feat(cloudflareddns): Add CloudflareDDNS to incubator (#3037)

* Create Chart.yaml

* Create common.yaml

* Create values.yaml

* Update values.yaml

* Create questions.yaml

* Update questions.yaml

* Update questions.yaml

* Fixed # in questions

* Run as root

* apply some fixes

* test non-root

* root

Co-authored-by: Stavros kois <s.kois@outlook.com>
This commit is contained in:
StevenMcElligott
2022-07-02 08:52:16 -04:00
committed by GitHub
parent 84120f8e71
commit f3083e66b1
4 changed files with 329 additions and 0 deletions
@@ -0,0 +1,32 @@
apiVersion: v2
kubeVersion: ">=1.16.0-0"
name: cloudflareddns
version: 0.0.1
appVersion: "latest"
description: Update your Cloudflare DNS records using dynamically
type: application
deprecated: false
home: https://github.com/truecharts/apps/tree/master/charts/stable/cloudflareddns
icon: https://truecharts.org/_static/img/appicons/cloudflareddns.png
keywords:
- ddns
- cloudflare
- cloudflareddns
sources:
- https://github.com/hotio/cloudflareddns
- https://hotio.dev/containers/cloudflareddns/
dependencies:
- name: common
repository: https://library-charts.truecharts.org
version: 10.1.4
# condition:
maintainers:
- email: info@truecharts.org
name: TrueCharts
url: https://truecharts.org
annotations:
truecharts.org/catagories: |
- incubator
- networking
truecharts.org/SCALE-support: "true"
truecharts.org/grade: U
@@ -0,0 +1,244 @@
# Include{groups}
portals: {}
questions:
# Include{global}
- variable: controller
group: "Controller"
label: ""
schema:
additional_attrs: true
type: dict
attrs:
- variable: advanced
label: "Show Advanced Controller Settings"
schema:
type: boolean
default: false
show_subquestions_if: true
subquestions:
- variable: type
description: "Please specify type of workload to deploy"
label: "(Advanced) Controller Type"
schema:
type: string
default: "deployment"
required: true
enum:
- value: "deployment"
description: "Deployment"
- value: "statefulset"
description: "Statefulset"
- value: "daemonset"
description: "Daemonset"
- variable: replicas
description: "Number of desired pod replicas"
label: "Desired Replicas"
schema:
type: int
default: 1
required: true
- variable: strategy
description: "Please specify type of workload to deploy"
label: "(Advanced) Update Strategy"
schema:
type: string
default: "Recreate"
required: true
enum:
- value: "Recreate"
description: "Recreate: Kill existing pods before creating new ones"
- value: "RollingUpdate"
description: "RollingUpdate: Create new pods and then kill old ones"
- value: "OnDelete"
description: "(Legacy) OnDelete: ignore .spec.template changes"
# Include{controllerExpert}
- variable: secretEnv
group: "Container Configuration"
label: "Image Secrets"
schema:
additional_attrs: true
type: dict
attrs:
- variable: CF_APITOKEN
label: "CF_APITOKEN"
schema:
type: string
private: true
default: ""
- variable: CF_APIKEY
label: "CF_APIKEY"
schema:
type: string
private: true
default: ""
- variable: CF_APITOKEN_ZONE
label: "CF_APITOKEN_ZONE"
schema:
type: string
private: true
default: ""
- variable: env
group: "Container Configuration"
label: "Image Environment"
schema:
additional_attrs: true
type: dict
attrs:
- variable: INTERVAL
label: "INTERVAL"
description: "Update your DDNS interval in seconds"
schema:
type: int
default: 300
- variable: LOG_LEVEL
label: "LOG_LEVEL"
description: "Level of detail your logs need"
schema:
type: int
default: 3
- variable: DETECT_MODE
label: "DETECTION_MODE"
description: "How you want to get your WAN IP"
schema:
type: string
default: "dig-whoami.cloudflare"
enum:
- value: "dig-whoami.cloudflare"
description: "dig-whoami.cloudflare"
- value: "curl-ifconfig.co"
description: "curl-ifconfig.co"
- value: "curl-icanhazip.com"
description: "curl-icanhazip.com"
- value: "curl-wtfismyip.com"
description: "curl-wtfismyip.com"
- value: "curl-showmyip.ca"
description: "curl-showmyip.ca"
- value: "curl-da.gd"
description: "curl-da.gd"
- value: "curl-seeip.org"
description: "curl-seeip.org"
- value: "dig-google.com"
description: "dig-google.com"
- value: "dig-opendns.com"
description: "dig-opendns.com"
- variable: DETECT_OVERRIDE
label: "DETECTION_MODE_OVERRIDE"
description: "If you want to set DETECTION_MODE to 'local:eth0' for a local interface, this will override the dropdown selection"
schema:
type: string
default: "local:eth0"
- variable: CF_USER
label: "CF_USER"
description: "Cloudflare Username"
schema:
type: string
default: "your.cf.email@example.com"
- variable: CF_HOSTS
label: "CF_HOSTS"
description: "Cloudflare Hosts (Domains)"
schema:
type: string
default: "test.example.com;test.foobar.com"
- variable: CF_RECORDTYPES
label: "CF_RECORDTYPES"
description: "Cloudflare DNS Zones"
schema:
type: string
default: "A;A;AAAA"
# Include{containerConfig}
# Include{serviceList}
- variable: persistence
label: "Integrated Persistent Storage"
description: "Integrated Persistent Storage"
group: "Storage and Persistence"
schema:
additional_attrs: true
type: dict
attrs:
- variable: config
label: "App Config Storage"
description: "Stores the Application Configuration."
schema:
additional_attrs: true
type: dict
attrs:
# Include{persistenceBasic}
# Include{persistenceAdvanced}
# Include{persistenceList}
# Include{ingressList}
# Include{security}
- variable: advancedSecurity
label: "Show Advanced Security Settings"
group: "Security and Permissions"
schema:
type: boolean
default: false
show_subquestions_if: true
subquestions:
- variable: securityContext
label: "Security Context"
schema:
additional_attrs: true
type: dict
attrs:
- variable: privileged
label: "Privileged mode"
schema:
type: boolean
default: false
- variable: readOnlyRootFilesystem
label: "ReadOnly Root Filesystem"
schema:
type: boolean
default: false
- variable: allowPrivilegeEscalation
label: "Allow Privilege Escalation"
schema:
type: boolean
default: false
- variable: runAsNonRoot
label: "runAsNonRoot"
schema:
type: boolean
default: false
# Include{securityContextAdvanced}
- variable: podSecurityContext
group: "Security and Permissions"
label: "Pod Security Context"
schema:
additional_attrs: true
type: dict
attrs:
- variable: runAsUser
label: "runAsUser"
description: "The UserID of the user running the application"
schema:
type: int
default: 0
- variable: runAsGroup
label: "runAsGroup"
description: "The groupID this App of the user running the application"
schema:
type: int
default: 0
- variable: fsGroup
label: "fsGroup"
description: "The group that should own ALL storage."
schema:
type: int
default: 568
# Include{podSecurityContextAdvanced}
# Include{resources}
# Include{advanced}
# Include{addons}
@@ -0,0 +1 @@
{{ include "tc.common.loader.all" . }}
@@ -0,0 +1,52 @@
image:
repository: ghcr.io/hotio/cloudflareddns
pullPolicy: IfNotPresent
tag: latest@sha256:5a5d15f77847de9b01c0c607a7c40353f44dae650e689cea00a4c0eea572778f
securityContext:
runAsNonRoot: false
readOnlyRootFilesystem: false
podSecurityContext:
runAsUser: 0
runAsGroup: 0
secretEnv:
CF_APITOKEN: ""
CF_APIKEY: ""
CF_APITOKEN_ZONE: ""
env:
DETECTION_MODE: '{{ ternary .Values.DETECT_MODE .Values.DETECT_OVERRIDE (eq .Values.DETECT_OVERRIDE "") }}'
# Use Defined
INTERVAL: 300
DETECT_MODE: "dig-whoami.cloudflare"
DETECT_OVERRIDE: ""
LOG_LEVEL: 3
cloudflareddns: ""
CF_USER: "your.cf.email@example.com"
CF_HOSTS: "test.example.com;test.foobar.com;test2.foobar.com"
CF_ZONES: "example.com;foobar.com;foobar.com"
CF_RECORDTYPES: "A;A;AAAA"
probes:
liveness:
enabled: false
readiness:
enabled: false
startup:
enabled: false
service:
main:
enabled: false
ports:
main:
enabled: false
persistence:
config:
enabled: true
mountPath: "/config"
varrun:
enabled: true