{"id":18374736,"url":"https://github.com/jupiterone/apps-helm-charts","last_synced_at":"2025-07-27T15:42:43.932Z","repository":{"id":80692054,"uuid":"528594276","full_name":"JupiterOne/apps-helm-charts","owner":"JupiterOne","description":"Reusable Helm charts for different application deployment patterns at JupiterOne","archived":false,"fork":false,"pushed_at":"2023-10-16T19:00:30.000Z","size":86,"stargazers_count":2,"open_issues_count":0,"forks_count":0,"subscribers_count":9,"default_branch":"main","last_synced_at":"2025-02-15T22:13:28.846Z","etag":null,"topics":["apps","cd","cloudnative","helm","jupiterone","kubernetes","library"],"latest_commit_sha":null,"homepage":"","language":"Smarty","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":null,"status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/JupiterOne.png","metadata":{"files":{"readme":"README.md","changelog":"changelog.md","contributing":null,"funding":null,"license":null,"code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":"CODEOWNERS","security":null,"support":null,"governance":null}},"created_at":"2022-08-24T21:06:05.000Z","updated_at":"2024-10-23T13:55:56.000Z","dependencies_parsed_at":"2023-10-17T03:15:15.763Z","dependency_job_id":null,"html_url":"https://github.com/JupiterOne/apps-helm-charts","commit_stats":null,"previous_names":[],"tags_count":18,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/JupiterOne%2Fapps-helm-charts","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/JupiterOne%2Fapps-helm-charts/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/JupiterOne%2Fapps-helm-charts/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/JupiterOne%2Fapps-helm-charts/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/JupiterOne","download_url":"https://codeload.github.com/JupiterOne/apps-helm-charts/tar.gz/refs/heads/main","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":248332279,"owners_count":21086054,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["apps","cd","cloudnative","helm","jupiterone","kubernetes","library"],"created_at":"2024-11-06T00:15:50.051Z","updated_at":"2025-04-11T02:47:13.054Z","avatar_url":"https://github.com/JupiterOne.png","language":"Smarty","funding_links":[],"categories":[],"sub_categories":[],"readme":"# Application\nReusable Helm charts for different application deployment patterns at JupiterOne\n\n## Installing the Chart\n\nTo configure the jupiterone-apps helm repo, you'll want to run the following commands:\n\n helm repo add jupiterone-apps https://jupiterone.github.io/apps-helm-charts\n helm repo update\n\n## Installation Example\n\nTo install the chart with the release name: `jupiterone-persister-example` in namespace `jupiterone-persister-example` with custom configuration specified, run the following commands:\n\n helm install jupiterone-persister-example jupiterone-apps/application --create-namespace --namespace jupiterone-persister-example --values ./values.yaml \n\n## Uninstallation Example\n\nTo uninstall the chart:\n\n helm delete \u003cname-of-the-chart\u003e -n namespace\n\n## Testing - Configuring Env/Secrets File\n\n vi ~/.env\n\n GITHUB_TOKEN=yourgithubtoken\n SRE_TEAM_SLACK_WEBHOOK=\"\"\n\n vi ~/.secrets\n\n GITHUB_TOKEN=yourgithubtoken\n SRE_TEAM_SLACK_WEBHOOK=\"\"\n\n## Installing Local Tooling - Testing Github Actions\n\n brew install act\n\n## Testing Github Action - PR\n\n act pull_request --container-architecture linux/amd64 --env-file ~/.env --secret-file ~/.secrets\n\n## Testing Github Action - Main\n\n act push --container-architecture linux/amd64 --env-file ~/.env --secret-file ~/.secrets --eventpath .github/local/mocks/main-branch-mock-push-github-event.json\n\n## Paramaters\n\n| Name | Description | Value |\n| ---| ---------------------------------------------------------------------------------------------|---------------------------------------------|\n| applicationName | Name of the application | `application` |\n| namespaceOverride | Override default release namespace with a custom value | `application` |\n| labels.group | Label to define application group | `io.jupiterone.platform` |\n| labels.team | Label to define team | `sre` |\n\n### Deployment Paramaters\n\n| Name | Description | Value |\n| ------------------------ | -------------------------------------------------------------------------------------------- | --------------- |\n| deployment.enabled | Enable deployment on helm chart deployments | `true` |\n| deployment.strategy | Strategy for updating deployments | `RollingUpdate` |\n| deployment.nodeSelector | Select node to deploy this application | `{}` |\n| deployment.hostAliases | Adding entries to a Pod's /etc/hosts file provides Pod-level override of hostname resolution when DNS and other options are not applicable | `[]` |\n| deployment.additionalLabels | Additional labels for Deployment | `{}` |\n| deployment.podLabels | Additional label added on pod which is used in Service's Label Selector | {} |\n| deployment.annotations | Annotations on deployments | `{}` |\n| deployment.additionalPodAnnotation | Additional Pod Annotations added on pod created by this Deployment | `{}` |\n| deployment.replicas | Replicas to be created | `` |\n| deployment.imagePullSecrets | Secrets used to pull image | `\"\"` |\n| deployment.env | Environment variables to be passed to the app container | `{}` |\n| deployment.volumes | Volumes to be added to the pod | `{}` |\n| deployment.volumeMounts | Mount path for Volumes | `{}` |\n| deployment.command | Command for primary container of deployment | `[]` |\n| deployment.args | Arg for primary container of deployment | `[]` |\n| deployment.tolerations | Taint tolerations for nodes | `[]` |\n| deployment.affinity | Affinity for pod/node | `[]` |\n| deployment.ports | Ports for primary container | `[]` |\n| deployment.securityContext | Security Context for the pod | `{}` |\n| deployment.additionalContainers | Add additional containers besides init and app containers | `[] |\n\n#### Deployment Resources Parameters\n\n| Name | Description | Value |\n| ------------------------ | -------------------------------------------------------------------------------------------- | --------------- |\n| deployment.resources | Application pod resource requests \u0026 limits | See below |\n\n##### Requests and Limits\n\n```\n resources: \n limits:\n memory: 256Mi\n cpu: 0.5\n requests:\n memory: 128Mi\n cpu: 0.1\n```\n\n#### Deployment InitContainers Parameters\n\n| Name | Description | Value |\n| ------------------------ | -------------------------------------------------------------------------------------------- | --------------- |\n| deployment.initContainers | Init containers which runs before the app container | `{}` |\n\n\n#### Deployment fluentd Parameters\n\n| Name | Description | Value |\n| ------------------------ | -------------------------------------------------------------------------------------------- | --------------- |\n| deployment.fluentdConfigAnnotations | Annotations for fluentd Configurations | `{}` |\n\n#### Deployment Image Parameters\n\n| Name | Description | Value |\n| ------------------------ | -------------------------------------------------------------------------------------------- | --------------- |\n| deployment.image.repository | Image repository for the application | `repository/image-name` |\n| deployment.image.tag | Tag of the application Image | `v1.0.0` |\n| deployment.image.pullPolicy | Pull policy for the application image | `IfNotPresent` |\n\n#### Deployment envFrom Parameters\n\n| Name | Description | Value |\n| ------------------------ | -------------------------------------------------------------------------------------------- | --------------- |\n| deployment.envFrom | Environment variables to be picked from configmap or secret | `{}` |\n| deployment.envFrom.type | Type of data i.e. Configmap or Secret | `` |\n| deployment.envFrom.name | Name of Configmap or Secret, if set empty, set to application name | `` |\n| deployment.envFrom.nameSuffix | Suffix Name of Configmap or Secret, applicationName is appended as prefix | `` |\n\n#### Deployment Probes Paramaters\n\n##### Startup Probe\nStartupProbe indicates that the Pod has successfully initialized. If specified, no other probes are executed until this completes successfully.\n\n| Name | Description | Value |\n| ------------------------ |---------------------------------------------------------------------------------------------|------------------------|\n| deployment.startupProbe.enabled | Enabled startup probe | false |\n| deployment.startupProbe.failureThreshold | When a probe fails, Kubernetes will try failureThreshold times before giving up. | 30 |\n| deployment.startupProbe.periodSeconds | Perform probe everytime after specified periodSeconds | 10 |\n| deployment.startupProbe.successThreshold | Minimum consecutive successes for the probe to be considered successful after having failed. | |\n| deployment.startupProbe.timeoutSeconds | Number of seconds after which the probe times out. | |\n| deployment.startupProbe.httpGet | Describes an action based on HTTP Get requests | path: '/path' port: 8080 |\n| deployment.startupProbe.exec | Kubelet executes the specified command to perform the probe | {} |\n\n\n##### Readiness Probe\nPeriodic probe of container service readiness. Container will be removed from service endpoints if the probe fails.\n\n| Name | Description | Value |\n| ------------------------ | -------------------------------------------------------------------------------------------- | --------------- |\n| deployment.readinessProbe.enabled | Enabled readiness probe | true |\n| deployment.readinessProbe.failureThreshold | When a probe fails, Kubernetes will try failureThreshold times before giving up. | 3 |\n| deployment.readinessProbe.periodSeconds | Perform probe everytime after specified periodSeconds | 10 |\n| deployment.readinessProbe.successThreshold | Minimum consecutive successes for the probe to be considered successful after having failed. | 1 |\n| deployment.readinessProbe.timeoutSeconds | Number of seconds after which the probe times out. | 1 |\n| deployment.readinessProbe.initialDelaySeconds | Number of seconds after the container has started before liveness or readiness probes are initiated. | 10 |\n| deployment.readinessProbe.httpGet | Describes an action based on HTTP Get requests | path: '/path' port: 8080 |\n| deployment.readinessProbe.exec | Kubelet executes the specified command to perform the probe | {} |\n\n##### Liveness Probe\nPeriodic probe of container liveness. Container will be restarted if the probe fails.\n\n| Name | Description | Value |\n| ------------------------ | -------------------------------------------------------------------------------------------- | --------------- |\n| deployment.livenessProbe.enabled | Enabled livenessProbe probe | true |\n| deployment.livenessProbe.failureThreshold | When a probe fails, Kubernetes will try failureThreshold times before giving up. | 3 |\n| deployment.livenessProbe.periodSeconds | Perform probe everytime after specified periodSeconds | 10 |\n| deployment.livenessProbe.successThreshold | Minimum consecutive successes for the probe to be considered successful after having failed. | 1 |\n| deployment.livenessProbe.timeoutSeconds | Number of seconds after which the probe times out. | 1 |\n| deployment.livenessProbe.initialDelaySeconds | Number of seconds after the container has started before liveness or readiness probes are initiated. | 10 |\n| deployment.livenessProbe.httpGet | Describes an action based on HTTP Get requests | path: '/path' port: 8080 |\n| deployment.livenessProbe.exec | Kubelet executes the specified command to perform the probe | {} |\n\n### Deployment Dns Paramaters\n\n| Name | Description | Value |\n| ------------------------ | -------------------------------------------------------------------------------------------- | --------------- |\n| deployment.dnsConfig | Enable pod disruption budget | `{}` |\n\n### PodDisruptionBudget Paramaters\n\n| Name | Description | Value |\n| ------------------------ | -------------------------------------------------------------------------------------------- | --------------- |\n| pdb.enabled | Enable pod disruption budget | `false` |\n| pdb.minAvailable | The number of pods that must be available after the eviction. If both minAvailable and maxUnavailable is set, minAvailable is preferred | `1`|\n| pdb.maxUnavailable | The number of pods that can be unavailable after the eviction. Either minAvailable or maxUnavailable needs to be provided | `` |\n\n\n### Persistence Paramaters\n\n| Name | Description | Value |\n| ------------------------ | -------------------------------------------------------------------------------------------- | --------------- |\n| persistence.enabled | Enable persistence | `false` |\n| persistence.mountPVC | Whether to mount the created PVC to the deployment | `false` |\n| persistence.mountPath | If `persistence.mountPVC` is set, so where to mount the volume in the deployment | `/` |\n| persistence.name | Name of the PVC. | `` |\n| persistence.accessMode | Access mode for volume | `ReadWriteOnce` |\n| persistence.storageClass | StorageClass of the volume | `-` |\n| persistence.additionalLabels | Additional labels for persistent volume | `{}` |\n| persistence.annotations | Annotations for persistent volume | `{}` |\n| persistence.storageSize | Size of the persistent volume | `8Gi` \n| persistence.volumeName | Name of the volume | `` \n| persistence.volumeMode | PVC volume mode | `` \n\n### Service Paramaters\n\n| Name | Description | Value |\n| ------------------------ | -------------------------------------------------------------------------------------------- | --------------- |\n| service.enabled | Enable service in helm chart | `true` |\n| service.additionalLabels | Additional labels for service | `{}` |\n| service.annotations | Annotations for service | `{}` |\n| service.ports | Ports for applications service | - port: 8080\u003cbr\u003e\u0026nbsp;\u0026nbsp;name: http\u003cbr\u003e\u0026nbsp;\u0026nbsp;protocol: TCP\u003cbr\u003e\u0026nbsp;\u0026nbsp;targetPort: 8080 |\n| service.type | Type of service | `ClusterIP` |\n\n\n\n### Ingress Paramaters\n\n| Name | Description | Value |\n| ------------------------ | -------------------------------------------------------------------------------------------- | --------------- |\n| ingress.enabled | Enable ingress | `false` |\n| ingress.servicePort | Port of the service that serves pod | `8080` |\n| ingress.pathType | Each path in an Ingress is required to have a corresponding path type of ingress hosts to validate rules properly | `ImplementationSpecific` |\n| ingress.hosts | Array of FQDN hosts to be served by this ingress | `- chart-example.local` |\n| ingress.additionalLables | Labels for ingress | `{}` |\n| ingress.annotations | Annotations for ingress | `{}` |\n| ingress.tls | TLS block for ingress | `[]` |\n| ingress.ingressClassName | Name of the ingress class | '' |\n\n### RBAC Paramaters\n\n| Name | Description | Value |\n| ------------------------ | -------------------------------------------------------------------------------------------- | --------------- |\n| rbac.enabled | Enable RBAC | `true` |\n| rbac.serviceAccount.enabled | Enable serviceAccount | `false` |\n| rbac.serviceAccount.name | Name of the existing serviceAccount | `\"\"` |\n| rbac.serviceAccount.additionalLabels | Labels for serviceAccount | `{}` |\n| rbac.serviceAccount.annotations | Annotations for serviceAccount | `{}` |\n| rbac.roles | Array of roles | `[]` |\n\n### ConfigMap Paramaters\n\n| Name | Description | Value |\n| ------------------------ | -------------------------------------------------------------------------------------------- | --------------- |\n| configMap.enabled | Enable configMaps | `false` |\n| configMap.additionalLabels | Labels for configMaps | `{}` |\n| configMap.annotations | Annotations for configMaps | `{}` |\n| configMap.files | Map of configMap files with suffixes and data contained in those files | `{}` |\n\n### Secret Paramaters\n\n| Name | Description | Value |\n| ------------------------ | -------------------------------------------------------------------------------------------- | --------------- |\n| secret.enabled | Enable secret | `false` |\n| secret.additionalLabels | Labels for secret | `{}` |\n| secret.annotations | Annotations for secret | `{}` |\n| secret.files | Map of secret files with suffixes and data contained in those files | `{}` |\n\n### ServiceMonitor Paramaters\n\n| Name | Description | Value |\n| ------------------------ | -------------------------------------------------------------------------------------------- | --------------- |\n| serviceMonitor.enabled | Enable serviceMonitor | `false` |\n| serviceMonitor.additionalLabels | Labels for serviceMonitor | `{}` |\n| serviceMonitor.annotations | Annotations for serviceMonitor | `{}` |\n| serviceMonitor.jobLabel | Job Label used for application selector | `k8s-app` |\n| serviceMonitor.endpoints | Array of endpoints to be scraped by prometheus | - interval: 5s\u003cbr\u003e\u0026nbsp;\u0026nbsp;path: /actuator/prometheus\u003cbr\u003e\u0026nbsp;\u0026nbsp;port: http |\n\n### Autoscaling Paramaters\n\n| Name | Description | Value |\n| ------------------------ | -------------------------------------------------------------------------------------------- | --------------- |\n| autoscaling.enabled | Enable horizontal pod autoscaler | `false` |\n| autoscaling.additionalLabels | Labels for horizontal pod autoscaler | `{}` |\n| autoscaling.annotations | Annotations for horizontal pod autoscaler | `{}` |\n| autoscaling.minReplicas | Sets minimum replica count when autoscaling is enabled | `1` |\n| autoscaling.maxReplicas | Sets maximum replica count when autoscaling is enabled | `10` |\n| autoscaling.metrics | Configuration for hpa metrics, set when autoscaling is enabled | `{}` |\n\n### Cert-manager Certificate Paramaters\n\n| Name | Description | Value |\n| ------------------------ | -------------------------------------------------------------------------------------------- | --------------- |\n| certificate.enabled | Enable Certificate Custom Resource | `false` |\n| certificate.enabled | Enable Certificate Custom Resource | `false` |\n| certificate.additionalLabels | Additional labels for Certificate Custom Resource | `{}` |\n| certificate.annotations | Annotations for Certificate Custom Resource | `{}` |\n| certificate.secretName | SecretName is the name of the secret resource that will be automatically created and managed by this Certificate resource | `tls-cert` |\n| certificate.duration | The requested ‘duration’ (i.e. lifetime) of the Certificate | `8760h0m0s` |\n| certificate.renewBefore | The amount of time before the currently issued certificate’s notAfter time that cert-manager will begin to attempt to renew the certificate | `720h0m0s` |\n| certificate.subject | Full X509 name specification for certificate | `{}` |\n| certificate.commonName | CommonName is the common name as specified on the DER encoded CSR | `admin-app` |\n| certificate.keyAlgorithm | KeyAlgorithm is the private key algorithm of the corresponding private key for this certificate | `rsa` |\n| certificate.keyEncoding | KeyEncoding is the private key cryptography standards (PKCS) for this certificate’s private key to be encoded in | `pkcs1` |\n| certificate.keySize | KeySize is the key bit size of the corresponding private key for this certificate | `2048` |\n| certificate.isCA | IsCA will mark this Certificate as valid for certificate signing | `false` |\n| certificate.usages | Usages is the set of x509 usages that are requested for the certificate | `{}` |\n| certificate.dnsNames | DNSNames is a list of DNS subjectAltNames to be set on the Certificate. | `{}` |\n| certificate.ipAddresses | IPAddresses is a list of IP address subjectAltNames to be set on the Certificate. | `{}` |\n| certificate.uriSANs | URISANs is a list of URI subjectAltNames to be set on the Certificate. | `{}` |\n| certificate.emailSANs | EmailSANs is a list of email subjectAltNames to be set on the Certificate. | `{}` |\n| certificate.privateKey.enabled | Enable private key for the certificate | `false` |\n| certificate.privateKey.rotationPolicy | Denotes how private keys should be generated or sourced when a Certificate is being issued. | `Always` |\n| certificate.issuerRef.name | IssuerRef is a reference to the issuer for this certificate. Name of the resource being referred to | `ca-issuer` |\n| certificate.issuerRef.kind | Kind of the resource being referred to | `ClusterIssuer` |\n| certificate.keystores.enabled | Enables keystore configuration. Keystores configures additional keystore output formats stored in the secretName Secret resource | `false` |\n| certificate.keystores.pkcs12.create | Enables PKCS12 keystore creation for the Certificate. PKCS12 configures options for storing a PKCS12 keystore in the spec.secretName Secret resource | `true` |\n| certificate.keystores.pkcs12.key | The key of the entry in the Secret resource’s data field to be used | `test_key` |\n| certificate.keystores.pkcs12.name | The name of the Secret resource being referred to | `test-creds` |\n| certificate.keystores.jks.create | Enables jks keystore creation for the Certificate. JKS configures options for storing a JKS keystore in the spec.secretName Secret resource | `false` |\n| certificate.keystores.jks.key | The key of the entry in the Secret resource’s data field to be used | `test_key` |\n| certificate.keystores.jks.name | The name of the Secret resource being referred to | `test-creds` |\n\n### Alertmanager Config Paramaters\n\n| Name | Description | Value |\n| ------------------------ | -------------------------------------------------------------------------------------------- | --------------- |\n| alertmanagerConfig.enabled | Enable alertmanagerConfig for this app (Will be merged in the base config) | `false` |\n| alertmanagerConfig.selectionLabels | Labels for this config to be selected for merging in alertmanager base config | `alertmanagerConfig: \"workload\"` |\n| alertmanagerConfig.spec.route | The Alertmanager route definition for alerts matching the resource’s namespace. It will be added to the generated Alertmanager configuration as a first-level route | `{}` |\n| alertmanagerConfig.spec.receivers | List of receivers | `[]` |\n| alertmanagerConfig.spec.inhibitRules | InhibitRule defines an inhibition rule that allows to mute alerts when other alerts are already firing | `[]` |\n\n### PrometheusRule Paramaters\n\n| Name | Description | Value |\n| ------------------------ | -------------------------------------------------------------------------------------------- | --------------- |\n| prometheusRule.enabled | Enable prometheusRule for this app | `false` |\n| prometheusRule.additionalLabels | Kubernetes labels object, these additional labels will be added to PrometheusRule CRD | `{}` |\n| prometheusRule.spec.groups | PrometheusRules in their groups to be added | `[]` |\n\n### NetworkPolicy Paramaters\n| Name | Description | Value |\n| ------------------------ | -------------------------------------------------------------------------------------------- | --------------- |\n| networkPolicy.enabled | Enable NetworkPolicy | `false` |\n| networkPolicy.additionalLabels | Kubernetes labels object | `{}` |\n| networkPolicy.annotations | Annotations for NetworkPolicy | `{}` |\n| networkPolicy.ingress | Ingress ruels for NetworkPolicy | `[]` |\n| networkPolicy.egress | egress rules for NetworkPolicy | `[]` |\n\n### Grafana Dashboard Paramaters\n\n| Name | Description | Value |\n| ------------------------ | -------------------------------------------------------------------------------------------- | --------------- |\n| grafanaDashboard.enabled | Enables Grafana Dashboard | `false` |\n| grafanaDashboard.additionalLabels | Kubernetes labels object | `{}` |\n| grafanaDashboard.annotations | Annotations for Grafana Dashboard | `{}` |\n| grafanaDashboard.contents | Array of objects of type: - key: grafanadashboardjsoncontents | `[]` |\n \n\n### CronJob Parameters\n\n| Name | Description | Value |\n| ------------------------ | -------------------------------------------------------------------------------------------- | --------------- |\n| `cronJob.enabled` | Enable cronjob in application chart | `\"\"` |\n| `cronJob.jobs` | cronjobs spec | {} |\n\nJob paramater for each cronjob object at `cronJob.jobs` \n\n| Name | Description \n| -----------------------------------| -------------------------------------------------------------------------------------------- |\n| `\u003cname\u003e.schedule` | Schedule of cronjob | \n| `\u003cname\u003e.image.repository` | Repository of container image of cronjob |\n| `\u003cname\u003e.image.tag` | Tag of container image of cronjob |\n| `\u003cname\u003e.image.imagePullPolicy` | ImagePullPolicy of container image ofcronjob |\n| `\u003cname\u003e.command` | Command of container of job |\n| `\u003cname\u003e.args` | Args of container of job |\n| `\u003cname\u003e.resources` | Resources of container of job |\n| `\u003cname\u003e.additionalLabels` | Additional labels of cronjob |\n| `\u003cname\u003e.annotations` | Annotation of cronjob | \n| `\u003cname\u003e.successfulJobsHistoryLimit`| Successful jobs historyLimit of cronjob | \n| `\u003cname\u003e.concurrencyPolicy` | ConcurrencyPolicy of cronjob | \n| `\u003cname\u003e.failedJobsHistoryLimit` | FailedJobsHistoryLimit of cronjob | \n| `\u003cname\u003e.volumeMounts` | Volume mounts of cronjob | \n| `\u003cname\u003e.volumes` | Volumes of cronjob | \n| `\u003cname\u003e.nodeSelector` | Node selector of cronjob | \n| `\u003cname\u003e.affinity` | Affinity of cronjob | \n| `\u003cname\u003e.tolerations` | Tolerations of cronjob | \n| `\u003cname\u003e.restartPolicy` | RestartPolicy of cronjob |\n| `\u003cname\u003e.imagePullSecrets` | ImagePullSecrets of cronjob |\n\n## Naming convention for ConfigMap and Secrets\n\nNaming convention of type ConfigMap and Secrets is as follows: ```{{ template \"application.name\" $ }}-{{ $nameSuffix }}```\n\n- ```{{ template \"application.name\" }}``` is a helper function that outputs ```.Values.applicationName``` if exist else return chart name as output\n- `nameSuffix` is the each key in ```secret.files``` and ```configMap.files```\n\nFor example, if we have the following values file:\n\n```\napplicationName: helloworld # {{ template \"application.name\" $ }}\n\nconfigMap:\n files:\n config: # {{ $nameSuffix }}\n key: value\n```\n\nthen the configmap name will be ``helloworld-config``\n\n\n\n## Consuming environment variable in application chart\n\nIn order to use environment variables in a deployment or cronjob, you will have to provide environment variable in *key/value* pair in `env` value. where key being environment variable key and value varies in different scenarios \n\n- For simple key/value environment variable, just provide `value: \u003cvalue\u003e` \n ```\n env:\n KEY:\n value: MY_VALUE\n ```\n\n - To get environement variable value from **ConfigMap**\n \n Suppose we have configmap created from applicaion chart\n \n ```\n applicationName: my-application\n configMap:\n enabled: true\n files:\n application-config:\n LOG: DEBUG\n VERBOSE: v1\n ```\n To get environment variable value from above created configmap, we will need to add following\n ```\n env:\n APP_LOG_LEVEL:\n valueFrom:\n configMapKeyRef:\n name: my-application-appication-config\n key: LOG\n ```\n To get all environment variables key/values from **ConfigMap**, where configmap key being key of environment variable and value being value\n ```\n envFrom:\n application-config-env:\n type: configmap\n nameSuffix: application-config\n ```\n you can either provide `nameSuffix` which means name added after prefix ```\u003capplicationName\u003e-``` or static name with ```name``` of configmap.\n\n- To get environment variable value from **Secret**\n \n Suppose we have secret created from application chart\n \n ```\n applicationName: my-application\n secret:\n enabled: true\n files:\n db-credentials:\n PASSWORD: skljd#2Qer!!\n USER: postgres\n ```\n To get environment variable value from above created secret, we will need to add following\n ```\n env:\n KEY:\n valueFrom:\n secretKeyRef:\n name: my-application-db-credentials\n key: USER\n ``` \n\n To get environement variable value from **Secret**, where secret key being key of environment variable and value being value\n ```\n envFrom:\n database-credentials:\n type: secret\n nameSuffix: db-credentials\n ```\n you can either provide `nameSuffix` which means name added after prefix ```\u003capplicationName\u003e-``` or static name with ```name``` of secret\n\n **Note:** first key after ``envFrom`` is just used to uniquely identify different objects in ``envFrom`` block. Make sure to keep it unique and relevant \n\n\n### Configuring probes\n\nBy default probe handler type is `httpGet`. You just need to override `port` and `path` as per your need.\n\n```\n livenessProbe:\n enabled: true\n httpGet:\n path: '/path'\n port: 8080\n```\n\n\nIn order to use `exec` handler, you can define field `livenessProbe.exec` in your values.yaml.\n\n```\n livenessProbe:\n enabled: true\n exec:\n command:\n - cat\n - /tmp/healthy\n```\n\nTo disable liveness or readiness probe, set value of `enabled:` to `false`.\n```\n livenessProbe:\n enabled: false\n```\n\n\n\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fjupiterone%2Fapps-helm-charts","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fjupiterone%2Fapps-helm-charts","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fjupiterone%2Fapps-helm-charts/lists"}