diff --git a/bitnami/postgresql/Chart.yaml b/bitnami/postgresql/Chart.yaml index 1836548406..349c2c508a 100644 --- a/bitnami/postgresql/Chart.yaml +++ b/bitnami/postgresql/Chart.yaml @@ -26,4 +26,4 @@ name: postgresql sources: - https://github.com/bitnami/bitnami-docker-postgresql - https://www.postgresql.org/ -version: 10.9.6 +version: 10.10.0 \ No newline at end of file diff --git a/bitnami/postgresql/README.md b/bitnami/postgresql/README.md index d933e61d20..cc45527515 100644 --- a/bitnami/postgresql/README.md +++ b/bitnami/postgresql/README.md @@ -180,6 +180,7 @@ $ kubectl delete pvc -l release=my-release | `service.nodePort` | Specify the nodePort value for the LoadBalancer and NodePort service types | `""` | | `service.annotations` | Annotations for PostgreSQL service | `{}` | | `service.loadBalancerIP` | Load balancer IP if service type is `LoadBalancer` | `""` | +| `service.externalTrafficPolicy` | Enable client source IP preservation | `Cluster` | | `service.loadBalancerSourceRanges` | Addresses that are allowed when service is LoadBalancer | `[]` | | `shmVolume.enabled` | Enable emptyDir volume for /dev/shm for primary and read replica(s) Pod(s) | `true` | | `shmVolume.chmod.enabled` | Set to `true` to `chmod 777 /dev/shm` on a initContainer (ignored if `volumePermissions.enabled` is `false`) | `true` | diff --git a/bitnami/postgresql/templates/svc-read.yaml b/bitnami/postgresql/templates/svc-read.yaml index 41698589a1..105445031a 100644 --- a/bitnami/postgresql/templates/svc-read.yaml +++ b/bitnami/postgresql/templates/svc-read.yaml @@ -23,6 +23,7 @@ spec: type: {{ $serviceType }} {{- if and $serviceLoadBalancerIP (eq $serviceType "LoadBalancer") }} loadBalancerIP: {{ $serviceLoadBalancerIP }} + externalTrafficPolicy: {{ .Values.service.externalTrafficPolicy | quote }} {{- end }} {{- if and (eq $serviceType "LoadBalancer") $serviceLoadBalancerSourceRanges }} loadBalancerSourceRanges: {{- include "common.tplvalues.render" (dict "value" $serviceLoadBalancerSourceRanges "context" $) | nindent 4 }} diff --git a/bitnami/postgresql/templates/svc.yaml b/bitnami/postgresql/templates/svc.yaml index a29431b6a4..1cba47498a 100644 --- a/bitnami/postgresql/templates/svc.yaml +++ b/bitnami/postgresql/templates/svc.yaml @@ -22,6 +22,7 @@ spec: type: {{ $serviceType }} {{- if and $serviceLoadBalancerIP (eq $serviceType "LoadBalancer") }} loadBalancerIP: {{ $serviceLoadBalancerIP }} + externalTrafficPolicy: {{ .Values.service.externalTrafficPolicy | quote }} {{- end }} {{- if and (eq $serviceType "LoadBalancer") $serviceLoadBalancerSourceRanges }} loadBalancerSourceRanges: {{- include "common.tplvalues.render" (dict "value" $serviceLoadBalancerSourceRanges "context" $) | nindent 4 }} diff --git a/bitnami/postgresql/values.yaml b/bitnami/postgresql/values.yaml index 7ef356dd61..56e211290e 100644 --- a/bitnami/postgresql/values.yaml +++ b/bitnami/postgresql/values.yaml @@ -434,6 +434,10 @@ service: ## ref: https://kubernetes.io/docs/concepts/services-networking/service/#internal-load-balancer ## loadBalancerIP: "" + ## @param service.externalTrafficPolicy Enable client source IP preservation + ## ref http://kubernetes.io/docs/tasks/access-application-cluster/create-external-load-balancer/#preserving-the-client-source-ip + ## + externalTrafficPolicy: Cluster ## @param service.loadBalancerSourceRanges Addresses that are allowed when service is LoadBalancer ## https://kubernetes.io/docs/tasks/access-application-cluster/configure-cloud-provider-firewall/#restrict-access-for-loadbalancer-service ##