2020-08-23 17:56:55 +00:00
|
|
|
# Default values for gitea.
|
|
|
|
# This is a YAML-formatted file.
|
|
|
|
# Declare variables to be passed into your templates.
|
2019-12-12 13:38:31 -05:00
|
|
|
|
2020-08-23 17:56:55 +00:00
|
|
|
replicaCount: 1
|
2019-12-12 13:38:31 -05:00
|
|
|
|
2020-10-30 01:08:58 +08:00
|
|
|
clusterDomain: cluster.local
|
|
|
|
|
2020-08-23 17:56:55 +00:00
|
|
|
image:
|
|
|
|
repository: gitea/gitea
|
2021-09-12 06:40:47 +08:00
|
|
|
tag: 1.15.0
|
2020-08-23 17:56:55 +00:00
|
|
|
pullPolicy: Always
|
2021-04-29 17:12:48 +08:00
|
|
|
rootless: false # only possible when running 1.14 or later
|
2019-12-12 13:38:31 -05:00
|
|
|
|
2020-08-23 17:56:55 +00:00
|
|
|
imagePullSecrets: []
|
2019-12-12 13:38:31 -05:00
|
|
|
|
2021-06-07 21:27:25 +08:00
|
|
|
# only usable with rootless image due to image design
|
2021-03-01 20:16:49 +08:00
|
|
|
securityContext: {}
|
2021-07-01 23:02:56 +08:00
|
|
|
# allowPrivilegeEscalation: false
|
|
|
|
# capabilities:
|
|
|
|
# drop:
|
|
|
|
# - ALL
|
|
|
|
# # Add the SYS_CHROOT capability for root and rootless images if you intend to
|
|
|
|
# # run pods on nodes that use the container runtime cri-o. Otherwise, you will
|
|
|
|
# # get an error message from the SSH server that it is not possible to read from
|
|
|
|
# # the repository.
|
|
|
|
# # https://gitea.com/gitea/helm-chart/issues/161
|
|
|
|
# add:
|
|
|
|
# - SYS_CHROOT
|
|
|
|
# privileged: false
|
|
|
|
# readOnlyRootFilesystem: true
|
|
|
|
# runAsGroup: 1000
|
|
|
|
# runAsNonRoot: true
|
|
|
|
# runAsUser: 1000
|
2021-03-01 20:16:49 +08:00
|
|
|
|
2019-12-12 13:38:31 -05:00
|
|
|
service:
|
|
|
|
http:
|
2020-08-23 17:56:55 +00:00
|
|
|
type: ClusterIP
|
2019-12-12 13:38:31 -05:00
|
|
|
port: 3000
|
2020-12-16 20:37:47 +08:00
|
|
|
clusterIP: None
|
|
|
|
#loadBalancerIP:
|
|
|
|
#nodePort:
|
2021-06-08 01:53:01 +08:00
|
|
|
#externalTrafficPolicy:
|
|
|
|
#externalIPs:
|
|
|
|
loadBalancerSourceRanges: []
|
2020-11-20 16:08:26 +08:00
|
|
|
annotations:
|
2019-12-12 13:38:31 -05:00
|
|
|
ssh:
|
2020-08-23 17:56:55 +00:00
|
|
|
type: ClusterIP
|
2019-12-12 13:38:31 -05:00
|
|
|
port: 22
|
2020-12-16 20:37:47 +08:00
|
|
|
clusterIP: None
|
2020-08-23 17:56:55 +00:00
|
|
|
#loadBalancerIP:
|
|
|
|
#nodePort:
|
2020-09-02 12:09:24 +00:00
|
|
|
#externalTrafficPolicy:
|
|
|
|
#externalIPs:
|
2021-02-05 04:42:42 +08:00
|
|
|
loadBalancerSourceRanges: []
|
2020-08-23 17:56:55 +00:00
|
|
|
annotations:
|
|
|
|
|
|
|
|
ingress:
|
2019-12-12 13:38:31 -05:00
|
|
|
enabled: false
|
2021-09-02 10:53:48 +08:00
|
|
|
# className: nginx
|
2020-08-23 17:56:55 +00:00
|
|
|
annotations: {}
|
|
|
|
# kubernetes.io/ingress.class: nginx
|
|
|
|
# kubernetes.io/tls-acme: "true"
|
|
|
|
hosts:
|
2021-06-25 02:28:45 +08:00
|
|
|
- host: git.example.com
|
|
|
|
paths:
|
|
|
|
- path: /
|
|
|
|
pathType: Prefix
|
2020-08-23 17:56:55 +00:00
|
|
|
tls: []
|
|
|
|
# - secretName: chart-example-tls
|
|
|
|
# hosts:
|
|
|
|
# - git.example.com
|
|
|
|
|
|
|
|
resources: {}
|
|
|
|
# We usually recommend not to specify default resources and to leave this as a conscious
|
|
|
|
# choice for the user. This also increases chances charts run on environments with little
|
|
|
|
# resources, such as Minikube. If you do want to specify resources, uncomment the following
|
|
|
|
# lines, adjust them as necessary, and remove the curly braces after 'resources:'.
|
|
|
|
# limits:
|
|
|
|
# cpu: 100m
|
|
|
|
# memory: 128Mi
|
|
|
|
# requests:
|
|
|
|
# cpu: 100m
|
|
|
|
# memory: 128Mi
|
2019-12-12 13:38:31 -05:00
|
|
|
|
2021-06-07 16:41:16 +08:00
|
|
|
## Use an alternate scheduler, e.g. "stork".
|
|
|
|
## ref: https://kubernetes.io/docs/tasks/administer-cluster/configure-multiple-schedulers/
|
|
|
|
##
|
|
|
|
# schedulerName:
|
|
|
|
|
2019-12-12 13:38:31 -05:00
|
|
|
nodeSelector: {}
|
2020-08-23 17:56:55 +00:00
|
|
|
|
2019-12-12 13:38:31 -05:00
|
|
|
tolerations: []
|
2020-08-23 17:56:55 +00:00
|
|
|
|
2019-12-12 13:38:31 -05:00
|
|
|
affinity: {}
|
|
|
|
|
2020-08-23 17:56:55 +00:00
|
|
|
statefulset:
|
2020-09-10 10:15:34 +00:00
|
|
|
env: []
|
|
|
|
# - name: VARIABLE
|
|
|
|
# value: my-value
|
2020-08-23 17:56:55 +00:00
|
|
|
terminationGracePeriodSeconds: 60
|
2021-03-17 08:07:42 +08:00
|
|
|
labels: {}
|
2020-08-23 17:56:55 +00:00
|
|
|
|
|
|
|
persistence:
|
|
|
|
enabled: true
|
2021-01-20 19:28:39 +08:00
|
|
|
# existingClaim:
|
2020-08-23 17:56:55 +00:00
|
|
|
size: 10Gi
|
|
|
|
accessModes:
|
|
|
|
- ReadWriteOnce
|
2021-01-22 16:24:37 +08:00
|
|
|
labels: {}
|
|
|
|
annotations: {}
|
2021-06-08 01:53:01 +08:00
|
|
|
# storageClass:
|
2020-08-23 17:56:55 +00:00
|
|
|
|
2021-01-20 19:28:39 +08:00
|
|
|
# additional volumes to add to the Gitea statefulset.
|
|
|
|
extraVolumes:
|
|
|
|
# - name: postgres-ssl-vol
|
|
|
|
# secret:
|
|
|
|
# secretName: gitea-postgres-ssl
|
|
|
|
|
|
|
|
|
|
|
|
# additional volumes to mount, both to the init container and to the main
|
|
|
|
# container. As an example, can be used to mount a client cert when connecting
|
|
|
|
# to an external Postgres server.
|
|
|
|
extraVolumeMounts:
|
|
|
|
# - name: postgres-ssl-vol
|
|
|
|
# readOnly: true
|
|
|
|
# mountPath: "/pg-ssl"
|
|
|
|
|
|
|
|
# bash shell script copied verbatim to the start of the init-container.
|
|
|
|
initPreScript: ""
|
|
|
|
#
|
|
|
|
# initPreScript: |
|
|
|
|
# mkdir -p /data/git/.postgresql
|
|
|
|
# cp /pg-ssl/* /data/git/.postgresql/
|
|
|
|
# chown -R git:git /data/git/.postgresql/
|
|
|
|
# chmod 400 /data/git/.postgresql/postgresql.key
|
|
|
|
|
2021-06-30 03:23:32 +08:00
|
|
|
# Configure commit/action signing prerequisites
|
|
|
|
signing:
|
|
|
|
enabled: false
|
|
|
|
gpgHome: /data/git/.gnupg
|
2021-01-20 19:28:39 +08:00
|
|
|
|
2020-08-23 17:56:55 +00:00
|
|
|
gitea:
|
|
|
|
admin:
|
2021-06-10 19:13:33 +08:00
|
|
|
#existingSecret: gitea-admin-secret
|
2020-08-23 17:56:55 +00:00
|
|
|
username: gitea_admin
|
|
|
|
password: r8sA8CPHD9!bt6d
|
|
|
|
email: "gitea@local.domain"
|
|
|
|
|
2021-01-21 23:45:26 +08:00
|
|
|
metrics:
|
|
|
|
enabled: false
|
|
|
|
serviceMonitor:
|
|
|
|
enabled: false
|
2021-06-07 22:28:28 +08:00
|
|
|
# additionalLabels:
|
|
|
|
# prometheus-release: prom1
|
2021-01-21 23:45:26 +08:00
|
|
|
|
2020-08-23 17:56:55 +00:00
|
|
|
ldap:
|
|
|
|
enabled: false
|
2021-06-10 19:13:33 +08:00
|
|
|
#existingSecret: gitea-ldap-secret
|
2021-04-29 17:12:48 +08:00
|
|
|
#name:
|
|
|
|
#securityProtocol:
|
|
|
|
#host:
|
|
|
|
#port:
|
|
|
|
#userSearchBase:
|
|
|
|
#userFilter:
|
|
|
|
#adminFilter:
|
|
|
|
#emailAttribute:
|
|
|
|
#bindDn:
|
|
|
|
#bindPassword:
|
|
|
|
#usernameAttribute:
|
2021-01-22 16:24:37 +08:00
|
|
|
#sshPublicKeyAttribute:
|
2020-08-23 17:56:55 +00:00
|
|
|
|
2021-03-01 20:24:11 +08:00
|
|
|
oauth:
|
|
|
|
enabled: false
|
|
|
|
#name:
|
|
|
|
#provider:
|
2021-04-29 17:12:48 +08:00
|
|
|
#key:
|
|
|
|
#secret:
|
2021-03-01 20:24:11 +08:00
|
|
|
#autoDiscoverUrl:
|
|
|
|
#useCustomUrls:
|
|
|
|
#customAuthUrl:
|
|
|
|
#customTokenUrl:
|
|
|
|
#customProfileUrl:
|
|
|
|
#customEmailUrl:
|
|
|
|
|
2020-08-23 17:56:55 +00:00
|
|
|
config: {}
|
|
|
|
# APP_NAME: "Gitea: Git with a cup of tea"
|
2021-01-20 19:28:39 +08:00
|
|
|
# RUN_MODE: dev
|
|
|
|
#
|
2020-08-23 17:56:55 +00:00
|
|
|
# server:
|
|
|
|
# SSH_PORT: 22
|
|
|
|
#
|
|
|
|
# security:
|
|
|
|
# PASSWORD_COMPLEXITY: spec
|
|
|
|
|
2020-09-24 16:32:11 +00:00
|
|
|
podAnnotations: {}
|
|
|
|
|
2020-08-23 17:56:55 +00:00
|
|
|
database:
|
|
|
|
builtIn:
|
|
|
|
postgresql:
|
|
|
|
enabled: true
|
|
|
|
mysql:
|
|
|
|
enabled: false
|
2020-09-28 23:26:06 +00:00
|
|
|
mariadb:
|
|
|
|
enabled: false
|
2020-08-23 17:56:55 +00:00
|
|
|
|
|
|
|
cache:
|
|
|
|
builtIn:
|
|
|
|
enabled: true
|
|
|
|
|
2021-03-01 22:46:05 +08:00
|
|
|
livenessProbe:
|
|
|
|
enabled: true
|
|
|
|
initialDelaySeconds: 200
|
|
|
|
timeoutSeconds: 1
|
|
|
|
periodSeconds: 10
|
|
|
|
successThreshold: 1
|
|
|
|
failureThreshold: 10
|
|
|
|
readinessProbe:
|
|
|
|
enabled: true
|
|
|
|
initialDelaySeconds: 5
|
|
|
|
timeoutSeconds: 1
|
|
|
|
periodSeconds: 10
|
|
|
|
successThreshold: 1
|
|
|
|
failureThreshold: 3
|
|
|
|
startupProbe:
|
|
|
|
enabled: false
|
|
|
|
initialDelaySeconds: 60
|
2021-06-20 03:35:21 +08:00
|
|
|
timeoutSeconds: 1
|
2021-03-01 22:46:05 +08:00
|
|
|
periodSeconds: 10
|
|
|
|
successThreshold: 1
|
|
|
|
failureThreshold: 10
|
|
|
|
|
|
|
|
# customLivenessProbe:
|
|
|
|
# httpGet:
|
|
|
|
# path: /user/login
|
|
|
|
# port: http
|
|
|
|
# initialDelaySeconds: 60
|
|
|
|
# periodSeconds: 10
|
|
|
|
# successThreshold: 1
|
|
|
|
# failureThreshold: 10
|
|
|
|
# customReadinessProbe:
|
|
|
|
# httpGet:
|
|
|
|
# path: /user/login
|
|
|
|
# port: http
|
|
|
|
# initialDelaySeconds: 5
|
|
|
|
# periodSeconds: 10
|
|
|
|
# successThreshold: 1
|
|
|
|
# failureThreshold: 3
|
|
|
|
# customStartupProbe:
|
|
|
|
# httpGet:
|
|
|
|
# path: /user/login
|
|
|
|
# port: http
|
|
|
|
# initialDelaySeconds: 60
|
|
|
|
# periodSeconds: 10
|
|
|
|
# successThreshold: 1
|
|
|
|
# failureThreshold: 10
|
|
|
|
|
2020-08-23 17:56:55 +00:00
|
|
|
memcached:
|
|
|
|
service:
|
|
|
|
port: 11211
|
|
|
|
|
|
|
|
postgresql:
|
|
|
|
global:
|
|
|
|
postgresql:
|
|
|
|
postgresqlDatabase: gitea
|
|
|
|
postgresqlUsername: gitea
|
|
|
|
postgresqlPassword: gitea
|
|
|
|
servicePort: 5432
|
|
|
|
persistence:
|
|
|
|
size: 10Gi
|
|
|
|
|
|
|
|
mysql:
|
|
|
|
root:
|
|
|
|
password: gitea
|
|
|
|
db:
|
|
|
|
user: gitea
|
|
|
|
password: gitea
|
|
|
|
name: gitea
|
|
|
|
service:
|
|
|
|
port: 3306
|
|
|
|
persistence:
|
|
|
|
size: 10Gi
|
2020-09-28 23:26:06 +00:00
|
|
|
|
|
|
|
mariadb:
|
2020-10-22 13:13:37 +08:00
|
|
|
auth:
|
|
|
|
database: gitea
|
|
|
|
username: gitea
|
2020-09-28 23:26:06 +00:00
|
|
|
password: gitea
|
2020-10-22 13:13:37 +08:00
|
|
|
rootPassword: gitea
|
|
|
|
primary:
|
|
|
|
service:
|
|
|
|
port: 3306
|
2020-09-28 23:26:06 +00:00
|
|
|
persistence:
|
2020-10-30 01:08:58 +08:00
|
|
|
size: 10Gi
|