bitnami/mongodb - Add extra dns names for auto tls. (#7627)

* added extraDnsNames option to .values.tls * correct value name * doc * add README doc * version * doc in values * update versioning from Co-authored-by: Ibone González Mauraza <gibone@vmware.com> * generating readme table Co-authored-by: Ibone González Mauraza <gibone@vmware.com> * Update bitnami/mongodb/templates/standalone/dep-sts.yaml Co-authored-by: Ibone González Mauraza <gibone@vmware.com> * indent and values.yaml doc * Update bitnami/mongodb/values.yaml Co-authored-by: Ibone González Mauraza <gibone@vmware.com> Co-authored-by: Ibone González Mauraza <gibone@vmware.com>
2026-03-09 07:27:18 +08:00 · 2021-10-05 10:18:50 -04:00
parent b2b041c23d
commit b22f271183
4 changed files with 14 additions and 2 deletions
--- a/bitnami/mongodb/Chart.yaml
+++ b/bitnami/mongodb/Chart.yaml
@@ -26,4 +26,4 @@ name: mongodb
 sources:
  - https://github.com/bitnami/bitnami-docker-mongodb
  - https://mongodb.org
-version: 10.26.4
+version: 10.27.0
--- a/bitnami/mongodb/README.md
+++ b/bitnami/mongodb/README.md
@@ -109,6 +109,7 @@ Refer to the [chart documentation for more information on each of these architec
 | `tls.existingSecret`     | Existing secret with TLS certificates (keys: `mongodb-ca-cert`, `mongodb-ca-key`, `client-pem`)                               | `""`                   |
 | `tls.caCert`             | Custom CA certificated (base64 encoded)                                                                                       | `""`                   |
 | `tls.caKey`              | CA certificate private key (base64 encoded)                                                                                   | `""`                   |
+| `tls.extraDnsNames`      | Add a of List of extra dns names                                                                                              | `""`                   |
 | `tls.image.registry`     | Init container TLS certs setup image registry                                                                                 | `docker.io`            |
 | `tls.image.repository`   | Init container TLS certs setup image repository                                                                               | `bitnami/nginx`        |
 | `tls.image.tag`          | Init container TLS certs setup image tag (immutable tags are recommended)                                                     | `1.21.3-debian-10-r11` |
--- a/bitnami/mongodb/templates/standalone/dep-sts.yaml
+++ b/bitnami/mongodb/templates/standalone/dep-sts.yaml
@@ -158,6 +158,11 @@ spec:
              DNS.3 = $my_hostname.$svc.$MY_POD_NAMESPACE.svc.cluster.local
              DNS.4 = localhost
              DNS.5 = 127.0.0.1
+              {{- if .Values.tls.extraDnsNames }}
+              {{- range $key, $dnsName := .Values.tls.extraDnsNames }}
+              {{ $key }} = {{ $dnsName }}
+              {{- end }}
+              {{- end }}
              EOL

              export RANDFILE=/certs/.rnd && openssl genrsa -out /certs/mongo.key 2048
@@ -223,7 +228,7 @@ spec:
                  key: mongodb-metrics-password
            {{- end }}
            - name: MONGODB_ROOT_USER
-              value: {{ .Values.auth.rootUser | quote }}            
+              value: {{ .Values.auth.rootUser | quote }}
            - name: MONGODB_ROOT_PASSWORD
              valueFrom:
                secretKeyRef:
--- a/bitnami/mongodb/values.yaml
+++ b/bitnami/mongodb/values.yaml
@@ -179,6 +179,12 @@ tls:
  ## @param tls.image.tag Init container TLS certs setup image tag (immutable tags are recommended)
  ## @param tls.image.pullPolicy Init container TLS certs setup image pull policy
  ##
+  extraDnsNames: 
+  ## @param tls.extraDnsNames Add extra dns names to the CA, can solve x509 auth issue for pod clients
+  ##
+  ## example:
+  ##     "DNS.6": "$my_host"
+  ##    "DNS.7": "$test"
  image:
    registry: docker.io
    repository: bitnami/nginx