ci: showcase PR deploy, merge path, teardown (stacked)#2
Draft
PatStLouis wants to merge 8 commits intofeat/helm-showcase-mongodbfrom
Draft
ci: showcase PR deploy, merge path, teardown (stacked)#2PatStLouis wants to merge 8 commits intofeat/helm-showcase-mongodbfrom
PatStLouis wants to merge 8 commits intofeat/helm-showcase-mongodbfrom
Conversation
Scaffold charts/showcase after OWF acapy pattern: Bitnami common library, optional Bitnami MongoDB subchart, and Deployments/Services for the demo server and Caddy web front. Vendored chart packages are gitignored; run helm dependency update before install. Document usage in charts/showcase/README.md. Signed-off-by: Patrick St-Louis <patrick.st-louis@opsecid.ca> Made-with: Cursor
- Depend on oci://registry-1.docker.io/cloudpirates/mongodb 0.15.0 - Remove Bitnami common; add local fullname/labels/image helpers - Align mongodb auth with CloudPirates (rootUsername/rootPassword) - URL-encode credentials in MONGODB_URI; bump chart to 0.2.0 Signed-off-by: Patrick St-Louis <patrick.st-louis@opsecid.ca> Made-with: Cursor
- Add showcase.server.existingSecret for envFrom without chart-managed Secret - Create *-server-env only when existingSecret is unset and rootPassword/secretEnv set - Validate MongoDB on requires existingSecret or rootPassword - Default mongodb.enabled false so helm lint passes without credentials - Document External Secrets / GitOps flow in README Signed-off-by: Patrick St-Louis <patrick.st-louis@opsecid.ca> Made-with: Cursor
Align server/web image defaults with bcgov GHCR container packages for BC-Wallet-Demo; bump chart to 0.2.2 and document in README. Signed-off-by: Patrick St-Louis <patrick.st-louis@opsecid.ca> Made-with: Cursor
Comment above mongodb values: subchart 0.15.x defaults to official mongo image (MongoDB 8.x, e.g. 8.2.6 per helm show values). Bump chart 0.2.3. Signed-off-by: Patrick St-Louis <patrick.st-louis@opsecid.ca> Made-with: Cursor
README/values/NOTES no longer imply this chart deploys ACA-Py or that acapy uses MongoDB. Point post-install notes at the CloudPirates Mongo OCI chart. Bump chart 0.2.4. Signed-off-by: Patrick St-Louis <patrick.st-louis@opsecid.ca> Made-with: Cursor
- Add workflow: helm dependency update, lint, template on charts/showcase - Caddy: default trusted_proxies to private_ranges (not 0.0.0.0/0) - Make CSP configurable via showcase.web.contentSecurityPolicy - Document CSP/trusted_proxies in README; bump chart 0.2.5 Signed-off-by: Patrick St-Louis <patrick.st-louis@opsecid.ca> Made-with: Cursor
Prepare stacked PR against feat/helm-showcase-mongodb; workflow and deploy values will land in follow-up commits. Signed-off-by: Patrick St-Louis <patrick.st-louis@opsecid.ca> Made-with: Cursor
PatStLouis
force-pushed
the
feat/helm-showcase-mongodb
branch
4 times, most recently
from
7ead4a2 to
f9eef91
Compare
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
1 participant
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Stacked on feat/helm-showcase-mongodb (see bcgov BC-Wallet-Demo PR 376).
This PR will add OpenShift/Helm PR lifecycle workflows (deploy on ready PR, uninstall on close) modeled after bcgov/traction on_pr_opened / on_pr_closed, using charts/showcase.
Merge order: merge this branch into feat/helm-showcase-mongodb first, then merge the bcgov showcase PR to main.
Made with Cursor