Bitnami/charts
2
0
Fork 0
mirror of https://github.com/bitnami/charts.git synced 2026-02-28 07:28:01 +08:00
Code Issues Packages Projects Releases Wiki Activity
Files
ffe032eaeb07cd1d6194ce384e57d4ea321dfe91
charts/bitnami/mastodon/values.yaml
Fran Mulero 0b2205adbf [bitnami/mastodon] Enable PodDisruptionBudgets (#26508) 
* [bitnami/mastodon] Enable PodDisruptionBudgets

Signed-off-by: Fran Mulero <fmulero@vmware.com>

* Update CHANGELOG.md

Signed-off-by: Bitnami Containers <bitnami-bot@vmware.com>

---------

Signed-off-by: Fran Mulero <fmulero@vmware.com>
Signed-off-by: Bitnami Containers <bitnami-bot@vmware.com>
Co-authored-by: Bitnami Containers <bitnami-bot@vmware.com>
2024-05-30 09:41:06 +02:00

1892 lines
81 KiB
YAML
Raw Blame History

# Copyright Broadcom, Inc. All Rights Reserved.
# SPDX-License-Identifier: APACHE-2.0
## @section Global parameters
## Global Docker image parameters
## Please, note that this will override the image parameters, including dependencies, configured to use the global value
## Current available global Docker image parameters: imageRegistry, imagePullSecrets and storageClass
##
## @param global.imageRegistry Global Docker image registry
## @param global.imagePullSecrets Global Docker registry secret names as an array
## @param global.storageClass Global StorageClass for Persistent Volume(s)
##
global:
imageRegistry: ""
## E.g.
## imagePullSecrets:
## - myRegistryKeySecretName
##
imagePullSecrets: []
storageClass: ""
## Compatibility adaptations for Kubernetes platforms
##
compatibility:
## Compatibility adaptations for Openshift
##
openshift:
## @param global.compatibility.openshift.adaptSecurityContext Adapt the securityContext sections of the deployment to make them compatible with Openshift restricted-v2 SCC: remove runAsUser, runAsGroup and fsGroup and let the platform use their allowed default IDs. Possible values: auto (apply if the detected running cluster is Openshift), force (perform the adaptation always), disabled (do not perform adaptation)
##
adaptSecurityContext: auto
## @section Common parameters
##
## @param kubeVersion Override Kubernetes version
##
kubeVersion: ""
## @param nameOverride String to partially override common.names.name
##
nameOverride: ""
## @param fullnameOverride String to fully override common.names.fullname
##
fullnameOverride: ""
## @param namespaceOverride String to fully override common.names.namespace
##
namespaceOverride: ""
## @param commonLabels Labels to add to all deployed objects
##
commonLabels: {}
## @param commonAnnotations Annotations to add to all deployed objects
##
commonAnnotations: {}
## @param clusterDomain Kubernetes cluster domain name
##
clusterDomain: cluster.local
## @param extraDeploy Array of extra objects to deploy with the release
##
extraDeploy: []
## Enable diagnostic mode in the deployment
##
diagnosticMode:
## @param diagnosticMode.enabled Enable diagnostic mode (all probes will be disabled and the command will be overridden)
##
enabled: false
## @param diagnosticMode.command Command to override all containers in the deployment
##
command:
- sleep
## @param diagnosticMode.args Args to override all containers in the deployment
##
args:
- infinity
## Bitnami Mastodon image
## ref: https://hub.docker.com/r/bitnami/mastodon/tags/
## @param image.registry [default: REGISTRY_NAME] Mastodon image registry
## @param image.repository [default: REPOSITORY_NAME/mastodon] Mastodon image repository
## @skip image.tag Mastodon image tag (immutable tags are recommended)
## @param image.digest Mastodon image digest in the way sha256:aa.... Please note this parameter, if set, will override the tag image tag (immutable tags are recommended)
## @param image.pullPolicy Mastodon image pull policy
## @param image.pullSecrets Mastodon image pull secrets
## @param image.debug Enable Mastodon image debug mode
##
image:
registry: docker.io
repository: bitnami/mastodon
tag: 4.2.8-debian-12-r10
digest: ""
## Specify a imagePullPolicy
## Defaults to 'Always' if image tag is 'latest', else set to 'IfNotPresent'
## ref: http://kubernetes.io/docs/concepts/containers/images/#pre-pulled-images
##
pullPolicy: IfNotPresent
## Optionally specify an array of imagePullSecrets.
## Secrets must be manually created in the namespace.
## ref: https://kubernetes.io/docs/tasks/configure-pod-container/pull-image-private-registry/
## e.g:
## pullSecrets:
## - myRegistryKeySecretName
##
pullSecrets: []
## Enable debug mode
##
debug: false
## @section Mastodon common parameters
##
## @param environment Mastodon Rails and Node environment. Should be one of 'production',
## 'development', or 'test'. Sets both the RAILS_ENV and NODE_ENV environment variables.
##
environment: production
## @param adminUser Mastodon admin username
##
adminUser: ""
## @param adminEmail Mastodon admin email
##
adminEmail: ""
## @param adminPassword Mastodon admin password
##
adminPassword: ""
## @param otpSecret Mastodon one time password secret. Generate with rake secret. Changing it will break two-factor authentication.
##
otpSecret: ""
## @param secretKeyBase Mastodon secret key base. Generate with rake secret. Changing it will break all active browser sessions.
##
secretKeyBase: ""
## @param vapidPrivateKey Mastodon vapid private key. Generate with rake mastodon:webpush:generate_vapid_key. Changing it will break push notifications.
##
vapidPrivateKey: ""
## @param vapidPublicKey Mastodon vapid public key. Generate with rake mastodon:webpush:generate_vapid_key. Changing it will break push notifications.
##
vapidPublicKey: ""
## @param extraConfig Extra configuration for Mastodon in the form of environment variables
##
extraConfig: {}
## @param extraSecretConfig Extra secret configuration for Mastodon in the form of environment variables
##
extraSecretConfig: {}
## @param existingConfigmap The name of an existing ConfigMap with your default configuration for Mastodon
##
existingConfigmap: ""
## @param existingSecret The name of an existing Secret with your default configuration for Mastodon
##
existingSecret: ""
## @param extraConfigExistingConfigmap The name of an existing ConfigMap with your extra configuration for Mastodon
##
extraConfigExistingConfigmap: ""
## @param extraConfigExistingSecret The name of an existing Secret with your extra configuration for Mastodon
##
extraConfigExistingSecret: ""
## @param enableSearches Enable the search engine (uses Elasticsearch under the hood)
##
enableSearches: true
## @param enableS3 Enable the S3 storage engine
##
enableS3: true
## @param forceHttpsS3Protocol Force Mastodon's S3_PROTOCOL to be https (Useful when TLS is terminated using cert-manager/Ingress)
##
forceHttpsS3Protocol: false
## @param useSecureWebSocket Set Mastodon's STREAMING_API_BASE_URL to use secure websocket (wss:// instead of ws://)
useSecureWebSocket: false
## @param local_https Set this instance to advertise itself to the fediverse using HTTPS rather than HTTP URLs. This should almost always be true.
##
local_https: true
## @param localDomain The domain name used by accounts on this instance. Unless you're using
## webDomain, this value should be set to the URL at which your instance is hosted.
##
localDomain: ""
## @param webDomain Optional alternate domain used when you want to host Mastodon at a
## different URL than localDomain. This value should only be set if you need it, and
## cannot be changed later. Consult the Mastodon documentation before using webDomain:
## https://docs.joinmastodon.org/admin/config/#federation
##
webDomain: ""
## @param defaultLocale Set the default locale for this instance
##
defaultLocale: en
## @param s3AliasHost S3 alias host for Mastodon (will use 'http://webDomain/bucket' if not set)
##
s3AliasHost: ""
smtp:
## @param smtp.server SMTP server
##
server: ""
## @param smtp.port SMTP port
##
port: 587
## @param smtp.from_address From address for sent emails
##
from_address: ""
## @param smtp.domain SMTP domain
##
domain: ""
## @param smtp.reply_to Reply-To value for sent emails
##
reply_to: ""
## @param smtp.delivery_method SMTP delivery method
##
delivery_method: smtp
## @param smtp.ca_file SMTP CA file location
##
ca_file: /etc/ssl/certs/ca-certificates.crt
## @param smtp.openssl_verify_mode OpenSSL verify mode
##
openssl_verify_mode: none
## @param smtp.enable_starttls_auto Automatically enable StartTLS
##
enable_starttls_auto: true
## @param smtp.tls SMTP TLS
##
tls: false
## @param smtp.auth_method SMTP auth method (set to "none" to disable SMTP auth)
##
auth_method: plain
## @param smtp.login SMTP auth username
##
login: ""
## @param smtp.password SMTP auth password
##
password: ""
## @param smtp.existingSecret Name of an existing secret resource containing the SMTP
## login and password credentials
existingSecret: ""
## @param smtp.existingSecretLoginKey Name of the key for the SMTP login credential
## stored in the existingSecret resource
existingSecretLoginKey: ""
## @param smtp.existingSecretPasswordKey Name of the key for the SMTP password credential
## stored in the existingSecret resource
existingSecretPasswordKey: ""
## @param smtp.existingSecretServerKey Name of the key for the SMTP hostname
## stored in the existingSecret resource
existingSecretServerKey: ""
## @section Mastodon Web Parameters
##
web:
## @param web.replicaCount Number of Mastodon web replicas to deploy
##
replicaCount: 1
## @param web.containerPorts.http Mastodon web HTTP container port
##
containerPorts:
http: 3000
## Configure extra options for Mastodon web containers' liveness and readiness probes
## ref: https://kubernetes.io/docs/tasks/configure-pod-container/configure-liveness-readiness-probes/#configure-probes
## @param web.livenessProbe.enabled Enable livenessProbe on Mastodon web containers
## @param web.livenessProbe.initialDelaySeconds Initial delay seconds for livenessProbe
## @param web.livenessProbe.periodSeconds Period seconds for livenessProbe
## @param web.livenessProbe.timeoutSeconds Timeout seconds for livenessProbe
## @param web.livenessProbe.failureThreshold Failure threshold for livenessProbe
## @param web.livenessProbe.successThreshold Success threshold for livenessProbe
##
livenessProbe:
enabled: true
initialDelaySeconds: 10
periodSeconds: 10
timeoutSeconds: 5
failureThreshold: 6
successThreshold: 1
## @param web.readinessProbe.enabled Enable readinessProbe on Mastodon web containers
## @param web.readinessProbe.initialDelaySeconds Initial delay seconds for readinessProbe
## @param web.readinessProbe.periodSeconds Period seconds for readinessProbe
## @param web.readinessProbe.timeoutSeconds Timeout seconds for readinessProbe
## @param web.readinessProbe.failureThreshold Failure threshold for readinessProbe
## @param web.readinessProbe.successThreshold Success threshold for readinessProbe
##
readinessProbe:
enabled: true
initialDelaySeconds: 10
periodSeconds: 10
timeoutSeconds: 5
failureThreshold: 6
successThreshold: 1
## @param web.startupProbe.enabled Enable startupProbe on Mastodon web containers
## @param web.startupProbe.initialDelaySeconds Initial delay seconds for startupProbe
## @param web.startupProbe.periodSeconds Period seconds for startupProbe
## @param web.startupProbe.timeoutSeconds Timeout seconds for startupProbe
## @param web.startupProbe.failureThreshold Failure threshold for startupProbe
## @param web.startupProbe.successThreshold Success threshold for startupProbe
##
startupProbe:
enabled: false
initialDelaySeconds: 10
periodSeconds: 10
timeoutSeconds: 5
failureThreshold: 6
successThreshold: 1
## @param web.customLivenessProbe Custom livenessProbe that overrides the default one
##
customLivenessProbe: {}
## @param web.customReadinessProbe Custom readinessProbe that overrides the default one
##
customReadinessProbe: {}
## @param web.customStartupProbe Custom startupProbe that overrides the default one
##
customStartupProbe: {}
## Mastodon web resource requests and limits
## ref: http://kubernetes.io/docs/concepts/configuration/manage-compute-resources-container/
## @param web.resourcesPreset Set container resources according to one common preset (allowed values: none, nano, micro, small, medium, large, xlarge, 2xlarge). This is ignored if web.resources is set (web.resources is recommended for production).
## More information: https://github.com/bitnami/charts/blob/main/bitnami/common/templates/_resources.tpl#L15
##
resourcesPreset: "small"
## @param web.resources Set container requests and limits for different resources like CPU or memory (essential for production workloads)
## Example:
## resources:
## requests:
## cpu: 2
## memory: 512Mi
## limits:
## cpu: 3
## memory: 1024Mi
##
resources: {}
## Configure Pods Security Context
## ref: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/#set-the-security-context-for-a-pod
## @param web.podSecurityContext.enabled Enabled Mastodon web pods' Security Context
## @param web.podSecurityContext.fsGroupChangePolicy Set filesystem group change policy
## @param web.podSecurityContext.sysctls Set kernel settings using the sysctl interface
## @param web.podSecurityContext.supplementalGroups Set filesystem extra groups
## @param web.podSecurityContext.fsGroup Set Mastodon web pod's Security Context fsGroup
##
podSecurityContext:
enabled: true
fsGroupChangePolicy: Always
sysctls: []
supplementalGroups: []
fsGroup: 1001
## Configure Container Security Context
## ref: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/#set-the-security-context-for-a-container
## @param web.containerSecurityContext.enabled Enabled containers' Security Context
## @param web.containerSecurityContext.seLinuxOptions [object,nullable] Set SELinux options in container
## @param web.containerSecurityContext.runAsUser Set containers' Security Context runAsUser
## @param web.containerSecurityContext.runAsGroup Set containers' Security Context runAsGroup
## @param web.containerSecurityContext.runAsNonRoot Set container's Security Context runAsNonRoot
## @param web.containerSecurityContext.privileged Set container's Security Context privileged
## @param web.containerSecurityContext.readOnlyRootFilesystem Set container's Security Context readOnlyRootFilesystem
## @param web.containerSecurityContext.allowPrivilegeEscalation Set container's Security Context allowPrivilegeEscalation
## @param web.containerSecurityContext.capabilities.drop List of capabilities to be dropped
## @param web.containerSecurityContext.seccompProfile.type Set container's Security Context seccomp profile
##
containerSecurityContext:
enabled: true
seLinuxOptions: null
runAsUser: 1001
runAsGroup: 1001
runAsNonRoot: true
privileged: false
readOnlyRootFilesystem: true
allowPrivilegeEscalation: false
capabilities:
drop: ["ALL"]
seccompProfile:
type: "RuntimeDefault"
## @param web.command Override default container command (useful when using custom images)
##
command: []
## @param web.args Override default container args (useful when using custom images)
##
args: []
## @param web.automountServiceAccountToken Mount Service Account token in pod
##
automountServiceAccountToken: false
## @param web.hostAliases Mastodon web pods host aliases
## https://kubernetes.io/docs/concepts/services-networking/add-entries-to-pod-etc-hosts-with-host-aliases/
##
hostAliases: []
## @param web.podLabels Extra labels for Mastodon web pods
## ref: https://kubernetes.io/docs/concepts/overview/working-with-objects/labels/
##
podLabels: {}
## @param web.podAnnotations Annotations for Mastodon web pods
## ref: https://kubernetes.io/docs/concepts/overview/working-with-objects/annotations/
##
podAnnotations: {}
## @param web.podAffinityPreset Pod affinity preset. Ignored if `web.affinity` is set. Allowed values: `soft` or `hard`
## ref: https://kubernetes.io/docs/concepts/scheduling-eviction/assign-pod-node/#inter-pod-affinity-and-anti-affinity
##
podAffinityPreset: ""
## @param web.podAntiAffinityPreset Pod anti-affinity preset. Ignored if `web.affinity` is set. Allowed values: `soft` or `hard`
## ref: https://kubernetes.io/docs/concepts/scheduling-eviction/assign-pod-node/#inter-pod-affinity-and-anti-affinity
##
podAntiAffinityPreset: soft
## Node web.affinity preset
## ref: https://kubernetes.io/docs/concepts/scheduling-eviction/assign-pod-node/#node-affinity
##
nodeAffinityPreset:
## @param web.nodeAffinityPreset.type Node affinity preset type. Ignored if `web.affinity` is set. Allowed values: `soft` or `hard`
##
type: ""
## @param web.nodeAffinityPreset.key Node label key to match. Ignored if `web.affinity` is set
##
key: ""
## @param web.nodeAffinityPreset.values Node label values to match. Ignored if `web.affinity` is set
## E.g.
## values:
## - e2e-az1
## - e2e-az2
##
values: []
## @param web.affinity Affinity for Mastodon web pods assignment
## ref: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/#affinity-and-anti-affinity
## NOTE: `web.podAffinityPreset`, `web.podAntiAffinityPreset`, and `web.nodeAffinityPreset` will be ignored when it's set
##
affinity: {}
## @param web.nodeSelector Node labels for Mastodon web pods assignment
## ref: https://kubernetes.io/docs/concepts/scheduling-eviction/assign-pod-node/
##
nodeSelector: {}
## @param web.tolerations Tolerations for Mastodon web pods assignment
## ref: https://kubernetes.io/docs/concepts/configuration/taint-and-toleration/
##
tolerations: []
## @param web.updateStrategy.type Mastodon web statefulset strategy type
## ref: https://kubernetes.io/docs/concepts/workloads/controllers/statefulset/#update-strategies
##
updateStrategy:
## StrategyType
## Can be set to RollingUpdate or OnDelete
##
type: RollingUpdate
## @param web.priorityClassName Mastodon web pods' priorityClassName
##
priorityClassName: ""
## @param web.topologySpreadConstraints Topology Spread Constraints for pod assignment spread across your cluster among failure-domains. Evaluated as a template
## Ref: https://kubernetes.io/docs/concepts/workloads/pods/pod-topology-spread-constraints/#spread-constraints-for-pods
##
topologySpreadConstraints: []
## @param web.schedulerName Name of the k8s scheduler (other than default) for Mastodon web pods
## ref: https://kubernetes.io/docs/tasks/administer-cluster/configure-multiple-schedulers/
##
schedulerName: ""
## @param web.terminationGracePeriodSeconds Seconds Redmine pod needs to terminate gracefully
## ref: https://kubernetes.io/docs/concepts/workloads/pods/pod/#termination-of-pods
##
terminationGracePeriodSeconds: ""
## @param web.lifecycleHooks for the Mastodon web container(s) to automate configuration before or after startup
##
lifecycleHooks: {}
## @param web.extraEnvVars Array with extra environment variables to add to Mastodon web nodes
## e.g:
## extraEnvVars:
## - name: FOO
## value: "bar"
##
extraEnvVars: []
## @param web.extraEnvVarsCM Name of existing ConfigMap containing extra env vars for Mastodon web nodes
##
extraEnvVarsCM: ""
## @param web.extraEnvVarsSecret Name of existing Secret containing extra env vars for Mastodon web nodes
##
extraEnvVarsSecret: ""
## @param web.extraVolumes Optionally specify extra list of additional volumes for the Mastodon web pod(s)
##
extraVolumes: []
## @param web.extraVolumeMounts Optionally specify extra list of additional volumeMounts for the Mastodon web container(s)
##
extraVolumeMounts: []
## @param web.sidecars Add additional sidecar containers to the Mastodon web pod(s)
## e.g:
## sidecars:
## - name: your-image-name
## image: your-image
## imagePullPolicy: Always
## ports:
## - name: portname
## containerPort: 1234
##
sidecars: []
## @param web.initContainers Add additional init containers to the Mastodon web pod(s)
## ref: https://kubernetes.io/docs/concepts/workloads/pods/init-containers/
## e.g:
## initContainers:
## - name: your-image-name
## image: your-image
## imagePullPolicy: Always
## command: ['sh', '-c', 'echo "hello world"']
##
initContainers: []
## Pod Disruption Budget configuration
## ref: https://kubernetes.io/docs/tasks/run-application/configure-pdb
## @param web.pdb.create Enable/disable a Pod Disruption Budget creation
## @param web.pdb.minAvailable Minimum number/percentage of pods that should remain scheduled
## @param web.pdb.maxUnavailable Maximum number/percentage of pods that may be made unavailable. Defaults to `1` if both `web.pdb.minAvailable` and `web.pdb.maxUnavailable` are empty.
##
pdb:
create: true
minAvailable: ""
maxUnavailable: ""
## @section Mastodon Web Traffic Exposure Parameters
##
service:
## @param web.service.type Mastodon web service type
##
type: ClusterIP
## @param web.service.ports.http Mastodon web service HTTP port
##
ports:
http: 80
## Node ports to expose
## @param web.service.nodePorts.http Node port for HTTP
## NOTE: choose port between <30000-32767>
##
nodePorts:
http: ""
## @param web.service.clusterIP Mastodon web service Cluster IP
## e.g.:
## clusterIP: None
##
clusterIP: ""
## @param web.service.loadBalancerIP Mastodon web service Load Balancer IP
## ref: https://kubernetes.io/docs/concepts/services-networking/service/#type-loadbalancer
##
loadBalancerIP: ""
## @param web.service.loadBalancerSourceRanges Mastodon web service Load Balancer sources
## ref: https://kubernetes.io/docs/tasks/access-application-cluster/configure-cloud-provider-firewall/#restrict-access-for-loadbalancer-service
## e.g:
## loadBalancerSourceRanges:
## - 10.10.10.0/24
##
loadBalancerSourceRanges: []
## @param web.service.externalTrafficPolicy Mastodon web service external traffic policy
## ref http://kubernetes.io/docs/tasks/access-application-cluster/create-external-load-balancer/#preserving-the-web-source-ip
##
externalTrafficPolicy: Cluster
## @param web.service.annotations Additional custom annotations for Mastodon web service
##
annotations: {}
## @param web.service.extraPorts Extra ports to expose in Mastodon web service (normally used with the `sidecars` value)
##
extraPorts: []
## @param web.service.sessionAffinity Control where web requests go, to the same pod or round-robin
## Values: WebIP or None
## ref: https://kubernetes.io/docs/concepts/services-networking/service/
##
sessionAffinity: None
## @param web.service.sessionAffinityConfig Additional settings for the sessionAffinity
## sessionAffinityConfig:
## webIP:
## timeoutSeconds: 300
##
sessionAffinityConfig: {}
## Network Policy configuration
## ref: https://kubernetes.io/docs/concepts/services-networking/network-policies/
##
networkPolicy:
## @param web.networkPolicy.enabled Enable creation of NetworkPolicy resources
##
enabled: true
## @param web.networkPolicy.allowExternal The Policy model to apply
## When set to false, only pods with the correct client label will have network access to the ports Mastodon is
## listening on. When true, Mastodon will accept connections from any source (with the correct destination port).
##
allowExternal: true
## @param web.networkPolicy.allowExternalEgress Allow the pod to access any range of port and all destinations.
##
allowExternalEgress: true
## @param web.networkPolicy.extraIngress [array] Add extra ingress rules to the NetworkPolicy
## e.g:
## extraIngress:
## - ports:
## - port: 1234
## from:
## - podSelector:
## - matchLabels:
## - role: frontend
## - podSelector:
## - matchExpressions:
## - key: role
## operator: In
## values:
## - frontend
##
extraIngress: []
## @param web.networkPolicy.extraEgress [array] Add extra ingress rules to the NetworkPolicy
## e.g:
## extraEgress:
## - ports:
## - port: 1234
## to:
## - podSelector:
## - matchLabels:
## - role: frontend
## - podSelector:
## - matchExpressions:
## - key: role
## operator: In
## values:
## - frontend
##
extraEgress: []
## @param web.networkPolicy.ingressNSMatchLabels [object] Labels to match to allow traffic from other namespaces
## @param web.networkPolicy.ingressNSPodMatchLabels [object] Pod labels to match to allow traffic from other namespaces
##
ingressNSMatchLabels: {}
ingressNSPodMatchLabels: {}
## @section Mastodon Sidekiq Parameters
##
##
sidekiq:
## @param sidekiq.replicaCount Number of Mastodon sidekiq replicas to deploy
##
replicaCount: 1
## Configure extra options for Mastodon sidekiq containers' liveness and readiness probes
## ref: https://kubernetes.io/docs/tasks/configure-pod-container/configure-liveness-readiness-probes/#configure-probes
## @param sidekiq.livenessProbe.enabled Enable livenessProbe on Mastodon sidekiq containers
## @param sidekiq.livenessProbe.initialDelaySeconds Initial delay seconds for livenessProbe
## @param sidekiq.livenessProbe.periodSeconds Period seconds for livenessProbe
## @param sidekiq.livenessProbe.timeoutSeconds Timeout seconds for livenessProbe
## @param sidekiq.livenessProbe.failureThreshold Failure threshold for livenessProbe
## @param sidekiq.livenessProbe.successThreshold Success threshold for livenessProbe
##
livenessProbe:
enabled: true
initialDelaySeconds: 10
periodSeconds: 10
timeoutSeconds: 5
failureThreshold: 6
successThreshold: 1
## @param sidekiq.readinessProbe.enabled Enable readinessProbe on Mastodon sidekiq containers
## @param sidekiq.readinessProbe.initialDelaySeconds Initial delay seconds for readinessProbe
## @param sidekiq.readinessProbe.periodSeconds Period seconds for readinessProbe
## @param sidekiq.readinessProbe.timeoutSeconds Timeout seconds for readinessProbe
## @param sidekiq.readinessProbe.failureThreshold Failure threshold for readinessProbe
## @param sidekiq.readinessProbe.successThreshold Success threshold for readinessProbe
##
readinessProbe:
enabled: true
initialDelaySeconds: 10
periodSeconds: 10
timeoutSeconds: 5
failureThreshold: 6
successThreshold: 1
## @param sidekiq.startupProbe.enabled Enable startupProbe on Mastodon sidekiq containers
## @param sidekiq.startupProbe.initialDelaySeconds Initial delay seconds for startupProbe
## @param sidekiq.startupProbe.periodSeconds Period seconds for startupProbe
## @param sidekiq.startupProbe.timeoutSeconds Timeout seconds for startupProbe
## @param sidekiq.startupProbe.failureThreshold Failure threshold for startupProbe
## @param sidekiq.startupProbe.successThreshold Success threshold for startupProbe
##
startupProbe:
enabled: false
initialDelaySeconds: 10
periodSeconds: 10
timeoutSeconds: 5
failureThreshold: 6
successThreshold: 1
## @param sidekiq.customLivenessProbe Custom livenessProbe that overrides the default one
##
customLivenessProbe: {}
## @param sidekiq.customReadinessProbe Custom readinessProbe that overrides the default one
##
customReadinessProbe: {}
## @param sidekiq.customStartupProbe Custom startupProbe that overrides the default one
##
customStartupProbe: {}
## Mastodon sidekiq resource requests and limits
## ref: http://kubernetes.io/docs/concepts/configuration/manage-compute-resources-container/
## @param sidekiq.resourcesPreset Set container resources according to one common preset (allowed values: none, nano, micro, small, medium, large, xlarge, 2xlarge). This is ignored if sidekiq.resources is set (sidekiq.resources is recommended for production).
## More information: https://github.com/bitnami/charts/blob/main/bitnami/common/templates/_resources.tpl#L15
##
resourcesPreset: "small"
## @param sidekiq.resources Set container requests and limits for different resources like CPU or memory (essential for production workloads)
## Example:
## resources:
## requests:
## cpu: 2
## memory: 512Mi
## limits:
## cpu: 3
## memory: 1024Mi
##
resources: {}
## Configure Pods Security Context
## ref: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/#set-the-security-context-for-a-pod
## @param sidekiq.podSecurityContext.enabled Enabled Mastodon sidekiq pods' Security Context
## @param sidekiq.podSecurityContext.fsGroupChangePolicy Set filesystem group change policy
## @param sidekiq.podSecurityContext.sysctls Set kernel settings using the sysctl interface
## @param sidekiq.podSecurityContext.supplementalGroups Set filesystem extra groups
## @param sidekiq.podSecurityContext.fsGroup Set Mastodon sidekiq pod's Security Context fsGroup
##
podSecurityContext:
enabled: true
fsGroupChangePolicy: Always
sysctls: []
supplementalGroups: []
fsGroup: 1001
## Configure Container Security Context
## ref: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/#set-the-security-context-for-a-container
## @param sidekiq.containerSecurityContext.enabled Enabled containers' Security Context
## @param sidekiq.containerSecurityContext.seLinuxOptions [object,nullable] Set SELinux options in container
## @param sidekiq.containerSecurityContext.runAsUser Set containers' Security Context runAsUser
## @param sidekiq.containerSecurityContext.runAsGroup Set containers' Security Context runAsGroup
## @param sidekiq.containerSecurityContext.runAsNonRoot Set container's Security Context runAsNonRoot
## @param sidekiq.containerSecurityContext.privileged Set container's Security Context privileged
## @param sidekiq.containerSecurityContext.readOnlyRootFilesystem Set container's Security Context readOnlyRootFilesystem
## @param sidekiq.containerSecurityContext.allowPrivilegeEscalation Set container's Security Context allowPrivilegeEscalation
## @param sidekiq.containerSecurityContext.capabilities.drop List of capabilities to be dropped
## @param sidekiq.containerSecurityContext.seccompProfile.type Set container's Security Context seccomp profile
##
containerSecurityContext:
enabled: true
seLinuxOptions: null
runAsUser: 1001
runAsGroup: 1001
runAsNonRoot: true
privileged: false
readOnlyRootFilesystem: true
allowPrivilegeEscalation: false
capabilities:
drop: ["ALL"]
seccompProfile:
type: "RuntimeDefault"
## @param sidekiq.command Override default container command (useful when using custom images)
##
command: []
## @param sidekiq.args Override default container args (useful when using custom images)
##
args: []
## @param sidekiq.automountServiceAccountToken Mount Service Account token in pod
##
automountServiceAccountToken: false
## @param sidekiq.hostAliases Mastodon sidekiq pods host aliases
## https://kubernetes.io/docs/concepts/services-networking/add-entries-to-pod-etc-hosts-with-host-aliases/
##
hostAliases: []
## @param sidekiq.podLabels Extra labels for Mastodon sidekiq pods
## ref: https://kubernetes.io/docs/concepts/overview/working-with-objects/labels/
##
podLabels: {}
## @param sidekiq.podAnnotations Annotations for Mastodon sidekiq pods
## ref: https://kubernetes.io/docs/concepts/overview/working-with-objects/annotations/
##
podAnnotations: {}
## @param sidekiq.podAffinityPreset Pod affinity preset. Ignored if `sidekiq.affinity` is set. Allowed values: `soft` or `hard`
## ref: https://kubernetes.io/docs/concepts/scheduling-eviction/assign-pod-node/#inter-pod-affinity-and-anti-affinity
##
podAffinityPreset: ""
## @param sidekiq.podAntiAffinityPreset Pod anti-affinity preset. Ignored if `sidekiq.affinity` is set. Allowed values: `soft` or `hard`
## ref: https://kubernetes.io/docs/concepts/scheduling-eviction/assign-pod-node/#inter-pod-affinity-and-anti-affinity
##
podAntiAffinityPreset: soft
## Node sidekiq.affinity preset
## ref: https://kubernetes.io/docs/concepts/scheduling-eviction/assign-pod-node/#node-affinity
##
nodeAffinityPreset:
## @param sidekiq.nodeAffinityPreset.type Node affinity preset type. Ignored if `sidekiq.affinity` is set. Allowed values: `soft` or `hard`
##
type: ""
## @param sidekiq.nodeAffinityPreset.key Node label key to match. Ignored if `sidekiq.affinity` is set
##
key: ""
## @param sidekiq.nodeAffinityPreset.values Node label values to match. Ignored if `sidekiq.affinity` is set
## E.g.
## values:
## - e2e-az1
## - e2e-az2
##
values: []
## @param sidekiq.affinity Affinity for Mastodon sidekiq pods assignment
## ref: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/#affinity-and-anti-affinity
## NOTE: `sidekiq.podAffinityPreset`, `sidekiq.podAntiAffinityPreset`, and `sidekiq.nodeAffinityPreset` will be ignored when it's set
##
affinity: {}
## @param sidekiq.nodeSelector Node labels for Mastodon sidekiq pods assignment
## ref: https://kubernetes.io/docs/concepts/scheduling-eviction/assign-pod-node/
##
nodeSelector: {}
## @param sidekiq.tolerations Tolerations for Mastodon sidekiq pods assignment
## ref: https://kubernetes.io/docs/concepts/configuration/taint-and-toleration/
##
tolerations: []
## @param sidekiq.updateStrategy.type Mastodon sidekiq statefulset strategy type
## ref: https://kubernetes.io/docs/concepts/workloads/controllers/statefulset/#update-strategies
##
updateStrategy:
## StrategyType
## Can be set to RollingUpdate or OnDelete
##
type: RollingUpdate
## @param sidekiq.priorityClassName Mastodon sidekiq pods' priorityClassName
##
priorityClassName: ""
## @param sidekiq.topologySpreadConstraints Topology Spread Constraints for pod assignment spread across your cluster among failure-domains. Evaluated as a template
## Ref: https://kubernetes.io/docs/concepts/workloads/pods/pod-topology-spread-constraints/#spread-constraints-for-pods
##
topologySpreadConstraints: []
## @param sidekiq.schedulerName Name of the k8s scheduler (other than default) for Mastodon sidekiq pods
## ref: https://kubernetes.io/docs/tasks/administer-cluster/configure-multiple-schedulers/
##
schedulerName: ""
## @param sidekiq.terminationGracePeriodSeconds Seconds Redmine pod needs to terminate gracefully
## ref: https://kubernetes.io/docs/concepts/workloads/pods/pod/#termination-of-pods
##
terminationGracePeriodSeconds: ""
## @param sidekiq.lifecycleHooks for the Mastodon sidekiq container(s) to automate configuration before or after startup
##
lifecycleHooks: {}
## @param sidekiq.extraEnvVars Array with extra environment variables to add to Mastodon sidekiq nodes
## e.g:
## extraEnvVars:
## - name: FOO
## value: "bar"
##
extraEnvVars: []
## @param sidekiq.extraEnvVarsCM Name of existing ConfigMap containing extra env vars for Mastodon sidekiq nodes
##
extraEnvVarsCM: ""
## @param sidekiq.extraEnvVarsSecret Name of existing Secret containing extra env vars for Mastodon sidekiq nodes
##
extraEnvVarsSecret: ""
## @param sidekiq.extraVolumes Optionally specify extra list of additional volumes for the Mastodon sidekiq pod(s)
##
extraVolumes: []
## @param sidekiq.extraVolumeMounts Optionally specify extra list of additional volumeMounts for the Mastodon sidekiq container(s)
##
extraVolumeMounts: []
## @param sidekiq.sidecars Add additional sidecar containers to the Mastodon sidekiq pod(s)
## e.g:
## sidecars:
## - name: your-image-name
## image: your-image
## imagePullPolicy: Always
## ports:
## - name: portname
## containerPort: 1234
##
sidecars: []
## @param sidekiq.initContainers Add additional init containers to the Mastodon sidekiq pod(s)
## ref: https://kubernetes.io/docs/concepts/workloads/pods/init-containers/
## e.g:
## initContainers:
## - name: your-image-name
## image: your-image
## imagePullPolicy: Always
## command: ['sh', '-c', 'echo "hello world"']
##
initContainers: []
## Pod Disruption Budget configuration
## ref: https://kubernetes.io/docs/tasks/run-application/configure-pdb
## @param sidekiq.pdb.create Enable/disable a Pod Disruption Budget creation
## @param sidekiq.pdb.minAvailable Minimum number/percentage of pods that should remain scheduled
## @param sidekiq.pdb.maxUnavailable Maximum number/percentage of pods that may be made unavailable. Defaults to `1` if both `sidekiq.pdb.minAvailable` and `sidekiq.pdb.maxUnavailable` are empty.
##
pdb:
create: true
minAvailable: ""
maxUnavailable: ""
## Network Policy configuration
## ref: https://kubernetes.io/docs/concepts/services-networking/network-policies/
##
networkPolicy:
## @param sidekiq.networkPolicy.enabled Enable creation of NetworkPolicy resources
##
enabled: true
## @param sidekiq.networkPolicy.allowExternal The Policy model to apply
## When set to false, only pods with the correct client label will have network access to the ports Mastodon is
## listening on. When true, Mastodon will accept connections from any source (with the correct destination port).
##
allowExternal: true
## @param sidekiq.networkPolicy.allowExternalEgress Allow the pod to access any range of port and all destinations.
##
allowExternalEgress: true
## @param sidekiq.networkPolicy.extraIngress [array] Add extra ingress rules to the NetworkPolicy
## e.g:
## extraIngress:
## - ports:
## - port: 1234
## from:
## - podSelector:
## - matchLabels:
## - role: frontend
## - podSelector:
## - matchExpressions:
## - key: role
## operator: In
## values:
## - frontend
##
extraIngress: []
## @param sidekiq.networkPolicy.extraEgress [array] Add extra ingress rules to the NetworkPolicy
## e.g:
## extraEgress:
## - ports:
## - port: 1234
## to:
## - podSelector:
## - matchLabels:
## - role: frontend
## - podSelector:
## - matchExpressions:
## - key: role
## operator: In
## values:
## - frontend
##
extraEgress: []
## @param sidekiq.networkPolicy.ingressNSMatchLabels [object] Labels to match to allow traffic from other namespaces
## @param sidekiq.networkPolicy.ingressNSPodMatchLabels [object] Pod labels to match to allow traffic from other namespaces
##
ingressNSMatchLabels: {}
ingressNSPodMatchLabels: {}
## @section Mastodon Streaming Parameters
##
##
streaming:
## @param streaming.replicaCount Number of Mastodon streaming replicas to deploy
##
replicaCount: 1
## @param streaming.containerPorts.http Mastodon streaming HTTP container port
##
containerPorts:
http: 8080
## Configure extra options for Mastodon streaming containers' liveness and readiness probes
## ref: https://kubernetes.io/docs/tasks/configure-pod-container/configure-liveness-readiness-probes/#configure-probes
## @param streaming.livenessProbe.enabled Enable livenessProbe on Mastodon streaming containers
## @param streaming.livenessProbe.initialDelaySeconds Initial delay seconds for livenessProbe
## @param streaming.livenessProbe.periodSeconds Period seconds for livenessProbe
## @param streaming.livenessProbe.timeoutSeconds Timeout seconds for livenessProbe
## @param streaming.livenessProbe.failureThreshold Failure threshold for livenessProbe
## @param streaming.livenessProbe.successThreshold Success threshold for livenessProbe
##
livenessProbe:
enabled: true
initialDelaySeconds: 10
periodSeconds: 10
timeoutSeconds: 5
failureThreshold: 6
successThreshold: 1
## @param streaming.readinessProbe.enabled Enable readinessProbe on Mastodon streaming containers
## @param streaming.readinessProbe.initialDelaySeconds Initial delay seconds for readinessProbe
## @param streaming.readinessProbe.periodSeconds Period seconds for readinessProbe
## @param streaming.readinessProbe.timeoutSeconds Timeout seconds for readinessProbe
## @param streaming.readinessProbe.failureThreshold Failure threshold for readinessProbe
## @param streaming.readinessProbe.successThreshold Success threshold for readinessProbe
##
readinessProbe:
enabled: true
initialDelaySeconds: 10
periodSeconds: 10
timeoutSeconds: 5
failureThreshold: 6
successThreshold: 1
## @param streaming.startupProbe.enabled Enable startupProbe on Mastodon streaming containers
## @param streaming.startupProbe.initialDelaySeconds Initial delay seconds for startupProbe
## @param streaming.startupProbe.periodSeconds Period seconds for startupProbe
## @param streaming.startupProbe.timeoutSeconds Timeout seconds for startupProbe
## @param streaming.startupProbe.failureThreshold Failure threshold for startupProbe
## @param streaming.startupProbe.successThreshold Success threshold for startupProbe
##
startupProbe:
enabled: false
initialDelaySeconds: 10
periodSeconds: 10
timeoutSeconds: 5
failureThreshold: 6
successThreshold: 1
## @param streaming.customLivenessProbe Custom livenessProbe that overrides the default one
##
customLivenessProbe: {}
## @param streaming.customReadinessProbe Custom readinessProbe that overrides the default one
##
customReadinessProbe: {}
## @param streaming.customStartupProbe Custom startupProbe that overrides the default one
##
customStartupProbe: {}
## Mastodon streaming resource requests and limits
## ref: http://kubernetes.io/docs/concepts/configuration/manage-compute-resources-container/
## @param streaming.resourcesPreset Set container resources according to one common preset (allowed values: none, nano, micro, small, medium, large, xlarge, 2xlarge). This is ignored if streaming.resources is set (streaming.resources is recommended for production).
## More information: https://github.com/bitnami/charts/blob/main/bitnami/common/templates/_resources.tpl#L15
##
resourcesPreset: "small"
## @param streaming.resources Set container requests and limits for different resources like CPU or memory (essential for production workloads)
## Example:
## resources:
## requests:
## cpu: 2
## memory: 512Mi
## limits:
## cpu: 3
## memory: 1024Mi
##
resources: {}
## Configure Pods Security Context
## ref: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/#set-the-security-context-for-a-pod
## @param streaming.podSecurityContext.enabled Enabled Mastodon streaming pods' Security Context
## @param streaming.podSecurityContext.fsGroupChangePolicy Set filesystem group change policy
## @param streaming.podSecurityContext.sysctls Set kernel settings using the sysctl interface
## @param streaming.podSecurityContext.supplementalGroups Set filesystem extra groups
## @param streaming.podSecurityContext.fsGroup Set Mastodon streaming pod's Security Context fsGroup
##
podSecurityContext:
enabled: true
fsGroupChangePolicy: Always
sysctls: []
supplementalGroups: []
fsGroup: 1001
## Configure Container Security Context
## ref: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/#set-the-security-context-for-a-container
## @param streaming.containerSecurityContext.enabled Enabled containers' Security Context
## @param streaming.containerSecurityContext.seLinuxOptions [object,nullable] Set SELinux options in container
## @param streaming.containerSecurityContext.runAsUser Set containers' Security Context runAsUser
## @param streaming.containerSecurityContext.runAsGroup Set containers' Security Context runAsGroup
## @param streaming.containerSecurityContext.runAsNonRoot Set container's Security Context runAsNonRoot
## @param streaming.containerSecurityContext.privileged Set container's Security Context privileged
## @param streaming.containerSecurityContext.readOnlyRootFilesystem Set container's Security Context readOnlyRootFilesystem
## @param streaming.containerSecurityContext.allowPrivilegeEscalation Set container's Security Context allowPrivilegeEscalation
## @param streaming.containerSecurityContext.capabilities.drop List of capabilities to be dropped
## @param streaming.containerSecurityContext.seccompProfile.type Set container's Security Context seccomp profile
##
containerSecurityContext:
enabled: true
seLinuxOptions: null
runAsUser: 1001
runAsGroup: 1001
runAsNonRoot: true
privileged: false
readOnlyRootFilesystem: true
allowPrivilegeEscalation: false
capabilities:
drop: ["ALL"]
seccompProfile:
type: "RuntimeDefault"
## @param streaming.command Override default container command (useful when using custom images)
##
command: []
## @param streaming.args Override default container args (useful when using custom images)
##
args: []
## @param streaming.automountServiceAccountToken Mount Service Account token in pod
##
automountServiceAccountToken: false
## @param streaming.hostAliases Mastodon streaming pods host aliases
## https://kubernetes.io/docs/concepts/services-networking/add-entries-to-pod-etc-hosts-with-host-aliases/
##
hostAliases: []
## @param streaming.podLabels Extra labels for Mastodon streaming pods
## ref: https://kubernetes.io/docs/concepts/overview/working-with-objects/labels/
##
podLabels: {}
## @param streaming.podAnnotations Annotations for Mastodon streaming pods
## ref: https://kubernetes.io/docs/concepts/overview/working-with-objects/annotations/
##
podAnnotations: {}
## @param streaming.podAffinityPreset Pod affinity preset. Ignored if `streaming.affinity` is set. Allowed values: `soft` or `hard`
## ref: https://kubernetes.io/docs/concepts/scheduling-eviction/assign-pod-node/#inter-pod-affinity-and-anti-affinity
##
podAffinityPreset: ""
## @param streaming.podAntiAffinityPreset Pod anti-affinity preset. Ignored if `streaming.affinity` is set. Allowed values: `soft` or `hard`
## ref: https://kubernetes.io/docs/concepts/scheduling-eviction/assign-pod-node/#inter-pod-affinity-and-anti-affinity
##
podAntiAffinityPreset: soft
## Node streaming.affinity preset
## ref: https://kubernetes.io/docs/concepts/scheduling-eviction/assign-pod-node/#node-affinity
##
nodeAffinityPreset:
## @param streaming.nodeAffinityPreset.type Node affinity preset type. Ignored if `streaming.affinity` is set. Allowed values: `soft` or `hard`
##
type: ""
## @param streaming.nodeAffinityPreset.key Node label key to match. Ignored if `streaming.affinity` is set
##
key: ""
## @param streaming.nodeAffinityPreset.values Node label values to match. Ignored if `streaming.affinity` is set
## E.g.
## values:
## - e2e-az1
## - e2e-az2
##
values: []
## @param streaming.affinity Affinity for Mastodon streaming pods assignment
## ref: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/#affinity-and-anti-affinity
## NOTE: `streaming.podAffinityPreset`, `streaming.podAntiAffinityPreset`, and `streaming.nodeAffinityPreset` will be ignored when it's set
##
affinity: {}
## @param streaming.nodeSelector Node labels for Mastodon streaming pods assignment
## ref: https://kubernetes.io/docs/concepts/scheduling-eviction/assign-pod-node/
##
nodeSelector: {}
## @param streaming.tolerations Tolerations for Mastodon streaming pods assignment
## ref: https://kubernetes.io/docs/concepts/configuration/taint-and-toleration/
##
tolerations: []
## @param streaming.updateStrategy.type Mastodon streaming statefulset strategy type
## ref: https://kubernetes.io/docs/concepts/workloads/controllers/statefulset/#update-strategies
##
updateStrategy:
## StrategyType
## Can be set to RollingUpdate or OnDelete
##
type: RollingUpdate
## @param streaming.priorityClassName Mastodon streaming pods' priorityClassName
##
priorityClassName: ""
## @param streaming.topologySpreadConstraints Topology Spread Constraints for pod assignment spread across your cluster among failure-domains. Evaluated as a template
## Ref: https://kubernetes.io/docs/concepts/workloads/pods/pod-topology-spread-constraints/#spread-constraints-for-pods
##
topologySpreadConstraints: []
## @param streaming.schedulerName Name of the k8s scheduler (other than default) for Mastodon streaming pods
## ref: https://kubernetes.io/docs/tasks/administer-cluster/configure-multiple-schedulers/
##
schedulerName: ""
## @param streaming.terminationGracePeriodSeconds Seconds Redmine pod needs to terminate gracefully
## ref: https://kubernetes.io/docs/concepts/workloads/pods/pod/#termination-of-pods
##
terminationGracePeriodSeconds: ""
## @param streaming.lifecycleHooks for the Mastodon streaming container(s) to automate configuration before or after startup
##
lifecycleHooks: {}
## @param streaming.extraEnvVars Array with extra environment variables to add to Mastodon streaming nodes
## e.g:
## extraEnvVars:
## - name: FOO
## value: "bar"
##
extraEnvVars: []
## @param streaming.extraEnvVarsCM Name of existing ConfigMap containing extra env vars for Mastodon streaming nodes
##
extraEnvVarsCM: ""
## @param streaming.extraEnvVarsSecret Name of existing Secret containing extra env vars for Mastodon streaming nodes
##
extraEnvVarsSecret: ""
## @param streaming.extraVolumes Optionally specify extra list of additional volumes for the Mastodon streaming pod(s)
##
extraVolumes: []
## @param streaming.extraVolumeMounts Optionally specify extra list of additional volumeMounts for the Mastodon streaming container(s)
##
extraVolumeMounts: []
## @param streaming.sidecars Add additional sidecar containers to the Mastodon streaming pod(s)
## e.g:
## sidecars:
## - name: your-image-name
## image: your-image
## imagePullPolicy: Always
## ports:
## - name: portname
## containerPort: 1234
##
sidecars: []
## @param streaming.initContainers Add additional init containers to the Mastodon streaming pod(s)
## ref: https://kubernetes.io/docs/concepts/workloads/pods/init-containers/
## e.g:
## initContainers:
## - name: your-image-name
## image: your-image
## imagePullPolicy: Always
## command: ['sh', '-c', 'echo "hello world"']
##
initContainers: []
## Pod Disruption Budget configuration
## ref: https://kubernetes.io/docs/tasks/run-application/configure-pdb
## @param streaming.pdb.create Enable/disable a Pod Disruption Budget creation
## @param streaming.pdb.minAvailable Minimum number/percentage of pods that should remain scheduled
## @param streaming.pdb.maxUnavailable Maximum number/percentage of pods that may be made unavailable. Defaults to `1` if both `streaming.pdb.minAvailable` and `streaming.pdb.maxUnavailable` are empty.
##
pdb:
create: true
minAvailable: ""
maxUnavailable: ""
## @section Mastodon Streaming Traffic Exposure Parameters
##
service:
## @param streaming.service.type Mastodon streaming service type
##
type: ClusterIP
## @param streaming.service.ports.http Mastodon streaming service HTTP port
##
ports:
http: 80
## Node ports to expose
## @param streaming.service.nodePorts.http Node port for HTTP
## NOTE: choose port between <30000-32767>
##
nodePorts:
http: ""
## @param streaming.service.clusterIP Mastodon streaming service Cluster IP
## e.g.:
## clusterIP: None
##
clusterIP: ""
## @param streaming.service.loadBalancerIP Mastodon streaming service Load Balancer IP
## ref: https://kubernetes.io/docs/concepts/services-networking/service/#type-loadbalancer
##
loadBalancerIP: ""
## @param streaming.service.loadBalancerSourceRanges Mastodon streaming service Load Balancer sources
## ref: https://kubernetes.io/docs/tasks/access-application-cluster/configure-cloud-provider-firewall/#restrict-access-for-loadbalancer-service
## e.g:
## loadBalancerSourceRanges:
## - 10.10.10.0/24
##
loadBalancerSourceRanges: []
## @param streaming.service.externalTrafficPolicy Mastodon streaming service external traffic policy
## ref http://kubernetes.io/docs/tasks/access-application-cluster/create-external-load-balancer/#preserving-the-streaming-source-ip
##
externalTrafficPolicy: Cluster
## @param streaming.service.annotations Additional custom annotations for Mastodon streaming service
##
annotations: {}
## @param streaming.service.extraPorts Extra ports to expose in Mastodon streaming service (normally used with the `sidecars` value)
##
extraPorts: []
## @param streaming.service.sessionAffinity Control where streaming requests go, to the same pod or round-robin
## Values: StreamingIP or None
## ref: https://kubernetes.io/docs/concepts/services-networking/service/
##
sessionAffinity: None
## @param streaming.service.sessionAffinityConfig Additional settings for the sessionAffinity
## sessionAffinityConfig:
## rtsIP:
## timeoutSeconds: 300
##
sessionAffinityConfig: {}
## Network Policy configuration
## ref: https://kubernetes.io/docs/concepts/services-networking/network-policies/
##
networkPolicy:
## @param streaming.networkPolicy.enabled Enable creation of NetworkPolicy resources
##
enabled: true
## @param streaming.networkPolicy.allowExternal The Policy model to apply
## When set to false, only pods with the correct client label will have network access to the ports Mastodon is
## listening on. When true, Mastodon will accept connections from any source (with the correct destination port).
##
allowExternal: true
## @param streaming.networkPolicy.allowExternalEgress Allow the pod to access any range of port and all destinations.
##
allowExternalEgress: true
## @param streaming.networkPolicy.extraIngress [array] Add extra ingress rules to the NetworkPolicy
## e.g:
## extraIngress:
## - ports:
## - port: 1234
## from:
## - podSelector:
## - matchLabels:
## - role: frontend
## - podSelector:
## - matchExpressions:
## - key: role
## operator: In
## values:
## - frontend
##
extraIngress: []
## @param streaming.networkPolicy.extraEgress [array] Add extra ingress rules to the NetworkPolicy
## e.g:
## extraEgress:
## - ports:
## - port: 1234
## to:
## - podSelector:
## - matchLabels:
## - role: frontend
## - podSelector:
## - matchExpressions:
## - key: role
## operator: In
## values:
## - frontend
##
extraEgress: []
## @param streaming.networkPolicy.ingressNSMatchLabels [object] Labels to match to allow traffic from other namespaces
## @param streaming.networkPolicy.ingressNSPodMatchLabels [object] Pod labels to match to allow traffic from other namespaces
##
ingressNSMatchLabels: {}
ingressNSPodMatchLabels: {}
## @section Mastodon Media Management Cronjob Parameters
##
tootctlMediaManagement:
## @param tootctlMediaManagement.enabled Enable Cronjob to manage all media caches
##
enabled: false
## @param tootctlMediaManagement.removeAttachments Enable removing attachements
removeAttachments: true
## @param tootctlMediaManagement.removeAttachmentsDays Number of days old media attachments must be for removal
removeAttachmentsDays: 30
## @param tootctlMediaManagement.removeCustomEmoji Enable removal of cached remote emoji files
removeCustomEmoji: false
## @param tootctlMediaManagement.removePreviewCards Enable removal of cached preview cards
removePreviewCards: false
## @param tootctlMediaManagement.removePreviewCardsDays Number of days old preview cards must be for removal
removePreviewCardsDays: 30
## @param tootctlMediaManagement.removeAvatars Enable removal of cached remote avatar images
removeAvatars: false
## @param tootctlMediaManagement.removeAvatarsDays Number of days old avatar images must be for removal
removeAvatarsDays: 30
## @param tootctlMediaManagement.removeHeaders Enable removal of cached profile header images
removeHeaders: false
## @param tootctlMediaManagement.removeHeadersDays Number of days old header images must be for removal
removeHeadersDays: 30
## @param tootctlMediaManagement.removeOrphans Enable removal of cached orphan files
removeOrphans: false
## @param tootctlMediaManagement.includeFollows Enable removal of cached avatar and header when local users are following the accounts
includeFollows: false
## @param tootctlMediaManagement.cronSchedule Cron job schedule to run tootctl media commands
cronSchedule: '14 3 * * *'
## @param tootctlMediaManagement.failedJobsHistoryLimit Number of failed jobs to keep
failedJobsHistoryLimit: 3
## @param tootctlMediaManagement.successfulJobsHistoryLimit Number of successful jobs to keep
successfulJobsHistoryLimit: 3
## @param tootctlMediaManagement.concurrencyPolicy Concurrency Policy. Should be Allow, Forbid or Replace
concurrencyPolicy: Allow
## Network Policy configuration
## ref: https://kubernetes.io/docs/concepts/services-networking/network-policies/
##
networkPolicy:
## @param tootctlMediaManagement.networkPolicy.enabled Enable creation of NetworkPolicy resources
##
enabled: true
## @param tootctlMediaManagement.networkPolicy.allowExternal The Policy model to apply
## When set to false, only pods with the correct client label will have network access to the ports Mastodon is
## listening on. When true, Mastodon will accept connections from any source (with the correct destination port).
##
allowExternal: true
## @param tootctlMediaManagement.networkPolicy.allowExternalEgress Allow the pod to access any range of port and all destinations.
##
allowExternalEgress: true
## @param tootctlMediaManagement.networkPolicy.extraIngress [array] Add extra ingress rules to the NetworkPolicy
## e.g:
## extraIngress:
## - ports:
## - port: 1234
## from:
## - podSelector:
## - matchLabels:
## - role: frontend
## - podSelector:
## - matchExpressions:
## - key: role
## operator: In
## values:
## - frontend
##
extraIngress: []
## @param tootctlMediaManagement.networkPolicy.extraEgress [array] Add extra ingress rules to the NetworkPolicy
## e.g:
## extraEgress:
## - ports:
## - port: 1234
## to:
## - podSelector:
## - matchLabels:
## - role: frontend
## - podSelector:
## - matchExpressions:
## - key: role
## operator: In
## values:
## - frontend
##
extraEgress: []
## @param tootctlMediaManagement.networkPolicy.ingressNSMatchLabels [object] Labels to match to allow traffic from other namespaces
## @param tootctlMediaManagement.networkPolicy.ingressNSPodMatchLabels [object] Pod labels to match to allow traffic from other namespaces
##
ingressNSMatchLabels: {}
ingressNSPodMatchLabels: {}
## @section Mastodon Migration job Parameters
##
initJob:
## @param initJob.precompileAssets Execute rake assets:precompile as part of the job
##
precompileAssets: true
## @param initJob.migrateDB Execute rake db:migrate as part of the job
##
migrateDB: true
## @param initJob.migrateElasticsearch Execute rake chewy:upgrade as part of the job
##
migrateElasticsearch: true
## @param initJob.createAdmin Create admin user as part of the job
##
createAdmin: true
## @param initJob.backoffLimit set backoff limit of the job
##
backoffLimit: 10
## @param initJob.extraVolumes Optionally specify extra list of additional volumes for the Mastodon init job
##
extraVolumes: []
## Configure Container Security Context
## ref: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/#set-the-security-context-for-a-container
## @param initJob.containerSecurityContext.enabled Enabled containers' Security Context
## @param initJob.containerSecurityContext.seLinuxOptions [object,nullable] Set SELinux options in container
## @param initJob.containerSecurityContext.runAsUser Set containers' Security Context runAsUser
## @param initJob.containerSecurityContext.runAsGroup Set containers' Security Context runAsGroup
## @param initJob.containerSecurityContext.runAsNonRoot Set container's Security Context runAsNonRoot
## @param initJob.containerSecurityContext.privileged Set container's Security Context privileged
## @param initJob.containerSecurityContext.readOnlyRootFilesystem Set container's Security Context readOnlyRootFilesystem
## @param initJob.containerSecurityContext.allowPrivilegeEscalation Set container's Security Context allowPrivilegeEscalation
## @param initJob.containerSecurityContext.capabilities.drop List of capabilities to be dropped
## @param initJob.containerSecurityContext.seccompProfile.type Set container's Security Context seccomp profile
##
containerSecurityContext:
enabled: true
seLinuxOptions: null
runAsUser: 1001
runAsGroup: 1001
runAsNonRoot: true
privileged: false
readOnlyRootFilesystem: true
allowPrivilegeEscalation: false
capabilities:
drop: ["ALL"]
seccompProfile:
type: "RuntimeDefault"
## Configure Pods Security Context
## ref: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/#set-the-security-context-for-a-pod
## @param initJob.podSecurityContext.enabled Enabled Mastodon init job pods' Security Context
## @param initJob.podSecurityContext.fsGroupChangePolicy Set filesystem group change policy
## @param initJob.podSecurityContext.sysctls Set kernel settings using the sysctl interface
## @param initJob.podSecurityContext.supplementalGroups Set filesystem extra groups
## @param initJob.podSecurityContext.fsGroup Set Mastodon init job pod's Security Context fsGroup
##
podSecurityContext:
enabled: true
fsGroupChangePolicy: Always
sysctls: []
supplementalGroups: []
fsGroup: 1001
## @param initJob.extraEnvVars Array containing extra env vars to configure the Mastodon init job
## For example:
## extraEnvVars:
## - name: GF_DEFAULT_INSTANCE_NAME
## value: my-instance
##
extraEnvVars: []
## @param initJob.extraEnvVarsCM ConfigMap containing extra env vars to configure the Mastodon init job
##
extraEnvVarsCM: ""
## @param initJob.extraEnvVarsSecret Secret containing extra env vars to configure the Mastodon init job (in case of sensitive data)
##
extraEnvVarsSecret: ""
## @param initJob.extraVolumeMounts Array of extra volume mounts to be added to the Mastodon Container (evaluated as template). Normally used with `extraVolumes`.
##
extraVolumeMounts: []
## Container resource requests and limits
## ref: https://kubernetes.io/docs/concepts/configuration/manage-compute-resources-container/
## @param initJob.resourcesPreset Set container resources according to one common preset (allowed values: none, nano, micro, small, medium, large, xlarge, 2xlarge). This is ignored if initJob.resources is set (initJob.resources is recommended for production).
## More information: https://github.com/bitnami/charts/blob/main/bitnami/common/templates/_resources.tpl#L15
##
resourcesPreset: "small"
## @param initJob.resources Set container requests and limits for different resources like CPU or memory (essential for production workloads)
## Example:
## resources:
## requests:
## cpu: 2
## memory: 512Mi
## limits:
## cpu: 3
## memory: 1024Mi
##
resources: {}
## @param initJob.automountServiceAccountToken Mount Service Account token in pod
##
automountServiceAccountToken: false
## @param initJob.hostAliases Add deployment host aliases
## https://kubernetes.io/docs/concepts/services-networking/add-entries-to-pod-etc-hosts-with-host-aliases/
##
hostAliases: []
## @param initJob.annotations [object] Add annotations to the job
##
annotations:
helm.sh/hook: post-install, pre-upgrade
helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
# This should be executed after the minio provisioning job
helm.sh/hook-weight: "10"
## @param initJob.podLabels Additional pod labels
## Ref: https://kubernetes.io/docs/concepts/overview/working-with-objects/labels/
##
podLabels: {}
## @param initJob.podAnnotations Additional pod annotations
## ref: https://kubernetes.io/docs/concepts/overview/working-with-objects/annotations/
##
podAnnotations: {}
## Network Policy configuration
## ref: https://kubernetes.io/docs/concepts/services-networking/network-policies/
##
networkPolicy:
## @param initJob.networkPolicy.enabled Enable creation of NetworkPolicy resources
##
enabled: true
## @param initJob.networkPolicy.allowExternal The Policy model to apply
## When set to false, only pods with the correct client label will have network access to the ports Mastodon is
## listening on. When true, Mastodon will accept connections from any source (with the correct destination port).
##
allowExternal: true
## @param initJob.networkPolicy.allowExternalEgress Allow the pod to access any range of port and all destinations.
##
allowExternalEgress: true
## @param initJob.networkPolicy.extraIngress [array] Add extra ingress rules to the NetworkPolicy
## e.g:
## extraIngress:
## - ports:
## - port: 1234
## from:
## - podSelector:
## - matchLabels:
## - role: frontend
## - podSelector:
## - matchExpressions:
## - key: role
## operator: In
## values:
## - frontend
##
extraIngress: []
## @param initJob.networkPolicy.extraEgress [array] Add extra ingress rules to the NetworkPolicy
## e.g:
## extraEgress:
## - ports:
## - port: 1234
## to:
## - podSelector:
## - matchLabels:
## - role: frontend
## - podSelector:
## - matchExpressions:
## - key: role
## operator: In
## values:
## - frontend
##
extraEgress: []
## @param initJob.networkPolicy.ingressNSMatchLabels [object] Labels to match to allow traffic from other namespaces
## @param initJob.networkPolicy.ingressNSPodMatchLabels [object] Pod labels to match to allow traffic from other namespaces
##
ingressNSMatchLabels: {}
ingressNSPodMatchLabels: {}
## @section Persistence Parameters (only when S3 is disabled)
## Enable persistence using Persistent Volume Claims
## ref: https://kubernetes.io/docs/concepts/storage/persistent-volumes/
##
persistence:
## @param persistence.enabled Enable persistence using Persistent Volume Claims
##
enabled: false
## @param persistence.mountPath Path to mount the volume at.
##
mountPath: /bitnami/mastodon
## @param persistence.subPath The subdirectory of the volume to mount to, useful in dev environments and one PV for multiple services
##
subPath: ""
## @param persistence.storageClass Storage class of backing PVC
## If defined, storageClassName: <storageClass>
## If set to "-", storageClassName: "", which disables dynamic provisioning
## If undefined (the default) or set to null, no storageClassName spec is
## set, choosing the default provisioner. (gp2 on AWS, standard on
## GKE, AWS & OpenStack)
##
storageClass: ""
## @param persistence.annotations Persistent Volume Claim annotations
##
annotations: {}
## @param persistence.accessModes Persistent Volume Access Modes
##
accessModes:
- ReadWriteOnce
## @param persistence.size Size of data volume
##
size: 8Gi
## @param persistence.existingClaim The name of an existing PVC to use for persistence
##
existingClaim: ""
## @param persistence.selector Selector to match an existing Persistent Volume for Mastodon data PVC
## If set, the PVC can't have a PV dynamically provisioned for it
## E.g.
## selector:
## matchLabels:
## app: my-app
##
selector: {}
## @param persistence.dataSource Custom PVC data source
##
dataSource: {}
## @section Init Container Parameters
##
## 'volumePermissions' init container parameters
## Changes the owner and group of the persistent volume mount point to runAsUser:fsGroup values
## based on the *podSecurityContext/*containerSecurityContext parameters
##
volumePermissions:
## @param volumePermissions.enabled Enable init container that changes the owner/group of the PV mount point to `runAsUser:fsGroup`
##
enabled: false
## OS Shell + Utility image
## ref: https://hub.docker.com/r/bitnami/os-shell/tags/
## @param volumePermissions.image.registry [default: REGISTRY_NAME] OS Shell + Utility image registry
## @param volumePermissions.image.repository [default: REPOSITORY_NAME/os-shell] OS Shell + Utility image repository
## @skip volumePermissions.image.tag OS Shell + Utility image tag (immutable tags are recommended)
## @param volumePermissions.image.pullPolicy OS Shell + Utility image pull policy
## @param volumePermissions.image.pullSecrets OS Shell + Utility image pull secrets
##
image:
registry: docker.io
repository: bitnami/os-shell
tag: 12-debian-12-r21
pullPolicy: IfNotPresent
## Optionally specify an array of imagePullSecrets.
## Secrets must be manually created in the namespace.
## ref: https://kubernetes.io/docs/tasks/configure-pod-container/pull-image-private-registry/
## e.g:
## pullSecrets:
## - myRegistryKeySecretName
##
pullSecrets: []
## Init container's resource requests and limits
## ref: http://kubernetes.io/docs/concepts/configuration/manage-compute-resources-container/
## @param volumePermissions.resourcesPreset Set container resources according to one common preset (allowed values: none, nano, micro, small, medium, large, xlarge, 2xlarge). This is ignored if volumePermissions.resources is set (volumePermissions.resources is recommended for production).
## More information: https://github.com/bitnami/charts/blob/main/bitnami/common/templates/_resources.tpl#L15
##
resourcesPreset: "nano"
## @param volumePermissions.resources Set container requests and limits for different resources like CPU or memory (essential for production workloads)
## Example:
## resources:
## requests:
## cpu: 2
## memory: 512Mi
## limits:
## cpu: 3
## memory: 1024Mi
##
resources: {}
## Init container Container Security Context
## ref: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/#set-the-security-context-for-a-container
## @param volumePermissions.containerSecurityContext.seLinuxOptions [object,nullable] Set SELinux options in container
## @param volumePermissions.containerSecurityContext.runAsUser Set init container's Security Context runAsUser
## NOTE: when runAsUser is set to special value "auto", init container will try to chown the
## data folder to auto-determined user&group, using commands: `id -u`:`id -G | cut -d" " -f2`
## "auto" is especially useful for OpenShift which has scc with dynamic user ids (and 0 is not allowed)
##
containerSecurityContext:
seLinuxOptions: null
runAsUser: 0
## @section Other Parameters
##
## ServiceAccount configuration
##
serviceAccount:
## @param serviceAccount.create Specifies whether a ServiceAccount should be created
##
create: true
## @param serviceAccount.name The name of the ServiceAccount to use.
## If not set and create is true, a name is generated using the common.names.fullname template
##
name: ""
## @param serviceAccount.annotations Additional Service Account annotations (evaluated as a template)
##
annotations: {}
## @param serviceAccount.automountServiceAccountToken Automount service account token for the server service account
##
automountServiceAccountToken: false
## External PostgreSQL configuration
## All of these values are only used when postgresql.enabled is set to false
## @param externalDatabase.host Database host
## @param externalDatabase.port Database port number
## @param externalDatabase.user Non-root username for Mastodon
## @param externalDatabase.password Password for the non-root username for Mastodon
## @param externalDatabase.database Mastodon database name
## @param externalDatabase.existingSecret Name of an existing secret resource containing the database credentials
## @param externalDatabase.existingSecretPasswordKey Name of an existing secret key containing the database credentials
##
externalDatabase:
host: ""
port: 5432
user: postgres
database: mastodon
password: ""
existingSecret: ""
existingSecretPasswordKey: "db-password"
## @section External Redis parameters
## All of these values are only used when redis.enabled is set to false
## @param externalRedis.host Redis host
## @param externalRedis.port Redis port number
## @param externalRedis.password Password for the Redis
## @param externalRedis.existingSecret Name of an existing secret resource containing the Redis credentials
## @param externalRedis.existingSecretPasswordKey Name of an existing secret key containing the Redis credentials
##
externalRedis:
host: ""
port: 6379
password: ""
existingSecret: ""
existingSecretPasswordKey: ""
## @section External S3 parameters
## All of these values are only used when redis.enabled is set to false
## @param externalS3.host External S3 host
## @param externalS3.port External S3 port number
## @param externalS3.accessKeyID External S3 access key ID
## @param externalS3.accessKeySecret External S3 access key secret
## @param externalS3.existingSecret Name of an existing secret resource containing the S3 credentials
## @param externalS3.existingSecretAccessKeyIDKey Name of an existing secret key containing the S3 access key ID
## @param externalS3.existingSecretKeySecretKey Name of an existing secret key containing the S3 access key secret
## @param externalS3.protocol External S3 protocol
## @param externalS3.bucket External S3 bucket
## @param externalS3.region External S3 region
##
externalS3:
host: ""
port: 443
accessKeyID: ""
accessKeySecret: ""
existingSecret: ""
existingSecretAccessKeyIDKey: "root-user"
existingSecretKeySecretKey: "root-password"
protocol: "https"
bucket: "mastodon"
region: "us-east-1"
## @section External elasticsearch configuration
##
## @param externalElasticsearch.host Host of the external elasticsearch server
## @param externalElasticsearch.port Port of the external elasticsearch server
## @param externalElasticsearch.password Password for the external elasticsearch server
## @param externalElasticsearch.existingSecret Name of an existing secret resource containing the elasticsearch credentials
## @param externalElasticsearch.existingSecretPasswordKey Name of an existing secret key containing the elasticsearch credentials
##
externalElasticsearch:
host: ""
port: ""
password: ""
existingSecret: ""
existingSecretPasswordKey: "elasticsearch-password"
## @section Redis sub-chart parameters
##
redis:
## @param redis.enabled Deploy Redis subchart
##
enabled: true
## @param redis.architecture Set Redis architecture
##
architecture: standalone
## @param redis.existingSecret Name of a secret containing redis credentials
##
existingSecret: ""
## @param redis.master.service.ports.redis Redis port
##
master:
service:
ports:
redis: 6379
## @param redis.auth.enabled Enable Redis auth
## @param redis.auth.password Redis password
## @param redis.auth.existingSecret Name of a secret containing the Redis password
##
auth:
enabled: true
password: ""
existingSecret: ""
## @section PostgreSQL chart configuration
## ref: https://github.com/bitnami/charts/blob/main/bitnami/postgresql/values.yaml
## @param postgresql.enabled Switch to enable or disable the PostgreSQL helm chart
## @param postgresql.auth.username Name for a custom user to create
## @param postgresql.auth.password Password for the custom user to create
## @param postgresql.auth.database Name for a custom database to create
## @param postgresql.auth.existingSecret Name of existing secret to use for PostgreSQL credentials
## @param postgresql.architecture PostgreSQL architecture (`standalone` or `replication`)
## @param postgresql.primary.service.ports.postgresql PostgreSQL service port
##
postgresql:
enabled: true
auth:
username: bn_mastodon
password: ""
database: bitnami_mastodon
existingSecret: ""
architecture: standalone
primary:
service:
ports:
postgresql: 5432
## @section MinIO&reg; chart parameters
## @extra minio For full list of MinIO&reg; values configurations please refere [here](https://github.com/bitnami/charts/tree/main/bitnami/minio)
##
minio:
## @param minio.enabled Enable/disable MinIO&reg; chart installation
## to be used as an objstore for Mastodon
##
enabled: true
## MinIO&reg; authentication parameters
##
auth:
## @param minio.auth.rootUser MinIO&reg; root username
##
rootUser: admin
## @param minio.auth.rootPassword Password for MinIO&reg; root user
##
rootPassword: ""
## @param minio.auth.existingSecret Name of an existing secret containing the MinIO&reg; credentials
##
existingSecret: ""
## @param minio.defaultBuckets Comma, semi-colon or space separated list of MinIO&reg; buckets to create
##
defaultBuckets: "s3storage"
## @param minio.provisioning.enabled Enable/disable MinIO&reg; provisioning job
## @param minio.provisioning.extraCommands Extra commands to run on MinIO&reg; provisioning job
##
provisioning:
enabled: true
# We need to allow downloads in order for the UI to work
extraCommands: ["mc anonymous set download provisioning/s3storage"]
## @param minio.tls.enabled Enable/disable MinIO&reg; TLS support
##
tls:
enabled: false
## @param minio.service.type MinIO&reg; service type
## @param minio.service.loadBalancerIP MinIO&reg; service LoadBalancer IP
## @param minio.service.ports.api MinIO&reg; service port
##
service:
type: ClusterIP
loadBalancerIP: ""
ports:
api: 80
## @section Elasticsearch chart configuration
## https://github.com/bitnami/charts/blob/main/bitnami/elasticsearch/values.yaml
##
elasticsearch:
## @param elasticsearch.enabled Whether to deploy a elasticsearch server to use as Mastodon's search engine
## To use an external server set this to false and configure the externalElasticsearch parameters
##
enabled: true
## @param elasticsearch.sysctlImage.enabled Enable kernel settings modifier image for Elasticsearch
##
sysctlImage:
enabled: true
## @param elasticsearch.security.enabled Enable security settings for Elasticsearch
## @param elasticsearch.security.existingSecret Name of an existing secret containing the elasticsearch credentials
## @param elasticsearch.security.tls.restEncryption Enable TLS encryption for REST API
##
security:
enabled: false
existingSecret: ""
tls:
restEncryption: false
## Elasticsearch master-eligible node parameters
## @param elasticsearch.master.replicaCount Desired number of Elasticsearch master-eligible nodes
##
master:
replicaCount: 1
## Elasticsearch coordinating-only node parameters
## @param elasticsearch.coordinating.replicaCount Desired number of Elasticsearch coordinating-only nodes
##
coordinating:
replicaCount: 1
## Elasticsearch data node parameters
## @param elasticsearch.data.replicaCount Desired number of Elasticsearch data nodes
##
data:
replicaCount: 1
## Elasticsearch ingest node parameters
## @param elasticsearch.ingest.replicaCount Desired number of Elasticsearch ingest nodes
##
ingest:
replicaCount: 1
## @param elasticsearch.service.ports.restAPI Elasticsearch REST API port
##
service:
ports:
restAPI: 9200
## @section Apache chart configuration
##
apache:
## @param apache.enabled Enable Apache chart
##
enabled: true
## @param apache.containerPorts.http Apache container port
##
containerPorts:
http: 8080
## @param apache.service.type Apache service type
## @param apache.service.loadBalancerIP Apache service LoadBalancer IP
## @param apache.service.ports.http Apache service port
##
service:
type: LoadBalancer
loadBalancerIP: ""
ports:
http: 80
## @param apache.vhostsConfigMap [string] Name of the ConfigMap containing the Apache vhost configuration
##
vhostsConfigMap: '{{ include "mastodon.apache.vhostconfigmap" . }}'
# We need to change the liveness probe to use the Mastodon streaming health checkpoint
# We use the streaming because it is the last service to be initialized together with
# sidekiq
## @param apache.readinessProbe.path Apache readiness probe path
##
readinessProbe:
path: "/api/v1/streaming/health"
## @param apache.startupProbe.path Apache startup probe path
##
startupProbe:
path: "/api/v1/streaming/health"
## @param apache.ingress.enabled Enable ingress
## @param apache.ingress.hostname Ingress hostname
##
ingress:
enabled: false
hostname: "mastodon.local"
Reference in New Issue View Git Blame Copy Permalink