update mastodon role for helm chart ghp/mastodon-0.2.0
This commit is contained in:
parent
e8a17c9fa6
commit
0051262fbc
@ -14,30 +14,34 @@ mastodon_default_values:
|
|||||||
nginx.ingress.kubernetes.io/proxy-send-timeout: "600"
|
nginx.ingress.kubernetes.io/proxy-send-timeout: "600"
|
||||||
kubernetes.io/ingress.class: "{{ external_ingress_class if mastodon_publish else internal_ingress_class }}"
|
kubernetes.io/ingress.class: "{{ external_ingress_class if mastodon_publish else internal_ingress_class }}"
|
||||||
kubernetes.io/tls-acme: "true"
|
kubernetes.io/tls-acme: "true"
|
||||||
hostname: "{{ mastodon_short_name }}.{{ domain }}"
|
hosts:
|
||||||
|
- host: "{{ mastodon_short_name }}.{{ domain }}"
|
||||||
|
paths:
|
||||||
|
- path: '/'
|
||||||
tls:
|
tls:
|
||||||
- secretName: "{{ mastodon_short_name }}.{{ domain }}-tls"
|
- secretName: "{{ mastodon_short_name }}.{{ domain }}-tls"
|
||||||
hosts:
|
hosts:
|
||||||
- "{{ mastodon_short_name }}.{{ domain }}"
|
- "{{ mastodon_short_name }}.{{ domain }}"
|
||||||
|
|
||||||
# create an initial administrator user; the password is autogenerated and will
|
mastodon:
|
||||||
# have to be reset
|
# create an initial administrator user; the password is autogenerated and will
|
||||||
createAdmin:
|
# have to be reset
|
||||||
enabled: true
|
createAdmin:
|
||||||
username: "{{ mastodon_admin_user | default(mastodon_admin_username) | default('mastodon') }}"
|
|
||||||
password: "{{ mastodon_admin_pass | default(mastodon_admin_password) }}"
|
|
||||||
email: "{{ mastodon_admin_email }}"
|
|
||||||
|
|
||||||
# available locales: https://github.com/tootsuite/mastodon/blob/master/config/application.rb#L43
|
|
||||||
locale: en
|
|
||||||
|
|
||||||
cron:
|
|
||||||
# run `tootctl media remove` every week
|
|
||||||
removeMedia:
|
|
||||||
enabled: true
|
enabled: true
|
||||||
schedule: "0 0 * * 0"
|
username: "{{ mastodon_admin_user | default(mastodon_admin_username) | default('mastodon') }}"
|
||||||
|
password: "{{ mastodon_admin_pass | default(mastodon_admin_password) }}"
|
||||||
application:
|
email: "{{ mastodon_admin_email }}"
|
||||||
|
|
||||||
|
# available locales: https://github.com/tootsuite/mastodon/blob/master/config/application.rb#L43
|
||||||
|
locale: en
|
||||||
|
local_domain: "{{ mastodon_short_name }}.{{ domain }}"
|
||||||
|
|
||||||
|
cron:
|
||||||
|
# run `tootctl media remove` every week
|
||||||
|
removeMedia:
|
||||||
|
enabled: true
|
||||||
|
schedule: "0 0 * * 0"
|
||||||
|
|
||||||
web:
|
web:
|
||||||
port: 3000
|
port: 3000
|
||||||
streaming:
|
streaming:
|
||||||
@ -48,29 +52,45 @@ mastodon_default_values:
|
|||||||
workers: 2
|
workers: 2
|
||||||
sidekiq:
|
sidekiq:
|
||||||
concurrency: 25
|
concurrency: 25
|
||||||
|
|
||||||
# these must be set manually; autogenerated keys are rotated on each upgrade
|
# these must be set manually; autogenerated keys are rotated on each upgrade
|
||||||
secrets:
|
secrets:
|
||||||
secret_key_base: "{{ mastodon_vapid_public_key_base64 | hash('sha256') }}"
|
secret_key_base: "{{ mastodon_vapid_public_key_base64 | hash('sha256') }}"
|
||||||
otp_secret: "{{ mastodon_vapid_public_key_base64 | hash('sha256') | hash('sha256') }}"
|
otp_secret: "{{ mastodon_vapid_public_key_base64 | hash('sha256') | hash('sha256') }}"
|
||||||
vapid:
|
vapid:
|
||||||
private_key: "{{ mastodon_vapid_private_key_base64 | b64decode }}"
|
private_key: "{{ mastodon_vapid_private_key_base64 | b64decode }}"
|
||||||
public_key: "{{ mastodon_vapid_public_key_base64 | b64decode }}"
|
public_key: "{{ mastodon_vapid_public_key_base64 | b64decode }}"
|
||||||
|
|
||||||
smtp:
|
smtp:
|
||||||
auth_method: login
|
auth_method: login
|
||||||
ca_file:
|
ca_file:
|
||||||
delivery_method: smtp
|
delivery_method: smtp
|
||||||
domain: "{{ domain }}"
|
domain: "{{ domain }}"
|
||||||
enable_starttls_auto: false
|
enable_starttls_auto: false
|
||||||
from_address: "{{ mastodon_admin_email }}"
|
from_address: "{{ mastodon_admin_email }}"
|
||||||
login: "{{ mastodon_admin_user | default(mastodon_admin_username) | default('mastodon') }}"
|
login: "{{ mastodon_admin_user | default(mastodon_admin_username) | default('mastodon') }}"
|
||||||
openssl_verify_mode: false
|
openssl_verify_mode: false
|
||||||
password: "{{ mastodon_ldap_pass | default(mastodon_ldap_password) }}"
|
password: "{{ mastodon_ldap_pass | default(mastodon_ldap_password) }}"
|
||||||
port: 465
|
port: 465
|
||||||
reply_to: "{{ mastodon_admin_email }}"
|
reply_to: "{{ mastodon_admin_email }}"
|
||||||
server: "{{ mail_short_name | default('mail') }}.{{ domain }}"
|
server: "{{ mail_short_name | default('mail') }}.{{ domain }}"
|
||||||
tls: true
|
tls: true
|
||||||
|
persistence:
|
||||||
|
assets:
|
||||||
|
# ReadWriteOnce is more widely supported than ReadWriteMany, but limits
|
||||||
|
# scalability, since it requires the Rails and Sidekiq pods to run on the
|
||||||
|
# same node.
|
||||||
|
storageClassName: "{{ mastodon_assets_storage | default('nfs-ssd') }}"
|
||||||
|
accessMode: "{{ mastodon_assets_storage_mode | default('ReadWriteMany') }}"
|
||||||
|
resources:
|
||||||
|
requests:
|
||||||
|
storage: "{{ mastodon_assets_size | default('10Gi') }}"
|
||||||
|
system:
|
||||||
|
storageClassName: "{{ mastodon_system_storage | default('nfs-hdd') }}"
|
||||||
|
accessMode: "{{ mastodon_system_storage_mode | default('ReadWriteMany') }}"
|
||||||
|
resources:
|
||||||
|
requests:
|
||||||
|
storage: "{{ mastodon_system_size | default('100Gi') }}"
|
||||||
|
|
||||||
elasticsearch:
|
elasticsearch:
|
||||||
# `false` will disable full-text search
|
# `false` will disable full-text search
|
||||||
@ -99,9 +119,7 @@ mastodon_default_values:
|
|||||||
postgresql:
|
postgresql:
|
||||||
# Disable for external PostgreSQL
|
# Disable for external PostgreSQL
|
||||||
enabled: false
|
enabled: false
|
||||||
# Set for external PostgreSQL
|
postgresqlHostname: "{{ namespace }}-postgres.{{ postgres_db_namespace | default(namespace) }}.svc.cluster.local"
|
||||||
# postgresqlHost: postgresql.local
|
|
||||||
postgresqlHost: "{{ namespace }}-postgres.{{ postgres_db_namespace | default(namespace) }}.svc.cluster.local"
|
|
||||||
postgresqlDatabase: mastodon
|
postgresqlDatabase: mastodon
|
||||||
# you must set a password; the password generated by the postgresql chart will
|
# you must set a password; the password generated by the postgresql chart will
|
||||||
# be rotated on each upgrade:
|
# be rotated on each upgrade:
|
||||||
@ -111,28 +129,9 @@ mastodon_default_values:
|
|||||||
|
|
||||||
# https://github.com/bitnami/charts/tree/master/bitnami/redis#parameters
|
# https://github.com/bitnami/charts/tree/master/bitnami/redis#parameters
|
||||||
redis:
|
redis:
|
||||||
|
architecture: standalone
|
||||||
enabled: true
|
enabled: true
|
||||||
usePassword: true
|
auth:
|
||||||
# you must set a password; the password generated by the redis chart will be
|
password: "{{ mastodon_vapid_public_key_base64 | hash('md5') }}"
|
||||||
# rotated on each upgrade:
|
|
||||||
password: "{{ mastodon_vapid_public_key_base64 | hash('md5') }}"
|
|
||||||
cluster:
|
|
||||||
enabled: false
|
|
||||||
|
|
||||||
persistence:
|
|
||||||
assets:
|
|
||||||
# ReadWriteOnce is more widely supported than ReadWriteMany, but limits
|
|
||||||
# scalability, since it requires the Rails and Sidekiq pods to run on the
|
|
||||||
# same node.
|
|
||||||
storageClassName: "{{ mastodon_assets_storage | default('nfs-ssd') }}"
|
|
||||||
accessMode: "{{ mastodon_assets_storage_mode | default('ReadWriteMany') }}"
|
|
||||||
resources:
|
|
||||||
requests:
|
|
||||||
storage: "{{ mastodon_assets_size | default('10Gi') }}"
|
|
||||||
system:
|
|
||||||
storageClassName: "{{ mastodon_system_storage | default('nfs-hdd') }}"
|
|
||||||
accessMode: "{{ mastodon_system_storage_mode | default('ReadWriteMany') }}"
|
|
||||||
resources:
|
|
||||||
requests:
|
|
||||||
storage: "{{ mastodon_system_size | default('100Gi') }}"
|
|
||||||
|
|
||||||
|
|||||||
Loading…
Reference in New Issue
Block a user