vaultwarden
A Helm chart for Vaultwarden
Requirements
Usage
To use this chart add the repo as follows:
If you had already added this repo earlier, run helm repo update
to retrieve the latest versions of the packages.
To install this chart simply run the following command:
To uninstall this chart simply run the following command:
Values
The following values can be used to adjust the helm chart.
Key | Type | Default | Description |
---|---|---|---|
additionalContainers | object | {} |
Specify any additional containers here as dictionary items - each should have its own key. |
affinity | object | {} |
Pod-level affinity. More info here. |
certificate.annotations | object | {} |
Additional annotations for the certificate object. |
certificate.create | bool | false |
Create a Certificate object for the exposed chart. |
certificate.dnsNames | list | [] |
List of subject alternative names for the certificate. |
certificate.issuerRef.kind | string | "ClusterIssuer" |
The type of the referenced certificate issuer. It can be "Issuer" or "ClusterIssuer". |
certificate.issuerRef.name | string | "" |
Name of the referenced certificate issuer. |
certificate.labels | object | {} |
Additional labels for the certificate object. |
certificate.secretName | string | "" |
Name of the secret in which the certificate will be stored. Defaults to the first item in dnsNames. |
controller.annotations | object | {} |
Additional annotations for the controller object. |
controller.enabled | bool | true |
Create a workload for this chart. |
controller.kind | string | "Deployment" |
Type of the workload object. |
controller.labels | object | {} |
Additional labels for the controller object. |
controller.replicas | int | 1 |
The number of replicas. |
controller.updateStrategy | object | {} |
The controller update strategy. Currently only applies to controllers of kind Deployment . |
env[0] | object | {"name":"TZ","value":"UTC"} |
Timezone for the container. |
fullnameOverride | string | "" |
|
image.pullPolicy | string | "IfNotPresent" |
The pull policy for the controller. |
image.registry | string | "ghcr.io" |
The registry to pull the image from. |
image.repository | string | "dani-garcia/vaultwarden" |
The repository to pull the image from. |
image.tag | string | .Chart.AppVersion |
The docker tag, if left empty chart's appVersion will be used. |
ingressRoute.annotations | object | {} |
Additional annotations for the ingress route object. |
ingressRoute.create | bool | false |
Create an IngressRoute object for exposing this chart. |
ingressRoute.entryPoints | list | [] |
List of entry points on which the ingress route will be available. |
ingressRoute.labels | object | {} |
Additional labels for the ingress route object. |
ingressRoute.middlewares | list | [] |
List of middleware objects for the ingress route. |
ingressRoute.rule | string | "" |
Matching rule for the underlying router. |
ingressRoute.tlsSecretName | string | "" |
Use an existing secret containing the TLS certificate. |
nameOverride | string | "" |
|
persistentVolumeClaim.accessMode | string | "ReadWriteOnce" |
Access mode of the persistent volume claim object. |
persistentVolumeClaim.annotations | object | {} |
Additional annotations for the persistent volume claim object. |
persistentVolumeClaim.create | bool | true |
Create a new persistent volume claim object. |
persistentVolumeClaim.existingPersistentVolumeClaim | string | "" |
Use an existing persistent volume claim object. |
persistentVolumeClaim.labels | object | {} |
Additional labels for the persistent volume claim object. |
persistentVolumeClaim.mountPath | string | "/data" |
Mount path of the persistent volume claim object. |
persistentVolumeClaim.size | string | "1Gi" |
Storage request size for the persistent volume claim object. |
persistentVolumeClaim.storageClassName | string | "" |
Storage class name for the persistent volume claim object. |
persistentVolumeClaim.volumeMode | string | "Filesystem" |
Volume mode of the persistent volume claim object. |
ports.http.enabled | bool | true |
Enable the port inside the controller and Service objects. |
ports.http.nodePort | string | nil |
The external port used if .service.type == NodePort . |
ports.http.port | int | 80 |
The port used as internal port and cluster-wide port if .service.type == ClusterIP . |
ports.http.protocol | string | "TCP" |
The protocol used for the service. |
rbac.annotations | object | {} |
Additional annotations for the role and role binding objects. |
rbac.create | bool | true |
Create Role and RoleBinding objects. |
rbac.labels | object | {} |
Additional labels for the role and role binding objects. |
resources | object | {} |
Compute resources used by the container. More info here. |
secret.annotations | object | {} |
Additional annotations for the secret object. |
secret.create | bool | true |
Create a new secret object. |
secret.existingSecret | string | "" |
Use an existing secret object. |
secret.labels | object | {} |
Additional labels for the secret object. |
secret.values | object | {"ADMIN_TOKEN":"{{ randAlphaNum 42 | b64enc }}"} |
Secret values used when not using an existing secret. Helm templates are supported for values. |
secret.values.ADMIN_TOKEN | string | "{{ randAlphaNum 42 | b64enc }}" |
Secret key for session tokens. |
securityContext | object | {} |
Pod-level security attributes. More info here. |
service.annotations | object | {} |
Additional annotations for the service object. |
service.clusterIP | string | "" |
ClusterIP used if service type is ClusterIP . |
service.enabled | bool | true |
Create a service for exposing this chart. |
service.labels | object | {} |
Additional labels for the service object. |
service.loadBalancerIP | string | "" |
LoadBalancerIP if service type is LoadBalancer . |
service.loadBalancerSourceRanges | list | [] |
Allowed addresses when service type is LoadBalancer . |
service.type | string | "ClusterIP" |
The service type used. |
serviceAccount.name | string | "" |
Specify the service account used for the controller. |
tolerations | list | [] |
Pod-level tolerations. More info here. |
Maintainers
Name | Url | |
---|---|---|
pascaliske | info@pascaliske.dev | https://pascaliske.dev |
License
MIT – © 2024 Pascal Iske