chore(preccomit): run precocmit (#13387)
**Description** <!-- Please include a summary of the change and which issue is fixed. Please also include relevant motivation and context. List any dependencies that are required for this change. --> ⚒️ Fixes # <!--(issue)--> **⚙️ Type of change** - [ ] ⚙️ Feature/App addition - [ ] 🪛 Bugfix - [ ] ⚠️ Breaking change (fix or feature that would cause existing functionality to not work as expected) - [ ] 🔃 Refactor of current code **🧪 How Has This Been Tested?** <!-- Please describe the tests that you ran to verify your changes. Provide instructions so we can reproduce. Please also list any relevant details for your test configuration --> **📃 Notes:** <!-- Please enter any other relevant information here --> **✔️ Checklist:** - [ ] ⚖️ My code follows the style guidelines of this project - [ ] 👀 I have performed a self-review of my own code - [ ] #️⃣ I have commented my code, particularly in hard-to-understand areas - [ ] 📄 I have made corresponding changes to the documentation - [ ] ⚠️ My changes generate no new warnings - [ ] 🧪 I have added tests to this description that prove my fix is effective or that my feature works - [ ] ⬆️ I increased versions for any altered app according to semantic versioning **➕ App addition** If this PR is an app addition please make sure you have done the following. - [ ] 🪞 I have opened a PR on [truecharts/containers](https://github.com/truecharts/containers) adding the container to TrueCharts mirror repo. - [ ] 🖼️ I have added an icon in the Chart's root directory called `icon.png` --- _Please don't blindly check all the boxes. Read them and only check those that apply. Those checkboxes are there for the reviewer to see what is this all about and the status of this PR with a quick glance._
This commit is contained in:
@@ -50,7 +50,6 @@ runs:
|
||||
# Set output to changed charts
|
||||
echo "Changed charts: ${CHARTS[*]}"
|
||||
printf "::set-output name=addedOrModified::%s\n" "${CHARTS[*]}"
|
||||
|
||||
|
||||
- name: Collect bumped charts after last tag
|
||||
id: filter-bumped-charts
|
||||
|
||||
@@ -103,6 +103,7 @@ The last step is adding the `forwardauth` along with the standard `ingress` sett
|
||||
- In this example we use the same name as above, or `auth`. Click `Add` to the `Traefik Middlewares` section, and enter your `forwardauth` name.
|
||||
|
||||

|
||||
|
||||
### References
|
||||
|
||||
The origin material for this guide is available on the [LLDAP Github](https://github.com/lldap/lldap). While further information on Authelia can be found on their [Github](https://github.com/authelia/authelia) and [website](https://www.authelia.com/).
|
||||
|
||||
@@ -1,10 +1,10 @@
|
||||
# Blocky Setup Guide
|
||||
|
||||
This will guide you through the basic setup of Blocky which is the preferred DNS solution for TrueCharts. This guide will cover basic setup options which will get you up and running and is not all inclusive. Configuring your devices to use Blocky is out of scope of this guide.
|
||||
This will guide you through the basic setup of Blocky which is the preferred DNS solution for TrueCharts. This guide will cover basic setup options which will get you up and running and is not all inclusive. Configuring your devices to use Blocky is out of scope of this guide.
|
||||
|
||||
## Upstream DNS
|
||||
|
||||
Blocky has the following DNS entries configured by default. They can be overridden to your personal preferences or left as default. Here are some common ones:
|
||||
Blocky has the following DNS entries configured by default. They can be overridden to your personal preferences or left as default. Here are some common ones:
|
||||
|
||||
- 1.1.1.1
|
||||
- 1.0.0.1
|
||||
@@ -23,13 +23,13 @@ Blocky has the following DNS entries configured by default. They can be overrid
|
||||
- 76.76.2.0
|
||||
- 76.76.10.0
|
||||
|
||||
Blocky supports 3 methods for upstream DNS. You can use any combination of the below.
|
||||
Blocky supports 3 methods for upstream DNS. You can use any combination of the below.
|
||||
|
||||
- UDP - Basic DNS
|
||||
- DoT - DNS over TLS
|
||||
- DoH - DNS over HTTPS
|
||||
|
||||
While UDP provides no security for DNS both DoT and DoH will encrypt DNS request. DoH has the added benefit of privacy since DNS traffic will appear as HTTPS traffic.
|
||||
While UDP provides no security for DNS both DoT and DoH will encrypt DNS request. DoH has the added benefit of privacy since DNS traffic will appear as HTTPS traffic.
|
||||
|
||||
### UDP DNS Setup
|
||||
|
||||
@@ -83,10 +83,10 @@ certain blocklists if you find legitimate traffic being blocked.
|
||||
|
||||
## Networking
|
||||
|
||||
If you want to use Blocky on your local network to take advantage of the filtering above, or the k8s-gateway below, you
|
||||
If you want to use Blocky on your local network to take advantage of the filtering above, or the k8s-gateway below, you
|
||||
need to setup a static ip address and leave the default setting DNS TCP Service and DNS UDP Service as LoadBalancer.
|
||||
|
||||
You need to configure the devices on your network to use the static IP address configured above. This can be done per device or by changing the DHCP or DNS settings on your router.
|
||||
You need to configure the devices on your network to use the static IP address configured above. This can be done per device or by changing the DHCP or DNS settings on your router.
|
||||
|
||||
## k8s-Gateway Configuration
|
||||
|
||||
|
||||
@@ -14,7 +14,6 @@ It is important to configure Scale with reliable nameserver to avoid issues hand
|
||||
|
||||

|
||||
|
||||
|
||||
## Install clusterissuer App
|
||||
|
||||
:::note
|
||||
@@ -37,7 +36,7 @@ Login to Cloudflare dashboard and go to the [Cloudflare API Tokens](https://dash
|
||||
|
||||

|
||||
|
||||
The recommended `API Token` permissions are below:
|
||||
The recommended `API Token` permissions are below:
|
||||

|
||||
|
||||
#### Cloudflare ACME Issuer Settings
|
||||
|
||||
@@ -27,7 +27,7 @@ Our customized version of MetalLB is only intended for use with other TrueCharts
|
||||
Install `metallb` from `operators` train first. There is no config, so just hit save.
|
||||
|
||||
If you encounter an error upon install, run the following command as root from system settings -> shell and attempt the install again:
|
||||
```k3s kubectl delete --grace-period 30 --v=4 -k https://github.com/truecharts/manifests/delete```
|
||||
`k3s kubectl delete --grace-period 30 --v=4 -k https://github.com/truecharts/manifests/delete`
|
||||
|
||||
If you previously had `metallb` installed and encounter an error, delete the old version, then run the above command before proceeding to install the `metallb` operator.
|
||||
|
||||
|
||||
@@ -26,7 +26,7 @@ service:
|
||||
main:
|
||||
enabled: false
|
||||
port: 9999
|
||||
|
||||
|
||||
operator:
|
||||
verify:
|
||||
enabled: true
|
||||
|
||||
@@ -1,3 +1,3 @@
|
||||
# Authelia + LLDAP + Traefik ForwardAuth Setup guide
|
||||
|
||||
Please refer to the full [Authelia + LLDAP + Traefik ForwardAuth Setup guide](https://truecharts.org/charts/enterprise/authelia/Setup-Guide) for a quick guide should take you through the steps necessary to setup `Authelia` as your `forwardAuth` for `Traefik`.
|
||||
Please refer to the full [Authelia + LLDAP + Traefik ForwardAuth Setup guide](https://truecharts.org/charts/enterprise/authelia/Setup-Guide) for a quick guide should take you through the steps necessary to setup `Authelia` as your `forwardAuth` for `Traefik`.
|
||||
|
||||
@@ -126,7 +126,7 @@ vaultwarden:
|
||||
push:
|
||||
enabled: false
|
||||
# installationId:
|
||||
# installationKey:
|
||||
# installationKey:
|
||||
|
||||
## Logging options. https://github.com/dani-garcia/bitwarden_rs/wiki/Logging
|
||||
log:
|
||||
|
||||
@@ -16,7 +16,6 @@ workload:
|
||||
main:
|
||||
securityContext:
|
||||
|
||||
|
||||
service:
|
||||
main:
|
||||
ports:
|
||||
|
||||
@@ -3,7 +3,6 @@ image:
|
||||
pullPolicy: IfNotPresent
|
||||
tag: 0.9.3@sha256:797eb8958677b80bbb438251f75a51984b578c4919f0fe2c3a9bbf0e866a8b43
|
||||
|
||||
|
||||
owntracks:
|
||||
otr_host: ""
|
||||
otr_port: 1883
|
||||
@@ -15,7 +14,6 @@ owntracks:
|
||||
otr_serverlabel: OwnTracks
|
||||
otr_lmdbsize: 104857600000
|
||||
|
||||
|
||||
service:
|
||||
main:
|
||||
ports:
|
||||
|
||||
@@ -1,14 +1,15 @@
|
||||
# Installation Notes
|
||||
|
||||
## Plex Required Parameters
|
||||
|
||||
- Set the Plex Configuration's `Url` with the address of your Plex server, such as `http://IP:PORT`. If you're using TrueNAS Scale and your application's name is `plex`, then this value should work `http://plex.ix-plex.svc.cluster.local:32400`.
|
||||
|
||||
- Set the Plex Configuration's `Token` with your Plex Token value. To get this, you'll need to log into Plex as the server owner and browse to am item in your library. Then select the "View as XML" hyperlink. This should open up a new tab showing XML data and the URL will end with `...Plex-Token=`. Your token value is after the `=`, so **only** copy that value.
|
||||
|
||||
|
||||

|
||||
|
||||
## Spotify Required Parameters
|
||||
|
||||
_Note: These configuration settings are only if you are using Spotify. If you're intending to use Spotify, then the Spotify Configuration settings are all required._
|
||||
|
||||
Your Spotify Client Id and Client Secret can be obtained by becoming a [Spotify Developer](https://developer.spotify.com/dashboard/login).
|
||||
@@ -16,11 +17,13 @@ Your Spotify Client Id and Client Secret can be obtained by becoming a [Spotify
|
||||
Your Spotify User Id - can be found on [Spotify's account page](https://www.spotify.com/us/account/overview/).
|
||||
|
||||
## Deezer Required Parameters
|
||||
|
||||
_Note: These configuration settings are only if you are using Deezer. If you're intending on using Deezer instead, either the `User Id` option or the `Playlist Id` option is required._
|
||||
|
||||
### Option 1 - Sync all user playlists
|
||||
|
||||
Your Deezer User Id can be obtained by logging in and clicking on your profile. The Id will be in the URL and is a numerical value. Ex: `/profile/#`
|
||||
|
||||
### Option 2 - Sync specific playlists
|
||||
|
||||
The Deezer Playlist Id can be obtained by navigating to the playlists that you want to sync. They Id will be in the URL and is a numerical value. Ex: `/playlist/#`
|
||||
The Deezer Playlist Id can be obtained by navigating to the playlists that you want to sync. They Id will be in the URL and is a numerical value. Ex: `/playlist/#`
|
||||
|
||||
@@ -71,4 +71,3 @@ persistence:
|
||||
portal:
|
||||
open:
|
||||
enabled: false
|
||||
|
||||
|
||||
@@ -1 +1 @@
|
||||
# Changelog
|
||||
# Changelog
|
||||
|
||||
File diff suppressed because one or more lines are too long
@@ -219,4 +219,3 @@ questions:
|
||||
# Include{netshoot}
|
||||
# Include{vpn}
|
||||
# Include{documentation}
|
||||
|
||||
|
||||
@@ -79,4 +79,3 @@ persistence:
|
||||
portal:
|
||||
open:
|
||||
enabled: true
|
||||
|
||||
|
||||
@@ -2,7 +2,7 @@ image:
|
||||
pullPolicy: IfNotPresent
|
||||
repository: tccr.io/truecharts/stun-turn-server
|
||||
tag: latest@sha256:7ec1d59d34be6cf49342d5524b7cb24c3a24bced8ca88093fa0bdee38abfe2bc
|
||||
|
||||
|
||||
service:
|
||||
main:
|
||||
enabled: true
|
||||
|
||||
@@ -117,20 +117,20 @@ workload:
|
||||
enabled: true
|
||||
type: exec
|
||||
command:
|
||||
- /lifecycle/ak
|
||||
- healthcheck
|
||||
- /lifecycle/ak
|
||||
- healthcheck
|
||||
readiness:
|
||||
enabled: true
|
||||
type: exec
|
||||
command:
|
||||
- /lifecycle/ak
|
||||
- healthcheck
|
||||
- /lifecycle/ak
|
||||
- healthcheck
|
||||
startup:
|
||||
enabled: true
|
||||
type: exec
|
||||
command:
|
||||
- /lifecycle/ak
|
||||
- healthcheck
|
||||
- /lifecycle/ak
|
||||
- healthcheck
|
||||
|
||||
# ===== Worker =====
|
||||
worker:
|
||||
@@ -158,20 +158,20 @@ workload:
|
||||
enabled: true
|
||||
type: exec
|
||||
command:
|
||||
- /lifecycle/ak
|
||||
- healthcheck
|
||||
- /lifecycle/ak
|
||||
- healthcheck
|
||||
readiness:
|
||||
enabled: true
|
||||
type: exec
|
||||
command:
|
||||
- /lifecycle/ak
|
||||
- healthcheck
|
||||
- /lifecycle/ak
|
||||
- healthcheck
|
||||
startup:
|
||||
enabled: true
|
||||
type: exec
|
||||
command:
|
||||
- /lifecycle/ak
|
||||
- healthcheck
|
||||
- /lifecycle/ak
|
||||
- healthcheck
|
||||
|
||||
# ===== PROXY =====
|
||||
proxy:
|
||||
@@ -196,20 +196,20 @@ workload:
|
||||
enabled: true
|
||||
type: exec
|
||||
command:
|
||||
- /proxy
|
||||
- healthcheck
|
||||
- /proxy
|
||||
- healthcheck
|
||||
readiness:
|
||||
enabled: true
|
||||
type: exec
|
||||
command:
|
||||
- /proxy
|
||||
- healthcheck
|
||||
- /proxy
|
||||
- healthcheck
|
||||
startup:
|
||||
enabled: true
|
||||
type: exec
|
||||
command:
|
||||
- /proxy
|
||||
- healthcheck
|
||||
- /proxy
|
||||
- healthcheck
|
||||
|
||||
# ===== RADIUS =====
|
||||
radius:
|
||||
@@ -234,20 +234,20 @@ workload:
|
||||
enabled: true
|
||||
type: exec
|
||||
command:
|
||||
- /radius
|
||||
- healthcheck
|
||||
- /radius
|
||||
- healthcheck
|
||||
readiness:
|
||||
enabled: true
|
||||
type: exec
|
||||
command:
|
||||
- /radius
|
||||
- healthcheck
|
||||
- /radius
|
||||
- healthcheck
|
||||
startup:
|
||||
enabled: true
|
||||
type: exec
|
||||
command:
|
||||
- /radius
|
||||
- healthcheck
|
||||
- /radius
|
||||
- healthcheck
|
||||
|
||||
# ===== LDAP =====
|
||||
ldap:
|
||||
@@ -272,20 +272,20 @@ workload:
|
||||
enabled: true
|
||||
type: exec
|
||||
command:
|
||||
- /ldap
|
||||
- healthcheck
|
||||
- /ldap
|
||||
- healthcheck
|
||||
readiness:
|
||||
enabled: true
|
||||
type: exec
|
||||
command:
|
||||
- /ldap
|
||||
- healthcheck
|
||||
- /ldap
|
||||
- healthcheck
|
||||
startup:
|
||||
enabled: true
|
||||
type: exec
|
||||
command:
|
||||
- /ldap
|
||||
- healthcheck
|
||||
- /ldap
|
||||
- healthcheck
|
||||
|
||||
# ===== GeoIP Updater =====
|
||||
geoip:
|
||||
|
||||
@@ -48,4 +48,3 @@ Click Add for Hosts, Zones and Record Types.
|
||||
- Change `Record Type` to A if you're only changing your main domain
|
||||
|
||||
If you're using or changing specific A records or CNAMEs you may want to refer to the upstream documentation for more examples [here](https://hotio.dev/containers/cloudflareddns/))
|
||||
|
||||
|
||||
@@ -5,7 +5,8 @@ image:
|
||||
|
||||
# When this is defined, the contents will be mounted
|
||||
# as configmap into the container at /config/config.yml.
|
||||
frigateConfig: {}
|
||||
frigateConfig:
|
||||
{}
|
||||
# -- https://docs.frigate.video/configuration/
|
||||
# mqtt:
|
||||
# enabled: False
|
||||
|
||||
@@ -12,7 +12,8 @@ guacamole:
|
||||
EXTENSION_PRIORITY: ""
|
||||
api:
|
||||
API_SESSION_TIMEOUT: 60
|
||||
ldap: {}
|
||||
ldap:
|
||||
{}
|
||||
# LDAP_HOSTNAME: ""
|
||||
# LDAP_USER_BASE_DN: ""
|
||||
# LDAP_PORT: 389
|
||||
@@ -33,10 +34,12 @@ guacamole:
|
||||
# LDAP_FOLLOW_REFERRALS: false
|
||||
# LDAP_MAX_REFERRAL_HOPS: 5
|
||||
# LDAP_OPERATION_TIMEOUT: 30
|
||||
header: {}
|
||||
header:
|
||||
{}
|
||||
# HEADER_ENABLED: false
|
||||
# HTTP_AUTH_HEADER: REMOTE_USER
|
||||
saml: {}
|
||||
saml:
|
||||
{}
|
||||
# SAML_IDP_METADATA_URL: ""
|
||||
# SAML_IDP_URL: ""
|
||||
# SAML_ENTITY_ID: ""
|
||||
@@ -46,24 +49,28 @@ guacamole:
|
||||
# SAML_COMPRESS_REQUEST: true
|
||||
# SAML_COMPRESS_RESPONSE: true
|
||||
# SAML_GROUP_ATTRIBUTE: groups
|
||||
proxy: {}
|
||||
proxy:
|
||||
{}
|
||||
# REMOTE_IP_VALVE_ENABLED: false
|
||||
# PROXY_ALLOWED_IPS_REGEX: ""
|
||||
# PROXY_IP_HEADER: ""
|
||||
# PROXY_PROTOCOL_HEADER: ""
|
||||
# PROXY_BY_HEADER: ""
|
||||
totp: {}
|
||||
totp:
|
||||
{}
|
||||
# TOTP_ENABLED: false
|
||||
# TOTP_ISSUER: Apache Guacamole
|
||||
# TOTP_DIGITS: 6
|
||||
# TOTP_PERIOD: 30
|
||||
# TOTP_MODE: sha1
|
||||
duo: {}
|
||||
duo:
|
||||
{}
|
||||
# DUO_API_HOSTNAME: ""
|
||||
# DUO_INTEGRATION_KEY: ""
|
||||
# DUO_SECRET_KEY: ""
|
||||
# DUO_APPLICATION_KEY: ""
|
||||
radius: {}
|
||||
radius:
|
||||
{}
|
||||
# RADIUS_SHARED_SECRET: ""
|
||||
# RADIUS_AUTH_PROTOCOL: eap-tls
|
||||
# RADIUS_HOSTNAME: ""
|
||||
@@ -79,7 +86,8 @@ guacamole:
|
||||
# RADIUS_TIMEOUT: 60
|
||||
# RADIUS_EAP_TTLS_INNER_PROTOCOL: eap-tls
|
||||
# RADIUS_NAS_IP: ""
|
||||
openid: {}
|
||||
openid:
|
||||
{}
|
||||
# OPENID_AUTHORIZATION_ENDPOINT: ""
|
||||
# OPENID_JWKS_ENDPOINT: ""
|
||||
# OPENID_ISSUER: ""
|
||||
@@ -91,7 +99,8 @@ guacamole:
|
||||
# OPENID_ALLOWED_CLOCK_SKEW: 30
|
||||
# OPENID_MAX_TOKEN_VALIDITY: 300
|
||||
# OPENID_MAX_NONCE_VALIDITY: 300
|
||||
cas: {}
|
||||
cas:
|
||||
{}
|
||||
# CAS_AUTHORIZATION_ENDPOINT: ""
|
||||
# CAS_REDIRECT_URI: ""
|
||||
# CAS_CLEARPASS_KEY: ""
|
||||
@@ -99,7 +108,8 @@ guacamole:
|
||||
# CAS_GROUP_FORMAT: plain
|
||||
# CAS_GROUP_LDAP_BASE_DN: ""
|
||||
# CAS_GROUP_LDAP_ATTRIBUTE: ""
|
||||
json: {}
|
||||
json:
|
||||
{}
|
||||
# JSON_SECRET_KEY: ""
|
||||
# JSON_TRUSTED_NETWORKS: ""
|
||||
|
||||
@@ -171,7 +181,7 @@ workload:
|
||||
primary: true
|
||||
imageSelector: guacdImage
|
||||
command:
|
||||
- /opt/guacamole/sbin/guacd
|
||||
- /opt/guacamole/sbin/guacd
|
||||
args:
|
||||
# Listen Address
|
||||
- -b
|
||||
|
||||
@@ -70,4 +70,4 @@ rbac:
|
||||
workload:
|
||||
main:
|
||||
podSpec:
|
||||
automountServiceAccountToken: true
|
||||
automountServiceAccountToken: true
|
||||
|
||||
@@ -1,13 +1,14 @@
|
||||
Install Notes
|
||||
|
||||
|
||||
This chart now requires the following hcarts to be installed before you can install:
|
||||
|
||||
- cloudnative-pg
|
||||
- prometheus-operator
|
||||
|
||||
These are in the operators train.
|
||||
These are in the operators train.
|
||||
|
||||
To enable this in TrueNAS scale
|
||||
|
||||
- Apps
|
||||
- Manage Catalogs.
|
||||
- Edit the TrueCharts Catalog (under the three dots).
|
||||
|
||||
@@ -70,7 +70,11 @@ workload:
|
||||
# - Touch `/tmp/healty` to use with the readiness, liveness and startup probes
|
||||
# - Start socat in proxy mode
|
||||
# - On exit remove `/tmp/healthy`
|
||||
args: ["-c", "export TARGET_IP=$(getent hosts '{{ printf \"%v-autodiscovery\" (include \"tc.v1.common.lib.chart.names.fullname\" $) }}' | awk '{ print $1 }') && [[ ! -z $TARGET_IP ]] && touch /tmp/healthy && socat UDP-LISTEN:7359,fork,reuseaddr,rcvbuf=8096 UDP4-SENDTO:${TARGET_IP}:7359,rcvbuf=8096 ; rm -rf /tmp/healthy"]
|
||||
args:
|
||||
[
|
||||
"-c",
|
||||
'export TARGET_IP=$(getent hosts ''{{ printf "%v-autodiscovery" (include "tc.v1.common.lib.chart.names.fullname" $) }}'' | awk ''{ print $1 }'') && [[ ! -z $TARGET_IP ]] && touch /tmp/healthy && socat UDP-LISTEN:7359,fork,reuseaddr,rcvbuf=8096 UDP4-SENDTO:${TARGET_IP}:7359,rcvbuf=8096 ; rm -rf /tmp/healthy',
|
||||
]
|
||||
probes:
|
||||
readiness:
|
||||
enabled: true
|
||||
|
||||
@@ -36,7 +36,7 @@ workload:
|
||||
type: tcp
|
||||
envFrom:
|
||||
- secretRef:
|
||||
name: 'jenkins-secret'
|
||||
name: "jenkins-secret"
|
||||
|
||||
service:
|
||||
main:
|
||||
|
||||
@@ -1,7 +1,7 @@
|
||||
workload:
|
||||
main:
|
||||
podSpec:
|
||||
containers:
|
||||
main:
|
||||
env:
|
||||
APP_BASE_URL: "http://localhost:{{ .Values.service.main.ports.main.port }}"
|
||||
workload:
|
||||
main:
|
||||
podSpec:
|
||||
containers:
|
||||
main:
|
||||
env:
|
||||
APP_BASE_URL: "http://localhost:{{ .Values.service.main.ports.main.port }}"
|
||||
|
||||
@@ -1,3 +1,3 @@
|
||||
# Authelia + LLDAP + Traefik ForwardAuth Setup guide
|
||||
|
||||
Please refer to the full [Authelia + LLDAP + Traefik ForwardAuth Setup guide](https://truecharts.org/charts/enterprise/authelia/Setup-Guide) for a quick guide should take you through the steps necessary to setup `Authelia` as your `forwardAuth` for `Traefik`.
|
||||
Please refer to the full [Authelia + LLDAP + Traefik ForwardAuth Setup guide](https://truecharts.org/charts/enterprise/authelia/Setup-Guide) for a quick guide should take you through the steps necessary to setup `Authelia` as your `forwardAuth` for `Traefik`.
|
||||
|
||||
@@ -9,7 +9,7 @@ workload:
|
||||
containers:
|
||||
main:
|
||||
env:
|
||||
TIMEZONE: '{{ .Values.TZ }}'
|
||||
TIMEZONE: "{{ .Values.TZ }}"
|
||||
MM_SQLSETTINGS_DRIVERNAME: "postgres"
|
||||
MM_BLEVESETTINGS_INDEXDIR: "/mattermost/bleve-indexes"
|
||||
MM_SERVICESETTINGS_SITEURL: "https://test.example.com"
|
||||
|
||||
@@ -1,23 +1,23 @@
|
||||
# Input Validation
|
||||
|
||||
**`Domain and Minecraft Service`**
|
||||
|
||||
Accepts:
|
||||
|
||||
- domain=service:port
|
||||
- IP or DNS host
|
||||
- Characters (`0-9`, `a-z`, `A-Z`, `-`, `.`)
|
||||
- Port
|
||||
|
||||
Accepted formats are:
|
||||
|
||||
- `minecraft.local=minecraft-java.ix-minecraft-java.svc.cluster.local:25565`
|
||||
- `minecraft.local=localhost:25565`
|
||||
- `minecraft.local=0.0.0.0:25565`
|
||||
|
||||
Regex used to match this: `^$|^(http(s)?:\/\/([a-zA-Z0-9.-]*)(:\d{0,5})?,?)*$`
|
||||
You can try live [here](https://regex101.com/r/u2ifZm/1)
|
||||
|
||||
---
|
||||
|
||||
_If you find a field that you think it needs validation, please open an issue on github_
|
||||
# Input Validation
|
||||
|
||||
**`Domain and Minecraft Service`**
|
||||
|
||||
Accepts:
|
||||
|
||||
- domain=service:port
|
||||
- IP or DNS host
|
||||
- Characters (`0-9`, `a-z`, `A-Z`, `-`, `.`)
|
||||
- Port
|
||||
|
||||
Accepted formats are:
|
||||
|
||||
- `minecraft.local=minecraft-java.ix-minecraft-java.svc.cluster.local:25565`
|
||||
- `minecraft.local=localhost:25565`
|
||||
- `minecraft.local=0.0.0.0:25565`
|
||||
|
||||
Regex used to match this: `^$|^(http(s)?:\/\/([a-zA-Z0-9.-]*)(:\d{0,5})?,?)*$`
|
||||
You can try live [here](https://regex101.com/r/u2ifZm/1)
|
||||
|
||||
---
|
||||
|
||||
_If you find a field that you think it needs validation, please open an issue on github_
|
||||
|
||||
@@ -1,2 +1 @@
|
||||
{{ include "tc.v1.common.loader.all" . }}
|
||||
|
||||
|
||||
@@ -2,7 +2,7 @@
|
||||
|
||||
## Prerequisites
|
||||
|
||||
1. The cloudnative-pg operator is required from the operator train. More information can be
|
||||
1. The cloudnative-pg operator is required from the operator train. More information can be
|
||||
found on our [getting started guide](https://truecharts.org/manual/SCALE/guides/getting-started#cnpg-operator-installation-and-migration-guide-for-older-users).
|
||||
2. While nextcloud can run without ingress setup a lot of features will not work. More information can be
|
||||
found on our [getting started guide](https://truecharts.org/manual/SCALE/guides/getting-started#traefik-installation-for-ingress--reverse-proxy-support-with-truecharts-apps).
|
||||
@@ -32,12 +32,12 @@ The following configurations must be set during initially setup for nextcloud to
|
||||
|
||||
### Optional Addons
|
||||
|
||||
1. Notify Push (Allows Nextcloud to notify clients of changes, instead of clients having to poll.
|
||||
1. Notify Push (Allows Nextcloud to notify clients of changes, instead of clients having to poll.
|
||||
A Notify Push container will be deployed automatically). This is highly recommended to keep enabled.
|
||||
2. ClamAV (Anti-virus for nextcloud, keep in mind that only scans files that Nextcloud posts to it's endpoint.
|
||||
2. ClamAV (Anti-virus for nextcloud, keep in mind that only scans files that Nextcloud posts to it's endpoint.
|
||||
A Clam AV container will be deployed automatically.
|
||||
3. Collabora (Document editor for Nextcloud. A Collabora container will be deployed automatically.
|
||||
4. Only Office (document editor for Nextcloud, this does **NOT** deploy the Only Office container.
|
||||
4. Only Office (document editor for Nextcloud, this does **NOT** deploy the Only Office container.
|
||||
You will need to have a separate installation.
|
||||
|
||||
### Networking and Services
|
||||
@@ -47,4 +47,3 @@ If you are setting up Ingress (highly recommended and the only method supported)
|
||||
### Storage
|
||||
|
||||
You can change the User Data Storage option to your preference here if you previously setup the proper dataset permissions. All other Storage should remain the default of PVC.
|
||||
|
||||
|
||||
@@ -149,18 +149,23 @@ Wait for Nextcloud to fully deploy before proceeding.
|
||||
```bash
|
||||
occ upgrade
|
||||
```
|
||||
|
||||
```bash
|
||||
occ maintenance:mode --on
|
||||
```
|
||||
|
||||
```bash
|
||||
occ maintenance:repair
|
||||
```
|
||||
|
||||
```bash
|
||||
occ maintenance:mode --off
|
||||
```
|
||||
|
||||
```bash
|
||||
occ db:add-missing-indices
|
||||
```
|
||||
|
||||
```bash
|
||||
occ files:scan --all
|
||||
```
|
||||
|
||||
@@ -322,7 +322,7 @@ workload:
|
||||
port: "{{ .Values.service.collabora.ports.collabora.targetPort }}"
|
||||
|
||||
cronjobs:
|
||||
# Don't change names, it's used in the persistence
|
||||
# Don't change names, it's used in the persistence
|
||||
- name: nextcloud-cron
|
||||
enabled: true
|
||||
schedule: "*/5 * * * *"
|
||||
|
||||
@@ -25,7 +25,7 @@ workload:
|
||||
main:
|
||||
env:
|
||||
TMPDIR: /tmpdir
|
||||
DN_API_KEY: '{{ .Values.notifiarr.apikey }}'
|
||||
DN_API_KEY: "{{ .Values.notifiarr.apikey }}"
|
||||
DN_BIND_ADDR: '{{ printf "0.0.0.0:%v" .Values.service.main.ports.main.port }}'
|
||||
DN_UPSTREAMS_0: '{{ join " " .Values.notifiarr.upstreams }}'
|
||||
DN_UI_PASSWORD: '{{ printf "%v:%v" .Values.notifiarr.credentials.username .Values.notifiarr.credentials.password }}'
|
||||
|
||||
@@ -3,8 +3,7 @@ appVersion: "7.4.1"
|
||||
dependencies:
|
||||
- name: common
|
||||
repository: https://library-charts.truecharts.org
|
||||
version: 14.0.9
|
||||
version: 14.0.8
|
||||
version: 14.0.10
|
||||
- condition: redis.enabled
|
||||
name: redis
|
||||
repository: https://deps.truecharts.org
|
||||
|
||||
@@ -64,7 +64,7 @@ options](https://docs.paperless-ngx.com/configuration/#consume_config) for more
|
||||
|
||||
Due to the [Hast Path Validation Safety](/manual/SCALE/guides/add-storage#host-path-validation-safety) checks of TrueNAS
|
||||
SCALE, using storage for an application on your TrueNAS SCALE and with a network share at the same time requires a bit
|
||||
of work. See also the [FAQ](/manual/FAQ#why-i-cant-use-host-path-on-both-my-apps-and-sharing-services) regarding this
|
||||
of work. See also the [FAQ](/manual/FAQ#why-i-cant-use-host-path-on-both-my-apps-and-sharing-services) regarding this
|
||||
topic.
|
||||
|
||||
This guide will only describe the Paperless-ngx specific options required to set up importing documents from a network
|
||||
|
||||
@@ -1,6 +1,6 @@
|
||||
# Automatic Split DNS with PiHole
|
||||
|
||||
*Using Blocky in conjunction with PiHole enables seamless automated split DNS functionality.*
|
||||
_Using Blocky in conjunction with PiHole enables seamless automated split DNS functionality._
|
||||
|
||||
:::danger unrecommended configuration
|
||||
|
||||
|
||||
@@ -17,7 +17,7 @@ plausible:
|
||||
base_url: http://localhost:10277
|
||||
disable_registration: "true"
|
||||
log_failed_login_attempts: false
|
||||
# Logging
|
||||
# Logging
|
||||
log_level: warn
|
||||
|
||||
# Database
|
||||
|
||||
@@ -55,4 +55,3 @@ Plex allows for the installation of plug-ins. Plug-ins can be added using the co
|
||||

|
||||
|
||||
5. Restart Plex
|
||||
|
||||
|
||||
@@ -1,10 +1,13 @@
|
||||
# Installation Notes
|
||||
|
||||
This document will provide information on the successful setup of qBitrr.
|
||||
|
||||
## qBitrr config.toml
|
||||
|
||||
Upon first run qBbitrr will download a config.toml file from the upstream developer. This file is just a template and will need to be modified before qBitrr begins operating. It is recommended that when configuring initial install to also enable the codeserver addon so that you can modify the config.toml file.
|
||||
|
||||
## qBitrr Application Configurations
|
||||
|
||||
Most of the configurations can remain the default. You will need to map your qBittorrent root download directory to App Completed Download Storage as shown below.
|
||||
|
||||

|
||||
@@ -14,23 +17,27 @@ You should also enable the codeserver addon as previously discussed.
|
||||

|
||||
|
||||
## config.toml
|
||||
|
||||
Once qBitrr has started access the config.toml file using the previously configured `http://<ip address>:<port>` that was setup for the codeserver addon.
|
||||
|
||||
### Settings
|
||||
|
||||
This section has basic qBitrr settings. You may modify any as you choose but the `CompletedDownloadFolder` option must be set to `"/completed_downloads"` as that is what the App Completed Download Storage is mapped to.
|
||||
|
||||
:::warning Completed Download Folder
|
||||
|
||||
If `CompletedDownloadFolder` option is not set to `"/completed_downloads"` qBitrr will not be able to find any downloads.
|
||||
If `CompletedDownloadFolder` option is not set to `"/completed_downloads"` qBitrr will not be able to find any downloads.
|
||||
|
||||
:::
|
||||
|
||||
### qBit
|
||||
|
||||
This section has qBittorrent specific settings. Ensure that `Host`, `Port`, `UserName`, and `Password` all match your qBittorrent installation. The host and port can be located using the Heavyscript `heavyscript dns -a` command.
|
||||
|
||||
### Sonarr/Radarr
|
||||
|
||||
The following sections have Sonarr/Radarr specific settings. The template configuration file populates two instances for both Sonarr and Radarr by default. These can be renamed/deleted as needed to match your setup. Ensure that `URI`, `API` and `Category` are set correctly so that qBitrr can communicate with your Sonarr and Radarr installations. The `Category` is what you have set in Sonarr/Radarr to use in qBittorrent (ie. movies, tv).
|
||||
|
||||
### Remaining Sonarr/Radarr Configurations
|
||||
All of the following sections can be configured based on personal preference. If you chose to rename or delete any of the predefined templates ensure you follow the same schema for the remaining sections. It is recommended that `SearchMissing` be set to false. qBitrr will not have access to your Sonarr/Radarr database file unless they are configured in an unsupported manner. This will disable that functionality.
|
||||
|
||||
All of the following sections can be configured based on personal preference. If you chose to rename or delete any of the predefined templates ensure you follow the same schema for the remaining sections. It is recommended that `SearchMissing` be set to false. qBitrr will not have access to your Sonarr/Radarr database file unless they are configured in an unsupported manner. This will disable that functionality.
|
||||
|
||||
@@ -3,7 +3,6 @@ image:
|
||||
repository: tccr.io/truecharts/recyclarr
|
||||
tag: v6.0.1@sha256:c3344f9d10cfbbc5eda5dcc6bfc92973fbd2920d386f6d63ad1d5f16b6a60bed
|
||||
|
||||
|
||||
service:
|
||||
main:
|
||||
enabled: false
|
||||
|
||||
@@ -15,13 +15,13 @@ workload:
|
||||
probes:
|
||||
liveness:
|
||||
path: /healthz
|
||||
port: '{{ .Values.service.main.ports.main.port }}'
|
||||
port: "{{ .Values.service.main.ports.main.port }}"
|
||||
readiness:
|
||||
path: /healthz
|
||||
port: '{{ .Values.service.main.ports.main.port }}'
|
||||
port: "{{ .Values.service.main.ports.main.port }}"
|
||||
startup:
|
||||
type: tcp
|
||||
port: '{{ .Values.service.main.ports.main.port }}'
|
||||
port: "{{ .Values.service.main.ports.main.port }}"
|
||||
|
||||
securityContext:
|
||||
container:
|
||||
|
||||
@@ -25,8 +25,8 @@ portal:
|
||||
securityContext:
|
||||
container:
|
||||
capabilities:
|
||||
add:
|
||||
- NET_RAW
|
||||
add:
|
||||
- NET_RAW
|
||||
readOnlyRootFilesystem: false
|
||||
runAsNonRoot: false
|
||||
allowPrivilegeEscalation: true
|
||||
|
||||
@@ -93,7 +93,7 @@ workload:
|
||||
TC_USE_SELF_SIGNED_CERT: false
|
||||
TC_USE_24_HOUR_TIME: "{{.Values.tauticord.use_24_hour_time }}"
|
||||
TC_USE_FRIENDLY_NAMES: "{{.Values.tauticord.use_friendly_names }}"
|
||||
TC_REFRESH_SECONDS: "{{.Values.tauticord.refresh_seconds }}"
|
||||
TC_REFRESH_SECONDS: "{{.Values.tauticord.refresh_seconds }}"
|
||||
TC_TERMINATE_MESSAGE: "{{.Values.tauticord.terminate_message }}"
|
||||
TC_ALLOWS_ANALYTICS: "{{.Values.tauticord.allow_analytics }}"
|
||||
# Discord
|
||||
@@ -107,17 +107,17 @@ workload:
|
||||
TC_TAUTULLI_KEY: "{{.Values.tauticord.tautulli.key }}"
|
||||
TC_TAUTULLI_URL: "{{.Values.tauticord.tautulli.url }}"
|
||||
# Plex
|
||||
TC_PLEX_PASS: "{{.Values.tauticord.plex.pass }}"
|
||||
TC_PLEX_PASS: "{{.Values.tauticord.plex.pass }}"
|
||||
TC_SERVER_NAME: "{{.Values.tauticord.plex.server_name }}"
|
||||
# Hide Info
|
||||
TC_HIDE_USERNAMES: "{{.Values.tauticord.hide.usernames }}"
|
||||
TC_HIDE_PLATFORMS: "{{.Values.tauticord.hide.platforms }}"
|
||||
TC_HIDE_PLAYER_NAMES: "{{.Values.tauticord.hide.player_names }}"
|
||||
TC_HIDE_QUALITY: "{{.Values.tauticord.hide.quality }}"
|
||||
TC_HIDE_BANDWIDTH: "{{.Values.tauticord.hide.bandwidth }}"
|
||||
TC_HIDE_TRANSCODE: "{{.Values.tauticord.hide.transcode }}"
|
||||
TC_HIDE_PROGRESS: "{{.Values.tauticord.hide.progress }}"
|
||||
TC_HIDE_ETA: "{{.Values.tauticord.hide.eta }}"
|
||||
TC_HIDE_USERNAMES: "{{.Values.tauticord.hide.usernames }}"
|
||||
TC_HIDE_PLATFORMS: "{{.Values.tauticord.hide.platforms }}"
|
||||
TC_HIDE_PLAYER_NAMES: "{{.Values.tauticord.hide.player_names }}"
|
||||
TC_HIDE_QUALITY: "{{.Values.tauticord.hide.quality }}"
|
||||
TC_HIDE_BANDWIDTH: "{{.Values.tauticord.hide.bandwidth }}"
|
||||
TC_HIDE_TRANSCODE: "{{.Values.tauticord.hide.transcode }}"
|
||||
TC_HIDE_PROGRESS: "{{.Values.tauticord.hide.progress }}"
|
||||
TC_HIDE_ETA: "{{.Values.tauticord.hide.eta }}"
|
||||
# Stats Cat
|
||||
TC_VC_STATS_CATEGORY_NAME: "{{.Values.tauticord.cat_stats.name }}"
|
||||
TC_VC_STREAM_COUNT: "{{.Values.tauticord.cat_stats.stream_count_enabled }}"
|
||||
|
||||
@@ -38,11 +38,11 @@ This section is hidden by default for TrueNAS SCALE but if you wish to use `Host
|
||||
|
||||
### App Configuration:
|
||||
|
||||
- `ZEROTIER_API_SECRET`: Replaces the authtoken.secret before booting and allows you to manage the control socket's authentication key
|
||||
- `ZEROTIER_IDENTITY_PUBLIC`: The identity.public file for zerotier-one. Use zerotier-idtool to generate one of these for you.
|
||||
- `ZEROTIER_IDENTITY_SECRET`: The identity.secret file for zerotier-one. Use zerotier-idtool to generate one of these for you.
|
||||
- `ZEROTIER_API_SECRET`: Replaces the authtoken.secret before booting and allows you to manage the control socket's authentication key
|
||||
- `ZEROTIER_IDENTITY_PUBLIC`: The identity.public file for zerotier-one. Use zerotier-idtool to generate one of these for you.
|
||||
- `ZEROTIER_IDENTITY_SECRET`: The identity.secret file for zerotier-one. Use zerotier-idtool to generate one of these for you.
|
||||
|
||||

|
||||

|
||||
|
||||
### Extra Args:
|
||||
|
||||
|
||||
Reference in New Issue
Block a user