Git Product home page Git Product logo

passbolt-helm's Introduction

Passbolt Kubernetes Helm Charts

GitHub license GitHub issues GitHub issues

This helm chart installs the passbolt container and a mysql database (mariadb)

Parameters

For more parameters you should have a look at ...

General

Parameter Description Default
replicaCount How many replicas should be deployed 1
image.repository Passbolt image repository "passbolt/passbolt"
image.tag Passbolt image tag "latest"
image.pullPolicy Image pull policy IfNotPresent
imagePullSecrets Image pull secrets []
nameOverride Name override ""
fullnameOverride Full name override ""
service.type Service type ClusterIP
service.port Service port 80
ingress.enabled Enable ingress true
ingress.host Ingress host passbolt.yourdomain.com

Passbolt

Parameter Description Default
passbolt.persistence.enabled Enable/Disable persistence Disk for uploaded Files (Avatars) true
passbolt.persistence.storageClass Disk storageclass -
passbolt.persistence.accessMode Disk access mode ReadWriteMany
passbolt.persistence.size Disk size 1Gi
passbolt.config.debug Enable/Disable debug output in passbolt image false
passbolt.config.registration Enable/Disable user can register false
passbolt.config.salt Salt. Generate: openssl rand -base64 32 "your salt"
passbolt.config.gpgServerKeyFingerprint The GPG server key fingerprint. See GPG key generation "your gpg server key fingerprint"
passbolt.config.serverkey The GPG server key. If set the key will not be read from file
passbolt.config.serverkey_private The GPG private server key. If set the private key will not be read from file
passbolt.config.license.enabled Set true if you own a license key. Add the license key in secrets/pro-license/license false
passbolt.config.license.key The license key. If set the license key will not be read from file. false
passbolt.config.plugins.exportenabled Enable export plugin true
passbolt.config.plugins.importenabled Enable import plugin true
passbolt.config.email.enabled Enable/Disable sending emails transport false
passbolt.config.email.from From email address you@localhost
passbolt.config.email.host Email server hostname localhost
passbolt.config.email.port Email server port 25
passbolt.config.email.timeout Email server timeout 30
passbolt.config.email.username Username for email server auth username
passbolt.config.email.password Password for email server auth password
passbolt.config.livenessProbe.failureThreshold failureThreshold for livenessProbe 3
passbolt.config.livenessProbe.successThreshold successThreshold for livenessProbe 1
passbolt.config.livenessProbe.periodSeconds periodSeconds for livenessProbe 10
passbolt.config.livenessProbe.initialDelaySeconds initialDelaySeconds for livenessProbe 60
passbolt.config.livenessProbe.timeoutSeconds timeoutSeconds for livenessProbe 10
passbolt.config.readinessProbe.failureThreshold failureThreshold for readinessProbe 3
passbolt.config.readinessProbe.successThreshold successThreshold for readinessProbe 1
passbolt.config.readinessProbe.periodSeconds periodSeconds for readinessProbe 10
passbolt.config.readinessProbe.initialDelaySeconds initialDelaySeconds for readinessProbe 60
passbolt.config.readinessProbe.timeoutSeconds timeoutSeconds for readinessProbe 10

Database

Parameter Description Default
mariadb.db.name Name of the passbolt database passbolt
mariadb.db.user Username of the passbolt user passbolt
mariadb.db.password Passwort for the passbold database user passbolt

GPG key genereation

  1. Create GPG config file gpg-server-key.conf with the following content

     %echo Generating a basic OpenPGP key
 Key-Type: RSA
 Key-Length: 4096
 Subkey-Type: RSA
 Subkey-Length: 4096
 Name-Email: [email protected]
 Name-Real: Joe Tester
 Expire-Date: 0
 %echo done

  2. Create GPG keys

    ⚠️ do not set a password, since passbolt won't start ⚠️

     gpg --gen-key --batch gpg-server-key.conf

  3. List GPG keys

     gpg --list-secret-keys --keyid-format LONG

    You will need this to export it and in your values.yaml to validate the keys.

  4. Export keys

     KEY_ID=<put your key here>
 gpg --armor --export $KEY_ID > serverkey.asc
 gpg --armor --export-secret-keys $KEY_ID > serverkey_private.asc

⚠️ Copy the serverkey.asc and serverkey_private.asc files to secrets/gpg.

Create first passbolt admin user

root@passbolt-passbolt-app:/var/www/passbolt# su -m -c "bin/cake passbolt register_user -u [email protected] -f Admin -l Istrator -r admin" -s /bin/sh www-data

passbolt-helm's People

Contributors

mms-gianni avatar mms-bruno avatar claudio-walser avatar fourslashw avatar srf-stefan avatar

Recommend Projects

  • React photo React

    A declarative, efficient, and flexible JavaScript library for building user interfaces.

  • Vue.js photo Vue.js

    🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.

  • Typescript photo Typescript

    TypeScript is a superset of JavaScript that compiles to clean JavaScript output.

  • TensorFlow photo TensorFlow

    An Open Source Machine Learning Framework for Everyone

  • Django photo Django

    The Web framework for perfectionists with deadlines.

  • D3 photo D3

    Bring data to life with SVG, Canvas and HTML. 📊📈🎉

Recommend Topics

  • javascript

    JavaScript (JS) is a lightweight interpreted programming language with first-class functions.

  • web

    Some thing interesting about web. New door for the world.

  • server

    A server is a program made to process requests and deliver data to clients.

  • Machine learning

    Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.

  • Game

    Some thing interesting about game, make everyone happy.

Recommend Org

  • Facebook photo Facebook

    We are working to build community through open source technology. NB: members must have two-factor auth.

  • Microsoft photo Microsoft

    Open source projects and samples from Microsoft.

  • Google photo Google

    Google ❤️ Open Source for everyone.

  • D3 photo D3

    Data-Driven Documents codes.