pub/charts
1
0
Fork 0
Code Issues Pull requests Releases Packages 19 Activity Actions

lemmy: Fix handling of PostgreSQL password

Browse source
This commit is contained in:
Alexander Olofsson 2023-06-22 14:28:43 +02:00
parent 92f42871e4
commit 607cbdab8f
No known key found for this signature in database
GPG key ID: D439C9470CB04C73
3 changed files with 25 additions and 3 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

4
charts/lemmy/templates/NOTES.txt
View file

@ -41,3 +41,7 @@ You can visit the service at the following URL;
You can retrieve the default admin password with;
kubectl get secrets --namespace {{ .Release.Namespace }} -l "app.kubernetes.io/name={{ include "lemmy.name" . }},app.kubernetes.io/instance={{ .Release.Name }},app.kubernetes.io/component=backend" -o jsonpath="{.items[0].data.admin_password}" | base64 -d
{{- end }}
{{- if not (or .Values.postgresql.auth.existingSecret .Values.postgresql.auth.password) }}
The postgres password might not be read correctly on first install, if Lemmy fails to start, an "upgrade" with the same values should resolve this.
{{- end }}

6
charts/lemmy/templates/_helpers.tpl
View file

@ -183,7 +183,11 @@ Set postgresql password
{{- .Values.postgresql.auth.password -}}
{{- else -}}
{{- $existing := lookup "v1" "Secret" .Release.Namespace (include "lemmy.postgresql.secret" .) -}}
{{- $existing.data.password | b64dec -}}
{{- if $existing -}}
{{- $existing.data.password | b64dec -}}
{{- else }}
postgres
{{- end -}}
{{- end -}}
{{- end -}}
{{- end -}}

18
charts/lemmy/templates/deployment-backend.yaml
View file

@ -40,11 +40,25 @@ spec:
{{- toYaml .Values.backend.securityContext | nindent 12 }}
image: "{{ .Values.backend.image.repository | default .Values.image.repository }}:{{ .Values.backend.image.tag | default .Values.image.tag | default .Chart.AppVersion }}"
imagePullPolicy: {{ .Values.backend.image.pullPolicy | default .Values.image.pullPolicy }}
{{- with .Values.backend.env }}
{{- if or (not .Values.postgresql.auth.password) .Values.backend.env }}
env:
{{- range $key, $value := . }}
{{- if not .Values.postgresql.auth.password }}
- name: PGPASSWORD
valueFrom:
secretKeyRef:
{{- if .Values.postgresql.auth.existingSecret }}
key: {{ .Values.postgresql.auth.secretKeys.userPasswordKey | default "password" }}
name: {{ .Values.postgresql.auth.existingSecret }}
{{- else }}
key: password
name: {{ include "lemmy.postgresql.secret" . }}
{{- end }}
{{- end }}
{{- with .Values.backend.env }}
{{- range $key, $value := . }}
- name: {{ $key }}
value: {{ $value | toString | quote }}
{{- end }}
{{- end }}
{{- end }}
{{- with .Values.backend.envFrom }}