DevOps/helm-pixelfed
2
0
Fork 0
Code Issues Pull Requests Actions 30 Packages Projects Releases 1 Wiki Activity

Merge pull request #24 from small-hack/allow-setting-extra-envs

Browse Source 
allow extra env, extra envFrom, extra InitContainers, and extra sidecars
This commit is contained in:
Jesse Hitch
2025-01-19 11:45:02 +01:00
committed by GitHub
parent ed874ac025 a7f81d8b35
commit 79b8a5c686
4 changed files with 55 additions and 13 deletions
Download Patch File Download Diff File Expand all files Collapse all files
charts/pixelfed/Chart.yaml
+1 -1
View File
@@ -15,7 +15,7 @@ type: application
# This is the chart version. This version number should be incremented each time you make changes # This is the chart version. This version number should be incremented each time you make changes
# to the chart and its templates, including the app version. # to the chart and its templates, including the app version.
# Versions are expected to follow Semantic Versioning (https://semver.org/) # Versions are expected to follow Semantic Versioning (https://semver.org/)
version: 0.9.0 version: 0.10.0
# This is the version number of the application being deployed. # This is the version number of the application being deployed.
# renovate:image=ghcr.io/mattlqx/docker-pixelfed # renovate:image=ghcr.io/mattlqx/docker-pixelfed
charts/pixelfed/README.md
+14 -10
View File
@@ -1,6 +1,6 @@
# pixelfed # pixelfed
![Version: 0.9.0](https://img.shields.io/badge/Version-0.9.0-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: v0.12.4-nginx](https://img.shields.io/badge/AppVersion-v0.12.4--nginx-informational?style=flat-square) ![Version: 0.10.0](https://img.shields.io/badge/Version-0.10.0-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: v0.12.4-nginx](https://img.shields.io/badge/AppVersion-v0.12.4--nginx-informational?style=flat-square)
A Helm chart for deploying Pixelfed on Kubernetes A Helm chart for deploying Pixelfed on Kubernetes
@@ -21,11 +21,11 @@ A Helm chart for deploying Pixelfed on Kubernetes
| Key | Type | Default | Description | | Key | Type | Default | Description |
|-----|------|---------|-------------| |-----|------|---------|-------------|
| affinity | object | `{}` | | | affinity | object | `{}` | set affinity to specific nodes or nodegroups |
| autoscaling.enabled | bool | `false` | | | autoscaling.enabled | bool | `false` | enable autoscaling. more information can be found [here](https://kubernetes.io/docs/concepts/workloads/autoscaling/) |
| autoscaling.maxReplicas | int | `100` | | | autoscaling.maxReplicas | int | `100` | max replicas to scale up to |
| autoscaling.minReplicas | int | `1` | | | autoscaling.minReplicas | int | `1` | minimum replicas to always keep up |
| autoscaling.targetCPUUtilizationPercentage | int | `80` | | | autoscaling.targetCPUUtilizationPercentage | int | `80` | CPU limit a pod needs to hit to start autoscaling new pods |
| externalDatabase.database | string | `"pixelfed"` | | | externalDatabase.database | string | `"pixelfed"` | |
| externalDatabase.enabled | bool | `false` | enable using an external mysql or postgresql cluster | | externalDatabase.enabled | bool | `false` | enable using an external mysql or postgresql cluster |
| externalDatabase.existingSecret | string | `""` | get database credentials from an existing Kubernetes Secret | | externalDatabase.existingSecret | string | `""` | get database credentials from an existing Kubernetes Secret |
@@ -48,6 +48,10 @@ A Helm chart for deploying Pixelfed on Kubernetes
| externalValkey.password | string | `"null"` | | | externalValkey.password | string | `"null"` | |
| externalValkey.port | string | `"6379"` | | | externalValkey.port | string | `"6379"` | |
| externalValkey.scheme | string | `"tcp"` | | | externalValkey.scheme | string | `"tcp"` | |
| extraContainers | list | `[]` | set sidecar containers to run along side the pixelfed container |
| extraEnv | list | `[]` | template out extra environment variables from ConfigMaps or Secrets |
| extraEnvFrom | list | `[]` | template out extra enviornment variables |
| extraInitContainers | list | `[]` | set extra init containers |
| fullnameOverride | string | `""` | This is to override the chart name, but used in more places | | fullnameOverride | string | `""` | This is to override the chart name, but used in more places |
| image.pullPolicy | string | `"IfNotPresent"` | This sets the pull policy for images. | | image.pullPolicy | string | `"IfNotPresent"` | This sets the pull policy for images. |
| image.registry | string | `"ghcr.io"` | | | image.registry | string | `"ghcr.io"` | |
@@ -63,7 +67,7 @@ A Helm chart for deploying Pixelfed on Kubernetes
| ingress.tls | list | `[]` | | | ingress.tls | list | `[]` | |
| livenessProbe | object | `{}` | This is to setup the liveness probe more information can be found here: https://kubernetes.io/docs/tasks/configure-pod-container/configure-liveness-readiness-startup-probes/ | | livenessProbe | object | `{}` | This is to setup the liveness probe more information can be found here: https://kubernetes.io/docs/tasks/configure-pod-container/configure-liveness-readiness-startup-probes/ |
| nameOverride | string | `""` | This is to override the chart name. | | nameOverride | string | `""` | This is to override the chart name. |
| nodeSelector | object | `{}` | | | nodeSelector | object | `{}` | put the pixelfed pod on a specific node/nodegroup |
| pixelfed.account_deletion | bool | `true` | Enable account deletion (may be a requirement in some jurisdictions) | | pixelfed.account_deletion | bool | `true` | Enable account deletion (may be a requirement in some jurisdictions) |
| pixelfed.activity_pub.enabled | bool | `false` | enable ActivityPub | | pixelfed.activity_pub.enabled | bool | `false` | enable ActivityPub |
| pixelfed.activity_pub.inbox | bool | `false` | | | pixelfed.activity_pub.inbox | bool | `false` | |
@@ -154,7 +158,7 @@ A Helm chart for deploying Pixelfed on Kubernetes
| pixelfed.webfinger | string | `"true"` | https://docs.pixelfed.org/technical-documentation/config/#webfinger | | pixelfed.webfinger | string | `"true"` | https://docs.pixelfed.org/technical-documentation/config/#webfinger |
| podAnnotations | object | `{}` | This is for setting Kubernetes Annotations to a Pod. For more information checkout: https://kubernetes.io/docs/concepts/overview/working-with-objects/annotations/ | | podAnnotations | object | `{}` | This is for setting Kubernetes Annotations to a Pod. For more information checkout: https://kubernetes.io/docs/concepts/overview/working-with-objects/annotations/ |
| podLabels | object | `{}` | This is for setting Kubernetes Labels to a Pod. For more information checkout: https://kubernetes.io/docs/concepts/overview/working-with-objects/labels/ | | podLabels | object | `{}` | This is for setting Kubernetes Labels to a Pod. For more information checkout: https://kubernetes.io/docs/concepts/overview/working-with-objects/labels/ |
| podSecurityContext | object | `{}` | | | podSecurityContext | object | `{}` | securityContext for the whole pod |
| postgresql.enabled | bool | `true` | enable the bundled [postgresql sub chart from Bitnami](https://github.com/bitnami/charts/blob/main/bitnami/postgresql/README.md#parameters). Must set to true if externalDatabase.enabled=false | | postgresql.enabled | bool | `true` | enable the bundled [postgresql sub chart from Bitnami](https://github.com/bitnami/charts/blob/main/bitnami/postgresql/README.md#parameters). Must set to true if externalDatabase.enabled=false |
| postgresql.fullnameOverride | string | `"postgresql"` | | | postgresql.fullnameOverride | string | `"postgresql"` | |
| postgresql.global.storageClass | string | `""` | | | postgresql.global.storageClass | string | `""` | |
@@ -162,7 +166,7 @@ A Helm chart for deploying Pixelfed on Kubernetes
| replicaCount | int | `1` | This will set the replicaset count more information can be found here: https://kubernetes.io/docs/concepts/workloads/controllers/replicaset/ | | replicaCount | int | `1` | This will set the replicaset count more information can be found here: https://kubernetes.io/docs/concepts/workloads/controllers/replicaset/ |
| resources | object | `{}` | set resource limits and requests for cpu, memory, and ephemeral storage | | resources | object | `{}` | set resource limits and requests for cpu, memory, and ephemeral storage |
| revisionHistoryLimit | int | `10` | how many revisions of the deployment to keep for rollbacks | | revisionHistoryLimit | int | `10` | how many revisions of the deployment to keep for rollbacks |
| securityContext | object | `{}` | | | securityContext | object | `{}` | securityContext for the pixelfed container |
| service.port | int | `80` | This sets the ports more information can be found here: https://kubernetes.io/docs/concepts/services-networking/service/#field-spec-ports | | service.port | int | `80` | This sets the ports more information can be found here: https://kubernetes.io/docs/concepts/services-networking/service/#field-spec-ports |
| service.targetPort | int | `80` | Port to attach to on the pods. Also sets what port nginx listens on inside the container. | | service.targetPort | int | `80` | Port to attach to on the pods. Also sets what port nginx listens on inside the container. |
| service.type | string | `"ClusterIP"` | This sets the service type more information can be found here: https://kubernetes.io/docs/concepts/services-networking/service/#publishing-services-service-types | | service.type | string | `"ClusterIP"` | This sets the service type more information can be found here: https://kubernetes.io/docs/concepts/services-networking/service/#publishing-services-service-types |
@@ -170,7 +174,7 @@ A Helm chart for deploying Pixelfed on Kubernetes
| serviceAccount.automount | bool | `true` | Automatically mount a ServiceAccount's API credentials? | | serviceAccount.automount | bool | `true` | Automatically mount a ServiceAccount's API credentials? |
| serviceAccount.create | bool | `true` | Specifies whether a service account should be created | | serviceAccount.create | bool | `true` | Specifies whether a service account should be created |
| serviceAccount.name | string | `""` | The name of the service account to use. If not set and create is true, a name is generated using the fullname template | | serviceAccount.name | string | `""` | The name of the service account to use. If not set and create is true, a name is generated using the fullname template |
| tolerations | list | `[]` | | | tolerations | list | `[]` | set tolerations of node taints |
| valkey.auth.enabled | bool | `true` | | | valkey.auth.enabled | bool | `true` | |
| valkey.auth.existingSecret | string | `""` | | | valkey.auth.existingSecret | string | `""` | |
| valkey.auth.existingSecretPasswordKey | string | `"password"` | | | valkey.auth.existingSecretPasswordKey | string | `"password"` | |
charts/pixelfed/templates/deployment.yaml
+18
View File
@@ -33,7 +33,14 @@ spec:
securityContext: securityContext:
{{- toYaml . | nindent 8 }} {{- toYaml . | nindent 8 }}
{{- end }} {{- end }}
{{- with .Values.extraInitContainers }}
initContainers:
{{- toYaml . | nindent 8 }}
{{- end }}
containers: containers:
{{- with .Values.extraContainers }}
{{- toYaml . | nindent 10 }}
{{- end }}
- name: {{ .Chart.Name }} - name: {{ .Chart.Name }}
{{- with .Values.securityContext }} {{- with .Values.securityContext }}
securityContext: securityContext:
@@ -45,10 +52,18 @@ spec:
- name: http - name: http
containerPort: {{ .Values.service.targetPort }} containerPort: {{ .Values.service.targetPort }}
protocol: TCP protocol: TCP
envFrom: envFrom:
{{- with .Values.extraEnvFrom }}
{{- toYaml . | nindent 12 }}
{{- end }}
- configMapRef: - configMapRef:
name: {{ include "pixelfed.fullname" . }}-env name: {{ include "pixelfed.fullname" . }}-env
env: env:
{{- with .Values.extraEnv }}
{{- toYaml . | nindent 12 }}
{{- end }}
# valkey AKA redis # valkey AKA redis
{{- if and .Values.externalValkey.enabled .Values.externalValkey.existingSecretKeys.host }} {{- if and .Values.externalValkey.enabled .Values.externalValkey.existingSecretKeys.host }}
- name: REDIS_HOST - name: REDIS_HOST
@@ -104,6 +119,7 @@ spec:
name: {{ include "pixelfed.fullname" . }}-mail name: {{ include "pixelfed.fullname" . }}-mail
key: host key: host
{{- end }} {{- end }}
- name: MAIL_PORT - name: MAIL_PORT
valueFrom: valueFrom:
secretKeyRef: secretKeyRef:
@@ -114,6 +130,7 @@ spec:
name: {{ include "pixelfed.fullname" . }}-mail name: {{ include "pixelfed.fullname" . }}-mail
key: port key: port
{{- end }} {{- end }}
- name: MAIL_USERNAME - name: MAIL_USERNAME
valueFrom: valueFrom:
secretKeyRef: secretKeyRef:
@@ -124,6 +141,7 @@ spec:
name: {{ include "pixelfed.fullname" . }}-mail name: {{ include "pixelfed.fullname" . }}-mail
key: username key: username
{{- end }} {{- end }}
- name: MAIL_PASSWORD - name: MAIL_PASSWORD
valueFrom: valueFrom:
secretKeyRef: secretKeyRef:
charts/pixelfed/values.yaml
+22 -2
View File
@@ -26,6 +26,12 @@ fullnameOverride: ""
# -- how many revisions of the deployment to keep for rollbacks # -- how many revisions of the deployment to keep for rollbacks
revisionHistoryLimit: 10 revisionHistoryLimit: 10
# -- template out extra environment variables from ConfigMaps or Secrets
extraEnv: []
# -- template out extra enviornment variables
extraEnvFrom: []
# This section builds out the service account more information can be found here: https://kubernetes.io/docs/concepts/security/service-accounts/ # This section builds out the service account more information can be found here: https://kubernetes.io/docs/concepts/security/service-accounts/
serviceAccount: serviceAccount:
# -- Specifies whether a service account should be created # -- Specifies whether a service account should be created
@@ -41,13 +47,16 @@ serviceAccount:
# -- This is for setting Kubernetes Annotations to a Pod. # -- This is for setting Kubernetes Annotations to a Pod.
# For more information checkout: https://kubernetes.io/docs/concepts/overview/working-with-objects/annotations/ # For more information checkout: https://kubernetes.io/docs/concepts/overview/working-with-objects/annotations/
podAnnotations: {} podAnnotations: {}
# -- This is for setting Kubernetes Labels to a Pod. # -- This is for setting Kubernetes Labels to a Pod.
# For more information checkout: https://kubernetes.io/docs/concepts/overview/working-with-objects/labels/ # For more information checkout: https://kubernetes.io/docs/concepts/overview/working-with-objects/labels/
podLabels: {} podLabels: {}
# -- securityContext for the whole pod
podSecurityContext: {} podSecurityContext: {}
# fsGroup: 2000 # fsGroup: 2000
# -- securityContext for the pixelfed container
securityContext: {} securityContext: {}
# capabilities: # capabilities:
# drop: # drop:
@@ -107,12 +116,14 @@ readinessProbe: {}
# path: /api/service/health-check # path: /api/service/health-check
# port: http # port: http
# This section is for setting up autoscaling
# more information can be found here: https://kubernetes.io/docs/concepts/workloads/autoscaling/
autoscaling: autoscaling:
# -- enable autoscaling. more information can be found [here](https://kubernetes.io/docs/concepts/workloads/autoscaling/)
enabled: false enabled: false
# -- minimum replicas to always keep up
minReplicas: 1 minReplicas: 1
# -- max replicas to scale up to
maxReplicas: 100 maxReplicas: 100
# -- CPU limit a pod needs to hit to start autoscaling new pods
targetCPUUtilizationPercentage: 80 targetCPUUtilizationPercentage: 80
# targetMemoryUtilizationPercentage: 80 # targetMemoryUtilizationPercentage: 80
@@ -129,10 +140,19 @@ volumeMounts: []
# mountPath: "/etc/foo" # mountPath: "/etc/foo"
# readOnly: true # readOnly: true
# -- set extra init containers
extraInitContainers: []
# -- set sidecar containers to run along side the pixelfed container
extraContainers: []
# -- put the pixelfed pod on a specific node/nodegroup
nodeSelector: {} nodeSelector: {}
# -- set tolerations of node taints
tolerations: [] tolerations: []
# -- set affinity to specific nodes or nodegroups
affinity: {} affinity: {}
externalDatabase: externalDatabase: