diff --git a/bitnami/oauth2-proxy/Chart.lock b/bitnami/oauth2-proxy/Chart.lock index 5858b696e9549e..fe76b64790cdc7 100644 --- a/bitnami/oauth2-proxy/Chart.lock +++ b/bitnami/oauth2-proxy/Chart.lock @@ -1,9 +1,9 @@ dependencies: - name: redis repository: oci://registry-1.docker.io/bitnamicharts - version: 19.0.1 + version: 19.0.2 - name: common repository: oci://registry-1.docker.io/bitnamicharts - version: 2.19.0 -digest: sha256:1930d9cbb6e734cc18b449c9a54be5f326e4c69699376ca928d00db67b471afc -generated: "2024-03-26T16:41:47.569540721+01:00" + version: 2.19.1 +digest: sha256:e6dd3992895de418d946407fa82ccb09500fb4fb1b29c5ecd6753ce5a814720d +generated: "2024-04-04T21:30:44.446765452Z" diff --git a/bitnami/oauth2-proxy/Chart.yaml b/bitnami/oauth2-proxy/Chart.yaml index d503f82f7ca681..2a104b85ea9799 100644 --- a/bitnami/oauth2-proxy/Chart.yaml +++ b/bitnami/oauth2-proxy/Chart.yaml @@ -6,7 +6,7 @@ annotations: licenses: Apache-2.0 images: | - name: oauth2-proxy - image: docker.io/bitnami/oauth2-proxy:7.6.0-debian-12-r4 + image: docker.io/bitnami/oauth2-proxy:7.6.0-debian-12-r6 apiVersion: v2 appVersion: 7.6.0 dependencies: @@ -35,4 +35,4 @@ maintainers: name: oauth2-proxy sources: - https://github.com/bitnami/charts/tree/main/bitnami/oauth2-proxy -version: 5.0.0 +version: 5.0.1 diff --git a/bitnami/oauth2-proxy/README.md b/bitnami/oauth2-proxy/README.md index e281b7f5881d63..1e84d0237b0597 100644 --- a/bitnami/oauth2-proxy/README.md +++ b/bitnami/oauth2-proxy/README.md @@ -233,85 +233,85 @@ The [Bitnami OAuth2 Proxy](https://github.com/bitnami/containers/tree/main/bitna ### OAuth2 Proxy deployment parameters -| Name | Description | Value | -| --------------------------------------------------- | ---------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------- | ---------------- | -| `containerPort` | OAuth2 Proxy port number | `4180` | -| `extraContainerPorts` | Array of additional container ports for the OAuth2 Proxy container | `[]` | -| `replicaCount` | Number of OAuth2 Proxy replicas to deploy | `1` | -| `extraArgs` | add extra args to the default command | `[]` | -| `startupProbe.enabled` | Enable startupProbe on OAuth2 Proxy nodes | `false` | -| `startupProbe.initialDelaySeconds` | Initial delay seconds for startupProbe | `0` | -| `startupProbe.periodSeconds` | Period seconds for startupProbe | `10` | -| `startupProbe.timeoutSeconds` | Timeout seconds for startupProbe | `1` | -| `startupProbe.failureThreshold` | Failure threshold for startupProbe | `5` | -| `startupProbe.successThreshold` | Success threshold for startupProbe | `1` | -| `livenessProbe.enabled` | Enable livenessProbe on OAuth2 Proxy nodes | `true` | -| `livenessProbe.initialDelaySeconds` | Initial delay seconds for livenessProbe | `0` | -| `livenessProbe.periodSeconds` | Period seconds for livenessProbe | `10` | -| `livenessProbe.timeoutSeconds` | Timeout seconds for livenessProbe | `1` | -| `livenessProbe.failureThreshold` | Failure threshold for livenessProbe | `5` | -| `livenessProbe.successThreshold` | Success threshold for livenessProbe | `1` | -| `readinessProbe.enabled` | Enable readinessProbe on OAuth2 Proxy nodes | `true` | -| `readinessProbe.initialDelaySeconds` | Initial delay seconds for readinessProbe | `0` | -| `readinessProbe.periodSeconds` | Period seconds for readinessProbe | `10` | -| `readinessProbe.timeoutSeconds` | Timeout seconds for readinessProbe | `1` | -| `readinessProbe.failureThreshold` | Failure threshold for readinessProbe | `5` | -| `readinessProbe.successThreshold` | Success threshold for readinessProbe | `1` | -| `customStartupProbe` | Custom startupProbe that overrides the default one | `{}` | -| `customLivenessProbe` | Custom livenessProbe that overrides the default one | `{}` | -| `customReadinessProbe` | Custom readinessProbe that overrides the default one | `{}` | -| `resourcesPreset` | Set container resources according to one common preset (allowed values: none, nano, small, medium, large, xlarge, 2xlarge). This is ignored if resources is set (resources is recommended for production). | `nano` | -| `resources` | Set container requests and limits for different resources like CPU or memory (essential for production workloads) | `{}` | -| `pdb.create` | Enable a Pod Disruption Budget creation | `false` | -| `pdb.minAvailable` | Minimum number/percentage of pods that should remain scheduled | `1` | -| `pdb.maxUnavailable` | Maximum number/percentage of pods that may be made unavailable | `""` | -| `podSecurityContext.enabled` | Enabled OAuth2 Proxy pods' Security Context | `true` | -| `podSecurityContext.fsGroupChangePolicy` | Set filesystem group change policy | `Always` | -| `podSecurityContext.sysctls` | Set kernel settings using the sysctl interface | `[]` | -| `podSecurityContext.supplementalGroups` | Set filesystem extra groups | `[]` | -| `podSecurityContext.fsGroup` | Set OAuth2 Proxy pod's Security Context fsGroup | `1001` | -| `containerSecurityContext.enabled` | Enabled containers' Security Context | `true` | -| `containerSecurityContext.seLinuxOptions` | Set SELinux options in container | `{}` | -| `containerSecurityContext.runAsUser` | Set containers' Security Context runAsUser | `1001` | -| `containerSecurityContext.runAsGroup` | Set containers' Security Context runAsGroup | `1001` | -| `containerSecurityContext.runAsNonRoot` | Set container's Security Context runAsNonRoot | `true` | -| `containerSecurityContext.privileged` | Set container's Security Context privileged | `false` | -| `containerSecurityContext.readOnlyRootFilesystem` | Set container's Security Context readOnlyRootFilesystem | `true` | -| `containerSecurityContext.allowPrivilegeEscalation` | Set container's Security Context allowPrivilegeEscalation | `false` | -| `containerSecurityContext.capabilities.drop` | List of capabilities to be dropped | `["ALL"]` | -| `containerSecurityContext.seccompProfile.type` | Set container's Security Context seccomp profile | `RuntimeDefault` | -| `command` | Override default container command (useful when using custom images) | `[]` | -| `args` | Override default container args (useful when using custom images) | `[]` | -| `automountServiceAccountToken` | Mount Service Account token in pod | `false` | -| `hostAliases` | OAuth2 Proxy pods host aliases | `[]` | -| `podLabels` | Extra labels for OAuth2 Proxy pods | `{}` | -| `podAnnotations` | Annotations for OAuth2 Proxy pods | `{}` | -| `podAffinityPreset` | Pod affinity preset. Ignored if `affinity` is set. Allowed values: `soft` or `hard` | `""` | -| `podAntiAffinityPreset` | Pod anti-affinity preset. Ignored if `affinity` is set. Allowed values: `soft` or `hard` | `soft` | -| `nodeAffinityPreset.type` | Node affinity preset type. Ignored if `affinity` is set. Allowed values: `soft` or `hard` | `""` | -| `nodeAffinityPreset.key` | Node label key to match. Ignored if `affinity` is set | `""` | -| `nodeAffinityPreset.values` | Node label values to match. Ignored if `affinity` is set | `[]` | -| `affinity` | Affinity for OAuth2 Proxy pods assignment | `{}` | -| `nodeSelector` | Node labels for OAuth2 Proxy pods assignment | `{}` | -| `tolerations` | Tolerations for OAuth2 Proxy pods assignment | `[]` | -| `updateStrategy.type` | OAuth2 Proxy statefulset strategy type | `RollingUpdate` | -| `priorityClassName` | OAuth2 Proxy pods' priorityClassName | `""` | -| `schedulerName` | Name of the k8s scheduler (other than default) | `""` | -| `topologySpreadConstraints` | Topology Spread Constraints for pod assignment | `[]` | -| `lifecycleHooks` | for the OAuth2 Proxy container(s) to automate configuration before or after startup | `{}` | -| `extraEnvVars` | Array with extra environment variables to add to OAuth2 Proxy nodes | `[]` | -| `extraEnvVarsCM` | Name of existing ConfigMap containing extra env vars for OAuth2 Proxy nodes | `""` | -| `extraEnvVarsSecret` | Name of existing Secret containing extra env vars for OAuth2 Proxy nodes | `""` | -| `extraVolumes` | Optionally specify extra list of additional volumes for the OAuth2 Proxy pod(s) | `[]` | -| `extraVolumeMounts` | Optionally specify extra list of additional volumeMounts for the OAuth2 Proxy container(s) | `[]` | -| `sidecars` | Add additional sidecar containers to the OAuth2 Proxy pod(s) | `[]` | -| `initContainers` | Add additional init containers to the OAuth2 Proxy pod(s) | `[]` | -| `dnsPolicy` | Pod DNS policy. Valid values are 'ClusterFirstWithHostNet', 'ClusterFirst', 'Default' or 'None'. | `""` | -| `dnsConfig` | Pod DNS configuration. | `{}` | -| `serviceAccount.create` | Specifies whether a ServiceAccount should be created | `true` | -| `serviceAccount.name` | The name of the ServiceAccount to use | `""` | -| `serviceAccount.automountServiceAccountToken` | Automount service account token for the server service account | `false` | -| `serviceAccount.annotations` | Annotations for service account. Evaluated as a template. Only used if `create` is `true`. | `{}` | +| Name | Description | Value | +| --------------------------------------------------- | ----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------- | ---------------- | +| `containerPort` | OAuth2 Proxy port number | `4180` | +| `extraContainerPorts` | Array of additional container ports for the OAuth2 Proxy container | `[]` | +| `replicaCount` | Number of OAuth2 Proxy replicas to deploy | `1` | +| `extraArgs` | add extra args to the default command | `[]` | +| `startupProbe.enabled` | Enable startupProbe on OAuth2 Proxy nodes | `false` | +| `startupProbe.initialDelaySeconds` | Initial delay seconds for startupProbe | `0` | +| `startupProbe.periodSeconds` | Period seconds for startupProbe | `10` | +| `startupProbe.timeoutSeconds` | Timeout seconds for startupProbe | `1` | +| `startupProbe.failureThreshold` | Failure threshold for startupProbe | `5` | +| `startupProbe.successThreshold` | Success threshold for startupProbe | `1` | +| `livenessProbe.enabled` | Enable livenessProbe on OAuth2 Proxy nodes | `true` | +| `livenessProbe.initialDelaySeconds` | Initial delay seconds for livenessProbe | `0` | +| `livenessProbe.periodSeconds` | Period seconds for livenessProbe | `10` | +| `livenessProbe.timeoutSeconds` | Timeout seconds for livenessProbe | `1` | +| `livenessProbe.failureThreshold` | Failure threshold for livenessProbe | `5` | +| `livenessProbe.successThreshold` | Success threshold for livenessProbe | `1` | +| `readinessProbe.enabled` | Enable readinessProbe on OAuth2 Proxy nodes | `true` | +| `readinessProbe.initialDelaySeconds` | Initial delay seconds for readinessProbe | `0` | +| `readinessProbe.periodSeconds` | Period seconds for readinessProbe | `10` | +| `readinessProbe.timeoutSeconds` | Timeout seconds for readinessProbe | `1` | +| `readinessProbe.failureThreshold` | Failure threshold for readinessProbe | `5` | +| `readinessProbe.successThreshold` | Success threshold for readinessProbe | `1` | +| `customStartupProbe` | Custom startupProbe that overrides the default one | `{}` | +| `customLivenessProbe` | Custom livenessProbe that overrides the default one | `{}` | +| `customReadinessProbe` | Custom readinessProbe that overrides the default one | `{}` | +| `resourcesPreset` | Set container resources according to one common preset (allowed values: none, nano, micro, small, medium, large, xlarge, 2xlarge). This is ignored if resources is set (resources is recommended for production). | `nano` | +| `resources` | Set container requests and limits for different resources like CPU or memory (essential for production workloads) | `{}` | +| `pdb.create` | Enable a Pod Disruption Budget creation | `false` | +| `pdb.minAvailable` | Minimum number/percentage of pods that should remain scheduled | `1` | +| `pdb.maxUnavailable` | Maximum number/percentage of pods that may be made unavailable | `""` | +| `podSecurityContext.enabled` | Enabled OAuth2 Proxy pods' Security Context | `true` | +| `podSecurityContext.fsGroupChangePolicy` | Set filesystem group change policy | `Always` | +| `podSecurityContext.sysctls` | Set kernel settings using the sysctl interface | `[]` | +| `podSecurityContext.supplementalGroups` | Set filesystem extra groups | `[]` | +| `podSecurityContext.fsGroup` | Set OAuth2 Proxy pod's Security Context fsGroup | `1001` | +| `containerSecurityContext.enabled` | Enabled containers' Security Context | `true` | +| `containerSecurityContext.seLinuxOptions` | Set SELinux options in container | `{}` | +| `containerSecurityContext.runAsUser` | Set containers' Security Context runAsUser | `1001` | +| `containerSecurityContext.runAsGroup` | Set containers' Security Context runAsGroup | `1001` | +| `containerSecurityContext.runAsNonRoot` | Set container's Security Context runAsNonRoot | `true` | +| `containerSecurityContext.privileged` | Set container's Security Context privileged | `false` | +| `containerSecurityContext.readOnlyRootFilesystem` | Set container's Security Context readOnlyRootFilesystem | `true` | +| `containerSecurityContext.allowPrivilegeEscalation` | Set container's Security Context allowPrivilegeEscalation | `false` | +| `containerSecurityContext.capabilities.drop` | List of capabilities to be dropped | `["ALL"]` | +| `containerSecurityContext.seccompProfile.type` | Set container's Security Context seccomp profile | `RuntimeDefault` | +| `command` | Override default container command (useful when using custom images) | `[]` | +| `args` | Override default container args (useful when using custom images) | `[]` | +| `automountServiceAccountToken` | Mount Service Account token in pod | `false` | +| `hostAliases` | OAuth2 Proxy pods host aliases | `[]` | +| `podLabels` | Extra labels for OAuth2 Proxy pods | `{}` | +| `podAnnotations` | Annotations for OAuth2 Proxy pods | `{}` | +| `podAffinityPreset` | Pod affinity preset. Ignored if `affinity` is set. Allowed values: `soft` or `hard` | `""` | +| `podAntiAffinityPreset` | Pod anti-affinity preset. Ignored if `affinity` is set. Allowed values: `soft` or `hard` | `soft` | +| `nodeAffinityPreset.type` | Node affinity preset type. Ignored if `affinity` is set. Allowed values: `soft` or `hard` | `""` | +| `nodeAffinityPreset.key` | Node label key to match. Ignored if `affinity` is set | `""` | +| `nodeAffinityPreset.values` | Node label values to match. Ignored if `affinity` is set | `[]` | +| `affinity` | Affinity for OAuth2 Proxy pods assignment | `{}` | +| `nodeSelector` | Node labels for OAuth2 Proxy pods assignment | `{}` | +| `tolerations` | Tolerations for OAuth2 Proxy pods assignment | `[]` | +| `updateStrategy.type` | OAuth2 Proxy statefulset strategy type | `RollingUpdate` | +| `priorityClassName` | OAuth2 Proxy pods' priorityClassName | `""` | +| `schedulerName` | Name of the k8s scheduler (other than default) | `""` | +| `topologySpreadConstraints` | Topology Spread Constraints for pod assignment | `[]` | +| `lifecycleHooks` | for the OAuth2 Proxy container(s) to automate configuration before or after startup | `{}` | +| `extraEnvVars` | Array with extra environment variables to add to OAuth2 Proxy nodes | `[]` | +| `extraEnvVarsCM` | Name of existing ConfigMap containing extra env vars for OAuth2 Proxy nodes | `""` | +| `extraEnvVarsSecret` | Name of existing Secret containing extra env vars for OAuth2 Proxy nodes | `""` | +| `extraVolumes` | Optionally specify extra list of additional volumes for the OAuth2 Proxy pod(s) | `[]` | +| `extraVolumeMounts` | Optionally specify extra list of additional volumeMounts for the OAuth2 Proxy container(s) | `[]` | +| `sidecars` | Add additional sidecar containers to the OAuth2 Proxy pod(s) | `[]` | +| `initContainers` | Add additional init containers to the OAuth2 Proxy pod(s) | `[]` | +| `dnsPolicy` | Pod DNS policy. Valid values are 'ClusterFirstWithHostNet', 'ClusterFirst', 'Default' or 'None'. | `""` | +| `dnsConfig` | Pod DNS configuration. | `{}` | +| `serviceAccount.create` | Specifies whether a ServiceAccount should be created | `true` | +| `serviceAccount.name` | The name of the ServiceAccount to use | `""` | +| `serviceAccount.automountServiceAccountToken` | Automount service account token for the server service account | `false` | +| `serviceAccount.annotations` | Annotations for service account. Evaluated as a template. Only used if `create` is `true`. | `{}` | ### External Redis® parameters diff --git a/bitnami/oauth2-proxy/values.yaml b/bitnami/oauth2-proxy/values.yaml index 6e1dfc7036ba60..2cd55234876337 100644 --- a/bitnami/oauth2-proxy/values.yaml +++ b/bitnami/oauth2-proxy/values.yaml @@ -307,7 +307,7 @@ ingress: image: registry: docker.io repository: bitnami/oauth2-proxy - tag: 7.6.0-debian-12-r4 + tag: 7.6.0-debian-12-r6 digest: "" ## Specify a imagePullPolicy ## Defaults to 'Always' if image tag is 'latest', else set to 'IfNotPresent'