mirror of
https://gitlab.opencode.de/bmi/opendesk/deployment/opendesk.git
synced 2025-12-06 15:31:38 +01:00
Compare commits
32 Commits
| Author | SHA1 | Date | |
|---|---|---|---|
|
7ef3a10577 | ||
|
|
1c35ca67ce | ||
|
|
e0c6c14dca | ||
|
|
3cf348c7ae | ||
|
|
b3d45c45e1 | ||
|
|
c246edd8f9 | ||
|
|
c19bca2be0 | ||
|
|
a5f263ce48 | ||
|
|
cbe8fb2d65 | ||
|
|
8b6a4b2e88 | ||
|
|
a61d00482f | ||
|
|
0c7a77c4b6 | ||
|
|
211bee94bb | ||
|
|
b3ac0ae6d9 | ||
|
|
4c52a5aaa8 | ||
|
|
7a9ecf7b85 | ||
|
|
86b48188e1 | ||
|
|
7bbab22939 | ||
|
|
1343d6c93e | ||
|
|
735fec3b4c | ||
|
|
21b9d1d024 | ||
|
|
6dc92df2eb | ||
|
|
cac6abe251 | ||
|
|
6c1664fc0d | ||
|
|
36aa3ed7c9 | ||
|
|
23c46e7fe5 | ||
|
|
efbd814968 | ||
|
|
812eb5a439 | ||
|
|
f86a74ba10 | ||
|
|
71d11cfcd0 | ||
|
|
6aa3d386af | ||
|
|
7ac2e0f9de |
@@ -5,6 +5,7 @@ include:
|
|||||||
- project: "${PROJECT_PATH_GITLAB_CONFIG_TOOLING}"
|
- project: "${PROJECT_PATH_GITLAB_CONFIG_TOOLING}"
|
||||||
ref: "main"
|
ref: "main"
|
||||||
file:
|
file:
|
||||||
|
- "ci/common/automr.yml"
|
||||||
- "ci/common/lint.yml"
|
- "ci/common/lint.yml"
|
||||||
- "ci/release-automation/semantic-release.yml"
|
- "ci/release-automation/semantic-release.yml"
|
||||||
- project: "${PROJECT_PATH_CUSTOM_ENVIRONMENT_CONFIG}"
|
- project: "${PROJECT_PATH_CUSTOM_ENVIRONMENT_CONFIG}"
|
||||||
@@ -14,6 +15,7 @@ include:
|
|||||||
|
|
||||||
stages:
|
stages:
|
||||||
- ".pre"
|
- ".pre"
|
||||||
|
- "automr"
|
||||||
- "lint"
|
- "lint"
|
||||||
- "env-cleanup"
|
- "env-cleanup"
|
||||||
- "env"
|
- "env"
|
||||||
@@ -555,7 +557,7 @@ generate-release-assets:
|
|||||||
- "./build_artefacts/image-index.json"
|
- "./build_artefacts/image-index.json"
|
||||||
tags: []
|
tags: []
|
||||||
variables:
|
variables:
|
||||||
ASSET_GENERATOR_REPO_PATH: "bmi/souveraener_arbeitsplatz/tooling/opendesk-asset-generator"
|
ASSET_GENERATOR_REPO_PATH: "bmi/opendesk/tooling/opendesk-asset-generator"
|
||||||
|
|
||||||
|
|
||||||
# Declare .environments which is in environments repository and only loaded when INCLUDE_ENVIRONMENTS_ENABLED not false.
|
# Declare .environments which is in environments repository and only loaded when INCLUDE_ENVIRONMENTS_ENABLED not false.
|
||||||
|
|||||||
66
CHANGELOG.md
66
CHANGELOG.md
@@ -1,3 +1,69 @@
|
|||||||
|
## [0.5.53](https://gitlab.opencode.de/bmi/opendesk/deployment/sovereign-workplace/compare/v0.5.52...v0.5.53) (2023-11-29)
|
||||||
|
|
||||||
|
|
||||||
|
### Bug Fixes
|
||||||
|
|
||||||
|
* **univention-managemen-stack:** Integrate Attribute to Group Mapper into the containerized stack ([7bbab22](https://gitlab.opencode.de/bmi/opendesk/deployment/sovereign-workplace/commit/7bbab229396075c7d10f94f42bef14551faefe26))
|
||||||
|
* **univention-management-stack:** Add Announcements icon into "umc-gateway" ([7a9ecf7](https://gitlab.opencode.de/bmi/opendesk/deployment/sovereign-workplace/commit/7a9ecf7b8595edf0949d9c200d01b3409f25b9a7))
|
||||||
|
* **univention-management-stack:** Add Announcements module into "umc-server" ([4c52a5a](https://gitlab.opencode.de/bmi/opendesk/deployment/sovereign-workplace/commit/4c52a5aaa83ffb6f4c49faa039c94cb1855987bb))
|
||||||
|
* **univention-management-stack:** Add branding related configuration to stack-gateway ([a5f263c](https://gitlab.opencode.de/bmi/opendesk/deployment/sovereign-workplace/commit/a5f263ce489f88b90cf1151de249f36616a51632))
|
||||||
|
* **univention-management-stack:** Apply styling ([b3d45c4](https://gitlab.opencode.de/bmi/opendesk/deployment/sovereign-workplace/commit/b3d45c45e1b754e14ab0519efcb6b6a359f0ad1e))
|
||||||
|
* **univention-management-stack:** Configure openDesk branding in frontend chart ([cbe8fb2](https://gitlab.opencode.de/bmi/opendesk/deployment/sovereign-workplace/commit/cbe8fb2d65e6ce73f9da95ef9b0ed3ffbb16d367))
|
||||||
|
* **univention-management-stack:** Document database of UMS Notifications API ([3cf348c](https://gitlab.opencode.de/bmi/opendesk/deployment/sovereign-workplace/commit/3cf348c7ae8f438daf3e64addbf839230816f3d2))
|
||||||
|
* **univention-management-stack:** Move static settings from gotmpl into yaml for umc-gateway ([b3ac0ae](https://gitlab.opencode.de/bmi/opendesk/deployment/sovereign-workplace/commit/b3ac0ae6d91a058265fcd26c6653bb8a13d3e780))
|
||||||
|
* **univention-management-stack:** Quote all composed strings ([1c35ca6](https://gitlab.opencode.de/bmi/opendesk/deployment/sovereign-workplace/commit/1c35ca67ce0673e1b2f9a350bd07c82c22a05354))
|
||||||
|
* **univention-management-stack:** Remove frontend-custom ([8b6a4b2](https://gitlab.opencode.de/bmi/opendesk/deployment/sovereign-workplace/commit/8b6a4b2e88e8be1d299af91ed1ffff4405db88e6))
|
||||||
|
* **univention-management-stack:** Set SMTP host for self-service notifications ([0c7a77c](https://gitlab.opencode.de/bmi/opendesk/deployment/sovereign-workplace/commit/0c7a77c4b6f20c6d83e977dabfc4e555b652f6ac))
|
||||||
|
* **univention-management-stack:** UMC uses external memcached ([211bee9](https://gitlab.opencode.de/bmi/opendesk/deployment/sovereign-workplace/commit/211bee94bb7675860f867f0335fec9f14fc96875))
|
||||||
|
* **univention-management-stack:** Update ums-dependencies ([e0c6c14](https://gitlab.opencode.de/bmi/opendesk/deployment/sovereign-workplace/commit/e0c6c14dcaefc0755495270bbf45898721e27985))
|
||||||
|
* **univention-management-stack:** Update ums-dependencies ([c246edd](https://gitlab.opencode.de/bmi/opendesk/deployment/sovereign-workplace/commit/c246edd8f9753e37bc9c32683faf41f5b46d7675))
|
||||||
|
* **univention-management-stack:** Update ums-dependencies ([86b4818](https://gitlab.opencode.de/bmi/opendesk/deployment/sovereign-workplace/commit/86b48188e160c1f7d15f2c33f1f3cd0cc0e68bf2))
|
||||||
|
* **univention-management-stack:** Use "stack-gateway" in all deployments ([c19bca2](https://gitlab.opencode.de/bmi/opendesk/deployment/sovereign-workplace/commit/c19bca2be0d14750bbef661e45c5c424f7da8e77))
|
||||||
|
|
||||||
|
## [0.5.52](https://gitlab.opencode.de/bmi/opendesk/deployment/sovereign-workplace/compare/v0.5.51...v0.5.52) (2023-11-28)
|
||||||
|
|
||||||
|
|
||||||
|
### Bug Fixes
|
||||||
|
|
||||||
|
* **ci:** Open automatic MRs for new branches ([735fec3](https://gitlab.opencode.de/bmi/opendesk/deployment/sovereign-workplace/commit/735fec3b4ccd33ba63e5fa6482526efb6853c64a))
|
||||||
|
|
||||||
|
## [0.5.51](https://gitlab.opencode.de/bmi/opendesk/deployment/sovereign-workplace/compare/v0.5.50...v0.5.51) (2023-11-28)
|
||||||
|
|
||||||
|
|
||||||
|
### Bug Fixes
|
||||||
|
|
||||||
|
* **nextcloud:** Bump chart to fix central navigation ([cac6abe](https://gitlab.opencode.de/bmi/opendesk/deployment/sovereign-workplace/commit/cac6abe2510b6793963633077543684a6a4e7cbc))
|
||||||
|
* **openproject:** Update container and prepare for OIDC based user admin role setting ([6dc92df](https://gitlab.opencode.de/bmi/opendesk/deployment/sovereign-workplace/commit/6dc92df2ebcae435e3b3609cc163dc6c33fb1b83))
|
||||||
|
|
||||||
|
## [0.5.50](https://gitlab.opencode.de/bmi/opendesk/deployment/sovereign-workplace/compare/v0.5.49...v0.5.50) (2023-11-27)
|
||||||
|
|
||||||
|
|
||||||
|
### Bug Fixes
|
||||||
|
|
||||||
|
* **ci:** Add metadata for renovate processing ([36aa3ed](https://gitlab.opencode.de/bmi/opendesk/deployment/sovereign-workplace/commit/36aa3ed7c9f9a6d0ffe23dc3ca2174d5f2741dfa))
|
||||||
|
|
||||||
|
## [0.5.49](https://gitlab.opencode.de/bmi/opendesk/deployment/sovereign-workplace/compare/v0.5.48...v0.5.49) (2023-11-27)
|
||||||
|
|
||||||
|
|
||||||
|
### Bug Fixes
|
||||||
|
|
||||||
|
* **nextcloud:** Bump image to incorporate fix for https://github.com/nextcloud/security-advisories/security/advisories/GHSA-f962-hw26-g267 ([efbd814](https://gitlab.opencode.de/bmi/opendesk/deployment/sovereign-workplace/commit/efbd81496868c5d4274f09805a1e771f47d548be))
|
||||||
|
|
||||||
|
## [0.5.48](https://gitlab.opencode.de/bmi/opendesk/deployment/sovereign-workplace/compare/v0.5.47...v0.5.48) (2023-11-24)
|
||||||
|
|
||||||
|
|
||||||
|
### Bug Fixes
|
||||||
|
|
||||||
|
* **services:** Update resource requests and remove cpu limits ([f86a74b](https://gitlab.opencode.de/bmi/opendesk/deployment/sovereign-workplace/commit/f86a74ba100c7f08f6538b58a713bbc87c00e814))
|
||||||
|
|
||||||
|
## [0.5.47](https://gitlab.opencode.de/bmi/opendesk/deployment/sovereign-workplace/compare/v0.5.46...v0.5.47) (2023-11-24)
|
||||||
|
|
||||||
|
|
||||||
|
### Bug Fixes
|
||||||
|
|
||||||
|
* **helmfile:** Rename absolute paths on OpenCoDE to new 'opendesk' base group name ([7ac2e0f](https://gitlab.opencode.de/bmi/opendesk/deployment/sovereign-workplace/commit/7ac2e0f9de2a8386a7f5809ba40db4ed7164a857))
|
||||||
|
* **xwiki:** Enable the sync of user profile picture from LDAP ([6aa3d38](https://gitlab.opencode.de/bmi/opendesk/deployment/sovereign-workplace/commit/6aa3d386afe8b3f22e47f9971fd719089006b54e))
|
||||||
|
|
||||||
## [0.5.46](https://gitlab.opencode.de/bmi/souveraener_arbeitsplatz/deployment/sovereign-workplace/compare/v0.5.45...v0.5.46) (2023-11-23)
|
## [0.5.46](https://gitlab.opencode.de/bmi/souveraener_arbeitsplatz/deployment/sovereign-workplace/compare/v0.5.45...v0.5.46) (2023-11-23)
|
||||||
|
|
||||||
|
|
||||||
|
|||||||
@@ -5,7 +5,7 @@ SPDX-License-Identifier: Apache-2.0
|
|||||||
|
|
||||||
# Read me first
|
# Read me first
|
||||||
|
|
||||||
Please read the [project's overall CONTRIBUTING.md](https://gitlab.opencode.de/bmi/souveraener_arbeitsplatz/info/-/blob/main/CONTRIBUTING.md) first.
|
Please read the [project's overall CONTRIBUTING.md](https://gitlab.opencode.de/bmi/opendesk/info/-/blob/main/CONTRIBUTING.md) first.
|
||||||
|
|
||||||
# How to contribute?
|
# How to contribute?
|
||||||
|
|
||||||
|
|||||||
@@ -40,7 +40,7 @@ Basic knowledge of Kubernetes and Devops is required though.
|
|||||||
|
|
||||||
# Active development notice
|
# Active development notice
|
||||||
openDesk will face breaking changes in the near future without upgrade paths before
|
openDesk will face breaking changes in the near future without upgrade paths before
|
||||||
[technical release](https://gitlab.opencode.de/bmi/souveraener_arbeitsplatz/deployment/sovereign-workplace/-/releases
|
[technical release](https://gitlab.opencode.de/bmi/opendesk/deployment/sovereign-workplace/-/releases
|
||||||
v1.0.0 is reached.
|
v1.0.0 is reached.
|
||||||
|
|
||||||
While most components support upgrades, major configuration or component changes may occur, therefore we recommend
|
While most components support upgrades, major configuration or component changes may occur, therefore we recommend
|
||||||
@@ -60,10 +60,10 @@ Of course, further development also includes enhancing the documentation.
|
|||||||
|
|
||||||
We love to get feedback from you!
|
We love to get feedback from you!
|
||||||
Related to the deployment / contents of this repository,
|
Related to the deployment / contents of this repository,
|
||||||
please use the [issues within this project](https://gitlab.opencode.de/bmi/souveraener_arbeitsplatz/deployment/sovereign-workplace/-/issues).
|
please use the [issues within this project](https://gitlab.opencode.de/bmi/opendesk/deployment/sovereign-workplace/-/issues).
|
||||||
|
|
||||||
If you want to address other topics, please check the section
|
If you want to address other topics, please check the section
|
||||||
["Rückmeldungen und Beteiligung" of the Infos' project OVERVIEW.md](https://gitlab.opencode.de/bmi/souveraener_arbeitsplatz/info/-/blob/main/OVERVIEW.md#rückmeldungen-und-beteiligung).
|
["Rückmeldungen und Beteiligung" of the Infos' project OVERVIEW.md](https://gitlab.opencode.de/bmi/opendesk/info/-/blob/main/OVERVIEW.md#rückmeldungen-und-beteiligung).
|
||||||
|
|
||||||
# Requirements
|
# Requirements
|
||||||
|
|
||||||
@@ -86,7 +86,7 @@ If you want to address other topics, please check the section
|
|||||||
All technical releases are created using [Semantic Versioning](https://semver.org/lang/de/).
|
All technical releases are created using [Semantic Versioning](https://semver.org/lang/de/).
|
||||||
|
|
||||||
Gitlab provides an
|
Gitlab provides an
|
||||||
[overview on the releases](https://gitlab.opencode.de/bmi/souveraener_arbeitsplatz/deployment/sovereign-workplace/-/releases)
|
[overview on the releases](https://gitlab.opencode.de/bmi/opendesk/deployment/sovereign-workplace/-/releases)
|
||||||
of this project.
|
of this project.
|
||||||
|
|
||||||
The following release artefacts are provided beside the default source code assets:
|
The following release artefacts are provided beside the default source code assets:
|
||||||
|
|||||||
@@ -37,6 +37,12 @@ service.
|
|||||||
| | | | Port | `databases.keycloakExtension.port` | `5432` |
|
| | | | Port | `databases.keycloakExtension.port` | `5432` |
|
||||||
| | | | Username | `databases.keycloakExtension.username` | `keycloak_extensions_user` |
|
| | | | Username | `databases.keycloakExtension.username` | `keycloak_extensions_user` |
|
||||||
| | | | Password | `databases.keycloakExtension.password` | |
|
| | | | Password | `databases.keycloakExtension.password` | |
|
||||||
|
| UMS | Notifications API | PostgreSQL | | | |
|
||||||
|
| | | | Name | `databases.notificationsApi.name` | `notificationsapi` |
|
||||||
|
| | | | Host | `databases.notificationsApi.host` | `postgresql` |
|
||||||
|
| | | | Port | `databases.notificationsApi.port` | `5432` |
|
||||||
|
| | | | Username | `databases.notificationsApi.username` | `notificationsapi_user` |
|
||||||
|
| | | | Password | `databases.notificationsApi.password` | |
|
||||||
| Nextcloud | Nextcloud | MariaDB | | | |
|
| Nextcloud | Nextcloud | MariaDB | | | |
|
||||||
| | | | Name | `databases.nextcloud.name` | `nextcloud` |
|
| | | | Name | `databases.nextcloud.name` | `nextcloud` |
|
||||||
| | | | Host | `databases.nextcloud.host` | `mariadb` |
|
| | | | Host | `databases.nextcloud.host` | `mariadb` |
|
||||||
|
|||||||
@@ -29,7 +29,7 @@ missingFileHandler: "Error"
|
|||||||
# - Installing all releases from root via helmfile apply
|
# - Installing all releases from root via helmfile apply
|
||||||
# - Installing a single release from root via helmfile apply -f helmfile/apps/<app>/helmfile.yaml
|
# - Installing a single release from root via helmfile apply -f helmfile/apps/<app>/helmfile.yaml
|
||||||
# - Installing a single release from app directory via helmfile apply
|
# - Installing a single release from app directory via helmfile apply
|
||||||
# Issue: https://gitlab.opencode.de/bmi/souveraener_arbeitsplatz/deployment/sovereign-workplace/-/issues/2
|
# Issue: https://gitlab.opencode.de/bmi/opendesk/deployment/sovereign-workplace/-/issues/2
|
||||||
|
|
||||||
environments:
|
environments:
|
||||||
default:
|
default:
|
||||||
|
|||||||
@@ -14,6 +14,11 @@ repositories:
|
|||||||
default "https://collaboraonline.github.io/online" }}
|
default "https://collaboraonline.github.io/online" }}
|
||||||
|
|
||||||
releases:
|
releases:
|
||||||
|
# renovate:
|
||||||
|
# registryUrl=https://collaboraonline.github.io/online
|
||||||
|
# packageName=collabora-online
|
||||||
|
# dataSource=helm
|
||||||
|
# dependencyType=vendor
|
||||||
- name: "collabora-online"
|
- name: "collabora-online"
|
||||||
chart: "collabora-online-repo/collabora-online"
|
chart: "collabora-online-repo/collabora-online"
|
||||||
version: "1.0.2"
|
version: "1.0.2"
|
||||||
|
|||||||
@@ -14,6 +14,11 @@ repositories:
|
|||||||
default "https://cryptpad.github.io/helm" }}
|
default "https://cryptpad.github.io/helm" }}
|
||||||
|
|
||||||
releases:
|
releases:
|
||||||
|
# renovate:
|
||||||
|
# registryUrl=https://cryptpad.github.io/helm
|
||||||
|
# packageName=cryptpad
|
||||||
|
# dataSource=helm
|
||||||
|
# dependencyType=vendor
|
||||||
- name: "cryptpad"
|
- name: "cryptpad"
|
||||||
chart: "cryptpad-online-repo/cryptpad"
|
chart: "cryptpad-online-repo/cryptpad"
|
||||||
version: "0.0.13"
|
version: "0.0.13"
|
||||||
|
|||||||
@@ -3,7 +3,6 @@
|
|||||||
---
|
---
|
||||||
bases:
|
bases:
|
||||||
- "../../bases/environments.yaml"
|
- "../../bases/environments.yaml"
|
||||||
|
|
||||||
---
|
---
|
||||||
repositories:
|
repositories:
|
||||||
# openDesk Element
|
# openDesk Element
|
||||||
@@ -31,6 +30,11 @@ repositories:
|
|||||||
keyring: "../../files/gpg-pubkeys/souvap-univention-de.gpg"
|
keyring: "../../files/gpg-pubkeys/souvap-univention-de.gpg"
|
||||||
|
|
||||||
releases:
|
releases:
|
||||||
|
# renovate:
|
||||||
|
# registryUrl=https://registry.souvap-univention.de
|
||||||
|
# packageName=souvap/tooling/charts/sovereign-workplace-element/opendesk-element
|
||||||
|
# dataSource=docker
|
||||||
|
# dependencyType=vendor
|
||||||
- name: "opendesk-element"
|
- name: "opendesk-element"
|
||||||
chart: "opendesk-element-repo/opendesk-element"
|
chart: "opendesk-element-repo/opendesk-element"
|
||||||
version: "2.5.1"
|
version: "2.5.1"
|
||||||
@@ -40,6 +44,11 @@ releases:
|
|||||||
installed: {{ .Values.element.enabled }}
|
installed: {{ .Values.element.enabled }}
|
||||||
timeout: 900
|
timeout: 900
|
||||||
|
|
||||||
|
# renovate:
|
||||||
|
# registryUrl=https://registry.souvap-univention.de
|
||||||
|
# packageName=souvap/tooling/charts/sovereign-workplace-element/opendesk-well-known
|
||||||
|
# dataSource=docker
|
||||||
|
# dependencyType=vendor
|
||||||
- name: "opendesk-well-known"
|
- name: "opendesk-well-known"
|
||||||
chart: "opendesk-element-repo/opendesk-well-known"
|
chart: "opendesk-element-repo/opendesk-well-known"
|
||||||
version: "2.5.1"
|
version: "2.5.1"
|
||||||
@@ -49,6 +58,11 @@ releases:
|
|||||||
installed: {{ .Values.element.enabled }}
|
installed: {{ .Values.element.enabled }}
|
||||||
timeout: 900
|
timeout: 900
|
||||||
|
|
||||||
|
# renovate:
|
||||||
|
# registryUrl=https://registry.souvap-univention.de
|
||||||
|
# packageName=souvap/tooling/charts/sovereign-workplace-element/opendesk-synapse-web
|
||||||
|
# dataSource=docker
|
||||||
|
# dependencyType=vendor
|
||||||
- name: "opendesk-synapse-web"
|
- name: "opendesk-synapse-web"
|
||||||
chart: "opendesk-element-repo/opendesk-synapse-web"
|
chart: "opendesk-element-repo/opendesk-synapse-web"
|
||||||
version: "2.5.1"
|
version: "2.5.1"
|
||||||
@@ -58,6 +72,11 @@ releases:
|
|||||||
installed: {{ .Values.element.enabled }}
|
installed: {{ .Values.element.enabled }}
|
||||||
timeout: 900
|
timeout: 900
|
||||||
|
|
||||||
|
# renovate:
|
||||||
|
# registryUrl=https://registry.souvap-univention.de
|
||||||
|
# packageName=souvap/tooling/charts/sovereign-workplace-element/opendesk-synapse
|
||||||
|
# dataSource=docker
|
||||||
|
# dependencyType=vendor
|
||||||
- name: "opendesk-synapse"
|
- name: "opendesk-synapse"
|
||||||
chart: "opendesk-element-repo/opendesk-synapse"
|
chart: "opendesk-element-repo/opendesk-synapse"
|
||||||
version: "2.5.1"
|
version: "2.5.1"
|
||||||
@@ -67,6 +86,11 @@ releases:
|
|||||||
installed: {{ .Values.element.enabled }}
|
installed: {{ .Values.element.enabled }}
|
||||||
timeout: 900
|
timeout: 900
|
||||||
|
|
||||||
|
# renovate:
|
||||||
|
# registryUrl=https://registry.souvap-univention.de
|
||||||
|
# packageName=souvap/tooling/charts/sovereign-workplace-element/opendesk-synapse-create-account
|
||||||
|
# dataSource=docker
|
||||||
|
# dependencyType=vendor
|
||||||
- name: "opendesk-matrix-user-verification-service-bootstrap"
|
- name: "opendesk-matrix-user-verification-service-bootstrap"
|
||||||
chart: "opendesk-element-repo/opendesk-synapse-create-account"
|
chart: "opendesk-element-repo/opendesk-synapse-create-account"
|
||||||
version: "2.5.1"
|
version: "2.5.1"
|
||||||
@@ -76,6 +100,11 @@ releases:
|
|||||||
installed: {{ .Values.element.enabled }}
|
installed: {{ .Values.element.enabled }}
|
||||||
timeout: 900
|
timeout: 900
|
||||||
|
|
||||||
|
# renovate:
|
||||||
|
# registryUrl=https://registry.souvap-univention.de
|
||||||
|
# packageName=souvap/tooling/charts/sovereign-workplace-element/opendesk-matrix-user-verification-service
|
||||||
|
# dataSource=docker
|
||||||
|
# dependencyType=vendor
|
||||||
- name: "opendesk-matrix-user-verification-service"
|
- name: "opendesk-matrix-user-verification-service"
|
||||||
chart: "opendesk-element-repo/opendesk-matrix-user-verification-service"
|
chart: "opendesk-element-repo/opendesk-matrix-user-verification-service"
|
||||||
version: "2.5.1"
|
version: "2.5.1"
|
||||||
@@ -85,6 +114,11 @@ releases:
|
|||||||
installed: {{ .Values.element.enabled }}
|
installed: {{ .Values.element.enabled }}
|
||||||
timeout: 900
|
timeout: 900
|
||||||
|
|
||||||
|
# renovate:
|
||||||
|
# registryUrl=https://registry.souvap-univention.de
|
||||||
|
# packageName=souvap/tooling/charts/opendesk-matrix-widgets/matrix-neoboard-widget
|
||||||
|
# dataSource=docker
|
||||||
|
# dependencyType=vendor
|
||||||
- name: "matrix-neoboard-widget"
|
- name: "matrix-neoboard-widget"
|
||||||
chart: "opendesk-matrix-widgets-repo/matrix-neoboard-widget"
|
chart: "opendesk-matrix-widgets-repo/matrix-neoboard-widget"
|
||||||
version: "3.2.0"
|
version: "3.2.0"
|
||||||
@@ -94,6 +128,11 @@ releases:
|
|||||||
installed: {{ .Values.element.enabled }}
|
installed: {{ .Values.element.enabled }}
|
||||||
timeout: 900
|
timeout: 900
|
||||||
|
|
||||||
|
# renovate:
|
||||||
|
# registryUrl=https://registry.souvap-univention.de
|
||||||
|
# packageName=souvap/tooling/charts/opendesk-matrix-widgets/matrix-neochoice-widget
|
||||||
|
# dataSource=docker
|
||||||
|
# dependencyType=vendor
|
||||||
- name: "matrix-neochoice-widget"
|
- name: "matrix-neochoice-widget"
|
||||||
chart: "opendesk-matrix-widgets-repo/matrix-neochoice-widget"
|
chart: "opendesk-matrix-widgets-repo/matrix-neochoice-widget"
|
||||||
version: "3.2.0"
|
version: "3.2.0"
|
||||||
@@ -103,6 +142,11 @@ releases:
|
|||||||
installed: {{ .Values.element.enabled }}
|
installed: {{ .Values.element.enabled }}
|
||||||
timeout: 900
|
timeout: 900
|
||||||
|
|
||||||
|
# renovate:
|
||||||
|
# registryUrl=https://registry.souvap-univention.de
|
||||||
|
# packageName=souvap/tooling/charts/opendesk-matrix-widgets/matrix-neodatefix-widget
|
||||||
|
# dataSource=docker
|
||||||
|
# dependencyType=vendor
|
||||||
- name: "matrix-neodatefix-widget"
|
- name: "matrix-neodatefix-widget"
|
||||||
chart: "opendesk-matrix-widgets-repo/matrix-neodatefix-widget"
|
chart: "opendesk-matrix-widgets-repo/matrix-neodatefix-widget"
|
||||||
version: "3.2.0"
|
version: "3.2.0"
|
||||||
@@ -112,6 +156,11 @@ releases:
|
|||||||
installed: {{ .Values.element.enabled }}
|
installed: {{ .Values.element.enabled }}
|
||||||
timeout: 900
|
timeout: 900
|
||||||
|
|
||||||
|
# renovate:
|
||||||
|
# registryUrl=https://registry.souvap-univention.de
|
||||||
|
# packageName=souvap/tooling/charts/sovereign-workplace-element/opendesk-synapse-create-account
|
||||||
|
# dataSource=docker
|
||||||
|
# dependencyType=vendor
|
||||||
- name: "matrix-neodatefix-bot-bootstrap"
|
- name: "matrix-neodatefix-bot-bootstrap"
|
||||||
chart: "opendesk-element-repo/opendesk-synapse-create-account"
|
chart: "opendesk-element-repo/opendesk-synapse-create-account"
|
||||||
version: "2.5.1"
|
version: "2.5.1"
|
||||||
@@ -121,6 +170,11 @@ releases:
|
|||||||
installed: {{ .Values.element.enabled }}
|
installed: {{ .Values.element.enabled }}
|
||||||
timeout: 900
|
timeout: 900
|
||||||
|
|
||||||
|
# renovate:
|
||||||
|
# registryUrl=https://registry.souvap-univention.de
|
||||||
|
# packageName=souvap/tooling/charts/opendesk-matrix-widgets/matrix-neodatefix-bot
|
||||||
|
# dataSource=docker
|
||||||
|
# dependencyType=vendor
|
||||||
- name: "matrix-neodatefix-bot"
|
- name: "matrix-neodatefix-bot"
|
||||||
chart: "opendesk-matrix-widgets-repo/matrix-neodatefix-bot"
|
chart: "opendesk-matrix-widgets-repo/matrix-neodatefix-bot"
|
||||||
version: "3.2.0"
|
version: "3.2.0"
|
||||||
|
|||||||
@@ -17,6 +17,11 @@ repositories:
|
|||||||
keyring: "../../files/gpg-pubkeys/souvap-univention-de.gpg"
|
keyring: "../../files/gpg-pubkeys/souvap-univention-de.gpg"
|
||||||
|
|
||||||
releases:
|
releases:
|
||||||
|
# renovate:
|
||||||
|
# registryUrl=https://registry.souvap-univention.de
|
||||||
|
# packageName=souvap/tooling/charts/intercom-service/intercom-service
|
||||||
|
# dataSource=docker
|
||||||
|
# dependencyType=vendor
|
||||||
- name: "intercom-service"
|
- name: "intercom-service"
|
||||||
chart: "intercom-service-repo/intercom-service"
|
chart: "intercom-service-repo/intercom-service"
|
||||||
version: "2.0.1"
|
version: "2.0.1"
|
||||||
|
|||||||
@@ -46,4 +46,7 @@ ingress:
|
|||||||
tls:
|
tls:
|
||||||
enabled: {{ .Values.ingress.tls.enabled }}
|
enabled: {{ .Values.ingress.tls.enabled }}
|
||||||
secretName: {{ .Values.ingress.tls.secretName | quote }}
|
secretName: {{ .Values.ingress.tls.secretName | quote }}
|
||||||
|
|
||||||
|
resources:
|
||||||
|
{{ .Values.resources.intercomService | toYaml | nindent 2 }}
|
||||||
...
|
...
|
||||||
|
|||||||
@@ -17,6 +17,11 @@ repositories:
|
|||||||
keyring: "../../files/gpg-pubkeys/souvap-univention-de.gpg"
|
keyring: "../../files/gpg-pubkeys/souvap-univention-de.gpg"
|
||||||
|
|
||||||
releases:
|
releases:
|
||||||
|
# renovate:
|
||||||
|
# registryUrl=https://registry.souvap-univention.de
|
||||||
|
# packageName=souvap/tooling/charts/sovereign-workplace-jitsi/sovereign-workplace-jitsi
|
||||||
|
# dataSource=docker
|
||||||
|
# dependencyType=vendor
|
||||||
- name: "jitsi"
|
- name: "jitsi"
|
||||||
chart: "jitsi-repo/sovereign-workplace-jitsi"
|
chart: "jitsi-repo/sovereign-workplace-jitsi"
|
||||||
version: "1.7.1"
|
version: "1.7.1"
|
||||||
|
|||||||
@@ -19,6 +19,11 @@ repositories:
|
|||||||
keyring: "../../files/gpg-pubkeys/souvap-univention-de.gpg"
|
keyring: "../../files/gpg-pubkeys/souvap-univention-de.gpg"
|
||||||
|
|
||||||
releases:
|
releases:
|
||||||
|
# renovate:
|
||||||
|
# registryUrl=https://registry.souvap-univention.de
|
||||||
|
# packageName=souvap/tooling/charts/opendesk-keycloak-bootstrap/opendesk-keycloak-bootstrap
|
||||||
|
# dataSource=docker
|
||||||
|
# dependencyType=vendor
|
||||||
- name: "opendesk-keycloak-bootstrap"
|
- name: "opendesk-keycloak-bootstrap"
|
||||||
chart: "opendesk-keycloak-bootstrap-repo/sovereign-workplace-keycloak-bootstrap"
|
chart: "opendesk-keycloak-bootstrap-repo/sovereign-workplace-keycloak-bootstrap"
|
||||||
version: "1.1.12"
|
version: "1.1.12"
|
||||||
|
|||||||
@@ -16,7 +16,7 @@ repositories:
|
|||||||
verify: true
|
verify: true
|
||||||
keyring: "../../files/gpg-pubkeys/souvap-univention-de.gpg"
|
keyring: "../../files/gpg-pubkeys/souvap-univention-de.gpg"
|
||||||
# openDesk Keycloak Theme
|
# openDesk Keycloak Theme
|
||||||
# Source: https://gitlab.opencode.de/bmi/souveraener_arbeitsplatz/components/charts/opendesk-keycloak-theme
|
# Source: https://gitlab.opencode.de/bmi/opendesk/components/charts/opendesk-keycloak-theme
|
||||||
- name: "keycloak-theme-repo"
|
- name: "keycloak-theme-repo"
|
||||||
oci: true
|
oci: true
|
||||||
url: >-
|
url: >-
|
||||||
@@ -31,12 +31,23 @@ repositories:
|
|||||||
default "https://gitlab.souvap-univention.de/api/v4/projects/77/packages/helm/stable" }}
|
default "https://gitlab.souvap-univention.de/api/v4/projects/77/packages/helm/stable" }}
|
||||||
|
|
||||||
releases:
|
releases:
|
||||||
|
# renovate:
|
||||||
|
# registryUrl=https://registry.souvap-univention.de
|
||||||
|
# packageName=souvap/tooling/charts/keycloak-theme/opendesk-keycloak-theme
|
||||||
|
# dataSource=docker
|
||||||
|
# dependencyType=vendor
|
||||||
- name: "keycloak-theme"
|
- name: "keycloak-theme"
|
||||||
chart: "keycloak-theme-repo/opendesk-keycloak-theme"
|
chart: "keycloak-theme-repo/opendesk-keycloak-theme"
|
||||||
version: "2.0.0"
|
version: "2.0.0"
|
||||||
values:
|
values:
|
||||||
- "values-theme.gotmpl"
|
- "values-theme.gotmpl"
|
||||||
installed: {{ .Values.keycloak.enabled }}
|
installed: {{ .Values.keycloak.enabled }}
|
||||||
|
|
||||||
|
# renovate:
|
||||||
|
# registryUrl=https://registry.souvap-univention.de
|
||||||
|
# packageName=souvap/tooling/charts/bitnami-charts/keycloak
|
||||||
|
# dataSource=docker
|
||||||
|
# dependencyType=vendor
|
||||||
- name: "keycloak"
|
- name: "keycloak"
|
||||||
chart: "bitnami-repo/keycloak"
|
chart: "bitnami-repo/keycloak"
|
||||||
version: "12.1.5"
|
version: "12.1.5"
|
||||||
@@ -46,6 +57,12 @@ releases:
|
|||||||
- "values-keycloak-idp.yaml"
|
- "values-keycloak-idp.yaml"
|
||||||
wait: true
|
wait: true
|
||||||
installed: {{ .Values.keycloak.enabled }}
|
installed: {{ .Values.keycloak.enabled }}
|
||||||
|
|
||||||
|
# renovate:
|
||||||
|
# registryUrl=https://gitlab.souvap-univention.de/api/v4/projects/77/packages/helm/stable
|
||||||
|
# packageName=keycloak-extensions
|
||||||
|
# dataSource=helm
|
||||||
|
# dependencyType=vendor
|
||||||
- name: "keycloak-extensions"
|
- name: "keycloak-extensions"
|
||||||
chart: "keycloak-extensions-repo/keycloak-extensions"
|
chart: "keycloak-extensions-repo/keycloak-extensions"
|
||||||
version: "0.1.0"
|
version: "0.1.0"
|
||||||
|
|||||||
@@ -23,6 +23,7 @@ handler:
|
|||||||
appConfig:
|
appConfig:
|
||||||
smtpPassword: {{ .Values.smtp.password | quote }}
|
smtpPassword: {{ .Values.smtp.password | quote }}
|
||||||
smtpHost: {{ .Values.smtp.host | quote }}
|
smtpHost: {{ .Values.smtp.host | quote }}
|
||||||
|
smtpPort: {{ .Values.smtp.port | quote }}
|
||||||
smtpUsername: {{ .Values.smtp.username | quote }}
|
smtpUsername: {{ .Values.smtp.username | quote }}
|
||||||
mailFrom: "noreply@{{ .Values.global.domain }}"
|
mailFrom: "noreply@{{ .Values.global.domain }}"
|
||||||
resources:
|
resources:
|
||||||
|
|||||||
@@ -8,7 +8,7 @@ bases:
|
|||||||
repositories:
|
repositories:
|
||||||
# openDesk Keycloak Bootstrap
|
# openDesk Keycloak Bootstrap
|
||||||
# Source:
|
# Source:
|
||||||
# https://gitlab.opencode.de/bmi/souveraener_arbeitsplatz/components/charts/sovereign-workplace-nextcloud-bootstrap
|
# https://gitlab.opencode.de/bmi/opendesk/components/charts/sovereign-workplace-nextcloud-bootstrap
|
||||||
- name: "opendesk-nextcloud-bootstrap-repo"
|
- name: "opendesk-nextcloud-bootstrap-repo"
|
||||||
oci: true
|
oci: true
|
||||||
# yamllint disable rule:line-length
|
# yamllint disable rule:line-length
|
||||||
@@ -26,9 +26,14 @@ repositories:
|
|||||||
default "https://nextcloud.github.io/helm/" }}
|
default "https://nextcloud.github.io/helm/" }}
|
||||||
|
|
||||||
releases:
|
releases:
|
||||||
|
# renovate:
|
||||||
|
# registryUrl=https://registry.souvap-univention.de
|
||||||
|
# packageName=souvap/tooling/charts/sovereign-workplace-nextcloud-bootstrap/opendesk-nextcloud-bootstrap
|
||||||
|
# dataSource=docker
|
||||||
|
# dependencyType=vendor
|
||||||
- name: "opendesk-nextcloud-bootstrap"
|
- name: "opendesk-nextcloud-bootstrap"
|
||||||
chart: "opendesk-nextcloud-bootstrap-repo/opendesk-nextcloud-bootstrap"
|
chart: "opendesk-nextcloud-bootstrap-repo/opendesk-nextcloud-bootstrap"
|
||||||
version: "3.2.3"
|
version: "3.2.4"
|
||||||
wait: true
|
wait: true
|
||||||
waitForJobs: true
|
waitForJobs: true
|
||||||
values:
|
values:
|
||||||
@@ -37,6 +42,11 @@ releases:
|
|||||||
installed: {{ .Values.nextcloud.enabled }}
|
installed: {{ .Values.nextcloud.enabled }}
|
||||||
timeout: 900
|
timeout: 900
|
||||||
|
|
||||||
|
# renovate:
|
||||||
|
# registryUrl=https://nextcloud.github.io/helm
|
||||||
|
# packageName=nextcloud
|
||||||
|
# dataSource=helm
|
||||||
|
# dependencyType=vendor
|
||||||
- name: "nextcloud"
|
- name: "nextcloud"
|
||||||
chart: "nextcloud-repo/nextcloud"
|
chart: "nextcloud-repo/nextcloud"
|
||||||
version: "3.5.19"
|
version: "3.5.19"
|
||||||
|
|||||||
@@ -44,6 +44,7 @@ config:
|
|||||||
|
|
||||||
smtp:
|
smtp:
|
||||||
host: {{ .Values.smtp.host | quote }}
|
host: {{ .Values.smtp.host | quote }}
|
||||||
|
port: {{ .Values.smtp.port | quote }}
|
||||||
username: {{ .Values.smtp.username | quote }}
|
username: {{ .Values.smtp.username | quote }}
|
||||||
password: {{ .Values.smtp.password | quote }}
|
password: {{ .Values.smtp.password | quote }}
|
||||||
|
|
||||||
|
|||||||
@@ -10,6 +10,8 @@ config:
|
|||||||
username: "phoenixusername"
|
username: "phoenixusername"
|
||||||
userOidc:
|
userOidc:
|
||||||
username: "ncoidc"
|
username: "ncoidc"
|
||||||
|
userIdAttribute: "entryuuid"
|
||||||
|
realm: "souvap"
|
||||||
|
|
||||||
cryptpad:
|
cryptpad:
|
||||||
enabled: true
|
enabled: true
|
||||||
|
|||||||
@@ -49,6 +49,8 @@ metrics:
|
|||||||
enabled: {{ .Values.prometheus.serviceMonitors.enabled }}
|
enabled: {{ .Values.prometheus.serviceMonitors.enabled }}
|
||||||
labels:
|
labels:
|
||||||
{{- toYaml .Values.prometheus.serviceMonitors.labels | nindent 6 }}
|
{{- toYaml .Values.prometheus.serviceMonitors.labels | nindent 6 }}
|
||||||
|
resources:
|
||||||
|
{{ .Values.resources.nextcloudMetrics | toYaml | nindent 4 }}
|
||||||
|
|
||||||
{{- if .Values.cluster.persistence.readWriteMany.enabled }}
|
{{- if .Values.cluster.persistence.readWriteMany.enabled }}
|
||||||
replicaCount: {{ .Values.replicas.nextcloud }}
|
replicaCount: {{ .Values.replicas.nextcloud }}
|
||||||
|
|||||||
@@ -7,7 +7,7 @@ bases:
|
|||||||
---
|
---
|
||||||
repositories:
|
repositories:
|
||||||
# openDesk Dovecot
|
# openDesk Dovecot
|
||||||
# Source: https://gitlab.opencode.de/bmi/souveraener_arbeitsplatz/components/charts/opendesk-dovecot
|
# Source: https://gitlab.opencode.de/bmi/opendesk/components/charts/opendesk-dovecot
|
||||||
- name: "opendesk-dovecot-repo"
|
- name: "opendesk-dovecot-repo"
|
||||||
oci: true
|
oci: true
|
||||||
url: >-
|
url: >-
|
||||||
@@ -21,7 +21,7 @@ repositories:
|
|||||||
url: >-
|
url: >-
|
||||||
{{ env "PRIVATE_IMAGE_REGISTRY_URL" | default "registry.open-xchange.com" }}
|
{{ env "PRIVATE_IMAGE_REGISTRY_URL" | default "registry.open-xchange.com" }}
|
||||||
# openDesk Open-Xchange Bootstrap
|
# openDesk Open-Xchange Bootstrap
|
||||||
# Source: https://gitlab.opencode.de/bmi/souveraener_arbeitsplatz/components/charts/opendesk-open-xchange-bootstrap
|
# Source: https://gitlab.opencode.de/bmi/opendesk/components/charts/opendesk-open-xchange-bootstrap
|
||||||
- name: "opendesk-open-xchange-bootstrap-repo"
|
- name: "opendesk-open-xchange-bootstrap-repo"
|
||||||
oci: true
|
oci: true
|
||||||
# yamllint disable rule:line-length
|
# yamllint disable rule:line-length
|
||||||
@@ -33,6 +33,11 @@ repositories:
|
|||||||
keyring: "../../files/gpg-pubkeys/souvap-univention-de.gpg"
|
keyring: "../../files/gpg-pubkeys/souvap-univention-de.gpg"
|
||||||
|
|
||||||
releases:
|
releases:
|
||||||
|
# renovate:
|
||||||
|
# registryUrl=https://registry.souvap-univention.de
|
||||||
|
# packageName=souvap/tooling/charts/dovecot/dovecot
|
||||||
|
# dataSource=docker
|
||||||
|
# dependencyType=vendor
|
||||||
- name: "dovecot"
|
- name: "dovecot"
|
||||||
chart: "opendesk-dovecot-repo/dovecot"
|
chart: "opendesk-dovecot-repo/dovecot"
|
||||||
version: "1.3.6"
|
version: "1.3.6"
|
||||||
@@ -42,6 +47,11 @@ releases:
|
|||||||
installed: {{ .Values.dovecot.enabled }}
|
installed: {{ .Values.dovecot.enabled }}
|
||||||
timeout: 900
|
timeout: 900
|
||||||
|
|
||||||
|
# renovate:
|
||||||
|
# registryUrl=https://registry.open-xchange.com
|
||||||
|
# packageName=appsuite-public-sector/charts/appsuite-public-sector
|
||||||
|
# dataSource=docker
|
||||||
|
# dependencyType=vendor
|
||||||
- name: "open-xchange"
|
- name: "open-xchange"
|
||||||
chart: "openxchange-repo/appsuite-public-sector/charts/appsuite-public-sector"
|
chart: "openxchange-repo/appsuite-public-sector/charts/appsuite-public-sector"
|
||||||
version: "2.1.1"
|
version: "2.1.1"
|
||||||
@@ -53,6 +63,11 @@ releases:
|
|||||||
installed: {{ .Values.oxAppsuite.enabled }}
|
installed: {{ .Values.oxAppsuite.enabled }}
|
||||||
timeout: 900
|
timeout: 900
|
||||||
|
|
||||||
|
# renovate:
|
||||||
|
# registryUrl=https://registry.souvap-univention.de
|
||||||
|
# packageName=souvap/tooling/charts/sovereign-workplace-open-xchange-bootstrap/sovereign-workplace-open-xchange-bootstrap
|
||||||
|
# dataSource=docker
|
||||||
|
# dependencyType=vendor
|
||||||
- name: "opendesk-open-xchange-bootstrap"
|
- name: "opendesk-open-xchange-bootstrap"
|
||||||
chart: "opendesk-open-xchange-bootstrap-repo/sovereign-workplace-open-xchange-bootstrap"
|
chart: "opendesk-open-xchange-bootstrap-repo/sovereign-workplace-open-xchange-bootstrap"
|
||||||
version: "1.3.1"
|
version: "1.3.1"
|
||||||
|
|||||||
@@ -25,6 +25,8 @@ nextcloud-integration-ui:
|
|||||||
{{- range .Values.global.imagePullSecrets }}
|
{{- range .Values.global.imagePullSecrets }}
|
||||||
- name: {{ . | quote }}
|
- name: {{ . | quote }}
|
||||||
{{- end }}
|
{{- end }}
|
||||||
|
resources:
|
||||||
|
{{ .Values.resources.openxchangeNextcloudIntegrationUI | toYaml | nindent 4 }}
|
||||||
|
|
||||||
public-sector-ui:
|
public-sector-ui:
|
||||||
image:
|
image:
|
||||||
@@ -35,6 +37,8 @@ public-sector-ui:
|
|||||||
- name: {{ . | quote }}
|
- name: {{ . | quote }}
|
||||||
{{- end }}
|
{{- end }}
|
||||||
pullPolicy: {{ .Values.global.imagePullPolicy | quote }}
|
pullPolicy: {{ .Values.global.imagePullPolicy | quote }}
|
||||||
|
resources:
|
||||||
|
{{ .Values.resources.openxchangePublicSectorUI | toYaml | nindent 4 }}
|
||||||
|
|
||||||
appsuite:
|
appsuite:
|
||||||
istio:
|
istio:
|
||||||
@@ -62,6 +66,8 @@ appsuite:
|
|||||||
repository: "{{ .Values.global.imageRegistry }}/{{ .Values.images.openxchangeGotenberg.repository }}"
|
repository: "{{ .Values.global.imageRegistry }}/{{ .Values.images.openxchangeGotenberg.repository }}"
|
||||||
tag: {{ .Values.images.openxchangeGotenberg.tag | quote }}
|
tag: {{ .Values.images.openxchangeGotenberg.tag | quote }}
|
||||||
pullPolicy: {{ .Values.global.imagePullPolicy | quote }}
|
pullPolicy: {{ .Values.global.imagePullPolicy | quote }}
|
||||||
|
resources:
|
||||||
|
{{ .Values.resources.openxchangeGotenberg | toYaml | nindent 8 }}
|
||||||
properties:
|
properties:
|
||||||
"com.openexchange.oauth.provider.jwt.jwksUri": "https://{{ .Values.global.hosts.keycloak }}.{{ .Values.global.domain }}/realms/souvap/protocol/openid-connect/certs"
|
"com.openexchange.oauth.provider.jwt.jwksUri": "https://{{ .Values.global.hosts.keycloak }}.{{ .Values.global.domain }}/realms/souvap/protocol/openid-connect/certs"
|
||||||
"com.openexchange.oauth.provider.allowedIssuer": "https://{{ .Values.global.hosts.keycloak }}.{{ .Values.global.domain }}/realms/souvap"
|
"com.openexchange.oauth.provider.allowedIssuer": "https://{{ .Values.global.hosts.keycloak }}.{{ .Values.global.domain }}/realms/souvap"
|
||||||
@@ -119,6 +125,8 @@ appsuite:
|
|||||||
{{- range .Values.global.imagePullSecrets }}
|
{{- range .Values.global.imagePullSecrets }}
|
||||||
- name: {{ . | quote }}
|
- name: {{ . | quote }}
|
||||||
{{- end }}
|
{{- end }}
|
||||||
|
resources:
|
||||||
|
{{ .Values.resources.openxchangeCoreMW | toYaml | nindent 6 }}
|
||||||
|
|
||||||
core-ui:
|
core-ui:
|
||||||
imagePullSecrets:
|
imagePullSecrets:
|
||||||
@@ -129,6 +137,8 @@ appsuite:
|
|||||||
repository: {{ .Values.images.openxchangeCoreUI.repository | quote }}
|
repository: {{ .Values.images.openxchangeCoreUI.repository | quote }}
|
||||||
tag: {{ .Values.images.openxchangeCoreUI.tag | quote }}
|
tag: {{ .Values.images.openxchangeCoreUI.tag | quote }}
|
||||||
pullPolicy: {{ .Values.global.imagePullPolicy | quote }}
|
pullPolicy: {{ .Values.global.imagePullPolicy | quote }}
|
||||||
|
resources:
|
||||||
|
{{ .Values.resources.openxchangeCoreUI | toYaml | nindent 6 }}
|
||||||
|
|
||||||
core-ui-middleware:
|
core-ui-middleware:
|
||||||
ingress:
|
ingress:
|
||||||
@@ -146,13 +156,18 @@ appsuite:
|
|||||||
redis:
|
redis:
|
||||||
auth:
|
auth:
|
||||||
password: {{ .Values.secrets.redis.password | quote }}
|
password: {{ .Values.secrets.redis.password | quote }}
|
||||||
|
resources:
|
||||||
|
{{ .Values.resources.openxchangeCoreUIMiddleware | toYaml | nindent 6 }}
|
||||||
|
updater:
|
||||||
|
resources:
|
||||||
|
{{ .Values.resources.openxchangeCoreUIMiddlewareUpdater | toYaml | nindent 6 }}
|
||||||
|
|
||||||
core-documentconverter:
|
core-documentconverter:
|
||||||
image:
|
image:
|
||||||
repository: {{ .Values.images.openxchangeDocumentConverter.repository | quote }}
|
repository: {{ .Values.images.openxchangeDocumentConverter.repository | quote }}
|
||||||
tag: {{ .Values.images.openxchangeDocumentConverter.tag | quote }}
|
tag: {{ .Values.images.openxchangeDocumentConverter.tag | quote }}
|
||||||
resources:
|
resources:
|
||||||
{{- .Values.resources.oxDocumentConverter | toYaml | nindent 6 }}
|
{{- .Values.resources.openxchangeCoreDocumentConverter | toYaml | nindent 6 }}
|
||||||
|
|
||||||
core-guidedtours:
|
core-guidedtours:
|
||||||
imagePullSecrets:
|
imagePullSecrets:
|
||||||
@@ -163,11 +178,15 @@ appsuite:
|
|||||||
repository: {{ .Values.images.openxchangeCoreGuidedtours.repository | quote }}
|
repository: {{ .Values.images.openxchangeCoreGuidedtours.repository | quote }}
|
||||||
tag: {{ .Values.images.openxchangeCoreGuidedtours.tag | quote }}
|
tag: {{ .Values.images.openxchangeCoreGuidedtours.tag | quote }}
|
||||||
pullPolicy: {{ .Values.global.imagePullPolicy | quote }}
|
pullPolicy: {{ .Values.global.imagePullPolicy | quote }}
|
||||||
|
resources:
|
||||||
|
{{- .Values.resources.openxchangeCoreGuidedtours | toYaml | nindent 6 }}
|
||||||
|
|
||||||
core-imageconverter:
|
core-imageconverter:
|
||||||
image:
|
image:
|
||||||
repository: {{ .Values.images.openxchangeImageConverter.repository | quote }}
|
repository: {{ .Values.images.openxchangeImageConverter.repository | quote }}
|
||||||
tag: {{ .Values.images.openxchangeImageConverter.tag | quote }}
|
tag: {{ .Values.images.openxchangeImageConverter.tag | quote }}
|
||||||
|
resources:
|
||||||
|
{{- .Values.resources.openxchangeCoreImageConverter | toYaml | nindent 6 }}
|
||||||
|
|
||||||
guard-ui:
|
guard-ui:
|
||||||
imagePullSecrets:
|
imagePullSecrets:
|
||||||
@@ -178,6 +197,8 @@ appsuite:
|
|||||||
repository: "{{ .Values.global.imageRegistry }}/{{ .Values.images.openxchangeGuardUI.repository }}"
|
repository: "{{ .Values.global.imageRegistry }}/{{ .Values.images.openxchangeGuardUI.repository }}"
|
||||||
tag: {{ .Values.images.openxchangeGuardUI.tag | quote }}
|
tag: {{ .Values.images.openxchangeGuardUI.tag | quote }}
|
||||||
pullPolicy: {{ .Values.global.imagePullPolicy | quote }}
|
pullPolicy: {{ .Values.global.imagePullPolicy | quote }}
|
||||||
|
resources:
|
||||||
|
{{- .Values.resources.openxchangeGuardUI | toYaml | nindent 6 }}
|
||||||
|
|
||||||
core-user-guide:
|
core-user-guide:
|
||||||
image:
|
image:
|
||||||
@@ -188,4 +209,6 @@ appsuite:
|
|||||||
{{- range .Values.global.imagePullSecrets }}
|
{{- range .Values.global.imagePullSecrets }}
|
||||||
- name: {{ . | quote }}
|
- name: {{ . | quote }}
|
||||||
{{- end }}
|
{{- end }}
|
||||||
|
resources:
|
||||||
|
{{- .Values.resources.openxchangeCoreUserGuide | toYaml | nindent 6 }}
|
||||||
...
|
...
|
||||||
|
|||||||
@@ -19,6 +19,11 @@ repositories:
|
|||||||
keyring: "../../files/gpg-pubkeys/souvap-univention-de.gpg"
|
keyring: "../../files/gpg-pubkeys/souvap-univention-de.gpg"
|
||||||
|
|
||||||
releases:
|
releases:
|
||||||
|
# renovate:
|
||||||
|
# registryUrl=https://registry.souvap-univention.de
|
||||||
|
# packageName=souvap/tooling/charts/opendesk-openproject-bootstrap/opendesk-openproject-bootstrap
|
||||||
|
# dataSource=docker
|
||||||
|
# dependencyType=vendor
|
||||||
- name: "opendesk-openproject-bootstrap"
|
- name: "opendesk-openproject-bootstrap"
|
||||||
chart: "opendesk-openproject-bootstrap-repo/opendesk-openproject-bootstrap"
|
chart: "opendesk-openproject-bootstrap-repo/opendesk-openproject-bootstrap"
|
||||||
version: "1.2.1"
|
version: "1.2.1"
|
||||||
|
|||||||
@@ -14,6 +14,11 @@ repositories:
|
|||||||
default "https://charts.openproject.org" }}
|
default "https://charts.openproject.org" }}
|
||||||
|
|
||||||
releases:
|
releases:
|
||||||
|
# renovate:
|
||||||
|
# registryUrl=https://charts.openproject.org
|
||||||
|
# packageName=openproject
|
||||||
|
# dataSource=helm
|
||||||
|
# dependencyType=vendor
|
||||||
- name: "openproject"
|
- name: "openproject"
|
||||||
chart: "openproject-repo/openproject"
|
chart: "openproject-repo/openproject"
|
||||||
version: "2.4.0"
|
version: "2.4.0"
|
||||||
|
|||||||
@@ -79,4 +79,7 @@ environment:
|
|||||||
OPENPROJECT_FOG_CREDENTIALS_PROVIDER: "AWS"
|
OPENPROJECT_FOG_CREDENTIALS_PROVIDER: "AWS"
|
||||||
OPENPROJECT_FOG_CREDENTIALS_PATH__STYLE: "true"
|
OPENPROJECT_FOG_CREDENTIALS_PATH__STYLE: "true"
|
||||||
OPENPROJECT_FOG_CREDENTIALS_AWS__ACCESS__KEY__ID: "openproject_user"
|
OPENPROJECT_FOG_CREDENTIALS_AWS__ACCESS__KEY__ID: "openproject_user"
|
||||||
|
# Define an admin mapping from the claim
|
||||||
|
# The attribute mapping cannot currently be defined in the value
|
||||||
|
OPENPROJECT_OPENID__CONNECT_KEYCLOAK_ATTRIBUTE__MAP_ADMIN: "openproject_admin"
|
||||||
...
|
...
|
||||||
|
|||||||
@@ -13,6 +13,11 @@ repositories:
|
|||||||
default "https://gitlab.souvap-univention.de/api/v4/projects/128/packages/helm/stable" }}
|
default "https://gitlab.souvap-univention.de/api/v4/projects/128/packages/helm/stable" }}
|
||||||
|
|
||||||
releases:
|
releases:
|
||||||
|
# renovate:
|
||||||
|
# registryUrl=https://gitlab.souvap-univention.de/api/v4/projects/128/packages/helm/stable
|
||||||
|
# packageName=ox-connector
|
||||||
|
# dataSource=helm
|
||||||
|
# dependencyType=vendor
|
||||||
- name: "ox-connector"
|
- name: "ox-connector"
|
||||||
chart: "ox-connector-repo/ox-connector"
|
chart: "ox-connector-repo/ox-connector"
|
||||||
version: "0.1.0-pre-jconde-listener-entrypoint-chaining"
|
version: "0.1.0-pre-jconde-listener-entrypoint-chaining"
|
||||||
|
|||||||
@@ -73,12 +73,23 @@ repositories:
|
|||||||
keyring: "../../files/gpg-pubkeys/souvap-univention-de.gpg"
|
keyring: "../../files/gpg-pubkeys/souvap-univention-de.gpg"
|
||||||
|
|
||||||
releases:
|
releases:
|
||||||
|
# renovate:
|
||||||
|
# registryUrl=https://registry.souvap-univention.de
|
||||||
|
# packageName=souvap/tooling/charts/sovereign-workplace-certificates/opendesk-certificates
|
||||||
|
# dataSource=docker
|
||||||
|
# dependencyType=service
|
||||||
- name: "opendesk-certificates"
|
- name: "opendesk-certificates"
|
||||||
chart: "opendesk-certificates-repo/opendesk-certificates"
|
chart: "opendesk-certificates-repo/opendesk-certificates"
|
||||||
version: "2.1.0"
|
version: "2.1.0"
|
||||||
values:
|
values:
|
||||||
- "values-certificates.gotmpl"
|
- "values-certificates.gotmpl"
|
||||||
installed: {{ .Values.certificates.enabled }}
|
installed: {{ .Values.certificates.enabled }}
|
||||||
|
|
||||||
|
# renovate:
|
||||||
|
# registryUrl=https://registry.souvap-univention.de
|
||||||
|
# packageName=souvap/tooling/charts/bitnami-charts/redis
|
||||||
|
# dataSource=docker
|
||||||
|
# dependencyType=service
|
||||||
- name: "redis"
|
- name: "redis"
|
||||||
chart: "bitnami-repo/redis"
|
chart: "bitnami-repo/redis"
|
||||||
version: "18.1.2"
|
version: "18.1.2"
|
||||||
@@ -86,6 +97,12 @@ releases:
|
|||||||
- "values-redis.gotmpl"
|
- "values-redis.gotmpl"
|
||||||
- "values-redis.yaml"
|
- "values-redis.yaml"
|
||||||
installed: {{ .Values.redis.enabled }}
|
installed: {{ .Values.redis.enabled }}
|
||||||
|
|
||||||
|
# renovate:
|
||||||
|
# registryUrl=https://registry.souvap-univention.de
|
||||||
|
# packageName=souvap/tooling/charts/bitnami-charts/memcached
|
||||||
|
# dataSource=docker
|
||||||
|
# dependencyType=service
|
||||||
- name: "memcached"
|
- name: "memcached"
|
||||||
chart: "bitnami-repo/memcached"
|
chart: "bitnami-repo/memcached"
|
||||||
version: "6.6.2"
|
version: "6.6.2"
|
||||||
@@ -93,6 +110,12 @@ releases:
|
|||||||
- "values-memcached.yaml"
|
- "values-memcached.yaml"
|
||||||
- "values-memcached.gotmpl"
|
- "values-memcached.gotmpl"
|
||||||
installed: {{ .Values.memcached.enabled }}
|
installed: {{ .Values.memcached.enabled }}
|
||||||
|
|
||||||
|
# renovate:
|
||||||
|
# registryUrl=https://registry.souvap-univention.de
|
||||||
|
# packageName=souvap/tooling/charts/postgresql/postgresql
|
||||||
|
# dataSource=docker
|
||||||
|
# dependencyType=service
|
||||||
- name: "postgresql"
|
- name: "postgresql"
|
||||||
chart: "postgresql-repo/postgresql"
|
chart: "postgresql-repo/postgresql"
|
||||||
version: "2.0.3"
|
version: "2.0.3"
|
||||||
@@ -101,6 +124,12 @@ releases:
|
|||||||
- "values-postgresql.gotmpl"
|
- "values-postgresql.gotmpl"
|
||||||
installed: {{ .Values.postgresql.enabled }}
|
installed: {{ .Values.postgresql.enabled }}
|
||||||
timeout: 900
|
timeout: 900
|
||||||
|
|
||||||
|
# renovate:
|
||||||
|
# registryUrl=https://registry.souvap-univention.de
|
||||||
|
# packageName=souvap/tooling/charts/mariadb/mariadb
|
||||||
|
# dataSource=docker
|
||||||
|
# dependencyType=service
|
||||||
- name: "mariadb"
|
- name: "mariadb"
|
||||||
chart: "mariadb-repo/mariadb"
|
chart: "mariadb-repo/mariadb"
|
||||||
version: "2.1.1"
|
version: "2.1.1"
|
||||||
@@ -109,6 +138,12 @@ releases:
|
|||||||
- "values-mariadb.gotmpl"
|
- "values-mariadb.gotmpl"
|
||||||
installed: {{ .Values.mariadb.enabled }}
|
installed: {{ .Values.mariadb.enabled }}
|
||||||
timeout: 900
|
timeout: 900
|
||||||
|
|
||||||
|
# renovate:
|
||||||
|
# registryUrl=https://registry.souvap-univention.de
|
||||||
|
# packageName=souvap/tooling/charts/postfix/postfix
|
||||||
|
# dataSource=docker
|
||||||
|
# dependencyType=service
|
||||||
- name: "postfix"
|
- name: "postfix"
|
||||||
chart: "postfix-repo/postfix"
|
chart: "postfix-repo/postfix"
|
||||||
version: "2.0.4"
|
version: "2.0.4"
|
||||||
@@ -116,6 +151,12 @@ releases:
|
|||||||
- "values-postfix.yaml"
|
- "values-postfix.yaml"
|
||||||
- "values-postfix.gotmpl"
|
- "values-postfix.gotmpl"
|
||||||
installed: {{ .Values.postfix.enabled }}
|
installed: {{ .Values.postfix.enabled }}
|
||||||
|
|
||||||
|
# renovate:
|
||||||
|
# registryUrl=https://registry.souvap-univention.de
|
||||||
|
# packageName=souvap/tooling/charts/clamav/opendesk-clamav
|
||||||
|
# dataSource=docker
|
||||||
|
# dependencyType=service
|
||||||
- name: "clamav"
|
- name: "clamav"
|
||||||
chart: "clamav-repo/opendesk-clamav"
|
chart: "clamav-repo/opendesk-clamav"
|
||||||
version: "4.0.0"
|
version: "4.0.0"
|
||||||
@@ -123,6 +164,12 @@ releases:
|
|||||||
- "values-clamav-distributed.yaml"
|
- "values-clamav-distributed.yaml"
|
||||||
- "values-clamav-distributed.gotmpl"
|
- "values-clamav-distributed.gotmpl"
|
||||||
installed: {{ .Values.clamavDistributed.enabled }}
|
installed: {{ .Values.clamavDistributed.enabled }}
|
||||||
|
|
||||||
|
# renovate:
|
||||||
|
# registryUrl=https://registry.souvap-univention.de
|
||||||
|
# packageName=souvap/tooling/charts/clamav/clamav-simple
|
||||||
|
# dataSource=docker
|
||||||
|
# dependencyType=service
|
||||||
- name: "clamav-simple"
|
- name: "clamav-simple"
|
||||||
chart: "clamav-repo/clamav-simple"
|
chart: "clamav-repo/clamav-simple"
|
||||||
version: "4.0.0"
|
version: "4.0.0"
|
||||||
@@ -130,6 +177,12 @@ releases:
|
|||||||
- "values-clamav-simple.yaml"
|
- "values-clamav-simple.yaml"
|
||||||
- "values-clamav-simple.gotmpl"
|
- "values-clamav-simple.gotmpl"
|
||||||
installed: {{ .Values.clamavSimple.enabled }}
|
installed: {{ .Values.clamavSimple.enabled }}
|
||||||
|
|
||||||
|
# renovate:
|
||||||
|
# registryUrl=https://registry.souvap-univention.de
|
||||||
|
# packageName=souvap/tooling/charts/istio-ressources/istio-gateway
|
||||||
|
# dataSource=docker
|
||||||
|
# dependencyType=service
|
||||||
- name: "opendesk-gateway"
|
- name: "opendesk-gateway"
|
||||||
chart: "istio-resources-repo/istio-gateway"
|
chart: "istio-resources-repo/istio-gateway"
|
||||||
version: "2.0.0"
|
version: "2.0.0"
|
||||||
@@ -137,6 +190,12 @@ releases:
|
|||||||
- "values-istio-gateway.yaml"
|
- "values-istio-gateway.yaml"
|
||||||
- "values-istio-gateway.gotmpl"
|
- "values-istio-gateway.gotmpl"
|
||||||
installed: {{ .Values.istio.enabled }}
|
installed: {{ .Values.istio.enabled }}
|
||||||
|
|
||||||
|
# renovate:
|
||||||
|
# registryUrl=https://registry.souvap-univention.de
|
||||||
|
# packageName=souvap/tooling/charts/bitnami-charts/minio
|
||||||
|
# dataSource=docker
|
||||||
|
# dependencyType=service
|
||||||
- name: "minio"
|
- name: "minio"
|
||||||
chart: "bitnami-repo/minio"
|
chart: "bitnami-repo/minio"
|
||||||
version: "12.8.19"
|
version: "12.8.19"
|
||||||
|
|||||||
@@ -24,7 +24,7 @@ postfix:
|
|||||||
- fileName: "sasl_passwd.map"
|
- fileName: "sasl_passwd.map"
|
||||||
content:
|
content:
|
||||||
- {{ printf "%s %s:%s" .Values.smtp.host .Values.smtp.username .Values.smtp.password | quote }}
|
- {{ printf "%s %s:%s" .Values.smtp.host .Values.smtp.username .Values.smtp.password | quote }}
|
||||||
relayHost: {{ printf "[%s]:587" .Values.smtp.host | quote }}
|
relayHost: {{ printf "[%s]:[%d]" .Values.smtp.host .Values.smtp.port | quote }}
|
||||||
relayNets: {{ .Values.cluster.networking.cidr | quote}}
|
relayNets: {{ .Values.cluster.networking.cidr | quote}}
|
||||||
virtualTransport: "lmtps:dovecot:24"
|
virtualTransport: "lmtps:dovecot:24"
|
||||||
smtpdSASLPath: "inet:dovecot:3659"
|
smtpdSASLPath: "inet:dovecot:3659"
|
||||||
|
|||||||
@@ -24,7 +24,7 @@ job:
|
|||||||
- username: "matrix_user"
|
- username: "matrix_user"
|
||||||
password: {{ .Values.secrets.postgresql.matrixUser | quote }}
|
password: {{ .Values.secrets.postgresql.matrixUser | quote }}
|
||||||
- username: "notificationsapi_user"
|
- username: "notificationsapi_user"
|
||||||
password: {{ .Values.secrets.postgresql.notificationsapiUser | quote }}
|
password: {{ .Values.secrets.postgresql.notificationsApiUser | quote }}
|
||||||
databases:
|
databases:
|
||||||
- name: "keycloak"
|
- name: "keycloak"
|
||||||
user: "keycloak_user"
|
user: "keycloak_user"
|
||||||
|
|||||||
@@ -18,6 +18,11 @@ repositories:
|
|||||||
keyring: "../../files/gpg-pubkeys/souvap-univention-de.gpg"
|
keyring: "../../files/gpg-pubkeys/souvap-univention-de.gpg"
|
||||||
|
|
||||||
releases:
|
releases:
|
||||||
|
# renovate:
|
||||||
|
# registryUrl=https://registry.souvap-univention.de
|
||||||
|
# packageName=souvap/tooling/charts/univention-corporate-container/univention-corporate-container
|
||||||
|
# dataSource=docker
|
||||||
|
# dependencyType=vendor
|
||||||
- name: "univention-corporate-container"
|
- name: "univention-corporate-container"
|
||||||
chart: "univention-corporate-container-repo/univention-corporate-container"
|
chart: "univention-corporate-container-repo/univention-corporate-container"
|
||||||
version: "1.0.10"
|
version: "1.0.10"
|
||||||
|
|||||||
@@ -22,15 +22,24 @@ repositories:
|
|||||||
keyring: "../../files/gpg-pubkeys/souvap-univention-de.gpg"
|
keyring: "../../files/gpg-pubkeys/souvap-univention-de.gpg"
|
||||||
|
|
||||||
releases:
|
releases:
|
||||||
# TODO: Interim, until the UMS stack has a stack umbrella chart and provides a solution
|
# renovate:
|
||||||
# {{- if eq .Values.ingress.ingressClassName "dedicated-haproxy-external" }}
|
# registryUrl=https://registry.souvap-univention.de
|
||||||
|
# packageName=souvap/tooling/charts/bitnami-charts/nginx
|
||||||
|
# dataSource=docker
|
||||||
|
# dependencyType=vendor
|
||||||
- name: "ums-stack-gateway"
|
- name: "ums-stack-gateway"
|
||||||
chart: "bitnami-repo/nginx"
|
chart: "bitnami-repo/nginx"
|
||||||
version: "15.3.5"
|
version: "15.3.5"
|
||||||
values:
|
values:
|
||||||
- "values-ums-stack-gateway.gotmpl"
|
- "values-ums-stack-gateway.gotmpl"
|
||||||
|
- "values-ums-stack-gateway.yaml"
|
||||||
installed: {{ .Values.univentionManagementStack.enabled }}
|
installed: {{ .Values.univentionManagementStack.enabled }}
|
||||||
# {{- end }}
|
|
||||||
|
# renovate:
|
||||||
|
# registryUrl=https://gitlab.souvap-univention.de/api/v4/projects/155/packages/helm/stable
|
||||||
|
# packageName=store-dav
|
||||||
|
# dataSource=helm
|
||||||
|
# dependencyType=vendor
|
||||||
- name: "ums-store-dav"
|
- name: "ums-store-dav"
|
||||||
chart: "ums-repo/store-dav"
|
chart: "ums-repo/store-dav"
|
||||||
version: "0.5.2"
|
version: "0.5.2"
|
||||||
@@ -39,6 +48,12 @@ releases:
|
|||||||
- "values-common.yaml"
|
- "values-common.yaml"
|
||||||
- "values-store-dav.gotmpl"
|
- "values-store-dav.gotmpl"
|
||||||
installed: {{ .Values.univentionManagementStack.enabled }}
|
installed: {{ .Values.univentionManagementStack.enabled }}
|
||||||
|
|
||||||
|
# renovate:
|
||||||
|
# registryUrl=https://gitlab.souvap-univention.de/api/v4/projects/155/packages/helm/stable
|
||||||
|
# packageName=ldap-server
|
||||||
|
# dataSource=helm
|
||||||
|
# dependencyType=vendor
|
||||||
- name: "ums-ldap-server"
|
- name: "ums-ldap-server"
|
||||||
chart: "ums-repo/ldap-server"
|
chart: "ums-repo/ldap-server"
|
||||||
version: "0.7.0"
|
version: "0.7.0"
|
||||||
@@ -48,6 +63,12 @@ releases:
|
|||||||
- "values-ldap-server.gotmpl"
|
- "values-ldap-server.gotmpl"
|
||||||
- "values-ldap-server.yaml"
|
- "values-ldap-server.yaml"
|
||||||
installed: {{ .Values.univentionManagementStack.enabled }}
|
installed: {{ .Values.univentionManagementStack.enabled }}
|
||||||
|
|
||||||
|
# renovate:
|
||||||
|
# registryUrl=https://gitlab.souvap-univention.de/api/v4/projects/155/packages/helm/stable
|
||||||
|
# packageName=ldap-notifier
|
||||||
|
# dataSource=helm
|
||||||
|
# dependencyType=vendor
|
||||||
- name: "ums-ldap-notifier"
|
- name: "ums-ldap-notifier"
|
||||||
chart: "ums-repo/ldap-notifier"
|
chart: "ums-repo/ldap-notifier"
|
||||||
version: "0.7.0"
|
version: "0.7.0"
|
||||||
@@ -57,6 +78,12 @@ releases:
|
|||||||
- "values-ldap-notifier.gotmpl"
|
- "values-ldap-notifier.gotmpl"
|
||||||
- "values-ldap-notifier.yaml"
|
- "values-ldap-notifier.yaml"
|
||||||
installed: {{ .Values.univentionManagementStack.enabled }}
|
installed: {{ .Values.univentionManagementStack.enabled }}
|
||||||
|
|
||||||
|
# renovate:
|
||||||
|
# registryUrl=https://gitlab.souvap-univention.de/api/v4/projects/155/packages/helm/stable
|
||||||
|
# packageName=udm-rest-api
|
||||||
|
# dataSource=helm
|
||||||
|
# dependencyType=vendor
|
||||||
- name: "ums-udm-rest-api"
|
- name: "ums-udm-rest-api"
|
||||||
chart: "ums-repo/udm-rest-api"
|
chart: "ums-repo/udm-rest-api"
|
||||||
version: "0.3.5"
|
version: "0.3.5"
|
||||||
@@ -64,76 +91,122 @@ releases:
|
|||||||
- "values-common.gotmpl"
|
- "values-common.gotmpl"
|
||||||
- "values-common.yaml"
|
- "values-common.yaml"
|
||||||
- "values-udm-rest-api.gotmpl"
|
- "values-udm-rest-api.gotmpl"
|
||||||
|
- "values-udm-rest-api.yaml"
|
||||||
installed: {{ .Values.univentionManagementStack.enabled }}
|
installed: {{ .Values.univentionManagementStack.enabled }}
|
||||||
|
|
||||||
|
# renovate:
|
||||||
|
# registryUrl=https://gitlab.souvap-univention.de/api/v4/projects/155/packages/helm/stable
|
||||||
|
# packageName=stack-data-ums
|
||||||
|
# dataSource=helm
|
||||||
|
# dependencyType=vendor
|
||||||
- name: "ums-stack-data-ums"
|
- name: "ums-stack-data-ums"
|
||||||
chart: "ums-repo/stack-data-ums"
|
chart: "ums-repo/stack-data-ums"
|
||||||
version: "0.33.0"
|
version: "0.36.0"
|
||||||
values:
|
values:
|
||||||
- "values-common.gotmpl"
|
- "values-common.gotmpl"
|
||||||
- "values-common.yaml"
|
- "values-common.yaml"
|
||||||
- "values-stack-data-ums.gotmpl"
|
- "values-stack-data-ums.gotmpl"
|
||||||
|
- "values-stack-data-ums.yaml"
|
||||||
installed: {{ .Values.univentionManagementStack.enabled }}
|
installed: {{ .Values.univentionManagementStack.enabled }}
|
||||||
|
|
||||||
|
# renovate:
|
||||||
|
# registryUrl=https://gitlab.souvap-univention.de/api/v4/projects/155/packages/helm/stable
|
||||||
|
# packageName=stack-data-swp
|
||||||
|
# dataSource=helm
|
||||||
|
# dependencyType=vendor
|
||||||
- name: "ums-stack-data-swp"
|
- name: "ums-stack-data-swp"
|
||||||
chart: "ums-repo/stack-data-swp"
|
chart: "ums-repo/stack-data-swp"
|
||||||
version: "0.33.0"
|
version: "0.36.0"
|
||||||
values:
|
values:
|
||||||
- "values-common.gotmpl"
|
- "values-common.gotmpl"
|
||||||
- "values-common.yaml"
|
- "values-common.yaml"
|
||||||
- "values-stack-data-swp.gotmpl"
|
- "values-stack-data-swp.gotmpl"
|
||||||
|
- "values-stack-data-swp.yaml"
|
||||||
installed: {{ .Values.univentionManagementStack.enabled }}
|
installed: {{ .Values.univentionManagementStack.enabled }}
|
||||||
|
|
||||||
|
# renovate:
|
||||||
|
# registryUrl=https://gitlab.souvap-univention.de/api/v4/projects/155/packages/helm/stable
|
||||||
|
# packageName=portal-server
|
||||||
|
# dataSource=helm
|
||||||
|
# dependencyType=vendor
|
||||||
- name: "ums-portal-server"
|
- name: "ums-portal-server"
|
||||||
chart: "ums-repo/portal-server"
|
chart: "ums-repo/portal-server"
|
||||||
version: "0.4.3"
|
version: "0.5.0"
|
||||||
values:
|
values:
|
||||||
- "values-common.gotmpl"
|
- "values-common.gotmpl"
|
||||||
- "values-common.yaml"
|
- "values-common.yaml"
|
||||||
- "values-portal-server.gotmpl"
|
- "values-portal-server.gotmpl"
|
||||||
|
- "values-portal-server.yaml"
|
||||||
installed: {{ .Values.univentionManagementStack.enabled }}
|
installed: {{ .Values.univentionManagementStack.enabled }}
|
||||||
|
|
||||||
|
# renovate:
|
||||||
|
# registryUrl=https://gitlab.souvap-univention.de/api/v4/projects/155/packages/helm/stable
|
||||||
|
# packageName=notifications-api
|
||||||
|
# dataSource=helm
|
||||||
|
# dependencyType=vendor
|
||||||
- name: "ums-notifications-api"
|
- name: "ums-notifications-api"
|
||||||
chart: "ums-repo/notifications-api"
|
chart: "ums-repo/notifications-api"
|
||||||
version: "0.4.3"
|
version: "0.5.0"
|
||||||
values:
|
values:
|
||||||
- "values-common.gotmpl"
|
- "values-common.gotmpl"
|
||||||
- "values-common.yaml"
|
- "values-common.yaml"
|
||||||
- "values-notifications-api.gotmpl"
|
- "values-notifications-api.gotmpl"
|
||||||
- "values-notifications-api.yaml"
|
- "values-notifications-api.yaml"
|
||||||
installed: {{ .Values.univentionManagementStack.enabled }}
|
installed: {{ .Values.univentionManagementStack.enabled }}
|
||||||
|
|
||||||
|
# renovate:
|
||||||
|
# registryUrl=https://gitlab.souvap-univention.de/api/v4/projects/155/packages/helm/stable
|
||||||
|
# packageName=portal-listener
|
||||||
|
# dataSource=helm
|
||||||
|
# dependencyType=vendor
|
||||||
- name: "ums-portal-listener"
|
- name: "ums-portal-listener"
|
||||||
chart: "ums-repo/portal-listener"
|
chart: "ums-repo/portal-listener"
|
||||||
version: "0.4.3"
|
version: "0.5.0"
|
||||||
values:
|
values:
|
||||||
- "values-common.gotmpl"
|
- "values-common.gotmpl"
|
||||||
- "values-common.yaml"
|
- "values-common.yaml"
|
||||||
- "values-portal-listener.gotmpl"
|
- "values-portal-listener.gotmpl"
|
||||||
- "values-portal-listener.yaml"
|
- "values-portal-listener.yaml"
|
||||||
installed: {{ .Values.univentionManagementStack.enabled }}
|
installed: {{ .Values.univentionManagementStack.enabled }}
|
||||||
|
|
||||||
|
# renovate:
|
||||||
|
# registryUrl=https://gitlab.souvap-univention.de/api/v4/projects/155/packages/helm/stable
|
||||||
|
# packageName=portal-frontend
|
||||||
|
# dataSource=helm
|
||||||
|
# dependencyType=vendor
|
||||||
- name: "ums-portal-frontend"
|
- name: "ums-portal-frontend"
|
||||||
chart: "ums-repo/portal-frontend"
|
chart: "ums-repo/portal-frontend"
|
||||||
version: "0.4.3"
|
version: "0.5.0"
|
||||||
values:
|
values:
|
||||||
- "values-common.gotmpl"
|
- "values-common.gotmpl"
|
||||||
- "values-common.yaml"
|
- "values-common.yaml"
|
||||||
- "values-portal-frontend.gotmpl"
|
- "values-portal-frontend.gotmpl"
|
||||||
|
- "values-portal-frontend.yaml"
|
||||||
installed: {{ .Values.univentionManagementStack.enabled }}
|
installed: {{ .Values.univentionManagementStack.enabled }}
|
||||||
- name: "ums-portal-frontend-custom"
|
|
||||||
# TODO: Replace with our own Nginx chart.
|
# renovate:
|
||||||
chart: "bitnami-repo/nginx"
|
# registryUrl=https://gitlab.souvap-univention.de/api/v4/projects/155/packages/helm/stable
|
||||||
version: "15.3.5"
|
# packageName=umc-gateway
|
||||||
values:
|
# dataSource=helm
|
||||||
- "values-portal-frontend-custom.yaml"
|
# dependencyType=vendor
|
||||||
- "values-portal-frontend-custom.gotmpl"
|
|
||||||
installed: {{ .Values.univentionManagementStack.enabled }}
|
|
||||||
- name: "ums-umc-gateway"
|
- name: "ums-umc-gateway"
|
||||||
chart: "ums-repo/umc-gateway"
|
chart: "ums-repo/umc-gateway"
|
||||||
version: "0.5.1"
|
version: "0.6.1"
|
||||||
values:
|
values:
|
||||||
- "values-common.gotmpl"
|
- "values-common.gotmpl"
|
||||||
- "values-common.yaml"
|
- "values-common.yaml"
|
||||||
- "values-umc-gateway.gotmpl"
|
- "values-umc-gateway.gotmpl"
|
||||||
|
- "values-umc-gateway.yaml"
|
||||||
installed: {{ .Values.univentionManagementStack.enabled }}
|
installed: {{ .Values.univentionManagementStack.enabled }}
|
||||||
|
|
||||||
|
# renovate:
|
||||||
|
# registryUrl=https://gitlab.souvap-univention.de/api/v4/projects/155/packages/helm/stable
|
||||||
|
# packageName=umc-server
|
||||||
|
# dataSource=helm
|
||||||
|
# dependencyType=vendor
|
||||||
- name: "ums-umc-server"
|
- name: "ums-umc-server"
|
||||||
chart: "ums-repo/umc-server"
|
chart: "ums-repo/umc-server"
|
||||||
version: "0.5.1"
|
version: "0.6.1"
|
||||||
values:
|
values:
|
||||||
- "values-common.gotmpl"
|
- "values-common.gotmpl"
|
||||||
- "values-common.yaml"
|
- "values-common.yaml"
|
||||||
|
|||||||
@@ -4,11 +4,7 @@ SPDX-License-Identifier: Apache-2.0
|
|||||||
*/}}
|
*/}}
|
||||||
---
|
---
|
||||||
ingress:
|
ingress:
|
||||||
enabled: {{ if eq .Values.ingress.ingressClassName "dedicated-haproxy-external" }}false{{ else }}{{ .Values.ingress.enabled }}{{ end }}
|
host: {{ printf "%s.%s" .Values.global.hosts.univentionManagementStack .Values.global.domain | quote }}
|
||||||
host: "{{ .Values.global.hosts.univentionManagementStack }}.{{ .Values.global.domain }}"
|
|
||||||
ingressClassName: {{ .Values.ingress.ingressClassName | quote }}
|
ingressClassName: {{ .Values.ingress.ingressClassName | quote }}
|
||||||
tls:
|
|
||||||
# The TLS configuration is on the "master" Ingress, see "portal-frontend"
|
|
||||||
enabled: false
|
|
||||||
secretName: ""
|
|
||||||
...
|
...
|
||||||
|
|||||||
@@ -6,5 +6,18 @@ global:
|
|||||||
configMapUcr: "ums-stack-data-swp-ucr"
|
configMapUcr: "ums-stack-data-swp-ucr"
|
||||||
configMapUcrForced: null
|
configMapUcrForced: null
|
||||||
|
|
||||||
|
ingress:
|
||||||
|
# Intentionally not using the Ingress configuration of the UMS stack at the
|
||||||
|
# moment, since it does depend on rewriting capabilities of the ingress
|
||||||
|
# controller. Those are encapsulated into the release "stack-gateway" so that
|
||||||
|
# the compatibility with all ingress controllers is increased.
|
||||||
|
enabled: false
|
||||||
|
tls:
|
||||||
|
# The TLS configuration is on the "master" Ingress, see "portal-frontend"
|
||||||
|
enabled: false
|
||||||
|
secretName: ""
|
||||||
|
|
||||||
istio:
|
istio:
|
||||||
enabled: false
|
enabled: false
|
||||||
|
|
||||||
|
...
|
||||||
|
|||||||
@@ -5,15 +5,7 @@ SPDX-License-Identifier: Apache-2.0
|
|||||||
---
|
---
|
||||||
ldapServer:
|
ldapServer:
|
||||||
ldapSecret: {{ .Values.secrets.univentionManagementStack.ldapSecret | quote }}
|
ldapSecret: {{ .Values.secrets.univentionManagementStack.ldapSecret | quote }}
|
||||||
ldapBaseDn: "dc=swp-ldap,dc=internal"
|
ldapBaseDn: {{ .Values.ldap.baseDn | quote }}
|
||||||
|
|
||||||
waitForSamlMetadata: true
|
|
||||||
|
|
||||||
# TODO: Certificates handling
|
|
||||||
# caCert: ""
|
|
||||||
# certPem: ""
|
|
||||||
# privateKey: ""
|
|
||||||
# dhParam: ""
|
|
||||||
|
|
||||||
image:
|
image:
|
||||||
registry: {{ .Values.global.imageRegistry | quote }}
|
registry: {{ .Values.global.imageRegistry | quote }}
|
||||||
@@ -26,12 +18,11 @@ image:
|
|||||||
{{- end }}
|
{{- end }}
|
||||||
|
|
||||||
waitForDependency:
|
waitForDependency:
|
||||||
registry: "{{ .Values.global.imageRegistry }}"
|
registry: {{ .Values.global.imageRegistry | quote }}
|
||||||
repository: "{{ .Values.images.umsWaitForDependency.repository }}"
|
repository: {{ .Values.images.umsWaitForDependency.repository | quote }}
|
||||||
imagePullPolicy: "Always"
|
imagePullPolicy: {{ .Values.global.imagePullPolicy | quote }}
|
||||||
tag: "{{ .Values.images.umsWaitForDependency.tag }}"
|
tag: {{ .Values.images.umsWaitForDependency.tag | quote }}
|
||||||
|
|
||||||
# TODO: Pending upstream support, #199
|
|
||||||
persistence:
|
persistence:
|
||||||
data:
|
data:
|
||||||
storageClassName: {{ .Values.persistence.storageClassNames.RWO | quote }}
|
storageClassName: {{ .Values.persistence.storageClassNames.RWO | quote }}
|
||||||
|
|||||||
@@ -2,6 +2,9 @@
|
|||||||
# SPDX-License-Identifier: Apache-2.0
|
# SPDX-License-Identifier: Apache-2.0
|
||||||
---
|
---
|
||||||
|
|
||||||
|
ldapServer:
|
||||||
|
waitForSamlMetadata: true
|
||||||
|
|
||||||
service:
|
service:
|
||||||
type: "ClusterIP"
|
type: "ClusterIP"
|
||||||
|
|
||||||
|
|||||||
@@ -6,12 +6,12 @@ SPDX-License-Identifier: Apache-2.0
|
|||||||
postgresql:
|
postgresql:
|
||||||
bundled: false
|
bundled: false
|
||||||
connection:
|
connection:
|
||||||
host: "postgresql"
|
host: {{ .Values.databases.notificationsApi.host | quote }}
|
||||||
port: 5432
|
port: {{ .Values.databases.notificationsApi.port | quote }}
|
||||||
auth:
|
auth:
|
||||||
username: "notificationsapi_user"
|
username: {{ .Values.databases.notificationsApi.username | quote }}
|
||||||
database: "notificationsapi"
|
database: {{ .Values.databases.notificationsApi.name | quote }}
|
||||||
password: {{ .Values.secrets.postgresql.notificationsapiUser | quote }}
|
password: {{ .Values.databases.notificationsApi.password | default .Values.secrets.postgresql.notificationsApiUser | quote }}
|
||||||
|
|
||||||
image:
|
image:
|
||||||
registry: {{ .Values.global.imageRegistry }}
|
registry: {{ .Values.global.imageRegistry }}
|
||||||
|
|||||||
@@ -1,53 +0,0 @@
|
|||||||
# SPDX-FileCopyrightText: 2023 Bundesministerium des Innern und für Heimat, PG ZenDiS "Projektgruppe für Aufbau ZenDiS"
|
|
||||||
# SPDX-License-Identifier: Apache-2.0
|
|
||||||
---
|
|
||||||
|
|
||||||
ingress:
|
|
||||||
enabled: true
|
|
||||||
hostname: "{{ .Values.global.hosts.univentionManagementStack }}.{{ .Values.global.domain }}"
|
|
||||||
ingressClassName: "nginx"
|
|
||||||
annotations:
|
|
||||||
nginx.org/mergeable-ingress-type: "minion"
|
|
||||||
tls: false
|
|
||||||
|
|
||||||
pathType: Exact
|
|
||||||
path: /favicon.ico
|
|
||||||
|
|
||||||
extraPaths:
|
|
||||||
- pathType: Exact
|
|
||||||
path: /univention/portal/css/custom.css
|
|
||||||
backend:
|
|
||||||
service:
|
|
||||||
name: ums-portal-frontend-custom-nginx
|
|
||||||
port:
|
|
||||||
name: http
|
|
||||||
- pathType: Exact
|
|
||||||
path: /univention/portal/icons/logo.svg
|
|
||||||
backend:
|
|
||||||
service:
|
|
||||||
name: ums-portal-frontend-custom-nginx
|
|
||||||
port:
|
|
||||||
name: http
|
|
||||||
- pathType: Exact
|
|
||||||
path: /univention/portal/icons/logo_small_border.svg
|
|
||||||
backend:
|
|
||||||
service:
|
|
||||||
name: ums-portal-frontend-custom-nginx
|
|
||||||
port:
|
|
||||||
name: http
|
|
||||||
- pathType: Exact
|
|
||||||
path: /univention/portal/custom/portal_background_image.png
|
|
||||||
backend:
|
|
||||||
service:
|
|
||||||
name: ums-portal-frontend-custom-nginx
|
|
||||||
port:
|
|
||||||
name: http
|
|
||||||
- pathType: Exact
|
|
||||||
path: /univention/portal/custom/portal_background_image.svg
|
|
||||||
backend:
|
|
||||||
service:
|
|
||||||
name: ums-portal-frontend-custom-nginx
|
|
||||||
port:
|
|
||||||
name: http
|
|
||||||
|
|
||||||
...
|
|
||||||
@@ -1,33 +0,0 @@
|
|||||||
# SPDX-FileCopyrightText: 2023 Bundesministerium des Innern und für Heimat, PG ZenDiS "Projektgruppe für Aufbau ZenDiS"
|
|
||||||
# SPDX-License-Identifier: Apache-2.0
|
|
||||||
---
|
|
||||||
|
|
||||||
service:
|
|
||||||
type: "ClusterIP"
|
|
||||||
|
|
||||||
extraVolumes:
|
|
||||||
- name: "opendesk-branding"
|
|
||||||
configMap:
|
|
||||||
name: "ums-stack-data-swp-branding"
|
|
||||||
|
|
||||||
extraVolumeMounts:
|
|
||||||
- name: "opendesk-branding"
|
|
||||||
mountPath: "/app/favicon.ico"
|
|
||||||
subPath: "favicon.ico"
|
|
||||||
- name: "opendesk-branding"
|
|
||||||
mountPath: "/app/univention/portal/css/custom.css"
|
|
||||||
subPath: "custom.css"
|
|
||||||
- name: "opendesk-branding"
|
|
||||||
mountPath: "/app/univention/portal/icons/logo.svg"
|
|
||||||
subPath: "logo.svg"
|
|
||||||
- name: "opendesk-branding"
|
|
||||||
mountPath: "/app/univention/portal/icons/logo_small_border.svg"
|
|
||||||
subPath: "logo_small_border.svg"
|
|
||||||
- name: "opendesk-branding"
|
|
||||||
mountPath: "/app/univention/portal/custom/portal_background_image.png"
|
|
||||||
subPath: "portal_background_image.png"
|
|
||||||
- name: "opendesk-branding"
|
|
||||||
mountPath: "/app/univention/portal/custom/portal_background_image.svg"
|
|
||||||
subPath: "portal_background_image.svg"
|
|
||||||
|
|
||||||
...
|
|
||||||
@@ -14,13 +14,7 @@ image:
|
|||||||
{{- end }}
|
{{- end }}
|
||||||
|
|
||||||
extraIngresses:
|
extraIngresses:
|
||||||
redirects:
|
|
||||||
enabled: {{ if eq .Values.ingress.ingressClassName "dedicated-haproxy-external" }}false{{ else }}{{ .Values.ingress.enabled }}{{ end }}
|
|
||||||
# The TLS configuration is on the "master" Ingress, see below.
|
|
||||||
tls:
|
|
||||||
enabled: false
|
|
||||||
master:
|
master:
|
||||||
enabled: {{ if eq .Values.ingress.ingressClassName "dedicated-haproxy-external" }}false{{ else }}{{ .Values.ingress.enabled }}{{ end }}
|
|
||||||
tls:
|
tls:
|
||||||
enabled: {{ .Values.ingress.tls.enabled }}
|
enabled: {{ .Values.ingress.tls.enabled }}
|
||||||
secretName: {{ .Values.ingress.tls.secretName | quote }}
|
secretName: {{ .Values.ingress.tls.secretName | quote }}
|
||||||
|
|||||||
@@ -0,0 +1,73 @@
|
|||||||
|
# SPDX-FileCopyrightText: 2023 Bundesministerium des Innern und für Heimat, PG ZenDiS "Projektgruppe für Aufbau ZenDiS"
|
||||||
|
# SPDX-License-Identifier: Apache-2.0
|
||||||
|
---
|
||||||
|
|
||||||
|
extraIngresses:
|
||||||
|
redirects:
|
||||||
|
# Using "stack-gateway" currently.
|
||||||
|
enabled: false
|
||||||
|
# The TLS configuration is on the "master" Ingress, see below.
|
||||||
|
tls:
|
||||||
|
enabled: false
|
||||||
|
master:
|
||||||
|
# Using "stack-gateway" currently.
|
||||||
|
enabled: false
|
||||||
|
|
||||||
|
# See "extraVolumeMounts" below
|
||||||
|
custom-favicon:
|
||||||
|
# Using "stack-gateway" at the moment
|
||||||
|
enabled: false
|
||||||
|
annotations:
|
||||||
|
nginx.org/mergeable-ingress-type: "minion"
|
||||||
|
paths:
|
||||||
|
- pathType: "Exact"
|
||||||
|
path: "/favicon.ico"
|
||||||
|
tls: {}
|
||||||
|
|
||||||
|
# See "extraVolumeMounts" below
|
||||||
|
custom-branding:
|
||||||
|
# Using "stack-gateway" at the moment
|
||||||
|
enabled: false
|
||||||
|
annotations:
|
||||||
|
nginx.ingress.kubernetes.io/configuration-snippet: |
|
||||||
|
rewrite ^/univention/portal(/.*)$ $1 break;
|
||||||
|
nginx.org/location-snippets: |
|
||||||
|
rewrite ^/univention/portal(/.*)$ $1 break;
|
||||||
|
nginx.org/mergeable-ingress-type: "minion"
|
||||||
|
paths:
|
||||||
|
# This relies on the correct implementation of the matching for paths of
|
||||||
|
# type "Prefix" since "/univention/portal/icons/entries/" is owned by
|
||||||
|
# store-dav.
|
||||||
|
# See: https://kubernetes.io/docs/concepts/services-networking/ingress/#multiple-matches
|
||||||
|
- pathType: "Prefix"
|
||||||
|
path: "/univention/portal/icons/"
|
||||||
|
- pathType: "Prefix"
|
||||||
|
path: "/univention/portal/custom/"
|
||||||
|
tls: {}
|
||||||
|
|
||||||
|
extraVolumes:
|
||||||
|
- name: "opendesk-branding"
|
||||||
|
configMap:
|
||||||
|
name: "ums-stack-data-swp-branding"
|
||||||
|
|
||||||
|
extraVolumeMounts:
|
||||||
|
- name: "opendesk-branding"
|
||||||
|
mountPath: "/var/www/html/favicon.ico"
|
||||||
|
subPath: "favicon.ico"
|
||||||
|
- name: "opendesk-branding"
|
||||||
|
mountPath: "/var/www/html/css/custom.css"
|
||||||
|
subPath: "custom.css"
|
||||||
|
- name: "opendesk-branding"
|
||||||
|
mountPath: "/var/www/html/icons/logo.svg"
|
||||||
|
subPath: "logo.svg"
|
||||||
|
- name: "opendesk-branding"
|
||||||
|
mountPath: "/var/www/html/icons/logo_small_border.svg"
|
||||||
|
subPath: "logo_small_border.svg"
|
||||||
|
- name: "opendesk-branding"
|
||||||
|
mountPath: "/var/www/html/custom/portal_background_image.png"
|
||||||
|
subPath: "portal_background_image.png"
|
||||||
|
- name: "opendesk-branding"
|
||||||
|
mountPath: "/var/www/html/custom/portal_background_image.svg"
|
||||||
|
subPath: "portal_background_image.svg"
|
||||||
|
|
||||||
|
...
|
||||||
@@ -4,25 +4,20 @@ SPDX-License-Identifier: Apache-2.0
|
|||||||
*/}}
|
*/}}
|
||||||
---
|
---
|
||||||
portalListener:
|
portalListener:
|
||||||
adminGroup: "cn=Domain Admins,cn=groups,dc=swp-ldap,dc=internal"
|
adminGroup: {{ printf "%s,%s" "cn=Domain Admins,cn=groups" .Values.ldap.baseDn | quote }}
|
||||||
environment: "staging"
|
assetsRoot: {{ printf "%s%s%s" "http://portal-listener:" .Values.secrets.univentionManagementStack.storeDavUsers.portalListener "@ums-store-dav/portal-assets/" | quote }}
|
||||||
debugLevel: "4"
|
ucsInternalUrl: {{ printf "%s%s%s" "http://portal-listener:" .Values.secrets.univentionManagementStack.storeDavUsers.portalListener "@ums-store-dav/portal-data/" | quote }}
|
||||||
assetsRoot: "http://portal-listener:{{ .Values.secrets.univentionManagementStack.storeDavUsers.portalListener }}@ums-store-dav/portal-assets/"
|
|
||||||
ucsInternalUrl: "http://portal-listener:{{ .Values.secrets.univentionManagementStack.storeDavUsers.portalListener }}@ums-store-dav/portal-data/"
|
|
||||||
umcGetUrl: "http://ums-umc-server/get"
|
|
||||||
umcSessionUrl: "http://ums-umc-server/get/session-info"
|
|
||||||
|
|
||||||
ldapBaseDn: "dc=swp-ldap,dc=internal"
|
ldapBaseDn: {{ .Values.ldap.baseDn | quote }}
|
||||||
ldapHost: "{{ .Values.ldap.host }}"
|
ldapHost: {{ .Values.ldap.host | quote }}
|
||||||
ldapHostDn: "cn=admin,dc=swp-ldap,dc=internal"
|
ldapHostDn: {{ printf "%s,%s" "cn=admin" .Values.ldap.baseDn | quote }}
|
||||||
ldapSecret: {{ .Values.secrets.univentionManagementStack.ldapSecret | quote }}
|
ldapSecret: {{ .Values.secrets.univentionManagementStack.ldapSecret | quote }}
|
||||||
machineSecret: {{ .Values.secrets.univentionManagementStack.ldapSecret | quote }}
|
machineSecret: {{ .Values.secrets.univentionManagementStack.ldapSecret | quote }}
|
||||||
notifierServer: {{ .Values.ldap.notifierHost | quote }}
|
notifierServer: {{ .Values.ldap.notifierHost | quote }}
|
||||||
portalDefaultDn: "cn=domain,cn=portal,cn=portals,cn=univention,dc=swp-ldap,dc=internal"
|
portalDefaultDn: {{ printf "%s,%s" "cn=domain,cn=portal,cn=portals,cn=univention" .Values.ldap.baseDn | quote }}
|
||||||
udmApiUrl: "http://ums-udm-rest-api/udm/"
|
udmApiUrl: "http://ums-udm-rest-api/udm/"
|
||||||
udmApiUsername: "cn=admin"
|
udmApiUsername: "cn=admin"
|
||||||
|
|
||||||
tlsMode: "off"
|
|
||||||
|
|
||||||
image:
|
image:
|
||||||
registry: {{ .Values.global.imageRegistry | quote }}
|
registry: {{ .Values.global.imageRegistry | quote }}
|
||||||
@@ -37,10 +32,9 @@ image:
|
|||||||
waitForDependency:
|
waitForDependency:
|
||||||
registry: {{ .Values.global.imageRegistry | quote }}
|
registry: {{ .Values.global.imageRegistry | quote }}
|
||||||
repository: {{ .Values.images.umsWaitForDependency.repository | quote }}
|
repository: {{ .Values.images.umsWaitForDependency.repository | quote }}
|
||||||
imagePullPolicy: "Always"
|
imagePullPolicy: {{ .Values.global.imagePullPolicy | quote }}
|
||||||
tag: {{ .Values.images.umsWaitForDependency.tag | quote }}
|
tag: {{ .Values.images.umsWaitForDependency.tag | quote }}
|
||||||
|
|
||||||
# TODO: Pending upstream support, #200
|
|
||||||
persistence:
|
persistence:
|
||||||
storageClassName: {{ .Values.persistence.storageClassNames.RWO | quote }}
|
storageClassName: {{ .Values.persistence.storageClassNames.RWO | quote }}
|
||||||
size: {{ .Values.persistence.size.univentionManagementStack.portalListener | quote }}
|
size: {{ .Values.persistence.size.univentionManagementStack.portalListener | quote }}
|
||||||
|
|||||||
@@ -2,6 +2,14 @@
|
|||||||
# SPDX-License-Identifier: Apache-2.0
|
# SPDX-License-Identifier: Apache-2.0
|
||||||
---
|
---
|
||||||
|
|
||||||
|
portalListener:
|
||||||
|
debugLevel: "4"
|
||||||
|
tlsMode: "off"
|
||||||
|
udmApiUrl: "http://ums-udm-rest-api/udm/"
|
||||||
|
udmApiUsername: "cn=admin"
|
||||||
|
umcGetUrl: "http://ums-umc-server/get"
|
||||||
|
umcSessionUrl: "http://ums-umc-server/get/session-info"
|
||||||
|
|
||||||
store-dav:
|
store-dav:
|
||||||
bundled: false
|
bundled: false
|
||||||
|
|
||||||
|
|||||||
@@ -4,16 +4,9 @@ SPDX-License-Identifier: Apache-2.0
|
|||||||
*/}}
|
*/}}
|
||||||
---
|
---
|
||||||
portalServer:
|
portalServer:
|
||||||
adminGroup: "cn=Domain Admins,cn=groups,dc=swp-ldap,dc=internal"
|
adminGroup: {{ printf "%s,%s" "cn=Domain Admins,cn=groups" .Values.ldap.baseDn | quote }}
|
||||||
authMode: "saml"
|
ucsInternalUrl: {{ printf "%s%s%s" "http://portal-server:" .Values.secrets.univentionManagementStack.storeDavUsers.portalServer "@ums-store-dav/portal-data" | quote }}
|
||||||
environment: "staging"
|
|
||||||
editable: "false"
|
|
||||||
logLevel: "DEBUG"
|
|
||||||
ucsInternalUrl: "http://portal-server:{{ .Values.secrets.univentionManagementStack.storeDavUsers.portalServer }}@ums-store-dav/portal-data"
|
|
||||||
umcGetUrl: "http://ums-umc-server/get"
|
|
||||||
umcSessionUrl: "http://ums-umc-server/get/session-info"
|
|
||||||
centralNavigation:
|
centralNavigation:
|
||||||
enabled: true
|
|
||||||
authenticatorSecret: {{ .Values.secrets.centralnavigation.apiKey | quote }}
|
authenticatorSecret: {{ .Values.secrets.centralnavigation.apiKey | quote }}
|
||||||
|
|
||||||
image:
|
image:
|
||||||
|
|||||||
@@ -0,0 +1,14 @@
|
|||||||
|
# SPDX-FileCopyrightText: 2023 Bundesministerium des Innern und für Heimat, PG ZenDiS "Projektgruppe für Aufbau ZenDiS"
|
||||||
|
# SPDX-License-Identifier: Apache-2.0
|
||||||
|
---
|
||||||
|
|
||||||
|
portalServer:
|
||||||
|
authMode: "saml"
|
||||||
|
editable: "false"
|
||||||
|
logLevel: "DEBUG"
|
||||||
|
umcGetUrl: "http://ums-umc-server/get"
|
||||||
|
umcSessionUrl: "http://ums-umc-server/get/session-info"
|
||||||
|
centralNavigation:
|
||||||
|
enabled: true
|
||||||
|
|
||||||
|
...
|
||||||
@@ -4,31 +4,29 @@ SPDX-License-Identifier: Apache-2.0
|
|||||||
*/}}
|
*/}}
|
||||||
---
|
---
|
||||||
stackDataSwp:
|
stackDataSwp:
|
||||||
udmApiUser: "cn=admin"
|
|
||||||
udmApiPassword: {{ .Values.secrets.univentionManagementStack.ldapSecret | quote }}
|
udmApiPassword: {{ .Values.secrets.univentionManagementStack.ldapSecret | quote }}
|
||||||
udmApiUrl: "http://ums-udm-rest-api/udm/"
|
|
||||||
loadDevData: true
|
|
||||||
|
|
||||||
stackDataContext:
|
stackDataContext:
|
||||||
ldapBase: "dc=swp-ldap,dc=internal"
|
|
||||||
ldapSearchUsers:
|
ldapSearchUsers:
|
||||||
{{- range $k, $v := .Values.secrets.univentionCorporateServer.ldapSearch }}
|
{{- range $username, $password := .Values.secrets.univentionCorporateServer.ldapSearch }}
|
||||||
- username: {{ printf "ldapsearch_%s" $k | quote }}
|
- username: {{ printf "ldapsearch_%s" $username | quote }}
|
||||||
password: {{ $v | quote }}
|
password: {{ $password | quote }}
|
||||||
lastname: {{ "LDAP-Search-User" }}
|
lastname: "LDAP-Search-User"
|
||||||
{{- end }}
|
{{- end }}
|
||||||
|
|
||||||
externalDomainName: "{{ .Values.global.domain }}"
|
externalDomainName: {{ .Values.global.domain | quote }}
|
||||||
externalMailDomain: "{{ .Values.global.domain }}"
|
externalMailDomain: {{ .Values.global.domain | quote }}
|
||||||
|
|
||||||
portalGroupwareLinkBase: "https://{{ .Values.global.hosts.openxchange }}.{{ .Values.istio.domain }}"
|
portalGroupwareLinkBase: {{ printf "https://%s.%s" .Values.global.hosts.openxchange .Values.istio.domain | quote }}
|
||||||
portalFileshareLinkBase: "https://{{ .Values.global.hosts.nextcloud }}.{{ .Values.global.domain }}"
|
portalFileshareLinkBase: {{ printf "https://%s.%s" .Values.global.hosts.nextcloud .Values.global.domain | quote }}
|
||||||
portalRealtimeCollaborationLinkBase: "https://{{ .Values.global.hosts.element }}.{{ .Values.global.domain }}"
|
portalRealtimeCollaborationLinkBase: {{ printf "https://%s.%s" .Values.global.hosts.element .Values.global.domain | quote }}
|
||||||
portalRealtimeVideoconferenceLinkBase: "https://{{ .Values.global.hosts.jitsi }}.{{ .Values.global.domain }}"
|
portalRealtimeVideoconferenceLinkBase: {{ printf "https://%s.%s" .Values.global.hosts.jitsi .Values.global.domain | quote }}
|
||||||
portalManagementProjectLinkBase: "https://{{ .Values.global.hosts.openproject }}.{{ .Values.global.domain }}"
|
portalManagementProjectLinkBase: {{ printf "https://%s.%s" .Values.global.hosts.openproject .Values.global.domain | quote }}
|
||||||
portalManagementKnowledgeLinkBase: "https://{{ .Values.global.hosts.xwiki }}.{{ .Values.global.domain }}"
|
portalManagementKnowledgeLinkBase: {{ printf "https://%s.%s" .Values.global.hosts.xwiki .Values.global.domain | quote }}
|
||||||
|
|
||||||
oxDefaultContext: "10"
|
smtpHost: {{ .Values.smtp.host | quote }}
|
||||||
|
smtpPort: {{ .Values.smtp.port | quote }}
|
||||||
|
smtpUser: {{ .Values.smtp.username | quote }}
|
||||||
|
|
||||||
userPassword: {{ .Values.secrets.univentionManagementStack.defaultAccounts.userPassword | quote }}
|
userPassword: {{ .Values.secrets.univentionManagementStack.defaultAccounts.userPassword | quote }}
|
||||||
adminPassword: {{ .Values.secrets.univentionManagementStack.defaultAccounts.adminPassword | quote }}
|
adminPassword: {{ .Values.secrets.univentionManagementStack.defaultAccounts.adminPassword | quote }}
|
||||||
|
|||||||
@@ -0,0 +1,14 @@
|
|||||||
|
# SPDX-FileCopyrightText: 2023 Bundesministerium des Innern und für Heimat, PG ZenDiS "Projektgruppe für Aufbau ZenDiS"
|
||||||
|
# SPDX-License-Identifier: Apache-2.0
|
||||||
|
---
|
||||||
|
stackDataSwp:
|
||||||
|
udmApiUser: "cn=admin"
|
||||||
|
udmApiUrl: "http://ums-udm-rest-api/udm/"
|
||||||
|
loadDevData: true
|
||||||
|
|
||||||
|
stackDataContext:
|
||||||
|
ldapBase: "dc=swp-ldap,dc=internal"
|
||||||
|
oxDefaultContext: "10"
|
||||||
|
smtpStartTls: true
|
||||||
|
|
||||||
|
...
|
||||||
@@ -4,32 +4,22 @@ SPDX-License-Identifier: Apache-2.0
|
|||||||
*/}}
|
*/}}
|
||||||
---
|
---
|
||||||
stackDataUms:
|
stackDataUms:
|
||||||
udmApiUser: "cn=admin"
|
|
||||||
udmApiPassword: {{ .Values.secrets.univentionManagementStack.ldapSecret | quote }}
|
udmApiPassword: {{ .Values.secrets.univentionManagementStack.ldapSecret | quote }}
|
||||||
udmApiUrl: "http://ums-udm-rest-api/udm/"
|
|
||||||
loadDevData: true
|
|
||||||
|
|
||||||
stackDataContext:
|
stackDataContext:
|
||||||
domainname: "{{ .Values.global.domain }}"
|
domainname: {{ .Values.global.domain | quote }}
|
||||||
externalMailDomain: "{{ .Values.global.domain }}"
|
externalMailDomain: {{ .Values.global.domain | quote }}
|
||||||
hostname: "{{ .Values.global.hosts.univentionManagementStack }}"
|
hostname: {{ .Values.global.hosts.univentionManagementStack | quote }}
|
||||||
ldapHost: "{{ .Values.ldap.host }}"
|
ldapHost: {{ .Values.ldap.host | quote }}
|
||||||
ldapBase: "dc=swp-ldap,dc=internal"
|
ldapBase: {{ .Values.ldap.baseDn | quote }}
|
||||||
# TODO: This should not be required, the machine account is not there
|
ldapHostDn: {{ printf "%s,%s" "cn=admin" .Values.ldap.baseDn | quote }}
|
||||||
# ldapHostDn: cn=stub-value,cn=dc,cn=computers,dc=swp-ldap,dc=internal
|
|
||||||
ldapHostDn: cn=admin,dc=swp-ldap,dc=internal
|
|
||||||
|
|
||||||
idpSamlMetadataUrl: "https://{{ .Values.global.hosts.keycloak }}.{{ .Values.global.domain }}/realms/souvap/protocol/saml/descriptor"
|
idpSamlMetadataUrl: {{ printf "https://%s.%s%s" .Values.global.hosts.keycloak .Values.global.domain "/realms/souvap/protocol/saml/descriptor" | quote }}
|
||||||
idpSamlMetadataUrlInternal: null
|
umcSamlSpFqdn: {{ printf "%s.%s" .Values.global.hosts.univentionManagementStack .Values.global.domain | quote }}
|
||||||
umcSamlSpFqdn: "{{ .Values.global.hosts.univentionManagementStack }}.{{ .Values.global.domain }}"
|
idpFqdn: {{ printf "%s.%s" .Values.global.hosts.keycloak .Values.global.domain | quote }}
|
||||||
umcSamlSchemes: "https"
|
ldapSamlSpUrls: {{ printf "https://%s.%s%s" .Values.global.hosts.univentionManagementStack .Values.global.domain "/univention/saml/metadata" | quote }}
|
||||||
idpFqdn: "{{ .Values.global.hosts.keycloak }}.{{ .Values.global.domain }}"
|
|
||||||
ldapSamlSpUrls: "https://{{ .Values.global.hosts.univentionManagementStack }}.{{ .Values.global.domain }}/univention/saml/metadata"
|
|
||||||
|
|
||||||
initialPasswordAdministrator: "{{ .Values.secrets.univentionManagementStack.defaultAccounts.administratorPassword }}"
|
initialPasswordAdministrator: {{ .Values.secrets.univentionManagementStack.defaultAccounts.administratorPassword | quote }}
|
||||||
|
|
||||||
# The SWP configuration brings its own UMC policies.
|
|
||||||
installUmcPolicies: false
|
|
||||||
|
|
||||||
image:
|
image:
|
||||||
registry: {{ .Values.global.imageRegistry | quote }}
|
registry: {{ .Values.global.imageRegistry | quote }}
|
||||||
|
|||||||
@@ -0,0 +1,15 @@
|
|||||||
|
# SPDX-FileCopyrightText: 2023 Bundesministerium des Innern und für Heimat, PG ZenDiS "Projektgruppe für Aufbau ZenDiS"
|
||||||
|
# SPDX-License-Identifier: Apache-2.0
|
||||||
|
---
|
||||||
|
stackDataUms:
|
||||||
|
loadDevData: true
|
||||||
|
udmApiUrl: "http://ums-udm-rest-api/udm/"
|
||||||
|
udmApiUser: "cn=admin"
|
||||||
|
|
||||||
|
stackDataContext:
|
||||||
|
idpSamlMetadataUrlInternal: null
|
||||||
|
umcSamlSchemes: "https"
|
||||||
|
# The openDesk configuration brings its own UMC policies.
|
||||||
|
installUmcPolicies: false
|
||||||
|
|
||||||
|
...
|
||||||
@@ -21,7 +21,6 @@ image:
|
|||||||
configHtpasswd:
|
configHtpasswd:
|
||||||
registry: {{ .Values.global.imageRegistry | quote }}
|
registry: {{ .Values.global.imageRegistry | quote }}
|
||||||
repository: {{ .Values.images.umsConfigHtpasswd.repository | quote }}
|
repository: {{ .Values.images.umsConfigHtpasswd.repository | quote }}
|
||||||
pullPolicy: "Always"
|
|
||||||
pullPolicy: {{ .Values.global.imagePullPolicy | quote }}
|
pullPolicy: {{ .Values.global.imagePullPolicy | quote }}
|
||||||
tag: {{ .Values.images.umsConfigHtpasswd.tag | quote }}
|
tag: {{ .Values.images.umsConfigHtpasswd.tag | quote }}
|
||||||
pullSecrets:
|
pullSecrets:
|
||||||
@@ -29,7 +28,6 @@ image:
|
|||||||
- name: {{ . | quote }}
|
- name: {{ . | quote }}
|
||||||
{{- end }}
|
{{- end }}
|
||||||
|
|
||||||
# TODO: Pending upstream support, #201
|
|
||||||
persistence:
|
persistence:
|
||||||
storageClassName: {{ .Values.persistence.storageClassNames.RWO | quote }}
|
storageClassName: {{ .Values.persistence.storageClassNames.RWO | quote }}
|
||||||
size: {{ .Values.persistence.size.univentionManagementStack.storeDav | quote }}
|
size: {{ .Values.persistence.size.univentionManagementStack.storeDav | quote }}
|
||||||
|
|||||||
@@ -7,12 +7,7 @@ udmRestApi:
|
|||||||
# TODO: Secret should be entered without b64enc
|
# TODO: Secret should be entered without b64enc
|
||||||
ldapSecret: {{ .Values.secrets.univentionManagementStack.ldapSecret | b64enc | quote }}
|
ldapSecret: {{ .Values.secrets.univentionManagementStack.ldapSecret | b64enc | quote }}
|
||||||
# TODO: Secret should be entered without b64enc
|
# TODO: Secret should be entered without b64enc
|
||||||
machineSecret: "{{ .Values.secrets.univentionManagementStack.ldapSecret | b64enc }}"
|
machineSecret: {{ .Values.secrets.univentionManagementStack.ldapSecret | b64enc | quote }}
|
||||||
# TODO: Stub value currently
|
|
||||||
caCert: ""
|
|
||||||
# TODO: This should not be part of the udm-rest-api anymore
|
|
||||||
loadJoinData:
|
|
||||||
enabled: true
|
|
||||||
|
|
||||||
image:
|
image:
|
||||||
registry: {{ .Values.global.imageRegistry | quote }}
|
registry: {{ .Values.global.imageRegistry | quote }}
|
||||||
|
|||||||
@@ -0,0 +1,21 @@
|
|||||||
|
# SPDX-FileCopyrightText: 2023 Bundesministerium des Innern und für Heimat, PG ZenDiS "Projektgruppe für Aufbau ZenDiS"
|
||||||
|
# SPDX-License-Identifier: Apache-2.0
|
||||||
|
---
|
||||||
|
udmRestApi:
|
||||||
|
# TODO: Stub value currently
|
||||||
|
caCert: ""
|
||||||
|
|
||||||
|
extraVolumes:
|
||||||
|
- name: "attribute-to-group-mapper-hook"
|
||||||
|
configMap:
|
||||||
|
name: "ums-stack-data-swp-attribute-to-group-mapper-hook"
|
||||||
|
|
||||||
|
extraVolumeMounts:
|
||||||
|
- name: "attribute-to-group-mapper-hook"
|
||||||
|
mountPath: "/usr/lib/python3/dist-packages/univention/admin/hooks.d/AttributeToGroupMapper.py"
|
||||||
|
subPath: "AttributeToGroupMapper.py"
|
||||||
|
- name: "attribute-to-group-mapper-hook"
|
||||||
|
mountPath: "/usr/share/attribute-to-group-mapper/flag_to_group_mapping.json"
|
||||||
|
subPath: "flag_to_group_mapping.json"
|
||||||
|
|
||||||
|
...
|
||||||
@@ -3,19 +3,6 @@ SPDX-FileCopyrightText: 2023 Bundesministerium des Innern und für Heimat, PG Ze
|
|||||||
SPDX-License-Identifier: Apache-2.0
|
SPDX-License-Identifier: Apache-2.0
|
||||||
*/}}
|
*/}}
|
||||||
---
|
---
|
||||||
umcGateway:
|
|
||||||
|
|
||||||
extraVolumes:
|
|
||||||
- name: "entrypoint-swp-patches"
|
|
||||||
configMap:
|
|
||||||
name: "ums-stack-data-swp-umc-gateway-entrypoint"
|
|
||||||
defaultMode: 0555
|
|
||||||
|
|
||||||
extraVolumeMounts:
|
|
||||||
- name: "entrypoint-swp-patches"
|
|
||||||
mountPath: "/entrypoint.d/90-swp.sh"
|
|
||||||
subPath: "90-swp.sh"
|
|
||||||
|
|
||||||
image:
|
image:
|
||||||
registry: {{ .Values.global.imageRegistry | quote }}
|
registry: {{ .Values.global.imageRegistry | quote }}
|
||||||
repository: {{ .Values.images.umsUmcGateway.repository | quote }}
|
repository: {{ .Values.images.umsUmcGateway.repository | quote }}
|
||||||
|
|||||||
@@ -0,0 +1,23 @@
|
|||||||
|
# SPDX-FileCopyrightText: 2023 Bundesministerium des Innern und für Heimat, PG ZenDiS "Projektgruppe für Aufbau ZenDiS"
|
||||||
|
# SPDX-License-Identifier: Apache-2.0
|
||||||
|
---
|
||||||
|
extraVolumes:
|
||||||
|
- name: "entrypoint-swp-patches"
|
||||||
|
configMap:
|
||||||
|
name: "ums-stack-data-swp-umc-gateway-entrypoint"
|
||||||
|
defaultMode: 0555
|
||||||
|
- name: "announcements-customization"
|
||||||
|
configMap:
|
||||||
|
name: "ums-stack-data-swp-umc-server-announcements"
|
||||||
|
defaultMode: 0444
|
||||||
|
|
||||||
|
extraVolumeMounts:
|
||||||
|
- name: "entrypoint-swp-patches"
|
||||||
|
mountPath: "/entrypoint.d/90-swp.sh"
|
||||||
|
subPath: "90-swp.sh"
|
||||||
|
- name: "announcements-customization"
|
||||||
|
mountPath:
|
||||||
|
"/usr/share/univention-management-console-frontend/js/dijit/themes\
|
||||||
|
/umc/icons/16x16/udm-portals-announcement.png"
|
||||||
|
subPath: "udm-portals-announcement.png"
|
||||||
|
...
|
||||||
@@ -9,6 +9,8 @@ umcServer:
|
|||||||
# TODO: Secret should be entered without b64enc
|
# TODO: Secret should be entered without b64enc
|
||||||
machineSecret: {{ .Values.secrets.univentionManagementStack.ldapSecret | b64enc | quote }}
|
machineSecret: {{ .Values.secrets.univentionManagementStack.ldapSecret | b64enc | quote }}
|
||||||
|
|
||||||
|
smtpSecret: {{ .Values.smtp.password | quote }}
|
||||||
|
|
||||||
image:
|
image:
|
||||||
registry: {{ .Values.global.imageRegistry | quote }}
|
registry: {{ .Values.global.imageRegistry | quote }}
|
||||||
repository: {{ .Values.images.umsUmcServer.repository | quote }}
|
repository: {{ .Values.images.umsUmcServer.repository | quote }}
|
||||||
|
|||||||
@@ -17,6 +17,13 @@ extraVolumes:
|
|||||||
configMap:
|
configMap:
|
||||||
name: "ums-stack-data-swp-self-service-emails"
|
name: "ums-stack-data-swp-self-service-emails"
|
||||||
defaultMode: 0444
|
defaultMode: 0444
|
||||||
|
- name: "attribute-to-group-mapper-hook"
|
||||||
|
configMap:
|
||||||
|
name: "ums-stack-data-swp-attribute-to-group-mapper-hook"
|
||||||
|
- name: "announcements-customization"
|
||||||
|
configMap:
|
||||||
|
name: "ums-stack-data-swp-umc-server-announcements"
|
||||||
|
defaultMode: 0444
|
||||||
|
|
||||||
extraVolumeMounts:
|
extraVolumeMounts:
|
||||||
- name: "certificates"
|
- name: "certificates"
|
||||||
@@ -26,5 +33,21 @@ extraVolumeMounts:
|
|||||||
subPath: "90-customization.sh"
|
subPath: "90-customization.sh"
|
||||||
- name: "self-service-emails"
|
- name: "self-service-emails"
|
||||||
mountPath: "/usr/share/univention-self-service/email_bodies"
|
mountPath: "/usr/share/univention-self-service/email_bodies"
|
||||||
|
- name: "attribute-to-group-mapper-hook"
|
||||||
|
mountPath: "/usr/lib/python3/dist-packages/univention/admin/hooks.d/AttributeToGroupMapper.py"
|
||||||
|
subPath: "AttributeToGroupMapper.py"
|
||||||
|
- name: "attribute-to-group-mapper-hook"
|
||||||
|
mountPath: "/usr/share/attribute-to-group-mapper/flag_to_group_mapping.json"
|
||||||
|
subPath: "flag_to_group_mapping.json"
|
||||||
|
- name: "announcements-customization"
|
||||||
|
mountPath: "/usr/share/univention-management-console/modules/udm-portals-announcement.xml"
|
||||||
|
subPath: "udm-portals-announcement.xml"
|
||||||
|
|
||||||
|
memcached:
|
||||||
|
bundled: false
|
||||||
|
server: "memcached"
|
||||||
|
auth:
|
||||||
|
username: null
|
||||||
|
password: null
|
||||||
|
|
||||||
...
|
...
|
||||||
|
|||||||
@@ -3,171 +3,10 @@
|
|||||||
---
|
---
|
||||||
|
|
||||||
ingress:
|
ingress:
|
||||||
enabled: true
|
enabled: {{ .Values.ingress.enabled }}
|
||||||
hostname: "{{ .Values.global.hosts.univentionManagementStack }}.{{ .Values.global.domain }}"
|
hostname: {{ printf "%s.%s" .Values.global.hosts.univentionManagementStack .Values.global.domain | quote }}
|
||||||
ingressClassName: "{{ .Values.ingress.ingressClassName }}"
|
ingressClassName: {{ .Values.ingress.ingressClassName | quote }}
|
||||||
tls: false
|
|
||||||
extraTls:
|
extraTls:
|
||||||
- hosts:
|
- hosts:
|
||||||
- "{{ .Values.global.hosts.univentionManagementStack }}.{{ .Values.global.domain }}"
|
- {{ printf "%s.%s" .Values.global.hosts.univentionManagementStack .Values.global.domain | quote }}
|
||||||
secretName: "{{ .Values.ingress.tls.secretName }}"
|
secretName: {{ .Values.ingress.tls.secretName | quote }}
|
||||||
|
|
||||||
service:
|
|
||||||
type: "ClusterIP"
|
|
||||||
|
|
||||||
# The content of the "serverBlock" does resemble the Ingress configuration of
|
|
||||||
# the UMS components. The "location" entries do intentionally reflect precisely
|
|
||||||
# the respective paths which are configured.
|
|
||||||
serverBlock: |
|
|
||||||
server {
|
|
||||||
listen 8080;
|
|
||||||
|
|
||||||
## portal-frontend
|
|
||||||
# The frontend does not own "/univention/portal", only these two bits
|
|
||||||
location = /univention/portal/ {
|
|
||||||
rewrite ^/univention/portal(/.*)$ $1 break;
|
|
||||||
proxy_pass http://ums-portal-frontend:80/;
|
|
||||||
}
|
|
||||||
location = /univention/portal/index.html {
|
|
||||||
rewrite ^/univention/portal(/.*)$ $1 break;
|
|
||||||
proxy_pass http://ums-portal-frontend:80/;
|
|
||||||
}
|
|
||||||
|
|
||||||
# The following prefixes are owned by the frontend
|
|
||||||
location /univention/portal/css/ {
|
|
||||||
rewrite ^/univention/portal(/.*)$ $1 break;
|
|
||||||
proxy_pass http://ums-portal-frontend:80;
|
|
||||||
}
|
|
||||||
location /univention/portal/fonts/ {
|
|
||||||
rewrite ^/univention/portal(/.*)$ $1 break;
|
|
||||||
proxy_pass http://ums-portal-frontend:80;
|
|
||||||
}
|
|
||||||
location /univention/portal/i18n/ {
|
|
||||||
rewrite ^/univention/portal(/.*)$ $1 break;
|
|
||||||
proxy_pass http://ums-portal-frontend:80;
|
|
||||||
}
|
|
||||||
location /univention/portal/media/ {
|
|
||||||
rewrite ^/univention/portal(/.*)$ $1 break;
|
|
||||||
proxy_pass http://ums-portal-frontend:80;
|
|
||||||
}
|
|
||||||
location /univention/portal/js/ {
|
|
||||||
rewrite ^/univention/portal(/.*)$ $1 break;
|
|
||||||
proxy_pass http://ums-portal-frontend:80;
|
|
||||||
}
|
|
||||||
location /univention/portal/oidc/ {
|
|
||||||
rewrite ^/univention/portal(/.*)$ $1 break;
|
|
||||||
proxy_pass http://ums-portal-frontend:80;
|
|
||||||
}
|
|
||||||
|
|
||||||
|
|
||||||
## frontend redirects
|
|
||||||
|
|
||||||
location = / {
|
|
||||||
absolute_redirect off;
|
|
||||||
return 302 /univention/portal/;
|
|
||||||
}
|
|
||||||
location = /univention {
|
|
||||||
absolute_redirect off;
|
|
||||||
return 302 /univention/portal/;
|
|
||||||
}
|
|
||||||
location = /univention/ {
|
|
||||||
absolute_redirect off;
|
|
||||||
return 302 /univention/portal/;
|
|
||||||
}
|
|
||||||
location = /univention/portal {
|
|
||||||
absolute_redirect off;
|
|
||||||
return 302 /univention/portal/;
|
|
||||||
}
|
|
||||||
|
|
||||||
|
|
||||||
## portal-server
|
|
||||||
location = /univention/portal/portal.json {
|
|
||||||
proxy_pass http://ums-portal-server:80;
|
|
||||||
}
|
|
||||||
location = /univention/portal/navigation.json {
|
|
||||||
proxy_pass http://ums-portal-server:80;
|
|
||||||
}
|
|
||||||
|
|
||||||
|
|
||||||
## store-dav
|
|
||||||
location /univention/portal/icons/entries/ {
|
|
||||||
rewrite ^/univention/portal(/icons/entries/.*)$ /portal-assets$1 break;
|
|
||||||
proxy_pass http://ums-store-dav:80;
|
|
||||||
}
|
|
||||||
location /univention/portal/icons/logos/ {
|
|
||||||
rewrite ^/univention/portal(/icons/logos/.*)$ /portal-assets$1 break;
|
|
||||||
proxy_pass http://ums-store-dav:80;
|
|
||||||
}
|
|
||||||
|
|
||||||
|
|
||||||
## udm-rest-api
|
|
||||||
location /univention/udm/ {
|
|
||||||
rewrite ^/univention(/udm/.*)$ $1 break;
|
|
||||||
proxy_pass http://ums-udm-rest-api:80;
|
|
||||||
proxy_set_header X-Forwarded-Host $host;
|
|
||||||
}
|
|
||||||
|
|
||||||
|
|
||||||
## umc-gateway
|
|
||||||
location = /univention/languages.json {
|
|
||||||
proxy_pass http://ums-umc-gateway:80;
|
|
||||||
}
|
|
||||||
location = /univention/meta.json {
|
|
||||||
proxy_pass http://ums-umc-gateway:80;
|
|
||||||
}
|
|
||||||
location = /univention/theme.css {
|
|
||||||
proxy_pass http://ums-umc-gateway:80;
|
|
||||||
}
|
|
||||||
location /univention/js/ {
|
|
||||||
proxy_pass http://ums-umc-gateway:80;
|
|
||||||
}
|
|
||||||
location /univention/login/ {
|
|
||||||
proxy_pass http://ums-umc-gateway:80;
|
|
||||||
}
|
|
||||||
location /univention/management/ {
|
|
||||||
proxy_pass http://ums-umc-gateway:80;
|
|
||||||
}
|
|
||||||
location /univention/themes/ {
|
|
||||||
proxy_pass http://ums-umc-gateway:80;
|
|
||||||
}
|
|
||||||
|
|
||||||
|
|
||||||
## umc-server
|
|
||||||
location = /univention/auth {
|
|
||||||
rewrite ^/univention(/.*)$ $1 break;
|
|
||||||
proxy_pass http://ums-umc-server:80;
|
|
||||||
}
|
|
||||||
location /univention/logout/ {
|
|
||||||
rewrite ^/univention(/.*)$ $1 break;
|
|
||||||
proxy_pass http://ums-umc-server:80;
|
|
||||||
}
|
|
||||||
location /univention/saml/ {
|
|
||||||
rewrite ^/univention(/.*)$ $1 break;
|
|
||||||
proxy_pass http://ums-umc-server:80;
|
|
||||||
}
|
|
||||||
location /univention/get/ {
|
|
||||||
rewrite ^/univention(/.*)$ $1 break;
|
|
||||||
proxy_pass http://ums-umc-server:80;
|
|
||||||
}
|
|
||||||
location /univention/set/ {
|
|
||||||
rewrite ^/univention(/.*)$ $1 break;
|
|
||||||
proxy_pass http://ums-umc-server:80;
|
|
||||||
}
|
|
||||||
location /univention/command/ {
|
|
||||||
rewrite ^/univention(/.*)$ $1 break;
|
|
||||||
proxy_pass http://ums-umc-server:80;
|
|
||||||
}
|
|
||||||
location /univention/upload/ {
|
|
||||||
rewrite ^/univention(/.*)$ $1 break;
|
|
||||||
proxy_pass http://ums-umc-server:80;
|
|
||||||
}
|
|
||||||
|
|
||||||
|
|
||||||
## notifications-api
|
|
||||||
|
|
||||||
location /univention/portal/notifications-api/ {
|
|
||||||
rewrite ^/univention/portal/notifications-api(/.*)$ $1 break;
|
|
||||||
proxy_pass http://ums-notifications-api:80;
|
|
||||||
}
|
|
||||||
|
|
||||||
}
|
|
||||||
|
|||||||
@@ -0,0 +1,177 @@
|
|||||||
|
# SPDX-FileCopyrightText: 2023 Bundesministerium des Innern und für Heimat, PG ZenDiS "Projektgruppe für Aufbau ZenDiS"
|
||||||
|
# SPDX-License-Identifier: Apache-2.0
|
||||||
|
---
|
||||||
|
ingress:
|
||||||
|
tls: false
|
||||||
|
|
||||||
|
service:
|
||||||
|
type: "ClusterIP"
|
||||||
|
|
||||||
|
# The content of the "serverBlock" does resemble the Ingress configuration of
|
||||||
|
# the UMS components. The "location" entries do intentionally reflect precisely
|
||||||
|
# the respective paths which are configured.
|
||||||
|
serverBlock: |
|
||||||
|
server {
|
||||||
|
listen 8080;
|
||||||
|
|
||||||
|
## portal-frontend
|
||||||
|
# The frontend does not own "/univention/portal", only these two bits
|
||||||
|
location = /univention/portal/ {
|
||||||
|
rewrite ^/univention/portal(/.*)$ $1 break;
|
||||||
|
proxy_pass http://ums-portal-frontend:80/;
|
||||||
|
}
|
||||||
|
location = /univention/portal/index.html {
|
||||||
|
rewrite ^/univention/portal(/.*)$ $1 break;
|
||||||
|
proxy_pass http://ums-portal-frontend:80/;
|
||||||
|
}
|
||||||
|
|
||||||
|
# The following prefixes are owned by the frontend
|
||||||
|
location /univention/portal/css/ {
|
||||||
|
rewrite ^/univention/portal(/.*)$ $1 break;
|
||||||
|
proxy_pass http://ums-portal-frontend:80;
|
||||||
|
}
|
||||||
|
location /univention/portal/fonts/ {
|
||||||
|
rewrite ^/univention/portal(/.*)$ $1 break;
|
||||||
|
proxy_pass http://ums-portal-frontend:80;
|
||||||
|
}
|
||||||
|
location /univention/portal/i18n/ {
|
||||||
|
rewrite ^/univention/portal(/.*)$ $1 break;
|
||||||
|
proxy_pass http://ums-portal-frontend:80;
|
||||||
|
}
|
||||||
|
location /univention/portal/media/ {
|
||||||
|
rewrite ^/univention/portal(/.*)$ $1 break;
|
||||||
|
proxy_pass http://ums-portal-frontend:80;
|
||||||
|
}
|
||||||
|
location /univention/portal/js/ {
|
||||||
|
rewrite ^/univention/portal(/.*)$ $1 break;
|
||||||
|
proxy_pass http://ums-portal-frontend:80;
|
||||||
|
}
|
||||||
|
location /univention/portal/oidc/ {
|
||||||
|
rewrite ^/univention/portal(/.*)$ $1 break;
|
||||||
|
proxy_pass http://ums-portal-frontend:80;
|
||||||
|
}
|
||||||
|
|
||||||
|
|
||||||
|
## frontend redirects
|
||||||
|
location = / {
|
||||||
|
absolute_redirect off;
|
||||||
|
return 302 /univention/portal/;
|
||||||
|
}
|
||||||
|
location = /univention {
|
||||||
|
absolute_redirect off;
|
||||||
|
return 302 /univention/portal/;
|
||||||
|
}
|
||||||
|
location = /univention/ {
|
||||||
|
absolute_redirect off;
|
||||||
|
return 302 /univention/portal/;
|
||||||
|
}
|
||||||
|
location = /univention/portal {
|
||||||
|
absolute_redirect off;
|
||||||
|
return 302 /univention/portal/;
|
||||||
|
}
|
||||||
|
|
||||||
|
|
||||||
|
## portal-server
|
||||||
|
location = /univention/portal/portal.json {
|
||||||
|
proxy_pass http://ums-portal-server:80;
|
||||||
|
}
|
||||||
|
location = /univention/portal/navigation.json {
|
||||||
|
proxy_pass http://ums-portal-server:80;
|
||||||
|
}
|
||||||
|
|
||||||
|
|
||||||
|
## store-dav
|
||||||
|
location /univention/portal/icons/entries/ {
|
||||||
|
rewrite ^/univention/portal(/icons/entries/.*)$ /portal-assets$1 break;
|
||||||
|
proxy_pass http://ums-store-dav:80;
|
||||||
|
}
|
||||||
|
location /univention/portal/icons/logos/ {
|
||||||
|
rewrite ^/univention/portal(/icons/logos/.*)$ /portal-assets$1 break;
|
||||||
|
proxy_pass http://ums-store-dav:80;
|
||||||
|
}
|
||||||
|
|
||||||
|
|
||||||
|
## udm-rest-api
|
||||||
|
location /univention/udm/ {
|
||||||
|
rewrite ^/univention(/udm/.*)$ $1 break;
|
||||||
|
proxy_pass http://ums-udm-rest-api:80;
|
||||||
|
proxy_set_header X-Forwarded-Host $host;
|
||||||
|
}
|
||||||
|
|
||||||
|
|
||||||
|
## umc-gateway
|
||||||
|
location = /univention/languages.json {
|
||||||
|
proxy_pass http://ums-umc-gateway:80;
|
||||||
|
}
|
||||||
|
location = /univention/meta.json {
|
||||||
|
proxy_pass http://ums-umc-gateway:80;
|
||||||
|
}
|
||||||
|
location = /univention/theme.css {
|
||||||
|
proxy_pass http://ums-umc-gateway:80;
|
||||||
|
}
|
||||||
|
location /univention/js/ {
|
||||||
|
proxy_pass http://ums-umc-gateway:80;
|
||||||
|
}
|
||||||
|
location /univention/login/ {
|
||||||
|
proxy_pass http://ums-umc-gateway:80;
|
||||||
|
}
|
||||||
|
location /univention/management/ {
|
||||||
|
proxy_pass http://ums-umc-gateway:80;
|
||||||
|
}
|
||||||
|
location /univention/themes/ {
|
||||||
|
proxy_pass http://ums-umc-gateway:80;
|
||||||
|
}
|
||||||
|
|
||||||
|
|
||||||
|
## umc-server
|
||||||
|
location = /univention/auth {
|
||||||
|
rewrite ^/univention(/.*)$ $1 break;
|
||||||
|
proxy_pass http://ums-umc-server:80;
|
||||||
|
}
|
||||||
|
location /univention/logout/ {
|
||||||
|
rewrite ^/univention(/.*)$ $1 break;
|
||||||
|
proxy_pass http://ums-umc-server:80;
|
||||||
|
}
|
||||||
|
location /univention/saml/ {
|
||||||
|
rewrite ^/univention(/.*)$ $1 break;
|
||||||
|
proxy_pass http://ums-umc-server:80;
|
||||||
|
}
|
||||||
|
location /univention/get/ {
|
||||||
|
rewrite ^/univention(/.*)$ $1 break;
|
||||||
|
proxy_pass http://ums-umc-server:80;
|
||||||
|
}
|
||||||
|
location /univention/set/ {
|
||||||
|
rewrite ^/univention(/.*)$ $1 break;
|
||||||
|
proxy_pass http://ums-umc-server:80;
|
||||||
|
}
|
||||||
|
location /univention/command/ {
|
||||||
|
rewrite ^/univention(/.*)$ $1 break;
|
||||||
|
proxy_pass http://ums-umc-server:80;
|
||||||
|
}
|
||||||
|
location /univention/upload/ {
|
||||||
|
rewrite ^/univention(/.*)$ $1 break;
|
||||||
|
proxy_pass http://ums-umc-server:80;
|
||||||
|
}
|
||||||
|
|
||||||
|
|
||||||
|
## notifications-api
|
||||||
|
location /univention/portal/notifications-api/ {
|
||||||
|
rewrite ^/univention/portal/notifications-api(/.*)$ $1 break;
|
||||||
|
proxy_pass http://ums-notifications-api:80;
|
||||||
|
}
|
||||||
|
|
||||||
|
## openDesk branding
|
||||||
|
location = /favicon.ico {
|
||||||
|
proxy_pass http://ums-portal-frontend:80/;
|
||||||
|
}
|
||||||
|
location /univention/portal/custom/ {
|
||||||
|
rewrite ^/univention/portal(/.*)$ $1 break;
|
||||||
|
proxy_pass http://ums-portal-frontend:80/;
|
||||||
|
}
|
||||||
|
location /univention/portal/icons/ {
|
||||||
|
rewrite ^/univention/portal(/.*)$ $1 break;
|
||||||
|
proxy_pass http://ums-portal-frontend:80/;
|
||||||
|
}
|
||||||
|
|
||||||
|
}
|
||||||
|
...
|
||||||
@@ -14,6 +14,11 @@ repositories:
|
|||||||
default "https://xwiki-contrib.github.io/xwiki-helm" }}
|
default "https://xwiki-contrib.github.io/xwiki-helm" }}
|
||||||
|
|
||||||
releases:
|
releases:
|
||||||
|
# renovate:
|
||||||
|
# registryUrl=https://xwiki-contrib.github.io/xwiki-helm
|
||||||
|
# packageName=xwiki
|
||||||
|
# dataSource=helm
|
||||||
|
# dependencyType=vendor
|
||||||
- name: "xwiki"
|
- name: "xwiki"
|
||||||
chart: "xwiki-repo/xwiki"
|
chart: "xwiki-repo/xwiki"
|
||||||
version: "1.2.3"
|
version: "1.2.3"
|
||||||
|
|||||||
@@ -16,7 +16,7 @@ externalDB:
|
|||||||
|
|
||||||
customConfigs:
|
customConfigs:
|
||||||
"xwiki.cfg":
|
"xwiki.cfg":
|
||||||
"xwiki.superadminpassword": {{ .Values.secrets.xwiki.superadminpassword | quote }}
|
xwiki.superadminpassword: {{ .Values.secrets.xwiki.superadminpassword | quote }}
|
||||||
## LDAP Server configuration
|
## LDAP Server configuration
|
||||||
xwiki.authentication.ldap.server: {{ .Values.ldap.host | quote }}
|
xwiki.authentication.ldap.server: {{ .Values.ldap.host | quote }}
|
||||||
xwiki.authentication.ldap.port: 389
|
xwiki.authentication.ldap.port: 389
|
||||||
@@ -25,6 +25,8 @@ customConfigs:
|
|||||||
xwiki.authentication.ldap.bind_pass: {{ .Values.secrets.univentionCorporateServer.ldapSearch.xwiki | quote }}
|
xwiki.authentication.ldap.bind_pass: {{ .Values.secrets.univentionCorporateServer.ldapSearch.xwiki | quote }}
|
||||||
## Base DN used for searching for users
|
## Base DN used for searching for users
|
||||||
xwiki.authentication.ldap.base_DN: "dc=swp-ldap,dc=internal"
|
xwiki.authentication.ldap.base_DN: "dc=swp-ldap,dc=internal"
|
||||||
|
## Allow short update cycles of the LDAP group cache
|
||||||
|
xwiki.authentication.ldap.groupcache_expiration: 300
|
||||||
|
|
||||||
"xwiki.properties":
|
"xwiki.properties":
|
||||||
"oidc.endpoint.authorization": "https://{{ .Values.global.hosts.keycloak }}.{{ .Values.global.domain }}/realms/souvap/protocol/openid-connect/auth"
|
"oidc.endpoint.authorization": "https://{{ .Values.global.hosts.keycloak }}.{{ .Values.global.domain }}/realms/souvap/protocol/openid-connect/auth"
|
||||||
|
|||||||
@@ -10,9 +10,9 @@ customConfigs:
|
|||||||
## Indicate the LDAP field defining the user UID
|
## Indicate the LDAP field defining the user UID
|
||||||
xwiki.authentication.ldap.UID_attr: "uid"
|
xwiki.authentication.ldap.UID_attr: "uid"
|
||||||
## Indicate the LDAP field defining the user profile picture
|
## Indicate the LDAP field defining the user profile picture
|
||||||
# xwiki.authentication.ldap.photo_attribute: "jpegPhoto"
|
xwiki.authentication.ldap.photo_attribute: "jpegPhoto"
|
||||||
## Enable the synchronization of the LDAP profile picture
|
## Enable the synchronization of the LDAP profile picture
|
||||||
# xwiki.authentication.ldap.update_photo: 1
|
xwiki.authentication.ldap.update_photo: 1
|
||||||
|
|
||||||
xwiki.properties:
|
xwiki.properties:
|
||||||
oidc.scope: "openid,profile,email,address,phoenix"
|
oidc.scope: "openid,profile,email,address,phoenix"
|
||||||
@@ -80,8 +80,10 @@ properties:
|
|||||||
"property:xwiki:LDAPUserImport.WebHome^LDAPUserImport.LDAPUserImportConfigClass.ldapGroupImportSearchDN":
|
"property:xwiki:LDAPUserImport.WebHome^LDAPUserImport.LDAPUserImportConfigClass.ldapGroupImportSearchDN":
|
||||||
"dc=swp-ldap,dc=internal"
|
"dc=swp-ldap,dc=internal"
|
||||||
## LDAP filter to only synchronize some groups
|
## LDAP filter to only synchronize some groups
|
||||||
|
# "property:xwiki:LDAPUserImport.WebHome^LDAPUserImport.LDAPUserImportConfigClass.ldapGroupImportSearchFilter":
|
||||||
|
# "(&(objectClass=opendeskKnowledgemanagementGroup)(opendeskKnowledgemanagementEnabled=TRUE))"
|
||||||
"property:xwiki:LDAPUserImport.WebHome^LDAPUserImport.LDAPUserImportConfigClass.ldapGroupImportSearchFilter":
|
"property:xwiki:LDAPUserImport.WebHome^LDAPUserImport.LDAPUserImportConfigClass.ldapGroupImportSearchFilter":
|
||||||
"(&(objectClass=opendeskKnowledgemanagementGroup)(opendeskKnowledgemanagementEnabled=TRUE))"
|
"(objectClass=opendeskKnowledgemanagementGroup)"
|
||||||
|
|
||||||
securityContext:
|
securityContext:
|
||||||
enabled: true
|
enabled: true
|
||||||
|
|||||||
@@ -7,4 +7,5 @@ SPDX-License-Identifier: Apache-2.0
|
|||||||
ldap:
|
ldap:
|
||||||
host: {{ if eq (env "DEPLOY_UCS") "ums-eval" }} "ums-ldap-server" {{ else }} "univention-corporate-container" {{ end }}
|
host: {{ if eq (env "DEPLOY_UCS") "ums-eval" }} "ums-ldap-server" {{ else }} "univention-corporate-container" {{ end }}
|
||||||
notifierHost: {{ if eq (env "DEPLOY_UCS") "ums-eval" }} "ums-ldap-notifier" {{ else }} "univention-corporate-container" {{ end }}
|
notifierHost: {{ if eq (env "DEPLOY_UCS") "ums-eval" }} "ums-ldap-notifier" {{ else }} "univention-corporate-container" {{ end }}
|
||||||
|
baseDn: "dc=swp-ldap,dc=internal"
|
||||||
...
|
...
|
||||||
|
|||||||
@@ -19,6 +19,12 @@ databases:
|
|||||||
host: "mariadb"
|
host: "mariadb"
|
||||||
username: "nextcloud_user"
|
username: "nextcloud_user"
|
||||||
password: ""
|
password: ""
|
||||||
|
notificationsApi:
|
||||||
|
name: "notificationsapi"
|
||||||
|
host: "postgresql"
|
||||||
|
port: 5432
|
||||||
|
username: "notificationsapi_user"
|
||||||
|
password: ""
|
||||||
openproject:
|
openproject:
|
||||||
name: "openproject"
|
name: "openproject"
|
||||||
host: "postgresql"
|
host: "postgresql"
|
||||||
|
|||||||
@@ -3,298 +3,508 @@
|
|||||||
---
|
---
|
||||||
images:
|
images:
|
||||||
clamd:
|
clamd:
|
||||||
|
# renovate:
|
||||||
|
# registryUrl=https://docker.io
|
||||||
|
# dependencyType=service
|
||||||
repository: "clamav/clamav"
|
repository: "clamav/clamav"
|
||||||
tag: "1.1.1-10_base@sha256:aed8d5a3ef58352c862028fae44241215a50eae0b9acb7ba8892b1edc0a6598f"
|
tag: "1.1.1-10_base@sha256:aed8d5a3ef58352c862028fae44241215a50eae0b9acb7ba8892b1edc0a6598f"
|
||||||
# @supplier: "openDesk DevSecOps"
|
# @supplier: "openDesk DevSecOps"
|
||||||
collabora:
|
collabora:
|
||||||
|
# renovate:
|
||||||
|
# registryUrl=https://registry.souvap-univention.de
|
||||||
|
# dependencyType=vendor
|
||||||
repository: "souvap/tooling/images/collabora"
|
repository: "souvap/tooling/images/collabora"
|
||||||
tag: "23.05.5.4.1@sha256:ff48ec379f0d63e50b7714d1fa0f8f8de4247595dfa78754c44786a79c4968e4"
|
tag: "23.05.5.4.1@sha256:ff48ec379f0d63e50b7714d1fa0f8f8de4247595dfa78754c44786a79c4968e4"
|
||||||
# @supplier: "Collabora"
|
# @supplier: "Collabora"
|
||||||
cryptpad:
|
cryptpad:
|
||||||
|
# renovate:
|
||||||
|
# registryUrl=https://docker.io
|
||||||
|
# dependencyType=vendor
|
||||||
repository: "cryptpad/cryptpad"
|
repository: "cryptpad/cryptpad"
|
||||||
tag: "opendesk-20231020@sha256:b0bfe09601d8c8064e1b174d21a225ddb10aaa4103892fdfdf3d216726c26dde"
|
tag: "opendesk-20231020@sha256:b0bfe09601d8c8064e1b174d21a225ddb10aaa4103892fdfdf3d216726c26dde"
|
||||||
# @supplier: "XWiki"
|
# @supplier: "XWiki"
|
||||||
dovecot:
|
dovecot:
|
||||||
|
# renovate:
|
||||||
|
# registryUrl=https://registry.souvap-univention.de
|
||||||
|
# dependencyType=vendor
|
||||||
repository: "souvap/tooling/images/dovecot-public-sector"
|
repository: "souvap/tooling/images/dovecot-public-sector"
|
||||||
tag: "2.3.21@sha256:c76965a84d1ca527f523404eb027119f6736b199c094e4671037cb345ecad3dc"
|
tag: "2.3.21@sha256:c76965a84d1ca527f523404eb027119f6736b199c094e4671037cb345ecad3dc"
|
||||||
# @supplier: "Open-Xchange"
|
# @supplier: "Open-Xchange"
|
||||||
element:
|
element:
|
||||||
|
# renovate:
|
||||||
|
# registryUrl=https://registry.souvap-univention.de
|
||||||
|
# dependencyType=vendor
|
||||||
repository: "souvap/tooling/images/element-web"
|
repository: "souvap/tooling/images/element-web"
|
||||||
tag: "1.6.0@sha256:a71cbd75ee88471e3df59f26a2a37b9b8ff83d2f71f726053acd381ecd87e234"
|
tag: "1.6.0@sha256:a71cbd75ee88471e3df59f26a2a37b9b8ff83d2f71f726053acd381ecd87e234"
|
||||||
# @supplier: "Element"
|
# @supplier: "Element"
|
||||||
freshclam:
|
freshclam:
|
||||||
|
# renovate:
|
||||||
|
# registryUrl=https://docker.io
|
||||||
|
# dependencyType=service
|
||||||
repository: "clamav/clamav"
|
repository: "clamav/clamav"
|
||||||
tag: "1.1.1-10_base@sha256:aed8d5a3ef58352c862028fae44241215a50eae0b9acb7ba8892b1edc0a6598f"
|
tag: "1.1.1-10_base@sha256:aed8d5a3ef58352c862028fae44241215a50eae0b9acb7ba8892b1edc0a6598f"
|
||||||
# @supplier: "openDesk DevSecOps"
|
# @supplier: "openDesk DevSecOps"
|
||||||
icap:
|
icap:
|
||||||
|
# renovate:
|
||||||
|
# registryUrl=https://registry.souvap-univention.de
|
||||||
|
# dependencyType=service
|
||||||
repository: "souvap/tooling/images/c-icap"
|
repository: "souvap/tooling/images/c-icap"
|
||||||
tag: "0.5.10@sha256:cd665e77a42460bb1e6df4282bc1d8737be241fc9f4143d43509e31de3a7993d"
|
tag: "0.5.10@sha256:cd665e77a42460bb1e6df4282bc1d8737be241fc9f4143d43509e31de3a7993d"
|
||||||
# @supplier: "openDesk DevSecOps"
|
# @supplier: "openDesk DevSecOps"
|
||||||
intercom:
|
intercom:
|
||||||
|
# renovate:
|
||||||
|
# registryUrl=https://quay.io
|
||||||
|
# dependencyType=vendor
|
||||||
repository: "univention/intercom-service"
|
repository: "univention/intercom-service"
|
||||||
tag: "1.6@sha256:f32c1e52fa132e9dc6973e9f8ed36a98c5c3e0bcd51c60f9a683e7e528dd2306"
|
tag: "1.6@sha256:f32c1e52fa132e9dc6973e9f8ed36a98c5c3e0bcd51c60f9a683e7e528dd2306"
|
||||||
# @supplier: "Univention"
|
# @supplier: "Univention"
|
||||||
jibri:
|
jibri:
|
||||||
|
# renovate:
|
||||||
|
# registryUrl=https://docker.io
|
||||||
|
# dependencyType=vendor
|
||||||
repository: "jitsi/jibri"
|
repository: "jitsi/jibri"
|
||||||
tag: "stable-8922@sha256:87aa176b44b745b13769f13b8e2d22ddd6f6ba624244d5354c8dd3664787e936"
|
tag: "stable-8922@sha256:87aa176b44b745b13769f13b8e2d22ddd6f6ba624244d5354c8dd3664787e936"
|
||||||
# @supplier: "Nordeck"
|
# @supplier: "Nordeck"
|
||||||
jicofo:
|
jicofo:
|
||||||
|
# renovate:
|
||||||
|
# registryUrl=https://docker.io
|
||||||
|
# dependencyType=vendor
|
||||||
repository: "jitsi/jicofo"
|
repository: "jitsi/jicofo"
|
||||||
tag: "stable-8922@sha256:820fcd4b072b29f42c1c37389fbefda1065f1e9654694941485dc08123c8a93b"
|
tag: "stable-8922@sha256:820fcd4b072b29f42c1c37389fbefda1065f1e9654694941485dc08123c8a93b"
|
||||||
# @supplier: "Nordeck"
|
# @supplier: "Nordeck"
|
||||||
jitsi:
|
jitsi:
|
||||||
|
# renovate:
|
||||||
|
# registryUrl=https://docker.io
|
||||||
|
# dependencyType=vendor
|
||||||
repository: "jitsi/web"
|
repository: "jitsi/web"
|
||||||
tag: "stable-8922@sha256:24bd4179998fe01ace1be74e53fea5308f4d91722953bb4334611e6886753f46"
|
tag: "stable-8922@sha256:24bd4179998fe01ace1be74e53fea5308f4d91722953bb4334611e6886753f46"
|
||||||
# @supplier: "Nordeck"
|
# @supplier: "Nordeck"
|
||||||
jitsiKeycloakAdapter:
|
jitsiKeycloakAdapter:
|
||||||
|
# renovate:
|
||||||
|
# registryUrl=https://ghcr.io
|
||||||
|
# dependencyType=vendor
|
||||||
repository: "nordeck/jitsi-keycloak-adapter"
|
repository: "nordeck/jitsi-keycloak-adapter"
|
||||||
tag: "v20230906@sha256:54d45ee1a1205f98641810ffb171bd92e6478e2957a349ee4ff599359239fbf2"
|
tag: "v20230906@sha256:54d45ee1a1205f98641810ffb171bd92e6478e2957a349ee4ff599359239fbf2"
|
||||||
# @supplier: "Nordeck"
|
# @supplier: "Nordeck"
|
||||||
jitsiPatchJVB:
|
jitsiPatchJVB:
|
||||||
|
# renovate:
|
||||||
|
# registryUrl=https://docker.io
|
||||||
|
# dependencyType=vendor
|
||||||
repository: "bitnami/kubectl"
|
repository: "bitnami/kubectl"
|
||||||
tag: "1.26.8@sha256:c6902a1fdce0a24c9f93ac8d1f317039b206a4b307d8fc76cab4a92911345757"
|
tag: "1.26.8@sha256:c6902a1fdce0a24c9f93ac8d1f317039b206a4b307d8fc76cab4a92911345757"
|
||||||
# @supplier: "Nordeck"
|
# @supplier: "Nordeck"
|
||||||
jvb:
|
jvb:
|
||||||
|
# renovate:
|
||||||
|
# registryUrl=https://docker.io
|
||||||
|
# dependencyType=vendor
|
||||||
repository: "jitsi/jvb"
|
repository: "jitsi/jvb"
|
||||||
tag: "stable-8922@sha256:75dd613807e19cbbd440d071b60609fa9e4ee50a1396b14deb0ed779d882a554"
|
tag: "stable-8922@sha256:75dd613807e19cbbd440d071b60609fa9e4ee50a1396b14deb0ed779d882a554"
|
||||||
# @supplier: "Nordeck"
|
# @supplier: "Nordeck"
|
||||||
keycloak:
|
keycloak:
|
||||||
|
# renovate:
|
||||||
|
# registryUrl=https://docker.io
|
||||||
|
# dependencyType=vendor
|
||||||
repository: "bitnami/keycloak"
|
repository: "bitnami/keycloak"
|
||||||
tag: "19.0.3-debian-11-r22@sha256:4ac04104d20d4861ecca24ff2d07d71b34a98ee1148c6e6b6e7969a6b2ad085e"
|
tag: "19.0.3-debian-11-r22@sha256:4ac04104d20d4861ecca24ff2d07d71b34a98ee1148c6e6b6e7969a6b2ad085e"
|
||||||
# @supplier: "Univention"
|
# @supplier: "Univention"
|
||||||
keycloakUnivention:
|
keycloakUnivention:
|
||||||
|
# renovate:
|
||||||
|
# registryUrl=https://registry.souvap-univention.de
|
||||||
|
# dependencyType=vendor
|
||||||
# This is a preview and not part of the standard deployment.
|
# This is a preview and not part of the standard deployment.
|
||||||
repository: "souvap/tooling/images/univention/keycloak-app-on-use-base-manpub-tr"
|
repository: "souvap/tooling/images/univention/keycloak-app-on-use-base-manpub-tr"
|
||||||
tag: "latest"
|
tag: "latest"
|
||||||
# @supplier: "Univention"
|
# @supplier: "Univention"
|
||||||
keycloakBootstrap:
|
keycloakBootstrap:
|
||||||
|
# renovate:
|
||||||
|
# registryUrl=https://registry.souvap-univention.de
|
||||||
|
# dependencyType=service
|
||||||
repository: "souvap/tooling/images/ansible"
|
repository: "souvap/tooling/images/ansible"
|
||||||
tag: "4.10.0@sha256:89d8212c20e03b0fd079e08afaf3247c1b96b380c4db1b572d68d0b4a6abc0ac"
|
tag: "4.10.0@sha256:89d8212c20e03b0fd079e08afaf3247c1b96b380c4db1b572d68d0b4a6abc0ac"
|
||||||
# @supplier: "openDesk DevSecOps"
|
# @supplier: "openDesk DevSecOps"
|
||||||
keycloakExtensionHandler:
|
keycloakExtensionHandler:
|
||||||
|
# renovate:
|
||||||
|
# registryUrl=https://registry.souvap-univention.de
|
||||||
|
# dependencyType=vendor
|
||||||
repository: "souvap/tooling/images/keycloak-extensions/keycloak-handler"
|
repository: "souvap/tooling/images/keycloak-extensions/keycloak-handler"
|
||||||
tag: "latest@sha256:e67bdfc655e43b7fb83b025e13f949b04fdd98e089b33401275d03e340e03e2e"
|
tag: "latest@sha256:e67bdfc655e43b7fb83b025e13f949b04fdd98e089b33401275d03e340e03e2e"
|
||||||
# @supplier: "Univention"
|
# @supplier: "Univention"
|
||||||
keycloakExtensionProxy:
|
keycloakExtensionProxy:
|
||||||
|
# renovate:
|
||||||
|
# registryUrl=https://registry.souvap-univention.de
|
||||||
|
# dependencyType=vendor
|
||||||
repository: "souvap/tooling/images/keycloak-extensions/keycloak-proxy"
|
repository: "souvap/tooling/images/keycloak-extensions/keycloak-proxy"
|
||||||
tag: "latest@sha256:57026fb4ba7d4579461e7ddd4b1b8ce9585d1cac4adbe64040f5e1063c80a6ba"
|
tag: "latest@sha256:57026fb4ba7d4579461e7ddd4b1b8ce9585d1cac4adbe64040f5e1063c80a6ba"
|
||||||
# @supplier: "Univention"
|
# @supplier: "Univention"
|
||||||
mariadb:
|
mariadb:
|
||||||
|
# renovate:
|
||||||
|
# registryUrl=https://docker.io
|
||||||
|
# dependencyType=service
|
||||||
repository: "mariadb"
|
repository: "mariadb"
|
||||||
# For upgrades at least confirm compatibility of target version with OX (regarding AS Guard)
|
# For upgrades at least confirm compatibility of target version with OX (regarding AS Guard)
|
||||||
tag: "10.5@sha256:aa1ccc18000c32d1f39ac0b055117b27bffd93e622ec961d682de40fe2a1a95f"
|
tag: "10.5@sha256:aa1ccc18000c32d1f39ac0b055117b27bffd93e622ec961d682de40fe2a1a95f"
|
||||||
# @supplier: "openDesk DevSecOps"
|
# @supplier: "openDesk DevSecOps"
|
||||||
matrixNeoBoardWidget:
|
matrixNeoBoardWidget:
|
||||||
|
# renovate:
|
||||||
|
# registryUrl=https://ghcr.io
|
||||||
|
# dependencyType=vendor
|
||||||
repository: "nordeck/matrix-neoboard-widget"
|
repository: "nordeck/matrix-neoboard-widget"
|
||||||
tag: "1.0.0@sha256:584b9c18ea3dfd4b7f1e73f3e114bc1dcd5731b400a8d037576bf2a797c8b086"
|
tag: "1.0.0@sha256:584b9c18ea3dfd4b7f1e73f3e114bc1dcd5731b400a8d037576bf2a797c8b086"
|
||||||
# @supplier: "Nordeck"
|
# @supplier: "Nordeck"
|
||||||
matrixNeoChoiceWidget:
|
matrixNeoChoiceWidget:
|
||||||
|
# renovate:
|
||||||
|
# registryUrl=https://ghcr.io
|
||||||
|
# dependencyType=vendor
|
||||||
repository: "nordeck/matrix-poll-widget"
|
repository: "nordeck/matrix-poll-widget"
|
||||||
tag: "1.3.0@sha256:19d2c8c7a15fe7d12c4a83a89310831da12323fd45ff0280cce808f1be0c7e0b"
|
tag: "1.3.0@sha256:19d2c8c7a15fe7d12c4a83a89310831da12323fd45ff0280cce808f1be0c7e0b"
|
||||||
# @supplier: "Nordeck"
|
# @supplier: "Nordeck"
|
||||||
matrixNeoDateFixBot:
|
matrixNeoDateFixBot:
|
||||||
|
# renovate:
|
||||||
|
# registryUrl=https://ghcr.io
|
||||||
|
# dependencyType=vendor
|
||||||
repository: "nordeck/matrix-meetings-bot"
|
repository: "nordeck/matrix-meetings-bot"
|
||||||
tag: "2.4.2@sha256:f5b3362560255470076f3e6c95a0dd93a8f781398afb992c1e1212764fa87297"
|
tag: "2.4.2@sha256:f5b3362560255470076f3e6c95a0dd93a8f781398afb992c1e1212764fa87297"
|
||||||
# @supplier: "Nordeck"
|
# @supplier: "Nordeck"
|
||||||
matrixNeoDateFixWidget:
|
matrixNeoDateFixWidget:
|
||||||
|
# renovate:
|
||||||
|
# registryUrl=https://ghcr.io
|
||||||
|
# dependencyType=vendor
|
||||||
repository: "nordeck/matrix-meetings-widget"
|
repository: "nordeck/matrix-meetings-widget"
|
||||||
tag: "1.5.3@sha256:918b1eb28cefb08bfdaae57607f0889b454111f2ba80b5ec9bb3c750f8599913"
|
tag: "1.5.3@sha256:918b1eb28cefb08bfdaae57607f0889b454111f2ba80b5ec9bb3c750f8599913"
|
||||||
# @supplier: "Nordeck"
|
# @supplier: "Nordeck"
|
||||||
matrixUserVerificationService:
|
matrixUserVerificationService:
|
||||||
|
# renovate:
|
||||||
|
# registryUrl=https://docker.io
|
||||||
|
# dependencyType=vendor
|
||||||
repository: "matrixdotorg/matrix-user-verification-service"
|
repository: "matrixdotorg/matrix-user-verification-service"
|
||||||
tag: "v3.0.0@sha256:25e685d595785e2a72e75a525dac78cf8c782445454f8ac090d3702431c38008"
|
tag: "v3.0.0@sha256:25e685d595785e2a72e75a525dac78cf8c782445454f8ac090d3702431c38008"
|
||||||
# @supplier: "Element"
|
# @supplier: "Element"
|
||||||
memcached:
|
memcached:
|
||||||
|
# renovate:
|
||||||
|
# registryUrl=https://docker.io
|
||||||
|
# dependencyType=service
|
||||||
repository: "bitnami/memcached"
|
repository: "bitnami/memcached"
|
||||||
tag: "1.6.21-debian-11-r107@sha256:247ec29efd6030960047a623aef025021154662edf6b6d6e88c97936f164d99d"
|
tag: "1.6.21-debian-11-r107@sha256:247ec29efd6030960047a623aef025021154662edf6b6d6e88c97936f164d99d"
|
||||||
# @supplier: "openDesk DevSecOps"
|
# @supplier: "openDesk DevSecOps"
|
||||||
milter:
|
milter:
|
||||||
|
# renovate:
|
||||||
|
# registryUrl=https://docker.io
|
||||||
|
# dependencyType=service
|
||||||
repository: "clamav/clamav"
|
repository: "clamav/clamav"
|
||||||
tag: "1.1.1-10_base@sha256:aed8d5a3ef58352c862028fae44241215a50eae0b9acb7ba8892b1edc0a6598f"
|
tag: "1.1.1-10_base@sha256:aed8d5a3ef58352c862028fae44241215a50eae0b9acb7ba8892b1edc0a6598f"
|
||||||
# @supplier: "openDesk DevSecOps"
|
# @supplier: "openDesk DevSecOps"
|
||||||
minio:
|
minio:
|
||||||
|
# renovate:
|
||||||
|
# registryUrl=https://docker.io
|
||||||
|
# dependencyType=service
|
||||||
repository: "bitnami/minio"
|
repository: "bitnami/minio"
|
||||||
tag: "2023@sha256:bced4f2f9fc48b755ebb3e1b35e76195a978d4331bf2d0c6699dab412d3c0be7"
|
tag: "2023@sha256:bced4f2f9fc48b755ebb3e1b35e76195a978d4331bf2d0c6699dab412d3c0be7"
|
||||||
# @supplier: "openDesk DevSecOps"
|
# @supplier: "openDesk DevSecOps"
|
||||||
nextcloud:
|
nextcloud:
|
||||||
|
# renovate:
|
||||||
|
# registryUrl=https://docker.io
|
||||||
|
# dependencyType=vendor
|
||||||
repository: "nextcloud"
|
repository: "nextcloud"
|
||||||
tag: "27.1.1-apache@sha256:47325758ffcd54563021e697905aaba6aac8c21bceefb245c67d40194813ce39"
|
tag: "27.1.3-apache@sha256:ec46e99164ee7fa5d49e84784833e022be47f9f54f401bcb5a2d789f8c0bc149"
|
||||||
# @supplier: "Nextcloud Community"
|
# @supplier: "Nextcloud Community"
|
||||||
nextcloudExporter:
|
nextcloudExporter:
|
||||||
|
# renovate:
|
||||||
|
# registryUrl=https://docker.io
|
||||||
|
# dependencyType=vendor
|
||||||
repository: "xperimental/nextcloud-exporter"
|
repository: "xperimental/nextcloud-exporter"
|
||||||
tag: "0.6.2@sha256:4ef2555e74ad1dd1b7b7b0680ce85f2b9333f2c2301756582ff04ae97adf796f"
|
tag: "0.6.2@sha256:4ef2555e74ad1dd1b7b7b0680ce85f2b9333f2c2301756582ff04ae97adf796f"
|
||||||
# @supplier: "openDesk DevSecOps"
|
# @supplier: "openDesk DevSecOps"
|
||||||
openproject:
|
openproject:
|
||||||
|
# renovate:
|
||||||
|
# registryUrl=https://docker.io
|
||||||
|
# dependencyType=vendor
|
||||||
repository: "openproject/open_desk"
|
repository: "openproject/open_desk"
|
||||||
tag: "dev@sha256:732b5d0efe9fc64fe411c9d8143ec3f4a3c731d03c0caddb5fa4c614ff426e8d"
|
tag: "dev@sha256:3c9d110c0221621530a431b5899ba16956db8253f491a55a220ec642473cb61f"
|
||||||
# @supplier: "OpenProject"
|
# @supplier: "OpenProject"
|
||||||
openprojectInitDb:
|
openprojectInitDb:
|
||||||
|
# renovate:
|
||||||
|
# registryUrl=https://docker.io
|
||||||
|
# dependencyType=vendor
|
||||||
repository: "postgres"
|
repository: "postgres"
|
||||||
tag: "13@sha256:ced3ba927f4cf06e03eac7760f426a95367076fb31fe4e31b679f82d119a3519"
|
tag: "13@sha256:ced3ba927f4cf06e03eac7760f426a95367076fb31fe4e31b679f82d119a3519"
|
||||||
# @supplier: "OpenProject"
|
# @supplier: "OpenProject"
|
||||||
openprojectBootstrap:
|
openprojectBootstrap:
|
||||||
|
# renovate:
|
||||||
|
# registryUrl=https://registry.souvap-univention.de
|
||||||
|
# dependencyType=service
|
||||||
repository: "souvap/tooling/images/opendesk-openproject-bootstrap"
|
repository: "souvap/tooling/images/opendesk-openproject-bootstrap"
|
||||||
tag: "1.1.1@sha256:09da76a9b645b3dbe5c181061f7829f82f239e7d17f7e115218a32870f7a955e"
|
tag: "1.1.1@sha256:09da76a9b645b3dbe5c181061f7829f82f239e7d17f7e115218a32870f7a955e"
|
||||||
# @supplier: "openDesk DevSecOps"
|
# @supplier: "openDesk DevSecOps"
|
||||||
openxchangeBootstrap:
|
openxchangeBootstrap:
|
||||||
|
# renovate:
|
||||||
|
# registryUrl=https://docker.io
|
||||||
|
# dependencyType=vendor
|
||||||
repository: "alpine/k8s"
|
repository: "alpine/k8s"
|
||||||
tag: "1.26.8@sha256:acde24d2a8ebaafda76f464591a5ddc7d0acd08bb38b12560961c1b1c4fc85ec"
|
tag: "1.26.8@sha256:acde24d2a8ebaafda76f464591a5ddc7d0acd08bb38b12560961c1b1c4fc85ec"
|
||||||
# @supplier: "Open-Xchange"
|
# @supplier: "Open-Xchange"
|
||||||
openxchangeCoreGuidedtours:
|
openxchangeCoreGuidedtours:
|
||||||
|
# renovate:
|
||||||
|
# registryUrl=https://registry.open-xchange.com
|
||||||
|
# dependencyType=vendor
|
||||||
repository: "appsuite-public-sector/core-guidedtours"
|
repository: "appsuite-public-sector/core-guidedtours"
|
||||||
tag: "8.6.0@sha256:6c20780f8c609636f2182c41709e2ee26586b4a23679fd13b15875a5f443445b"
|
tag: "8.6.0@sha256:6c20780f8c609636f2182c41709e2ee26586b4a23679fd13b15875a5f443445b"
|
||||||
# @supplier: "Open-Xchange"
|
# @supplier: "Open-Xchange"
|
||||||
openxchangeCoreMW:
|
openxchangeCoreMW:
|
||||||
|
# renovate:
|
||||||
|
# registryUrl=https://registry.open-xchange.com
|
||||||
|
# dependencyType=vendor
|
||||||
repository: "appsuite-public-sector/middleware-public-sector"
|
repository: "appsuite-public-sector/middleware-public-sector"
|
||||||
tag: "8.19.33@sha256:369c44369d727e4172f10c25137dbb00d936d20dd844cdca3a34f7f31273ea05"
|
tag: "8.19.33@sha256:369c44369d727e4172f10c25137dbb00d936d20dd844cdca3a34f7f31273ea05"
|
||||||
# @supplier: "Open-Xchange"
|
# @supplier: "Open-Xchange"
|
||||||
openxchangeCoreUI:
|
openxchangeCoreUI:
|
||||||
|
# renovate:
|
||||||
|
# registryUrl=https://registry.open-xchange.com
|
||||||
|
# dependencyType=vendor
|
||||||
repository: "appsuite-public-sector/core-ui"
|
repository: "appsuite-public-sector/core-ui"
|
||||||
tag: "8.19.0@sha256:7fdd73f78fd7094f2968f6fcaaae175e60824f9ef68f9e7e70418de6a2b623e9"
|
tag: "8.19.0@sha256:7fdd73f78fd7094f2968f6fcaaae175e60824f9ef68f9e7e70418de6a2b623e9"
|
||||||
# @supplier: "Open-Xchange"
|
# @supplier: "Open-Xchange"
|
||||||
openxchangeCoreUIMiddleware:
|
openxchangeCoreUIMiddleware:
|
||||||
|
# renovate:
|
||||||
|
# registryUrl=https://registry.open-xchange.com
|
||||||
|
# dependencyType=vendor
|
||||||
repository: "appsuite-public-sector/core-ui-middleware"
|
repository: "appsuite-public-sector/core-ui-middleware"
|
||||||
tag: "2.0.0@sha256:8082edf30498a3ac1715f2d9b3e406f240ea586e2616b97f40c207ef55dff11f"
|
tag: "2.0.0@sha256:8082edf30498a3ac1715f2d9b3e406f240ea586e2616b97f40c207ef55dff11f"
|
||||||
# @supplier: "Open-Xchange"
|
# @supplier: "Open-Xchange"
|
||||||
openxchangeCoreUserGuide:
|
openxchangeCoreUserGuide:
|
||||||
|
# renovate:
|
||||||
|
# registryUrl=https://registry.open-xchange.com
|
||||||
|
# dependencyType=vendor
|
||||||
repository: "appsuite-public-sector/core-user-guide"
|
repository: "appsuite-public-sector/core-user-guide"
|
||||||
tag: "8.19.771856@sha256:e00ed8f94c3c42cd288dd03f7fb18d228eb516b5e5ebd318825289b1c4ed17ab"
|
tag: "8.19.771856@sha256:e00ed8f94c3c42cd288dd03f7fb18d228eb516b5e5ebd318825289b1c4ed17ab"
|
||||||
# @supplier: "Open-Xchange"
|
# @supplier: "Open-Xchange"
|
||||||
openxchangeDocumentConverter:
|
openxchangeDocumentConverter:
|
||||||
|
# renovate:
|
||||||
|
# registryUrl=https://registry.open-xchange.com
|
||||||
|
# dependencyType=vendor
|
||||||
repository: "appsuite-public-sector/documentconverter"
|
repository: "appsuite-public-sector/documentconverter"
|
||||||
tag: "8.19.32@sha256:82354e858b6aeeae7f0ebaf66ad106f8e9ae46e605e97bb1d2d14e6ce1c3d708"
|
tag: "8.19.32@sha256:82354e858b6aeeae7f0ebaf66ad106f8e9ae46e605e97bb1d2d14e6ce1c3d708"
|
||||||
# @supplier: "Open-Xchange"
|
# @supplier: "Open-Xchange"
|
||||||
openxchangeGotenberg:
|
openxchangeGotenberg:
|
||||||
|
# renovate:
|
||||||
|
# registryUrl=https://registry.open-xchange.com
|
||||||
|
# dependencyType=vendor
|
||||||
repository: "appsuite-public-sector/3rdparty/gotenberg"
|
repository: "appsuite-public-sector/3rdparty/gotenberg"
|
||||||
tag: "7.9.2@sha256:c97c1adb971d149222062ec46c5d749d710b38ad153c5c6ed954023e2401c9d0"
|
tag: "7.9.2@sha256:c97c1adb971d149222062ec46c5d749d710b38ad153c5c6ed954023e2401c9d0"
|
||||||
# @supplier: "Open-Xchange"
|
# @supplier: "Open-Xchange"
|
||||||
openxchangeGuardUI:
|
openxchangeGuardUI:
|
||||||
|
# renovate:
|
||||||
|
# registryUrl=https://registry.open-xchange.com
|
||||||
|
# dependencyType=vendor
|
||||||
repository: "appsuite-public-sector/guard-ui"
|
repository: "appsuite-public-sector/guard-ui"
|
||||||
tag: "4.0.7@sha256:8c9fa5d6aed055c0e84042ab28b3f0e9add94390362266ad440da4f90b8c93a8"
|
tag: "4.0.7@sha256:8c9fa5d6aed055c0e84042ab28b3f0e9add94390362266ad440da4f90b8c93a8"
|
||||||
# @supplier: "Open-Xchange"
|
# @supplier: "Open-Xchange"
|
||||||
openxchangeImageConverter:
|
openxchangeImageConverter:
|
||||||
|
# renovate:
|
||||||
|
# registryUrl=https://registry.open-xchange.com
|
||||||
|
# dependencyType=vendor
|
||||||
repository: "appsuite-public-sector/imageconverter"
|
repository: "appsuite-public-sector/imageconverter"
|
||||||
tag: "8.19.33@sha256:9543c1409a129567bd6e4a657a353819842a4b1e1807ab86a1ea2e7f73f8c18e"
|
tag: "8.19.33@sha256:9543c1409a129567bd6e4a657a353819842a4b1e1807ab86a1ea2e7f73f8c18e"
|
||||||
# @supplier: "Open-Xchange"
|
# @supplier: "Open-Xchange"
|
||||||
openxchangeNextcloudIntegrationUI:
|
openxchangeNextcloudIntegrationUI:
|
||||||
|
# renovate:
|
||||||
|
# registryUrl=https://registry.open-xchange.com
|
||||||
|
# dependencyType=vendor
|
||||||
repository: "appsuite-public-sector/nextcloud-integration-ui"
|
repository: "appsuite-public-sector/nextcloud-integration-ui"
|
||||||
tag: "1.1.0@sha256:82cecb5adac63806ab41546e6b49090a93a5f4645750bb3967d87585b60df2e1"
|
tag: "1.1.0@sha256:82cecb5adac63806ab41546e6b49090a93a5f4645750bb3967d87585b60df2e1"
|
||||||
# @supplier: "Open-Xchange"
|
# @supplier: "Open-Xchange"
|
||||||
openxchangePublicSectorUI:
|
openxchangePublicSectorUI:
|
||||||
|
# renovate:
|
||||||
|
# registryUrl=https://registry.open-xchange.com
|
||||||
|
# dependencyType=vendor
|
||||||
repository: "appsuite-public-sector/public-sector-ui"
|
repository: "appsuite-public-sector/public-sector-ui"
|
||||||
tag: "2.1.0@sha256:ed56730add8afdb08bef8b43a114aba406fd86d83c7fd7af93dc16bb002fa233"
|
tag: "2.1.0@sha256:ed56730add8afdb08bef8b43a114aba406fd86d83c7fd7af93dc16bb002fa233"
|
||||||
# @supplier: "Open-Xchange"
|
# @supplier: "Open-Xchange"
|
||||||
oxConnector:
|
oxConnector:
|
||||||
# @supplier: "Univention"
|
# renovate:
|
||||||
|
# registryUrl=https://registry.souvap-univention.de
|
||||||
|
# dependencyType=vendor
|
||||||
repository: "souvap/tooling/images/ox-connector/ox-connector-standalone"
|
repository: "souvap/tooling/images/ox-connector/ox-connector-standalone"
|
||||||
tag: "branch-jconde-listener-entrypoint-chaining\
|
tag: "branch-jconde-listener-entrypoint-chaining\
|
||||||
@sha256:54748d49e37d52529d4a857ff834d1217bd2cb8c89c7eed25c0873159ed6853c"
|
@sha256:54748d49e37d52529d4a857ff834d1217bd2cb8c89c7eed25c0873159ed6853c"
|
||||||
|
# @supplier: "Univention"
|
||||||
postfix:
|
postfix:
|
||||||
|
# renovate:
|
||||||
|
# registryUrl=https://registry.souvap-univention.de
|
||||||
|
# dependencyType=service
|
||||||
repository: "souvap/tooling/images/postfix"
|
repository: "souvap/tooling/images/postfix"
|
||||||
tag: "1.0.0@sha256:69e0c53ade77ffb89673672f5c8183ec2edfc81d4e990aca3ec594f33c55a7ac"
|
tag: "1.0.0@sha256:69e0c53ade77ffb89673672f5c8183ec2edfc81d4e990aca3ec594f33c55a7ac"
|
||||||
# @supplier: "openDesk DevSecOps"
|
# @supplier: "openDesk DevSecOps"
|
||||||
postgresql:
|
postgresql:
|
||||||
|
# renovate:
|
||||||
|
# registryUrl=https://docker.io
|
||||||
|
# dependencyType=service
|
||||||
repository: "postgres"
|
repository: "postgres"
|
||||||
tag: "15.4-alpine3.18@sha256:f36c528a2dc8747ea40b4cb8578da69fa75c5063fd6a71dcea3e3b2a6404ff7b"
|
tag: "15.4-alpine3.18@sha256:f36c528a2dc8747ea40b4cb8578da69fa75c5063fd6a71dcea3e3b2a6404ff7b"
|
||||||
# @supplier: "openDesk DevSecOps"
|
# @supplier: "openDesk DevSecOps"
|
||||||
prosody:
|
prosody:
|
||||||
|
# renovate:
|
||||||
|
# registryUrl=https://docker.io
|
||||||
|
# dependencyType=vendor
|
||||||
repository: "jitsi/prosody"
|
repository: "jitsi/prosody"
|
||||||
tag: "stable-8922@sha256:243547f24ae7d686d1f0c18ee230cf93119a66f095dda282bacbf45d4bb69f77"
|
tag: "stable-8922@sha256:243547f24ae7d686d1f0c18ee230cf93119a66f095dda282bacbf45d4bb69f77"
|
||||||
# @supplier: "Nordeck"
|
# @supplier: "Nordeck"
|
||||||
redis:
|
redis:
|
||||||
|
# renovate:
|
||||||
|
# registryUrl=https://docker.io
|
||||||
|
# dependencyType=service
|
||||||
repository: "bitnami/redis"
|
repository: "bitnami/redis"
|
||||||
tag: "7.2.1-debian-11-r5@sha256:e664fa63dfe88cd099180c32f2c9a109a958f053b75d195beb48b06ffd8a0b5b"
|
tag: "7.2.1-debian-11-r5@sha256:e664fa63dfe88cd099180c32f2c9a109a958f053b75d195beb48b06ffd8a0b5b"
|
||||||
# @supplier: "openDesk DevSecOps"
|
# @supplier: "openDesk DevSecOps"
|
||||||
synapse:
|
synapse:
|
||||||
|
# renovate:
|
||||||
|
# registryUrl=https://docker.io
|
||||||
|
# dependencyType=vendor
|
||||||
repository: "matrixdotorg/synapse"
|
repository: "matrixdotorg/synapse"
|
||||||
tag: "v1.91.2@sha256:1d19508db417bb2b911c8e086bd3dc3b719ee75c6f6194d58af59b4c32b11322"
|
tag: "v1.91.2@sha256:1d19508db417bb2b911c8e086bd3dc3b719ee75c6f6194d58af59b4c32b11322"
|
||||||
# @supplier: "Element"
|
# @supplier: "Element"
|
||||||
synapseCreateUser:
|
synapseCreateUser:
|
||||||
|
# renovate:
|
||||||
|
# registryUrl=https://docker.io
|
||||||
|
# dependencyType=vendor
|
||||||
repository: "alpine/k8s"
|
repository: "alpine/k8s"
|
||||||
tag: "1.26.8@sha256:acde24d2a8ebaafda76f464591a5ddc7d0acd08bb38b12560961c1b1c4fc85ec"
|
tag: "1.26.8@sha256:acde24d2a8ebaafda76f464591a5ddc7d0acd08bb38b12560961c1b1c4fc85ec"
|
||||||
# @supplier: "Nordeck"
|
# @supplier: "Nordeck"
|
||||||
synapseGuestModule:
|
synapseGuestModule:
|
||||||
|
# renovate:
|
||||||
|
# registryUrl=https://ghcr.io
|
||||||
|
# dependencyType=vendor
|
||||||
repository: "nordeck/synapse-guest-module"
|
repository: "nordeck/synapse-guest-module"
|
||||||
tag: "1.0.0@sha256:e9c736d84a77df93b2dbe3e3afa7b0ca3efcbc4457677adaac5df3cc79a85923"
|
tag: "1.0.0@sha256:e9c736d84a77df93b2dbe3e3afa7b0ca3efcbc4457677adaac5df3cc79a85923"
|
||||||
# @supplier: "Nordeck"
|
# @supplier: "Nordeck"
|
||||||
synapseWeb:
|
synapseWeb:
|
||||||
|
# renovate:
|
||||||
|
# registryUrl=https://docker.io
|
||||||
|
# dependencyType=vendor
|
||||||
repository: "rapidfort/haproxy-official"
|
repository: "rapidfort/haproxy-official"
|
||||||
tag: "2.6.6-bullseye@sha256:bf22cfb1301aae433213f5f8c687bc5d9ecc6b86daf1084be5f7a339bd27cadd"
|
tag: "2.6.6-bullseye@sha256:bf22cfb1301aae433213f5f8c687bc5d9ecc6b86daf1084be5f7a339bd27cadd"
|
||||||
# @supplier: "Element"
|
# @supplier: "Element"
|
||||||
univentionCorporateServer:
|
univentionCorporateServer:
|
||||||
|
# renovate:
|
||||||
|
# registryUrl=https://registry.souvap-univention.de
|
||||||
|
# dependencyType=vendor
|
||||||
repository: "souvap/tooling/images/univention-corporate-server-swp/ucs"
|
repository: "souvap/tooling/images/univention-corporate-server-swp/ucs"
|
||||||
tag: "20230829T094822@sha256:6415847851ee3b474cea756212698f4a110fbbde74882e22da92500a6358a4f8"
|
tag: "20230829T094822@sha256:6415847851ee3b474cea756212698f4a110fbbde74882e22da92500a6358a4f8"
|
||||||
# @supplier: "Univention"
|
# @supplier: "Univention"
|
||||||
umsConfigHtpasswd:
|
umsConfigHtpasswd:
|
||||||
|
# renovate:
|
||||||
|
# registryUrl=https://registry.souvap-univention.de
|
||||||
|
# dependencyType=vendor
|
||||||
# This is a preview and not part of the standard deployment.
|
# This is a preview and not part of the standard deployment.
|
||||||
repository: "souvap/tooling/images/univention/config-htpasswd"
|
repository: "souvap/tooling/images/univention/config-htpasswd"
|
||||||
tag: "0.5.2@sha256:b63887af87ed4c496688d422a8881e806de4a2364eb07c7e24bb1635b539e7f3"
|
tag: "0.5.2@sha256:c8627e0b73ee1d92f74d2ae8b06e4593ac93b6bbde55d56d0497f3510912924c"
|
||||||
# @supplier: "Univention"
|
# @supplier: "Univention"
|
||||||
umsDataLoader:
|
umsDataLoader:
|
||||||
|
# renovate:
|
||||||
|
# registryUrl=https://registry.souvap-univention.de
|
||||||
|
# dependencyType=vendor
|
||||||
# This is a preview and not part of the standard deployment.
|
# This is a preview and not part of the standard deployment.
|
||||||
repository: "souvap/tooling/images/univention/data-loader"
|
repository: "souvap/tooling/images/univention/data-loader"
|
||||||
tag: "0.33.0@sha256:2e9baf28cfe3eb6c740ce604d60ebc1ee6b3e0e2e8741730716a1c7375046039"
|
tag: "0.36.0@sha256:045e0e524cbdc93e174ce803a12e67dbb341211f3abbc0029200ee638a0a1eb7"
|
||||||
# @supplier: "Univention"
|
# @supplier: "Univention"
|
||||||
umsLdapNotifier:
|
umsLdapNotifier:
|
||||||
|
# renovate:
|
||||||
|
# registryUrl=https://registry.souvap-univention.de
|
||||||
|
# dependencyType=vendor
|
||||||
# This is a preview and not part of the standard deployment.
|
# This is a preview and not part of the standard deployment.
|
||||||
repository: "souvap/tooling/images/univention/ldap-notifier"
|
repository: "souvap/tooling/images/univention/ldap-notifier"
|
||||||
tag: "0.7.0@sha256:c5bd680dc85990aec2c3dde14f8e6b72f5a5d2d3c648bc434c57117836464faf"
|
tag: "0.7.0@sha256:ae9acf8f1a5e28645edea62a25040b6dd77bb1c8773964f0cb0e885397586bbe"
|
||||||
# @supplier: "Univention"
|
# @supplier: "Univention"
|
||||||
umsLdapServer:
|
umsLdapServer:
|
||||||
|
# renovate:
|
||||||
|
# registryUrl=https://registry.souvap-univention.de
|
||||||
|
# dependencyType=vendor
|
||||||
# This is a preview and not part of the standard deployment.
|
# This is a preview and not part of the standard deployment.
|
||||||
repository: "souvap/tooling/images/univention/ldap-server"
|
repository: "souvap/tooling/images/univention/ldap-server"
|
||||||
tag: "0.7.0@sha256:a87b615fc97c574316f41e1e6dc9bef41d80583ba450aece9d9830bab4d5a09a"
|
tag: "0.7.0@sha256:a637f8d11c3a17d18b8f4dfce252fd55150188ea16ed3b1605a779b7ff535f3e"
|
||||||
# @supplier: "Univention"
|
# @supplier: "Univention"
|
||||||
umsNotificationsApi:
|
umsNotificationsApi:
|
||||||
|
# renovate:
|
||||||
|
# registryUrl=https://registry.souvap-univention.de
|
||||||
|
# dependencyType=vendor
|
||||||
# This is a preview and not part of the standard deployment.
|
# This is a preview and not part of the standard deployment.
|
||||||
repository: "souvap/tooling/images/univention/notifications-api"
|
repository: "souvap/tooling/images/univention/notifications-api"
|
||||||
tag: "0.4.4@sha256:630905fd503ea5f4b17ccd4adccd68c20b85405a7372e7c71ac2c88aa6e1e47c"
|
tag: "0.5.2@sha256:192f0ebb77ec6191d1df1edb2427739c4a69a3733c7d423f55045db5b9209c64"
|
||||||
# @supplier: "Univention"
|
# @supplier: "Univention"
|
||||||
umsPortalListener:
|
umsPortalListener:
|
||||||
|
# renovate:
|
||||||
|
# registryUrl=https://registry.souvap-univention.de
|
||||||
|
# dependencyType=vendor
|
||||||
# This is a preview and not part of the standard deployment.
|
# This is a preview and not part of the standard deployment.
|
||||||
repository: "souvap/tooling/images/univention/portal-listener"
|
repository: "souvap/tooling/images/univention/portal-listener"
|
||||||
tag: "0.4.4@sha256:689065bad9ab735be1cfd12e519934616e8c049afee4f78c46b630ab7c1a7aef"
|
tag: "0.5.2@sha256:a1834a98cf4f4686a74077cb6c2b094429a49875d05801745de7ee13eee38a07"
|
||||||
# @supplier: "Univention"
|
# @supplier: "Univention"
|
||||||
umsPortalFrontend:
|
umsPortalFrontend:
|
||||||
|
# renovate:
|
||||||
|
# registryUrl=https://registry.souvap-univention.de
|
||||||
|
# dependencyType=vendor
|
||||||
# This is a preview and not part of the standard deployment.
|
# This is a preview and not part of the standard deployment.
|
||||||
repository: "souvap/tooling/images/univention/portal-frontend"
|
repository: "souvap/tooling/images/univention/portal-frontend"
|
||||||
tag: "0.4.4@sha256:b8955718ad4d2c973b4c1ee80867ac47c2d90e422234c7a2401b13ed606fd4d4"
|
tag: "0.5.2@sha256:aca1d481e23cbba7a33d5f261be6196690a6b7f1e593f7ff96fc6f22edab2c6b"
|
||||||
# @supplier: "Univention"
|
# @supplier: "Univention"
|
||||||
umsPortalServer:
|
umsPortalServer:
|
||||||
|
# renovate:
|
||||||
|
# registryUrl=https://registry.souvap-univention.de
|
||||||
|
# dependencyType=vendor
|
||||||
# This is a preview and not part of the standard deployment.
|
# This is a preview and not part of the standard deployment.
|
||||||
repository: "souvap/tooling/images/univention/portal-server"
|
repository: "souvap/tooling/images/univention/portal-server"
|
||||||
tag: "0.4.4@sha256:21d279ede3a7cbdaf3a5c4e83375bb389785db4f2569cfaf8362896a9b30e287"
|
tag: "0.5.2@sha256:ed982e41ac5b0b81946272acf00f76463901da4f4b3ad50282ec4c73fd4b5833"
|
||||||
# @supplier: "Univention"
|
# @supplier: "Univention"
|
||||||
umsWaitForDependency:
|
umsWaitForDependency:
|
||||||
|
# renovate:
|
||||||
|
# registryUrl=https://registry.souvap-univention.de
|
||||||
|
# dependencyType=vendor
|
||||||
# This is a preview and not part of the standard deployment.
|
# This is a preview and not part of the standard deployment.
|
||||||
repository: "souvap/tooling/images/univention/wait-for-dependency"
|
repository: "souvap/tooling/images/univention/wait-for-dependency"
|
||||||
tag: "0.4.3@sha256:ff4b7f762860baa1415cfe9a24131cb28c2660a14058ca8a1e7a697468f72d69"
|
tag: "0.5.0@sha256:78cfcc52b81f620374c4b827f0055be5339a7dd469d9b8df67e3bed547abd6bc"
|
||||||
# @supplier: "Univention"
|
# @supplier: "Univention"
|
||||||
umsStoreDav:
|
umsStoreDav:
|
||||||
|
# renovate:
|
||||||
|
# registryUrl=https://registry.souvap-univention.de
|
||||||
|
# dependencyType=vendor
|
||||||
# This is a preview and not part of the standard deployment.
|
# This is a preview and not part of the standard deployment.
|
||||||
repository: "souvap/tooling/images/univention/store-dav"
|
repository: "souvap/tooling/images/univention/store-dav"
|
||||||
tag: "0.5.2@sha256:a3cbb1df2024edf58aea029a280f660bcd2fb8e684eed638901f5d7cbf9db467"
|
tag: "0.5.2@sha256:1bc01b883a5ccd2612925e123da10f9d216389701d743f1cea4050633770639f"
|
||||||
# @supplier: "Univention"
|
# @supplier: "Univention"
|
||||||
umsUdmRestApi:
|
umsUdmRestApi:
|
||||||
|
# renovate:
|
||||||
|
# registryUrl=https://registry.souvap-univention.de
|
||||||
|
# dependencyType=vendor
|
||||||
# This is a preview and not part of the standard deployment.
|
# This is a preview and not part of the standard deployment.
|
||||||
repository: "souvap/tooling/images/univention/udm-rest-api"
|
repository: "souvap/tooling/images/univention/udm-rest-api"
|
||||||
tag: "0.3.5@sha256:1a434f9d5e4d15217d011c13d9f1694e8a12291e09a6d0802c1158f7e2c5e035"
|
tag: "0.3.5@sha256:1a434f9d5e4d15217d011c13d9f1694e8a12291e09a6d0802c1158f7e2c5e035"
|
||||||
# @supplier: "Univention"
|
# @supplier: "Univention"
|
||||||
umsUmcGateway:
|
umsUmcGateway:
|
||||||
|
# renovate:
|
||||||
|
# registryUrl=https://registry.souvap-univention.de
|
||||||
|
# dependencyType=vendor
|
||||||
# This is a preview and not part of the standard deployment.
|
# This is a preview and not part of the standard deployment.
|
||||||
repository: "souvap/tooling/images/univention/umc-gateway"
|
repository: "souvap/tooling/images/univention/umc-gateway"
|
||||||
tag: "0.5.1@sha256:9937efd54020e0782a26a1670d0cb8b29edbc802b1fd9eed5e308a594d4ce010"
|
tag: "0.6.1@sha256:e023c6b4a66eb80dc165310aff9b869cf35c102196514741676a9dba68cfae89"
|
||||||
# @supplier: "Univention"
|
# @supplier: "Univention"
|
||||||
umsUmcServer:
|
umsUmcServer:
|
||||||
|
# renovate:
|
||||||
|
# registryUrl=https://registry.souvap-univention.de
|
||||||
|
# dependencyType=vendor
|
||||||
# This is a preview and not part of the standard deployment.
|
# This is a preview and not part of the standard deployment.
|
||||||
repository: "souvap/tooling/images/univention/umc-server"
|
repository: "souvap/tooling/images/univention/umc-server"
|
||||||
tag: "0.5.1@sha256:cfb626f8d0a949ce0ed36d7e01791006eae24d984573dfa3ed3f031808437da3"
|
tag: "0.6.1@sha256:9fc3ad7c45c436698223fe3219c314420b4687c9c694f5d255612beb51df9347"
|
||||||
# @supplier: "Univention"
|
# @supplier: "Univention"
|
||||||
wellKnown:
|
wellKnown:
|
||||||
|
# renovate:
|
||||||
|
# registryUrl=https://docker.io
|
||||||
|
# dependencyType=vendor
|
||||||
repository: "library/nginx"
|
repository: "library/nginx"
|
||||||
tag: "1.25.2-bookworm@sha256:9504f3f64a3f16f0eaf9adca3542ff8b2a6880e6abfb13e478cca23f6380080a"
|
tag: "1.25.2-bookworm@sha256:9504f3f64a3f16f0eaf9adca3542ff8b2a6880e6abfb13e478cca23f6380080a"
|
||||||
# @supplier: "Element"
|
# @supplier: "Element"
|
||||||
xwiki:
|
xwiki:
|
||||||
|
# renovate:
|
||||||
|
# registryUrl=https://git.xwikisas.com:5050
|
||||||
|
# dependencyType=vendor
|
||||||
repository: "xwikisas/swp/xwiki"
|
repository: "xwikisas/swp/xwiki"
|
||||||
tag: "0.12-mariadb-jetty-alpine@sha256:c195d8baf38b6c6b0c533a3216e726cd863a6c2ba0e65f18036402592bb72896"
|
tag: "0.12-mariadb-jetty-alpine@sha256:c195d8baf38b6c6b0c533a3216e726cd863a6c2ba0e65f18036402592bb72896"
|
||||||
# @supplier: "XWiki"
|
# @supplier: "XWiki"
|
||||||
|
|||||||
@@ -1,362 +1,455 @@
|
|||||||
# SPDX-FileCopyrightText: 2023 Bundesministerium des Innern und für Heimat, PG ZenDiS "Projektgruppe für Aufbau ZenDiS"
|
# SPDX-FileCopyrightText: 2023 Bundesministerium des Innern und für Heimat, PG ZenDiS "Projektgruppe für Aufbau ZenDiS"
|
||||||
# SPDX-License-Identifier: Apache-2.0
|
# SPDX-License-Identifier: Apache-2.0
|
||||||
---
|
---
|
||||||
|
# Some charts do not support null or ~ values, because they use their default values.
|
||||||
|
# To not limit the CPU, we set all CPU limits to 99.
|
||||||
resources:
|
resources:
|
||||||
clamd:
|
clamd:
|
||||||
limits:
|
limits:
|
||||||
cpu: 4
|
cpu: 99
|
||||||
memory: "4Gi"
|
memory: "4Gi"
|
||||||
requests:
|
requests:
|
||||||
cpu: 0.1
|
cpu: 0.1
|
||||||
memory: "2Gi"
|
memory: "1.5Gi"
|
||||||
collabora:
|
collabora:
|
||||||
limits:
|
limits:
|
||||||
cpu: 4
|
cpu: 99
|
||||||
memory: "4Gi"
|
memory: "4Gi"
|
||||||
requests:
|
requests:
|
||||||
cpu: 0.5
|
cpu: 0.5
|
||||||
memory: "1Gi"
|
memory: "512Mi"
|
||||||
cryptpad:
|
cryptpad:
|
||||||
limits:
|
limits:
|
||||||
cpu: 2
|
cpu: 99
|
||||||
memory: "2Gi"
|
memory: "2Gi"
|
||||||
requests:
|
requests:
|
||||||
cpu: 0.1
|
cpu: 0.1
|
||||||
memory: "512Mi"
|
memory: "512Mi"
|
||||||
dovecot:
|
dovecot:
|
||||||
limits:
|
limits:
|
||||||
cpu: 0.5
|
cpu: 99
|
||||||
memory: "250Mi"
|
memory: "256Mi"
|
||||||
requests:
|
requests:
|
||||||
cpu: 0.1
|
cpu: 0.1
|
||||||
memory: "100Mi"
|
memory: "32Mi"
|
||||||
element:
|
element:
|
||||||
limits:
|
limits:
|
||||||
cpu: 1
|
cpu: 99
|
||||||
memory: "250Mi"
|
memory: "256Mi"
|
||||||
requests:
|
requests:
|
||||||
cpu: 0.1
|
cpu: 0.1
|
||||||
memory: "50Mi"
|
memory: "32Mi"
|
||||||
freshclam:
|
freshclam:
|
||||||
limits:
|
limits:
|
||||||
cpu: 1
|
cpu: 99
|
||||||
memory: "1Gi"
|
memory: "1Gi"
|
||||||
requests:
|
requests:
|
||||||
cpu: 0.1
|
cpu: 0.1
|
||||||
memory: "100Mi"
|
memory: "96Mi"
|
||||||
icap:
|
icap:
|
||||||
limits:
|
limits:
|
||||||
cpu: 2
|
cpu: 99
|
||||||
memory: "128Mi"
|
memory: "128Mi"
|
||||||
requests:
|
requests:
|
||||||
cpu: 0.1
|
cpu: 0.1
|
||||||
memory: "16Mi"
|
memory: "16Mi"
|
||||||
|
intercomService:
|
||||||
|
limits:
|
||||||
|
cpu: 99
|
||||||
|
memory: "128Mi"
|
||||||
|
requests:
|
||||||
|
cpu: 0.1
|
||||||
|
memory: "64Mi"
|
||||||
jibri:
|
jibri:
|
||||||
limits:
|
limits:
|
||||||
cpu: 1
|
cpu: 99
|
||||||
memory: "500Mi"
|
memory: "768Mi"
|
||||||
requests:
|
requests:
|
||||||
cpu: 0.1
|
cpu: 0.1
|
||||||
memory: "125Mi"
|
memory: "384Mi"
|
||||||
jicofo:
|
jicofo:
|
||||||
limits:
|
limits:
|
||||||
cpu: 1
|
cpu: 99
|
||||||
memory: "500Mi"
|
memory: "512Mi"
|
||||||
requests:
|
requests:
|
||||||
cpu: 0.1
|
cpu: 0.1
|
||||||
memory: "100Mi"
|
memory: "256Mi"
|
||||||
jitsi:
|
jitsi:
|
||||||
limits:
|
limits:
|
||||||
cpu: 1
|
cpu: 99
|
||||||
memory: "500Mi"
|
memory: "512Mi"
|
||||||
requests:
|
requests:
|
||||||
cpu: 0.1
|
cpu: 0.1
|
||||||
memory: "100Mi"
|
memory: "32Mi"
|
||||||
jitsiKeycloakAdapter:
|
jitsiKeycloakAdapter:
|
||||||
limits:
|
limits:
|
||||||
cpu: "100m"
|
cpu: 99
|
||||||
memory: "128Mi"
|
memory: "128Mi"
|
||||||
requests:
|
requests:
|
||||||
cpu: "10m"
|
cpu: "10m"
|
||||||
memory: "16Mi"
|
memory: "48Mi"
|
||||||
jvb:
|
jvb:
|
||||||
limits:
|
limits:
|
||||||
cpu: 1
|
cpu: 99
|
||||||
memory: "500Mi"
|
memory: "768Mi"
|
||||||
requests:
|
requests:
|
||||||
cpu: 0.1
|
cpu: 0.1
|
||||||
memory: "100Mi"
|
memory: "384Mi"
|
||||||
keycloak:
|
keycloak:
|
||||||
limits:
|
limits:
|
||||||
cpu: 2
|
cpu: 99
|
||||||
memory: "2Gi"
|
memory: "2Gi"
|
||||||
requests:
|
requests:
|
||||||
cpu: 0.1
|
cpu: 0.1
|
||||||
memory: "750Mi"
|
memory: "512Mi"
|
||||||
keycloakExtension:
|
keycloakExtension:
|
||||||
limits:
|
limits:
|
||||||
cpu: 1
|
cpu: 99
|
||||||
memory: "500Mi"
|
memory: "256Mi"
|
||||||
requests:
|
requests:
|
||||||
cpu: 0.1
|
cpu: 0.1
|
||||||
memory: "100Mi"
|
memory: "48Mi"
|
||||||
keycloakBootstrap:
|
keycloakBootstrap:
|
||||||
limits:
|
limits:
|
||||||
cpu: 1
|
cpu: 99
|
||||||
memory: "500Mi"
|
memory: "512Mi"
|
||||||
requests:
|
requests:
|
||||||
cpu: 0.1
|
cpu: 0.1
|
||||||
memory: "250Mi"
|
memory: "256Mi"
|
||||||
keycloakProxy:
|
keycloakProxy:
|
||||||
limits:
|
limits:
|
||||||
cpu: 1
|
cpu: 99
|
||||||
memory: "500Mi"
|
memory: "256Mi"
|
||||||
requests:
|
requests:
|
||||||
cpu: 0.1
|
cpu: 0.1
|
||||||
memory: "100Mi"
|
memory: "48Mi"
|
||||||
mariadb:
|
mariadb:
|
||||||
limits:
|
limits:
|
||||||
cpu: 2
|
cpu: 99
|
||||||
memory: "2Gi"
|
memory: "2Gi"
|
||||||
requests:
|
requests:
|
||||||
cpu: 0.1
|
cpu: 0.1
|
||||||
memory: "500Mi"
|
memory: "384Mi"
|
||||||
matrixNeoBoardWidget:
|
matrixNeoBoardWidget:
|
||||||
limits:
|
limits:
|
||||||
cpu: 1
|
cpu: 99
|
||||||
memory: "250Mi"
|
memory: "128Mi"
|
||||||
requests:
|
requests:
|
||||||
cpu: 0.1
|
cpu: 0.1
|
||||||
memory: "50Mi"
|
memory: "48Mi"
|
||||||
matrixNeoChoiceWidget:
|
matrixNeoChoiceWidget:
|
||||||
limits:
|
limits:
|
||||||
cpu: 1
|
cpu: 99
|
||||||
memory: "250Mi"
|
memory: "256Mi"
|
||||||
requests:
|
requests:
|
||||||
cpu: 0.1
|
cpu: 0.1
|
||||||
memory: "50Mi"
|
memory: "48Mi"
|
||||||
matrixNeoDateFixBot:
|
matrixNeoDateFixBot:
|
||||||
limits:
|
limits:
|
||||||
cpu: 1
|
cpu: 99
|
||||||
memory: "500Mi"
|
memory: "512Mi"
|
||||||
requests:
|
requests:
|
||||||
cpu: 0.1
|
cpu: 0.1
|
||||||
memory: "100Mi"
|
memory: "128Mi"
|
||||||
matrixNeoDateFixWidget:
|
matrixNeoDateFixWidget:
|
||||||
limits:
|
limits:
|
||||||
cpu: 1
|
cpu: 99
|
||||||
memory: "250Mi"
|
memory: "256Mi"
|
||||||
requests:
|
requests:
|
||||||
cpu: 0.1
|
cpu: 0.1
|
||||||
memory: "50Mi"
|
memory: "48Mi"
|
||||||
matrixUserVerificationService:
|
matrixUserVerificationService:
|
||||||
limits:
|
limits:
|
||||||
cpu: 1
|
cpu: 99
|
||||||
memory: "250Mi"
|
memory: "256Mi"
|
||||||
requests:
|
requests:
|
||||||
cpu: 0.1
|
cpu: 0.1
|
||||||
memory: "50Mi"
|
memory: "128Mi"
|
||||||
memcached:
|
memcached:
|
||||||
limits:
|
limits:
|
||||||
cpu: 1
|
cpu: 99
|
||||||
memory: "256Mi"
|
memory: "256Mi"
|
||||||
requests:
|
requests:
|
||||||
cpu: 0.1
|
cpu: 0.1
|
||||||
memory: "32Mi"
|
memory: "32Mi"
|
||||||
milter:
|
milter:
|
||||||
limits:
|
limits:
|
||||||
cpu: 4
|
cpu: 99
|
||||||
memory: "4Gi"
|
memory: "96Mi"
|
||||||
requests:
|
requests:
|
||||||
cpu: 0.1
|
cpu: 0.1
|
||||||
memory: "2Gi"
|
memory: "16Mi"
|
||||||
minio:
|
minio:
|
||||||
limits:
|
limits:
|
||||||
cpu: 2
|
cpu: 99
|
||||||
memory: "4Gi"
|
memory: "2Gi"
|
||||||
requests:
|
requests:
|
||||||
cpu: 0.25
|
cpu: 0.25
|
||||||
memory: "1Gi"
|
memory: "256Mi"
|
||||||
nextcloud:
|
nextcloud:
|
||||||
limits:
|
limits:
|
||||||
cpu: 2
|
cpu: 99
|
||||||
memory: "1Gi"
|
memory: "1Gi"
|
||||||
requests:
|
requests:
|
||||||
cpu: 0.1
|
cpu: 0.1
|
||||||
memory: "500Mi"
|
memory: "512Mi"
|
||||||
|
nextcloudMetrics:
|
||||||
|
limits:
|
||||||
|
cpu: 99
|
||||||
|
memory: "128Mi"
|
||||||
|
requests:
|
||||||
|
cpu: 0.1
|
||||||
|
memory: "32Mi"
|
||||||
openproject:
|
openproject:
|
||||||
limits:
|
limits:
|
||||||
cpu: 2
|
cpu: 99
|
||||||
memory: "1Gi"
|
memory: "1Gi"
|
||||||
requests:
|
requests:
|
||||||
cpu: 0.1
|
cpu: 0.1
|
||||||
memory: "250Mi"
|
memory: "768Mi"
|
||||||
oxConnector:
|
openxchangeCoreDocumentConverter:
|
||||||
limits:
|
limits:
|
||||||
cpu: 2
|
cpu: 99
|
||||||
memory: "2Gi"
|
|
||||||
requests:
|
|
||||||
cpu: 0.1
|
|
||||||
memory: "250Mi"
|
|
||||||
oxDocumentConverter:
|
|
||||||
limits:
|
|
||||||
cpu: 2
|
|
||||||
memory: "2Gi"
|
memory: "2Gi"
|
||||||
requests:
|
requests:
|
||||||
cpu: 0.25
|
cpu: 0.25
|
||||||
memory: "1Gi"
|
memory: "1.25Gi"
|
||||||
|
openxchangeCoreGuidedtours:
|
||||||
|
limits:
|
||||||
|
cpu: 99
|
||||||
|
memory: "96Mi"
|
||||||
|
requests:
|
||||||
|
cpu: 0.01
|
||||||
|
memory: "32Mi"
|
||||||
|
openxchangeCoreImageConverter:
|
||||||
|
limits:
|
||||||
|
cpu: 99
|
||||||
|
memory: "2Gi"
|
||||||
|
requests:
|
||||||
|
cpu: 0.5
|
||||||
|
memory: "1.25Gi"
|
||||||
|
openxchangeCoreMW:
|
||||||
|
limits:
|
||||||
|
cpu: 99
|
||||||
|
memory: "8Gi"
|
||||||
|
requests:
|
||||||
|
cpu: 1
|
||||||
|
memory: "1.25Gi"
|
||||||
|
openxchangeCoreUI:
|
||||||
|
limits:
|
||||||
|
cpu: 99
|
||||||
|
memory: "96Mi"
|
||||||
|
requests:
|
||||||
|
cpu: 0.01
|
||||||
|
memory: "32Mi"
|
||||||
|
openxchangeCoreUIMiddleware:
|
||||||
|
limits:
|
||||||
|
cpu: 99
|
||||||
|
memory: "768Mi"
|
||||||
|
requests:
|
||||||
|
cpu: 0.5
|
||||||
|
memory: "192Mi"
|
||||||
|
openxchangeCoreUIMiddlewareUpdater:
|
||||||
|
limits:
|
||||||
|
cpu: 99
|
||||||
|
memory: "768Mi"
|
||||||
|
requests:
|
||||||
|
cpu: 0.5
|
||||||
|
memory: "192Mi"
|
||||||
|
openxchangeCoreUserGuide:
|
||||||
|
limits:
|
||||||
|
cpu: 99
|
||||||
|
memory: "96Mi"
|
||||||
|
requests:
|
||||||
|
cpu: 0.02
|
||||||
|
memory: "32Mi"
|
||||||
|
openxchangeGotenberg:
|
||||||
|
limits:
|
||||||
|
cpu: 99
|
||||||
|
memory: "96Mi"
|
||||||
|
requests:
|
||||||
|
cpu: 0.05
|
||||||
|
memory: "32Mi"
|
||||||
|
openxchangeGuardUI:
|
||||||
|
limits:
|
||||||
|
cpu: 99
|
||||||
|
memory: "96Mi"
|
||||||
|
requests:
|
||||||
|
cpu: 0.01
|
||||||
|
memory: "32Mi"
|
||||||
|
openxchangeNextcloudIntegrationUI:
|
||||||
|
limits:
|
||||||
|
cpu: 99
|
||||||
|
memory: "96Mi"
|
||||||
|
requests:
|
||||||
|
cpu: 0.01
|
||||||
|
memory: "32Mi"
|
||||||
|
openxchangePublicSectorUI:
|
||||||
|
limits:
|
||||||
|
cpu: 99
|
||||||
|
memory: "96Mi"
|
||||||
|
requests:
|
||||||
|
cpu: 0.01
|
||||||
|
memory: "32Mi"
|
||||||
|
oxConnector:
|
||||||
|
limits:
|
||||||
|
cpu: 99
|
||||||
|
memory: "512Mi"
|
||||||
|
requests:
|
||||||
|
cpu: 0.1
|
||||||
|
memory: "64Mi"
|
||||||
postfix:
|
postfix:
|
||||||
limits:
|
limits:
|
||||||
cpu: 0.5
|
cpu: 99
|
||||||
memory: "250Mi"
|
memory: "128Mi"
|
||||||
requests:
|
requests:
|
||||||
cpu: 0.1
|
cpu: 0.1
|
||||||
memory: "100Mi"
|
memory: "16Mi"
|
||||||
postgresql:
|
postgresql:
|
||||||
limits:
|
limits:
|
||||||
cpu: 2
|
cpu: 99
|
||||||
memory: "1Gi"
|
memory: "1Gi"
|
||||||
requests:
|
requests:
|
||||||
cpu: 0.1
|
cpu: 0.1
|
||||||
memory: "250Mi"
|
memory: "256Mi"
|
||||||
prosody:
|
prosody:
|
||||||
limits:
|
limits:
|
||||||
cpu: 1
|
cpu: 99
|
||||||
memory: "500Mi"
|
memory: "512Mi"
|
||||||
requests:
|
requests:
|
||||||
cpu: 0.1
|
cpu: 0.1
|
||||||
memory: "100Mi"
|
memory: "32Mi"
|
||||||
redis:
|
redis:
|
||||||
limits:
|
limits:
|
||||||
cpu: 1
|
cpu: 99
|
||||||
memory: "500Mi"
|
memory: "256Mi"
|
||||||
requests:
|
requests:
|
||||||
cpu: 0.1
|
cpu: 0.1
|
||||||
memory: "100Mi"
|
memory: "32Mi"
|
||||||
synapse:
|
synapse:
|
||||||
limits:
|
limits:
|
||||||
cpu: 4
|
cpu: 99
|
||||||
memory: "4Gi"
|
memory: "4Gi"
|
||||||
requests:
|
requests:
|
||||||
cpu: 1
|
cpu: 1
|
||||||
memory: "2Gi"
|
memory: "256Mi"
|
||||||
synapseWeb:
|
synapseWeb:
|
||||||
limits:
|
limits:
|
||||||
cpu: 1
|
cpu: 99
|
||||||
memory: "250Mi"
|
memory: "256Mi"
|
||||||
requests:
|
requests:
|
||||||
cpu: 0.1
|
cpu: 0.1
|
||||||
memory: "50Mi"
|
memory: "64Mi"
|
||||||
univentionCorporateServer:
|
univentionCorporateServer:
|
||||||
limits:
|
limits:
|
||||||
cpu: 2
|
cpu: 99
|
||||||
memory: "4Gi"
|
memory: "4Gi"
|
||||||
requests:
|
requests:
|
||||||
cpu: 0.5
|
cpu: 0.5
|
||||||
memory: "1Gi"
|
memory: "1Gi"
|
||||||
umsLdapNotifier:
|
umsLdapNotifier:
|
||||||
limits:
|
limits:
|
||||||
cpu: 1
|
cpu: 99
|
||||||
memory: "1Gi"
|
memory: "1Gi"
|
||||||
requests:
|
requests:
|
||||||
cpu: 0.1
|
cpu: 0.1
|
||||||
memory: "250Mi"
|
memory: "256Mi"
|
||||||
umsLdapServer:
|
umsLdapServer:
|
||||||
limits:
|
limits:
|
||||||
cpu: 1
|
cpu: 99
|
||||||
memory: "1Gi"
|
memory: "1Gi"
|
||||||
requests:
|
requests:
|
||||||
cpu: 0.1
|
cpu: 0.1
|
||||||
memory: "250Mi"
|
memory: "256Mi"
|
||||||
umsNotificationsApi:
|
umsNotificationsApi:
|
||||||
limits:
|
limits:
|
||||||
cpu: 1
|
cpu: 99
|
||||||
memory: "1Gi"
|
memory: "1Gi"
|
||||||
requests:
|
requests:
|
||||||
cpu: 0.1
|
cpu: 0.1
|
||||||
memory: "250Mi"
|
memory: "256Mi"
|
||||||
umsPortalFrontend:
|
umsPortalFrontend:
|
||||||
limits:
|
limits:
|
||||||
cpu: 1
|
cpu: 99
|
||||||
memory: "1Gi"
|
memory: "1Gi"
|
||||||
requests:
|
requests:
|
||||||
cpu: 0.1
|
cpu: 0.1
|
||||||
memory: "250Mi"
|
memory: "256Mi"
|
||||||
umsPortalListener:
|
umsPortalListener:
|
||||||
limits:
|
limits:
|
||||||
cpu: 1
|
cpu: 99
|
||||||
memory: "1Gi"
|
memory: "1Gi"
|
||||||
requests:
|
requests:
|
||||||
cpu: 0.1
|
cpu: 0.1
|
||||||
memory: "250Mi"
|
memory: "256Mi"
|
||||||
umsPortalListenerDependencies:
|
umsPortalListenerDependencies:
|
||||||
limits:
|
limits:
|
||||||
cpu: 1
|
cpu: 99
|
||||||
memory: "1Gi"
|
memory: "1Gi"
|
||||||
requests:
|
requests:
|
||||||
cpu: 0.1
|
cpu: 0.1
|
||||||
memory: "250Mi"
|
memory: "256Mi"
|
||||||
umsPortalServer:
|
umsPortalServer:
|
||||||
limits:
|
limits:
|
||||||
cpu: 1
|
cpu: 99
|
||||||
memory: "1Gi"
|
memory: "1Gi"
|
||||||
requests:
|
requests:
|
||||||
cpu: 0.1
|
cpu: 0.1
|
||||||
memory: "250Mi"
|
memory: "256Mi"
|
||||||
umsStackDataUms:
|
umsStackDataUms:
|
||||||
limits:
|
limits:
|
||||||
cpu: 1
|
cpu: 99
|
||||||
memory: "1Gi"
|
memory: "1Gi"
|
||||||
requests:
|
requests:
|
||||||
cpu: 0.1
|
cpu: 0.1
|
||||||
memory: "250Mi"
|
memory: "256Mi"
|
||||||
umsStackDataSwp:
|
umsStackDataSwp:
|
||||||
limits:
|
limits:
|
||||||
cpu: 1
|
cpu: 99
|
||||||
memory: "1Gi"
|
memory: "1Gi"
|
||||||
requests:
|
requests:
|
||||||
cpu: 0.1
|
cpu: 0.1
|
||||||
memory: "250Mi"
|
memory: "256Mi"
|
||||||
umsStoreDav:
|
umsStoreDav:
|
||||||
limits:
|
limits:
|
||||||
cpu: 1
|
cpu: 99
|
||||||
memory: "1Gi"
|
memory: "1Gi"
|
||||||
requests:
|
requests:
|
||||||
cpu: 0.1
|
cpu: 0.1
|
||||||
memory: "250Mi"
|
memory: "256Mi"
|
||||||
umsUdmRestApi:
|
umsUdmRestApi:
|
||||||
limits:
|
limits:
|
||||||
cpu: 1
|
cpu: 99
|
||||||
memory: "1Gi"
|
memory: "1Gi"
|
||||||
requests:
|
requests:
|
||||||
cpu: 0.1
|
cpu: 0.1
|
||||||
memory: "250Mi"
|
memory: "256Mi"
|
||||||
umsUmcGateway:
|
umsUmcGateway:
|
||||||
limits:
|
limits:
|
||||||
cpu: 1
|
cpu: 99
|
||||||
memory: "1Gi"
|
memory: "1Gi"
|
||||||
requests:
|
requests:
|
||||||
cpu: 0.1
|
cpu: 0.1
|
||||||
memory: "250Mi"
|
memory: "256Mi"
|
||||||
umsUmcServer:
|
umsUmcServer:
|
||||||
limits:
|
limits:
|
||||||
cpu: 1
|
cpu: 99
|
||||||
memory: "1Gi"
|
memory: "1Gi"
|
||||||
requests:
|
requests:
|
||||||
cpu: 0.1
|
cpu: 0.1
|
||||||
memory: "250Mi"
|
memory: "256Mi"
|
||||||
wellKnown:
|
wellKnown:
|
||||||
limits:
|
limits:
|
||||||
cpu: 1
|
cpu: 99
|
||||||
memory: "250Mi"
|
memory: "256Mi"
|
||||||
requests:
|
requests:
|
||||||
cpu: 0.1
|
cpu: 0.1
|
||||||
memory: "50Mi"
|
memory: "32Mi"
|
||||||
xwiki:
|
xwiki:
|
||||||
limits:
|
limits:
|
||||||
cpu: 2
|
cpu: 99
|
||||||
memory: "8Gi"
|
memory: "8Gi"
|
||||||
requests:
|
requests:
|
||||||
cpu: 0.1
|
cpu: 0.1
|
||||||
memory: "6Gi"
|
memory: "1.5Gi"
|
||||||
...
|
...
|
||||||
|
|||||||
@@ -38,7 +38,7 @@ secrets:
|
|||||||
keycloakExtensionUser: {{ derivePassword 1 "long" (env "MASTER_PASSWORD" | default "sovereign-workplace") "postgres" "keycloak_extensions_user" | sha1sum | quote }}
|
keycloakExtensionUser: {{ derivePassword 1 "long" (env "MASTER_PASSWORD" | default "sovereign-workplace") "postgres" "keycloak_extensions_user" | sha1sum | quote }}
|
||||||
matrixUser: {{ derivePassword 1 "long" (env "MASTER_PASSWORD" | default "sovereign-workplace") "postgres" "matrix_user" | sha1sum | quote }}
|
matrixUser: {{ derivePassword 1 "long" (env "MASTER_PASSWORD" | default "sovereign-workplace") "postgres" "matrix_user" | sha1sum | quote }}
|
||||||
openprojectUser: {{ derivePassword 1 "long" (env "MASTER_PASSWORD" | default "sovereign-workplace") "postgres" "openproject_user" | sha1sum | quote }}
|
openprojectUser: {{ derivePassword 1 "long" (env "MASTER_PASSWORD" | default "sovereign-workplace") "postgres" "openproject_user" | sha1sum | quote }}
|
||||||
notificationsapiUser: {{ derivePassword 1 "long" (env "MASTER_PASSWORD" | default "sovereign-workplace") "postgres" "notificationsapi_user" | sha1sum | quote }}
|
notificationsApiUser: {{ derivePassword 1 "long" (env "MASTER_PASSWORD" | default "sovereign-workplace") "postgres" "notificationsapi_user" | sha1sum | quote }}
|
||||||
mariadb:
|
mariadb:
|
||||||
rootPassword: {{ derivePassword 1 "long" (env "MASTER_PASSWORD" | default "sovereign-workplace") "mariadb" "root_password" | sha1sum | quote }}
|
rootPassword: {{ derivePassword 1 "long" (env "MASTER_PASSWORD" | default "sovereign-workplace") "mariadb" "root_password" | sha1sum | quote }}
|
||||||
xwikiUser: {{ derivePassword 1 "long" (env "MASTER_PASSWORD" | default "sovereign-workplace") "mariadb" "xwiki_user" | sha1sum | quote }}
|
xwikiUser: {{ derivePassword 1 "long" (env "MASTER_PASSWORD" | default "sovereign-workplace") "mariadb" "xwiki_user" | sha1sum | quote }}
|
||||||
|
|||||||
Reference in New Issue
Block a user