user-verification-service.yaml.gotmpl +++ b/helmfile/apps/element/values-matrix-user-verification-service.yaml.gotmpl @@ -42,6 +42,8 @@ image: repository: {{ .Values.images.matrixUserVerificationService.repository | quote }} tag: {{ .Values.images.matrixUserVerificationService.tag | quote }} +podAnnotations: {} + podSecurityContext: enabled: true fsGroup: 101 diff --git a/helmfile/apps/element/values-synapse-web.yaml.gotmpl b/helmfile/apps/element/values-synapse-web.yaml.gotmpl index 80014ea9..550b4deb 100644 --- a/helmfile/apps/element/values-synapse-web.yaml.gotmpl +++ b/helmfile/apps/element/values-synapse-web.yaml.gotmpl @@ -51,6 +51,8 @@ ingress: enabled: {{ .Values.ingress.tls.enabled }} secretName: {{ .Values.ingress.tls.secretName | quote }} +podAnnotations: {} + podSecurityContext: enabled: true fsGroup: 101 diff --git a/helmfile/apps/element/values-synapse.yaml.gotmpl b/helmfile/apps/element/values-synapse.yaml.gotmpl index dd0ad7e7..91aed72f 100644 --- a/helmfile/apps/element/values-synapse.yaml.gotmpl +++ b/helmfile/apps/element/values-synapse.yaml.gotmpl @@ -141,6 +141,8 @@ persistence: size: {{ .Values.persistence.size.synapse | quote }} storageClass: {{ .Values.persistence.storageClassNames.RWO | quote }} +podAnnotations: {} + podSecurityContext: enabled: true fsGroup: 10991 diff --git a/helmfile/apps/element/values-well-known.yaml.gotmpl b/helmfile/apps/element/values-well-known.yaml.gotmpl index 74597cd5..979ea064 100644 --- a/helmfile/apps/element/values-well-known.yaml.gotmpl +++ b/helmfile/apps/element/values-well-known.yaml.gotmpl @@ -45,6 +45,8 @@ ingress: enabled: {{ .Values.ingress.tls.enabled }} secretName: {{ .Values.ingress.tls.secretName | quote }} +podAnnotations: {} + podSecurityContext: enabled: true fsGroup: 101 diff --git a/helmfile/apps/intercom-service/values.yaml.gotmpl b/helmfile/apps/intercom-service/values.yaml.gotmpl index b3feb860..b1f4c08a 100644 --- a/helmfile/apps/intercom-service/values.yaml.gotmpl +++ b/helmfile/apps/intercom-service/values.yaml.gotmpl @@ -72,6 +72,8 @@ ingress: enabled: {{ .Values.ingress.tls.enabled }} secretName: {{ .Values.ingress.tls.secretName | quote }} +podAnnotations: {} + podSecurityContext: enabled: true fsGroup: 1000 diff --git a/helmfile/apps/jitsi/values-jitsi.yaml.gotmpl b/helmfile/apps/jitsi/values-jitsi.yaml.gotmpl index 5e3ce370..afb9ec05 100644 --- a/helmfile/apps/jitsi/values-jitsi.yaml.gotmpl +++ b/helmfile/apps/jitsi/values-jitsi.yaml.gotmpl @@ -10,6 +10,7 @@ global: {{ .Values.global.hosts | toYaml | nindent 4 }} imagePullSecrets: {{ .Values.global.imagePullSecrets | toYaml | nindent 4 }} + podAnnotations: {} containerSecurityContext: allowPrivilegeEscalation: false @@ -215,6 +216,9 @@ patchJVB: registry: {{ coalesce .Values.repositories.image.dockerHub .Values.global.imageRegistry .Values.images.jitsiPatchJVB.registry | quote }} repository: {{ .Values.images.jitsiPatchJVB.repository | quote }} tag: {{ .Values.images.jitsiPatchJVB.tag | quote }} + +podAnnotations: {} + replicaCount: {{ .Values.replicas.jitsiKeycloakAdapter }} resources: diff --git a/helmfile/apps/migrations-post/values.yaml.gotmpl b/helmfile/apps/migrations-post/values.yaml.gotmpl index 55ad6a3a..383ebf49 100644 --- a/helmfile/apps/migrations-post/values.yaml.gotmpl +++ b/helmfile/apps/migrations-post/values.yaml.gotmpl @@ -3,6 +3,8 @@ SPDX-License-Identifier: Apache-2.0 */}} --- +podAnnotations: {} + migrations: stage: "POST" ... diff --git a/helmfile/apps/migrations-pre/values.yaml.gotmpl b/helmfile/apps/migrations-pre/values.yaml.gotmpl index b3247db7..7a081942 100644 --- a/helmfile/apps/migrations-pre/values.yaml.gotmpl +++ b/helmfile/apps/migrations-pre/values.yaml.gotmpl @@ -3,6 +3,8 @@ SPDX-License-Identifier: Apache-2.0 */}} --- +podAnnotations: {} + migrations: stage: "PRE" ... diff --git a/helmfile/apps/nextcloud/values-nextcloud.yaml.gotmpl b/helmfile/apps/nextcloud/values-nextcloud.yaml.gotmpl index 6037be5e..c4f18d2e 100644 --- a/helmfile/apps/nextcloud/values-nextcloud.yaml.gotmpl +++ b/helmfile/apps/nextcloud/values-nextcloud.yaml.gotmpl @@ -32,6 +32,7 @@ exporter: repository: "{{ .Values.images.nextcloudExporter.repository }}" imagePullPolicy: {{ .Values.global.imagePullPolicy | quote }} tag: {{ .Values.images.nextcloudExporter.tag | quote }} + podAnnotations: {} prometheus: serviceMonitor: enabled: {{ .Values.monitoring.prometheus.serviceMonitors.enabled }} @@ -91,6 +92,7 @@ php: repository: "{{ .Values.images.nextcloudPHP.repository }}" imagePullPolicy: {{ .Values.global.imagePullPolicy | quote }} tag: {{ .Values.images.nextcloudPHP.tag | quote }} + podAnnotations: {} prometheus: serviceMonitor: enabled: {{ .Values.monitoring.prometheus.serviceMonitors.enabled }} @@ -142,6 +144,7 @@ apache2: repository: {{ .Values.images.nextcloudApache2.repository | quote }} imagePullPolicy: {{ .Values.global.imagePullPolicy | quote }} tag: {{ .Values.images.nextcloudApache2.tag | quote }} + podAnnotations: {} replicaCount: {{ .Values.replicas.nextcloudApache2 }} resources: {{ .Values.resources.nextcloudApache2 | toYaml | nindent 4 }} diff --git a/helmfile/apps/nubus/values-nubus.yaml.gotmpl b/helmfile/apps/nubus/values-nubus.yaml.gotmpl index 600efaac..3c495b48 100644 --- a/helmfile/apps/nubus/values-nubus.yaml.gotmpl +++ b/helmfile/apps/nubus/values-nubus.yaml.gotmpl @@ -57,6 +57,7 @@ ingress: certManager: enabled: false tls: + enabled: {{ .Values.ingress.tls.enabled }} secretName: {{ .Values.ingress.tls.secretName | quote }} # Nubus bundled services @@ -105,6 +106,7 @@ nubusGuardian: certManager: enabled: false tls: + enabled: {{ .Values.ingress.tls.enabled }} secretName: {{ .Values.ingress.tls.secretName | quote }} postgresql: connection: @@ -130,8 +132,14 @@ nubusNotificationsApi: certManager: enabled: false tls: + enabled: {{ .Values.ingress.tls.enabled }} secretName: {{ .Values.ingress.tls.secretName | quote }} +nubusPortalFrontend: + ingress: + tls: + enabled: {{ .Values.ingress.tls.enabled }} + secretName: {{ .Values.ingress.tls.secretName }} nubusKeycloakExtensions: keycloak: @@ -158,6 +166,7 @@ nubusKeycloakExtensions: certManager: enabled: false tls: + enabled: {{ .Values.ingress.tls.enabled }} secretName: {{ .Values.ingress.tls.secretName | quote }} @@ -220,6 +229,7 @@ nubusPortalServer: certManager: enabled: false tls: + enabled: {{ .Values.ingress.tls.enabled }} secretName: {{ .Values.ingress.tls.secretName | quote }} nubusUdmRestApi: @@ -227,6 +237,7 @@ nubusUdmRestApi: certManager: enabled: false tls: + enabled: {{ .Values.ingress.tls.enabled }} secretName: {{ .Values.ingress.tls.secretName | quote }} # NOTE: disabled until the next update. @@ -241,6 +252,9 @@ nubusSelfServiceListener: # Nubus services nubusStackDataUms: + additionalAnnotations: + argocd.argoproj.io/hook: "Sync" + argocd.argoproj.io/hook-delete-policy: "HookSucceeded" stackDataContext: umcPostgresqlHostname: {{ .Values.databases.umsSelfservice.host | quote }} umcPostgresqlUsername: {{ .Values.databases.umsSelfservice.username | quote }} @@ -294,12 +308,15 @@ nubusStackDataUms: # TODO: Remove values when upstreaming fixes nubusStackDataSwp: + additionalAnnotations: + argocd.argoproj.io/hook: "Sync" + argocd.argoproj.io/hook-delete-policy: "HookSucceeded" stackDataSwp: - {{- if .Values.functional.admin.portal.deploymentInformation.enabled }} systemInformation: + {{- if .Values.functional.admin.portal.deploymentInformation.enabled }} deployDate: "Deployed: {{ now | date "2006-01-02T15:04:05-0700" }}" - releaseVersion: "Release: {{ .Values.global.systemInformation.releaseVersion }}" {{- end }} + releaseVersion: "Release: {{ .Values.global.systemInformation.releaseVersion }}" stackDataContext: ldapSearchUsers: {{- range $username, $password := .Values.secrets.nubus.ldapSearch }} @@ -350,6 +367,7 @@ nubusUmcServer: certManager: enabled: false tls: + enabled: {{ .Values.ingress.tls.enabled }} secretName: {{ .Values.ingress.tls.secretName | quote }} nubusUmcGateway: @@ -359,9 +377,12 @@ nubusUmcGateway: certManager: enabled: false tls: + enabled: {{ .Values.ingress.tls.enabled }} secretName: {{ .Values.ingress.tls.secretName | quote }} nubusKeycloakBootstrap: + additionalAnnotations: + argocd.argoproj.io/hook: "Sync" keycloak: auth: username: "kcadmin" diff --git a/helmfile/apps/open-xchange/values-dovecot.yaml.gotmpl b/helmfile/apps/open-xchange/values-dovecot.yaml.gotmpl index 2f516092..fc84e439 100644 --- a/helmfile/apps/open-xchange/values-dovecot.yaml.gotmpl +++ b/helmfile/apps/open-xchange/values-dovecot.yaml.gotmpl @@ -68,6 +68,9 @@ containerSecurityContext: seLinuxOptions: {{ .Values.seLinuxOptions.dovecot | toYaml | nindent 4 }} + +podAnnotations: {} + podSecurityContext: enabled: true fsGroup: 1000 diff --git a/helmfile/apps/open-xchange/values-openxchange-bootstrap.yaml.gotmpl b/helmfile/apps/open-xchange/values-openxchange-bootstrap.yaml.gotmpl index 01f6ac11..3ffc56fa 100644 --- a/helmfile/apps/open-xchange/values-openxchange-bootstrap.yaml.gotmpl +++ b/helmfile/apps/open-xchange/values-openxchange-bootstrap.yaml.gotmpl @@ -18,4 +18,8 @@ imagePullSecrets: {{- range .Values.global.imagePullSecrets }} - name: {{ . | quote }} {{- end }} + +podAnnotations: + argocd.argoproj.io/hook: "Sync" + argocd.argoproj.io/hook-delete-policy: "HookSucceeded" ... diff --git a/helmfile/apps/open-xchange/values-openxchange.yaml.gotmpl b/helmfile/apps/open-xchange/values-openxchange.yaml.gotmpl index a163cb1c..505fef83 100644 --- a/helmfile/apps/open-xchange/values-openxchange.yaml.gotmpl +++ b/helmfile/apps/open-xchange/values-openxchange.yaml.gotmpl @@ -27,6 +27,7 @@ nextcloud-integration-ui: {{- range .Values.global.imagePullSecrets }} - name: {{ . | quote }} {{- end }} + podAnnotations: {} replicaCount: {{ .Values.replicas.openxchangeNextcloudIntegrationUI }} resources: {{ .Values.resources.openxchangeNextcloudIntegrationUI | toYaml | nindent 4 }} @@ -51,12 +52,14 @@ public-sector-ui: registry: {{ coalesce .Values.repositories.image.registryOpencodeDe .Values.global.imageRegistry .Values.images.openxchangePublicSectorUI.registry | quote }} repository: {{ .Values.images.openxchangePublicSectorUI.repository | quote }} tag: {{ .Values.images.openxchangePublicSectorUI.tag | quote }} + pullPolicy: {{ .Values.global.imagePullPolicy | quote }} imagePullSecrets: {{- range .Values.global.imagePullSecrets }} - name: {{ . | quote }} {{- end }} pullPolicy: {{ .Values.global.imagePullPolicy | quote }} replicaCount: {{ .Values.replicas.openxchangePublicSectorUI }} + podAnnotations: {} resources: {{ .Values.resources.openxchangePublicSectorUI | toYaml | nindent 4 }} securityContext: @@ -119,6 +122,7 @@ appsuite: jolokiaLogin: "jolokia" jolokiaPassword: {{ .Values.secrets.oxAppsuite.jolokiaPassword | quote }} hostname: "{{ .Values.global.hosts.openxchange }}.{{ .Values.global.domain }}" + podAnnotations: {} serviceAccount: create: true features: @@ -138,6 +142,7 @@ appsuite: tag: {{ .Values.images.openxchangeGotenberg.tag | quote }} pullPolicy: {{ .Values.global.imagePullPolicy | quote }} replicaCount: {{ .Values.replicas.openxchangeGotenberg }} + podAnnotations: {} resources: {{ .Values.resources.openxchangeGotenberg | toYaml | nindent 8 }} securityContext: @@ -376,6 +381,7 @@ appsuite: tag: {{ .Values.images.openxchangeCoreUI.tag | quote }} pullPolicy: {{ .Values.global.imagePullPolicy | quote }} replicaCount: {{ .Values.replicas.openxchangeCoreUI }} + podAnnotations: {} resources: {{ .Values.resources.openxchangeCoreUI | toYaml | nindent 6 }} securityContext: @@ -409,6 +415,7 @@ appsuite: tag: {{ .Values.images.openxchangeCoreUIMiddleware.tag | quote }} pullPolicy: {{ .Values.global.imagePullPolicy | quote }} overrides: {} + podAnnotations: {} redis: *redisConfiguration replicaCount: {{ .Values.replicas.openxchangeCoreUIMiddleware }} resources: @@ -447,6 +454,7 @@ appsuite: registry: {{ coalesce .Values.repositories.image.registryOpencodeDe .Values.global.imageRegistry .Values.images.openxchangeDocumentConverter.registry | quote }} repository: {{ .Values.images.openxchangeDocumentConverter.repository | quote }} tag: {{ .Values.images.openxchangeDocumentConverter.tag | quote }} + podAnnotations: {} redis: *redisConfiguration replicaCount: {{ .Values.replicas.openxchangeCoreDocumentConverter }} resources: @@ -494,6 +502,7 @@ appsuite: repository: {{ .Values.images.openxchangeCoreGuidedtours.repository | quote }} tag: {{ .Values.images.openxchangeCoreGuidedtours.tag | quote }} pullPolicy: {{ .Values.global.imagePullPolicy | quote }} + podAnnotations: {} replicaCount: {{ .Values.replicas.openxchangeCoreGuidedtours }} resources: {{- .Values.resources.openxchangeCoreGuidedtours | toYaml | nindent 6 }} @@ -528,6 +537,7 @@ appsuite: endpoint: "." accessKey: "." secretKey: "." + podAnnotations: {} redis: *redisConfiguration replicaCount: {{ .Values.replicas.openxchangeCoreImageConverter }} resources: @@ -560,6 +570,7 @@ appsuite: repository: {{ .Values.images.openxchangeGuardUI.repository | quote }} tag: {{ .Values.images.openxchangeGuardUI.tag | quote }} pullPolicy: {{ .Values.global.imagePullPolicy | quote }} + podAnnotations: {} replicaCount: {{ .Values.replicas.openxchangeGuardUI }} resources: {{- .Values.resources.openxchangeGuardUI | toYaml | nindent 6 }} @@ -591,6 +602,7 @@ appsuite: {{- range .Values.global.imagePullSecrets }} - name: {{ . | quote }} {{- end }} + podAnnotations: {} replicaCount: {{ .Values.replicas.openxchangeCoreUserGuide }} resources: {{- .Values.resources.openxchangeCoreUserGuide | toYaml | nindent 6 }} diff --git a/helmfile/apps/openproject-bootstrap/values.yaml.gotmpl b/helmfile/apps/openproject-bootstrap/values.yaml.gotmpl index 8efeef23..ce67a269 100644 --- a/helmfile/apps/openproject-bootstrap/values.yaml.gotmpl +++ b/helmfile/apps/openproject-bootstrap/values.yaml.gotmpl @@ -51,6 +51,8 @@ image: job: enabled: true +podAnnotations: {} + podSecurityContext: enabled: true fsGroup: 1000 diff --git a/helmfile/apps/openproject/values.yaml.gotmpl b/helmfile/apps/openproject/values.yaml.gotmpl index 72a19ec5..7db87f1d 100644 --- a/helmfile/apps/openproject/values.yaml.gotmpl +++ b/helmfile/apps/openproject/values.yaml.gotmpl @@ -97,6 +97,8 @@ memcached: persistence: enabled: false +podAnnotations: {} + postgresql: bundled: false auth: diff --git a/helmfile/apps/provisioning/values-oxconnector.yaml.gotmpl b/helmfile/apps/provisioning/values-oxconnector.yaml.gotmpl index 49d27e38..3f348cab 100644 --- a/helmfile/apps/provisioning/values-oxconnector.yaml.gotmpl +++ b/helmfile/apps/provisioning/values-oxconnector.yaml.gotmpl @@ -44,6 +44,8 @@ resources: persistence: storageClass: {{ .Values.persistence.storageClassNames.RWO | quote }} +podAnnotations: {} + ## Container deployment probes probes: liveness: diff --git a/helmfile/apps/services/values-clamav-distributed.yaml.gotmpl b/helmfile/apps/services/values-clamav-distributed.yaml.gotmpl index 9c7f88c6..ed09d02d 100644 --- a/helmfile/apps/services/values-clamav-distributed.yaml.gotmpl +++ b/helmfile/apps/services/values-clamav-distributed.yaml.gotmpl @@ -25,6 +25,7 @@ clamd: repository: {{ .Values.images.clamd.repository | quote }} tag: {{ .Values.images.clamd.tag | quote }} imagePullPolicy: {{ .Values.global.imagePullPolicy | quote }} + podAnnotations: {} podSecurityContext: enabled: true fsGroup: 101 @@ -69,6 +70,7 @@ freshclam: repository: {{ .Values.images.freshclam.repository | quote }} tag: {{ .Values.images.freshclam.tag | quote }} imagePullPolicy: {{ .Values.global.imagePullPolicy | quote }} + podAnnotations: {} podSecurityContext: enabled: true fsGroup: 101 @@ -110,6 +112,7 @@ icap: repository: {{ .Values.images.icap.repository | quote }} tag: {{ .Values.images.icap.tag | quote }} imagePullPolicy: {{ .Values.global.imagePullPolicy | quote }} + podAnnotations: {} podSecurityContext: enabled: true fsGroup: 101 @@ -139,6 +142,7 @@ milter: repository: {{ .Values.images.milter.repository | quote }} tag: {{ .Values.images.milter.tag | quote }} imagePullPolicy: {{ .Values.global.imagePullPolicy | quote }} + podAnnotations: {} podSecurityContext: enabled: true fsGroup: 101 diff --git a/helmfile/apps/services/values-clamav-simple.yaml.gotmpl b/helmfile/apps/services/values-clamav-simple.yaml.gotmpl index edd9ada1..294b243e 100644 --- a/helmfile/apps/services/values-clamav-simple.yaml.gotmpl +++ b/helmfile/apps/services/values-clamav-simple.yaml.gotmpl @@ -40,6 +40,8 @@ persistence: storageClass: {{ .Values.persistence.storageClassNames.RWO | quote }} size: {{ .Values.persistence.size.clamav | quote }} +podAnnotations: {} + podSecurityContext: enabled: true fsGroup: 101 diff --git a/helmfile/apps/services/values-mariadb.yaml.gotmpl b/helmfile/apps/services/values-mariadb.yaml.gotmpl index 8071d541..93474aa7 100644 --- a/helmfile/apps/services/values-mariadb.yaml.gotmpl +++ b/helmfile/apps/services/values-mariadb.yaml.gotmpl @@ -73,6 +73,8 @@ persistence: storageClass: {{ .Values.persistence.storageClassNames.RWO | quote }} size: {{ .Values.persistence.size.mariadb | quote }} +podAnnotations: {} + podSecurityContext: enabled: true fsGroup: 1001 diff --git a/helmfile/apps/services/values-memcached.yaml.gotmpl b/helmfile/apps/services/values-memcached.yaml.gotmpl index af5f4703..9a70fa67 100644 --- a/helmfile/apps/services/values-memcached.yaml.gotmpl +++ b/helmfile/apps/services/values-memcached.yaml.gotmpl @@ -32,6 +32,8 @@ image: tag: {{ .Values.images.memcached.tag | quote }} pullPolicy: {{ .Values.global.imagePullPolicy | quote }} +podAnnotations: {} + replicaCount: {{ .Values.replicas.memcached }} resources: diff --git a/helmfile/apps/services/values-minio.yaml.gotmpl b/helmfile/apps/services/values-minio.yaml.gotmpl index 582f55b9..b06e4eaf 100644 --- a/helmfile/apps/services/values-minio.yaml.gotmpl +++ b/helmfile/apps/services/values-minio.yaml.gotmpl @@ -182,6 +182,8 @@ provisioning: resources: {{ .Values.resources.minio | toYaml | nindent 4 }} +podAnnotations: {} + readinessProbe: enabled: true initialDelaySeconds: 5 diff --git a/helmfile/apps/services/values-postfix.yaml.gotmpl b/helmfile/apps/services/values-postfix.yaml.gotmpl index 94a43b0a..0d5328db 100644 --- a/helmfile/apps/services/values-postfix.yaml.gotmpl +++ b/helmfile/apps/services/values-postfix.yaml.gotmpl @@ -76,6 +76,8 @@ postfix: virtualMailboxDomains: {{ .Values.global.mailDomain | default .Values.global.domain | quote }} virtualTransport: "lmtps:dovecot:24" +podAnnotations: {} + replicaCount: {{ .Values.replicas.postfix }} resources: diff --git a/helmfile/apps/services/values-postgresql.yaml.gotmpl b/helmfile/apps/services/values-postgresql.yaml.gotmpl index 75af0973..f36c7230 100644 --- a/helmfile/apps/services/values-postgresql.yaml.gotmpl +++ b/helmfile/apps/services/values-postgresql.yaml.gotmpl @@ -90,6 +90,8 @@ persistence: storageClass: {{ .Values.persistence.storageClassNames.RWO | quote }} size: {{ .Values.persistence.size.postgresql | quote }} +podAnnotations: {} + postgres: password: {{ .Values.secrets.postgresql.postgresUser | quote }} diff --git a/helmfile/apps/services/values-redis.yaml.gotmpl b/helmfile/apps/services/values-redis.yaml.gotmpl index e93dda9e..383799a5 100644 --- a/helmfile/apps/services/values-redis.yaml.gotmpl +++ b/helmfile/apps/services/values-redis.yaml.gotmpl @@ -38,6 +38,7 @@ master: count: {{ .Values.replicas.redis }} persistence: size: {{ .Values.persistence.size.redis | quote }} + podAnnotations: {} resources: {{ .Values.resources.redis | toYaml | nindent 4 }} diff --git a/helmfile/environments/default/charts.yaml b/helmfile/environments/default/charts.yaml index 4eac6a0d..a6dc59ce 100644 --- a/helmfile/environments/default/charts.yaml +++ b/helmfile/environments/default/charts.yaml @@ -296,7 +296,7 @@ charts: registry: "registry.opencode.de" repository: "bmi/opendesk/components/platform-development/charts/opendesk-openproject-bootstrap" name: "opendesk-openproject-bootstrap" - version: "1.3.0" + version: "2.0.0" verify: true openXchangeAppSuite: # providerCategory: "Supplier" @@ -318,7 +318,7 @@ charts: registry: "registry.opencode.de" repository: "bmi/opendesk/components/platform-development/charts/opendesk-open-xchange-bootstrap" name: "opendesk-open-xchange-bootstrap" - version: "1.3.4" + version: "2.0.0" verify: true otterize: # providerCategory: "Platform"