mirror of
https://gitlab.opencode.de/bmi/opendesk/deployment/opendesk.git
synced 2025-12-06 07:21:36 +01:00
17e9b8a7bd
# [1.0.0](https://gitlab.opencode.de/bmi/opendesk/deployment/opendesk/compare/v0.9.0...v1.0.0) (2024-10-14) ### Bug Fixes * **ci:** Add TESTS_GRACE_PERIOD variable for run-tests job. ([1023f3d](1023f3d081)) * **ci:** Re-enable e2e test trigger. ([603b102](603b102f41)) * **ci:** Remove K8s secret creation for `EXTERNAL_REGISTRY_USERNAME` / `EXTERNAL_REGISTRY_PASSWORD`. ([cbe6b1a](cbe6b1ae6c)) * **ci:** Trigger e2e tests for multiple languages. ([9d7d89f](9d7d89f74f)) * **collabora:** Add ipFamilies cluster.networking option ([add2ab1](add2ab1a41)) * **collabora:** Reduce Collabora's securityContext capabilities. ([a7ea701](a7ea701cc6)) * **collabora:** Set Nextcloud URL for custom font support. ([370c7cd](370c7cd836)) * **collabora:** Update to 24.04.6.1.1. ([97f7a1c](97f7a1cafd)) * **collabora:** Update to 24.04.6.2.1. ([3d44193](3d441933ca)) * **collabora:** Update to 24.04.7.1.2. ([11ebb80](11ebb80494)) * **collabora:** Update to 24.04.7.2. ([5f72da4](5f72da4e57)) * **docs:** Update `replicas.yaml` and `docs/scaling.md`. ([45715a2](45715a2059)) * **docs:** Various updates. ([8aa1a7f](8aa1a7fa7d)) * **element:** Feature toggle for user controlled updates of their Element display name; new default for generating MatrixID, check docs/migrations.md for details. ([efc41cb](efc41cb3aa)) * **element:** Set Synapse rate limit. ([4ff720d](4ff720d36f)) * **element:** Update 'capabilities_approved' for NeoBoard Widget ([ade8535](ade8535c44)) * **element:** Update NeoBoard to 1.20.0 and `synapse-guest-module` to 2.0.0. ([11b0d44](11b0d441e0)) * **element:** Update NeoDateFix translations. ([71f21dc](71f21dc433)) * **element:** Update Synapse to v0.1150. ([12680e5](12680e5c1a)) * **element:** Use Element upstream without widgets. ([bdc6ad2](bdc6ad2864)) * **helmfile:** Add `cluster.networking.proxies`. Deployments need to set this if their load balancer or reverse proxy IPs are not part of the `cluster.networking.cidr`. ([a395759](a395759551)) * **helmfile:** Add `sample.yaml.gotmpl` to `dev` and `prod` env directories. ([dd80abe](dd80abe622)) * **helmfile:** Add new settings to `functional.yaml` for fileshare expiry dates. ([6b88f73](6b88f731eb)) * **helmfile:** Check imagePullSecrets templates for all resources ([13e0bb8](13e0bb8d68)) * **helmfile:** Move Intercom-Service to Nubus component. ([ef1dad7](ef1dad7433)) * **helmfile:** Move OX-Connector to Open-Xchange component. ([751f578](751f5783d0)) * **helmfile:** Remove NET_RAW capabilities ([e512486](e512486e74)) * **helmfile:** Remove some YAML linter warnings. ([d641359](d641359c29)) * **helmfile:** Remove toggle `functional.email.systemGenerated.useComponentInSenderdomain`. Mails will no longer use a component subdomain in their sender address. ([b60fe39](b60fe39b5c)) * **helmfile:** Switch fom dep5 to REUSE.toml. ([592f031](592f03135f)) * **helmfile:** Update portal and branding. ([6ba6923](6ba6923612)) * **helmfile:** Update replicas.yaml. ([8ef69ec](8ef69ecaf2)) * **helmfile:** Update to support Helmfile 1.0.0-rc5. ([f4b9395](f4b9395b41)) * **intercom-service:** Customizable user mapper. ([a7e5f64](a7e5f64b50)) * **jitsi:** Improve handling of non authorized users. ([8bca56d](8bca56d4ac)) * **jitsi:** Update chart for improved openDesk look & feel. ([f297d8c](f297d8c0b7)) * **jitsi:** Update Helm chart and Keycloak Adapter image. ([3ad81e6](3ad81e6b92)) * **jitsi:** Update images to `9646-stable`. ([49ad36e](49ad36ef4e)) * **jitsi:** Updated branding and new option `functional.dataProtection.jitsiRoomHistory.enabled` defaulting to `[secure]`. ([67d52c7](67d52c771e)) * **nextcloud:** Add support for secret keys for administrator and ldap credentials ([7aee88e](7aee88ec94)) * **nextcloud:** Bump image to incorporate latest PHP fixes. ([c9ae039](c9ae0391b0)) * **nextcloud:** Remove `/index.php`. ([3baf37c](3baf37c509)) * **nextcloud:** Update to 29.0.5 and support for new functional settings regarding sharing of files. See the options related to `functional.filestore.sharing` in `functional.yaml` and also `migrations.md` regarding their defaults that differ from the previous standard behaviour of openDesk. ([ac148d0](ac148d0c28)) * **nextcloud:** Update to 29.0.6 including latest app updates. ([9950b73](9950b73ae3)) * **nubus:** Add interim ingress configuration fixing UMC in German ([6a60c6d](6a60c6dd43)) * **nubus:** Only use one LDAP Primary and make replica count of Secondary and Proxy others configurable ([31753ff](31753ffb19)) * **nubus:** Reduce lint failures, especially take care of pullSecrets ([e923468](e923468cd6)) * **nubus:** Remove duplicated "nubusPortalFrontend" ([8cd2f3a](8cd2f3a993)) * **nubus:** Remove superfluous variables ([a7d3d25](a7d3d2585c)) * **nubus:** Update "openDesk Standard" OX profile. ([fdb37c3](fdb37c3943)) * **nubus:** Update customization for improved UX. ([b9db81f](b9db81f69d)) * **nubus:** Update LDAP openDesk schemas and add related openDesk config options to user. ([e3238f9](e3238f96f7)) * **nubus:** Update LDAP to openLDAP 2.5. ([c63e725](c63e725525)) * **nubus:** Update opendesk-nubus to set default OXContext and improved OXProfile, update migrations to (optionally) ldap-patch OXContext for `Administrator`/`default.admin` as well as patch the OXProfile to 1.0 default state. ([e619db6](e619db6da2)) * **nubus:** Update to 0.63.2 ([28dd762](28dd762db3)) * **nubus:** Update to 0.64.2. ([fc7099a](fc7099a8a6)) * **nubus:** Update to Nubus 0.62.2. ([8229949](8229949b47)) * **nubus:** Update to version 0.57.3. ([11f750e](11f750e1d6)) * **open-xchange:** DisplayName settings for OX-Connector. ([b7faa24](b7faa24d76)) * **open-xchange:** Update cluster internal Nextcloud URL. ([b1946d0](b1946d0c1d)) * **open-xchange:** Update Migrations for OX-Connector. ([6325b69](6325b69a91)) * **open-xchange:** Update OpenXchange Appsuite Bootstrap to v2.1.0 ([fb8f7cd](fb8f7cd28a)) * **open-xchange:** Update OX AppSuite to 8.26 and improve configuration including server-side Element integration. ([61d7496](61d74966d0)) * **openproject:** Bump OpenProject to 14.5.1. ([deacbc9](deacbc9db5)) * **openproject:** Remove `OPENPROJECT_PER__PAGE__OPTIONS` to enable functional administration of the setting. ([df9380b](df9380b924)) * **openproject:** Update Helm chart to v8.0.0 and explicitly template resources. ([91e34aa](91e34aabaa)) * **openproject:** Update to 14.6.0. ([560aa30](560aa30cba)) * **openproject:** Update to 14.6.1. ([cc4b359](cc4b359124)) * **openproject:** Updated bootstrap image does not fail on rerun. ([7d0d6ea](7d0d6ea8d1)) * **services:** Bump Postfix Helm chart to 2.2.0. ([f194f24](f194f24845)) * **services:** Support application based connection limits and password updates for PostgreSQL and MariaDB. ([c03566d](c03566dd63)) * **xwiki:** Disable check for local Office component. ([a91f181](a91f181c46)) * **xwiki:** Enable IAM controlled functional admin role. ([fa8572f](fa8572f785)) * **xwiki:** Update to 16.4.4 - updated. ([6347966](6347966765)) * **xwiki:** Update to 16.4.4. ([d693ff9](d693ff94f4)) ### Features * **element:** Add feature flag `functional.dataProtection.matrixPresence.enabled` that defaults to `[secure]` to avoid that openDesk provides presence information on users unintended. We include the hardcoded configuration in openDesk Synapse that users cannot change their displayname. ([4b99357](4b99357b21)) * **helmfile:** Add customization.yaml to define custom files for helmfile releases ([180ccdd](180ccddfaa)) * **helmfile:** Add fine-granular registry overwrites ([7348547](7348547d96)) * **helmfile:** Add support for argocd git-ops deployment ([9f081d8](9f081d8567)) * **helmfile:** Change default subdomain names. Attention, consult docs/migrations.md for upgrade deployments. ([3d84e80](3d84e804c2)) * **helmfile:** Full ArgoCD support ([7bf8e69](7bf8e6976a)) * **helmfile:** Support feature toggle `email.systemGenerated.useComponentInSenderdomain`. ([a46a632](a46a632616)) * **nextcloud:** Use nextcloud image with bundled nginx ([81f5969](81f5969653)) * **nubus:** Update IAM components. ([ce03400](ce03400043)) * **nubus:** Update to Nubus 0.39.2 chart ([7345563](73455630fd)) * **open-xchange:** Support for email migration feature toggle enabling masterpassword authentication in Dovecot and AppSuite. Requires openDesk Enterprise. ([356d8df](356d8dfbfd)) * **services:** [bmi/opendesk/deployment/opendesk[#66](https://gitlab.opencode.de/bmi/opendesk/deployment/opendesk/issues/66)] Add dkimpy-milter to sign outgoing emails with DKIM and use local postfix as mail relay in all components. ([fbe4909](fbe4909a8e)) ### BREAKING CHANGES * **helmfile:** Upgrading from previous releases requires manual steps, read `./docs/migrations.md` carefully.
openDesk Deployment Automation
- Overview
- Requirements
- Getting started
- Advanced customization
- Development
- Releases
- Components
- Feedback
- License
- Copyright
- Footnotes
Overview
openDesk is a Kubernetes based, open-source and cloud-native digital workplace suite provided by the Zentrum für Digitale Souveränität der Öffentlichen Verwaltung (ZenDiS) GmbH.
openDesk currently features the following functional main components:
| Function | Functional Component | Component Version |
Upstream Documentation |
|---|---|---|---|
| Chat & collaboration | Element ft. Nordeck widgets | 1.11.67 | For the most recent release |
| Diagram editor | CryptPad ft. diagrams.net | 5.6.0 | For the most recent release |
| File management | Nextcloud | 29.0.7 | SNextcloud 29 |
| Groupware | OX App Suite | 8.28 | Online documentation available from within the installed application; [Additional resources](https://documentation.open-xchange.com/ |
| Knowledge management | XWiki | 16.4.4 | For the most recent release |
| Portal & IAM | Nubus | 1.0 | Univention's documentation website |
| Project management | OpenProject | 14.6.1 | For the most recent release |
| Videoconferencing | Jitsi | 2.0.9646 | For the most recent release |
| Weboffice | Collabora | 24.04.7.2 | Online documentation available from within the installed application; Additional resources |
While not all components are perfectly shaped for the execution inside containers, one of the project's objectives is to align the applications with best practices regarding container design and operations.
This documentation aims to give you all that is needed to set up your own instance of the openDesk.
Basic knowledge of Kubernetes and DevOps processes is required though.
Requirements
⟶ Visit our detailed Requirements overview.
Getting started
⟶ Visit our detailed Getting started guide.
Advanced customization
Development
⟶ To understand the repository contents from a developer perspective please read the Development guide.
Releases
All technical releases are created using Semantic Versioning.
Gitlab provides an overview on the releases of this project.
Please find a list of the artifacts related to the release either in the source code archive attached to the release or in the files from the release's git-tag:
./helmfile/environments/default/images.yaml./helmfile/environments/default/charts.yaml
⟶ Visit our detailed Workflow docs.
Components
⟶ Visit our detailed Component docs.
Feedback
We love to get feedback from you!
Related to the deployment / contents of this repository, please use the issues within this project.
If you want to address other topics, please check the section "Rückmeldungen und Beteiligung" in the OVERVIEW.md of the openDesk Info Repository.
License
This project uses the following license: Apache-2.0
Copyright
Copyright (C) 2024 Zentrum für Digitale Souveränität der Öffentlichen Verwaltung (ZenDiS) GmbH