| 123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419420421422423424425426427428429430431432433434435436437438439440441442443444445446447448449450451452453454455456457458459460461462463464465466467468469470471472473474475476477478479480481482483484485486487488489490491492493494495496497498499500501502503504505506507508509510511512513514515516517518519520521522523524525526527528529530531532533534535536537538539540541542543544545546547548549550551552553554555556557558559560561562563564565566567568569570571572573574575576577578579580581582583584585586587588589590591592593594595596597598599600 |
- groups:
- - name: Vaultwarden Configuration
- description: Configure Vaultwarden
- - name: User and Group Configuration
- description: Configure User and Group for Vaultwarden
- - name: Network Configuration
- description: Configure Network for Vaultwarden
- - name: Storage Configuration
- description: Configure Storage for Vaultwarden
- - name: Resources Configuration
- description: Configure Resources for Vaultwarden
- portals:
- web_portal:
- protocols:
- - "$kubernetes-resource_configmap_portal_protocol"
- host:
- - "$kubernetes-resource_configmap_portal_host"
- ports:
- - "$kubernetes-resource_configmap_portal_port"
- path: "$kubernetes-resource_configmap_portal_path"
- admin_portal:
- protocols:
- - "$kubernetes-resource_configmap_portal_protocol"
- host:
- - "$kubernetes-resource_configmap_portal_host"
- ports:
- - "$kubernetes-resource_configmap_portal_port"
- path: "$kubernetes-resource_configmap_portal_admin_path"
- questions:
- - variable: TZ
- group: Vaultwarden Configuration
- label: Timezone
- schema:
- type: string
- default: Etc/UTC
- required: true
- $ref:
- - definitions/timezone
- - variable: vaultwardenConfig
- label: ""
- group: Vaultwarden Configuration
- schema:
- type: dict
- attrs:
- - variable: adminToken
- label: Admin Token
- description: Setting this, will enable the admin portal
- schema:
- type: string
- private: true
- default: ""
- - variable: additionalEnvs
- label: Additional Environment Variables
- description: Configure additional environment variables for Vaultwarden.
- schema:
- type: list
- default: []
- items:
- - variable: env
- label: Environment Variable
- schema:
- type: dict
- attrs:
- - variable: name
- label: Name
- schema:
- type: string
- required: true
- - variable: value
- label: Value
- schema:
- type: string
- required: true
- - variable: vaultwardenRunAs
- label: ""
- group: User and Group Configuration
- schema:
- type: dict
- attrs:
- - variable: user
- label: User ID
- description: The user id that Vaultwarden will run as.
- schema:
- type: int
- min: 568
- default: 568
- required: true
- - variable: group
- label: Group ID
- description: The group id that Vaultwarden will run as.
- schema:
- type: int
- min: 568
- default: 568
- required: true
- - variable: vaultwardenNetwork
- label: ""
- group: Network Configuration
- schema:
- type: dict
- attrs:
- - variable: webPort
- label: Web Port
- description: The port for the Vaultwarden Web UI.
- schema:
- type: int
- default: 30032
- min: 9000
- max: 65535
- required: true
- - variable: wsEnabled
- label: Enable Websocket
- schema:
- type: boolean
- default: true
- - variable: wsPort
- label: Websocket Port
- description: The port for the Vaultwarden Websocket.
- schema:
- type: int
- show_if: [["wsEnabled", "=", true]]
- default: 30033
- min: 9000
- max: 65535
- required: true
- - variable: hostNetwork
- label: Host Network
- description: |
- Bind to the host network. It's recommended to keep this disabled.</br>
- schema:
- type: boolean
- default: false
- - variable: domain
- label: Domain
- description: |
- The domain to use for Vaultwarden </br>
- Format is: https://sub.domain.tld:port
- schema:
- type: string
- default: ""
- - variable: certificateID
- label: Certificate
- description: |
- The certificate to use for Vaultwarden </br>
- Using the Rocket method for TLS setup is NOT recommended </br>
- Prefer a reverse proxy with a valid certificate </br>
- schema:
- type: int
- "null": true
- $ref:
- - "definitions/certificate"
- - variable: vaultwardenStorage
- label: ""
- group: Storage Configuration
- schema:
- type: dict
- attrs:
- - variable: data
- label: Vaultwarden Data Storage
- description: The path to store Vaultwarden attachments, icons, etc.
- schema:
- type: dict
- attrs:
- - variable: type
- label: Type
- description: |
- ixVolume: Is dataset created automatically by the system.</br>
- Host Path: Is a path that already exists on the system.
- schema:
- type: string
- required: true
- immutable: true
- default: ixVolume
- enum:
- - value: hostPath
- description: Host Path (Path that already exists on the system)
- - value: ixVolume
- description: ixVolume (Dataset created automatically by the system)
- - variable: ixVolumeConfig
- label: ixVolume Configuration
- description: The configuration for the ixVolume dataset.
- schema:
- type: dict
- show_if: [["type", "=", "ixVolume"]]
- $ref:
- - "normalize/ixVolume"
- attrs:
- - variable: aclEnable
- label: Enable ACL
- description: Enable ACL for the dataset.
- schema:
- type: boolean
- default: false
- - variable: datasetName
- label: Dataset Name
- description: The name of the dataset to use for storage.
- schema:
- type: string
- required: true
- immutable: true
- hidden: true
- default: "data"
- - variable: aclEntries
- label: ACL Configuration
- schema:
- type: dict
- show_if: [["aclEnable", "=", true]]
- attrs: []
- - variable: hostPathConfig
- label: Host Path Configuration
- schema:
- type: dict
- show_if: [["type", "=", "hostPath"]]
- attrs:
- - variable: aclEnable
- label: Enable ACL
- description: Enable ACL for the dataset.
- schema:
- type: boolean
- default: false
- - variable: acl
- label: ACL Configuration
- schema:
- type: dict
- show_if: [["aclEnable", "=", true]]
- attrs: []
- $ref:
- - "normalize/acl"
- - variable: hostPath
- label: Host Path
- description: The host path to use for storage.
- schema:
- type: hostpath
- show_if: [["aclEnable", "=", false]]
- required: true
- - variable: pgData
- label: Vaultwarden Postgres Data Storage
- description: The path to store Vaultwarden Postgres Data.
- schema:
- type: dict
- attrs:
- - variable: type
- label: Type
- description: |
- ixVolume: Is dataset created automatically by the system.</br>
- Host Path: Is a path that already exists on the system.
- schema:
- type: string
- required: true
- immutable: true
- default: ixVolume
- enum:
- - value: hostPath
- description: Host Path (Path that already exists on the system)
- - value: ixVolume
- description: ixVolume (Dataset created automatically by the system)
- - variable: ixVolumeConfig
- label: ixVolume Configuration
- description: The configuration for the ixVolume dataset.
- schema:
- type: dict
- # Nothing to show for the user
- hidden: true
- show_if: [["type", "=", "ixVolume"]]
- $ref:
- - "normalize/ixVolume"
- attrs:
- - variable: aclEnable
- label: Enable ACL
- description: Enable ACL for the dataset.
- schema:
- type: boolean
- # Postgres does a CHMOD at startup
- # Which fails with ACL
- hidden: true
- default: false
- - variable: datasetName
- label: Dataset Name
- description: The name of the dataset to use for storage.
- schema:
- type: string
- required: true
- immutable: true
- hidden: true
- default: "pgData"
- - variable: aclEntries
- label: ACL Configuration
- schema:
- type: dict
- show_if: [["aclEnable", "=", true]]
- attrs: []
- - variable: hostPathConfig
- label: Host Path Configuration
- schema:
- type: dict
- show_if: [["type", "=", "hostPath"]]
- attrs:
- - variable: aclEnable
- label: Enable ACL
- description: Enable ACL for the dataset.
- schema:
- type: boolean
- # Postgres does a CHMOD at startup
- # Which fails with ACL
- hidden: true
- default: false
- - variable: acl
- label: ACL Configuration
- schema:
- type: dict
- show_if: [["aclEnable", "=", true]]
- attrs: []
- $ref:
- - "normalize/acl"
- - variable: hostPath
- label: Host Path
- description: The host path to use for storage.
- schema:
- type: hostpath
- show_if: [["aclEnable", "=", false]]
- required: true
- - variable: pgBackup
- label: Vaultwarden Postgres Backup Storage
- description: The path to store Vaultwarden Postgres Backup.
- schema:
- type: dict
- attrs:
- - variable: type
- label: Type
- description: |
- ixVolume: Is dataset created automatically by the system.</br>
- Host Path: Is a path that already exists on the system.
- schema:
- type: string
- required: true
- immutable: true
- default: ixVolume
- enum:
- - value: hostPath
- description: Host Path (Path that already exists on the system)
- - value: ixVolume
- description: ixVolume (Dataset created automatically by the system)
- - variable: ixVolumeConfig
- label: ixVolume Configuration
- description: The configuration for the ixVolume dataset.
- schema:
- type: dict
- # Nothing to show for the user
- hidden: true
- show_if: [["type", "=", "ixVolume"]]
- $ref:
- - "normalize/ixVolume"
- attrs:
- - variable: aclEnable
- label: Enable ACL
- description: Enable ACL for the dataset.
- schema:
- type: boolean
- # Postgres does a CHMOD at startup
- # Which fails with ACL
- hidden: true
- default: false
- - variable: datasetName
- label: Dataset Name
- description: The name of the dataset to use for storage.
- schema:
- type: string
- required: true
- immutable: true
- hidden: true
- default: "pgBackup"
- - variable: aclEntries
- label: ACL Configuration
- schema:
- type: dict
- show_if: [["aclEnable", "=", true]]
- attrs: []
- - variable: hostPathConfig
- label: Host Path Configuration
- schema:
- type: dict
- show_if: [["type", "=", "hostPath"]]
- attrs:
- - variable: aclEnable
- label: Enable ACL
- description: Enable ACL for the dataset.
- schema:
- type: boolean
- # Postgres does a CHMOD at startup
- # Which fails with ACL
- hidden: true
- default: false
- - variable: acl
- label: ACL Configuration
- schema:
- type: dict
- show_if: [["aclEnable", "=", true]]
- attrs: []
- $ref:
- - "normalize/acl"
- - variable: hostPath
- label: Host Path
- description: The host path to use for storage.
- schema:
- type: hostpath
- show_if: [["aclEnable", "=", false]]
- required: true
- - variable: additionalStorages
- label: Additional Storage
- description: Additional storage for Vaultwarden.
- schema:
- type: list
- default: []
- items:
- - variable: storageEntry
- label: Storage Entry
- schema:
- type: dict
- attrs:
- - variable: type
- label: Type
- description: |
- ixVolume: Is dataset created automatically by the system.</br>
- Host Path: Is a path that already exists on the system.</br>
- SMB Share: Is a SMB share that is mounted to a persistent volume claim.
- schema:
- type: string
- required: true
- default: "ixVolume"
- immutable: true
- enum:
- - value: "hostPath"
- description: Host Path (Path that already exists on the system)
- - value: "ixVolume"
- description: ixVolume (Dataset created automatically by the system)
- - value: "smb-pv-pvc"
- description: SMB Share (Mounts a persistent volume claim to a SMB share)
- - variable: readOnly
- label: Read Only
- description: Mount the volume as read only.
- schema:
- type: boolean
- default: false
- - variable: mountPath
- label: Mount Path
- description: The path inside the container to mount the storage.
- schema:
- type: path
- required: true
- - variable: hostPathConfig
- label: Host Path Configuration
- schema:
- type: dict
- show_if: [["type", "=", "hostPath"]]
- attrs:
- - variable: aclEnable
- label: Enable ACL
- description: Enable ACL for the dataset.
- schema:
- type: boolean
- default: false
- - variable: acl
- label: ACL Configuration
- schema:
- type: dict
- show_if: [["aclEnable", "=", true]]
- attrs: []
- $ref:
- - "normalize/acl"
- - variable: hostPath
- label: Host Path
- description: The host path to use for storage.
- schema:
- type: hostpath
- show_if: [["aclEnable", "=", false]]
- required: true
- - variable: ixVolumeConfig
- label: ixVolume Configuration
- description: The configuration for the ixVolume dataset.
- schema:
- type: dict
- show_if: [["type", "=", "ixVolume"]]
- $ref:
- - "normalize/ixVolume"
- attrs:
- - variable: aclEnable
- label: Enable ACL
- description: Enable ACL for the dataset.
- schema:
- type: boolean
- default: false
- - variable: datasetName
- label: Dataset Name
- description: The name of the dataset to use for storage.
- schema:
- type: string
- required: true
- immutable: true
- default: "storage_entry"
- - variable: aclEntries
- label: ACL Configuration
- schema:
- type: dict
- show_if: [["aclEnable", "=", true]]
- attrs: []
- - variable: smbConfig
- label: SMB Share Configuration
- description: The configuration for the SMB Share.
- schema:
- type: dict
- show_if: [["type", "=", "smb-pv-pvc"]]
- attrs:
- - variable: server
- label: Server
- description: The server for the SMB share.
- schema:
- type: string
- required: true
- - variable: share
- label: Share
- description: The share name for the SMB share.
- schema:
- type: string
- required: true
- - variable: domain
- label: Domain (Optional)
- description: The domain for the SMB share.
- schema:
- type: string
- - variable: username
- label: Username
- description: The username for the SMB share.
- schema:
- type: string
- required: true
- - variable: password
- label: Password
- description: The password for the SMB share.
- schema:
- type: string
- required: true
- private: true
- - variable: size
- label: Size (in Gi)
- description: The size of the volume quota.
- schema:
- type: int
- required: true
- min: 1
- default: 1
- - variable: resources
- label: ""
- group: Resources Configuration
- schema:
- type: dict
- attrs:
- - variable: limits
- label: Limits
- schema:
- type: dict
- attrs:
- - variable: cpu
- label: CPU
- description: CPU limit for Vaultwarden.
- schema:
- type: string
- max_length: 6
- valid_chars: '^(0\.[1-9]|[1-9][0-9]*)(\.[0-9]|m?)$'
- valid_chars_error: |
- Valid CPU limit formats are</br>
- - Plain Integer - eg. 1</br>
- - Float - eg. 0.5</br>
- - Milicpu - eg. 500m
- default: "4000m"
- required: true
- - variable: memory
- label: Memory
- description: Memory limit for Vaultwarden.
- schema:
- type: string
- max_length: 12
- valid_chars: '^[1-9][0-9]*([EPTGMK]i?|e[0-9]+)?$'
- valid_chars_error: |
- Valid Memory limit formats are</br>
- - Suffixed with E/P/T/G/M/K - eg. 1G</br>
- - Suffixed with Ei/Pi/Ti/Gi/Mi/Ki - eg. 1Gi</br>
- - Plain Integer in bytes - eg. 1024</br>
- - Exponent - eg. 134e6
- default: "8Gi"
- required: true
|
