Created
December 16, 2018 00:24
-
-
Save stormmore/55f25ce5f80021d1d49003c2b9a53db8 to your computer and use it in GitHub Desktop.
Values file from Drone chart
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
appVersion: &tag 1.0.0-rc.2 | |
images: | |
## The official drone (server) image, change tag to use a different version. | |
## ref: https://hub.docker.com/r/drone/drone/tags/ | |
## | |
server: | |
repository: "docker.io/drone/drone" | |
tag: *tag | |
pullPolicy: IfNotPresent | |
service: | |
httpPort: 80 | |
## If service.type is not set to NodePort, the following statement | |
## will be ignored. | |
## | |
# nodePort: 32015 | |
## Service type can be set to ClusterIP, NodePort or LoadBalancer. | |
## | |
type: ClusterIP | |
ingress: | |
## If true, Drone Ingress will be created. | |
## | |
enabled: false | |
## Drone Ingress annotations | |
## | |
# annotations: | |
# kubernetes.io/ingress.class: nginx | |
# kubernetes.io/tls-acme: 'true' | |
## Drone hostnames must be provided if Ingress is enabled | |
## | |
# hosts: | |
# - drone.domain.io | |
## Drone Ingress TLS configuration secrets | |
## Must be manually created in the namespace | |
## | |
# tls: | |
# - secretName: drone-tls | |
# hosts: | |
# - drone.domain.io | |
## Pod scheduling preferences. | |
## ref: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/#affinity-and-anti-affinity | |
## | |
affinity: {} | |
## Additional server annotations. | |
## ref: https://kubernetes.io/docs/concepts/overview/working-with-objects/annotations/ | |
## | |
annotations: {} | |
config: | |
cookie: | |
# String literal value provides a secret key used to sign authentication | |
# cookies. This value is optional. If unset, a random value is generated | |
# each time the server is started. | |
secret: | |
secretKeyRef: | |
# Duration value sets the authentication cookie expiration. This value is | |
# optional, with a default value of 72 hours. | |
timeout: 72h | |
cron: | |
# Boolean value disables the cron scheduler. The default value is false. | |
disabled: false | |
# Duration value provides the interval at which the cron scheduler is run. | |
# This configuration parameter is optional, with a default value of 1 hour. | |
interval: 1h | |
# Optional string literal value provides the filepath of the Drone Enterprise | |
# license key. This is used to unlock the Drone Enterprise edition. | |
license: | |
logs: | |
# Enables color formatting of the logs; used in conjunction with pretty | |
# printed logs. This configuration parameter is of type boolean and is | |
# optional. | |
color: true | |
# Enables debug logging. This configuration parameter is of type boolean | |
# and is optional. | |
debug: false | |
# Enables human-readable logs as an alternate to the default json format. | |
# This configuration parameter is of type boolean and is optional. | |
pretty: true | |
repository: | |
# Optional comma-separated list of accounts, used to limit which | |
# repositories can be activated within the system. In order to activate a | |
# repository, it must be owned by an account in this list. | |
filter: | |
rpc: | |
# Required string literal value provides the drone shared secret. This is | |
# used to authenticate the rpc connection to the server. The server and | |
# agent must be provided the same secret value. | |
secret: | |
secretKeyRef: | |
# String literal value … | |
server: https://drone.company.com/ | |
server: | |
# Required string literal value specifies the Drone server hostname. | |
host: drone.company.com | |
# String literal value specifies the port used when listening for incoming | |
# http connections. You should never need to override this value. You should | |
# only set this value when executing the Drone binary outside of a container. | |
# port: | |
# Required string literal value specifies the Drone server protocol. | |
proto: http | |
tls: | |
# Automatically generates an SSL certificate using Lets Encrypt, and | |
# configures the server to accept HTTPS requests. This configuration | |
# parameter is of type boolean and is optional, and is disabled by default. | |
autocert: false | |
# Path to an SSL certificate used by the server to accept HTTPS requests. | |
# This configuration parameter is of type string and is optional. | |
# | |
# Please note that the cert file should be the concatenation of the server’s | |
# certificate, any intermediates, and the certificate authority’s | |
# certificate. | |
cert: | |
# Path to an SSL certificate key used by the server to accept HTTPS | |
# requests. This configuration parameter is of type string and is optional. | |
key: | |
user: | |
# Optional user account that should be created on startup. This should be | |
# used to seed the system with an administrative account. It can be a real | |
# account (i.e. a real github user) or it can be a machine account. | |
# | |
# Providing a token is required for machine accounts, and must be 32 bytes. | |
create: | |
# Optional comma-separated list of accounts. Registration is limited to | |
# users included in this list, or users that are members of organizations | |
# included in this list. | |
filter: | |
webhook: | |
# String literal value provides a comma-separated list of webhook endpoints, | |
# to which global system events are delivered. | |
webhook: | |
# Shared secret used to create an http-signature. The webhook recipient can | |
# use the shared secret to verify request authenticity. | |
secret: | |
# Boolean value disables tls verification when establishing a connection to | |
# the remote webhook address. The default value is false. | |
skip_verify: false | |
database: | |
engine: sqlite3 | |
sqlite3: | |
# String literal value provides the database driver name. The default value | |
# is the sqlite3 driver. Alternate drivers are postgres and mysql. | |
driver: sqlite3 | |
# String literal value provides the database connection string. The default | |
# value is the path of the embedded sqlite database file. | |
datasource: /var/lib/drone/database.sqlite | |
postgresql: | |
driver: postgres | |
host: '{{ include "postgresql.fullname" . }}' | |
username: '{{ .Values.postgresql.postgresUser }}' | |
password: | |
secretKeyRef: | |
name: '{{ include "drone.fullname" . }}' | |
key: "POSTGRES_PASSWORD" | |
db: '{{ .Values.postgresql.postgresDatabase }}' | |
kubedb: | |
driver: postgres | |
host: '{{ template "drone.fullname" . }}-pg' | |
username: | |
secretKeyRef: | |
name: '{{ template "drone.fullname" . }}-pg-auth' | |
key: "POSTGRES_USER" | |
password: | |
secretKeyRef: | |
name: '{{ template "drone.fullname" . }}-pg-auth' | |
key: "POSTGRES_PASSWORD" | |
db: postgres | |
datasource: | |
postgres: "postgres://${DRONE_DATABASE_USERNAME}:${DRONE_DATABASE_PASSWORD}@${DRONE_DATABASE_HOST}:5432/${DRONE_DATABASE_DB}?sslmode=disable" | |
mysql: "${DRONE_DATABASE_USERNAME}:${DRONE_DATABASE_PASSWORD}@tcp(${DRONE_DATABASE_HOST}:3306)/${DRONE_DATABASE_DB}?parseTime=true" | |
env: {} | |
# Additional server environment variables | |
git: | |
# Boolean value configures Drone to authenticate when cloning public | |
# repositories. This is only required when your source code management system | |
# (e.g. GitHub Enterprise) has private mode enabled. | |
always_auth: "false" | |
# String literal value overrides the default git username and password used to | |
# authenticate and clone private repositories. | |
username: | |
# String literal value overrides the default git username and password used to | |
# authenticate and clone private repositories. | |
password: | |
# Boolean value disables tls verification when establishing a connection to | |
# the remote server. The default value is false. | |
skip_verify: "false" | |
provider: gitea | |
bitbucket: | |
# String literal value provides the bitbucket oauth client id. This is used | |
# to authorize access to bitbucket on behalf of a Drone user. | |
client_id: | |
# String literal value provides the bitbucket oauth client sercret. This is | |
# used to authorize access to bitbucket on behalf of a Drone user. | |
client_secret: | |
gitea: | |
# String literal value provides the gitea server address. | |
server: https://try.gitea.io | |
github: | |
# String literal value provides the github oauth client id. This is used to | |
# authorize access to github on behalf of a Drone user. | |
client_id: | |
# String literal value provides the github oauth client sercret. This is | |
# used to authorize access to github on behalf of a Drone user. | |
client_secret: | |
# String literal value provides a comma-separated list of oauth scopes. The | |
# default values should not be modified. | |
scope: | |
# String literal value provides the github server address. The default value | |
# is https://github.com | |
server: https://github.com | |
gitlab: | |
# String literal value provides the GitLab oauth client id. This is used to | |
# authorize access to GitLab on behalf of a Drone user. | |
client_id: | |
# String literal value provides the GitLab oauth client sercret. This is | |
# used to authorize access to GitLab on behalf of a Drone user. | |
client_secret: | |
# String literal value provides the GitLab server address. The default value | |
# is https://gitlab.com | |
server: https://gitlab.com | |
gogs: | |
# String literal value provides the gogs server address. | |
server: https://try.gogs.io | |
stash: | |
server: https://bitbucket.company.com | |
## Node labels for pod assignment | |
## ref: https://kubernetes.io/docs/user-guide/node-selection | |
## | |
nodeSelector: {} | |
## CPU and memory limits for drone server | |
## | |
resources: {} | |
# requests: | |
# memory: 32Mi | |
# cpu: 40m | |
# limits: | |
# memory: 2Gi | |
# cpu: 1 | |
## Use an alternate scheduler, e.g. "stork". | |
## ref: https://kubernetes.io/docs/tasks/administer-cluster/configure-multiple-schedulers/ | |
## | |
# schedulerName: | |
## additional siecar containers, e. g. for a database proxy, such as Google's cloudsql-proxy. | |
## ex: https://github.com/kubernetes/charts/tree/master/stable/keycloak | |
## | |
extraContainers: | | |
## additional volumes, e. g. for secrets used in an extraContainers. | |
## | |
extraVolumes: | | |
## Enable scraping of the /metrics endpoint for Prometheus | |
metrics: | |
prometheus: | |
enabled: false | |
## Enable persistence using Persistent Volume Claims | |
## ref: http://kubernetes.io/docs/user-guide/persistent-volumes/ | |
## | |
persistence: | |
enabled: false | |
## A manually managed Persistent Volume and Claim | |
## Requires persistence.enabled: true | |
## If defined, PVC must be created manually before volume will be bound | |
# existingClaim: | |
## rabbitmq data Persistent Volume Storage Class | |
## If defined, storageClassName: <storageClass> | |
## If set to "-", storageClassName: "", which disables dynamic provisioning | |
## If undefined (the default) or set to null, no storageClassName spec is | |
## set, choosing the default provisioner. (gp2 on AWS, standard on | |
## GKE, AWS & OpenStack) | |
## | |
# storageClass: "-" | |
accessMode: ReadWriteOnce | |
size: 1Gi | |
rbac: | |
## Specifies whether RBAC resources should be created | |
create: true | |
## RBAC api version (v1, v1beta1, or v1alpha1) | |
apiVersion: v1 | |
serviceAccount: | |
## Specifies whether a ServiceAccount should be created | |
create: true | |
## The name of the ServiceAccount to use. | |
## If not set and create is true, a name is generated using the fullname template | |
name: | |
postgresql: | |
### Install PostgreSQL dependency | |
## | |
install: false | |
### PostgreSQL User to create. | |
## | |
postgresUser: drone | |
## PostgreSQL Password for the new user. | |
## If not set, a random 10 characters password will be used. | |
## | |
postgresPassword: drone | |
## PostgreSQL Database to create. | |
## | |
postgresDatabase: drone | |
## Persistent Volume Storage configuration. | |
## ref: https://kubernetes.io/docs/user-guide/persistent-volumes | |
## | |
persistence: | |
## Enable PostgreSQL persistence using Persistent Volume Claims. | |
## | |
enabled: false | |
# postgres data Persistent Volume Storage Class | |
# If defined, storageClassName: <storageClass> | |
# If set to "-", storageClassName: "", which disables dynamic provisioning | |
# If undefined (the default) or set to null, no storageClassName spec is | |
# set, choosing the default provisioner. (gp2 on AWS, standard on | |
# GKE, AWS & OpenStack) | |
# | |
# storageClass: "-" | |
# Persistent Volume Access Mode. | |
# | |
accessMode: ReadWriteOnce | |
# Persistent Volume Storage Size. | |
# | |
size: 1Gi | |
# Additional options are available, review the stable/postgres chart for details | |
kubedb: | |
db: | |
postgres: | |
create: false | |
version: 10.2-v1 | |
replicas: 1 | |
standbyMode: hot | |
streamingMode: asynchronous | |
archiver: | |
secret: | |
bucket: | |
databaseSecretName: | |
storageType: Durable | |
storageClassName: "gp2" | |
accessModes: | |
- ReadWriteOnce | |
storage: 50Mi | |
initScript: | |
snapshot: | |
name: | |
namespace: | |
wal: | |
secret: | |
endpoint: | |
bucket: | |
prefix: | |
configMap: | |
updateStrategy: RollingUpdate | |
terminationPolicy: DoNotTerminate |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment