♻️ [#380] Recycle settings from objecten chart

Author: danielmursa-dev

charts/openobject/CHANGELOG.md

@@ -1,5 +1,5 @@
 # Changelog
 
-## 0.1.0 (2025-04-21)
+## 0.1.0 (2026-05-15)
 
-- First chart release! 🎉
+- First chart release of Open Object 4.0, which now includes objecttypes.

charts/openobject/README.md

@@ -0,0 +1,276 @@
+# Open Object Chart
+
+API om objecten te beheren die behoren bij een bepaald objecttype
+
+![Version: 0.1.0](https://img.shields.io/badge/Version-0.1.0-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 4.0.0](https://img.shields.io/badge/AppVersion-4.0.0-informational?style=flat-square)
+
+## Introduction
+
+API om objecten te beheren die behoren bij een bepaald objecttype
+
+* [Source code](https://github.com/maykinmedia/open-object/)
+* [Docker image](https://hub.docker.com/r/maykinmedia/open-object)
+
+## Quickstart
+
+```bash
+helm repo add maykinmedia https://maykinmedia.github.io/charts/
+helm install openobject maykinmedia/openobject
+```
+
+## Requirements
+
+| Repository | Name | Version |
+|------------|------|---------|
+| https://charts.bitnami.com/bitnami | common | 2.31.4 |
+| https://charts.bitnami.com/bitnami | redis | 22.0.1 |
+
+## Configuration and installation details
+
+### Django specific configuration
+
+**Secret key**
+
+Django makes use of a secret key to provide cryptographic signing.
+This key should be set to a unique, unpredictable value.
+Without the `SECRET_KEY` environment variable, the application will not start.
+
+The key can be configured with the value `settings.secretKey`. You can use a [web tool](https://djecrety.ir/) to generate it.
+
+**Warning**: Running with a known secret key defeats many of Django’s security protections and can lead to privilege escalation and remote code execution vulnerabilities.
+
+### Automatic configuration
+
+The application can be automatically configured with `django-setup-configuration`.
+To enable the automatic configuration, the following values should be set:
+
+```yaml
+global:
+  configuration:
+    enabled: true
+
+configuration:
+  enabled: true
+  job:
+    enabled: true
+```
+
+The yaml data needed to configure the application should be provided in the value `configuration.data`.
+In the `values.yaml` file you can find an example of what the configuration should look like.
+The configuration can include sensitive data. To avoid having sensitive values in the `values.yaml` file, it is possible to reference
+environment variables. This can be done with the following syntax:
+
+```yaml
+configuration:
+  data:
+    someSensitiveVariable:
+      from_value:
+        env: SOME_SENSITIVE_VARIABLE
+```
+These environment variables should be provided in a secret, whose name must then be referenced
+with the value `existingConfigurationSecret` so that it is added to the environment of the Job pod.
+
+### Open Telemetry
+
+Open Object supports the Open Telemetry Protocol.
+
+We recommend deploying one or more Open Telemetry Collector instances in your cluster to receive
+telemetry. Alternatively, you can use any vendor that speaks the OTLP protocol.
+
+The environment variables that the Open Telemetry SDK supports can be found [here](https://opentelemetry.io/docs/specs/otel/configuration/sdk-environment-variables/#general-sdk-configuration).
+
+## Values
+
+| Key | Type | Default | Description |
+|-----|------|---------|-------------|
+| affinity | object | `{}` |  |
+| autoscaling.behaviour | object | `{}` |  |
+| autoscaling.enabled | bool | `false` |  |
+| autoscaling.maxReplicas | int | `100` |  |
+| autoscaling.minReplicas | int | `1` |  |
+| autoscaling.targetCPUUtilizationPercentage | int | `80` |  |
+| autoscaling.targetMemoryUtilizationPercentage | int | `80` |  |
+| azureVaultSecret.contentType | string | `""` |  |
+| azureVaultSecret.objectName | string | `""` |  |
+| azureVaultSecret.secretName | string | `"{{ .Values.existingSecret }}"` |  |
+| azureVaultSecret.vaultName | string | `nil` |  |
+| configuration.enabled | bool | `false` |  |
+| configuration.initContainer.enabled | bool | `false` | Run the setup configuration command in a init container |
+| configuration.job.backoffLimit | int | `6` |  |
+| configuration.job.enabled | bool | `false` | Run the setup configuration command as a job |
+| configuration.job.resources | object | `{}` |  |
+| configuration.job.restartPolicy | string | `"OnFailure"` |  |
+| configuration.job.ttlSecondsAfterFinished | int | `0` | 0 Will clean the job after it is finished |
+| configuration.overwrite | bool | `true` |  |
+| configuration.secrets | object | `{}` |  |
+| configuration.superuser.email | string | `""` |  |
+| configuration.superuser.password | string | `""` |  |
+| configuration.superuser.username | string | `""` |  |
+| configurationSecretsName | string | `""` |  |
+| existingConfigurationSecret | string | `nil` |  |
+| existingSecret | string | `nil` |  |
+| extraEnvVars | list | `[]` | Array with extra environment variables to add |
+| extraIngress | list | `[]` | Specify extra ingresses, for example if you have multiple ingress classes |
+| extraVolumeMounts | list | `[]` | Optionally specify extra list of additional volumeMounts |
+| extraVolumes | list | `[]` | Optionally specify extra list of additional volumes |
+| flower.enabled | bool | `true` |  |
+| flower.livenessProbe.failureThreshold | int | `6` |  |
+| flower.livenessProbe.initialDelaySeconds | int | `60` |  |
+| flower.livenessProbe.periodSeconds | int | `10` |  |
+| flower.livenessProbe.successThreshold | int | `1` |  |
+| flower.livenessProbe.timeoutSeconds | int | `5` |  |
+| flower.podLabels | object | `{}` |  |
+| flower.readinessProbe.failureThreshold | int | `6` |  |
+| flower.readinessProbe.initialDelaySeconds | int | `30` |  |
+| flower.readinessProbe.periodSeconds | int | `10` |  |
+| flower.readinessProbe.successThreshold | int | `1` |  |
+| flower.readinessProbe.timeoutSeconds | int | `5` |  |
+| flower.replicaCount | int | `1` |  |
+| flower.resources | object | `{}` |  |
+| fullnameOverride | string | `""` |  |
+| global.configuration.enabled | bool | `false` |  |
+| global.configuration.overwrite | bool | `true` |  |
+| global.configuration.secrets | object | `{}` |  |
+| global.settings.databaseHost | string | `""` | Global databasehost, overrides setting.database.host |
+| image.pullPolicy | string | `"IfNotPresent"` |  |
+| image.repository | string | `"maykinmedia/open-object"` |  |
+| image.tag | string | `""` |  |
+| imagePullSecrets | list | `[]` |  |
+| ingress.annotations | object | `{}` |  |
+| ingress.className | string | `""` |  |
+| ingress.enabled | bool | `false` |  |
+| ingress.hosts | list | `[]` | ingress hosts |
+| ingress.tls | list | `[]` |  |
+| livenessProbe.failureThreshold | int | `6` |  |
+| livenessProbe.initialDelaySeconds | int | `60` |  |
+| livenessProbe.periodSeconds | int | `10` |  |
+| livenessProbe.successThreshold | int | `1` |  |
+| livenessProbe.timeoutSeconds | int | `5` |  |
+| nameOverride | string | `""` |  |
+| nodeSelector | object | `{}` |  |
+| pdb.create | bool | `false` |  |
+| pdb.maxUnavailable | string | `""` |  |
+| pdb.minAvailable | int | `1` |  |
+| persistence.enabled | bool | `true` |  |
+| persistence.existingClaim | string | `nil` |  |
+| persistence.mediaMountSubpath | string | `"openobject/media"` |  |
+| persistence.size | string | `"1Gi"` |  |
+| persistence.storageClassName | string | `""` |  |
+| podAnnotations | object | `{}` |  |
+| podLabels | object | `{}` |  |
+| podSecurityContext.fsGroup | int | `1000` |  |
+| readinessProbe.failureThreshold | int | `6` |  |
+| readinessProbe.initialDelaySeconds | int | `30` |  |
+| readinessProbe.periodSeconds | int | `10` |  |
+| readinessProbe.successThreshold | int | `1` |  |
+| readinessProbe.timeoutSeconds | int | `5` |  |
+| redis.architecture | string | `"standalone"` |  |
+| redis.auth.enabled | bool | `false` |  |
+| redis.image | object | `{"registry":"docker.io","repository":"redis","tag":"8.0"}` | Redis image configuration - Migration from Bitnami to official Redis image         |
+| redis.master.persistence.enabled | bool | `true` |  |
+| redis.master.persistence.size | string | `"8Gi"` |  |
+| redis.master.persistence.storageClass | string | `""` |  |
+| redis.master.resources.requests.cpu | string | `"250m"` |  |
+| redis.master.resources.requests.memory | string | `"256Mi"` |  |
+| replicaCount | int | `2` |  |
+| resources | object | `{}` |  |
+| securityContext.capabilities.drop[0] | string | `"ALL"` |  |
+| securityContext.readOnlyRootFilesystem | bool | `false` |  |
+| securityContext.runAsNonRoot | bool | `true` |  |
+| securityContext.runAsUser | int | `1000` |  |
+| service.port | int | `80` |  |
+| service.type | string | `"ClusterIP"` |  |
+| serviceAccount.annotations | object | `{}` |  |
+| serviceAccount.automountServiceAccountToken | bool | `true` |  |
+| serviceAccount.create | bool | `true` |  |
+| serviceAccount.name | string | `""` |  |
+| settings.adminSearchDisabled | bool | `false` | Disable the search bar in the Objects admin list view |
+| settings.allowedHosts | string | `""` |  |
+| settings.cache.axes | string | `""` |  |
+| settings.cache.default | string | `""` |  |
+| settings.cache.oidc | string | `""` |  |
+| settings.celery.brokerUrl | string | `""` |  |
+| settings.celery.logLevel | string | `"debug"` |  |
+| settings.celery.resultBackend | string | `""` |  |
+| settings.celery.resultExpires | int | `3600` | Sets how long the results of tasks will be stored in Redis (in seconds); can be set to a lower value |
+| settings.database.db_conn_max_age | int | `60` |  |
+| settings.database.db_pool.db_pool_max_idle | int | `600` |  |
+| settings.database.db_pool.db_pool_max_lifetime | int | `3600` |  |
+| settings.database.db_pool.db_pool_max_size | int | `4` |  |
+| settings.database.db_pool.db_pool_max_waiting | int | `0` |  |
+| settings.database.db_pool.db_pool_min_size | int | `4` |  |
+| settings.database.db_pool.db_pool_num_workers | int | `3` |  |
+| settings.database.db_pool.db_pool_reconnect_timeout | int | `300` |  |
+| settings.database.db_pool.db_pool_timeout | int | `30` |  |
+| settings.database.db_pool.enabled | bool | `false` |  |
+| settings.database.host | string | `""` |  |
+| settings.database.name | string | `""` |  |
+| settings.database.objecttype_version_cache_timeout | string | `""` |  |
+| settings.database.password | string | `""` |  |
+| settings.database.port | int | `5432` |  |
+| settings.database.sslmode | string | `"prefer"` |  |
+| settings.database.username | string | `""` |  |
+| settings.debug | bool | `false` |  |
+| settings.disable2fa | bool | `false` | Disable two factor authentication |
+| settings.djangoSettingsModule | string | `"objects.conf.docker"` |  |
+| settings.elasticapm.serviceName | string | `""` |  |
+| settings.elasticapm.token | string | `""` |  |
+| settings.elasticapm.url | string | `""` |  |
+| settings.email.defaultFrom | string | `""` |  |
+| settings.email.host | string | `"localhost"` |  |
+| settings.email.password | string | `""` |  |
+| settings.email.port | int | `25` |  |
+| settings.email.useTLS | bool | `false` |  |
+| settings.email.username | string | `""` |  |
+| settings.enableCloudEvents | bool | `false` | Cloudevents |
+| settings.environment | string | `""` | sets the 'ENVIRONMENT' variable |
+| settings.isHttps | bool | `true` |  |
+| settings.logLevel | string | `"INFO"` | Default value "INFO" ; Available values are CRITICAL, ERROR, WARNING, INFO and DEBUG |
+| settings.logOutgoingRequests | bool | `false` |  |
+| settings.logRequests | bool | `false` |  |
+| settings.notificationsDisabled | bool | `false` |  |
+| settings.notificationsSource | string | `""` |  |
+| settings.otel.disabled | bool | `true` |  |
+| settings.otel.exporterOtlpEndpoint | string | `""` | Network address where to send the metrics to. Examples are: https://otel.example.com:4318 or http://otel-collector.namespace.cluster.svc:4317. |
+| settings.otel.exporterOtlpHeaders | list | `[]` | Any additional HTTP headers, for example if you need Basic auth. This is used in the secret.yaml, as it can contain credentials.  |
+| settings.otel.exporterOtlpMetricsInsecure | bool | `false` | Is true if the endoint is not protected with TLS. |
+| settings.otel.exporterOtlpProtocol | string | `"grpc"` | Controls the wire protocol for the OTLP data. Available options: grpc and http/protobuf. |
+| settings.otel.metricExportInterval | int | `60000` | Controls how often (in milliseconds) the metrics are exported. The exports run in a background thread and should not affect the performance of the application.  |
+| settings.otel.metricExportTimeout | int | `10000` | Controls the timeout of the requests to the collector (in milliseconds) |
+| settings.otel.resourceAttributes | list | `[]` | Resources Attributes can be used to specify additional information about the instance. |
+| settings.secretKey | string | `""` | Generate secret key at https://djecrety.ir/ |
+| settings.sentry.dsn | string | `""` |  |
+| settings.siteDomain | string | `""` | Defines the primary domain where the application is hosted. Defaults to "" |
+| settings.useXForwardedHost | bool | `false` |  |
+| settings.uwsgi.harakiri | string | `""` |  |
+| settings.uwsgi.master | string | `""` |  |
+| settings.uwsgi.maxRequests | string | `""` |  |
+| settings.uwsgi.processes | string | `""` |  |
+| settings.uwsgi.threads | string | `""` |  |
+| startupProbe.failureThreshold | int | `30` |  |
+| startupProbe.initialDelaySeconds | int | `15` | Total time: 15s initial delay + (30 failures × 10s period) = 315s (5 minutes 15 seconds)     |
+| startupProbe.periodSeconds | int | `10` |  |
+| startupProbe.successThreshold | int | `1` |  |
+| startupProbe.timeoutSeconds | int | `5` |  |
+| tags.redis | bool | `true` |  |
+| tolerations | list | `[]` |  |
+| worker.autoscaling.behaviour | object | `{}` |  |
+| worker.autoscaling.enabled | bool | `false` |  |
+| worker.autoscaling.maxReplicas | int | `100` |  |
+| worker.autoscaling.minReplicas | int | `1` |  |
+| worker.autoscaling.targetCPUUtilizationPercentage | int | `80` |  |
+| worker.autoscaling.targetMemoryUtilizationPercentage | int | `80` |  |
+| worker.concurrency | int | `4` |  |
+| worker.livenessProbe.enabled | bool | `false` |  |
+| worker.livenessProbe.exec.command[0] | string | `"/bin/sh"` |  |
+| worker.livenessProbe.exec.command[1] | string | `"-c"` |  |
+| worker.livenessProbe.exec.command[2] | string | `"celery --workdir src --app objects.celery inspect --destination celery@${HOSTNAME} active"` |  |
+| worker.livenessProbe.failureThreshold | int | `3` |  |
+| worker.livenessProbe.initialDelaySeconds | int | `60` |  |
+| worker.livenessProbe.periodSeconds | int | `50` |  |
+| worker.livenessProbe.successThreshold | int | `1` |  |
+| worker.livenessProbe.timeoutSeconds | int | `10` |  |
+| worker.maxWorkerLivenessDelta | string | `""` |  |
+| worker.podLabels | object | `{}` |  |
+| worker.replicaCount | int | `2` |  |
+| worker.resources | object | `{}` |  |

charts/openobject/templates/azurekeyvaultsecrets.yaml

@@ -13,4 +13,4 @@ spec:
   output:
     secret:
       name: {{ .Values.existingSecret }}
-{{- end }}
+{{- end }}

charts/openobject/templates/celery-liveness-configmap.yaml

@@ -2,7 +2,7 @@
 apiVersion: v1
 kind: ConfigMap
 metadata:
-  name: {{ include "project.fullname" . }}-celery-liveness
+  name: {{ include "openobject.fullname" . }}-celery-liveness
 data: 
   liveness-probe.sh: |
     #!/bin/bash
@@ -27,5 +27,5 @@ data:
     fi
 
     # Use CELERY_WORKER_NAME to set the --destination flag
-    celery --workdir src --app {{ include "application.name" . }}.celery inspect --destination "$WORKER_NAME" active
-{{- end }}
+    celery --workdir src --app objects.celery inspect --destination "$WORKER_NAME" active
+{{- end }}

charts/openobject/templates/configmap-celery.yaml

@@ -1,7 +1,7 @@
 apiVersion: v1
 kind: ConfigMap
 metadata:
-  name: {{ include "project.fullname" . }}-worker-{{ .Values.worker.label | default "celery" }}
+  name: {{ include "openobject.fullname" . }}-worker-{{ .Values.worker.label | default "celery" }}
 data: 
   CELERY_WORKER_QUEUE: {{ .Values.worker.queueName | default "" }}
-  CELERY_WORKER_NAME: {{ .Values.worker.name | default "" }}
+  CELERY_WORKER_NAME: {{ .Values.worker.name | default "" }}