diff --git a/pygluu/kubernetes/templates/helm/gluu-1.8.29.tgz b/pygluu/kubernetes/templates/helm/gluu-1.8.29.tgz new file mode 100644 index 00000000..ec824db0 Binary files /dev/null and b/pygluu/kubernetes/templates/helm/gluu-1.8.29.tgz differ diff --git a/pygluu/kubernetes/templates/helm/gluu/Chart.yaml b/pygluu/kubernetes/templates/helm/gluu/Chart.yaml index 0b9d9ba0..76911078 100644 --- a/pygluu/kubernetes/templates/helm/gluu/Chart.yaml +++ b/pygluu/kubernetes/templates/helm/gluu/Chart.yaml @@ -46,73 +46,73 @@ maintainers: email: support@gluu.org description: Gluu Access and Identity Mangement name: gluu -version: 1.8.28 +version: 1.8.29 dependencies: - name: config condition: global.config.enabled - version: 1.8.28 + version: 1.8.29 - name: opendj condition: global.opendj.enabled - version: 1.8.28 + version: 1.8.29 - name: jackrabbit condition: global.jackrabbit.enabled - version: 1.8.28 + version: 1.8.29 - name: oxauth condition: global.oxauth.enabled - version: 1.8.28 + version: 1.8.29 - name: fido2 condition: global.fido2.enabled - version: 1.8.28 + version: 1.8.29 - name: scim condition: global.scim.enabled - version: 1.8.28 + version: 1.8.29 - name: oxtrust condition: global.oxtrust.enabled - version: 1.8.28 + version: 1.8.29 - name: nginx-ingress condition: global.nginx-ingress.enabled - version: 1.8.28 + version: 1.8.29 - name: oxshibboleth condition: global.oxshibboleth.enabled - version: 1.8.28 + version: 1.8.29 - name: oxpassport - version: 1.8.28 + version: 1.8.29 condition: config.configmap.gluuPassportEnabled - name: casa - version: 1.8.28 + version: 1.8.29 condition: config.configmap.gluuCasaEnabled - name: oxauth-key-rotation condition: global.oxauth-key-rotation.enabled - version: 1.8.28 + version: 1.8.29 - name: cr-rotate - version: 1.8.28 + version: 1.8.29 condition: global.cr-rotate.enabled - name: oxd-server condition: global.oxd-server.enabled - version: 1.8.28 + version: 1.8.29 - name: persistence condition: global.persistence.enabled - version: 1.8.28 + version: 1.8.29 - name: gluu-istio-ingress condition: global.istio.ingress - version: 1.8.28 + version: 1.8.29 - name: gluu-alb-ingress condition: global.alb.ingress - version: 1.8.28 + version: 1.8.29 diff --git a/pygluu/kubernetes/templates/helm/gluu/README.md b/pygluu/kubernetes/templates/helm/gluu/README.md index 783c6aa1..a00b5945 100644 --- a/pygluu/kubernetes/templates/helm/gluu/README.md +++ b/pygluu/kubernetes/templates/helm/gluu/README.md @@ -1,6 +1,6 @@ # gluu -![Version: 1.8.28](https://img.shields.io/badge/Version-1.8.28-informational?style=flat-square) ![AppVersion: 4.5.3](https://img.shields.io/badge/AppVersion-4.5.3-informational?style=flat-square) +![Version: 1.8.29](https://img.shields.io/badge/Version-1.8.29-informational?style=flat-square) ![AppVersion: 4.5.3](https://img.shields.io/badge/AppVersion-4.5.3-informational?style=flat-square) Gluu Access and Identity Mangement @@ -23,32 +23,33 @@ Kubernetes: `>=v1.22.0-0` | Repository | Name | Version | |------------|------|---------| -| | casa | 1.8.28 | -| | config | 1.8.28 | -| | cr-rotate | 1.8.28 | -| | fido2 | 1.8.28 | -| | gluu-alb-ingress | 1.8.28 | -| | gluu-istio-ingress | 1.8.28 | -| | jackrabbit | 1.8.28 | -| | nginx-ingress | 1.8.28 | -| | opendj | 1.8.28 | -| | oxauth | 1.8.28 | -| | oxauth-key-rotation | 1.8.28 | -| | oxd-server | 1.8.28 | -| | oxpassport | 1.8.28 | -| | oxshibboleth | 1.8.28 | -| | oxtrust | 1.8.28 | -| | persistence | 1.8.28 | -| | scim | 1.8.28 | +| | casa | 1.8.29 | +| | config | 1.8.29 | +| | cr-rotate | 1.8.29 | +| | fido2 | 1.8.29 | +| | gluu-alb-ingress | 1.8.29 | +| | gluu-istio-ingress | 1.8.29 | +| | jackrabbit | 1.8.29 | +| | nginx-ingress | 1.8.29 | +| | opendj | 1.8.29 | +| | oxauth | 1.8.29 | +| | oxauth-key-rotation | 1.8.29 | +| | oxd-server | 1.8.29 | +| | oxpassport | 1.8.29 | +| | oxshibboleth | 1.8.29 | +| | oxtrust | 1.8.29 | +| | persistence | 1.8.29 | +| | scim | 1.8.29 | ## Values | Key | Type | Default | Description | |-----|------|---------|-------------| -| casa | object | `{"additionalAnnotations":{},"additionalLabels":{},"affinity":{},"dnsConfig":{},"dnsPolicy":"","hpa":{"behavior":{},"enabled":true,"maxReplicas":10,"metrics":[],"minReplicas":1,"targetCPUUtilizationPercentage":50},"image":{"pullPolicy":"IfNotPresent","pullSecrets":[],"repository":"gluufederation/casa","tag":"4.5.3-1"},"lifecycle":{},"livenessProbe":{"httpGet":{"path":"/casa/health-check","port":"http-casa"},"initialDelaySeconds":25,"periodSeconds":25,"timeoutSeconds":5},"nodeSelector":{},"pdb":{"enabled":true,"maxUnavailable":"90%"},"readinessProbe":{"httpGet":{"path":"/casa/health-check","port":"http-casa"},"initialDelaySeconds":30,"periodSeconds":30,"timeoutSeconds":5},"replicas":1,"resources":{"limits":{"cpu":"500m","memory":"500Mi"},"requests":{"cpu":"500m","memory":"500Mi"}},"service":{"casaServiceName":"casa","name":"http-casa","port":8080},"tolerations":[],"topologySpreadConstraints":{},"usrEnvs":{"normal":{},"secret":{}},"volumeMounts":[],"volumes":[]}` | Gluu Casa ("Casa") is a self-service web portal for end-users to manage authentication and authorization preferences for their account in a Gluu Server. | +| casa | object | `{"additionalAnnotations":{},"additionalLabels":{},"affinity":{},"customScripts":[],"dnsConfig":{},"dnsPolicy":"","hpa":{"behavior":{},"enabled":true,"maxReplicas":10,"metrics":[],"minReplicas":1,"targetCPUUtilizationPercentage":50},"image":{"pullPolicy":"IfNotPresent","pullSecrets":[],"repository":"gluufederation/casa","tag":"4.5.3-1"},"lifecycle":{},"livenessProbe":{"httpGet":{"path":"/casa/health-check","port":"http-casa"},"initialDelaySeconds":25,"periodSeconds":25,"timeoutSeconds":5},"nodeSelector":{},"pdb":{"enabled":true,"maxUnavailable":"90%"},"readinessProbe":{"httpGet":{"path":"/casa/health-check","port":"http-casa"},"initialDelaySeconds":30,"periodSeconds":30,"timeoutSeconds":5},"replicas":1,"resources":{"limits":{"cpu":"500m","memory":"500Mi"},"requests":{"cpu":"500m","memory":"500Mi"}},"service":{"casaServiceName":"casa","name":"http-casa","port":8080},"tolerations":[],"topologySpreadConstraints":{},"usrEnvs":{"normal":{},"secret":{}},"volumeMounts":[],"volumes":[]}` | Gluu Casa ("Casa") is a self-service web portal for end-users to manage authentication and authorization preferences for their account in a Gluu Server. | | casa.additionalAnnotations | object | `{}` | Additional annotations that will be added across all resources in the format of {cert-manager.io/issuer: "letsencrypt-prod"}. key app is taken | | casa.additionalLabels | object | `{}` | Additional labels that will be added across all resources definitions in the format of {mylabel: "myapp"} | | casa.affinity | object | `{}` | https://kubernetes.io/docs/concepts/scheduling-eviction/assign-pod-node/ | +| casa.customScripts | list | `[]` | Add custom scripts that have been mounted to run before the entrypoint. - /tmp/custom.sh - /tmp/custom2.sh | | casa.dnsConfig | object | `{}` | Add custom dns config | | casa.dnsPolicy | string | `""` | Add custom dns policy | | casa.hpa | object | `{"behavior":{},"enabled":true,"maxReplicas":10,"metrics":[],"minReplicas":1,"targetCPUUtilizationPercentage":50}` | Configure the HorizontalPodAutoscaler | @@ -79,7 +80,7 @@ Kubernetes: `>=v1.22.0-0` | casa.usrEnvs.secret | object | `{}` | Add custom secret envs to the service variable1: value1 | | casa.volumeMounts | list | `[]` | Configure any additional volumesMounts that need to be attached to the containers | | casa.volumes | list | `[]` | Configure any additional volumes that need to be attached to the pod | -| config | object | `{"additionalAnnotations":{},"additionalLabels":{},"adminPass":"P@ssw0rd","affinity":{},"city":"Austin","configmap":{"cnAwsAccessKeyId":"","cnAwsDefaultRegion":"us-west-1","cnAwsProfile":"gluu","cnAwsSecretAccessKey":"","cnAwsSecretsEndpointUrl":"","cnAwsSecretsNamePrefix":"gluu","cnAwsSecretsReplicaRegions":[],"cnGoogleProjectId":"google-project-to-save-config-and-secrets-to","cnGoogleServiceAccount":"SWFtTm90YVNlcnZpY2VBY2NvdW50Q2hhbmdlTWV0b09uZQo=","cnGoogleSpannerDatabaseId":"","cnGoogleSpannerEmulatorHost":"","cnGoogleSpannerInstanceId":"","cnSecretGoogleSecretNamePrefix":"gluu","cnSecretGoogleSecretVersionId":"latest","cnSqlDbDialect":"mysql","cnSqlDbHost":"my-release-mysql.default.svc.cluster.local","cnSqlDbName":"gluu","cnSqlDbPort":3306,"cnSqlDbTimezone":"UTC","cnSqlDbUser":"gluu","cnSqlPasswordFile":"/etc/gluu/conf/sql_password","cnSqldbUserPassword":"Test1234#","containerMetadataName":"kubernetes","gluuCacheType":"NATIVE_PERSISTENCE","gluuCasaEnabled":false,"gluuCouchbaseBucketPrefix":"gluu","gluuCouchbaseCertFile":"/etc/certs/couchbase.crt","gluuCouchbaseCrt":"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","gluuCouchbaseIndexNumReplica":0,"gluuCouchbasePass":"P@ssw0rd","gluuCouchbasePassFile":"/etc/gluu/conf/couchbase_password","gluuCouchbaseSuperUser":"admin","gluuCouchbaseSuperUserPass":"P@ssw0rd","gluuCouchbaseSuperUserPassFile":"/etc/gluu/conf/couchbase_superuser_password","gluuCouchbaseUrl":"cbgluu.default.svc.cluster.local","gluuCouchbaseUser":"gluu","gluuDocumentStoreType":"DB","gluuJackrabbitAdminId":"admin","gluuJackrabbitAdminIdFile":"/etc/gluu/conf/jackrabbit_admin_id","gluuJackrabbitAdminPassFile":"/etc/gluu/conf/jackrabbit_admin_password","gluuJackrabbitPostgresDatabaseName":"jackrabbit","gluuJackrabbitPostgresHost":"postgresql.postgres.svc.cluster.local","gluuJackrabbitPostgresPasswordFile":"/etc/gluu/conf/postgres_password","gluuJackrabbitPostgresPort":5432,"gluuJackrabbitPostgresUser":"jackrabbit","gluuJackrabbitSyncInterval":300,"gluuJackrabbitUrl":"http://jackrabbit:8080","gluuLdapUrl":"opendj:1636","gluuMaxRamPercent":"75.0","gluuOxauthBackend":"oxauth:8080","gluuOxdAdminCertCn":"oxd-server","gluuOxdApplicationCertCn":"oxd-server","gluuOxdBindIpAddresses":"*","gluuOxdServerUrl":"oxd-server:8443","gluuOxtrustApiEnabled":false,"gluuOxtrustApiTestMode":false,"gluuOxtrustBackend":"oxtrust:8080","gluuOxtrustConfigGeneration":true,"gluuPassportEnabled":false,"gluuPassportFailureRedirectUrl":"","gluuPersistenceLdapMapping":"default","gluuRedisSentinelGroup":"","gluuRedisSslTruststore":"","gluuRedisType":"STANDALONE","gluuRedisUrl":"redis:6379","gluuRedisUseSsl":"false","gluuSamlEnabled":false,"gluuScimProtectionMode":"OAUTH","gluuSyncCasaManifests":false,"gluuSyncShibManifests":false,"lbAddr":""},"countryCode":"US","dnsConfig":{},"dnsPolicy":"","email":"support@gluu.com","image":{"pullSecrets":[],"repository":"gluufederation/config-init","tag":"4.5.3-1"},"ldapPass":"P@ssw0rd","lifecycle":{},"migration":{"enabled":false,"migrationDataFormat":"ldif","migrationDir":"/ce-migration"},"nodeSelector":{},"orgName":"Gluu","redisPass":"P@assw0rd","resources":{"limits":{"cpu":"300m","memory":"300Mi"},"requests":{"cpu":"300m","memory":"300Mi"}},"salt":"","state":"TX","tolerations":[],"usrEnvs":{"normal":{},"secret":{}},"volumeMounts":[],"volumes":[]}` | Configuration parameters for setup and initial configuration secret and config layers used by Gluu services. | +| config | object | `{"additionalAnnotations":{},"additionalLabels":{},"adminPass":"P@ssw0rd","affinity":{},"city":"Austin","configmap":{"cnAwsAccessKeyId":"","cnAwsDefaultRegion":"us-west-1","cnAwsProfile":"gluu","cnAwsSecretAccessKey":"","cnAwsSecretsEndpointUrl":"","cnAwsSecretsNamePrefix":"gluu","cnAwsSecretsReplicaRegions":[],"cnGoogleProjectId":"google-project-to-save-config-and-secrets-to","cnGoogleServiceAccount":"SWFtTm90YVNlcnZpY2VBY2NvdW50Q2hhbmdlTWV0b09uZQo=","cnGoogleSpannerDatabaseId":"","cnGoogleSpannerEmulatorHost":"","cnGoogleSpannerInstanceId":"","cnSecretGoogleSecretNamePrefix":"gluu","cnSecretGoogleSecretVersionId":"latest","cnSqlDbDialect":"mysql","cnSqlDbHost":"my-release-mysql.default.svc.cluster.local","cnSqlDbName":"gluu","cnSqlDbPort":3306,"cnSqlDbTimezone":"UTC","cnSqlDbUser":"gluu","cnSqlPasswordFile":"/etc/gluu/conf/sql_password","cnSqldbUserPassword":"Test1234#","containerMetadataName":"kubernetes","gluuCacheType":"NATIVE_PERSISTENCE","gluuCasaEnabled":false,"gluuCouchbaseBucketPrefix":"gluu","gluuCouchbaseCertFile":"/etc/certs/couchbase.crt","gluuCouchbaseCrt":"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","gluuCouchbaseIndexNumReplica":0,"gluuCouchbasePass":"P@ssw0rd","gluuCouchbasePassFile":"/etc/gluu/conf/couchbase_password","gluuCouchbaseSuperUser":"admin","gluuCouchbaseSuperUserPass":"P@ssw0rd","gluuCouchbaseSuperUserPassFile":"/etc/gluu/conf/couchbase_superuser_password","gluuCouchbaseUrl":"cbgluu.default.svc.cluster.local","gluuCouchbaseUser":"gluu","gluuDocumentStoreType":"DB","gluuJackrabbitAdminId":"admin","gluuJackrabbitAdminIdFile":"/etc/gluu/conf/jackrabbit_admin_id","gluuJackrabbitAdminPassFile":"/etc/gluu/conf/jackrabbit_admin_password","gluuJackrabbitPostgresDatabaseName":"jackrabbit","gluuJackrabbitPostgresHost":"postgresql.postgres.svc.cluster.local","gluuJackrabbitPostgresPasswordFile":"/etc/gluu/conf/postgres_password","gluuJackrabbitPostgresPort":5432,"gluuJackrabbitPostgresUser":"jackrabbit","gluuJackrabbitSyncInterval":300,"gluuJackrabbitUrl":"http://jackrabbit:8080","gluuLdapUrl":"opendj:1636","gluuMaxRamPercent":"75.0","gluuOxauthBackend":"oxauth:8080","gluuOxdAdminCertCn":"oxd-server","gluuOxdApplicationCertCn":"oxd-server","gluuOxdBindIpAddresses":"*","gluuOxdServerUrl":"oxd-server:8443","gluuOxtrustApiEnabled":false,"gluuOxtrustApiTestMode":false,"gluuOxtrustBackend":"oxtrust:8080","gluuOxtrustConfigGeneration":true,"gluuPassportEnabled":false,"gluuPassportFailureRedirectUrl":"","gluuPersistenceLdapMapping":"default","gluuRedisSentinelGroup":"","gluuRedisSslTruststore":"","gluuRedisType":"STANDALONE","gluuRedisUrl":"redis:6379","gluuRedisUseSsl":"false","gluuSamlEnabled":false,"gluuScimProtectionMode":"OAUTH","gluuSyncCasaManifests":false,"gluuSyncShibManifests":false,"lbAddr":""},"countryCode":"US","customScripts":[],"dnsConfig":{},"dnsPolicy":"","email":"support@gluu.com","image":{"pullSecrets":[],"repository":"gluufederation/config-init","tag":"4.5.3-1"},"ldapPass":"P@ssw0rd","lifecycle":{},"migration":{"enabled":false,"migrationDataFormat":"ldif","migrationDir":"/ce-migration"},"nodeSelector":{},"orgName":"Gluu","redisPass":"P@assw0rd","resources":{"limits":{"cpu":"300m","memory":"300Mi"},"requests":{"cpu":"300m","memory":"300Mi"}},"salt":"","state":"TX","tolerations":[],"usrEnvs":{"normal":{},"secret":{}},"volumeMounts":[],"volumes":[]}` | Configuration parameters for setup and initial configuration secret and config layers used by Gluu services. | | config.additionalAnnotations | object | `{}` | Additional annotations that will be added across all resources in the format of {cert-manager.io/issuer: "letsencrypt-prod"}. key app is taken | | config.additionalLabels | object | `{}` | Additional labels that will be added across all resources definitions in the format of {mylabel: "myapp"} | | config.adminPass | string | `"P@ssw0rd"` | Admin password to log in to the UI. | @@ -149,6 +150,7 @@ Kubernetes: `>=v1.22.0-0` | config.configmap.gluuSyncShibManifests | bool | `false` | Activate manual Shib files sync - depreciated | | config.configmap.lbAddr | string | `""` | Loadbalancer address for AWS if the FQDN is not registered. | | config.countryCode | string | `"US"` | Country code. Used for certificate creation. | +| config.customScripts | list | `[]` | Add custom scripts that have been mounted to run before the entrypoint. - /tmp/custom.sh - /tmp/custom2.sh | | config.dnsConfig | object | `{}` | Add custom dns config | | config.dnsPolicy | string | `""` | Add custom dns policy | | config.email | string | `"support@gluu.com"` | Email address of the administrator usually. Used for certificate creation. | @@ -199,10 +201,11 @@ Kubernetes: `>=v1.22.0-0` | cr-rotate.usrEnvs.secret | object | `{}` | Add custom secret envs to the service variable1: value1 | | cr-rotate.volumeMounts | list | `[]` | Configure any additional volumesMounts that need to be attached to the containers | | cr-rotate.volumes | list | `[]` | Configure any additional volumes that need to be attached to the pod | -| fido2 | object | `{"additionalAnnotations":{},"additionalLabels":{},"affinity":{},"dnsConfig":{},"dnsPolicy":"","hpa":{"behavior":{},"enabled":true,"maxReplicas":10,"metrics":[],"minReplicas":1,"targetCPUUtilizationPercentage":50},"image":{"pullPolicy":"IfNotPresent","pullSecrets":[],"repository":"gluufederation/fido2","tag":"4.5.3-1"},"lifecycle":{},"livenessProbe":{"httpGet":{"path":"/fido2/restv1/fido2/configuration","port":"http-fido2"},"initialDelaySeconds":25,"periodSeconds":25,"timeoutSeconds":5},"nodeSelector":{},"pdb":{"enabled":true,"maxUnavailable":"90%"},"readinessProbe":{"httpGet":{"path":"/fido2/restv1/fido2/configuration","port":"http-fido2"},"initialDelaySeconds":30,"periodSeconds":30,"timeoutSeconds":5},"replicas":1,"resources":{"limits":{"cpu":"500m","memory":"500Mi"},"requests":{"cpu":"500m","memory":"500Mi"}},"service":{"fido2ServiceName":"fido2","name":"http-fido2","port":8080},"tolerations":[],"topologySpreadConstraints":{},"usrEnvs":{"normal":{},"secret":{}},"volumeMounts":[],"volumes":[]}` | FIDO 2.0 (FIDO2) is an open authentication standard that enables leveraging common devices to authenticate to online services in both mobile and desktop environments. | +| fido2 | object | `{"additionalAnnotations":{},"additionalLabels":{},"affinity":{},"customScripts":[],"dnsConfig":{},"dnsPolicy":"","hpa":{"behavior":{},"enabled":true,"maxReplicas":10,"metrics":[],"minReplicas":1,"targetCPUUtilizationPercentage":50},"image":{"pullPolicy":"IfNotPresent","pullSecrets":[],"repository":"gluufederation/fido2","tag":"4.5.3-1"},"lifecycle":{},"livenessProbe":{"httpGet":{"path":"/fido2/restv1/fido2/configuration","port":"http-fido2"},"initialDelaySeconds":25,"periodSeconds":25,"timeoutSeconds":5},"nodeSelector":{},"pdb":{"enabled":true,"maxUnavailable":"90%"},"readinessProbe":{"httpGet":{"path":"/fido2/restv1/fido2/configuration","port":"http-fido2"},"initialDelaySeconds":30,"periodSeconds":30,"timeoutSeconds":5},"replicas":1,"resources":{"limits":{"cpu":"500m","memory":"500Mi"},"requests":{"cpu":"500m","memory":"500Mi"}},"service":{"fido2ServiceName":"fido2","name":"http-fido2","port":8080},"tolerations":[],"topologySpreadConstraints":{},"usrEnvs":{"normal":{},"secret":{}},"volumeMounts":[],"volumes":[]}` | FIDO 2.0 (FIDO2) is an open authentication standard that enables leveraging common devices to authenticate to online services in both mobile and desktop environments. | | fido2.additionalAnnotations | object | `{}` | Additional annotations that will be added across all resources in the format of {cert-manager.io/issuer: "letsencrypt-prod"}. key app is taken | | fido2.additionalLabels | object | `{}` | Additional labels that will be added across all resources definitions in the format of {mylabel: "myapp"} | | fido2.affinity | object | `{}` | https://kubernetes.io/docs/concepts/scheduling-eviction/assign-pod-node/ | +| fido2.customScripts | list | `[]` | Add custom scripts that have been mounted to run before the entrypoint. - /tmp/custom.sh - /tmp/custom2.sh | | fido2.dnsConfig | object | `{}` | Add custom dns config | | fido2.dnsPolicy | string | `""` | Add custom dns policy | | fido2.hpa | object | `{"behavior":{},"enabled":true,"maxReplicas":10,"metrics":[],"minReplicas":1,"targetCPUUtilizationPercentage":50}` | Configure the HorizontalPodAutoscaler | @@ -371,11 +374,12 @@ Kubernetes: `>=v1.22.0-0` | global.usrEnvs | object | `{"normal":{},"secret":{}}` | Add custom normal and secret envs to the service. Envs defined in global.userEnvs will be globally available to all services | | global.usrEnvs.normal | object | `{}` | Add custom normal envs to the service. variable1: value1 | | global.usrEnvs.secret | object | `{}` | Add custom secret envs to the service. variable1: value1 | -| jackrabbit | object | `{"additionalAnnotations":{},"additionalLabels":{},"affinity":{},"clusterId":"","dnsConfig":{},"dnsPolicy":"","hpa":{"behavior":{},"enabled":true,"maxReplicas":10,"metrics":[],"minReplicas":1,"targetCPUUtilizationPercentage":50},"image":{"pullPolicy":"IfNotPresent","pullSecrets":[],"repository":"gluufederation/jackrabbit","tag":"4.5.3-1"},"lifecycle":{},"livenessProbe":{"initialDelaySeconds":25,"periodSeconds":25,"tcpSocket":{"port":"http-jackrabbit"},"timeoutSeconds":5},"nodeSelector":{},"pdb":{"enabled":true,"maxUnavailable":1},"readinessProbe":{"initialDelaySeconds":30,"periodSeconds":30,"tcpSocket":{"port":"http-jackrabbit"},"timeoutSeconds":5},"replicas":1,"resources":{"limits":{"cpu":"1500m","memory":"1000Mi"},"requests":{"cpu":"1500m","memory":"1000Mi"}},"secrets":{"gluuJackrabbitAdminPass":"Test1234#","gluuJackrabbitPostgresPass":"P@ssw0rd"},"service":{"jackRabbitServiceName":"jackrabbit","name":"http-jackrabbit","port":8080},"storage":{"size":"5Gi"},"tolerations":[],"topologySpreadConstraints":{},"usrEnvs":{"normal":{},"secret":{}},"volumeMounts":[],"volumes":[]}` | Jackrabbit Oak is a complementary implementation of the JCR specification. It is an effort to implement a scalable and performant hierarchical content repository for use as the foundation of modern world-class web sites and other demanding content applications https://jackrabbit.apache.org/jcr/index.html | +| jackrabbit | object | `{"additionalAnnotations":{},"additionalLabels":{},"affinity":{},"clusterId":"","customScripts":[],"dnsConfig":{},"dnsPolicy":"","hpa":{"behavior":{},"enabled":true,"maxReplicas":10,"metrics":[],"minReplicas":1,"targetCPUUtilizationPercentage":50},"image":{"pullPolicy":"IfNotPresent","pullSecrets":[],"repository":"gluufederation/jackrabbit","tag":"4.5.3-1"},"lifecycle":{},"livenessProbe":{"initialDelaySeconds":25,"periodSeconds":25,"tcpSocket":{"port":"http-jackrabbit"},"timeoutSeconds":5},"nodeSelector":{},"pdb":{"enabled":true,"maxUnavailable":1},"readinessProbe":{"initialDelaySeconds":30,"periodSeconds":30,"tcpSocket":{"port":"http-jackrabbit"},"timeoutSeconds":5},"replicas":1,"resources":{"limits":{"cpu":"1500m","memory":"1000Mi"},"requests":{"cpu":"1500m","memory":"1000Mi"}},"secrets":{"gluuJackrabbitAdminPass":"Test1234#","gluuJackrabbitPostgresPass":"P@ssw0rd"},"service":{"jackRabbitServiceName":"jackrabbit","name":"http-jackrabbit","port":8080},"storage":{"size":"5Gi"},"tolerations":[],"topologySpreadConstraints":{},"usrEnvs":{"normal":{},"secret":{}},"volumeMounts":[],"volumes":[]}` | Jackrabbit Oak is a complementary implementation of the JCR specification. It is an effort to implement a scalable and performant hierarchical content repository for use as the foundation of modern world-class web sites and other demanding content applications https://jackrabbit.apache.org/jcr/index.html | | jackrabbit.additionalAnnotations | object | `{}` | Additional annotations that will be added across the gateway in the format of {cert-manager.io/issuer: "letsencrypt-prod"} | | jackrabbit.additionalLabels | object | `{}` | Additional labels that will be added across the gateway in the format of {mylabel: "myapp"} | | jackrabbit.affinity | object | `{}` | https://kubernetes.io/docs/concepts/scheduling-eviction/assign-pod-node/ | | jackrabbit.clusterId | string | `""` | This id needs to be unique to each kubernetes cluster in a multi cluster setup west, east, south, north, region ...etc If left empty it will be randomly generated. | +| jackrabbit.customScripts | list | `[]` | Add custom scripts that have been mounted to run before the entrypoint. - /tmp/custom.sh - /tmp/custom2.sh | | jackrabbit.dnsConfig | object | `{}` | Add custom dns config | | jackrabbit.dnsPolicy | string | `""` | Add custom dns policy | | jackrabbit.hpa | object | `{"behavior":{},"enabled":true,"maxReplicas":10,"metrics":[],"minReplicas":1,"targetCPUUtilizationPercentage":50}` | Configure the HorizontalPodAutoscaler | @@ -460,11 +464,12 @@ Kubernetes: `>=v1.22.0-0` | nginx-ingress.ingress.webfingerAdditionalAnnotations | object | `{}` | webfinger ingress resource additional annotations. | | nginx-ingress.ingress.webfingerEnabled | bool | `true` | Enable endpoint /.well-known/webfinger | | nginx-ingress.ingress.webfingerLabels | object | `{}` | webfinger ingress resource labels. key app is taken | -| opendj | object | `{"additionalAnnotations":{},"additionalLabels":{},"affinity":{},"backup":{"cronJobSchedule":"*/59 * * * *","enabled":true},"dnsConfig":{},"dnsPolicy":"","hpa":{"behavior":{},"enabled":true,"maxReplicas":10,"metrics":[],"minReplicas":1,"targetCPUUtilizationPercentage":50},"image":{"pullPolicy":"IfNotPresent","pullSecrets":[],"repository":"gluufederation/opendj","tag":"4.5.3-1"},"lifecycle":{"preStop":{"exec":{"command":["/bin/sh","-c","python3 /app/scripts/deregister_peer.py 1>&/proc/1/fd/1"]}}},"livenessProbe":{"exec":{"command":["python3","/app/scripts/healthcheck.py"]},"failureThreshold":20,"initialDelaySeconds":30,"periodSeconds":30,"timeoutSeconds":5},"nodeSelector":{},"pdb":{"enabled":true,"maxUnavailable":1},"persistence":{"size":"5Gi"},"ports":{"tcp-admin":{"nodePort":"","port":4444,"protocol":"TCP","targetPort":4444},"tcp-ldap":{"nodePort":"","port":1389,"protocol":"TCP","targetPort":1389},"tcp-ldaps":{"nodePort":"","port":1636,"protocol":"TCP","targetPort":1636},"tcp-repl":{"nodePort":"","port":8989,"protocol":"TCP","targetPort":8989},"tcp-serf":{"nodePort":"","port":7946,"protocol":"TCP","targetPort":7946},"udp-serf":{"nodePort":"","port":7946,"protocol":"UDP","targetPort":7946}},"readinessProbe":{"failureThreshold":20,"initialDelaySeconds":60,"periodSeconds":25,"tcpSocket":{"port":1636},"timeoutSeconds":5},"replicas":1,"resources":{"limits":{"cpu":"1500m","memory":"2000Mi"},"requests":{"cpu":"1500m","memory":"2000Mi"}},"tolerations":[],"topologySpreadConstraints":{},"usrEnvs":{"normal":{},"secret":{}},"volumeMounts":[],"volumes":[]}` | OpenDJ is a directory server which implements a wide range of Lightweight Directory Access Protocol and related standards, including full compliance with LDAPv3 but also support for Directory Service Markup Language (DSMLv2).Written in Java, OpenDJ offers multi-master replication, access control, and many extensions. | +| opendj | object | `{"additionalAnnotations":{},"additionalLabels":{},"affinity":{},"backup":{"cronJobSchedule":"*/59 * * * *","enabled":true},"customScripts":[],"dnsConfig":{},"dnsPolicy":"","hpa":{"behavior":{},"enabled":true,"maxReplicas":10,"metrics":[],"minReplicas":1,"targetCPUUtilizationPercentage":50},"image":{"pullPolicy":"IfNotPresent","pullSecrets":[],"repository":"gluufederation/opendj","tag":"4.5.3-1"},"lifecycle":{"preStop":{"exec":{"command":["/bin/sh","-c","python3 /app/scripts/deregister_peer.py 1>&/proc/1/fd/1"]}}},"livenessProbe":{"exec":{"command":["python3","/app/scripts/healthcheck.py"]},"failureThreshold":20,"initialDelaySeconds":30,"periodSeconds":30,"timeoutSeconds":5},"nodeSelector":{},"pdb":{"enabled":true,"maxUnavailable":1},"persistence":{"size":"5Gi"},"ports":{"tcp-admin":{"nodePort":"","port":4444,"protocol":"TCP","targetPort":4444},"tcp-ldap":{"nodePort":"","port":1389,"protocol":"TCP","targetPort":1389},"tcp-ldaps":{"nodePort":"","port":1636,"protocol":"TCP","targetPort":1636},"tcp-repl":{"nodePort":"","port":8989,"protocol":"TCP","targetPort":8989},"tcp-serf":{"nodePort":"","port":7946,"protocol":"TCP","targetPort":7946},"udp-serf":{"nodePort":"","port":7946,"protocol":"UDP","targetPort":7946}},"readinessProbe":{"failureThreshold":20,"initialDelaySeconds":60,"periodSeconds":25,"tcpSocket":{"port":1636},"timeoutSeconds":5},"replicas":1,"resources":{"limits":{"cpu":"1500m","memory":"2000Mi"},"requests":{"cpu":"1500m","memory":"2000Mi"}},"tolerations":[],"topologySpreadConstraints":{},"usrEnvs":{"normal":{},"secret":{}},"volumeMounts":[],"volumes":[]}` | OpenDJ is a directory server which implements a wide range of Lightweight Directory Access Protocol and related standards, including full compliance with LDAPv3 but also support for Directory Service Markup Language (DSMLv2).Written in Java, OpenDJ offers multi-master replication, access control, and many extensions. | | opendj.additionalAnnotations | object | `{}` | Additional annotations that will be added across all resources in the format of {cert-manager.io/issuer: "letsencrypt-prod"}. key app is taken | | opendj.additionalLabels | object | `{}` | Additional labels that will be added across all resources definitions in the format of {mylabel: "myapp"} | | opendj.affinity | object | `{}` | https://kubernetes.io/docs/concepts/scheduling-eviction/assign-pod-node/ | | opendj.backup | object | `{"cronJobSchedule":"*/59 * * * *","enabled":true}` | Configure ldap backup cronjob | +| opendj.customScripts | list | `[]` | Add custom scripts that have been mounted to run before the entrypoint. - /tmp/custom.sh - /tmp/custom2.sh | | opendj.dnsConfig | object | `{}` | Add custom dns config | | opendj.dnsPolicy | string | `""` | Add custom dns policy | | opendj.hpa | object | `{"behavior":{},"enabled":true,"maxReplicas":10,"metrics":[],"minReplicas":1,"targetCPUUtilizationPercentage":50}` | Configure the HorizontalPodAutoscaler | @@ -493,11 +498,12 @@ Kubernetes: `>=v1.22.0-0` | opendj.usrEnvs.secret | object | `{}` | Add custom secret envs to the service variable1: value1 | | opendj.volumeMounts | list | `[]` | Configure any additional volumesMounts that need to be attached to the containers | | opendj.volumes | list | `[]` | Configure any additional volumes that need to be attached to the pod | -| oxauth | object | `{"additionalAnnotations":{},"additionalLabels":{},"affinity":{},"dnsConfig":{},"dnsPolicy":"","hpa":{"behavior":{},"enabled":true,"maxReplicas":10,"metrics":[],"minReplicas":1,"targetCPUUtilizationPercentage":50},"image":{"pullPolicy":"IfNotPresent","pullSecrets":[],"repository":"gluufederation/oxauth","tag":"4.5.3-1"},"lifecycle":{},"livenessProbe":{"exec":{"command":["python3","/app/scripts/healthcheck.py"]},"initialDelaySeconds":30,"periodSeconds":30,"timeoutSeconds":5},"nodeSelector":{},"pdb":{"enabled":true,"maxUnavailable":"90%"},"readinessProbe":{"exec":{"command":["python3","/app/scripts/healthcheck.py"]},"initialDelaySeconds":25,"periodSeconds":25,"timeoutSeconds":5},"replicas":1,"resources":{"limits":{"cpu":"2500m","memory":"2500Mi"},"requests":{"cpu":"2500m","memory":"2500Mi"}},"service":{"name":"http-oxauth","oxAuthServiceName":"oxauth","port":8080},"tolerations":[],"topologySpreadConstraints":{},"usrEnvs":{"normal":{},"secret":{}},"volumeMounts":[],"volumes":[]}` | OAuth Authorization Server, the OpenID Connect Provider, the UMA Authorization Server--this is the main Internet facing component of Gluu. It's the service that returns tokens, JWT's and identity assertions. This service must be Internet facing. | -| oxauth-key-rotation | object | `{"additionalAnnotations":{},"additionalLabels":{},"affinity":{},"dnsConfig":{},"dnsPolicy":"","image":{"pullPolicy":"IfNotPresent","pullSecrets":[],"repository":"gluufederation/certmanager","tag":"4.5.3-1"},"keysLife":48,"keysPushDelay":0,"keysPushStrategy":"NEWER","keysStrategy":"NEWER","lifecycle":{},"nodeSelector":{},"resources":{"limits":{"cpu":"300m","memory":"300Mi"},"requests":{"cpu":"300m","memory":"300Mi"}},"tolerations":[],"usrEnvs":{"normal":{},"secret":{}},"volumeMounts":[],"volumes":[]}` | Responsible for regenerating auth-keys per x hours | +| oxauth | object | `{"additionalAnnotations":{},"additionalLabels":{},"affinity":{},"customScripts":[],"dnsConfig":{},"dnsPolicy":"","hpa":{"behavior":{},"enabled":true,"maxReplicas":10,"metrics":[],"minReplicas":1,"targetCPUUtilizationPercentage":50},"image":{"pullPolicy":"IfNotPresent","pullSecrets":[],"repository":"gluufederation/oxauth","tag":"4.5.3-1"},"lifecycle":{},"livenessProbe":{"exec":{"command":["python3","/app/scripts/healthcheck.py"]},"initialDelaySeconds":30,"periodSeconds":30,"timeoutSeconds":5},"nodeSelector":{},"pdb":{"enabled":true,"maxUnavailable":"90%"},"readinessProbe":{"exec":{"command":["python3","/app/scripts/healthcheck.py"]},"initialDelaySeconds":25,"periodSeconds":25,"timeoutSeconds":5},"replicas":1,"resources":{"limits":{"cpu":"2500m","memory":"2500Mi"},"requests":{"cpu":"2500m","memory":"2500Mi"}},"service":{"name":"http-oxauth","oxAuthServiceName":"oxauth","port":8080},"tolerations":[],"topologySpreadConstraints":{},"usrEnvs":{"normal":{},"secret":{}},"volumeMounts":[],"volumes":[]}` | OAuth Authorization Server, the OpenID Connect Provider, the UMA Authorization Server--this is the main Internet facing component of Gluu. It's the service that returns tokens, JWT's and identity assertions. This service must be Internet facing. | +| oxauth-key-rotation | object | `{"additionalAnnotations":{},"additionalLabels":{},"affinity":{},"customScripts":[],"dnsConfig":{},"dnsPolicy":"","image":{"pullPolicy":"IfNotPresent","pullSecrets":[],"repository":"gluufederation/certmanager","tag":"4.5.3-1"},"keysLife":48,"keysPushDelay":0,"keysPushStrategy":"NEWER","keysStrategy":"NEWER","lifecycle":{},"nodeSelector":{},"resources":{"limits":{"cpu":"300m","memory":"300Mi"},"requests":{"cpu":"300m","memory":"300Mi"}},"tolerations":[],"usrEnvs":{"normal":{},"secret":{}},"volumeMounts":[],"volumes":[]}` | Responsible for regenerating auth-keys per x hours | | oxauth-key-rotation.additionalAnnotations | object | `{}` | Additional annotations that will be added across all resources in the format of {cert-manager.io/issuer: "letsencrypt-prod"}. key app is taken | | oxauth-key-rotation.additionalLabels | object | `{}` | Additional labels that will be added across all resources definitions in the format of {mylabel: "myapp"} | | oxauth-key-rotation.affinity | object | `{}` | https://kubernetes.io/docs/concepts/scheduling-eviction/assign-pod-node/ | +| oxauth-key-rotation.customScripts | list | `[]` | Add custom scripts that have been mounted to run before the entrypoint. - /tmp/custom.sh - /tmp/custom2.sh | | oxauth-key-rotation.dnsConfig | object | `{}` | Add custom dns config | | oxauth-key-rotation.dnsPolicy | string | `""` | Add custom dns policy | | oxauth-key-rotation.image.pullPolicy | string | `"IfNotPresent"` | Image pullPolicy to use for deploying. | @@ -522,6 +528,7 @@ Kubernetes: `>=v1.22.0-0` | oxauth.additionalAnnotations | object | `{}` | Additional annotations that will be added across all resources in the format of {cert-manager.io/issuer: "letsencrypt-prod"}. key app is taken | | oxauth.additionalLabels | object | `{}` | Additional labels that will be added across all resources definitions in the format of {mylabel: "myapp"} | | oxauth.affinity | object | `{}` | https://kubernetes.io/docs/concepts/scheduling-eviction/assign-pod-node/ | +| oxauth.customScripts | list | `[]` | Add custom scripts that have been mounted to run before the entrypoint. - /tmp/custom.sh - /tmp/custom2.sh | | oxauth.dnsConfig | object | `{}` | Add custom dns config | | oxauth.dnsPolicy | string | `""` | Add custom dns policy | | oxauth.hpa | object | `{"behavior":{},"enabled":true,"maxReplicas":10,"metrics":[],"minReplicas":1,"targetCPUUtilizationPercentage":50}` | Configure the HorizontalPodAutoscaler | @@ -551,10 +558,11 @@ Kubernetes: `>=v1.22.0-0` | oxauth.usrEnvs.secret | object | `{}` | Add custom secret envs to the service variable1: value1 | | oxauth.volumeMounts | list | `[]` | Configure any additional volumesMounts that need to be attached to the containers | | oxauth.volumes | list | `[]` | Configure any additional volumes that need to be attached to the pod | -| oxd-server | object | `{"additionalAnnotations":{},"additionalLabels":{},"affinity":{},"dnsConfig":{},"dnsPolicy":"","hpa":{"behavior":{},"enabled":true,"maxReplicas":10,"metrics":[],"minReplicas":1,"targetCPUUtilizationPercentage":50},"image":{"pullPolicy":"IfNotPresent","pullSecrets":[],"repository":"gluufederation/oxd-server","tag":"4.5.3-1"},"lifecycle":{},"livenessProbe":{"exec":{"command":["curl","-k","https://localhost:8443/health-check"]},"initialDelaySeconds":30,"periodSeconds":30,"timeoutSeconds":5},"nodeSelector":{},"pdb":{"enabled":true,"maxUnavailable":"90%"},"readinessProbe":{"exec":{"command":["curl","-k","https://localhost:8443/health-check"]},"initialDelaySeconds":25,"periodSeconds":25,"timeoutSeconds":5},"replicas":1,"resources":{"limits":{"cpu":"1000m","memory":"400Mi"},"requests":{"cpu":"1000m","memory":"400Mi"}},"service":{"oxdServerServiceName":"oxd-server"},"tolerations":[],"topologySpreadConstraints":{},"usrEnvs":{"normal":{},"secret":{}},"volumeMounts":[],"volumes":[]}` | Middleware API to help application developers call an OAuth, OpenID or UMA server. You may wonder why this is necessary. It makes it easier for client developers to use OpenID signing and encryption features, without becoming crypto experts. This API provides some high level endpoints to do some of the heavy lifting. | +| oxd-server | object | `{"additionalAnnotations":{},"additionalLabels":{},"affinity":{},"customScripts":[],"dnsConfig":{},"dnsPolicy":"","hpa":{"behavior":{},"enabled":true,"maxReplicas":10,"metrics":[],"minReplicas":1,"targetCPUUtilizationPercentage":50},"image":{"pullPolicy":"IfNotPresent","pullSecrets":[],"repository":"gluufederation/oxd-server","tag":"4.5.3-1"},"lifecycle":{},"livenessProbe":{"exec":{"command":["curl","-k","https://localhost:8443/health-check"]},"initialDelaySeconds":30,"periodSeconds":30,"timeoutSeconds":5},"nodeSelector":{},"pdb":{"enabled":true,"maxUnavailable":"90%"},"readinessProbe":{"exec":{"command":["curl","-k","https://localhost:8443/health-check"]},"initialDelaySeconds":25,"periodSeconds":25,"timeoutSeconds":5},"replicas":1,"resources":{"limits":{"cpu":"1000m","memory":"400Mi"},"requests":{"cpu":"1000m","memory":"400Mi"}},"service":{"oxdServerServiceName":"oxd-server"},"tolerations":[],"topologySpreadConstraints":{},"usrEnvs":{"normal":{},"secret":{}},"volumeMounts":[],"volumes":[]}` | Middleware API to help application developers call an OAuth, OpenID or UMA server. You may wonder why this is necessary. It makes it easier for client developers to use OpenID signing and encryption features, without becoming crypto experts. This API provides some high level endpoints to do some of the heavy lifting. | | oxd-server.additionalAnnotations | object | `{}` | Additional annotations that will be added across all resources in the format of {cert-manager.io/issuer: "letsencrypt-prod"}. key app is taken | | oxd-server.additionalLabels | object | `{}` | Additional labels that will be added across all resources definitions in the format of {mylabel: "myapp"} | | oxd-server.affinity | object | `{}` | https://kubernetes.io/docs/concepts/scheduling-eviction/assign-pod-node/ | +| oxd-server.customScripts | list | `[]` | Add custom scripts that have been mounted to run before the entrypoint. - /tmp/custom.sh - /tmp/custom2.sh | | oxd-server.dnsConfig | object | `{}` | Add custom dns config | | oxd-server.dnsPolicy | string | `""` | Add custom dns policy | | oxd-server.hpa | object | `{"behavior":{},"enabled":true,"maxReplicas":10,"metrics":[],"minReplicas":1,"targetCPUUtilizationPercentage":50}` | Configure the HorizontalPodAutoscaler | @@ -582,10 +590,11 @@ Kubernetes: `>=v1.22.0-0` | oxd-server.usrEnvs.secret | object | `{}` | Add custom secret envs to the service variable1: value1 | | oxd-server.volumeMounts | list | `[]` | Configure any additional volumesMounts that need to be attached to the containers | | oxd-server.volumes | list | `[]` | Configure any additional volumes that need to be attached to the pod | -| oxpassport | object | `{"additionalAnnotations":{},"additionalLabels":{},"affinity":{},"dnsConfig":{},"dnsPolicy":"","hpa":{"behavior":{},"enabled":true,"maxReplicas":10,"metrics":[],"minReplicas":1,"targetCPUUtilizationPercentage":50},"image":{"pullPolicy":"IfNotPresent","pullSecrets":[],"repository":"gluufederation/oxpassport","tag":"4.5.3-1"},"lifecycle":{},"livenessProbe":{"failureThreshold":20,"httpGet":{"path":"/passport/health-check","port":"http-passport"},"initialDelaySeconds":30,"periodSeconds":30,"timeoutSeconds":5},"nodeSelector":{},"pdb":{"enabled":true,"maxUnavailable":"90%"},"readinessProbe":{"failureThreshold":20,"httpGet":{"path":"/passport/health-check","port":"http-passport"},"initialDelaySeconds":25,"periodSeconds":25,"timeoutSeconds":5},"replicas":1,"resources":{"limits":{"cpu":"700m","memory":"900Mi"},"requests":{"cpu":"700m","memory":"900Mi"}},"service":{"name":"http-passport","oxPassportServiceName":"oxpassport","port":8090},"tolerations":[],"topologySpreadConstraints":{},"usrEnvs":{"normal":{},"secret":{}},"volumeMounts":[],"volumes":[]}` | Gluu interface to Passport.js to support social login and inbound identity. | +| oxpassport | object | `{"additionalAnnotations":{},"additionalLabels":{},"affinity":{},"customScripts":[],"dnsConfig":{},"dnsPolicy":"","hpa":{"behavior":{},"enabled":true,"maxReplicas":10,"metrics":[],"minReplicas":1,"targetCPUUtilizationPercentage":50},"image":{"pullPolicy":"IfNotPresent","pullSecrets":[],"repository":"gluufederation/oxpassport","tag":"4.5.3-1"},"lifecycle":{},"livenessProbe":{"failureThreshold":20,"httpGet":{"path":"/passport/health-check","port":"http-passport"},"initialDelaySeconds":30,"periodSeconds":30,"timeoutSeconds":5},"nodeSelector":{},"pdb":{"enabled":true,"maxUnavailable":"90%"},"readinessProbe":{"failureThreshold":20,"httpGet":{"path":"/passport/health-check","port":"http-passport"},"initialDelaySeconds":25,"periodSeconds":25,"timeoutSeconds":5},"replicas":1,"resources":{"limits":{"cpu":"700m","memory":"900Mi"},"requests":{"cpu":"700m","memory":"900Mi"}},"service":{"name":"http-passport","oxPassportServiceName":"oxpassport","port":8090},"tolerations":[],"topologySpreadConstraints":{},"usrEnvs":{"normal":{},"secret":{}},"volumeMounts":[],"volumes":[]}` | Gluu interface to Passport.js to support social login and inbound identity. | | oxpassport.additionalAnnotations | object | `{}` | Additional annotations that will be added across all resources in the format of {cert-manager.io/issuer: "letsencrypt-prod"}. key app is taken | | oxpassport.additionalLabels | object | `{}` | Additional labels that will be added across all resources definitions in the format of {mylabel: "myapp"} | | oxpassport.affinity | object | `{}` | https://kubernetes.io/docs/concepts/scheduling-eviction/assign-pod-node/ | +| oxpassport.customScripts | list | `[]` | Add custom scripts that have been mounted to run before the entrypoint. - /tmp/custom.sh - /tmp/custom2.sh | | oxpassport.dnsConfig | object | `{}` | Add custom dns config | | oxpassport.dnsPolicy | string | `""` | Add custom dns policy | | oxpassport.hpa | object | `{"behavior":{},"enabled":true,"maxReplicas":10,"metrics":[],"minReplicas":1,"targetCPUUtilizationPercentage":50}` | Configure the HorizontalPodAutoscaler | @@ -616,10 +625,11 @@ Kubernetes: `>=v1.22.0-0` | oxpassport.usrEnvs.secret | object | `{}` | Add custom secret envs to the service variable1: value1 | | oxpassport.volumeMounts | list | `[]` | Configure any additional volumesMounts that need to be attached to the containers | | oxpassport.volumes | list | `[]` | Configure any additional volumes that need to be attached to the pod | -| oxshibboleth | object | `{"additionalAnnotations":{},"additionalLabels":{},"affinity":{},"dnsConfig":{},"dnsPolicy":"","hpa":{"behavior":{},"enabled":true,"maxReplicas":10,"metrics":[],"minReplicas":1,"targetCPUUtilizationPercentage":50},"image":{"pullPolicy":"IfNotPresent","pullSecrets":[],"repository":"gluufederation/oxshibboleth","tag":"4.5.3-3"},"lifecycle":{},"livenessProbe":{"exec":{"command":["python3","/app/scripts/healthcheck.py"]},"initialDelaySeconds":30,"periodSeconds":30,"timeoutSeconds":5},"nodeSelector":{},"pdb":{"enabled":true,"maxUnavailable":1},"readinessProbe":{"exec":{"command":["python3","/app/scripts/healthcheck.py"]},"initialDelaySeconds":25,"periodSeconds":25,"timeoutSeconds":5},"replicas":1,"resources":{"limits":{"cpu":"1000m","memory":"1000Mi"},"requests":{"cpu":"1000m","memory":"1000Mi"}},"service":{"name":"http-oxshib","oxShibbolethServiceName":"oxshibboleth","port":8080,"sessionAffinity":"ClientIP"},"tolerations":[],"topologySpreadConstraints":{},"usrEnvs":{"normal":{},"secret":{}},"volumeMounts":[],"volumes":[]}` | Shibboleth project for the Gluu Server's SAML IDP functionality. | +| oxshibboleth | object | `{"additionalAnnotations":{},"additionalLabels":{},"affinity":{},"customScripts":[],"dnsConfig":{},"dnsPolicy":"","hpa":{"behavior":{},"enabled":true,"maxReplicas":10,"metrics":[],"minReplicas":1,"targetCPUUtilizationPercentage":50},"image":{"pullPolicy":"IfNotPresent","pullSecrets":[],"repository":"gluufederation/oxshibboleth","tag":"4.5.3-3"},"lifecycle":{},"livenessProbe":{"exec":{"command":["python3","/app/scripts/healthcheck.py"]},"initialDelaySeconds":30,"periodSeconds":30,"timeoutSeconds":5},"nodeSelector":{},"pdb":{"enabled":true,"maxUnavailable":1},"readinessProbe":{"exec":{"command":["python3","/app/scripts/healthcheck.py"]},"initialDelaySeconds":25,"periodSeconds":25,"timeoutSeconds":5},"replicas":1,"resources":{"limits":{"cpu":"1000m","memory":"1000Mi"},"requests":{"cpu":"1000m","memory":"1000Mi"}},"service":{"name":"http-oxshib","oxShibbolethServiceName":"oxshibboleth","port":8080,"sessionAffinity":"ClientIP"},"tolerations":[],"topologySpreadConstraints":{},"usrEnvs":{"normal":{},"secret":{}},"volumeMounts":[],"volumes":[]}` | Shibboleth project for the Gluu Server's SAML IDP functionality. | | oxshibboleth.additionalAnnotations | object | `{}` | Additional annotations that will be added across all resources in the format of {cert-manager.io/issuer: "letsencrypt-prod"}. key app is taken | | oxshibboleth.additionalLabels | object | `{}` | Additional labels that will be added across all resources definitions in the format of {mylabel: "myapp"} | | oxshibboleth.affinity | object | `{}` | https://kubernetes.io/docs/concepts/scheduling-eviction/assign-pod-node/ | +| oxshibboleth.customScripts | list | `[]` | Add custom scripts that have been mounted to run before the entrypoint. - /tmp/custom.sh - /tmp/custom2.sh | | oxshibboleth.dnsConfig | object | `{}` | Add custom dns config | | oxshibboleth.dnsPolicy | string | `""` | Add custom dns policy | | oxshibboleth.hpa | object | `{"behavior":{},"enabled":true,"maxReplicas":10,"metrics":[],"minReplicas":1,"targetCPUUtilizationPercentage":50}` | Configure the HorizontalPodAutoscaler | @@ -649,10 +659,11 @@ Kubernetes: `>=v1.22.0-0` | oxshibboleth.usrEnvs.secret | object | `{}` | Add custom secret envs to the service variable1: value1 | | oxshibboleth.volumeMounts | list | `[]` | Configure any additional volumesMounts that need to be attached to the containers | | oxshibboleth.volumes | list | `[]` | Configure any additional volumes that need to be attached to the pod | -| oxtrust | object | `{"additionalAnnotations":{},"additionalLabels":{},"affinity":{},"dnsConfig":{},"dnsPolicy":"","hpa":{"behavior":{},"enabled":true,"maxReplicas":10,"metrics":[],"minReplicas":1,"targetCPUUtilizationPercentage":50},"image":{"pullPolicy":"IfNotPresent","pullSecrets":[],"repository":"gluufederation/oxtrust","tag":"4.5.3-1"},"lifecycle":{},"livenessProbe":{"exec":{"command":["python3","/app/scripts/healthcheck.py"]},"initialDelaySeconds":30,"periodSeconds":30,"timeoutSeconds":5},"nodeSelector":{},"pdb":{"enabled":true,"maxUnavailable":1},"readinessProbe":{"exec":{"command":["python3","/app/scripts/healthcheck.py"]},"initialDelaySeconds":25,"periodSeconds":25,"timeoutSeconds":5},"replicas":1,"resources":{"limits":{"cpu":"2500m","memory":"2500Mi"},"requests":{"cpu":"2500m","memory":"2500Mi"}},"service":{"clusterIp":"None","name":"http-oxtrust","oxTrustServiceName":"oxtrust","port":8080},"tolerations":[],"topologySpreadConstraints":{},"usrEnvs":{"normal":{},"secret":{}},"volumeMounts":[],"volumes":[]}` | Gluu Admin UI. This shouldn't be internet facing. | +| oxtrust | object | `{"additionalAnnotations":{},"additionalLabels":{},"affinity":{},"customScripts":[],"dnsConfig":{},"dnsPolicy":"","hpa":{"behavior":{},"enabled":true,"maxReplicas":10,"metrics":[],"minReplicas":1,"targetCPUUtilizationPercentage":50},"image":{"pullPolicy":"IfNotPresent","pullSecrets":[],"repository":"gluufederation/oxtrust","tag":"4.5.3-1"},"lifecycle":{},"livenessProbe":{"exec":{"command":["python3","/app/scripts/healthcheck.py"]},"initialDelaySeconds":30,"periodSeconds":30,"timeoutSeconds":5},"nodeSelector":{},"pdb":{"enabled":true,"maxUnavailable":1},"readinessProbe":{"exec":{"command":["python3","/app/scripts/healthcheck.py"]},"initialDelaySeconds":25,"periodSeconds":25,"timeoutSeconds":5},"replicas":1,"resources":{"limits":{"cpu":"2500m","memory":"2500Mi"},"requests":{"cpu":"2500m","memory":"2500Mi"}},"service":{"clusterIp":"None","name":"http-oxtrust","oxTrustServiceName":"oxtrust","port":8080},"tolerations":[],"topologySpreadConstraints":{},"usrEnvs":{"normal":{},"secret":{}},"volumeMounts":[],"volumes":[]}` | Gluu Admin UI. This shouldn't be internet facing. | | oxtrust.additionalAnnotations | object | `{}` | Additional annotations that will be added across all resources in the format of {cert-manager.io/issuer: "letsencrypt-prod"}. key app is taken | | oxtrust.additionalLabels | object | `{}` | Additional labels that will be added across all resources definitions in the format of {mylabel: "myapp"} | | oxtrust.affinity | object | `{}` | https://kubernetes.io/docs/concepts/scheduling-eviction/assign-pod-node/ | +| oxtrust.customScripts | list | `[]` | Add custom scripts that have been mounted to run before the entrypoint. - /tmp/custom.sh - /tmp/custom2.sh | | oxtrust.dnsConfig | object | `{}` | Add custom dns config | | oxtrust.dnsPolicy | string | `""` | Add custom dns policy | | oxtrust.hpa | object | `{"behavior":{},"enabled":true,"maxReplicas":10,"metrics":[],"minReplicas":1,"targetCPUUtilizationPercentage":50}` | Configure the HorizontalPodAutoscaler | @@ -682,10 +693,11 @@ Kubernetes: `>=v1.22.0-0` | oxtrust.usrEnvs.secret | object | `{}` | Add custom secret envs to the service variable1: value1 | | oxtrust.volumeMounts | list | `[]` | Configure any additional volumesMounts that need to be attached to the containers | | oxtrust.volumes | list | `[]` | Configure any additional volumes that need to be attached to the pod | -| persistence | object | `{"additionalAnnotations":{},"additionalLabels":{},"affinity":{},"dnsConfig":{},"dnsPolicy":"","image":{"pullPolicy":"IfNotPresent","pullSecrets":[],"repository":"gluufederation/persistence","tag":"4.5.3-1"},"lifecycle":{},"nodeSelector":{},"resources":{"limits":{"cpu":"300m","memory":"300Mi"},"requests":{"cpu":"300m","memory":"300Mi"}},"tolerations":[],"usrEnvs":{"normal":{},"secret":{}},"volumeMounts":[],"volumes":[]}` | Job to generate data and initial config for Gluu Server persistence layer. | +| persistence | object | `{"additionalAnnotations":{},"additionalLabels":{},"affinity":{},"customScripts":[],"dnsConfig":{},"dnsPolicy":"","image":{"pullPolicy":"IfNotPresent","pullSecrets":[],"repository":"gluufederation/persistence","tag":"4.5.3-1"},"lifecycle":{},"nodeSelector":{},"resources":{"limits":{"cpu":"300m","memory":"300Mi"},"requests":{"cpu":"300m","memory":"300Mi"}},"tolerations":[],"usrEnvs":{"normal":{},"secret":{}},"volumeMounts":[],"volumes":[]}` | Job to generate data and initial config for Gluu Server persistence layer. | | persistence.additionalAnnotations | object | `{}` | Additional annotations that will be added across all resources in the format of {cert-manager.io/issuer: "letsencrypt-prod"}. key app is taken | | persistence.additionalLabels | object | `{}` | Additional labels that will be added across all resources definitions in the format of {mylabel: "myapp"} | | persistence.affinity | object | `{}` | https://kubernetes.io/docs/concepts/scheduling-eviction/assign-pod-node/ | +| persistence.customScripts | list | `[]` | Add custom scripts that have been mounted to run before the entrypoint. - /tmp/custom.sh - /tmp/custom2.sh | | persistence.dnsConfig | object | `{}` | Add custom dns config | | persistence.dnsPolicy | string | `""` | Add custom dns policy | | persistence.image.pullPolicy | string | `"IfNotPresent"` | Image pullPolicy to use for deploying. | @@ -703,10 +715,11 @@ Kubernetes: `>=v1.22.0-0` | persistence.usrEnvs.secret | object | `{}` | Add custom secret envs to the service variable1: value1 | | persistence.volumeMounts | list | `[]` | Configure any additional volumesMounts that need to be attached to the containers | | persistence.volumes | list | `[]` | Configure any additional volumes that need to be attached to the pod | -| scim | object | `{"additionalAnnotations":{},"additionalLabels":{},"affinity":{},"dnsConfig":{},"dnsPolicy":"","hpa":{"behavior":{},"enabled":true,"maxReplicas":10,"metrics":[],"minReplicas":1,"targetCPUUtilizationPercentage":50},"image":{"pullPolicy":"IfNotPresent","pullSecrets":[],"repository":"gluufederation/scim","tag":"4.5.3-1"},"lifecycle":{},"livenessProbe":{"httpGet":{"path":"/scim/restv1/scim/v2/ServiceProviderConfig","port":8080},"initialDelaySeconds":30,"periodSeconds":30,"timeoutSeconds":5},"nodeSelector":{},"pdb":{"enabled":true,"maxUnavailable":"90%"},"readinessProbe":{"httpGet":{"path":"/scim/restv1/scim/v2/ServiceProviderConfig","port":8080},"initialDelaySeconds":25,"periodSeconds":25,"timeoutSeconds":5},"replicas":1,"resources":{"limits":{"cpu":"1000m","memory":"1000Mi"},"requests":{"cpu":"1000m","memory":"1000Mi"}},"service":{"name":"http-scim","port":8080,"scimServiceName":"scim"},"tolerations":[],"topologySpreadConstraints":{},"usrEnvs":{"normal":{},"secret":{}},"volumeMounts":[],"volumes":[]}` | System for Cross-domain Identity Management (SCIM) version 2.0 | +| scim | object | `{"additionalAnnotations":{},"additionalLabels":{},"affinity":{},"customScripts":[],"dnsConfig":{},"dnsPolicy":"","hpa":{"behavior":{},"enabled":true,"maxReplicas":10,"metrics":[],"minReplicas":1,"targetCPUUtilizationPercentage":50},"image":{"pullPolicy":"IfNotPresent","pullSecrets":[],"repository":"gluufederation/scim","tag":"4.5.3-1"},"lifecycle":{},"livenessProbe":{"httpGet":{"path":"/scim/restv1/scim/v2/ServiceProviderConfig","port":8080},"initialDelaySeconds":30,"periodSeconds":30,"timeoutSeconds":5},"nodeSelector":{},"pdb":{"enabled":true,"maxUnavailable":"90%"},"readinessProbe":{"httpGet":{"path":"/scim/restv1/scim/v2/ServiceProviderConfig","port":8080},"initialDelaySeconds":25,"periodSeconds":25,"timeoutSeconds":5},"replicas":1,"resources":{"limits":{"cpu":"1000m","memory":"1000Mi"},"requests":{"cpu":"1000m","memory":"1000Mi"}},"service":{"name":"http-scim","port":8080,"scimServiceName":"scim"},"tolerations":[],"topologySpreadConstraints":{},"usrEnvs":{"normal":{},"secret":{}},"volumeMounts":[],"volumes":[]}` | System for Cross-domain Identity Management (SCIM) version 2.0 | | scim.additionalAnnotations | object | `{}` | Additional annotations that will be added across all resources in the format of {cert-manager.io/issuer: "letsencrypt-prod"}. key app is taken | | scim.additionalLabels | object | `{}` | Additional labels that will be added across all resources definitions in the format of {mylabel: "myapp"} | | scim.affinity | object | `{}` | https://kubernetes.io/docs/concepts/scheduling-eviction/assign-pod-node/ | +| scim.customScripts | list | `[]` | Add custom scripts that have been mounted to run before the entrypoint. - /tmp/custom.sh - /tmp/custom2.sh | | scim.dnsConfig | object | `{}` | Add custom dns config | | scim.dnsPolicy | string | `""` | Add custom dns policy | | scim.hpa | object | `{"behavior":{},"enabled":true,"maxReplicas":10,"metrics":[],"minReplicas":1,"targetCPUUtilizationPercentage":50}` | Configure the HorizontalPodAutoscaler | diff --git a/pygluu/kubernetes/templates/helm/gluu/charts/casa/Chart.yaml b/pygluu/kubernetes/templates/helm/gluu/charts/casa/Chart.yaml index 84f6f51a..cc70fdb3 100644 --- a/pygluu/kubernetes/templates/helm/gluu/charts/casa/Chart.yaml +++ b/pygluu/kubernetes/templates/helm/gluu/charts/casa/Chart.yaml @@ -2,7 +2,7 @@ # https://www.apache.org/licenses/LICENSE-2.0 apiVersion: v2 name: casa -version: 1.8.28 +version: 1.8.29 kubeVersion: ">=v1.22.0-0" description: Gluu Casa ("Casa") is a self-service web portal for end-users to manage authentication and authorization preferences for their account in a Gluu Server. type: application diff --git a/pygluu/kubernetes/templates/helm/gluu/charts/casa/README.md b/pygluu/kubernetes/templates/helm/gluu/charts/casa/README.md index e4641f17..4a172eaa 100644 --- a/pygluu/kubernetes/templates/helm/gluu/charts/casa/README.md +++ b/pygluu/kubernetes/templates/helm/gluu/charts/casa/README.md @@ -1,6 +1,6 @@ # casa -![Version: 1.8.28](https://img.shields.io/badge/Version-1.8.28-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 4.5.3](https://img.shields.io/badge/AppVersion-4.5.3-informational?style=flat-square) +![Version: 1.8.29](https://img.shields.io/badge/Version-1.8.29-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 4.5.3](https://img.shields.io/badge/AppVersion-4.5.3-informational?style=flat-square) Gluu Casa ("Casa") is a self-service web portal for end-users to manage authentication and authorization preferences for their account in a Gluu Server. @@ -29,6 +29,7 @@ Kubernetes: `>=v1.22.0-0` | additionalAnnotations | object | `{}` | Additional annotations that will be added across all resources in the format of {cert-manager.io/issuer: "letsencrypt-prod"}. key app is taken | | additionalLabels | object | `{}` | Additional labels that will be added across all resources definitions in the format of {mylabel: "myapp"} | | affinity | object | `{}` | https://kubernetes.io/docs/concepts/scheduling-eviction/assign-pod-node/ | +| customScripts | list | `[]` | Add custom scripts that have been mounted to run before the entrypoint. | | dnsConfig | object | `{}` | Add custom dns config | | dnsPolicy | string | `""` | Add custom dns policy | | fullnameOverride | string | `""` | | diff --git a/pygluu/kubernetes/templates/helm/gluu/charts/casa/templates/deployment.yaml b/pygluu/kubernetes/templates/helm/gluu/charts/casa/templates/deployment.yaml index 0544fb3a..b53c0e25 100644 --- a/pygluu/kubernetes/templates/helm/gluu/charts/casa/templates/deployment.yaml +++ b/pygluu/kubernetes/templates/helm/gluu/charts/casa/templates/deployment.yaml @@ -81,14 +81,19 @@ spec: env: {{- include "casa.usr-envs" . | indent 12 }} {{- include "casa.usr-secret-envs" . | indent 12 }} - {{- if and (eq .Values.global.isDomainRegistered "false") (or (eq .Values.global.storageClass.provisioner "kubernetes.io/aws-ebs") (eq .Values.global.storageClass.provisioner "openebs.io/local")) }} + {{- if or (eq .Values.global.storageClass.provisioner "kubernetes.io/aws-ebs") (eq .Values.global.storageClass.provisioner "openebs.io/local") ( .Values.customScripts) }} command: - /bin/sh - -c - | + {{- with .Values.customScripts }} + {{- toYaml . | replace "- " "" | nindent 16}} + {{- end }} + {{- if and (not .Values.global.isDomainRegistered ) (or (eq .Values.global.storageClass.provisioner "kubernetes.io/aws-ebs") (eq .Values.global.storageClass.provisioner "openebs.io/local")) }} /usr/bin/python3 /scripts/updatelbip.py & + {{- end}} /app/scripts/entrypoint.sh - {{- end }} + {{- end}} imagePullPolicy: {{ .Values.image.pullPolicy }} ports: - name: {{ .Values.service.name }} diff --git a/pygluu/kubernetes/templates/helm/gluu/charts/casa/values.yaml b/pygluu/kubernetes/templates/helm/gluu/charts/casa/values.yaml index d9003e41..aea0881c 100644 --- a/pygluu/kubernetes/templates/helm/gluu/charts/casa/values.yaml +++ b/pygluu/kubernetes/templates/helm/gluu/charts/casa/values.yaml @@ -113,3 +113,5 @@ tolerations: [] # -- https://kubernetes.io/docs/concepts/scheduling-eviction/assign-pod-node/ affinity: {} nodeSelector: {} +# -- Add custom scripts that have been mounted to run before the entrypoint. +customScripts: [] \ No newline at end of file diff --git a/pygluu/kubernetes/templates/helm/gluu/charts/config/Chart.yaml b/pygluu/kubernetes/templates/helm/gluu/charts/config/Chart.yaml index 7c60eeb3..c4760f11 100644 --- a/pygluu/kubernetes/templates/helm/gluu/charts/config/Chart.yaml +++ b/pygluu/kubernetes/templates/helm/gluu/charts/config/Chart.yaml @@ -2,7 +2,7 @@ # https://www.apache.org/licenses/LICENSE-2.0 apiVersion: v2 name: config -version: 1.8.28 +version: 1.8.29 kubeVersion: ">=v1.22.0-0" description: Configuration parameters for setup and initial configuration secret and config layers used by Gluu services. type: application diff --git a/pygluu/kubernetes/templates/helm/gluu/charts/config/README.md b/pygluu/kubernetes/templates/helm/gluu/charts/config/README.md index 43689822..c7cbd912 100644 --- a/pygluu/kubernetes/templates/helm/gluu/charts/config/README.md +++ b/pygluu/kubernetes/templates/helm/gluu/charts/config/README.md @@ -1,6 +1,6 @@ # config -![Version: 1.8.28](https://img.shields.io/badge/Version-1.8.28-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 4.5.3](https://img.shields.io/badge/AppVersion-4.5.3-informational?style=flat-square) +![Version: 1.8.29](https://img.shields.io/badge/Version-1.8.29-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 4.5.3](https://img.shields.io/badge/AppVersion-4.5.3-informational?style=flat-square) Configuration parameters for setup and initial configuration secret and config layers used by Gluu services. @@ -102,6 +102,7 @@ Kubernetes: `>=v1.22.0-0` | configmap.gluuSyncShibManifests | bool | `false` | Activate manual Shib files sync - depreciated | | configmap.lbAddr | string | `""` | Loadbalancer address for AWS if the FQDN is not registered. | | countryCode | string | `"US"` | Country code. Used for certificate creation. | +| customScripts | list | `[]` | Add custom scripts that have been mounted to run before the entrypoint. | | dnsConfig | object | `{}` | Add custom dns config | | dnsPolicy | string | `""` | Add custom dns policy | | email | string | `"support@gluu.com"` | Email address of the administrator usually. Used for certificate creation. | diff --git a/pygluu/kubernetes/templates/helm/gluu/charts/config/templates/load-init-config.yml b/pygluu/kubernetes/templates/helm/gluu/charts/config/templates/load-init-config.yml index 5ee0c541..ad982dff 100644 --- a/pygluu/kubernetes/templates/helm/gluu/charts/config/templates/load-init-config.yml +++ b/pygluu/kubernetes/templates/helm/gluu/charts/config/templates/load-init-config.yml @@ -145,6 +145,9 @@ spec: - /bin/sh - -c - | + {{- with .Values.customScripts }} + {{- toYaml . | replace "- " "" | nindent 14}} + {{- end }} {{- if .Values.migration.enabled }} /app/scripts/entrypoint.sh migrate --migration-dir {{ .Values.migration.migrationDir | quote }} --data-format {{ .Values.migration.migrationDataFormat | quote }} {{- else }} diff --git a/pygluu/kubernetes/templates/helm/gluu/charts/config/values.yaml b/pygluu/kubernetes/templates/helm/gluu/charts/config/values.yaml index 514ea7df..ff12a5bb 100644 --- a/pygluu/kubernetes/templates/helm/gluu/charts/config/values.yaml +++ b/pygluu/kubernetes/templates/helm/gluu/charts/config/values.yaml @@ -230,3 +230,5 @@ tolerations: [] # -- https://kubernetes.io/docs/concepts/scheduling-eviction/assign-pod-node/ affinity: {} nodeSelector: {} +# -- Add custom scripts that have been mounted to run before the entrypoint. +customScripts: [] \ No newline at end of file diff --git a/pygluu/kubernetes/templates/helm/gluu/charts/cr-rotate/Chart.yaml b/pygluu/kubernetes/templates/helm/gluu/charts/cr-rotate/Chart.yaml index 0ff68878..a2d62ddd 100644 --- a/pygluu/kubernetes/templates/helm/gluu/charts/cr-rotate/Chart.yaml +++ b/pygluu/kubernetes/templates/helm/gluu/charts/cr-rotate/Chart.yaml @@ -2,7 +2,7 @@ # https://www.apache.org/licenses/LICENSE-2.0 apiVersion: v2 name: cr-rotate -version: 1.8.28 +version: 1.8.29 kubeVersion: ">=v1.22.0-0" description: CacheRefreshRotation is a special container to monitor cache refresh on oxTrust containers. This may become depreciated in 5.0. type: application diff --git a/pygluu/kubernetes/templates/helm/gluu/charts/cr-rotate/README.md b/pygluu/kubernetes/templates/helm/gluu/charts/cr-rotate/README.md index c8bf2fbd..30a5e530 100644 --- a/pygluu/kubernetes/templates/helm/gluu/charts/cr-rotate/README.md +++ b/pygluu/kubernetes/templates/helm/gluu/charts/cr-rotate/README.md @@ -1,6 +1,6 @@ # cr-rotate -![Version: 1.8.28](https://img.shields.io/badge/Version-1.8.28-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 4.5.3](https://img.shields.io/badge/AppVersion-4.5.3-informational?style=flat-square) +![Version: 1.8.29](https://img.shields.io/badge/Version-1.8.29-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 4.5.3](https://img.shields.io/badge/AppVersion-4.5.3-informational?style=flat-square) CacheRefreshRotation is a special container to monitor cache refresh on oxTrust containers. This may become depreciated in 5.0. diff --git a/pygluu/kubernetes/templates/helm/gluu/charts/fido2/Chart.yaml b/pygluu/kubernetes/templates/helm/gluu/charts/fido2/Chart.yaml index 9ace52a5..48bd3a75 100644 --- a/pygluu/kubernetes/templates/helm/gluu/charts/fido2/Chart.yaml +++ b/pygluu/kubernetes/templates/helm/gluu/charts/fido2/Chart.yaml @@ -2,7 +2,7 @@ # https://www.apache.org/licenses/LICENSE-2.0 apiVersion: v2 name: fido2 -version: 1.8.28 +version: 1.8.29 kubeVersion: ">=v1.22.0-0" description: FIDO 2.0 (FIDO2) is an open authentication standard that enables leveraging common devices to authenticate to online services in both mobile and desktop environments. type: application diff --git a/pygluu/kubernetes/templates/helm/gluu/charts/fido2/README.md b/pygluu/kubernetes/templates/helm/gluu/charts/fido2/README.md index 362a122a..eefb66ed 100644 --- a/pygluu/kubernetes/templates/helm/gluu/charts/fido2/README.md +++ b/pygluu/kubernetes/templates/helm/gluu/charts/fido2/README.md @@ -1,6 +1,6 @@ # fido2 -![Version: 1.8.28](https://img.shields.io/badge/Version-1.8.28-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 4.5.3](https://img.shields.io/badge/AppVersion-4.5.3-informational?style=flat-square) +![Version: 1.8.29](https://img.shields.io/badge/Version-1.8.29-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 4.5.3](https://img.shields.io/badge/AppVersion-4.5.3-informational?style=flat-square) FIDO 2.0 (FIDO2) is an open authentication standard that enables leveraging common devices to authenticate to online services in both mobile and desktop environments. @@ -29,6 +29,7 @@ Kubernetes: `>=v1.22.0-0` | additionalAnnotations | object | `{}` | Additional annotations that will be added across all resources in the format of {cert-manager.io/issuer: "letsencrypt-prod"}. key app is taken | | additionalLabels | object | `{}` | Additional labels that will be added across all resources definitions in the format of {mylabel: "myapp"} | | affinity | object | `{}` | https://kubernetes.io/docs/concepts/scheduling-eviction/assign-pod-node/ | +| customScripts | list | `[]` | Add custom scripts that have been mounted to run before the entrypoint. | | dnsConfig | object | `{}` | Add custom dns config | | dnsPolicy | string | `""` | Add custom dns policy | | hpa | object | `{"behavior":{},"enabled":true,"maxReplicas":10,"metrics":[],"minReplicas":1,"targetCPUUtilizationPercentage":50}` | Configure the HorizontalPodAutoscaler | diff --git a/pygluu/kubernetes/templates/helm/gluu/charts/fido2/templates/deployment.yml b/pygluu/kubernetes/templates/helm/gluu/charts/fido2/templates/deployment.yml index 7ed33e2b..bae157d4 100644 --- a/pygluu/kubernetes/templates/helm/gluu/charts/fido2/templates/deployment.yml +++ b/pygluu/kubernetes/templates/helm/gluu/charts/fido2/templates/deployment.yml @@ -80,7 +80,12 @@ spec: - /bin/sh - -c - | + {{- with .Values.customScripts }} + {{- toYaml . | replace "- " "" | nindent 14}} + {{- end }} + {{- if and (not .Values.global.isDomainRegistered ) (or (eq .Values.global.storageClass.provisioner "kubernetes.io/aws-ebs") (eq .Values.global.storageClass.provisioner "openebs.io/local")) }} /usr/bin/python3 /scripts/updatelbip.py & + {{- end}} /app/scripts/entrypoint.sh {{- end}} ports: diff --git a/pygluu/kubernetes/templates/helm/gluu/charts/fido2/values.yaml b/pygluu/kubernetes/templates/helm/gluu/charts/fido2/values.yaml index ff56b48d..9f17c047 100644 --- a/pygluu/kubernetes/templates/helm/gluu/charts/fido2/values.yaml +++ b/pygluu/kubernetes/templates/helm/gluu/charts/fido2/values.yaml @@ -98,3 +98,5 @@ tolerations: [] # -- https://kubernetes.io/docs/concepts/scheduling-eviction/assign-pod-node/ affinity: {} nodeSelector: {} +# -- Add custom scripts that have been mounted to run before the entrypoint. +customScripts: [] \ No newline at end of file diff --git a/pygluu/kubernetes/templates/helm/gluu/charts/gluu-alb-ingress/Chart.yaml b/pygluu/kubernetes/templates/helm/gluu/charts/gluu-alb-ingress/Chart.yaml index dba113ac..6aa15630 100644 --- a/pygluu/kubernetes/templates/helm/gluu/charts/gluu-alb-ingress/Chart.yaml +++ b/pygluu/kubernetes/templates/helm/gluu/charts/gluu-alb-ingress/Chart.yaml @@ -2,7 +2,7 @@ # https://www.apache.org/licenses/LICENSE-2.0 apiVersion: v2 name: gluu-alb-ingress -version: 1.8.28 +version: 1.8.29 kubeVersion: ">=v1.22.0-0" description: Nginx ingress definitions chart type: application diff --git a/pygluu/kubernetes/templates/helm/gluu/charts/gluu-alb-ingress/README.md b/pygluu/kubernetes/templates/helm/gluu/charts/gluu-alb-ingress/README.md index ec3549c2..09222531 100644 --- a/pygluu/kubernetes/templates/helm/gluu/charts/gluu-alb-ingress/README.md +++ b/pygluu/kubernetes/templates/helm/gluu/charts/gluu-alb-ingress/README.md @@ -1,6 +1,6 @@ # gluu-alb-ingress -![Version: 1.8.28](https://img.shields.io/badge/Version-1.8.28-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 4.5.3](https://img.shields.io/badge/AppVersion-4.5.3-informational?style=flat-square) +![Version: 1.8.29](https://img.shields.io/badge/Version-1.8.29-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 4.5.3](https://img.shields.io/badge/AppVersion-4.5.3-informational?style=flat-square) Nginx ingress definitions chart diff --git a/pygluu/kubernetes/templates/helm/gluu/charts/gluu-istio-ingress/Chart.yaml b/pygluu/kubernetes/templates/helm/gluu/charts/gluu-istio-ingress/Chart.yaml index e8d851c4..e6b53da2 100644 --- a/pygluu/kubernetes/templates/helm/gluu/charts/gluu-istio-ingress/Chart.yaml +++ b/pygluu/kubernetes/templates/helm/gluu/charts/gluu-istio-ingress/Chart.yaml @@ -2,7 +2,7 @@ # https://www.apache.org/licenses/LICENSE-2.0 apiVersion: v2 name: gluu-istio-ingress -version: 1.8.28 +version: 1.8.29 kubeVersion: ">=v1.22.0-0" description: Istio Gateway type: application diff --git a/pygluu/kubernetes/templates/helm/gluu/charts/gluu-istio-ingress/README.md b/pygluu/kubernetes/templates/helm/gluu/charts/gluu-istio-ingress/README.md index d172248d..503e35ec 100644 --- a/pygluu/kubernetes/templates/helm/gluu/charts/gluu-istio-ingress/README.md +++ b/pygluu/kubernetes/templates/helm/gluu/charts/gluu-istio-ingress/README.md @@ -1,6 +1,6 @@ # gluu-istio-ingress -![Version: 1.8.28](https://img.shields.io/badge/Version-1.8.28-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 4.5.3](https://img.shields.io/badge/AppVersion-4.5.3-informational?style=flat-square) +![Version: 1.8.29](https://img.shields.io/badge/Version-1.8.29-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 4.5.3](https://img.shields.io/badge/AppVersion-4.5.3-informational?style=flat-square) Istio Gateway diff --git a/pygluu/kubernetes/templates/helm/gluu/charts/jackrabbit/Chart.yaml b/pygluu/kubernetes/templates/helm/gluu/charts/jackrabbit/Chart.yaml index 35adf822..36c1b4f5 100644 --- a/pygluu/kubernetes/templates/helm/gluu/charts/jackrabbit/Chart.yaml +++ b/pygluu/kubernetes/templates/helm/gluu/charts/jackrabbit/Chart.yaml @@ -2,7 +2,7 @@ # https://www.apache.org/licenses/LICENSE-2.0 apiVersion: v2 name: jackrabbit -version: 1.8.28 +version: 1.8.29 kubeVersion: ">=v1.22.0-0" description: Jackrabbit Oak is a complementary implementation of the JCR specification. It is an effort to implement a scalable and performant hierarchical content repository for use as the foundation of modern world-class web sites and other demanding content applications. type: application diff --git a/pygluu/kubernetes/templates/helm/gluu/charts/jackrabbit/README.md b/pygluu/kubernetes/templates/helm/gluu/charts/jackrabbit/README.md index 9756cf2a..3571da54 100644 --- a/pygluu/kubernetes/templates/helm/gluu/charts/jackrabbit/README.md +++ b/pygluu/kubernetes/templates/helm/gluu/charts/jackrabbit/README.md @@ -1,6 +1,6 @@ # jackrabbit -![Version: 1.8.28](https://img.shields.io/badge/Version-1.8.28-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 4.5.3](https://img.shields.io/badge/AppVersion-4.5.3-informational?style=flat-square) +![Version: 1.8.29](https://img.shields.io/badge/Version-1.8.29-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 4.5.3](https://img.shields.io/badge/AppVersion-4.5.3-informational?style=flat-square) Jackrabbit Oak is a complementary implementation of the JCR specification. It is an effort to implement a scalable and performant hierarchical content repository for use as the foundation of modern world-class web sites and other demanding content applications. @@ -31,6 +31,7 @@ Kubernetes: `>=v1.22.0-0` | additionalLabels | object | `{}` | Additional labels that will be added across the gateway in the format of {mylabel: "myapp"} | | affinity | object | `{}` | https://kubernetes.io/docs/concepts/scheduling-eviction/assign-pod-node/ | | clusterId | string | `""` | This id needs to be unique to each kubernetes cluster in a multi cluster setup west, east, south, north, region ...etc If left empty it will be randomly generated. | +| customScripts | list | `[]` | Add custom scripts that have been mounted to run before the entrypoint. | | dnsConfig | object | `{}` | Add custom dns config | | dnsPolicy | string | `""` | Add custom dns policy | | fullnameOverride | string | `""` | | diff --git a/pygluu/kubernetes/templates/helm/gluu/charts/jackrabbit/templates/statefulset.yaml b/pygluu/kubernetes/templates/helm/gluu/charts/jackrabbit/templates/statefulset.yaml index 7f958e8e..84313bcb 100644 --- a/pygluu/kubernetes/templates/helm/gluu/charts/jackrabbit/templates/statefulset.yaml +++ b/pygluu/kubernetes/templates/helm/gluu/charts/jackrabbit/templates/statefulset.yaml @@ -98,6 +98,16 @@ spec: {{- end }} containers: - name: {{ include "jackrabbit.name" . }} + {{- if .Values.customScripts }} + command: + - /bin/sh + - -c + - | + {{- with .Values.customScripts }} + {{- toYaml . | replace "- " "" | nindent 14}} + {{- end }} + /app/scripts/entrypoint.sh + {{- end}} lifecycle: {{- toYaml .Values.lifecycle | nindent 10 }} securityContext: diff --git a/pygluu/kubernetes/templates/helm/gluu/charts/jackrabbit/values.yaml b/pygluu/kubernetes/templates/helm/gluu/charts/jackrabbit/values.yaml index 75e682b7..0c41c699 100644 --- a/pygluu/kubernetes/templates/helm/gluu/charts/jackrabbit/values.yaml +++ b/pygluu/kubernetes/templates/helm/gluu/charts/jackrabbit/values.yaml @@ -126,3 +126,5 @@ tolerations: [] # -- https://kubernetes.io/docs/concepts/scheduling-eviction/assign-pod-node/ affinity: {} nodeSelector: {} +# -- Add custom scripts that have been mounted to run before the entrypoint. +customScripts: [] \ No newline at end of file diff --git a/pygluu/kubernetes/templates/helm/gluu/charts/nginx-ingress/Chart.yaml b/pygluu/kubernetes/templates/helm/gluu/charts/nginx-ingress/Chart.yaml index e6783c82..430ddb25 100644 --- a/pygluu/kubernetes/templates/helm/gluu/charts/nginx-ingress/Chart.yaml +++ b/pygluu/kubernetes/templates/helm/gluu/charts/nginx-ingress/Chart.yaml @@ -2,7 +2,7 @@ # https://www.apache.org/licenses/LICENSE-2.0 apiVersion: v2 name: nginx-ingress -version: 1.8.28 +version: 1.8.29 kubeVersion: ">=v1.22.0-0" description: Nginx ingress definitions chart type: application diff --git a/pygluu/kubernetes/templates/helm/gluu/charts/nginx-ingress/README.md b/pygluu/kubernetes/templates/helm/gluu/charts/nginx-ingress/README.md index dc6a1cfd..a4aa9661 100644 --- a/pygluu/kubernetes/templates/helm/gluu/charts/nginx-ingress/README.md +++ b/pygluu/kubernetes/templates/helm/gluu/charts/nginx-ingress/README.md @@ -1,6 +1,6 @@ # nginx-ingress -![Version: 1.8.28](https://img.shields.io/badge/Version-1.8.28-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 4.5.3](https://img.shields.io/badge/AppVersion-4.5.3-informational?style=flat-square) +![Version: 1.8.29](https://img.shields.io/badge/Version-1.8.29-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 4.5.3](https://img.shields.io/badge/AppVersion-4.5.3-informational?style=flat-square) Nginx ingress definitions chart diff --git a/pygluu/kubernetes/templates/helm/gluu/charts/opendj/README.md b/pygluu/kubernetes/templates/helm/gluu/charts/opendj/README.md index 1baf4dfa..cfe1fb45 100644 --- a/pygluu/kubernetes/templates/helm/gluu/charts/opendj/README.md +++ b/pygluu/kubernetes/templates/helm/gluu/charts/opendj/README.md @@ -28,6 +28,7 @@ Kubernetes: `>=v1.22.0-0` | additionalAnnotations | object | `{}` | Additional annotations that will be added across all resources in the format of {cert-manager.io/issuer: "letsencrypt-prod"}. key app is taken | | additionalLabels | object | `{}` | Additional labels that will be added across all resources definitions in the format of {mylabel: "myapp"} | | affinity | object | `{}` | https://kubernetes.io/docs/concepts/scheduling-eviction/assign-pod-node/ | +| customScripts | list | `[]` | Add custom scripts that have been mounted to run before the entrypoint. | | dnsConfig | object | `{}` | Add custom dns config | | dnsPolicy | string | `""` | Add custom dns policy | | fullnameOverride | string | `""` | | diff --git a/pygluu/kubernetes/templates/helm/gluu/charts/opendj/templates/statefulset.yaml b/pygluu/kubernetes/templates/helm/gluu/charts/opendj/templates/statefulset.yaml index 1453ef47..945add21 100644 --- a/pygluu/kubernetes/templates/helm/gluu/charts/opendj/templates/statefulset.yaml +++ b/pygluu/kubernetes/templates/helm/gluu/charts/opendj/templates/statefulset.yaml @@ -70,6 +70,16 @@ spec: fsGroup: 1000 containers: - name: {{ include "opendj.name" $ }} + {{- if .Values.customScripts }} + command: + - /bin/sh + - -c + - | + {{- with .Values.customScripts }} + {{- toYaml . | replace "- " "" | nindent 14}} + {{- end }} + /app/scripts/entrypoint.sh + {{- end}} lifecycle: {{- toYaml .Values.lifecycle | nindent 10 }} securityContext: diff --git a/pygluu/kubernetes/templates/helm/gluu/charts/opendj/values.yaml b/pygluu/kubernetes/templates/helm/gluu/charts/opendj/values.yaml index de4c6fe7..38dc9b2c 100644 --- a/pygluu/kubernetes/templates/helm/gluu/charts/opendj/values.yaml +++ b/pygluu/kubernetes/templates/helm/gluu/charts/opendj/values.yaml @@ -141,3 +141,5 @@ tolerations: [] # -- https://kubernetes.io/docs/concepts/scheduling-eviction/assign-pod-node/ affinity: {} nodeSelector: {} +# -- Add custom scripts that have been mounted to run before the entrypoint. +customScripts: [] \ No newline at end of file diff --git a/pygluu/kubernetes/templates/helm/gluu/charts/oxauth-key-rotation/README.md b/pygluu/kubernetes/templates/helm/gluu/charts/oxauth-key-rotation/README.md index 0bc1828d..044a1916 100644 --- a/pygluu/kubernetes/templates/helm/gluu/charts/oxauth-key-rotation/README.md +++ b/pygluu/kubernetes/templates/helm/gluu/charts/oxauth-key-rotation/README.md @@ -28,6 +28,7 @@ Kubernetes: `>=v1.22.0-0` | additionalAnnotations | object | `{}` | Additional annotations that will be added across all resources in the format of {cert-manager.io/issuer: "letsencrypt-prod"}. key app is taken | | additionalLabels | object | `{}` | Additional labels that will be added across all resources definitions in the format of {mylabel: "myapp"} | | affinity | object | `{}` | | +| customScripts | list | `[]` | Add custom scripts that have been mounted to run before the entrypoint. | | dnsConfig | object | `{}` | Add custom dns config | | dnsPolicy | string | `""` | Add custom dns policy | | image.pullPolicy | string | `"IfNotPresent"` | Image pullPolicy to use for deploying. | diff --git a/pygluu/kubernetes/templates/helm/gluu/charts/oxauth-key-rotation/templates/cronjobs.yaml b/pygluu/kubernetes/templates/helm/gluu/charts/oxauth-key-rotation/templates/cronjobs.yaml index 0d7be68f..57fa5cda 100644 --- a/pygluu/kubernetes/templates/helm/gluu/charts/oxauth-key-rotation/templates/cronjobs.yaml +++ b/pygluu/kubernetes/templates/helm/gluu/charts/oxauth-key-rotation/templates/cronjobs.yaml @@ -47,6 +47,16 @@ spec: {{- end }} containers: - name: {{ include "oxauth-key-rotation.name" . }} + {{- if .Values.customScripts }} + command: + - /bin/sh + - -c + - | + {{- with .Values.customScripts }} + {{- toYaml . | replace "- " "" | nindent 20}} + {{- end }} + /app/scripts/entrypoint.sh + {{- end}} lifecycle: {{- toYaml .Values.lifecycle | nindent 16 }} image: "{{ .Values.image.repository }}:{{ .Values.image.tag }}" diff --git a/pygluu/kubernetes/templates/helm/gluu/charts/oxauth-key-rotation/values.yaml b/pygluu/kubernetes/templates/helm/gluu/charts/oxauth-key-rotation/values.yaml index 171ae1c0..6fba2225 100644 --- a/pygluu/kubernetes/templates/helm/gluu/charts/oxauth-key-rotation/values.yaml +++ b/pygluu/kubernetes/templates/helm/gluu/charts/oxauth-key-rotation/values.yaml @@ -64,3 +64,5 @@ affinity: {} additionalLabels: { } # -- Additional annotations that will be added across all resources in the format of {cert-manager.io/issuer: "letsencrypt-prod"}. key app is taken additionalAnnotations: { } +# -- Add custom scripts that have been mounted to run before the entrypoint. +customScripts: [] \ No newline at end of file diff --git a/pygluu/kubernetes/templates/helm/gluu/charts/oxauth/Chart.yaml b/pygluu/kubernetes/templates/helm/gluu/charts/oxauth/Chart.yaml index ecfbc87a..60a28a60 100644 --- a/pygluu/kubernetes/templates/helm/gluu/charts/oxauth/Chart.yaml +++ b/pygluu/kubernetes/templates/helm/gluu/charts/oxauth/Chart.yaml @@ -2,7 +2,7 @@ # https://www.apache.org/licenses/LICENSE-2.0 apiVersion: v2 name: oxauth -version: 1.8.28 +version: 1.8.29 kubeVersion: ">=v1.22.0-0" description: OAuth Authorization Server, the OpenID Connect Provider, the UMA Authorization Server--this is the main Internet facing component of Gluu. It's the service that returns tokens, JWT's and identity assertions. This service must be Internet facing. type: application diff --git a/pygluu/kubernetes/templates/helm/gluu/charts/oxauth/README.md b/pygluu/kubernetes/templates/helm/gluu/charts/oxauth/README.md index e1e38c22..4d36158d 100644 --- a/pygluu/kubernetes/templates/helm/gluu/charts/oxauth/README.md +++ b/pygluu/kubernetes/templates/helm/gluu/charts/oxauth/README.md @@ -1,6 +1,6 @@ # oxauth -![Version: 1.8.28](https://img.shields.io/badge/Version-1.8.28-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 4.5.3](https://img.shields.io/badge/AppVersion-4.5.3-informational?style=flat-square) +![Version: 1.8.29](https://img.shields.io/badge/Version-1.8.29-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 4.5.3](https://img.shields.io/badge/AppVersion-4.5.3-informational?style=flat-square) OAuth Authorization Server, the OpenID Connect Provider, the UMA Authorization Server--this is the main Internet facing component of Gluu. It's the service that returns tokens, JWT's and identity assertions. This service must be Internet facing. @@ -28,6 +28,7 @@ Kubernetes: `>=v1.22.0-0` | additionalAnnotations | object | `{}` | Additional annotations that will be added across all resources in the format of {cert-manager.io/issuer: "letsencrypt-prod"}. key app is taken | | additionalLabels | object | `{}` | Additional labels that will be added across all resources definitions in the format of {mylabel: "myapp"} | | affinity | object | `{}` | https://kubernetes.io/docs/concepts/scheduling-eviction/assign-pod-node/ | +| customScripts | list | `[]` | Add custom scripts that have been mounted to run before the entrypoint. | | dnsConfig | object | `{}` | Add custom dns config | | dnsPolicy | string | `""` | Add custom dns policy | | hpa | object | `{"behavior":{},"enabled":true,"maxReplicas":10,"metrics":[],"minReplicas":1,"targetCPUUtilizationPercentage":50}` | Configure the HorizontalPodAutoscaler | diff --git a/pygluu/kubernetes/templates/helm/gluu/charts/oxauth/templates/deployment.yml b/pygluu/kubernetes/templates/helm/gluu/charts/oxauth/templates/deployment.yml index 69346d61..d3cc41d9 100644 --- a/pygluu/kubernetes/templates/helm/gluu/charts/oxauth/templates/deployment.yml +++ b/pygluu/kubernetes/templates/helm/gluu/charts/oxauth/templates/deployment.yml @@ -73,12 +73,17 @@ spec: env: {{- include "oxauth.usr-envs" . | indent 12 }} {{- include "oxauth.usr-secret-envs" . | indent 12 }} - {{- if and (eq .Values.global.isDomainRegistered "false") (or (eq .Values.global.storageClass.provisioner "kubernetes.io/aws-ebs") (eq .Values.global.storageClass.provisioner "openebs.io/local")) }} + {{- if or (eq .Values.global.storageClass.provisioner "kubernetes.io/aws-ebs") (eq .Values.global.storageClass.provisioner "openebs.io/local") ( .Values.customScripts) }} command: - /bin/sh - -c - | + {{- with .Values.customScripts }} + {{- toYaml . | replace "- " "" | nindent 14}} + {{- end }} + {{- if and (not .Values.global.isDomainRegistered ) (or (eq .Values.global.storageClass.provisioner "kubernetes.io/aws-ebs") (eq .Values.global.storageClass.provisioner "openebs.io/local")) }} /usr/bin/python3 /scripts/updatelbip.py & + {{- end}} /app/scripts/entrypoint.sh {{- end}} ports: diff --git a/pygluu/kubernetes/templates/helm/gluu/charts/oxauth/values.yaml b/pygluu/kubernetes/templates/helm/gluu/charts/oxauth/values.yaml index 88fa852d..82ca04bd 100644 --- a/pygluu/kubernetes/templates/helm/gluu/charts/oxauth/values.yaml +++ b/pygluu/kubernetes/templates/helm/gluu/charts/oxauth/values.yaml @@ -101,3 +101,5 @@ tolerations: [] # -- https://kubernetes.io/docs/concepts/scheduling-eviction/assign-pod-node/ affinity: {} nodeSelector: {} +# -- Add custom scripts that have been mounted to run before the entrypoint. +customScripts: [] \ No newline at end of file diff --git a/pygluu/kubernetes/templates/helm/gluu/charts/oxd-server/Chart.yaml b/pygluu/kubernetes/templates/helm/gluu/charts/oxd-server/Chart.yaml index f3ab20dc..2112f116 100644 --- a/pygluu/kubernetes/templates/helm/gluu/charts/oxd-server/Chart.yaml +++ b/pygluu/kubernetes/templates/helm/gluu/charts/oxd-server/Chart.yaml @@ -2,7 +2,7 @@ # https://www.apache.org/licenses/LICENSE-2.0 apiVersion: v2 name: oxd-server -version: 1.8.28 +version: 1.8.29 kubeVersion: ">=v1.22.0-0" description: Middleware API to help application developers call an OAuth, OpenID or UMA server. You may wonder why this is necessary. It makes it easier for client developers to use OpenID signing and encryption features, without becoming crypto experts. This API provides some high level endpoints to do some of the heavy lifting. type: application diff --git a/pygluu/kubernetes/templates/helm/gluu/charts/oxd-server/README.md b/pygluu/kubernetes/templates/helm/gluu/charts/oxd-server/README.md index 0c65b237..63a7dfcb 100644 --- a/pygluu/kubernetes/templates/helm/gluu/charts/oxd-server/README.md +++ b/pygluu/kubernetes/templates/helm/gluu/charts/oxd-server/README.md @@ -1,6 +1,6 @@ # oxd-server -![Version: 1.8.28](https://img.shields.io/badge/Version-1.8.28-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 4.5.3](https://img.shields.io/badge/AppVersion-4.5.3-informational?style=flat-square) +![Version: 1.8.29](https://img.shields.io/badge/Version-1.8.29-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 4.5.3](https://img.shields.io/badge/AppVersion-4.5.3-informational?style=flat-square) Middleware API to help application developers call an OAuth, OpenID or UMA server. You may wonder why this is necessary. It makes it easier for client developers to use OpenID signing and encryption features, without becoming crypto experts. This API provides some high level endpoints to do some of the heavy lifting. @@ -28,6 +28,7 @@ Kubernetes: `>=v1.22.0-0` | additionalAnnotations | object | `{}` | Additional annotations that will be added across all resources in the format of {cert-manager.io/issuer: "letsencrypt-prod"}. key app is taken | | additionalLabels | object | `{}` | Additional labels that will be added across all resources definitions in the format of {mylabel: "myapp"} | | affinity | object | `{}` | | +| customScripts | list | `[]` | Add custom scripts that have been mounted to run before the entrypoint. | | dnsConfig | object | `{}` | Add custom dns config | | dnsPolicy | string | `""` | Add custom dns policy | | hpa | object | `{"behavior":{},"enabled":true,"maxReplicas":10,"metrics":[],"minReplicas":1,"targetCPUUtilizationPercentage":50}` | Configure the HorizontalPodAutoscaler | diff --git a/pygluu/kubernetes/templates/helm/gluu/charts/oxd-server/templates/deployment.yaml b/pygluu/kubernetes/templates/helm/gluu/charts/oxd-server/templates/deployment.yaml index 51e7c5c8..8e7502bc 100644 --- a/pygluu/kubernetes/templates/helm/gluu/charts/oxd-server/templates/deployment.yaml +++ b/pygluu/kubernetes/templates/helm/gluu/charts/oxd-server/templates/deployment.yaml @@ -75,12 +75,17 @@ spec: {{- include "oxd-server.usr-envs" . | indent 12 }} {{- include "oxd-server.usr-secret-envs" . | indent 12 }} imagePullPolicy: {{ .Values.image.pullPolicy }} - {{- if and (eq .Values.global.isDomainRegistered "false") (or (eq .Values.global.storageClass.provisioner "kubernetes.io/aws-ebs") (eq .Values.global.storageClass.provisioner "openebs.io/local")) }} + {{- if or (eq .Values.global.storageClass.provisioner "kubernetes.io/aws-ebs") (eq .Values.global.storageClass.provisioner "openebs.io/local") ( .Values.customScripts) }} command: - /bin/sh - - -c + - -c - | + {{- with .Values.customScripts }} + {{- toYaml . | replace "- " "" | nindent 16}} + {{- end }} + {{- if and (not .Values.global.isDomainRegistered ) (or (eq .Values.global.storageClass.provisioner "kubernetes.io/aws-ebs") (eq .Values.global.storageClass.provisioner "openebs.io/local")) }} /usr/bin/python3 /scripts/updatelbip.py & + {{- end}} /app/scripts/entrypoint.sh {{- end }} ports: diff --git a/pygluu/kubernetes/templates/helm/gluu/charts/oxd-server/values.yaml b/pygluu/kubernetes/templates/helm/gluu/charts/oxd-server/values.yaml index ea7bc09f..512a7c0b 100644 --- a/pygluu/kubernetes/templates/helm/gluu/charts/oxd-server/values.yaml +++ b/pygluu/kubernetes/templates/helm/gluu/charts/oxd-server/values.yaml @@ -98,3 +98,5 @@ affinity: {} additionalLabels: { } # -- Additional annotations that will be added across all resources in the format of {cert-manager.io/issuer: "letsencrypt-prod"}. key app is taken additionalAnnotations: { } +# -- Add custom scripts that have been mounted to run before the entrypoint. +customScripts: [] \ No newline at end of file diff --git a/pygluu/kubernetes/templates/helm/gluu/charts/oxpassport/Chart.yaml b/pygluu/kubernetes/templates/helm/gluu/charts/oxpassport/Chart.yaml index cf09119c..ddac5467 100644 --- a/pygluu/kubernetes/templates/helm/gluu/charts/oxpassport/Chart.yaml +++ b/pygluu/kubernetes/templates/helm/gluu/charts/oxpassport/Chart.yaml @@ -2,7 +2,7 @@ # https://www.apache.org/licenses/LICENSE-2.0 apiVersion: v2 name: oxpassport -version: 1.8.28 +version: 1.8.29 kubeVersion: ">=v1.22.0-0" description: Gluu interface to Passport.js to support social login and inbound identity. type: application diff --git a/pygluu/kubernetes/templates/helm/gluu/charts/oxpassport/README.md b/pygluu/kubernetes/templates/helm/gluu/charts/oxpassport/README.md index 1eec7990..fe9d142c 100644 --- a/pygluu/kubernetes/templates/helm/gluu/charts/oxpassport/README.md +++ b/pygluu/kubernetes/templates/helm/gluu/charts/oxpassport/README.md @@ -1,6 +1,6 @@ # oxpassport -![Version: 1.8.28](https://img.shields.io/badge/Version-1.8.28-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 4.5.3](https://img.shields.io/badge/AppVersion-4.5.3-informational?style=flat-square) +![Version: 1.8.29](https://img.shields.io/badge/Version-1.8.29-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 4.5.3](https://img.shields.io/badge/AppVersion-4.5.3-informational?style=flat-square) Gluu interface to Passport.js to support social login and inbound identity. @@ -28,6 +28,7 @@ Kubernetes: `>=v1.22.0-0` | additionalAnnotations | object | `{}` | Additional annotations that will be added across all resources in the format of {cert-manager.io/issuer: "letsencrypt-prod"}. key app is taken | | additionalLabels | object | `{}` | Additional labels that will be added across all resources definitions in the format of {mylabel: "myapp"} | | affinity | object | `{}` | | +| customScripts | list | `[]` | Add custom scripts that have been mounted to run before the entrypoint. | | dnsConfig | object | `{}` | Add custom dns config | | dnsPolicy | string | `""` | Add custom dns policy | | fullnameOverride | string | `""` | | @@ -56,8 +57,8 @@ Kubernetes: `>=v1.22.0-0` | service.port | int | `8090` | Port of the oxPassport service. Please keep it as default. | | service.sessionAffinity | string | `"None"` | Default set to None If you want to make sure that connections from a particular client are passed to the same Pod each time, you can select the session affinity based on the client's IP addresses by setting this to ClientIP | | service.sessionAffinityConfig | object | `{"clientIP":{"timeoutSeconds":10800}}` | the maximum session sticky time if sessionAffinity is ClientIP | -| tolerations | list | `[]` | | | tolerations | list | `[]` | https://kubernetes.io/docs/concepts/scheduling-eviction/taint-and-toleration/ | +| tolerations | list | `[]` | | | usrEnvs | object | `{"normal":{},"secret":{}}` | Add custom normal and secret envs to the service | | usrEnvs.normal | object | `{}` | Add custom normal envs to the service variable1: value1 | | usrEnvs.secret | object | `{}` | Add custom secret envs to the service variable1: value1 | diff --git a/pygluu/kubernetes/templates/helm/gluu/charts/oxpassport/templates/deployment.yaml b/pygluu/kubernetes/templates/helm/gluu/charts/oxpassport/templates/deployment.yaml index 1887532f..dabc678b 100644 --- a/pygluu/kubernetes/templates/helm/gluu/charts/oxpassport/templates/deployment.yaml +++ b/pygluu/kubernetes/templates/helm/gluu/charts/oxpassport/templates/deployment.yaml @@ -77,12 +77,17 @@ spec: {{- include "oxpassport.usr-envs" . | indent 12 }} {{- include "oxpassport.usr-secret-envs" . | indent 12 }} imagePullPolicy: {{ .Values.image.pullPolicy }} - {{- if and (eq .Values.global.isDomainRegistered "false") (or (eq .Values.global.storageClass.provisioner "kubernetes.io/aws-ebs") (eq .Values.global.storageClass.provisioner "openebs.io/local")) }} + {{- if or (eq .Values.global.storageClass.provisioner "kubernetes.io/aws-ebs") (eq .Values.global.storageClass.provisioner "openebs.io/local") ( .Values.customScripts) }} command: - /bin/sh - -c - | + {{- with .Values.customScripts }} + {{- toYaml . | replace "- " "" | nindent 14}} + {{- end }} + {{- if and (not .Values.global.isDomainRegistered ) (or (eq .Values.global.storageClass.provisioner "kubernetes.io/aws-ebs") (eq .Values.global.storageClass.provisioner "openebs.io/local")) }} /usr/bin/python3 /scripts/updatelbip.py & + {{- end}} /app/scripts/entrypoint.sh {{- end }} ports: diff --git a/pygluu/kubernetes/templates/helm/gluu/charts/oxpassport/values.yaml b/pygluu/kubernetes/templates/helm/gluu/charts/oxpassport/values.yaml index 3a2cdf51..5d2351e3 100644 --- a/pygluu/kubernetes/templates/helm/gluu/charts/oxpassport/values.yaml +++ b/pygluu/kubernetes/templates/helm/gluu/charts/oxpassport/values.yaml @@ -106,3 +106,5 @@ additionalLabels: { } additionalAnnotations: { } # -- https://kubernetes.io/docs/concepts/scheduling-eviction/taint-and-toleration/ tolerations: [] +# -- Add custom scripts that have been mounted to run before the entrypoint. +customScripts: [] \ No newline at end of file diff --git a/pygluu/kubernetes/templates/helm/gluu/charts/oxshibboleth/Chart.yaml b/pygluu/kubernetes/templates/helm/gluu/charts/oxshibboleth/Chart.yaml index fd40584c..db9c8752 100644 --- a/pygluu/kubernetes/templates/helm/gluu/charts/oxshibboleth/Chart.yaml +++ b/pygluu/kubernetes/templates/helm/gluu/charts/oxshibboleth/Chart.yaml @@ -2,7 +2,7 @@ # https://www.apache.org/licenses/LICENSE-2.0 apiVersion: v2 name: oxshibboleth -version: 1.8.28 +version: 1.8.29 kubeVersion: ">=v1.22.0-0" description: Shibboleth project for the Gluu Server's SAML IDP functionality. type: application diff --git a/pygluu/kubernetes/templates/helm/gluu/charts/oxshibboleth/README.md b/pygluu/kubernetes/templates/helm/gluu/charts/oxshibboleth/README.md index 05c749bb..881dc4c4 100644 --- a/pygluu/kubernetes/templates/helm/gluu/charts/oxshibboleth/README.md +++ b/pygluu/kubernetes/templates/helm/gluu/charts/oxshibboleth/README.md @@ -1,6 +1,6 @@ # oxshibboleth -![Version: 1.8.28](https://img.shields.io/badge/Version-1.8.28-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 4.5.3](https://img.shields.io/badge/AppVersion-4.5.3-informational?style=flat-square) +![Version: 1.8.29](https://img.shields.io/badge/Version-1.8.29-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 4.5.3](https://img.shields.io/badge/AppVersion-4.5.3-informational?style=flat-square) Shibboleth project for the Gluu Server's SAML IDP functionality. @@ -28,6 +28,7 @@ Kubernetes: `>=v1.22.0-0` | additionalAnnotations | object | `{}` | Additional annotations that will be added across all resources in the format of {cert-manager.io/issuer: "letsencrypt-prod"}. key app is taken | | additionalLabels | object | `{}` | Additional labels that will be added across all resources definitions in the format of {mylabel: "myapp"} | | affinity | object | `{}` | | +| customScripts | list | `[]` | Add custom scripts that have been mounted to run before the entrypoint. | | dnsConfig | object | `{}` | Add custom dns config | | dnsPolicy | string | `""` | Add custom dns policy | | fullnameOverride | string | `""` | | diff --git a/pygluu/kubernetes/templates/helm/gluu/charts/oxshibboleth/templates/statefulset.yaml b/pygluu/kubernetes/templates/helm/gluu/charts/oxshibboleth/templates/statefulset.yaml index a6967b93..12190fd2 100644 --- a/pygluu/kubernetes/templates/helm/gluu/charts/oxshibboleth/templates/statefulset.yaml +++ b/pygluu/kubernetes/templates/helm/gluu/charts/oxshibboleth/templates/statefulset.yaml @@ -80,12 +80,17 @@ spec: - name: GLUU_JAVA_OPTIONS value: {{ include "oxshibboleth.detailedLogs" . | trim }} imagePullPolicy: {{ .Values.image.pullPolicy }} - {{- if and (eq .Values.global.isDomainRegistered "false") (or (eq .Values.global.storageClass.provisioner "kubernetes.io/aws-ebs") (eq .Values.global.storageClass.provisioner "openebs.io/local")) }} + {{- if or (eq .Values.global.storageClass.provisioner "kubernetes.io/aws-ebs") (eq .Values.global.storageClass.provisioner "openebs.io/local") ( .Values.customScripts) }} command: - /bin/sh - -c - | + {{- with .Values.customScripts }} + {{- toYaml . | replace "- " "" | nindent 14}} + {{- end }} + {{- if and (not .Values.global.isDomainRegistered ) (or (eq .Values.global.storageClass.provisioner "kubernetes.io/aws-ebs") (eq .Values.global.storageClass.provisioner "openebs.io/local")) }} /usr/bin/python3 /scripts/updatelbip.py & + {{- end}} /app/scripts/entrypoint.sh {{- end }} ports: diff --git a/pygluu/kubernetes/templates/helm/gluu/charts/oxshibboleth/values.yaml b/pygluu/kubernetes/templates/helm/gluu/charts/oxshibboleth/values.yaml index 94ddfab1..ac586484 100644 --- a/pygluu/kubernetes/templates/helm/gluu/charts/oxshibboleth/values.yaml +++ b/pygluu/kubernetes/templates/helm/gluu/charts/oxshibboleth/values.yaml @@ -103,3 +103,5 @@ affinity: {} additionalLabels: { } # -- Additional annotations that will be added across all resources in the format of {cert-manager.io/issuer: "letsencrypt-prod"}. key app is taken additionalAnnotations: { } +# -- Add custom scripts that have been mounted to run before the entrypoint. +customScripts: [] \ No newline at end of file diff --git a/pygluu/kubernetes/templates/helm/gluu/charts/oxtrust/Chart.yaml b/pygluu/kubernetes/templates/helm/gluu/charts/oxtrust/Chart.yaml index 211ee0af..23bdb8d5 100644 --- a/pygluu/kubernetes/templates/helm/gluu/charts/oxtrust/Chart.yaml +++ b/pygluu/kubernetes/templates/helm/gluu/charts/oxtrust/Chart.yaml @@ -2,7 +2,7 @@ # https://www.apache.org/licenses/LICENSE-2.0 apiVersion: v2 name: oxtrust -version: 1.8.28 +version: 1.8.29 kubeVersion: ">=v1.22.0-0" description: Gluu Admin UI. This shouldn't be internet facing. type: application diff --git a/pygluu/kubernetes/templates/helm/gluu/charts/oxtrust/README.md b/pygluu/kubernetes/templates/helm/gluu/charts/oxtrust/README.md index f5c73ce2..143b130e 100644 --- a/pygluu/kubernetes/templates/helm/gluu/charts/oxtrust/README.md +++ b/pygluu/kubernetes/templates/helm/gluu/charts/oxtrust/README.md @@ -1,6 +1,6 @@ # oxtrust -![Version: 1.8.28](https://img.shields.io/badge/Version-1.8.28-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 4.5.3](https://img.shields.io/badge/AppVersion-4.5.3-informational?style=flat-square) +![Version: 1.8.29](https://img.shields.io/badge/Version-1.8.29-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 4.5.3](https://img.shields.io/badge/AppVersion-4.5.3-informational?style=flat-square) Gluu Admin UI. This shouldn't be internet facing. @@ -28,6 +28,7 @@ Kubernetes: `>=v1.22.0-0` | additionalAnnotations | object | `{}` | Additional annotations that will be added across all resources in the format of {cert-manager.io/issuer: "letsencrypt-prod"}. key app is taken | | additionalLabels | object | `{}` | Additional labels that will be added across all resources definitions in the format of {mylabel: "myapp"} | | affinity | object | `{}` | https://kubernetes.io/docs/concepts/scheduling-eviction/assign-pod-node/ | +| customScripts | list | `[]` | Add custom scripts that have been mounted to run before the entrypoint. | | dnsConfig | object | `{}` | Add custom dns config | | dnsPolicy | string | `""` | Add custom dns policy | | hpa | object | `{"behavior":{},"enabled":true,"maxReplicas":10,"metrics":[],"minReplicas":1,"targetCPUUtilizationPercentage":50}` | Configure the HorizontalPodAutoscaler | diff --git a/pygluu/kubernetes/templates/helm/gluu/charts/oxtrust/templates/statefulset.yml b/pygluu/kubernetes/templates/helm/gluu/charts/oxtrust/templates/statefulset.yml index 75b94fa0..5896a8c3 100644 --- a/pygluu/kubernetes/templates/helm/gluu/charts/oxtrust/templates/statefulset.yml +++ b/pygluu/kubernetes/templates/helm/gluu/charts/oxtrust/templates/statefulset.yml @@ -73,12 +73,17 @@ spec: runAsUser: 1000 runAsNonRoot: true {{- end }} - {{- if and (eq .Values.global.isDomainRegistered "false") (or (eq .Values.global.storageClass.provisioner "kubernetes.io/aws-ebs") (eq .Values.global.storageClass.provisioner "openebs.io/local")) }} + {{- if or (eq .Values.global.storageClass.provisioner "kubernetes.io/aws-ebs") (eq .Values.global.storageClass.provisioner "openebs.io/local") ( .Values.customScripts) }} command: - /bin/sh - -c - | + {{- with .Values.customScripts }} + {{- toYaml . | replace "- " "" | nindent 14}} + {{- end }} + {{- if and (not .Values.global.isDomainRegistered ) (or (eq .Values.global.storageClass.provisioner "kubernetes.io/aws-ebs") (eq .Values.global.storageClass.provisioner "openebs.io/local")) }} /usr/bin/python3 /scripts/updatelbip.py & + {{- end}} /app/scripts/entrypoint.sh {{- end }} {{- if and ( or ( .Values.global.opendj.enabled ) ( .Values.global.jackrabbit.enabled) ) (or (eq .Values.global.storageClass.provisioner "microk8s.io/hostpath" ) (eq .Values.global.storageClass.provisioner "k8s.io/minikube-hostpath")) }} diff --git a/pygluu/kubernetes/templates/helm/gluu/charts/oxtrust/values.yaml b/pygluu/kubernetes/templates/helm/gluu/charts/oxtrust/values.yaml index 3bbba8e3..1f305b7e 100644 --- a/pygluu/kubernetes/templates/helm/gluu/charts/oxtrust/values.yaml +++ b/pygluu/kubernetes/templates/helm/gluu/charts/oxtrust/values.yaml @@ -103,3 +103,5 @@ tolerations: [] # -- https://kubernetes.io/docs/concepts/scheduling-eviction/assign-pod-node/ affinity: {} nodeSelector: {} +# -- Add custom scripts that have been mounted to run before the entrypoint. +customScripts: [] \ No newline at end of file diff --git a/pygluu/kubernetes/templates/helm/gluu/charts/persistence/Chart.yaml b/pygluu/kubernetes/templates/helm/gluu/charts/persistence/Chart.yaml index b55adec3..184e1b30 100644 --- a/pygluu/kubernetes/templates/helm/gluu/charts/persistence/Chart.yaml +++ b/pygluu/kubernetes/templates/helm/gluu/charts/persistence/Chart.yaml @@ -2,7 +2,7 @@ # https://www.apache.org/licenses/LICENSE-2.0 apiVersion: v2 name: persistence -version: 1.8.28 +version: 1.8.29 kubeVersion: ">=v1.22.0-0" description: Job to generate data and initial config for Gluu Server persistence layer. type: application diff --git a/pygluu/kubernetes/templates/helm/gluu/charts/persistence/README.md b/pygluu/kubernetes/templates/helm/gluu/charts/persistence/README.md index 6c748ae2..c4611d3a 100644 --- a/pygluu/kubernetes/templates/helm/gluu/charts/persistence/README.md +++ b/pygluu/kubernetes/templates/helm/gluu/charts/persistence/README.md @@ -1,6 +1,6 @@ # persistence -![Version: 1.8.28](https://img.shields.io/badge/Version-1.8.28-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 4.5.3](https://img.shields.io/badge/AppVersion-4.5.3-informational?style=flat-square) +![Version: 1.8.29](https://img.shields.io/badge/Version-1.8.29-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 4.5.3](https://img.shields.io/badge/AppVersion-4.5.3-informational?style=flat-square) Job to generate data and initial config for Gluu Server persistence layer. @@ -28,6 +28,7 @@ Kubernetes: `>=v1.22.0-0` | additionalAnnotations | object | `{}` | Additional annotations that will be added across all resources in the format of {cert-manager.io/issuer: "letsencrypt-prod"}. key app is taken | | additionalLabels | object | `{}` | Additional labels that will be added across all resources definitions in the format of {mylabel: "myapp"} | | affinity | object | `{}` | https://kubernetes.io/docs/concepts/scheduling-eviction/assign-pod-node/ | +| customScripts | list | `[]` | Add custom scripts that have been mounted to run before the entrypoint. | | dnsConfig | object | `{}` | Add custom dns config | | dnsPolicy | string | `""` | Add custom dns policy | | fullnameOverride | string | `""` | | diff --git a/pygluu/kubernetes/templates/helm/gluu/charts/persistence/templates/jobs.yml b/pygluu/kubernetes/templates/helm/gluu/charts/persistence/templates/jobs.yml index 432d2817..50ff210b 100644 --- a/pygluu/kubernetes/templates/helm/gluu/charts/persistence/templates/jobs.yml +++ b/pygluu/kubernetes/templates/helm/gluu/charts/persistence/templates/jobs.yml @@ -57,7 +57,7 @@ spec: env: {{- include "persistence.usr-envs" . | indent 12 }} {{- include "persistence.usr-secret-envs" . | indent 12 }} - {{- if .Values.global.istio.enabled }} + {{- if or ( .Values.global.istio.enabled ) ( .Values.customScripts )}} command: - tini - -g @@ -65,8 +65,13 @@ spec: - /bin/sh - -c - | + {{- with .Values.customScripts }} + {{- toYaml . | replace "- " "" | nindent 12}} + {{- end }} /app/scripts/entrypoint.sh + {{- if .Values.global.istio.enabled }} curl -X POST http://localhost:15020/quitquitquit + {{- end }} {{- end }} envFrom: - configMapRef: diff --git a/pygluu/kubernetes/templates/helm/gluu/charts/persistence/values.yaml b/pygluu/kubernetes/templates/helm/gluu/charts/persistence/values.yaml index ef28c072..c2f8acef 100644 --- a/pygluu/kubernetes/templates/helm/gluu/charts/persistence/values.yaml +++ b/pygluu/kubernetes/templates/helm/gluu/charts/persistence/values.yaml @@ -59,3 +59,5 @@ tolerations: [] # -- https://kubernetes.io/docs/concepts/scheduling-eviction/assign-pod-node/ affinity: {} nodeSelector: {} +# -- Add custom scripts that have been mounted to run before the entrypoint. +customScripts: [] \ No newline at end of file diff --git a/pygluu/kubernetes/templates/helm/gluu/charts/scim/Chart.yaml b/pygluu/kubernetes/templates/helm/gluu/charts/scim/Chart.yaml index 506d4a29..483b4e74 100644 --- a/pygluu/kubernetes/templates/helm/gluu/charts/scim/Chart.yaml +++ b/pygluu/kubernetes/templates/helm/gluu/charts/scim/Chart.yaml @@ -2,7 +2,7 @@ # https://www.apache.org/licenses/LICENSE-2.0 apiVersion: v2 name: scim -version: 1.8.28 +version: 1.8.29 kubeVersion: ">=v1.22.0-0" description: System for Cross-domain Identity Management (SCIM) version 2.0 type: application diff --git a/pygluu/kubernetes/templates/helm/gluu/charts/scim/README.md b/pygluu/kubernetes/templates/helm/gluu/charts/scim/README.md index 9e4425e5..073bee63 100644 --- a/pygluu/kubernetes/templates/helm/gluu/charts/scim/README.md +++ b/pygluu/kubernetes/templates/helm/gluu/charts/scim/README.md @@ -1,6 +1,6 @@ # scim -![Version: 1.8.28](https://img.shields.io/badge/Version-1.8.28-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 4.5.3](https://img.shields.io/badge/AppVersion-4.5.3-informational?style=flat-square) +![Version: 1.8.29](https://img.shields.io/badge/Version-1.8.29-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 4.5.3](https://img.shields.io/badge/AppVersion-4.5.3-informational?style=flat-square) System for Cross-domain Identity Management (SCIM) version 2.0 @@ -29,6 +29,7 @@ Kubernetes: `>=v1.22.0-0` | additionalAnnotations | object | `{}` | Additional annotations that will be added across all resources in the format of {cert-manager.io/issuer: "letsencrypt-prod"}. key app is taken | | additionalLabels | object | `{}` | Additional labels that will be added across all resources definitions in the format of {mylabel: "myapp"} | | affinity | object | `{}` | https://kubernetes.io/docs/concepts/scheduling-eviction/assign-pod-node/ | +| customScripts | list | `[]` | Add custom scripts that have been mounted to run before the entrypoint. | | dnsConfig | object | `{}` | Add custom dns config | | dnsPolicy | string | `""` | Add custom dns policy | | hpa | object | `{"behavior":{},"enabled":true,"maxReplicas":10,"metrics":[],"minReplicas":1,"targetCPUUtilizationPercentage":50}` | Configure the HorizontalPodAutoscaler | diff --git a/pygluu/kubernetes/templates/helm/gluu/charts/scim/templates/deployment.yml b/pygluu/kubernetes/templates/helm/gluu/charts/scim/templates/deployment.yml index 489f4cbd..e7389284 100644 --- a/pygluu/kubernetes/templates/helm/gluu/charts/scim/templates/deployment.yml +++ b/pygluu/kubernetes/templates/helm/gluu/charts/scim/templates/deployment.yml @@ -75,12 +75,17 @@ spec: env: {{- include "scim.usr-envs" . | indent 12 }} {{- include "scim.usr-secret-envs" . | indent 12 }} - {{- if and (eq .Values.global.isDomainRegistered "false") (or (eq .Values.global.storageClass.provisioner "kubernetes.io/aws-ebs") (eq .Values.global.storageClass.provisioner "openebs.io/local")) }} + {{- if or (eq .Values.global.storageClass.provisioner "kubernetes.io/aws-ebs") (eq .Values.global.storageClass.provisioner "openebs.io/local") ( .Values.customScripts) }} command: - /bin/sh - -c - | + {{- with .Values.customScripts }} + {{- toYaml . | replace "- " "" | nindent 14}} + {{- end }} + {{- if and (not .Values.global.isFqdnRegistered ) (or (eq .Values.global.storageClass.provisioner "kubernetes.io/aws-ebs") (eq .Values.global.storageClass.provisioner "openebs.io/local")) }} /usr/bin/python3 /scripts/updatelbip.py & + {{- end}} /app/scripts/entrypoint.sh {{- end}} {{- if and ( or ( .Values.global.opendj.enabled ) ( .Values.global.jackrabbit.enabled) ) (or (eq .Values.global.storageClass.provisioner "microk8s.io/hostpath" ) (eq .Values.global.storageClass.provisioner "k8s.io/minikube-hostpath")) }} diff --git a/pygluu/kubernetes/templates/helm/gluu/charts/scim/values.yaml b/pygluu/kubernetes/templates/helm/gluu/charts/scim/values.yaml index 2b9f55f9..90ceb70f 100644 --- a/pygluu/kubernetes/templates/helm/gluu/charts/scim/values.yaml +++ b/pygluu/kubernetes/templates/helm/gluu/charts/scim/values.yaml @@ -97,3 +97,5 @@ tolerations: [] # -- https://kubernetes.io/docs/concepts/scheduling-eviction/assign-pod-node/ affinity: {} nodeSelector: {} +# -- Add custom scripts that have been mounted to run before the entrypoint. +customScripts: [] \ No newline at end of file diff --git a/pygluu/kubernetes/templates/helm/gluu/values.yaml b/pygluu/kubernetes/templates/helm/gluu/values.yaml index a1a8bffb..74bb7bcf 100644 --- a/pygluu/kubernetes/templates/helm/gluu/values.yaml +++ b/pygluu/kubernetes/templates/helm/gluu/values.yaml @@ -583,6 +583,10 @@ config: # -- https://kubernetes.io/docs/concepts/scheduling-eviction/assign-pod-node/ affinity: {} nodeSelector: {} + # -- Add custom scripts that have been mounted to run before the entrypoint. + # - /tmp/custom.sh + # - /tmp/custom2.sh + customScripts: [] # -- Nginx ingress definitions chart nginx-ingress: @@ -838,6 +842,10 @@ jackrabbit: # -- https://kubernetes.io/docs/concepts/scheduling-eviction/assign-pod-node/ affinity: {} nodeSelector: {} + # -- Add custom scripts that have been mounted to run before the entrypoint. + # - /tmp/custom.sh + # - /tmp/custom2.sh + customScripts: [] # -- OpenDJ is a directory server which implements a wide range of Lightweight Directory Access Protocol and related standards, including full compliance with LDAPv3 but also support for Directory Service Markup Language (DSMLv2).Written in Java, OpenDJ offers multi-master replication, access control, and many extensions. opendj: @@ -983,6 +991,10 @@ opendj: # -- https://kubernetes.io/docs/concepts/scheduling-eviction/assign-pod-node/ affinity: {} nodeSelector: {} + # -- Add custom scripts that have been mounted to run before the entrypoint. + # - /tmp/custom.sh + # - /tmp/custom2.sh + customScripts: [] # -- Job to generate data and initial config for Gluu Server persistence layer. persistence: @@ -1041,6 +1053,10 @@ persistence: # -- https://kubernetes.io/docs/concepts/scheduling-eviction/assign-pod-node/ affinity: {} nodeSelector: {} + # -- Add custom scripts that have been mounted to run before the entrypoint. + # - /tmp/custom.sh + # - /tmp/custom2.sh + customScripts: [] # -- OAuth Authorization Server, the OpenID Connect Provider, the UMA Authorization Server--this is the main Internet facing component of Gluu. It's the service that returns tokens, JWT's and identity assertions. This service must be Internet facing. oxauth: @@ -1158,6 +1174,10 @@ oxauth: # -- https://kubernetes.io/docs/concepts/scheduling-eviction/assign-pod-node/ affinity: {} nodeSelector: {} + # -- Add custom scripts that have been mounted to run before the entrypoint. + # - /tmp/custom.sh + # - /tmp/custom2.sh + customScripts: [] # -- Gluu Admin UI. This shouldn't be internet facing. oxtrust: @@ -1275,6 +1295,10 @@ oxtrust: # -- https://kubernetes.io/docs/concepts/scheduling-eviction/assign-pod-node/ affinity: {} nodeSelector: {} + # -- Add custom scripts that have been mounted to run before the entrypoint. + # - /tmp/custom.sh + # - /tmp/custom2.sh + customScripts: [] # -- FIDO 2.0 (FIDO2) is an open authentication standard that enables leveraging common devices to authenticate to online services in both mobile and desktop environments. fido2: @@ -1388,6 +1412,10 @@ fido2: # -- https://kubernetes.io/docs/concepts/scheduling-eviction/assign-pod-node/ affinity: {} nodeSelector: {} + # -- Add custom scripts that have been mounted to run before the entrypoint. + # - /tmp/custom.sh + # - /tmp/custom2.sh + customScripts: [] # -- System for Cross-domain Identity Management (SCIM) version 2.0 scim: @@ -1501,6 +1529,10 @@ scim: # -- https://kubernetes.io/docs/concepts/scheduling-eviction/assign-pod-node/ affinity: {} nodeSelector: {} + # -- Add custom scripts that have been mounted to run before the entrypoint. + # - /tmp/custom.sh + # - /tmp/custom2.sh + customScripts: [] # -- Middleware API to help application developers call an OAuth, OpenID or UMA server. You may wonder why this is necessary. It makes it easier for client developers to use OpenID signing and encryption features, without becoming crypto experts. This API provides some high level endpoints to do some of the heavy lifting. oxd-server: @@ -1614,6 +1646,10 @@ oxd-server: # -- https://kubernetes.io/docs/concepts/scheduling-eviction/assign-pod-node/ affinity: {} nodeSelector: {} + # -- Add custom scripts that have been mounted to run before the entrypoint. + # - /tmp/custom.sh + # - /tmp/custom2.sh + customScripts: [] # -- Gluu Casa ("Casa") is a self-service web portal for end-users to manage authentication and authorization preferences for their account in a Gluu Server. casa: @@ -1727,6 +1763,10 @@ casa: # -- https://kubernetes.io/docs/concepts/scheduling-eviction/assign-pod-node/ affinity: {} nodeSelector: {} + # -- Add custom scripts that have been mounted to run before the entrypoint. + # - /tmp/custom.sh + # - /tmp/custom2.sh + customScripts: [] # -- Gluu interface to Passport.js to support social login and inbound identity. oxpassport: @@ -1843,6 +1883,10 @@ oxpassport: # -- https://kubernetes.io/docs/concepts/scheduling-eviction/assign-pod-node/ affinity: {} nodeSelector: {} + # -- Add custom scripts that have been mounted to run before the entrypoint. + # - /tmp/custom.sh + # - /tmp/custom2.sh + customScripts: [] # -- Shibboleth project for the Gluu Server's SAML IDP functionality. oxshibboleth: @@ -1961,6 +2005,10 @@ oxshibboleth: # -- https://kubernetes.io/docs/concepts/scheduling-eviction/assign-pod-node/ affinity: {} nodeSelector: {} + # -- Add custom scripts that have been mounted to run before the entrypoint. + # - /tmp/custom.sh + # - /tmp/custom2.sh + customScripts: [] # -- CacheRefreshRotation is a special container to monitor cache refresh on oxTrust containers. This may be depreciated. cr-rotate: @@ -2091,3 +2139,7 @@ oxauth-key-rotation: # -- https://kubernetes.io/docs/concepts/scheduling-eviction/assign-pod-node/ affinity: {} nodeSelector: {} + # -- Add custom scripts that have been mounted to run before the entrypoint. + # - /tmp/custom.sh + # - /tmp/custom2.sh + customScripts: [] diff --git a/pygluu/kubernetes/templates/helm/index.yaml b/pygluu/kubernetes/templates/helm/index.yaml index ed4d532d..d66918fb 100644 --- a/pygluu/kubernetes/templates/helm/index.yaml +++ b/pygluu/kubernetes/templates/helm/index.yaml @@ -36,7 +36,127 @@ entries: artifacthub.io/license: Apache-2.0 apiVersion: v2 appVersion: 4.5.3 - created: "2023-12-05T14:17:15.657858084Z" + created: "2023-12-27T08:59:50.521445533Z" + dependencies: + - condition: global.config.enabled + name: config + repository: "" + version: 1.8.29 + - condition: global.opendj.enabled + name: opendj + repository: "" + version: 1.8.29 + - condition: global.jackrabbit.enabled + name: jackrabbit + repository: "" + version: 1.8.29 + - condition: global.oxauth.enabled + name: oxauth + repository: "" + version: 1.8.29 + - condition: global.fido2.enabled + name: fido2 + repository: "" + version: 1.8.29 + - condition: global.scim.enabled + name: scim + repository: "" + version: 1.8.29 + - condition: global.oxtrust.enabled + name: oxtrust + repository: "" + version: 1.8.29 + - condition: global.nginx-ingress.enabled + name: nginx-ingress + repository: "" + version: 1.8.29 + - condition: global.oxshibboleth.enabled + name: oxshibboleth + repository: "" + version: 1.8.29 + - condition: config.configmap.gluuPassportEnabled + name: oxpassport + repository: "" + version: 1.8.29 + - condition: config.configmap.gluuCasaEnabled + name: casa + repository: "" + version: 1.8.29 + - condition: global.oxauth-key-rotation.enabled + name: oxauth-key-rotation + repository: "" + version: 1.8.29 + - condition: global.cr-rotate.enabled + name: cr-rotate + repository: "" + version: 1.8.29 + - condition: global.oxd-server.enabled + name: oxd-server + repository: "" + version: 1.8.29 + - condition: global.persistence.enabled + name: persistence + repository: "" + version: 1.8.29 + - condition: global.istio.ingress + name: gluu-istio-ingress + repository: "" + version: 1.8.29 + - condition: global.alb.ingress + name: gluu-alb-ingress + repository: "" + version: 1.8.29 + description: Gluu Access and Identity Mangement + digest: 0b119f180c83fd8fcb4a2fffbcbf37ecafe13f9a1630033bd1e16276551454a4 + home: https://www.gluu.org + icon: https://gluu.org/docs/gluu-server/favicon.ico + kubeVersion: '>=v1.22.0-0' + maintainers: + - email: support@gluu.org + name: moabu + name: gluu + sources: + - https://gluu.org/docs/gluu-server + - https://github.com/GluuFederation/cloud-native-edition + urls: + - gluu-1.8.29.tgz + version: 1.8.29 + - annotations: + artifacthub.io/changes: | + - Gluu 4.5.3 official chart release + artifacthub.io/images: | + - name: casa + image: gluufederation/casa:4.5.3_dev + - name: fido2 + image: gluufederation/fido2:4.5.3_dev + - name: scim + image: gluufederation/scim:4.5.3_dev + - name: configuration-manager + image: gluufederation/config-init:4.5.3_dev + - name: cr-rotate + image: gluufederation/cr-rotate:4.5.3_dev + - name: certmanager + image: gluufederation/certmanager:4.5.3_dev + - name: opendj + image: gluufederation/opendj:4.5.3_dev + - name: jackrabbit + image: gluufederation/jackrabbit:4.5.3_dev + - name: oxauth + image: gluufederation/oxauth:4.5.3_dev + - name: oxd-server + image: gluufederation/oxd-server:4.5.3_dev + - name: oxpassport + image: gluufederation/oxpassport:4.5.3_dev + - name: oxshibboleth + image: gluufederation/oxshibboleth:4.5.3_dev + - name: persistence + image: gluufederation/persistence:4.5.3_dev + - name: oxtrust + image: gluufederation/oxtrust:4.5.3_dev + artifacthub.io/license: Apache-2.0 + apiVersion: v2 + appVersion: 4.5.3 + created: "2023-12-27T08:59:50.500062143Z" dependencies: - condition: global.config.enabled name: config @@ -156,7 +276,7 @@ entries: artifacthub.io/license: Apache-2.0 apiVersion: v2 appVersion: 4.5.2 - created: "2023-12-05T14:17:15.623124692Z" + created: "2023-12-27T08:59:50.476447836Z" dependencies: - condition: global.config.enabled name: config @@ -276,7 +396,7 @@ entries: artifacthub.io/license: Apache-2.0 apiVersion: v2 appVersion: 4.5.2 - created: "2023-12-05T14:17:15.597807984Z" + created: "2023-12-27T08:59:50.455744545Z" dependencies: - condition: global.config.enabled name: config @@ -396,7 +516,7 @@ entries: artifacthub.io/license: Apache-2.0 apiVersion: v2 appVersion: 4.5.2 - created: "2023-12-05T14:17:15.578278242Z" + created: "2023-12-27T08:59:50.435632628Z" dependencies: - condition: global.config.enabled name: config @@ -516,7 +636,7 @@ entries: artifacthub.io/license: Apache-2.0 apiVersion: v2 appVersion: 4.5.2 - created: "2023-12-05T14:17:15.555593548Z" + created: "2023-12-27T08:59:50.414813436Z" dependencies: - condition: global.config.enabled name: config @@ -637,7 +757,7 @@ entries: artifacthub.io/license: Apache-2.0 apiVersion: v2 appVersion: 4.5.1 - created: "2023-12-05T14:17:15.519586108Z" + created: "2023-12-27T08:59:50.393796839Z" dependencies: - condition: global.config.enabled name: config @@ -758,7 +878,7 @@ entries: artifacthub.io/license: Apache-2.0 apiVersion: v2 appVersion: 4.5.1 - created: "2023-12-05T14:17:15.498395607Z" + created: "2023-12-27T08:59:50.373408903Z" dependencies: - condition: global.config.enabled name: config @@ -879,7 +999,7 @@ entries: artifacthub.io/license: Apache-2.0 apiVersion: v2 appVersion: 4.5.1 - created: "2023-12-05T14:17:15.478103944Z" + created: "2023-12-27T08:59:50.353942241Z" dependencies: - condition: global.config.enabled name: config @@ -1000,7 +1120,7 @@ entries: artifacthub.io/license: Apache-2.0 apiVersion: v2 appVersion: 4.5.1 - created: "2023-12-05T14:17:15.448951506Z" + created: "2023-12-27T08:59:50.3314031Z" dependencies: - condition: global.config.enabled name: config @@ -1121,7 +1241,7 @@ entries: artifacthub.io/license: Apache-2.0 apiVersion: v2 appVersion: 4.5.1 - created: "2023-12-05T14:17:15.401798174Z" + created: "2023-12-27T08:59:50.284610255Z" dependencies: - condition: global.config.enabled name: config @@ -1242,7 +1362,7 @@ entries: artifacthub.io/license: Apache-2.0 apiVersion: v2 appVersion: 4.5.1 - created: "2023-12-05T14:17:15.379249599Z" + created: "2023-12-27T08:59:50.264010597Z" dependencies: - condition: global.config.enabled name: config @@ -1363,7 +1483,7 @@ entries: artifacthub.io/license: Apache-2.0 apiVersion: v2 appVersion: 4.5.1 - created: "2023-12-05T14:17:15.353464227Z" + created: "2023-12-27T08:59:50.242799174Z" dependencies: - condition: global.config.enabled name: config @@ -1484,7 +1604,7 @@ entries: artifacthub.io/license: Apache-2.0 apiVersion: v2 appVersion: 4.5.0 - created: "2023-12-05T14:17:15.327118543Z" + created: "2023-12-27T08:59:50.222133717Z" dependencies: - condition: global.config.enabled name: config @@ -1605,7 +1725,7 @@ entries: artifacthub.io/license: Apache-2.0 apiVersion: v2 appVersion: 4.5.0 - created: "2023-12-05T14:17:15.293938002Z" + created: "2023-12-27T08:59:50.199561523Z" dependencies: - condition: global.config.enabled name: config @@ -1726,7 +1846,7 @@ entries: artifacthub.io/license: Apache-2.0 apiVersion: v2 appVersion: 4.5.0 - created: "2023-12-05T14:17:15.261626047Z" + created: "2023-12-27T08:59:50.17923413Z" dependencies: - condition: global.config.enabled name: config @@ -1847,7 +1967,7 @@ entries: artifacthub.io/license: Apache-2.0 apiVersion: v2 appVersion: 4.5.0 - created: "2023-12-05T14:17:15.226744555Z" + created: "2023-12-27T08:59:50.158437448Z" dependencies: - condition: global.config.enabled name: config @@ -1968,7 +2088,7 @@ entries: artifacthub.io/license: Apache-2.0 apiVersion: v2 appVersion: 4.5.0 - created: "2023-12-05T14:17:15.191627003Z" + created: "2023-12-27T08:59:50.137088296Z" dependencies: - condition: global.config.enabled name: config @@ -2089,7 +2209,7 @@ entries: artifacthub.io/license: Apache-2.0 apiVersion: v2 appVersion: 4.5.0 - created: "2023-12-05T14:17:15.166255915Z" + created: "2023-12-27T08:59:50.114463709Z" dependencies: - condition: global.config.enabled name: config @@ -2211,7 +2331,7 @@ entries: artifacthub.io/license: Apache-2.0 apiVersion: v2 appVersion: 4.5.0 - created: "2023-12-05T14:17:15.143313986Z" + created: "2023-12-27T08:59:50.093215618Z" dependencies: - condition: global.config.enabled name: config @@ -2333,7 +2453,7 @@ entries: artifacthub.io/license: Apache-2.0 apiVersion: v2 appVersion: 4.5.0 - created: "2023-12-05T14:17:15.857634975Z" + created: "2023-12-27T08:59:50.664462469Z" dependencies: - condition: global.config.enabled name: config @@ -2455,7 +2575,7 @@ entries: artifacthub.io/license: Apache-2.0 apiVersion: v2 appVersion: 4.5.0 - created: "2023-12-05T14:17:15.821954722Z" + created: "2023-12-27T08:59:50.644395469Z" dependencies: - condition: global.config.enabled name: config @@ -2577,7 +2697,7 @@ entries: artifacthub.io/license: Apache-2.0 apiVersion: v2 appVersion: 4.5.0 - created: "2023-12-05T14:17:15.792712339Z" + created: "2023-12-27T08:59:50.625657816Z" dependencies: - condition: global.config.enabled name: config @@ -2697,7 +2817,7 @@ entries: artifacthub.io/license: Apache-2.0 apiVersion: v2 appVersion: 4.5.0 - created: "2023-12-05T14:17:15.770882905Z" + created: "2023-12-27T08:59:50.602438636Z" dependencies: - condition: global.config.enabled name: config @@ -2817,7 +2937,7 @@ entries: artifacthub.io/license: Apache-2.0 apiVersion: v2 appVersion: 4.5.0 - created: "2023-12-05T14:17:15.748721216Z" + created: "2023-12-27T08:59:50.582906288Z" dependencies: - condition: global.config.enabled name: config @@ -2937,7 +3057,7 @@ entries: artifacthub.io/license: Apache-2.0 apiVersion: v2 appVersion: 4.5.0 - created: "2023-12-05T14:17:15.71824327Z" + created: "2023-12-27T08:59:50.562620227Z" dependencies: - condition: global.config.enabled name: config @@ -3057,7 +3177,7 @@ entries: artifacthub.io/license: Apache-2.0 apiVersion: v2 appVersion: 4.5.0 - created: "2023-12-05T14:17:15.683100856Z" + created: "2023-12-27T08:59:50.542566954Z" dependencies: - condition: global.config.enabled name: config @@ -3177,7 +3297,7 @@ entries: artifacthub.io/license: Apache-2.0 apiVersion: v2 appVersion: 4.5.0 - created: "2023-12-05T14:17:15.424362286Z" + created: "2023-12-27T08:59:50.305960156Z" dependencies: - condition: global.config.enabled name: config @@ -3297,7 +3417,7 @@ entries: artifacthub.io/license: Apache-2.0 apiVersion: v2 appVersion: 4.5.0 - created: "2023-12-05T14:17:15.124235254Z" + created: "2023-12-27T08:59:50.072561558Z" dependencies: - condition: global.config.enabled name: config @@ -3417,7 +3537,7 @@ entries: artifacthub.io/license: Apache-2.0 apiVersion: v2 appVersion: 4.5.0 - created: "2023-12-05T14:17:15.101445137Z" + created: "2023-12-27T08:59:50.051263517Z" dependencies: - condition: global.config.enabled name: config @@ -3539,7 +3659,7 @@ entries: artifacthub.io/license: Apache-2.0 apiVersion: v2 appVersion: 4.4.2 - created: "2023-12-05T14:17:14.919452917Z" + created: "2023-12-27T08:59:49.887767389Z" dependencies: - condition: global.config.enabled name: config @@ -3661,7 +3781,7 @@ entries: artifacthub.io/license: Apache-2.0 apiVersion: v2 appVersion: 4.4.2 - created: "2023-12-05T14:17:14.859308887Z" + created: "2023-12-27T08:59:49.864093592Z" dependencies: - condition: global.config.enabled name: config @@ -3783,7 +3903,7 @@ entries: artifacthub.io/license: Apache-2.0 apiVersion: v2 appVersion: 4.4.2 - created: "2023-12-05T14:17:14.840305349Z" + created: "2023-12-27T08:59:49.841531018Z" dependencies: - condition: global.config.enabled name: config @@ -3905,7 +4025,7 @@ entries: artifacthub.io/license: Apache-2.0 apiVersion: v2 appVersion: 4.4.2 - created: "2023-12-05T14:17:14.815834248Z" + created: "2023-12-27T08:59:49.822874675Z" dependencies: - condition: global.config.enabled name: config @@ -4027,7 +4147,7 @@ entries: artifacthub.io/license: Apache-2.0 apiVersion: v2 appVersion: 4.4.2 - created: "2023-12-05T14:17:14.795856948Z" + created: "2023-12-27T08:59:49.802346891Z" dependencies: - condition: global.config.enabled name: config @@ -4149,7 +4269,7 @@ entries: artifacthub.io/license: Apache-2.0 apiVersion: v2 appVersion: 4.4.2 - created: "2023-12-05T14:17:15.078752012Z" + created: "2023-12-27T08:59:50.031082598Z" dependencies: - condition: global.config.enabled name: config @@ -4269,7 +4389,7 @@ entries: artifacthub.io/license: Apache-2.0 apiVersion: v2 appVersion: 4.4.2 - created: "2023-12-05T14:17:15.059115312Z" + created: "2023-12-27T08:59:50.011720399Z" dependencies: - condition: global.config.enabled name: config @@ -4389,7 +4509,7 @@ entries: artifacthub.io/license: Apache-2.0 apiVersion: v2 appVersion: 4.4.1 - created: "2023-12-05T14:17:15.04018864Z" + created: "2023-12-27T08:59:49.988979594Z" dependencies: - condition: global.config.enabled name: config @@ -4509,7 +4629,7 @@ entries: artifacthub.io/license: Apache-2.0 apiVersion: v2 appVersion: 4.4.1 - created: "2023-12-05T14:17:15.020655056Z" + created: "2023-12-27T08:59:49.969404876Z" dependencies: - condition: global.config.enabled name: config @@ -4629,7 +4749,7 @@ entries: artifacthub.io/license: Apache-2.0 apiVersion: v2 appVersion: 4.4.1 - created: "2023-12-05T14:17:14.988582828Z" + created: "2023-12-27T08:59:49.947235948Z" dependencies: - condition: global.config.enabled name: config @@ -4749,7 +4869,7 @@ entries: artifacthub.io/license: Apache-2.0 apiVersion: v2 appVersion: 4.4.1 - created: "2023-12-05T14:17:14.962100763Z" + created: "2023-12-27T08:59:49.92577402Z" dependencies: - condition: global.config.enabled name: config @@ -4869,7 +4989,7 @@ entries: artifacthub.io/license: Apache-2.0 apiVersion: v2 appVersion: 4.4.1 - created: "2023-12-05T14:17:14.941864316Z" + created: "2023-12-27T08:59:49.90694512Z" dependencies: - condition: global.config.enabled name: config @@ -4989,7 +5109,7 @@ entries: artifacthub.io/license: Apache-2.0 apiVersion: v2 appVersion: 4.4.0 - created: "2023-12-05T14:17:14.775242349Z" + created: "2023-12-27T08:59:49.775954323Z" dependencies: - condition: global.config.enabled name: config @@ -5109,7 +5229,7 @@ entries: artifacthub.io/license: Apache-2.0 apiVersion: v2 appVersion: 4.4.0 - created: "2023-12-05T14:17:14.749157535Z" + created: "2023-12-27T08:59:49.754349839Z" dependencies: - condition: global.config.enabled name: config @@ -5229,7 +5349,7 @@ entries: artifacthub.io/license: Apache-2.0 apiVersion: v2 appVersion: 4.3.1 - created: "2023-12-05T14:17:14.704071761Z" + created: "2023-12-27T08:59:49.717122835Z" dependencies: - condition: global.config.enabled name: config @@ -5349,7 +5469,7 @@ entries: artifacthub.io/license: Apache-2.0 apiVersion: v2 appVersion: 4.3.1 - created: "2023-12-05T14:17:14.671115862Z" + created: "2023-12-27T08:59:49.693471631Z" dependencies: - condition: global.config.enabled name: config @@ -5469,7 +5589,7 @@ entries: artifacthub.io/license: Apache-2.0 apiVersion: v2 appVersion: 4.3.1 - created: "2023-12-05T14:17:14.652916035Z" + created: "2023-12-27T08:59:49.674065574Z" dependencies: - condition: global.config.enabled name: config @@ -5589,7 +5709,7 @@ entries: artifacthub.io/license: Apache-2.0 apiVersion: v2 appVersion: 4.3.1 - created: "2023-12-05T14:17:14.612544131Z" + created: "2023-12-27T08:59:49.653094198Z" dependencies: - condition: global.config.enabled name: config @@ -5709,7 +5829,7 @@ entries: artifacthub.io/license: Apache-2.0 apiVersion: v2 appVersion: 4.3.1 - created: "2023-12-05T14:17:14.592250568Z" + created: "2023-12-27T08:59:49.636858982Z" dependencies: - condition: global.config.enabled name: config @@ -5829,7 +5949,7 @@ entries: artifacthub.io/license: Apache-2.0 apiVersion: v2 appVersion: 4.3.0 - created: "2023-12-05T14:17:14.569451165Z" + created: "2023-12-27T08:59:49.612914065Z" dependencies: - condition: global.config.enabled name: config @@ -5949,7 +6069,7 @@ entries: artifacthub.io/license: Apache-2.0 apiVersion: v2 appVersion: 4.3.0 - created: "2023-12-05T14:17:14.553878016Z" + created: "2023-12-27T08:59:49.592447338Z" dependencies: - condition: global.config.enabled name: config @@ -6069,7 +6189,7 @@ entries: artifacthub.io/license: Apache-2.0 apiVersion: v2 appVersion: 4.3.0 - created: "2023-12-05T14:17:14.533939528Z" + created: "2023-12-27T08:59:49.573320244Z" dependencies: - condition: global.config.enabled name: config @@ -6189,7 +6309,7 @@ entries: artifacthub.io/license: Apache-2.0 apiVersion: v2 appVersion: 4.3.0 - created: "2023-12-05T14:17:14.504128164Z" + created: "2023-12-27T08:59:49.554875764Z" dependencies: - condition: global.config.enabled name: config @@ -6309,7 +6429,7 @@ entries: artifacthub.io/license: Apache-2.0 apiVersion: v2 appVersion: 4.3.0 - created: "2023-12-05T14:17:14.727244587Z" + created: "2023-12-27T08:59:49.733776496Z" dependencies: - condition: global.config.enabled name: config @@ -6433,7 +6553,7 @@ entries: artifacthub.io/license: Apache-2.0 apiVersion: v2 appVersion: 4.2.3 - created: "2023-12-05T14:17:14.427633579Z" + created: "2023-12-27T08:59:49.518129733Z" dependencies: - condition: global.config.enabled name: config @@ -6556,7 +6676,7 @@ entries: artifacthub.io/license: Apache-2.0 apiVersion: v2 appVersion: 4.2.3 - created: "2023-12-05T14:17:14.409990112Z" + created: "2023-12-27T08:59:49.502555973Z" dependencies: - condition: global.config.enabled name: config @@ -6679,7 +6799,7 @@ entries: artifacthub.io/license: Apache-2.0 apiVersion: v2 appVersion: 4.2.3 - created: "2023-12-05T14:17:14.479851808Z" + created: "2023-12-27T08:59:49.538402651Z" dependencies: - condition: global.config.enabled name: config @@ -6802,7 +6922,7 @@ entries: artifacthub.io/license: Apache-2.0 apiVersion: v2 appVersion: 4.2.3 - created: "2023-12-05T14:17:14.455753026Z" + created: "2023-12-27T08:59:49.527960106Z" dependencies: - condition: global.config.enabled name: config @@ -6889,7 +7009,7 @@ entries: ldap-backup: - apiVersion: v2 appVersion: 4.3.0 - created: "2023-12-05T14:17:15.859505581Z" + created: "2023-12-27T08:59:50.665622297Z" description: A backup strategy for LDAP digest: f00564718757bd0d53f1f3dbaa9399327695eb883000f5d6ade7690bb8a2d371 home: https://gluu.org/docs/gluu-server @@ -6912,7 +7032,7 @@ entries: version: 1.6.11 - apiVersion: v2 appVersion: 4.3.0 - created: "2023-12-05T14:17:15.860441662Z" + created: "2023-12-27T08:59:50.666243465Z" description: A backup strategy for LDAP digest: 2fd5f9c62784f0bc6c4b30e5b90abb5edeca1a6cb865e414a3e87a42b115b647 home: https://gluu.org/docs/gluu-server @@ -6935,7 +7055,7 @@ entries: version: 1.6.9 - apiVersion: v2 appVersion: 4.2.3 - created: "2023-12-05T14:17:15.858544452Z" + created: "2023-12-27T08:59:50.665006931Z" description: A backup strategy for LDAP digest: 838ca4b13bb22686f6ff7da98abc523878d64a105ec27cb85da5489d208bf8dc home: https://www.gluu.org @@ -6951,4 +7071,4 @@ entries: urls: - ldap-backup-1.5.9.tgz version: 1.5.9 -generated: "2023-12-05T14:17:14.389995494Z" +generated: "2023-12-27T08:59:49.488909302Z"