tsai
/
squidex
mirror of https://github.com/Squidex/squidex.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
Browse Source

Document helm parameters.

pull/925/head
Sebastian 3 years ago
parent
ab0d5c9ebe
commit
870647c829
4 changed files with 562 additions and 69 deletions
Whitespace
Show all changes Ignore whitespace when comparing lines Ignore changes in amount of whitespace Ignore changes in whitespace at EOL
Unified View
Diff Options
Show Stats Download Patch File Download Diff File
  1. 123
      helm/squidex/README.md
  2. 189
      helm/squidex/values.yaml
  3. 122
      helm/squidex7/README.md
  4. 185
      helm/squidex7/values.yaml

123
helm/squidex/README.md
View File

@ -0,0 +1,123 @@
# Squidex Helm Deployment up to version 7 exlusive
Do not use this Helm chart for version 7 and above.
## TL;DR
```bash
$ helm install my-release squidex
```
## Introduction
This chart installs the following deployments:
* Squidex
* MongoDB
* Ingress
## Prerequisites
- Kubernetes 1.19+
- Helm 3.2.0+
- PV provisioner support in the underlying infrastructure
## Installing the Chart
To install the chart with the release name `my-release`:
```bash
$ helm install my-release squidex
```
> **Tip**: List all releases using `helm list`
## Uninstalling the Chart
To uninstall/delete the `my-release` deployment:
```bash
$ helm delete my-release
```
The command removes all the Kubernetes components associated with the chart and deletes the release.
## Parameters
### Global parameters
| Name | Description | Value |
| ------------------------- | ------------------------------ | ----------------- |
| `service.type` | Kubernetes Service type | `ClusterIP` |
| `service.port` | Kubernetes Service port | `80` |
| `deployment.replicaCount` | Number of instances. | `1` |
| `image.repository` | Squidex image registry | `squidex/squidex` |
| `image.tag` | Squidex image tag | `""` |
| `image.pullPolicy` | Squidex image pull policy | `IfNotPresent` |
| `ingress.enabled` | True to deploy an ingress | `true` |
| `ingress.hostName` | The host name for the ingress. | `squidex.local` |
### Squidex parameters
| Name | Description | Value |
| ---------------------------------------------------- | ---------------------------------------------------------------------------------------------------------------- | ---------------------------- |
| `env.EVENTSTORE__MONGODB__DATABASE` | The name of the database for events | `Squidex` |
| `env.IDENTITY__ADMINEMAIL` | The initial admin email address. | `""` |
| `env.IDENTITY__ADMINPASSWORD` | The initial admin email address. | `""` |
| `env.IDENTITY__ADMINRECREATE` | Recreate the admin if it does not exist or the password does not match | `false` |
| `env.IDENTITY__ALLOWPASSWORDAUTH` | Enable password auth. Set this to false if you want to disable local login, leaving only 3rd party login options | `true` |
| `env.IDENTITY__LOCKAUTOMATICALLY` | Lock new users automatically, the administrator must unlock them. | `false` |
| `env.IDENTITY__PRIVACYURL` | The url to you privacy statements. | `https://squidex.io/privacy` |
| `env.IDENTITY__SHOWPII` | Set to true to show PII (Personally Identifiable Information) in the logs | `true` |
| `env.IDENTITY__GOOGLECLIENT` | Google client ID (keep empty to disable Google authentication). | `nil` |
| `env.IDENTITY__GOOGLESECRET` | Google client secret (keep empty to disable Google authentication). | `nil` |
| `env.IDENTITY__GITHUBCLIENT` | Github client ID (keep empty to disable Github authentication). | `nil` |
| `env.IDENTITY__GITHUBSECRET` | Github client secret (keep empty to disable Github authentication). | `nil` |
| `env.IDENTITY__MICROSOFTCLIENT` | Microsoft client ID (keep empty to disable Microsoft authentication). | `nil` |
| `env.IDENTITY__MICROSOFTSECRET` | Microsoft client secret (keep empty to disable Microsoft authentication). | `nil` |
| `env.IDENTITY__MICROSOFTTENANT` | Optional tenant name for Azure AD. | `nil` |
| `env.IDENTITY__OIDCAUTHORITY` | The URL to the custom OIDC authority. | `nil` |
| `env.IDENTITY__OIDCCLIENT` | The client ID to the authority. | `nil` |
| `env.IDENTITY__OIDCSECRET` | The client secret to the authority. | `nil` |
| `env.IDENTITY__OIDCGETCLAIMSFROMUSERINFOENDPOINT` | True to get claims from the user endpoint. | `false` |
| `env.IDENTITY__OIDCMETADATAADDRESS` | A custom address for OIDC metadata. | `nil` |
| `env.IDENTITY__OIDCNAME` | The name of the OIDC integration or server. Used in the UI | `nil` |
| `env.IDENTITY__OIDCRESPONSETYPE` | The type of the response. id_token or code. | `nil` |
| `env.IDENTITY__OIDCSCOPES` | The scopes. | `[]` |
| `env.IDENTITY__OIDCSINGOUTREDIRECTURL` | The redirect URL for the sign out. | `nil` |
| `env.LOGGING__APPLICATIONINSIGHTS__ENABLED` | Enable monitoring via application insights. | `falsen` |
| `env.LOGGING__APPLICATIONINSIGHTS__CONNECTIONSTRING` | The connection string to application insights. | `nil` |
| `env.LOGGING__COLORS` | Use colors in the console output. | `false` |
| `env.LOGGING__HUMAN` | Setting the flag to true, enables well formatteds json logs. | `false` |
| `env.LOGGING__LEVEL` | Trace, Debug, Information, Warning, Error, Fatal | `INFORMATION` |
| `env.LOGGING__LOGREQUESTS` | Set to false to disable logging of http requests. | `true` |
| `env.LOGGING__OTLP__ENABLED` | True, to enable OpenTelemetry Protocol integration | `false` |
| `env.LOGGING__OLTP__ENDPOINT` | The endpoint to the agent | `nil` |
| `env.LOGGING__STACKDRIVER__ENABLED` | True, to enable stackdriver integration. | `false` |
| `env.LOGGING__STOREENABLED` | False to disable the log store for HTTP requests. | `true` |
| `env.LOGGING__STORERETENTIONINDAYS` | The number of days request log items will be stored | `90` |
| `env.ORLEANS__CLUSTERING` | Enables clustering via Orleans. Set to Development to turn it off. | `MongoDB` |
| `env.STORE__MONGODB__DATABASE` | The name of the main database. | `Squidex` |
| `env.STORE__MONGODB__CONTENTDATABASE` | The name of the database for content items. | `SquidexContent` |
| `env.URLS__BASEURL` | Set the base url of your application, to generate correct urls in background process. | `https://squidex.local/` |
| `env.URLS__ENFORCEHTTPS` | Set it to true to redirect the user from http to https permanently | `false` |
### MongoDB parameters
| Name | Description | Value |
| -------------------------------------------------- | ---------------------------------------------- | ------------------- |
| `mongodb-replicaset.enabled` | Uses the custom mongoDB instance. | `true` |
| `mongodb-replicaset.replicas` | The number of replicas. | `3` |
| `mongodb-replicaset.persistentVolume.enabled` | If true, persistent volume claims are created. | `true` |
| `mongodb-replicaset.persistentVolume.storageClass` | Persistent volume storage class. | `""` |
| `mongodb-replicaset.persistentVolume.accessModes` | Persistent volume access modes. | `["ReadWriteOnce"]` |
| `mongodb-replicaset.persistentVolume.size` | Persistent volume size. | `10Gi` |
Parameters are generated with: https://github.com/bitnami-labs/readme-generator-for-helm#configuration-file
## Support
Use the support forum to get help: https://support.squidex.io

189
helm/squidex/values.yaml
View File

@ -1,29 +1,57 @@
## @section Global parameters
## @skip labels
labels: labels:
service: service:
## @param service.type Kubernetes Service type
##
type: ClusterIP type: ClusterIP
## @param service.port Kubernetes Service port
##
port: 80 port: 80
deployment: deployment:
## @param deployment.replicaCount Number of instances.
##
replicaCount: 1 replicaCount: 1
selectors: selectors:
## @skip selectors.component
##
component: squidex component: squidex
## @skip selectors.partOf
##
partOf: "" partOf: ""
## @skip selectors.version
##
version: "" version: ""
image: image:
## @param image.repository Squidex image registry
##
repository: squidex/squidex repository: squidex/squidex
## @param image.tag Squidex image tag
##
tag: "" tag: ""
## @param image.pullPolicy Squidex image pull policy
##
pullPolicy: IfNotPresent pullPolicy: IfNotPresent
## @skip resources
resources: { } resources: { }
## @skip nodeSelector
nodeSelector: { } nodeSelector: { }
## @skip tolerations
tolerations: [ ] tolerations: [ ]
## @skip affinity
affinity: { } affinity: { }
## @skip clusterSuffix
clusterSuffix: cluster.local clusterSuffix: cluster.local
## @skip auth
auth: auth:
## ##
ingress: ingress:
## @param ingress.enabled True to deploy an ingress
## If true, Squidex Ingress will be created. ## If true, Squidex Ingress will be created.
## ##
enabled: true enabled: true
@ -32,87 +60,177 @@ ingress:
# annotations: # annotations:
# kubernetes.io/ingress.class: nginx # kubernetes.io/ingress.class: nginx
# kubernetes.io/tls-acme: "true" # kubernetes.io/tls-acme: "true"
## @param ingress.hostName The host name for the ingress.
##
hostName: squidex.local hostName: squidex.local
## @skip ingress.tls
tls: [ ] tls: [ ]
# - secretName: chart-example-tls # - secretName: chart-example-tls
# hosts: # hosts:
# - chart-example.local # - chart-example.local
## @section Squidex parameters
env: env:
# Define the type of the event store # Define the type of the event store
EVENTSTORE__TYPE: MongoDb ## @param env.EVENTSTORE__MONGODB__DATABASE The name of the database for events
EVENTSTORE__MONGODB__DATABASE: "Squidex" EVENTSTORE__MONGODB__DATABASE: "Squidex"
## @skip env.EVENTSTORE__TYPE
## Define the type of the event store
##
EVENTSTORE__TYPE: MongoDb
# CREATE LOCAL ADMIN USER # CREATE LOCAL ADMIN USER
## @param env.IDENTITY__ADMINEMAIL The initial admin email address.
##
IDENTITY__ADMINEMAIL: "" IDENTITY__ADMINEMAIL: ""
## @param env.IDENTITY__ADMINPASSWORD The initial admin email address.
##
IDENTITY__ADMINPASSWORD: "" IDENTITY__ADMINPASSWORD: ""
IDENTITY__ADMINRECREATE: false # Recreate the admin if it does not exist or the password does not match ## @param env.IDENTITY__ADMINRECREATE Recreate the admin if it does not exist or the password does not match
IDENTITY__ALLOWPASSWORDAUTH: "true" # Enable password auth. Set this to false if you want to disable local login, leaving only 3rd party login options ##
IDENTITY__LOCKAUTOMATICALLY: "false" # Lock new users automatically, the administrator must unlock them IDENTITY__ADMINRECREATE: false #
IDENTITY__SHOWPII: true # Set to true to show PII (Personally Identifiable Information) in the logs ## @param env.IDENTITY__ALLOWPASSWORDAUTH Enable password auth. Set this to false if you want to disable local login, leaving only 3rd party login options
IDENTITY__PRIVACYURL: "https://squidex.io/privacy" # The url to you privacy statements, if you host squidex by yourself ##
IDENTITY__ALLOWPASSWORDAUTH: "true"
## @param env.IDENTITY__LOCKAUTOMATICALLY Lock new users automatically, the administrator must unlock them.
##
IDENTITY__LOCKAUTOMATICALLY: "false"
## @param env.IDENTITY__PRIVACYURL The url to you privacy statements.
##
IDENTITY__PRIVACYURL: "https://squidex.io/privacy"
## @param env.IDENTITY__SHOWPII Set to true to show PII (Personally Identifiable Information) in the logs
##
IDENTITY__SHOWPII: true #
# Settings for Google auth (keep empty to disable) ## @param env.IDENTITY__GOOGLECLIENT Google client ID (keep empty to disable Google authentication).
##
IDENTITY__GOOGLECLIENT: null IDENTITY__GOOGLECLIENT: null
## @param env.IDENTITY__GOOGLESECRET Google client secret (keep empty to disable Google authentication).
##
IDENTITY__GOOGLESECRET: null IDENTITY__GOOGLESECRET: null
# Settings for Github auth (keep empty to disable) ## @param env.IDENTITY__GITHUBCLIENT Github client ID (keep empty to disable Github authentication).
##
IDENTITY__GITHUBCLIENT: null IDENTITY__GITHUBCLIENT: null
## @param env.IDENTITY__GITHUBSECRET Github client secret (keep empty to disable Github authentication).
##
IDENTITY__GITHUBSECRET: null IDENTITY__GITHUBSECRET: null
# Settings for Microsoft auth (keep empty to disable) ## @param env.IDENTITY__MICROSOFTCLIENT Microsoft client ID (keep empty to disable Microsoft authentication).
# NOTE: Tennant is optional for using a specific AzureAD tenant ##
IDENTITY__MICROSOFTCLIENT: null IDENTITY__MICROSOFTCLIENT: null
## @param env.IDENTITY__MICROSOFTSECRET Microsoft client secret (keep empty to disable Microsoft authentication).
##
IDENTITY__MICROSOFTSECRET: null IDENTITY__MICROSOFTSECRET: null
## @param env.IDENTITY__MICROSOFTTENANT Optional tenant name for Azure AD.
##
IDENTITY__MICROSOFTTENANT: null IDENTITY__MICROSOFTTENANT: null
# Settings for your custom oidc server # Settings for your custom oidc server
IDENTITY__OIDCNAME: null ## @param env.IDENTITY__OIDCAUTHORITY The URL to the custom OIDC authority.
##
IDENTITY__OIDCAUTHORITY: null IDENTITY__OIDCAUTHORITY: null
## @param env.IDENTITY__OIDCCLIENT The client ID to the authority.
##
IDENTITY__OIDCCLIENT: null IDENTITY__OIDCCLIENT: null
## @param env.IDENTITY__OIDCSECRET The client secret to the authority.
##
IDENTITY__OIDCSECRET: null IDENTITY__OIDCSECRET: null
## @param env.IDENTITY__OIDCGETCLAIMSFROMUSERINFOENDPOINT True to get claims from the user endpoint.
##
IDENTITY__OIDCGETCLAIMSFROMUSERINFOENDPOINT: false
## @param env.IDENTITY__OIDCMETADATAADDRESS A custom address for OIDC metadata.
##
IDENTITY__OIDCMETADATAADDRESS: null IDENTITY__OIDCMETADATAADDRESS: null
## @param env.IDENTITY__OIDCNAME The name of the OIDC integration or server. Used in the UI
##
IDENTITY__OIDCNAME: null
## @param env.IDENTITY__OIDCRESPONSETYPE The type of the response. id_token or code.
##
IDENTITY__OIDCRESPONSETYPE: null
## @param env.IDENTITY__OIDCSCOPES The scopes.
##
IDENTITY__OIDCSCOPES: [] # ["email"] IDENTITY__OIDCSCOPES: [] # ["email"]
IDENTITY__OIDCRESPONSETYPE: null # id_token or code ## @param env.IDENTITY__OIDCSINGOUTREDIRECTURL The redirect URL for the sign out.
IDENTITY__OIDCGETCLAIMSFROMUSERINFOENDPOINT: false ##
IDENTITY__OIDCSINGOUTREDIRECTURL: null IDENTITY__OIDCSINGOUTREDIRECTURL: null
## @skip env.LETSENCRYPT_HOST
LETSENCRYPT_HOST: null LETSENCRYPT_HOST: null
## @skip env.LETSENCRYPT_EMAIL
LETSENCRYPT_EMAIL: null LETSENCRYPT_EMAIL: null
# LOGGING SETTINGS ## @param env.LOGGING__APPLICATIONINSIGHTS__ENABLED Enable monitoring via application insights.
LOGGING__LEVEL: INFORMATION # Trace, Debug, Information, Warning, Error, Fatal ##
LOGGING__HUMAN: false # Setting the flag to true, enables well formatteds json logs LOGGING__APPLICATIONINSIGHTS__ENABLED: falsen
LOGGING__COLORS: false # Set to true, to use colors ## @param env.LOGGING__APPLICATIONINSIGHTS__CONNECTIONSTRING The connection string to application insights.
LOGGING__LOGREQUESTS: true # Set to false to disable logging of http requests ##
LOGGING__STOREENABLED: true # False to disable the log store
LOGGING__STORERETENTIONINDAYS: 90 # The number of days request log items will be stored
LOGGING__STACKDRIVER__ENABLED: false # True, to enable stackdriver integration
LOGGING__OTLP__ENABLED: false # True, to enable OpenTelemetry Protocol integration
LOGGING__OLTP__ENDPOINT: null # The endpoint to the agent
LOGGING__APPLICATIONINSIGHTS__ENABLED: false # True, to enable application insights integraon
LOGGING__APPLICATIONINSIGHTS__CONNECTIONSTRING: null # "instrumentationkey=keyvalue" LOGGING__APPLICATIONINSIGHTS__CONNECTIONSTRING: null # "instrumentationkey=keyvalue"
## @param env.LOGGING__COLORS Use colors in the console output.
##
LOGGING__COLORS: false
## @param env.LOGGING__HUMAN Setting the flag to true, enables well formatteds json logs.
##
LOGGING__HUMAN: false
## @param env.LOGGING__LEVEL Trace, Debug, Information, Warning, Error, Fatal
##
LOGGING__LEVEL: INFORMATION
## @param env.LOGGING__LOGREQUESTS Set to false to disable logging of http requests.
##
LOGGING__LOGREQUESTS: true
## @param env.LOGGING__OTLP__ENABLED True, to enable OpenTelemetry Protocol integration
##
LOGGING__OTLP__ENABLED: false
## @param env.LOGGING__OLTP__ENDPOINT The endpoint to the agent
##
LOGGING__OLTP__ENDPOINT: null
## @param env.LOGGING__STACKDRIVER__ENABLED True, to enable stackdriver integration.
##
LOGGING__STACKDRIVER__ENABLED: false
## @param env.LOGGING__STOREENABLED False to disable the log store for HTTP requests.
##
LOGGING__STOREENABLED: true
## @param env.LOGGING__STORERETENTIONINDAYS The number of days request log items will be stored
##
LOGGING__STORERETENTIONINDAYS: 90
# Define the clustering type ## @param env.ORLEANS__CLUSTERING Enables clustering via Orleans. Set to Development to turn it off.
ORLEANS__CLUSTERING: MongoDB # SUPPORTED: MongoDB, Development ##
ORLEANS__KUBERNETES: true # Tell Orleans it is running in kubernetes ORLEANS__CLUSTERING: MongoDB
## @skip env.ORLEANS__KUBERNETES
ORLEANS__KUBERNETES: true # Tell Orleans it is running in kubernetes.
# Define the type of the read store ## @skip env.STORE__TYPE
STORE__TYPE: MongoDb STORE__TYPE: MongoDb
## @param env.STORE__MONGODB__DATABASE The name of the main database.
##
STORE__MONGODB__DATABASE: "Squidex" STORE__MONGODB__DATABASE: "Squidex"
## @param env.STORE__MONGODB__CONTENTDATABASE The name of the database for content items.
##
STORE__MONGODB__CONTENTDATABASE: "SquidexContent" STORE__MONGODB__CONTENTDATABASE: "SquidexContent"
# Assets ## @skip env.ASSETSTORE__TYPE
ASSETSTORE__TYPE: MongoDb ASSETSTORE__TYPE: MongoDb
URLS__BASEURL: https://squidex.local/ # Set the base url of your application, to generate correct urls in background process ## @param env.URLS__BASEURL Set the base url of your application, to generate correct urls in background process.
URLS__ENFORCEHTTPS: false # Set it to true to redirect the user from http to https permanently URLS__BASEURL: https://squidex.local/ #
## @param env.URLS__ENFORCEHTTPS Set it to true to redirect the user from http to https permanently
URLS__ENFORCEHTTPS: false
## @section MongoDB parameters
mongodb-replicaset: mongodb-replicaset:
## @param mongodb-replicaset.enabled Uses the custom mongoDB instance.
##
enabled: true enabled: true
## @param mongodb-replicaset.replicas The number of replicas.
##
replicas: 3 replicas: 3
## @skip mongodb-replicaset.auth
auth: auth:
enabled: false enabled: false
existingKeySecret: "" existingKeySecret: ""
@ -125,7 +243,10 @@ mongodb-replicaset:
# key: keycontent # key: keycontent
persistentVolume: persistentVolume:
## @param mongodb-replicaset.persistentVolume.enabled If true, persistent volume claims are created.
##
enabled: true enabled: true
## @param mongodb-replicaset.persistentVolume.storageClass Persistent volume storage class.
## mongodb-replicaset data Persistent Volume Storage Class ## mongodb-replicaset data Persistent Volume Storage Class
## If defined, storageClassName: <storageClass> ## If defined, storageClassName: <storageClass>
## If set to "-", storageClassName: "", which disables dynamic provisioning ## If set to "-", storageClassName: "", which disables dynamic provisioning
@ -133,9 +254,15 @@ mongodb-replicaset:
## set, choosing the default provisioner. (gp2 on AWS, standard on ## set, choosing the default provisioner. (gp2 on AWS, standard on
## GKE, AWS & OpenStack) ## GKE, AWS & OpenStack)
## ##
##
storageClass: "" storageClass: ""
## @param mongodb-replicaset.persistentVolume.accessModes Persistent volume access modes.
##
accessModes: accessModes:
- ReadWriteOnce - ReadWriteOnce
## @param mongodb-replicaset.persistentVolume.size Persistent volume size.
##
size: 10Gi size: 10Gi
## @skip mongodb-replicaset.nodeSelector
nodeSelector: {} nodeSelector: {}

122
helm/squidex7/README.md
View File

@ -0,0 +1,122 @@
# Squidex Helm Deployment for version 7 and above
Do not use this Helm chart for version 6.X and lower.
## TL;DR
```bash
$ helm install my-release squidex7
```
## Introduction
This chart installs the following deployments:
* Squidex
* MongoDB
* Ingress
## Prerequisites
- Kubernetes 1.19+
- Helm 3.2.0+
- PV provisioner support in the underlying infrastructure
## Installing the Chart
To install the chart with the release name `my-release`:
```bash
$ helm install my-release squidex7
```
> **Tip**: List all releases using `helm list`
## Uninstalling the Chart
To uninstall/delete the `my-release` deployment:
```bash
$ helm delete my-release
```
The command removes all the Kubernetes components associated with the chart and deletes the release.
## Parameters
### Global parameters
| Name | Description | Value |
| ------------------------- | ------------------------------ | ----------------- |
| `service.type` | Kubernetes Service type | `ClusterIP` |
| `service.port` | Kubernetes Service port | `80` |
| `deployment.replicaCount` | Number of instances. | `1` |
| `image.repository` | Squidex image registry | `squidex/squidex` |
| `image.tag` | Squidex image tag | `7.0.2` |
| `image.pullPolicy` | Squidex image pull policy | `IfNotPresent` |
| `ingress.enabled` | True to deploy an ingress | `true` |
| `ingress.hostName` | The host name for the ingress. | `squidex.local` |
### Squidex parameters
| Name | Description | Value |
| ---------------------------------------------------- | ---------------------------------------------------------------------------------------------------------------- | ---------------------------- |
| `env.EVENTSTORE__MONGODB__DATABASE` | The name of the database for events | `Squidex` |
| `env.IDENTITY__ADMINEMAIL` | The initial admin email address. | `""` |
| `env.IDENTITY__ADMINPASSWORD` | The initial admin email address. | `""` |
| `env.IDENTITY__ADMINRECREATE` | Recreate the admin if it does not exist or the password does not match | `false` |
| `env.IDENTITY__ALLOWPASSWORDAUTH` | Enable password auth. Set this to false if you want to disable local login, leaving only 3rd party login options | `true` |
| `env.IDENTITY__LOCKAUTOMATICALLY` | Lock new users automatically, the administrator must unlock them. | `false` |
| `env.IDENTITY__PRIVACYURL` | The url to you privacy statements. | `https://squidex.io/privacy` |
| `env.IDENTITY__SHOWPII` | Set to true to show PII (Personally Identifiable Information) in the logs | `true` |
| `env.IDENTITY__GOOGLECLIENT` | Google client ID (keep empty to disable Google authentication). | `nil` |
| `env.IDENTITY__GOOGLESECRET` | Google client secret (keep empty to disable Google authentication). | `nil` |
| `env.IDENTITY__GITHUBCLIENT` | Github client ID (keep empty to disable Github authentication). | `nil` |
| `env.IDENTITY__GITHUBSECRET` | Github client secret (keep empty to disable Github authentication). | `nil` |
| `env.IDENTITY__MICROSOFTCLIENT` | Microsoft client ID (keep empty to disable Microsoft authentication). | `nil` |
| `env.IDENTITY__MICROSOFTSECRET` | Microsoft client secret (keep empty to disable Microsoft authentication). | `nil` |
| `env.IDENTITY__MICROSOFTTENANT` | Optional tenant name for Azure AD. | `nil` |
| `env.IDENTITY__OIDCAUTHORITY` | The URL to the custom OIDC authority. | `nil` |
| `env.IDENTITY__OIDCCLIENT` | The client ID to the authority. | `nil` |
| `env.IDENTITY__OIDCSECRET` | The client secret to the authority. | `nil` |
| `env.IDENTITY__OIDCGETCLAIMSFROMUSERINFOENDPOINT` | True to get claims from the user endpoint. | `false` |
| `env.IDENTITY__OIDCMETADATAADDRESS` | A custom address for OIDC metadata. | `nil` |
| `env.IDENTITY__OIDCNAME` | The name of the OIDC integration or server. Used in the UI | `nil` |
| `env.IDENTITY__OIDCRESPONSETYPE` | The type of the response. id_token or code. | `nil` |
| `env.IDENTITY__OIDCSCOPES` | The scopes. | `[]` |
| `env.IDENTITY__OIDCSINGOUTREDIRECTURL` | The redirect URL for the sign out. | `nil` |
| `env.LOGGING__APPLICATIONINSIGHTS__ENABLED` | Enable monitoring via application insights. | `falsen` |
| `env.LOGGING__APPLICATIONINSIGHTS__CONNECTIONSTRING` | The connection string to application insights. | `nil` |
| `env.LOGGING__COLORS` | Use colors in the console output. | `false` |
| `env.LOGGING__HUMAN` | Setting the flag to true, enables well formatteds json logs. | `false` |
| `env.LOGGING__LEVEL` | Trace, Debug, Information, Warning, Error, Fatal | `INFORMATION` |
| `env.LOGGING__LOGREQUESTS` | Set to false to disable logging of http requests. | `true` |
| `env.LOGGING__OTLP__ENABLED` | True, to enable OpenTelemetry Protocol integration | `false` |
| `env.LOGGING__OLTP__ENDPOINT` | The endpoint to the agent | `nil` |
| `env.LOGGING__STACKDRIVER__ENABLED` | True, to enable stackdriver integration. | `false` |
| `env.LOGGING__STOREENABLED` | False to disable the log store for HTTP requests. | `true` |
| `env.LOGGING__STORERETENTIONINDAYS` | The number of days request log items will be stored | `90` |
| `env.STORE__MONGODB__DATABASE` | The name of the main database. | `Squidex` |
| `env.STORE__MONGODB__CONTENTDATABASE` | The name of the database for content items. | `SquidexContent` |
| `env.URLS__BASEURL` | Set the base url of your application, to generate correct urls in background process. | `https://squidex.local/` |
| `env.URLS__ENFORCEHTTPS` | Set it to true to redirect the user from http to https permanently | `false` |
### MongoDB parameters
| Name | Description | Value |
| -------------------------------------------------- | ---------------------------------------------- | ------------------- |
| `mongodb-replicaset.enabled` | Uses the custom mongoDB instance. | `true` |
| `mongodb-replicaset.replicas` | The number of replicas. | `3` |
| `mongodb-replicaset.persistentVolume.enabled` | If true, persistent volume claims are created. | `true` |
| `mongodb-replicaset.persistentVolume.storageClass` | Persistent volume storage class. | `""` |
| `mongodb-replicaset.persistentVolume.accessModes` | Persistent volume access modes. | `["ReadWriteOnce"]` |
| `mongodb-replicaset.persistentVolume.size` | Persistent volume size. | `10Gi` |
Parameters are generated with: https://github.com/bitnami-labs/readme-generator-for-helm#configuration-file
## Support
Use the support forum to get help: https://support.squidex.io

185
helm/squidex7/values.yaml
View File

@ -1,29 +1,57 @@
## @section Global parameters
## @skip labels
labels: labels:
service: service:
## @param service.type Kubernetes Service type
##
type: ClusterIP type: ClusterIP
## @param service.port Kubernetes Service port
##
port: 80 port: 80
deployment: deployment:
## @param deployment.replicaCount Number of instances.
##
replicaCount: 1 replicaCount: 1
selectors: selectors:
## @skip selectors.component
##
component: squidex component: squidex
## @skip selectors.partOf
##
partOf: "" partOf: ""
## @skip selectors.version
##
version: "" version: ""
image: image:
## @param image.repository Squidex image registry
##
repository: squidex/squidex repository: squidex/squidex
## @param image.tag Squidex image tag
##
tag: "7.0.2" tag: "7.0.2"
## @param image.pullPolicy Squidex image pull policy
##
pullPolicy: IfNotPresent pullPolicy: IfNotPresent
## @skip resources
resources: { } resources: { }
## @skip nodeSelector
nodeSelector: { } nodeSelector: { }
## @skip tolerations
tolerations: [ ] tolerations: [ ]
## @skip affinity
affinity: { } affinity: { }
## @skip clusterSuffix
clusterSuffix: cluster.local clusterSuffix: cluster.local
## @skip auth
auth: auth:
## ##
ingress: ingress:
## @param ingress.enabled True to deploy an ingress
## If true, Squidex Ingress will be created. ## If true, Squidex Ingress will be created.
## ##
enabled: true enabled: true
@ -32,87 +60,171 @@ ingress:
# annotations: # annotations:
# kubernetes.io/ingress.class: nginx # kubernetes.io/ingress.class: nginx
# kubernetes.io/tls-acme: "true" # kubernetes.io/tls-acme: "true"
## @param ingress.hostName The host name for the ingress.
##
hostName: squidex.local hostName: squidex.local
## @skip ingress.tls
tls: [ ] tls: [ ]
# - secretName: chart-example-tls # - secretName: chart-example-tls
# hosts: # hosts:
# - chart-example.local # - chart-example.local
## @section Squidex parameters
env: env:
# Define the type of the event store # Define the type of the event store
EVENTSTORE__TYPE: MongoDb ## @param env.EVENTSTORE__MONGODB__DATABASE The name of the database for events
EVENTSTORE__MONGODB__DATABASE: "Squidex" EVENTSTORE__MONGODB__DATABASE: "Squidex"
## @skip env.EVENTSTORE__TYPE
## Define the type of the event store
##
EVENTSTORE__TYPE: MongoDb
# CREATE LOCAL ADMIN USER # CREATE LOCAL ADMIN USER
## @param env.IDENTITY__ADMINEMAIL The initial admin email address.
##
IDENTITY__ADMINEMAIL: "" IDENTITY__ADMINEMAIL: ""
## @param env.IDENTITY__ADMINPASSWORD The initial admin email address.
##
IDENTITY__ADMINPASSWORD: "" IDENTITY__ADMINPASSWORD: ""
IDENTITY__ADMINRECREATE: false # Recreate the admin if it does not exist or the password does not match ## @param env.IDENTITY__ADMINRECREATE Recreate the admin if it does not exist or the password does not match
IDENTITY__ALLOWPASSWORDAUTH: "true" # Enable password auth. Set this to false if you want to disable local login, leaving only 3rd party login options ##
IDENTITY__LOCKAUTOMATICALLY: "false" # Lock new users automatically, the administrator must unlock them IDENTITY__ADMINRECREATE: false #
IDENTITY__SHOWPII: true # Set to true to show PII (Personally Identifiable Information) in the logs ## @param env.IDENTITY__ALLOWPASSWORDAUTH Enable password auth. Set this to false if you want to disable local login, leaving only 3rd party login options
IDENTITY__PRIVACYURL: "https://squidex.io/privacy" # The url to you privacy statements, if you host squidex by yourself ##
IDENTITY__ALLOWPASSWORDAUTH: "true"
## @param env.IDENTITY__LOCKAUTOMATICALLY Lock new users automatically, the administrator must unlock them.
##
IDENTITY__LOCKAUTOMATICALLY: "false"
## @param env.IDENTITY__PRIVACYURL The url to you privacy statements.
##
IDENTITY__PRIVACYURL: "https://squidex.io/privacy"
## @param env.IDENTITY__SHOWPII Set to true to show PII (Personally Identifiable Information) in the logs
##
IDENTITY__SHOWPII: true #
# Settings for Google auth (keep empty to disable) ## @param env.IDENTITY__GOOGLECLIENT Google client ID (keep empty to disable Google authentication).
##
IDENTITY__GOOGLECLIENT: null IDENTITY__GOOGLECLIENT: null
## @param env.IDENTITY__GOOGLESECRET Google client secret (keep empty to disable Google authentication).
##
IDENTITY__GOOGLESECRET: null IDENTITY__GOOGLESECRET: null
# Settings for Github auth (keep empty to disable) ## @param env.IDENTITY__GITHUBCLIENT Github client ID (keep empty to disable Github authentication).
##
IDENTITY__GITHUBCLIENT: null IDENTITY__GITHUBCLIENT: null
## @param env.IDENTITY__GITHUBSECRET Github client secret (keep empty to disable Github authentication).
##
IDENTITY__GITHUBSECRET: null IDENTITY__GITHUBSECRET: null
# Settings for Microsoft auth (keep empty to disable) ## @param env.IDENTITY__MICROSOFTCLIENT Microsoft client ID (keep empty to disable Microsoft authentication).
# NOTE: Tennant is optional for using a specific AzureAD tenant ##
IDENTITY__MICROSOFTCLIENT: null IDENTITY__MICROSOFTCLIENT: null
## @param env.IDENTITY__MICROSOFTSECRET Microsoft client secret (keep empty to disable Microsoft authentication).
##
IDENTITY__MICROSOFTSECRET: null IDENTITY__MICROSOFTSECRET: null
## @param env.IDENTITY__MICROSOFTTENANT Optional tenant name for Azure AD.
##
IDENTITY__MICROSOFTTENANT: null IDENTITY__MICROSOFTTENANT: null
# Settings for your custom oidc server # Settings for your custom oidc server
IDENTITY__OIDCNAME: null ## @param env.IDENTITY__OIDCAUTHORITY The URL to the custom OIDC authority.
##
IDENTITY__OIDCAUTHORITY: null IDENTITY__OIDCAUTHORITY: null
## @param env.IDENTITY__OIDCCLIENT The client ID to the authority.
##
IDENTITY__OIDCCLIENT: null IDENTITY__OIDCCLIENT: null
## @param env.IDENTITY__OIDCSECRET The client secret to the authority.
##
IDENTITY__OIDCSECRET: null IDENTITY__OIDCSECRET: null
## @param env.IDENTITY__OIDCGETCLAIMSFROMUSERINFOENDPOINT True to get claims from the user endpoint.
##
IDENTITY__OIDCGETCLAIMSFROMUSERINFOENDPOINT: false
## @param env.IDENTITY__OIDCMETADATAADDRESS A custom address for OIDC metadata.
##
IDENTITY__OIDCMETADATAADDRESS: null IDENTITY__OIDCMETADATAADDRESS: null
## @param env.IDENTITY__OIDCNAME The name of the OIDC integration or server. Used in the UI
##
IDENTITY__OIDCNAME: null
## @param env.IDENTITY__OIDCRESPONSETYPE The type of the response. id_token or code.
##
IDENTITY__OIDCRESPONSETYPE: null
## @param env.IDENTITY__OIDCSCOPES The scopes.
##
IDENTITY__OIDCSCOPES: [] # ["email"] IDENTITY__OIDCSCOPES: [] # ["email"]
IDENTITY__OIDCRESPONSETYPE: null # id_token or code ## @param env.IDENTITY__OIDCSINGOUTREDIRECTURL The redirect URL for the sign out.
IDENTITY__OIDCGETCLAIMSFROMUSERINFOENDPOINT: false ##
IDENTITY__OIDCSINGOUTREDIRECTURL: null IDENTITY__OIDCSINGOUTREDIRECTURL: null
## @skip env.LETSENCRYPT_HOST
LETSENCRYPT_HOST: null LETSENCRYPT_HOST: null
## @skip env.LETSENCRYPT_EMAIL
LETSENCRYPT_EMAIL: null LETSENCRYPT_EMAIL: null
# LOGGING SETTINGS ## @param env.LOGGING__APPLICATIONINSIGHTS__ENABLED Enable monitoring via application insights.
LOGGING__LEVEL: INFORMATION # Trace, Debug, Information, Warning, Error, Fatal ##
LOGGING__HUMAN: false # Setting the flag to true, enables well formatteds json logs LOGGING__APPLICATIONINSIGHTS__ENABLED: falsen
LOGGING__COLORS: false # Set to true, to use colors ## @param env.LOGGING__APPLICATIONINSIGHTS__CONNECTIONSTRING The connection string to application insights.
LOGGING__LOGREQUESTS: true # Set to false to disable logging of http requests ##
LOGGING__STOREENABLED: true # False to disable the log store
LOGGING__STORERETENTIONINDAYS: 90 # The number of days request log items will be stored
LOGGING__STACKDRIVER__ENABLED: false # True, to enable stackdriver integration
LOGGING__OTLP__ENABLED: false # True, to enable OpenTelemetry Protocol integration
LOGGING__OLTP__ENDPOINT: null # The endpoint to the agent
LOGGING__APPLICATIONINSIGHTS__ENABLED: false # True, to enable application insights integraon
LOGGING__APPLICATIONINSIGHTS__CONNECTIONSTRING: null # "instrumentationkey=keyvalue" LOGGING__APPLICATIONINSIGHTS__CONNECTIONSTRING: null # "instrumentationkey=keyvalue"
## @param env.LOGGING__COLORS Use colors in the console output.
##
LOGGING__COLORS: false
## @param env.LOGGING__HUMAN Setting the flag to true, enables well formatteds json logs.
##
LOGGING__HUMAN: false
## @param env.LOGGING__LEVEL Trace, Debug, Information, Warning, Error, Fatal
##
LOGGING__LEVEL: INFORMATION
## @param env.LOGGING__LOGREQUESTS Set to false to disable logging of http requests.
##
LOGGING__LOGREQUESTS: true
## @param env.LOGGING__OTLP__ENABLED True, to enable OpenTelemetry Protocol integration
##
LOGGING__OTLP__ENABLED: false
## @param env.LOGGING__OLTP__ENDPOINT The endpoint to the agent
##
LOGGING__OLTP__ENDPOINT: null
## @param env.LOGGING__STACKDRIVER__ENABLED True, to enable stackdriver integration.
##
LOGGING__STACKDRIVER__ENABLED: false
## @param env.LOGGING__STOREENABLED False to disable the log store for HTTP requests.
##
LOGGING__STOREENABLED: true
## @param env.LOGGING__STORERETENTIONINDAYS The number of days request log items will be stored
##
LOGGING__STORERETENTIONINDAYS: 90
# Define the clustering type ## @skip env.STORE__TYPE
ORLEANS__CLUSTERING: MongoDB # SUPPORTED: MongoDB, Development
ORLEANS__KUBERNETES: true # Tell Orleans it is running in kubernetes
# Define the type of the read store
STORE__TYPE: MongoDb STORE__TYPE: MongoDb
## @param env.STORE__MONGODB__DATABASE The name of the main database.
##
STORE__MONGODB__DATABASE: "Squidex" STORE__MONGODB__DATABASE: "Squidex"
## @param env.STORE__MONGODB__CONTENTDATABASE The name of the database for content items.
##
STORE__MONGODB__CONTENTDATABASE: "SquidexContent" STORE__MONGODB__CONTENTDATABASE: "SquidexContent"
# Assets ## @skip env.ASSETSTORE__TYPE
ASSETSTORE__TYPE: MongoDb ASSETSTORE__TYPE: MongoDb
URLS__BASEURL: https://squidex.local/ # Set the base url of your application, to generate correct urls in background process ## @param env.URLS__BASEURL Set the base url of your application, to generate correct urls in background process.
URLS__ENFORCEHTTPS: false # Set it to true to redirect the user from http to https permanently URLS__BASEURL: https://squidex.local/ #
## @param env.URLS__ENFORCEHTTPS Set it to true to redirect the user from http to https permanently
URLS__ENFORCEHTTPS: false
## @section MongoDB parameters
mongodb-replicaset: mongodb-replicaset:
## @param mongodb-replicaset.enabled Uses the custom mongoDB instance.
##
enabled: true enabled: true
## @param mongodb-replicaset.replicas The number of replicas.
##
replicas: 3 replicas: 3
## @skip mongodb-replicaset.auth
auth: auth:
enabled: false enabled: false
existingKeySecret: "" existingKeySecret: ""
@ -125,7 +237,10 @@ mongodb-replicaset:
# key: keycontent # key: keycontent
persistentVolume: persistentVolume:
## @param mongodb-replicaset.persistentVolume.enabled If true, persistent volume claims are created.
##
enabled: true enabled: true
## @param mongodb-replicaset.persistentVolume.storageClass Persistent volume storage class.
## mongodb-replicaset data Persistent Volume Storage Class ## mongodb-replicaset data Persistent Volume Storage Class
## If defined, storageClassName: <storageClass> ## If defined, storageClassName: <storageClass>
## If set to "-", storageClassName: "", which disables dynamic provisioning ## If set to "-", storageClassName: "", which disables dynamic provisioning
@ -133,9 +248,15 @@ mongodb-replicaset:
## set, choosing the default provisioner. (gp2 on AWS, standard on ## set, choosing the default provisioner. (gp2 on AWS, standard on
## GKE, AWS & OpenStack) ## GKE, AWS & OpenStack)
## ##
##
storageClass: "" storageClass: ""
## @param mongodb-replicaset.persistentVolume.accessModes Persistent volume access modes.
##
accessModes: accessModes:
- ReadWriteOnce - ReadWriteOnce
## @param mongodb-replicaset.persistentVolume.size Persistent volume size.
##
size: 10Gi size: 10Gi
## @skip mongodb-replicaset.nodeSelector
nodeSelector: {} nodeSelector: {}

Write Preview
Loading…
Cancel
Save