diff --git a/charts/incubator/wallabag/.helmignore b/charts/incubator/wallabag/.helmignore new file mode 100644 index 0000000000000..77ca5567b26d6 --- /dev/null +++ b/charts/incubator/wallabag/.helmignore @@ -0,0 +1,30 @@ +# Patterns to ignore when building packages. +# This supports shell glob matching, relative path matching, and +# negation (prefixed with !). Only one pattern per line. +.DS_Store +# Common VCS dirs +.git/ +.gitignore +.bzr/ +.bzrignore +.hg/ +.hgignore +.svn/ +# Common backup files +*.swp +*.bak +*.tmp +*~ +# Various IDEs +.project +.idea/ +*.tmproj +.vscode/ +# OWNERS file for Kubernetes +OWNERS +# helm-docs templates +*.gotmpl +# docs folder +/docs +# icon +icon.png diff --git a/charts/incubator/wallabag/Chart.yaml b/charts/incubator/wallabag/Chart.yaml new file mode 100644 index 0000000000000..da8d7c214d33a --- /dev/null +++ b/charts/incubator/wallabag/Chart.yaml @@ -0,0 +1,37 @@ +apiVersion: v2 +appVersion: "0.20.2026" +dependencies: + - name: common + repository: https://library-charts.truecharts.org + version: 10.6.4 + - condition: postgresql.enabled + name: postgresql + repository: https://charts.truecharts.org/ + version: 8.0.88 + - condition: redis.enabled + name: redis + repository: https://charts.truecharts.org + version: 3.0.85 +deprecated: false +description: Wallabag is a self hosted application for saving web pages. +home: https://truecharts.org/docs/charts/stable/jackett +icon: https://truecharts.org/img/hotlink-ok/chart-icons/jackett.png +keywords: + - bookmark + - wallabag +kubeVersion: ">=1.16.0-0" +maintainers: + - email: info@truecharts.org + name: TrueCharts + url: https://truecharts.org +name: wallabag +sources: + - https://github.com/truecharts/charts/tree/master/charts/stable/jackett + - https://hub.docker.com/r/wallabag/wallabag/ +type: application +version: 0.0.1 +annotations: + truecharts.org/catagories: | + - web + truecharts.org/SCALE-support: "true" + truecharts.org/grade: U diff --git a/charts/incubator/wallabag/README.md b/charts/incubator/wallabag/README.md new file mode 100644 index 0000000000000..e69de29bb2d1d diff --git a/charts/incubator/wallabag/docs/credentials.md b/charts/incubator/wallabag/docs/credentials.md new file mode 100644 index 0000000000000..aa4bc4a9f94a6 --- /dev/null +++ b/charts/incubator/wallabag/docs/credentials.md @@ -0,0 +1,4 @@ +# Default Credentials + +- Username: `wallabag` +- Password: `wallabag` diff --git a/charts/incubator/wallabag/icon.png b/charts/incubator/wallabag/icon.png new file mode 100644 index 0000000000000..2bdc03b6cfc2c Binary files /dev/null and b/charts/incubator/wallabag/icon.png differ diff --git a/charts/incubator/wallabag/questions.yaml b/charts/incubator/wallabag/questions.yaml new file mode 100644 index 0000000000000..3c84f8ae36f55 --- /dev/null +++ b/charts/incubator/wallabag/questions.yaml @@ -0,0 +1,221 @@ +# Include{groups} +portals: + open: +# Include{portalLink} +questions: +# Include{global} +# Include{controller} +# Include{controllerDeployment} +# Include{replicas} +# Include{replica1} +# Include{strategy} +# Include{recreate} +# Include{controllerExpert} +# Include{controllerExpertExtraArgs} + - variable: wallabag + group: Container Configuration + label: Wallabag Configuration + schema: + additional_attrs: true + type: dict + attrs: + - variable: general + label: General Configuration + schema: + additional_attrs: true + type: dict + attrs: + - variable: app_url + label: App URL + description: App URL in format http(s)://IPorFQDN:(port) + schema: + type: string + required: true + default: "" + - variable: server_name + label: Server Name + description: Specifies a user-friendly name for the 2FA issuer + schema: + type: string + default: Wallabag + - variable: locale + label: Locale + schema: + type: string + default: en + - variable: two_factor + label: Two Factor Configuration + schema: + additional_attrs: true + type: dict + attrs: + - variable: enabled + label: Enable 2FA + description: Enable or disable two-factor authentication + schema: + type: boolean + default: true + - variable: from + label: From + description: The address wallabag uses for two-factor emails + schema: + type: string + default: "" + - variable: fosuser + label: FOSUser Configuration + schema: + additional_attrs: true + type: dict + attrs: + - variable: registration + label: Registration + description: Enable or disable public user registration + schema: + type: boolean + default: true + - variable: confirmation + label: Confirmation + description: Enable or disable registration confirmation + schema: + type: boolean + default: true + - variable: mail + label: Mail Configuration + schema: + additional_attrs: true + type: dict + attrs: + - variable: host + label: Mail Host + description: SMTP Host + schema: + type: string + default: "" + - variable: user + label: Mail User + description: SMTP User + schema: + type: string + default: "" + - variable: pass + label: Mail Pass + description: SMTP Pass + schema: + type: string + private: true + default: "" + - variable: from + label: From + description: The address wallabag uses for outgoing emails + schema: + type: string + default: "" +# Include{containerConfig} +# Include{serviceRoot} + - variable: main + label: Main Service + description: The Primary service on which the healthcheck runs, often the webUI + schema: + additional_attrs: true + type: dict + attrs: +# Include{serviceSelectorLoadBalancer} +# Include{serviceSelectorExtras} + - variable: main + label: Main Service Port Configuration + schema: + additional_attrs: true + type: dict + attrs: + - variable: port + label: Port + description: This port exposes the container port on the service + schema: + type: int + default: 10348 + required: true +# Include{advancedPortHTTP} + - variable: targetPort + label: Target Port + description: The internal(!) port on the container the Application runs on + schema: + type: int + default: 80 +# Include{serviceExpertRoot} + default: false +# Include{serviceExpert} +# Include{serviceList} +# Include{persistenceRoot} + - variable: images + label: App Images Storage + description: Stores the Application Images. + schema: + additional_attrs: true + type: dict + attrs: +# Include{persistenceBasic} +# Include{persistenceAdvanced} +# Include{persistenceList} +# Include{ingressRoot} + - variable: main + label: Main Ingress + schema: + additional_attrs: true + type: dict + attrs: +# Include{ingressDefault} +# Include{ingressTLS} +# Include{ingressTraefik} +# Include{ingressExpert} +# Include{ingressList} +# Include{security} +# Include{securityContextAdvancedRoot} + - variable: privileged + label: Privileged mode + schema: + type: boolean + default: false + - variable: readOnlyRootFilesystem + label: ReadOnly Root Filesystem + schema: + type: boolean + default: false + - variable: allowPrivilegeEscalation + label: Allow Privilege Escalation + schema: + type: boolean + default: false + - variable: runAsNonRoot + label: runAsNonRoot + schema: + type: boolean + default: false +# Include{securityContextAdvanced} +# Include{podSecurityContextRoot} + - variable: runAsUser + label: runAsUser + description: The UserID of the user running the application + schema: + type: int + default: 0 + - variable: runAsGroup + label: runAsGroup + description: The groupID this App of the user running the application + schema: + type: int + default: 0 + - variable: fsGroup + label: fsGroup + description: The group that should own ALL storage. + schema: + type: int + default: 568 +# Include{podSecurityContextAdvanced} +# Include{resources} +# Include{advanced} +# Include{addons} +# Include{codeserver} +# Include{promtail} +# Include{netshoot} +# Include{vpn} +# Include{documentation} diff --git a/charts/incubator/wallabag/templates/_config.tpl b/charts/incubator/wallabag/templates/_config.tpl new file mode 100644 index 0000000000000..67d6fcf7c83d8 --- /dev/null +++ b/charts/incubator/wallabag/templates/_config.tpl @@ -0,0 +1,48 @@ +{{/* Define the configmap */}} +{{- define "wallabag.config" -}} + +{{- $configName := printf "%s-config" (include "tc.common.names.fullname" .) }} + +--- + +apiVersion: v1 +kind: ConfigMap +metadata: + name: {{ $configName }} + labels: + {{- include "tc.common.labels" . | nindent 4 }} +data: + SYMFONY__ENV__DATABASE_DRIVER: pdo_pgsql + SYMFONY__ENV__DATABASE_HOST: {{ printf "%v-%v" .Release.Name "postgresql" }} + SYMFONY__ENV__DATABASE_PORT: "5432" + SYMFONY__ENV__DATABASE_NAME: {{ .Values.postgresql.postgresqlDatabase }} + SYMFONY__ENV__DATABASE_USER: {{ .Values.postgresql.postgresqlUsername }} + SYMFONY__ENV__REDIS_HOST: {{ printf "%v-%v" .Release.Name "redis" }} + SYMFONY__ENV__REDIS_PORT: "6379" + POPULATE_DATABASE: "False" + SYMFONY__ENV__LOCALE: + {{- with .Values.wallabag.general.locale }} + SYMFONY__ENV__LOCALE: {{ . }} + {{- end }} + {{- with .Values.wallabag.mail.host }} + SYMFONY__ENV__MAILER_HOST: {{ . }} + {{- end }} + {{- with .Values.wallabag.mail.user }} + SYMFONY__ENV__MAILER_USER: {{ . }} + {{- end }} + {{- with .Values.wallabag.mail.from }} + SYMFONY__ENV__FROM_EMAIL: {{ . }} + {{- end }} + SYMFONY__ENV__TWOFACTOR_AUTH: {{ .Values.wallabag.two_factor.enabled | quote }} + {{- with .Values.wallabag.two_factor.from }} + SYMFONY__ENV__TWOFACTOR_SENDER: {{ . }} + {{- end }} + SYMFONY__ENV__FOSUSER_REGISTRATION: {{ .Values.wallabag.fosuser.registration | quote }} + SYMFONY__ENV__FOSUSER_CONFIRMATION: {{ .Values.wallabag.fosuser.confirmation | quote }} + {{- with .Values.wallabag.general.app_url }} + SYMFONY__ENV__DOMAIN_NAME: {{ . }} + {{- end }} + {{- with .Values.wallabag.general.server_name }} + SYMFONY__ENV__SERVER_NAME: {{ . }} + {{- end }} +{{- end -}} diff --git a/charts/incubator/wallabag/templates/_secret.tpl b/charts/incubator/wallabag/templates/_secret.tpl new file mode 100644 index 0000000000000..e9630aeb6d63d --- /dev/null +++ b/charts/incubator/wallabag/templates/_secret.tpl @@ -0,0 +1,28 @@ +{{/* Define the secret */}} +{{- define "wallabag.secret" -}} + +{{- $secretName := printf "%s-secret" (include "tc.common.names.fullname" .) }} + +--- + +apiVersion: v1 +kind: Secret +type: Opaque +metadata: + name: {{ $secretName }} + labels: + {{- include "tc.common.labels" . | nindent 4 }} +data: + {{- with (lookup "v1" "Secret" .Release.Namespace $secretName) }} + SYMFONY__ENV__SECRET: {{ index .data "SYMFONY__ENV__SECRET" }} + {{- else }} + SYMFONY__ENV__SECRET: {{ randAlphaNum 32 | b64enc }} + {{- end }} + SYMFONY__ENV__DATABASE_PASSWORD: {{ .Values.postgresql.postgresqlPassword | trimAll "\"" | b64enc }} + {{- with .Values.wallabag.mail.pass }} + SYMFONY__ENV__MAILER_PASSWORD: {{ . | b64enc }} + {{- end }} + SYMFONY__ENV__REDIS_PASSWORD: {{ .Values.redis.redisPassword | trimAll "\"" | b64enc }} + + +{{- end }} diff --git a/charts/incubator/wallabag/templates/common.yaml b/charts/incubator/wallabag/templates/common.yaml new file mode 100644 index 0000000000000..81a185c1e9b85 --- /dev/null +++ b/charts/incubator/wallabag/templates/common.yaml @@ -0,0 +1,11 @@ +{{/* Make sure all variables are set properly */}} +{{- include "tc.common.loader.init" . }} + +{{/* Render config */}} +{{- include "wallabag.config" . }} + +{{/* Render secret */}} +{{- include "wallabag.secret" . }} + +{{/* Render the templates */}} +{{ include "tc.common.loader.apply" . }} diff --git a/charts/incubator/wallabag/values.yaml b/charts/incubator/wallabag/values.yaml new file mode 100644 index 0000000000000..54399ea9ebd74 --- /dev/null +++ b/charts/incubator/wallabag/values.yaml @@ -0,0 +1,72 @@ +image: + repository: tccr.io/truecharts/wallabag + pullPolicy: IfNotPresent + tag: v2.5.1@sha256:8876bbf9c7cfc922dcf2ecd08e6d13709941454259dcd8531bcef800158c90f4 + +podSecurityContext: + runAsGroup: 0 + runAsUser: 0 + +securityContext: + runAsNonRoot: false + readOnlyRootFilesystem: false + +wallabag: + general: + locale: en + app_url: http://localhost:80 + server_name: "Wallabag" + mail: + host: "" + user: "" + pass: "" + from: "" + two_factor: + enabled: true + from: "" + fosuser: + registration: true + confirmation: true + +envFrom: + - secretRef: + name: '{{ include "tc.common.names.fullname" . }}-secret' + - configMapRef: + name: '{{ include "tc.common.names.fullname" . }}-config' + +service: + main: + ports: + main: + port: 10348 + protocol: HTTP + targetPort: 80 + +probes: + liveness: + type: HTTP + path: / + readiness: + type: HTTP + path: / + startup: + type: HTTP + path: / + +persistence: + images: + enabled: true + mountPath: /var/www/wallabag/web/assets/images + +postgresql: + enabled: true + existingSecret: dbcreds + postgresqlUsername: wallabag + postgresqlDatabase: wallabag + +redis: + enabled: true + existingSecret: rediscreds + +portal: + enabled: true diff --git a/cspell.config.yaml b/cspell.config.yaml index 038bdda590afe..f60d498819f20 100644 --- a/cspell.config.yaml +++ b/cspell.config.yaml @@ -33,6 +33,7 @@ words: - clouddns - cloudflared - cloudflareddns + - codeserver - collabora - configfile - configfiles @@ -68,6 +69,7 @@ words: - Flemmarr - flushtables - forcegc + - fosuser - fullname - geoip - geoipupdate @@ -155,6 +157,7 @@ words: - nbclassic - neko - netdata + - netshoot - networkv - nextcloud - nobind @@ -180,6 +183,7 @@ words: - preconfigured - prefs - preload + - promtail - proto - proxyhttp - proxyhttps @@ -265,6 +269,7 @@ words: - vaultwarden - vdev - vm's + - Wallabag - watchyourlan - webbasecontrol - webpanel