Charts CI

```
Updated:
  hashicorp/consul:
    - 1.4.3
  jenkins/jenkins:
    - 5.1.23
  ngrok/kubernetes-ingress-controller:
    - 0.13.0
  percona/psmdb-db:
    - 1.16.0
  percona/psmdb-operator:
    - 1.16.0
  redpanda/redpanda:
    - 5.8.7
```
pull/1022/head
github-actions[bot] 2024-05-25 00:54:00 +00:00
parent 5a6e141b8f
commit db67e74fd3
65 changed files with 3286 additions and 1386 deletions

Binary file not shown.

Binary file not shown.

Binary file not shown.

Binary file not shown.

Binary file not shown.

Binary file not shown.

View File

@ -34,4 +34,4 @@ name: consul
sources:
- https://github.com/hashicorp/consul
- https://github.com/hashicorp/consul-k8s
version: 1.4.2
version: 1.4.3

View File

@ -86,7 +86,7 @@ global:
# image that is used for functionality such as catalog sync.
# This can be overridden per component.
# @default: hashicorp/consul-k8s-control-plane:<latest version>
imageK8S: hashicorp/consul-k8s-control-plane:1.4.2
imageK8S: hashicorp/consul-k8s-control-plane:1.4.3
# The name of the datacenter that the agents should
# register as. This can't be changed once the Consul cluster is up and running
@ -808,7 +808,7 @@ global:
# This can either be used to [configure a new cluster](https://developer.hashicorp.com/hcp/docs/consul/self-managed/new)
# or [link an existing one](https://developer.hashicorp.com/hcp/docs/consul/self-managed/existing).
#
# Note: this setting should not be enabled for [HashiCorp-managed clusters](https://developer.hashicorp.com/hcp/docs/consul/hcp-managed).
# Note: this setting should not be enabled for [HCP Consul Dedicated clusters](/hcp/docs/consul/dedicated).
# It is strictly for linking self-managed clusters.
enabled: false
@ -3722,8 +3722,8 @@ telemetryCollector:
# The resource id of the HCP Consul Central cluster to push metrics for. Eg:
# `organization/27109cd4-a309-4bf3-9986-e1d071914b18/project/fcef6c24-259d-4510-bb8d-1d812e120e34/hashicorp.consul.global-network-manager.cluster/consul-cluster`
#
# This is used for HCP Consul Central-linked or managed clusters where global.cloud.resourceId is unset. For example, when using externalServers
# with HCP Consul-managed clusters or HCP Consul Central-linked clusters in a different admin partition.
# This is used for HCP Consul Central-linked or HCP Consul Dedicated clusters where global.cloud.resourceId is unset. For example, when using externalServers
# with HCP Consul Dedicated clusters or HCP Consul Central-linked clusters in a different admin partition.
#
# If global.cloud.resourceId is set, this should either be unset (defaulting to global.cloud.resourceId) or be the same as global.cloud.resourceId.
#

View File

@ -12,6 +12,10 @@ Use the following links to reference issues, PRs, and commits prior to v2.6.0.
The changelog until v1.5.7 was auto-generated based on git commits.
Those entries include a reference to the git commit to be able to get more details.
## 5.1.23
Update `kubernetes` to version `4233.vb_67a_0e11a_039`
## 5.1.22
Update `configuration-as-code` to version `1810.v9b_c30a_249a_4c`

View File

@ -1,7 +1,7 @@
annotations:
artifacthub.io/category: integration-delivery
artifacthub.io/changes: |
- Update `configuration-as-code` to version `1810.v9b_c30a_249a_4c`
- Update `kubernetes` to version `4233.vb_67a_0e11a_039`
artifacthub.io/images: |
- name: jenkins
image: docker.io/jenkins/jenkins:2.452.1-jdk17
@ -50,4 +50,4 @@ sources:
- https://github.com/maorfr/kube-tasks
- https://github.com/jenkinsci/configuration-as-code-plugin
type: application
version: 5.1.22
version: 5.1.23

View File

@ -155,7 +155,7 @@ The following tables list the configurable parameters of the Jenkins chart and t
| [controller.initializeOnce](./values.yaml#L414) | bool | Initialize only on first installation. Ensures plugins do not get updated inadvertently. Requires `persistence.enabled` to be set to `true` | `false` |
| [controller.installLatestPlugins](./values.yaml#L403) | bool | Download the minimum required version or latest version of all dependencies | `true` |
| [controller.installLatestSpecifiedPlugins](./values.yaml#L406) | bool | Set to true to download the latest version of any plugin that is requested to have the latest version | `false` |
| [controller.installPlugins](./values.yaml#L395) | list | List of Jenkins plugins to install. If you don't want to install plugins, set it to `false` | `["kubernetes:4231.vb_a_6b_8936497d","workflow-aggregator:596.v8c21c963d92d","git:5.2.2","configuration-as-code:1810.v9b_c30a_249a_4c"]` |
| [controller.installPlugins](./values.yaml#L395) | list | List of Jenkins plugins to install. If you don't want to install plugins, set it to `false` | `["kubernetes:4233.vb_67a_0e11a_039","workflow-aggregator:596.v8c21c963d92d","git:5.2.2","configuration-as-code:1810.v9b_c30a_249a_4c"]` |
| [controller.javaOpts](./values.yaml#L156) | string | Append to `JAVA_OPTS` env var | `nil` |
| [controller.jenkinsAdminEmail](./values.yaml#L96) | string | Email address for the administrator of the Jenkins instance | `nil` |
| [controller.jenkinsHome](./values.yaml#L101) | string | Custom Jenkins home path | `"/var/jenkins_home"` |

View File

@ -393,7 +393,7 @@ controller:
# Plugins will be installed during Jenkins controller start
# -- List of Jenkins plugins to install. If you don't want to install plugins, set it to `false`
installPlugins:
- kubernetes:4231.vb_a_6b_8936497d
- kubernetes:4233.vb_67a_0e11a_039
- workflow-aggregator:596.v8c21c963d92d
- git:5.2.2
- configuration-as-code:1810.v9b_c30a_249a_4c

View File

@ -5,6 +5,27 @@ All notable changes to this project will be documented in this file.
The format is based on [Keep a Changelog](https://keepachangelog.com/en/1.0.0/),
and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0.html).
## 0.13.0
**Full Changelog**: https://github.com/ngrok/kubernetes-ingress-controller/compare/helm-chart-0.12.4...helm-chart-0.13.0
**Important**: If you are upgrading from a previous version and are using `helm install` or `helm upgrade`, you will need to manually apply the changes to the CRDs. This is because the CRDs are not [updated automatically when the chart is updated](https://helm.sh/docs/chart_best_practices/custom_resource_definitions/#some-caveats-and-explanations). To do this, apply the contents of the `crds` directory in the chart to your cluster.
Ex (from the root of the repository):
```shell
kubectl apply -f ./helm/ingress-controller/templates/crds/
```
### Added
- root-cas setting [#371](https://github.com/ngrok/kubernetes-ingress-controller/pull/371)
Takes an install option for `--set rootCAs=host` and plumb the isHostCA check into the caCerts for it to just get the host certs.
- feat: Add support for mutualTLS [#373](https://github.com/ngrok/kubernetes-ingress-controller/pull/373)
### Changed
- Update nix flake, go version, and Makefile dep versions [#379](https://github.com/ngrok/kubernetes-ingress-controller/pull/379)
## 0.12.4
- Add the `apiURL` value.

View File

@ -1,6 +1,6 @@
dependencies:
- name: common
repository: https://charts.bitnami.com/bitnami
version: 2.19.1
digest: sha256:8b1a425b039469d9fd0b0b48bd825df70bdcbe6f62e1f83b8c06653bfc472943
generated: "2024-03-27T10:54:59.497298868-05:00"
version: 2.19.3
digest: sha256:b0c5b947a6622accb48678c6034a1180e1fb58d0d8c8d2fa44cb7e9c3b1a4255
generated: "2024-05-21T13:06:30.412702362-05:00"

View File

@ -3,7 +3,7 @@ annotations:
catalog.cattle.io/display-name: ngrok Ingress Controller
catalog.cattle.io/release-name: kubernetes-ingress-controller
apiVersion: v2
appVersion: 0.10.4
appVersion: 0.11.0
dependencies:
- name: common
repository: file://./charts/common
@ -22,4 +22,4 @@ keywords:
name: kubernetes-ingress-controller
sources:
- https://github.com/ngrok/kubernetes-ingress-controller
version: 0.12.4
version: 0.13.0

View File

@ -64,6 +64,7 @@ To uninstall the chart:
| `credentials.apiKey` | Your ngrok API key. If provided, it will be will be written to the secret and the authtoken must be provided as well. | `""` |
| `credentials.authtoken` | Your ngrok authtoken. If provided, it will be will be written to the secret and the apiKey must be provided as well. | `""` |
| `region` | ngrok region to create tunnels in. Defaults to connect to the closest geographical region. | `""` |
| `rootCAs` | Set to "trusted" for the ngrok agent CA or "host" to trust the host's CA. Defaults to "trusted". | `""` |
| `serverAddr` | This is the address of the ngrok server to connect to. You should set this if you are using a custom ingress address. | `""` |
| `apiURL` | This is the URL of the ngrok API. You should set this if you are using a custom API URL. | `""` |
| `metaData` | This is a map of key/value pairs that will be added as meta data to all ngrok api resources created | `{}` |

View File

@ -2,7 +2,7 @@ annotations:
category: Infrastructure
licenses: Apache-2.0
apiVersion: v2
appVersion: 2.19.1
appVersion: 2.19.3
description: A Library Helm Chart for grouping common logic between bitnami charts.
This chart is not deployable by itself.
home: https://bitnami.com
@ -14,10 +14,10 @@ keywords:
- function
- bitnami
maintainers:
- name: VMware, Inc.
- name: Broadcom, Inc. All Rights Reserved.
url: https://github.com/bitnami/charts
name: common
sources:
- https://github.com/bitnami/charts
type: library
version: 2.19.1
version: 2.19.3

View File

@ -214,7 +214,7 @@ helm install test mychart --set path.to.value00="",path.to.value01=""
#### Useful links
- <https://docs.bitnami.com/tutorials/resolve-helm2-helm3-post-migration-issues/>
- <https://docs.vmware.com/en/VMware-Tanzu-Application-Catalog/services/tutorials/GUID-resolve-helm2-helm3-post-migration-issues-index.html>
- <https://helm.sh/docs/topics/v2_v3_migration/>
- <https://helm.sh/blog/migrate-from-helm-v2-to-helm-v3/>

View File

@ -1,5 +1,5 @@
{{/*
Copyright VMware, Inc.
Copyright Broadcom, Inc. All Rights Reserved.
SPDX-License-Identifier: APACHE-2.0
*/}}

View File

@ -1,5 +1,5 @@
{{/*
Copyright VMware, Inc.
Copyright Broadcom, Inc. All Rights Reserved.
SPDX-License-Identifier: APACHE-2.0
*/}}
@ -9,15 +9,7 @@ SPDX-License-Identifier: APACHE-2.0
Return the target Kubernetes version
*/}}
{{- define "common.capabilities.kubeVersion" -}}
{{- if .Values.global }}
{{- if .Values.global.kubeVersion }}
{{- .Values.global.kubeVersion -}}
{{- else }}
{{- default .Capabilities.KubeVersion.Version .Values.kubeVersion -}}
{{- end -}}
{{- else }}
{{- default .Capabilities.KubeVersion.Version .Values.kubeVersion -}}
{{- end -}}
{{- default (default .Capabilities.KubeVersion.Version .Values.kubeVersion) ((.Values.global).kubeVersion) -}}
{{- end -}}
{{/*

View File

@ -1,5 +1,5 @@
{{/*
Copyright VMware, Inc.
Copyright Broadcom, Inc. All Rights Reserved.
SPDX-License-Identifier: APACHE-2.0
*/}}
@ -23,15 +23,14 @@ Usage:
*/}}
{{- define "common.compatibility.renderSecurityContext" -}}
{{- $adaptedContext := .secContext -}}
{{- if .context.Values.global.compatibility -}}
{{- if .context.Values.global.compatibility.openshift -}}
{{- if or (eq .context.Values.global.compatibility.openshift.adaptSecurityContext "force") (and (eq .context.Values.global.compatibility.openshift.adaptSecurityContext "auto") (include "common.compatibility.isOpenshift" .context)) -}}
{{/* Remove incompatible user/group values that do not work in Openshift out of the box */}}
{{- $adaptedContext = omit $adaptedContext "fsGroup" "runAsUser" "runAsGroup" -}}
{{- if not .secContext.seLinuxOptions -}}
{{/* If it is an empty object, we remove it from the resulting context because it causes validation issues */}}
{{- $adaptedContext = omit $adaptedContext "seLinuxOptions" -}}
{{- end -}}
{{- if (((.context.Values.global).compatibility).openshift) -}}
{{- if or (eq .context.Values.global.compatibility.openshift.adaptSecurityContext "force") (and (eq .context.Values.global.compatibility.openshift.adaptSecurityContext "auto") (include "common.compatibility.isOpenshift" .context)) -}}
{{/* Remove incompatible user/group values that do not work in Openshift out of the box */}}
{{- $adaptedContext = omit $adaptedContext "fsGroup" "runAsUser" "runAsGroup" -}}
{{- if not .secContext.seLinuxOptions -}}
{{/* If it is an empty object, we remove it from the resulting context because it causes validation issues */}}
{{- $adaptedContext = omit $adaptedContext "seLinuxOptions" -}}
{{- end -}}
{{- end -}}
{{- end -}}

View File

@ -1,5 +1,5 @@
{{/*
Copyright VMware, Inc.
Copyright Broadcom, Inc. All Rights Reserved.
SPDX-License-Identifier: APACHE-2.0
*/}}

View File

@ -1,5 +1,5 @@
{{/*
Copyright VMware, Inc.
Copyright Broadcom, Inc. All Rights Reserved.
SPDX-License-Identifier: APACHE-2.0
*/}}
@ -9,15 +9,11 @@ Return the proper image name
{{ include "common.images.image" ( dict "imageRoot" .Values.path.to.the.image "global" .Values.global ) }}
*/}}
{{- define "common.images.image" -}}
{{- $registryName := .imageRoot.registry -}}
{{- $registryName := default .imageRoot.registry ((.global).imageRegistry) -}}
{{- $repositoryName := .imageRoot.repository -}}
{{- $separator := ":" -}}
{{- $termination := .imageRoot.tag | toString -}}
{{- if .global }}
{{- if .global.imageRegistry }}
{{- $registryName = .global.imageRegistry -}}
{{- end -}}
{{- end -}}
{{- if .imageRoot.digest }}
{{- $separator = "@" -}}
{{- $termination = .imageRoot.digest | toString -}}
@ -36,14 +32,12 @@ Return the proper Docker Image Registry Secret Names (deprecated: use common.ima
{{- define "common.images.pullSecrets" -}}
{{- $pullSecrets := list }}
{{- if .global }}
{{- range .global.imagePullSecrets -}}
{{- if kindIs "map" . -}}
{{- $pullSecrets = append $pullSecrets .name -}}
{{- else -}}
{{- $pullSecrets = append $pullSecrets . -}}
{{- end }}
{{- end -}}
{{- range ((.global).imagePullSecrets) -}}
{{- if kindIs "map" . -}}
{{- $pullSecrets = append $pullSecrets .name -}}
{{- else -}}
{{- $pullSecrets = append $pullSecrets . -}}
{{- end }}
{{- end -}}
{{- range .images -}}
@ -72,13 +66,11 @@ Return the proper Docker Image Registry Secret Names evaluating values as templa
{{- $pullSecrets := list }}
{{- $context := .context }}
{{- if $context.Values.global }}
{{- range $context.Values.global.imagePullSecrets -}}
{{- if kindIs "map" . -}}
{{- $pullSecrets = append $pullSecrets (include "common.tplvalues.render" (dict "value" .name "context" $context)) -}}
{{- else -}}
{{- $pullSecrets = append $pullSecrets (include "common.tplvalues.render" (dict "value" . "context" $context)) -}}
{{- end -}}
{{- range (($context.Values.global).imagePullSecrets) -}}
{{- if kindIs "map" . -}}
{{- $pullSecrets = append $pullSecrets (include "common.tplvalues.render" (dict "value" .name "context" $context)) -}}
{{- else -}}
{{- $pullSecrets = append $pullSecrets (include "common.tplvalues.render" (dict "value" . "context" $context)) -}}
{{- end -}}
{{- end -}}

View File

@ -1,5 +1,5 @@
{{/*
Copyright VMware, Inc.
Copyright Broadcom, Inc. All Rights Reserved.
SPDX-License-Identifier: APACHE-2.0
*/}}

View File

@ -1,5 +1,5 @@
{{/*
Copyright VMware, Inc.
Copyright Broadcom, Inc. All Rights Reserved.
SPDX-License-Identifier: APACHE-2.0
*/}}

View File

@ -1,5 +1,5 @@
{{/*
Copyright VMware, Inc.
Copyright Broadcom, Inc. All Rights Reserved.
SPDX-License-Identifier: APACHE-2.0
*/}}

View File

@ -1,5 +1,5 @@
{{/*
Copyright VMware, Inc.
Copyright Broadcom, Inc. All Rights Reserved.
SPDX-License-Identifier: APACHE-2.0
*/}}

View File

@ -1,5 +1,5 @@
{{/*
Copyright VMware, Inc.
Copyright Broadcom, Inc. All Rights Reserved.
SPDX-License-Identifier: APACHE-2.0
*/}}

View File

@ -1,5 +1,5 @@
{{/*
Copyright VMware, Inc.
Copyright Broadcom, Inc. All Rights Reserved.
SPDX-License-Identifier: APACHE-2.0
*/}}
@ -10,13 +10,7 @@ Return the proper Storage Class
*/}}
{{- define "common.storage.class" -}}
{{- $storageClass := .persistence.storageClass -}}
{{- if .global -}}
{{- if .global.storageClass -}}
{{- $storageClass = .global.storageClass -}}
{{- end -}}
{{- end -}}
{{- $storageClass := default .persistence.storageClass ((.global).storageClass) -}}
{{- if $storageClass -}}
{{- if (eq "-" $storageClass) -}}
{{- printf "storageClassName: \"\"" -}}

View File

@ -1,5 +1,5 @@
{{/*
Copyright VMware, Inc.
Copyright Broadcom, Inc. All Rights Reserved.
SPDX-License-Identifier: APACHE-2.0
*/}}

View File

@ -1,5 +1,5 @@
{{/*
Copyright VMware, Inc.
Copyright Broadcom, Inc. All Rights Reserved.
SPDX-License-Identifier: APACHE-2.0
*/}}

View File

@ -1,5 +1,5 @@
{{/*
Copyright VMware, Inc.
Copyright Broadcom, Inc. All Rights Reserved.
SPDX-License-Identifier: APACHE-2.0
*/}}
@ -13,10 +13,37 @@ Usage:
{{- if and (contains "bitnami/" .repository) (not (.tag | toString | regexFind "-r\\d+$|sha256:")) }}
WARNING: Rolling tag detected ({{ .repository }}:{{ .tag }}), please note that it is strongly recommended to avoid using rolling tags in a production environment.
+info https://docs.bitnami.com/tutorials/understand-rolling-tags-containers
+info https://docs.vmware.com/en/VMware-Tanzu-Application-Catalog/services/tutorials/GUID-understand-rolling-tags-containers-index.html
{{- end }}
{{- end -}}
{{/*
Warning about replaced images from the original.
Usage:
{{ include "common.warnings.modifiedImages" (dict "images" (list .Values.path.to.the.imageRoot) "context" $) }}
*/}}
{{- define "common.warnings.modifiedImages" -}}
{{- $affectedImages := list -}}
{{- $printMessage := false -}}
{{- $originalImages := .context.Chart.Annotations.images -}}
{{- range .images -}}
{{- $fullImageName := printf (printf "%s/%s:%s" .registry .repository .tag) -}}
{{- if not (contains $fullImageName $originalImages) }}
{{- $affectedImages = append $affectedImages (printf "%s/%s:%s" .registry .repository .tag) -}}
{{- $printMessage = true -}}
{{- end -}}
{{- end -}}
{{- if $printMessage }}
⚠ SECURITY WARNING: Original containers have been substituted. This Helm chart was designed, tested, and validated on multiple platforms using a specific set of Bitnami and Tanzu Application Catalog containers. Substituting other containers is likely to cause degraded security and performance, broken chart features, and missing environment variables.
Substituted images detected:
{{- range $affectedImages }}
- {{ . }}
{{- end }}
{{- end -}}
{{- end -}}
{{/*
Warning about not setting the resource object in all deployments.
Usage:

View File

@ -1,5 +1,5 @@
{{/*
Copyright VMware, Inc.
Copyright Broadcom, Inc. All Rights Reserved.
SPDX-License-Identifier: APACHE-2.0
*/}}

View File

@ -1,5 +1,5 @@
{{/*
Copyright VMware, Inc.
Copyright Broadcom, Inc. All Rights Reserved.
SPDX-License-Identifier: APACHE-2.0
*/}}

View File

@ -1,5 +1,5 @@
{{/*
Copyright VMware, Inc.
Copyright Broadcom, Inc. All Rights Reserved.
SPDX-License-Identifier: APACHE-2.0
*/}}

View File

@ -1,5 +1,5 @@
{{/*
Copyright VMware, Inc.
Copyright Broadcom, Inc. All Rights Reserved.
SPDX-License-Identifier: APACHE-2.0
*/}}

View File

@ -1,5 +1,5 @@
{{/*
Copyright VMware, Inc.
Copyright Broadcom, Inc. All Rights Reserved.
SPDX-License-Identifier: APACHE-2.0
*/}}

View File

@ -1,5 +1,5 @@
{{/*
Copyright VMware, Inc.
Copyright Broadcom, Inc. All Rights Reserved.
SPDX-License-Identifier: APACHE-2.0
*/}}

View File

@ -1,5 +1,5 @@
{{/*
Copyright VMware, Inc.
Copyright Broadcom, Inc. All Rights Reserved.
SPDX-License-Identifier: APACHE-2.0
*/}}

View File

@ -1,4 +1,4 @@
# Copyright VMware, Inc.
# Copyright Broadcom, Inc. All Rights Reserved.
# SPDX-License-Identifier: APACHE-2.0
## bitnami/common

View File

@ -67,6 +67,9 @@ spec:
{{- if .Values.apiURL }}
- --api-url={{ .Values.apiURL}}
{{- end }}
{{- if .Values.rootCAs }}
- --root-cas={{ .Values.rootCAs}}
{{- end }}
{{- if .Values.serverAddr }}
- --server-addr={{ .Values.serverAddr}}
{{- end }}

View File

@ -3,8 +3,7 @@ apiVersion: apiextensions.k8s.io/v1
kind: CustomResourceDefinition
metadata:
annotations:
controller-gen.kubebuilder.io/version: v0.9.2
creationTimestamp: null
controller-gen.kubebuilder.io/version: v0.14.0
name: domains.ingress.k8s.ngrok.com
spec:
group: ingress.k8s.ngrok.com
@ -42,14 +41,19 @@ spec:
description: Domain is the Schema for the domains API
properties:
apiVersion:
description: 'APIVersion defines the versioned schema of this representation
of an object. Servers should convert recognized schemas to the latest
internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources'
description: |-
APIVersion defines the versioned schema of this representation of an object.
Servers should convert recognized schemas to the latest internal value, and
may reject unrecognized values.
More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources
type: string
kind:
description: 'Kind is a string value representing the REST resource this
object represents. Servers may infer this from the endpoint the client
submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds'
description: |-
Kind is a string value representing the REST resource this object represents.
Servers may infer this from the endpoint the client submits requests to.
Cannot be updated.
In CamelCase.
More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds
type: string
metadata:
type: object

View File

@ -3,8 +3,7 @@ apiVersion: apiextensions.k8s.io/v1
kind: CustomResourceDefinition
metadata:
annotations:
controller-gen.kubebuilder.io/version: v0.9.2
creationTimestamp: null
controller-gen.kubebuilder.io/version: v0.14.0
name: ippolicies.ingress.k8s.ngrok.com
spec:
group: ingress.k8s.ngrok.com
@ -30,14 +29,19 @@ spec:
description: IPPolicy is the Schema for the ippolicies API
properties:
apiVersion:
description: 'APIVersion defines the versioned schema of this representation
of an object. Servers should convert recognized schemas to the latest
internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources'
description: |-
APIVersion defines the versioned schema of this representation of an object.
Servers should convert recognized schemas to the latest internal value, and
may reject unrecognized values.
More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources
type: string
kind:
description: 'Kind is a string value representing the REST resource this
object represents. Servers may infer this from the endpoint the client
submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds'
description: |-
Kind is a string value representing the REST resource this object represents.
Servers may infer this from the endpoint the client submits requests to.
Cannot be updated.
In CamelCase.
More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds
type: string
metadata:
type: object
@ -82,9 +86,9 @@ spec:
description: IPPolicyStatus defines the observed state of IPPolicy
properties:
id:
description: 'INSERT ADDITIONAL STATUS FIELD - define observed state
of cluster Important: Run "make" to regenerate code after modifying
this file'
description: |-
INSERT ADDITIONAL STATUS FIELD - define observed state of cluster
Important: Run "make" to regenerate code after modifying this file
type: string
rules:
items:

View File

@ -3,8 +3,7 @@ apiVersion: apiextensions.k8s.io/v1
kind: CustomResourceDefinition
metadata:
annotations:
controller-gen.kubebuilder.io/version: v0.9.2
creationTimestamp: null
controller-gen.kubebuilder.io/version: v0.14.0
name: tcpedges.ingress.k8s.ngrok.com
spec:
group: ingress.k8s.ngrok.com
@ -38,14 +37,19 @@ spec:
description: TCPEdge is the Schema for the tcpedges API
properties:
apiVersion:
description: 'APIVersion defines the versioned schema of this representation
of an object. Servers should convert recognized schemas to the latest
internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources'
description: |-
APIVersion defines the versioned schema of this representation of an object.
Servers should convert recognized schemas to the latest internal value, and
may reject unrecognized values.
More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources
type: string
kind:
description: 'Kind is a string value representing the REST resource this
object represents. Servers may infer this from the endpoint the client
submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds'
description: |-
Kind is a string value representing the REST resource this object represents.
Servers may infer this from the endpoint the client submits requests to.
Cannot be updated.
In CamelCase.
More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds
type: string
metadata:
type: object
@ -53,7 +57,8 @@ spec:
description: TCPEdgeSpec defines the desired state of TCPEdge
properties:
backend:
description: Backend is the definition for the tunnel group backend
description: |-
Backend is the definition for the tunnel group backend
that serves traffic for this edge
properties:
description:
@ -91,67 +96,17 @@ spec:
the object in the ngrok API/Dashboard
type: string
policy:
properties:
enabled:
description: Determines if the rule will be applied to traffic
type: boolean
inbound:
description: Inbound traffic rule
items:
properties:
actions:
description: Actions
items:
properties:
config:
type: object
x-kubernetes-preserve-unknown-fields: true
type:
type: string
type: object
type: array
expressions:
description: Expressions
items:
type: string
type: array
name:
description: Name
type: string
type: object
type: array
outbound:
description: Outbound traffic rule
items:
properties:
actions:
description: Actions
items:
properties:
config:
type: object
x-kubernetes-preserve-unknown-fields: true
type:
type: string
type: object
type: array
expressions:
description: Expressions
items:
type: string
type: array
name:
description: Name
type: string
type: object
type: array
description: raw json policy string that was applied to the ngrok
API
type: object
x-kubernetes-preserve-unknown-fields: true
type: object
status:
description: TCPEdgeStatus defines the observed state of TCPEdge
properties:
backend:
description: Backend stores the status of the tunnel group backend,
description: |-
Backend stores the status of the tunnel group backend,
mainly the ID of the backend
properties:
id:

View File

@ -3,8 +3,7 @@ apiVersion: apiextensions.k8s.io/v1
kind: CustomResourceDefinition
metadata:
annotations:
controller-gen.kubebuilder.io/version: v0.9.2
creationTimestamp: null
controller-gen.kubebuilder.io/version: v0.14.0
name: tlsedges.ingress.k8s.ngrok.com
spec:
group: ingress.k8s.ngrok.com
@ -38,14 +37,19 @@ spec:
description: TLSEdge is the Schema for the tlsedges API
properties:
apiVersion:
description: 'APIVersion defines the versioned schema of this representation
of an object. Servers should convert recognized schemas to the latest
internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources'
description: |-
APIVersion defines the versioned schema of this representation of an object.
Servers should convert recognized schemas to the latest internal value, and
may reject unrecognized values.
More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources
type: string
kind:
description: 'Kind is a string value representing the REST resource this
object represents. Servers may infer this from the endpoint the client
submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds'
description: |-
Kind is a string value representing the REST resource this object represents.
Servers may infer this from the endpoint the client submits requests to.
Cannot be updated.
In CamelCase.
More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds
type: string
metadata:
type: object
@ -53,7 +57,8 @@ spec:
description: TLSEdgeSpec defines the desired state of TLSEdge
properties:
backend:
description: Backend is the definition for the tunnel group backend
description: |-
Backend is the definition for the tunnel group backend
that serves traffic for this edge
properties:
description:
@ -98,68 +103,18 @@ spec:
mutualTls:
properties:
certificateAuthorities:
description: List of CA IDs that will be used to validate incoming
connections to the edge.
description: |-
List of CA IDs that will be used to validate incoming connections to the
edge.
items:
type: string
type: array
type: object
policy:
properties:
enabled:
description: Determines if the rule will be applied to traffic
type: boolean
inbound:
description: Inbound traffic rule
items:
properties:
actions:
description: Actions
items:
properties:
config:
type: object
x-kubernetes-preserve-unknown-fields: true
type:
type: string
type: object
type: array
expressions:
description: Expressions
items:
type: string
type: array
name:
description: Name
type: string
type: object
type: array
outbound:
description: Outbound traffic rule
items:
properties:
actions:
description: Actions
items:
properties:
config:
type: object
x-kubernetes-preserve-unknown-fields: true
type:
type: string
type: object
type: array
expressions:
description: Expressions
items:
type: string
type: array
name:
description: Name
type: string
type: object
type: array
description: raw json policy string that was applied to the ngrok
API
type: object
x-kubernetes-preserve-unknown-fields: true
tlsTermination:
properties:
minVersion:
@ -167,10 +122,11 @@ spec:
connections to the edge
type: string
terminateAt:
description: TerminateAt determines where the TLS connection should
be terminated. "edge" if the ngrok edge should terminate TLS
traffic, "upstream" if TLS traffic should be passed through
to the upstream ngrok agent / application server for termination.
description: |-
TerminateAt determines where the TLS connection should be terminated.
"edge" if the ngrok edge should terminate TLS traffic, "upstream" if TLS
traffic should be passed through to the upstream ngrok agent /
application server for termination.
type: string
type: object
type: object
@ -178,7 +134,8 @@ spec:
description: TLSEdgeStatus defines the observed state of TLSEdge
properties:
backend:
description: Backend stores the status of the tunnel group backend,
description: |-
Backend stores the status of the tunnel group backend,
mainly the ID of the backend
properties:
id:

View File

@ -3,8 +3,7 @@ apiVersion: apiextensions.k8s.io/v1
kind: CustomResourceDefinition
metadata:
annotations:
controller-gen.kubebuilder.io/version: v0.9.2
creationTimestamp: null
controller-gen.kubebuilder.io/version: v0.14.0
name: tunnels.ingress.k8s.ngrok.com
spec:
group: ingress.k8s.ngrok.com
@ -30,14 +29,19 @@ spec:
description: Tunnel is the Schema for the tunnels API
properties:
apiVersion:
description: 'APIVersion defines the versioned schema of this representation
of an object. Servers should convert recognized schemas to the latest
internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources'
description: |-
APIVersion defines the versioned schema of this representation of an object.
Servers should convert recognized schemas to the latest internal value, and
may reject unrecognized values.
More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources
type: string
kind:
description: 'Kind is a string value representing the REST resource this
object represents. Servers may infer this from the endpoint the client
submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds'
description: |-
Kind is a string value representing the REST resource this object represents.
Servers may infer this from the endpoint the client submits requests to.
Cannot be updated.
In CamelCase.
More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds
type: string
metadata:
type: object

View File

@ -0,0 +1,62 @@
---
apiVersion: apiextensions.k8s.io/v1
kind: CustomResourceDefinition
metadata:
annotations:
controller-gen.kubebuilder.io/version: v0.14.0
name: ngroktrafficpolicies.ngrok.k8s.ngrok.com
spec:
group: ngrok.k8s.ngrok.com
names:
kind: NgrokTrafficPolicy
listKind: NgrokTrafficPolicyList
plural: ngroktrafficpolicies
singular: ngroktrafficpolicy
scope: Namespaced
versions:
- name: v1alpha1
schema:
openAPIV3Schema:
description: NgrokTrafficPolicy is the Schema for the ngroktrafficpolicies
API
properties:
apiVersion:
description: |-
APIVersion defines the versioned schema of this representation of an object.
Servers should convert recognized schemas to the latest internal value, and
may reject unrecognized values.
More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources
type: string
kind:
description: |-
Kind is a string value representing the REST resource this object represents.
Servers may infer this from the endpoint the client submits requests to.
Cannot be updated.
In CamelCase.
More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds
type: string
metadata:
type: object
spec:
description: NgrokTrafficPolicySpec defines the desired state of NgrokTrafficPolicy
properties:
policy:
description: The raw json encoded policy that was applied to the ngrok
API
type: object
x-kubernetes-preserve-unknown-fields: true
type: object
status:
description: NgrokTrafficPolicyStatus defines the observed state of NgrokTrafficPolicy
properties:
policy:
description: The raw json encoded policy that was applied to the ngrok
API
type: object
x-kubernetes-preserve-unknown-fields: true
type: object
type: object
served: true
storage: true
subresources:
status: {}

View File

@ -2,7 +2,6 @@
apiVersion: rbac.authorization.k8s.io/v1
kind: ClusterRole
metadata:
creationTimestamp: null
name: ngrok-ingress-controller-manager-role
rules:
- apiGroups:
@ -292,3 +291,29 @@ rules:
- list
- update
- watch
- apiGroups:
- ngrok.k8s.ngrok.com
resources:
- ngroktrafficpolicies
verbs:
- create
- delete
- get
- list
- patch
- update
- watch
- apiGroups:
- ngrok.k8s.ngrok.com
resources:
- ngroktrafficpolicies/finalizers
verbs:
- update
- apiGroups:
- ngrok.k8s.ngrok.com
resources:
- ngroktrafficpolicies/status
verbs:
- get
- patch
- update

View File

@ -67,6 +67,9 @@ credentials:
## @param region ngrok region to create tunnels in. Defaults to connect to the closest geographical region.
region: ""
## @param rootCAs Set to "trusted" for the ngrok agent CA or "host" to trust the host's CA. Defaults to "trusted".
rootCAs: ""
## @param serverAddr This is the address of the ngrok server to connect to. You should set this if you are using a custom ingress address.
serverAddr: ""

View File

@ -4,7 +4,7 @@ annotations:
catalog.cattle.io/kube-version: '>=1.21-0'
catalog.cattle.io/release-name: psmdb-db
apiVersion: v2
appVersion: 1.15.0
appVersion: 1.16.0
description: A Helm chart for installing Percona Server MongoDB Cluster Databases
using the PSMDB Operator.
home: https://www.percona.com/doc/kubernetes-operator-for-psmongodb/index.html
@ -15,4 +15,4 @@ maintainers:
- email: natalia.marukovich@percona.com
name: nmarukovich
name: psmdb-db
version: 1.15.3
version: 1.16.0

View File

@ -8,7 +8,7 @@ Useful links:
## Pre-requisites
* Percona Operator for MongoDB running in your Kubernetes cluster. See installation details [here](https://github.com/percona/percona-helm-charts/blob/main/charts/psmdb-operator) or in the [Operator Documentation](https://www.percona.com/doc/kubernetes-operator-for-psmongodb/helm.html).
* Kubernetes 1.24+
* Kubernetes 1.25+
* Helm v3
# Chart Details
@ -19,17 +19,21 @@ To install the chart with the `psmdb` release name using a dedicated namespace (
```sh
helm repo add percona https://percona.github.io/percona-helm-charts/
helm install my-db percona/psmdb-db --version 1.15.0 --namespace my-namespace
helm install my-db percona/psmdb-db --version 1.16.0 --namespace my-namespace
```
The chart can be customized using the following configurable parameters:
| Parameter | Description | Default |
| ------------------------------- | ------------------------------------------------------------------------------|---------------------------------------|
| `crVersion` | CR Cluster Manifest version | `1.15.0` |
| `crVersion` | CR Cluster Manifest version | `1.16.0` |
| `pause` | Stop PSMDB Database safely | `false` |
| `unmanaged` | Start cluster and don't manage it (cross cluster replication) | `false` |
| `allowUnsafeConfigurations` | Allows forbidden configurations like even number of PSMDB cluster pods | `false` |
| `unsafeFlags.tls` | Allows users from configuring a cluster without TLS/SSL certificates | `false` |
| `unsafeFlags.replsetSize` | Allows users from configuring a cluster with unsafe parameters: starting it with less than 3 replica set instances or with an even number of replica set instances without additional arbiter | `false` |
| `unsafeFlags.mongosSize` | Allows users from configuring a sharded cluster with less than 3 config server Pods or less than 2 mongos Pods | `false` |
| `unsafeFlags.terminationGracePeriod` | Allows users from configuring a sharded cluster without termination grace period for replica set | `false` |
| `unsafeFlags.backupIfUnhealthy` | Allows running backup on a cluster with failed health checks | `false` |
| `clusterServiceDNSSuffix` | The (non-standard) cluster domain to be used as a suffix of the Service name | `""` |
| `clusterServiceDNSMode` | Mode for the cluster service dns (Internal/ServiceMesh) | `""` |
| `ignoreAnnotations` | The list of annotations to be ignored by the Operator | `[]` |
@ -50,93 +54,104 @@ The chart can be customized using the following configurable parameters:
| `initImage.repository` | Repository for custom init image | `""` |
| `initImage.tag` | Tag for custom init image | `""` |
| `initContainerSecurityContext` | A custom Kubernetes Security Context for a Container for the initImage | `{}` |
| `tls.mode` | Control usage of TLS (allowTLS, preferTLS, requireTLS, disabled) | `preferTLS` |
| `tls.certValidityDuration` | The validity duration of the external certificate for cert manager | `""` |
| `secrets` | Operator secrets section | `{}` |
| `tls.allowInvalidCertificates` | If enabled the mongo shell will not attempt to validate the server certificates | `true` |
| `tls.issuerConf.name` | A cert-manager issuer name | `""` |
| `tls.issuerConf.kind` | A cert-manager issuer kind | `""` |
| `tls.issuerConf.group` | A cert-manager issuer group | `""` |
| `secrets.users` | The name of the Secrets object for the MongoDB users required to run the operator | `""` |
| `secrets.encryptionKey` | Set secret for data at rest encryption key | `""` |
| `secrets.vault` | Specifies a secret object to provide integration with HashiCorp Vault | `""` |
| `secrets.ldapSecret` | Specifies a secret object for LDAP over TLS connection between MongoDB and OpenLDAP server | `""` |
| `secrets.sse` | The name of the Secrets object for server side encryption credentials | `""` |
| `secrets.ssl` | A secret with TLS certificate generated for external communications | `""` |
| `secrets.sslInternal` | A secret with TLS certificate generated for internal communications | `""` |
| `pmm.enabled` | Enable integration with [Percona Monitoring and Management software](https://www.percona.com/blog/2020/07/23/using-percona-kubernetes-operators-with-percona-monitoring-and-management/) | `false` |
| `pmm.image.repository` | PMM Container image repository | `percona/pmm-client` |
| `pmm.image.tag` | PMM Container image tag | `2.41.0` |
| `pmm.image.tag` | PMM Container image tag | `2.41.2` |
| `pmm.serverHost` | PMM server related K8S service hostname | `monitoring-service` |
||
| `replsets[0].name` | ReplicaSet name | `rs0` |
| `replsets[0].size` | ReplicaSet size (pod quantity) | `3` |
| `replsets[0].terminationGracePeriodSeconds` | The amount of seconds Kubernetes will wait for a clean replica set Pods termination | `""` |
| `replsets[0].externalNodes` | ReplicaSet external nodes (cross cluster replication) | `[]` |
| `replsets[0].configuration` | Custom config for mongod in replica set | `""` |
| `replsets[0].topologySpreadConstraints` | Control how Pods are spread across your cluster among failure-domains such as regions, zones, nodes, and other user-defined topology domains | `{}` |
| `replsets[0].serviceAccountName` | Run replicaset Containers under specified K8S SA | `""` |
| `replsets[0].affinity.antiAffinityTopologyKey` | ReplicaSet Pod affinity | `kubernetes.io/hostname` |
| `replsets[0].affinity.advanced` | ReplicaSet Pod advanced affinity | `{}` |
| `replsets[0].tolerations` | ReplicaSet Pod tolerations | `[]` |
| `replsets[0].priorityClass` | ReplicaSet Pod priorityClassName | `""` |
| `replsets[0].annotations` | ReplicaSet Pod annotations | `{}` |
| `replsets[0].labels` | ReplicaSet Pod labels | `{}` |
| `replsets[0].nodeSelector` | ReplicaSet Pod nodeSelector labels | `{}` |
| `replsets[0].livenessProbe` | ReplicaSet Pod livenessProbe structure | `{}` |
| `replsets[0].readinessProbe` | ReplicaSet Pod readinessProbe structure | `{}` |
| `replsets[0].storage` | Set cacheSizeRatio or other custom MongoDB storage options | `{}` |
| `replsets[0].podSecurityContext` | Set the security context for a Pod | `{}` |
| `replsets[0].containerSecurityContext` | Set the security context for a Container | `{}` |
| `replsets[0].runtimeClass` | ReplicaSet Pod runtimeClassName | `""` |
| `replsets[0].sidecars` | ReplicaSet Pod sidecars | `{}` |
| `replsets[0].sidecarVolumes` | ReplicaSet Pod sidecar volumes | `[]` |
| `replsets[0].sidecarPVCs` | ReplicaSet Pod sidecar PVCs | `[]` |
| `replsets[0].podDisruptionBudget.maxUnavailable` | ReplicaSet failed Pods maximum quantity | `1` |
| `replsets[0].splitHorizons` | External URI for Split-horizon for replica set Pods of the exposed cluster | `{}` |
| `replsets[0].expose.enabled` | Allow access to replicaSet from outside of Kubernetes | `false` |
| `replsets[0].expose.exposeType` | Network service access point type | `ClusterIP` |
| `replsets[0].expose.loadBalancerSourceRanges` | Limit client IP's access to Load Balancer | `{}` |
| `replsets[0].expose.serviceAnnotations` | ReplicaSet service annotations | `{}` |
| `replsets[0].expose.serviceLabels` | ReplicaSet service labels | `{}` |
| `replsets[0].schedulerName` | ReplicaSet Pod schedulerName | `""` |
| `replsets[0].resources` | ReplicaSet Pods resource requests and limits | `{}` |
| `replsets[0].volumeSpec` | ReplicaSet Pods storage resources | `{}` |
| `replsets[0].volumeSpec.emptyDir` | ReplicaSet Pods emptyDir K8S storage | `{}` |
| `replsets[0].volumeSpec.hostPath` | ReplicaSet Pods hostPath K8S storage | |
| `replsets[0].volumeSpec.hostPath.path` | ReplicaSet Pods hostPath K8S storage path | `""` |
| `replsets[0].volumeSpec.hostPath.type` | Type for hostPath volume | `Directory` |
| `replsets[0].volumeSpec.pvc` | ReplicaSet Pods PVC request parameters | |
| `replsets[0].volumeSpec.pvc.annotations` | The Kubernetes annotations metadata for Persistent Volume Claim | `{}` |
| `replsets[0].volumeSpec.pvc.labels` | The Kubernetes labels metadata for Persistent Volume Claim | `{}` |
| `replsets[0].volumeSpec.pvc.storageClassName` | ReplicaSet Pods PVC target storageClass | `""` |
| `replsets[0].volumeSpec.pvc.accessModes` | ReplicaSet Pods PVC access policy | `[]` |
| `replsets[0].volumeSpec.pvc.resources.requests.storage` | ReplicaSet Pods PVC storage size | `3Gi` |
| `replsets[0].hostAliases` | The IP address for Kubernetes host aliases | `[]` |
| `replsets[0].nonvoting.enabled` | Add MongoDB nonvoting Pods | `false` |
| `replsets[0].nonvoting.podSecurityContext` | Set the security context for a Pod | `{}` |
| `replsets[0].nonvoting.containerSecurityContext` | Set the security context for a Container | `{}` |
| `replsets[0].nonvoting.size` | Number of nonvoting Pods | `1` |
| `replsets[0].nonvoting.configuration` | Custom config for mongod nonvoting member | `""` |
| `replsets[0].nonvoting.serviceAccountName` | Run replicaset nonvoting Container under specified K8S SA | `""` |
| `replsets[0].nonvoting.affinity.antiAffinityTopologyKey` | Nonvoting Pods affinity | `kubernetes.io/hostname` |
| `replsets[0].nonvoting.affinity.advanced` | Nonvoting Pods advanced affinity | `{}` |
| `replsets[0].nonvoting.tolerations` | Nonvoting Pod tolerations | `[]` |
| `replsets[0].nonvoting.priorityClass` | Nonvoting Pod priorityClassName | `""` |
| `replsets[0].nonvoting.annotations` | Nonvoting Pod annotations | `{}` |
| `replsets[0].nonvoting.labels` | Nonvoting Pod labels | `{}` |
| `replsets[0].nonvoting.nodeSelector` | Nonvoting Pod nodeSelector labels | `{}` |
| `replsets[0].nonvoting.podDisruptionBudget.maxUnavailable` | Nonvoting failed Pods maximum quantity | `1` |
| `replsets[0].nonvoting.resources` | Nonvoting Pods resource requests and limits | `{}` |
| `replsets[0].nonvoting.volumeSpec` | Nonvoting Pods storage resources | `{}` |
| `replsets[0].nonvoting.volumeSpec.emptyDir` | Nonvoting Pods emptyDir K8S storage | `{}` |
| `replsets[0].nonvoting.volumeSpec.hostPath` | Nonvoting Pods hostPath K8S storage | |
| `replsets[0].nonvoting.volumeSpec.hostPath.path` | Nonvoting Pods hostPath K8S storage path | `""` |
| `replsets[0].nonvoting.volumeSpec.hostPath.type` | Type for hostPath volume | `Directory` |
| `replsets[0].nonvoting.volumeSpec.pvc` | Nonvoting Pods PVC request parameters | |
| `replsets[0].nonvoting.volumeSpec.pvc.annotations` | The Kubernetes annotations metadata for Persistent Volume Claim | `{}` |
| `replsets[0].nonvoting.volumeSpec.pvc.labels` | The Kubernetes labels metadata for Persistent Volume Claim | `{}` |
| `replsets[0].nonvoting.volumeSpec.pvc.storageClassName` | Nonvoting Pods PVC target storageClass | `""` |
| `replsets[0].nonvoting.volumeSpec.pvc.accessModes` | Nonvoting Pods PVC access policy | `[]` |
| `replsets[0].nonvoting.volumeSpec.pvc.resources.requests.storage` | Nonvoting Pods PVC storage size | `3Gi` |
| `replsets[0].arbiter.enabled` | Create MongoDB arbiter service | `false` |
| `replsets[0].arbiter.size` | MongoDB arbiter Pod quantity | `1` |
| `replsets[0].arbiter.serviceAccountName` | Run replicaset arbiter Container under specified K8S SA | `""` |
| `replsets[0].arbiter.affinity.antiAffinityTopologyKey` | MongoDB arbiter Pod affinity | `kubernetes.io/hostname` |
| `replsets[0].arbiter.affinity.advanced` | MongoDB arbiter Pod advanced affinity | `{}` |
| `replsets[0].arbiter.tolerations` | MongoDB arbiter Pod tolerations | `[]` |
| `replsets[0].arbiter.priorityClass` | MongoDB arbiter priorityClassName | `""` |
| `replsets[0].arbiter.annotations` | MongoDB arbiter Pod annotations | `{}` |
| `replsets[0].arbiter.labels` | MongoDB arbiter Pod labels | `{}` |
| `replsets[0].arbiter.nodeSelector` | MongoDB arbiter Pod nodeSelector labels | `{}` |
| `replsets.rs0.name` | ReplicaSet name | `rs0` |
| `replsets.rs0.size` | ReplicaSet size (pod quantity) | `3` |
| `replsets.rs0.terminationGracePeriodSeconds` | The amount of seconds Kubernetes will wait for a clean replica set Pods termination | `""` |
| `replsets.rs0.externalNodes` | ReplicaSet external nodes (cross cluster replication) | `[]` |
| `replsets.rs0.configuration` | Custom config for mongod in replica set | `""` |
| `replsets.rs0.topologySpreadConstraints` | Control how Pods are spread across your cluster among failure-domains such as regions, zones, nodes, and other user-defined topology domains | `{}` |
| `replsets.rs0.serviceAccountName` | Run replicaset Containers under specified K8S SA | `""` |
| `replsets.rs0.affinity.antiAffinityTopologyKey` | ReplicaSet Pod affinity | `kubernetes.io/hostname` |
| `replsets.rs0.affinity.advanced` | ReplicaSet Pod advanced affinity | `{}` |
| `replsets.rs0.tolerations` | ReplicaSet Pod tolerations | `[]` |
| `replsets.rs0.priorityClass` | ReplicaSet Pod priorityClassName | `""` |
| `replsets.rs0.annotations` | ReplicaSet Pod annotations | `{}` |
| `replsets.rs0.labels` | ReplicaSet Pod labels | `{}` |
| `replsets.rs0.nodeSelector` | ReplicaSet Pod nodeSelector labels | `{}` |
| `replsets.rs0.livenessProbe` | ReplicaSet Pod livenessProbe structure | `{}` |
| `replsets.rs0.readinessProbe` | ReplicaSet Pod readinessProbe structure | `{}` |
| `replsets.rs0.storage` | Set cacheSizeRatio or other custom MongoDB storage options | `{}` |
| `replsets.rs0.podSecurityContext` | Set the security context for a Pod | `{}` |
| `replsets.rs0.containerSecurityContext` | Set the security context for a Container | `{}` |
| `replsets.rs0.runtimeClass` | ReplicaSet Pod runtimeClassName | `""` |
| `replsets.rs0.sidecars` | ReplicaSet Pod sidecars | `{}` |
| `replsets.rs0.sidecarVolumes` | ReplicaSet Pod sidecar volumes | `[]` |
| `replsets.rs0.sidecarPVCs` | ReplicaSet Pod sidecar PVCs | `[]` |
| `replsets.rs0.podDisruptionBudget.maxUnavailable` | ReplicaSet failed Pods maximum quantity | `1` |
| `replsets.rs0.splitHorizons` | External URI for Split-horizon for replica set Pods of the exposed cluster | `{}` |
| `replsets.rs0.expose.enabled` | Allow access to replicaSet from outside of Kubernetes | `false` |
| `replsets.rs0.expose.exposeType` | Network service access point type | `ClusterIP` |
| `replsets.rs0.expose.loadBalancerSourceRanges` | Limit client IP's access to Load Balancer | `{}` |
| `replsets.rs0.expose.serviceAnnotations` | ReplicaSet service annotations | `{}` |
| `replsets.rs0.expose.serviceLabels` | ReplicaSet service labels | `{}` |
| `replsets.rs0.schedulerName` | ReplicaSet Pod schedulerName | `""` |
| `replsets.rs0.resources` | ReplicaSet Pods resource requests and limits | `{}` |
| `replsets.rs0.volumeSpec` | ReplicaSet Pods storage resources | `{}` |
| `replsets.rs0.volumeSpec.emptyDir` | ReplicaSet Pods emptyDir K8S storage | `{}` |
| `replsets.rs0.volumeSpec.hostPath` | ReplicaSet Pods hostPath K8S storage | |
| `replsets.rs0.volumeSpec.hostPath.path` | ReplicaSet Pods hostPath K8S storage path | `""` |
| `replsets.rs0.volumeSpec.hostPath.type` | Type for hostPath volume | `Directory` |
| `replsets.rs0.volumeSpec.pvc` | ReplicaSet Pods PVC request parameters | |
| `replsets.rs0.volumeSpec.pvc.annotations` | The Kubernetes annotations metadata for Persistent Volume Claim | `{}` |
| `replsets.rs0.volumeSpec.pvc.labels` | The Kubernetes labels metadata for Persistent Volume Claim | `{}` |
| `replsets.rs0.volumeSpec.pvc.storageClassName` | ReplicaSet Pods PVC target storageClass | `""` |
| `replsets.rs0.volumeSpec.pvc.accessModes` | ReplicaSet Pods PVC access policy | `[]` |
| `replsets.rs0.volumeSpec.pvc.resources.requests.storage` | ReplicaSet Pods PVC storage size | `3Gi` |
| `replsets.rs0.hostAliases` | The IP address for Kubernetes host aliases | `[]` |
| `replsets.rs0.nonvoting.enabled` | Add MongoDB nonvoting Pods | `false` |
| `replsets.rs0.nonvoting.podSecurityContext` | Set the security context for a Pod | `{}` |
| `replsets.rs0.nonvoting.containerSecurityContext` | Set the security context for a Container | `{}` |
| `replsets.rs0.nonvoting.size` | Number of nonvoting Pods | `1` |
| `replsets.rs0.nonvoting.configuration` | Custom config for mongod nonvoting member | `""` |
| `replsets.rs0.nonvoting.serviceAccountName` | Run replicaset nonvoting Container under specified K8S SA | `""` |
| `replsets.rs0.nonvoting.affinity.antiAffinityTopologyKey` | Nonvoting Pods affinity | `kubernetes.io/hostname` |
| `replsets.rs0.nonvoting.affinity.advanced` | Nonvoting Pods advanced affinity | `{}` |
| `replsets.rs0.nonvoting.tolerations` | Nonvoting Pod tolerations | `[]` |
| `replsets.rs0.nonvoting.priorityClass` | Nonvoting Pod priorityClassName | `""` |
| `replsets.rs0.nonvoting.annotations` | Nonvoting Pod annotations | `{}` |
| `replsets.rs0.nonvoting.labels` | Nonvoting Pod labels | `{}` |
| `replsets.rs0.nonvoting.nodeSelector` | Nonvoting Pod nodeSelector labels | `{}` |
| `replsets.rs0.nonvoting.podDisruptionBudget.maxUnavailable` | Nonvoting failed Pods maximum quantity | `1` |
| `replsets.rs0.nonvoting.resources` | Nonvoting Pods resource requests and limits | `{}` |
| `replsets.rs0.nonvoting.volumeSpec` | Nonvoting Pods storage resources | `{}` |
| `replsets.rs0.nonvoting.volumeSpec.emptyDir` | Nonvoting Pods emptyDir K8S storage | `{}` |
| `replsets.rs0.nonvoting.volumeSpec.hostPath` | Nonvoting Pods hostPath K8S storage | |
| `replsets.rs0.nonvoting.volumeSpec.hostPath.path` | Nonvoting Pods hostPath K8S storage path | `""` |
| `replsets.rs0.nonvoting.volumeSpec.hostPath.type` | Type for hostPath volume | `Directory` |
| `replsets.rs0.nonvoting.volumeSpec.pvc` | Nonvoting Pods PVC request parameters | |
| `replsets.rs0.nonvoting.volumeSpec.pvc.annotations` | The Kubernetes annotations metadata for Persistent Volume Claim | `{}` |
| `replsets.rs0.nonvoting.volumeSpec.pvc.labels` | The Kubernetes labels metadata for Persistent Volume Claim | `{}` |
| `replsets.rs0.nonvoting.volumeSpec.pvc.storageClassName` | Nonvoting Pods PVC target storageClass | `""` |
| `replsets.rs0.nonvoting.volumeSpec.pvc.accessModes` | Nonvoting Pods PVC access policy | `[]` |
| `replsets.rs0.nonvoting.volumeSpec.pvc.resources.requests.storage` | Nonvoting Pods PVC storage size | `3Gi` |
| `replsets.rs0.arbiter.enabled` | Create MongoDB arbiter service | `false` |
| `replsets.rs0.arbiter.size` | MongoDB arbiter Pod quantity | `1` |
| `replsets.rs0.arbiter.serviceAccountName` | Run replicaset arbiter Container under specified K8S SA | `""` |
| `replsets.rs0.arbiter.affinity.antiAffinityTopologyKey` | MongoDB arbiter Pod affinity | `kubernetes.io/hostname` |
| `replsets.rs0.arbiter.affinity.advanced` | MongoDB arbiter Pod advanced affinity | `{}` |
| `replsets.rs0.arbiter.tolerations` | MongoDB arbiter Pod tolerations | `[]` |
| `replsets.rs0.arbiter.priorityClass` | MongoDB arbiter priorityClassName | `""` |
| `replsets.rs0.arbiter.annotations` | MongoDB arbiter Pod annotations | `{}` |
| `replsets.rs0.arbiter.labels` | MongoDB arbiter Pod labels | `{}` |
| `replsets.rs0.arbiter.nodeSelector` | MongoDB arbiter Pod nodeSelector labels | `{}` |
| |
| `sharding.enabled` | Enable sharding setup | `true` |
| `sharding.balancer.enabled` | Enable/disable balancer | `true` |
@ -213,6 +228,7 @@ The chart can be customized using the following configurable parameters:
| `sharding.mongos.expose.loadBalancerSourceRanges` | Limit client IP's access to Load Balancer | `{}` |
| `sharding.mongos.expose.serviceAnnotations` | Mongos service annotations | `{}` |
| `sharding.mongos.expose.serviceLabels` | Mongos service labels | `{}` |
| `sharding.mongos.expose.nodePort` | Custom port if exposing mongos via NodePort | `""` |
| `sharding.mongos.hostAliases` | The IP address for Kubernetes host aliases | `[]` |
| |
| `backup.enabled` | Enable backup PBM agent | `true` |
@ -222,13 +238,14 @@ The chart can be customized using the following configurable parameters:
| `backup.restartOnFailure` | Backup Pods restart policy | `true` |
| `backup.image.repository` | PBM Container image repository | `percona/percona-backup-mongodb` |
| `backup.image.tag` | PBM Container image tag | `2.3.0` |
| `backup.serviceAccountName` | Run PBM Container under specified K8S SA | `percona-server-mongodb-operator` |
| `backup.storages` | Local/remote backup storages settings | `{}` |
| `backup.pitr.enabled` | Enable point in time recovery for backup | `false` |
| `backup.pitr.oplogOnly` | Start collecting oplogs even if full logical backup doesn't exist | `false` |
| `backup.pitr.oplogSpanMin` | Number of minutes between the uploads of oplogs | `10` |
| `backup.pitr.compressionType` | The point-in-time-recovery chunks compression format | `""` |
| `backup.pitr.compressionLevel` | The point-in-time-recovery chunks compression level | `""` |
| `backup.configuration.backupOptions` | Custom configuration settings for backup | `{}` |
| `backup.configuration.restoreOptions` | Custom configuration settings for restore | `{}` |
| `backup.tasks` | Backup working schedule | `{}` |
| `users` | PSMDB essential users | `{}` |
@ -244,6 +261,6 @@ This is great for a dev PSMDB/MongoDB cluster as it doesn't bother with backups
```bash
$ helm install dev --namespace psmdb . \
--set runUid=1001 --set "replsets[0].volumeSpec.pvc.resources.requests.storage=20Gi" \
--set runUid=1001 --set "replsets.rs0.volumeSpec.pvc.resources.requests.storage=20Gi" \
--set backup.enabled=false --set sharding.enabled=false
```

View File

@ -28,13 +28,13 @@ Percona Server for MongoDB cluster is deployed now. Get the username and passwor
Connect to the cluster:
{{- if .Values.sharding.enabled }}
kubectl run -i --rm --tty percona-client --image=percona/percona-server-mongodb:5.0 --restart=Never \
-- mongo "mongodb://${ADMIN_USER}:${ADMIN_PASSWORD}@{{ include "psmdb-database.fullname" . }}-mongos.{{ .Release.Namespace }}.svc.cluster.local/admin?ssl=false"
kubectl run -i --rm --tty percona-client --image=percona/percona-server-mongodb:7.0 --restart=Never \
-- mongosh "mongodb://${ADMIN_USER}:${ADMIN_PASSWORD}@{{ include "psmdb-database.fullname" . }}-mongos.{{ .Release.Namespace }}.svc.cluster.local/admin?ssl=false"
{{- else }}
kubectl run -i --rm --tty percona-client --image=percona/percona-server-mongodb:5.0 --restart=Never \
-- mongo "mongodb+srv://${ADMIN_USER}:${ADMIN_PASSWORD}@{{ include "psmdb-database.fullname" . }}-{{ (index .Values.replsets 0).name }}.{{ .Release.Namespace }}.svc.cluster.local/admin?replicaSet=rs0&ssl=false"
kubectl run -i --rm --tty percona-client --image=percona/percona-server-mongodb:7.0 --restart=Never \
-- mongosh "mongodb+srv://${ADMIN_USER}:${ADMIN_PASSWORD}@{{ include "psmdb-database.fullname" . }}-{{ .Values.replsets.rs0.name }}.{{ .Release.Namespace }}.svc.cluster.local/admin?replicaSet=rs0&ssl=false"
{{- end }}

View File

@ -25,8 +25,9 @@ spec:
{{- end }}
image: "{{ .Values.image.repository }}:{{ .Values.image.tag }}"
imagePullPolicy: "{{ .Values.imagePullPolicy }}"
{{- if .Values.allowUnsafeConfigurations }}
allowUnsafeConfigurations: true
{{- if .Values.unsafeFlags }}
unsafeFlags:
{{ .Values.unsafeFlags | toYaml | indent 4 }}
{{- end }}
{{- if .Values.ignoreAnnotations }}
ignoreAnnotations:
@ -76,8 +77,12 @@ spec:
image: "{{ .Values.pmm.image.repository }}:{{ .Values.pmm.image.tag }}"
serverHost: {{ .Values.pmm.serverHost }}
replsets:
{{- range $replset := .Values.replsets }}
{{- range $k,$replset := .Values.replsets }}
{{- if $replset.name }}
- name: {{ $replset.name }}
{{- else }}
- name: {{ $k }}
{{- end }}
size: {{ $replset.size }}
{{- if $replset.terminationGracePeriodSeconds }}
terminationGracePeriodSeconds: {{ $replset.terminationGracePeriodSeconds }}
@ -97,8 +102,10 @@ spec:
{{- if $replset.serviceAccountName }}
serviceAccountName: {{ $replset.serviceAccountName }}
{{- end }}
{{- if $replset.affinity }}
affinity:
{{ $replset.affinity | toYaml | indent 6 }}
{{- end }}
{{- if $replset.priorityClass }}
priorityClassName: {{ $replset.priorityClass }}
{{- end }}
@ -186,9 +193,11 @@ spec:
schedulerName: {{ $replset.schedulerName }}
{{- end }}
resources:
{{- if $replset.resources }}
{{ $replset.resources | toYaml | indent 6 }}
{{- if $replset.volumeSpec }}
{{- end }}
volumeSpec:
{{- if $replset.volumeSpec }}
{{- if $replset.volumeSpec.hostPath }}
hostPath:
path: {{ $replset.volumeSpec.hostPath.path }}
@ -220,7 +229,9 @@ spec:
serviceAccountName: {{ $replset.nonvoting.serviceAccountName }}
{{- end }}
affinity:
{{- if $replset.nonvoting.affinity }}
{{ $replset.nonvoting.affinity | toYaml | indent 8 }}
{{- end }}
{{- if $replset.nonvoting.priorityClass }}
priorityClassName: {{ $replset.nonvoting.priorityClass }}
{{- end }}
@ -256,8 +267,10 @@ spec:
minAvailable: {{ $replset.nonvoting.podDisruptionBudget.minAvailable }}
{{- end }}
{{- end }}
{{- if $replset.nonvoting.resources }}
resources:
{{ $replset.nonvoting.resources | toYaml | indent 8 }}
{{- end }}
{{- if $replset.nonvoting.volumeSpec }}
volumeSpec:
{{- if $replset.nonvoting.volumeSpec.hostPath }}
@ -283,8 +296,10 @@ spec:
{{- if $replset.arbiter.serviceAccountName }}
serviceAccountName: {{ $replset.arbiter.serviceAccountName }}
{{- end }}
{{- if $replset.affinity }}
affinity:
{{ $replset.arbiter.affinity | toYaml | indent 8 }}
{{- end }}
{{- if $replset.arbiter.priorityClass }}
priorityClassName: {{ $replset.arbiter.priorityClass }}
{{- end }}
@ -388,12 +403,14 @@ spec:
sidecarPVCs:
{{ .Values.sharding.configrs.sidecarPVCs | toYaml | indent 8 }}
{{- end }}
{{- if .Values.sharding.configrs.podDisruptionBudget }}
podDisruptionBudget:
{{- if .Values.sharding.configrs.podDisruptionBudget.maxUnavailable }}
maxUnavailable: {{ .Values.sharding.configrs.podDisruptionBudget.maxUnavailable }}
{{- else }}
minAvailable: {{ .Values.sharding.configrs.podDisruptionBudget.minAvailable }}
{{- end }}
{{- end }}
{{- if .Values.sharding.configrs.expose }}
expose:
enabled: {{ .Values.sharding.configrs.expose.enabled }}
@ -506,12 +523,14 @@ spec:
sidecarPVCs:
{{ .Values.sharding.mongos.sidecarPVCs | toYaml | indent 8 }}
{{- end }}
{{- if .Values.sharding.mongos.podDisruptionBudget }}
podDisruptionBudget:
{{- if .Values.sharding.mongos.podDisruptionBudget.maxUnavailable }}
maxUnavailable: {{ .Values.sharding.mongos.podDisruptionBudget.maxUnavailable }}
{{- else }}
minAvailable: {{ .Values.sharding.mongos.podDisruptionBudget.minAvailable }}
{{- end }}
{{- end }}
resources:
limits:
cpu: {{ .Values.sharding.mongos.resources.limits.cpu }}
@ -536,6 +555,9 @@ spec:
serviceLabels:
{{ .Values.sharding.mongos.expose.serviceLabels | toYaml | indent 10 }}
{{- end }}
{{- if .Values.sharding.mongos.expose.nodePort }}
nodePort: {{ .Values.sharding.mongos.expose.nodePort }}
{{- end }}
{{- if .Values.sharding.mongos.auditLog }}
auditLog:
{{ .Values.sharding.mongos.auditLog | toYaml | indent 8 }}
@ -560,7 +582,6 @@ spec:
{{ .Values.backup.containerSecurityContext | toYaml | indent 6 }}
{{- end }}
image: "{{ .Values.backup.image.repository }}:{{ .Values.backup.image.tag }}"
serviceAccountName: {{ .Values.backup.serviceAccountName }}
{{- if .Values.backup.resources }}
resources:
{{ .Values.backup.resources | toYaml | indent 6 }}
@ -585,5 +606,9 @@ spec:
{{- else }}
enabled: false
{{- end }}
{{- if .Values.backup.configuration }}
configuration:
{{ .Values.backup.configuration | toYaml | indent 6 }}
{{- end }}
tasks:
{{ .Values.backup.tasks | toYaml | indent 6 }}

View File

@ -18,10 +18,16 @@ finalizers:
nameOverride: ""
fullnameOverride: ""
crVersion: 1.15.0
crVersion: 1.16.0
pause: false
unmanaged: false
allowUnsafeConfigurations: false
unsafeFlags:
tls: false
replsetSize: false
mongosSize: false
terminationGracePeriod: false
backupIfUnhealthy: false
# ignoreAnnotations:
# - service.beta.kubernetes.io/aws-load-balancer-backend-protocol
# ignoreLabels:
@ -38,7 +44,7 @@ upgradeOptions:
image:
repository: percona/percona-server-mongodb
tag: 6.0.9-7
tag: 7.0.8-5
imagePullPolicy: Always
# imagePullSecrets: []
@ -47,23 +53,33 @@ imagePullPolicy: Always
# tag: 1.14.0
# initContainerSecurityContext: {}
# tls:
# mode: preferTLS
# # 90 days in hours
# certValidityDuration: 2160h
# allowInvalidCertificates: true
# issuerConf:
# name: special-selfsigned-issuer
# kind: ClusterIssuer
# group: cert-manager.io
secrets: {}
# If you set users secret here the operator will use existing one or generate random values
# If not set the operator generates the default secret with name <cluster_name>-secrets
# users: my-cluster-name-secrets
# encryptionKey: my-cluster-name-mongodb-encryption-key
# vault: my-cluster-name-vault
# ldapSecret: my-ldap-secret
# sse: my-cluster-name-sse
pmm:
enabled: false
image:
repository: percona/pmm-client
tag: 2.41.0
tag: 2.41.2
serverHost: monitoring-service
replsets:
- name: rs0
rs0:
name: rs0
size: 3
# terminationGracePeriodSeconds: 300
# externalNodes:
@ -449,6 +465,7 @@ sharding:
# service.beta.kubernetes.io/aws-load-balancer-backend-protocol: http
# serviceLabels:
# some-label: some-key
# nodePort: 32017
# auditLog:
# destination: file
# format: BSON
@ -463,8 +480,7 @@ backup:
enabled: true
image:
repository: percona/percona-backup-mongodb
tag: 2.3.0
serviceAccountName: percona-server-mongodb-operator
tag: 2.4.1
# annotations:
# iam.amazonaws.com/role: role-arn
# podSecurityContext: {}
@ -487,6 +503,10 @@ backup:
# sseAlgorithm: aws:kms
# sseCustomerAlgorithm: AES256
# sseCustomerKey: Y3VzdG9tZXIta2V5
# retryer:
# numMaxRetries: 3
# minRetryDelay: 30ms
# maxRetryDelay: 5m
# region: us-west-2
# prefix: ""
# uploadPartSize: 10485760
@ -506,6 +526,7 @@ backup:
# azure:
# container: CONTAINER-NAME
# prefix: PREFIX-NAME
# endpointUrl: https://accountName.blob.core.windows.net
# credentialsSecret: SECRET-NAME
pitr:
enabled: false
@ -513,6 +534,24 @@ backup:
# oplogSpanMin: 10
# compressionType: gzip
# compressionLevel: 6
# configuration:
# backupOptions:
# priority:
# "localhost:28019": 2.5
# "localhost:27018": 2.5
# timeouts:
# startingStatus: 33
# oplogSpanMin: 10
# restoreOptions:
# batchSize: 500
# numInsertionWorkers: 10
# numDownloadWorkers: 4
# maxDownloadBufferMb: 0
# downloadChunkMb: 32
# mongodLocation: /usr/bin/mongo
# mongodLocationMap:
# "node01:2017": /usr/bin/mongo
# "node03:27017": /usr/bin/mongo
tasks:
# - name: daily-s3-us-west
# enabled: true

View File

@ -4,7 +4,7 @@ annotations:
catalog.cattle.io/kube-version: '>=1.21-0'
catalog.cattle.io/release-name: psmdb-operator
apiVersion: v2
appVersion: 1.15.0
appVersion: 1.16.0
description: A Helm chart for deploying the Percona Operator for MongoDB
home: https://docs.percona.com/percona-operator-for-mongodb/
icon: https://raw.githubusercontent.com/percona/percona-server-mongodb-operator/main/operator.png
@ -16,4 +16,4 @@ maintainers:
- email: sergey.pronin@percona.com
name: spron-in
name: psmdb-operator
version: 1.15.4
version: 1.16.0

View File

@ -6,7 +6,7 @@ Useful links:
- [Operator Documentation](https://www.percona.com/doc/kubernetes-operator-for-psmongodb/index.html)
## Pre-requisites
* Kubernetes 1.24+
* Kubernetes 1.25+
* Helm v3
# Installation
@ -19,7 +19,7 @@ To install the chart with the `psmdb` release name using a dedicated namespace (
```sh
helm repo add percona https://percona.github.io/percona-helm-charts/
helm install my-operator percona/psmdb-operator --version 1.15.0 --namespace my-namespace
helm install my-operator percona/psmdb-operator --version 1.16.0 --namespace my-namespace
```
The chart can be customized using the following configurable parameters:
@ -27,7 +27,7 @@ The chart can be customized using the following configurable parameters:
| Parameter | Description | Default |
| ------------------------------- | ------------------------------------------------------------------------------| ------------------------------------------|
| `image.repository` | PSMDB Operator Container image name | `percona/percona-server-mongodb-operator` |
| `image.tag` | PSMDB Operator Container image tag | `1.15.0` |
| `image.tag` | PSMDB Operator Container image tag | `1.16.0` |
| `image.pullPolicy` | PSMDB Operator Container pull policy | `Always` |
| `image.pullSecrets` | PSMDB Operator Pod pull secret | `[]` |
| `replicaCount` | PSMDB Operator Pod quantity | `1` |

File diff suppressed because it is too large Load Diff

View File

@ -115,10 +115,14 @@ rules:
- patch
- delete
- apiGroups:
- events.k8s.io
- ""
resources:
- events
verbs:
- get
- list
- watch
- create
- patch
- apiGroups:

View File

@ -6,7 +6,7 @@ replicaCount: 1
image:
repository: percona/percona-server-mongodb-operator
tag: 1.15.0
tag: 1.16.0
pullPolicy: IfNotPresent
# disableTelemetry: according to

View File

@ -37,4 +37,4 @@ name: redpanda
sources:
- https://github.com/redpanda-data/helm-charts
type: application
version: 5.8.6
version: 5.8.7

View File

@ -3,7 +3,7 @@
description: Find the default values and descriptions of settings in the Redpanda Helm chart.
---
![Version: 5.8.6](https://img.shields.io/badge/Version-5.8.6-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: v24.1.1](https://img.shields.io/badge/AppVersion-v24.1.1-informational?style=flat-square)
![Version: 5.8.7](https://img.shields.io/badge/Version-5.8.7-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: v24.1.1](https://img.shields.io/badge/AppVersion-v24.1.1-informational?style=flat-square)
This page describes the official Redpanda Helm Chart. In particular, this page describes the contents of the charts [`values.yaml` file](https://github.com/redpanda-data/helm-charts/blob/main/charts/redpanda/values.yaml). Each of the settings is listed and described on this page, along with any default values.

View File

@ -81,7 +81,7 @@ limitations under the License.
{{ $connectConfig := dict }}
{{ if .Values.connectors.enabled }}
{{ $connectorsValues = merge (dict) $.Subcharts.connector .Values.connectors }}
{{ $connectorsValues := merge (dict) $.Subcharts.connectors .Values.connectors }}
{{/* Connector */}}
{{/* Currently Kafka connect helm chart does not support TLS configuraiton. That's why tls enabled is set explicitly to false*/}}
{{/* Currently Kafka connect helm chart does not support basic auth. That's why username and password is set explicitly to empty string*/}}

View File

@ -9109,6 +9109,47 @@ entries:
- assets/confluent/confluent-for-kubernetes-0.174.2101.tgz
version: 0.174.2101
consul:
- annotations:
artifacthub.io/images: |
- name: consul
image: hashicorp/consul:1.18.2
- name: consul-k8s-control-plane
image: hashicorp/consul-k8s-control-plane:1.4.2
- name: consul-dataplane
image: hashicorp/consul-dataplane:1.4.2
- name: envoy
image: envoyproxy/envoy:v1.25.11
artifacthub.io/license: MPL-2.0
artifacthub.io/links: |
- name: Documentation
url: https://www.consul.io/docs/k8s
- name: hashicorp/consul
url: https://github.com/hashicorp/consul
- name: hashicorp/consul-k8s
url: https://github.com/hashicorp/consul-k8s
artifacthub.io/prerelease: "false"
artifacthub.io/signKey: |
fingerprint: C874011F0AB405110D02105534365D9472D7468F
url: https://keybase.io/hashicorp/pgp_keys.asc
catalog.cattle.io/certified: partner
catalog.cattle.io/display-name: Hashicorp Consul
catalog.cattle.io/kube-version: '>=1.22.0-0'
catalog.cattle.io/release-name: consul
apiVersion: v2
appVersion: 1.18.2
created: "2024-05-25T00:53:23.679197866Z"
description: Official HashiCorp Consul Chart
digest: bc7cec90bf894a2f0ca90990885ab6d964eb4a845a45851bdf16f493df27147f
home: https://www.consul.io
icon: https://raw.githubusercontent.com/hashicorp/consul-k8s/main/assets/icon.png
kubeVersion: '>=1.22.0-0'
name: consul
sources:
- https://github.com/hashicorp/consul
- https://github.com/hashicorp/consul-k8s
urls:
- assets/hashicorp/consul-1.4.3.tgz
version: 1.4.3
- annotations:
artifacthub.io/images: |
- name: consul
@ -22062,6 +22103,63 @@ entries:
- assets/jaeger/jaeger-operator-2.36.0.tgz
version: 2.36.0
jenkins:
- annotations:
artifacthub.io/category: integration-delivery
artifacthub.io/changes: |
- Update `kubernetes` to version `4233.vb_67a_0e11a_039`
artifacthub.io/images: |
- name: jenkins
image: docker.io/jenkins/jenkins:2.452.1-jdk17
- name: k8s-sidecar
image: docker.io/kiwigrid/k8s-sidecar:1.27.2
- name: inbound-agent
image: jenkins/inbound-agent:3248.v65ecb_254c298-1
artifacthub.io/license: Apache-2.0
artifacthub.io/links: |
- name: Chart Source
url: https://github.com/jenkinsci/helm-charts/tree/main/charts/jenkins
- name: Jenkins
url: https://www.jenkins.io/
- name: support
url: https://github.com/jenkinsci/helm-charts/issues
catalog.cattle.io/certified: partner
catalog.cattle.io/display-name: Jenkins
catalog.cattle.io/kube-version: '>=1.14-0'
catalog.cattle.io/release-name: jenkins
apiVersion: v2
appVersion: 2.452.1
created: "2024-05-25T00:53:23.974374698Z"
description: 'Jenkins - Build great things at any scale! As the leading open source
automation server, Jenkins provides over 1800 plugins to support building, deploying
and automating any project. '
digest: 21a5415eb311200ee57d532ab207b3ee400864d42ade1c6c6a0dbfbd0edcac9f
home: https://www.jenkins.io/
icon: https://get.jenkins.io/art/jenkins-logo/logo.svg
keywords:
- jenkins
- ci
- devops
maintainers:
- email: maor.friedman@redhat.com
name: maorfr
- email: mail@torstenwalter.de
name: torstenwalter
- email: garridomota@gmail.com
name: mogaal
- email: wmcdona89@gmail.com
name: wmcdona89
- email: timjacomb1@gmail.com
name: timja
name: jenkins
sources:
- https://github.com/jenkinsci/jenkins
- https://github.com/jenkinsci/docker-inbound-agent
- https://github.com/maorfr/kube-tasks
- https://github.com/jenkinsci/configuration-as-code-plugin
type: application
urls:
- assets/jenkins/jenkins-5.1.23.tgz
version: 5.1.23
- annotations:
artifacthub.io/category: integration-delivery
artifacthub.io/changes: |
@ -29360,6 +29458,35 @@ entries:
- assets/kubemq/kubemq-crds-2.3.7.tgz
version: 2.3.7
kubernetes-ingress-controller:
- annotations:
catalog.cattle.io/certified: partner
catalog.cattle.io/display-name: ngrok Ingress Controller
catalog.cattle.io/release-name: kubernetes-ingress-controller
apiVersion: v2
appVersion: 0.11.0
created: "2024-05-25T00:53:26.960799502Z"
dependencies:
- name: common
repository: file://./charts/common
tags:
- bitnami-common
version: 2.x.x
description: A Kubernetes ingress controller built using ngrok.
digest: 10d141aaa6d47efffa56916f9b983aaefc95e2167e7352d20cb29a6880aeae04
home: https://ngrok.com
icon: https://assets-global.website-files.com/63ed4bc7a4b189da942a6b8c/6411ffa0b395a44345ed2b1a_Frame%201.svg
keywords:
- ngrok
- networking
- ingress
- edge
- api gateway
name: kubernetes-ingress-controller
sources:
- https://github.com/ngrok/kubernetes-ingress-controller
urls:
- assets/ngrok/kubernetes-ingress-controller-0.13.0.tgz
version: 0.13.0
- annotations:
catalog.cattle.io/certified: partner
catalog.cattle.io/display-name: ngrok Ingress Controller
@ -40515,6 +40642,28 @@ entries:
- assets/portshift-operator/portshift-operator-0.1.000.tgz
version: 0.1.000
psmdb-db:
- annotations:
catalog.cattle.io/certified: partner
catalog.cattle.io/display-name: Percona Server for MongoDB
catalog.cattle.io/kube-version: '>=1.21-0'
catalog.cattle.io/release-name: psmdb-db
apiVersion: v2
appVersion: 1.16.0
created: "2024-05-25T00:53:27.235107557Z"
description: A Helm chart for installing Percona Server MongoDB Cluster Databases
using the PSMDB Operator.
digest: a5ee320d5ecd99f38b5d198908cb55b1aa25e550ed812eb2ef2d3d147ae76c30
home: https://www.percona.com/doc/kubernetes-operator-for-psmongodb/index.html
icon: https://raw.githubusercontent.com/percona/percona-server-mongodb-operator/main/operator.png
maintainers:
- email: tomislav.plavcic@percona.com
name: tplavcic
- email: natalia.marukovich@percona.com
name: nmarukovich
name: psmdb-db
urls:
- assets/percona/psmdb-db-1.16.0.tgz
version: 1.16.0
- annotations:
catalog.cattle.io/certified: partner
catalog.cattle.io/display-name: Percona Server for MongoDB
@ -40714,6 +40863,29 @@ entries:
- assets/percona/psmdb-db-1.13.0.tgz
version: 1.13.0
psmdb-operator:
- annotations:
catalog.cattle.io/certified: partner
catalog.cattle.io/display-name: Percona Operator for MongoDB
catalog.cattle.io/kube-version: '>=1.21-0'
catalog.cattle.io/release-name: psmdb-operator
apiVersion: v2
appVersion: 1.16.0
created: "2024-05-25T00:53:27.259478067Z"
description: A Helm chart for deploying the Percona Operator for MongoDB
digest: fde08c50b40c40812910bcd307a296a69bd40db9b71a9825c71329319e819af9
home: https://docs.percona.com/percona-operator-for-mongodb/
icon: https://raw.githubusercontent.com/percona/percona-server-mongodb-operator/main/operator.png
maintainers:
- email: tomislav.plavcic@percona.com
name: tplavcic
- email: natalia.marukovich@percona.com
name: nmarukovich
- email: sergey.pronin@percona.com
name: spron-in
name: psmdb-operator
urls:
- assets/percona/psmdb-operator-1.16.0.tgz
version: 1.16.0
- annotations:
catalog.cattle.io/certified: partner
catalog.cattle.io/display-name: Percona Operator for MongoDB
@ -41679,6 +41851,50 @@ entries:
- assets/quobyte/quobyte-cluster-0.1.5.tgz
version: 0.1.5
redpanda:
- annotations:
artifacthub.io/images: |
- name: redpanda
image: docker.redpanda.com/redpandadata/redpanda:v24.1.1
- name: busybox
image: busybox:latest
- name: mintel/docker-alpine-bash-curl-jq
image: mintel/docker-alpine-bash-curl-jq:latest
artifacthub.io/license: Apache-2.0
artifacthub.io/links: |
- name: Documentation
url: https://docs.redpanda.com
- name: "Helm (>= 3.10.0)"
url: https://helm.sh/docs/intro/install/
catalog.cattle.io/certified: partner
catalog.cattle.io/display-name: Redpanda
catalog.cattle.io/kube-version: '>=1.21-0'
catalog.cattle.io/release-name: redpanda
apiVersion: v2
appVersion: v24.1.1
created: "2024-05-25T00:53:27.742362919Z"
dependencies:
- condition: console.enabled
name: console
repository: file://./charts/console
version: '>=0.5 <1.0'
- condition: connectors.enabled
name: connectors
repository: file://./charts/connectors
version: '>=0.1.2 <1.0'
description: Redpanda is the real-time engine for modern apps.
digest: 1c2d1d6fdd686bd09d882094aaac07125dd80c4256389b7ade6d81110723ff95
icon: https://images.ctfassets.net/paqvtpyf8rwu/3cYHw5UzhXCbKuR24GDFGO/73fb682e6157d11c10d5b2b5da1d5af0/skate-stand-panda.svg
kubeVersion: '>=1.21-0'
maintainers:
- name: redpanda-data
url: https://github.com/orgs/redpanda-data/people
name: redpanda
sources:
- https://github.com/redpanda-data/helm-charts
type: application
urls:
- assets/redpanda/redpanda-5.8.7.tgz
version: 5.8.7
- annotations:
artifacthub.io/images: |
- name: redpanda