79 lines
2.2 KiB
YAML
79 lines
2.2 KiB
YAML
image:
|
|
repository: semaphoreui/semaphore
|
|
tag: v2.9.75@sha256:6849bb7ae2064a43aa98c644efe1f99150b54b131d6d5cfb5d2efa633771fe3a
|
|
pullPolicy: IfNotPresent
|
|
|
|
securityContext:
|
|
container:
|
|
readOnlyRootFilesystem: false
|
|
runAsNonRoot: false
|
|
runAsUser: 0
|
|
runAsGroup: 0
|
|
|
|
service:
|
|
main:
|
|
ports:
|
|
main:
|
|
port: 3000
|
|
protocol: http
|
|
targetPort: 3000
|
|
|
|
workload:
|
|
main:
|
|
podSpec:
|
|
containers:
|
|
main:
|
|
env:
|
|
# DB
|
|
SEMAPHORE_DB_DIALECT: postgres
|
|
SEMAPHORE_DB_USER: "{{ .Values.cnpg.main.user }}"
|
|
SEMAPHORE_DB: "{{ .Values.cnpg.main.database }}"
|
|
SEMAPHORE_DB_PORT: 5432
|
|
SEMAPHORE_DB_HOST:
|
|
secretKeyRef:
|
|
name: cnpg-main-urls
|
|
key: host
|
|
SEMAPHORE_DB_PASS:
|
|
secretKeyRef:
|
|
name: cnpg-main-user
|
|
key: password
|
|
SEMAPHORE_ACCESS_KEY_ENCRYPTION:
|
|
secretKeyRef:
|
|
name: semaphore-secrets
|
|
key: SEMAPHORE_ACCESS_KEY_ENCRYPTION
|
|
# set paths to /data
|
|
SEMAPHORE_PLAYBOOK_PATH: "{{.Values.persistence.data.mountPath }}"
|
|
SEMAPHORE_ADMIN: admin
|
|
SEMAPHORE_ADMIN_NAME: admin
|
|
SEMAPHORE_ADMIN_PASSWORD: changeme
|
|
SEMAPHORE_ADMIN_EMAIL: admin@localhost
|
|
# LDAP
|
|
# no | yes
|
|
SEMAPHORE_LDAP_ACTIVATED: "no"
|
|
# SEMAPHORE_LDAP_HOST: dc01.local.example.com
|
|
# SEMAPHORE_LDAP_PORT: '636'
|
|
# no | yes
|
|
SEMAPHORE_LDAP_NEEDTLS: "no"
|
|
# SEMAPHORE_LDAP_DN_BIND: 'uid=bind_user,cn=users,cn=accounts,dc=local,dc=shiftsystems,dc=net'
|
|
# SEMAPHORE_LDAP_PASSWORD: 'ldap_bind_account_password'
|
|
# SEMAPHORE_LDAP_DN_SEARCH: 'dc=local,dc=example,dc=com'
|
|
# SEMAPHORE_LDAP_SEARCH_FILTER: "(\u0026(uid=%s)(memberOf=cn=ipausers,cn=groups,cn=accounts,dc=local,dc=example,dc=com))"
|
|
|
|
persistence:
|
|
config:
|
|
enabled: true
|
|
mountPath: /etc/semaphore
|
|
data:
|
|
enabled: true
|
|
mountPath: /data
|
|
|
|
cnpg:
|
|
main:
|
|
enabled: true
|
|
user: semaphore
|
|
database: semaphore
|
|
|
|
portal:
|
|
open:
|
|
enabled: true
|