Helm Chart Release 7.0.1934

OneUptime · Apr 5, 2024 · c4ae3a3 · c4ae3a3
1 parent e2b2287
commit c4ae3a3
Show file tree

Hide file tree

Showing 8 changed files with 282 additions and 220 deletions.
diff --git a/index.yaml b/index.yaml
diff --git a/oneuptime-7.0.1934.tgz b/oneuptime-7.0.1934.tgz
diff --git a/oneuptime-7.0.1934.tgz.prov b/oneuptime-7.0.1934.tgz.prov
@@ -0,0 +1,47 @@
+-----BEGIN PGP SIGNED MESSAGE-----
+Hash: SHA512
+
+annotations:
+  artifacthub.io/category: monitoring-logging
+  artifacthub.io/license: MIT
+  artifacthub.io/prerelease: "false"
+  artifacthub.io/signKey: |
+    fingerprint: 83F2C1DDF58A052464C4A1729D87E494AC016697
+    url: https://keybase.io/oneuptime/pgp_keys.asc
+apiVersion: v2
+appVersion: 7.0.1934
+dependencies:
+- - name: postgresql
+  repository: https://charts.bitnami.com/bitnami
+  version: 12.12.10
+- - name: redis
+  repository: https://charts.bitnami.com/bitnami
+  version: 18.1.0
+- - name: clickhouse
+  repository: https://charts.bitnami.com/bitnami
+  version: 4.0.2
+description: The Complete Open-Source Observability Platform
+icon: https://raw.githubusercontent.com/OneUptime/oneuptime/master/App/FeatureSet/Home/Static/img/OneUptimePNG/1.png
+name: oneuptime
+type: application
+version: 7.0.1934
+
+...
+files:
+  oneuptime-7.0.1934.tgz: sha256:b8f09965745ec666332377c958ef503f744fbebcffb6ae34074baffdd16cd590
+-----BEGIN PGP SIGNATURE-----
+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+=gv+Z
+-----END PGP SIGNATURE-----
diff --git a/oneuptime/README.md b/oneuptime/README.md
@@ -86,18 +86,8 @@ The following table lists the configurable parameters of the OneUptime chart and
 | `internalSmtp.email` | Email address to send emails from | `nil` |  |
 | `internalSmtp.name` | Name to send emails from | `nil` |  |
 | `incidents.disableAutomaticCreation` | Disable incident creation (use this when your team is overloaded with incidents or in emergencies) | `false` |  |
-
-
-### Security Context
-
-The Security Context section allows you to configure security settings for the OneUptime chart.
-
-| Parameter | Description | Default |
-| --------- | ----------- | ------- |
-| `securityContext.enabled` | Enable security context | `false` |
-| `securityContext.runAsUser` | User ID to run as |  |
-| `securityContext.runAsGroup` | Group ID to run as | |
-| `securityContext.fsGroup` | Group ID that owns the pod's volumes |  |
+| `podSecurityContext` | Pod Security Context. Please refer to Kubernetes docuemntation to set these. This chart depends on other bitnami charts. You will have to set security context for those as well | `{}` |  |
+| `conatinerSecurityContext` | Container Security Context. Please refer to kubernetes documentation to set these. This chart depends on other bitnami charts. You will have to set security context for those as well | `{}` |  |
 
 ## Adding a Custom Domain to your Status Page
 

diff --git a/oneuptime/templates/_helpers.tpl b/oneuptime/templates/_helpers.tpl
@@ -238,11 +238,8 @@ spec:
         date: "{{ now | unixEpoch }}"
         appname: oneuptime
     spec:
-      {{- if $.Values.securityContext.enabled }}
-      securityContext:
-        runAsUser: {{ $.Values.securityContext.runAsUser }}
-        runAsGroup: {{ $.Values.securityContext.runAsGroup }}
-        fsGroup: {{ $.Values.securityContext.fsGroup }}
+      {{- if $.Values.podSecurityContext }}
+      securityContext: {{- $.Values.podSecurityContext | toYaml | nindent 8 }}
       {{- end }}
       {{- if $.Volumes }}
       volumes:
@@ -259,6 +256,9 @@ spec:
         - image: {{ printf "%s/%s/%s:%s" .Values.image.registry .Values.image.repository $.ServiceName .Values.image.tag }}
         {{- end}}
           name: {{ printf "%s-%s" $.Release.Name $.ServiceName  }}
+          {{- if $.Values.containerSecurityContext }}
+          securityContext: {{- $.Values.containerSecurityContext | toYaml | nindent 12 }}
+          {{- end }}
           imagePullPolicy: {{ $.Values.image.pullPolicy }}
           env:
             {{- include "oneuptime.env.common" . | nindent 12 }}

diff --git a/oneuptime/templates/app.yaml b/oneuptime/templates/app.yaml
@@ -22,15 +22,15 @@ spec:
         date: "{{ now | unixEpoch }}"
         appname: oneuptime
     spec:
-      {{- if $.Values.securityContext.enabled }}
-      securityContext:
-        runAsUser: {{ $.Values.securityContext.runAsUser }}
-        runAsGroup: {{ $.Values.securityContext.runAsGroup }}
-        fsGroup: {{ $.Values.securityContext.fsGroup }}
+      {{- if $.Values.podSecurityContext }}
+      securityContext: {{- $.Values.podSecurityContext | toYaml | nindent 8 }}
       {{- end }}
       containers:
         - image: {{ printf "%s/%s/%s:%s" $.Values.image.registry $.Values.image.repository "app" $.Values.image.tag }}
           name: {{ printf "%s-%s" $.Release.Name "app"  }}
+          {{- if $.Values.containerSecurityContext }}
+          securityContext: {{- $.Values.containerSecurityContext | toYaml | nindent 12 }}
+          {{- end }}
           imagePullPolicy: {{ $.Values.image.pullPolicy }}
           env:
             {{- include "oneuptime.env.common" . | nindent 12 }}

diff --git a/oneuptime/templates/probe.yaml b/oneuptime/templates/probe.yaml
@@ -21,15 +21,13 @@ spec:
         app: {{ printf "%s-%s" $.Release.Name (printf "probe-%s" $key)  }}
         date: "{{ now | unixEpoch }}"
     spec:
-      {{- if $.Values.securityContext.enabled }}
-      securityContext:
-        runAsUser: {{ $.Values.securityContext.runAsUser }}
-        runAsGroup: {{ $.Values.securityContext.runAsGroup }}
-        fsGroup: {{ $.Values.securityContext.fsGroup }}
-      {{- end }}
+      securityContext: {{- $.Values.podSecurityContext | toYaml | nindent 8 }}
       containers:
         - image: {{ printf "%s/%s/%s:%s" $.Values.image.registry $.Values.image.repository "probe" $.Values.image.tag }}
           name: {{ printf "%s-%s" $.Release.Name (printf "probe-%s" $key)  }}
+          {{- if $.Values.containerSecurityContext }}
+          securityContext: {{- $.Values.containerSecurityContext | toYaml | nindent 12 }}
+          {{- end }}
           imagePullPolicy: {{ $.Values.image.pullPolicy }}
           env:
             - name: PORT

diff --git a/oneuptime/values.yaml b/oneuptime/values.yaml
@@ -175,9 +175,8 @@ openTelemetryExporter:
     probe: 
     adminDashboard:
 
-securityContext:
-  enabled: false
-  runAsUser: 
-  runAsGroup: 
-  fsGroup: 
+containerSecurityContext:
+podSecurityContext:
+
+