- 470b8ed: Bump version to 14.6.3
- a636fc2: Fix indent when outputting host without ingress
- b3d31ef: apply secret reset fix from other envs in core where it was missing
- 9a71b28: Allow unsetting the host name env
-
b82aaf4: Allow setting options for the deployment strategy:
You can now provide custom options to the strategy, for example:
values.yaml:
strategy: type: RollingUpdate rollingUpdate: maxSurge: 30% maxUnavailable: 30%
- 284e340: Fix background queue name not being picked up
- 79680db: Upgrade OpenProject core version to 14.6.2 (patch update)
- a17c6a8: Upgrade OpenProject core version to 14.6.1 (patch update)
- 1646954: Bump OpenProject version to 14.6.0
- b460db3: Rename initdb -> dbInit to be consistent
- b460db3: Fix resource limits/requests for worker and web deployment
- 0fa8a05: add resource limit for init-container - for worker-deployment
- 3ff3f95: add resource limit for init-container
- cc06e6f: add resource request and limit for seederJob container
- 7bb899a: - Rename persistance.tmpStorageClassName to openproject.tmpVolumesStorageClassName for consistency with other options
- Allow setting annotations for /tmp and /app/tmp volumes
- Allow setting labels for /tmp and /app/tmp volumes
- 16db2be: Allow specified ipaddress for loadBalancerIP
- 9bd1ec5: - Breaking change: Use revision, not current date in seeder job name
- Allow keeping seeder jobs around after their execution
- Configurable TTL for seeder job
- 21a2319: Allow users to set the openproject host name without using the ingress
- 6be6b9c: - allow setting
tmpStorageClassNamefor /tmp and /app/tmp volumes - a0fd7c3: Allow tolerations on seeder job
- ebc09c0: Allow definition of extraVolumes and extraVolumeMounts
- ebc09c0: Add extraVolumes and extraVolumeMounts option
- 83279c9: make sure removed secret values are actually removed
- 15014b4: update OpenProject version to 14
- 35aba8b: fix(secret_s3): add quote around port
- 68cbf0c: Allow port to be changed in s3 config
- 4ab3601: Allow to disable object storage signature v4 streaming
- 102c403: Add relative URL root configuration to health checks
- b645553: Allow for multiple worker types, and defining replicas, strategy, resources
- b224135: Allow sealed secrets for OIDC secrets
- 08a7935: do not require a postgresql password anymore, allowing for automatically genererated credentials by default
- c9585aa: Add image PullSecrets to seeder job if configured
- 8e9c8e1: Feature: OIDC client id secret and docs
- 1f2594c: Add existingSecret for OIDC
- 8456845: Allow seting existing secret for s3 id and key
- ab8b83d: Fix tmp volume mounts not being consistent
-
b3f06d1: Fix templating error when empty s3 existingSecret name is given
-
87f9dc4: Fix S3 secret lookup
There were two problems:
- The namespace was hardcoded
- The whitespace trimming was breaking the yaml
Now the lookup will be based on the namespace where the release is being deployed, and the whitespace trimming has been fixed.
-
aa80a44: Correct attribute mapping environment name for OIDC
-
e63389c: Allow controlling whether tmp volumes are used or not
- 7791166: fix pvc annotations
- a5b1573: Fixed extraEnvVarsSecret parameter in _helpers.tpl
- ecd1778: Add artifacthub.io annotations
- aa7e492: Added OIDC provider displayName parameter
- 7511d98: Fix whitespace generation in s3 secret
-
5f4bce6: Improve secret management.
Add support for
existingSecretforpostgresqlauthentication. Moves3.accessKeyIdands3.secretAccessKeytos3.auth.and add anexistingSecretoption for S3.
- 8623b11: Add artifacthub-repo verification and badge
- 0df7588: do not force read-only file system outside dev mode
- Publish helm charts on GitHub package registry: https://github.com/opf/helm-charts/pkgs/container/helm-charts%2Fopenproject
- 0a1c9a9:
- rename
securityContexttocontainerSecurityContextinvalues.yaml - mount volumes for tmp directories to make containers work in accordance with best practices, that is with read-only file systems
- use secure defaults for container security policy
- rename
- acf0e41: Allow OIDC attribute mapping in values