| 12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061626364656667686970717273747576777879808182838485868788899091929394959697989910010110210310410510610710810911011111211311411511611711811912012112212312412512612712812913013113213313413513613713813914014114214314414514614714814915015115215315415515615715815916016116216316416516616716816917017117217317417517617717817918018118218318418518618718818919019119219319419519619719819920020120220320420520620720820921021121221321421521621721821922022122222322422522622722822923023123223323423523623723823924024124224324424524624724824925025125225325425525625725825926026126226326426526626726826927027127227327427527627727827928028128228328428528628728828929029129229329429529629729829930030130230330430530630730830931031131231331431531631731831932032132232332432532632732832933033133233333433533633733833934034134234334434534634734834935035135235335435535635735835936036136236336436536636736836937037137237337437537637737837938038138238338438538638738838939039139239339439539639739839940040140240340440540640740840941041141241341441541641741841942042142242342442542642742842943043143243343443543643743843944044144244344444544644744844945045145245345445545645745845946046146246346446546646746846947047147247347447547647747847948048148248348448548648748848949049149249349449549649749849950050150250350450550650750850951051151251351451551651751851952052152252352452552652752852953053153253353453553653753853954054154254354454554654754854955055155255355455555655755855956056156256356456556656756856957057157257357457557657757857958058158258358458558658758858959059159259359459559659759859960060160260360460560660760860961061161261361461561661761861962062162262362462562662762862963063163263363463563663763863964064164264364464564664764864965065165265365465565665765865966066166266366466566666766866967067167267367467567667767867968068168268368468568668768868969069169269369469569669769869970070170270370470570670770870971071171271371471571671771871972072172272372472572672772872973073173273373473573673773873974074174274374474574674774874975075175275375475575675775875976076176276376476576676776876977077177277377477577677777877978078178278378478578678778878979079179279379479579679779879980080180280380480580680780880981081181281381481581681781881982082182282382482582682782882983083183283383483583683783883984084184284384484584684784884985085185285385485585685785885986086186286386486586686786886987087187287387487587687787887988088188288388488588688788888989089189289389489589689789889990090190290390490590690790890991091191291391491591691791891992092192292392492592692792892993093193293393493593693793893994094194294394494594694794894995095195295395495595695795895996096196296396496596696796896997097197297397497597697797897998098198298398498598698798898999099199299399499599699799899910001001100210031004100510061007100810091010101110121013101410151016101710181019102010211022102310241025102610271028102910301031103210331034103510361037103810391040104110421043104410451046104710481049105010511052105310541055105610571058105910601061106210631064106510661067106810691070107110721073107410751076107710781079108010811082108310841085108610871088108910901091109210931094109510961097109810991100110111021103110411051106110711081109111011111112111311141115111611171118111911201121112211231124112511261127112811291130113111321133113411351136113711381139114011411142114311441145114611471148114911501151115211531154115511561157115811591160116111621163116411651166116711681169117011711172117311741175117611771178117911801181118211831184118511861187118811891190119111921193119411951196119711981199120012011202120312041205120612071208120912101211121212131214121512161217121812191220122112221223122412251226122712281229123012311232123312341235123612371238123912401241124212431244124512461247124812491250125112521253125412551256125712581259126012611262126312641265126612671268126912701271127212731274127512761277127812791280128112821283128412851286128712881289129012911292129312941295129612971298129913001301130213031304130513061307130813091310131113121313131413151316131713181319132013211322132313241325132613271328132913301331133213331334133513361337133813391340134113421343134413451346134713481349135013511352135313541355135613571358135913601361136213631364136513661367136813691370137113721373137413751376137713781379138013811382138313841385138613871388138913901391139213931394139513961397139813991400140114021403140414051406140714081409141014111412141314141415141614171418141914201421142214231424142514261427142814291430143114321433143414351436143714381439144014411442144314441445144614471448144914501451145214531454145514561457145814591460146114621463146414651466146714681469147014711472147314741475147614771478147914801481148214831484148514861487148814891490149114921493149414951496149714981499150015011502150315041505150615071508150915101511151215131514151515161517151815191520152115221523152415251526152715281529153015311532153315341535153615371538153915401541154215431544154515461547154815491550155115521553155415551556155715581559156015611562156315641565156615671568156915701571157215731574157515761577157815791580158115821583158415851586158715881589159015911592159315941595159615971598159916001601160216031604160516061607160816091610161116121613161416151616161716181619162016211622162316241625162616271628162916301631163216331634163516361637163816391640164116421643164416451646164716481649165016511652165316541655165616571658165916601661166216631664166516661667166816691670167116721673167416751676167716781679168016811682168316841685168616871688168916901691169216931694169516961697169816991700170117021703170417051706 |
- {
- "1.1.0": {
- "healthy": true,
- "supported": false,
- "healthy_error": null,
- "location": "/__w/charts/charts/community/vaultwarden/1.1.0",
- "last_update": "2023-11-23 22:47:30",
- "required_features": [
- "normalize/acl",
- "definitions/timezone",
- "normalize/ixVolume",
- "definitions/certificate"
- ],
- "human_version": "1.30.1_1.1.0",
- "version": "1.1.0",
- "chart_metadata": {
- "name": "vaultwarden",
- "description": "Alternative implementation of the Bitwarden server API written in Rust and compatible with upstream Bitwarden clients.",
- "annotations": {
- "title": "Vaultwarden"
- },
- "type": "application",
- "version": "1.1.0",
- "apiVersion": "v2",
- "appVersion": "1.30.1",
- "kubeVersion": ">=1.16.0-0",
- "maintainers": [
- {
- "name": "truenas",
- "url": "https://www.truenas.com/",
- "email": "dev@ixsystems.com"
- }
- ],
- "dependencies": [
- {
- "name": "common",
- "repository": "file://../../../common",
- "version": "1.2.3"
- }
- ],
- "home": "https://github.com/dani-garcia/vaultwarden",
- "icon": "https://media.sys.truenas.net/apps/vaultwarden/icons/icon.png",
- "sources": [
- "https://github.com/dani-garcia/vaultwarden",
- "https://github.com/truenas/charts/tree/master/community/vaultwarden"
- ],
- "keywords": [
- "password",
- "manager"
- ]
- },
- "app_metadata": {
- "runAsContext": [
- {
- "userName": "vaultwarden",
- "groupName": "vaultwarden",
- "gid": 568,
- "uid": 568,
- "description": "Vaultwarden can run as any non-root user."
- },
- {
- "userName": "postgres",
- "groupName": "postgres",
- "gid": 999,
- "uid": 999,
- "description": "Postgres runs as a non-root user."
- }
- ],
- "capabilities": [],
- "hostMounts": []
- },
- "schema": {
- "groups": [
- {
- "name": "Vaultwarden Configuration",
- "description": "Configure Vaultwarden"
- },
- {
- "name": "User and Group Configuration",
- "description": "Configure User and Group for Vaultwarden"
- },
- {
- "name": "Network Configuration",
- "description": "Configure Network for Vaultwarden"
- },
- {
- "name": "Storage Configuration",
- "description": "Configure Storage for Vaultwarden"
- },
- {
- "name": "Resources Configuration",
- "description": "Configure Resources for Vaultwarden"
- }
- ],
- "portals": {
- "web_portal": {
- "protocols": [
- "$kubernetes-resource_configmap_portal_protocol"
- ],
- "host": [
- "$kubernetes-resource_configmap_portal_host"
- ],
- "ports": [
- "$kubernetes-resource_configmap_portal_port"
- ],
- "path": "$kubernetes-resource_configmap_portal_path"
- },
- "admin_portal": {
- "protocols": [
- "$kubernetes-resource_configmap_portal_protocol"
- ],
- "host": [
- "$kubernetes-resource_configmap_portal_host"
- ],
- "ports": [
- "$kubernetes-resource_configmap_portal_port"
- ],
- "path": "$kubernetes-resource_configmap_portal_admin_path"
- }
- },
- "questions": [
- {
- "variable": "TZ",
- "group": "Vaultwarden Configuration",
- "label": "Timezone",
- "schema": {
- "type": "string",
- "default": "America/Los_Angeles",
- "required": true,
- "$ref": [
- "definitions/timezone"
- ],
- "enum": [
- {
- "value": "Asia/Damascus",
- "description": "'Asia/Damascus' timezone"
- },
- {
- "value": "Asia/Saigon",
- "description": "'Asia/Saigon' timezone"
- }
- ]
- }
- },
- {
- "variable": "vaultwardenConfig",
- "label": "",
- "group": "Vaultwarden Configuration",
- "schema": {
- "type": "dict",
- "attrs": [
- {
- "variable": "adminToken",
- "label": "Admin Token",
- "description": "Setting this, will enable the admin portal",
- "schema": {
- "type": "string",
- "private": true,
- "default": ""
- }
- },
- {
- "variable": "additionalEnvs",
- "label": "Additional Environment Variables",
- "description": "Configure additional environment variables for Vaultwarden.",
- "schema": {
- "type": "list",
- "default": [],
- "items": [
- {
- "variable": "env",
- "label": "Environment Variable",
- "schema": {
- "type": "dict",
- "attrs": [
- {
- "variable": "name",
- "label": "Name",
- "schema": {
- "type": "string",
- "required": true
- }
- },
- {
- "variable": "value",
- "label": "Value",
- "schema": {
- "type": "string",
- "required": true
- }
- }
- ]
- }
- }
- ]
- }
- }
- ]
- }
- },
- {
- "variable": "vaultwardenRunAs",
- "label": "",
- "group": "User and Group Configuration",
- "schema": {
- "type": "dict",
- "attrs": [
- {
- "variable": "user",
- "label": "User ID",
- "description": "The user id that Vaultwarden will run as.",
- "schema": {
- "type": "int",
- "min": 568,
- "default": 568,
- "required": true
- }
- },
- {
- "variable": "group",
- "label": "Group ID",
- "description": "The group id that Vaultwarden will run as.",
- "schema": {
- "type": "int",
- "min": 568,
- "default": 568,
- "required": true
- }
- }
- ]
- }
- },
- {
- "variable": "vaultwardenNetwork",
- "label": "",
- "group": "Network Configuration",
- "schema": {
- "type": "dict",
- "attrs": [
- {
- "variable": "webPort",
- "label": "Web Port",
- "description": "The port for the Vaultwarden Web UI.",
- "schema": {
- "type": "int",
- "default": 30032,
- "min": 9000,
- "max": 65535,
- "required": true
- }
- },
- {
- "variable": "wsEnabled",
- "label": "Enable Websocket",
- "schema": {
- "type": "boolean",
- "default": true
- }
- },
- {
- "variable": "wsPort",
- "label": "Websocket Port",
- "description": "The port for the Vaultwarden Websocket.",
- "schema": {
- "type": "int",
- "show_if": [
- [
- "wsEnabled",
- "=",
- true
- ]
- ],
- "default": 30033,
- "min": 9000,
- "max": 65535,
- "required": true
- }
- },
- {
- "variable": "hostNetwork",
- "label": "Host Network",
- "description": "Bind to the host network. It's recommended to keep this disabled.</br>\n",
- "schema": {
- "type": "boolean",
- "default": false
- }
- },
- {
- "variable": "domain",
- "label": "Domain",
- "description": "The domain to use for Vaultwarden </br>\nFormat is: https://sub.domain.tld:port\n",
- "schema": {
- "type": "string",
- "default": ""
- }
- },
- {
- "variable": "certificateID",
- "label": "Certificate",
- "description": "The certificate to use for Vaultwarden </br>\nUsing the Rocket method for TLS setup is NOT recommended </br>\nPrefer a reverse proxy with a valid certificate </br>\n",
- "schema": {
- "type": "int",
- "null": true,
- "$ref": [
- "definitions/certificate"
- ],
- "enum": [
- {
- "value": null,
- "description": "No Certificate"
- }
- ],
- "default": null
- }
- }
- ]
- }
- },
- {
- "variable": "vaultwardenStorage",
- "label": "",
- "group": "Storage Configuration",
- "schema": {
- "type": "dict",
- "attrs": [
- {
- "variable": "data",
- "label": "Vaultwarden Data Storage",
- "description": "The path to store Vaultwarden attachments, icons, etc.",
- "schema": {
- "type": "dict",
- "attrs": [
- {
- "variable": "type",
- "label": "Type",
- "description": "ixVolume: Is dataset created automatically by the system.</br>\nHost Path: Is a path that already exists on the system.\n",
- "schema": {
- "type": "string",
- "required": true,
- "immutable": true,
- "default": "ixVolume",
- "enum": [
- {
- "value": "hostPath",
- "description": "Host Path (Path that already exists on the system)"
- },
- {
- "value": "ixVolume",
- "description": "ixVolume (Dataset created automatically by the system)"
- }
- ]
- }
- },
- {
- "variable": "ixVolumeConfig",
- "label": "ixVolume Configuration",
- "description": "The configuration for the ixVolume dataset.",
- "schema": {
- "type": "dict",
- "show_if": [
- [
- "type",
- "=",
- "ixVolume"
- ]
- ],
- "$ref": [
- "normalize/ixVolume"
- ],
- "attrs": [
- {
- "variable": "aclEnable",
- "label": "Enable ACL",
- "description": "Enable ACL for the dataset.",
- "schema": {
- "type": "boolean",
- "default": false
- }
- },
- {
- "variable": "datasetName",
- "label": "Dataset Name",
- "description": "The name of the dataset to use for storage.",
- "schema": {
- "type": "string",
- "required": true,
- "immutable": true,
- "hidden": true,
- "default": "data"
- }
- },
- {
- "variable": "aclEntries",
- "label": "ACL Configuration",
- "schema": {
- "type": "dict",
- "show_if": [
- [
- "aclEnable",
- "=",
- true
- ]
- ],
- "attrs": [
- {
- "variable": "path",
- "label": "Path",
- "description": "Path to perform ACL",
- "schema": {
- "type": "string",
- "hidden": true
- }
- },
- {
- "variable": "entries",
- "label": "ACL Entries",
- "description": "ACL Entries",
- "schema": {
- "type": "list",
- "items": [
- {
- "variable": "aclEntry",
- "label": "ACL Entry",
- "schema": {
- "type": "dict",
- "attrs": [
- {
- "variable": "id_type",
- "label": "ID Type",
- "schema": {
- "type": "string",
- "enum": [
- {
- "value": "USER",
- "description": "Entry is for a USER"
- },
- {
- "value": "GROUP",
- "description": "Entry is for a GROUP"
- }
- ],
- "default": "USER"
- }
- },
- {
- "variable": "id",
- "label": "ID",
- "description": "Make sure to check the ID value is correct and aligns with RunAs user context of the application",
- "schema": {
- "type": "int",
- "required": true,
- "min": 0
- }
- },
- {
- "variable": "access",
- "label": "Access",
- "schema": {
- "type": "string",
- "enum": [
- {
- "value": "READ",
- "description": "Read Access"
- },
- {
- "value": "MODIFY",
- "description": "Modify Access"
- },
- {
- "value": "FULL_CONTROL",
- "description": "FULL_CONTROL Access"
- }
- ]
- }
- }
- ]
- }
- }
- ]
- }
- }
- ]
- }
- }
- ]
- }
- },
- {
- "variable": "hostPathConfig",
- "label": "hostPathConfig",
- "schema": {
- "type": "dict",
- "show_if": [
- [
- "type",
- "=",
- "hostPath"
- ]
- ],
- "attrs": [
- {
- "variable": "aclEnable",
- "label": "Enable ACL",
- "description": "Enable ACL for the dataset.",
- "schema": {
- "type": "boolean",
- "default": false
- }
- },
- {
- "variable": "acl",
- "label": "ACL Configuration",
- "schema": {
- "type": "dict",
- "show_if": [
- [
- "aclEnable",
- "=",
- true
- ]
- ],
- "attrs": [
- {
- "variable": "path",
- "label": "Host Path",
- "description": "Host Path to perform ACL",
- "schema": {
- "type": "hostpath",
- "required": true,
- "empty": false
- }
- },
- {
- "variable": "entries",
- "label": "ACL Entries",
- "description": "ACL Entries",
- "schema": {
- "type": "list",
- "items": [
- {
- "variable": "aclEntry",
- "label": "ACL Entry",
- "schema": {
- "type": "dict",
- "attrs": [
- {
- "variable": "id_type",
- "label": "ID Type",
- "schema": {
- "type": "string",
- "enum": [
- {
- "value": "USER",
- "description": "Entry is for a USER"
- },
- {
- "value": "GROUP",
- "description": "Entry is for a GROUP"
- }
- ],
- "default": "USER"
- }
- },
- {
- "variable": "id",
- "label": "ID",
- "description": "Make sure to check the ID value is correct and aligns with RunAs user context of the application",
- "schema": {
- "type": "int",
- "required": true,
- "min": 0
- }
- },
- {
- "variable": "access",
- "label": "Access",
- "schema": {
- "type": "string",
- "enum": [
- {
- "value": "READ",
- "description": "Read Access"
- },
- {
- "value": "MODIFY",
- "description": "Modify Access"
- },
- {
- "value": "FULL_CONTROL",
- "description": "FULL_CONTROL Access"
- }
- ]
- }
- }
- ]
- }
- }
- ]
- }
- }
- ],
- "$ref": [
- "normalize/acl"
- ]
- }
- },
- {
- "variable": "hostPath",
- "label": "Host Path",
- "description": "The host path to use for storage.",
- "schema": {
- "type": "hostpath",
- "show_if": [
- [
- "aclEnable",
- "=",
- false
- ]
- ],
- "immutable": true,
- "required": true
- }
- }
- ]
- }
- }
- ]
- }
- },
- {
- "variable": "pgData",
- "label": "Vaultwarden Postgres Data Storage",
- "description": "The path to store Vaultwarden Postgres Data.",
- "schema": {
- "type": "dict",
- "attrs": [
- {
- "variable": "type",
- "label": "Type",
- "description": "ixVolume: Is dataset created automatically by the system.</br>\nHost Path: Is a path that already exists on the system.\n",
- "schema": {
- "type": "string",
- "required": true,
- "immutable": true,
- "default": "ixVolume",
- "enum": [
- {
- "value": "hostPath",
- "description": "Host Path (Path that already exists on the system)"
- },
- {
- "value": "ixVolume",
- "description": "ixVolume (Dataset created automatically by the system)"
- }
- ]
- }
- },
- {
- "variable": "ixVolumeConfig",
- "label": "ixVolume Configuration",
- "description": "The configuration for the ixVolume dataset.",
- "schema": {
- "type": "dict",
- "hidden": true,
- "show_if": [
- [
- "type",
- "=",
- "ixVolume"
- ]
- ],
- "$ref": [
- "normalize/ixVolume"
- ],
- "attrs": [
- {
- "variable": "aclEnable",
- "label": "Enable ACL",
- "description": "Enable ACL for the dataset.",
- "schema": {
- "type": "boolean",
- "hidden": true,
- "default": false
- }
- },
- {
- "variable": "datasetName",
- "label": "Dataset Name",
- "description": "The name of the dataset to use for storage.",
- "schema": {
- "type": "string",
- "required": true,
- "immutable": true,
- "hidden": true,
- "default": "pgData"
- }
- },
- {
- "variable": "aclEntries",
- "label": "ACL Configuration",
- "schema": {
- "type": "dict",
- "show_if": [
- [
- "aclEnable",
- "=",
- true
- ]
- ],
- "attrs": [
- {
- "variable": "path",
- "label": "Path",
- "description": "Path to perform ACL",
- "schema": {
- "type": "string",
- "hidden": true
- }
- },
- {
- "variable": "entries",
- "label": "ACL Entries",
- "description": "ACL Entries",
- "schema": {
- "type": "list",
- "items": [
- {
- "variable": "aclEntry",
- "label": "ACL Entry",
- "schema": {
- "type": "dict",
- "attrs": [
- {
- "variable": "id_type",
- "label": "ID Type",
- "schema": {
- "type": "string",
- "enum": [
- {
- "value": "USER",
- "description": "Entry is for a USER"
- },
- {
- "value": "GROUP",
- "description": "Entry is for a GROUP"
- }
- ],
- "default": "USER"
- }
- },
- {
- "variable": "id",
- "label": "ID",
- "description": "Make sure to check the ID value is correct and aligns with RunAs user context of the application",
- "schema": {
- "type": "int",
- "required": true,
- "min": 0
- }
- },
- {
- "variable": "access",
- "label": "Access",
- "schema": {
- "type": "string",
- "enum": [
- {
- "value": "READ",
- "description": "Read Access"
- },
- {
- "value": "MODIFY",
- "description": "Modify Access"
- },
- {
- "value": "FULL_CONTROL",
- "description": "FULL_CONTROL Access"
- }
- ]
- }
- }
- ]
- }
- }
- ]
- }
- }
- ]
- }
- }
- ]
- }
- },
- {
- "variable": "hostPathConfig",
- "label": "hostPathConfig",
- "schema": {
- "type": "dict",
- "show_if": [
- [
- "type",
- "=",
- "hostPath"
- ]
- ],
- "attrs": [
- {
- "variable": "aclEnable",
- "label": "Enable ACL",
- "description": "Enable ACL for the dataset.",
- "schema": {
- "type": "boolean",
- "hidden": true,
- "default": false
- }
- },
- {
- "variable": "acl",
- "label": "ACL Configuration",
- "schema": {
- "type": "dict",
- "show_if": [
- [
- "aclEnable",
- "=",
- true
- ]
- ],
- "attrs": [
- {
- "variable": "path",
- "label": "Host Path",
- "description": "Host Path to perform ACL",
- "schema": {
- "type": "hostpath",
- "required": true,
- "empty": false
- }
- },
- {
- "variable": "entries",
- "label": "ACL Entries",
- "description": "ACL Entries",
- "schema": {
- "type": "list",
- "items": [
- {
- "variable": "aclEntry",
- "label": "ACL Entry",
- "schema": {
- "type": "dict",
- "attrs": [
- {
- "variable": "id_type",
- "label": "ID Type",
- "schema": {
- "type": "string",
- "enum": [
- {
- "value": "USER",
- "description": "Entry is for a USER"
- },
- {
- "value": "GROUP",
- "description": "Entry is for a GROUP"
- }
- ],
- "default": "USER"
- }
- },
- {
- "variable": "id",
- "label": "ID",
- "description": "Make sure to check the ID value is correct and aligns with RunAs user context of the application",
- "schema": {
- "type": "int",
- "required": true,
- "min": 0
- }
- },
- {
- "variable": "access",
- "label": "Access",
- "schema": {
- "type": "string",
- "enum": [
- {
- "value": "READ",
- "description": "Read Access"
- },
- {
- "value": "MODIFY",
- "description": "Modify Access"
- },
- {
- "value": "FULL_CONTROL",
- "description": "FULL_CONTROL Access"
- }
- ]
- }
- }
- ]
- }
- }
- ]
- }
- }
- ],
- "$ref": [
- "normalize/acl"
- ]
- }
- },
- {
- "variable": "hostPath",
- "label": "Host Path",
- "description": "The host path to use for storage.",
- "schema": {
- "type": "hostpath",
- "show_if": [
- [
- "aclEnable",
- "=",
- false
- ]
- ],
- "immutable": true,
- "required": true
- }
- }
- ]
- }
- }
- ]
- }
- },
- {
- "variable": "pgBackup",
- "label": "Vaultwarden Postgres Backup Storage",
- "description": "The path to store Vaultwarden Postgres Backup.",
- "schema": {
- "type": "dict",
- "attrs": [
- {
- "variable": "type",
- "label": "Type",
- "description": "ixVolume: Is dataset created automatically by the system.</br>\nHost Path: Is a path that already exists on the system.\n",
- "schema": {
- "type": "string",
- "required": true,
- "immutable": true,
- "default": "ixVolume",
- "enum": [
- {
- "value": "hostPath",
- "description": "Host Path (Path that already exists on the system)"
- },
- {
- "value": "ixVolume",
- "description": "ixVolume (Dataset created automatically by the system)"
- }
- ]
- }
- },
- {
- "variable": "ixVolumeConfig",
- "label": "ixVolume Configuration",
- "description": "The configuration for the ixVolume dataset.",
- "schema": {
- "type": "dict",
- "hidden": true,
- "show_if": [
- [
- "type",
- "=",
- "ixVolume"
- ]
- ],
- "$ref": [
- "normalize/ixVolume"
- ],
- "attrs": [
- {
- "variable": "aclEnable",
- "label": "Enable ACL",
- "description": "Enable ACL for the dataset.",
- "schema": {
- "type": "boolean",
- "hidden": true,
- "default": false
- }
- },
- {
- "variable": "datasetName",
- "label": "Dataset Name",
- "description": "The name of the dataset to use for storage.",
- "schema": {
- "type": "string",
- "required": true,
- "immutable": true,
- "hidden": true,
- "default": "pgBackup"
- }
- },
- {
- "variable": "aclEntries",
- "label": "ACL Configuration",
- "schema": {
- "type": "dict",
- "show_if": [
- [
- "aclEnable",
- "=",
- true
- ]
- ],
- "attrs": [
- {
- "variable": "path",
- "label": "Path",
- "description": "Path to perform ACL",
- "schema": {
- "type": "string",
- "hidden": true
- }
- },
- {
- "variable": "entries",
- "label": "ACL Entries",
- "description": "ACL Entries",
- "schema": {
- "type": "list",
- "items": [
- {
- "variable": "aclEntry",
- "label": "ACL Entry",
- "schema": {
- "type": "dict",
- "attrs": [
- {
- "variable": "id_type",
- "label": "ID Type",
- "schema": {
- "type": "string",
- "enum": [
- {
- "value": "USER",
- "description": "Entry is for a USER"
- },
- {
- "value": "GROUP",
- "description": "Entry is for a GROUP"
- }
- ],
- "default": "USER"
- }
- },
- {
- "variable": "id",
- "label": "ID",
- "description": "Make sure to check the ID value is correct and aligns with RunAs user context of the application",
- "schema": {
- "type": "int",
- "required": true,
- "min": 0
- }
- },
- {
- "variable": "access",
- "label": "Access",
- "schema": {
- "type": "string",
- "enum": [
- {
- "value": "READ",
- "description": "Read Access"
- },
- {
- "value": "MODIFY",
- "description": "Modify Access"
- },
- {
- "value": "FULL_CONTROL",
- "description": "FULL_CONTROL Access"
- }
- ]
- }
- }
- ]
- }
- }
- ]
- }
- }
- ]
- }
- }
- ]
- }
- },
- {
- "variable": "hostPathConfig",
- "label": "hostPathConfig",
- "schema": {
- "type": "dict",
- "show_if": [
- [
- "type",
- "=",
- "hostPath"
- ]
- ],
- "attrs": [
- {
- "variable": "aclEnable",
- "label": "Enable ACL",
- "description": "Enable ACL for the dataset.",
- "schema": {
- "type": "boolean",
- "hidden": true,
- "default": false
- }
- },
- {
- "variable": "acl",
- "label": "ACL Configuration",
- "schema": {
- "type": "dict",
- "show_if": [
- [
- "aclEnable",
- "=",
- true
- ]
- ],
- "attrs": [
- {
- "variable": "path",
- "label": "Host Path",
- "description": "Host Path to perform ACL",
- "schema": {
- "type": "hostpath",
- "required": true,
- "empty": false
- }
- },
- {
- "variable": "entries",
- "label": "ACL Entries",
- "description": "ACL Entries",
- "schema": {
- "type": "list",
- "items": [
- {
- "variable": "aclEntry",
- "label": "ACL Entry",
- "schema": {
- "type": "dict",
- "attrs": [
- {
- "variable": "id_type",
- "label": "ID Type",
- "schema": {
- "type": "string",
- "enum": [
- {
- "value": "USER",
- "description": "Entry is for a USER"
- },
- {
- "value": "GROUP",
- "description": "Entry is for a GROUP"
- }
- ],
- "default": "USER"
- }
- },
- {
- "variable": "id",
- "label": "ID",
- "description": "Make sure to check the ID value is correct and aligns with RunAs user context of the application",
- "schema": {
- "type": "int",
- "required": true,
- "min": 0
- }
- },
- {
- "variable": "access",
- "label": "Access",
- "schema": {
- "type": "string",
- "enum": [
- {
- "value": "READ",
- "description": "Read Access"
- },
- {
- "value": "MODIFY",
- "description": "Modify Access"
- },
- {
- "value": "FULL_CONTROL",
- "description": "FULL_CONTROL Access"
- }
- ]
- }
- }
- ]
- }
- }
- ]
- }
- }
- ],
- "$ref": [
- "normalize/acl"
- ]
- }
- },
- {
- "variable": "hostPath",
- "label": "Host Path",
- "description": "The host path to use for storage.",
- "schema": {
- "type": "hostpath",
- "show_if": [
- [
- "aclEnable",
- "=",
- false
- ]
- ],
- "immutable": true,
- "required": true
- }
- }
- ]
- }
- }
- ]
- }
- },
- {
- "variable": "additionalStorages",
- "label": "Additional Storage",
- "description": "Additional storage for Vaultwarden.",
- "schema": {
- "type": "list",
- "default": [],
- "items": [
- {
- "variable": "storageEntry",
- "label": "Storage Entry",
- "schema": {
- "type": "dict",
- "attrs": [
- {
- "variable": "type",
- "label": "Type",
- "description": "ixVolume: Is dataset created automatically by the system.</br>\nHost Path: Is a path that already exists on the system.</br>\nSMB Share: Is a SMB share that is mounted to a persistent volume claim.\n",
- "schema": {
- "type": "string",
- "required": true,
- "default": "ixVolume",
- "immutable": true,
- "enum": [
- {
- "value": "hostPath",
- "description": "Host Path (Path that already exists on the system)"
- },
- {
- "value": "ixVolume",
- "description": "ixVolume (Dataset created automatically by the system)"
- },
- {
- "value": "smb-pv-pvc",
- "description": "SMB Share (Mounts a persistent volume claim to a SMB share)"
- }
- ]
- }
- },
- {
- "variable": "readOnly",
- "label": "Read Only",
- "description": "Mount the volume as read only.",
- "schema": {
- "type": "boolean",
- "default": false
- }
- },
- {
- "variable": "mountPath",
- "label": "Mount Path",
- "description": "The path inside the container to mount the storage.",
- "schema": {
- "type": "path",
- "required": true
- }
- },
- {
- "variable": "hostPathConfig",
- "label": "hostPathConfig",
- "schema": {
- "type": "dict",
- "show_if": [
- [
- "type",
- "=",
- "hostPath"
- ]
- ],
- "attrs": [
- {
- "variable": "aclEnable",
- "label": "Enable ACL",
- "description": "Enable ACL for the dataset.",
- "schema": {
- "type": "boolean",
- "default": false
- }
- },
- {
- "variable": "acl",
- "label": "ACL Configuration",
- "schema": {
- "type": "dict",
- "show_if": [
- [
- "aclEnable",
- "=",
- true
- ]
- ],
- "attrs": [
- {
- "variable": "path",
- "label": "Host Path",
- "description": "Host Path to perform ACL",
- "schema": {
- "type": "hostpath",
- "required": true,
- "empty": false
- }
- },
- {
- "variable": "entries",
- "label": "ACL Entries",
- "description": "ACL Entries",
- "schema": {
- "type": "list",
- "items": [
- {
- "variable": "aclEntry",
- "label": "ACL Entry",
- "schema": {
- "type": "dict",
- "attrs": [
- {
- "variable": "id_type",
- "label": "ID Type",
- "schema": {
- "type": "string",
- "enum": [
- {
- "value": "USER",
- "description": "Entry is for a USER"
- },
- {
- "value": "GROUP",
- "description": "Entry is for a GROUP"
- }
- ],
- "default": "USER"
- }
- },
- {
- "variable": "id",
- "label": "ID",
- "description": "Make sure to check the ID value is correct and aligns with RunAs user context of the application",
- "schema": {
- "type": "int",
- "required": true,
- "min": 0
- }
- },
- {
- "variable": "access",
- "label": "Access",
- "schema": {
- "type": "string",
- "enum": [
- {
- "value": "READ",
- "description": "Read Access"
- },
- {
- "value": "MODIFY",
- "description": "Modify Access"
- },
- {
- "value": "FULL_CONTROL",
- "description": "FULL_CONTROL Access"
- }
- ]
- }
- }
- ]
- }
- }
- ]
- }
- }
- ],
- "$ref": [
- "normalize/acl"
- ]
- }
- },
- {
- "variable": "hostPath",
- "label": "Host Path",
- "description": "The host path to use for storage.",
- "schema": {
- "type": "hostpath",
- "show_if": [
- [
- "aclEnable",
- "=",
- false
- ]
- ],
- "immutable": true,
- "required": true
- }
- }
- ]
- }
- },
- {
- "variable": "ixVolumeConfig",
- "label": "ixVolume Configuration",
- "description": "The configuration for the ixVolume dataset.",
- "schema": {
- "type": "dict",
- "show_if": [
- [
- "type",
- "=",
- "ixVolume"
- ]
- ],
- "$ref": [
- "normalize/ixVolume"
- ],
- "attrs": [
- {
- "variable": "aclEnable",
- "label": "Enable ACL",
- "description": "Enable ACL for the dataset.",
- "schema": {
- "type": "boolean",
- "default": false
- }
- },
- {
- "variable": "datasetName",
- "label": "Dataset Name",
- "description": "The name of the dataset to use for storage.",
- "schema": {
- "type": "string",
- "required": true,
- "immutable": true,
- "default": "storage_entry"
- }
- },
- {
- "variable": "aclEntries",
- "label": "ACL Configuration",
- "schema": {
- "type": "dict",
- "show_if": [
- [
- "aclEnable",
- "=",
- true
- ]
- ],
- "attrs": [
- {
- "variable": "path",
- "label": "Path",
- "description": "Path to perform ACL",
- "schema": {
- "type": "string",
- "hidden": true
- }
- },
- {
- "variable": "entries",
- "label": "ACL Entries",
- "description": "ACL Entries",
- "schema": {
- "type": "list",
- "items": [
- {
- "variable": "aclEntry",
- "label": "ACL Entry",
- "schema": {
- "type": "dict",
- "attrs": [
- {
- "variable": "id_type",
- "label": "ID Type",
- "schema": {
- "type": "string",
- "enum": [
- {
- "value": "USER",
- "description": "Entry is for a USER"
- },
- {
- "value": "GROUP",
- "description": "Entry is for a GROUP"
- }
- ],
- "default": "USER"
- }
- },
- {
- "variable": "id",
- "label": "ID",
- "description": "Make sure to check the ID value is correct and aligns with RunAs user context of the application",
- "schema": {
- "type": "int",
- "required": true,
- "min": 0
- }
- },
- {
- "variable": "access",
- "label": "Access",
- "schema": {
- "type": "string",
- "enum": [
- {
- "value": "READ",
- "description": "Read Access"
- },
- {
- "value": "MODIFY",
- "description": "Modify Access"
- },
- {
- "value": "FULL_CONTROL",
- "description": "FULL_CONTROL Access"
- }
- ]
- }
- }
- ]
- }
- }
- ]
- }
- }
- ]
- }
- }
- ]
- }
- },
- {
- "variable": "smbConfig",
- "label": "SMB Share Configuration",
- "description": "The configuration for the SMB Share.",
- "schema": {
- "type": "dict",
- "show_if": [
- [
- "type",
- "=",
- "smb-pv-pvc"
- ]
- ],
- "attrs": [
- {
- "variable": "server",
- "label": "Server",
- "description": "The server for the SMB share.",
- "schema": {
- "type": "string",
- "required": true
- }
- },
- {
- "variable": "share",
- "label": "Share",
- "description": "The share name for the SMB share.",
- "schema": {
- "type": "string",
- "required": true
- }
- },
- {
- "variable": "domain",
- "label": "Domain (Optional)",
- "description": "The domain for the SMB share.",
- "schema": {
- "type": "string"
- }
- },
- {
- "variable": "username",
- "label": "Username",
- "description": "The username for the SMB share.",
- "schema": {
- "type": "string",
- "required": true
- }
- },
- {
- "variable": "password",
- "label": "Password",
- "description": "The password for the SMB share.",
- "schema": {
- "type": "string",
- "required": true,
- "private": true
- }
- },
- {
- "variable": "size",
- "label": "Size (in Gi)",
- "description": "The size of the volume quota.",
- "schema": {
- "type": "int",
- "required": true,
- "min": 1,
- "default": 1
- }
- }
- ]
- }
- }
- ]
- }
- }
- ]
- }
- }
- ]
- }
- },
- {
- "variable": "resources",
- "label": "",
- "group": "Resources Configuration",
- "schema": {
- "type": "dict",
- "attrs": [
- {
- "variable": "limits",
- "label": "Limits",
- "schema": {
- "type": "dict",
- "attrs": [
- {
- "variable": "cpu",
- "label": "CPU",
- "description": "CPU limit for Vaultwarden.",
- "schema": {
- "type": "string",
- "max_length": 6,
- "valid_chars": "^(0\\.[1-9]|[1-9][0-9]*)(\\.[0-9]|m?)$",
- "valid_chars_error": "Valid CPU limit formats are</br>\n- Plain Integer - eg. 1</br>\n- Float - eg. 0.5</br>\n- Milicpu - eg. 500m\n",
- "default": "4000m",
- "required": true
- }
- },
- {
- "variable": "memory",
- "label": "Memory",
- "description": "Memory limit for Vaultwarden.",
- "schema": {
- "type": "string",
- "max_length": 12,
- "valid_chars": "^[1-9][0-9]*([EPTGMK]i?|e[0-9]+)?$",
- "valid_chars_error": "Valid Memory limit formats are</br>\n- Suffixed with E/P/T/G/M/K - eg. 1G</br>\n- Suffixed with Ei/Pi/Ti/Gi/Mi/Ki - eg. 1Gi</br>\n- Plain Integer in bytes - eg. 1024</br>\n- Exponent - eg. 134e6\n",
- "default": "8Gi",
- "required": true
- }
- }
- ]
- }
- }
- ]
- }
- }
- ]
- },
- "app_readme": "<h1>Vaultwarden</h1>\n<p><a href=\"https://github.com/dani-garcia/vaultwarden\">Vaultwarden</a> Alternative implementation of the <code>Bitwarden</code> server API written in Rust and compatible with upstream Bitwarden clients</p>\n<blockquote>\n<p>During the installation process, a container will be launched with <strong>root</strong> privileges. This is required\nin order to apply the correct permissions to the <code>Vaultwarden</code> data directory. Afterward, the <code>Vaultwarden</code> container\nwill run as a <strong>non</strong>-root user (default <code>568</code>).\nSame applies to the <code>postgres</code> container. This will run afterwards as a <strong>non</strong>-root user (<code>999</code>).\nOn each upgrade, a container will be launched with <strong>root</strong> privileges in order to apply the correct\npermissions to the <code>postgres</code> <strong>backups</strong> directory. Container that performs the backup will run as a <strong>non</strong>-root user (<code>999</code>) afterwards.\nKeep in mind the permissions on the backup directory will be changed to <code>999:999</code> on <strong>every</strong> update.\nBut will only be changed once for the <code>Vaultwarden</code> and <code>postgres</code> data directories.</p>\n</blockquote>\n<p>While the option to use <code>Rocket</code> for TLS is there, it is not\n<a href=\"https://github.com/dani-garcia/vaultwarden/wiki/Enabling-HTTPS#via-rocket\">recommended</a>.\nInstead, use a reverse proxy to handle TLS termination.</p>\n<p>Using <code>HTTPS</code> is <strong>required</strong> for the most of the features to work (correctly).</p>",
- "detailed_readme": "<h1>Vaultwarden</h1>\n<p><a href=\"https://github.com/dani-garcia/vaultwarden\">Vaultwarden</a> Alternative implementation of the <code>Bitwarden</code> server API written in Rust and compatible with upstream Bitwarden clients</p>\n<blockquote>\n<p>During the installation process, a container will be launched with <strong>root</strong> privileges. This is required\nin order to apply the correct permissions to the <code>Vaultwarden</code> data directory. Afterward, the <code>Vaultwarden</code> container\nwill run as a <strong>non</strong>-root user (default <code>568</code>).\nSame applies to the <code>postgres</code> container. This will run afterwards as a <strong>non</strong>-root user (<code>999</code>).\nOn each upgrade, a container will be launched with <strong>root</strong> privileges in order to apply the correct\npermissions to the <code>postgres</code> <strong>backups</strong> directory. Container that performs the backup will run as a <strong>non</strong>-root user (<code>999</code>) afterwards.\nKeep in mind the permissions on the backup directory will be changed to <code>999:999</code> on <strong>every</strong> update.\nBut will only be changed once for the <code>Vaultwarden</code> and <code>postgres</code> data directories.</p>\n</blockquote>\n<p>While the option to use <code>Rocket</code> for TLS is there, it is not\n<a href=\"https://github.com/dani-garcia/vaultwarden/wiki/Enabling-HTTPS#via-rocket\">recommended</a>.\nInstead, use a reverse proxy to handle TLS termination.</p>\n<p>Using <code>HTTPS</code> is <strong>required</strong> for the most of the features to work (correctly).</p>",
- "changelog": null
- }
- }
|
