mirror of
https://github.com/rtomik/helm-charts.git
synced 2026-04-12 21:20:40 +00:00
Compare commits
3 Commits
norish-0.0
...
norish-0.0
| Author | SHA1 | Date | |
|---|---|---|---|
| 7be50d4890 | |||
| 3a61591220 | |||
| 25265eb94f |
@ -2,7 +2,7 @@ apiVersion: v2
|
|||||||
name: norish
|
name: norish
|
||||||
description: Norish helm chart for Kubernetes - A recipe management and meal planning application
|
description: Norish helm chart for Kubernetes - A recipe management and meal planning application
|
||||||
type: application
|
type: application
|
||||||
version: 0.0.1
|
version: 0.0.3
|
||||||
appVersion: "v0.13.6-beta"
|
appVersion: "v0.13.6-beta"
|
||||||
maintainers:
|
maintainers:
|
||||||
- name: Richard Tomik
|
- name: Richard Tomik
|
||||||
|
|||||||
@ -219,6 +219,9 @@ spec:
|
|||||||
key: google-client-secret
|
key: google-client-secret
|
||||||
{{- end }}
|
{{- end }}
|
||||||
{{- end }}
|
{{- end }}
|
||||||
|
{{- with .Values.config.extraEnv }}
|
||||||
|
{{- toYaml . | nindent 12 }}
|
||||||
|
{{- end }}
|
||||||
volumeMounts:
|
volumeMounts:
|
||||||
- name: uploads
|
- name: uploads
|
||||||
mountPath: /app/uploads
|
mountPath: /app/uploads
|
||||||
|
|||||||
@ -120,6 +120,18 @@ config:
|
|||||||
# This should match your ingress hostname
|
# This should match your ingress hostname
|
||||||
authUrl: "http://norish.domain.com"
|
authUrl: "http://norish.domain.com"
|
||||||
|
|
||||||
|
# Extra environment variables
|
||||||
|
# Example:
|
||||||
|
# extraEnv:
|
||||||
|
# - name: MY_CUSTOM_VAR
|
||||||
|
# value: "my-value"
|
||||||
|
# - name: SECRET_VAR
|
||||||
|
# valueFrom:
|
||||||
|
# secretKeyRef:
|
||||||
|
# name: my-secret
|
||||||
|
# key: secret-key
|
||||||
|
extraEnv: []
|
||||||
|
|
||||||
# Master encryption key (required)
|
# Master encryption key (required)
|
||||||
# Generate with: openssl rand -base64 32
|
# Generate with: openssl rand -base64 32
|
||||||
# For production, use an existing Kubernetes Secret
|
# For production, use an existing Kubernetes Secret
|
||||||
@ -209,7 +221,7 @@ chrome:
|
|||||||
pullPolicy: IfNotPresent
|
pullPolicy: IfNotPresent
|
||||||
|
|
||||||
# Chrome port for remote debugging
|
# Chrome port for remote debugging
|
||||||
port: 3000
|
port: 9222
|
||||||
|
|
||||||
# Chrome security context - requires specific capabilities
|
# Chrome security context - requires specific capabilities
|
||||||
securityContext:
|
securityContext:
|
||||||
|
|||||||
@ -1,84 +0,0 @@
|
|||||||
## Ingress settings
|
|
||||||
image:
|
|
||||||
repository: norishapp/norish
|
|
||||||
tag: "v0.13.6-beta"
|
|
||||||
pullPolicy: IfNotPresent
|
|
||||||
|
|
||||||
ingress:
|
|
||||||
enabled: true
|
|
||||||
className: "traefik"
|
|
||||||
annotations:
|
|
||||||
traefik.ingress.kubernetes.io/router.entrypoints: websecure
|
|
||||||
hosts:
|
|
||||||
- host: norish.tomik.lat
|
|
||||||
paths:
|
|
||||||
- path: /
|
|
||||||
pathType: Prefix
|
|
||||||
tls:
|
|
||||||
- hosts:
|
|
||||||
- norish.tomik.lat
|
|
||||||
|
|
||||||
## Persistence settings
|
|
||||||
persistence:
|
|
||||||
enabled: true
|
|
||||||
storageClass: "longhorn"
|
|
||||||
accessMode: ReadWriteOnce
|
|
||||||
size: 5Gi
|
|
||||||
|
|
||||||
config:
|
|
||||||
# Application URL (required)
|
|
||||||
# This should match your ingress hostname
|
|
||||||
authUrl: "https://norish.tomik.lat"
|
|
||||||
|
|
||||||
# Master encryption key (required)
|
|
||||||
# Generate with: openssl rand -base64 32
|
|
||||||
# For production, use an existing Kubernetes Secret
|
|
||||||
masterKey:
|
|
||||||
existingSecret: "" # Name of existing Kubernetes secret
|
|
||||||
secretKey: "master-key" # Key in the secret where master key is stored
|
|
||||||
value: "cp6eVbe4ddmJxlJCJyux5Nlk39gbJR3M9mWjAqEon1c=" # Only used if existingSecret is not set (must be 32-byte base64)
|
|
||||||
|
|
||||||
# Authentication provider configuration
|
|
||||||
# Configure ONE provider for initial admin account creation
|
|
||||||
# After first login, manage additional providers via Settings → Admin
|
|
||||||
auth:
|
|
||||||
# OIDC/OAuth2 provider
|
|
||||||
oidc:
|
|
||||||
enabled: true
|
|
||||||
name: "Authentik"
|
|
||||||
issuer: "https://authentik.tomik.lat/application/o/norish/"
|
|
||||||
clientId: "tSQZSJDBs479OVLyEzwDYAVaVYJhQuaFouIRWHyg"
|
|
||||||
clientSecret: "SpCQGIhXXF9iVT6qc37ApPC8epy1ZhukDtPp6Ipy8XqI7HK4LQUJmsbNTGhLaz25rNgM3GUUDo0vqoGe4INiEjiPeQ4tpiokrvnjPQ2tXf8AFCiu79eyFttB7TCEdtfI"
|
|
||||||
|
|
||||||
# GitHub OAuth
|
|
||||||
github:
|
|
||||||
enabled: false
|
|
||||||
clientId: ""
|
|
||||||
clientSecret: ""
|
|
||||||
# Use existing secret for GitHub credentials
|
|
||||||
existingSecret: ""
|
|
||||||
clientIdKey: "github-client-id"
|
|
||||||
clientSecretKey: "github-client-secret"
|
|
||||||
|
|
||||||
# Google OAuth
|
|
||||||
google:
|
|
||||||
enabled: false
|
|
||||||
clientId: ""
|
|
||||||
clientSecret: ""
|
|
||||||
# Use existing secret for Google credentials
|
|
||||||
existingSecret: ""
|
|
||||||
clientIdKey: "google-client-id"
|
|
||||||
clientSecretKey: "google-client-secret"
|
|
||||||
|
|
||||||
## External PostgreSQL database configuration (REQUIRED)
|
|
||||||
## Norish requires a central PostgreSQL database
|
|
||||||
## You must have a PostgreSQL server available before deploying this chart
|
|
||||||
database:
|
|
||||||
# Database connection details
|
|
||||||
host: "postgres-cluster-pooler.dbs.svc.cluster.local" # Required: PostgreSQL server hostname
|
|
||||||
port: 5432
|
|
||||||
# Use existing secret for database credentials (recommended for production)
|
|
||||||
existingSecret: "norish3-db-credentials" # Name of existing Kubernetes secret
|
|
||||||
usernameKey: "username" # Key in the secret for database username
|
|
||||||
passwordKey: "password" # Key in the secret for database password
|
|
||||||
databaseKey: "database" # Key in the secret for database name (optional)
|
|
||||||
Reference in New Issue
Block a user