{{/* SPDX-FileCopyrightText: 2023 Bundesministerium des Innern und für Heimat, PG ZenDiS "Projektgruppe für Aufbau ZenDiS" SPDX-License-Identifier: Apache-2.0 */}} --- global: imageRegistry: {{ .Values.global.imageRegistry | quote }} hostname: "{{ .Values.global.hosts.openxchange }}.{{ .Values.istio.domain }}" mysql: host: {{ .Values.databases.oxAppsuite.host | quote }} database: {{ .Values.databases.oxAppsuite.name | quote }} auth: user: {{ .Values.databases.oxAppsuite.username | quote }} password: {{ .Values.databases.oxAppsuite.password | default .Values.secrets.mariadb.rootPassword | quote }} rootPassword: {{ .Values.databases.oxAppsuite.password | default .Values.secrets.mariadb.rootPassword | quote }} istio: enabled: {{ .Values.istio.enabled }} nextcloud-integration-ui: image: repository: {{ .Values.images.openxchangeNextcloudIntegrationUI.repository | quote }} tag: {{ .Values.images.openxchangeNextcloudIntegrationUI.tag | quote }} imagePullSecrets: {{- range .Values.global.imagePullSecrets }} - name: {{ . | quote }} {{- end }} resources: {{ .Values.resources.openxchangeNextcloudIntegrationUI | toYaml | nindent 4 }} public-sector-ui: image: repository: {{ .Values.images.openxchangePublicSectorUI.repository | quote }} tag: {{ .Values.images.openxchangePublicSectorUI.tag | quote }} imagePullSecrets: {{- range .Values.global.imagePullSecrets }} - name: {{ . | quote }} {{- end }} pullPolicy: {{ .Values.global.imagePullPolicy | quote }} resources: {{ .Values.resources.openxchangePublicSectorUI | toYaml | nindent 4 }} appsuite: istio: enabled: {{ .Values.istio.enabled }} ingressGateway: hosts: - "{{ .Values.global.hosts.openxchange }}.{{ .Values.istio.domain }}" virtualServices: appsuite: hosts: - "{{ .Values.global.hosts.openxchange }}.{{ .Values.istio.domain }}" dav: hosts: - "{{ .Values.global.hosts.openxchange }}.{{ .Values.istio.domain }}" core-mw: masterPassword: {{ .Values.secrets.oxAppsuite.adminPassword | quote }} hostname: "{{ .Values.global.hosts.openxchange }}.{{ .Values.istio.domain }}" gotenberg: imagePullSecrets: {{- range .Values.global.imagePullSecrets }} - name: {{ . | quote }} {{- end }} image: repository: "{{ .Values.global.imageRegistry }}/{{ .Values.images.openxchangeGotenberg.repository }}" tag: {{ .Values.images.openxchangeGotenberg.tag | quote }} pullPolicy: {{ .Values.global.imagePullPolicy | quote }} resources: {{ .Values.resources.openxchangeGotenberg | toYaml | nindent 8 }} properties: "com.openexchange.oauth.provider.jwt.jwksUri": "https://{{ .Values.global.hosts.keycloak }}.{{ .Values.global.domain }}/realms/souvap/protocol/openid-connect/certs" "com.openexchange.oauth.provider.allowedIssuer": "https://{{ .Values.global.hosts.keycloak }}.{{ .Values.global.domain }}/realms/souvap" "com.openexchange.authentication.oauth.tokenEndpoint": "https://{{ .Values.global.hosts.keycloak }}.{{ .Values.global.domain }}/realms/souvap/protocol/openid-connect/token" "com.openexchange.authentication.oauth.clientSecret": {{ .Values.secrets.keycloak.clientSecret.as8oidc | quote }} "com.openexchange.oidc.rpRedirectURIAuth": "https://{{ .Values.global.hosts.openxchange }}.{{ .Values.istio.domain }}/appsuite/api/oidc/auth" "com.openexchange.oidc.opAuthorizationEndpoint": "https://{{ .Values.global.hosts.keycloak }}.{{ .Values.global.domain }}/realms/souvap/protocol/openid-connect/auth" "com.openexchange.oidc.opTokenEndpoint": "https://{{ .Values.global.hosts.keycloak }}.{{ .Values.global.domain }}/realms/souvap/protocol/openid-connect/token" "com.openexchange.oidc.opIssuer": "https://{{ .Values.global.hosts.keycloak }}.{{ .Values.global.domain }}/realms/souvap" "com.openexchange.oidc.opJwkSetEndpoint": "https://{{ .Values.global.hosts.keycloak }}.{{ .Values.global.domain }}/realms/souvap/protocol/openid-connect/certs" "com.openexchange.oidc.clientSecret": {{ .Values.secrets.keycloak.clientSecret.as8oidc | quote }} "com.openexchange.oidc.rpRedirectURIPostSSOLogout": "https://{{ .Values.global.hosts.openxchange }}.{{ .Values.istio.domain }}/appsuite/api/oidc/logout" "com.openexchange.oidc.opLogoutEndpoint": "https://{{ .Values.global.hosts.keycloak }}.{{ .Values.global.domain }}/realms/souvap/protocol/openid-connect/logout" "com.openexchange.oidc.rpRedirectURILogout": "https://{{ .Values.global.hosts.univentionCorporateServer }}.{{ .Values.global.domain }}" secretProperties: com.openexchange.cookie.hash.salt: {{ .Values.secrets.oxAppsuite.cookieHashSalt | quote }} com.openexchange.sessiond.encryptionKey: {{ .Values.secrets.oxAppsuite.sessiondEncryptionKey | quote }} com.openexchange.share.cryptKey: {{ .Values.secrets.oxAppsuite.shareCryptKey | quote }} propertiesFiles: "/opt/open-xchange/etc/ldapauth.properties": bindDNPassword: {{ .Values.secrets.univentionCorporateServer.ldapSearch.ox | quote }} java.naming.provider.url: "ldap://{{ .Values.ldap.host }}:389/dc=swp-ldap,dc=internal" uiSettings: "io.ox.nextcloud//server": "https://{{ .Values.global.hosts.intercomService }}.{{ .Values.global.domain }}/fs/" "io.ox.public-sector//ics/url": "https://{{ .Values.global.hosts.intercomService }}.{{ .Values.global.domain }}/" # Dynamic theme io.ox/dynamic-theme//mainColor: {{ .Values.theme.colors.primary | quote }} io.ox/dynamic-theme//logoURL: "https://{{ .Values.global.hosts.univentionCorporateServer }}.{{ .Values.global.domain }}/univention/portal/icons/logos/domain.svg" io.ox/dynamic-theme//topbarBackground: {{ .Values.theme.colors.white | quote }} io.ox/dynamic-theme//topbarColor: {{ .Values.theme.colors.black | quote }} io.ox/dynamic-theme//listSelected: {{ .Values.theme.colors.primary15 | quote }} io.ox/dynamic-theme//listHover: {{ .Values.theme.colors.secondaryGreyLight | quote }} io.ox/dynamic-theme//folderBackground: {{ .Values.theme.colors.white | quote }} io.ox/dynamic-theme//folderSelected: {{ .Values.theme.colors.primary15 | quote }} io.ox/dynamic-theme//folderHover: {{ .Values.theme.colors.secondaryGreyLight | quote }} secretETCFiles: # Format of the OX Guard master key: # MC+base64(20 random bytes) # RC+base64(20 random bytes) oxguardpass: | {{ .Values.secrets.oxAppsuite.oxguardMC }} {{ .Values.secrets.oxAppsuite.oxguardRC }} redis: auth: password: {{ .Values.secrets.redis.password | quote }} image: repository: {{ .Values.images.openxchangeCoreMW.repository | quote }} tag: {{ .Values.images.openxchangeCoreMW.tag | quote }} pullPolicy: {{ .Values.global.imagePullPolicy | quote }} update: image: repository: {{ .Values.images.openxchangeCoreMW.repository | quote }} tag: {{ .Values.images.openxchangeCoreMW.tag | quote }} imagePullSecrets: {{- range .Values.global.imagePullSecrets }} - name: {{ . | quote }} {{- end }} resources: {{ .Values.resources.openxchangeCoreMW | toYaml | nindent 6 }} core-ui: imagePullSecrets: {{- range .Values.global.imagePullSecrets }} - name: {{ . | quote }} {{- end }} image: repository: {{ .Values.images.openxchangeCoreUI.repository | quote }} tag: {{ .Values.images.openxchangeCoreUI.tag | quote }} pullPolicy: {{ .Values.global.imagePullPolicy | quote }} resources: {{ .Values.resources.openxchangeCoreUI | toYaml | nindent 6 }} core-ui-middleware: ingress: hosts: - host: "{{ .Values.global.hosts.openxchange }}.{{ .Values.istio.domain }}" enabled: false imagePullSecrets: {{- range .Values.global.imagePullSecrets }} - name: {{ . | quote }} {{- end }} image: repository: {{ .Values.images.openxchangeCoreUIMiddleware.repository | quote }} tag: {{ .Values.images.openxchangeCoreUIMiddleware.tag | quote }} pullPolicy: {{ .Values.global.imagePullPolicy | quote }} redis: auth: password: {{ .Values.secrets.redis.password | quote }} resources: {{ .Values.resources.openxchangeCoreUIMiddleware | toYaml | nindent 6 }} updater: resources: {{ .Values.resources.openxchangeCoreUIMiddlewareUpdater | toYaml | nindent 6 }} core-documentconverter: image: repository: {{ .Values.images.openxchangeDocumentConverter.repository | quote }} tag: {{ .Values.images.openxchangeDocumentConverter.tag | quote }} resources: {{- .Values.resources.openxchangeCoreDocumentConverter | toYaml | nindent 6 }} core-guidedtours: imagePullSecrets: {{- range .Values.global.imagePullSecrets }} - name: {{ . | quote }} {{- end }} image: repository: {{ .Values.images.openxchangeCoreGuidedtours.repository | quote }} tag: {{ .Values.images.openxchangeCoreGuidedtours.tag | quote }} pullPolicy: {{ .Values.global.imagePullPolicy | quote }} resources: {{- .Values.resources.openxchangeCoreGuidedtours | toYaml | nindent 6 }} core-imageconverter: image: repository: {{ .Values.images.openxchangeImageConverter.repository | quote }} tag: {{ .Values.images.openxchangeImageConverter.tag | quote }} resources: {{- .Values.resources.openxchangeCoreImageConverter | toYaml | nindent 6 }} guard-ui: imagePullSecrets: {{- range .Values.global.imagePullSecrets }} - name: {{ . | quote }} {{- end }} image: repository: "{{ .Values.global.imageRegistry }}/{{ .Values.images.openxchangeGuardUI.repository }}" tag: {{ .Values.images.openxchangeGuardUI.tag | quote }} pullPolicy: {{ .Values.global.imagePullPolicy | quote }} resources: {{- .Values.resources.openxchangeGuardUI | toYaml | nindent 6 }} core-user-guide: image: repository: {{ .Values.images.openxchangeCoreUserGuide.repository | quote }} tag: {{ .Values.images.openxchangeCoreUserGuide.tag | quote }} pullPolicy: {{ .Values.global.imagePullPolicy | quote }} imagePullSecrets: {{- range .Values.global.imagePullSecrets }} - name: {{ . | quote }} {{- end }} resources: {{- .Values.resources.openxchangeCoreUserGuide | toYaml | nindent 6 }} ...