forked from k-space/kube
passmower: Cleanup
This commit is contained in:
@@ -1,3 +1,5 @@
|
||||
# yamllint disable rule:line-length
|
||||
---
|
||||
nameOverride: ""
|
||||
fullnameOverride: ""
|
||||
|
||||
@@ -5,7 +7,7 @@ passmower:
|
||||
# Hostname on which Passmower will be deployed to. Will be used as ingress host.
|
||||
host: "auth.k-space.ee"
|
||||
# Local groups will be created with given prefix.
|
||||
group_prefix: 'k-space'
|
||||
group_prefix: 'k-space'
|
||||
# Local or remote group which members will automatically become admins.
|
||||
admin_group: 'k-space:onboarding'
|
||||
# If set, require all users to be member of the given local or remote group.
|
||||
@@ -17,7 +19,7 @@ passmower:
|
||||
# Comma-separated, wildcard enabled namespace selector to select, in which namespaces Passmower looks for client CRDs.
|
||||
namespace_selector: "*"
|
||||
# Domain which will be preferred for determining primary emails.
|
||||
preferred_email_domain: 'k-space.ee'
|
||||
preferred_email_domain: 'k-space.ee'
|
||||
# Require users to set a custom username instead of system generated one. Will be used as OIDCUser CRD name and OIDC username claim.
|
||||
require_custom_username: true
|
||||
# Normalize incoming email addresses by removing aliases (e.g. username+alias@gmail.com) etc.
|
||||
@@ -39,7 +41,7 @@ passmower:
|
||||
terms_of_service:
|
||||
configMapRef:
|
||||
name: passmower-tos
|
||||
|
||||
|
||||
redis:
|
||||
# Requires the Codemowers redis-operator to be installed: https://github.com/codemowers/operatorlib/tree/main/samples/redis-operator
|
||||
redisClaim:
|
||||
@@ -69,14 +71,9 @@ ingress:
|
||||
traefik.ingress.kubernetes.io/router.tls: "true"
|
||||
external-dns.alpha.kubernetes.io/target: traefik.k-space.ee
|
||||
external-dns.alpha.kubernetes.io/hostname: auth.k-space.ee,auth2.k-space.ee
|
||||
# kubernetes.io/ingress.class: nginx
|
||||
# kubernetes.io/tls-acme: "true"
|
||||
tls:
|
||||
- hosts:
|
||||
- "*.k-space.ee"
|
||||
# - secretName: chart-example-tls
|
||||
# hosts:
|
||||
# - chart-example.local
|
||||
|
||||
image:
|
||||
repository: passmower/passmower
|
||||
@@ -85,29 +82,12 @@ image:
|
||||
tag: "develop"
|
||||
|
||||
podSecurityContext: {}
|
||||
# fsGroup: 2000
|
||||
|
||||
securityContext: {}
|
||||
# capabilities:
|
||||
# drop:
|
||||
# - ALL
|
||||
# readOnlyRootFilesystem: true
|
||||
# runAsNonRoot: true
|
||||
# runAsUser: 1000
|
||||
|
||||
replicaCount: 3
|
||||
|
||||
resources: {}
|
||||
# We usually recommend not to specify default resources and to leave this as a conscious
|
||||
# choice for the user. This also increases chances charts run on environments with little
|
||||
# resources, such as Minikube. If you do want to specify resources, uncomment the following
|
||||
# lines, adjust them as necessary, and remove the curly braces after 'resources:'.
|
||||
# limits:
|
||||
# cpu: 100m
|
||||
# memory: 128Mi
|
||||
# requests:
|
||||
# cpu: 100m
|
||||
# memory: 128Mi
|
||||
|
||||
nodeSelector: {}
|
||||
|
||||
|
||||
Reference in New Issue
Block a user