Drop default values for sensitive and contradictory values #241

New Issue

Open

opened 2021-11-13 10:25:01 +00:00 by justusbunsi · 0 comments

justusbunsi commented 2021-11-13 10:25:01 +00:00 (Migrated from gitea.com)

Copy Link

Some values like gitea.admin.{username,password} and gitea.admin.existingSecret are contradictory and therefore must not exist at the same time.

For some settings, there are default values, which makes it easier to start using the Chart. At the same time those values can introduce security concerns if left unchanged, since those values are publicly readable.

I suggest dropping default values for both, contradictory and sensitive values. The first adds more stability to the Chart itself and paves the way for Option 2.2 of validation schema. The second increases the security of installations since the users have to define their own sensitive values.

Since this is a breaking change for all users relying on these default values (hopefully zero users affected), we could add example snippets for common configurations.

Some values like `gitea.admin.{username,password}` and `gitea.admin.existingSecret` are contradictory and therefore must not exist at the same time. For some settings, there are default values, which makes it easier to start using the Chart. At the same time those values can introduce security concerns if left unchanged, since those values are publicly readable. I suggest dropping default values for both, contradictory and sensitive values. The first adds more stability to the Chart itself and paves the way for [Option 2.2 of validation schema](https://gitea.com/gitea/helm-chart/pulls/198#issuecomment-593054). The second increases the security of installations since the users have to define their own sensitive values. Since this is a breaking change for all users relying on these default values (hopefully zero users affected), we could add example snippets for common configurations.

👍 1

Sign in to join this conversation.

No Branch/Tag Specified

Branches Tags

No results found.

v10.6.0

v10.5.0

v10.4.1

v10.4.0

v10.3.0

v10.2.0

v10.1.4

v10.1.3

v10.1.2

v10.1.1

v10.1.0

v10.0.2

v10.0.1

v10.0.0

v9.6.1

v9.6.0

v9.5.1

v9.5.0

v9.4.0

v9.3.0

v9.2.1

v9.2.0

v9.1.0

v9.0.4

v9.0.3

v9.0.2

v9.0.1

v9.0.0

v8.3.0

v8.2.0

v8.1.0

v8.0.3

v8.0.2

v8.0.1

v8.0.0

v7.0.4

v7.0.3

v7.0.2

v7.0.1

v7.0.0

v6.0.5

v6.0.4

v6.0.3

v6.0.2

v6.0.1

v6.0.0

v5.0.9

v5.0.8

v5.0.7

v5.0.6

v5.0.5

v5.0.4

v5.0.3

v5.0.2

v5.0.1

v5.0.0

v4.1.1

v4.1.0

v4.0.3

v4.0.2

v4.0.1

v4.0.0

v3.1.4

v3.1.3

v3.1.2

v3.1.1

v3.1.0

v3.0.0

v2.2.5

v2.2.4

v2.2.3

v2.2.2

v2.2.1

v2.2.0

v2.1.11

v2.1.10

v2.1.9

v2.1.8

v2.1.7

v2.1.6

v2.1.5

v2.1.4

v2.1.3

v2.1.2

v2.1.1

v2.1.0

v2.0.7

v2.0.6

v2.0.5

v2.0.4

v2.0.3

v2.0.2

v2.0.0

v1.5.5

v1.5.4

v1.5.3

v1.5.2

v1.5.1

v1.5.0

v1.4.9

v1.4.8

v1.4.7

v1.4.6

v1.4.5

v1.4.4

v1.4.3

v1.4.2

Labels

Clear labels

has/backport

in progress

invalid

kind/breaking

kind/bug

kind/build

kind/dependency

kind/deployment

kind/docs

kind/enhancement

kind/feature

kind/lint

kind/proposal

kind/question

kind/refactor

kind/security

kind/testing

kind/translation

kind/ui

need/backport

priority/critical

priority/low

priority/maybe

priority/medium

reviewed/duplicate

reviewed/invalid

reviewed/wontfix

skip-changelog

status/blocked

status/needs-feedback

status/needs-reviews

status/wip

upstream/gitea

upstream/other

No Label

kind/breaking

kind/enhancement

Milestone

No items

No Milestone

Projects

Clear projects

No project

Assignees

Clear assignees

No Assignees

1 Participants

Notifications

Subscribe

Due Date

No due date set.

Dependencies

No dependencies set.

Reference: lunny/helm-chart#241

No description provided.