Merge pull request #790 from nflondo/main-source

Charts CI

charts/bitnami/mysql/Chart.yaml

@@ -29,4 +29,4 @@ maintainers:
 name: mysql
 sources:
 - https://github.com/bitnami/charts/tree/main/bitnami/mysql
-version: 9.10.2
+version: 9.10.4

charts/bitnami/mysql/values.yaml

@@ -201,7 +201,6 @@ primary:
     character-set-server=UTF8
     collation-server=utf8_general_ci
     slow_query_log=0
-    slow_query_log_file=/opt/bitnami/mysql/logs/mysqld.log
     long_query_time=10.0
 
     [client]
@@ -580,7 +579,6 @@ secondary:
     character-set-server=UTF8
     collation-server=utf8_general_ci
     slow_query_log=0
-    slow_query_log_file=/opt/bitnami/mysql/logs/mysqld.log
     long_query_time=10.0
 
     [client]

charts/bitnami/postgresql/Chart.yaml

@@ -31,4 +31,4 @@ maintainers:
 name: postgresql
 sources:
 - https://github.com/bitnami/charts/tree/main/bitnami/postgresql
-version: 12.5.6
+version: 12.5.7

charts/bitnami/postgresql/README.md

@@ -668,7 +668,7 @@ Refer to the [chart documentation for more information about how to upgrade from
 
 ## License
 
-Copyright © 2023 Bitnami
+Copyright © 2023 VMware, Inc.
 
 Licensed under the Apache License, Version 2.0 (the "License");
 you may not use this file except in compliance with the License.

charts/bitnami/postgresql/templates/_helpers.tpl

@@ -154,7 +154,7 @@ Get the user-password key.
 Return true if a secret object should be created
 */}}
 {{- define "postgresql.createSecret" -}}
-{{- if not (or .Values.global.postgresql.auth.existingSecret .Values.auth.existingSecret) -}}
+{{- if and (not (or .Values.global.postgresql.auth.existingSecret .Values.auth.existingSecret)) (.Values.auth.enablePostgresUser) -}}
     {{- true -}}
 {{- end -}}
 {{- end -}}

charts/bitnami/postgresql/templates/primary/statefulset.yaml

@@ -207,6 +207,10 @@ spec:
               value: {{ .Values.containerPorts.postgresql | quote }}
             - name: POSTGRESQL_VOLUME_DIR
               value: {{ .Values.primary.persistence.mountPath | quote }}
+            {{- if not .Values.auth.enablePostgresUser }}
+            - name: ALLOW_EMPTY_PASSWORD
+              value: "true"
+            {{- end }}
             {{- if .Values.primary.persistence.mountPath }}
             - name: PGDATA
               value: {{ .Values.postgresqlDataDir | quote }}
@@ -228,6 +232,7 @@ spec:
             {{- end }}
             {{- end }}
           {{- end }}
+            {{- if .Values.auth.enablePostgresUser }}
             {{- if .Values.auth.usePasswordFiles }}
             - name: POSTGRES_PASSWORD_FILE
               value: {{ printf "/opt/bitnami/postgresql/secrets/%s" (include "postgresql.userPasswordKey" .) }}
@@ -238,6 +243,7 @@ spec:
                   name: {{ include "postgresql.secretName" . }}
                   key: {{ include "postgresql.userPasswordKey" . }}
             {{- end }}
+            {{- end }}
             {{- if (include "postgresql.database" .) }}
             - name: POSTGRES_DB
               value: {{ (include "postgresql.database" .) | quote }}

charts/datadog/datadog/CHANGELOG.md

@@ -1,5 +1,9 @@
 # Datadog changelog
 
+## 3.32.1
+
+* Fix CVE in the FIPS compliant side car container  
+
 ## 3.32.0
 
 * Add a new preferred parameter to enable Remote Configuration on both the agent and the cluster agent.

charts/datadog/datadog/Chart.yaml

@@ -19,4 +19,4 @@ name: datadog
 sources:
 - https://app.datadoghq.com/account/settings#agent/kubernetes
 - https://github.com/DataDog/datadog-agent
-version: 3.32.0
+version: 3.32.1

charts/datadog/datadog/README.md

@@ -1,6 +1,6 @@
 # Datadog
 
-![Version: 3.32.0](https://img.shields.io/badge/Version-3.32.0-informational?style=flat-square) ![AppVersion: 7](https://img.shields.io/badge/AppVersion-7-informational?style=flat-square)
+![Version: 3.32.1](https://img.shields.io/badge/Version-3.32.1-informational?style=flat-square) ![AppVersion: 7](https://img.shields.io/badge/AppVersion-7-informational?style=flat-square)
 
 [Datadog](https://www.datadoghq.com/) is a hosted infrastructure monitoring platform. This chart adds the Datadog Agent to all nodes in your cluster via a DaemonSet. It also optionally depends on the [kube-state-metrics chart](https://github.com/prometheus-community/helm-charts/tree/main/charts/kube-state-metrics). For more information about monitoring Kubernetes with Datadog, please refer to the [Datadog documentation website](https://docs.datadoghq.com/agent/basic_agent_usage/kubernetes/).
 
@@ -739,7 +739,7 @@ helm install <RELEASE_NAME> \
 | fips.image.name | string | `"fips-proxy"` |  |
 | fips.image.pullPolicy | string | `"IfNotPresent"` | Datadog the FIPS sidecar image pull policy |
 | fips.image.repository | string | `nil` |  |
-| fips.image.tag | string | `"0.5.2"` | Define the FIPS sidecar container version to use. |
+| fips.image.tag | string | `"0.5.3"` | Define the FIPS sidecar container version to use. |
 | fips.local_address | string | `"127.0.0.1"` |  |
 | fips.port | int | `9803` |  |
 | fips.portRange | int | `15` |  |

charts/datadog/datadog/values.yaml

@@ -1175,7 +1175,7 @@ fips:
     name: fips-proxy
 
     # fips.image.tag -- Define the FIPS sidecar container version to use.
-    tag: 0.5.2
+    tag: 0.5.3
 
     # fips.image.pullPolicy -- Datadog the FIPS sidecar image pull policy
     pullPolicy: IfNotPresent

charts/gluu/gluu/Chart.yaml

@@ -1,28 +1,28 @@
 annotations:
   artifacthub.io/changes: |
-    - Chart 5.0.17 official release
+    - Chart 5.0.18 official release
   artifacthub.io/containsSecurityUpdates: "true"
   artifacthub.io/images: |
     - name: auth-server
-      image: ghcr.io/janssenproject/jans/auth-server:1.0.13_dev
+      image: ghcr.io/janssenproject/jans/auth-server:1.0.14_dev
     - name: auth-server-key-rotation
-      image: ghcr.io/janssenproject/jans/certmanager:1.0.13_dev
+      image: ghcr.io/janssenproject/jans/certmanager:1.0.14_dev
     - name: configuration-manager
-      image: ghcr.io/janssenproject/jans/configurator:1.0.13_dev
+      image: ghcr.io/janssenproject/jans/configurator:1.0.14_dev
     - name:  config-api
-      image: ghcr.io/janssenproject/jans/config-api:1.0.13_dev
+      image: ghcr.io/janssenproject/jans/config-api:1.0.14_dev
     - name: fido2
-      image: ghcr.io/janssenproject/jans/fido2:1.0.13_dev
+      image: ghcr.io/janssenproject/jans/fido2:1.0.14_dev
     - name: opendj
       image: gluufederation/opendj:5.0.0_dev
     - name: persistence
-      image: ghcr.io/janssenproject/jans/persistence-loader:1.0.13_dev
+      image: ghcr.io/janssenproject/jans/persistence-loader:1.0.14_dev
     - name: scim
-      image: ghcr.io/janssenproject/jans/scim:1.0.13_dev
+      image: ghcr.io/janssenproject/jans/scim:1.0.14_dev
     - name: casa
       image: ghcr.io/gluufederation/flex/casa:5.0.0_dev
     - name: admin-ui
-      image: ghcr.io/gluufederation/flex/admin-ui:1.0.13_dev
+      image: ghcr.io/gluufederation/flex/admin-ui:1.0.14_dev
   artifacthub.io/license: Apache-2.0
   artifacthub.io/prerelease: "true"
   catalog.cattle.io/certified: partner
@@ -35,59 +35,59 @@ dependencies:
 - condition: global.config.enabled
   name: config
   repository: file://./charts/config
-  version: 5.0.17
+  version: 5.0.18
 - condition: global.config-api.enabled
   name: config-api
   repository: file://./charts/config-api
-  version: 5.0.17
+  version: 5.0.18
 - condition: global.opendj.enabled
   name: opendj
   repository: file://./charts/opendj
-  version: 5.0.17
+  version: 5.0.18
 - condition: global.auth-server.enabled
   name: auth-server
   repository: file://./charts/auth-server
-  version: 5.0.17
+  version: 5.0.18
 - condition: global.admin-ui.enabled
   name: admin-ui
   repository: file://./charts/admin-ui
-  version: 5.0.17
+  version: 5.0.18
 - condition: global.fido2.enabled
   name: fido2
   repository: file://./charts/fido2
-  version: 5.0.17
+  version: 5.0.18
 - condition: global.scim.enabled
   name: scim
   repository: file://./charts/scim
-  version: 5.0.17
+  version: 5.0.18
 - condition: global.nginx-ingress.enabled
   name: nginx-ingress
   repository: file://./charts/nginx-ingress
-  version: 5.0.17
+  version: 5.0.18
 - condition: global.oxshibboleth.enabled
   name: oxshibboleth
   repository: file://./charts/oxshibboleth
-  version: 5.0.17
+  version: 5.0.18
 - condition: global.oxpassport.enabled
   name: oxpassport
   repository: file://./charts/oxpassport
-  version: 5.0.17
+  version: 5.0.18
 - condition: global.casa.enabled
   name: casa
   repository: file://./charts/casa
-  version: 5.0.17
+  version: 5.0.18
 - condition: global.auth-server-key-rotation.enabled
   name: auth-server-key-rotation
   repository: file://./charts/auth-server-key-rotation
-  version: 5.0.17
+  version: 5.0.18
 - condition: global.persistence.enabled
   name: persistence
   repository: file://./charts/persistence
-  version: 5.0.17
+  version: 5.0.18
 - condition: global.istio.ingress
   name: cn-istio-ingress
   repository: file://./charts/cn-istio-ingress
-  version: 5.0.17
+  version: 5.0.18
 description: Gluu Access and Identity Management
 home: https://www.gluu.org
 icon: https://gluu.org/docs/gluu-server/favicon.ico
@@ -99,4 +99,4 @@ name: gluu
 sources:
 - https://gluu.org/docs/gluu-server
 - https://github.com/GluuFederation/flex/flex-cn-setup
-version: 5.0.17
+version: 5.0.18

charts/gluu/gluu/README.md

@@ -1,6 +1,6 @@
 # gluu
 
-![Version: 5.0.17](https://img.shields.io/badge/Version-5.0.17-informational?style=flat-square) ![AppVersion: 5.0.0](https://img.shields.io/badge/AppVersion-5.0.0-informational?style=flat-square)
+![Version: 5.0.18](https://img.shields.io/badge/Version-5.0.18-informational?style=flat-square) ![AppVersion: 5.0.0](https://img.shields.io/badge/AppVersion-5.0.0-informational?style=flat-square)
 
 Gluu Access and Identity Management
 
@@ -23,26 +23,26 @@ Kubernetes: `>=v1.21.0-0`
 
 | Repository | Name | Version |
 |------------|------|---------|
-|  | admin-ui | 5.0.17 |
-|  | auth-server | 5.0.17 |
-|  | auth-server-key-rotation | 5.0.17 |
-|  | casa | 5.0.17 |
-|  | cn-istio-ingress | 5.0.17 |
-|  | config | 5.0.17 |
-|  | config-api | 5.0.17 |
-|  | fido2 | 5.0.17 |
-|  | nginx-ingress | 5.0.17 |
-|  | opendj | 5.0.17 |
-|  | oxpassport | 5.0.17 |
-|  | oxshibboleth | 5.0.17 |
-|  | persistence | 5.0.17 |
-|  | scim | 5.0.17 |
+|  | admin-ui | 5.0.18 |
+|  | auth-server | 5.0.18 |
+|  | auth-server-key-rotation | 5.0.18 |
+|  | casa | 5.0.18 |
+|  | cn-istio-ingress | 5.0.18 |
+|  | config | 5.0.18 |
+|  | config-api | 5.0.18 |
+|  | fido2 | 5.0.18 |
+|  | nginx-ingress | 5.0.18 |
+|  | opendj | 5.0.18 |
+|  | oxpassport | 5.0.18 |
+|  | oxshibboleth | 5.0.18 |
+|  | persistence | 5.0.18 |
+|  | scim | 5.0.18 |
 
 ## Values
 
 | Key | Type | Default | Description |
 |-----|------|---------|-------------|
-| admin-ui | object | `{"additionalAnnotations":{},"additionalLabels":{},"dnsConfig":{},"dnsPolicy":"","hpa":{"behavior":{},"enabled":true,"maxReplicas":10,"metrics":[],"minReplicas":1,"targetCPUUtilizationPercentage":50},"image":{"pullPolicy":"IfNotPresent","pullSecrets":[],"repository":"ghcr.io/gluufederation/flex/admin-ui","tag":"1.0.13_dev"},"lifecycle":{},"livenessProbe":{"failureThreshold":20,"initialDelaySeconds":60,"periodSeconds":25,"tcpSocket":{"port":8080},"timeoutSeconds":5},"pdb":{"enabled":true,"maxUnavailable":"90%"},"readinessProbe":{"failureThreshold":20,"initialDelaySeconds":60,"periodSeconds":25,"tcpSocket":{"port":8080},"timeoutSeconds":5},"replicas":1,"resources":{"limits":{"cpu":"2000m","memory":"2000Mi"},"requests":{"cpu":"2000m","memory":"2000Mi"}},"topologySpreadConstraints":{},"usrEnvs":{"normal":{},"secret":{}},"volumeMounts":[],"volumes":[]}` | Admin GUI for configuration of the auth-server |
+| admin-ui | object | `{"additionalAnnotations":{},"additionalLabels":{},"dnsConfig":{},"dnsPolicy":"","hpa":{"behavior":{},"enabled":true,"maxReplicas":10,"metrics":[],"minReplicas":1,"targetCPUUtilizationPercentage":50},"image":{"pullPolicy":"IfNotPresent","pullSecrets":[],"repository":"ghcr.io/gluufederation/flex/admin-ui","tag":"1.0.14-1"},"lifecycle":{},"livenessProbe":{"failureThreshold":20,"initialDelaySeconds":60,"periodSeconds":25,"tcpSocket":{"port":8080},"timeoutSeconds":5},"pdb":{"enabled":true,"maxUnavailable":"90%"},"readinessProbe":{"failureThreshold":20,"initialDelaySeconds":60,"periodSeconds":25,"tcpSocket":{"port":8080},"timeoutSeconds":5},"replicas":1,"resources":{"limits":{"cpu":"2000m","memory":"2000Mi"},"requests":{"cpu":"2000m","memory":"2000Mi"}},"topologySpreadConstraints":{},"usrEnvs":{"normal":{},"secret":{}},"volumeMounts":[],"volumes":[]}` | Admin GUI for configuration of the auth-server |
 | admin-ui.additionalAnnotations | object | `{}` | Additional annotations that will be added across the gateway in the format of {cert-manager.io/issuer: "letsencrypt-prod"} |
 | admin-ui.additionalLabels | object | `{}` | Additional labels that will be added across the gateway in the format of {mylabel: "myapp"} |
 | admin-ui.dnsConfig | object | `{}` | Add custom dns config |
@@ -53,7 +53,7 @@ Kubernetes: `>=v1.21.0-0`
 | admin-ui.image.pullPolicy | string | `"IfNotPresent"` | Image pullPolicy to use for deploying. |
 | admin-ui.image.pullSecrets | list | `[]` | Image Pull Secrets |
 | admin-ui.image.repository | string | `"ghcr.io/gluufederation/flex/admin-ui"` | Image  to use for deploying. |
-| admin-ui.image.tag | string | `"1.0.13_dev"` | Image  tag to use for deploying. |
+| admin-ui.image.tag | string | `"1.0.14-1"` | Image  tag to use for deploying. |
 | admin-ui.livenessProbe | object | `{"failureThreshold":20,"initialDelaySeconds":60,"periodSeconds":25,"tcpSocket":{"port":8080},"timeoutSeconds":5}` | Configure the liveness healthcheck for the admin ui if needed. |
 | admin-ui.pdb | object | `{"enabled":true,"maxUnavailable":"90%"}` | Configure the PodDisruptionBudget |
 | admin-ui.readinessProbe | object | `{"failureThreshold":20,"initialDelaySeconds":60,"periodSeconds":25,"tcpSocket":{"port":8080},"timeoutSeconds":5}` | Configure the readiness healthcheck for the admin ui if needed. |
@@ -69,8 +69,8 @@ Kubernetes: `>=v1.21.0-0`
 | admin-ui.usrEnvs.secret | object | `{}` | Add custom secret envs to the service variable1: value1 |
 | admin-ui.volumeMounts | list | `[]` | Configure any additional volumesMounts that need to be attached to the containers |
 | admin-ui.volumes | list | `[]` | Configure any additional volumes that need to be attached to the pod |
-| auth-server | object | `{"additionalAnnotations":{},"additionalLabels":{},"dnsConfig":{},"dnsPolicy":"","hpa":{"behavior":{},"enabled":true,"maxReplicas":10,"metrics":[],"minReplicas":1,"targetCPUUtilizationPercentage":50},"image":{"pullPolicy":"IfNotPresent","pullSecrets":[],"repository":"ghcr.io/janssenproject/jans/auth-server","tag":"1.0.13_dev"},"lifecycle":{},"livenessProbe":{"exec":{"command":["python3","/app/scripts/healthcheck.py"]},"initialDelaySeconds":30,"periodSeconds":30,"timeoutSeconds":5},"pdb":{"enabled":true,"maxUnavailable":"90%"},"readinessProbe":{"exec":{"command":["python3","/app/scripts/healthcheck.py"]},"initialDelaySeconds":25,"periodSeconds":25,"timeoutSeconds":5},"replicas":1,"resources":{"limits":{"cpu":"2500m","memory":"2500Mi"},"requests":{"cpu":"2500m","memory":"2500Mi"}},"topologySpreadConstraints":{},"usrEnvs":{"normal":{},"secret":{}},"volumeMounts":[],"volumes":[]}` | OAuth Authorization Server, the OpenID Connect Provider, the UMA Authorization Server--this is the main Internet facing component of Gluu. It's the service that returns tokens, JWT's and identity assertions. This service must be Internet facing. |
-| auth-server-key-rotation | object | `{"additionalAnnotations":{},"additionalLabels":{},"dnsConfig":{},"dnsPolicy":"","image":{"pullPolicy":"IfNotPresent","pullSecrets":[],"repository":"ghcr.io/janssenproject/jans/certmanager","tag":"1.0.13_dev"},"keysLife":48,"lifecycle":{},"resources":{"limits":{"cpu":"300m","memory":"300Mi"},"requests":{"cpu":"300m","memory":"300Mi"}},"usrEnvs":{"normal":{},"secret":{}},"volumeMounts":[],"volumes":[]}` | Responsible for regenerating auth-keys per x hours |
+| auth-server | object | `{"additionalAnnotations":{},"additionalLabels":{},"dnsConfig":{},"dnsPolicy":"","hpa":{"behavior":{},"enabled":true,"maxReplicas":10,"metrics":[],"minReplicas":1,"targetCPUUtilizationPercentage":50},"image":{"pullPolicy":"IfNotPresent","pullSecrets":[],"repository":"ghcr.io/janssenproject/jans/auth-server","tag":"1.0.14-1"},"lifecycle":{},"livenessProbe":{"exec":{"command":["python3","/app/scripts/healthcheck.py"]},"initialDelaySeconds":30,"periodSeconds":30,"timeoutSeconds":5},"pdb":{"enabled":true,"maxUnavailable":"90%"},"readinessProbe":{"exec":{"command":["python3","/app/scripts/healthcheck.py"]},"initialDelaySeconds":25,"periodSeconds":25,"timeoutSeconds":5},"replicas":1,"resources":{"limits":{"cpu":"2500m","memory":"2500Mi"},"requests":{"cpu":"2500m","memory":"2500Mi"}},"topologySpreadConstraints":{},"usrEnvs":{"normal":{},"secret":{}},"volumeMounts":[],"volumes":[]}` | OAuth Authorization Server, the OpenID Connect Provider, the UMA Authorization Server--this is the main Internet facing component of Gluu. It's the service that returns tokens, JWT's and identity assertions. This service must be Internet facing. |
+| auth-server-key-rotation | object | `{"additionalAnnotations":{},"additionalLabels":{},"dnsConfig":{},"dnsPolicy":"","image":{"pullPolicy":"IfNotPresent","pullSecrets":[],"repository":"ghcr.io/janssenproject/jans/certmanager","tag":"1.0.14-1"},"keysLife":48,"lifecycle":{},"resources":{"limits":{"cpu":"300m","memory":"300Mi"},"requests":{"cpu":"300m","memory":"300Mi"}},"usrEnvs":{"normal":{},"secret":{}},"volumeMounts":[],"volumes":[]}` | Responsible for regenerating auth-keys per x hours |
 | auth-server-key-rotation.additionalAnnotations | object | `{}` | Additional annotations that will be added across the gateway in the format of {cert-manager.io/issuer: "letsencrypt-prod"} |
 | auth-server-key-rotation.additionalLabels | object | `{}` | Additional labels that will be added across the gateway in the format of {mylabel: "myapp"} |
 | auth-server-key-rotation.dnsConfig | object | `{}` | Add custom dns config |
@@ -78,7 +78,7 @@ Kubernetes: `>=v1.21.0-0`
 | auth-server-key-rotation.image.pullPolicy | string | `"IfNotPresent"` | Image pullPolicy to use for deploying. |
 | auth-server-key-rotation.image.pullSecrets | list | `[]` | Image Pull Secrets |
 | auth-server-key-rotation.image.repository | string | `"ghcr.io/janssenproject/jans/certmanager"` | Image  to use for deploying. |
-| auth-server-key-rotation.image.tag | string | `"1.0.13_dev"` | Image  tag to use for deploying. |
+| auth-server-key-rotation.image.tag | string | `"1.0.14-1"` | Image  tag to use for deploying. |
 | auth-server-key-rotation.keysLife | int | `48` | Auth server key rotation keys life in hours |
 | auth-server-key-rotation.resources | object | `{"limits":{"cpu":"300m","memory":"300Mi"},"requests":{"cpu":"300m","memory":"300Mi"}}` | Resource specs. |
 | auth-server-key-rotation.resources.limits.cpu | string | `"300m"` | CPU limit. |
@@ -100,7 +100,7 @@ Kubernetes: `>=v1.21.0-0`
 | auth-server.image.pullPolicy | string | `"IfNotPresent"` | Image pullPolicy to use for deploying. |
 | auth-server.image.pullSecrets | list | `[]` | Image Pull Secrets |
 | auth-server.image.repository | string | `"ghcr.io/janssenproject/jans/auth-server"` | Image  to use for deploying. |
-| auth-server.image.tag | string | `"1.0.13_dev"` | Image  tag to use for deploying. |
+| auth-server.image.tag | string | `"1.0.14-1"` | Image  tag to use for deploying. |
 | auth-server.livenessProbe | object | `{"exec":{"command":["python3","/app/scripts/healthcheck.py"]},"initialDelaySeconds":30,"periodSeconds":30,"timeoutSeconds":5}` | Configure the liveness healthcheck for the auth server if needed. |
 | auth-server.livenessProbe.exec | object | `{"command":["python3","/app/scripts/healthcheck.py"]}` | Executes the python3 healthcheck. https://github.com/JanssenProject/docker-jans-auth-server/blob/master/scripts/healthcheck.py |
 | auth-server.pdb | object | `{"enabled":true,"maxUnavailable":"90%"}` | Configure the PodDisruptionBudget |
@@ -117,7 +117,7 @@ Kubernetes: `>=v1.21.0-0`
 | auth-server.usrEnvs.secret | object | `{}` | Add custom secret envs to the service variable1: value1 |
 | auth-server.volumeMounts | list | `[]` | Configure any additional volumesMounts that need to be attached to the containers |
 | auth-server.volumes | list | `[]` | Configure any additional volumes that need to be attached to the pod |
-| casa | object | `{"additionalAnnotations":{},"additionalLabels":{},"dnsConfig":{},"dnsPolicy":"","hpa":{"behavior":{},"enabled":true,"maxReplicas":10,"metrics":[],"minReplicas":1,"targetCPUUtilizationPercentage":50},"image":{"pullPolicy":"IfNotPresent","pullSecrets":[],"repository":"ghcr.io/gluufederation/flex/casa","tag":"5.0.0_dev"},"lifecycle":{},"livenessProbe":{"httpGet":{"path":"/casa/health-check","port":"http-casa"},"initialDelaySeconds":25,"periodSeconds":25,"timeoutSeconds":5},"pdb":{"enabled":true,"maxUnavailable":"90%"},"readinessProbe":{"httpGet":{"path":"/casa/health-check","port":"http-casa"},"initialDelaySeconds":30,"periodSeconds":30,"timeoutSeconds":5},"replicas":1,"resources":{"limits":{"cpu":"500m","memory":"500Mi"},"requests":{"cpu":"500m","memory":"500Mi"}},"topologySpreadConstraints":{},"usrEnvs":{"normal":{},"secret":{}},"volumeMounts":[],"volumes":[]}` | Gluu Casa ("Casa") is a self-service web portal for end-users to manage authentication and authorization preferences for their account in a Gluu Server. |
+| casa | object | `{"additionalAnnotations":{},"additionalLabels":{},"dnsConfig":{},"dnsPolicy":"","hpa":{"behavior":{},"enabled":true,"maxReplicas":10,"metrics":[],"minReplicas":1,"targetCPUUtilizationPercentage":50},"image":{"pullPolicy":"IfNotPresent","pullSecrets":[],"repository":"ghcr.io/gluufederation/flex/casa","tag":"5.0.0-13"},"lifecycle":{},"livenessProbe":{"httpGet":{"path":"/casa/health-check","port":"http-casa"},"initialDelaySeconds":25,"periodSeconds":25,"timeoutSeconds":5},"pdb":{"enabled":true,"maxUnavailable":"90%"},"readinessProbe":{"httpGet":{"path":"/casa/health-check","port":"http-casa"},"initialDelaySeconds":30,"periodSeconds":30,"timeoutSeconds":5},"replicas":1,"resources":{"limits":{"cpu":"500m","memory":"500Mi"},"requests":{"cpu":"500m","memory":"500Mi"}},"topologySpreadConstraints":{},"usrEnvs":{"normal":{},"secret":{}},"volumeMounts":[],"volumes":[]}` | Gluu Casa ("Casa") is a self-service web portal for end-users to manage authentication and authorization preferences for their account in a Gluu Server. |
 | casa.additionalAnnotations | object | `{}` | Additional annotations that will be added across the gateway in the format of {cert-manager.io/issuer: "letsencrypt-prod"} |
 | casa.additionalLabels | object | `{}` | Additional labels that will be added across the gateway in the format of {mylabel: "myapp"} |
 | casa.dnsConfig | object | `{}` | Add custom dns config |
@@ -128,7 +128,7 @@ Kubernetes: `>=v1.21.0-0`
 | casa.image.pullPolicy | string | `"IfNotPresent"` | Image pullPolicy to use for deploying. |
 | casa.image.pullSecrets | list | `[]` | Image Pull Secrets |
 | casa.image.repository | string | `"ghcr.io/gluufederation/flex/casa"` | Image  to use for deploying. |
-| casa.image.tag | string | `"5.0.0_dev"` | Image  tag to use for deploying. |
+| casa.image.tag | string | `"5.0.0-13"` | Image  tag to use for deploying. |
 | casa.livenessProbe | object | `{"httpGet":{"path":"/casa/health-check","port":"http-casa"},"initialDelaySeconds":25,"periodSeconds":25,"timeoutSeconds":5}` | Configure the liveness healthcheck for casa if needed. |
 | casa.livenessProbe.httpGet.path | string | `"/casa/health-check"` | http liveness probe endpoint |
 | casa.pdb | object | `{"enabled":true,"maxUnavailable":"90%"}` | Configure the PodDisruptionBudget |
@@ -146,8 +146,8 @@ Kubernetes: `>=v1.21.0-0`
 | casa.usrEnvs.secret | object | `{}` | Add custom secret envs to the service variable1: value1 |
 | casa.volumeMounts | list | `[]` | Configure any additional volumesMounts that need to be attached to the containers |
 | casa.volumes | list | `[]` | Configure any additional volumes that need to be attached to the pod |
-| config | object | `{"additionalAnnotations":{},"additionalLabels":{},"adminPassword":"Test1234#","city":"Austin","configmap":{"cnAwsAccessKeyId":"","cnAwsDefaultRegion":"us-west-1","cnAwsProfile":"gluu","cnAwsSecretAccessKey":"","cnAwsSecretsEndpointUrl":"","cnAwsSecretsNamePrefix":"gluu","cnAwsSecretsReplicaRegions":[],"cnCacheType":"NATIVE_PERSISTENCE","cnConfigKubernetesConfigMap":"cn","cnCouchbaseBucketPrefix":"jans","cnCouchbaseCrt":"SWFtTm90YVNlcnZpY2VBY2NvdW50Q2hhbmdlTWV0b09uZQo=","cnCouchbaseIndexNumReplica":0,"cnCouchbasePassword":"P@ssw0rd","cnCouchbaseSuperUser":"admin","cnCouchbaseSuperUserPassword":"Test1234#","cnCouchbaseUrl":"cbgluu.default.svc.cluster.local","cnCouchbaseUser":"gluu","cnGoogleProjectId":"google-project-to-save-config-and-secrets-to","cnGoogleSecretManagerServiceAccount":"SWFtTm90YVNlcnZpY2VBY2NvdW50Q2hhbmdlTWV0b09uZQo=","cnGoogleSecretNamePrefix":"gluu","cnGoogleSecretVersionId":"latest","cnGoogleSpannerDatabaseId":"","cnGoogleSpannerInstanceId":"","cnJettyRequestHeaderSize":8192,"cnLdapUrl":"opendj:1636","cnMaxRamPercent":"75.0","cnPersistenceHybridMapping":"{}","cnRedisSentinelGroup":"","cnRedisSslTruststore":"","cnRedisType":"STANDALONE","cnRedisUrl":"redis.redis.svc.cluster.local:6379","cnRedisUseSsl":false,"cnScimProtectionMode":"OAUTH","cnSecretKubernetesSecret":"cn","cnSqlDbDialect":"mysql","cnSqlDbHost":"my-release-mysql.default.svc.cluster.local","cnSqlDbName":"gluu","cnSqlDbPort":3306,"cnSqlDbSchema":"","cnSqlDbTimezone":"UTC","cnSqlDbUser":"gluu","cnSqldbUserPassword":"Test1234#","lbAddr":""},"countryCode":"US","dnsConfig":{},"dnsPolicy":"","email":"support@gluu.org","image":{"pullSecrets":[],"repository":"ghcr.io/janssenproject/jans/configurator","tag":"1.0.13_dev"},"ldapPassword":"P@ssw0rds","lifecycle":{},"migration":{"enabled":false,"migrationDataFormat":"ldif","migrationDir":"/ce-migration"},"orgName":"Gluu","redisPassword":"P@assw0rd","resources":{"limits":{"cpu":"300m","memory":"300Mi"},"requests":{"cpu":"300m","memory":"300Mi"}},"state":"TX","usrEnvs":{"normal":{},"secret":{}},"volumeMounts":[],"volumes":[]}` | Configuration parameters for setup and initial configuration secret and config layers used by Gluu services. |
-| config-api | object | `{"additionalAnnotations":{},"additionalLabels":{},"dnsConfig":{},"dnsPolicy":"","hpa":{"behavior":{},"enabled":true,"maxReplicas":10,"metrics":[],"minReplicas":1,"targetCPUUtilizationPercentage":50},"image":{"pullPolicy":"IfNotPresent","pullSecrets":[],"repository":"ghcr.io/janssenproject/jans/config-api","tag":"1.0.13_dev"},"lifecycle":{},"livenessProbe":{"httpGet":{"path":"/jans-config-api/api/v1/health/live","port":8074},"initialDelaySeconds":30,"periodSeconds":30,"timeoutSeconds":5},"pdb":{"enabled":true,"maxUnavailable":"90%"},"readinessProbe":{"httpGet":{"path":"jans-config-api/api/v1/health/ready","port":8074},"initialDelaySeconds":25,"periodSeconds":25,"timeoutSeconds":5},"replicas":1,"resources":{"limits":{"cpu":"1000m","memory":"1000Mi"},"requests":{"cpu":"1000m","memory":"1000Mi"}},"topologySpreadConstraints":{},"usrEnvs":{"normal":{},"secret":{}},"volumeMounts":[],"volumes":[]}` | Config Api endpoints can be used to configure the auth-server, which is an open-source OpenID Connect Provider (OP) and UMA Authorization Server (AS). |
+| config | object | `{"additionalAnnotations":{},"additionalLabels":{},"adminPassword":"Test1234#","city":"Austin","configmap":{"cnAwsAccessKeyId":"","cnAwsDefaultRegion":"us-west-1","cnAwsProfile":"gluu","cnAwsSecretAccessKey":"","cnAwsSecretsEndpointUrl":"","cnAwsSecretsNamePrefix":"gluu","cnAwsSecretsReplicaRegions":[],"cnCacheType":"NATIVE_PERSISTENCE","cnConfigKubernetesConfigMap":"cn","cnCouchbaseBucketPrefix":"jans","cnCouchbaseCrt":"SWFtTm90YVNlcnZpY2VBY2NvdW50Q2hhbmdlTWV0b09uZQo=","cnCouchbaseIndexNumReplica":0,"cnCouchbasePassword":"P@ssw0rd","cnCouchbaseSuperUser":"admin","cnCouchbaseSuperUserPassword":"Test1234#","cnCouchbaseUrl":"cbgluu.default.svc.cluster.local","cnCouchbaseUser":"gluu","cnGoogleProjectId":"google-project-to-save-config-and-secrets-to","cnGoogleSecretManagerServiceAccount":"SWFtTm90YVNlcnZpY2VBY2NvdW50Q2hhbmdlTWV0b09uZQo=","cnGoogleSecretNamePrefix":"gluu","cnGoogleSecretVersionId":"latest","cnGoogleSpannerDatabaseId":"","cnGoogleSpannerInstanceId":"","cnJettyRequestHeaderSize":8192,"cnLdapUrl":"opendj:1636","cnMaxRamPercent":"75.0","cnPersistenceHybridMapping":"{}","cnRedisSentinelGroup":"","cnRedisSslTruststore":"","cnRedisType":"STANDALONE","cnRedisUrl":"redis.redis.svc.cluster.local:6379","cnRedisUseSsl":false,"cnScimProtectionMode":"OAUTH","cnSecretKubernetesSecret":"cn","cnSqlDbDialect":"mysql","cnSqlDbHost":"my-release-mysql.default.svc.cluster.local","cnSqlDbName":"gluu","cnSqlDbPort":3306,"cnSqlDbSchema":"","cnSqlDbTimezone":"UTC","cnSqlDbUser":"gluu","cnSqldbUserPassword":"Test1234#","lbAddr":""},"countryCode":"US","dnsConfig":{},"dnsPolicy":"","email":"support@gluu.org","image":{"pullSecrets":[],"repository":"ghcr.io/janssenproject/jans/configurator","tag":"1.0.14-1"},"ldapPassword":"P@ssw0rds","lifecycle":{},"migration":{"enabled":false,"migrationDataFormat":"ldif","migrationDir":"/ce-migration"},"orgName":"Gluu","redisPassword":"P@assw0rd","resources":{"limits":{"cpu":"300m","memory":"300Mi"},"requests":{"cpu":"300m","memory":"300Mi"}},"state":"TX","usrEnvs":{"normal":{},"secret":{}},"volumeMounts":[],"volumes":[]}` | Configuration parameters for setup and initial configuration secret and config layers used by Gluu services. |
+| config-api | object | `{"additionalAnnotations":{},"additionalLabels":{},"dnsConfig":{},"dnsPolicy":"","hpa":{"behavior":{},"enabled":true,"maxReplicas":10,"metrics":[],"minReplicas":1,"targetCPUUtilizationPercentage":50},"image":{"pullPolicy":"IfNotPresent","pullSecrets":[],"repository":"ghcr.io/janssenproject/jans/config-api","tag":"1.0.14-1"},"lifecycle":{},"livenessProbe":{"httpGet":{"path":"/jans-config-api/api/v1/health/live","port":8074},"initialDelaySeconds":30,"periodSeconds":30,"timeoutSeconds":5},"pdb":{"enabled":true,"maxUnavailable":"90%"},"readinessProbe":{"httpGet":{"path":"jans-config-api/api/v1/health/ready","port":8074},"initialDelaySeconds":25,"periodSeconds":25,"timeoutSeconds":5},"replicas":1,"resources":{"limits":{"cpu":"1000m","memory":"1000Mi"},"requests":{"cpu":"1000m","memory":"1000Mi"}},"topologySpreadConstraints":{},"usrEnvs":{"normal":{},"secret":{}},"volumeMounts":[],"volumes":[]}` | Config Api endpoints can be used to configure the auth-server, which is an open-source OpenID Connect Provider (OP) and UMA Authorization Server (AS). |
 | config-api.additionalAnnotations | object | `{}` | Additional annotations that will be added across the gateway in the format of {cert-manager.io/issuer: "letsencrypt-prod"} |
 | config-api.additionalLabels | object | `{}` | Additional labels that will be added across the gateway in the format of {mylabel: "myapp"} |
 | config-api.dnsConfig | object | `{}` | Add custom dns config |
@@ -158,7 +158,7 @@ Kubernetes: `>=v1.21.0-0`
 | config-api.image.pullPolicy | string | `"IfNotPresent"` | Image pullPolicy to use for deploying. |
 | config-api.image.pullSecrets | list | `[]` | Image Pull Secrets |
 | config-api.image.repository | string | `"ghcr.io/janssenproject/jans/config-api"` | Image  to use for deploying. |
-| config-api.image.tag | string | `"1.0.13_dev"` | Image  tag to use for deploying. |
+| config-api.image.tag | string | `"1.0.14-1"` | Image  tag to use for deploying. |
 | config-api.livenessProbe | object | `{"httpGet":{"path":"/jans-config-api/api/v1/health/live","port":8074},"initialDelaySeconds":30,"periodSeconds":30,"timeoutSeconds":5}` | Configure the liveness healthcheck for the auth server if needed. |
 | config-api.livenessProbe.httpGet | object | `{"path":"/jans-config-api/api/v1/health/live","port":8074}` | http liveness probe endpoint |
 | config-api.pdb | object | `{"enabled":true,"maxUnavailable":"90%"}` | Configure the PodDisruptionBudget |
@@ -221,7 +221,7 @@ Kubernetes: `>=v1.21.0-0`
 | config.email | string | `"support@gluu.org"` | Email address of the administrator usually. Used for certificate creation. |
 | config.image.pullSecrets | list | `[]` | Image Pull Secrets |
 | config.image.repository | string | `"ghcr.io/janssenproject/jans/configurator"` | Image  to use for deploying. |
-| config.image.tag | string | `"1.0.13_dev"` | Image  tag to use for deploying. |
+| config.image.tag | string | `"1.0.14-1"` | Image  tag to use for deploying. |
 | config.ldapPassword | string | `"P@ssw0rds"` | LDAP admin password if OpenDJ is used for persistence. |
 | config.migration | object | `{"enabled":false,"migrationDataFormat":"ldif","migrationDir":"/ce-migration"}` | CE to CN Migration section |
 | config.migration.enabled | bool | `false` | Boolean flag to enable migration from CE |
@@ -240,7 +240,7 @@ Kubernetes: `>=v1.21.0-0`
 | config.usrEnvs.secret | object | `{}` | Add custom secret envs to the service. variable1: value1 |
 | config.volumeMounts | list | `[]` | Configure any additional volumesMounts that need to be attached to the containers |
 | config.volumes | list | `[]` | Configure any additional volumes that need to be attached to the pod |
-| fido2 | object | `{"additionalAnnotations":{},"additionalLabels":{},"dnsConfig":{},"dnsPolicy":"","hpa":{"behavior":{},"enabled":true,"maxReplicas":10,"metrics":[],"minReplicas":1,"targetCPUUtilizationPercentage":50},"image":{"pullPolicy":"IfNotPresent","pullSecrets":[],"repository":"ghcr.io/janssenproject/jans/fido2","tag":"1.0.13_dev"},"lifecycle":{},"livenessProbe":{"httpGet":{"path":"/jans-fido2/sys/health-check","port":"http-fido2"},"initialDelaySeconds":25,"periodSeconds":25,"timeoutSeconds":5},"pdb":{"enabled":true,"maxUnavailable":"90%"},"readinessProbe":{"httpGet":{"path":"/jans-fido2/sys/health-check","port":"http-fido2"},"initialDelaySeconds":30,"periodSeconds":30,"timeoutSeconds":5},"replicas":1,"resources":{"limits":{"cpu":"500m","memory":"500Mi"},"requests":{"cpu":"500m","memory":"500Mi"}},"service":{"name":"http-fido2","port":8080},"topologySpreadConstraints":{},"usrEnvs":{"normal":{},"secret":{}},"volumeMounts":[],"volumes":[]}` | FIDO 2.0 (FIDO2) is an open authentication standard that enables leveraging common devices to authenticate to online services in both mobile and desktop environments. |
+| fido2 | object | `{"additionalAnnotations":{},"additionalLabels":{},"dnsConfig":{},"dnsPolicy":"","hpa":{"behavior":{},"enabled":true,"maxReplicas":10,"metrics":[],"minReplicas":1,"targetCPUUtilizationPercentage":50},"image":{"pullPolicy":"IfNotPresent","pullSecrets":[],"repository":"ghcr.io/janssenproject/jans/fido2","tag":"1.0.14-1"},"lifecycle":{},"livenessProbe":{"httpGet":{"path":"/jans-fido2/sys/health-check","port":"http-fido2"},"initialDelaySeconds":25,"periodSeconds":25,"timeoutSeconds":5},"pdb":{"enabled":true,"maxUnavailable":"90%"},"readinessProbe":{"httpGet":{"path":"/jans-fido2/sys/health-check","port":"http-fido2"},"initialDelaySeconds":30,"periodSeconds":30,"timeoutSeconds":5},"replicas":1,"resources":{"limits":{"cpu":"500m","memory":"500Mi"},"requests":{"cpu":"500m","memory":"500Mi"}},"service":{"name":"http-fido2","port":8080},"topologySpreadConstraints":{},"usrEnvs":{"normal":{},"secret":{}},"volumeMounts":[],"volumes":[]}` | FIDO 2.0 (FIDO2) is an open authentication standard that enables leveraging common devices to authenticate to online services in both mobile and desktop environments. |
 | fido2.additionalAnnotations | object | `{}` | Additional annotations that will be added across the gateway in the format of {cert-manager.io/issuer: "letsencrypt-prod"} |
 | fido2.additionalLabels | object | `{}` | Additional labels that will be added across the gateway in the format of {mylabel: "myapp"} |
 | fido2.dnsConfig | object | `{}` | Add custom dns config |
@@ -251,7 +251,7 @@ Kubernetes: `>=v1.21.0-0`
 | fido2.image.pullPolicy | string | `"IfNotPresent"` | Image pullPolicy to use for deploying. |
 | fido2.image.pullSecrets | list | `[]` | Image Pull Secrets |
 | fido2.image.repository | string | `"ghcr.io/janssenproject/jans/fido2"` | Image  to use for deploying. |
-| fido2.image.tag | string | `"1.0.13_dev"` | Image  tag to use for deploying. |
+| fido2.image.tag | string | `"1.0.14-1"` | Image  tag to use for deploying. |
 | fido2.livenessProbe | object | `{"httpGet":{"path":"/jans-fido2/sys/health-check","port":"http-fido2"},"initialDelaySeconds":25,"periodSeconds":25,"timeoutSeconds":5}` | Configure the liveness healthcheck for the fido2 if needed. |
 | fido2.livenessProbe.httpGet | object | `{"path":"/jans-fido2/sys/health-check","port":"http-fido2"}` | http liveness probe endpoint |
 | fido2.pdb | object | `{"enabled":true,"maxUnavailable":"90%"}` | Configure the PodDisruptionBudget |
@@ -551,7 +551,7 @@ Kubernetes: `>=v1.21.0-0`
 | oxshibboleth.usrEnvs.secret | object | `{}` | Add custom secret envs to the service variable1: value1 |
 | oxshibboleth.volumeMounts | list | `[]` | Configure any additional volumesMounts that need to be attached to the containers |
 | oxshibboleth.volumes | list | `[]` | Configure any additional volumes that need to be attached to the pod |
-| persistence | object | `{"additionalAnnotations":{},"additionalLabels":{},"dnsConfig":{},"dnsPolicy":"","image":{"pullPolicy":"IfNotPresent","pullSecrets":[],"repository":"ghcr.io/janssenproject/jans/persistence-loader","tag":"1.0.13_dev"},"lifecycle":{},"resources":{"limits":{"cpu":"300m","memory":"300Mi"},"requests":{"cpu":"300m","memory":"300Mi"}},"usrEnvs":{"normal":{},"secret":{}},"volumeMounts":[],"volumes":[]}` | Job to generate data and initial config for Gluu Server persistence layer. |
+| persistence | object | `{"additionalAnnotations":{},"additionalLabels":{},"dnsConfig":{},"dnsPolicy":"","image":{"pullPolicy":"IfNotPresent","pullSecrets":[],"repository":"ghcr.io/janssenproject/jans/persistence-loader","tag":"1.0.14-1"},"lifecycle":{},"resources":{"limits":{"cpu":"300m","memory":"300Mi"},"requests":{"cpu":"300m","memory":"300Mi"}},"usrEnvs":{"normal":{},"secret":{}},"volumeMounts":[],"volumes":[]}` | Job to generate data and initial config for Gluu Server persistence layer. |
 | persistence.additionalAnnotations | object | `{}` | Additional annotations that will be added across the gateway in the format of {cert-manager.io/issuer: "letsencrypt-prod"} |
 | persistence.additionalLabels | object | `{}` | Additional labels that will be added across the gateway in the format of {mylabel: "myapp"} |
 | persistence.dnsConfig | object | `{}` | Add custom dns config |
@@ -559,7 +559,7 @@ Kubernetes: `>=v1.21.0-0`
 | persistence.image.pullPolicy | string | `"IfNotPresent"` | Image pullPolicy to use for deploying. |
 | persistence.image.pullSecrets | list | `[]` | Image Pull Secrets |
 | persistence.image.repository | string | `"ghcr.io/janssenproject/jans/persistence-loader"` | Image  to use for deploying. |
-| persistence.image.tag | string | `"1.0.13_dev"` | Image  tag to use for deploying. |
+| persistence.image.tag | string | `"1.0.14-1"` | Image  tag to use for deploying. |
 | persistence.resources | object | `{"limits":{"cpu":"300m","memory":"300Mi"},"requests":{"cpu":"300m","memory":"300Mi"}}` | Resource specs. |
 | persistence.resources.limits.cpu | string | `"300m"` | CPU limit |
 | persistence.resources.limits.memory | string | `"300Mi"` | Memory limit. |
@@ -570,7 +570,7 @@ Kubernetes: `>=v1.21.0-0`
 | persistence.usrEnvs.secret | object | `{}` | Add custom secret envs to the service variable1: value1 |
 | persistence.volumeMounts | list | `[]` | Configure any additional volumesMounts that need to be attached to the containers |
 | persistence.volumes | list | `[]` | Configure any additional volumes that need to be attached to the pod |
-| scim | object | `{"additionalAnnotations":{},"additionalLabels":{},"dnsConfig":{},"dnsPolicy":"","hpa":{"behavior":{},"enabled":true,"maxReplicas":10,"metrics":[],"minReplicas":1,"targetCPUUtilizationPercentage":50},"image":{"pullPolicy":"IfNotPresent","pullSecrets":[],"repository":"ghcr.io/janssenproject/jans/scim","tag":"1.0.13_dev"},"lifecycle":{},"livenessProbe":{"httpGet":{"path":"/jans-scim/sys/health-check","port":8080},"initialDelaySeconds":30,"periodSeconds":30,"timeoutSeconds":5},"pdb":{"enabled":true,"maxUnavailable":"90%"},"readinessProbe":{"httpGet":{"path":"/jans-scim/sys/health-check","port":8080},"initialDelaySeconds":25,"periodSeconds":25,"timeoutSeconds":5},"replicas":1,"resources":{"limits":{"cpu":"1000m","memory":"1000Mi"},"requests":{"cpu":"1000m","memory":"1000Mi"}},"service":{"name":"http-scim","port":8080},"topologySpreadConstraints":{},"usrEnvs":{"normal":{},"secret":{}},"volumeMounts":[],"volumes":[]}` | System for Cross-domain Identity Management (SCIM) version 2.0 |
+| scim | object | `{"additionalAnnotations":{},"additionalLabels":{},"dnsConfig":{},"dnsPolicy":"","hpa":{"behavior":{},"enabled":true,"maxReplicas":10,"metrics":[],"minReplicas":1,"targetCPUUtilizationPercentage":50},"image":{"pullPolicy":"IfNotPresent","pullSecrets":[],"repository":"ghcr.io/janssenproject/jans/scim","tag":"1.0.14-1"},"lifecycle":{},"livenessProbe":{"httpGet":{"path":"/jans-scim/sys/health-check","port":8080},"initialDelaySeconds":30,"periodSeconds":30,"timeoutSeconds":5},"pdb":{"enabled":true,"maxUnavailable":"90%"},"readinessProbe":{"httpGet":{"path":"/jans-scim/sys/health-check","port":8080},"initialDelaySeconds":25,"periodSeconds":25,"timeoutSeconds":5},"replicas":1,"resources":{"limits":{"cpu":"1000m","memory":"1000Mi"},"requests":{"cpu":"1000m","memory":"1000Mi"}},"service":{"name":"http-scim","port":8080},"topologySpreadConstraints":{},"usrEnvs":{"normal":{},"secret":{}},"volumeMounts":[],"volumes":[]}` | System for Cross-domain Identity Management (SCIM) version 2.0 |
 | scim.additionalAnnotations | object | `{}` | Additional annotations that will be added across the gateway in the format of {cert-manager.io/issuer: "letsencrypt-prod"} |
 | scim.additionalLabels | object | `{}` | Additional labels that will be added across the gateway in the format of {mylabel: "myapp"} |
 | scim.dnsConfig | object | `{}` | Add custom dns config |
@@ -581,7 +581,7 @@ Kubernetes: `>=v1.21.0-0`
 | scim.image.pullPolicy | string | `"IfNotPresent"` | Image pullPolicy to use for deploying. |
 | scim.image.pullSecrets | list | `[]` | Image Pull Secrets |
 | scim.image.repository | string | `"ghcr.io/janssenproject/jans/scim"` | Image  to use for deploying. |
-| scim.image.tag | string | `"1.0.13_dev"` | Image  tag to use for deploying. |
+| scim.image.tag | string | `"1.0.14-1"` | Image  tag to use for deploying. |
 | scim.livenessProbe | object | `{"httpGet":{"path":"/jans-scim/sys/health-check","port":8080},"initialDelaySeconds":30,"periodSeconds":30,"timeoutSeconds":5}` | Configure the liveness healthcheck for SCIM if needed. |
 | scim.livenessProbe.httpGet.path | string | `"/jans-scim/sys/health-check"` | http liveness probe endpoint |
 | scim.pdb | object | `{"enabled":true,"maxUnavailable":"90%"}` | Configure the PodDisruptionBudget |

charts/gluu/gluu/charts/admin-ui/Chart.yaml

@@ -17,4 +17,4 @@ sources:
 - https://github.com/GluuFederation/docker-gluu-admin-ui
 - https://github.com/GluuFederation/flex/tree/main/flex-cn-setup/pygluu/kubernetes/templates/helm/gluu/charts/admin-ui
 type: application
-version: 5.0.17
+version: 5.0.18

charts/gluu/gluu/charts/admin-ui/README.md

@@ -1,6 +1,6 @@
 # admin-ui
 
-![Version: 5.0.17](https://img.shields.io/badge/Version-5.0.17-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 5.0.0](https://img.shields.io/badge/AppVersion-5.0.0-informational?style=flat-square)
+![Version: 5.0.18](https://img.shields.io/badge/Version-5.0.18-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 5.0.0](https://img.shields.io/badge/AppVersion-5.0.0-informational?style=flat-square)
 
 Admin GUI. Requires license.
 
@@ -35,7 +35,7 @@ Kubernetes: `>=v1.21.0-0`
 | image.pullPolicy | string | `"IfNotPresent"` | Image pullPolicy to use for deploying. |
 | image.pullSecrets | list | `[]` | Image Pull Secrets |
 | image.repository | string | `"gluufederation/admin-ui"` | Image  to use for deploying. |
-| image.tag | string | `"1.0.13_dev"` | Image  tag to use for deploying. |
+| image.tag | string | `"1.0.14-1"` | Image  tag to use for deploying. |
 | lifecycle | object | `{}` |  |
 | livenessProbe | object | `{"failureThreshold":20,"initialDelaySeconds":60,"periodSeconds":25,"tcpSocket":{"port":8080},"timeoutSeconds":5}` | Configure the liveness healthcheck for the admin ui if needed. |
 | readinessProbe | object | `{"failureThreshold":20,"initialDelaySeconds":60,"periodSeconds":25,"tcpSocket":{"port":8080},"timeoutSeconds":5}` | Configure the readiness healthcheck for the admin ui if needed. |

charts/gluu/gluu/charts/admin-ui/values.yaml

@@ -27,7 +27,7 @@ image:
   # -- Image  to use for deploying.
   repository:  gluufederation/admin-ui
   # -- Image  tag to use for deploying.
-  tag: 1.0.13_dev
+  tag: 1.0.14-1
   # -- Image Pull Secrets
   pullSecrets: [ ]
 # -- Service replica number.

charts/gluu/gluu/charts/auth-server-key-rotation/Chart.yaml

@@ -15,4 +15,4 @@ sources:
 - https://github.com/JanssenProject/docker-jans-certmanager
 - https://github.com/GluuFederation/flex/tree/main/flex-cn-setup/pygluu/kubernetes/templates/helm/gluu/charts/auth-server-key-rotation
 type: application
-version: 5.0.17
+version: 5.0.18

charts/gluu/gluu/charts/auth-server-key-rotation/README.md

@@ -1,6 +1,6 @@
 # auth-server-key-rotation
 
-![Version: 5.0.17](https://img.shields.io/badge/Version-5.0.17-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 5.0.0](https://img.shields.io/badge/AppVersion-5.0.0-informational?style=flat-square)
+![Version: 5.0.18](https://img.shields.io/badge/Version-5.0.18-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 5.0.0](https://img.shields.io/badge/AppVersion-5.0.0-informational?style=flat-square)
 
 Responsible for regenerating auth-keys per x hours
 
@@ -33,7 +33,7 @@ Kubernetes: `>=v1.21.0-0`
 | image.pullPolicy | string | `"IfNotPresent"` | Image pullPolicy to use for deploying. |
 | image.pullSecrets | list | `[]` | Image Pull Secrets |
 | image.repository | string | `"janssenproject/certmanager"` | Image  to use for deploying. |
-| image.tag | string | `"1.0.13_dev"` | Image  tag to use for deploying. |
+| image.tag | string | `"1.0.14-1"` | Image  tag to use for deploying. |
 | keysLife | int | `48` | Auth server key rotation keys life in hours |
 | lifecycle | object | `{}` |  |
 | nodeSelector | object | `{}` |  |

charts/gluu/gluu/charts/auth-server-key-rotation/values.yaml

@@ -18,7 +18,7 @@ image:
   # -- Image  to use for deploying.
   repository: janssenproject/certmanager
   # -- Image  tag to use for deploying.
-  tag: 1.0.13_dev
+  tag: 1.0.14-1
   # -- Image Pull Secrets
   pullSecrets: [ ]
 # -- Auth server key rotation keys life in hours

charts/gluu/gluu/charts/auth-server/Chart.yaml

@@ -19,4 +19,4 @@ sources:
 - https://github.com/JanssenProject/docker-jans-auth-server
 - https://github.com/GluuFederation/flex/tree/main/flex-cn-setup/pygluu/kubernetes/templates/helm/gluu/charts/auth-server
 type: application
-version: 5.0.17
+version: 5.0.18

charts/gluu/gluu/charts/auth-server/README.md

@@ -1,6 +1,6 @@
 # auth-server
 
-![Version: 5.0.17](https://img.shields.io/badge/Version-5.0.17-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 5.0.0](https://img.shields.io/badge/AppVersion-5.0.0-informational?style=flat-square)
+![Version: 5.0.18](https://img.shields.io/badge/Version-5.0.18-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 5.0.0](https://img.shields.io/badge/AppVersion-5.0.0-informational?style=flat-square)
 
 OAuth Authorization Server, the OpenID Connect Provider, the UMA Authorization Server--this is the main Internet facing component of Gluu. It's the service that returns tokens, JWT's and identity assertions. This service must be Internet facing.
 
@@ -36,7 +36,7 @@ Kubernetes: `>=v1.21.0-0`
 | image.pullPolicy | string | `"IfNotPresent"` | Image pullPolicy to use for deploying. |
 | image.pullSecrets | list | `[]` | Image Pull Secrets |
 | image.repository | string | `"janssenproject/auth-server"` | Image  to use for deploying. |
-| image.tag | string | `"1.0.13_dev"` | Image  tag to use for deploying. |
+| image.tag | string | `"1.0.14-1"` | Image  tag to use for deploying. |
 | lifecycle | object | `{}` |  |
 | livenessProbe | object | `{"exec":{"command":["python3","/app/scripts/healthcheck.py"]},"initialDelaySeconds":30,"periodSeconds":30,"timeoutSeconds":5}` | Configure the liveness healthcheck for the auth server if needed. |
 | livenessProbe.exec | object | `{"command":["python3","/app/scripts/healthcheck.py"]}` | Executes the python3 healthcheck. https://github.com/GluuFederation/docker-oxauth/blob/4.3/scripts/healthcheck.py |

charts/gluu/gluu/charts/auth-server/values.yaml

@@ -28,7 +28,7 @@ image:
   # -- Image  to use for deploying.
   repository:  janssenproject/auth-server
   # -- Image  tag to use for deploying.
-  tag: 1.0.13_dev
+  tag: 1.0.14-1
   # -- Image Pull Secrets
   pullSecrets: [ ]
 # -- Service replica number.

charts/gluu/gluu/charts/casa/Chart.yaml

@@ -19,4 +19,4 @@ sources:
 - https://github.com/GluuFederation/docker-casa
 - https://github.com/GluuFederation/flex/tree/main/flex-cn-setup/pygluu/kubernetes/templates/helm/gluu/charts/casa
 type: application
-version: 5.0.17
+version: 5.0.18

charts/gluu/gluu/charts/casa/README.md

@@ -1,6 +1,6 @@
 # casa
 
-![Version: 5.0.17](https://img.shields.io/badge/Version-5.0.17-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 5.0.0](https://img.shields.io/badge/AppVersion-5.0.0-informational?style=flat-square)
+![Version: 5.0.18](https://img.shields.io/badge/Version-5.0.18-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 5.0.0](https://img.shields.io/badge/AppVersion-5.0.0-informational?style=flat-square)
 
 Gluu Casa ("Casa") is a self-service web portal for end-users to manage authentication and authorization preferences for their account in a Gluu Server.
 

charts/gluu/gluu/charts/cn-istio-ingress/Chart.yaml

@@ -16,4 +16,4 @@ sources:
 - https://gluu.org/docs/gluu-server/
 - https://github.com/GluuFederation/flex/tree/main/flex-cn-setup/pygluu/kubernetes/templates/helm/gluu/charts/cn-istio-ingress
 type: application
-version: 5.0.17
+version: 5.0.18

charts/gluu/gluu/charts/cn-istio-ingress/README.md

@@ -1,6 +1,6 @@
 # cn-istio-ingress
 
-![Version: 5.0.17](https://img.shields.io/badge/Version-5.0.17-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 5.0.0](https://img.shields.io/badge/AppVersion-5.0.0-informational?style=flat-square)
+![Version: 5.0.18](https://img.shields.io/badge/Version-5.0.18-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 5.0.0](https://img.shields.io/badge/AppVersion-5.0.0-informational?style=flat-square)
 
 Istio Gateway
 

charts/gluu/gluu/charts/config-api/Chart.yaml

@@ -19,4 +19,4 @@ sources:
 - https://github.com/JanssenProject/jans/docker-jans-config-api
 - https://github.com/GluuFederation/flex/tree/main/flex-cn-setup/pygluu/kubernetes/templates/helm/gluu/charts/config-api
 type: application
-version: 5.0.17
+version: 5.0.18

charts/gluu/gluu/charts/config-api/README.md

@@ -1,6 +1,6 @@
 # config-api
 
-![Version: 5.0.17](https://img.shields.io/badge/Version-5.0.17-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 5.0.0](https://img.shields.io/badge/AppVersion-5.0.0-informational?style=flat-square)
+![Version: 5.0.18](https://img.shields.io/badge/Version-5.0.18-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 5.0.0](https://img.shields.io/badge/AppVersion-5.0.0-informational?style=flat-square)
 
 Jans Config Api endpoints can be used to configure jans-auth-server, which is an open-source OpenID Connect Provider (OP) and UMA Authorization Server (AS)
 
@@ -38,7 +38,7 @@ Kubernetes: `>=v1.21.0-0`
 | image.pullPolicy | string | `"IfNotPresent"` | Image pullPolicy to use for deploying. |
 | image.pullSecrets | list | `[]` | Image Pull Secrets |
 | image.repository | string | `"janssenproject/config-api"` | Image  to use for deploying. |
-| image.tag | string | `"1.0.13_dev"` | Image  tag to use for deploying. |
+| image.tag | string | `"1.0.14-1"` | Image  tag to use for deploying. |
 | lifecycle | object | `{}` |  |
 | livenessProbe | object | `{"httpGet":{"path":"/jans-config-api/api/v1/health/live","port":8074},"initialDelaySeconds":30,"periodSeconds":30,"timeoutSeconds":5}` | Configure the liveness healthcheck for the auth server if needed. |
 | livenessProbe.httpGet | object | `{"path":"/jans-config-api/api/v1/health/live","port":8074}` | Executes the python3 healthcheck. https://github.com/GluuFederation/docker-oxauth/blob/4.3/scripts/healthcheck.py |

charts/gluu/gluu/charts/config-api/values.yaml

@@ -33,7 +33,7 @@ image:
   # -- Image  to use for deploying.
   repository: janssenproject/config-api
   # -- Image  tag to use for deploying.
-  tag: 1.0.13_dev
+  tag: 1.0.14-1
   # -- Image Pull Secrets
   pullSecrets: [ ]
 # -- Service replica number.

charts/gluu/gluu/charts/config/Chart.yaml

@@ -18,4 +18,4 @@ sources:
 - https://github.com/JanssenProject/jans/docker-jans-configurator
 - https://github.com/GluuFederation/flex/tree/main/flex-cn-setup/pygluu/kubernetes/templates/helm/gluu/charts/config
 type: application
-version: 5.0.17
+version: 5.0.18

charts/gluu/gluu/charts/config/README.md

@@ -1,6 +1,6 @@
 # config
 
-![Version: 5.0.17](https://img.shields.io/badge/Version-5.0.17-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 5.0.0](https://img.shields.io/badge/AppVersion-5.0.0-informational?style=flat-square)
+![Version: 5.0.18](https://img.shields.io/badge/Version-5.0.18-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 5.0.0](https://img.shields.io/badge/AppVersion-5.0.0-informational?style=flat-square)
 
 Configuration parameters for setup and initial configuration secret and config layers used by Gluu services.
 
@@ -79,7 +79,7 @@ Kubernetes: `>=v1.21.0-0`
 | fullNameOverride | string | `""` |  |
 | image.pullSecrets | list | `[]` | Image Pull Secrets |
 | image.repository | string | `"janssenproject/configurator"` | Image  to use for deploying. |
-| image.tag | string | `"1.0.13_dev"` | Image  tag to use for deploying. |
+| image.tag | string | `"1.0.14-1"` | Image  tag to use for deploying. |
 | ldapPassword | string | `"P@ssw0rds"` | LDAP admin password if OpennDJ is used for persistence. |
 | lifecycle | object | `{}` |  |
 | migration | object | `{"enabled":false,"migrationDataFormat":"ldif","migrationDir":"/ce-migration"}` | CE to CN Migration section |

charts/gluu/gluu/charts/config/values.yaml

@@ -122,7 +122,7 @@ image:
   # -- Image  to use for deploying.
   repository: janssenproject/configurator
   # -- Image  tag to use for deploying.
-  tag: 1.0.13_dev
+  tag: 1.0.14-1
   # -- Image Pull Secrets
   pullSecrets: [ ]
 # -- LDAP admin password if OpennDJ is used for persistence.

charts/gluu/gluu/charts/fido2/Chart.yaml

@@ -19,4 +19,4 @@ sources:
 - https://github.com/JanssenProject/jans/docker-jans-fido2
 - https://github.com/GluuFederation/flex/tree/main/flex-cn-setup/pygluu/kubernetes/templates/helm/gluu/charts/fido2
 type: application
-version: 5.0.17
+version: 5.0.18

charts/gluu/gluu/charts/fido2/README.md

@@ -1,6 +1,6 @@
 # fido2
 
-![Version: 5.0.17](https://img.shields.io/badge/Version-5.0.17-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 5.0.0](https://img.shields.io/badge/AppVersion-5.0.0-informational?style=flat-square)
+![Version: 5.0.18](https://img.shields.io/badge/Version-5.0.18-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 5.0.0](https://img.shields.io/badge/AppVersion-5.0.0-informational?style=flat-square)
 
 FIDO 2.0 (FIDO2) is an open authentication standard that enables leveraging common devices to authenticate to online services in both mobile and desktop environments.
 
@@ -37,7 +37,7 @@ Kubernetes: `>=v1.21.0-0`
 | image.pullPolicy | string | `"IfNotPresent"` | Image pullPolicy to use for deploying. |
 | image.pullSecrets | list | `[]` | Image Pull Secrets |
 | image.repository | string | `"janssenproject/fido2"` | Image  to use for deploying. |
-| image.tag | string | `"1.0.13_dev"` | Image  tag to use for deploying. |
+| image.tag | string | `"1.0.14-1"` | Image  tag to use for deploying. |
 | lifecycle | object | `{}` |  |
 | livenessProbe | object | `{"httpGet":{"path":"/jans-fido2/sys/health-check","port":"http-fido2"},"initialDelaySeconds":25,"periodSeconds":25,"timeoutSeconds":5}` | Configure the liveness healthcheck for the fido2 if needed. |
 | livenessProbe.httpGet | object | `{"path":"/jans-fido2/sys/health-check","port":"http-fido2"}` | http liveness probe endpoint |

charts/gluu/gluu/charts/fido2/values.yaml

@@ -29,7 +29,7 @@ image:
   # -- Image  to use for deploying.
   repository: janssenproject/fido2
   # -- Image  tag to use for deploying.
-  tag: 1.0.13_dev
+  tag: 1.0.14-1
   # -- Image Pull Secrets
   pullSecrets: [ ]
 # -- Service replica number.

charts/gluu/gluu/charts/nginx-ingress/Chart.yaml

@@ -17,4 +17,4 @@ sources:
 - https://kubernetes.io/docs/concepts/services-networking/ingress/
 - https://github.com/GluuFederation/flex/tree/main/flex-cn-setup/pygluu/kubernetes/templates/helm/gluu/charts/nginx-ingress
 type: application
-version: 5.0.17
+version: 5.0.18

charts/gluu/gluu/charts/nginx-ingress/README.md

@@ -1,6 +1,6 @@
 # nginx-ingress
 
-![Version: 5.0.17](https://img.shields.io/badge/Version-5.0.17-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 5.0.0](https://img.shields.io/badge/AppVersion-5.0.0-informational?style=flat-square)
+![Version: 5.0.18](https://img.shields.io/badge/Version-5.0.18-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 5.0.0](https://img.shields.io/badge/AppVersion-5.0.0-informational?style=flat-square)
 
 Nginx ingress definitions chart
 

charts/gluu/gluu/charts/opendj/Chart.yaml

@@ -19,4 +19,4 @@ sources:
 - https://github.com/GluuFederation/docker-opendj
 - https://github.com/GluuFederation/flex/tree/main/flex-cn-setup/pygluu/kubernetes/templates/helm/gluu/charts/opendj
 type: application
-version: 5.0.17
+version: 5.0.18

charts/gluu/gluu/charts/opendj/README.md

@@ -1,6 +1,6 @@
 # opendj
 
-![Version: 5.0.17](https://img.shields.io/badge/Version-5.0.17-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 5.0.0](https://img.shields.io/badge/AppVersion-5.0.0-informational?style=flat-square)
+![Version: 5.0.18](https://img.shields.io/badge/Version-5.0.18-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 5.0.0](https://img.shields.io/badge/AppVersion-5.0.0-informational?style=flat-square)
 
 OpenDJ is a directory server which implements a wide range of Lightweight Directory Access Protocol and related standards, including full compliance with LDAPv3 but also support for Directory Service Markup Language (DSMLv2).Written in Java, OpenDJ offers multi-master replication, access control, and many extensions.
 

charts/gluu/gluu/charts/oxpassport/Chart.yaml

@@ -18,4 +18,4 @@ sources:
 - https://github.com/GluuFederation/docker-oxpassport
 - https://github.com/GluuFederation/flex/tree/main/flex-cn-setup/pygluu/kubernetes/templates/helm/gluu/charts/oxpassport
 type: application
-version: 5.0.17
+version: 5.0.18

charts/gluu/gluu/charts/oxpassport/README.md

@@ -1,6 +1,6 @@
 # oxpassport
 
-![Version: 5.0.17](https://img.shields.io/badge/Version-5.0.17-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 5.0.0](https://img.shields.io/badge/AppVersion-5.0.0-informational?style=flat-square)
+![Version: 5.0.18](https://img.shields.io/badge/Version-5.0.18-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 5.0.0](https://img.shields.io/badge/AppVersion-5.0.0-informational?style=flat-square)
 
 Gluu interface to Passport.js to support social login and inbound identity.
 

charts/gluu/gluu/charts/oxshibboleth/Chart.yaml

@@ -17,4 +17,4 @@ sources:
 - https://github.com/GluuFederation/docker-oxshibboleth
 - https://github.com/GluuFederation/flex/tree/main/flex-cn-setup/pygluu/kubernetes/templates/helm/gluu/charts/oxshibboleth
 type: application
-version: 5.0.17
+version: 5.0.18

charts/gluu/gluu/charts/oxshibboleth/README.md

@@ -1,6 +1,6 @@
 # oxshibboleth
 
-![Version: 5.0.17](https://img.shields.io/badge/Version-5.0.17-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 5.0.0](https://img.shields.io/badge/AppVersion-5.0.0-informational?style=flat-square)
+![Version: 5.0.18](https://img.shields.io/badge/Version-5.0.18-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 5.0.0](https://img.shields.io/badge/AppVersion-5.0.0-informational?style=flat-square)
 
 Shibboleth project for the Gluu Server's SAML IDP functionality.
 

charts/gluu/gluu/charts/persistence/Chart.yaml

@@ -15,4 +15,4 @@ sources:
 - https://github.com/JanssenProject/jans/docker-jans-persistence-loader
 - https://github.com/GluuFederation/flex/tree/main/flex-cn-setup/pygluu/kubernetes/templates/helm/gluu/charts/persistence
 type: application
-version: 5.0.17
+version: 5.0.18

charts/gluu/gluu/charts/persistence/README.md

@@ -1,6 +1,6 @@
 # persistence
 
-![Version: 5.0.17](https://img.shields.io/badge/Version-5.0.17-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 5.0.0](https://img.shields.io/badge/AppVersion-5.0.0-informational?style=flat-square)
+![Version: 5.0.18](https://img.shields.io/badge/Version-5.0.18-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 5.0.0](https://img.shields.io/badge/AppVersion-5.0.0-informational?style=flat-square)
 
 Job to generate data and initial config for Gluu Server persistence layer.
 
@@ -33,7 +33,7 @@ Kubernetes: `>=v1.21.0-0`
 | image.pullPolicy | string | `"IfNotPresent"` | Image pullPolicy to use for deploying. |
 | image.pullSecrets | list | `[]` | Image Pull Secrets |
 | image.repository | string | `"gluufederation/persistence"` | Image  to use for deploying. |
-| image.tag | string | `"1.0.13_dev"` | Image  tag to use for deploying. |
+| image.tag | string | `"1.0.14-1"` | Image  tag to use for deploying. |
 | imagePullSecrets | list | `[]` |  |
 | lifecycle | object | `{}` |  |
 | nameOverride | string | `""` |  |

charts/gluu/gluu/charts/persistence/values.yaml

@@ -18,7 +18,7 @@ image:
   # -- Image  to use for deploying.
   repository: gluufederation/persistence
   # -- Image  tag to use for deploying.
-  tag: 1.0.13_dev
+  tag: 1.0.14-1
   # -- Image Pull Secrets
   pullSecrets: [ ]
 # -- Resource specs.

charts/gluu/gluu/charts/scim/Chart.yaml

@@ -17,4 +17,4 @@ sources:
 - https://github.com/JanssenProject/jans/docker-jans-scim
 - https://github.com/GluuFederation/flex/tree/main/flex-cn-setup/pygluu/kubernetes/templates/helm/gluu/charts/scim
 type: application
-version: 5.0.17
+version: 5.0.18

charts/gluu/gluu/charts/scim/README.md

@@ -1,6 +1,6 @@
 # scim
 
-![Version: 5.0.17](https://img.shields.io/badge/Version-5.0.17-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 5.0.0](https://img.shields.io/badge/AppVersion-5.0.0-informational?style=flat-square)
+![Version: 5.0.18](https://img.shields.io/badge/Version-5.0.18-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 5.0.0](https://img.shields.io/badge/AppVersion-5.0.0-informational?style=flat-square)
 
 System for Cross-domain Identity Management (SCIM) version 2.0
 
@@ -36,7 +36,7 @@ Kubernetes: `>=v1.21.0-0`
 | image.pullPolicy | string | `"IfNotPresent"` | Image pullPolicy to use for deploying. |
 | image.pullSecrets | list | `[]` | Image Pull Secrets |
 | image.repository | string | `"janssenproject/scim"` | Image  to use for deploying. |
-| image.tag | string | `"1.0.13_dev"` | Image  tag to use for deploying. |
+| image.tag | string | `"1.0.14-1"` | Image  tag to use for deploying. |
 | lifecycle | object | `{}` |  |
 | livenessProbe | object | `{"httpGet":{"path":"/jans-scim/sys/health-check","port":8080},"initialDelaySeconds":30,"periodSeconds":30,"timeoutSeconds":5}` | Configure the liveness healthcheck for SCIM if needed. |
 | livenessProbe.httpGet.path | string | `"/jans-scim/sys/health-check"` | http liveness probe endpoint |

charts/gluu/gluu/charts/scim/values.yaml

@@ -28,7 +28,7 @@ image:
   # -- Image  to use for deploying.
   repository: janssenproject/scim
   # -- Image  tag to use for deploying.
-  tag: 1.0.13_dev
+  tag: 1.0.14-1
   # -- Image Pull Secrets
   pullSecrets: [ ]
 # -- Service replica number.

charts/gluu/gluu/openbanking-values.yaml

@@ -28,7 +28,7 @@ auth-server:
     # -- Image  to use for deploying.
     repository: janssenproject/auth-server
     # -- Image  tag to use for deploying.
-    tag: 1.0.13_dev
+    tag: 1.0.14_dev
     # -- Image Pull Secrets
     pullSecrets: [ ]
   # -- Service replica number.
@@ -167,7 +167,7 @@ config:
     # -- Image  to use for deploying.
     repository: janssenproject/configurator
     # -- Image  tag to use for deploying.
-    tag: 1.0.13_dev
+    tag: 1.0.14_dev
     # -- Image Pull Secrets
     pullSecrets: [ ]
   # -- Organization name. Used for certificate creation.
@@ -231,7 +231,7 @@ config-api:
     # -- Image  to use for deploying.
     repository: janssenproject/config-api
     # -- Image  tag to use for deploying.
-    tag: 1.0.13_dev
+    tag: 1.0.14_dev
     # -- Image Pull Secrets
     pullSecrets: [ ]
   # -- Service replica number.
@@ -674,7 +674,7 @@ persistence:
     # -- Image  to use for deploying.
     repository: janssenproject/persistence-loader
     # -- Image  tag to use for deploying.
-    tag: 1.0.13_dev
+    tag: 1.0.14_dev
     # -- Image Pull Secrets
     pullSecrets: [ ]
   # -- Resource specs.

charts/gluu/gluu/values.yaml

@@ -106,7 +106,7 @@ admin-ui:
     # -- Image  to use for deploying.
     repository: ghcr.io/gluufederation/flex/admin-ui
     # -- Image  tag to use for deploying.
-    tag: 1.0.13_dev
+    tag: 1.0.14-1
     # -- Image Pull Secrets
     pullSecrets: [ ]
   # -- Service replica number.
@@ -203,7 +203,7 @@ auth-server:
     # -- Image  to use for deploying.
     repository: ghcr.io/janssenproject/jans/auth-server
     # -- Image  tag to use for deploying.
-    tag: 1.0.13_dev
+    tag: 1.0.14-1
     # -- Image Pull Secrets
     pullSecrets: [ ]
   # -- Service replica number.
@@ -276,7 +276,7 @@ auth-server-key-rotation:
     # -- Image  to use for deploying.
     repository: ghcr.io/janssenproject/jans/certmanager
     # -- Image  tag to use for deploying.
-    tag: 1.0.13_dev
+    tag: 1.0.14-1
     # -- Image Pull Secrets
     pullSecrets: [ ]
   # -- Auth server key rotation keys life in hours
@@ -357,7 +357,7 @@ casa:
     # -- Image  to use for deploying.
     repository: ghcr.io/gluufederation/flex/casa
     # -- Image  tag to use for deploying.
-    tag: 5.0.0_dev
+    tag: 5.0.0-13
     # -- Image Pull Secrets
     pullSecrets: [ ]
   # -- Service replica number.
@@ -535,7 +535,7 @@ config:
     # -- Image  to use for deploying.
     repository: ghcr.io/janssenproject/jans/configurator
     # -- Image  tag to use for deploying.
-    tag: 1.0.13_dev
+    tag: 1.0.14-1
     # -- Image Pull Secrets
     pullSecrets: [ ]
   # -- LDAP admin password if OpenDJ is used for persistence.
@@ -636,7 +636,7 @@ config-api:
     # -- Image  to use for deploying.
     repository: ghcr.io/janssenproject/jans/config-api
     # -- Image  tag to use for deploying.
-    tag: 1.0.13_dev
+    tag: 1.0.14-1
     # -- Image Pull Secrets
     pullSecrets: [ ]
   # -- Service replica number.
@@ -735,7 +735,7 @@ fido2:
     # -- Image  to use for deploying.
     repository: ghcr.io/janssenproject/jans/fido2
     # -- Image  tag to use for deploying.
-    tag: 1.0.13_dev
+    tag: 1.0.14-1
     # -- Image Pull Secrets
     pullSecrets: [ ]
   # -- Service replica number.
@@ -1618,7 +1618,7 @@ persistence:
     # -- Image  to use for deploying.
     repository: ghcr.io/janssenproject/jans/persistence-loader
     # -- Image  tag to use for deploying.
-    tag: 1.0.13_dev
+    tag: 1.0.14-1
     # -- Image Pull Secrets
     pullSecrets: [ ]
   # -- Resource specs.
@@ -1698,7 +1698,7 @@ scim:
     # -- Image  to use for deploying.
     repository: ghcr.io/janssenproject/jans/scim
     # -- Image  tag to use for deploying.
-    tag: 1.0.13_dev
+    tag: 1.0.14-1
     # -- Image Pull Secrets
     pullSecrets: [ ]
   # -- Service replica number.

charts/jenkins/jenkins/CHANGELOG.md

@@ -12,6 +12,23 @@ Use the following links to reference issues, PRs, and commits prior to v2.6.0.
 The changelog until v1.5.7 was auto-generated based on git commits.
 Those entries include a reference to the git commit to be able to get more details.
 
+## 4.3.27
+
+Bump kiwigrid/k8s-sidecar from 1.23.1 to 1.24.4 and jenkins/inbound-agent from 3107.v665000b_51092-5 to 3107.v665000b_51092-15.
+
+## 4.3.26
+
+Fix various typos in the chart documentation.
+
+## 4.3.25
+
+| plugin                | old version          | new version           |
+|-----------------------|----------------------|-----------------------|
+| kubernetes            | 3900.va_dce992317b_4 | 3937.vd7b_82db_e347b_ |
+| configuration-as-code | 1625.v27444588cc3d   | 1647.ve39ca_b_829b_42 |
+| git                   | 5.0.0                | 5.1.0                 |
+| ldap                  | 671.v2a_9192a_7419d  | 682.v7b_544c9d1512    |
+
 ## 4.3.24
 
 Update Jenkins image and appVersion to jenkins lts release version 2.401.1

charts/jenkins/jenkins/Chart.yaml

@@ -4,9 +4,9 @@ annotations:
     - name: jenkins
       image: jenkins/jenkins:2.401.1-jdk11
     - name: k8s-sidecar
-      image: kiwigrid/k8s-sidecar:1.23.1
+      image: kiwigrid/k8s-sidecar:1.24.4
     - name: inbound-agent
-      image: jenkins/inbound-agent:3107.v665000b_51092-5
+      image: jenkins/inbound-agent:3107.v665000b_51092-15
     - name: backup
       image: maorfr/kube-tasks:0.2.0
   artifacthub.io/license: Apache-2.0
@@ -49,4 +49,4 @@ sources:
 - https://github.com/jenkinsci/docker-inbound-agent
 - https://github.com/maorfr/kube-tasks
 - https://github.com/jenkinsci/configuration-as-code-plugin
-version: 4.3.24
+version: 4.3.27

charts/jenkins/jenkins/README.md

@@ -222,8 +222,8 @@ Further JCasC examples can be found [here](https://github.com/jenkinsci/configur
 
 #### Breaking out large Config as Code scripts
 
-Jenkins Config as Code scripts can become quite large, and maintaining all of your scripts within one yaml file can be difficult.  The Config as Code plugin itself suggests updating the `CASC_JENKINS_CONFIG` environment variable to be a comma seperated list of paths for the plugin to traverse, picking up the yaml files as needed.  
-However, under the Jenkins helm chart, this `CASC_JENKINS_CONFIG` value is maintained through the templates.  A better solution is to split your `controller.JCasC.configScripts` into seperate values files, and provide each file during the helm install.
+Jenkins Config as Code scripts can become quite large, and maintaining all of your scripts within one yaml file can be difficult.  The Config as Code plugin itself suggests updating the `CASC_JENKINS_CONFIG` environment variable to be a comma separated list of paths for the plugin to traverse, picking up the yaml files as needed.  
+However, under the Jenkins helm chart, this `CASC_JENKINS_CONFIG` value is maintained through the templates.  A better solution is to split your `controller.JCasC.configScripts` into separate values files, and provide each file during the helm install.
 
 For example, you can have a values file (e.g values_main.yaml) that defines the values described in the `VALUES_SUMMARY.md` for your Jenkins configuration:
 

charts/jenkins/jenkins/VALUES_SUMMARY.md

@@ -21,19 +21,19 @@ The following tables list the configurable parameters of the Jenkins chart and t
 
 #### Jenkins Configuration as Code (JCasC)
 
-| Parameter                         | Description                          | Default                                   |
-| --------------------------------- | ------------------------------------ | ----------------------------------------- |
-| `controller.JCasC.defaultConfig`      | Enables default Jenkins configuration via configuration as code plugin | `true`  |
-| `controller.JCasC.configScripts`      | List of Jenkins Config as Code scripts | `{}`                                    |
-| `controller.JCasC.security`      | Jenkins Config as Code for Security section | `legacy`                             |
-| `controller.JCasC.securityRealm`      | Jenkins Config as Code for Security Realm | `legacy`                             |
-| `controller.JCasC.authorizationStrategy` | Jenkins Config as Code for Authorization Strategy | `loggedInUsersCanDoAnything` |
-| `controller.sidecars.configAutoReload` | Jenkins Config as Code auto-reload settings |                                   |
-| `controller.sidecars.configAutoReload.enabled` | Jenkins Config as Code auto-reload settings (Attention: rbac needs to be enabled otherwise the sidecar can't read the config map) | `true`                                                      |
-| `controller.sidecars.configAutoReload.image` | Image which triggers the reload | `kiwigrid/k8s-sidecar:1.23.1`           |
-| `controller.sidecars.configAutoReload.reqRetryConnect` | How many connection-related errors to retry on  | `10`          |
-| `controller.sidecars.configAutoReload.envFrom` | Environment variable sources for the Jenkins Config as Code auto-reload container | Not set |
-| `controller.sidecars.configAutoReload.env` | Environment variables for the Jenkins Config as Code auto-reload container  | Not set |
+| Parameter                         | Description                          | Default                                                           |
+| --------------------------------- | ------------------------------------ |-------------------------------------------------------------------|
+| `controller.JCasC.defaultConfig`      | Enables default Jenkins configuration via configuration as code plugin | `true`                                                            |
+| `controller.JCasC.configScripts`      | List of Jenkins Config as Code scripts | `{}`                                                              |
+| `controller.JCasC.security`      | Jenkins Config as Code for Security section | `legacy`                                                          |
+| `controller.JCasC.securityRealm`      | Jenkins Config as Code for Security Realm | `legacy`                                                          |
+| `controller.JCasC.authorizationStrategy` | Jenkins Config as Code for Authorization Strategy | `loggedInUsersCanDoAnything`                                      |
+| `controller.sidecars.configAutoReload` | Jenkins Config as Code auto-reload settings |                                                                   |
+| `controller.sidecars.configAutoReload.enabled` | Jenkins Config as Code auto-reload settings (Attention: rbac needs to be enabled otherwise the sidecar can't read the config map) | `true`                                                            |
+| `controller.sidecars.configAutoReload.image` | Image which triggers the reload | `kiwigrid/k8s-sidecar:1.24.4`                                     |
+| `controller.sidecars.configAutoReload.reqRetryConnect` | How many connection-related errors to retry on  | `10`                                                              |
+| `controller.sidecars.configAutoReload.envFrom` | Environment variable sources for the Jenkins Config as Code auto-reload container | Not set                                                           |
+| `controller.sidecars.configAutoReload.env` | Environment variables for the Jenkins Config as Code auto-reload container  | Not set                                                           |
 | `controller.sidecars.configAutoReload.containerSecurityContext` | Enable container security context | `{readOnlyRootFilesystem: true, allowPrivilegeEscalation: false}` |
 
 #### Jenkins Configuration Files & Scripts

charts/jenkins/jenkins/values.yaml

@@ -241,10 +241,10 @@ controller:
 
   # List of plugins to be install during Jenkins controller start
   installPlugins:
-    - kubernetes:3900.va_dce992317b_4
+    - kubernetes:3937.vd7b_82db_e347b_
     - workflow-aggregator:596.v8c21c963d92d
-    - git:5.0.0
-    - configuration-as-code:1625.v27444588cc3d
+    - git:5.1.0
+    - configuration-as-code:1647.ve39ca_b_829b_42
 
   # Set to false to download the minimum required version of all dependencies.
   installLatestPlugins: true
@@ -363,7 +363,7 @@ controller:
       # jcasc changes will cause a reboot and will only be applied at the subsequent start-up.  Auto-reload uses the
       # http://<jenkins_url>/reload-configuration-as-code endpoint to reapply config when changes to the configScripts are detected.
       enabled: true
-      image: kiwigrid/k8s-sidecar:1.23.1
+      image: kiwigrid/k8s-sidecar:1.24.4
       imagePullPolicy: IfNotPresent
       resources: {}
         #   limits:
@@ -626,7 +626,7 @@ agent:
   maxRequestsPerHostStr: "32"
   namespace:
   image: "jenkins/inbound-agent"
-  tag: "3107.v665000b_51092-5"
+  tag: "3107.v665000b_51092-15"
   workingDir: "/home/jenkins/agent"
   nodeUsageMode: "NORMAL"
   customJenkinsLabels: []

charts/prophetstor/federatorai/.helmignore

@@ -0,0 +1,24 @@
+# Patterns to ignore when building packages.
+# This supports shell glob matching, relative path matching, and
+# negation (prefixed with !). Only one pattern per line.
+.DS_Store
+# Common VCS dirs
+.git/
+.gitignore
+.bzr/
+.bzrignore
+.hg/
+.hgignore
+.svn/
+# Common backup files
+*.swp
+*.bak
+*.tmp
+tmp/
+archives/
+*~
+# Various IDEs
+.project
+.idea/
+*.tmproj
+.vscode/

charts/prophetstor/federatorai/Chart.yaml

@@ -4,7 +4,7 @@ annotations:
   catalog.cattle.io/kube-version: '>= 1.16.0-0'
   catalog.cattle.io/release-name: federatorai
 apiVersion: v2
-appVersion: 5.1.1-ga
+appVersion: 5.1.2-ga
 description: Federator.ai helps enterprises optimize cloud resources, maximize application
   performance, and save significant cost without excessive over-provisioning or under-provisioning
   of resources, meeting the service-level requirements of their applications.
@@ -24,4 +24,4 @@ maintainers:
 name: federatorai
 sources:
 - https://www.prophetstor.com
-version: 5.1.1
+version: 5.1.2

charts/prophetstor/federatorai/README.md

@@ -98,7 +98,8 @@ Their default values and other configurable parameters are specified inside valu
 | global.commonLabels                                            | Common labels to be added to resources                                                                                             |
 | global.podAnnotations                                          | Annotations to be added to pods                                                                                                    |
 | global.podLabels                                               | Labels to be added to pods                                                                                                         |
-| global.resourcesEnabled                                        | Boolean to specify if you want to apply resources limits/requests settings                                                         |
+| global.resourcesLimitsEnabled                                  | Boolean to specify if you want to apply resources limits settings                                                                  |
+| global.resourcesRequestsEnabled                                | Boolean to specify if you want to apply resources requests settings                                                                |
 
 
 ### alamedaAi Parameters
@@ -108,6 +109,13 @@ Their default values and other configurable parameters are specified inside valu
 | alamedaAi.persistence.dataStorageSize                          | Persistence storage size for data volume                                                                                           |
 
 
+### alamedaExecutor Parameters
+
+| Parameter                                                      | Description                                      |
+| -------------------------------------------------------------- | ------------------------------------------------ |
+| alamedaExecutor.enabled                                        | Enable deployment of alameda-executor            |
+
+
 ### alamedaInfluxdb Parameters
 
 | Parameter                                                      | Description                                      |
@@ -149,6 +157,13 @@ Their default values and other configurable parameters are specified inside valu
 | federatoraiDashboardFrontend.service.annotations               | Additional annotations for REST service                                                                                            |
 
 
+### federatoraiOperator Parameters
+
+| Parameter                                                      | Description                                      |
+| -------------------------------------------------------------- | ------------------------------------------------ |
+| federatoraiOperator.enabled                                    | Enable deployment of federatorai-operator        |
+
+
 ### federatoraiPostgresql Parameters
 
 | Parameter                                                        | Description                                      |

charts/prophetstor/federatorai/crds/crd-alamedaservice.yaml

@@ -50,6 +50,10 @@ spec:
             properties:
               alameda-dispatcher:
                 properties:
+                  annotations:
+                    additionalProperties:
+                      type: string
+                    type: object
                   bootstrap:
                     properties:
                       image:
@@ -174,6 +178,10 @@ spec:
                     description: PullPolicy describes a policy for if/when to pull
                       a container image
                     type: string
+                  labels:
+                    additionalProperties:
+                      type: string
+                    type: object
                   replicas:
                     format: int32
                     minimum: 0
@@ -234,6 +242,10 @@ spec:
                 type: object
               alamedaAi:
                 properties:
+                  annotations:
+                    additionalProperties:
+                      type: string
+                    type: object
                   bootstrap:
                     properties:
                       image:
@@ -358,6 +370,10 @@ spec:
                     description: PullPolicy describes a policy for if/when to pull
                       a container image
                     type: string
+                  labels:
+                    additionalProperties:
+                      type: string
+                    type: object
                   replicas:
                     format: int32
                     minimum: 0
@@ -418,6 +434,10 @@ spec:
                 type: object
               alamedaDatahub:
                 properties:
+                  annotations:
+                    additionalProperties:
+                      type: string
+                    type: object
                   bootstrap:
                     properties:
                       image:
@@ -542,6 +562,10 @@ spec:
                     description: PullPolicy describes a policy for if/when to pull
                       a container image
                     type: string
+                  labels:
+                    additionalProperties:
+                      type: string
+                    type: object
                   replicas:
                     format: int32
                     minimum: 0
@@ -602,6 +626,10 @@ spec:
                 type: object
               alamedaExecutor:
                 properties:
+                  annotations:
+                    additionalProperties:
+                      type: string
+                    type: object
                   bootstrap:
                     properties:
                       image:
@@ -726,6 +754,10 @@ spec:
                     description: PullPolicy describes a policy for if/when to pull
                       a container image
                     type: string
+                  labels:
+                    additionalProperties:
+                      type: string
+                    type: object
                   replicas:
                     format: int32
                     minimum: 0
@@ -786,6 +818,10 @@ spec:
                 type: object
               alamedaInfluxdb:
                 properties:
+                  annotations:
+                    additionalProperties:
+                      type: string
+                    type: object
                   bootstrap:
                     properties:
                       image:
@@ -910,6 +946,10 @@ spec:
                     description: PullPolicy describes a policy for if/when to pull
                       a container image
                     type: string
+                  labels:
+                    additionalProperties:
+                      type: string
+                    type: object
                   replicas:
                     format: int32
                     minimum: 0
@@ -970,6 +1010,10 @@ spec:
                 type: object
               alamedaNotifier:
                 properties:
+                  annotations:
+                    additionalProperties:
+                      type: string
+                    type: object
                   bootstrap:
                     properties:
                       image:
@@ -1094,6 +1138,10 @@ spec:
                     description: PullPolicy describes a policy for if/when to pull
                       a container image
                     type: string
+                  labels:
+                    additionalProperties:
+                      type: string
+                    type: object
                   replicas:
                     format: int32
                     minimum: 0
@@ -1154,6 +1202,10 @@ spec:
                 type: object
               alamedaRabbitMQ:
                 properties:
+                  annotations:
+                    additionalProperties:
+                      type: string
+                    type: object
                   bootstrap:
                     properties:
                       image:
@@ -1278,6 +1330,10 @@ spec:
                     description: PullPolicy describes a policy for if/when to pull
                       a container image
                     type: string
+                  labels:
+                    additionalProperties:
+                      type: string
+                    type: object
                   replicas:
                     format: int32
                     minimum: 0
@@ -1336,6 +1392,10 @@ spec:
                       type: object
                     type: array
                 type: object
+              annotations:
+                additionalProperties:
+                  type: string
+                type: object
               enableExecution:
                 type: boolean
               enablePreloader:
@@ -1446,6 +1506,10 @@ spec:
                 type: array
               fedemeter:
                 properties:
+                  annotations:
+                    additionalProperties:
+                      type: string
+                    type: object
                   bootstrap:
                     properties:
                       image:
@@ -1570,6 +1634,10 @@ spec:
                     description: PullPolicy describes a policy for if/when to pull
                       a container image
                     type: string
+                  labels:
+                    additionalProperties:
+                      type: string
+                    type: object
                   replicas:
                     format: int32
                     minimum: 0
@@ -1630,6 +1698,10 @@ spec:
                 type: object
               fedemeterInfluxdb:
                 properties:
+                  annotations:
+                    additionalProperties:
+                      type: string
+                    type: object
                   bootstrap:
                     properties:
                       image:
@@ -1754,6 +1826,10 @@ spec:
                     description: PullPolicy describes a policy for if/when to pull
                       a container image
                     type: string
+                  labels:
+                    additionalProperties:
+                      type: string
+                    type: object
                   replicas:
                     format: int32
                     minimum: 0
@@ -1814,6 +1890,10 @@ spec:
                 type: object
               federatoraiAgent:
                 properties:
+                  annotations:
+                    additionalProperties:
+                      type: string
+                    type: object
                   bootstrap:
                     properties:
                       image:
@@ -1938,6 +2018,10 @@ spec:
                     description: PullPolicy describes a policy for if/when to pull
                       a container image
                     type: string
+                  labels:
+                    additionalProperties:
+                      type: string
+                    type: object
                   replicas:
                     format: int32
                     minimum: 0
@@ -1998,6 +2082,10 @@ spec:
                 type: object
               federatoraiAgentPreloader:
                 properties:
+                  annotations:
+                    additionalProperties:
+                      type: string
+                    type: object
                   bootstrap:
                     properties:
                       image:
@@ -2122,6 +2210,394 @@ spec:
                     description: PullPolicy describes a policy for if/when to pull
                       a container image
                     type: string
+                  labels:
+                    additionalProperties:
+                      type: string
+                    type: object
+                  replicas:
+                    format: int32
+                    minimum: 0
+                    type: integer
+                  resources:
+                    description: ResourceRequirements describes the compute resource
+                      requirements.
+                    properties:
+                      limits:
+                        additionalProperties:
+                          anyOf:
+                          - type: integer
+                          - type: string
+                          pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$
+                          x-kubernetes-int-or-string: true
+                        description: 'Limits describes the maximum amount of compute
+                          resources allowed. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/'
+                        type: object
+                      requests:
+                        additionalProperties:
+                          anyOf:
+                          - type: integer
+                          - type: string
+                          pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$
+                          x-kubernetes-int-or-string: true
+                        description: 'Requests describes the minimum amount of compute
+                          resources required. If Requests is omitted for a container,
+                          it defaults to Limits if that is explicitly specified, otherwise
+                          to an implementation-defined value. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/'
+                        type: object
+                    type: object
+                  storages:
+                    items:
+                      properties:
+                        accessModes:
+                          items:
+                            type: string
+                          type: array
+                        class:
+                          type: string
+                        size:
+                          type: string
+                        type:
+                          enum:
+                          - pvc
+                          - ephemeral
+                          type: string
+                        usage:
+                          enum:
+                          - log
+                          - data
+                          type: string
+                      required:
+                      - type
+                      - usage
+                      type: object
+                    type: array
+                type: object
+              federatoraiAlertDetector:
+                properties:
+                  annotations:
+                    additionalProperties:
+                      type: string
+                    type: object
+                  bootstrap:
+                    properties:
+                      image:
+                        type: string
+                      imagepullpolicy:
+                        description: PullPolicy describes a policy for if/when to
+                          pull a container image
+                        type: string
+                    type: object
+                  env:
+                    items:
+                      description: EnvVar represents an environment variable present
+                        in a Container.
+                      properties:
+                        name:
+                          description: Name of the environment variable. Must be a
+                            C_IDENTIFIER.
+                          type: string
+                        value:
+                          description: 'Variable references $(VAR_NAME) are expanded
+                            using the previously defined environment variables in
+                            the container and any service environment variables. If
+                            a variable cannot be resolved, the reference in the input
+                            string will be unchanged. Double $$ are reduced to a single
+                            $, which allows for escaping the $(VAR_NAME) syntax: i.e.
+                            "$$(VAR_NAME)" will produce the string literal "$(VAR_NAME)".
+                            Escaped references will never be expanded, regardless
+                            of whether the variable exists or not. Defaults to "".'
+                          type: string
+                        valueFrom:
+                          description: Source for the environment variable's value.
+                            Cannot be used if value is not empty.
+                          properties:
+                            configMapKeyRef:
+                              description: Selects a key of a ConfigMap.
+                              properties:
+                                key:
+                                  description: The key to select.
+                                  type: string
+                                name:
+                                  description: 'Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names
+                                    TODO: Add other useful fields. apiVersion, kind,
+                                    uid?'
+                                  type: string
+                                optional:
+                                  description: Specify whether the ConfigMap or its
+                                    key must be defined
+                                  type: boolean
+                              required:
+                              - key
+                              type: object
+                            fieldRef:
+                              description: 'Selects a field of the pod: supports metadata.name,
+                                metadata.namespace, `metadata.labels[''<KEY>'']`,
+                                `metadata.annotations[''<KEY>'']`, spec.nodeName,
+                                spec.serviceAccountName, status.hostIP, status.podIP,
+                                status.podIPs.'
+                              properties:
+                                apiVersion:
+                                  description: Version of the schema the FieldPath
+                                    is written in terms of, defaults to "v1".
+                                  type: string
+                                fieldPath:
+                                  description: Path of the field to select in the
+                                    specified API version.
+                                  type: string
+                              required:
+                              - fieldPath
+                              type: object
+                            resourceFieldRef:
+                              description: 'Selects a resource of the container: only
+                                resources limits and requests (limits.cpu, limits.memory,
+                                limits.ephemeral-storage, requests.cpu, requests.memory
+                                and requests.ephemeral-storage) are currently supported.'
+                              properties:
+                                containerName:
+                                  description: 'Container name: required for volumes,
+                                    optional for env vars'
+                                  type: string
+                                divisor:
+                                  anyOf:
+                                  - type: integer
+                                  - type: string
+                                  description: Specifies the output format of the
+                                    exposed resources, defaults to "1"
+                                  pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$
+                                  x-kubernetes-int-or-string: true
+                                resource:
+                                  description: 'Required: resource to select'
+                                  type: string
+                              required:
+                              - resource
+                              type: object
+                            secretKeyRef:
+                              description: Selects a key of a secret in the pod's
+                                namespace
+                              properties:
+                                key:
+                                  description: The key of the secret to select from.  Must
+                                    be a valid secret key.
+                                  type: string
+                                name:
+                                  description: 'Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names
+                                    TODO: Add other useful fields. apiVersion, kind,
+                                    uid?'
+                                  type: string
+                                optional:
+                                  description: Specify whether the Secret or its key
+                                    must be defined
+                                  type: boolean
+                              required:
+                              - key
+                              type: object
+                          type: object
+                      required:
+                      - name
+                      type: object
+                    type: array
+                  image:
+                    type: string
+                  imagepullpolicy:
+                    description: PullPolicy describes a policy for if/when to pull
+                      a container image
+                    type: string
+                  labels:
+                    additionalProperties:
+                      type: string
+                    type: object
+                  replicas:
+                    format: int32
+                    minimum: 0
+                    type: integer
+                  resources:
+                    description: ResourceRequirements describes the compute resource
+                      requirements.
+                    properties:
+                      limits:
+                        additionalProperties:
+                          anyOf:
+                          - type: integer
+                          - type: string
+                          pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$
+                          x-kubernetes-int-or-string: true
+                        description: 'Limits describes the maximum amount of compute
+                          resources allowed. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/'
+                        type: object
+                      requests:
+                        additionalProperties:
+                          anyOf:
+                          - type: integer
+                          - type: string
+                          pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$
+                          x-kubernetes-int-or-string: true
+                        description: 'Requests describes the minimum amount of compute
+                          resources required. If Requests is omitted for a container,
+                          it defaults to Limits if that is explicitly specified, otherwise
+                          to an implementation-defined value. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/'
+                        type: object
+                    type: object
+                  storages:
+                    items:
+                      properties:
+                        accessModes:
+                          items:
+                            type: string
+                          type: array
+                        class:
+                          type: string
+                        size:
+                          type: string
+                        type:
+                          enum:
+                          - pvc
+                          - ephemeral
+                          type: string
+                        usage:
+                          enum:
+                          - log
+                          - data
+                          type: string
+                      required:
+                      - type
+                      - usage
+                      type: object
+                    type: array
+                type: object
+              federatoraiAlertManager:
+                properties:
+                  annotations:
+                    additionalProperties:
+                      type: string
+                    type: object
+                  bootstrap:
+                    properties:
+                      image:
+                        type: string
+                      imagepullpolicy:
+                        description: PullPolicy describes a policy for if/when to
+                          pull a container image
+                        type: string
+                    type: object
+                  env:
+                    items:
+                      description: EnvVar represents an environment variable present
+                        in a Container.
+                      properties:
+                        name:
+                          description: Name of the environment variable. Must be a
+                            C_IDENTIFIER.
+                          type: string
+                        value:
+                          description: 'Variable references $(VAR_NAME) are expanded
+                            using the previously defined environment variables in
+                            the container and any service environment variables. If
+                            a variable cannot be resolved, the reference in the input
+                            string will be unchanged. Double $$ are reduced to a single
+                            $, which allows for escaping the $(VAR_NAME) syntax: i.e.
+                            "$$(VAR_NAME)" will produce the string literal "$(VAR_NAME)".
+                            Escaped references will never be expanded, regardless
+                            of whether the variable exists or not. Defaults to "".'
+                          type: string
+                        valueFrom:
+                          description: Source for the environment variable's value.
+                            Cannot be used if value is not empty.
+                          properties:
+                            configMapKeyRef:
+                              description: Selects a key of a ConfigMap.
+                              properties:
+                                key:
+                                  description: The key to select.
+                                  type: string
+                                name:
+                                  description: 'Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names
+                                    TODO: Add other useful fields. apiVersion, kind,
+                                    uid?'
+                                  type: string
+                                optional:
+                                  description: Specify whether the ConfigMap or its
+                                    key must be defined
+                                  type: boolean
+                              required:
+                              - key
+                              type: object
+                            fieldRef:
+                              description: 'Selects a field of the pod: supports metadata.name,
+                                metadata.namespace, `metadata.labels[''<KEY>'']`,
+                                `metadata.annotations[''<KEY>'']`, spec.nodeName,
+                                spec.serviceAccountName, status.hostIP, status.podIP,
+                                status.podIPs.'
+                              properties:
+                                apiVersion:
+                                  description: Version of the schema the FieldPath
+                                    is written in terms of, defaults to "v1".
+                                  type: string
+                                fieldPath:
+                                  description: Path of the field to select in the
+                                    specified API version.
+                                  type: string
+                              required:
+                              - fieldPath
+                              type: object
+                            resourceFieldRef:
+                              description: 'Selects a resource of the container: only
+                                resources limits and requests (limits.cpu, limits.memory,
+                                limits.ephemeral-storage, requests.cpu, requests.memory
+                                and requests.ephemeral-storage) are currently supported.'
+                              properties:
+                                containerName:
+                                  description: 'Container name: required for volumes,
+                                    optional for env vars'
+                                  type: string
+                                divisor:
+                                  anyOf:
+                                  - type: integer
+                                  - type: string
+                                  description: Specifies the output format of the
+                                    exposed resources, defaults to "1"
+                                  pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$
+                                  x-kubernetes-int-or-string: true
+                                resource:
+                                  description: 'Required: resource to select'
+                                  type: string
+                              required:
+                              - resource
+                              type: object
+                            secretKeyRef:
+                              description: Selects a key of a secret in the pod's
+                                namespace
+                              properties:
+                                key:
+                                  description: The key of the secret to select from.  Must
+                                    be a valid secret key.
+                                  type: string
+                                name:
+                                  description: 'Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names
+                                    TODO: Add other useful fields. apiVersion, kind,
+                                    uid?'
+                                  type: string
+                                optional:
+                                  description: Specify whether the Secret or its key
+                                    must be defined
+                                  type: boolean
+                              required:
+                              - key
+                              type: object
+                          type: object
+                      required:
+                      - name
+                      type: object
+                    type: array
+                  image:
+                    type: string
+                  imagepullpolicy:
+                    description: PullPolicy describes a policy for if/when to pull
+                      a container image
+                    type: string
+                  labels:
+                    additionalProperties:
+                      type: string
+                    type: object
                   replicas:
                     format: int32
                     minimum: 0
@@ -2182,6 +2658,10 @@ spec:
                 type: object
               federatoraiBackend:
                 properties:
+                  annotations:
+                    additionalProperties:
+                      type: string
+                    type: object
                   bootstrap:
                     properties:
                       image:
@@ -2306,6 +2786,10 @@ spec:
                     description: PullPolicy describes a policy for if/when to pull
                       a container image
                     type: string
+                  labels:
+                    additionalProperties:
+                      type: string
+                    type: object
                   replicas:
                     format: int32
                     minimum: 0
@@ -2366,6 +2850,10 @@ spec:
                 type: object
               federatoraiDataAdapter:
                 properties:
+                  annotations:
+                    additionalProperties:
+                      type: string
+                    type: object
                   bootstrap:
                     properties:
                       image:
@@ -2490,6 +2978,10 @@ spec:
                     description: PullPolicy describes a policy for if/when to pull
                       a container image
                     type: string
+                  labels:
+                    additionalProperties:
+                      type: string
+                    type: object
                   replicas:
                     format: int32
                     minimum: 0
@@ -2550,6 +3042,10 @@ spec:
                 type: object
               federatoraiFrontend:
                 properties:
+                  annotations:
+                    additionalProperties:
+                      type: string
+                    type: object
                   bootstrap:
                     properties:
                       image:
@@ -2674,6 +3170,10 @@ spec:
                     description: PullPolicy describes a policy for if/when to pull
                       a container image
                     type: string
+                  labels:
+                    additionalProperties:
+                      type: string
+                    type: object
                   replicas:
                     format: int32
                     minimum: 0
@@ -2734,6 +3234,10 @@ spec:
                 type: object
               federatoraiPostgreSQL:
                 properties:
+                  annotations:
+                    additionalProperties:
+                      type: string
+                    type: object
                   bootstrap:
                     properties:
                       image:
@@ -2858,6 +3362,10 @@ spec:
                     description: PullPolicy describes a policy for if/when to pull
                       a container image
                     type: string
+                  labels:
+                    additionalProperties:
+                      type: string
+                    type: object
                   replicas:
                     format: int32
                     minimum: 0
@@ -2918,6 +3426,10 @@ spec:
                 type: object
               federatoraiRecommendDispatcher:
                 properties:
+                  annotations:
+                    additionalProperties:
+                      type: string
+                    type: object
                   bootstrap:
                     properties:
                       image:
@@ -3042,6 +3554,10 @@ spec:
                     description: PullPolicy describes a policy for if/when to pull
                       a container image
                     type: string
+                  labels:
+                    additionalProperties:
+                      type: string
+                    type: object
                   replicas:
                     format: int32
                     minimum: 0
@@ -3102,6 +3618,10 @@ spec:
                 type: object
               federatoraiRecommendWorker:
                 properties:
+                  annotations:
+                    additionalProperties:
+                      type: string
+                    type: object
                   bootstrap:
                     properties:
                       image:
@@ -3226,6 +3746,10 @@ spec:
                     description: PullPolicy describes a policy for if/when to pull
                       a container image
                     type: string
+                  labels:
+                    additionalProperties:
+                      type: string
+                    type: object
                   replicas:
                     format: int32
                     minimum: 0
@@ -3286,6 +3810,10 @@ spec:
                 type: object
               federatoraiRest:
                 properties:
+                  annotations:
+                    additionalProperties:
+                      type: string
+                    type: object
                   bootstrap:
                     properties:
                       image:
@@ -3410,6 +3938,10 @@ spec:
                     description: PullPolicy describes a policy for if/when to pull
                       a container image
                     type: string
+                  labels:
+                    additionalProperties:
+                      type: string
+                    type: object
                   replicas:
                     format: int32
                     minimum: 0
@@ -3470,6 +4002,10 @@ spec:
                 type: object
               imageLocation:
                 type: string
+              labels:
+                additionalProperties:
+                  type: string
+                type: object
               resources:
                 description: ResourceRequirements describes the compute resource requirements.
                 properties:

charts/prophetstor/federatorai/questions.yaml

@@ -1,5 +1,5 @@
 questions:
-#image configurations
+# image configurations
 - variable: defaultImage
   default: true
   description: "Use default Federator.ai image or specify a custom one"
@@ -15,12 +15,12 @@ questions:
     group: "Container Images"
     label: Federator.ai Image Registry
   - variable: global.imageTag
-    default: "v5.1.1-ga"
+    default: "v5.1.2-gz"
     description: "Federator.ai image tag"
     type: string
     group: "Container Images"
     label: Federator.ai Image Tag
-#service configurations
+# service configurations
 - variable: federatoraiDashboardFrontend.service.nodePort
   required: true
   default: "31012"

charts/prophetstor/federatorai/templates/alameda-ai-dispatcher/clusterrolebindings.yaml

@@ -1,16 +0,0 @@
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRoleBinding
-metadata:
-  annotations: {{ include "render-value" ( dict "value" .Values.global.commonAnnotations "context" .) | nindent 4 }}
-  labels: {{ include "render-value" ( dict "value" .Values.global.commonLabels "context" .) | nindent 4 }}
-    app.kubernetes.io/part-of: federatorai
-    app: alameda
-  name: {{ .Release.Namespace }}-alameda-ai-dispatcher
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: ClusterRole
-  name: {{ .Release.Namespace }}-alameda-ai-dispatcher
-subjects:
-- kind: ServiceAccount
-  name: alameda-ai-dispatcher
-  namespace: {{ .Release.Namespace }}

charts/prophetstor/federatorai/templates/alameda-ai-dispatcher/clusterroles.yaml

@@ -1,21 +0,0 @@
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRole
-metadata:
-  annotations: {{ include "render-value" ( dict "value" .Values.global.commonAnnotations "context" .) | nindent 4 }}
-  labels: {{ include "render-value" ( dict "value" .Values.global.commonLabels "context" .) | nindent 4 }}
-    app.kubernetes.io/part-of: federatorai
-    app: alameda
-  name: {{ .Release.Namespace }}-alameda-ai-dispatcher
-rules:
-- apiGroups:
-  - policy
-  resources:
-  - podsecuritypolicies
-  verbs:
-  - use
-- apiGroups:
-  - security.openshift.io
-  resources:
-  - securitycontextconstraints
-  verbs:
-  - use

charts/prophetstor/federatorai/templates/alameda-ai-dispatcher/configmaps.yaml

@@ -1,3 +1,4 @@
+---
 apiVersion: v1
 data:
   ai-dispatcher.toml: |-
@@ -39,8 +40,14 @@ data:
     outputLevel = "info" # debug, info, warn, error, fatal, none
 kind: ConfigMap
 metadata:
-  annotations: {{ include "render-value" ( dict "value" .Values.global.commonAnnotations "context" .) | nindent 4 }}
-  labels: {{ include "render-value" ( dict "value" .Values.global.commonLabels "context" .) | nindent 4 }}
+  annotations:
+{{- if .Values.global.commonAnnotations }}
+{{- include "render-value" ( dict "value" .Values.global.commonAnnotations "context" .) | nindent 4 }}
+{{- end }}
+  labels:
+{{- if .Values.global.commonLabels }}
+{{- include "render-value" ( dict "value" .Values.global.commonLabels "context" .) | nindent 4 }}
+{{- end }}
     app.kubernetes.io/part-of: federatorai
     app: alameda
   name: alameda-ai-dispatcher-config

charts/prophetstor/federatorai/templates/alameda-ai-dispatcher/deployments.yaml

@@ -1,8 +1,15 @@
+---
 apiVersion: apps/v1
 kind: Deployment
 metadata:
-  annotations: {{- include "render-value" ( dict "value" .Values.global.commonAnnotations "context" .) | nindent 4 }}
-  labels: {{- include "render-value" ( dict "value" .Values.global.commonLabels "context" .) | nindent 4 }}
+  annotations:
+{{- if .Values.global.commonAnnotations }}
+{{- include "render-value" ( dict "value" .Values.global.commonAnnotations "context" .) | nindent 4 }}
+{{- end }}
+  labels:
+{{- if .Values.global.commonLabels }}
+{{- include "render-value" ( dict "value" .Values.global.commonLabels "context" .) | nindent 4 }}
+{{- end }}
     app.kubernetes.io/part-of: federatorai
     app: alameda
     component: alameda-ai-dispatcher
@@ -18,84 +25,106 @@ spec:
     type: Recreate
   template:
     metadata:
-      annotations: {{ include "render-value" ( dict "value" .Values.global.podAnnotations "context" .) | nindent 8 }}
-      labels: {{ include "render-value" ( dict "value" .Values.global.podLabels "context" .) | nindent 8 }}
+      annotations:
+{{- if .Values.global.podAnnotations }}
+{{- include "render-value" ( dict "value" .Values.global.podAnnotations "context" .) | nindent 8 }}
+{{- end }}
+      labels:
+{{- if .Values.global.podLabels }}
+{{- include "render-value" ( dict "value" .Values.global.podLabels "context" .) | nindent 8 }}
+{{- end }}
         app.kubernetes.io/part-of: federatorai
         app: alameda
         component: alameda-ai-dispatcher
     spec:
-      affinity: {{- include "render-value" ( dict "value" .Values.alamedaAiDispatcher.affinity "context" .) | nindent 8 }}
+      affinity:
+{{- if .Values.alamedaAiDispatcher.affinity }}
+{{- include "render-value" ( dict "value" .Values.alamedaAiDispatcher.affinity "context" .) | nindent 8 }}
+{{- end }}
       containers:
-      - env:
-        - name: NAMESPACE_NAME
-          valueFrom:
-            fieldRef:
-              apiVersion: v1
-              fieldPath: metadata.namespace
-        - name: POD_NAME
-          valueFrom:
-            fieldRef:
-              apiVersion: v1
-              fieldPath: metadata.name
-        - name: ALAMEDA_AI_DISPATCHER_DATAHUB_ADDRESS
-          value: alameda-datahub.{{ .Release.Namespace }}.svc:50050
-        - name: ALAMEDA_AI_DISPATCHER_QUEUE_URL
-          value: amqp://admin:adminpass@alameda-rabbitmq.{{ .Release.Namespace }}.svc:5672
-        - name: FEDERATORAI_MAXIMUM_LOG_SIZE
-          value: "1932735283"
-        image: {{ .Values.global.imageRegistry }}/alameda-ai-dispatcher:{{ .Values.global.imageTag }}
-        imagePullPolicy: {{ .Values.global.imagePullPolicy }}
-        livenessProbe:
-          exec:
-            command:
-            - /usr/local/bin/ai-dispatcher
-            - probe
-            - --type=liveness
-          failureThreshold: 5
-          initialDelaySeconds: 60
-          periodSeconds: 60
-          successThreshold: 1
-          timeoutSeconds: 300
-        name: ai-dispatcher
-        ports:
-        - containerPort: 9091
-          name: metrics
-          protocol: TCP
-        readinessProbe:
-          exec:
-            command:
-            - /usr/local/bin/ai-dispatcher
-            - probe
-            - --type=readiness
-          failureThreshold: 3
-          initialDelaySeconds: 60
-          periodSeconds: 60
-          successThreshold: 1
-          timeoutSeconds: 60
-        resources:
-        {{- if .Values.global.resourcesEnabled }}
-          {{ include "render-value" ( dict "value" .Values.alamedaAiDispatcher.resources "context" .) | nindent 10 }}
-        {{- end }}
-        volumeMounts:
-        - mountPath: /var/log/alameda
-          name: alameda-dispatcher-log-storage
-        - mountPath: /etc/alameda/ai-dispatcher/ai-dispatcher.toml
-          name: alameda-ai-dispatcher-config
-          subPath: ai-dispatcher.toml
-      imagePullSecrets: {{ include "render-value" ( dict "value" .Values.global.imagePullSecrets "context" .) | nindent 8 }}
+        - env:
+            - name: NAMESPACE_NAME
+              valueFrom:
+                fieldRef:
+                  apiVersion: v1
+                  fieldPath: metadata.namespace
+            - name: POD_NAME
+              valueFrom:
+                fieldRef:
+                  apiVersion: v1
+                  fieldPath: metadata.name
+            - name: ALAMEDA_AI_DISPATCHER_DATAHUB_ADDRESS
+              value: alameda-datahub.{{ .Release.Namespace }}.svc:50050
+            - name: ALAMEDA_AI_DISPATCHER_QUEUE_URL
+              value: amqp://admin:adminpass@alameda-rabbitmq.{{ .Release.Namespace }}.svc:5672
+            - name: FEDERATORAI_MAXIMUM_LOG_SIZE
+              value: "1932735283"
+          image: {{ .Values.global.imageRegistry }}/alameda-ai-dispatcher:{{ .Values.global.imageTag }}
+          imagePullPolicy: {{ .Values.global.imagePullPolicy }}
+          livenessProbe:
+            exec:
+              command:
+                - /usr/local/bin/ai-dispatcher
+                - probe
+                - --type=liveness
+            failureThreshold: 5
+            initialDelaySeconds: 60
+            periodSeconds: 60
+            successThreshold: 1
+            timeoutSeconds: 300
+          name: ai-dispatcher
+          ports:
+            - containerPort: 9091
+              name: metrics
+              protocol: TCP
+          readinessProbe:
+            exec:
+              command:
+                - /usr/local/bin/ai-dispatcher
+                - probe
+                - --type=readiness
+            failureThreshold: 3
+            initialDelaySeconds: 60
+            periodSeconds: 60
+            successThreshold: 1
+            timeoutSeconds: 60
+          resources:
+{{- if .Values.global.resourcesLimitsEnabled }}
+            limits:
+{{- include "render-value" ( dict "value" .Values.alamedaAiDispatcher.resources.limits "context" .) | nindent 14 }}
+{{- end }}
+{{- if .Values.global.resourcesRequestsEnabled }}
+            requests:
+{{- include "render-value" ( dict "value" .Values.alamedaAiDispatcher.resources.requests "context" .) | nindent 14 }}
+{{- end }}
+          volumeMounts:
+            - mountPath: /var/log/alameda
+              name: alameda-dispatcher-log-storage
+            - mountPath: /etc/alameda/ai-dispatcher/ai-dispatcher.toml
+              name: alameda-ai-dispatcher-config
+              subPath: ai-dispatcher.toml
+      imagePullSecrets:
+{{- if .Values.global.imagePullSecrets }}
+{{ include "render-value" ( dict "value" .Values.global.imagePullSecrets "context" .) | nindent 8 }}
+{{- end }}
       securityContext:
         fsGroup: 1001
-        {{- include "render-value" ( dict "value" .Values.alamedaAiDispatcher.podSecurityContext "context" .) | nindent 8 }}
+{{- if .Values.alamedaAiDispatcher.podSecurityContext }}
+{{- include "render-value" ( dict "value" .Values.alamedaAiDispatcher.podSecurityContext "context" .) | nindent 8 }}
+{{- end }}
       serviceAccount: alameda-ai-dispatcher
       serviceAccountName: alameda-ai-dispatcher
-      tolerations: {{- include "render-value" ( dict "value" .Values.alamedaAiDispatcher.tolerations "context" .) | nindent 6 }}
+      tolerations:
+{{- if .Values.alamedaAiDispatcher.tolerations }}
+{{- include "render-value" ( dict "value" .Values.alamedaAiDispatcher.tolerations "context" .) | nindent 6 }}
+{{- end }}
       volumes:
-      - configMap:
-          defaultMode: 420
+        - configMap:
+            defaultMode: 420
+            name: alameda-ai-dispatcher-config
           name: alameda-ai-dispatcher-config
-        name: alameda-ai-dispatcher-config
-      - emptyDir: {}
-        name: alameda-dispatcher-data-storage
-      - name: alameda-dispatcher-log-storage
-        persistentVolumeClaim:
-          claimName: alameda-dispatcher-log.pvc
+        - emptyDir: {}
+          name: alameda-dispatcher-data-storage
+        - name: alameda-dispatcher-log-storage
+          persistentVolumeClaim:
+            claimName: alameda-dispatcher-log.pvc

charts/prophetstor/federatorai/templates/alameda-ai-dispatcher/pvc-log.yaml

@@ -1,14 +1,24 @@
+---
 apiVersion: v1
 kind: PersistentVolumeClaim
 metadata:
-  annotations: {{ include "render-value" ( dict "value" .Values.global.commonAnnotations "context" .) | nindent 4 }}
-  labels: {{ include "render-value" ( dict "value" .Values.global.commonLabels "context" .) | nindent 4 }}
+  annotations:
+{{- if .Values.global.commonAnnotations }}
+{{- include "render-value" ( dict "value" .Values.global.commonAnnotations "context" .) | nindent 4 }}
+{{- end }}
+  labels:
+{{- if .Values.global.commonLabels }}
+{{- include "render-value" ( dict "value" .Values.global.commonLabels "context" .) | nindent 4 }}
+{{- end }}
     app.kubernetes.io/part-of: federatorai
     app: alameda
   name: alameda-dispatcher-log.pvc
   namespace: {{ .Release.Namespace }}
 spec:
-  accessModes: {{ .Values.alamedaAiDispatcher.persistence.accessModes | toYaml | nindent 2 }}
+  accessModes:
+{{- if .Values.alamedaAiDispatcher.persistence.accessModes }}
+{{ .Values.alamedaAiDispatcher.persistence.accessModes | toYaml | nindent 4 }}
+{{- end }}
   resources:
     requests:
       storage: {{ .Values.alamedaAiDispatcher.persistence.logStorageSize }}

charts/prophetstor/federatorai/templates/alameda-ai-dispatcher/serviceaccounts.yaml

@@ -1,8 +1,15 @@
+---
 apiVersion: v1
 kind: ServiceAccount
 metadata:
-  annotations: {{ include "render-value" ( dict "value" .Values.global.commonAnnotations "context" .) | nindent 4 }}
-  labels: {{ include "render-value" ( dict "value" .Values.global.commonLabels "context" .) | nindent 4 }}
+  annotations:
+{{- if .Values.global.commonAnnotations }}
+{{- include "render-value" ( dict "value" .Values.global.commonAnnotations "context" .) | nindent 4 }}
+{{- end }}
+  labels:
+{{- if .Values.global.commonLabels }}
+{{- include "render-value" ( dict "value" .Values.global.commonLabels "context" .) | nindent 4 }}
+{{- end }}
     app.kubernetes.io/part-of: federatorai
     app: alameda
   name: alameda-ai-dispatcher

charts/prophetstor/federatorai/templates/alameda-ai-dispatcher/services.yaml

@@ -1,18 +1,25 @@
+---
 apiVersion: v1
 kind: Service
 metadata:
-  annotations: {{ include "render-value" ( dict "value" .Values.global.commonAnnotations "context" .) | nindent 4 }}
-  labels: {{ include "render-value" ( dict "value" .Values.global.commonLabels "context" .) | nindent 4 }}
+  annotations:
+{{- if .Values.global.commonAnnotations }}
+{{- include "render-value" ( dict "value" .Values.global.commonAnnotations "context" .) | nindent 4 }}
+{{- end }}
+  labels:
+{{- if .Values.global.commonLabels }}
+{{- include "render-value" ( dict "value" .Values.global.commonLabels "context" .) | nindent 4 }}
+{{- end }}
     app.kubernetes.io/part-of: federatorai
     app: alameda
   name: alameda-ai-dispatcher
   namespace: {{ .Release.Namespace }}
 spec:
   ports:
-  - name: ai-dispatcher-metrics
-    port: 9091
-    protocol: TCP
-    targetPort: metrics
+    - name: ai-dispatcher-metrics
+      port: 9091
+      protocol: TCP
+      targetPort: metrics
   selector:
     component: alameda-ai-dispatcher
   type: ClusterIP

charts/prophetstor/federatorai/templates/alameda-ai/clusterrolebindings.yaml

@@ -1,16 +0,0 @@
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRoleBinding
-metadata:
-  annotations: {{ include "render-value" ( dict "value" .Values.global.commonAnnotations "context" .) | nindent 4 }}
-  labels: {{ include "render-value" ( dict "value" .Values.global.commonLabels "context" .) | nindent 4 }}
-    app.kubernetes.io/part-of: federatorai
-    app: alameda
-  name: {{ .Release.Namespace }}-alameda-ai
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: ClusterRole
-  name: {{ .Release.Namespace }}-alameda-ai
-subjects:
-- kind: ServiceAccount
-  name: alameda-ai
-  namespace: {{ .Release.Namespace }}

charts/prophetstor/federatorai/templates/alameda-ai/clusterroles.yaml

@@ -1,21 +0,0 @@
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRole
-metadata:
-  annotations: {{ include "render-value" ( dict "value" .Values.global.commonAnnotations "context" .) | nindent 4 }}
-  labels: {{ include "render-value" ( dict "value" .Values.global.commonLabels "context" .) | nindent 4 }}
-    app.kubernetes.io/part-of: federatorai
-    app: alameda
-  name: {{ .Release.Namespace }}-alameda-ai
-rules:
-- apiGroups:
-  - policy
-  resources:
-  - podsecuritypolicies
-  verbs:
-  - use
-- apiGroups:
-  - security.openshift.io
-  resources:
-  - securitycontextconstraints
-  verbs:
-  - use

charts/prophetstor/federatorai/templates/alameda-ai/configmaps.yaml

@@ -1,3 +1,4 @@
+---
 apiVersion: v1
 data:
   config.yaml: |-
@@ -38,8 +39,14 @@ data:
         minimal_metric_size: 10
 kind: ConfigMap
 metadata:
-  annotations: {{ include "render-value" ( dict "value" .Values.global.commonAnnotations "context" .) | nindent 4 }}
-  labels: {{ include "render-value" ( dict "value" .Values.global.commonLabels "context" .) | nindent 4 }}
+  annotations:
+{{- if .Values.global.commonAnnotations }}
+{{- include "render-value" ( dict "value" .Values.global.commonAnnotations "context" .) | nindent 4 }}
+{{- end }}
+  labels:
+{{- if .Values.global.commonLabels }}
+{{- include "render-value" ( dict "value" .Values.global.commonLabels "context" .) | nindent 4 }}
+{{- end }}
     app.kubernetes.io/part-of: federatorai
     app: alameda
   name: alameda-ai-config

charts/prophetstor/federatorai/templates/alameda-ai/deployments.yaml

@@ -1,8 +1,15 @@
+---
 apiVersion: apps/v1
 kind: Deployment
 metadata:
-  annotations: {{ include "render-value" ( dict "value" .Values.global.commonAnnotations "context" .) | nindent 4 }}
-  labels: {{ include "render-value" ( dict "value" .Values.global.commonLabels "context" .) | nindent 4 }}
+  annotations:
+{{- if .Values.global.commonAnnotations }}
+{{- include "render-value" ( dict "value" .Values.global.commonAnnotations "context" .) | nindent 4 }}
+{{- end }}
+  labels:
+{{- if .Values.global.commonLabels }}
+{{- include "render-value" ( dict "value" .Values.global.commonLabels "context" .) | nindent 4 }}
+{{- end }}
     app.kubernetes.io/part-of: federatorai
     app: alameda
     component: alameda-ai
@@ -18,97 +25,118 @@ spec:
     type: Recreate
   template:
     metadata:
-      annotations: {{ include "render-value" ( dict "value" .Values.global.podAnnotations "context" .) | nindent 8 }}
-      labels: {{ include "render-value" ( dict "value" .Values.global.podLabels "context" .) | nindent 8 }}
+      annotations:
+{{- if .Values.global.podAnnotations }}
+{{- include "render-value" ( dict "value" .Values.global.podAnnotations "context" .) | nindent 8 }}
+{{- end }}
+      labels:
+{{- if .Values.global.podLabels }}
+{{- include "render-value" ( dict "value" .Values.global.podLabels "context" .) | nindent 8 }}
+{{- end }}
         app.kubernetes.io/part-of: federatorai
         app: alameda
         component: alameda-ai
       name: alameda-ai
     spec:
-      affinity: {{- include "render-value" ( dict "value" .Values.alamedaAi.affinity "context" .) | nindent 8 }}
+      affinity:
+{{- if .Values.alamedaAi.affinity }}
+{{- include "render-value" ( dict "value" .Values.alamedaAi.affinity "context" .) | nindent 8 }}
+{{- end }}
       containers:
-      - env:
-        - name: NAMESPACE_NAME
-          valueFrom:
-            fieldRef:
-              apiVersion: v1
-              fieldPath: metadata.namespace
-        - name: POD_NAME
-          valueFrom:
-            fieldRef:
-              apiVersion: v1
-              fieldPath: metadata.name
-        - name: DATAHUB_ADDRESS
-          value: alameda-datahub.{{ .Release.Namespace }}.svc:50050
-        - name: PREDICT_QUEUE_URL
-          value: amqp://admin:adminpass@alameda-rabbitmq.{{ .Release.Namespace }}.svc:5672
-        - name: MAX_CPU_USAGE_PERCENTAGE
-          value: "0.5"
-        - name: NODE_NAME
-          valueFrom:
-            fieldRef:
-              apiVersion: v1
-              fieldPath: spec.nodeName
-        - name: FEDERATORAI_MAXIMUM_LOG_SIZE
-          value: "1932735283"
-        image: {{ .Values.global.imageRegistry }}/alameda-ai:{{ .Values.global.imageTag }}
-        imagePullPolicy: {{ .Values.global.imagePullPolicy }}
-        livenessProbe:
-          exec:
-            command:
-            - /probe.sh
-            - --type=liveness
-          failureThreshold: 3
-          initialDelaySeconds: 5
-          periodSeconds: 60
-          successThreshold: 1
-          timeoutSeconds: 30
-        name: alameda-ai-engine
-        ports:
-        - containerPort: 9091
-          name: ai-metrics
-          protocol: TCP
-        readinessProbe:
-          exec:
-            command:
-            - /probe.sh
-            - --type=readiness
-          failureThreshold: 3
-          initialDelaySeconds: 5
-          periodSeconds: 60
-          successThreshold: 1
-          timeoutSeconds: 30
-        resources:
-        {{- if .Values.global.resourcesEnabled }}
-          {{ include "render-value" ( dict "value" .Values.alamedaAi.resources "context" .) | nindent 10 }}
-        {{- else }}
-          requests:
-            cpu: "2"
-            memory: 1000Mi
-        {{- end }}
-        volumeMounts:
-        - mountPath: /var/lib/alameda
-          name: alameda-ai-data-storage
-        - mountPath: /var/log/alameda
-          name: alameda-ai-log-storage
-        - mountPath: /etc/alameda/alameda-ai/config.yaml
-          name: alameda-ai-config
-          subPath: config.yaml
-      imagePullSecrets: {{ include "render-value" ( dict "value" .Values.global.imagePullSecrets "context" .) | nindent 8 }}
+        - env:
+            - name: NAMESPACE_NAME
+              valueFrom:
+                fieldRef:
+                  apiVersion: v1
+                  fieldPath: metadata.namespace
+            - name: POD_NAME
+              valueFrom:
+                fieldRef:
+                  apiVersion: v1
+                  fieldPath: metadata.name
+            - name: DATAHUB_ADDRESS
+              value: alameda-datahub.{{ .Release.Namespace }}.svc:50050
+            - name: PREDICT_QUEUE_URL
+              value: amqp://admin:adminpass@alameda-rabbitmq.{{ .Release.Namespace }}.svc:5672
+            - name: MAX_CPU_USAGE_PERCENTAGE
+              value: "0.5"
+            - name: NODE_NAME
+              valueFrom:
+                fieldRef:
+                  apiVersion: v1
+                  fieldPath: spec.nodeName
+            - name: FEDERATORAI_MAXIMUM_LOG_SIZE
+              value: "1932735283"
+          image: {{ .Values.global.imageRegistry }}/alameda-ai:{{ .Values.global.imageTag }}
+          imagePullPolicy: {{ .Values.global.imagePullPolicy }}
+          livenessProbe:
+            exec:
+              command:
+                - /probe.sh
+                - --type=liveness
+            failureThreshold: 3
+            initialDelaySeconds: 5
+            periodSeconds: 60
+            successThreshold: 1
+            timeoutSeconds: 30
+          name: alameda-ai-engine
+          ports:
+            - containerPort: 9091
+              name: ai-metrics
+              protocol: TCP
+          readinessProbe:
+            exec:
+              command:
+                - /probe.sh
+                - --type=readiness
+            failureThreshold: 3
+            initialDelaySeconds: 5
+            periodSeconds: 60
+            successThreshold: 1
+            timeoutSeconds: 30
+          resources:
+{{- if .Values.global.resourcesLimitsEnabled }}
+            limits:
+{{- include "render-value" ( dict "value" .Values.alamedaAi.resources.limits "context" .) | nindent 14 }}
+{{- end }}
+            requests:
+{{- if .Values.global.resourcesRequestsEnabled }}
+{{- include "render-value" ( dict "value" .Values.alamedaAi.resources.requests "context" .) | nindent 14 }}
+{{- else }}
+              cpu: 2000m
+              memory: 1000Mi
+{{- end }}
+          volumeMounts:
+            - mountPath: /var/lib/alameda
+              name: alameda-ai-data-storage
+            - mountPath: /var/log/alameda
+              name: alameda-ai-log-storage
+            - mountPath: /etc/alameda/alameda-ai/config.yaml
+              name: alameda-ai-config
+              subPath: config.yaml
+      imagePullSecrets:
+{{- if .Values.global.imagePullSecrets }}
+{{ include "render-value" ( dict "value" .Values.global.imagePullSecrets "context" .) | nindent 8 }}
+{{- end }}
       securityContext:
         fsGroup: 1001
-        {{- include "render-value" ( dict "value" .Values.alamedaAi.podSecurityContext "context" .) | nindent 8 }}
+{{- if .Values.alamedaAi.podSecurityContext }}
+{{- include "render-value" ( dict "value" .Values.alamedaAi.podSecurityContext "context" .) | nindent 8 }}
+{{- end }}
       serviceAccount: alameda-ai
       serviceAccountName: alameda-ai
-      tolerations: {{- include "render-value" ( dict "value" .Values.alamedaAi.tolerations "context" .) | nindent 6 }}
+      tolerations:
+{{- if .Values.alamedaAi.tolerations }}
+{{- include "render-value" ( dict "value" .Values.alamedaAi.tolerations "context" .) | nindent 6 }}
+{{- end }}
       volumes:
-      - configMap:
-          defaultMode: 420
+        - configMap:
+            defaultMode: 420
+            name: alameda-ai-config
           name: alameda-ai-config
-        name: alameda-ai-config
-      - name: alameda-ai-data-storage
-        persistentVolumeClaim:
-          claimName: alameda-ai-data.pvc
-      - name: alameda-ai-log-storage
-        persistentVolumeClaim:
-          claimName: alameda-ai-log.pvc
+        - name: alameda-ai-data-storage
+          persistentVolumeClaim:
+            claimName: alameda-ai-data.pvc
+        - name: alameda-ai-log-storage
+          persistentVolumeClaim:
+            claimName: alameda-ai-log.pvc

charts/prophetstor/federatorai/templates/alameda-ai/pvc-data.yaml

@@ -1,14 +1,24 @@
+---
 apiVersion: v1
 kind: PersistentVolumeClaim
 metadata:
-  annotations: {{ include "render-value" ( dict "value" .Values.global.commonAnnotations "context" .) | nindent 4 }}
-  labels: {{ include "render-value" ( dict "value" .Values.global.commonLabels "context" .) | nindent 4 }}
+  annotations:
+{{- if .Values.global.commonAnnotations }}
+{{- include "render-value" ( dict "value" .Values.global.commonAnnotations "context" .) | nindent 4 }}
+{{- end }}
+  labels:
+{{- if .Values.global.commonLabels }}
+{{- include "render-value" ( dict "value" .Values.global.commonLabels "context" .) | nindent 4 }}
+{{- end }}
     app.kubernetes.io/part-of: federatorai
     app: alameda
   name: alameda-ai-data.pvc
   namespace: {{ .Release.Namespace }}
 spec:
-  accessModes: {{ .Values.alamedaAi.persistence.accessModes | toYaml | nindent 2 }}
+  accessModes:
+{{- if .Values.alamedaAi.persistence.accessModes }}
+{{ .Values.alamedaAi.persistence.accessModes | toYaml | nindent 4 }}
+{{- end }}
   resources:
     requests:
       storage: {{ .Values.alamedaAi.persistence.dataStorageSize }}

charts/prophetstor/federatorai/templates/alameda-ai/pvc-log.yaml

@@ -1,14 +1,24 @@
+---
 apiVersion: v1
 kind: PersistentVolumeClaim
 metadata:
-  annotations: {{ include "render-value" ( dict "value" .Values.global.commonAnnotations "context" .) | nindent 4 }}
-  labels: {{ include "render-value" ( dict "value" .Values.global.commonLabels "context" .) | nindent 4 }}
+  annotations:
+{{- if .Values.global.commonAnnotations }}
+{{- include "render-value" ( dict "value" .Values.global.commonAnnotations "context" .) | nindent 4 }}
+{{- end }}
+  labels:
+{{- if .Values.global.commonLabels }}
+{{- include "render-value" ( dict "value" .Values.global.commonLabels "context" .) | nindent 4 }}
+{{- end }}
     app.kubernetes.io/part-of: federatorai
     app: alameda
   name: alameda-ai-log.pvc
   namespace: {{ .Release.Namespace }}
 spec:
-  accessModes: {{ .Values.alamedaAi.persistence.accessModes | toYaml | nindent 2 }}
+  accessModes:
+{{- if .Values.alamedaAi.persistence.accessModes }}
+{{ .Values.alamedaAi.persistence.accessModes | toYaml | nindent 4 }}
+{{- end }}
   resources:
     requests:
       storage: {{ .Values.alamedaAi.persistence.logStorageSize }}

charts/prophetstor/federatorai/templates/alameda-ai/serviceaccounts.yaml

@@ -1,8 +1,15 @@
+---
 apiVersion: v1
 kind: ServiceAccount
 metadata:
-  annotations: {{ include "render-value" ( dict "value" .Values.global.commonAnnotations "context" .) | nindent 4 }}
-  labels: {{ include "render-value" ( dict "value" .Values.global.commonLabels "context" .) | nindent 4 }}
+  annotations:
+{{- if .Values.global.commonAnnotations }}
+{{- include "render-value" ( dict "value" .Values.global.commonAnnotations "context" .) | nindent 4 }}
+{{- end }}
+  labels:
+{{- if .Values.global.commonLabels }}
+{{- include "render-value" ( dict "value" .Values.global.commonLabels "context" .) | nindent 4 }}
+{{- end }}
     app.kubernetes.io/part-of: federatorai
     app: alameda
   name: alameda-ai

charts/prophetstor/federatorai/templates/alameda-ai/services.yaml

@@ -1,8 +1,15 @@
+---
 apiVersion: v1
 kind: Service
 metadata:
-  annotations: {{ include "render-value" ( dict "value" .Values.global.commonAnnotations "context" .) | nindent 4 }}
-  labels: {{ include "render-value" ( dict "value" .Values.global.commonLabels "context" .) | nindent 4 }}
+  annotations:
+{{- if .Values.global.commonAnnotations }}
+{{- include "render-value" ( dict "value" .Values.global.commonAnnotations "context" .) | nindent 4 }}
+{{- end }}
+  labels:
+{{- if .Values.global.commonLabels }}
+{{- include "render-value" ( dict "value" .Values.global.commonLabels "context" .) | nindent 4 }}
+{{- end }}
     app.kubernetes.io/part-of: federatorai
     app: alameda
     component: alameda-ai
@@ -10,10 +17,10 @@ metadata:
   namespace: {{ .Release.Namespace }}
 spec:
   ports:
-  - name: ai-metrics
-    port: 9091
-    protocol: TCP
-    targetPort: 9091
+    - name: ai-metrics
+      port: 9091
+      protocol: TCP
+      targetPort: 9091
   selector:
     component: alameda-ai
   type: ClusterIP

charts/prophetstor/federatorai/templates/alameda-datahub/clusterrolebindings.yaml

@@ -1,16 +0,0 @@
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRoleBinding
-metadata:
-  annotations: {{ include "render-value" ( dict "value" .Values.global.commonAnnotations "context" .) | nindent 4 }}
-  labels: {{ include "render-value" ( dict "value" .Values.global.commonLabels "context" .) | nindent 4 }}
-    app.kubernetes.io/part-of: federatorai
-    app: alameda
-  name: {{ .Release.Namespace }}-alameda-datahub
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: ClusterRole
-  name: {{ .Release.Namespace }}-alameda-datahub
-subjects:
-- kind: ServiceAccount
-  name: alameda-datahub
-  namespace: {{ .Release.Namespace }}

charts/prophetstor/federatorai/templates/alameda-datahub/clusterroles.yaml

@@ -1,44 +0,0 @@
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRole
-metadata:
-  annotations: {{ include "render-value" ( dict "value" .Values.global.commonAnnotations "context" .) | nindent 4 }}
-  labels: {{ include "render-value" ( dict "value" .Values.global.commonLabels "context" .) | nindent 4 }}
-    app.kubernetes.io/part-of: federatorai
-    app: alameda
-  name: {{ .Release.Namespace }}-alameda-datahub
-rules:
-- apiGroups:
-  - ""
-  resources:
-  - namespaces
-  - pods
-  verbs:
-  - get
-- apiGroups:
-  - federatorai.containers.ai
-  resources:
-  - '*'
-  verbs:
-  - '*'
-- apiGroups:
-  - ""
-  resources:
-  - configmaps
-  verbs:
-  - get
-  - list
-  - watch
-  - update
-  - create
-- apiGroups:
-  - policy
-  resources:
-  - podsecuritypolicies
-  verbs:
-  - use
-- apiGroups:
-  - security.openshift.io
-  resources:
-  - securitycontextconstraints
-  verbs:
-  - use

charts/prophetstor/federatorai/templates/alameda-datahub/deployments.yaml

@@ -1,8 +1,15 @@
+---
 apiVersion: apps/v1
 kind: Deployment
 metadata:
-  annotations: {{ include "render-value" ( dict "value" .Values.global.commonAnnotations "context" .) | nindent 4 }}
-  labels: {{ include "render-value" ( dict "value" .Values.global.commonLabels "context" .) | nindent 4 }}
+  annotations:
+{{- if .Values.global.commonAnnotations }}
+{{- include "render-value" ( dict "value" .Values.global.commonAnnotations "context" .) | nindent 4 }}
+{{- end }}
+  labels:
+{{- if .Values.global.commonLabels }}
+{{- include "render-value" ( dict "value" .Values.global.commonLabels "context" .) | nindent 4 }}
+{{- end }}
     app.kubernetes.io/part-of: federatorai
     app: alameda
     component: alameda-datahub
@@ -21,82 +28,104 @@ spec:
     type: RollingUpdate
   template:
     metadata:
-      annotations: {{ include "render-value" ( dict "value" .Values.global.podAnnotations "context" .) | nindent 8 }}
-      labels: {{ include "render-value" ( dict "value" .Values.global.podLabels "context" .) | nindent 8 }}
+      annotations:
+{{- if .Values.global.podAnnotations }}
+{{- include "render-value" ( dict "value" .Values.global.podAnnotations "context" .) | nindent 8 }}
+{{- end }}
+      labels:
+{{- if .Values.global.podLabels }}
+{{- include "render-value" ( dict "value" .Values.global.podLabels "context" .) | nindent 8 }}
+{{- end }}
         app.kubernetes.io/part-of: federatorai
         app: alameda
         component: alameda-datahub
       name: alameda-datahub
     spec:
-      affinity: {{- include "render-value" ( dict "value" .Values.alamedaDatahub.affinity "context" .) | nindent 8 }}
+      affinity:
+{{- if .Values.alamedaDatahub.affinity }}
+{{- include "render-value" ( dict "value" .Values.alamedaDatahub.affinity "context" .) | nindent 8 }}
+{{- end }}
       containers:
-      - env:
-        - name: NAMESPACE_NAME
-          valueFrom:
-            fieldRef:
-              apiVersion: v1
-              fieldPath: metadata.namespace
-        - name: POD_NAME
-          valueFrom:
-            fieldRef:
-              apiVersion: v1
-              fieldPath: metadata.name
-        - name: ALAMEDA_DATAHUB_INFLUXDB_ADDRESS
-          value: https://alameda-influxdb.{{ .Release.Namespace }}.svc:8086
-        - name: ALAMEDA_DATAHUB_INFLUXDB_USERNAME
-          value: admin
-        - name: ALAMEDA_DATAHUB_INFLUXDB_PASSWORD
-          value: adminpass
-        - name: ALAMEDA_DATAHUB_RABBITMQ_URL
-          value: amqp://admin:adminpass@alameda-rabbitmq.{{ .Release.Namespace }}.svc:5672
-        - name: ALAMEDA_DATAHUB_FEDEMETER_ADDRESS
-          value: http://fedemeter-api.{{ .Release.Namespace }}.svc:8888
-        - name: ALAMEDA_DATAHUB_FEDEMETER_USERNAME
-          value: fedemeter
-        - name: FEDERATORAI_MAXIMUM_LOG_SIZE
-          value: "1932735283"
-        image: {{ .Values.global.imageRegistry }}/alameda-datahub-ubi:{{ .Values.global.imageTag }}
-        imagePullPolicy: {{ .Values.global.imagePullPolicy }}
-        livenessProbe:
-          exec:
-            command:
-            - sh
-            - -c
-            - /init.sh liveness
-          failureThreshold: 3
-          initialDelaySeconds: 5
-          periodSeconds: 60
-          successThreshold: 1
-          timeoutSeconds: 5
-        name: alameda-datahub
-        readinessProbe:
-          exec:
-            command:
-            - sh
-            - -c
-            - /init.sh readiness
-          failureThreshold: 3
-          initialDelaySeconds: 5
-          periodSeconds: 60
-          successThreshold: 1
-          timeoutSeconds: 5
-        resources:
-        {{- if .Values.global.resourcesEnabled }}
-          {{ include "render-value" ( dict "value" .Values.alamedaDatahub.resources "context" .) | nindent 10 }}
-        {{- end }}
-        volumeMounts:
-        - mountPath: /var/log/alameda
-          name: alameda-datahub-log-storage
-      imagePullSecrets: {{ include "render-value" ( dict "value" .Values.global.imagePullSecrets "context" .) | nindent 8 }}
+        - env:
+            - name: NAMESPACE_NAME
+              valueFrom:
+                fieldRef:
+                  apiVersion: v1
+                  fieldPath: metadata.namespace
+            - name: POD_NAME
+              valueFrom:
+                fieldRef:
+                  apiVersion: v1
+                  fieldPath: metadata.name
+            - name: ALAMEDA_DATAHUB_INFLUXDB_ADDRESS
+              value: https://alameda-influxdb.{{ .Release.Namespace }}.svc:8086
+            - name: ALAMEDA_DATAHUB_INFLUXDB_USERNAME
+              value: admin
+            - name: ALAMEDA_DATAHUB_INFLUXDB_PASSWORD
+              value: adminpass
+            - name: ALAMEDA_DATAHUB_RABBITMQ_URL
+              value: amqp://admin:adminpass@alameda-rabbitmq.{{ .Release.Namespace }}.svc:5672
+            - name: ALAMEDA_DATAHUB_FEDEMETER_ADDRESS
+              value: http://fedemeter-api.{{ .Release.Namespace }}.svc:8888
+            - name: ALAMEDA_DATAHUB_FEDEMETER_USERNAME
+              value: fedemeter
+            - name: FEDERATORAI_MAXIMUM_LOG_SIZE
+              value: "1932735283"
+          image: {{ .Values.global.imageRegistry }}/alameda-datahub-ubi:{{ .Values.global.imageTag }}
+          imagePullPolicy: {{ .Values.global.imagePullPolicy }}
+          livenessProbe:
+            exec:
+              command:
+                - sh
+                - -c
+                - /init.sh liveness
+            failureThreshold: 3
+            initialDelaySeconds: 5
+            periodSeconds: 60
+            successThreshold: 1
+            timeoutSeconds: 5
+          name: alameda-datahub
+          readinessProbe:
+            exec:
+              command:
+                - sh
+                - -c
+                - /init.sh readiness
+            failureThreshold: 3
+            initialDelaySeconds: 5
+            periodSeconds: 60
+            successThreshold: 1
+            timeoutSeconds: 5
+          resources:
+{{- if .Values.global.resourcesLimitsEnabled }}
+            limits:
+{{- include "render-value" ( dict "value" .Values.alamedaDatahub.resources.limits "context" .) | nindent 14 }}
+{{- end }}
+{{- if .Values.global.resourcesRequestsEnabled }}
+            requests:
+{{- include "render-value" ( dict "value" .Values.alamedaDatahub.resources.requests "context" .) | nindent 14 }}
+{{- end }}
+          volumeMounts:
+            - mountPath: /var/log/alameda
+              name: alameda-datahub-log-storage
+      imagePullSecrets:
+{{- if .Values.global.imagePullSecrets }}
+{{ include "render-value" ( dict "value" .Values.global.imagePullSecrets "context" .) | nindent 8 }}
+{{- end }}
       securityContext:
         fsGroup: 1001
-        {{- include "render-value" ( dict "value" .Values.alamedaDatahub.podSecurityContext "context" .) | nindent 8 }}
+{{- if .Values.alamedaDatahub.podSecurityContext }}
+{{- include "render-value" ( dict "value" .Values.alamedaDatahub.podSecurityContext "context" .) | nindent 8 }}
+{{- end }}
       serviceAccount: alameda-datahub
       serviceAccountName: alameda-datahub
-      tolerations: {{- include "render-value" ( dict "value" .Values.alamedaDatahub.tolerations "context" .) | nindent 6 }}
+      tolerations:
+{{- if .Values.alamedaDatahub.tolerations }}
+{{- include "render-value" ( dict "value" .Values.alamedaDatahub.tolerations "context" .) | nindent 6 }}
+{{- end }}
       volumes:
-      - emptyDir: {}
-        name: alameda-datahub-data-storage
-      - name: alameda-datahub-log-storage
-        persistentVolumeClaim:
-          claimName: alameda-datahub-log.pvc
+        - emptyDir: {}
+          name: alameda-datahub-data-storage
+        - name: alameda-datahub-log-storage
+          persistentVolumeClaim:
+            claimName: alameda-datahub-log.pvc

charts/prophetstor/federatorai/templates/alameda-datahub/pvc-log.yaml

@@ -1,14 +1,24 @@
+---
 apiVersion: v1
 kind: PersistentVolumeClaim
 metadata:
-  annotations: {{ include "render-value" ( dict "value" .Values.global.commonAnnotations "context" .) | nindent 4 }}
-  labels: {{ include "render-value" ( dict "value" .Values.global.commonLabels "context" .) | nindent 4 }}
+  annotations:
+{{- if .Values.global.commonAnnotations }}
+{{- include "render-value" ( dict "value" .Values.global.commonAnnotations "context" .) | nindent 4 }}
+{{- end }}
+  labels:
+{{- if .Values.global.commonLabels }}
+{{- include "render-value" ( dict "value" .Values.global.commonLabels "context" .) | nindent 4 }}
+{{- end }}
     app.kubernetes.io/part-of: federatorai
     app: alameda
   name: alameda-datahub-log.pvc
   namespace: {{ .Release.Namespace }}
 spec:
-  accessModes: {{ .Values.alamedaDatahub.persistence.accessModes | toYaml | nindent 2 }}
+  accessModes:
+{{- if .Values.alamedaDatahub.persistence.accessModes }}
+{{ .Values.alamedaDatahub.persistence.accessModes | toYaml | nindent 4 }}
+{{- end }}
   resources:
     requests:
       storage: {{ .Values.alamedaDatahub.persistence.logStorageSize }}

charts/prophetstor/federatorai/templates/alameda-datahub/rolebindings.yaml

@@ -1,8 +1,15 @@
+---
 apiVersion: rbac.authorization.k8s.io/v1
 kind: RoleBinding
 metadata:
-  annotations: {{ include "render-value" ( dict "value" .Values.global.commonAnnotations "context" .) | nindent 4 }}
-  labels: {{ include "render-value" ( dict "value" .Values.global.commonLabels "context" .) | nindent 4 }}
+  annotations:
+{{- if .Values.global.commonAnnotations }}
+{{- include "render-value" ( dict "value" .Values.global.commonAnnotations "context" .) | nindent 4 }}
+{{- end }}
+  labels:
+{{- if .Values.global.commonLabels }}
+{{- include "render-value" ( dict "value" .Values.global.commonLabels "context" .) | nindent 4 }}
+{{- end }}
     app.kubernetes.io/part-of: federatorai
     app: alameda
   name: alameda-datahub
@@ -12,6 +19,6 @@ roleRef:
   kind: Role
   name: alameda-datahub
 subjects:
-- kind: ServiceAccount
-  name: alameda-datahub
-  namespace: {{ .Release.Namespace }}
+  - kind: ServiceAccount
+    name: alameda-datahub
+    namespace: {{ .Release.Namespace }}

charts/prophetstor/federatorai/templates/alameda-datahub/roles.yaml

@@ -1,29 +1,39 @@
+---
 apiVersion: rbac.authorization.k8s.io/v1
 kind: Role
 metadata:
-  annotations: {{ include "render-value" ( dict "value" .Values.global.commonAnnotations "context" .) | nindent 4 }}
-  labels: {{ include "render-value" ( dict "value" .Values.global.commonLabels "context" .) | nindent 4 }}
+  annotations:
+{{- if .Values.global.commonAnnotations }}
+{{- include "render-value" ( dict "value" .Values.global.commonAnnotations "context" .) | nindent 4 }}
+{{- end }}
+  labels:
+{{- if .Values.global.commonLabels }}
+{{- include "render-value" ( dict "value" .Values.global.commonLabels "context" .) | nindent 4 }}
+{{- end }}
     app.kubernetes.io/part-of: federatorai
     app: alameda
   name: alameda-datahub
   namespace: {{ .Release.Namespace }}
 rules:
-- apiGroups:
-  - ""
-  resources:
-  - configmaps
-  verbs:
-  - update
-  - create
-- apiGroups:
-  - ""
-  resources:
-  - pods
-  verbs:
-  - list
-- apiGroups:
-  - ""
-  resources:
-  - pods/exec
-  verbs:
-  - create
+  - apiGroups:
+      - ""
+    resources:
+      - configmaps
+    verbs:
+      - get
+      - list
+      - watch
+      - update
+      - create
+  - apiGroups:
+      - ""
+    resources:
+      - pods
+    verbs:
+      - list
+  - apiGroups:
+      - ""
+    resources:
+      - pods/exec
+    verbs:
+      - create

charts/prophetstor/federatorai/templates/alameda-datahub/serviceaccounts.yaml

@@ -1,8 +1,15 @@
+---
 apiVersion: v1
 kind: ServiceAccount
 metadata:
-  annotations: {{ include "render-value" ( dict "value" .Values.global.commonAnnotations "context" .) | nindent 4 }}
-  labels: {{ include "render-value" ( dict "value" .Values.global.commonLabels "context" .) | nindent 4 }}
+  annotations:
+{{- if .Values.global.commonAnnotations }}
+{{- include "render-value" ( dict "value" .Values.global.commonAnnotations "context" .) | nindent 4 }}
+{{- end }}
+  labels:
+{{- if .Values.global.commonLabels }}
+{{- include "render-value" ( dict "value" .Values.global.commonLabels "context" .) | nindent 4 }}
+{{- end }}
     app.kubernetes.io/part-of: federatorai
     app: alameda
   name: alameda-datahub

charts/prophetstor/federatorai/templates/alameda-datahub/services.yaml

@@ -1,8 +1,15 @@
+---
 apiVersion: v1
 kind: Service
 metadata:
-  annotations: {{ include "render-value" ( dict "value" .Values.global.commonAnnotations "context" .) | nindent 4 }}
-  labels: {{ include "render-value" ( dict "value" .Values.global.commonLabels "context" .) | nindent 4 }}
+  annotations:
+{{- if .Values.global.commonAnnotations }}
+{{- include "render-value" ( dict "value" .Values.global.commonAnnotations "context" .) | nindent 4 }}
+{{- end }}
+  labels:
+{{- if .Values.global.commonLabels }}
+{{- include "render-value" ( dict "value" .Values.global.commonLabels "context" .) | nindent 4 }}
+{{- end }}
     app.kubernetes.io/part-of: federatorai
     app: alameda
     component: alameda-datahub
@@ -10,10 +17,10 @@ metadata:
   namespace: {{ .Release.Namespace }}
 spec:
   ports:
-  - name: grpc
-    port: 50050
-    protocol: TCP
-    targetPort: 50050
+    - name: grpc
+      port: 50050
+      protocol: TCP
+      targetPort: 50050
   selector:
     component: alameda-datahub
   type: ClusterIP

charts/prophetstor/federatorai/templates/alameda-executor/clusterrolebindings.yaml

@@ -1,8 +1,16 @@
+---
+{{- if .Values.alamedaExecutor.enabled }}
 apiVersion: rbac.authorization.k8s.io/v1
 kind: ClusterRoleBinding
 metadata:
-  annotations: {{ include "render-value" ( dict "value" .Values.global.commonAnnotations "context" .) | nindent 4 }}
-  labels: {{ include "render-value" ( dict "value" .Values.global.commonLabels "context" .) | nindent 4 }}
+  annotations:
+{{- if .Values.global.commonAnnotations }}
+{{- include "render-value" ( dict "value" .Values.global.commonAnnotations "context" .) | nindent 4 }}
+{{- end }}
+  labels:
+{{- if .Values.global.commonLabels }}
+{{- include "render-value" ( dict "value" .Values.global.commonLabels "context" .) | nindent 4 }}
+{{- end }}
     app.kubernetes.io/part-of: federatorai
     app: alameda
   name: {{ .Release.Namespace }}-alameda-executor
@@ -11,6 +19,7 @@ roleRef:
   kind: ClusterRole
   name: {{ .Release.Namespace }}-alameda-executor
 subjects:
-- kind: ServiceAccount
-  name: alameda-executor
-  namespace: {{ .Release.Namespace }}
+  - kind: ServiceAccount
+    name: alameda-executor
+    namespace: {{ .Release.Namespace }}
+{{- end }}

charts/prophetstor/federatorai/templates/alameda-executor/clusterroles.yaml

@@ -1,72 +1,81 @@
+---
+{{- if .Values.alamedaExecutor.enabled }}
 apiVersion: rbac.authorization.k8s.io/v1
 kind: ClusterRole
 metadata:
-  annotations: {{ include "render-value" ( dict "value" .Values.global.commonAnnotations "context" .) | nindent 4 }}
-  labels: {{ include "render-value" ( dict "value" .Values.global.commonLabels "context" .) | nindent 4 }}
+  annotations:
+{{- if .Values.global.commonAnnotations }}
+{{- include "render-value" ( dict "value" .Values.global.commonAnnotations "context" .) | nindent 4 }}
+{{- end }}
+  labels:
+{{- if .Values.global.commonLabels }}
+{{- include "render-value" ( dict "value" .Values.global.commonLabels "context" .) | nindent 4 }}
+{{- end }}
     app.kubernetes.io/part-of: federatorai
     app: alameda
   name: {{ .Release.Namespace }}-alameda-executor
 rules:
-- apiGroups:
-  - ""
-  resources:
-  - resourcequotas
-  verbs:
-  - create
-  - list
-  - get
-  - patch
-  - delete
-- apiGroups:
-  - apps
-  - extensions
-  resources:
-  - replicasets
-  - deployments
-  verbs:
-  - get
-  - list
-  - update
-  - patch
-- apiGroups:
-  - apps
-  resources:
-  - statefulsets
-  verbs:
-  - get
-  - list
-  - update
-  - patch
-- apiGroups:
-  - apps.openshift.io
-  resources:
-  - deploymentconfigs
-  verbs:
-  - get
-  - list
-  - update
-  - patch
-- apiGroups:
-  - autoscaling
-  resources:
-  - horizontalpodautoscalers
-  verbs:
-  - list
-- apiGroups:
-  - ""
-  resources:
-  - configmaps
-  verbs:
-  - get
-- apiGroups:
-  - policy
-  resources:
-  - podsecuritypolicies
-  verbs:
-  - use
-- apiGroups:
-  - security.openshift.io
-  resources:
-  - securitycontextconstraints
-  verbs:
-  - use
+  - apiGroups:
+      - ""
+    resources:
+      - resourcequotas
+    verbs:
+      - create
+      - list
+      - get
+      - patch
+      - delete
+  - apiGroups:
+      - apps
+      - extensions
+    resources:
+      - replicasets
+      - deployments
+    verbs:
+      - get
+      - list
+      - update
+      - patch
+  - apiGroups:
+      - apps
+    resources:
+      - statefulsets
+    verbs:
+      - get
+      - list
+      - update
+      - patch
+  - apiGroups:
+      - apps.openshift.io
+    resources:
+      - deploymentconfigs
+    verbs:
+      - get
+      - list
+      - update
+      - patch
+  - apiGroups:
+      - autoscaling
+    resources:
+      - horizontalpodautoscalers
+    verbs:
+      - list
+  - apiGroups:
+      - ""
+    resources:
+      - configmaps
+    verbs:
+      - get
+  - apiGroups:
+      - policy
+    resources:
+      - podsecuritypolicies
+    verbs:
+      - use
+  - apiGroups:
+      - security.openshift.io
+    resources:
+      - securitycontextconstraints
+    verbs:
+      - use
+{{- end }}

charts/prophetstor/federatorai/templates/alameda-executor/configmaps.yaml

@@ -1,3 +1,5 @@
+---
+{{- if .Values.alamedaExecutor.enabled }}
 apiVersion: v1
 data:
   config.toml: |-
@@ -21,9 +23,16 @@ data:
     output_log_level = "info"
 kind: ConfigMap
 metadata:
-  annotations: {{ include "render-value" ( dict "value" .Values.global.commonAnnotations "context" .) | nindent 4 }}
-  labels: {{ include "render-value" ( dict "value" .Values.global.commonLabels "context" .) | nindent 4 }}
+  annotations:
+{{- if .Values.global.commonAnnotations }}
+{{- include "render-value" ( dict "value" .Values.global.commonAnnotations "context" .) | nindent 4 }}
+{{- end }}
+  labels:
+{{- if .Values.global.commonLabels }}
+{{- include "render-value" ( dict "value" .Values.global.commonLabels "context" .) | nindent 4 }}
+{{- end }}
     app.kubernetes.io/part-of: federatorai
     app: alameda
   name: alameda-executor-config
   namespace: {{ .Release.Namespace }}
+{{- end }}

charts/prophetstor/federatorai/templates/alameda-executor/deployments.yaml

@@ -1,8 +1,16 @@
+---
+{{- if .Values.alamedaExecutor.enabled }}
 apiVersion: apps/v1
 kind: Deployment
 metadata:
-  annotations: {{ include "render-value" ( dict "value" .Values.global.commonAnnotations "context" .) | nindent 4 }}
-  labels: {{ include "render-value" ( dict "value" .Values.global.commonLabels "context" .) | nindent 4 }}
+  annotations:
+{{- if .Values.global.commonAnnotations }}
+{{- include "render-value" ( dict "value" .Values.global.commonAnnotations "context" .) | nindent 4 }}
+{{- end }}
+  labels:
+{{- if .Values.global.commonLabels }}
+{{- include "render-value" ( dict "value" .Values.global.commonLabels "context" .) | nindent 4 }}
+{{- end }}
     app.kubernetes.io/part-of: federatorai
     app: alameda
     component: alameda-executor
@@ -18,76 +26,99 @@ spec:
     type: Recreate
   template:
     metadata:
-      annotations: {{ include "render-value" ( dict "value" .Values.global.podAnnotations "context" .) | nindent 8 }}
-      labels: {{ include "render-value" ( dict "value" .Values.global.podLabels "context" .) | nindent 8 }}
+      annotations:
+{{- if .Values.global.podAnnotations }}
+{{- include "render-value" ( dict "value" .Values.global.podAnnotations "context" .) | nindent 8 }}
+{{- end }}
+      labels:
+{{- if .Values.global.podLabels }}
+{{- include "render-value" ( dict "value" .Values.global.podLabels "context" .) | nindent 8 }}
+{{- end }}
         app.kubernetes.io/part-of: federatorai
         app: alameda
         component: alameda-executor
     spec:
-      affinity: {{- include "render-value" ( dict "value" .Values.alamedaExecutor.affinity "context" .) | nindent 8 }}
+      affinity:
+{{- if .Values.alamedaExecutor.affinity }}
+{{- include "render-value" ( dict "value" .Values.alamedaExecutor.affinity "context" .) | nindent 8 }}
+{{- end }}
       containers:
-      - env:
-        - name: NAMESPACE_NAME
-          valueFrom:
-            fieldRef:
-              apiVersion: v1
-              fieldPath: metadata.namespace
-        - name: POD_NAME
-          valueFrom:
-            fieldRef:
-              apiVersion: v1
-              fieldPath: metadata.name
-        - name: FEDERATORAI_MAXIMUM_LOG_SIZE
-          value: "1932735283"
-        image: {{ .Values.global.imageRegistry }}/alameda-executor-ubi:{{ .Values.global.imageTag }}
-        imagePullPolicy: {{ .Values.global.imagePullPolicy }}
-        livenessProbe:
-          exec:
-            command:
-            - /usr/local/bin/federatorai-executor
-            - probe
-            - --type=liveness
-          failureThreshold: 3
-          initialDelaySeconds: 5
-          periodSeconds: 60
-          successThreshold: 1
-          timeoutSeconds: 5
-        name: alameda-executor
-        readinessProbe:
-          exec:
-            command:
-            - /usr/local/bin/federatorai-executor
-            - probe
-            - --type=readiness
-          failureThreshold: 3
-          initialDelaySeconds: 5
-          periodSeconds: 60
-          successThreshold: 1
-          timeoutSeconds: 5
-        resources:
-        {{- if .Values.global.resourcesEnabled }}
-          {{ include "render-value" ( dict "value" .Values.alamedaExecutor.resources "context" .) | nindent 10 }}
-        {{- end }}
-        volumeMounts:
-        - mountPath: /var/log/alameda
-          name: alameda-executor-log-storage
-        - mountPath: /etc/alameda/federatorai-execution/config.toml
-          name: alameda-executor-config
-          subPath: config.toml
-      imagePullSecrets: {{ include "render-value" ( dict "value" .Values.global.imagePullSecrets "context" .) | nindent 8 }}
+        - env:
+            - name: NAMESPACE_NAME
+              valueFrom:
+                fieldRef:
+                  apiVersion: v1
+                  fieldPath: metadata.namespace
+            - name: POD_NAME
+              valueFrom:
+                fieldRef:
+                  apiVersion: v1
+                  fieldPath: metadata.name
+            - name: FEDERATORAI_MAXIMUM_LOG_SIZE
+              value: "1932735283"
+          image: {{ .Values.global.imageRegistry }}/alameda-executor-ubi:{{ .Values.global.imageTag }}
+          imagePullPolicy: {{ .Values.global.imagePullPolicy }}
+          livenessProbe:
+            exec:
+              command:
+                - /usr/local/bin/federatorai-executor
+                - probe
+                - --type=liveness
+            failureThreshold: 3
+            initialDelaySeconds: 5
+            periodSeconds: 60
+            successThreshold: 1
+            timeoutSeconds: 5
+          name: alameda-executor
+          readinessProbe:
+            exec:
+              command:
+                - /usr/local/bin/federatorai-executor
+                - probe
+                - --type=readiness
+            failureThreshold: 3
+            initialDelaySeconds: 5
+            periodSeconds: 60
+            successThreshold: 1
+            timeoutSeconds: 5
+          resources:
+{{- if .Values.global.resourcesLimitsEnabled }}
+            limits:
+{{- include "render-value" ( dict "value" .Values.alamedaExecutor.resources.limits "context" .) | nindent 14 }}
+{{- end }}
+{{- if .Values.global.resourcesRequestsEnabled }}
+            requests:
+{{- include "render-value" ( dict "value" .Values.alamedaExecutor.resources.requests "context" .) | nindent 14 }}
+{{- end }}
+          volumeMounts:
+            - mountPath: /var/log/alameda
+              name: alameda-executor-log-storage
+            - mountPath: /etc/alameda/federatorai-execution/config.toml
+              name: alameda-executor-config
+              subPath: config.toml
+      imagePullSecrets:
+{{- if .Values.global.imagePullSecrets }}
+{{ include "render-value" ( dict "value" .Values.global.imagePullSecrets "context" .) | nindent 8 }}
+{{- end }}
       securityContext:
         fsGroup: 1001
-        {{- include "render-value" ( dict "value" .Values.alamedaExecutor.podSecurityContext "context" .) | nindent 8 }}
+{{- if .Values.alamedaExecutor.podSecurityContext }}
+{{- include "render-value" ( dict "value" .Values.alamedaExecutor.podSecurityContext "context" .) | nindent 8 }}
+{{- end }}
       serviceAccount: alameda-executor
       serviceAccountName: alameda-executor
-      tolerations: {{- include "render-value" ( dict "value" .Values.alamedaExecutor.tolerations "context" .) | nindent 6 }}
+      tolerations:
+{{- if .Values.alamedaExecutor.tolerations }}
+{{- include "render-value" ( dict "value" .Values.alamedaExecutor.tolerations "context" .) | nindent 6 }}
+{{- end }}
       volumes:
-      - emptyDir: {}
-        name: alameda-executor-data-storage
-      - name: alameda-executor-log-storage
-        persistentVolumeClaim:
-          claimName: alameda-executor-log.pvc
-      - configMap:
-          defaultMode: 420
+        - emptyDir: {}
+          name: alameda-executor-data-storage
+        - name: alameda-executor-log-storage
+          persistentVolumeClaim:
+            claimName: alameda-executor-log.pvc
+        - configMap:
+            defaultMode: 420
+            name: alameda-executor-config
           name: alameda-executor-config
-        name: alameda-executor-config
+{{- end }}

charts/prophetstor/federatorai/templates/alameda-executor/pvc-log.yaml

@@ -1,17 +1,29 @@
+---
+{{- if .Values.alamedaExecutor.enabled }}
 apiVersion: v1
 kind: PersistentVolumeClaim
 metadata:
-  annotations: {{ include "render-value" ( dict "value" .Values.global.commonAnnotations "context" .) | nindent 4 }}
-  labels: {{ include "render-value" ( dict "value" .Values.global.commonLabels "context" .) | nindent 4 }}
+  annotations:
+{{- if .Values.global.commonAnnotations }}
+{{- include "render-value" ( dict "value" .Values.global.commonAnnotations "context" .) | nindent 4 }}
+{{- end }}
+  labels:
+{{- if .Values.global.commonLabels }}
+{{- include "render-value" ( dict "value" .Values.global.commonLabels "context" .) | nindent 4 }}
+{{- end }}
     app.kubernetes.io/part-of: federatorai
     app: alameda
   name: alameda-executor-log.pvc
   namespace: {{ .Release.Namespace }}
 spec:
-  accessModes: {{ .Values.alamedaExecutor.persistence.accessModes | toYaml | nindent 2 }}
+  accessModes:
+{{- if .Values.alamedaExecutor.persistence.accessModes }}
+{{ .Values.alamedaExecutor.persistence.accessModes | toYaml | nindent 4 }}
+{{- end }}
   resources:
     requests:
       storage: {{ .Values.alamedaExecutor.persistence.logStorageSize }}
 {{- if .Values.global.storageClassName }}
   storageClassName: {{ .Values.global.storageClassName }}
 {{- end }}
+{{- end }}

charts/prophetstor/federatorai/templates/alameda-executor/serviceaccounts.yaml

@@ -1,9 +1,18 @@
+---
+{{- if .Values.alamedaExecutor.enabled }}
 apiVersion: v1
 kind: ServiceAccount
 metadata:
-  annotations: {{ include "render-value" ( dict "value" .Values.global.commonAnnotations "context" .) | nindent 4 }}
-  labels: {{ include "render-value" ( dict "value" .Values.global.commonLabels "context" .) | nindent 4 }}
+  annotations:
+{{- if .Values.global.commonAnnotations }}
+{{- include "render-value" ( dict "value" .Values.global.commonAnnotations "context" .) | nindent 4 }}
+{{- end }}
+  labels:
+{{- if .Values.global.commonLabels }}
+{{- include "render-value" ( dict "value" .Values.global.commonLabels "context" .) | nindent 4 }}
+{{- end }}
     app.kubernetes.io/part-of: federatorai
     app: alameda
   name: alameda-executor
   namespace: {{ .Release.Namespace }}
+{{- end }}

charts/prophetstor/federatorai/templates/alameda-influxdb/clusterrolebindings.yaml

@@ -1,16 +0,0 @@
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRoleBinding
-metadata:
-  annotations: {{ include "render-value" ( dict "value" .Values.global.commonAnnotations "context" .) | nindent 4 }}
-  labels: {{ include "render-value" ( dict "value" .Values.global.commonLabels "context" .) | nindent 4 }}
-    app.kubernetes.io/part-of: federatorai
-    app: alameda
-  name: {{ .Release.Namespace }}-alameda-influxdb
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: ClusterRole
-  name: {{ .Release.Namespace }}-alameda-influxdb
-subjects:
-- kind: ServiceAccount
-  name: alameda-influxdb
-  namespace: {{ .Release.Namespace }}

charts/prophetstor/federatorai/templates/alameda-influxdb/clusterroles.yaml

@@ -1,21 +0,0 @@
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRole
-metadata:
-  annotations: {{ include "render-value" ( dict "value" .Values.global.commonAnnotations "context" .) | nindent 4 }}
-  labels: {{ include "render-value" ( dict "value" .Values.global.commonLabels "context" .) | nindent 4 }}
-    app.kubernetes.io/part-of: federatorai
-    app: alameda
-  name: {{ .Release.Namespace }}-alameda-influxdb
-rules:
-- apiGroups:
-  - policy
-  resources:
-  - podsecuritypolicies
-  verbs:
-  - use
-- apiGroups:
-  - security.openshift.io
-  resources:
-  - securitycontextconstraints
-  verbs:
-  - use

charts/prophetstor/federatorai/templates/alameda-influxdb/pvc-data.yaml

@@ -1,14 +1,24 @@
+---
 apiVersion: v1
 kind: PersistentVolumeClaim
 metadata:
-  annotations: {{ include "render-value" ( dict "value" .Values.global.commonAnnotations "context" .) | nindent 4 }}
-  labels: {{ include "render-value" ( dict "value" .Values.global.commonLabels "context" .) | nindent 4 }}
+  annotations:
+{{- if .Values.global.commonAnnotations }}
+{{- include "render-value" ( dict "value" .Values.global.commonAnnotations "context" .) | nindent 4 }}
+{{- end }}
+  labels:
+{{- if .Values.global.commonLabels }}
+{{- include "render-value" ( dict "value" .Values.global.commonLabels "context" .) | nindent 4 }}
+{{- end }}
     app.kubernetes.io/part-of: federatorai
     app: alameda
   name: my-alameda.influxdb-data.pvc
   namespace: {{ .Release.Namespace }}
 spec:
-  accessModes: {{ .Values.alamedaInfluxdb.persistence.accessModes | toYaml | nindent 2 }}
+  accessModes:
+{{- if .Values.alamedaInfluxdb.persistence.accessModes }}
+{{ .Values.alamedaInfluxdb.persistence.accessModes | toYaml | nindent 4 }}
+{{- end }}
   resources:
     requests:
       storage: {{ .Values.alamedaInfluxdb.persistence.dataStorageSize }}

charts/prophetstor/federatorai/templates/alameda-influxdb/pvc-log.yaml

@@ -1,14 +1,24 @@
+---
 apiVersion: v1
 kind: PersistentVolumeClaim
 metadata:
-  annotations: {{ include "render-value" ( dict "value" .Values.global.commonAnnotations "context" .) | nindent 4 }}
-  labels: {{ include "render-value" ( dict "value" .Values.global.commonLabels "context" .) | nindent 4 }}
+  annotations:
+{{- if .Values.global.commonAnnotations }}
+{{- include "render-value" ( dict "value" .Values.global.commonAnnotations "context" .) | nindent 4 }}
+{{- end }}
+  labels:
+{{- if .Values.global.commonLabels }}
+{{- include "render-value" ( dict "value" .Values.global.commonLabels "context" .) | nindent 4 }}
+{{- end }}
     app.kubernetes.io/part-of: federatorai
     app: alameda
   name: my-alameda.influxdb-log.pvc
   namespace: {{ .Release.Namespace }}
 spec:
-  accessModes: {{ .Values.alamedaInfluxdb.persistence.accessModes | toYaml | nindent 2 }}
+  accessModes:
+{{- if .Values.alamedaInfluxdb.persistence.accessModes }}
+{{ .Values.alamedaInfluxdb.persistence.accessModes | toYaml | nindent 4 }}
+{{- end }}
   resources:
     requests:
       storage: {{ .Values.alamedaInfluxdb.persistence.logStorageSize }}