Browse Source

Fix/s3 config secret (#5302)

pull/5308/head
spastorclovr 11 months ago
committed by GitHub
parent
commit
3b5d8ffb70
No known key found for this signature in database GPG Key ID: B5690EEEBB952194
  1. 2
      k8s/charts/seaweedfs/templates/filer-statefulset.yaml
  2. 2
      k8s/charts/seaweedfs/templates/s3-deployment.yaml
  3. 2
      k8s/charts/seaweedfs/templates/s3-secret.yaml
  4. 10
      k8s/charts/seaweedfs/values.yaml

2
k8s/charts/seaweedfs/templates/filer-statefulset.yaml

@ -286,7 +286,7 @@ spec:
- name: db-schema-config-volume
configMap:
name: seaweedfs-db-init-config
{{- if .Values.filer.s3.enableAuth }}
{{- if and .Values.filer.s3.enabled .Values.filer.s3.enableAuth }}
- name: config-users
secret:
defaultMode: 420

2
k8s/charts/seaweedfs/templates/s3-deployment.yaml

@ -191,7 +191,7 @@ spec:
- name: config-users
secret:
defaultMode: 420
{{- if .Values.filer.s3.existingConfigSecret }}
{{- if .Values.s3.existingConfigSecret }}
secretName: {{ .Values.s3.existingConfigSecret }}
{{- else }}
secretName: seaweedfs-s3-secret

2
k8s/charts/seaweedfs/templates/s3-secret.yaml

@ -1,4 +1,4 @@
{{- if not (or .Values.filer.s3.skipAuthSecretCreation .Values.s3.skipAuthSecretCreation .Values.filer.s3.existingConfigSecret .Values.s3.existingConfigSecret ) }}
{{- if or (and .Values.filer.s3.enabled .Values.filer.s3.enableAuth (not .Values.filer.s3.existingConfigSecret)) (and .Values.s3.enabled .Values.s3.enableAuth (not .Values.s3.existingConfigSecret)) }}
{{- $access_key_admin := randAlphaNum 16 -}}
{{- $secret_key_admin := randAlphaNum 32 -}}
{{- $access_key_read := randAlphaNum 16 -}}

10
k8s/charts/seaweedfs/values.yaml

@ -610,7 +610,7 @@ filer:
# key: password
s3:
enabled: true
enabled: false
port: 8333
# add additional https port
httpsPort: 0
@ -619,11 +619,10 @@ filer:
# Suffix of the host name, {bucket}.{domainName}
domainName: ""
# enable user & permission to s3 (need to inject to all services)
enableAuth: true
skipAuthSecretCreation: false
enableAuth: false
# set to the name of an existing kubernetes Secret with the s3 json config file
# should have a secret key called seaweedfs_s3_config with an inline json configure
existingConfigSecret: ""
existingConfigSecret: null
auditLogConfig: {}
# You may specify buckets to be created during the install process.
# Buckets may be exposed publicly by setting `anonymousRead` to `true`
@ -650,10 +649,9 @@ s3:
allowEmptyFolder: true
# enable user & permission to s3 (need to inject to all services)
enableAuth: false
skipAuthSecretCreation: false
# set to the name of an existing kubernetes Secret with the s3 json config file
# should have a secret key called seaweedfs_s3_config with an inline json config
existingConfigSecret: false
existingConfigSecret: null
auditLogConfig: {}
# Suffix of the host name, {bucket}.{domainName}

Loading…
Cancel
Save