Skip to content

vaultwarden

A Helm chart for Vaultwarden

Type: application Version: 1.1.0 AppVersion: 1.31.0

Requirements

  • helm - Refer to their docs to get started.

Usage

To use this chart add the repo as follows:

helm repo add pascaliske https://charts.pascaliske.dev

If you had already added this repo earlier, run helm repo update to retrieve the latest versions of the packages.

To install this chart simply run the following command:

helm install vaultwarden pascaliske/vaultwarden

To uninstall this chart simply run the following command:

helm delete vaultwarden

Values

The following values can be used to adjust the helm chart.

Key Type Default Description
additionalContainers object {} Specify any additional containers here as dictionary items - each should have its own key.
affinity object {} Pod-level affinity. More info here.
certificate.annotations object {} Additional annotations for the certificate object.
certificate.create bool false Create a Certificate object for the exposed chart.
certificate.dnsNames list [] List of subject alternative names for the certificate.
certificate.issuerRef.kind string "ClusterIssuer" The type of the referenced certificate issuer. It can be "Issuer" or "ClusterIssuer".
certificate.issuerRef.name string "" Name of the referenced certificate issuer.
certificate.labels object {} Additional labels for the certificate object.
certificate.secretName string "" Name of the secret in which the certificate will be stored. Defaults to the first item in dnsNames.
controller.annotations object {} Additional annotations for the controller object.
controller.enabled bool true Create a workload for this chart.
controller.kind string "Deployment" Type of the workload object.
controller.labels object {} Additional labels for the controller object.
controller.replicas int 1 The number of replicas.
controller.updateStrategy object {} The controller update strategy. Currently only applies to controllers of kind Deployment.
env[0] object {"name":"TZ","value":"UTC"} Timezone for the container.
fullnameOverride string ""
image.pullPolicy string "IfNotPresent" The pull policy for the controller.
image.registry string "ghcr.io" The registry to pull the image from.
image.repository string "dani-garcia/vaultwarden" The repository to pull the image from.
image.tag string .Chart.AppVersion The docker tag, if left empty chart's appVersion will be used.
ingressRoute.annotations object {} Additional annotations for the ingress route object.
ingressRoute.create bool false Create an IngressRoute object for exposing this chart.
ingressRoute.entryPoints list [] List of entry points on which the ingress route will be available.
ingressRoute.labels object {} Additional labels for the ingress route object.
ingressRoute.middlewares list [] List of middleware objects for the ingress route.
ingressRoute.rule string "" Matching rule for the underlying router.
ingressRoute.tlsSecretName string "" Use an existing secret containing the TLS certificate.
nameOverride string ""
persistentVolumeClaim.accessMode string "ReadWriteOnce" Access mode of the persistent volume claim object.
persistentVolumeClaim.annotations object {} Additional annotations for the persistent volume claim object.
persistentVolumeClaim.create bool true Create a new persistent volume claim object.
persistentVolumeClaim.existingPersistentVolumeClaim string "" Use an existing persistent volume claim object.
persistentVolumeClaim.labels object {} Additional labels for the persistent volume claim object.
persistentVolumeClaim.mountPath string "/data" Mount path of the persistent volume claim object.
persistentVolumeClaim.size string "1Gi" Storage request size for the persistent volume claim object.
persistentVolumeClaim.storageClassName string "" Storage class name for the persistent volume claim object.
persistentVolumeClaim.volumeMode string "Filesystem" Volume mode of the persistent volume claim object.
ports.http.enabled bool true Enable the port inside the controller and Service objects.
ports.http.nodePort string nil The external port used if .service.type == NodePort.
ports.http.port int 80 The port used as internal port and cluster-wide port if .service.type == ClusterIP.
ports.http.protocol string "TCP" The protocol used for the service.
rbac.annotations object {} Additional annotations for the role and role binding objects.
rbac.create bool true Create Role and RoleBinding objects.
rbac.labels object {} Additional labels for the role and role binding objects.
resources object {} Compute resources used by the container. More info here.
secret.annotations object {} Additional annotations for the secret object.
secret.create bool true Create a new secret object.
secret.existingSecret string "" Use an existing secret object.
secret.labels object {} Additional labels for the secret object.
secret.values object {"ADMIN_TOKEN":"{{ randAlphaNum 42 | b64enc }}"} Secret values used when not using an existing secret. Helm templates are supported for values.
secret.values.ADMIN_TOKEN string "{{ randAlphaNum 42 | b64enc }}" Secret key for session tokens.
securityContext object {} Pod-level security attributes. More info here.
service.annotations object {} Additional annotations for the service object.
service.clusterIP string "" ClusterIP used if service type is ClusterIP.
service.enabled bool true Create a service for exposing this chart.
service.labels object {} Additional labels for the service object.
service.loadBalancerIP string "" LoadBalancerIP if service type is LoadBalancer.
service.loadBalancerSourceRanges list [] Allowed addresses when service type is LoadBalancer.
service.type string "ClusterIP" The service type used.
serviceAccount.name string "" Specify the service account used for the controller.
tolerations list [] Pod-level tolerations. More info here.

Maintainers

Name Email Url
pascaliske info@pascaliske.dev https://pascaliske.dev

License

MIT – © 2024 Pascal Iske