github/jumpserver-charts
1
0
Fork 0
mirror of https://github.com/jumpserver/helm-charts.git synced 2025-08-19 23:47:54 +00:00
Code Issues Projects Releases Wiki Activity

feat: 更新 v3.3.0

Browse Source
This commit is contained in:
吴小白 2023-05-18 20:52:12 +08:00
parent ec8886ae85
commit 49e3980408
9 changed files with 269 additions and 12 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
charts/jumpserver/Chart.yaml
View File

@ -1,5 +1,5 @@
apiVersion: v1 apiVersion: v1
appVersion: "v3.2.2" appVersion: "v3.3.0"
description: A Helm chart for Deploying Jumpserver on Kubernetes description: A Helm chart for Deploying Jumpserver on Kubernetes
engine: gotpl engine: gotpl
home: https://jumpserver.org home: https://jumpserver.org
@ -10,4 +10,4 @@ maintainers:
sources: sources:
- https://github.com/jumpserver/ - https://github.com/jumpserver/
name: jumpserver name: jumpserver
version: 3.2.2 version: 3.3.0

2
charts/jumpserver/README.md
View File

@ -30,7 +30,7 @@ helm repo add jumpserver https://jumpserver.github.io/helm-charts
| `nameOveride` | name override | `nil` | | `nameOveride` | name override | `nil` |
| `fullNameOveride` | full name override | `nil` | | `fullNameOveride` | full name override | `nil` |
| `global.imageRegistry` | 仓库地址 | `docker.io` | | `global.imageRegistry` | 仓库地址 | `docker.io` |
| `global.imageTag` | 版本号 | `v3.2.2 ` | | `global.imageTag` | 版本号 | `v3.3.0 ` |
| `global.imagePullSecrets` | 私有仓库认证凭据 | `nil` | | `global.imagePullSecrets` | 私有仓库认证凭据 | `nil` |
| `global.storageClass` | 存储 sc | `nil` | | `global.storageClass` | 存储 sc | `nil` |
| `ingress.enabled` | 开启 ingress | `true` | | `ingress.enabled` | 开启 ingress | `true` |

8
charts/jumpserver/templates/_helpers.tpl
View File

@ -161,6 +161,14 @@ Define JumpServer StorageClass.
{{- end -}} {{- end -}}
{{- end -}} {{- end -}}
{{- define "jumpserver.video.storageClass" -}}
{{- if .Values.global.storageClass }}
{{- .Values.global.storageClass }}
{{- else -}}
{{- .Values.video.persistence.storageClassName -}}
{{- end -}}
{{- end -}}
{{- define "jumpserver.web.storageClass" -}} {{- define "jumpserver.web.storageClass" -}}
{{- if .Values.global.storageClass }} {{- if .Values.global.storageClass }}
{{- .Values.global.storageClass }} {{- .Values.global.storageClass }}

7
charts/jumpserver/templates/_images.tpl
View File

@ -71,6 +71,13 @@ Return the proper JumpServer omnidb image name
{{- include "common.images.image" ( dict "imageRoot" .Values.omnidb.image "global" .Values.global ) -}} {{- include "common.images.image" ( dict "imageRoot" .Values.omnidb.image "global" .Values.global ) -}}
{{- end -}} {{- end -}}
{{/*
Return the proper JumpServer video image name
*/}}
{{- define "jumpserver.videoImage" -}}
{{- include "common.images.image" ( dict "imageRoot" .Values.video.image "global" .Values.global ) -}}
{{- end -}}
{{/* {{/*
Return the proper Docker Image Registry Secret Names (deprecated: use common.images.renderPullSecrets instead) Return the proper Docker Image Registry Secret Names (deprecated: use common.images.renderPullSecrets instead)
{{ include "common.images.pullSecrets" ( dict "images" (list .Values.path.to.the.image1, .Values.path.to.the.image2) "global" .Values.global) }} {{ include "common.images.pullSecrets" ( dict "images" (list .Values.path.to.the.image1, .Values.path.to.the.image2) "global" .Values.global) }}

2
charts/jumpserver/templates/omnidb/pvc-omnidb-data.yaml
View File

@ -25,5 +25,5 @@ spec:
requests: requests:
storage: {{ .persistence.size | quote }} storage: {{ .persistence.size | quote }}
{{- end }} {{- end }}
storageClassName: {{ include "jumpserver.lion.storageClass" . }} storageClassName: {{ include "jumpserver.omnidb.storageClass" . }}
{{- end }} {{- end }}

101
charts/jumpserver/templates/video/deployment-video.yaml Normal file
View File

@ -0,0 +1,101 @@
{{- if .Values.xpack.enabled }}
{{- with .Values.video }}
{{- $fullName := printf "%s-%s" (include "jumpserver.fullname" $) "jms-video" }}
{{- $containerName := "jms-video" }}
{{- $image := printf "%s" (include "jumpserver.videoImage" $) }}
apiVersion: apps/v1
kind: Deployment
metadata:
name: {{ $fullName }}
labels:
{{- include "jumpserver.labels" $ | nindent 4 }}
{{- toYaml .labels | nindent 4 }}
spec:
replicas: {{ .replicaCount }}
selector:
matchLabels:
app.kubernetes.io/name: {{ include "jumpserver.name" $ }}
app.kubernetes.io/instance: {{ $.Release.Name }}
{{- toYaml .labels | nindent 6 }}
template:
metadata:
labels:
app.kubernetes.io/name: {{ include "jumpserver.name" $ }}
app.kubernetes.io/instance: {{ $.Release.Name }}
{{- toYaml .labels | nindent 8 }}
spec:
{{- if $.Values.global.imagePullSecrets }}
imagePullSecrets:
{{ toYaml $.Values.global.imagePullSecrets }}
{{- end }}
serviceAccountName: {{ template "jumpserver.serviceAccountName" $ }}
securityContext:
{{- toYaml .podSecurityContext | nindent 8 }}
containers:
- name: {{ $containerName }}
securityContext:
{{- toYaml .securityContext | nindent 12 }}
image: {{ $image }}
imagePullPolicy: {{ .image.pullPolicy }}
{{- with .command }}
command:
{{- tpl (toYaml .) $ | nindent 12 }}
{{- end }}
env:
- name: CORE_HOST
value: "http://{{ include "jumpserver.fullname" $ }}-jms-core:{{ $.Values.core.service.web.port }}"
- name: BOOTSTRAP_TOKEN
value: {{ $.Values.core.config.bootstrapToken | quote }}
- name: LOG_LEVEL
value: {{ .config.log.level | quote }}
- name: HTTPD_PORT
value: {{ .service.web.port | quote }}
{{- range $key, $val := .env }}
- name: {{ $key }}
value: {{ $val | quote }}
{{- end }}
ports:
- name: web
containerPort: {{ .service.web.port }}
protocol: TCP
livenessProbe:
{{- toYaml .livenessProbe | nindent 12 }}
readinessProbe:
{{- toYaml .readinessProbe | nindent 12 }}
resources:
{{- toYaml .resources | nindent 12 }}
volumeMounts:
- mountPath: "/opt/video-worker/data"
name: "jms-video-data"
{{- if .persistence.subPath }}
subPath: {{ .persistence.subPath | quote }}
{{- end }}
{{- with .volumeMounts }}
{{- toYaml . | nindent 12 }}
{{- end }}
restartPolicy: Always
volumes:
- persistentVolumeClaim:
{{- if .persistence.existingClaim }}
claimName: {{ .persistence.existingClaim | quote }}
{{- else }}
claimName: '{{ include "jumpserver.fullname" $ }}-jms-video-data'
{{- end }}
name: "jms-video-data"
{{- with .volumes }}
{{- tpl (toYaml .) $ | nindent 8 }}
{{- end }}
{{- with .nodeSelector }}
nodeSelector:
{{- toYaml . | nindent 8 }}
{{- end }}
{{- with .affinity }}
affinity:
{{- toYaml . | nindent 8 }}
{{- end }}
{{- with .tolerations }}
tolerations:
{{- toYaml . | nindent 8 }}
{{- end }}
{{- end }}
{{- end }}

29
charts/jumpserver/templates/video/pvc-video-data.yaml Normal file
View File

@ -0,0 +1,29 @@
{{- if and .Values.xpack.enabled (not .Values.video.persistence.existingClaim)}}
{{- with .Values.video }}
{{- $fullName := printf "%s-%s" (include "jumpserver.fullname" $) "jms-video-data" }}
apiVersion: v1
kind: PersistentVolumeClaim
metadata:
name: {{ $fullName }}
labels:
{{- include "jumpserver.labels" $ | nindent 4 }}
{{- toYaml .labels | nindent 4 }}
{{- with .persistence.annotations }}
annotations:
{{ toYaml . | indent 4 }}
{{- end }}
{{- with .persistence.finalizers }}
finalizers:
{{ toYaml . | indent 4 }}
{{- end }}
spec:
accessModes:
{{- range .persistence.accessModes }}
- {{ . | quote }}
{{- end }}
resources:
requests:
storage: {{ .persistence.size | quote }}
{{- end }}
storageClassName: {{ include "jumpserver.lion.storageClass" . }}
{{- end }}

29
charts/jumpserver/templates/video/service-video.yaml Normal file
View File

@ -0,0 +1,29 @@
{{- if .Values.xpack.enabled }}
{{- with .Values.video }}
{{- $fullName := printf "%s-%s" (include "jumpserver.fullname" $) "jms-video" }}
apiVersion: v1
kind: Service
metadata:
name: {{ $fullName }}
labels:
{{- include "jumpserver.labels" $ | nindent 4 }}
{{- toYaml .labels | nindent 4 }}
annotations:
{{- toYaml .service.annotations | nindent 4 }}
spec:
type: {{ .service.type }}
ports:
- port: {{ .service.web.port }}
targetPort: web
protocol: TCP
name: web
sessionAffinity: ClientIP
sessionAffinityConfig:
clientIP:
timeoutSeconds: 10800
selector:
app.kubernetes.io/name: {{ include "jumpserver.name" $ }}
app.kubernetes.io/instance: {{ $.Release.Name }}
{{- toYaml .labels | nindent 4 }}
{{- end }}
{{- end }}

99
charts/jumpserver/values.yaml
View File

@ -12,7 +12,7 @@ fullnameOverride: ""
## ##
global: global:
imageRegistry: "ghcr.io" imageRegistry: "ghcr.io"
imageTag: v3.2.2 imageTag: v3.3.0
## E.g. ## E.g.
# imagePullSecrets: # imagePullSecrets:
# - myRegistryKeySecretName # - myRegistryKeySecretName
@ -85,7 +85,7 @@ core:
image: image:
registry: docker.io registry: docker.io
repository: jumpserver/core repository: jumpserver/core
tag: v3.2.2 tag: v3.3.0
pullPolicy: IfNotPresent pullPolicy: IfNotPresent
command: [] command: []
@ -173,7 +173,7 @@ koko:
image: image:
registry: docker.io registry: docker.io
repository: jumpserver/koko repository: jumpserver/koko
tag: v3.2.2 tag: v3.3.0
pullPolicy: IfNotPresent pullPolicy: IfNotPresent
command: [] command: []
@ -265,7 +265,7 @@ lion:
image: image:
registry: docker.io registry: docker.io
repository: jumpserver/lion repository: jumpserver/lion
tag: v3.2.2 tag: v3.3.0
pullPolicy: IfNotPresent pullPolicy: IfNotPresent
command: [] command: []
@ -357,7 +357,7 @@ magnus:
image: image:
registry: docker.io registry: docker.io
repository: jumpserver/magnus repository: jumpserver/magnus
tag: v3.2.2 tag: v3.3.0
pullPolicy: IfNotPresent pullPolicy: IfNotPresent
command: [] command: []
@ -448,7 +448,7 @@ omnidb:
image: image:
registry: registry.fit2cloud.com registry: registry.fit2cloud.com
repository: jumpserver/omnidb repository: jumpserver/omnidb
tag: v3.2.2 tag: v3.3.0
pullPolicy: IfNotPresent pullPolicy: IfNotPresent
command: [] command: []
@ -528,7 +528,7 @@ razor:
image: image:
registry: registry.fit2cloud.com registry: registry.fit2cloud.com
repository: jumpserver/razor repository: jumpserver/razor
tag: v3.2.2 tag: v3.3.0
pullPolicy: IfNotPresent pullPolicy: IfNotPresent
command: [] command: []
@ -595,6 +595,89 @@ razor:
affinity: {} affinity: {}
video:
labels:
app.jumpserver.org/name: jms-video
config:
log:
level: ERROR
replicaCount: 1
image:
registry: registry.fit2cloud.com
repository: jumpserver/video-worker
tag: v3.3.0
pullPolicy: IfNotPresent
command: []
env: []
livenessProbe:
failureThreshold: 30
httpGet:
path: /video-worker/health/
port: web
readinessProbe:
failureThreshold: 30
httpGet:
path: /video-worker/health/
port: web
podSecurityContext: {}
# fsGroup: 2000
securityContext: {}
# capabilities:
# drop:
# - ALL
# readOnlyRootFilesystem: true
# runAsNonRoot: true
# runAsUser: 1000
service:
service:
type: ClusterIP
web:
port: 9000
resources: {}
# We usually recommend not to specify default resources and to leave this as a conscious
# choice for the user. This also increases chances charts run on environments with little
# resources, such as Minikube. If you do want to specify resources, uncomment the following
# lines, adjust them as necessary, and remove the curly braces after 'resources:'.
# limits:
# cpu: 100m
# memory: 128Mi
# requests:
# cpu: 100m
# memory: 128Mi
persistence:
storageClassName: jumpserver-data
accessModes:
- ReadWriteMany
size: 50Gi
annotations:
"helm.sh/resource-policy": keep
finalizers:
- kubernetes.io/pvc-protection
# subPath: ""
# existingClaim: ""
volumeMounts: []
volumes: []
nodeSelector: {}
tolerations: []
affinity: {}
web: web:
enabled: true enabled: true
@ -606,7 +689,7 @@ web:
image: image:
registry: docker.io registry: docker.io
repository: jumpserver/web repository: jumpserver/web
tag: v3.2.2 tag: v3.3.0
pullPolicy: IfNotPresent pullPolicy: IfNotPresent
command: [] command: []