mirror of
https://gitlab.opencode.de/bmi/opendesk/deployment/opendesk.git
synced 2025-12-06 15:31:38 +01:00
Compare commits
36 Commits
thollwed/f
...
feat/use-n
| Author | SHA1 | Date | |
|---|---|---|---|
|
4f819f59ac | ||
|
|
0d900c1288 | ||
|
|
bccb58ba81 | ||
|
|
4cd2df033f | ||
|
|
07e55ccab6 | ||
|
|
d3a2c0207f | ||
|
|
ea9e5bb05a | ||
|
|
475faed41c | ||
|
|
159c1a2861 | ||
|
|
cc804f2746 | ||
|
|
a85afa5ff2 | ||
|
|
c081f81591 | ||
|
|
630ac96a0e | ||
|
|
69be8c9270 | ||
|
|
f3c66413c8 | ||
|
|
a075532cc6 | ||
|
|
c318841e30 | ||
|
|
0b52874a45 | ||
|
|
fe2fc9fb99 | ||
|
|
3ace55cf74 | ||
|
|
1dd754b91c | ||
|
|
767f35d30b | ||
|
|
df0b51deca | ||
|
|
631c9f3b23 | ||
|
|
dadef82425 | ||
|
|
da30cb44d3 | ||
|
|
cf0c94d358 | ||
|
|
a28e62aea4 | ||
|
|
61a2a608a8 | ||
|
|
d588e63e0b | ||
|
|
9ead605b1b | ||
|
|
5cb0555d69 | ||
|
|
822f997250 | ||
|
|
40e1db297e | ||
|
|
0de1e11a3a | ||
|
|
643af7eccb |
@@ -317,7 +317,7 @@ ums-deploy:
|
|||||||
($DEPLOY_ALL_COMPONENTS != "no" || $DEPLOY_UMS != "no")
|
($DEPLOY_ALL_COMPONENTS != "no" || $DEPLOY_UMS != "no")
|
||||||
when: "on_success"
|
when: "on_success"
|
||||||
variables:
|
variables:
|
||||||
COMPONENT: "univention-management-stack"
|
COMPONENT: "nubus"
|
||||||
|
|
||||||
ox-deploy:
|
ox-deploy:
|
||||||
stage: "component-deploy-stage-1"
|
stage: "component-deploy-stage-1"
|
||||||
|
|||||||
@@ -7,6 +7,7 @@ SPDX-License-Identifier: Apache-2.0
|
|||||||
|
|
||||||
* [Disclaimer](#disclaimer)
|
* [Disclaimer](#disclaimer)
|
||||||
* [From v0.8.1](#from-v081)
|
* [From v0.8.1](#from-v081)
|
||||||
|
* [Nubus LDAP PVCs](#nubus-ldap-pvcs)
|
||||||
* [Updated customizable template attributes](#updated-customizable-template-attributes)
|
* [Updated customizable template attributes](#updated-customizable-template-attributes)
|
||||||
* [`migrations` S3 bucket](#migrations-s3-bucket)
|
* [`migrations` S3 bucket](#migrations-s3-bucket)
|
||||||
|
|
||||||
@@ -18,6 +19,60 @@ Though we try to ease the pain when it comes to 0.x upgrades. That is what this
|
|||||||
|
|
||||||
# From v0.8.1
|
# From v0.8.1
|
||||||
|
|
||||||
|
## Nubus LDAP PVCs
|
||||||
|
|
||||||
|
openDesk is integrating the latest [Nubus](https://www.univention.de/produkte/nubus/) development from Univention. The new redundant and scalable LDAP requires some manual action to upgrade from 0.8.1:
|
||||||
|
|
||||||
|
- Action: Before the upgrade you have to prepare the PVCs for the LDAP primary Pods. First scale down the 0.8.1 LDAP Pod and pre-create and pre-populate the new PVCs with the data from the current LDAP PVC. You can do all this by running the following snippet on your commandline, after setting `NAMESPACE` to the appropriate value. The LDAP secondaries get sync'd from the primary to fill their own PVCs data.
|
||||||
|
```
|
||||||
|
export NAMESPACE=YOUR_NAMESPACE
|
||||||
|
kubectl -n $NAMESPACE scale --replicas=0 statefulset/ums-ldap-notifier
|
||||||
|
kubectl -n $NAMESPACE scale --replicas=0 statefulset/ums-ldap-server
|
||||||
|
kubectl -n $NAMESPACE apply -f - <<EOF
|
||||||
|
---
|
||||||
|
apiVersion: v1
|
||||||
|
kind: PersistentVolumeClaim
|
||||||
|
metadata:
|
||||||
|
# Target PVC name
|
||||||
|
name: shared-data-ums-ldap-server-primary-0
|
||||||
|
spec:
|
||||||
|
dataSource:
|
||||||
|
# Source PVC name
|
||||||
|
name: shared-data-ums-ldap-server-0
|
||||||
|
kind: PersistentVolumeClaim
|
||||||
|
accessModes:
|
||||||
|
- ReadWriteOnce
|
||||||
|
resources:
|
||||||
|
requests:
|
||||||
|
# Target PVC size (deployments default to 1Gi)
|
||||||
|
storage: 1Gi
|
||||||
|
...
|
||||||
|
---
|
||||||
|
apiVersion: v1
|
||||||
|
kind: PersistentVolumeClaim
|
||||||
|
metadata:
|
||||||
|
# Target PVC name
|
||||||
|
name: shared-data-ums-ldap-server-primary-1
|
||||||
|
spec:
|
||||||
|
dataSource:
|
||||||
|
# Source PVC name
|
||||||
|
name: shared-data-ums-ldap-server-0
|
||||||
|
kind: PersistentVolumeClaim
|
||||||
|
accessModes:
|
||||||
|
- ReadWriteOnce
|
||||||
|
resources:
|
||||||
|
requests:
|
||||||
|
# Target PVC size (deployments default to 1Gi)
|
||||||
|
storage: 1Gi
|
||||||
|
...
|
||||||
|
EOF
|
||||||
|
```
|
||||||
|
|
||||||
|
- Once you have verified that your upgrade was successful, you can delete the previous LDAP's PVC:
|
||||||
|
```
|
||||||
|
kubectl -n $NAMESPACE delete pvc shared-data-ums-ldap-server-0
|
||||||
|
```
|
||||||
|
|
||||||
## Updated customizable template attributes
|
## Updated customizable template attributes
|
||||||
|
|
||||||
- Action: Please ensure you update you custom deployment values according with the updated default value structure.
|
- Action: Please ensure you update you custom deployment values according with the updated default value structure.
|
||||||
|
|||||||
@@ -3,15 +3,15 @@
|
|||||||
---
|
---
|
||||||
repositories:
|
repositories:
|
||||||
# Univention Management Stack Umbrella Chart
|
# Univention Management Stack Umbrella Chart
|
||||||
- name: "ums"
|
- name: "nubus"
|
||||||
keyring: "../../files/gpg-pubkeys/univention-de.gpg"
|
keyring: "../../files/gpg-pubkeys/univention-de.gpg"
|
||||||
verify: {{ .Values.charts.ums.verify }}
|
verify: {{ .Values.charts.nubus.verify }}
|
||||||
username: {{ env "OD_PRIVATE_REGISTRY_USERNAME" | quote }}
|
username: {{ env "OD_PRIVATE_REGISTRY_USERNAME" | quote }}
|
||||||
password: {{ env "OD_PRIVATE_REGISTRY_PASSWORD" | quote }}
|
password: {{ env "OD_PRIVATE_REGISTRY_PASSWORD" | quote }}
|
||||||
oci: true
|
oci: true
|
||||||
url:
|
url:
|
||||||
"{{ .Values.global.helmRegistry | default .Values.charts.ums.registry }}/\
|
"{{ .Values.global.helmRegistry | default .Values.charts.nubus.registry }}/\
|
||||||
{{ .Values.charts.ums.repository }}"
|
{{ .Values.charts.nubus.repository }}"
|
||||||
# OpenDesk Keycloak Bootstrap Chart
|
# OpenDesk Keycloak Bootstrap Chart
|
||||||
- name: "opendesk-keycloak-bootstrap-repo"
|
- name: "opendesk-keycloak-bootstrap-repo"
|
||||||
keyring: "../../files/gpg-pubkeys/opencode.gpg"
|
keyring: "../../files/gpg-pubkeys/opencode.gpg"
|
||||||
@@ -25,10 +25,12 @@ repositories:
|
|||||||
releases:
|
releases:
|
||||||
# Univention Management Stack Umbrella Chart
|
# Univention Management Stack Umbrella Chart
|
||||||
- name: "ums"
|
- name: "ums"
|
||||||
chart: "ums/{{ .Values.charts.ums.name }}"
|
chart: "nubus/{{ .Values.charts.nubus.name }}"
|
||||||
version: "{{ .Values.charts.ums.version }}"
|
version: "{{ .Values.charts.nubus.version }}"
|
||||||
values:
|
values:
|
||||||
- "values-umbrella.yaml.gotmpl"
|
- "values-nubus.yaml.gotmpl"
|
||||||
|
- "values-opendesk-customization.yaml.gotmpl"
|
||||||
|
- "values-opendesk-images.yaml.gotmpl"
|
||||||
installed: {{ .Values.univentionManagementStack.enabled }}
|
installed: {{ .Values.univentionManagementStack.enabled }}
|
||||||
timeout: 900
|
timeout: 900
|
||||||
# OpenDesk Keycloak Bootstrap Chart
|
# OpenDesk Keycloak Bootstrap Chart
|
||||||
291
helmfile/apps/nubus/values-nubus.yaml.gotmpl
Normal file
291
helmfile/apps/nubus/values-nubus.yaml.gotmpl
Normal file
@@ -0,0 +1,291 @@
|
|||||||
|
# SPDX-FileCopyrightText: 2024 Bundesministerium des Innern und für Heimat, PG ZenDiS "Projektgruppe für Aufbau ZenDiS"
|
||||||
|
# SPDX-License-Identifier: Apache-2.0
|
||||||
|
---
|
||||||
|
global:
|
||||||
|
nubusDeployment: true
|
||||||
|
ldap:
|
||||||
|
baseDn: {{ .Values.ldap.baseDn | quote }}
|
||||||
|
domainName: {{ .Values.global.domain | quote }}
|
||||||
|
domain: {{ .Values.global.domain | quote }}
|
||||||
|
ingressClass: {{ .Values.ingress.ingressClassName | default "nginx" | quote }}
|
||||||
|
certManagerIssuer: "letsencrypt-prod-dns"
|
||||||
|
nubusMasterPassword: {{ env "MASTER_PASSWORD" | default "sovereign-workplace" | quote }}
|
||||||
|
keycloak:
|
||||||
|
realm: {{ .Values.platform.realm | quote }}
|
||||||
|
objectStorage:
|
||||||
|
bucket: {{ .Values.objectstores.univentionManagementStack.bucket | quote }}
|
||||||
|
connection:
|
||||||
|
host: "minio"
|
||||||
|
port: "9000"
|
||||||
|
protocol: "http"
|
||||||
|
credentialOverride:
|
||||||
|
ldapServer:
|
||||||
|
adminPassword: {{ .Values.secrets.univentionManagementStack.ldapSecret | quote}}
|
||||||
|
defaultUsers:
|
||||||
|
defaultAdminPassword: {{ .Values.secrets.univentionManagementStack.defaultAccounts.adminPassword | quote}}
|
||||||
|
defaultUserPassword: {{ .Values.secrets.univentionManagementStack.defaultAccounts.userPassword | quote}}
|
||||||
|
|
||||||
|
|
||||||
|
|
||||||
|
# Nubus bundled services
|
||||||
|
postgresql:
|
||||||
|
enabled: false
|
||||||
|
provisioning:
|
||||||
|
enabled: false
|
||||||
|
|
||||||
|
minio:
|
||||||
|
enabled: false
|
||||||
|
|
||||||
|
# Nubus services which use customer supplied services
|
||||||
|
keycloak:
|
||||||
|
keycloak:
|
||||||
|
auth:
|
||||||
|
username: "kcadmin"
|
||||||
|
credentialSecret:
|
||||||
|
name: "ums-opendesk-keycloak-credentials"
|
||||||
|
key: "admin_password"
|
||||||
|
postgresql:
|
||||||
|
connection:
|
||||||
|
host: {{ .Values.databases.keycloak.host | quote }}
|
||||||
|
port: {{ .Values.databases.keycloak.port }}
|
||||||
|
auth:
|
||||||
|
username: {{ .Values.databases.keycloak.username | quote }}
|
||||||
|
database: {{ .Values.databases.keycloak.name | quote }}
|
||||||
|
credentialSecret:
|
||||||
|
name: "ums-keycloak-postgresql-opendesk-credentials"
|
||||||
|
key: "keycloakDatabasePassword"
|
||||||
|
config:
|
||||||
|
exposeAdminConsole: {{ .Values.debug.enabled }}
|
||||||
|
|
||||||
|
nubusGuardian:
|
||||||
|
provisioning:
|
||||||
|
enabled: true
|
||||||
|
config:
|
||||||
|
keycloak:
|
||||||
|
credentialSecret:
|
||||||
|
name: "ums-opendesk-keycloak-credentials"
|
||||||
|
key: "admin_password"
|
||||||
|
managementApi:
|
||||||
|
credentialSecret:
|
||||||
|
name: "ums-opendesk-guardian-client-secret"
|
||||||
|
key: "managementApiClientSecret"
|
||||||
|
|
||||||
|
postgresql:
|
||||||
|
connection:
|
||||||
|
host: {{ .Values.databases.umsGuardianManagementApi.host | quote }}
|
||||||
|
port: {{ .Values.databases.umsGuardianManagementApi.port | quote }}
|
||||||
|
auth:
|
||||||
|
username: {{ .Values.databases.umsGuardianManagementApi.username | quote }}
|
||||||
|
database: {{ .Values.databases.umsGuardianManagementApi.name | quote }}
|
||||||
|
credentialSecret:
|
||||||
|
name: "ums-guardian-postgresql-opendesk-credentials"
|
||||||
|
key: "guardianDatabasePassword"
|
||||||
|
|
||||||
|
nubusNotificationsApi:
|
||||||
|
postgresql:
|
||||||
|
connection:
|
||||||
|
host: {{ .Values.databases.umsNotificationsApi.host | quote }}
|
||||||
|
port: {{ .Values.databases.umsNotificationsApi.port | quote }}
|
||||||
|
auth:
|
||||||
|
username: {{ .Values.databases.umsNotificationsApi.username | quote }}
|
||||||
|
database: {{ .Values.databases.umsNotificationsApi.name | quote }}
|
||||||
|
existingSecret: "ums-notifications-api-postgresql-opendesk-credentials"
|
||||||
|
|
||||||
|
|
||||||
|
nubusKeycloakExtensions:
|
||||||
|
keycloak:
|
||||||
|
auth:
|
||||||
|
username: "kcadmin"
|
||||||
|
credentialSecret:
|
||||||
|
name: "ums-opendesk-keycloak-credentials"
|
||||||
|
key: "admin_password"
|
||||||
|
proxy:
|
||||||
|
ingress:
|
||||||
|
paths:
|
||||||
|
{{- if .Values.debug.enabled }}
|
||||||
|
- pathType: "Prefix"
|
||||||
|
path: "/admin/"
|
||||||
|
{{- end }}
|
||||||
|
- pathType: "Prefix"
|
||||||
|
path: "/realms/"
|
||||||
|
- pathType: "Prefix"
|
||||||
|
path: "/js/"
|
||||||
|
- pathType: "Prefix"
|
||||||
|
path: "/resources/"
|
||||||
|
- pathType: "Prefix"
|
||||||
|
path: "/fingerprintjs"
|
||||||
|
|
||||||
|
|
||||||
|
postgresql:
|
||||||
|
connection:
|
||||||
|
host: {{ .Values.databases.keycloakExtension.host | quote }}
|
||||||
|
port: {{ .Values.databases.keycloakExtension.port | quote }}
|
||||||
|
auth:
|
||||||
|
database: {{ .Values.databases.keycloakExtension.name | quote }}
|
||||||
|
username: {{ .Values.databases.keycloakExtension.username | quote }}
|
||||||
|
credentialSecret:
|
||||||
|
name: "ums-keycloak-extensions-postgresql-opendesk-credentials"
|
||||||
|
key: "umcKeycloakExtensionsDatabasePassword"
|
||||||
|
smtp:
|
||||||
|
connection:
|
||||||
|
host: {{ .Values.smtp.host | quote }}
|
||||||
|
port: {{ .Values.smtp.port | quote }}
|
||||||
|
auth:
|
||||||
|
username: {{ .Values.smtp.username | quote }}
|
||||||
|
credentialSecret:
|
||||||
|
name: "ums-keycloak-extensions-smtp-opendesk-credentials"
|
||||||
|
key: "umcKeycloakExtensionsSmtpPassword"
|
||||||
|
|
||||||
|
nubusPortalListener:
|
||||||
|
portalListener:
|
||||||
|
objectStorageEndpoint: {{ .Values.objectstores.univentionManagementStack.endpoint | default (printf "https://%s.%s" .Values.global.hosts.minioApi .Values.global.domain) | quote }}
|
||||||
|
objectStorageBucket: {{ .Values.objectstores.univentionManagementStack.bucket | quote }}
|
||||||
|
objectStorageCredentialSecret:
|
||||||
|
name: "ums-portal-listener-minio-opendesk-credentials"
|
||||||
|
accessKeyKey: "access-key-id"
|
||||||
|
secretKeyKey: "secret-key-id"
|
||||||
|
|
||||||
|
nubusPortalServer:
|
||||||
|
portalServer:
|
||||||
|
objectStorageEndpoint: {{ .Values.objectstores.univentionManagementStack.endpoint | default (printf "https://%s.%s" .Values.global.hosts.minioApi .Values.global.domain) | quote }}
|
||||||
|
objectStorageBucket: {{ .Values.objectstores.univentionManagementStack.bucket | quote }}
|
||||||
|
objectStorageCredentialSecret:
|
||||||
|
name: "ums-portal-server-minio-opendesk-credentials"
|
||||||
|
accessKeyKey: "access-key-id"
|
||||||
|
secretKeyKey: "secret-key-id"
|
||||||
|
centralNavigation:
|
||||||
|
enabled: true
|
||||||
|
authenticatorSecretName: "ums-opendesk-portal-server-central-navigation"
|
||||||
|
|
||||||
|
# NOTE: disabled until the next update.
|
||||||
|
nubusProvisioning:
|
||||||
|
enabled: false
|
||||||
|
nubusUdmListener:
|
||||||
|
enabled: false
|
||||||
|
# FIXME: roll back to previous version
|
||||||
|
nubusSelfServiceListener:
|
||||||
|
enabled: false
|
||||||
|
|
||||||
|
# Nubus services
|
||||||
|
nubusStackDataUms:
|
||||||
|
stackDataContext:
|
||||||
|
umcPostgresqlHostname: {{ .Values.databases.umsSelfservice.host | quote }}
|
||||||
|
umcPostgresqlUsername: {{ .Values.databases.umsSelfservice.username | quote }}
|
||||||
|
umcMemcachedHostname: {{ .Values.cache.umsSelfservice.host | quote }}
|
||||||
|
umcMemcachedUsername: ""
|
||||||
|
externalMailDomain: {{ .Values.global.mailDomain | default .Values.global.domain }}
|
||||||
|
umcHtmlTitle: "openDesk Portal"
|
||||||
|
nubusUmcServer:
|
||||||
|
memcached:
|
||||||
|
auth:
|
||||||
|
username: ""
|
||||||
|
|
||||||
|
# TODO: Remove values when upstreaming fixes
|
||||||
|
nubusStackDataSwp:
|
||||||
|
stackDataContext:
|
||||||
|
ldapSearchUsers:
|
||||||
|
{{- range $username, $password := .Values.secrets.univentionManagementStack.ldapSearch }}
|
||||||
|
- username: {{ printf "ldapsearch_%s" $username | quote }}
|
||||||
|
password: {{ $password | quote }}
|
||||||
|
lastname: "LDAP-Search-User"
|
||||||
|
{{- end }}
|
||||||
|
externalMailDomain: {{ .Values.global.mailDomain | default .Values.global.domain }}
|
||||||
|
smtpHost: {{ .Values.smtp.host | quote }}
|
||||||
|
smtpPort: {{ .Values.smtp.port | quote }}
|
||||||
|
smtpUser: {{ .Values.smtp.username | quote }}
|
||||||
|
ldapBase: {{ .Values.ldap.baseDn }}
|
||||||
|
# FIXME: Should be templated correctly in the future
|
||||||
|
portalRealtimeCollaborationLinkBase: {{ printf "https://%s.%s" .Values.global.hosts.element .Values.global.domain }}
|
||||||
|
portalRealtimeVideoconferenceLinkBase: {{ printf "https://%s.%s" .Values.global.hosts.jitsi .Values.global.domain }}
|
||||||
|
portalManagementProjectLinkBase: {{ printf "https://%s.%s" .Values.global.hosts.openproject .Values.global.domain }}
|
||||||
|
portalManagementKnowledgeLinkBase: {{ printf "https://%s.%s" .Values.global.hosts.xwiki .Values.global.domain }}
|
||||||
|
portalGroupwareLinkBase: {{ printf "https://%s.%s" .Values.global.hosts.openxchange .Values.global.domain }}
|
||||||
|
portalFileshareLinkBase: {{ printf "https://%s.%s" .Values.global.hosts.nextcloud .Values.global.domain }}
|
||||||
|
portalTitleDE: "openDesk Portal"
|
||||||
|
portalTitleEN: "openDesk Portal"
|
||||||
|
|
||||||
|
nubusUmcServer:
|
||||||
|
postgresql:
|
||||||
|
bundled: false
|
||||||
|
connection:
|
||||||
|
host: {{ .Values.databases.umsSelfservice.host | quote }}
|
||||||
|
port: {{ .Values.databases.umsSelfservice.port | quote }}
|
||||||
|
auth:
|
||||||
|
username: {{ .Values.databases.umsSelfservice.username | quote }}
|
||||||
|
database: {{ .Values.databases.umsSelfservice.name | quote }}
|
||||||
|
credentialSecret:
|
||||||
|
name: "ums-umc-server-postgresql-opendesk-credentials"
|
||||||
|
key: "umcServerDatabasePassword"
|
||||||
|
memcached:
|
||||||
|
bundled: false
|
||||||
|
server: {{ .Values.cache.umsSelfservice.host | quote }}
|
||||||
|
auth:
|
||||||
|
credentialSecret:
|
||||||
|
name: "ums-umc-server-memcached-opendesk-credentials"
|
||||||
|
key: "umcServerMemcachedPassword"
|
||||||
|
smtp:
|
||||||
|
credentialSecret:
|
||||||
|
name: "ums-umc-server-smtp-credentials-custom"
|
||||||
|
|
||||||
|
nubusUmcGateway:
|
||||||
|
umcGateway:
|
||||||
|
umcHtmlTitle: "openDesk Portal"
|
||||||
|
|
||||||
|
nubusKeycloakBootstrap:
|
||||||
|
keycloak:
|
||||||
|
auth:
|
||||||
|
username: "kcadmin"
|
||||||
|
credentialSecret:
|
||||||
|
name: "ums-opendesk-keycloak-credentials"
|
||||||
|
key: "admin_password"
|
||||||
|
bootstrap:
|
||||||
|
ldapMappers:
|
||||||
|
- ldapAndUserModelAttributeName: "opendeskProjectmanagementAdmin"
|
||||||
|
- ldapAndUserModelAttributeName: "oxContextIDNum"
|
||||||
|
twoFactorAuthentication:
|
||||||
|
enabled: true
|
||||||
|
group: "2fa-users"
|
||||||
|
|
||||||
|
# Credential secrets for accessing customer supplied services
|
||||||
|
extraSecrets:
|
||||||
|
- name: "ums-opendesk-portal-server-central-navigation"
|
||||||
|
stringData:
|
||||||
|
authenticator.secret: {{ .Values.secrets.centralnavigation.apiKey | quote }}
|
||||||
|
- name: "ums-opendesk-guardian-client-secret"
|
||||||
|
stringData:
|
||||||
|
managementApiClientSecret: {{ .Values.secrets.keycloak.clientSecret.guardian | quote }}
|
||||||
|
- name: "ums-opendesk-keycloak-credentials"
|
||||||
|
stringData:
|
||||||
|
admin_password: {{ .Values.secrets.keycloak.adminPassword | quote }}
|
||||||
|
- name: "ums-keycloak-postgresql-opendesk-credentials"
|
||||||
|
stringData:
|
||||||
|
keycloakDatabasePassword: {{ .Values.databases.keycloak.password | default .Values.secrets.postgresql.keycloakUser | quote }}
|
||||||
|
- name: "ums-guardian-postgresql-opendesk-credentials"
|
||||||
|
stringData:
|
||||||
|
guardianDatabasePassword: {{ .Values.databases.umsGuardianManagementApi.password | default .Values.secrets.postgresql.umsGuardianManagementApiUser | quote }}
|
||||||
|
- name: "ums-notifications-api-postgresql-opendesk-credentials"
|
||||||
|
stringData:
|
||||||
|
password: {{ .Values.databases.umsNotificationsApi.password | default .Values.secrets.postgresql.umsNotificationsApiUser | quote }}
|
||||||
|
- name: "ums-umc-server-postgresql-opendesk-credentials"
|
||||||
|
stringData:
|
||||||
|
umcServerDatabasePassword: {{ .Values.databases.umsSelfservice.password | default .Values.secrets.postgresql.umsSelfserviceUser | quote }}
|
||||||
|
- name: "ums-umc-server-memcached-opendesk-credentials"
|
||||||
|
stringData:
|
||||||
|
umcServerMemcachedPassword: ""
|
||||||
|
- name: "ums-keycloak-extensions-postgresql-opendesk-credentials"
|
||||||
|
stringData:
|
||||||
|
umcKeycloakExtensionsDatabasePassword: {{ .Values.databases.keycloakExtension.password | default .Values.secrets.postgresql.keycloakExtensionUser | quote }}
|
||||||
|
- name: "ums-keycloak-extensions-smtp-opendesk-credentials"
|
||||||
|
stringData:
|
||||||
|
umcKeycloakExtensionsSmtpPassword: {{ .Values.smtp.password | quote }}
|
||||||
|
- name: "ums-portal-server-minio-opendesk-credentials"
|
||||||
|
stringData:
|
||||||
|
access-key-id: {{ .Values.objectstores.univentionManagementStack.username | quote }}
|
||||||
|
secret-key-id: {{ .Values.objectstores.univentionManagementStack.secretKey | default .Values.secrets.minio.umsUser | quote }}
|
||||||
|
- name: "ums-portal-listener-minio-opendesk-credentials"
|
||||||
|
stringData:
|
||||||
|
access-key-id: {{ .Values.objectstores.univentionManagementStack.username | quote }}
|
||||||
|
secret-key-id: {{ .Values.objectstores.univentionManagementStack.secretKey | default .Values.secrets.minio.umsUser | quote }}
|
||||||
|
- name: "ums-umc-server-smtp-credentials-custom"
|
||||||
|
stringData:
|
||||||
|
password: {{ .Values.smtp.password | quote }}
|
||||||
286
helmfile/apps/nubus/values-opendesk-customization.yaml.gotmpl
Normal file
286
helmfile/apps/nubus/values-opendesk-customization.yaml.gotmpl
Normal file
@@ -0,0 +1,286 @@
|
|||||||
|
# SPDX-FileCopyrightText: 2024 Bundesministerium des Innern und für Heimat, PG ZenDiS "Projektgruppe für Aufbau ZenDiS"
|
||||||
|
# SPDX-License-Identifier: Apache-2.0
|
||||||
|
---
|
||||||
|
keycloak:
|
||||||
|
enabled: true
|
||||||
|
podAnnotations:
|
||||||
|
intents.otterize.com/service-name: "ums-keycloak"
|
||||||
|
replicaCount: {{ .Values.replicas.keycloak }}
|
||||||
|
resources:
|
||||||
|
{{ .Values.resources.umsKeycloak | toYaml | nindent 4 }}
|
||||||
|
|
||||||
|
guardian:
|
||||||
|
authorizationApi:
|
||||||
|
podAnnotations:
|
||||||
|
intents.otterize.com/service-name: "ums-guardian-authorization-api"
|
||||||
|
resources:
|
||||||
|
{{ .Values.resources.umsGuardianAuthorizationApi | toYaml | nindent 6 }}
|
||||||
|
managementApi:
|
||||||
|
podAnnotations:
|
||||||
|
intents.otterize.com/service-name: "ums-guardian-management-api"
|
||||||
|
resources:
|
||||||
|
{{ .Values.resources.umsGuardianManagementApi | toYaml | nindent 6 }}
|
||||||
|
managementUi:
|
||||||
|
podAnnotations:
|
||||||
|
intents.otterize.com/service-name: "ums-guardian-management-ui"
|
||||||
|
resources:
|
||||||
|
{{ .Values.resources.umsGuardianManagementUi | toYaml | nindent 6 }}#
|
||||||
|
openPolicyAgent:
|
||||||
|
podAnnotations:
|
||||||
|
intents.otterize.com/service-name: "ums-ums-open-policy-agent"
|
||||||
|
resources:
|
||||||
|
{{ .Values.resources.umsOpenPolicyAgent | toYaml | nindent 6 }}
|
||||||
|
provisioning:
|
||||||
|
# Using openDesk keycloak provisioning
|
||||||
|
enabled: false
|
||||||
|
|
||||||
|
nubusNotificationsApi:
|
||||||
|
additionalAnnotations:
|
||||||
|
intents.otterize.com/service-name: "ums-notifications-api"
|
||||||
|
serviceAccount:
|
||||||
|
annotations:
|
||||||
|
intended.usage: "compliance"
|
||||||
|
replicaCount: {{ .Values.replicas.umsNotificationsApi }}
|
||||||
|
resources:
|
||||||
|
{{ .Values.resources.umsNotificationsApi | toYaml | nindent 4 }}
|
||||||
|
|
||||||
|
nubusUmcServer:
|
||||||
|
additionalAnnotations:
|
||||||
|
intents.otterize.com/service-name: "ums-umc-server"
|
||||||
|
replicaCount: {{ .Values.replicas.umsUmcServer }}
|
||||||
|
resources:
|
||||||
|
{{ .Values.resources.umsUmcServer | toYaml | nindent 4 }}
|
||||||
|
selfService:
|
||||||
|
passwordresetEmailBody: |
|
||||||
|
Sehr geehrte Benutzerin, sehr geehrter Benutzer,
|
||||||
|
|
||||||
|
Ihr Benutzername für {domainname} lautet: {username}
|
||||||
|
|
||||||
|
Sie erhalten diese Nachricht, da Sie Ihr Passwort zurücksetzen möchten oder weil Ihr Benutzer neu im System angelegt wurde.
|
||||||
|
|
||||||
|
Klicken Sie bitte auf den folgenden Link, um Ihr Passwort zu setzen:
|
||||||
|
https://{fqdn}/univention/portal/#/selfservice/newpassword/?token={token}&username={username}
|
||||||
|
|
||||||
|
Der genannte Link ist nur 48 Stunden gültig, danach fordern Sie ihn bitte erneut an unter:
|
||||||
|
https://{fqdn}/univention/portal/#/selfservice/passwordforgotten
|
||||||
|
|
||||||
|
Mit freundlichen Grüßen
|
||||||
|
Ihr {domainname} Passwort-Service
|
||||||
|
|
||||||
|
nubusKeycloakExtensions:
|
||||||
|
handler:
|
||||||
|
replicaCount: {{ .Values.replicas.umsKeycloakExtensionsHandler }}
|
||||||
|
podAnnotations:
|
||||||
|
intents.otterize.com/service-name: "ums-keycloak-extensions-handler"
|
||||||
|
resources:
|
||||||
|
{{ .Values.resources.umsKeycloakExtensionHandler | toYaml | nindent 6 }}
|
||||||
|
proxy:
|
||||||
|
replicaCount: {{ .Values.replicas.umsKeycloakExtensionsProxy }}
|
||||||
|
podAnnotations:
|
||||||
|
intents.otterize.com/service-name: "ums-keycloak-extensions-proxy"
|
||||||
|
resources:
|
||||||
|
{{ .Values.resources.umsKeycloakExtensionProxy | toYaml | nindent 6 }}
|
||||||
|
|
||||||
|
nubusPortalListener:
|
||||||
|
podAnnotations:
|
||||||
|
intents.otterize.com/service-name: "ums-portal-listener"
|
||||||
|
replicaCount: {{ .Values.replicas.umsPortalListener }}
|
||||||
|
resources:
|
||||||
|
{{ .Values.resources.umsPortalListener | toYaml | nindent 4 }}
|
||||||
|
persistence:
|
||||||
|
storageClass: {{ .Values.persistence.storageClassNames.RWO | quote }}
|
||||||
|
size: {{ .Values.persistence.size.univentionManagementStack.portalListener | quote }}
|
||||||
|
|
||||||
|
nubusPortalServer:
|
||||||
|
additionalAnnotations:
|
||||||
|
intents.otterize.com/service-name: "ums-portal-server"
|
||||||
|
serviceAccount:
|
||||||
|
annotations:
|
||||||
|
intended.usage: "compliance"
|
||||||
|
replicaCount: {{ .Values.replicas.umsPortalServer }}
|
||||||
|
resources:
|
||||||
|
{{ .Values.resources.umsPortalServer | toYaml | nindent 4 }}
|
||||||
|
|
||||||
|
nubusLdapNotifier:
|
||||||
|
podAnnotations:
|
||||||
|
intents.otterize.com/service-name: "ums-ldap-notifier"
|
||||||
|
replicaCount: {{ .Values.replicas.umsLdapNotifier }}
|
||||||
|
resources:
|
||||||
|
{{ .Values.resources.umsLdapNotifier | toYaml | nindent 4 }}
|
||||||
|
|
||||||
|
nubusLdapServer:
|
||||||
|
additionalAnnotations:
|
||||||
|
intents.otterize.com/service-name: "ums-ldap-server"
|
||||||
|
serviceAccount:
|
||||||
|
annotations:
|
||||||
|
intended.usage: "compliance"
|
||||||
|
initResources: {{ .Values.resources.umsLdapServer | toYaml | nindent 4 }}
|
||||||
|
resources: {{ .Values.resources.umsLdapServer | toYaml | nindent 4 }}
|
||||||
|
persistence:
|
||||||
|
storageClass: {{ .Values.persistence.storageClassNames.RWO | quote }}
|
||||||
|
size: {{ .Values.persistence.size.univentionManagementStack.ldapServerData | quote }}
|
||||||
|
extraVolumes:
|
||||||
|
- name: "opendesk-schemas"
|
||||||
|
configMap:
|
||||||
|
name: "{{ .Release.Name }}-stack-data-swp-schemas"
|
||||||
|
extraVolumeMounts:
|
||||||
|
- name: "opendesk-schemas"
|
||||||
|
mountPath: "/var/lib/univention-ldap-local/local-schema/opendeskFileshare.schema"
|
||||||
|
subPath: "opendeskFileshare.schema"
|
||||||
|
- name: "opendesk-schemas"
|
||||||
|
mountPath: "/var/lib/univention-ldap-local/local-schema/opendeskKnowledgemanagement.schema"
|
||||||
|
subPath: "opendeskKnowledgemanagement.schema"
|
||||||
|
- name: "opendesk-schemas"
|
||||||
|
mountPath: "/var/lib/univention-ldap-local/local-schema/opendeskLearnmanagement.schema"
|
||||||
|
subPath: "opendeskLearnmanagement.schema"
|
||||||
|
- name: "opendesk-schemas"
|
||||||
|
mountPath: "/var/lib/univention-ldap-local/local-schema/opendeskLivecollaboration.schema"
|
||||||
|
subPath: "opendeskLivecollaboration.schema"
|
||||||
|
- name: "opendesk-schemas"
|
||||||
|
mountPath: "/var/lib/univention-ldap-local/local-schema/opendeskProjectmanagement.schema"
|
||||||
|
subPath: "opendeskProjectmanagement.schema"
|
||||||
|
|
||||||
|
nubusPortalFrontend:
|
||||||
|
additionalAnnotations:
|
||||||
|
intents.otterize.com/service-name: "ums-portal-frontend"
|
||||||
|
serviceAccount:
|
||||||
|
annotations:
|
||||||
|
intended.usage: "compliance"
|
||||||
|
replicaCount: {{ .Values.replicas.umsPortalFrontend }}
|
||||||
|
resources:
|
||||||
|
{{ .Values.resources.umsPortalFrontend | toYaml | nindent 4 }}
|
||||||
|
extraVolumes:
|
||||||
|
- name: "opendesk-branding"
|
||||||
|
configMap:
|
||||||
|
name: "ums-stack-data-swp-branding"
|
||||||
|
extraVolumeMounts:
|
||||||
|
- name: "opendesk-branding"
|
||||||
|
mountPath: "/var/www/html/favicon.ico"
|
||||||
|
subPath: "favicon.ico"
|
||||||
|
- name: "opendesk-branding"
|
||||||
|
mountPath: "/var/www/html/css/custom.css"
|
||||||
|
subPath: "custom.css"
|
||||||
|
- name: "opendesk-branding"
|
||||||
|
mountPath: "/var/www/html/icons/logo.svg"
|
||||||
|
subPath: "logo.svg"
|
||||||
|
- name: "opendesk-branding"
|
||||||
|
mountPath: "/var/www/html/icons/logo_small_border.svg"
|
||||||
|
subPath: "logo_small_border.svg"
|
||||||
|
- name: "opendesk-branding"
|
||||||
|
mountPath: "/var/www/html/custom/portal_background_image.png"
|
||||||
|
subPath: "portal_background_image.png"
|
||||||
|
- name: "opendesk-branding"
|
||||||
|
mountPath: "/var/www/html/custom/portal_background_image.svg"
|
||||||
|
subPath: "portal_background_image.svg"
|
||||||
|
|
||||||
|
nubusStackDataUms:
|
||||||
|
additionalAnnotations:
|
||||||
|
intents.otterize.com/service-name: "ums-stack-data-ums"
|
||||||
|
resources:
|
||||||
|
{{ .Values.resources.umsStackDataUms | toYaml | nindent 4 }}
|
||||||
|
|
||||||
|
nubusStackDataSwp:
|
||||||
|
additionalAnnotations:
|
||||||
|
intents.otterize.com/service-name: "ums-stack-data-swp"
|
||||||
|
resources:
|
||||||
|
{{ .Values.resources.umsStackDataSwp | toYaml | nindent 4 }}
|
||||||
|
|
||||||
|
nubusSelfServiceListener:
|
||||||
|
podAnnotations:
|
||||||
|
intents.otterize.com/service-name: "ums-selfservice-listener"
|
||||||
|
resources:
|
||||||
|
{{ .Values.resources.umsSelfserviceListener | toYaml | nindent 4 }}
|
||||||
|
replicaCount: {{ .Values.replicas.umsSelfserviceListener }}
|
||||||
|
|
||||||
|
nubusUdmRestApi:
|
||||||
|
additionalAnnotations:
|
||||||
|
intents.otterize.com/service-name: "ums-udm-rest-api"
|
||||||
|
serviceAccount:
|
||||||
|
annotations:
|
||||||
|
intended.usage: "compliance"
|
||||||
|
resources:
|
||||||
|
{{ .Values.resources.umsUdmRestApi | toYaml | nindent 4 }}
|
||||||
|
initResources:
|
||||||
|
{{ .Values.resources.umsUdmRestApiInit | toYaml | nindent 4 }}
|
||||||
|
replicaCount: {{ .Values.replicas.umsUdmRestApi }}
|
||||||
|
extraVolumes:
|
||||||
|
- name: "attribute-to-group-mapper-hook"
|
||||||
|
configMap:
|
||||||
|
name: "ums-stack-data-swp-attribute-to-group-mapper-hook"
|
||||||
|
extraVolumeMounts:
|
||||||
|
- name: "attribute-to-group-mapper-hook"
|
||||||
|
mountPath: "/usr/lib/python3/dist-packages/univention/admin/hooks.d/AttributeToGroupMapper.py"
|
||||||
|
subPath: "AttributeToGroupMapper.py"
|
||||||
|
- name: "attribute-to-group-mapper-hook"
|
||||||
|
mountPath: "/usr/share/attribute-to-group-mapper/flag_to_group_mapping.json"
|
||||||
|
subPath: "flag_to_group_mapping.json"
|
||||||
|
|
||||||
|
nubusUmcGateway:
|
||||||
|
replicaCount: {{ .Values.replicas.umsUmcGateway }}
|
||||||
|
resources:
|
||||||
|
{{ .Values.resources.umsUmcGateway | toYaml | nindent 4 }}
|
||||||
|
extraVolumes:
|
||||||
|
- name: "entrypoint-swp-patches"
|
||||||
|
configMap:
|
||||||
|
name: "ums-stack-data-swp-umc-gateway-entrypoint"
|
||||||
|
defaultMode: 0555
|
||||||
|
- name: "announcements-customization"
|
||||||
|
configMap:
|
||||||
|
name: "ums-stack-data-swp-umc-server-announcements"
|
||||||
|
defaultMode: 0444
|
||||||
|
extraVolumeMounts:
|
||||||
|
- name: "entrypoint-swp-patches"
|
||||||
|
mountPath: "/entrypoint.d/90-swp.sh"
|
||||||
|
subPath: "90-swp.sh"
|
||||||
|
- name: "announcements-customization"
|
||||||
|
mountPath:
|
||||||
|
"/usr/share/univention-management-console-frontend/js/dijit/themes\
|
||||||
|
/umc/icons/16x16/udm-portals-announcement.png"
|
||||||
|
subPath: "udm-portals-announcement.png"
|
||||||
|
|
||||||
|
nubusKeycloakBootstrap:
|
||||||
|
podAnnotations:
|
||||||
|
intents.otterize.com/service-name: "ums-keycloak-bootstrap"
|
||||||
|
serviceAccount:
|
||||||
|
annotations:
|
||||||
|
intended.usage: "compliance"
|
||||||
|
resources:
|
||||||
|
{{ .Values.resources.umsKeycloakBootstrap | toYaml | nindent 4 }}
|
||||||
|
|
||||||
|
nubusProvisioning:
|
||||||
|
serviceAccount:
|
||||||
|
annotations:
|
||||||
|
intended.usage: "compliance"
|
||||||
|
nats:
|
||||||
|
resources:
|
||||||
|
{{ .Values.resources.nubusProvisioning.nats | toYaml | nindent 6 }}
|
||||||
|
additionalAnnotations:
|
||||||
|
intents.otterize.com/service-name: "ums-provisioning-nats"
|
||||||
|
serviceAccount:
|
||||||
|
annotations:
|
||||||
|
intended.usage: "compliance"
|
||||||
|
api:
|
||||||
|
resources:
|
||||||
|
{{ .Values.resources.nubusProvisioning.api | toYaml | nindent 6 }}
|
||||||
|
additionalAnnotations:
|
||||||
|
intents.otterize.com/service-name: "ums-provisioning-api"
|
||||||
|
dispatcher:
|
||||||
|
resources:
|
||||||
|
{{ .Values.resources.nubusProvisioning.dispatcher | toYaml | nindent 6 }}
|
||||||
|
additionalAnnotations:
|
||||||
|
intents.otterize.com/service-name: "ums-provisioning-dispatcher"
|
||||||
|
prefill:
|
||||||
|
resources:
|
||||||
|
{{ .Values.resources.nubusProvisioning.prefill | toYaml | nindent 6 }}
|
||||||
|
additionalAnnotations:
|
||||||
|
intents.otterize.com/service-name: "ums-provisioning-prefill"
|
||||||
|
registerConsumers:
|
||||||
|
resources:
|
||||||
|
{{ .Values.resources.nubusProvisioning.registerConsumers | toYaml | nindent 6 }}
|
||||||
|
additionalAnnotations:
|
||||||
|
intents.otterize.com/service-name: "ums-provisioning-register-consumers"
|
||||||
|
udmTransformer:
|
||||||
|
resources:
|
||||||
|
{{ .Values.resources.nubusProvisioning.udmTransformer | toYaml | nindent 6 }}
|
||||||
|
additionalAnnotations:
|
||||||
|
intents.otterize.com/service-name: "ums-provisioning-udm-transformer"
|
||||||
230
helmfile/apps/nubus/values-opendesk-images.yaml.gotmpl
Normal file
230
helmfile/apps/nubus/values-opendesk-images.yaml.gotmpl
Normal file
@@ -0,0 +1,230 @@
|
|||||||
|
# SPDX-FileCopyrightText: 2024 Bundesministerium des Innern und für Heimat, PG ZenDiS "Projektgruppe für Aufbau ZenDiS"
|
||||||
|
# SPDX-License-Identifier: Apache-2.0
|
||||||
|
---
|
||||||
|
keycloak:
|
||||||
|
image:
|
||||||
|
registry: {{ .Values.images.nubusKeycloak.registry }}
|
||||||
|
repository: {{ .Values.images.nubusKeycloak.repository }}
|
||||||
|
tag: {{ .Values.images.nubusKeycloak.tag }}
|
||||||
|
|
||||||
|
nubusKeycloakBootstrap:
|
||||||
|
image:
|
||||||
|
registry: {{ .Values.images.nubusKeycloakBootstrap.registry }}
|
||||||
|
repository: {{ .Values.images.nubusKeycloakBootstrap.repository }}
|
||||||
|
tag: {{ .Values.images.nubusKeycloakBootstrap.tag }}
|
||||||
|
|
||||||
|
nubusKeycloakExtensions:
|
||||||
|
handler:
|
||||||
|
image:
|
||||||
|
registry: {{ .Values.images.nubusKeycloakExtensionHandler.registry }}
|
||||||
|
repository: {{ .Values.images.nubusKeycloakExtensionHandler.repository }}
|
||||||
|
tag: {{ .Values.images.nubusKeycloakExtensionHandler.tag }}
|
||||||
|
|
||||||
|
proxy:
|
||||||
|
image:
|
||||||
|
registry: {{ .Values.images.nubusKeycloakExtensionProxy.registry }}
|
||||||
|
repository: {{ .Values.images.nubusKeycloakExtensionProxy.repository }}
|
||||||
|
tag: {{ .Values.images.nubusKeycloakExtensionProxy.tag }}
|
||||||
|
|
||||||
|
nubusLdapNotifier:
|
||||||
|
image:
|
||||||
|
registry: {{ .Values.images.nubusLdapNotifier.registry }}
|
||||||
|
repository: {{ .Values.images.nubusLdapNotifier.repository }}
|
||||||
|
tag: {{ .Values.images.nubusLdapNotifier.tag }}
|
||||||
|
|
||||||
|
nubusLdapServer:
|
||||||
|
ldapServer:
|
||||||
|
image:
|
||||||
|
registry: {{ .Values.images.nubusLdapServer.registry }}
|
||||||
|
repository: {{ .Values.images.nubusLdapServer.repository }}
|
||||||
|
tag: {{ .Values.images.nubusLdapServer.tag }}
|
||||||
|
dhInitcontainer:
|
||||||
|
image:
|
||||||
|
registry: {{ .Values.images.nubusLdapServerDhInitContainer.registry }}
|
||||||
|
repository: {{ .Values.images.nubusLdapServerDhInitContainer.repository }}
|
||||||
|
tag: {{ .Values.images.nubusLdapServerDhInitContainer.tag }}
|
||||||
|
waitForDependency:
|
||||||
|
image:
|
||||||
|
registry: {{ .Values.images.nubusWaitForDependency.registry }}
|
||||||
|
repository: {{ .Values.images.nubusWaitForDependency.repository }}
|
||||||
|
tag: {{ .Values.images.nubusWaitForDependency.tag }}
|
||||||
|
|
||||||
|
|
||||||
|
nubusPortalConsumer:
|
||||||
|
portalConsumer:
|
||||||
|
image:
|
||||||
|
registry: {{ .Values.images.nubusPortalConsumer.registry }}
|
||||||
|
repository: {{ .Values.images.nubusPortalConsumer.repository }}
|
||||||
|
tag: {{ .Values.images.nubusPortalConsumer.tag }}
|
||||||
|
|
||||||
|
|
||||||
|
nubusNotificationsApi:
|
||||||
|
image:
|
||||||
|
registry: {{ .Values.images.nubusNotificationsApi.registry }}
|
||||||
|
repository: {{ .Values.images.nubusNotificationsApi.repository }}
|
||||||
|
tag: {{ .Values.images.nubusNotificationsApi.tag }}
|
||||||
|
|
||||||
|
nubusPortalFrontend:
|
||||||
|
image:
|
||||||
|
registry: {{ .Values.images.nubusPortalFrontend.registry }}
|
||||||
|
repository: {{ .Values.images.nubusPortalFrontend.repository }}
|
||||||
|
tag: {{ .Values.images.nubusPortalFrontend.tag }}
|
||||||
|
|
||||||
|
nubusPortalListener:
|
||||||
|
image:
|
||||||
|
registry: {{ .Values.images.nubusPortalListener.registry }}
|
||||||
|
repository: {{ .Values.images.nubusPortalListener.repository }}
|
||||||
|
tag: {{ .Values.images.nubusPortalListener.tag }}
|
||||||
|
waitForDependency:
|
||||||
|
image:
|
||||||
|
registry: {{ .Values.images.nubusWaitForDependency.registry }}
|
||||||
|
repository: {{ .Values.images.nubusWaitForDependency.repository }}
|
||||||
|
tag: {{ .Values.images.nubusWaitForDependency.tag }}
|
||||||
|
|
||||||
|
nubusPortalServer:
|
||||||
|
image:
|
||||||
|
registry: {{ .Values.images.nubusPortalServer.registry }}
|
||||||
|
repository: {{ .Values.images.nubusPortalServer.repository }}
|
||||||
|
tag: {{ .Values.images.nubusPortalServer.tag }}
|
||||||
|
|
||||||
|
nubusProvisioning:
|
||||||
|
api:
|
||||||
|
image:
|
||||||
|
registry: {{ .Values.images.nubusProvisioningEventsAndConsumerApi.registry }}
|
||||||
|
repository: {{ .Values.images.nubusProvisioningEventsAndConsumerApi.repository }}
|
||||||
|
tag: {{ .Values.images.nubusProvisioningEventsAndConsumerApi.tag }}
|
||||||
|
dispatcher:
|
||||||
|
image:
|
||||||
|
registry: {{ .Values.images.nubusProvisioningDispatcher.registry }}
|
||||||
|
repository: {{ .Values.images.nubusProvisioningDispatcher.repository }}
|
||||||
|
tag: {{ .Values.images.nubusProvisioningDispatcher.tag }}
|
||||||
|
udmTransformer:
|
||||||
|
image:
|
||||||
|
registry: {{ .Values.images.nubusProvisioningUdmTransformer.registry }}
|
||||||
|
repository: {{ .Values.images.nubusProvisioningUdmTransformer.repository }}
|
||||||
|
tag: {{ .Values.images.nubusProvisioningUdmTransformer.tag }}
|
||||||
|
prefill:
|
||||||
|
image:
|
||||||
|
registry: {{ .Values.images.nubusProvisioningPrefill.registry }}
|
||||||
|
repository: {{ .Values.images.nubusProvisioningPrefill.repository }}
|
||||||
|
tag: {{ .Values.images.nubusProvisioningPrefill.tag }}
|
||||||
|
registerConsumers:
|
||||||
|
image:
|
||||||
|
registry: {{ .Values.images.nubusWaitForDependency.registry }}
|
||||||
|
repository: {{ .Values.images.nubusWaitForDependency.repository }}
|
||||||
|
tag: {{ .Values.images.nubusWaitForDependency.tag }}
|
||||||
|
nats:
|
||||||
|
nats:
|
||||||
|
image:
|
||||||
|
registry: {{ .Values.images.nubusNats.registry }}
|
||||||
|
repository: {{ .Values.images.nubusNats.repository }}
|
||||||
|
tag: {{ .Values.images.nubusNats.tag }}
|
||||||
|
reloader:
|
||||||
|
image:
|
||||||
|
registry: {{ .Values.images.nubusNatsReloader.registry }}
|
||||||
|
repository: {{ .Values.images.nubusNatsReloader.repository }}
|
||||||
|
tag: {{ .Values.images.nubusNatsReloader.tag }}
|
||||||
|
natsBox:
|
||||||
|
image:
|
||||||
|
registry: {{ .Values.images.nubusNatsBox.registry }}
|
||||||
|
repository: {{ .Values.images.nubusNatsBox.repository }}
|
||||||
|
tag: {{ .Values.images.nubusNatsBox.tag }}
|
||||||
|
|
||||||
|
nubusProvisioningEventsAndConsumerApi:
|
||||||
|
image:
|
||||||
|
registry: {{ .Values.images.nubusProvisioningEventsAndConsumerApi.registry }}
|
||||||
|
repository: {{ .Values.images.nubusProvisioningEventsAndConsumerApi.repository }}
|
||||||
|
tag: {{ .Values.images.nubusProvisioningEventsAndConsumerApi.tag }}
|
||||||
|
|
||||||
|
nubusProvisioningPrefill:
|
||||||
|
image:
|
||||||
|
registry: {{ .Values.images.nubusProvisioningPrefill.registry }}
|
||||||
|
repository: {{ .Values.images.nubusProvisioningPrefill.repository }}
|
||||||
|
tag: {{ .Values.images.nubusProvisioningPrefill.tag }}
|
||||||
|
|
||||||
|
nubusUdmListener:
|
||||||
|
image:
|
||||||
|
registry: {{ .Values.images.nubusProvisioningUdmListener.registry }}
|
||||||
|
repository: {{ .Values.images.nubusProvisioningUdmListener.repository }}
|
||||||
|
tag: {{ .Values.images.nubusProvisioningUdmListener.tag }}
|
||||||
|
|
||||||
|
nubusSelfServiceListener:
|
||||||
|
image:
|
||||||
|
registry: {{ .Values.images.nubusSelfserviceInvitation.registry }}
|
||||||
|
repository: {{ .Values.images.nubusSelfserviceInvitation.repository }}
|
||||||
|
tag: {{ .Values.images.nubusSelfserviceInvitation.tag }}
|
||||||
|
|
||||||
|
nubusUdmRestApi:
|
||||||
|
# oxPlugin:
|
||||||
|
# image:
|
||||||
|
# registry: \{\{ .Values.images.nubusUdmRestApiOxPlugin.registry }}
|
||||||
|
# repository: \{\{ .Values.images.nubusUdmRestApiOxPlugin.repository }}
|
||||||
|
# tag: \{\{ .Values.images.nubusUdmRestApiOxPlugin.tag }}
|
||||||
|
# portalPlugin:
|
||||||
|
# image:
|
||||||
|
# registry: \{\{ .Values.images.nubusUdmRestApiPortalPlugin.registry }}
|
||||||
|
# repository: \{\{ .Values.images.nubusUdmRestApiPortalPlugin.repository }}
|
||||||
|
# tag: \{\{ .Values.images.nubusUdmRestApiPortalPlugin.tag }}
|
||||||
|
udmRestApi:
|
||||||
|
image:
|
||||||
|
registry: {{ .Values.images.nubusUdmRestApi.registry }}
|
||||||
|
repository: {{ .Values.images.nubusUdmRestApi.repository }}
|
||||||
|
tag: {{ .Values.images.nubusUdmRestApi.tag }}
|
||||||
|
|
||||||
|
nubusUmcGateway:
|
||||||
|
image:
|
||||||
|
registry: {{ .Values.images.nubusUmcGateway.registry }}
|
||||||
|
repository: {{ .Values.images.nubusUmcGateway.repository }}
|
||||||
|
tag: {{ .Values.images.nubusUmcGateway.tag }}
|
||||||
|
|
||||||
|
nubusUmcServer:
|
||||||
|
image:
|
||||||
|
registry: {{ .Values.images.nubusUmcServer.registry }}
|
||||||
|
repository: {{ .Values.images.nubusUmcServer.repository }}
|
||||||
|
tag: {{ .Values.images.nubusUmcServer.tag }}
|
||||||
|
|
||||||
|
nubusWaitForDependency:
|
||||||
|
image:
|
||||||
|
registry: {{ .Values.images.nubusWaitForDependency.registry }}
|
||||||
|
repository: {{ .Values.images.nubusWaitForDependency.repository }}
|
||||||
|
tag: {{ .Values.images.nubusWaitForDependency.tag }}
|
||||||
|
|
||||||
|
|
||||||
|
nubusGuardian:
|
||||||
|
provisioning:
|
||||||
|
image:
|
||||||
|
registry: {{ .Values.images.nubusGuardianProvisioning.registry }}
|
||||||
|
repository: {{ .Values.images.nubusGuardianProvisioning.repository }}
|
||||||
|
tag: {{ .Values.images.nubusGuardianProvisioning.tag }}
|
||||||
|
authorizationApi:
|
||||||
|
image:
|
||||||
|
registry: {{ .Values.images.nubusGuardianAuthorizationApi.registry }}
|
||||||
|
repository: {{ .Values.images.nubusGuardianAuthorizationApi.repository }}
|
||||||
|
tag: {{ .Values.images.nubusGuardianAuthorizationApi.tag }}
|
||||||
|
managementApi:
|
||||||
|
image:
|
||||||
|
registry: {{ .Values.images.nubusGuardianManagementApi.registry }}
|
||||||
|
repository: {{ .Values.images.nubusGuardianManagementApi.repository }}
|
||||||
|
tag: {{ .Values.images.nubusGuardianManagementApi.tag }}
|
||||||
|
managementUi:
|
||||||
|
image:
|
||||||
|
registry: {{ .Values.images.nubusGuardianManagementUi.registry }}
|
||||||
|
repository: {{ .Values.images.nubusGuardianManagementUi.repository }}
|
||||||
|
tag: {{ .Values.images.nubusGuardianManagementUi.tag }}
|
||||||
|
openPolicyAgent:
|
||||||
|
image:
|
||||||
|
registry: {{ .Values.images.nubusOpenPolicyAgent.registry }}
|
||||||
|
repository: {{ .Values.images.nubusOpenPolicyAgent.repository }}
|
||||||
|
tag: {{ .Values.images.nubusOpenPolicyAgent.tag }}
|
||||||
|
|
||||||
|
nubusStackDataUms:
|
||||||
|
image:
|
||||||
|
registry: {{ .Values.images.nubusDataLoader.registry }}
|
||||||
|
repository: {{ .Values.images.nubusDataLoader.repository }}
|
||||||
|
tag: {{ .Values.images.nubusDataLoader.tag }}
|
||||||
|
|
||||||
|
nubusStackDataSwp:
|
||||||
|
image:
|
||||||
|
registry: {{ .Values.images.nubusDataLoader.registry }}
|
||||||
|
repository: {{ .Values.images.nubusDataLoader.repository }}
|
||||||
|
tag: {{ .Values.images.nubusDataLoader.tag }}
|
||||||
@@ -568,296 +568,6 @@ config:
|
|||||||
post.logout.redirect.uris: "https://{{ .Values.global.hosts.xwiki }}.{{ .Values.global.domain }}/*##https://{{ .Values.global.hosts.univentionManagementStack }}.{{ .Values.global.domain }}/*"
|
post.logout.redirect.uris: "https://{{ .Values.global.hosts.xwiki }}.{{ .Values.global.domain }}/*##https://{{ .Values.global.hosts.univentionManagementStack }}.{{ .Values.global.domain }}/*"
|
||||||
defaultClientScopes:
|
defaultClientScopes:
|
||||||
- "opendesk-xwiki-scope"
|
- "opendesk-xwiki-scope"
|
||||||
- name: "guardian-management-api"
|
|
||||||
clientId: "guardian-management-api"
|
|
||||||
rootUrl: "https://{{ .Values.global.hosts.univentionManagementStack }}.{{ .Values.global.domain }}"
|
|
||||||
baseUrl: "https://{{ .Values.global.hosts.univentionManagementStack }}.{{ .Values.global.domain }}"
|
|
||||||
protocol: "openid-connect"
|
|
||||||
publicClient: false
|
|
||||||
clientAuthenticatorType: "client-secret"
|
|
||||||
secret: {{ .Values.secrets.keycloak.clientSecret.guardian | quote }}
|
|
||||||
redirectUris:
|
|
||||||
- "https://{{ .Values.global.hosts.univentionManagementStack }}.{{ .Values.global.domain }}/guardian/*"
|
|
||||||
fullScopeAllowed: true
|
|
||||||
standardFlowEnabled: true
|
|
||||||
implicitFlowEnabled: false
|
|
||||||
directAccessGrantsEnabled: false
|
|
||||||
serviceAccountsEnabled: true
|
|
||||||
protocolMappers:
|
|
||||||
- name: "Client Host"
|
|
||||||
protocol: "openid-connect"
|
|
||||||
protocolMapper: "oidc-usersessionmodel-note-mapper"
|
|
||||||
consentRequired: false
|
|
||||||
config:
|
|
||||||
user.session.note: "clientHost"
|
|
||||||
userinfo.token.claim: true
|
|
||||||
id.token.claim: true
|
|
||||||
access.token.claim: true
|
|
||||||
claim.name: "clientHost"
|
|
||||||
jsonType.label: "String"
|
|
||||||
- name: "Client ID"
|
|
||||||
protocol: "openid-connect"
|
|
||||||
protocolMapper: "oidc-usersessionmodel-note-mapper"
|
|
||||||
consentRequired: false
|
|
||||||
config:
|
|
||||||
user.session.note: "client_id"
|
|
||||||
userinfo.token.claim: true
|
|
||||||
id.token.claim: true
|
|
||||||
access.token.claim: true
|
|
||||||
claim.name: "client_id"
|
|
||||||
jsonType.label: "String"
|
|
||||||
- name: "guardian-audience"
|
|
||||||
protocol: "openid-connect"
|
|
||||||
protocolMapper: "oidc-audience-mapper"
|
|
||||||
consentRequired: false
|
|
||||||
config:
|
|
||||||
included.client.audience: "guardian"
|
|
||||||
userinfo.token.claim: false
|
|
||||||
id.token.claim: false
|
|
||||||
access.token.claim: true
|
|
||||||
- name: "audiencemap"
|
|
||||||
protocol: "openid-connect"
|
|
||||||
protocolMapper: "oidc-audience-mapper"
|
|
||||||
consentRequired: false
|
|
||||||
config:
|
|
||||||
included.client.audience: "guardian-cli"
|
|
||||||
userinfo.token.claim: true
|
|
||||||
id.token.claim: true
|
|
||||||
access.token.claim: true
|
|
||||||
- name: "dn"
|
|
||||||
protocol: "openid-connect"
|
|
||||||
protocolMapper: "oidc-usermodel-attribute-mapper"
|
|
||||||
consentRequired: false
|
|
||||||
config:
|
|
||||||
userinfo.token.claim: false
|
|
||||||
user.attribute: "LDAP_ENTRY_DN"
|
|
||||||
id.token.claim: false
|
|
||||||
access.token.claim: true
|
|
||||||
claim.name: "dn"
|
|
||||||
jsonType.label: "String"
|
|
||||||
- name: "username"
|
|
||||||
protocol: "openid-connect"
|
|
||||||
protocolMapper: "oidc-usermodel-property-mapper"
|
|
||||||
consentRequired: false
|
|
||||||
config:
|
|
||||||
userinfo.token.claim: true
|
|
||||||
user.attribute: "username"
|
|
||||||
id.token.claim: true
|
|
||||||
access.token.claim: true
|
|
||||||
claim.name: "preferred_username"
|
|
||||||
jsonType.label: "String"
|
|
||||||
- name: "uid"
|
|
||||||
protocol: "openid-connect"
|
|
||||||
protocolMapper: "oidc-usermodel-attribute-mapper"
|
|
||||||
consentRequired: false
|
|
||||||
config:
|
|
||||||
userinfo.token.claim: true
|
|
||||||
user.attribute: "uid"
|
|
||||||
id.token.claim: true
|
|
||||||
access.token.claim: true
|
|
||||||
claim.name: "uid"
|
|
||||||
jsonType.label: "String"
|
|
||||||
- name: "email"
|
|
||||||
protocol: "openid-connect"
|
|
||||||
protocolMapper: "oidc-usermodel-property-mapper"
|
|
||||||
consentRequired: false
|
|
||||||
config:
|
|
||||||
userinfo.token.claim: true
|
|
||||||
user.attribute: "email"
|
|
||||||
id.token.claim: true
|
|
||||||
access.token.claim: true
|
|
||||||
claim.name: "email"
|
|
||||||
jsonType.label: "String"
|
|
||||||
- name: "Client IP Address"
|
|
||||||
protocol: "openid-connect"
|
|
||||||
protocolMapper: "oidc-usersessionmodel-note-mapper"
|
|
||||||
consentRequired: false
|
|
||||||
config:
|
|
||||||
user.session.note: "clientAddress"
|
|
||||||
userinfo.token.claim: true
|
|
||||||
id.token.claim: true
|
|
||||||
access.token.claim: true
|
|
||||||
claim.name: "clientAddress"
|
|
||||||
jsonType.label: "String"
|
|
||||||
- name: "guardian-scripts"
|
|
||||||
clientId: "guardian-scripts"
|
|
||||||
description: ""
|
|
||||||
rootUrl: "https://{{ .Values.global.hosts.univentionManagementStack }}.{{ .Values.global.domain }}"
|
|
||||||
adminUrl: "https://{{ .Values.global.hosts.univentionManagementStack }}.{{ .Values.global.domain }}"
|
|
||||||
baseUrl: "https://{{ .Values.global.hosts.univentionManagementStack }}.{{ .Values.global.domain }}"
|
|
||||||
surrogateAuthRequired: false
|
|
||||||
enabled: true
|
|
||||||
alwaysDisplayInConsole: false
|
|
||||||
clientAuthenticatorType: "client-secret"
|
|
||||||
redirectUris:
|
|
||||||
- "https://{{ .Values.global.hosts.univentionManagementStack }}.{{ .Values.global.domain }}/univention/guardian/*"
|
|
||||||
- "https://{{ .Values.global.hosts.univentionManagementStack }}.{{ .Values.global.domain }}"
|
|
||||||
- "https://{{ .Values.global.hosts.univentionManagementStack }}.{{ .Values.global.domain }}/guardian/*"
|
|
||||||
webOrigins:
|
|
||||||
- "https://{{ .Values.global.hosts.univentionManagementStack }}.{{ .Values.global.domain }}"
|
|
||||||
bearerOnly: false
|
|
||||||
consentRequired: false
|
|
||||||
standardFlowEnabled: true
|
|
||||||
implicitFlowEnabled: false
|
|
||||||
directAccessGrantsEnabled: true
|
|
||||||
serviceAccountsEnabled: false
|
|
||||||
publicClient: true
|
|
||||||
frontchannelLogout: false
|
|
||||||
protocol: "openid-connect"
|
|
||||||
fullScopeAllowed: true
|
|
||||||
protocolMappers:
|
|
||||||
- name: "email"
|
|
||||||
protocol: "openid-connect"
|
|
||||||
protocolMapper: "oidc-usermodel-property-mapper"
|
|
||||||
consentRequired: false
|
|
||||||
config:
|
|
||||||
userinfo.token.claim: true
|
|
||||||
user.attribute: "email"
|
|
||||||
id.token.claim: true
|
|
||||||
access.token.claim: true
|
|
||||||
claim.name: "email"
|
|
||||||
jsonType.label: "String"
|
|
||||||
- name: "guardian-audience"
|
|
||||||
protocol: "openid-connect"
|
|
||||||
protocolMapper: "oidc-audience-mapper"
|
|
||||||
consentRequired: false
|
|
||||||
config:
|
|
||||||
included.client.audience: "guardian"
|
|
||||||
id.token.claim: false
|
|
||||||
access.token.claim: true
|
|
||||||
userinfo.token.claim: false
|
|
||||||
- name: "username"
|
|
||||||
protocol: "openid-connect"
|
|
||||||
protocolMapper: "oidc-usermodel-property-mapper"
|
|
||||||
consentRequired: false
|
|
||||||
config:
|
|
||||||
userinfo.token.claim: true
|
|
||||||
user.attribute: "username"
|
|
||||||
id.token.claim: true
|
|
||||||
access.token.claim: true
|
|
||||||
claim.name: "preferred_username"
|
|
||||||
jsonType.label: "String"
|
|
||||||
- name: "uid"
|
|
||||||
protocol: "openid-connect"
|
|
||||||
protocolMapper: "oidc-usermodel-attribute-mapper"
|
|
||||||
consentRequired: false
|
|
||||||
config:
|
|
||||||
userinfo.token.claim: true
|
|
||||||
user.attribute: "uid"
|
|
||||||
id.token.claim: true
|
|
||||||
access.token.claim: true
|
|
||||||
claim.name: "uid"
|
|
||||||
jsonType.label: "String"
|
|
||||||
- name: "audiencemap"
|
|
||||||
protocol: "openid-connect"
|
|
||||||
protocolMapper: "oidc-audience-mapper"
|
|
||||||
consentRequired: false
|
|
||||||
config:
|
|
||||||
included.client.audience: "guardian-scripts"
|
|
||||||
id.token.claim: true
|
|
||||||
access.token.claim: true
|
|
||||||
userinfo.token.claim: true
|
|
||||||
- name: "dn"
|
|
||||||
protocol: "openid-connect"
|
|
||||||
protocolMapper: "oidc-usermodel-attribute-mapper"
|
|
||||||
consentRequired: false
|
|
||||||
config:
|
|
||||||
aggregate.attrs: false
|
|
||||||
multivalued: false
|
|
||||||
userinfo.token.claim: false
|
|
||||||
user.attribute: "LDAP_ENTRY_DN"
|
|
||||||
id.token.claim: false
|
|
||||||
access.token.claim: true
|
|
||||||
claim.name: "dn"
|
|
||||||
jsonType.label: "String"
|
|
||||||
defaultClientScopes:
|
|
||||||
- "web-origins"
|
|
||||||
- "acr"
|
|
||||||
- "roles"
|
|
||||||
- "profile"
|
|
||||||
- "email"
|
|
||||||
optionalClientScopes:
|
|
||||||
- "address"
|
|
||||||
- "phone"
|
|
||||||
- "offline_access"
|
|
||||||
- "microprofile-jwt"
|
|
||||||
- name: "guardian-ui"
|
|
||||||
clientId: "guardian-ui"
|
|
||||||
rootUrl: "https://{{ .Values.global.hosts.univentionManagementStack }}.{{ .Values.global.domain }}"
|
|
||||||
baseUrl: "https://{{ .Values.global.hosts.univentionManagementStack }}.{{ .Values.global.domain }}"
|
|
||||||
clientAuthenticatorType: "client-secret"
|
|
||||||
redirectUris:
|
|
||||||
- "https://{{ .Values.global.hosts.univentionManagementStack }}.{{ .Values.global.domain }}/univention/guardian/*"
|
|
||||||
standardFlowEnabled: true
|
|
||||||
publicClient: true
|
|
||||||
implicitFlowEnabled: false
|
|
||||||
directAccessGrantsEnabled: false
|
|
||||||
serviceAccountsEnabled: false
|
|
||||||
protocol: "openid-connect"
|
|
||||||
fullScopeAllowed: true
|
|
||||||
protocolMappers:
|
|
||||||
- name: "uid"
|
|
||||||
protocol: "openid-connect"
|
|
||||||
protocolMapper: "oidc-usermodel-attribute-mapper"
|
|
||||||
consentRequired: false
|
|
||||||
config:
|
|
||||||
userinfo.token.claim: true
|
|
||||||
user.attribute: "uid"
|
|
||||||
id.token.claim: true
|
|
||||||
access.token.claim: true
|
|
||||||
claim.name: "uid"
|
|
||||||
jsonType.label: "String"
|
|
||||||
- name: "username"
|
|
||||||
protocol: "openid-connect"
|
|
||||||
protocolMapper: "oidc-usermodel-property-mapper"
|
|
||||||
consentRequired: false
|
|
||||||
config:
|
|
||||||
userinfo.token.claim: true
|
|
||||||
user.attribute: "username"
|
|
||||||
id.token.claim: true
|
|
||||||
access.token.claim: true
|
|
||||||
claim.name: "preferred_username"
|
|
||||||
jsonType.label: "String"
|
|
||||||
- name: "dn"
|
|
||||||
protocol: "openid-connect"
|
|
||||||
protocolMapper: "oidc-usermodel-attribute-mapper"
|
|
||||||
consentRequired: false
|
|
||||||
config:
|
|
||||||
userinfo.token.claim: "false"
|
|
||||||
user.attribute: "LDAP_ENTRY_DN"
|
|
||||||
id.token.claim: false
|
|
||||||
access.token.claim: true
|
|
||||||
claim.name: "dn"
|
|
||||||
jsonType.label: "String"
|
|
||||||
- name: "audiencemap"
|
|
||||||
protocol: "openid-connect"
|
|
||||||
protocolMapper: "oidc-audience-mapper"
|
|
||||||
consentRequired: false
|
|
||||||
config:
|
|
||||||
included.client.audience: "guardian"
|
|
||||||
id.token.claim: true
|
|
||||||
access.token.claim: true
|
|
||||||
userinfo.token.claim: true
|
|
||||||
- name: "email"
|
|
||||||
protocol: "openid-connect"
|
|
||||||
protocolMapper: "oidc-usermodel-property-mapper"
|
|
||||||
consentRequired: false
|
|
||||||
config:
|
|
||||||
userinfo.token.claim: true
|
|
||||||
user.attribute: "email"
|
|
||||||
id.token.claim: true
|
|
||||||
access.token.claim: true
|
|
||||||
claim.name: "email"
|
|
||||||
jsonType.label: "String"
|
|
||||||
- name: "guardian-audience"
|
|
||||||
protocol: "openid-connect"
|
|
||||||
protocolMapper: "oidc-audience-mapper"
|
|
||||||
consentRequired: false
|
|
||||||
config:
|
|
||||||
included.client.audience: "guardian"
|
|
||||||
id.token.claim: false
|
|
||||||
access.token.claim: true
|
|
||||||
userinfo.token.claim: false
|
|
||||||
|
|
||||||
containerSecurityContext:
|
containerSecurityContext:
|
||||||
allowPrivilegeEscalation: false
|
allowPrivilegeEscalation: false
|
||||||
File diff suppressed because it is too large
Load Diff
@@ -242,6 +242,18 @@ charts:
|
|||||||
name: "nginx"
|
name: "nginx"
|
||||||
version: "15.9.3"
|
version: "15.9.3"
|
||||||
verify: true
|
verify: true
|
||||||
|
nubus:
|
||||||
|
# providerCategory: "Supplier"
|
||||||
|
# providerResponsible: "Univention"
|
||||||
|
# upstreamRegistry: "https://artifacts.software-univention.de"
|
||||||
|
# upstreamRepository: "nubus/charts/nubus"
|
||||||
|
# upstreamMirrorTagFilterRegEx: '^(\d+)\.(\d+)\.(\d+)$'
|
||||||
|
# upstreamMirrorStartFrom: ["0", "19", "3"]
|
||||||
|
registry: "registry.opencode.de"
|
||||||
|
repository: "bmi/opendesk/components/supplier/univention/charts-mirror"
|
||||||
|
name: "nubus"
|
||||||
|
version: "0.25.2"
|
||||||
|
verify: true
|
||||||
opendeskKeycloakBootstrap:
|
opendeskKeycloakBootstrap:
|
||||||
# providerCategory: "Platform"
|
# providerCategory: "Platform"
|
||||||
# providerResponsible: "openDesk"
|
# providerResponsible: "openDesk"
|
||||||
@@ -304,7 +316,7 @@ charts:
|
|||||||
registry: "registry.opencode.de"
|
registry: "registry.opencode.de"
|
||||||
repository: "bmi/opendesk/components/platform-development/charts/opendesk-otterize"
|
repository: "bmi/opendesk/components/platform-development/charts/opendesk-otterize"
|
||||||
name: "opendesk-otterize"
|
name: "opendesk-otterize"
|
||||||
version: "2.0.1"
|
version: "2.1.0"
|
||||||
verify: true
|
verify: true
|
||||||
oxConnector:
|
oxConnector:
|
||||||
# providerCategory: "Supplier"
|
# providerCategory: "Supplier"
|
||||||
@@ -378,30 +390,6 @@ charts:
|
|||||||
name: "opendesk-synapse-web"
|
name: "opendesk-synapse-web"
|
||||||
version: "3.2.0"
|
version: "3.2.0"
|
||||||
verify: true
|
verify: true
|
||||||
ums:
|
|
||||||
# providerCategory: "Supplier"
|
|
||||||
# providerResponsible: "Univention"
|
|
||||||
# upstreamRegistry: "https://artifacts.software-univention.de"
|
|
||||||
# upstreamRepository: "nubus/charts/ums"
|
|
||||||
# upstreamMirrorTagFilterRegEx: '^(\d+)\.(\d+)\.(\d+)$'
|
|
||||||
# upstreamMirrorStartFrom: ["0", "12", "0"]
|
|
||||||
registry: "registry.opencode.de"
|
|
||||||
repository: "bmi/opendesk/components/supplier/univention/charts-mirror"
|
|
||||||
name: "ums"
|
|
||||||
version: "0.16.0"
|
|
||||||
verify: true
|
|
||||||
umsKeycloakBootstrap:
|
|
||||||
# providerCategory: "Supplier"
|
|
||||||
# providerResponsible: "Univention"
|
|
||||||
# upstreamRegistry: "https://artifacts.software-univention.de"
|
|
||||||
# upstreamRepository: "nubus/charts/keycloak-bootstrap"
|
|
||||||
# upstreamMirrorTagFilterRegEx: '^(\d+)\.(\d+)\.(\d+)$'
|
|
||||||
# upstreamMirrorStartFrom: ["0", "1", "0"]
|
|
||||||
registry: "registry.opencode.de"
|
|
||||||
repository: "bmi/opendesk/components/supplier/univention/charts-mirror"
|
|
||||||
name: "keycloak-bootstrap"
|
|
||||||
version: "0.1.0"
|
|
||||||
verify: true
|
|
||||||
xwiki:
|
xwiki:
|
||||||
# providerCategory: "Supplier"
|
# providerCategory: "Supplier"
|
||||||
# providerResponsible: "XWiki"
|
# providerResponsible: "XWiki"
|
||||||
|
|||||||
@@ -254,6 +254,326 @@ images:
|
|||||||
registry: "registry.opencode.de"
|
registry: "registry.opencode.de"
|
||||||
repository: "bmi/opendesk/components/platform-development/images/opendesk-nextcloud-php"
|
repository: "bmi/opendesk/components/platform-development/images/opendesk-nextcloud-php"
|
||||||
tag: "1.10.1@sha256:8eb5ac95eaea69e0928e48aa5a121cbf10f359be4679040da8464810e9d799ff"
|
tag: "1.10.1@sha256:8eb5ac95eaea69e0928e48aa5a121cbf10f359be4679040da8464810e9d799ff"
|
||||||
|
nubusDataLoader:
|
||||||
|
# providerCategory: "Supplier"
|
||||||
|
# providerResponsible: "Univention"
|
||||||
|
# upstreamRegistry: "https://artifacts.software-univention.de"
|
||||||
|
# upstreamRepository: "nubus/images/data-loader"
|
||||||
|
# upstreamMirrorTagFilterRegEx: '^(\d+)\.(\d+)\.(\d+)$'
|
||||||
|
# upstreamMirrorStartFrom: ["0", "41", "5"]
|
||||||
|
registry: "registry.opencode.de"
|
||||||
|
repository: "bmi/opendesk/components/supplier/univention/images-mirror/data-loader"
|
||||||
|
tag: "0.57.0@sha256:7aa6bce55bb03caca55e51c6972e933d4e8dee0a0c4ec2473bba4a104da42c11"
|
||||||
|
nubusGuardianAuthorizationApi:
|
||||||
|
# providerCategory: "Supplier"
|
||||||
|
# providerResponsible: "Univention"
|
||||||
|
# upstreamRegistry: "https://docker.software-univention.de"
|
||||||
|
# upstreamRepository: "guardian-authorization-api-authorization-api"
|
||||||
|
# upstreamMirrorTagFilterRegEx: '^(\d+)\.(\d+)\.(\d+)$'
|
||||||
|
# upstreamMirrorStartFrom: ["1", "0", "0"]
|
||||||
|
registry: "registry.opencode.de"
|
||||||
|
repository: "bmi/opendesk/components/supplier/univention/images-mirror/guardian-authorization-api-authorization-api"
|
||||||
|
tag: "2.0.0@sha256:5f194f9385aea5a279e25a57352f7b88a6cc4fa90b3bf04c2c97b9ff2bad70a5"
|
||||||
|
nubusGuardianManagementApi:
|
||||||
|
# providerCategory: "Supplier"
|
||||||
|
# providerResponsible: "Univention"
|
||||||
|
# upstreamRegistry: "https://docker.software-univention.de"
|
||||||
|
# upstreamRepository: "guardian-management-api-management-api"
|
||||||
|
# upstreamMirrorTagFilterRegEx: '^(\d+)\.(\d+)\.(\d+)$'
|
||||||
|
# upstreamMirrorStartFrom: ["1", "0", "0"]
|
||||||
|
registry: "registry.opencode.de"
|
||||||
|
repository: "bmi/opendesk/components/supplier/univention/images-mirror/guardian-management-api-management-api"
|
||||||
|
tag: "2.0.0@sha256:61a1ab84efebe2a87d358e8624f8b39073a6071683e7cd77b740a97d464753a2"
|
||||||
|
nubusGuardianManagementUi:
|
||||||
|
# providerCategory: "Supplier"
|
||||||
|
# providerResponsible: "Univention"
|
||||||
|
# upstreamRegistry: "https://docker.software-univention.de"
|
||||||
|
# upstreamRepository: "guardian-management-ui-management-ui"
|
||||||
|
# upstreamMirrorTagFilterRegEx: '^(\d+)\.(\d+)\.(\d+)$'
|
||||||
|
# upstreamMirrorStartFrom: ["1", "0", "0"]
|
||||||
|
registry: "registry.opencode.de"
|
||||||
|
repository: "bmi/opendesk/components/supplier/univention/images-mirror/guardian-management-ui-management-ui"
|
||||||
|
tag: "2.0.0@sha256:57e2503a4772f0ff656e792a98fadef4d41c248218e6c368f76ce82a892478cf"
|
||||||
|
nubusGuardianProvisioning:
|
||||||
|
# providerCategory: "Supplier"
|
||||||
|
# providerResponsible: "Univention"
|
||||||
|
# upstreamRegistry: "https://artifacts.software-univention.de"
|
||||||
|
# upstreamRepository: "nubus/images/guardian-init"
|
||||||
|
# upstreamMirrorTagFilterRegEx: '^(\d+)\.(\d+)\.(\d+)$'
|
||||||
|
# upstreamMirrorStartFrom: ["0", "3", "0"]
|
||||||
|
registry: "registry.opencode.de"
|
||||||
|
repository: "bmi/opendesk/components/supplier/univention/images-mirror/guardian-init"
|
||||||
|
tag: "0.9.1@sha256:6006fb1c2779b906e7725df524f2587b2a610cc442793bf8f16b2b4b8c0494fb"
|
||||||
|
nubusKeycloak:
|
||||||
|
# providerCategory: "Supplier"
|
||||||
|
# providerResponsible: "Univention"
|
||||||
|
# upstreamRegistry: "https://docker.software-univention.de"
|
||||||
|
# upstreamRepository: "keycloak-keycloak"
|
||||||
|
# upstreamMirrorTagFilterRegEx: '^(\d+)\.(\d+)\.(\d+).+$'
|
||||||
|
# upstreamMirrorStartFrom: ["22", "0", "3"]
|
||||||
|
registry: "registry.opencode.de"
|
||||||
|
repository: "bmi/opendesk/components/supplier/univention/images-mirror/keycloak-keycloak"
|
||||||
|
tag: "24.0.3-ucs1@sha256:cc66a1730abdd5abe88ac5cf045b6558f289bf1ae8d077ee884a42d785742f8b"
|
||||||
|
nubusKeycloakBootstrap:
|
||||||
|
# providerCategory: "Supplier"
|
||||||
|
# providerResponsible: "Univention"
|
||||||
|
# upstreamRegistry: "https://artifacts.software-univention.de"
|
||||||
|
# upstreamRepository: "nubus/images/keycloak-bootstrap"
|
||||||
|
# upstreamMirrorTagFilterRegEx: '^(\d+)\.(\d+)\.(\d+)$'
|
||||||
|
# upstreamMirrorStartFrom: ["0", "1", "0"]
|
||||||
|
registry: "registry.opencode.de"
|
||||||
|
repository: "bmi/opendesk/components/supplier/univention/images-mirror/keycloak-bootstrap"
|
||||||
|
tag: "0.1.0@sha256:351097e9e7b469f2fc149fe612ec6ad515d5e6b081d7e2785bd926a1d77209d2"
|
||||||
|
nubusKeycloakExtensionHandler:
|
||||||
|
# providerCategory: "Supplier"
|
||||||
|
# providerResponsible: "Univention"
|
||||||
|
# upstreamRegistry: "https://artifacts.software-univention.de"
|
||||||
|
# upstreamRepository: "nubus/images/keycloak-handler"
|
||||||
|
# upstreamMirrorTagFilterRegEx: '^(\d+)\.(\d+)\.(\d+)$'
|
||||||
|
# upstreamMirrorStartFrom: ["0", "0", "3"]
|
||||||
|
registry: "registry.opencode.de"
|
||||||
|
repository: "bmi/opendesk/components/supplier/univention/images-mirror/keycloak-handler"
|
||||||
|
tag: "0.6.1@sha256:d68850e93c2499b373d88a24ff358daa0c6983e5ff4c92be692898ca15b356c7"
|
||||||
|
nubusKeycloakExtensionProxy:
|
||||||
|
# providerCategory: "Supplier"
|
||||||
|
# providerResponsible: "Univention"
|
||||||
|
# upstreamRegistry: "https://artifacts.software-univention.de"
|
||||||
|
# upstreamRepository: "nubus/images/keycloak-proxy"
|
||||||
|
# upstreamMirrorTagFilterRegEx: '^(\d+)\.(\d+)\.(\d+)$'
|
||||||
|
# upstreamMirrorStartFrom: ["0", "0", "3"]
|
||||||
|
registry: "registry.opencode.de"
|
||||||
|
repository: "bmi/opendesk/components/supplier/univention/images-mirror/keycloak-proxy"
|
||||||
|
tag: "0.6.1@sha256:265fc4bb36c37430bc6a694a2f8c87ea4b80709b6ca770d5bc8c6013d9954cc5"
|
||||||
|
nubusLdapNotifier:
|
||||||
|
# providerCategory: "Supplier"
|
||||||
|
# providerResponsible: "Univention"
|
||||||
|
# upstreamRegistry: "https://artifacts.software-univention.de"
|
||||||
|
# upstreamRepository: "nubus/images/ldap-notifier"
|
||||||
|
# upstreamMirrorTagFilterRegEx: '^(\d+)\.(\d+)\.(\d+)$'
|
||||||
|
# upstreamMirrorStartFrom: ["0", "8", "2"]
|
||||||
|
registry: "registry.opencode.de"
|
||||||
|
repository: "bmi/opendesk/components/supplier/univention/images-mirror/ldap-notifier"
|
||||||
|
tag: "0.15.2@sha256:1f2a9d2136c8e87a4c4a59a94a2235d00e969c98bd7bfe75707a299918f271b5"
|
||||||
|
nubusLdapServer:
|
||||||
|
# providerCategory: "Supplier"
|
||||||
|
# providerResponsible: "Univention"
|
||||||
|
# upstreamRegistry: "https://artifacts.software-univention.de"
|
||||||
|
# upstreamRepository: "nubus/images/ldap-server"
|
||||||
|
# upstreamMirrorTagFilterRegEx: '^(\d+)\.(\d+)\.(\d+)$'
|
||||||
|
# upstreamMirrorStartFrom: ["0", "8", "2"]
|
||||||
|
registry: "registry.opencode.de"
|
||||||
|
repository: "bmi/opendesk/components/supplier/univention/images-mirror/ldap-server"
|
||||||
|
tag: "0.17.1@sha256:5b7b629b9655c7bb2857013f3399cefe5bdd3963d568bbf77d6d488c005e3b3b"
|
||||||
|
nubusLdapServerDhInitContainer:
|
||||||
|
# providerCategory: 'Community'
|
||||||
|
# providerResponsible: 'Univention'
|
||||||
|
# upstreamRegistry: 'registry-1.docker.io'
|
||||||
|
# upstreamRepository: 'natsio/nats-box'
|
||||||
|
registry: "registry-1.docker.io"
|
||||||
|
repository: "natsio/nats-box"
|
||||||
|
tag: "0.14.2@sha256:c9b8ebaabb2ca4c227feb4f6b856dc72d4775ac3d71f80d2c65aa82303079011"
|
||||||
|
nubusNats:
|
||||||
|
# providerCategory: 'Community'
|
||||||
|
# providerResponsible: 'Univention'
|
||||||
|
# upstreamRegistry: 'registry-1.docker.io'
|
||||||
|
# upstreamRepository: 'library/nats'
|
||||||
|
registry: "registry-1.docker.io"
|
||||||
|
repository: "library/nats"
|
||||||
|
tag: "2.10.10@sha256:fa26beda8a3187ccefa47afcfe9ea6d0e2f40a57c8f64d70bd63c792d7973938"
|
||||||
|
nubusNatsBox:
|
||||||
|
# providerCategory: 'Community'
|
||||||
|
# providerResponsible: 'Univention'
|
||||||
|
# upstreamRegistry: 'registry-1.docker.io'
|
||||||
|
# upstreamRepository: 'natsio/nats-box'
|
||||||
|
registry: "registry-1.docker.io"
|
||||||
|
repository: "natsio/nats-box"
|
||||||
|
tag: "0.14.2@sha256:c9b8ebaabb2ca4c227feb4f6b856dc72d4775ac3d71f80d2c65aa82303079011"
|
||||||
|
nubusNatsReloader:
|
||||||
|
# providerCategory: 'Community'
|
||||||
|
# providerResponsible: 'Univention'
|
||||||
|
# upstreamRegistry: 'registry-1.docker.io'
|
||||||
|
# upstreamRepository: 'natsio/nats-server-config-reloader'
|
||||||
|
registry: "registry-1.docker.io"
|
||||||
|
repository: "natsio/nats-server-config-reloader"
|
||||||
|
tag: "0.14.1@sha256:77dd4c60001ffbf442c6b25592e73b4fca06ea9406c677607192788d80453783"
|
||||||
|
nubusNotificationsApi:
|
||||||
|
# providerCategory: "Supplier"
|
||||||
|
# providerResponsible: "Univention"
|
||||||
|
# upstreamRegistry: "https://artifacts.software-univention.de"
|
||||||
|
# upstreamRepository: "nubus/images/notifications-api"
|
||||||
|
# upstreamMirrorTagFilterRegEx: '^(\d+)\.(\d+)\.(\d+)$'
|
||||||
|
# upstreamMirrorStartFrom: ["0", "9", "4"]
|
||||||
|
registry: "registry.opencode.de"
|
||||||
|
repository: "bmi/opendesk/components/supplier/univention/images-mirror/notifications-api"
|
||||||
|
tag: "0.27.0@sha256:d99173199f20c701b29b8a3c1a46465085a873b37f413882e7d2e106e258c35a"
|
||||||
|
nubusOpenPolicyAgent:
|
||||||
|
# providerCategory: "Supplier"
|
||||||
|
# providerResponsible: "Univention"
|
||||||
|
# upstreamRegistry: "https://docker.software-univention.de"
|
||||||
|
# upstreamRepository: "guardian-authorization-api-opa"
|
||||||
|
# upstreamMirrorTagFilterRegEx: '^(\d+)\.(\d+)\.(\d+)$'
|
||||||
|
# upstreamMirrorStartFrom: ["1", "0", "0"]
|
||||||
|
registry: "registry.opencode.de"
|
||||||
|
repository: "bmi/opendesk/components/supplier/univention/images-mirror/guardian-authorization-api-opa"
|
||||||
|
tag: "2.0.0@sha256:56a92a08da5addb951a2b2df09974889295ddde8526e93ad40dd973de1052ad4"
|
||||||
|
nubusPortalConsumer:
|
||||||
|
# providerCategory: "Supplier"
|
||||||
|
# providerResponsible: "Univention"
|
||||||
|
# upstreamRegistry: "https://artifacts.software-univention.de"
|
||||||
|
# upstreamRepository: "nubus/images/portal-consumer"
|
||||||
|
# upstreamMirrorTagFilterRegEx: '^(\d+)\.(\d+)\.(\d+)$'
|
||||||
|
# upstreamMirrorStartFrom: ["0", "27", "0"]
|
||||||
|
registry: "registry.opencode.de"
|
||||||
|
repository: "bmi/opendesk/components/supplier/univention/images-mirror/portal-consumer"
|
||||||
|
tag: "0.27.0@sha256:e86bf827d1e93b61473a0730492f48f8dbf0d056b79dd9ecde7af1612696b144"
|
||||||
|
nubusPortalFrontend:
|
||||||
|
# providerCategory: "Supplier"
|
||||||
|
# providerResponsible: "Univention"
|
||||||
|
# upstreamRegistry: "https://artifacts.software-univention.de"
|
||||||
|
# upstreamRepository: "nubus/images/portal-frontend"
|
||||||
|
# upstreamMirrorTagFilterRegEx: '^(\d+)\.(\d+)\.(\d+)$'
|
||||||
|
# upstreamMirrorStartFrom: ["0", "9", "4"]
|
||||||
|
registry: "registry.opencode.de"
|
||||||
|
repository: "bmi/opendesk/components/supplier/univention/images-mirror/portal-frontend"
|
||||||
|
tag: "0.27.0@sha256:9d469e9463b216dfcde2bdf3cac4a3602291cab97e01de690e97e7deb2469ecf"
|
||||||
|
nubusPortalListener:
|
||||||
|
# providerCategory: "Supplier"
|
||||||
|
# providerResponsible: "Univention"
|
||||||
|
# upstreamRegistry: "https://artifacts.software-univention.de"
|
||||||
|
# upstreamRepository: "nubus/images/portal-listener"
|
||||||
|
# upstreamMirrorTagFilterRegEx: '^(\d+)\.(\d+)\.(\d+)$'
|
||||||
|
# upstreamMirrorStartFrom: ["0", "9", "4"]
|
||||||
|
registry: "registry.opencode.de"
|
||||||
|
repository: "bmi/opendesk/components/supplier/univention/images-mirror/portal-listener"
|
||||||
|
tag: "0.24.2@sha256:98306b30c99e190ece6633921d9d54297634b0e4ca58ceaf0794c7050f0b8470"
|
||||||
|
nubusPortalServer:
|
||||||
|
# providerCategory: "Supplier"
|
||||||
|
# providerResponsible: "Univention"
|
||||||
|
# upstreamRegistry: "https://artifacts.software-univention.de"
|
||||||
|
# upstreamRepository: "nubus/images/portal-server"
|
||||||
|
# upstreamMirrorTagFilterRegEx: '^(\d+)\.(\d+)\.(\d+)$'
|
||||||
|
# upstreamMirrorStartFrom: ["0", "9", "4"]
|
||||||
|
registry: "registry.opencode.de"
|
||||||
|
repository: "bmi/opendesk/components/supplier/univention/images-mirror/portal-server"
|
||||||
|
tag: "0.27.0@sha256:e1ad659feb4a1948d07e6e7d99b94b6bdbd4525d96f4cf9a010b75189f0082fc"
|
||||||
|
nubusProvisioningDispatcher:
|
||||||
|
# providerCategory: "Supplier"
|
||||||
|
# providerResponsible: "Univention"
|
||||||
|
# upstreamRegistry: "https://artifacts.software-univention.de"
|
||||||
|
# upstreamRepository: "nubus/images/provisioning-dispatcher"
|
||||||
|
# upstreamMirrorTagFilterRegEx: '^(\d+)\.(\d+)\.(\d+)$'
|
||||||
|
# upstreamMirrorStartFrom: ["0", "14", "0"]
|
||||||
|
registry: "registry.opencode.de"
|
||||||
|
repository: "bmi/opendesk/components/supplier/univention/images-mirror/provisioning-dispatcher"
|
||||||
|
tag: "0.28.3@sha256:79c81b0143e78c7cabb1efd63d47530eac686fba11db57c173abd8ebdd396778"
|
||||||
|
nubusProvisioningEventsAndConsumerApi:
|
||||||
|
# providerCategory: "Supplier"
|
||||||
|
# providerResponsible: "Univention"
|
||||||
|
# upstreamRegistry: "https://artifacts.software-univention.de"
|
||||||
|
# upstreamRepository: "nubus/images/provisioning-events-and-consumer-api"
|
||||||
|
# upstreamMirrorTagFilterRegEx: '^(\d+)\.(\d+)\.(\d+)$'
|
||||||
|
# upstreamMirrorStartFrom: ["0", "14", "0"]
|
||||||
|
registry: "registry.opencode.de"
|
||||||
|
repository: "bmi/opendesk/components/supplier/univention/images-mirror/provisioning-events-and-consumer-api"
|
||||||
|
tag: "0.28.3@sha256:5b0a2c52d715fde613ecfedb3a3f5e47b9eb73cdcf4c373a9cc58248a919f2bf"
|
||||||
|
nubusProvisioningPrefill:
|
||||||
|
# providerCategory: "Supplier"
|
||||||
|
# providerResponsible: "Univention"
|
||||||
|
# upstreamRegistry: "https://artifacts.software-univention.de"
|
||||||
|
# upstreamRepository: "nubus/images/provisioning-prefill"
|
||||||
|
# upstreamMirrorTagFilterRegEx: '^(\d+)\.(\d+)\.(\d+)$'
|
||||||
|
# upstreamMirrorStartFrom: ["0", "14", "0"]
|
||||||
|
registry: "registry.opencode.de"
|
||||||
|
repository: "bmi/opendesk/components/supplier/univention/images-mirror/provisioning-prefill"
|
||||||
|
tag: "0.28.3@sha256:a98bce46144a6ff943b0432b66277393b7b476b8969b221b9069c708d3380f5d"
|
||||||
|
nubusProvisioningUdmListener:
|
||||||
|
# providerCategory: "Supplier"
|
||||||
|
# providerResponsible: "Univention"
|
||||||
|
# upstreamRegistry: "https://artifacts.software-univention.de"
|
||||||
|
# upstreamRepository: "nubus/images/provisioning-udm-listener"
|
||||||
|
# upstreamMirrorTagFilterRegEx: '^(\d+)\.(\d+)\.(\d+)$'
|
||||||
|
# upstreamMirrorStartFrom: ["0", "14", "0"]
|
||||||
|
registry: "registry.opencode.de"
|
||||||
|
repository: "bmi/opendesk/components/supplier/univention/images-mirror/provisioning-udm-listener"
|
||||||
|
tag: "0.28.3@sha256:b9c452e55e6716f93309bef0af7d401e218cd1e6ea9ad3d2819fb10dd631aecd"
|
||||||
|
nubusProvisioningUdmTransformer:
|
||||||
|
# providerCategory: "Supplier"
|
||||||
|
# providerResponsible: "Univention"
|
||||||
|
# upstreamRegistry: "https://artifacts.software-univention.de"
|
||||||
|
# upstreamRepository: "nubus/images/provisioning-udm-transformer"
|
||||||
|
# upstreamMirrorTagFilterRegEx: '^(\d+)\.(\d+)\.(\d+)$'
|
||||||
|
# upstreamMirrorStartFrom: ["0", "14", "0"]
|
||||||
|
registry: "registry.opencode.de"
|
||||||
|
repository: "bmi/opendesk/components/supplier/univention/images-mirror/provisioning-udm-transformer"
|
||||||
|
tag: "0.29.0@sha256:68e27eb9560d2729e9065da3573f28073c5e53fedabac4d19562c4b8c6c1d1f3"
|
||||||
|
nubusSelfserviceInvitation:
|
||||||
|
# providerCategory: "Supplier"
|
||||||
|
# providerResponsible: "Univention"
|
||||||
|
# upstreamRegistry: "https://artifacts.software-univention.de"
|
||||||
|
# upstreamRepository: "nubus/images/selfservice-invitation"
|
||||||
|
# upstreamMirrorTagFilterRegEx: '^(\d+)\.(\d+)\.(\d+)$'
|
||||||
|
# upstreamMirrorStartFrom: ["0", "3", "2"]
|
||||||
|
registry: "registry.opencode.de"
|
||||||
|
repository: "bmi/opendesk/components/supplier/univention/images-mirror/selfservice-invitation"
|
||||||
|
tag: "0.6.2@sha256:28b111488e13deb565475c69bc6493b4bafbc96f50109cc77e23f8055b9f4e34"
|
||||||
|
nubusSelfserviceListener:
|
||||||
|
# providerCategory: "Supplier"
|
||||||
|
# providerResponsible: "Univention"
|
||||||
|
# upstreamRegistry: "https://artifacts.software-univention.de"
|
||||||
|
# upstreamRepository: "nubus/images/selfservice-listener"
|
||||||
|
# upstreamMirrorTagFilterRegEx: '^(\d+)\.(\d+)\.(\d+)$'
|
||||||
|
# upstreamMirrorStartFrom: ["0", "3", "2"]
|
||||||
|
registry: "registry.opencode.de"
|
||||||
|
repository: "bmi/opendesk/components/supplier/univention/images-mirror/selfservice-listener"
|
||||||
|
tag: "0.4.0@sha256:0bc0235fd64a19a183f112da73109b54712c2d70fe7fa77c6405beefb7167588"
|
||||||
|
nubusStackGateway:
|
||||||
|
# providerCategory: "Community"
|
||||||
|
# providerResponsible: "Univention"
|
||||||
|
# upstreamRegistry: "https://registry-1.docker.io"
|
||||||
|
# upstreamRepository: "bitnami/nginx"
|
||||||
|
registry: "registry-1.docker.io"
|
||||||
|
repository: "bitnami/nginx"
|
||||||
|
tag: "1.25.4@sha256:dd352b597f4c38ae24abec411710f4249fb5c793293c7ed04737db6b41d32d24"
|
||||||
|
nubusUdmRestApi:
|
||||||
|
# providerCategory: "Supplier"
|
||||||
|
# providerResponsible: "Univention"
|
||||||
|
# upstreamRegistry: "https://artifacts.software-univention.de"
|
||||||
|
# upstreamRepository: "nubus/images/udm-rest-api"
|
||||||
|
# upstreamMirrorTagFilterRegEx: '^(\d+)\.(\d+)\.(\d+)$'
|
||||||
|
# upstreamMirrorStartFrom: ["0", "9", "3"]
|
||||||
|
registry: "registry.opencode.de"
|
||||||
|
repository: "bmi/opendesk/components/supplier/univention/images-mirror/udm-rest-api"
|
||||||
|
tag: "0.19.0@sha256:41482c459655afa36eaf9ec21354ff8417e4da5e3a787ec2f865730952f6bb61"
|
||||||
|
nubusUmcGateway:
|
||||||
|
# providerCategory: "Supplier"
|
||||||
|
# providerResponsible: "Univention"
|
||||||
|
# upstreamRegistry: "https://artifacts.software-univention.de"
|
||||||
|
# upstreamRepository: "nubus/images/umc-gateway"
|
||||||
|
# upstreamMirrorTagFilterRegEx: '^(\d+)\.(\d+)\.(\d+)$'
|
||||||
|
# upstreamMirrorStartFrom: ["0", "7", "3"]
|
||||||
|
registry: "registry.opencode.de"
|
||||||
|
repository: "bmi/opendesk/components/supplier/univention/images-mirror/umc-gateway"
|
||||||
|
tag: "0.22.2@sha256:fe4d2c148946da6f5e92201f398ebd0d5a72795c50648993bd220ea1e228658d"
|
||||||
|
nubusUmcServer:
|
||||||
|
# providerCategory: "Supplier"
|
||||||
|
# providerResponsible: "Univention"
|
||||||
|
# upstreamRegistry: "https://artifacts.software-univention.de"
|
||||||
|
# upstreamRepository: "nubus/images/umc-server"
|
||||||
|
# upstreamMirrorTagFilterRegEx: '^(\d+)\.(\d+)\.(\d+)$'
|
||||||
|
# upstreamMirrorStartFrom: ["0", "7", "3"]
|
||||||
|
registry: "registry.opencode.de"
|
||||||
|
repository: "bmi/opendesk/components/supplier/univention/images-mirror/umc-server"
|
||||||
|
tag: "0.22.2@sha256:474497f561c3532b37b7d5e77ec36bd1fefc4fbeaab9747b481533b0da086586"
|
||||||
|
nubusWaitForDependency:
|
||||||
|
# providerCategory: "Supplier"
|
||||||
|
# providerResponsible: "Univention"
|
||||||
|
# upstreamRegistry: "https://artifacts.software-univention.de"
|
||||||
|
# upstreamRepository: "nubus/images/wait-for-dependency"
|
||||||
|
# upstreamMirrorTagFilterRegEx: '^(\d+)\.(\d+)\.(\d+)$'
|
||||||
|
# upstreamMirrorStartFrom: ["0", "9", "4"]
|
||||||
|
registry: "registry.opencode.de"
|
||||||
|
repository: "bmi/opendesk/components/supplier/univention/images-mirror/wait-for-dependency"
|
||||||
|
tag: "0.25.0@sha256:71a4d66fd67db6f92212b1936862b2b0d5a678d412213d74452a9195c2fe67f7"
|
||||||
opendeskKeycloakBootstrap:
|
opendeskKeycloakBootstrap:
|
||||||
# providerCategory: "Platform"
|
# providerCategory: "Platform"
|
||||||
# providerResponsible: "openDesk"
|
# providerResponsible: "openDesk"
|
||||||
@@ -487,298 +807,6 @@ images:
|
|||||||
registry: "registry-1.docker.io"
|
registry: "registry-1.docker.io"
|
||||||
repository: "rapidfort/haproxy-official"
|
repository: "rapidfort/haproxy-official"
|
||||||
tag: "2.6.15-bullseye@sha256:47b6ca4074347788cb414fbf3db35d0c51e9e47af33be46457f95c750540887c"
|
tag: "2.6.15-bullseye@sha256:47b6ca4074347788cb414fbf3db35d0c51e9e47af33be46457f95c750540887c"
|
||||||
umsDataLoader:
|
|
||||||
# providerCategory: "Supplier"
|
|
||||||
# providerResponsible: "Univention"
|
|
||||||
# upstreamRegistry: "https://artifacts.software-univention.de"
|
|
||||||
# upstreamRepository: "nubus/images/data-loader"
|
|
||||||
# upstreamMirrorTagFilterRegEx: '^(\d+)\.(\d+)\.(\d+)$'
|
|
||||||
# upstreamMirrorStartFrom: ["0", "41", "5"]
|
|
||||||
registry: "registry.opencode.de"
|
|
||||||
repository: "bmi/opendesk/components/supplier/univention/images-mirror/data-loader"
|
|
||||||
tag: "0.45.2@sha256:6e2e054903f361eea5cd54ae6dd3da94380d4a6a11f2628983e2acdbc66d605e"
|
|
||||||
umsGuardianAuthorizationApi:
|
|
||||||
# providerCategory: "Supplier"
|
|
||||||
# providerResponsible: "Univention"
|
|
||||||
# upstreamRegistry: "https://docker.software-univention.de"
|
|
||||||
# upstreamRepository: "guardian-authorization-api-authorization-api"
|
|
||||||
# upstreamMirrorTagFilterRegEx: '^(\d+)\.(\d+)\.(\d+)$'
|
|
||||||
# upstreamMirrorStartFrom: ["1", "0", "0"]
|
|
||||||
registry: "registry.opencode.de"
|
|
||||||
repository: "bmi/opendesk/components/supplier/univention/images-mirror/guardian-authorization-api-authorization-api"
|
|
||||||
tag: "2.0.0@sha256:5f194f9385aea5a279e25a57352f7b88a6cc4fa90b3bf04c2c97b9ff2bad70a5"
|
|
||||||
umsGuardianManagementApi:
|
|
||||||
# providerCategory: "Supplier"
|
|
||||||
# providerResponsible: "Univention"
|
|
||||||
# upstreamRegistry: "https://docker.software-univention.de"
|
|
||||||
# upstreamRepository: "guardian-management-api-management-api"
|
|
||||||
# upstreamMirrorTagFilterRegEx: '^(\d+)\.(\d+)\.(\d+)$'
|
|
||||||
# upstreamMirrorStartFrom: ["1", "0", "0"]
|
|
||||||
registry: "registry.opencode.de"
|
|
||||||
repository: "bmi/opendesk/components/supplier/univention/images-mirror/guardian-management-api-management-api"
|
|
||||||
tag: "2.0.0@sha256:61a1ab84efebe2a87d358e8624f8b39073a6071683e7cd77b740a97d464753a2"
|
|
||||||
umsGuardianManagementUi:
|
|
||||||
# providerCategory: "Supplier"
|
|
||||||
# providerResponsible: "Univention"
|
|
||||||
# upstreamRegistry: "https://docker.software-univention.de"
|
|
||||||
# upstreamRepository: "guardian-management-ui-management-ui"
|
|
||||||
# upstreamMirrorTagFilterRegEx: '^(\d+)\.(\d+)\.(\d+)$'
|
|
||||||
# upstreamMirrorStartFrom: ["1", "0", "0"]
|
|
||||||
registry: "registry.opencode.de"
|
|
||||||
repository: "bmi/opendesk/components/supplier/univention/images-mirror/guardian-management-ui-management-ui"
|
|
||||||
tag: "2.0.0@sha256:57e2503a4772f0ff656e792a98fadef4d41c248218e6c368f76ce82a892478cf"
|
|
||||||
umsGuardianProvisioning:
|
|
||||||
# providerCategory: "Supplier"
|
|
||||||
# providerResponsible: "Univention"
|
|
||||||
# upstreamRegistry: "https://artifacts.software-univention.de"
|
|
||||||
# upstreamRepository: "nubus/images/guardian-init"
|
|
||||||
# upstreamMirrorTagFilterRegEx: '^(\d+)\.(\d+)\.(\d+)$'
|
|
||||||
# upstreamMirrorStartFrom: ["0", "3", "0"]
|
|
||||||
registry: "registry.opencode.de"
|
|
||||||
repository: "bmi/opendesk/components/supplier/univention/images-mirror/guardian-init"
|
|
||||||
tag: "0.4.0@sha256:390e20ad73a91ae2ecc33d91d1f21872a46e6af4d4d09095d1ce18a6d4a3635e"
|
|
||||||
umsKeycloak:
|
|
||||||
# providerCategory: "Supplier"
|
|
||||||
# providerResponsible: "Univention"
|
|
||||||
# upstreamRegistry: "https://docker.software-univention.de"
|
|
||||||
# upstreamRepository: "keycloak-keycloak"
|
|
||||||
# upstreamMirrorTagFilterRegEx: '^(\d+)\.(\d+)\.(\d+).+$'
|
|
||||||
# upstreamMirrorStartFrom: ["22", "0", "3"]
|
|
||||||
registry: "registry.opencode.de"
|
|
||||||
repository: "bmi/opendesk/components/supplier/univention/images-mirror/keycloak-keycloak"
|
|
||||||
tag: "24.0.3-ucs1@sha256:cc66a1730abdd5abe88ac5cf045b6558f289bf1ae8d077ee884a42d785742f8b"
|
|
||||||
umsKeycloakBootstrap:
|
|
||||||
# providerCategory: "Supplier"
|
|
||||||
# providerResponsible: "Univention"
|
|
||||||
# upstreamRegistry: "https://artifacts.software-univention.de"
|
|
||||||
# upstreamRepository: "nubus/images/keycloak-bootstrap"
|
|
||||||
# upstreamMirrorTagFilterRegEx: '^(\d+)\.(\d+)\.(\d+)$'
|
|
||||||
# upstreamMirrorStartFrom: ["0", "1", "0"]
|
|
||||||
registry: "registry.opencode.de"
|
|
||||||
repository: "bmi/opendesk/components/supplier/univention/images-mirror/keycloak-bootstrap"
|
|
||||||
tag: "0.1.0@sha256:351097e9e7b469f2fc149fe612ec6ad515d5e6b081d7e2785bd926a1d77209d2"
|
|
||||||
umsKeycloakExtensionHandler:
|
|
||||||
# providerCategory: "Supplier"
|
|
||||||
# providerResponsible: "Univention"
|
|
||||||
# upstreamRegistry: "https://artifacts.software-univention.de"
|
|
||||||
# upstreamRepository: "nubus/images/keycloak-handler"
|
|
||||||
# upstreamMirrorTagFilterRegEx: '^(\d+)\.(\d+)\.(\d+)$'
|
|
||||||
# upstreamMirrorStartFrom: ["0", "0", "3"]
|
|
||||||
registry: "registry.opencode.de"
|
|
||||||
repository: "bmi/opendesk/components/supplier/univention/images-mirror/keycloak-handler"
|
|
||||||
tag: "0.4.0@sha256:7c2728d6fce0fa6e6cc2a3c196294fcb4fcce0dd246b95ad96bd96325776a004"
|
|
||||||
umsKeycloakExtensionProxy:
|
|
||||||
# providerCategory: "Supplier"
|
|
||||||
# providerResponsible: "Univention"
|
|
||||||
# upstreamRegistry: "https://artifacts.software-univention.de"
|
|
||||||
# upstreamRepository: "nubus/images/keycloak-proxy"
|
|
||||||
# upstreamMirrorTagFilterRegEx: '^(\d+)\.(\d+)\.(\d+)$'
|
|
||||||
# upstreamMirrorStartFrom: ["0", "0", "3"]
|
|
||||||
registry: "registry.opencode.de"
|
|
||||||
repository: "bmi/opendesk/components/supplier/univention/images-mirror/keycloak-proxy"
|
|
||||||
tag: "0.4.0@sha256:d7369d8b9cb177fc19b08452266bf7440b683fd0a15c01baeb5c131db20081bf"
|
|
||||||
umsLdapNotifier:
|
|
||||||
# providerCategory: "Supplier"
|
|
||||||
# providerResponsible: "Univention"
|
|
||||||
# upstreamRegistry: "https://artifacts.software-univention.de"
|
|
||||||
# upstreamRepository: "nubus/images/ldap-notifier"
|
|
||||||
# upstreamMirrorTagFilterRegEx: '^(\d+)\.(\d+)\.(\d+)$'
|
|
||||||
# upstreamMirrorStartFrom: ["0", "8", "2"]
|
|
||||||
registry: "registry.opencode.de"
|
|
||||||
repository: "bmi/opendesk/components/supplier/univention/images-mirror/ldap-notifier"
|
|
||||||
tag: "0.10.3@sha256:beb4577e7fdf1e18d3769e62296f210c0651460346dc2325e6cc29f4c671fa71"
|
|
||||||
umsLdapServer:
|
|
||||||
# providerCategory: "Supplier"
|
|
||||||
# providerResponsible: "Univention"
|
|
||||||
# upstreamRegistry: "https://artifacts.software-univention.de"
|
|
||||||
# upstreamRepository: "nubus/images/ldap-server"
|
|
||||||
# upstreamMirrorTagFilterRegEx: '^(\d+)\.(\d+)\.(\d+)$'
|
|
||||||
# upstreamMirrorStartFrom: ["0", "8", "2"]
|
|
||||||
registry: "registry.opencode.de"
|
|
||||||
repository: "bmi/opendesk/components/supplier/univention/images-mirror/ldap-server"
|
|
||||||
tag: "0.10.3@sha256:7742eca27bf1134cf92e6e3571bc2784e2f21a76664fdcab6ae213051db26c05"
|
|
||||||
umsNats:
|
|
||||||
# providerCategory: 'Community'
|
|
||||||
# providerResponsible: 'Univention'
|
|
||||||
# upstreamRegistry: 'registry-1.docker.io'
|
|
||||||
# upstreamRepository: 'library/nats'
|
|
||||||
registry: "registry-1.docker.io"
|
|
||||||
repository: "library/nats"
|
|
||||||
tag: "2.10.10@sha256:fa26beda8a3187ccefa47afcfe9ea6d0e2f40a57c8f64d70bd63c792d7973938"
|
|
||||||
umsNatsBox:
|
|
||||||
# providerCategory: 'Community'
|
|
||||||
# providerResponsible: 'Univention'
|
|
||||||
# upstreamRegistry: 'registry-1.docker.io'
|
|
||||||
# upstreamRepository: 'natsio/nats-box'
|
|
||||||
registry: "registry-1.docker.io"
|
|
||||||
repository: "natsio/nats-box"
|
|
||||||
tag: "0.14.2@sha256:c9b8ebaabb2ca4c227feb4f6b856dc72d4775ac3d71f80d2c65aa82303079011"
|
|
||||||
umsNatsReloader:
|
|
||||||
# providerCategory: 'Community'
|
|
||||||
# providerResponsible: 'Univention'
|
|
||||||
# upstreamRegistry: 'registry-1.docker.io'
|
|
||||||
# upstreamRepository: 'natsio/nats-server-config-reloader'
|
|
||||||
registry: "registry-1.docker.io"
|
|
||||||
repository: "natsio/nats-server-config-reloader"
|
|
||||||
tag: "0.14.1@sha256:77dd4c60001ffbf442c6b25592e73b4fca06ea9406c677607192788d80453783"
|
|
||||||
umsNotificationsApi:
|
|
||||||
# providerCategory: "Supplier"
|
|
||||||
# providerResponsible: "Univention"
|
|
||||||
# upstreamRegistry: "https://artifacts.software-univention.de"
|
|
||||||
# upstreamRepository: "nubus/images/notifications-api"
|
|
||||||
# upstreamMirrorTagFilterRegEx: '^(\d+)\.(\d+)\.(\d+)$'
|
|
||||||
# upstreamMirrorStartFrom: ["0", "9", "4"]
|
|
||||||
registry: "registry.opencode.de"
|
|
||||||
repository: "bmi/opendesk/components/supplier/univention/images-mirror/notifications-api"
|
|
||||||
tag: "0.20.3@sha256:1e32854d6d4413725870fde26a904da83282b3debea82b386c5753223ecc6a59"
|
|
||||||
umsOpenPolicyAgent:
|
|
||||||
# providerCategory: "Supplier"
|
|
||||||
# providerResponsible: "Univention"
|
|
||||||
# upstreamRegistry: "https://docker.software-univention.de"
|
|
||||||
# upstreamRepository: "guardian-authorization-api-opa"
|
|
||||||
# upstreamMirrorTagFilterRegEx: '^(\d+)\.(\d+)\.(\d+)$'
|
|
||||||
# upstreamMirrorStartFrom: ["1", "0", "0"]
|
|
||||||
registry: "registry.opencode.de"
|
|
||||||
repository: "bmi/opendesk/components/supplier/univention/images-mirror/guardian-authorization-api-opa"
|
|
||||||
tag: "2.0.0@sha256:56a92a08da5addb951a2b2df09974889295ddde8526e93ad40dd973de1052ad4"
|
|
||||||
umsPortalFrontend:
|
|
||||||
# providerCategory: "Supplier"
|
|
||||||
# providerResponsible: "Univention"
|
|
||||||
# upstreamRegistry: "https://artifacts.software-univention.de"
|
|
||||||
# upstreamRepository: "nubus/images/portal-frontend"
|
|
||||||
# upstreamMirrorTagFilterRegEx: '^(\d+)\.(\d+)\.(\d+)$'
|
|
||||||
# upstreamMirrorStartFrom: ["0", "9", "4"]
|
|
||||||
registry: "registry.opencode.de"
|
|
||||||
repository: "bmi/opendesk/components/supplier/univention/images-mirror/portal-frontend"
|
|
||||||
tag: "0.20.3@sha256:4fe6646711efcc07eb4b6e59a57f1d5080cca5f4ec2c960d073e92ecae8be42f"
|
|
||||||
umsPortalListener:
|
|
||||||
# providerCategory: "Supplier"
|
|
||||||
# providerResponsible: "Univention"
|
|
||||||
# upstreamRegistry: "https://artifacts.software-univention.de"
|
|
||||||
# upstreamRepository: "nubus/images/portal-listener"
|
|
||||||
# upstreamMirrorTagFilterRegEx: '^(\d+)\.(\d+)\.(\d+)$'
|
|
||||||
# upstreamMirrorStartFrom: ["0", "9", "4"]
|
|
||||||
registry: "registry.opencode.de"
|
|
||||||
repository: "bmi/opendesk/components/supplier/univention/images-mirror/portal-listener"
|
|
||||||
tag: "0.20.7@sha256:8f158b88e0ceb7a5c79d2ad390f6ce851ce0c5ccb675d08d6b6c37f0b21f6177"
|
|
||||||
umsPortalServer:
|
|
||||||
# providerCategory: "Supplier"
|
|
||||||
# providerResponsible: "Univention"
|
|
||||||
# upstreamRegistry: "https://artifacts.software-univention.de"
|
|
||||||
# upstreamRepository: "nubus/images/portal-server"
|
|
||||||
# upstreamMirrorTagFilterRegEx: '^(\d+)\.(\d+)\.(\d+)$'
|
|
||||||
# upstreamMirrorStartFrom: ["0", "9", "4"]
|
|
||||||
registry: "registry.opencode.de"
|
|
||||||
repository: "bmi/opendesk/components/supplier/univention/images-mirror/portal-server"
|
|
||||||
tag: "0.20.3@sha256:0ec3db74ce9b7c8706d1534b6dcb464eb016a5de94c3b5bfc49215ccb606715c"
|
|
||||||
umsProvisioningDispatcher:
|
|
||||||
# providerCategory: "Supplier"
|
|
||||||
# providerResponsible: "Univention"
|
|
||||||
# upstreamRegistry: "https://artifacts.software-univention.de"
|
|
||||||
# upstreamRepository: "nubus/images/provisioning-dispatcher"
|
|
||||||
# upstreamMirrorTagFilterRegEx: '^(\d+)\.(\d+)\.(\d+)$'
|
|
||||||
# upstreamMirrorStartFrom: ["0", "14", "0"]
|
|
||||||
registry: "registry.opencode.de"
|
|
||||||
repository: "bmi/opendesk/components/supplier/univention/images-mirror/provisioning-dispatcher"
|
|
||||||
tag: "0.21.3@sha256:29c5f216ab0f8d12c1e77969de6e82046c0d47e1111838fb0a2dcd9950c0175d"
|
|
||||||
umsProvisioningEventsAndConsumerApi:
|
|
||||||
# providerCategory: "Supplier"
|
|
||||||
# providerResponsible: "Univention"
|
|
||||||
# upstreamRegistry: "https://artifacts.software-univention.de"
|
|
||||||
# upstreamRepository: "nubus/images/provisioning-events-and-consumer-api"
|
|
||||||
# upstreamMirrorTagFilterRegEx: '^(\d+)\.(\d+)\.(\d+)$'
|
|
||||||
# upstreamMirrorStartFrom: ["0", "14", "0"]
|
|
||||||
registry: "registry.opencode.de"
|
|
||||||
repository: "bmi/opendesk/components/supplier/univention/images-mirror/provisioning-events-and-consumer-api"
|
|
||||||
tag: "0.21.3@sha256:4cb498a64dd40c0963ca1ca382213ad5b8a4de5eb57650946d78ac44b359f43f"
|
|
||||||
umsProvisioningPrefill:
|
|
||||||
# providerCategory: "Supplier"
|
|
||||||
# providerResponsible: "Univention"
|
|
||||||
# upstreamRegistry: "https://artifacts.software-univention.de"
|
|
||||||
# upstreamRepository: "nubus/images/provisioning-prefill"
|
|
||||||
# upstreamMirrorTagFilterRegEx: '^(\d+)\.(\d+)\.(\d+)$'
|
|
||||||
# upstreamMirrorStartFrom: ["0", "14", "0"]
|
|
||||||
registry: "registry.opencode.de"
|
|
||||||
repository: "bmi/opendesk/components/supplier/univention/images-mirror/provisioning-prefill"
|
|
||||||
tag: "0.21.3@sha256:944ff8558d12c59f3490cba68680281c3fa5468fd6fd011fd002befcb9956973"
|
|
||||||
umsProvisioningUdmListener:
|
|
||||||
# providerCategory: "Supplier"
|
|
||||||
# providerResponsible: "Univention"
|
|
||||||
# upstreamRegistry: "https://artifacts.software-univention.de"
|
|
||||||
# upstreamRepository: "nubus/images/provisioning-udm-listener"
|
|
||||||
# upstreamMirrorTagFilterRegEx: '^(\d+)\.(\d+)\.(\d+)$'
|
|
||||||
# upstreamMirrorStartFrom: ["0", "14", "0"]
|
|
||||||
registry: "registry.opencode.de"
|
|
||||||
repository: "bmi/opendesk/components/supplier/univention/images-mirror/provisioning-udm-listener"
|
|
||||||
tag: "0.21.3@sha256:e1cd42558e44bb72ed5c7798cef711db94df7d10d6895c993ca6412df1d25f02"
|
|
||||||
umsSelfserviceInvitation:
|
|
||||||
# providerCategory: "Supplier"
|
|
||||||
# providerResponsible: "Univention"
|
|
||||||
# upstreamRegistry: "https://artifacts.software-univention.de"
|
|
||||||
# upstreamRepository: "nubus/images/selfservice-invitation"
|
|
||||||
# upstreamMirrorTagFilterRegEx: '^(\d+)\.(\d+)\.(\d+)$'
|
|
||||||
# upstreamMirrorStartFrom: ["0", "3", "2"]
|
|
||||||
registry: "registry.opencode.de"
|
|
||||||
repository: "bmi/opendesk/components/supplier/univention/images-mirror/selfservice-invitation"
|
|
||||||
tag: "0.4.0@sha256:bd252758576e1733076c78756f04225ebed73d9c48de22440975ef11dd087caf"
|
|
||||||
umsSelfserviceListener:
|
|
||||||
# providerCategory: "Supplier"
|
|
||||||
# providerResponsible: "Univention"
|
|
||||||
# upstreamRegistry: "https://artifacts.software-univention.de"
|
|
||||||
# upstreamRepository: "nubus/images/selfservice-listener"
|
|
||||||
# upstreamMirrorTagFilterRegEx: '^(\d+)\.(\d+)\.(\d+)$'
|
|
||||||
# upstreamMirrorStartFrom: ["0", "3", "2"]
|
|
||||||
registry: "registry.opencode.de"
|
|
||||||
repository: "bmi/opendesk/components/supplier/univention/images-mirror/selfservice-listener"
|
|
||||||
tag: "0.4.0@sha256:0bc0235fd64a19a183f112da73109b54712c2d70fe7fa77c6405beefb7167588"
|
|
||||||
umsStackGateway:
|
|
||||||
# providerCategory: "Community"
|
|
||||||
# providerResponsible: "Univention"
|
|
||||||
# upstreamRegistry: "https://registry-1.docker.io"
|
|
||||||
# upstreamRepository: "bitnami/nginx"
|
|
||||||
registry: "registry-1.docker.io"
|
|
||||||
repository: "bitnami/nginx"
|
|
||||||
tag: "1.25.4@sha256:dd352b597f4c38ae24abec411710f4249fb5c793293c7ed04737db6b41d32d24"
|
|
||||||
umsUdmRestApi:
|
|
||||||
# providerCategory: "Supplier"
|
|
||||||
# providerResponsible: "Univention"
|
|
||||||
# upstreamRegistry: "https://artifacts.software-univention.de"
|
|
||||||
# upstreamRepository: "nubus/images/udm-rest-api"
|
|
||||||
# upstreamMirrorTagFilterRegEx: '^(\d+)\.(\d+)\.(\d+)$'
|
|
||||||
# upstreamMirrorStartFrom: ["0", "9", "3"]
|
|
||||||
registry: "registry.opencode.de"
|
|
||||||
repository: "bmi/opendesk/components/supplier/univention/images-mirror/udm-rest-api"
|
|
||||||
tag: "0.9.3@sha256:7cf2fec05a4ff8b7085a35a215edbce1eb9456c1ae140af46257e66d5a6cd6f7"
|
|
||||||
umsUmcGateway:
|
|
||||||
# providerCategory: "Supplier"
|
|
||||||
# providerResponsible: "Univention"
|
|
||||||
# upstreamRegistry: "https://artifacts.software-univention.de"
|
|
||||||
# upstreamRepository: "nubus/images/umc-gateway"
|
|
||||||
# upstreamMirrorTagFilterRegEx: '^(\d+)\.(\d+)\.(\d+)$'
|
|
||||||
# upstreamMirrorStartFrom: ["0", "7", "3"]
|
|
||||||
registry: "registry.opencode.de"
|
|
||||||
repository: "bmi/opendesk/components/supplier/univention/images-mirror/umc-gateway"
|
|
||||||
tag: "0.11.6@sha256:5d7c1a9b74409d2d7c42e08ca87b41cda506e43cad49efbc85a4ed6b8e9c6bc8"
|
|
||||||
umsUmcServer:
|
|
||||||
# providerCategory: "Supplier"
|
|
||||||
# providerResponsible: "Univention"
|
|
||||||
# upstreamRegistry: "https://artifacts.software-univention.de"
|
|
||||||
# upstreamRepository: "nubus/images/umc-server"
|
|
||||||
# upstreamMirrorTagFilterRegEx: '^(\d+)\.(\d+)\.(\d+)$'
|
|
||||||
# upstreamMirrorStartFrom: ["0", "7", "3"]
|
|
||||||
registry: "registry.opencode.de"
|
|
||||||
repository: "bmi/opendesk/components/supplier/univention/images-mirror/umc-server"
|
|
||||||
tag: "0.11.8@sha256:38a87524703a1e11fbb3cd3cc9d90d5b719e92329a0e3ea05c50451105d64ac6"
|
|
||||||
umsWaitForDependency:
|
|
||||||
# providerCategory: "Supplier"
|
|
||||||
# providerResponsible: "Univention"
|
|
||||||
# upstreamRegistry: "https://artifacts.software-univention.de"
|
|
||||||
# upstreamRepository: "nubus/images/wait-for-dependency"
|
|
||||||
# upstreamMirrorTagFilterRegEx: '^(\d+)\.(\d+)\.(\d+)$'
|
|
||||||
# upstreamMirrorStartFrom: ["0", "9", "4"]
|
|
||||||
registry: "registry.opencode.de"
|
|
||||||
repository: "bmi/opendesk/components/supplier/univention/images-mirror/wait-for-dependency"
|
|
||||||
tag: "0.20.3@sha256:d1ccba5fe7448c2bda71c8a93f265a42a000e8dc79fd884e7e6ecdf29ad80efc"
|
|
||||||
wellKnown:
|
wellKnown:
|
||||||
# providerCategory: "Community"
|
# providerCategory: "Community"
|
||||||
# providerResponsible: "Element"
|
# providerResponsible: "Element"
|
||||||
|
|||||||
@@ -218,6 +218,49 @@ resources:
|
|||||||
requests:
|
requests:
|
||||||
cpu: 0.1
|
cpu: 0.1
|
||||||
memory: "512Mi"
|
memory: "512Mi"
|
||||||
|
nubusProvisioning:
|
||||||
|
nats:
|
||||||
|
limits:
|
||||||
|
cpu: 288
|
||||||
|
memory: "1Gi"
|
||||||
|
requests:
|
||||||
|
cpu: 0.1
|
||||||
|
memory: "128Mi"
|
||||||
|
dispatcher:
|
||||||
|
limits:
|
||||||
|
cpu: 1
|
||||||
|
memory: "1Gi"
|
||||||
|
requests:
|
||||||
|
cpu: 0.1
|
||||||
|
memory: "64Mi"
|
||||||
|
registerConsumers:
|
||||||
|
limits:
|
||||||
|
cpu: 1
|
||||||
|
memory: "1Gi"
|
||||||
|
requests:
|
||||||
|
cpu: 0.1
|
||||||
|
memory: "64Mi"
|
||||||
|
udmTransformer:
|
||||||
|
limits:
|
||||||
|
cpu: 1
|
||||||
|
memory: "1Gi"
|
||||||
|
requests:
|
||||||
|
cpu: 0.1
|
||||||
|
memory: "64Mi"
|
||||||
|
prefill:
|
||||||
|
limits:
|
||||||
|
cpu: 1
|
||||||
|
memory: "1Gi"
|
||||||
|
requests:
|
||||||
|
cpu: 0.1
|
||||||
|
memory: "64Mi"
|
||||||
|
api:
|
||||||
|
limits:
|
||||||
|
cpu: 1
|
||||||
|
memory: "1Gi"
|
||||||
|
requests:
|
||||||
|
cpu: 0.1
|
||||||
|
memory: "100Mi"
|
||||||
openproject:
|
openproject:
|
||||||
limits:
|
limits:
|
||||||
cpu: 99
|
cpu: 99
|
||||||
|
|||||||
@@ -11,9 +11,7 @@ helmfiles:
|
|||||||
- "helmfile/environments/default/*.yaml"
|
- "helmfile/environments/default/*.yaml"
|
||||||
- "helmfile/environments/default/*.gotmpl"
|
- "helmfile/environments/default/*.gotmpl"
|
||||||
- {{ toYaml .Values | nindent 8 }}
|
- {{ toYaml .Values | nindent 8 }}
|
||||||
- path: "helmfile/apps/services/helmfile-child.yaml"
|
- path: "helmfile/apps/nubus/helmfile-child.yaml"
|
||||||
values: *values
|
|
||||||
- path: "helmfile/apps/univention-management-stack/helmfile-child.yaml"
|
|
||||||
values: *values
|
values: *values
|
||||||
- path: "helmfile/apps/intercom-service/helmfile-child.yaml"
|
- path: "helmfile/apps/intercom-service/helmfile-child.yaml"
|
||||||
values: *values
|
values: *values
|
||||||
|
|||||||
Reference in New Issue
Block a user