Home Explore Help
Register Sign In
lcy
/
truenas
1
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Tree: 7a52e47591
Branches Tags
truenas
/
library
/
ix-dev
/
community
/
passbolt
/
templates
/
_persistence.tpl

_persistence.tpl 3.3 KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106 
  1. {{- define "passbolt.persistence" -}}
    2. 

  2. persistence:
    3. 

  3.   gpg:
    4. 

  4.     enabled: true
    5. 

  5.     {{- include "ix.v1.common.app.storageOptions" (dict "storage" .Values.passboltStorage.gpg) | nindent 4 }}
    6. 

  6.     targetSelector:
    7. 

  7.       passbolt:
    8. 

  8.         passbolt:
    9. 

  9.           mountPath: /etc/passbolt/gpg
    10. 

  10.         {{- if and (eq .Values.passboltStorage.gpg.type "ixVolume")
    11. 

  11.                   (not (.Values.passboltStorage.gpg.ixVolumeConfig | default dict).aclEnable) }}
    12. 

  12.         01-permissions:
    13. 

  13.           mountPath: /mnt/directories/gpg
    14. 

  14.         {{- end }}
    15. 

  15.   jwt:
    16. 

  16.     enabled: true
    17. 

  17.     {{- include "ix.v1.common.app.storageOptions" (dict "storage" .Values.passboltStorage.jwt) | nindent 4 }}
    18. 

  18.     targetSelector:
    19. 

  19.       passbolt:
    20. 

  20.         passbolt:
    21. 

  21.           mountPath: /etc/passbolt/jwt
    22. 

  22.         {{- if and (eq .Values.passboltStorage.jwt.type "ixVolume")
    23. 

  23.                   (not (.Values.passboltStorage.jwt.ixVolumeConfig | default dict).aclEnable) }}
    24. 

  24.         01-permissions:
    25. 

  25.           mountPath: /mnt/directories/jwt
    26. 

  26.         {{- end }}
    27. 

  27.   tmp:
    28. 

  28.     enabled: true
    29. 

  29.     type: emptyDir
    30. 

  30.     targetSelector:
    31. 

  31.       passbolt:
    32. 

  32.         passbolt:
    33. 

  33.           mountPath: /tmp
    34. 

  34.   varrun:
    35. 

  35.     enabled: true
    36. 

  36.     type: emptyDir
    37. 

  37.     targetSelector:
    38. 

  38.       passbolt:
    39. 

  39.         passbolt:
    40. 

  40.           mountPath: /var/run
    41. 

  41.   {{- range $idx, $storage := .Values.passboltStorage.additionalStorages }}
    42. 

  42.   {{ printf "passbolt-%v" (int $idx) }}:
    43. 

  43.     enabled: true
    44. 

  44.     {{- include "ix.v1.common.app.storageOptions" (dict "storage" $storage) | nindent 4 }}
    45. 

  45.     targetSelector:
    46. 

  46.       passbolt:
    47. 

  47.         passbolt:
    48. 

  48.           mountPath: {{ $storage.mountPath }}
    49. 

  49.         {{- if and (eq $storage.type "ixVolume") (not ($storage.ixVolumeConfig | default dict).aclEnable) }}
    50. 

  50.         01-permissions:
    51. 

  51.           mountPath: /mnt/directories{{ $storage.mountPath }}
    52. 

  52.         {{- end }}
    53. 

  53.   {{- end }}
    54. 

  54. 

  55.   mariadbdata:
    56. 

  56.     enabled: true
    57. 

  57.     {{- include "ix.v1.common.app.storageOptions" (dict "storage" .Values.passboltStorage.mariadbData) | nindent 4 }}
    58. 

  58.     targetSelector:
    59. 

  59.       # MariaDB pod
    60. 

  60.       mariadb:
    61. 

  61.         # MariaDB container
    62. 

  62.         mariadb:
    63. 

  63.           mountPath: /var/lib/mysql
    64. 

  64.         # MariaDB - Permissions container
    65. 

  65.         permissions:
    66. 

  66.           mountPath: /mnt/directories/mariadb_data
    67. 

  67.   mariadbbackup:
    68. 

  68.     enabled: true
    69. 

  69.     {{/* Remove on the next version (eg 1.2.0+) */}}
    70. 

  70.     {{- if eq .Values.passboltStorage.mariadbBackup.type "emptyDir" }}
    71. 

  71.       {{- $_ := set .Values.passboltStorage.mariadbBackup "emptyDirConfig" (dict "medium" "" "size" "") }}
    72. 

  72.     {{- end }}
    73. 

  73.     {{- include "ix.v1.common.app.storageOptions" (dict "storage" .Values.passboltStorage.mariadbBackup) | nindent 4 }}
    74. 

  74.     targetSelector:
    75. 

  75.       # MariaDB backup pod
    76. 

  76.       mariadbbackup:
    77. 

  77.         # MariaDB backup container
    78. 

  78.         mariadbbackup:
    79. 

  79.           mountPath: /mariadb_backup
    80. 

  80.         # MariaDB - Permissions container
    81. 

  81.         permissions:
    82. 

  82.           mountPath: /mnt/directories/mariadb_backup
    83. 

  83. 

  84.   {{- if .Values.passboltNetwork.certificateID }}
    85. 

  85.   cert:
    86. 

  86.     enabled: true
    87. 

  87.     type: secret
    88. 

  88.     objectName: passbolt-cert
    89. 

  89.     defaultMode: "0600"
    90. 

  90.     items:
    91. 

  91.       - key: tls.key
    92. 

  92.         path: certificate.key
    93. 

  93.       - key: tls.crt
    94. 

  94.         path: certificate.crt
    95. 

  95.     targetSelector:
    96. 

  96.       passbolt:
    97. 

  97.         passbolt:
    98. 

  98.           mountPath: /etc/passbolt/certs
    99. 

  99.           readOnly: true
    100. 

  100. 

  101. scaleCertificate:
    102. 

  102.   passbolt-cert:
    103. 

  103.     enabled: true
    104. 

  104.     id: {{ .Values.passboltNetwork.certificateID }}
    105. 

  105.     {{- end -}}
    106. 

  106. {{- end -}}
    107.