mattermost values.yaml
📜
domain📜
Type: string
"bigbang.dev"
istio.enabled📜
Type: bool
false
Description: Toggle istio integration
istio.hardened.enabled📜
Type: bool
false
istio.hardened.customAuthorizationPolicies📜
Type: list
[]
istio.hardened.outboundTrafficPolicyMode📜
Type: string
"REGISTRY_ONLY"
istio.hardened.customServiceEntries📜
Type: list
[]
istio.hardened.clusterAuditor.enabled📜
Type: bool
false
istio.hardened.clusterAuditor.namespace📜
Type: string
"cluster-auditor"
istio.hardened.minioOperator.enabled📜
Type: bool
true
istio.hardened.minioOperator.namespaces[0]📜
Type: string
"minio-operator"
istio.hardened.minioOperator.principals[0]📜
Type: string
"cluster.local/ns/minio-operator/sa/minio-operator"
istio.hardened.monitoring.enabled📜
Type: bool
true
istio.hardened.monitoring.namespaces[0]📜
Type: string
"monitoring"
istio.hardened.monitoring.principals[0]📜
Type: string
"cluster.local/ns/monitoring/sa/monitoring-grafana"
istio.hardened.monitoring.principals[1]📜
Type: string
"cluster.local/ns/monitoring/sa/monitoring-monitoring-kube-alertmanager"
istio.hardened.monitoring.principals[2]📜
Type: string
"cluster.local/ns/monitoring/sa/monitoring-monitoring-kube-operator"
istio.hardened.monitoring.principals[3]📜
Type: string
"cluster.local/ns/monitoring/sa/monitoring-monitoring-kube-prometheus"
istio.hardened.monitoring.principals[4]📜
Type: string
"cluster.local/ns/monitoring/sa/monitoring-monitoring-kube-state-metrics"
istio.hardened.monitoring.principals[5]📜
Type: string
"cluster.local/ns/monitoring/sa/monitoring-monitoring-prometheus-node-exporter"
istio.hardened.kyvernoReporter.enabled📜
Type: bool
false
istio.hardened.kyvernoReporter.namespace📜
Type: string
"kyverno-reporter"
istio.mtls📜
Type: object
mode: STRICT
Description: Default peer authentication
istio.mtls.mode📜
Type: string
"STRICT"
Description: STRICT = Allow only mutual TLS traffic, PERMISSIVE = Allow both plain text and mutual TLS traffic
istio.chat.enabled📜
Type: bool
true
istio.chat.annotations📜
Type: object
{}
istio.chat.labels📜
Type: object
{}
istio.chat.gateways[0]📜
Type: string
"istio-system/main"
istio.chat.hosts[0]📜
Type: string
"chat.{{ .Values.domain }}"
istio.injection📜
Type: string
"disabled"
ingress📜
Type: object
annotations: {}
enabled: false
host: ''
tlsSecret: ''
Description: Specification to configure an Ingress with Mattermost
monitoring.enabled📜
Type: bool
false
monitoring.namespace📜
Type: string
"monitoring"
monitoring.serviceMonitor.scheme📜
Type: string
"http"
monitoring.serviceMonitor.tlsConfig📜
Type: object
{}
networkPolicies.enabled📜
Type: bool
false
networkPolicies.ingressLabels.app📜
Type: string
"istio-ingressgateway"
networkPolicies.ingressLabels.istio📜
Type: string
"ingressgateway"
networkPolicies.controlPlaneCidr📜
Type: string
"0.0.0.0/0"
networkPolicies.additionalPolicies📜
Type: list
[]
sso.enabled📜
Type: bool
false
sso.client_id📜
Type: string
"platform1_a8604cc9-f5e9-4656-802d-d05624370245_bb8-mattermost"
sso.client_secret📜
Type: string
"nothing"
sso.auth_endpoint📜
Type: string
"https://login.dso.mil/auth/realms/baby-yoda/protocol/openid-connect/auth"
sso.token_endpoint📜
Type: string
"https://login.dso.mil/auth/realms/baby-yoda/protocol/openid-connect/token"
sso.user_api_endpoint📜
Type: string
"https://login.dso.mil/auth/realms/baby-yoda/protocol/openid-connect/userinfo"
sso.enable_sign_up_with_email📜
Type: bool
false
sso.enable_sign_in_with_email📜
Type: bool
false
sso.enable_sign_in_with_username📜
Type: bool
false
image.name📜
Type: string
"registry1.dso.mil/ironbank/opensource/mattermost/mattermost"
image.tag📜
Type: string
"10.2.0"
image.imagePullPolicy📜
Type: string
"IfNotPresent"
global.imagePullSecrets[0].name📜
Type: string
"private-registry"
replicaCount📜
Type: int
1
users📜
Type: string
nil
enterprise.enabled📜
Type: bool
false
enterprise.license📜
Type: string
""
nameOverride📜
Type: string
""
updateJob.disabled📜
Type: bool
true
Description: Must be disabled when Istio injected
updateJob.labels📜
Type: object
{}
updateJob.annotations📜
Type: object
{}
resources.limits.cpu📜
Type: int
2
resources.limits.memory📜
Type: string
"4Gi"
resources.requests.cpu📜
Type: int
2
resources.requests.memory📜
Type: string
"4Gi"
affinity📜
Type: object
{}
nodeSelector📜
Type: object
{}
tolerations📜
Type: object
{}
mattermostEnvs📜
Type: object
{}
existingSecretEnvs📜
Type: object
{}
volumes📜
Type: object
{}
volumeMounts📜
Type: object
{}
podLabels📜
Type: object
{}
Description: Pod labels for Mattermost server pods
podAnnotations📜
Type: object
{}
Description: Pod annotations for Mattermost server pods
securityContext📜
Type: object
runAsGroup: 2000
runAsNonRoot: true
runAsUser: 2000
Description: securityContext for Mattermost server pods
containerSecurityContext📜
Type: object
capabilities:
drop:
- ALL
runAsGroup: 2000
runAsNonRoot: true
runAsUser: 2000
Description: containerSecurityContext for Mattermost server containers
minio.install📜
Type: bool
false
minio.bucketCreationImage📜
Type: string
"registry1.dso.mil/ironbank/opensource/minio/mc:RELEASE.2024-01-18T07-03-39Z"
minio.service.nameOverride📜
Type: string
"minio.mattermost.svc.cluster.local"
minio.tenant.configSecret.name📜
Type: string
"mattermost-objstore-creds"
minio.tenant.configSecret.accessKey📜
Type: string
"minio"
minio.tenant.configSecret.secretKey📜
Type: string
"minio123"
minio.tenant.metrics.enabled📜
Type: bool
false
minio.tenant.metrics.port📜
Type: int
9000
minio.tenant.buckets[0].name📜
Type: string
"mattermost"
postgresql.install📜
Type: bool
false
postgresql.image.registry📜
Type: string
"registry1.dso.mil/ironbank"
postgresql.image.repository📜
Type: string
"opensource/postgres/postgresql"
postgresql.image.tag📜
Type: string
"16.2"
postgresql.image.pullSecrets[0]📜
Type: string
"private-registry"
postgresql.auth.sslmode📜
Type: string
"disable"
postgresql.auth.username📜
Type: string
"mattermost"
postgresql.auth.password📜
Type: string
"bigbang"
postgresql.auth.database📜
Type: string
"mattermost"
postgresql.fullnameOverride📜
Type: string
"mattermost-postgresql"
postgresql.securityContext.fsGroup📜
Type: int
26
postgresql.containerSecurityContext.runAsUser📜
Type: int
26
postgresql.containerSecurityContext.runAsNonRoot📜
Type: bool
true
postgresql.containerSecurityContext.capabilities.drop[0]📜
Type: string
"ALL"
postgresql.volumePermissions.enabled📜
Type: bool
false
postgresql.volumePermissions.securityContext.capabilities.drop[0]📜
Type: string
"ALL"
postgresql.postgresqlConfiguration.listen_addresses📜
Type: string
"*"
postgresql.pgHbaConfiguration📜
Type: string
"local all all md5\nhost all all all md5"
database.secret📜
Type: string
""
database.readinessCheck.disableDefault📜
Type: bool
true
database.readinessCheck.image📜
Type: string
"registry1.dso.mil/ironbank/opensource/postgres/postgresql:16.2"
database.readinessCheck.command[0]📜
Type: string
"/bin/sh"
database.readinessCheck.command[1]📜
Type: string
"-c"
database.readinessCheck.command[2]📜
Type: string
"until pg_isready --dbname=\"$DB_CONNECTION_CHECK_URL\"; do echo waiting for database; sleep 5; done;"
database.readinessCheck.env[0].name📜
Type: string
"DB_CONNECTION_CHECK_URL"
database.readinessCheck.env[0].valueFrom.secretKeyRef.key📜
Type: string
"DB_CONNECTION_CHECK_URL"
database.readinessCheck.env[0].valueFrom.secretKeyRef.name📜
Type: string
"{{ .Values.database.secret \| default (printf \"%s-dbcreds\" (include \"mattermost.fullname\" .)) }}"
fileStore.secret📜
Type: string
""
fileStore.url📜
Type: string
""
fileStore.bucket📜
Type: string
""
fileStore.roleARN📜
Type: string
""
elasticsearch.enabled📜
Type: bool
false
elasticsearch.connectionurl📜
Type: string
"https://logging-ek-es-http.logging.svc.cluster.local:9200"
elasticsearch.username📜
Type: string
""
elasticsearch.password📜
Type: string
""
elasticsearch.enableindexing📜
Type: bool
true
elasticsearch.indexprefix📜
Type: string
"mm-"
elasticsearch.skiptlsverification📜
Type: bool
true
elasticsearch.bulkindexingtimewindowseconds📜
Type: int
3600
elasticsearch.sniff📜
Type: bool
false
elasticsearch.enablesearching📜
Type: bool
true
elasticsearch.enableautocomplete📜
Type: bool
true
openshift📜
Type: bool
false
resourcePatch📜
Type: object
{}
bbtests.enabled📜
Type: bool
false
bbtests.cypress.artifacts📜
Type: bool
true
bbtests.cypress.envs.cypress_url📜
Type: string
"http://mattermost.mattermost.svc.cluster.local:8065"
bbtests.cypress.envs.cypress_mm_email📜
Type: string
"test@bigbang.dev"
bbtests.cypress.envs.cypress_mm_user📜
Type: string
"bigbang"
bbtests.cypress.envs.cypress_mm_password📜
Type: string
"Bigbang#123"
bbtests.cypress.envs.cypress_waittime📜
Type: string
"5000"
bbtests.cypress.envs.cypress_tnr_username📜
Type: string
"cypress"
bbtests.cypress.envs.cypress_tnr_password📜
Type: string
"tnr_w!G33ZyAt@C8"
bbtests.cypress.resources.requests.cpu📜
Type: string
"2"
bbtests.cypress.resources.requests.memory📜
Type: string
"1500M"
bbtests.cypress.resources.limits.cpu📜
Type: string
"2"
bbtests.cypress.resources.limits.memory📜
Type: string
"1500M"
waitJob.enabled📜
Type: bool
true
waitJob.scripts.image📜
Type: string
"registry1.dso.mil/ironbank/opensource/kubernetes/kubectl:v1.30.6"
waitJob.permissions.apiGroups[0]📜
Type: string
"installation.mattermost.com"
waitJob.permissions.resources[0]📜
Type: string
"mattermosts"