mirror of
https://gitlab.opencode.de/bmi/opendesk/deployment/opendesk.git
synced 2025-12-08 08:21:40 +01:00
Compare commits
1 Commits
jtorres/1.
...
data_stora
| Author | SHA1 | Date | |
|---|---|---|---|
|
fc9db55762 |
@@ -1,57 +1,81 @@
|
|||||||
# 🪲 Bugfix
|
## 📌 Summary
|
||||||
|
|
||||||
*Expected MR Title and git commit message*
|
Brief description of the issue and what this MR resolves.
|
||||||
*`fix(<app-name>): <Short description of what has been fixed>`*
|
|
||||||
|
|
||||||
|
> Example:
|
||||||
|
> Fixes a bug where users were unable to save their profile due to a missing field validation.
|
||||||
|
|
||||||
|
---
|
||||||
|
|
||||||
## ✅ Changes
|
## ✅ Changes
|
||||||
|
|
||||||
Explain for the reviewer how the change addresses the issue, providing some insights on the underlaying cause of the bug.
|
Explain for the reviewer how the change addresses the issue:
|
||||||
|
|
||||||
- ...
|
- Fixed null check on user input
|
||||||
|
- Added unit test for edge case
|
||||||
|
- Updated error handling in the `ProfileService`
|
||||||
|
|
||||||
## 🧪 How to reproduce & test
|
---
|
||||||
|
|
||||||
Provida a link to the issue or document the required details below.
|
## 🧪 Analysis
|
||||||
In case it is a GitLab issue, reference it at the end of the commit message in square brackets, like `[#123]`
|
|
||||||
|
|
||||||
### Before the Fix
|
Explain the **underlying cause** of the bug:
|
||||||
|
|
||||||
1. ...
|
- What was the unexpected behavior?
|
||||||
|
- Why did it happen?
|
||||||
|
- Where in the code or logic did it occur?
|
||||||
|
|
||||||
### After the Fix
|
---
|
||||||
|
|
||||||
Provide steps for QA or reviewers to test the fix and mention anything reviewers should be aware of:
|
## 📚 Related Issue(s)
|
||||||
|
|
||||||
1. ...
|
- Should be listed as part of the commit message.
|
||||||
|
- Fixes #[issue-number]
|
||||||
|
- Related to #[optional additional issues]
|
||||||
|
|
||||||
## 🔄 Requirements for migrations
|
## 🧪 How to Reproduce & Test
|
||||||
|
|
||||||
- [ ] Describe manual steps required to update existing deployments. This especially applies if this MR introduces breaking changes:
|
Link to issue or document the required details below.
|
||||||
- [ ] Any other considerations in context of the update:
|
|
||||||
|
|
||||||
# Checklist / Sign-offs
|
### Before the Fix:
|
||||||
|
|
||||||
## 🏷️ Labels
|
1. Go to `/profile/edit`
|
||||||
|
2. Leave the "email" field empty
|
||||||
|
3. Click "Save"
|
||||||
|
4. Observe 500 server error
|
||||||
|
|
||||||
Set labels:
|
### After the Fix:
|
||||||
|
|
||||||
```
|
1. Same steps as above
|
||||||
/label ~"MR-Type::Bugfix"
|
2. Now see appropriate validation message
|
||||||
/label ~"PO::👀"
|
3. No server error occurs
|
||||||
/label ~"Tech Lead::👀"
|
|
||||||
/label ~"QA::👀"
|
|
||||||
/label ~"Testautomation::👀"
|
|
||||||
```
|
|
||||||
|
|
||||||
# 👷 Developer Checklist
|
---
|
||||||
|
|
||||||
- Does the MR include new bits and pieces (e.g. new secrets) that require documentation?
|
## Checklist / Sign-offs
|
||||||
- [ ] No.
|
|
||||||
- [ ] Yes, and the documentation was updated accordingly.
|
|
||||||
|
|
||||||
Document in an extra comment and link to that comment:
|
### 💿 CI/CD
|
||||||
- [ ] How you verified the fix is working as expected, also in upgrade sceanrios.
|
|
||||||
- [ ] Any regression testing done.
|
- [ ] CI pipeline passes for all jobs
|
||||||
|
- [ ] Linting and formatting checks pass
|
||||||
|
- [ ] Review app (if used) reflects fix correctly
|
||||||
|
|
||||||
|
### 🖥 QA & Product
|
||||||
|
|
||||||
|
Set related labels on the MR for
|
||||||
|
|
||||||
|
- [ ] `PO::👀`
|
||||||
|
- [ ] `Tech Lead::👀`
|
||||||
|
- [ ] `Testautomation::👀`
|
||||||
|
- [ ] `QA::👀`
|
||||||
|
|
||||||
|
---
|
||||||
|
|
||||||
|
## 👷 Developer Checklist
|
||||||
|
|
||||||
|
- [ ] Code builds and passes linting
|
||||||
|
- [ ] Tests added or updated
|
||||||
|
- [ ] Verified fix locally
|
||||||
|
- [ ] Regression testing done for related functionality
|
||||||
|
- [ ] No new warnings or errors in logs
|
||||||
|
|
||||||
--> Link to comment:
|
|
||||||
|
|||||||
@@ -1,8 +1 @@
|
|||||||
Thank you for your contribution!
|
Please select one of the templates, in case your contribution contains more than a **simple** typo fix.
|
||||||
|
|
||||||
Please follow these simple guidelines to continue:
|
|
||||||
|
|
||||||
- Create MRs early and use the "draft" state to show that this MR isn't ready for review and merge.
|
|
||||||
- Flag the MR "ready" as soon as it can be reviewed and QA'd.
|
|
||||||
- Always assign the MR to yourself and set somebody from the development team as reviewer. If you do not know whom to chose leave the reviewer empty.
|
|
||||||
- Select one of the templates in case your contribution contains more than simple documentation updates and follow the templates instructions.
|
|
||||||
|
|||||||
@@ -1,47 +1,74 @@
|
|||||||
# ⬆️ Feature
|
## 📌 Summary
|
||||||
|
|
||||||
*Expected MR Title and git commit message*
|
Briefly describe what this feature MR does and why it’s needed.
|
||||||
*`feat(<app-name>): <Short description of the new feature>`*
|
|
||||||
|
> Example:
|
||||||
|
> Adds user profile editing capabilities to the dashboard. This enables users to update their personal information without admin intervention.*
|
||||||
|
|
||||||
|
---
|
||||||
|
|
||||||
## ✅ Changes
|
## ✅ Changes
|
||||||
|
|
||||||
List the key changes made in this MR:
|
List the key changes made in this MR:
|
||||||
|
|
||||||
- ...
|
- Added new route /profile/edit
|
||||||
|
- Created `ProfileEditForm` component
|
||||||
|
- Integrated with backend API for user updates
|
||||||
|
- Added unit tests and basic form validation
|
||||||
|
|
||||||
|
---
|
||||||
|
|
||||||
## 🧪 Tests
|
## 🧪 Tests
|
||||||
|
|
||||||
Provide steps for QA or reviewers to test the feature and mention anything reviewers should be aware of:
|
Provide steps for QA or reviewers to test the feature.
|
||||||
|
|
||||||
- ...
|
1. Login as any user
|
||||||
|
2. Navigate to `/profile/edit`
|
||||||
|
3. Update profile info and save
|
||||||
|
4. Verify changes are persisted and reflected in the UI
|
||||||
|
|
||||||
## 🔄 Requirements for migrations
|
---
|
||||||
|
|
||||||
- [ ] Describe manual steps required to update existing deployments. This especially applies if this MR introduces breaking changes:
|
## 📚 Related Issue(s)
|
||||||
- [ ] Any other considerations in context of the update:
|
|
||||||
|
|
||||||
# Checklist / Sign-offs
|
- Closes #[issue number]
|
||||||
|
- Depends on #[merge request or issue, if any]
|
||||||
|
|
||||||
## 🏷️ Labels
|
---
|
||||||
|
|
||||||
Set labels:
|
## 🕵️ Notes for Reviewer
|
||||||
|
|
||||||
```
|
Mention anything reviewers should be aware of:
|
||||||
/label ~"MR-Type::Feature"
|
|
||||||
/label ~"PO::👀"
|
|
||||||
/label ~"Tech Lead::👀"
|
|
||||||
/label ~"QA::👀"
|
|
||||||
/label ~"Testautomation::👀"
|
|
||||||
```
|
|
||||||
|
|
||||||
# 👷 Developer Checklist
|
- Known issues or limitations
|
||||||
|
- Code sections that may need special attention
|
||||||
|
- Design considerations or edge cases handled
|
||||||
|
|
||||||
- Does the MR include new bits and pieces (e.g. new secrets) that require documentation?
|
---
|
||||||
- [ ] No.
|
|
||||||
- [ ] Yes, and the documentation was updated accordingly.
|
|
||||||
|
|
||||||
Document in an extra comment and link to that comment:
|
## Checklist / Sign-offs
|
||||||
- [ ] How you verified the feature is working as expected, also in upgrade sceanrios.
|
|
||||||
- [ ] Any regression testing done.
|
|
||||||
|
|
||||||
--> Link to comment:
|
### 💿 CI/CD
|
||||||
|
|
||||||
|
- [ ] CI pipeline passes for all jobs
|
||||||
|
- [ ] Linting and formatting checks pass
|
||||||
|
- [ ] Review app (if used) reflects fix correctly
|
||||||
|
|
||||||
|
### 🖥 QA & Product
|
||||||
|
|
||||||
|
Set related labels on the MR for
|
||||||
|
|
||||||
|
- [ ] `PO::👀`
|
||||||
|
- [ ] `Tech Lead::👀`
|
||||||
|
- [ ] `Testautomation::👀`
|
||||||
|
- [ ] `QA::👀`
|
||||||
|
|
||||||
|
---
|
||||||
|
|
||||||
|
## 👷 Developer Checklist
|
||||||
|
|
||||||
|
- [ ] Code builds and passes linting
|
||||||
|
- [ ] Tests added or updated
|
||||||
|
- [ ] Verified fix locally
|
||||||
|
- [ ] Regression testing done for related functionality
|
||||||
|
- [ ] No new warnings or errors in logs
|
||||||
|
|||||||
@@ -1,41 +1,33 @@
|
|||||||
# 🎉 Other
|
## 📌 Summary
|
||||||
|
|
||||||
*Expected MR Title and git commit message*
|
Provide a concise summary of **what** this MR does and **why**.
|
||||||
*`fix(<component>): <Short description of what has been changed>`*
|
|
||||||
|
> Example:
|
||||||
|
> This MR updates the CI configuration to cache NPM dependencies and reduce pipeline execution time.
|
||||||
|
|
||||||
|
---
|
||||||
|
|
||||||
## ✅ Changes
|
## ✅ Changes
|
||||||
|
|
||||||
Explain for the reviewer and QA the reason for the MR and what changes are included.
|
List the key updates made:
|
||||||
|
|
||||||
|
- ...
|
||||||
- ...
|
- ...
|
||||||
|
|
||||||
## 🔄 Requirements for migrations
|
---
|
||||||
|
|
||||||
- [ ] Describe manual steps required to update existing deployments. This especially applies if this MR introduces breaking changes:
|
## 🧪 Tests (if applicable)
|
||||||
- [ ] Any other considerations in context of the update:
|
|
||||||
|
|
||||||
# Checklist / Sign-offs
|
Explain how reviewers or CI can verify the change works as intended.
|
||||||
|
|
||||||
## 🏷️ Labels
|
> Example:
|
||||||
|
>- For CI: Check job `build:frontend` completes in <3 mins.
|
||||||
|
>- For docs: View rendered markdown locally or in GitLab.
|
||||||
|
|
||||||
Set labels:
|
---
|
||||||
|
|
||||||
```
|
## 🧾 Checks
|
||||||
/label ~"MR-Type::Other"
|
|
||||||
/label ~"PO::👀"
|
|
||||||
/label ~"Tech Lead::👀"
|
|
||||||
/label ~"QA::👀"
|
|
||||||
/label ~"Testautomation::👀"
|
|
||||||
```
|
|
||||||
|
|
||||||
# 👷 Developer Checklist
|
- [ ] CI passes
|
||||||
|
- [ ] No functional changes
|
||||||
- Does the MR include new bits and pieces (e.g. new secrets) that require documentation?
|
- [ ] Verified (if needed)
|
||||||
- [ ] No.
|
|
||||||
- [ ] Yes, and the documentation was updated accordingly.
|
|
||||||
|
|
||||||
Document in an extra comment and link to that comment:
|
|
||||||
- [ ] How you verified the change is working as expected, also in upgrade sceanrios.
|
|
||||||
- [ ] Any regression testing done.
|
|
||||||
|
|
||||||
--> Link to comment:
|
|
||||||
|
|||||||
@@ -1,41 +1,49 @@
|
|||||||
# ⬆️ Application Update
|
## ⬆️ Application Update
|
||||||
|
|
||||||
*Expected MR Title and git commit message*
|
Expected MR Title and git commit message:
|
||||||
*`feat/fix(<app-name>): Update from <old-version> to <new-version>`*
|
|
||||||
|
|
||||||
## 📋 Changelog/Release Notes
|
`feat/fix(<app-name>): Update from <old-version> to <new-version>`
|
||||||
|
|
||||||
- [ ] [README.md](../../README.md) component table updated including the link to the related release notes
|
### 📋 Changelog/Release Notes
|
||||||
- [ ] Provide significant improvements you'd like to see in the openDesk release notes. If you have a lot of details to provide or someone else is providing the details, please use a comment on the MR and link the comment in here.
|
|
||||||
|
|
||||||
## 🔄 Requirements for migrations
|
- [ ] Upstream release notes: `[link]`
|
||||||
|
- [ ] No breaking changes (or listed below)
|
||||||
|
- [ ] Relevant changes communicated (if needed)
|
||||||
|
|
||||||
- [ ] Minimum version of the application required in existing depoyments to update/upgrade:
|
---
|
||||||
- [ ] Describe manual steps required to update existing deployments. This especially applies if the upgrade includes any breaking changes:
|
|
||||||
- [ ] Any other considerations in context of the update:
|
|
||||||
|
|
||||||
# Checklist / Sign-offs
|
### 🔄 Migrations to Run (if any)
|
||||||
|
|
||||||
## 🏷️ Labels
|
Describe any migrations that need to be performed when upgrading to this application version.
|
||||||
|
|
||||||
Set labels:
|
- [ ] Database migrations
|
||||||
|
- [ ] Configuration changes
|
||||||
|
- [ ] Cache clears / rebuilds
|
||||||
|
- [ ] Other: _describe_
|
||||||
|
|
||||||
```
|
## Checklist / Sign-offs
|
||||||
/label ~"MR-Type::AppUpdate"
|
|
||||||
/label ~"PO::👀"
|
### 💿 CI/CD
|
||||||
/label ~"Tech Lead::👀"
|
|
||||||
/label ~"QA::👀"
|
- [ ] CI pipeline passes for all jobs
|
||||||
/label ~"Testautomation::👀"
|
- [ ] Linting and formatting checks pass
|
||||||
```
|
- [ ] Review app (if used) reflects fix correctly
|
||||||
|
|
||||||
|
### 🖥 QA & Product
|
||||||
|
|
||||||
|
Set related labels on the MR for
|
||||||
|
|
||||||
|
- [ ] `PO::👀`
|
||||||
|
- [ ] `Tech Lead::👀`
|
||||||
|
- [ ] `Testautomation::👀`
|
||||||
|
- [ ] `QA::👀`
|
||||||
|
|
||||||
|
---
|
||||||
|
|
||||||
## 👷 Developer Checklist
|
## 👷 Developer Checklist
|
||||||
|
|
||||||
- Does the MR include new bits and pieces (e.g. new secrets) that require documentation?
|
- [ ] Code builds and passes linting
|
||||||
- [ ] No.
|
- [ ] Tests added or updated
|
||||||
- [ ] Yes, and the documentation was updated accordingly.
|
- [ ] Verified fix locally
|
||||||
|
- [ ] Regression testing done for related functionality
|
||||||
Document in an extra comment and link to that comment:
|
- [ ] No new warnings or errors in logs
|
||||||
- [ ] How you verified the update is working as expected, also in upgrade sceanrios.
|
|
||||||
- [ ] Any regression testing done.
|
|
||||||
|
|
||||||
--> Link to comment:
|
|
||||||
|
|||||||
@@ -146,7 +146,7 @@ OPENDESK_ENTERPRISE=true
|
|||||||
|
|
||||||
With openDesk EE you get access to the related artifact registry owned by ZenDiS.
|
With openDesk EE you get access to the related artifact registry owned by ZenDiS.
|
||||||
|
|
||||||
Three steps are required to access the registry - for step 1 and 2 you can set some variables. Below, you can define `<your_name_for_the_secret>` freely, like `enterprise-secret`, as long as it consistent in step 1 and 3.
|
Three steps are required to access the registry - for step #1 and #2 you can set some variables. Below, you can define `<your_name_for_the_secret>` freely, like `enterprise-secret`, as long as it consistent in step #1 and #3.
|
||||||
|
|
||||||
```shell
|
```shell
|
||||||
NAMESPACE=<your_namespace>
|
NAMESPACE=<your_namespace>
|
||||||
|
|||||||
@@ -66,58 +66,54 @@ XWiki,PersistentVolume,1
|
|||||||
|
|
||||||
# Details
|
# Details
|
||||||
|
|
||||||
| Application | Data Storage | Backup | Content | (Default) Identifier | Details |
|
| Application | Data Storage | Backup | Content | Identifier | Details |
|
||||||
|----------------------|--------------|----------|-----------------------------------------------------------------------------------|------------------------------------------------|-----------------------------------------------------------------------------------------------------------|
|
|----------------------|--------------|----------|--------------------------------------------------------------------------------------------|------------------------------------------------|--------------------------------------------------------------------------------------------------------------------------|
|
||||||
| **ClamAV** | PVC | No | ClamAV Database | `clamav-database-clamav-simple-0` | `/var/lib/clamav` |
|
| **ClamAV** | PVC | No | ClamAV Database | `clamav-database-clamav-simple-0` | `/var/lib/clamav` |
|
||||||
| **Dovecot** | PVC | Yes | openDesk CE only: User mail directories | `dovecot` | `/srv/mail` |
|
| **Dovecot** | PVC | Yes | User mail directories (Only in Community Edition) | `dovecot` | `/srv/mail` |
|
||||||
| | S3 | Yes | openDesk EE only: User mail | `dovecot` | `dovecot` |
|
| | S3 | Yes | User mail directories (Only in Enterprise Edition)
|
||||||
| | Cassandra | Yes | openDesk EE only: Metadata and ACLs | `dovecot_dictmap`, `dovecot_acl` |
|
| **Element/Synapse** | PostgreSQL | Yes | Application's main database | `matrix` | |
|
||||||
| **Element/Synapse** | PostgreSQL | Yes | Application's main database | `matrix` | |
|
| | PVC | Yes | Attachments | `media-opendesk-synapse-0` | `/media` |
|
||||||
| | PVC | Yes | Attachments | `media-opendesk-synapse-0` | `/media` |
|
| | | Yes | Sync and state data | `matrix-neodatefix-bot` | `/app/storage` |
|
||||||
| | | Yes | Sync and state data | `matrix-neodatefix-bot` | `/app/storage` |
|
| **Intercom-Service** | Redis | No | Shared session data | | |
|
||||||
| **Intercom-Service** | Redis | No | Shared session data | | |
|
| **Jitsi** | PVC | Optional | Meeting recordings (feature not enabled in openDesk) | `prosody-data-jitsi-prosody-0` | `/config/data` |
|
||||||
| **Jitsi** | PVC | Optional | Meeting recordings (feature not enabled in openDesk) | `prosody-data-jitsi-prosody-0` | `/config/data` |
|
| **Nextcloud** | PostgreSQL | Yes | Application's main database Meta-Data | `nextcloud` | |
|
||||||
| **Nextcloud** | PostgreSQL | Yes | Application's main database Meta-Data | `nextcloud` | |
|
| | S3 | Yes | The Nextcloud managed user files | `nextcloud` | |
|
||||||
| | S3 | Yes | The Nextcloud managed user files | `nextcloud` | |
|
| | Redis | No | Distributed caching, as well as transactional file locking | | |
|
||||||
| | Redis | No | Distributed caching, as well as transactional file locking | | |
|
| **Nubus** | PostgreSQL | Yes | Main database for Nubus' IdP Keycloak | `keycloak` | |
|
||||||
| **Nubus** | PostgreSQL | Yes | Main database for Nubus' IdP Keycloak | `keycloak` | |
|
| | | Yes | Login actions and device-fingerprints | `keycloak_extensions` | |
|
||||||
| | | Yes | Login actions and device-fingerprints | `keycloak_extensions` | |
|
| | | Optional | Store of the temporary password reset token | `selfservice` | |
|
||||||
| | | Optional | Store of the temporary password reset token | `selfservice` | |
|
| | | No | Notification features are not used in openDesk 1.1 | `notificationsapi` | |
|
||||||
| | | No | Notification features are not used in openDesk 1.1 | `notificationsapi` | |
|
| | | No | Guardian features are currently not used in openDesk 1.1 | `guardianmanagementapi` | |
|
||||||
| | | No | Guardian features are currently not used in openDesk 1.1 | `guardianmanagementapi` | |
|
| | S3 | No | Static files for Portal | `ums` | |
|
||||||
| | S3 | No | Static files for Portal | `ums` | |
|
| | PVC | Yes | openLDAP database (primary R/W Pods), when restore select the one from the leader | `shared-data-ums-ldap-server-primary-0` | `/var/lib/univention-ldap` |
|
||||||
| | PVC | Yes | openLDAP database (primary R/W Pods), when restore select the one from the leader | `shared-data-ums-ldap-server-primary-0` | `/var/lib/univention-ldap` |
|
| | | Yes | openLDAP process data | `shared-run-ums-ldap-server-primary-0` | `/var/run/slapd` |
|
||||||
| | | Yes | openLDAP process data | `shared-run-ums-ldap-server-primary-0` | `/var/run/slapd` |
|
| | | No | openLDAP database (secondary R/O Pods), secondaries can sync from the primary | `shared-data-ums-ldap-server-secondary-0` | `/var/lib/univention-ldap` |
|
||||||
| | | No | openLDAP database (secondary R/O Pods), secondaries can sync from the primary | `shared-data-ums-ldap-server-secondary-0` | `/var/lib/univention-ldap` |
|
| | | No | openLDAP process data | `shared-run-ums-ldap-server-secondary-0` | `/var/run/slapd` |
|
||||||
| | | No | openLDAP process data | `shared-run-ums-ldap-server-secondary-0` | `/var/run/slapd` |
|
| | | Yes | The state of the listener | `data-ums-provisioning-udm-listener-0` | `/var/log/univention`<br>`/var/lib/univention-ldap/schema/id`<br>`/var/lib/univention-directory-listener` |
|
||||||
| | | Yes | The state of the listener | `data-ums-provisioning-udm-listener-0` | `/var/log/univention`<br>`/var/lib/univention-ldap/schema/id`<br>`/var/lib/univention-directory-listener` |
|
| | | No | Cache | `group-membership-cache-ums-portal-consumer-0` | `/usr/share/univention-group-membership-cache/caches` |
|
||||||
| | | No | Cache | `group-membership-cache-ums-portal-consumer-0` | `/usr/share/univention-group-membership-cache/caches` |
|
| | | Yes | Queued provisioning objects | `nats-data-ums-provisioning-nats-0` | `/data` |
|
||||||
| | | Yes | Queued provisioning objects | `nats-data-ums-provisioning-nats-0` | `/data` |
|
| | Memcached | No | Cache for UMC Server | | |
|
||||||
| | Memcached | No | Cache for UMC Server | | |
|
| **OpenProject** | PostgreSQL | Yes | Application's main database | `openproject` | |
|
||||||
| **OpenProject** | PostgreSQL | Yes | Application's main database | `openproject` | |
|
| | S3 | Yes | Attachments, custom styles | `openproject` | |
|
||||||
| | S3 | Yes | Attachments, custom styles | `openproject` | |
|
| | Memcached | No | Cache | | |
|
||||||
| | Memcached | No | Cache | | |
|
| | PVC | No | PVC backed `emptyDir` as K8s cannot set the sticky bit on standard emptyDirs | `openproject-<web/worker>-*-tmp` | `/tmp` |
|
||||||
| | PVC | No | PVC backed `emptyDir` as K8s cannot set the sticky bit on standard emptyDirs | `openproject-<web/worker>-*-tmp` | `/tmp` |
|
| | | No | PVC backed `emptyDir` as K8s cannot set the sticky bit on standard emptyDirs | `openproject-<web/worker>-app-*-tmp` | `/app/tmp` |
|
||||||
| | | No | PVC backed `emptyDir` as K8s cannot set the sticky bit on standard emptyDirs | `openproject-<web/worker>-app-*-tmp` | `/app/tmp` |
|
| **Open-Xchange** | MariaDB | Yes | Application's control database to coordiate dynamically created ones | `configdb` | |
|
||||||
| **Open-Xchange** | MariaDB | Yes | Application's control database to coordiate dynamically created ones | `configdb` | |
|
| | | Yes | Dynamically creates databases of schema `PRIMARYDB_n`containing multiple contexts | `PRIMARYDB_*` | |
|
||||||
| | | Yes | Dynamically creates databases of schema `PRIMARYDB_n`containing multiple contexts | `PRIMARYDB_*` | |
|
| | | Yes | OX Guard related settings | `oxguard*` | |
|
||||||
| | | Yes | OX Guard related settings | `oxguard*` | |
|
| | Redis | Optional | Cache, session related data, distributed maps | | |
|
||||||
| | S3 | Yes | Attachments of meetings, contacts and tasks | `openxchange` | |
|
| | PVC | Yes | OX-Connector: OXAPI access details | `ox-connector-appcenter-ox-connector-0` | `/var/lib/univention-appcenter/apps/ox-connector` |
|
||||||
| | Redis | Optional | Cache, session related data, distributed maps | | |
|
| | | Yes | OX-Connector: Application's meta data | `ox-connector-ox-contexts-ox-connector-0` | `/etc/ox-secrets` |
|
||||||
| | PVC | Yes | OX-Connector: OXAPI access details | `ox-connector-appcenter-ox-connector-0` | `/var/lib/univention-appcenter/apps/ox-connector` |
|
| **Postfix** | PVC | Yes | Mail spool | `postfix` | `/var/spool/postfix` |
|
||||||
| | | Yes | OX-Connector: Application's meta data | `ox-connector-ox-contexts-ox-connector-0` | `/etc/ox-secrets` |
|
| **XWiki** | PostgreSQL | Yes | Application's main database | `xwiki` | |
|
||||||
| **Postfix** | PVC | Yes | Mail spool | `postfix` | `/var/spool/postfix` |
|
| | PVC | Yes | Attachments | `xwiki-data-xwiki-0` | `/usr/local/xwiki/data` |
|
||||||
| **XWiki** | PostgreSQL | Yes | Application's main database | `xwiki` | |
|
|
||||||
| | PVC | Yes | Attachments | `xwiki-data-xwiki-0` | `/usr/local/xwiki/data` |
|
|
||||||
|
|
||||||
Additionally, the following persistent volumes are mounted by Pods that serve as a data storage for the applications mentioned above.
|
Additionally, the following persistent volumes are mounted by pods that serve as a data storage for the applications mentioned above.
|
||||||
|
|
||||||
These services are not ment for production use, so you can ignore these as you surely backup your production services instead.
|
| Service | Pod | Volume Name | PVC | MountPath | Note |
|
||||||
|
| ---------- | ---------------- | ------------ | --------------------------- | --------------------- |-----------------------------------------------------------|
|
||||||
| Service | Pod | Volume Name | PVC | MountPath | Comment |
|
| MariaDB | `mariadb-*` | `data` | `data-mariadb-0` | `/var/lib/mysql` | |
|
||||||
|------------|------------------|--------------|-----------------------------|-----------------------|------------------|
|
| MinIO | `minio-*-*` | `data` | `minio` | `/bitnami/minio/data` | |
|
||||||
| MariaDB | `mariadb-*` | `data` | `data-mariadb-0` | `/var/lib/mysql` | |
|
| PostgreSQL | `postgresql-*` | `data` | `data-postgresql-0` | `/mnt/postgresql` | |
|
||||||
| MinIO | `minio-*-*` | `data` | `minio` | `/bitnami/minio/data` | |
|
| Redis | `redis-master-*` | `redis-data` | `redis-data-redis-master-0` | `/data` | |
|
||||||
| PostgreSQL | `postgresql-*` | `data` | `data-postgresql-0` | `/mnt/postgresql` | |
|
| Cassandra | `cassandra-*` | `data` | `data-cassandra-*` | `/bitnami/cassandra` | Its important to backup the PVC of every node! |
|
||||||
| Redis | `redis-master-*` | `redis-data` | `redis-data-redis-master-0` | `/data` | |
|
|
||||||
| Cassandra | `cassandra-*` | `data` | `data-cassandra-*` | `/bitnami/cassandra` | openDesk EE only |
|
|
||||||
|
|||||||
@@ -355,15 +355,12 @@ Example: `tmueller/fix_jitsi_theming`.
|
|||||||
|
|
||||||
Commit messages must adhere to the [Conventional Commit standard](https://www.conventionalcommits.org/en/v1.0.0/#summary). Commits that do not adhere to the standard get rejected by either [Gitlab push rules](https://docs.gitlab.com/ee/user/project/repository/push_rules.html) or the CI.
|
Commit messages must adhere to the [Conventional Commit standard](https://www.conventionalcommits.org/en/v1.0.0/#summary). Commits that do not adhere to the standard get rejected by either [Gitlab push rules](https://docs.gitlab.com/ee/user/project/repository/push_rules.html) or the CI.
|
||||||
|
|
||||||
> **Note**<br>
|
|
||||||
> The first letter after the `: ` must be uppercase.
|
|
||||||
|
|
||||||
```text
|
```text
|
||||||
<type>(<scope>): <Short summary> [path/to/issue#1]
|
<type>(<scope>): [path/to/issue#1] <short summary>.
|
||||||
│ │ │ │
|
│ │ │ │
|
||||||
│ │ | └─> Issue reference (optional)
|
│ │ | └─> Summary in present tense, sentence case, with no period at the end
|
||||||
│ │ |
|
│ │ |
|
||||||
│ │ └─> Summary in present tense, sentence case, with no period at the end
|
│ │ └─> Issue reference (optional)
|
||||||
│ │
|
│ │
|
||||||
│ └─> Commit Scope: helmfile, docs, collabora, nextcloud, open-xchange, etc.
|
│ └─> Commit Scope: helmfile, docs, collabora, nextcloud, open-xchange, etc.
|
||||||
│
|
│
|
||||||
@@ -373,7 +370,7 @@ Commit messages must adhere to the [Conventional Commit standard](https://www.co
|
|||||||
Example: `fix(open-xchange): Bump to 8.26 to heal issue with functional mailbox provisioning.`
|
Example: `fix(open-xchange): Bump to 8.26 to heal issue with functional mailbox provisioning.`
|
||||||
|
|
||||||
> **Note**<br>
|
> **Note**<br>
|
||||||
> The commit messages are an essential part of the [technical releases](https://gitlab.opencode.de/bmi/opendesk/deployment/opendesk/-/releases) as the release notes are generated from these messages.
|
> The commit messages are an essential part of the [technical releases](https://gitlab.opencode.de/bmi/opendesk/deployment/opendesk/-/releases) as the release's notes are generated from the messages.
|
||||||
|
|
||||||
#### Verified commits
|
#### Verified commits
|
||||||
|
|
||||||
|
|||||||
@@ -10,8 +10,7 @@ repositories:
|
|||||||
password: {{ env "OD_PRIVATE_REGISTRY_PASSWORD" | quote }}
|
password: {{ env "OD_PRIVATE_REGISTRY_PASSWORD" | quote }}
|
||||||
oci: true
|
oci: true
|
||||||
url:
|
url:
|
||||||
# FIXME: Place coalesce back after testing upgrade - coalesce .Values.repositories.helm.registryOpencodeDe .Values.global.helmRegistry | default
|
"{{ coalesce .Values.repositories.helm.registryOpencodeDe .Values.global.helmRegistry | default .Values.charts.nubus.registry }}/{{ .Values.charts.nubus.repository }}"
|
||||||
"{{ .Values.charts.nubus.registry }}/{{ .Values.charts.nubus.repository }}"
|
|
||||||
# Intercom Service
|
# Intercom Service
|
||||||
# Source: https://gitlab.souvap-univention.de/souvap/tooling/charts/intercom-service
|
# Source: https://gitlab.souvap-univention.de/souvap/tooling/charts/intercom-service
|
||||||
- name: "intercom-service-repo"
|
- name: "intercom-service-repo"
|
||||||
|
|||||||
@@ -51,36 +51,31 @@ global:
|
|||||||
{{ .Values.global.imagePullSecrets | toYaml | nindent 4 }}
|
{{ .Values.global.imagePullSecrets | toYaml | nindent 4 }}
|
||||||
|
|
||||||
ics:
|
ics:
|
||||||
session:
|
secret: {{ .Values.secrets.intercom.secret | quote }}
|
||||||
secret: {{ .Values.secrets.intercom.secret | quote }}
|
|
||||||
issuerBaseUrl: "https://{{ .Values.global.hosts.keycloak }}.{{ .Values.global.domain }}/realms/{{ .Values.platform.realm }}"
|
issuerBaseUrl: "https://{{ .Values.global.hosts.keycloak }}.{{ .Values.global.domain }}/realms/{{ .Values.platform.realm }}"
|
||||||
originRegex: "{{ .Values.global.domain }}"
|
originRegex: "{{ .Values.global.domain }}"
|
||||||
enableSessionCookie: true
|
enableSessionCookie: true
|
||||||
userUniqueMapper: {{ if .Values.functional.chat.matrix.profile.useImmutableIdentifierForLocalpart }}"opendesk_useruuid"{{ else }}"opendesk_username"{{ end }}
|
userUniqueMapper: {{ if .Values.functional.chat.matrix.profile.useImmutableIdentifierForLocalpart }}"opendesk_useruuid"{{ else }}"opendesk_username"{{ end }}
|
||||||
usernameClaim: "opendesk_username"
|
usernameClaim: "opendesk_username"
|
||||||
logLevel: {{ if .Values.debug.enabled }}"DEBUG"{{ else }}"INFO"{{ end }}
|
|
||||||
keycloak:
|
keycloak:
|
||||||
realm: {{ .Values.platform.realm | quote }}
|
realm: {{ .Values.platform.realm | quote }}
|
||||||
default:
|
default:
|
||||||
domain: {{ .Values.global.domain | quote }}
|
domain: {{ .Values.global.domain | quote }}
|
||||||
oidc:
|
oidc:
|
||||||
id: "opendesk-intercom"
|
id: "opendesk-intercom"
|
||||||
clientSecret: {{ .Values.secrets.keycloak.clientSecret.intercom | quote }}
|
secret: {{ .Values.secrets.keycloak.clientSecret.intercom | quote }}
|
||||||
matrix:
|
matrix:
|
||||||
|
asSecret: {{ .Values.secrets.intercom.synapseAsToken | quote }}
|
||||||
subdomain: {{ .Values.global.hosts.synapse | quote }}
|
subdomain: {{ .Values.global.hosts.synapse | quote }}
|
||||||
serverName: "{{ .Values.global.hosts.synapse }}.{{ .Values.global.domain }}"
|
serverName: "{{ .Values.global.hosts.synapse }}.{{ .Values.global.domain }}"
|
||||||
auth:
|
|
||||||
applicationServiceSecret: {{ .Values.secrets.intercom.synapseAsToken | quote }}
|
|
||||||
nordeck:
|
nordeck:
|
||||||
subdomain: {{ .Values.global.hosts.matrixNeoDateFixBot | quote }}
|
subdomain: {{ .Values.global.hosts.matrixNeoDateFixBot | quote }}
|
||||||
portal:
|
portal:
|
||||||
auth:
|
apiKey: {{ .Values.secrets.centralnavigation.apiKey | quote }}
|
||||||
sharedSecret: {{ .Values.secrets.centralnavigation.apiKey | quote }}
|
|
||||||
redis:
|
redis:
|
||||||
host: {{ .Values.cache.intercomService.host | quote }}
|
host: {{ .Values.cache.intercomService.host | quote }}
|
||||||
port: {{ .Values.cache.intercomService.port }}
|
port: {{ .Values.cache.intercomService.port }}
|
||||||
auth:
|
password: {{ .Values.cache.intercomService.password | default .Values.secrets.redis.password | quote }}
|
||||||
password: {{ .Values.cache.intercomService.password | default .Values.secrets.redis.password | quote }}
|
|
||||||
openxchange:
|
openxchange:
|
||||||
oci: true
|
oci: true
|
||||||
url: "https://{{ .Values.global.hosts.openxchange }}.{{ .Values.global.domain }}"
|
url: "https://{{ .Values.global.hosts.openxchange }}.{{ .Values.global.domain }}"
|
||||||
@@ -121,20 +116,21 @@ provisioning:
|
|||||||
# client's claims this way.
|
# client's claims this way.
|
||||||
enabled: false
|
enabled: false
|
||||||
config:
|
config:
|
||||||
clientBaseUrl: "https://{{ .Values.global.hosts.intercomService }}.{{ .Values.global.domain }}"
|
nubusBaseUrl: "https://{{ .Values.global.hosts.intercomService }}.{{ .Values.global.domain }}"
|
||||||
keycloak:
|
keycloak:
|
||||||
|
url: "http://ums-keycloak:8080/realms/{{ .Values.platform.realm }}/"
|
||||||
|
username: "kcadmin"
|
||||||
realm: {{ .Values.platform.realm | quote }}
|
realm: {{ .Values.platform.realm | quote }}
|
||||||
connection:
|
connection:
|
||||||
protocol: "http"
|
host: "{{ .Values.global.hosts.keycloak }}.{{ .Values.global.domain }}"
|
||||||
host: "ums-keycloak"
|
baseUrl: "http://ums-keycloak:8080"
|
||||||
port: 8080
|
credentialSecret:
|
||||||
auth:
|
name: "ums-opendesk-keycloak-credentials"
|
||||||
username: "kcadmin"
|
|
||||||
existingSecret:
|
|
||||||
name: "ums-opendesk-keycloak-credentials"
|
|
||||||
keyMapping:
|
|
||||||
password: "admin_password"
|
|
||||||
key: "admin_password"
|
key: "admin_password"
|
||||||
|
ics_client:
|
||||||
|
clientSecret: {{ .Values.secrets.keycloak.clientSecret.intercom | quote }}
|
||||||
|
credentialSecret:
|
||||||
|
key: "ics_secret"
|
||||||
image:
|
image:
|
||||||
imagePullPolicy: {{ .Values.global.imagePullPolicy | quote }}
|
imagePullPolicy: {{ .Values.global.imagePullPolicy | quote }}
|
||||||
registry: {{ coalesce .Values.repositories.image.registryOpencodeDe .Values.global.imageRegistry .Values.images.nubusWaitForDependency.registry | quote }}
|
registry: {{ coalesce .Values.repositories.image.registryOpencodeDe .Values.global.imageRegistry .Values.images.nubusWaitForDependency.registry | quote }}
|
||||||
|
|||||||
@@ -259,9 +259,6 @@ keycloak:
|
|||||||
nubusGuardian:
|
nubusGuardian:
|
||||||
enabled: false
|
enabled: false
|
||||||
|
|
||||||
nubusTwofaHelpdesk:
|
|
||||||
enabled: false
|
|
||||||
|
|
||||||
nubusNotificationsApi:
|
nubusNotificationsApi:
|
||||||
enabled: false
|
enabled: false
|
||||||
additionalAnnotations:
|
additionalAnnotations:
|
||||||
@@ -1546,7 +1543,6 @@ nubusKeycloakBootstrap:
|
|||||||
twoFactorAuthentication:
|
twoFactorAuthentication:
|
||||||
enabled: true
|
enabled: true
|
||||||
group: "2fa-users"
|
group: "2fa-users"
|
||||||
legacy: true
|
|
||||||
config:
|
config:
|
||||||
debug:
|
debug:
|
||||||
enabled: {{ .Values.debug.enabled }}
|
enabled: {{ .Values.debug.enabled }}
|
||||||
@@ -1565,7 +1561,7 @@ nubusKeycloakBootstrap:
|
|||||||
seLinuxOptions:
|
seLinuxOptions:
|
||||||
{{ .Values.seLinuxOptions.umsKeycloakBootstrap | toYaml | nindent 6 }}
|
{{ .Values.seLinuxOptions.umsKeycloakBootstrap | toYaml | nindent 6 }}
|
||||||
image:
|
image:
|
||||||
registry: {{ .Values.images.nubusKeycloakBootstrap.registry | quote }}
|
registry: {{ coalesce .Values.repositories.image.registryOpencodeDe .Values.global.imageRegistry .Values.images.nubusKeycloakBootstrap.registry | quote }}
|
||||||
repository: {{ .Values.images.nubusKeycloakBootstrap.repository }}
|
repository: {{ .Values.images.nubusKeycloakBootstrap.repository }}
|
||||||
tag: {{ .Values.images.nubusKeycloakBootstrap.tag }}
|
tag: {{ .Values.images.nubusKeycloakBootstrap.tag }}
|
||||||
# NOTE: The subchart does not yet fully support
|
# NOTE: The subchart does not yet fully support
|
||||||
|
|||||||
@@ -527,10 +527,7 @@ config:
|
|||||||
publicClient: false
|
publicClient: false
|
||||||
authorizationServicesEnabled: false
|
authorizationServicesEnabled: false
|
||||||
attributes:
|
attributes:
|
||||||
use.refresh.tokens: true
|
|
||||||
backchannel.logout.session.required: true
|
backchannel.logout.session.required: true
|
||||||
standard.token.exchange.enabled: true
|
|
||||||
standard.token.exchange.enableRefreshRequestedTokenType: "SAME_SESSION"
|
|
||||||
backchannel.logout.revoke.offline.tokens: true
|
backchannel.logout.revoke.offline.tokens: true
|
||||||
backchannel.logout.url: "https://{{ .Values.global.hosts.intercomService }}.{{ .Values.global.domain }}/backchannel-logout"
|
backchannel.logout.url: "https://{{ .Values.global.hosts.intercomService }}.{{ .Values.global.domain }}/backchannel-logout"
|
||||||
protocolMappers:
|
protocolMappers:
|
||||||
|
|||||||
@@ -141,7 +141,7 @@ charts:
|
|||||||
registry: "registry.opencode.de"
|
registry: "registry.opencode.de"
|
||||||
repository: "bmi/opendesk/components/supplier/univention/charts-mirror"
|
repository: "bmi/opendesk/components/supplier/univention/charts-mirror"
|
||||||
name: "intercom-service"
|
name: "intercom-service"
|
||||||
version: "2.19.0"
|
version: "2.12.0"
|
||||||
verify: true
|
verify: true
|
||||||
jitsi:
|
jitsi:
|
||||||
# providerCategory: "Platform"
|
# providerCategory: "Platform"
|
||||||
@@ -310,12 +310,10 @@ charts:
|
|||||||
# upstreamRepository: "nubus/charts/nubus"
|
# upstreamRepository: "nubus/charts/nubus"
|
||||||
# upstreamMirrorTagFilterRegEx: '^(\d+)\.(\d+)\.(\d+)$'
|
# upstreamMirrorTagFilterRegEx: '^(\d+)\.(\d+)\.(\d+)$'
|
||||||
# upstreamMirrorStartFrom: ["0", "19", "3"]
|
# upstreamMirrorStartFrom: ["0", "19", "3"]
|
||||||
# registry: "registry.opencode.de"
|
registry: "registry.opencode.de"
|
||||||
# repository: "bmi/opendesk/components/supplier/univention/charts-mirror"
|
repository: "bmi/opendesk/components/supplier/univention/charts-mirror"
|
||||||
registry: "artifacts.software-univention.de"
|
|
||||||
repository: "nubus-dev/charts"
|
|
||||||
name: "nubus"
|
name: "nubus"
|
||||||
version: "1.12.0-pre-jtorres-kc-bootstrap"
|
version: "1.11.2"
|
||||||
verify: true
|
verify: true
|
||||||
opendeskAlerts:
|
opendeskAlerts:
|
||||||
# providerCategory: "Platform"
|
# providerCategory: "Platform"
|
||||||
|
|||||||
@@ -154,7 +154,7 @@ images:
|
|||||||
# upstreamMirrorStartFrom: ["2", "1", "0"]
|
# upstreamMirrorStartFrom: ["2", "1", "0"]
|
||||||
registry: "registry.opencode.de"
|
registry: "registry.opencode.de"
|
||||||
repository: "bmi/opendesk/components/supplier/univention/images-mirror/intercom-service"
|
repository: "bmi/opendesk/components/supplier/univention/images-mirror/intercom-service"
|
||||||
tag: "2.19.0@sha256:ebb4e721f4daebf5a206359978b327e85f2d51b9bf145576778ca3b5983920f8"
|
tag: "2.12.0@sha256:380476d849fb353dc167ba52a6b0f6235b3fa7561c082e65c37e2242cedb0df1"
|
||||||
jibri:
|
jibri:
|
||||||
# providerCategory: "Supplier"
|
# providerCategory: "Supplier"
|
||||||
# providerResponsible: "Nordeck"
|
# providerResponsible: "Nordeck"
|
||||||
@@ -370,7 +370,7 @@ images:
|
|||||||
# upstreamMirrorStartFrom: ["0", "34", "2"]
|
# upstreamMirrorStartFrom: ["0", "34", "2"]
|
||||||
registry: "registry.opencode.de"
|
registry: "registry.opencode.de"
|
||||||
repository: "bmi/opendesk/components/supplier/univention/images-mirror/blocklist-cleanup"
|
repository: "bmi/opendesk/components/supplier/univention/images-mirror/blocklist-cleanup"
|
||||||
tag: "0.39.1@sha256:a08a36d0c0558a71f164ef24b3b8f897fa4b87217f9063ae493d4c66c7348c5c"
|
tag: "0.37.1@sha256:e18a5ca77accb9438c57ec7448f0984e6de11481ca8e0cd3ce557e6492dd8355"
|
||||||
nubusDataLoader:
|
nubusDataLoader:
|
||||||
# providerCategory: "Supplier"
|
# providerCategory: "Supplier"
|
||||||
# providerResponsible: "Univention"
|
# providerResponsible: "Univention"
|
||||||
@@ -380,7 +380,7 @@ images:
|
|||||||
# upstreamMirrorStartFrom: ["0", "41", "5"]
|
# upstreamMirrorStartFrom: ["0", "41", "5"]
|
||||||
registry: "registry.opencode.de"
|
registry: "registry.opencode.de"
|
||||||
repository: "bmi/opendesk/components/supplier/univention/images-mirror/data-loader"
|
repository: "bmi/opendesk/components/supplier/univention/images-mirror/data-loader"
|
||||||
tag: "0.97.0@sha256:0c4a92f892d54ca3669b33391fb1fb6b45f6a9c43080beacd0d3fa061b0826ab"
|
tag: "0.95.0@sha256:57028c6a76d000a2085f7a429c704ac495be6e4e7ce0a5cc85e3bed25766ce32"
|
||||||
nubusGuardianAuthorizationApi:
|
nubusGuardianAuthorizationApi:
|
||||||
# providerCategory: "Supplier"
|
# providerCategory: "Supplier"
|
||||||
# providerResponsible: "Univention"
|
# providerResponsible: "Univention"
|
||||||
@@ -430,7 +430,7 @@ images:
|
|||||||
# upstreamMirrorStartFrom: ["0", "0", "1"]
|
# upstreamMirrorStartFrom: ["0", "0", "1"]
|
||||||
registry: "registry.opencode.de"
|
registry: "registry.opencode.de"
|
||||||
repository: "bmi/opendesk/components/supplier/univention/images-mirror/keycloak"
|
repository: "bmi/opendesk/components/supplier/univention/images-mirror/keycloak"
|
||||||
tag: "0.2.5@sha256:499006904d262bdd334b54583c359c7e34b521697d5fda32ea977d856bfa93d2"
|
tag: "0.2.1@sha256:c338d5bba11185b1cca6d5e5e1b6fe28bedcd8f02af8b4b96e431bde617f5f72"
|
||||||
nubusKeycloakBootstrap:
|
nubusKeycloakBootstrap:
|
||||||
# providerCategory: "Supplier"
|
# providerCategory: "Supplier"
|
||||||
# providerResponsible: "Univention"
|
# providerResponsible: "Univention"
|
||||||
@@ -438,9 +438,9 @@ images:
|
|||||||
# upstreamRepository: "nubus/images/keycloak-bootstrap"
|
# upstreamRepository: "nubus/images/keycloak-bootstrap"
|
||||||
# upstreamMirrorTagFilterRegEx: '^(\d+)\.(\d+)\.(\d+)$'
|
# upstreamMirrorTagFilterRegEx: '^(\d+)\.(\d+)\.(\d+)$'
|
||||||
# upstreamMirrorStartFrom: ["0", "1", "0"]
|
# upstreamMirrorStartFrom: ["0", "1", "0"]
|
||||||
registry: "artifacts.software-univention.de"
|
registry: "registry.opencode.de"
|
||||||
repository: "nubus-dev/images/keycloak-bootstrap"
|
repository: "bmi/opendesk/components/supplier/univention/images-mirror/keycloak-bootstrap"
|
||||||
tag: "keycloak-bootstrap@sha256:c8c3f6650afea4511e6e87fe1991e94b969cc946dac919c30f3a283fd2759516"
|
tag: "0.12.2@sha256:b3b058e49f9671e01530fca548a3308738aec3bf7d57c9ced9cde556f1f7545f"
|
||||||
nubusKeycloakExtensionHandler:
|
nubusKeycloakExtensionHandler:
|
||||||
# providerCategory: "Supplier"
|
# providerCategory: "Supplier"
|
||||||
# providerResponsible: "Univention"
|
# providerResponsible: "Univention"
|
||||||
@@ -450,7 +450,7 @@ images:
|
|||||||
# upstreamMirrorStartFrom: ["0", "0", "3"]
|
# upstreamMirrorStartFrom: ["0", "0", "3"]
|
||||||
registry: "registry.opencode.de"
|
registry: "registry.opencode.de"
|
||||||
repository: "bmi/opendesk/components/supplier/univention/images-mirror/keycloak-handler"
|
repository: "bmi/opendesk/components/supplier/univention/images-mirror/keycloak-handler"
|
||||||
tag: "0.20.0@sha256:227c7cba4eee15c626abbc77ca06b8b61a9dece04c986a9fa2e97b13d0458fe0"
|
tag: "0.19.2@sha256:6e4c65b375ad12819240cb8eabd4ef629858ad74179bd639acb713201c528ef4"
|
||||||
nubusKeycloakExtensionProxy:
|
nubusKeycloakExtensionProxy:
|
||||||
# providerCategory: "Supplier"
|
# providerCategory: "Supplier"
|
||||||
# providerResponsible: "Univention"
|
# providerResponsible: "Univention"
|
||||||
@@ -460,7 +460,7 @@ images:
|
|||||||
# upstreamMirrorStartFrom: ["0", "0", "3"]
|
# upstreamMirrorStartFrom: ["0", "0", "3"]
|
||||||
registry: "registry.opencode.de"
|
registry: "registry.opencode.de"
|
||||||
repository: "bmi/opendesk/components/supplier/univention/images-mirror/keycloak-proxy"
|
repository: "bmi/opendesk/components/supplier/univention/images-mirror/keycloak-proxy"
|
||||||
tag: "0.20.0@sha256:bd075d33c16926ab4c123ac3a8673209664647f35324dfdebd95c6662ee05b2c"
|
tag: "0.19.2@sha256:b7c897870a12214064d79d72d52d0030bf2513148078cb922b8782806c2e4773"
|
||||||
nubusLdapNotifier:
|
nubusLdapNotifier:
|
||||||
# providerCategory: "Supplier"
|
# providerCategory: "Supplier"
|
||||||
# providerResponsible: "Univention"
|
# providerResponsible: "Univention"
|
||||||
@@ -470,7 +470,7 @@ images:
|
|||||||
# upstreamMirrorStartFrom: ["0", "8", "2"]
|
# upstreamMirrorStartFrom: ["0", "8", "2"]
|
||||||
registry: "registry.opencode.de"
|
registry: "registry.opencode.de"
|
||||||
repository: "bmi/opendesk/components/supplier/univention/images-mirror/ldap-notifier"
|
repository: "bmi/opendesk/components/supplier/univention/images-mirror/ldap-notifier"
|
||||||
tag: "0.46.0@sha256:2856ea8767e5fa93d0bfcb7211397e121e2792a731825381400dedbdd8ff6a7b"
|
tag: "0.43.0@sha256:dcd4e7f1008eb4c6c1ae809785bee0da9cba1347af09ddbc147b76c422f4f35c"
|
||||||
nubusLdapServer:
|
nubusLdapServer:
|
||||||
# providerCategory: "Supplier"
|
# providerCategory: "Supplier"
|
||||||
# providerResponsible: "Univention"
|
# providerResponsible: "Univention"
|
||||||
@@ -480,7 +480,7 @@ images:
|
|||||||
# upstreamMirrorStartFrom: ["0", "8", "2"]
|
# upstreamMirrorStartFrom: ["0", "8", "2"]
|
||||||
registry: "registry.opencode.de"
|
registry: "registry.opencode.de"
|
||||||
repository: "bmi/opendesk/components/supplier/univention/images-mirror/ldap-server"
|
repository: "bmi/opendesk/components/supplier/univention/images-mirror/ldap-server"
|
||||||
tag: "0.46.0@sha256:5a1612c58f4edb2e42060ac2f927414574d5689c52cbd813f5b2eca0c7c5f75c"
|
tag: "0.43.0@sha256:67557ec3e3bd7ff4981666dddb5455672ee8767e12e3876ea79447627f9d9742"
|
||||||
nubusLdapServerDhInitContainer:
|
nubusLdapServerDhInitContainer:
|
||||||
# providerCategory: 'Community'
|
# providerCategory: 'Community'
|
||||||
# providerResponsible: 'Univention'
|
# providerResponsible: 'Univention'
|
||||||
@@ -498,7 +498,7 @@ images:
|
|||||||
# upstreamMirrorStartFrom: ["0", "29", "1"]
|
# upstreamMirrorStartFrom: ["0", "29", "1"]
|
||||||
registry: "registry.opencode.de"
|
registry: "registry.opencode.de"
|
||||||
repository: "bmi/opendesk/components/supplier/univention/images-mirror/ldap-server-elector"
|
repository: "bmi/opendesk/components/supplier/univention/images-mirror/ldap-server-elector"
|
||||||
tag: "0.46.0@sha256:688dd37bc472d752d8e4a727374ce13ffdd3fcd65a598f39a8cf54c56d3988e0"
|
tag: "0.43.0@sha256:179097cf89774b1ac48c5315ccc06cc8628cc89d085d95f2d89a223d52a75fe2"
|
||||||
nubusLdapUpdateUniventionObjectIdentifier:
|
nubusLdapUpdateUniventionObjectIdentifier:
|
||||||
# providerCategory: "Supplier"
|
# providerCategory: "Supplier"
|
||||||
# providerResponsible: "Univention"
|
# providerResponsible: "Univention"
|
||||||
@@ -542,7 +542,7 @@ images:
|
|||||||
# upstreamMirrorStartFrom: ["0", "9", "4"]
|
# upstreamMirrorStartFrom: ["0", "9", "4"]
|
||||||
registry: "registry.opencode.de"
|
registry: "registry.opencode.de"
|
||||||
repository: "bmi/opendesk/components/supplier/univention/images-mirror/notifications-api"
|
repository: "bmi/opendesk/components/supplier/univention/images-mirror/notifications-api"
|
||||||
tag: "0.74.1@sha256:3613be84aa991fcd15f6cf47f32bc61345ec660c1a5bf9c3e3e843e8b803b9c4"
|
tag: "0.70.0@sha256:0120cca997eddcd6b9a5f0b9d6fb39ac2ffb118357380c28ab5352c16130a873"
|
||||||
nubusOpendeskExtension:
|
nubusOpendeskExtension:
|
||||||
# providerCategory: "Platform"
|
# providerCategory: "Platform"
|
||||||
# providerResponsible: "openDesk"
|
# providerResponsible: "openDesk"
|
||||||
@@ -588,7 +588,7 @@ images:
|
|||||||
# upstreamMirrorStartFrom: ["0", "27", "0"]
|
# upstreamMirrorStartFrom: ["0", "27", "0"]
|
||||||
registry: "registry.opencode.de"
|
registry: "registry.opencode.de"
|
||||||
repository: "bmi/opendesk/components/supplier/univention/images-mirror/portal-consumer"
|
repository: "bmi/opendesk/components/supplier/univention/images-mirror/portal-consumer"
|
||||||
tag: "0.74.1@sha256:1d9b7e890ee46aa4a2a78ab2e7734ac4bf037f86631a43964d1d8fab17772987"
|
tag: "0.70.0@sha256:09eed9e5a7066f69b5d6085541ca91538ca9519d765ec7109d6934a6e67ab7cc"
|
||||||
nubusPortalExtension:
|
nubusPortalExtension:
|
||||||
# providerCategory: "Supplier"
|
# providerCategory: "Supplier"
|
||||||
# providerResponsible: "Univention"
|
# providerResponsible: "Univention"
|
||||||
@@ -598,7 +598,7 @@ images:
|
|||||||
# upstreamMirrorStartFrom: ["0", "28", "0"]
|
# upstreamMirrorStartFrom: ["0", "28", "0"]
|
||||||
registry: "registry.opencode.de"
|
registry: "registry.opencode.de"
|
||||||
repository: "bmi/opendesk/components/supplier/univention/images-mirror/portal-extension"
|
repository: "bmi/opendesk/components/supplier/univention/images-mirror/portal-extension"
|
||||||
tag: "0.74.1@sha256:cb3c3e4188cfde1d2091790bed38495bf4aa05b54c88e76fd78923db25502c1a"
|
tag: "0.59.1@sha256:c9c7faa3cca2be2f45d073517a50e8a8cc89d46c978c2f3a6be3c13d0e6ae900"
|
||||||
nubusPortalFrontend:
|
nubusPortalFrontend:
|
||||||
# providerCategory: "Supplier"
|
# providerCategory: "Supplier"
|
||||||
# providerResponsible: "Univention"
|
# providerResponsible: "Univention"
|
||||||
@@ -608,7 +608,7 @@ images:
|
|||||||
# upstreamMirrorStartFrom: ["0", "67", "0"]
|
# upstreamMirrorStartFrom: ["0", "67", "0"]
|
||||||
registry: "registry.opencode.de"
|
registry: "registry.opencode.de"
|
||||||
repository: "bmi/opendesk/components/supplier/univention/images-mirror/portal-frontend"
|
repository: "bmi/opendesk/components/supplier/univention/images-mirror/portal-frontend"
|
||||||
tag: "0.74.1@sha256:c96209ceb0220b4f05472ba8273a96ed4e526ba5b37f82876aa21a030603cf95"
|
tag: "0.70.0@sha256:9e0826c954e99b36b3c7b9ce6dfa1f567a3432158fb78af13337760197f94997"
|
||||||
nubusPortalServer:
|
nubusPortalServer:
|
||||||
# providerCategory: "Supplier"
|
# providerCategory: "Supplier"
|
||||||
# providerResponsible: "Univention"
|
# providerResponsible: "Univention"
|
||||||
@@ -618,7 +618,7 @@ images:
|
|||||||
# upstreamMirrorStartFrom: ["0", "9", "4"]
|
# upstreamMirrorStartFrom: ["0", "9", "4"]
|
||||||
registry: "registry.opencode.de"
|
registry: "registry.opencode.de"
|
||||||
repository: "bmi/opendesk/components/supplier/univention/images-mirror/portal-server"
|
repository: "bmi/opendesk/components/supplier/univention/images-mirror/portal-server"
|
||||||
tag: "0.74.1@sha256:1f143b81c7c72754784f9399999c2fcb0d34ac7ec0db6fdefb790a1c2ab4ec62"
|
tag: "0.70.0@sha256:1331d5b5861574195f6bd0dfc3c8e1d6a2650b518e206a2815b682d43ab75d0b"
|
||||||
nubusProvisioningDispatcher:
|
nubusProvisioningDispatcher:
|
||||||
# providerCategory: "Supplier"
|
# providerCategory: "Supplier"
|
||||||
# providerResponsible: "Univention"
|
# providerResponsible: "Univention"
|
||||||
@@ -628,7 +628,7 @@ images:
|
|||||||
# upstreamMirrorStartFrom: ["0", "14", "0"]
|
# upstreamMirrorStartFrom: ["0", "14", "0"]
|
||||||
registry: "registry.opencode.de"
|
registry: "registry.opencode.de"
|
||||||
repository: "bmi/opendesk/components/supplier/univention/images-mirror/provisioning-dispatcher"
|
repository: "bmi/opendesk/components/supplier/univention/images-mirror/provisioning-dispatcher"
|
||||||
tag: "0.60.2@sha256:356f28afe6354b91a5473c8e3f3c647ae6aca0cf7de47f4e47f6e7acf7a5ab7c"
|
tag: "0.58.0@sha256:2ac4d4a7362e45f67499537dd74d2fdfb7b54817b7f12eb9e2d88d87cf3a6f7e"
|
||||||
nubusProvisioningEventsAndConsumerApi:
|
nubusProvisioningEventsAndConsumerApi:
|
||||||
# providerCategory: "Supplier"
|
# providerCategory: "Supplier"
|
||||||
# providerResponsible: "Univention"
|
# providerResponsible: "Univention"
|
||||||
@@ -638,7 +638,7 @@ images:
|
|||||||
# upstreamMirrorStartFrom: ["0", "14", "0"]
|
# upstreamMirrorStartFrom: ["0", "14", "0"]
|
||||||
registry: "registry.opencode.de"
|
registry: "registry.opencode.de"
|
||||||
repository: "bmi/opendesk/components/supplier/univention/images-mirror/provisioning-events-and-consumer-api"
|
repository: "bmi/opendesk/components/supplier/univention/images-mirror/provisioning-events-and-consumer-api"
|
||||||
tag: "0.60.2@sha256:3e4fd557abc8350a8d7725ade0103ade7dc28f1ea31cfc981e03e9ce51fa7244"
|
tag: "0.58.0@sha256:083cf58d9522d5058d09a78355a9ca935be2882fc595ad221b1ffd707a7d615d"
|
||||||
nubusProvisioningPrefill:
|
nubusProvisioningPrefill:
|
||||||
# providerCategory: "Supplier"
|
# providerCategory: "Supplier"
|
||||||
# providerResponsible: "Univention"
|
# providerResponsible: "Univention"
|
||||||
@@ -648,7 +648,7 @@ images:
|
|||||||
# upstreamMirrorStartFrom: ["0", "14", "0"]
|
# upstreamMirrorStartFrom: ["0", "14", "0"]
|
||||||
registry: "registry.opencode.de"
|
registry: "registry.opencode.de"
|
||||||
repository: "bmi/opendesk/components/supplier/univention/images-mirror/provisioning-prefill"
|
repository: "bmi/opendesk/components/supplier/univention/images-mirror/provisioning-prefill"
|
||||||
tag: "0.60.2@sha256:23eec4905847ab050a83834f6d70419182601838da4687882c93100842ff349f"
|
tag: "0.58.0@sha256:368bc284956b642af02ca7199c6a7d94ae3bbdb3ede09db1c98822a146d9106d"
|
||||||
nubusProvisioningUdmListener:
|
nubusProvisioningUdmListener:
|
||||||
# providerCategory: "Supplier"
|
# providerCategory: "Supplier"
|
||||||
# providerResponsible: "Univention"
|
# providerResponsible: "Univention"
|
||||||
@@ -658,7 +658,7 @@ images:
|
|||||||
# upstreamMirrorStartFrom: ["0", "14", "0"]
|
# upstreamMirrorStartFrom: ["0", "14", "0"]
|
||||||
registry: "registry.opencode.de"
|
registry: "registry.opencode.de"
|
||||||
repository: "bmi/opendesk/components/supplier/univention/images-mirror/provisioning-udm-listener"
|
repository: "bmi/opendesk/components/supplier/univention/images-mirror/provisioning-udm-listener"
|
||||||
tag: "0.60.2@sha256:38c2db4e270f67b2d97423ca727fc2a8030dce73a93bd2967d2682844d3bf480"
|
tag: "0.58.0@sha256:5f924be8fdb29bda5734fd2b6b98f106913757e11530611bf5f6a5f144165be7"
|
||||||
nubusProvisioningUdmTransformer:
|
nubusProvisioningUdmTransformer:
|
||||||
# providerCategory: "Supplier"
|
# providerCategory: "Supplier"
|
||||||
# providerResponsible: "Univention"
|
# providerResponsible: "Univention"
|
||||||
@@ -668,7 +668,7 @@ images:
|
|||||||
# upstreamMirrorStartFrom: ["0", "14", "0"]
|
# upstreamMirrorStartFrom: ["0", "14", "0"]
|
||||||
registry: "registry.opencode.de"
|
registry: "registry.opencode.de"
|
||||||
repository: "bmi/opendesk/components/supplier/univention/images-mirror/provisioning-udm-transformer"
|
repository: "bmi/opendesk/components/supplier/univention/images-mirror/provisioning-udm-transformer"
|
||||||
tag: "0.60.2@sha256:df38dc8528f0eec1f44db45a8156697d0424bd008c65a1619de15b6ac586d1a0"
|
tag: "0.58.0@sha256:afa6028bbaec6c14e09035b7d18507aad45ff6d6aa852fb664ab485f2622a308"
|
||||||
nubusSelfServiceConsumer:
|
nubusSelfServiceConsumer:
|
||||||
# providerCategory: "Supplier"
|
# providerCategory: "Supplier"
|
||||||
# providerResponsible: "Univention"
|
# providerResponsible: "Univention"
|
||||||
@@ -678,7 +678,7 @@ images:
|
|||||||
# upstreamMirrorStartFrom: ["0", "3", "2"]
|
# upstreamMirrorStartFrom: ["0", "3", "2"]
|
||||||
registry: "registry.opencode.de"
|
registry: "registry.opencode.de"
|
||||||
repository: "bmi/opendesk/components/supplier/univention/images-mirror/selfservice-invitation"
|
repository: "bmi/opendesk/components/supplier/univention/images-mirror/selfservice-invitation"
|
||||||
tag: "0.19.0@sha256:4215533c7c4497e02666cf04ee77ab866263ae6e595758e8b63018b257e972ad"
|
tag: "0.17.0@sha256:00e6124eecc1b763326023ecaf9702053e24b39b20f5efbcd35dfaad642d2cda"
|
||||||
nubusUdmRestApi:
|
nubusUdmRestApi:
|
||||||
# providerCategory: "Supplier"
|
# providerCategory: "Supplier"
|
||||||
# providerResponsible: "Univention"
|
# providerResponsible: "Univention"
|
||||||
@@ -688,7 +688,7 @@ images:
|
|||||||
# upstreamMirrorStartFrom: ["0", "9", "3"]
|
# upstreamMirrorStartFrom: ["0", "9", "3"]
|
||||||
registry: "registry.opencode.de"
|
registry: "registry.opencode.de"
|
||||||
repository: "bmi/opendesk/components/supplier/univention/images-mirror/udm-rest-api"
|
repository: "bmi/opendesk/components/supplier/univention/images-mirror/udm-rest-api"
|
||||||
tag: "0.39.1@sha256:62324c259bdd8e6273aeaf93df44405ef5e42ca17281d19e2a0d86f4f44b742e"
|
tag: "0.37.1@sha256:a0508191a52ed9c388e0574cf6a97031fdfffcff95ab8ca3e4231c795d3a68df"
|
||||||
nubusUmcGateway:
|
nubusUmcGateway:
|
||||||
# providerCategory: "Supplier"
|
# providerCategory: "Supplier"
|
||||||
# providerResponsible: "Univention"
|
# providerResponsible: "Univention"
|
||||||
@@ -698,7 +698,7 @@ images:
|
|||||||
# upstreamMirrorStartFrom: ["0", "7", "3"]
|
# upstreamMirrorStartFrom: ["0", "7", "3"]
|
||||||
registry: "registry.opencode.de"
|
registry: "registry.opencode.de"
|
||||||
repository: "bmi/opendesk/components/supplier/univention/images-mirror/umc-gateway"
|
repository: "bmi/opendesk/components/supplier/univention/images-mirror/umc-gateway"
|
||||||
tag: "0.49.0@sha256:a6b779fc7f214f045fe04783d7d137b1dca15dcfafa369508225ab7734bc0287"
|
tag: "0.47.1@sha256:71d1fb00a28a7cc83e1a8a675b8e9dc3ff67b1d7f366b2d60f9623fdb5f6e419"
|
||||||
nubusUmcServer:
|
nubusUmcServer:
|
||||||
# providerCategory: "Supplier"
|
# providerCategory: "Supplier"
|
||||||
# providerResponsible: "Univention"
|
# providerResponsible: "Univention"
|
||||||
@@ -708,7 +708,7 @@ images:
|
|||||||
# upstreamMirrorStartFrom: ["0", "7", "3"]
|
# upstreamMirrorStartFrom: ["0", "7", "3"]
|
||||||
registry: "registry.opencode.de"
|
registry: "registry.opencode.de"
|
||||||
repository: "bmi/opendesk/components/supplier/univention/images-mirror/umc-server"
|
repository: "bmi/opendesk/components/supplier/univention/images-mirror/umc-server"
|
||||||
tag: "0.49.0@sha256:94efec7b3559c27b54984d75f43d248139091255b4978ef7bf0219eb6f6d2e48"
|
tag: "0.47.1@sha256:8f451e7b50c6a32a8d4bad5959a103e34e3ae8d0bef2fe3df2dc8fbe7ae9c1b6"
|
||||||
nubusUmcServerProxy:
|
nubusUmcServerProxy:
|
||||||
# providerCategory: "Supplier"
|
# providerCategory: "Supplier"
|
||||||
# providerResponsible: "Univention"
|
# providerResponsible: "Univention"
|
||||||
@@ -726,7 +726,7 @@ images:
|
|||||||
# upstreamMirrorStartFrom: ["0", "9", "4"]
|
# upstreamMirrorStartFrom: ["0", "9", "4"]
|
||||||
registry: "registry.opencode.de"
|
registry: "registry.opencode.de"
|
||||||
repository: "bmi/opendesk/components/supplier/univention/images-mirror/wait-for-dependency"
|
repository: "bmi/opendesk/components/supplier/univention/images-mirror/wait-for-dependency"
|
||||||
tag: "0.35.0@sha256:61dfaea28a2b150459138dfd6a554ce53850cee05ef2a72ab47bbe23f2a92d0d"
|
tag: "0.34.0@sha256:6ed1ae644160f0e69c00b4ea90efd4ea4aeaadeefb87e77f3454bcafaacd5e01"
|
||||||
opendeskKeycloakBootstrap:
|
opendeskKeycloakBootstrap:
|
||||||
# providerCategory: "Platform"
|
# providerCategory: "Platform"
|
||||||
# providerResponsible: "openDesk"
|
# providerResponsible: "openDesk"
|
||||||
|
|||||||
@@ -10,9 +10,6 @@ helmfiles:
|
|||||||
values: &values
|
values: &values
|
||||||
- "helmfile/environments/default/*.yaml.gotmpl"
|
- "helmfile/environments/default/*.yaml.gotmpl"
|
||||||
- {{ toYaml .Values | nindent 8 }}
|
- {{ toYaml .Values | nindent 8 }}
|
||||||
{{- if eq (env "OPENDESK_ENTERPRISE") "true" }}
|
|
||||||
- "helmfile/environments/default-enterprise-overrides/*.yaml.gotmpl"
|
|
||||||
{{- end }}
|
|
||||||
- path: "helmfile/apps/opendesk-services/helmfile-child.yaml.gotmpl"
|
- path: "helmfile/apps/opendesk-services/helmfile-child.yaml.gotmpl"
|
||||||
values: *values
|
values: *values
|
||||||
- path: "helmfile/apps/services-external/helmfile-child.yaml.gotmpl"
|
- path: "helmfile/apps/services-external/helmfile-child.yaml.gotmpl"
|
||||||
|
|||||||
Reference in New Issue
Block a user