values.yaml
No OneTemporary
Actions

Authored By

Unknown

Size

4 KB

Referenced Files

None

Subscribers

None

values.yaml
View Options

	# Specify your domain name
	domainName: "DOMAIN"

	# The admin user is always admin@domainName
	adminPassword: "ADMIN_PASSWORD"

	# Generate with "openssl passwd -1 simple123"
	externalServiceUserPassword: "EXTERNAL_SERVICE_USER_PASSWORD"

	serviceAccounts:
	monitoring1:
	user: test1@DOMAIN
	password: TEST_PASSWORD
	monitoring2:
	user: test2@DOMAIN
	password: TEST_PASSWORD

	# Generate
	appKey: "APP_KEY"

	image:
	imapImage: "IMAGE_REGISTRY/imap:IMAGE_VERSION"
	kolabImage: "IMAGE_REGISTRY/webapp:IMAGE_VERSION"
	collaboraImage: "IMAGE_REGISTRY/collabora:IMAGE_VERSION"
	redisImage: "IMAGE_REGISTRY/redis:IMAGE_VERSION"
	roundcubeImage: "IMAGE_REGISTRY/roundcube:IMAGE_VERSION"
	mariadbImage: "IMAGE_REGISTRY/mariadb:IMAGE_VERSION"
	meetImage: "IMAGE_REGISTRY/meet:IMAGE_VERSION"
	coturnImage: "IMAGE_REGISTRY/coturn:IMAGE_VERSION"
	postfixImage: "IMAGE_REGISTRY/postfix:IMAGE_VERSION"
	amavisImage: "IMAGE_REGISTRY/amavis:IMAGE_VERSION"
	utilsImage: "IMAGE_REGISTRY/utils:IMAGE_VERSION"
	minioImage: "IMAGE_REGISTRY/minio:IMAGE_VERSION"
	proxyImage: "IMAGE_REGISTRY/proxy:IMAGE_VERSION"
	vectorImage: "IMAGE_REGISTRY/vector:IMAGE_VERSION"
	synapseImage: "IMAGE_REGISTRY/synapse:IMAGE_VERSION"
	elementImage: "IMAGE_REGISTRY/element:IMAGE_VERSION"
	pullPolicy: IfNotPresent
	pullSecret: "PULL_SECRET"

	certManager:
	letsencryptIssuer:
	enabled: false
	email: "admin@DOMAIN"

	# Configure which tls secret to use
	tlsSecret:
	# FIXME transition to letsencrypt via command that does the following:
	# name: kolab-cert-letsencrypt
	# type: letsencrypt \
	# This is how to inject an externally managed cert
	# type: external
	# secretName: externalSecret
	# This is how to inject a static certificate
	name: kolab-cert-static
	type: static
	crt: \|
	TLS_CERT
	key: \|
	TLS_KEY
	ca: \|
	CA_CERT

	passport:
	proxyOauthClientId: "PASSPORT_PROXY_OAUTH_CLIENT_ID"
	proxyOauthClientSecret: "PASSPORT_PROXY_OAUTH_CLIENT_SECRET"
	webmailSSOClientId: "PASSPORT_WEBMAIL_SSO_CLIENT_ID"
	webmailSSOClientSecret: "PASSPORT_WEBMAIL_SSO_CLIENT_SECRET"
	privateKey: \|
	PASSPORT_PRIVATE_KEY
	publicKey: \|
	PASSPORT_PUBLIC_KEY

	kolab:
	resources:
	limits:
	memory: 1000Mi
	requests:
	memory: 100Mi

	horizon:
	resources:
	limits:
	memory: 500Mi
	requests:
	memory: 200Mi

	meet:
	publicIp: MEET_PUBLIC_IP
	webhookToken: "MEET_WEBHOOK_TOKEN"
	serverToken: "MEET_SERVER_TOKEN"
	resources:
	limits:
	memory: 500Mi

	collabora:
	resources:
	requests:
	memory: 400Mi

	imap:
	adminLogin: "cyrus-admin"
	adminPassword: "IMAP_ADMIN_PASSWORD"
	resources:
	limits:
	memory: 500Mi
	requests:
	memory: 60Mi
	volumes:
	spool:
	storageClassName: local-path
	capacity: 100Mi
	lib:
	storageClassName: local-path
	capacity: 100Mi

	roundcube:
	desKey: "ROUNDCUBE_DES_KEY"
	resources:
	limits:
	memory: 500Mi
	requests:
	memory: 500Mi

	mariadb:
	rootPassword: "DB_ROOT_PASSWORD"
	# Used by kolab to access the roundcube mfa db
	mfaDsn: "mysql://roundcube:DB_ROUNDCUBE_PASSWORD@mariadb/roundcube"
	kolabPassword: "DB_KOLAB_PASSWORD"
	kolabLegacyPassword: "DB_LEGACY_PASSWORD"
	roundcubePassword: "DB_ROUNDCUBE_PASSWORD"
	volumes:
	data:
	storageClassName: local-path
	capacity: 100Mi
	resources:
	limits:
	memory: 500Mi
	requests:
	memory: 120Mi

	redis:
	password: "REDIS_PASSWORD"
	resources:
	limits:
	memory: 500Mi
	requests:
	memory: 20Mi

	postfix:
	externalIP: PRIMARY_IP
	volumes:
	spool:
	storageClassName: local-path
	capacity: 100Mi
	lib:
	storageClassName: local-path
	capacity: 100Mi
	resources:
	limits:
	memory: 500Mi
	requests:
	memory: 20Mi

	proxy:
	externalIP: PRIMARY_IP

	amavis:
	resources:
	limits:
	memory: 500Mi
	requests:
	memory: 20Mi
	dkim:
	identifier: DKIM_IDENTIFIER
	# Generated via amavis genrsa, must match the public key in the DNS record
	key: \|
	DKIM_KEY

	mail:
	# Used for the noreply@domainName sender
	noreplyPassword: "MAIL_NOREPLY_PASSWORD"

	minio:
	rootUser: "admin"
	rootPassword: "MINIO_ROOT_PASSWORD"
	volumes:
	data:
	storageClassName: local-path
	capacity: 100Mi

	alertmanager:
	enabled: false

	openshift: false

	prometheus:
	clusterMonitoring: true

	loki:
	storage:
	bucketNames:
	chunks: chunks
	ruler: ruler
	admin: admin
	type: s3
	s3:
	endpoint: http://minio:9000
	region: local
	secretAccessKey: admin
	accessKeyId: MINIO_ROOT_PASSWORD
	s3ForcePathStyle: true
	insecure: true

File Metadata

Mime Type: text/plain
Expires: Sat, Apr 4, 4:09 AM (4 h, 37 m)
Storage Engine: blob
Storage Format: Raw Data
Storage Handle: 18780270
Default Alt Text: values.yaml (4 KB)

values.yamlNo OneTemporaryActions

values.yamlView Options

File Metadata

Event Timeline

values.yaml
No OneTemporary
Actions

values.yaml
View Options