2023-08-30 11:35:31 +02:00
|
|
|
apiVersion: kustomize.config.k8s.io/v1beta1
|
|
|
|
|
kind: Kustomization
|
|
|
|
|
namespace: nextcloud-dev
|
|
|
|
|
|
2023-09-04 12:40:18 +02:00
|
|
|
configurations:
|
|
|
|
|
- ./resources/files/minio/configurations/tenants.minio.min.io.yaml
|
|
|
|
|
|
2023-08-30 11:35:31 +02:00
|
|
|
resources:
|
|
|
|
|
- ../../base/
|
2023-08-30 16:23:34 +02:00
|
|
|
- resources/cert-manager
|
2023-09-04 12:40:18 +02:00
|
|
|
- resources/nextcloud/namespace.yaml
|
|
|
|
|
- resources/nextcloud/ssl.yaml
|
|
|
|
|
- resources/nextcloud/cm-ldap-script.yaml
|
2023-09-18 15:25:51 +02:00
|
|
|
- resources/nextcloud/cm-plugins-script.yaml
|
2023-09-04 12:40:18 +02:00
|
|
|
- resources/nextcloud/minio-tenant.yaml
|
|
|
|
|
- resources/nextcloud/job-minio.yaml
|
2023-08-30 11:35:31 +02:00
|
|
|
|
2023-08-30 16:23:34 +02:00
|
|
|
patches:
|
2023-09-04 12:40:18 +02:00
|
|
|
- path: patches/deployment.yaml
|
2023-08-30 16:23:34 +02:00
|
|
|
- path: patches/nginx-ingress.yaml
|
2023-09-04 12:40:18 +02:00
|
|
|
- path: patches/ConfigMap-redis.yaml
|
2023-09-18 15:25:51 +02:00
|
|
|
#- path: patches/nextcloud-env.yaml
|
|
|
|
|
# target:
|
|
|
|
|
# kind: ConfigMap
|
|
|
|
|
# name: nextcloud-env
|
|
|
|
|
# version: v1
|
2023-09-04 12:40:18 +02:00
|
|
|
|
2023-08-30 11:35:31 +02:00
|
|
|
secretGenerator:
|
|
|
|
|
- name: nextcloud-minio-user
|
|
|
|
|
literals:
|
|
|
|
|
- CONSOLE_ACCESS_KEY=minio_root
|
|
|
|
|
- CONSOLE_SECRET_KEY=MinioRootNotSoSecret
|
|
|
|
|
- name: nextcloud-minio-configuration
|
|
|
|
|
files:
|
2023-09-18 15:25:51 +02:00
|
|
|
- ./resources/files/minio/config.env
|
2023-08-30 11:35:31 +02:00
|
|
|
- name: nextcloud-smtp
|
2023-09-18 15:25:51 +02:00
|
|
|
behavior: replace
|
2023-08-30 11:35:31 +02:00
|
|
|
literals:
|
2023-09-04 12:40:18 +02:00
|
|
|
- smtp-username=ouchemail
|
|
|
|
|
- smtp-password=HjkEHJ2676yiu2
|
2023-08-30 11:35:31 +02:00
|
|
|
options:
|
|
|
|
|
disableNameSuffixHash: true
|
|
|
|
|
|
2023-09-18 15:25:51 +02:00
|
|
|
configMapGenerator:
|
|
|
|
|
- name: nextcloud-env
|
|
|
|
|
behavior: merge
|
|
|
|
|
literals:
|
|
|
|
|
- NEXTCLOUD_TRUSTED_DOMAINS="*.cadoles.lan"
|
|
|
|
|
- OBJECTSTORE_S3_AUTOCREATE="true"
|
|
|
|
|
- OBJECTSTORE_S3_HOST=minio
|
|
|
|
|
- OBJECTSTORE_S3_PORT=443
|
|
|
|
|
- OBJECTSTORE_S3_BUCKET=nextcloud-minio
|
|
|
|
|
- OBJECTSTORE_S3_USEPATH_STYLE="true"
|
|
|
|
|
- OBJECTSTORE_S3_SSL="true"
|
|
|
|
|
- NEXTCLOUD_LDAP_HOST="ldaps://ldap.cadoles.com"
|
|
|
|
|
- NEXTCLOUD_LDAP_BASE="ou=cadoles,o=gouv,c=fr"
|
|
|
|
|
- NEXTCLOUD_LDAP_DN="cn=reader,o=gouv,c=fr"
|
|
|
|
|
- NEXTCLOUD_LDAP_PASSWD="phooge2jaidae4ohguChi6quoo8okahn2ru6aixutahmiuFoh6ooshae"
|
|
|
|
|
- NEXTCLOUD_LDAP_BASE_GROUPS="ou=groups,ou=cadoles,o=gouv,c=fr"
|
|
|
|
|
- NEXTCLOUD_LDAP_BASE_USERS="ou=users,ou=cadoles,o=gouv,c=fr"
|
|
|
|
|
- NEXTCLOUD_LDAP_ACTIVE_CONF='1'
|
|
|
|
|
- NEXTCLOUD_LDAP_ADMIN_EXP='0'
|
|
|
|
|
- NEXTCLOUD_LDAP_EXP_UUID="cn"
|
|
|
|
|
- NEXTCLOUD_LDAP_LOGIN_FILTER="(&(objectClass=person)(uid=%uid))"
|
|
|
|
|
- NEXTCLOUD_LDAP_LOGIN_FILTER_ATTR="uid"
|
|
|
|
|
- NEXTCLOUD_LDAP_PORT='636'
|
|
|
|
|
- NEXTCLOUD_LDAP_USR_FILTR="(|(objectclass=person))"
|
|
|
|
|
- NEXTCLOUD_LDAP_OBJ_FILTR="person"
|
|
|
|
|
- NEXTCLOUD_LDAP_MAIL_ATTR="mail"
|
|
|
|
|
- NEXTCLOUD_LDAP_USER_DISP="cn"
|
|
|
|
|
- NEXTCLOUD_LDAP_GROUP_FILTR="(&(|(objectclass=cadolesGroup)))"
|
|
|
|
|
- NEXTCLOUD_LDAP_GROUP_FILTR_OBJCLASS="cadolesGroup"
|
|
|
|
|
- NEXTCLOUD_LDAP_GROUP_MEMBR_ASSO="gidNumber"
|
|
|
|
|
- NEXTCLOUD_PLUGIN_LIST="groupfolders drawio calendar quicknotes richdocuments richdocumentscode polls keeweb"
|
|
|
|
|
|
2023-09-04 12:40:18 +02:00
|
|
|
vars: # génération d'information pour wait-for-bootstrap du pod nextcloud
|
|
|
|
|
- name: MINIO_BOOTSTRAP_JOB_NAME
|
|
|
|
|
objref:
|
|
|
|
|
name: create-minio-bucket
|
|
|
|
|
kind: Job
|
|
|
|
|
apiVersion: batch/v1
|
|
|
|
|
fieldref:
|
|
|
|
|
fieldpath: metadata.name
|
