This commit introduces several changes to the `values.yaml` file for the
Keycloak chart. Specifically, it adds new configuration options for an
`adminIngress` section to enable or disable the admin ingress resource,
defaulting to `false`. This provides clearer control over unnecessary
exposure of the Keycloak admin interface.
Additionally, a new `rbac` section has been added, with a default value
for creating RBAC resources set to `false`. This change allows users to
have more granular control over RBAC settings for the Keycloak deployment.
These modifications were made to enhance flexibility and security
configuration of Keycloak in Kubernetes environments. No breaking
changes were introduced, but users interested in these new options
should review and adjust their Helm chart values accordingly.
This update modifies the GitHub Actions workflow for building the
Keycloak chart. In addition to the existing trigger for the
main branch, a new trigger has been added for the
keycloak-testing branch. This change allows for more flexible
testing and deployment scenarios by enabling the workflow to
run on changes pushed to the keycloak-testing branch.
No breaking changes are introduced with this update, and the
workflow paths remain unchanged, still focusing on the
"charts/keycloak/Chart.yaml" file.
This update introduces significant enhancements to the Keycloak chart,
particularly regarding TLS certificate management. The changes include:
- Added the capability to automatically generate and manage TLS certificates
using Cert-Manager or Helm, improving the security posture by using
self-signed certificates in development scenarios.
- Implemented a dedicated ConfigMap to hold keycloak-config-cli
configurations and ensured that it is integrated with the job for
configuration synchronization.
- Enhanced the handling of admin ingress settings and TLS secrets,
facilitating smoother access and management for multi-host deployments.
- Refactored and reorganized sections to improve readability and maintainability
of templates, ensuring adherence to best practices in Helm charts.
These improvements aim to streamline deployment, enhance security features,
and simplify the management of certificates, facilitating easier
Kubernetes operations for users.
revert Update Keycloak image and version to 26.3.3
The Keycloak Docker image has been updated from
26.3.2-debian-12-r1 to 26.3.3-debian-12-r0 in both the Chart.yaml
and values.yaml files. This change was necessary to incorporate
the latest security patches and improvements provided in the
newer version.
Additionally, the appVersion and chart version in the Chart.yaml
file have been updated to 26.3.3 and 25.2.0 respectively to ensure
consistency with the image versioning. These updates help maintain
compatibility and ensure that users benefit from the latest enhancements.
The Keycloak Docker image has been updated from
26.3.2-debian-12-r1 to 26.3.3-debian-12-r0 in both the Chart.yaml
and values.yaml files. This change was necessary to incorporate
the latest security patches and improvements provided in the
newer version.
Additionally, the appVersion and chart version in the Chart.yaml
file have been updated to 26.3.3 and 25.2.0 respectively to ensure
consistency with the image versioning. These updates help maintain
compatibility and ensure that users benefit from the latest enhancements.
The Chart.yaml file was updated to reflect a new version
and appVersion for the Audiobookshelf Helm chart. The
version has been incremented from 1.9.2 to 1.10.0, and
the appVersion is updated from 2.25.1 to 2.29.0. These
updates are necessary to align with the latest releases
of Audiobookshelf, ensuring users have access to the
newest features and fixes. No breaking changes are
introduced with this update.
The version of the Keycloak chart has been reverted from 24.9.2 to
24.9.1. This change was necessary to align with the stability
requirements of our deployment environment, as issues were
identified in the newer version that could impact performance
and reliability. It's important to monitor further updates
from the Keycloak team to ensure we can upgrade once the
issues have been resolved without affecting our services.
Updated the Helm version from 3.18.3 to 3.18.4 in multiple
workflow files related to building Helm charts for
audiobookshelf, dokuwiki, excalidraw, keycloak, and paperless-ai.
This update was necessary to ensure compatibility with the latest
features and bug fixes introduced in Helm 3.18.4. Additionally,
minor formatting adjustments were made to maintain consistency
across the files. There are no breaking changes expected, and
these updates help keep our CI/CD pipelines up-to-date with the
latest Helm functionality.
Updated the `Chart.yaml` file for the Keycloak Helm chart. The
dependencies section was modified to use a more structured format
for listing dependencies. The condition for the PostgreSQL chart
was updated to improve clarity. Additionally, the chart version
was bumped from `24.9.1` to `24.9.2`, reflecting the latest
changes and improvements in the chart.
The description was reformatted to enhance readability and provide
clarity on what Keycloak offers. Minor adjustments were also made
to the keywords and maintainers sections for consistency and
accuracy. No breaking changes or impacts on existing deployments
are expected from this update.
This commit updates the Keycloak Helm chart dependencies to
include the latest version of PostgreSQL (16.7.24) and adds the
common chart (version 2.31.3) as new files. The updates were
necessary to ensure compatibility with the latest features
and security patches provided by both dependencies.
The `Chart.lock` file was modified to reflect the version
increment for PostgreSQL and includes a new digest and
generated timestamp. The addition of the `.tgz` files for
both charts ensures that they are packaged and available for
deployment without fetching directly from the remote
repository.
There are no breaking changes introduced with these updates;
the changes primarily enhance the stability and security of
the Keycloak deployment.
This commit introduces a new workflow file for building the Helm chart
for Keycloak in the Gitea CI/CD pipeline. The workflow is triggered on
push events to the main branch specifically when changes are made to
the "charts/keycloak/Chart.yaml" file.
The workflow includes several steps:
- **Checkout the repository**: It pulls the latest code.
- **Set Helm Chart App Name and Version**: It extracts the app name
and version from the Chart.yaml file, allowing the Helm package to
be named correctly.
- **Setup Helm**: It installs Helm version 3.18.3 for packaging
purposes.
- **Package Helm Chart**: It updates dependencies, lints the chart,
and packages it into a tgz file.
- **Upload Helm Package**: It uploads the newly created Helm chart
package to the specified Helm registry using credentials stored in
Gitea secrets.
This addition is necessary to automate the process of building and
deploying the Helm chart, ensuring consistency and efficiency in the
CI/CD pipeline.
This commit introduces a complete Helm chart for deploying Keycloak on
Kubernetes. The chart includes a variety of configurations such as
service and ingress definitions, metrics exposure, resource limits, and
autoscaling options.
Key features include:
- Full support for PostgreSQL as a database, configurable through chart
values.
- Ingress resources for external access, including support for TLS and
admin interfaces.
- Options to use custom configurations and initialization scripts via
ConfigMaps.
- Metrics service for Prometheus integration, alongside ServiceMonitor
configurations for Kubernetes monitoring.
- Enhanced environment variables management, including secret handling
for sensitive data like passwords.
These changes provide a robust foundation for deploying Keycloak in
both development and production environments. Users should be aware
that this initial setup gives flexibility for customization, but care
should be taken when altering default configurations to ensure
compatibility with existing deployments.
Updated the Paperless AI Helm chart to version 0.1.2 to reflect
recent changes and improvements. The service configuration has been
modified to use port 3000 instead of 30000, aligning with the
standard configuration, which improves consistency and avoids
potential port conflicts. Additionally, the tags for indexed
documents have been changed to "ai-indexed" to better reflect
the artificial intelligence-related capabilities.
No breaking changes were introduced, but it is important to
note the updated port configuration, which may require adjustments
in related deployments.
Updated the version number in the Chart.yaml file from 0.1.0
to 0.1.1. This change reflects an incremental update to the
Paperless AI Helm Chart. It is necessary to ensure that users
can correctly identify the version of the chart they are using
and to facilitate future upgrades. There are no breaking changes
or additional features in this version; it serves primarily as
a version management update.
The version number in Chart.yaml was changed from 0.3.0 to 0.1.0
to reflect a new release strategy. Alongside this, the memory limit
in values.yaml was increased from 640Mi to 704Mi. This adjustment
was made to better accommodate the application's resource requirements,
ensuring improved performance and stability. No breaking changes
were introduced with this update, and users should be aware of
this new versioning and resource configuration for their deployments.
Updated the version in Chart.yaml from 0.2.0 to 0.3.0 to reflect
the latest release of the paperless-ai application. In the
values.yaml file, modified the liveness and readiness probes'
HTTP path settings from '/health' to '/' for better compatibility
with the application's health check mechanism. This change
ensures that the probes work correctly and check the root
endpoint, which provides more reliable status information for
the application. No breaking changes were introduced.
Updated the Helm chart version for Paperless AI from 0.1.0 to
0.2.0 to reflect the latest enhancements. The liveness and
readiness probes were updated to switch the check path from
root (/) to /health, which is more appropriate for health
checks as it ensures the application is correctly reporting
its status. This change helps improve the reliability of
service monitoring and health reporting for deployment
environments.
The version of the Paperless AI Helm chart has been updated from
0.8.0 to 0.1.0 in the Chart.yaml file to reflect a new release cycle.
Additionally, the storageClassName in the values.yaml file has been
modified from "default" to an empty string to allow for a more flexible
storage backend configuration. Furthermore, the size of the persistent
volume has been decreased from 2Gi to 1Gi to optimize resource allocation
and usage based on current application needs.
These changes are necessary to ensure that the chart aligns with the
latest application updates and resource requirements.
2025-07-07 12:05:07 +02:00
50 changed files with 6074 additions and 27 deletions
