Skip to content

Commit

Permalink
chore(deps): update docker.io/obiba/opal docker tag to v5.0.2 (#388)
Browse files Browse the repository at this point in the history 
* chore(deps): update docker.io/obiba/opal docker tag to v5.0.2

* updated uids

* docs upadte

---------

Co-authored-by: miracum-renovate[bot] <184965040+miracum-renovate[bot]@users.noreply.github.com>
Co-authored-by: chgl <[email protected]>
  • Loading branch information
@miracum-renovate @chgl
miracum-renovate[bot] and chgl authored Nov 23, 2024
1 parent 639474c commit a903e05
Show file tree
Hide file tree
Showing 4 changed files with 14 additions and 10 deletions.
8 changes: 6 additions & 2 deletions charts/datashield/Chart.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -23,7 +23,7 @@ dependencies:
version: 2.27.0
deprecated: false
kubeVersion: ">= 1.19.0"
version: 0.7.21
version: 0.7.22
annotations:
artifacthub.io/license: Apache-2.0
artifacthub.io/containsSecurityUpdates: "false"
Expand All @@ -37,4 +37,8 @@ annotations:
# When using the list of objects option the valid supported kinds are
# added, changed, deprecated, removed, fixed and security.
- kind: changed
description: "Updated docker.io/library/busybox to sha256:9319304ada20a44fa830725f2dd30537b57ed65861255cde38e80292cd7c6f9c"
description: "Updated docker.io/obiba/opal to 5.0.2"
- kind: changed
description: "Switched to http port for ingress"
- kind: changed
description: "updated UIDs"
4 changes: 2 additions & 2 deletions charts/datashield/README.md
View file
Original file line number Diff line number Diff line change
Expand Up @@ -59,7 +59,7 @@ helm install --create-namespace -n datashield datashield oci://ghcr.io/miracum/c
| opal.persistence.size | string | `"8Gi"` | PVC Storage Request for volume |
| opal.persistence.storageClass | string | `""` | PVC Storage Class for data volume If defined, storageClassName: <storageClass> If set to "-", storageClassName: "", which disables dynamic provisioning If undefined (the default) or set to null, no storageClassName spec is set, choosing the default provisioner. |
| opal.podAnnotations | object | `{}` | annotations to set on the opal pod |
| opal.podSecurityContext | object | `{"fsGroup":101}` | the pod security context |
| opal.podSecurityContext | object | `{"fsGroup":100}` | the pod security context |
| opal.replicaCount | int | `1` | number of replicas. Should be kept as 1 unless ReadWriteMany persistence is used |
| opal.resources | object | `{}` | resource limits and requests |
| opal.resourcesPreset | string | `"small"` | set container resources according to one common preset (allowed values: none, nano, micro, small, medium, large, xlarge, 2xlarge). This is ignored if primary.resources is set (primary.resources is recommended for production). More information: <https://github.com/bitnami/charts/blob/main/bitnami/common/templates/_resources.tpl#L15> |
Expand Down Expand Up @@ -97,7 +97,7 @@ helm install --create-namespace -n datashield datashield oci://ghcr.io/miracum/c
| rock.persistence.selector | object | `{}` | selector to match an existing Persistent Volume (this value is evaluated as a template) selector: matchLabels: app: my-app |
| rock.persistence.size | string | `"8Gi"` | PVC Storage Request for volume |
| rock.persistence.storageClass | string | `""` | PVC Storage Class for data volume If defined, storageClassName: <storageClass> If set to "-", storageClassName: "", which disables dynamic provisioning If undefined (the default) or set to null, no storageClassName spec is set, choosing the default provisioner. |
| rock.podSecurityContext | object | `{"fsGroup":104}` | pod security context |
| rock.podSecurityContext | object | `{"fsGroup":101}` | pod security context |
| rock.replicaCount | int | `1` | number of rock instances in the cluster |
| rock.resources | object | `{}` | resource limits and requests |
| rock.resourcesPreset | string | `"small"` | set container resources according to one common preset (allowed values: none, nano, micro, small, medium, large, xlarge, 2xlarge). This is ignored if primary.resources is set (primary.resources is recommended for production). More information: <https://github.com/bitnami/charts/blob/main/bitnami/common/templates/_resources.tpl#L15> |
Expand Down
2 changes: 1 addition & 1 deletion charts/datashield/templates/opal/ingress.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -36,7 +36,7 @@ spec:
service:
name: {{ $fullName }}
port:
name: {{ default "https" .portName }}
name: {{ default "http" .portName }}
{{- end }}
{{- end }}
{{- end }}
10 changes: 5 additions & 5 deletions charts/datashield/values.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -12,7 +12,7 @@ opal:
image:
registry: docker.io
repository: obiba/opal
tag: 5.0.0@sha256:95d060c2c4b023dc7dbd66ebd680bd8ace1244a6b10feb9da6589436581c79fe
tag: 5.0.2@sha256:da52344d888c51427682456a58dcc8c32d470dae39fc80f1f7055de33151c9ce
pullPolicy: IfNotPresent

auth:
Expand Down Expand Up @@ -124,7 +124,7 @@ opal:

# -- the pod security context
podSecurityContext:
fsGroup: 101
fsGroup: 100

# @ignored
securityContext:
Expand All @@ -133,7 +133,7 @@ opal:
drop:
- ALL
runAsNonRoot: true
runAsUser: 101
runAsUser: 100
runAsGroup: 65534
readOnlyRootFilesystem: false
seccompProfile:
Expand Down Expand Up @@ -345,14 +345,14 @@ rock:
drop:
- ALL
runAsNonRoot: true
runAsUser: 104
runAsUser: 101
runAsGroup: 65534
seccompProfile:
type: RuntimeDefault

# -- pod security context
podSecurityContext:
fsGroup: 104
fsGroup: 101

# -- pod node selector
nodeSelector: {}
Expand Down

0 comments on commit a903e05

Please sign in to comment.