Home Explore Help
Register Sign In
lcy
/
truenas
1
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Tree: f0bd135eb4
Branches Tags
truenas
/
test
/
nextcloud
/
1.5.0
/
templates
/
_nginx.tpl

_nginx.tpl 1.9 KB
History Raw

12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061626364656667686970717273747576777879 
  1. {{/*
    2. 

  2. Retrieve true/false if certificate is configured
    3. 

  3. */}}
    4. 

  4. {{- define "nginx.certAvailable" -}}
    5. 

  5. {{- if .Values.certificate -}}
    6. 

  6. {{- $values := (. | mustDeepCopy) -}}
    7. 

  7. {{- $_ := set $values "commonCertOptions" (dict "certKeyName" $values.Values.certificate) -}}
    8. 

  8. {{- template "common.resources.cert_present" $values -}}
    9. 

  9. {{- else -}}
    10. 

  10. {{- false -}}
    11. 

  11. {{- end -}}
    12. 

  12. {{- end -}}
    13. 

  13. 

  14. 

  15. {{/*
    16. 

  16. Retrieve public key of certificate
    17. 

  17. */}}
    18. 

  18. {{- define "nginx.cert.publicKey" -}}
    19. 

  19. {{- $values := (. | mustDeepCopy) -}}
    20. 

  20. {{- $_ := set $values "commonCertOptions" (dict "certKeyName" $values.Values.certificate "publicKey" true) -}}
    21. 

  21. {{ include "common.resources.cert" $values }}
    22. 

  22. {{- end -}}
    23. 

  23. 

  24. 

  25. {{/*
    26. 

  26. Retrieve private key of certificate
    27. 

  27. */}}
    28. 

  28. {{- define "nginx.cert.privateKey" -}}
    29. 

  29. {{- $values := (. | mustDeepCopy) -}}
    30. 

  30. {{- $_ := set $values "commonCertOptions" (dict "certKeyName" $values.Values.certificate) -}}
    31. 

  31. {{ include "common.resources.cert" $values }}
    32. 

  32. {{- end -}}
    33. 

  33. 

  34. 

  35. {{/*
    36. 

  36. Retrieve configured protocol scheme for nextcloud
    37. 

  37. */}}
    38. 

  38. {{- define "nginx.scheme" -}}
    39. 

  39. {{- if eq (include "nginx.certAvailable" .) "true" -}}
    40. 

  40. {{- print "https" -}}
    41. 

  41. {{- else -}}
    42. 

  42. {{- print "http" -}}
    43. 

  43. {{- end -}}
    44. 

  44. {{- end -}}
    45. 

  45. 

  46. 

  47. {{/*
    48. 

  48. Retrieve nginx certificate secret name
    49. 

  49. */}}
    50. 

  50. {{- define "nginx.secretName" -}}
    51. 

  51. {{- print "nginx-secret" -}}
    52. 

  52. {{- end -}}
    53. 

  53. 

  54. 

  55. {{/*
    56. 

  56. Formats volumeMount for tls keys and trusted certs
    57. 

  57. */}}
    58. 

  58. {{- define "nginx.tlsKeysVolumeMount" -}}
    59. 

  59. {{- if eq (include "nginx.certAvailable" .) "true" -}}
    60. 

  60. - name: cert-secret-volume
    61. 

  61.   mountPath: "/etc/nginx-certs"
    62. 

  62. {{- end -}}
    63. 

  63. {{- end -}}
    64. 

  64. 

  65. {{/*
    66. 

  66. Formats volume for tls keys and trusted certs
    67. 

  67. */}}
    68. 

  68. {{- define "nginx.tlsKeysVolume" -}}
    69. 

  69. {{- if eq (include "nginx.certAvailable" .) "true" -}}
    70. 

  70. - name: cert-secret-volume
    71. 

  71.   secret:
    72. 

  72.     secretName: {{ include "nginx.secretName" . }}
    73. 

  73.     items:
    74. 

  74.     - key: certPublicKey
    75. 

  75.       path: public.crt
    76. 

  76.     - key: certPrivateKey
    77. 

  77.       path: private.key
    78. 

  78. {{- end -}}
    79. 

  79. {{- end -}}
    80.