prepare oCIS 5.0.0-rc.3

charts/ocis/Chart.yaml

@@ -10,7 +10,7 @@ maintainers:
     url: https://owncloud.com
 type: application
 version: 0.5.0
-appVersion: 5.0.0-rc.2
+appVersion: 5.0.0-rc.3
 kubeVersion: "" # please see https://doc.owncloud.com/ocis/next/deployment/container/orchestration/orchestration.html#get-the-chart for compatible Kubernetes versions
 sources:
   - https://github.com/owncloud/ocis-charts

charts/ocis/README.md

@@ -2,7 +2,7 @@
 [comment]: # (DONT EDIT THIS FILE, it is autogenerated. Instead you need to edit README.md.gotmpl)
 
 # ownCloud Infinite Scale (oCIS) Helm chart
-![Version: 0.5.0](https://img.shields.io/badge/Version-0.5.0-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 5.0.0-rc.2](https://img.shields.io/badge/AppVersion-5.0.0--rc.2-informational?style=flat-square)
+![Version: 0.5.0](https://img.shields.io/badge/Version-0.5.0-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 5.0.0-rc.3](https://img.shields.io/badge/AppVersion-5.0.0--rc.3-informational?style=flat-square)
 
 Installs [ownCloud Infinite Scale](https://doc.owncloud.com/ocis/next/).
 

charts/ocis/docs/values-desc-table.adoc

@@ -570,12 +570,6 @@ a| [subs=-attributes]
 a| [subs=-attributes]
 `"web"`
 | Specify the client ID which the web frontend will use
-| features.gdprReport.integrations
-a| [subs=-attributes]
-+object+
-a| [subs=-attributes]
-`{"keycloak":{"basePath":"https://keycloak.owncloud.test","clientID":"gdpr-exporter","clientRealm":"master","enabled":false,"insecure":false,"userRealm":"oCIS"}}`
-| Controls the separate GDPR integrations
 | features.gdprReport.integrations.keycloak.basePath
 a| [subs=-attributes]
 +string+
@@ -671,43 +665,43 @@ a| [subs=-attributes]
 +bool+
 a| [subs=-attributes]
 `true`
-|
+| automatically accept incoming shares
 | features.sharing.passwordPolicies.bannedPasswords
 a| [subs=-attributes]
 +list+
 a| [subs=-attributes]
 `[]`
-|
+| list of banned passwords
 | features.sharing.passwordPolicies.minCharacters
 a| [subs=-attributes]
 +int+
 a| [subs=-attributes]
 `0`
-|
+| the minimum amount of characters the password needs to have
 | features.sharing.passwordPolicies.minDigits
 a| [subs=-attributes]
 +int+
 a| [subs=-attributes]
 `0`
-|
+| the minimum amount of digits the password needs to have
 | features.sharing.passwordPolicies.minLowerCharacters
 a| [subs=-attributes]
 +int+
 a| [subs=-attributes]
 `0`
-|
+| the minimum amount of lower case characters the password needs to have
 | features.sharing.passwordPolicies.minSpecialCharacters
 a| [subs=-attributes]
 +int+
 a| [subs=-attributes]
 `0`
-|
+| the minimum amount of special characters the password needs to have
 | features.sharing.passwordPolicies.minUpperCharacters
 a| [subs=-attributes]
 +int+
 a| [subs=-attributes]
 `0`
-|
+| the minimum amount of upper case characters the password needs to have
 | features.sharing.publiclink.shareMustHavePassword
 a| [subs=-attributes]
 +bool+
@@ -779,13 +773,13 @@ a| [subs=-attributes]
 +list+
 a| [subs=-attributes]
 `[]`
-|
-| http.cors.allow_origins
+| provide custom hostnames to every oCIS pods
+| http.cors
 a| [subs=-attributes]
-+list+
++object+
 a| [subs=-attributes]
-`[]`
-|
+`{"allow_origins":[]}`
+| CORS settings for oCIS services.
 | image.pullPolicy
 a| [subs=-attributes]
 +string+
@@ -1001,7 +995,7 @@ a| [subs=-attributes]
 +object+
 a| [subs=-attributes]
 `{}`
-|
+| Default PodDisruptionBudget to apply to all services, except per-service PodDisruptionBudget configuration in `services.<service-name>.podDisruptionBudget` is set.
 | priorityClassName
 a| [subs=-attributes]
 +string+
@@ -2220,6 +2214,72 @@ a| [subs=-attributes]
 a| [subs=-attributes]
 `{}`
 | Per-service custom labels
+| services.postprocessing.maintenance.image
+a| [subs=-attributes]
++object+
+a| [subs=-attributes]
+`{"pullPolicy":null,"repository":"","sha":"","tag":""}`
+| Image for the storageusers service maintenance jobs Defaults to the same values as `image`
+| services.postprocessing.maintenance.image.pullPolicy
+a| [subs=-attributes]
++string+
+a| [subs=-attributes]
+`nil`
+| Image pull policy
+| services.postprocessing.maintenance.image.repository
+a| [subs=-attributes]
++string+
+a| [subs=-attributes]
+`""`
+| Image repository
+| services.postprocessing.maintenance.image.sha
+a| [subs=-attributes]
++string+
+a| [subs=-attributes]
+`""`
+| Image sha / digest (optional).
+| services.postprocessing.maintenance.image.tag
+a| [subs=-attributes]
++string+
+a| [subs=-attributes]
+`""`
+| Image tag.
+| services.postprocessing.maintenance.restartPostprocessingFinished
+a| [subs=-attributes]
++object+
+a| [subs=-attributes]
+`{"enabled":false,"schedule":"* * * * *"}`
+| Restart postprocessing for uploads where final storage move is not done.
+| services.postprocessing.maintenance.restartPostprocessingFinished.enabled
+a| [subs=-attributes]
++bool+
+a| [subs=-attributes]
+`false`
+| Enables a job, that cleans up expired uploads. Requires persistence to be enabled and RWX storage.
+| services.postprocessing.maintenance.restartPostprocessingFinished.schedule
+a| [subs=-attributes]
++string+
+a| [subs=-attributes]
+`"* * * * *"`
+| Cron pattern for the job to be run. Defaults to every minute.
+| services.postprocessing.maintenance.restartPostprocessingVirusscan
+a| [subs=-attributes]
++object+
+a| [subs=-attributes]
+`{"enabled":false,"schedule":"* * * * *"}`
+| Restart postprocessing for uploads hwich are currenlty in the virusscan step. Only applicable when `.Values.features.virusscan.enabled` is set to `true`.
+| services.postprocessing.maintenance.restartPostprocessingVirusscan.enabled
+a| [subs=-attributes]
++bool+
+a| [subs=-attributes]
+`false`
+| Enables a job, that purges expired trash bin items. Requires persistence to be enabled.
+| services.postprocessing.maintenance.restartPostprocessingVirusscan.schedule
+a| [subs=-attributes]
++string+
+a| [subs=-attributes]
+`"* * * * *"`
+| Cron pattern for the job to be run. Defaults to every minute.
 | services.postprocessing.nodeSelector
 a| [subs=-attributes]
 +object+

charts/ocis/docs/values.adoc.yaml

@@ -55,7 +55,7 @@ tracing:
 
 # HTTP settings for oCIS services.
 http:
-  #-- CORS settings for oCIS services.
+  # -- CORS settings for oCIS services.
   cors:
     #-- allow_origins is a list of origins a cross-domain request can be executed from.
     # If the special "*" value is present in the list, all origins will be allowed.
@@ -135,7 +135,7 @@ messagingSystem:
       # Not recommended for production installations.
       insecure: false
 
-# provide custom hostnames to every oCIS pods
+# -- provide custom hostnames to every oCIS pods
 hostAliases: []
 # - ip: "192.168.49.2"
 #   hostnames:
@@ -205,21 +205,21 @@ features:
       # Is already enforced if `features.sharing.publiclink.shareMustHavePassword` option is set to `true``.
       writeableShareMustHavePassword: false
 
-    # automatically accept incoming shares
+    # -- automatically accept incoming shares
     autoAcceptShares: true
     # password policies for share passwords
     passwordPolicies:
-      # the minimum amount of characters the password needs to have
+      # -- the minimum amount of characters the password needs to have
       minCharacters: 0
-      # the minimum amount of lower case characters the password needs to have
+      # -- the minimum amount of lower case characters the password needs to have
       minLowerCharacters: 0
-      # the minimum amount of upper case characters the password needs to have
+      # -- the minimum amount of upper case characters the password needs to have
       minUpperCharacters: 0
-      # the minimum amount of special characters the password needs to have
+      # -- the minimum amount of special characters the password needs to have
       minSpecialCharacters: 0
-      # the minimum amount of digits the password needs to have
+      # -- the minimum amount of digits the password needs to have
       minDigits: 0
-      # list of banned passwords
+      # -- list of banned passwords
       bannedPasswords:
         []
         # - foo
@@ -422,8 +422,8 @@ features:
 
   # GDPR report related settings.
   gdprReport:
-    # -- Enables the GDPR report feature
-    # -- Controls the separate GDPR integrations
+    # Enables the GDPR report feature
+    # Controls the separate GDPR integrations
     integrations:
       keycloak:
         # -- Enable keycloak data export.
@@ -634,7 +634,7 @@ namespaceOverride:
 # -- Number of replicas for each scalable service. Has no effect when `autoscaling.enabled` is set to `true`.
 replicas: 1
 
-# Default PodDisruptionBudget to apply to all services, except per-service PodDisruptionBudget configuration in `services.<service-name>.podDisruptionBudget` is set.
+# -- Default PodDisruptionBudget to apply to all services, except per-service PodDisruptionBudget configuration in `services.<service-name>.podDisruptionBudget` is set.
 podDisruptionBudget:
   {}
   # -- Sets the maxUnavailable or the global PodDisruptionBudget.
@@ -1196,6 +1196,31 @@ services:
     affinity: {}
     # -- Per-service custom labels
     extraLabels: {}
+    maintenance:
+      # -- Restart postprocessing for uploads where final storage move is not done.
+      restartPostprocessingFinished:
+        # -- Enables a job, that cleans up expired uploads. Requires persistence to be enabled and RWX storage.
+        enabled: false
+        # -- Cron pattern for the job to be run. Defaults to every minute.
+        schedule: "* * * * *"
+      # -- Restart postprocessing for uploads hwich are currenlty in the virusscan step.
+      # Only applicable when `.Values.features.virusscan.enabled` is set to `true`.
+      restartPostprocessingVirusscan:
+        # -- Enables a job, that purges expired trash bin items. Requires persistence to be enabled.
+        enabled: false
+        # -- Cron pattern for the job to be run. Defaults to every minute.
+        schedule: "* * * * *"
+      # -- Image for the storageusers service maintenance jobs
+      # Defaults to the same values as `image`
+      image:
+        # -- Image repository
+        repository: ""
+        # -- Image tag.
+        tag: ""
+        # -- Image sha / digest (optional).
+        sha: ""
+        # -- Image pull policy
+        pullPolicy:
 
   # -- PROXY service.
   # @default -- see detailed service configuration options below
@@ -1826,6 +1851,15 @@ services:
         delegateAuthentication: ""
         # Specifies the allowed message origin host when posting access tokens from the embedding parent application to web. Defaults to not being set, which is only recommended for development environments.
         delegateAuthenticationOrigin: ""
+      concurrency:
+        # Defines the maximum number of concurrent requests per file/folder/space batch action. If uset, the default of ownCloud Web will be used.
+        resourceBatchActionRequests:
+        # Defines the maximum number of concurrent requests in SSE event handlers. If uset, the default of ownCloud Web will be used.
+        sseRequests:
+        # Defines the maximum number of concurrent requests per sharing invite batch. If uset, the default of ownCloud Web will be used.
+        shareCreateRequests:
+        # Defines the maximum number of concurrent requests when loading individual share information inside listings. If uset, the default of ownCloud Web will be used.
+        shareListRequests:
 
     # -- Persistence settings.
     # @default -- see detailed persistence configuration options below