Remove ArgoCD certificate and key files; add External Secrets Helm chart with Bitwarden SDK server integration, including configuration files, templates, and monitoring dashboard.
This commit is contained in:
@@ -0,0 +1,122 @@
|
||||
# Default values for bitwarden-sdk-server.
|
||||
# This is a YAML-formatted file.
|
||||
# Declare variables to be passed into your templates.
|
||||
|
||||
replicaCount: 1
|
||||
|
||||
image:
|
||||
repository: ghcr.io/external-secrets/bitwarden-sdk-server
|
||||
pullPolicy: IfNotPresent
|
||||
# Overrides the image tag whose default is the chart appVersion.
|
||||
tag: ""
|
||||
tls:
|
||||
enabled: true
|
||||
# Name of the secret that contains the TLS cert. Ignored when `image.tls.volumes` is set
|
||||
secretName: bitwarden-tls-certs
|
||||
# Use this to override the default volumes
|
||||
volumes: []
|
||||
# Use this to override the default volume mounts
|
||||
volumeMounts: []
|
||||
|
||||
imagePullSecrets: []
|
||||
nameOverride: "bitwarden-sdk-server"
|
||||
fullnameOverride: "bitwarden-sdk-server"
|
||||
namespaceOverride: ""
|
||||
|
||||
# Use this to set Environment Variables e.g. HTTP_PROXY, HTTPS_PROXY
|
||||
extraEnv: {}
|
||||
# - name: HTTP_PROXY
|
||||
# value: "http://example.com:8080/"
|
||||
|
||||
# Additional labels to add to all chart resources
|
||||
commonLabels: {}
|
||||
|
||||
serviceAccount:
|
||||
# Specifies whether a service account should be created
|
||||
create: true
|
||||
# Labels to add to the service account
|
||||
labels: {}
|
||||
# Annotations to add to the service account
|
||||
annotations: {}
|
||||
# The name of the service account to use.
|
||||
# If not set and create is true, a name is generated using the fullname template
|
||||
name: ""
|
||||
|
||||
podDnsPolicy: ""
|
||||
|
||||
podDnsConfig: {}
|
||||
# nameservers:
|
||||
# - 192.0.2.1
|
||||
# searches:
|
||||
# - ns1.svc.cluster-domain.example
|
||||
# - my.dns.search.suffix
|
||||
# options:
|
||||
# - name: ndots
|
||||
# value: "2"
|
||||
# - name: edns0
|
||||
|
||||
podLabels: {}
|
||||
deploymentLabels: {}
|
||||
|
||||
podAnnotations: {}
|
||||
deploymentAnnotations: {}
|
||||
|
||||
podSecurityContext: {}
|
||||
# fsGroup: 2000
|
||||
|
||||
securityContext: {}
|
||||
# capabilities:
|
||||
# drop:
|
||||
# - ALL
|
||||
# readOnlyRootFilesystem: true
|
||||
# runAsNonRoot: true
|
||||
# runAsUser: 1000
|
||||
|
||||
service:
|
||||
type: ClusterIP
|
||||
port: 9998
|
||||
# Labels to add to the service
|
||||
labels: {}
|
||||
# Annotations to add to the service
|
||||
annotations: {}
|
||||
|
||||
ingress:
|
||||
enabled: false
|
||||
className: ""
|
||||
annotations: {}
|
||||
# kubernetes.io/ingress.class: nginx
|
||||
# kubernetes.io/tls-acme: "true"
|
||||
hosts:
|
||||
- host: chart-example.local
|
||||
paths:
|
||||
- path: /
|
||||
pathType: ImplementationSpecific
|
||||
tls: []
|
||||
# - secretName: chart-example-tls
|
||||
# hosts:
|
||||
# - chart-example.local
|
||||
|
||||
resources: {}
|
||||
# We usually recommend not to specify default resources and to leave this as a conscious
|
||||
# choice for the user. This also increases chances charts run on environments with little
|
||||
# resources, such as Minikube. If you do want to specify resources, uncomment the following
|
||||
# lines, adjust them as necessary, and remove the curly braces after 'resources:'.
|
||||
# limits:
|
||||
# cpu: 100m
|
||||
# memory: 128Mi
|
||||
# requests:
|
||||
# cpu: 100m
|
||||
# memory: 128Mi
|
||||
|
||||
autoscaling:
|
||||
enabled: false
|
||||
minReplicas: 1
|
||||
maxReplicas: 100
|
||||
targetCPUUtilizationPercentage: 80
|
||||
# targetMemoryUtilizationPercentage: 80
|
||||
|
||||
nodeSelector: {}
|
||||
|
||||
tolerations: []
|
||||
|
||||
affinity: {}
|
||||
Reference in New Issue
Block a user