Some checks failed
Build Helm Chart / helm-package (push) Failing after 3s
This update substantially refactors the paperless-ai Helm chart. Key changes include: - Complete removal of outdated files: `.helmignore`, `LICENSE`, `README.adoc`, and several template files like `configfileConfigmap.yaml`, `configmap.yaml`, `dataPvc.yaml`, `envfileSecret.yaml`, `openAiApiSecret.yaml`, `paperlessApiSecret.yaml`, and others. - Introduction of a new Persistent Volume Claim configuration in `pvc.yaml` to simplify storage management. - Significant updates to `Chart.yaml` for better metadata, including a new maintainer and project description in German. - Enhancements to the main deployment template in `deployment.yaml`, focusing on clarity and proper utilization of Kubernetes security contexts, environment variables, and container properties. - Updated service definitions in `service.yaml` with better labels and service properties. - Refined the `ingress.yaml` to improve external service access management, including annotations for potential customization. These changes were implemented to modernize the Helm chart based on the current best practices, improve user experience, and set a foundation for future enhancements. There are no breaking changes to the existing user configurations.
88 lines
2.2 KiB
YAML
88 lines
2.2 KiB
YAML
replicaCount: 1
|
|
|
|
image:
|
|
repository: clusterzx/paperless-ai
|
|
pullPolicy: IfNotPresent
|
|
tag: ""
|
|
|
|
serviceAccount:
|
|
create: true
|
|
annotations: {}
|
|
name: ""
|
|
|
|
service:
|
|
type: ClusterIP
|
|
port: 30000
|
|
targetPort: 30000
|
|
|
|
env:
|
|
PUID: 1027
|
|
PGID: 100
|
|
PAPERLESS_AI_PORT: 30000
|
|
|
|
# Konfiguration für persistente Speicherung (Persistent Volume Claim).
|
|
persistence:
|
|
enabled: true
|
|
storageClassName: ""
|
|
accessMode: ReadWriteOnce
|
|
size: 1Gi
|
|
|
|
# Sicherheitskontext-Einstellungen für Pod und Container.
|
|
securityContext:
|
|
enabled: true
|
|
pod:
|
|
runAsUser: 1027
|
|
runAsGroup: 100
|
|
fsGroup: 100
|
|
container:
|
|
allowPrivilegeEscalation: false
|
|
capabilities:
|
|
drop:
|
|
- ALL
|
|
|
|
# Konfiguration für Horizontal Pod Autoscaling (HPA).
|
|
autoscaling:
|
|
enabled: false
|
|
minReplicas: 1
|
|
maxReplicas: 10
|
|
targetCPUUtilizationPercentage: 80
|
|
|
|
# Ressourcenanforderungen und -limits für den Container.
|
|
resources:
|
|
{}
|
|
# Wir empfehlen in der Regel, keine Standardressourcen anzugeben und dies
|
|
# dem Benutzer zu überlassen. Dies erhöht auch die Chancen, dass Charts
|
|
# in Umgebungen mit geringen Ressourcen, wie Minikube, laufen.
|
|
# Wenn du Ressourcen angeben möchtest, kommentiere die folgenden Zeilen aus,
|
|
# passe sie bei Bedarf an und entferne die geschweiften Klammern nach 'resources:'.
|
|
# limits:
|
|
# cpu: 100m
|
|
# memory: 128Mi
|
|
# requests:
|
|
# cpu: 100m
|
|
# memory: 128Mi
|
|
|
|
# Node-Selector für die Pod-Platzierung.
|
|
nodeSelector: {}
|
|
|
|
# Toleranzen für die Pod-Platzierung auf Tainted Nodes.
|
|
tolerations: []
|
|
|
|
# Affinitätsregeln für die Pod-Platzierung.
|
|
affinity: {}
|
|
|
|
# Ingress-Konfiguration (optional, aber üblich für Webanwendungen).
|
|
ingress:
|
|
enabled: false
|
|
className: "" # Der Ingress-Klassenname (z.B. nginx, traefik).
|
|
annotations: {}
|
|
hosts:
|
|
- host: chart-example.local # Beispiel-Hostname.
|
|
paths:
|
|
- path: / # Der Pfad, der weitergeleitet werden soll.
|
|
pathType: ImplementationSpecific # Der Typ des Pfades (Prefix, Exact, ImplementationSpecific).
|
|
tls: [] # TLS-Konfiguration für den Ingress.
|
|
# - secretName: chart-example-tls # Name des Secrets, das das TLS-Zertifikat enthält.
|
|
# hosts:
|
|
# - chart-example.local # Hostnamen, für die das Zertifikat gültig ist.
|