volker.raschek/athens-proxy-charts
1
0
Fork 0
Code Issues Pull Requests 1 Actions Packages Projects Releases Wiki Activity

Compare commits

base: volker.raschek:3f7476afc62d62071c9d27debccf9bfe6ba4199f
Branches Tags
volker.raschek:master volker.raschek:renovate/major-update-docker.iovolkerraschekhelm
volker.raschek:1.3.0 volker.raschek:1.2.1 volker.raschek:1.2.0 volker.raschek:1.1.1 volker.raschek:1.1.0 volker.raschek:1.0.3 volker.raschek:1.0.2 volker.raschek:1.0.1 volker.raschek:1.0.0 volker.raschek:0.2.1 volker.raschek:0.2.0 volker.raschek:0.1.5 volker.raschek:0.1.4 volker.raschek:0.1.3 volker.raschek:0.1.2 volker.raschek:0.1.1 volker.raschek:0.1.0
...
compare: volker.raschek:1.2.0
Branches Tags
volker.raschek:renovate/major-update-docker.iovolkerraschekhelm volker.raschek:master
volker.raschek:1.3.0 volker.raschek:1.2.1 volker.raschek:1.2.0 volker.raschek:1.1.1 volker.raschek:1.1.0 volker.raschek:1.0.3 volker.raschek:1.0.2 volker.raschek:1.0.1 volker.raschek:1.0.0 volker.raschek:0.2.1 volker.raschek:0.2.0 volker.raschek:0.1.5 volker.raschek:0.1.4 volker.raschek:0.1.3 volker.raschek:0.1.2 volker.raschek:0.1.1 volker.raschek:0.1.0

26 Commits
3f7476afc6 ... 1.2.0

Author SHA1 Message Date
Markus Pesch
28c1e37e13 chore(deps): rollback docker docker.io/volkerraschek/helm to 3.19.2
All checks were successful
Helm / helm-unittest (push) Successful in 9s
Details
Helm / helm-lint (push) Successful in 10s
Details
Release / publish-chart (push) Successful in 8s
Details
2025-11-30 13:35:56 +01:00
Markus Pesch
757469762b feat(pod): roll deployment for TLS certificates
Some checks failed
Helm / helm-lint (push) Successful in 5s
Details
Helm / helm-unittest (push) Successful in 9s
Details
Release / publish-chart (push) Failing after 6s
Details 
The patch add the annotation `checksum/secret-<name of the TLS secret>` with the
sha512 value of the secret. This ensures a rolling update if the TLS secrets has
been updated. Such an update can be triggered by the cert-manager.
 2025-11-30 13:33:50 +01:00
Markus Pesch
f1a47dc0a5 Merge pull request 'chore(deps): update docker.io/volkerraschek/helm docker tag to v4' (#108) from renovate/major-update-docker.iovolkerraschekhelm into master
All checks were successful
Helm / helm-unittest (push) Successful in 7s
Details
Helm / helm-lint (push) Successful in 9s
Details 
Reviewed-on: #108
 2025-11-30 11:26:09 +00:00
Markus Pesch
d86bf91491 Merge branch 'master' into renovate/major-update-docker.iovolkerraschekhelm
All checks were successful
Helm / helm-lint (push) Successful in 4s
Details
Helm / helm-unittest (push) Successful in 7s
Details
Helm / helm-lint (pull_request) Successful in 10s
Details
Helm / helm-unittest (pull_request) Successful in 6s
Details
2025-11-30 11:25:42 +00:00
Markus Pesch
de615c2ff5 Merge pull request 'chore(deps): update dependency helm/helm to v4.0.1' (#114) from renovate/helm-helm-4.x into master
All checks were successful
Helm / helm-lint (push) Successful in 4s
Details
Helm / helm-unittest (push) Successful in 18s
Details 
Reviewed-on: #114
 2025-11-30 11:25:34 +00:00
CSRBot
34839d0e4d Merge pull request 'chore(deps): update azure/setup-helm action to v4.3.1' (#113) from renovate/actions into master
All checks were successful
Helm / helm-lint (push) Successful in 5s
Details
Helm / helm-unittest (push) Successful in 8s
Details
2025-11-30 11:01:34 +00:00
CSRBot
80d3b9972b chore(deps): update docker.io/volkerraschek/helm docker tag to v4
All checks were successful
Helm / helm-lint (push) Successful in 5s
Details
Helm / helm-unittest (push) Successful in 7s
Details
Generate README / generate-parameters (push) Successful in 29s
Details
Markdown linter / markdown-link-checker (push) Successful in 11s
Details
Generate README / generate-parameters (pull_request) Successful in 9s
Details
Helm / helm-lint (pull_request) Successful in 4s
Details
Helm / helm-unittest (pull_request) Successful in 7s
Details
Markdown linter / markdown-lint (push) Successful in 29s
Details
Markdown linter / markdown-link-checker (pull_request) Successful in 11s
Details
Markdown linter / markdown-lint (pull_request) Successful in 29s
Details
2025-11-30 11:01:13 +00:00
CSRBot
080965d513 chore(deps): update dependency helm/helm to v4.0.1
All checks were successful
Helm / helm-unittest (push) Successful in 8s
Details
Helm / helm-lint (pull_request) Successful in 4s
Details
Helm / helm-lint (push) Successful in 14s
Details
Helm / helm-unittest (pull_request) Successful in 8s
Details
2025-11-30 11:01:07 +00:00
CSRBot
07700a2952 chore(deps): update azure/setup-helm action to v4.3.1
All checks were successful
Helm / helm-unittest (push) Successful in 12s
Details
Helm / helm-lint (pull_request) Successful in 5s
Details
Helm / helm-lint (push) Successful in 26s
Details
Helm / helm-unittest (pull_request) Successful in 7s
Details
2025-11-30 11:00:59 +00:00
Markus Pesch
0113b21af9 docs(README): adapt stakaters reloader example
All checks were successful
Helm / helm-lint (push) Successful in 4s
Details
Helm / helm-unittest (push) Successful in 9s
Details
Markdown linter / markdown-link-checker (push) Successful in 16s
Details
Generate README / generate-parameters (push) Successful in 40s
Details
Markdown linter / markdown-lint (push) Successful in 9s
Details
2025-11-30 11:54:50 +01:00
Markus Pesch
74b45790bf fix(ci): replace volkerraschek/helm with native GitHub Actions
All checks were successful
Helm / helm-unittest (push) Successful in 7s
Details
Helm / helm-lint (push) Successful in 10s
Details
2025-11-30 11:24:14 +01:00
CSRBot
69ac64d858 Merge pull request 'chore(deps): update dependency markdown-link-check to v3.14.2' (#112) from renovate/markdown-link-check-3.x-lockfile into master
All checks were successful
Helm / helm-lint (push) Successful in 14s
Details
Helm / helm-unittest (push) Successful in 16s
Details
2025-11-19 17:01:50 +00:00
CSRBot
38b5dbf355 chore(deps): update dependency markdown-link-check to v3.14.2
All checks were successful
Helm / helm-lint (push) Successful in 8s
Details
Helm / helm-lint (pull_request) Successful in 5s
Details
Helm / helm-unittest (push) Successful in 16s
Details
Helm / helm-unittest (pull_request) Successful in 6s
Details
2025-11-19 17:01:20 +00:00
CSRBot
a164371601 Merge pull request 'chore(deps): update dependency markdownlint-cli to ^0.46.0' (#111) from renovate/markdownlint-cli-0.x into master
All checks were successful
Helm / helm-lint (push) Successful in 14s
Details
Helm / helm-unittest (push) Successful in 17s
Details
2025-11-19 05:02:07 +00:00
CSRBot
f5a6fe056e chore(deps): update dependency markdownlint-cli to ^0.46.0
All checks were successful
Helm / helm-lint (push) Successful in 6s
Details
Helm / helm-unittest (push) Successful in 6s
Details
Helm / helm-lint (pull_request) Successful in 6s
Details
Helm / helm-unittest (pull_request) Successful in 18s
Details
2025-11-19 05:01:18 +00:00
CSRBot
3e8d15cf51 Merge pull request 'chore(deps): update docker.io/library/node docker tag to v25.2.1' (#110) from renovate/update-docker.iolibrarynode into master
All checks were successful
Helm / helm-lint (push) Successful in 15s
Details
Helm / helm-unittest (push) Successful in 16s
Details
2025-11-17 17:21:49 +00:00
CSRBot
df1043b80d Merge pull request 'chore(deps): update actions/checkout action to v5.0.1' (#109) from renovate/actions into master
Some checks failed
Helm / helm-lint (push) Has been cancelled
Details
Helm / helm-unittest (push) Has been cancelled
Details
2025-11-17 17:21:30 +00:00
CSRBot
20910d2d0f chore(deps): update docker.io/library/node docker tag to v25.2.1
All checks were successful
Helm / helm-lint (push) Successful in 6s
Details
Helm / helm-unittest (push) Successful in 7s
Details
Helm / helm-lint (pull_request) Successful in 7s
Details
Helm / helm-unittest (pull_request) Successful in 17s
Details
2025-11-17 17:02:46 +00:00
CSRBot
ec201021b2 chore(deps): update actions/checkout action to v5.0.1
All checks were successful
Helm / helm-unittest (push) Successful in 7s
Details
Helm / helm-lint (push) Successful in 14s
Details
Helm / helm-lint (pull_request) Successful in 5s
Details
Helm / helm-unittest (pull_request) Successful in 17s
Details
2025-11-17 17:02:40 +00:00
CSRBot
3f82552882 Merge pull request 'chore(deps): update docker.io/volkerraschek/helm docker tag to v3.19.2' (#107) from renovate/update-docker.iovolkerraschekhelm into master
All checks were successful
Helm / helm-unittest (push) Successful in 6s
Details
Helm / helm-lint (push) Successful in 14s
Details
2025-11-12 21:09:27 +00:00
CSRBot
c4196dc2f2 chore(deps): update docker.io/volkerraschek/helm docker tag to v3.19.2
All checks were successful
Helm / helm-unittest (push) Successful in 12s
Details
Helm / helm-lint (pull_request) Successful in 5s
Details
Helm / helm-unittest (pull_request) Successful in 6s
Details
Helm / helm-lint (push) Successful in 28s
Details
2025-11-12 21:08:55 +00:00
CSRBot
d364d1a2b6 Merge pull request 'chore(deps): update docker.io/library/node docker tag to v25.2.0' (#106) from renovate/update-docker.iolibrarynode into master
All checks were successful
Helm / helm-lint (push) Successful in 15s
Details
Helm / helm-unittest (push) Successful in 17s
Details
2025-11-12 20:01:48 +00:00
CSRBot
4ca2d29172 chore(deps): update docker.io/library/node docker tag to v25.2.0
All checks were successful
Helm / helm-lint (push) Successful in 7s
Details
Helm / helm-lint (pull_request) Successful in 6s
Details
Helm / helm-unittest (pull_request) Successful in 6s
Details
Helm / helm-unittest (push) Successful in 18s
Details
2025-11-12 20:01:20 +00:00
CSRBot
c8e234ff24 Merge pull request 'chore(deps): update docker.io/library/node docker tag to v25.1.0' (#105) from renovate/update-docker.iolibrarynode into master
All checks were successful
Helm / helm-lint (push) Successful in 15s
Details
Helm / helm-unittest (push) Successful in 15s
Details
2025-10-29 17:01:40 +00:00
CSRBot
cedb98c64c chore(deps): update docker.io/library/node docker tag to v25.1.0
All checks were successful
Helm / helm-lint (push) Successful in 6s
Details
Helm / helm-lint (pull_request) Successful in 7s
Details
Helm / helm-unittest (push) Successful in 17s
Details
Helm / helm-unittest (pull_request) Successful in 7s
Details
2025-10-29 17:01:11 +00:00
Markus Pesch
51facd6e1c docs(README): add example for outgoing SSH traffic
All checks were successful
Generate README / generate-parameters (push) Successful in 29s
Details
Helm / helm-lint (push) Successful in 14s
Details
Helm / helm-unittest (push) Successful in 17s
Details
Markdown linter / markdown-link-checker (push) Successful in 31s
Details
Markdown linter / markdown-lint (push) Successful in 27s
Details
2025-10-22 18:13:33 +02:00
11 changed files with 211 additions and 643 deletions
Expand all files Collapse all files

7
.gitea/workflows/generate-readme.yaml
View File

@@ -15,15 +15,14 @@ on:
jobs: jobs:
generate-parameters: generate-parameters:
container: container:
image: docker.io/library/node:25.0.0-alpine image: docker.io/library/node:25.2.1-alpine
runs-on: runs-on: ubuntu-latest
- ubuntu-latest
steps: steps:
- name: Install tooling - name: Install tooling
run: | run: |
apk update apk update
apk add git npm apk add git npm
- uses: actions/checkout@v5.0.0 - uses: actions/checkout@v5.0.1
- name: Generate parameter section in README - name: Generate parameter section in README
run: | run: |
npm install npm install

37
.gitea/workflows/helm.yaml
View File

@@ -12,31 +12,26 @@ on:
jobs: jobs:
helm-lint: helm-lint:
container: runs-on: ubuntu-latest
image: docker.io/volkerraschek/helm:3.19.0
runs-on:
- ubuntu-latest
steps: steps:
- name: Install tooling - uses: actions/checkout@v5.0.1
run: | - uses: azure/setup-helm@v4.3.1
apk update with:
apk add git npm version: v4.0.1 # renovate: datasource=github-releases depName=helm/helm
- uses: actions/checkout@v5.0.0
- name: Lint helm files - name: Lint helm files
run: | run: |
helm lint --values values.yaml . helm lint --values values.yaml .
helm-unittest: helm-unittest:
container: runs-on: ubuntu-latest
image: docker.io/volkerraschek/helm:3.19.0
runs-on:
- ubuntu-latest
steps: steps:
- name: Install tooling - uses: actions/checkout@v5.0.1
run: | - uses: azure/setup-helm@v4.3.1
apk update with:
apk add git npm version: v4.0.1 # renovate: datasource=github-releases depName=helm/helm
- uses: actions/checkout@v5.0.0 - env:
- name: Unittest HELM_UNITTEST_VERSION: v1.0.0 #renovate: datasource=github-releases depName=helm-unittest/helm-unittest
run: | name: Install helm-unittest
helm unittest --strict --file 'unittests/**/*.yaml' ./ run: helm plugin install --verify=false --version "${HELM_UNITTEST_VERSION}" https://github.com/helm-unittest/helm-unittest
- name: Execute helm unittests
run: helm unittest --strict --file 'unittests/**/*.yaml' .

14
.gitea/workflows/markdown-linters.yaml
View File

@@ -15,15 +15,14 @@ on:
jobs: jobs:
markdown-link-checker: markdown-link-checker:
container: container:
image: docker.io/library/node:25.0.0-alpine image: docker.io/library/node:25.2.1-alpine
runs-on: runs-on: ubuntu-latest
- ubuntu-latest
steps: steps:
- name: Install tooling - name: Install tooling
run: | run: |
apk update apk update
apk add git npm apk add git npm
- uses: actions/checkout@v5.0.0 - uses: actions/checkout@v5.0.1
- name: Verify links in markdown files - name: Verify links in markdown files
run: | run: |
npm install npm install
@@ -31,15 +30,14 @@ jobs:
markdown-lint: markdown-lint:
container: container:
image: docker.io/library/node:25.0.0-alpine image: docker.io/library/node:25.2.1-alpine
runs-on: runs-on: ubuntu-latest
- ubuntu-latest
steps: steps:
- name: Install tooling - name: Install tooling
run: | run: |
apk update apk update
apk add git apk add git
- uses: actions/checkout@v5.0.0 - uses: actions/checkout@v5.0.1
- name: Lint markdown files - name: Lint markdown files
run: | run: |
npm install npm install

4
.gitea/workflows/release.yaml
View File

@@ -8,7 +8,7 @@ on:
jobs: jobs:
publish-chart: publish-chart:
container: container:
image: docker.io/volkerraschek/helm:3.19.0 image: docker.io/volkerraschek/helm:3.19.2
runs-on: ubuntu-latest runs-on: ubuntu-latest
steps: steps:
- name: Install packages via apk - name: Install packages via apk
@@ -16,7 +16,7 @@ jobs:
apk update apk update
apk add git npm jq yq apk add git npm jq yq
- uses: actions/checkout@v5.0.0 - uses: actions/checkout@v5.0.1
with: with:
fetch-depth: 0 fetch-depth: 0

2
Makefile
View File

@@ -10,7 +10,7 @@ HELM_IMAGE_FULLY_QUALIFIED=${HELM_IMAGE_REGISTRY_HOST}/${HELM_IMAGE_REPOSITORY}:
# NODE_IMAGE # NODE_IMAGE
NODE_IMAGE_REGISTRY_HOST?=docker.io NODE_IMAGE_REGISTRY_HOST?=docker.io
NODE_IMAGE_REPOSITORY?=library/node NODE_IMAGE_REPOSITORY?=library/node
NODE_IMAGE_VERSION?=25.0.0-alpine # renovate: datasource=docker registryUrl=https://docker.io depName=docker.io/library/node packageName=library/node NODE_IMAGE_VERSION?=25.2.1-alpine # renovate: datasource=docker registryUrl=https://docker.io depName=docker.io/library/node packageName=library/node
NODE_IMAGE_FULLY_QUALIFIED=${NODE_IMAGE_REGISTRY_HOST}/${NODE_IMAGE_REPOSITORY}:${NODE_IMAGE_VERSION} NODE_IMAGE_FULLY_QUALIFIED=${NODE_IMAGE_REGISTRY_HOST}/${NODE_IMAGE_REPOSITORY}:${NODE_IMAGE_VERSION}
# MISSING DOT # MISSING DOT

24
README.md
View File

@@ -1,4 +1,4 @@
# athens-proxy-charts # Athens - A Go module datastore and proxy
[![Artifact Hub](https://img.shields.io/endpoint?url=https://artifacthub.io/badge/repository/volker-raschek)](https://artifacthub.io/packages/search?repo=volker-raschek) [![Artifact Hub](https://img.shields.io/endpoint?url=https://artifacthub.io/badge/repository/volker-raschek)](https://artifacthub.io/packages/search?repo=volker-raschek)
@@ -120,18 +120,13 @@ before expiring.
Until the exporter does not support rotating TLS certificate a workaround can be applied. For example stakater's Until the exporter does not support rotating TLS certificate a workaround can be applied. For example stakater's
[reloader](https://github.com/stakater/Reloader) controller can be used to trigger a rolling update. The following [reloader](https://github.com/stakater/Reloader) controller can be used to trigger a rolling update. The following
annotation must be added to instruct the reloader controller to trigger a rolling update, when the mounted configMaps annotation must be added to instruct the reloader controller to trigger a rolling update, when the mounted secret has
and secrets have been changed. been changed.
```yaml > [!IMPORTANT]
deployment: > The Helm chart already adds annotations to trigger a rolling release. Helm describes this approach under
annotations: > [Automatically Roll Deployments](https://helm.sh/docs/howto/charts_tips_and_tricks/#automatically-roll-deployments).
reloader.stakater.com/auto: "true" > For this reason, **only external** configMaps or secrets need to be monitored by reloader.
```
Instead of triggering a rolling update for configMap and secret resources, this action can also be defined for
individual items. For example, when the secret named `athens-proxy-tls` is mounted and the reloader controller should
only listen for changes of this secret:
```yaml ```yaml
deployment: deployment:
@@ -149,8 +144,8 @@ stakater's reloader.
```diff ```diff
deployment: deployment:
annotations: annotations:
reloader.stakater.com/auto: "true"
+ reloader.stakater.com/rollout-strategy: "restart" + reloader.stakater.com/rollout-strategy: "restart"
secret.reloader.stakater.com/reload: "athens-proxy-tls"
``` ```
#### Network policies #### Network policies
@@ -188,6 +183,9 @@ networkPolicies:
protocol: TCP protocol: TCP
- port: 53 - port: 53
protocol: UDP protocol: UDP
- ports:
- port: 22
protocol: TCP
- ports: - ports:
- port: 443 - port: 443
protocol: TCP protocol: TCP

749
package-lock.json generated
View File

File diff suppressed because it is too large Load Diff

2
package.json
View File

@@ -16,6 +16,6 @@
"devDependencies": { "devDependencies": {
"@bitnami/readme-generator-for-helm": "^2.5.0", "@bitnami/readme-generator-for-helm": "^2.5.0",
"markdown-link-check": "^3.13.6", "markdown-link-check": "^3.13.6",
"markdownlint-cli": "^0.45.0" "markdownlint-cli": "^0.46.0"
} }
} }

6
templates/_pod.tpl
View File

@@ -4,6 +4,10 @@
{{- define "athens-proxy.pod.annotations" }} {{- define "athens-proxy.pod.annotations" }}
{{- include "athens-proxy.annotations" . }} {{- include "athens-proxy.annotations" . }}
{{- if and .Values.certificate.enabled (not .Values.certificate.existingSecret.enabled) }}
{{- $secretName := include "athens-proxy.certificates.server.name" $ }}
{{ printf "checksum/secret-%s: %s" $secretName (print (lookup "v1" "Secret" .Release.Namespace $secretName) | sha256sum) }}
{{- end }}
{{- if and .Values.config.env.enabled (not .Values.config.env.existingSecret.enabled) }} {{- if and .Values.config.env.enabled (not .Values.config.env.existingSecret.enabled) }}
{{ printf "checksum/secret-%s: %s" (include "athens-proxy.secrets.env.name" $) (include (print $.Template.BasePath "/secretEnv.yaml") . | sha256sum) }} {{ printf "checksum/secret-%s: %s" (include "athens-proxy.secrets.env.name" $) (include (print $.Template.BasePath "/secretEnv.yaml") . | sha256sum) }}
{{- end }} {{- end }}
@@ -21,8 +25,6 @@
{{- end }} {{- end }}
{{- end }} {{- end }}
{{/* labels */}} {{/* labels */}}
{{- define "athens-proxy.pod.labels" -}} {{- define "athens-proxy.pod.labels" -}}

3
unittests/deployment/certificate.yaml
View File

@@ -46,6 +46,9 @@ tests:
certificate.new.issuerRef.kind: ClusterIssuer certificate.new.issuerRef.kind: ClusterIssuer
certificate.new.issuerRef.name: MyIssuer certificate.new.issuerRef.name: MyIssuer
asserts: asserts:
- exists:
path: spec.template.metadata.annotations["checksum/secret-athens-proxy-unittest-tls"]
template: templates/deployment.yaml
- contains: - contains:
path: spec.template.spec.containers[0].env path: spec.template.spec.containers[0].env
content: content:

6
values.yaml
View File

@@ -590,6 +590,12 @@ networkPolicy:
# - Egress # - Egress
# - Ingress # - Ingress
egress: [] egress: []
# Allow outgoing SSH traffic to Source Code Control System's (SCCS') like GitHub or GitLab.
#
# - ports:
# - port: 22
# protocol: TCP
# Allow outgoing HTTPS traffic to external go module servers # Allow outgoing HTTPS traffic to external go module servers
# #
# - ports: # - ports: