Auto-generate chart README [no ci]

* initial release

* [games-on-whales] split tcp and udp services

* [games-on-whales] fix for retroarch (snd and shm)

* review fixes

* use GHCR images

* add ABeltramo as games-on-whales maintainer

* support for nvidia

Co-authored-by: angelnu <git@angelnucom>

.github/ct-install.yaml

@@ -15,6 +15,7 @@ excluded-charts:
 - charts/stable/ser2sock
 - charts/stable/zalando-postgres-cluster
 - charts/stable/zigbee2mqtt
+- charts/stable/wireguard
 chart-repos:
 - bitnami=https://charts.bitnami.com/bitnami
 - k8s-at-home-libraries=https://library-charts.k8s-at-home.com

.github/renovate.json5

@@ -16,7 +16,7 @@
   "packageRules": [
     // Setup datasources
     {
-      "datasources": ["helm"],
+      "matchDatasources": ["helm"],
       "commitMessageTopic": "Helm chart {{depName}}",
       "separateMinorPatch": true
     },

.gitignore

@@ -14,3 +14,4 @@ charts/**/charts
 .env
 .envrc
 Gemfile.lock
+angel.yaml

charts/README.md

@@ -30,6 +30,7 @@
 | [foundryvtt](stable/foundryvtt) | An easy-to-deploy Dockerized Foundry Virtual Tabletop server |
 | [freshrss](stable/freshrss) | FreshRSS is a self-hosted RSS feed aggregator |
 | [frigate](stable/frigate) | NVR With Realtime Object Detection for IP Cameras |
+| [games-on-whales](stable/games-on-whales) | Streams graphic applications/games (retroarch, firefox, steam) runing on Kubernetes |
 | [gaps](stable/gaps) | Gaps searches through your Plex Server or local folders for all movies, then queries for known movies in the same collection. |
 | [gollum](stable/gollum) | Gollum is a simple wiki system built on top of Git |
 | [gonic](stable/gonic) | Music streaming server / subsonic server API implementation |
@@ -54,6 +55,7 @@
 | [leaf2mqtt](stable/leaf2mqtt) | Nissan Leaf connected services to MQTT adapter |
 | [librespeed](stable/librespeed) | Librespeed is a HTML5 webpage to test upload and download speeds |
 | [lidarr](stable/lidarr) | Looks and smells like Sonarr but made for music |
+| [littlelink-server](stable/littlelink-server) | A lightweight open source alternative to linktree |
 | [lychee](stable/lychee) | Lychee is a free photo-management tool, which runs on your server or web-space |
 | [magic-mirror](stable/magic-mirror) | magic-mirror helm package |
 | [mealie](stable/mealie) | Mealie is a self hosted recipe manager and meal planner with a RestAPI backend and a reactive frontend application built in Vue for a pleasant user experience for the whole family. |
@@ -71,7 +73,6 @@
 | [nullserv](stable/nullserv) | A simple null file http and https server |
 | [nzbget](stable/nzbget) | NZBGet is a Usenet downloader client |
 | [nzbhydra2](stable/nzbhydra2) | Usenet meta search |
-| [oauth2-proxy](stable/oauth2-proxy) | A reverse proxy that provides authentication with Google, Github or other providers |
 | [octoprint](stable/octoprint) | OctoPrint is the snappy web interface for your 3D printer |
 | [omada-controller](stable/omada-controller) | Omada enables the network administrators to monitor and manage all the Omada products in the network with a centralized management platform. |
 | [ombi](stable/ombi) | Want a Movie or TV Show on Plex or Emby? Use Ombi! |
@@ -135,6 +136,7 @@
 | [wallabag](stable/wallabag) | A self hostable application for saving web pages, freely. |
 | [whoogle](stable/whoogle) | A self-hosted, ad-free, privacy-respecting metasearch engine |
 | [wikijs](stable/wikijs) | Make documentation a joy to write using Wiki.js's beautiful and intuitive interface! |
+| [wireguard](stable/wireguard) | Fast, modern, secure VPN tunnel |
 | [xbackbone](stable/xbackbone) | XBackBone is a simple, self-hosted, lightweight PHP file manager that support the instant sharing tool ShareX and *NIX systems. It supports uploading and displaying images, GIF, video, code, formatted text, and file downloading and uploading. Also have a web UI with multi user management, past uploads history and search support. |
 | [xteve](stable/xteve) | M3U Proxy for Plex DVR and Emby Live TV. |
 | [youtubedl-material](stable/youtubedl-material) | Self-hosted YouTube downloader built on Material Design |
@@ -144,3 +146,4 @@
 ### Incubator charts:
 | Chart | Description |
 | ----- | ----------- |
+| [changedetection-io](incubator/changedetection-io) | changedetection-io helm package |

charts/incubator/changedetection-io/.helmignore

@@ -19,5 +19,8 @@
 .project
 .idea/
 *.tmproj
-
+.vscode/
+# OWNERS file for Kubernetes
 OWNERS
+# helm-docs templates
+*.gotmpl

charts/incubator/changedetection-io/Chart.yaml

@@ -0,0 +1,22 @@
+apiVersion: v2
+appVersion: "0.93"
+description: changedetection-io helm package
+name: changedetection-io
+version: 1.0.0
+kubeVersion: ">=1.16.0-0"
+keywords:
+- changedetection.io
+- urlmonitor
+- website-monitoring
+home: https://github.com/k8s-at-home/charts/tree/master/charts/stable/changedetection-io
+icon:
+sources:
+- https://github.com/dgtlmoon/changedetection.io
+- https://github.com/k8s-at-home/charts/tree/master/charts/changedetection-io
+maintainers:
+- name: tuxpeople
+  url: https://github.com/tuxpeople
+dependencies:
+- name: common
+  repository: https://library-charts.k8s-at-home.com
+  version: 4.0.0

charts/incubator/changedetection-io/README.md

@@ -0,0 +1,118 @@
+# changedetection-io
+
+![Version: 1.0.0](https://img.shields.io/badge/Version-1.0.0-informational?style=flat-square) ![AppVersion: 0.93](https://img.shields.io/badge/AppVersion-0.93-informational?style=flat-square)
+
+changedetection-io helm package
+
+**This chart is not maintained by the upstream project and any issues with the chart should be raised [here](https://github.com/k8s-at-home/charts/issues/new/choose)**
+
+## Source Code
+
+* <https://github.com/dgtlmoon/changedetection.io>
+* <https://github.com/k8s-at-home/charts/tree/master/charts/changedetection-io>
+
+## Requirements
+
+Kubernetes: `>=1.16.0-0`
+
+## Dependencies
+
+| Repository | Name | Version |
+|------------|------|---------|
+| https://library-charts.k8s-at-home.com | common | 4.0.0 |
+
+## TL;DR
+
+```console
+helm repo add k8s-at-home https://k8s-at-home.com/charts/
+helm repo update
+helm install changedetection-io k8s-at-home/changedetection-io
+```
+
+## Installing the Chart
+
+To install the chart with the release name `changedetection-io`
+
+```console
+helm install changedetection-io k8s-at-home/changedetection-io
+```
+
+## Uninstalling the Chart
+
+To uninstall the `changedetection-io` deployment
+
+```console
+helm uninstall changedetection-io
+```
+
+The command removes all the Kubernetes components associated with the chart **including persistent volumes** and deletes the release.
+
+## Configuration
+
+Read through the [values.yaml](./values.yaml) file. It has several commented out suggested values.
+Other values may be used from the [values.yaml](https://github.com/k8s-at-home/library-charts/tree/main/charts/stable/common/values.yaml) from the [common library](https://github.com/k8s-at-home/library-charts/tree/main/charts/stable/common).
+
+Specify each parameter using the `--set key=value[,key=value]` argument to `helm install`.
+
+```console
+helm install changedetection-io \
+  --set env.TZ="America/New York" \
+    k8s-at-home/changedetection-io
+```
+
+Alternatively, a YAML file that specifies the values for the above parameters can be provided while installing the chart.
+
+```console
+helm install changedetection-io k8s-at-home/changedetection-io -f values.yaml
+```
+
+## Custom configuration
+
+N/A
+
+## Values
+
+**Important**: When deploying an application Helm chart you can add more values from our common library chart [here](https://github.com/k8s-at-home/library-charts/tree/main/charts/stable/common)
+
+| Key | Type | Default | Description |
+|-----|------|---------|-------------|
+| env | object | See below | environment variables. See more environment variables in the [changedetection-io documentation](https://changedetection-io.org/docs). |
+| env.TZ | string | `"UTC"` | Set the container timezone |
+| image.pullPolicy | string | `"IfNotPresent"` | image pull policy |
+| image.repository | string | `"dgtlmoon/changedetection.io"` | image repository |
+| image.tag | string | `"0.39"` | image tag |
+| ingress.main | object | See values.yaml | Enable and configure ingress settings for the chart under this key. |
+| persistence | object | See values.yaml | Configure persistence settings for the chart under this key. |
+| service | object | See values.yaml | Configures service settings for the chart. |
+
+## Changelog
+
+All notable changes to this application Helm chart will be documented in this file but does not include changes from our common library. To read those click [here](https://github.com/k8s-at-home/library-charts/tree/main/charts/stable/common#changelog).
+
+The format is based on [Keep a Changelog](https://keepachangelog.com/en/1.0.0/), and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0.html).
+
+### [1.0.0]
+
+#### Added
+
+- Initial version
+
+#### Changed
+
+- N/A
+
+#### Removed
+
+- N/A
+
+[1.0.0]: #100
+
+## Support
+
+- See the [Docs](https://docs.k8s-at-home.com/our-helm-charts/getting-started/)
+- Open an [issue](https://github.com/k8s-at-home/charts/issues/new/choose)
+- Ask a [question](https://github.com/k8s-at-home/organization/discussions)
+- Join our [Discord](https://discord.gg/sTMX7Vh) community
+
+----------------------------------------------
+Autogenerated from chart metadata using [helm-docs v1.5.0](https://github.com/norwoodj/helm-docs/releases/v1.5.0)

charts/incubator/changedetection-io/README_CHANGELOG.md.gotmpl

@@ -0,0 +1,27 @@
+{{- define "custom.changelog.header" -}}
+## Changelog
+{{- end -}}
+
+{{- define "custom.changelog" -}}
+{{ template "custom.changelog.header" . }}
+
+All notable changes to this application Helm chart will be documented in this file but does not include changes from our common library. To read those click [here](https://github.com/k8s-at-home/library-charts/tree/main/charts/stable/common#changelog).
+
+The format is based on [Keep a Changelog](https://keepachangelog.com/en/1.0.0/), and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0.html).
+
+### [1.0.0]
+
+#### Added
+
+- Initial version
+
+#### Changed
+
+- N/A
+
+#### Removed
+
+- N/A
+
+[1.0.0]: #100
+{{- end -}}

charts/incubator/changedetection-io/README_CONFIG.md.gotmpl

@@ -0,0 +1,9 @@
+{{- define "custom.custom.configuration.header" -}}
+## Custom configuration
+{{- end -}}
+
+{{- define "custom.custom.configuration" -}}
+{{ template "custom.custom.configuration.header" . }}
+
+N/A
+{{- end -}}

charts/incubator/changedetection-io/templates/NOTES.txt

@@ -0,0 +1 @@
+{{- include "common.notes.defaultNotes" . -}}

charts/incubator/changedetection-io/templates/common.yaml

@@ -0,0 +1 @@
+{{ include "common.all" . }}

charts/incubator/changedetection-io/values.yaml

@@ -0,0 +1,41 @@
+#
+# IMPORTANT NOTE
+#
+# This chart inherits from our common library chart. You can check the default values/options here:
+# https://github.com/k8s-at-home/library-charts/tree/main/charts/stable/common/values.yaml
+#
+
+image:
+  # -- image repository
+  repository: dgtlmoon/changedetection.io
+  # -- image tag
+  tag: "0.39"
+  # -- image pull policy
+  pullPolicy: IfNotPresent
+
+# -- environment variables. See more environment variables in the [changedetection-io documentation](https://changedetection-io.org/docs).
+# @default -- See below
+env:
+  # -- Set the container timezone
+  TZ: UTC
+
+# -- Configures service settings for the chart.
+# @default -- See values.yaml
+service:
+  main:
+    ports:
+      http:
+        port: 5000
+
+ingress:
+  # -- Enable and configure ingress settings for the chart under this key.
+  # @default -- See values.yaml
+  main:
+    enabled: false
+
+# -- Configure persistence settings for the chart under this key.
+# @default -- See values.yaml
+persistence:
+  data:
+    enabled: false
+    mountPath: /datastore

charts/stable/adguard-home/Chart.yaml

@@ -2,7 +2,7 @@ apiVersion: v2
 appVersion: v0.106.3
 description: DNS proxy as ad-blocker for local network
 name: adguard-home
-version: 5.0.0
+version: 5.0.1
 kubeVersion: ">=1.16.0-0"
 keywords:
 - adguard-home

charts/stable/adguard-home/README.md

@@ -1,6 +1,6 @@
 # adguard-home
 
-![Version: 5.0.0](https://img.shields.io/badge/Version-5.0.0-informational?style=flat-square) ![AppVersion: v0.106.3](https://img.shields.io/badge/AppVersion-v0.106.3-informational?style=flat-square)
+![Version: 5.0.1](https://img.shields.io/badge/Version-5.0.1-informational?style=flat-square) ![AppVersion: v0.106.3](https://img.shields.io/badge/AppVersion-v0.106.3-informational?style=flat-square)
 
 DNS proxy as ad-blocker for local network
 
@@ -94,6 +94,12 @@ All notable changes to this application Helm chart will be documented in this fi
 
 The format is based on [Keep a Changelog](https://keepachangelog.com/en/1.0.0/), and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0.html).
 
+### [5.0.1]
+
+#### Changed
+
+- Add `pullPolicy` to initContainer
+
 ### [5.0.0]
 
 #### Changed
@@ -134,6 +140,7 @@ The format is based on [Keep a Changelog](https://keepachangelog.com/en/1.0.0/),
 
 - N/A
 
+[5.0.1]: #501
 [5.0.0]: #500
 [4.0.1]: #401
 [4.0.0]: #400

charts/stable/adguard-home/README_CHANGELOG.md.gotmpl

@@ -9,6 +9,12 @@ All notable changes to this application Helm chart will be documented in this fi
 
 The format is based on [Keep a Changelog](https://keepachangelog.com/en/1.0.0/), and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0.html).
 
+### [5.0.1]
+
+#### Changed
+
+- Add `pullPolicy` to initContainer
+
 ### [5.0.0]
 
 #### Changed
@@ -49,6 +55,7 @@ The format is based on [Keep a Changelog](https://keepachangelog.com/en/1.0.0/),
 
 - N/A
 
+[5.0.1]: #501
 [5.0.0]: #500
 [4.0.1]: #401
 [4.0.0]: #400

charts/stable/adguard-home/values.yaml

@@ -15,6 +15,7 @@ initContainers:
 # @default -- See values.yaml
   copy-configmap:
     image: busybox
+    imagePullPolicy: IfNotPresent
     command:
     - "sh"
     - "-c"

charts/stable/baikal/Chart.yaml

@@ -2,7 +2,7 @@ apiVersion: v2
 appVersion: 0.8.0
 description: Baïkal is a lightweight CalDAV+CardDAV server. It offers a web interface with management of users, address books and calendars.
 name: baikal
-version: 3.0.0
+version: 3.1.0
 kubeVersion: ">=1.16.0-0"
 keywords:
 - baikal
@@ -23,6 +23,6 @@ dependencies:
   repository: https://library-charts.k8s-at-home.com
   version: 4.0.0
 - name: mariadb
-  version: 9.3.19
+  version: 9.4.4
   repository: https://charts.bitnami.com/bitnami
   condition: mariadb.enabled

charts/stable/baikal/README.md

@@ -1,6 +1,6 @@
 # baikal
 
-![Version: 3.0.0](https://img.shields.io/badge/Version-3.0.0-informational?style=flat-square) ![AppVersion: 0.8.0](https://img.shields.io/badge/AppVersion-0.8.0-informational?style=flat-square)
+![Version: 3.1.0](https://img.shields.io/badge/Version-3.1.0-informational?style=flat-square) ![AppVersion: 0.8.0](https://img.shields.io/badge/AppVersion-0.8.0-informational?style=flat-square)
 
 Baïkal is a lightweight CalDAV+CardDAV server. It offers a web interface with management of users, address books and calendars.
 
@@ -19,7 +19,7 @@ Kubernetes: `>=1.16.0-0`
 
 | Repository | Name | Version |
 |------------|------|---------|
-| https://charts.bitnami.com/bitnami | mariadb | 9.3.19 |
+| https://charts.bitnami.com/bitnami | mariadb | 9.4.4 |
 | https://library-charts.k8s-at-home.com | common | 4.0.0 |
 
 ## TL;DR

charts/stable/bookstack/Chart.yaml

@@ -3,7 +3,7 @@ apiVersion: v2
 appVersion: v21.05.1
 description: A simple, self-hosted, easy-to-use platform for organising and storing information.
 name: bookstack
-version: 3.0.0
+version: 3.1.0
 kubeVersion: ">=1.16.0-0"
 keywords:
   - bookstack
@@ -25,6 +25,6 @@ dependencies:
     repository: https://library-charts.k8s-at-home.com
     version: 4.0.0
   - name: mariadb
-    version: 9.3.19
+    version: 9.4.4
     repository: https://charts.bitnami.com/bitnami
     condition: mariadb.enabled

charts/stable/bookstack/README.md

@@ -1,6 +1,6 @@
 # bookstack
 
-![Version: 3.0.0](https://img.shields.io/badge/Version-3.0.0-informational?style=flat-square) ![AppVersion: v21.05.1](https://img.shields.io/badge/AppVersion-v21.05.1-informational?style=flat-square)
+![Version: 3.1.0](https://img.shields.io/badge/Version-3.1.0-informational?style=flat-square) ![AppVersion: v21.05.1](https://img.shields.io/badge/AppVersion-v21.05.1-informational?style=flat-square)
 
 A simple, self-hosted, easy-to-use platform for organising and storing information.
 
@@ -19,7 +19,7 @@ Kubernetes: `>=1.16.0-0`
 
 | Repository | Name | Version |
 |------------|------|---------|
-| https://charts.bitnami.com/bitnami | mariadb | 9.3.19 |
+| https://charts.bitnami.com/bitnami | mariadb | 9.4.4 |
 | https://library-charts.k8s-at-home.com | common | 4.0.0 |
 
 ## TL;DR

charts/stable/dnsmadeeasy-webhook/Chart.yaml

@@ -2,7 +2,7 @@ apiVersion: v2
 appVersion: 1.2.0
 description: Cert-Manager Webhook for DNSMadeEasy
 name: dnsmadeeasy-webhook
-version: 4.0.0
+version: 4.1.0
 keywords:
 - cert-manager
 - dnsmadeeasy
@@ -21,5 +21,5 @@ dependencies:
   version: 4.0.0
 - name: cert-manager
   repository: https://charts.jetstack.io
-  version: v1.4.2
+  version: v1.5.3
   condition: cert-manager.enabled

charts/stable/dnsmadeeasy-webhook/README.md

@@ -1,6 +1,6 @@
 # dnsmadeeasy-webhook
 
-![Version: 4.0.0](https://img.shields.io/badge/Version-4.0.0-informational?style=flat-square) ![AppVersion: 1.2.0](https://img.shields.io/badge/AppVersion-1.2.0-informational?style=flat-square)
+![Version: 4.1.0](https://img.shields.io/badge/Version-4.1.0-informational?style=flat-square) ![AppVersion: 1.2.0](https://img.shields.io/badge/AppVersion-1.2.0-informational?style=flat-square)
 
 Cert-Manager Webhook for DNSMadeEasy
 
@@ -17,7 +17,7 @@ Cert-Manager Webhook for DNSMadeEasy
 
 | Repository | Name | Version |
 |------------|------|---------|
-| https://charts.jetstack.io | cert-manager | v1.4.2 |
+| https://charts.jetstack.io | cert-manager | v1.5.3 |
 | https://library-charts.k8s-at-home.com | common | 4.0.0 |
 
 ## TL;DR

charts/stable/dsmr-reader/Chart.yaml

@@ -2,7 +2,7 @@ apiVersion: v2
 appVersion: "2021.06.01"
 description: DSMR-protocol reader, telegram data storage and energy consumption visualizer.
 name: dsmr-reader
-version: 5.0.0
+version: 5.1.0
 kubeVersion: ">=1.16.0-0"
 keywords:
 - dsmr-reader
@@ -20,6 +20,6 @@ dependencies:
   repository: https://library-charts.k8s-at-home.com
   version: 4.0.0
 - name: postgresql
-  version: 10.5.3
+  version: 10.9.4
   repository: https://charts.bitnami.com/bitnami
   condition: postgresql.enabled

charts/stable/dsmr-reader/README.md

@@ -1,6 +1,6 @@
 # dsmr-reader
 
-![Version: 5.0.0](https://img.shields.io/badge/Version-5.0.0-informational?style=flat-square) ![AppVersion: 2021.06.01](https://img.shields.io/badge/AppVersion-2021.06.01-informational?style=flat-square)
+![Version: 5.1.0](https://img.shields.io/badge/Version-5.1.0-informational?style=flat-square) ![AppVersion: 2021.06.01](https://img.shields.io/badge/AppVersion-2021.06.01-informational?style=flat-square)
 
 DSMR-protocol reader, telegram data storage and energy consumption visualizer.
 
@@ -19,7 +19,7 @@ Kubernetes: `>=1.16.0-0`
 
 | Repository | Name | Version |
 |------------|------|---------|
-| https://charts.bitnami.com/bitnami | postgresql | 10.5.3 |
+| https://charts.bitnami.com/bitnami | postgresql | 10.9.4 |
 | https://library-charts.k8s-at-home.com | common | 4.0.0 |
 
 ## TL;DR

charts/stable/games-on-whales/.helmignore

@@ -0,0 +1,26 @@
+# Patterns to ignore when building packages.
+# This supports shell glob matching, relative path matching, and
+# negation (prefixed with !). Only one pattern per line.
+.DS_Store
+# Common VCS dirs
+.git/
+.gitignore
+.bzr/
+.bzrignore
+.hg/
+.hgignore
+.svn/
+# Common backup files
+*.swp
+*.bak
+*.tmp
+*~
+# Various IDEs
+.project
+.idea/
+*.tmproj
+.vscode/
+# OWNERS file for Kubernetes
+OWNERS
+# helm-docs templates
+*.gotmpl

charts/stable/games-on-whales/Chart.yaml

@@ -0,0 +1,26 @@
+apiVersion: v2
+appVersion: 1.0.0
+description: Streams graphic applications/games (retroarch, firefox, steam) runing on Kubernetes
+name: games-on-whales
+version: 1.3.0
+kubeVersion: ">=1.19.0-0"
+keywords:
+- games-on-whales
+- steam
+- X11
+- pulse
+- stream
+- retroarch
+home: https://github.com/k8s-at-home/charts/tree/master/charts/stable/games-on-whales
+icon: https://github.com/games-on-whales/gow/raw/master/docs/assets/img/gow-logo.png
+sources:
+- https://github.com/games-on-whales/gow
+maintainers:
+- name: angelnu
+  email: gits@angelnu.com
+- name: ABeltramo
+  email: beltramo.ale@gmail.com
+dependencies:
+- name: common
+  repository: https://library-charts.k8s-at-home.com
+  version: 4.0.0

charts/stable/games-on-whales/README.md

@@ -0,0 +1,202 @@
+# games-on-whales
+
+![Version: 1.3.0](https://img.shields.io/badge/Version-1.3.0-informational?style=flat-square) ![AppVersion: 1.0.0](https://img.shields.io/badge/AppVersion-1.0.0-informational?style=flat-square)
+
+Streams graphic applications/games (retroarch, firefox, steam) runing on Kubernetes
+
+**This chart is not maintained by the upstream project and any issues with the chart should be raised [here](https://github.com/k8s-at-home/charts/issues/new/choose)**
+
+## Source Code
+
+* <https://github.com/games-on-whales/gow>
+
+## Requirements
+
+Kubernetes: `>=1.19.0-0`
+
+## Dependencies
+
+| Repository | Name | Version |
+|------------|------|---------|
+| https://library-charts.k8s-at-home.com | common | 4.0.0 |
+
+## TL;DR
+
+```console
+helm repo add k8s-at-home https://k8s-at-home.com/charts/
+helm repo update
+helm install games-on-whales k8s-at-home/games-on-whales
+```
+
+## Installing the Chart
+
+To install the chart with the release name `games-on-whales`
+
+```console
+helm install games-on-whales k8s-at-home/games-on-whales
+```
+
+## Uninstalling the Chart
+
+To uninstall the `games-on-whales` deployment
+
+```console
+helm uninstall games-on-whales
+```
+
+The command removes all the Kubernetes components associated with the chart **including persistent volumes** and deletes the release.
+
+## Configuration
+
+Read through the [values.yaml](./values.yaml) file. It has several commented out suggested values.
+Other values may be used from the [values.yaml](https://github.com/k8s-at-home/library-charts/tree/main/charts/stable/common/values.yaml) from the [common library](https://github.com/k8s-at-home/library-charts/tree/main/charts/stable/common).
+
+Specify each parameter using the `--set key=value[,key=value]` argument to `helm install`.
+
+```console
+helm install games-on-whales \
+  --set env.TZ="America/New York" \
+    k8s-at-home/games-on-whales
+```
+
+Alternatively, a YAML file that specifies the values for the above parameters can be provided while installing the chart.
+
+```console
+helm install games-on-whales k8s-at-home/games-on-whales -f values.yaml
+```
+
+## Custom configuration
+
+### GPU
+
+You need a real graphic card in your Kubernetes node to run Games on Whales:
+
+#### Intel
+
+It does not require any custom settings but if you use [intel-gpu-plugin](https://github.com/k8s-at-home/charts/tree/master/charts/stable/intel-gpu-plugin)
+then you might use the `graphic_resources` value to specify the resource limits
+such as:
+
+```
+graphic_resources:
+  gpu.intel.com/i915: 1 # requesting 1 i915 GPU
+```
+
+#### Nvidia
+
+If you use the Nvidia propietary device driver then you will need the
+[Nvidia device plugin](https://github.com/NVIDIA/k8s-device-plugin)
+and set `graphic_resources` value to specify the resource limits.
+Example:
+
+```
+graphic_resources:
+  nvidia.com/gpu: 1 # requesting 1 nvidia GPU
+```
+
+#### Proxmox
+
+If you use Proxmox you might use PCI pass-through but you also need to ensure
+the host does not load any modules for the graphic card. See the
+[instructions](https://pve.proxmox.com/wiki/Pci_passthrough).
+
+## Values
+
+**Important**: When deploying an application Helm chart you can add more values from our common library chart [here](https://github.com/k8s-at-home/library-charts/tree/main/charts/stable/common)
+
+| Key | Type | Default | Description |
+|-----|------|---------|-------------|
+| firefox.enabled | bool | `true` | enable/disable firefox container |
+| firefox.image.pullPolicy | string | `"IfNotPresent"` | image pull policy |
+| firefox.image.repository | string | `"andrewmackrodt/firefox-x11"` | image repository |
+| firefox.image.tag | string | `"91.0.2-r1"` | image tag |
+| firefox.logLevel | string | `"info"` | firefox log level |
+| firefox.volumeMounts | list | `[]` | firefox extra volume mounts |
+| graphic_resources | object | `nil` | Pass GPU resources to Xorg, steam and retroarch containers See Custom configuration section in the Readme |
+| ingress.main | object | See values.yaml | Enable and configure ingress settings for the chart under this key. |
+| mkhomeretrodirs.image.pullPolicy | string | `"IfNotPresent"` | image pull policy |
+| mkhomeretrodirs.image.repository | string | `"busybox"` | image repository |
+| mkhomeretrodirs.image.tag | string | `"1.34.0"` | image tag |
+| persistence | object | See values.yaml | Configure persistence settings for the chart under this key. |
+| pulse | object | See values.yaml | Configure pulse audio settings |
+| pulseaudio.image.pullPolicy | string | `"IfNotPresent"` | pulseaudio image pull policy |
+| pulseaudio.image.repository | string | `"ghcr.io/games-on-whales/pulseaudio"` | pulseaudio image repository |
+| pulseaudio.image.tag | string | `"1.0.0"` | pulseaudio image tag |
+| retroarch.enabled | bool | `true` | enable/disable retroarch container |
+| retroarch.image.pullPolicy | string | `"IfNotPresent"` | retroarch image pull policy |
+| retroarch.image.repository | string | `"ghcr.io/games-on-whales/retroarch"` | retroarch image repository |
+| retroarch.image.tag | string | `"1.0.0"` | retroarch image tag |
+| retroarch.logLevel | string | `"info"` | retroarch log level |
+| retroarch.volumeMounts | list | `[]` | retroarch extra volume mounts |
+| service.main | object | See values.yaml | Enable and configure TCP service settings for the chart under this key. |
+| service.udp | object | See values.yaml | Enable and configure UDP service settings for the chart under this key. |
+| steam.enabled | bool | `true` | enable/disable steam container |
+| steam.image.pullPolicy | string | `"IfNotPresent"` | steam image pull policy |
+| steam.image.repository | string | `"ghcr.io/games-on-whales/steam"` | steam image repository |
+| steam.image.tag | string | `"1.0.0"` | steam image tag |
+| steam.protonLog | int | `1` | enable proton log |
+| steam.volumeMounts | list | `[]` | steam extra volume mounts |
+| sunshine.env | object | `{}` | sunshine additional env settings |
+| sunshine.image.pullPolicy | string | `"IfNotPresent"` | sunshine image pull policy |
+| sunshine.image.repository | string | `"ghcr.io/games-on-whales/sunshine"` | sunshine image repository |
+| sunshine.image.tag | string | `"1.0.0"` | sunshine image tag |
+| sunshine.logLevel | string | `"info"` | sunshine log level |
+| sunshine.password | string | `"admin"` | sunshine web interface pasword |
+| sunshine.user | string | `"admin"` | sunshine web interface user |
+| xorg.display | string | `":99"` | xorg display ID |
+| xorg.image.pullPolicy | string | `"IfNotPresent"` | xorg image pull policy |
+| xorg.image.repository | string | `"ghcr.io/games-on-whales/xorg"` | xorg image repository |
+| xorg.image.tag | string | `"1.0.0"` | xorg image tag |
+| xorg.refreshrate | int | `60` | xorg refresh rate |
+| xorg.resolution | string | `"1920x1080"` | xorg resolution |
+
+## Changelog
+
+All notable changes to this application Helm chart will be documented in this file but does not include changes from our common library. To read those click [here](https://github.com/k8s-at-home/library-charts/tree/main/charts/stable/common#changelog).
+
+The format is based on [Keep a Changelog](https://keepachangelog.com/en/1.0.0/), and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0.html).
+
+### [1.3.0]
+
+#### Added
+
+- support for NVIDIA
+- ABeltramo as maintainer
+
+### [1.2.0]
+
+#### Changed
+
+- use GHCR images
+
+### [1.1.1]
+
+#### Changed
+
+- unlimit /dev/shm for retroarch - needed for [some emulators](https://github.com/libretro/dolphin/issues/222)
+- correct sound devices group in retroarch
+
+### [1.1.0]
+
+#### Changed
+
+- Split tcp and udp services (problems with flux/helm)
+- Fix mount volumes - from map to list
+
+[1.1.0]: #110
+
+### [1.0.0]
+
+#### Added
+
+- Initial version
+
+## Support
+
+- See the [Docs](https://docs.k8s-at-home.com/our-helm-charts/getting-started/)
+- Open an [issue](https://github.com/k8s-at-home/charts/issues/new/choose)
+- Ask a [question](https://github.com/k8s-at-home/organization/discussions)
+- Join our [Discord](https://discord.gg/sTMX7Vh) community
+
+----------------------------------------------
+Autogenerated from chart metadata using [helm-docs v1.5.0](https://github.com/norwoodj/helm-docs/releases/v1.5.0)

charts/stable/games-on-whales/README.md.gotmpl

@@ -0,0 +1,146 @@
+{{- define "custom.repository.organization" -}}
+k8s-at-home
+{{- end -}}
+
+{{- define "custom.repository.url" -}}
+https://github.com/k8s-at-home/charts
+{{- end -}}
+
+{{- define "custom.helm.url" -}}
+https://k8s-at-home.com/charts/
+{{- end -}}
+
+{{- define "custom.helm.path" -}}
+{{ template "custom.repository.organization" . }}/{{ template "chart.name" . }}
+{{- end -}}
+
+{{- define "custom.notes" -}}
+**This chart is not maintained by the upstream project and any issues with the chart should be raised [here](https://github.com/k8s-at-home/charts/issues/new/choose)**
+{{- end -}}
+
+{{- define "custom.requirements" -}}
+## Requirements
+
+{{ template "chart.kubeVersionLine" . }}
+{{- end -}}
+
+{{- define "custom.dependencies" -}}
+## Dependencies
+
+{{ template "chart.requirementsTable" . }}
+{{- end -}}
+
+{{- define "custom.install.tldr" -}}
+## TL;DR
+
+```console
+helm repo add {{ template "custom.repository.organization" . }} {{ template "custom.helm.url" . }}
+helm repo update
+helm install {{ template "chart.name" . }} {{ template "custom.helm.path" . }}
+```
+{{- end -}}
+
+{{- define "custom.install" -}}
+## Installing the Chart
+
+To install the chart with the release name `{{ template "chart.name" . }}`
+
+```console
+helm install {{ template "chart.name" . }} {{ template "custom.helm.path" . }}
+```
+{{- end -}}
+
+{{- define "custom.uninstall" -}}
+## Uninstalling the Chart
+
+To uninstall the `{{ template "chart.name" . }}` deployment
+
+```console
+helm uninstall {{ template "chart.name" . }}
+```
+
+The command removes all the Kubernetes components associated with the chart **including persistent volumes** and deletes the release.
+{{- end -}}
+
+{{- define "custom.configuration.header" -}}
+## Configuration
+{{- end -}}
+
+{{- define "custom.configuration.readValues" -}}
+Read through the [values.yaml](./values.yaml) file. It has several commented out suggested values.
+Other values may be used from the [values.yaml](https://github.com/k8s-at-home/library-charts/tree/main/charts/stable/common/values.yaml) from the [common library](https://github.com/k8s-at-home/library-charts/tree/main/charts/stable/common).
+{{- end -}}
+
+{{- define "custom.configuration.example.set" -}}
+Specify each parameter using the `--set key=value[,key=value]` argument to `helm install`.
+
+```console
+helm install {{ template "chart.name" . }} \
+  --set env.TZ="America/New York" \
+    {{ template "custom.helm.path" . }}
+```
+{{- end -}}
+
+{{- define "custom.configuration.example.file" -}}
+Alternatively, a YAML file that specifies the values for the above parameters can be provided while installing the chart.
+
+```console
+helm install {{ template "chart.name" . }} {{ template "custom.helm.path" . }} -f values.yaml
+```
+{{- end -}}
+
+{{- define "custom.valuesSection" -}}
+## Values
+
+**Important**: When deploying an application Helm chart you can add more values from our common library chart [here](https://github.com/k8s-at-home/library-charts/tree/main/charts/stable/common)
+
+{{ template "chart.valuesTable" . }}
+{{- end -}}
+
+{{- define "custom.support" -}}
+## Support
+
+- See the [Docs](https://docs.k8s-at-home.com/our-helm-charts/getting-started/)
+- Open an [issue](https://github.com/k8s-at-home/charts/issues/new/choose)
+- Ask a [question](https://github.com/k8s-at-home/organization/discussions)
+- Join our [Discord](https://discord.gg/sTMX7Vh) community
+{{- end -}}
+
+{{ template "chart.header" . }}
+
+{{ template "chart.versionBadge" . }}{{ template "chart.typeBadge" . }}{{ template "chart.appVersionBadge" . }}
+
+{{ template "chart.description" . }}
+
+{{ template "custom.notes" . }}
+
+{{ template "chart.sourcesSection" . }}
+
+{{ template "custom.requirements" . }}
+
+{{ template "custom.dependencies" . }}
+
+{{ template "custom.install.tldr" . }}
+
+{{ template "custom.install" . }}
+
+{{ template "custom.uninstall" . }}
+
+{{ template "custom.configuration.header" . }}
+
+{{ template "custom.configuration.readValues" . }}
+
+{{ template "custom.configuration.example.set" . }}
+
+{{ template "custom.configuration.example.file" . }}
+
+{{ template "custom.custom.configuration" . }}
+
+{{ template "custom.valuesSection" . }}
+
+{{ template "custom.changelog" . }}
+
+{{ template "custom.support" . }}
+
+{{ template "helm-docs.versionFooter" . }}
+{{ "" }}

charts/stable/games-on-whales/README_CHANGELOG.md.gotmpl

@@ -0,0 +1,47 @@
+{{- define "custom.changelog.header" -}}
+## Changelog
+{{- end -}}
+
+{{- define "custom.changelog" -}}
+{{ template "custom.changelog.header" . }}
+
+All notable changes to this application Helm chart will be documented in this file but does not include changes from our common library. To read those click [here](https://github.com/k8s-at-home/library-charts/tree/main/charts/stable/common#changelog).
+
+The format is based on [Keep a Changelog](https://keepachangelog.com/en/1.0.0/), and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0.html).
+
+### [1.3.0]
+
+#### Added
+
+- support for NVIDIA
+- ABeltramo as maintainer
+
+### [1.2.0]
+
+#### Changed
+
+- use GHCR images
+
+### [1.1.1]
+
+#### Changed
+
+- unlimit /dev/shm for retroarch - needed for [some emulators](https://github.com/libretro/dolphin/issues/222)
+- correct sound devices group in retroarch
+
+### [1.1.0]
+
+#### Changed
+
+- Split tcp and udp services (problems with flux/helm)
+- Fix mount volumes - from map to list
+
+[1.1.0]: #110
+
+### [1.0.0]
+
+#### Added
+
+- Initial version
+
+{{- end -}}

charts/stable/games-on-whales/README_CONFIG.md.gotmpl

@@ -0,0 +1,42 @@
+{{- define "custom.custom.configuration.header" -}}
+## Custom configuration
+{{- end -}}
+
+{{- define "custom.custom.configuration" -}}
+{{ template "custom.custom.configuration.header" . }}
+
+
+### GPU
+
+You need a real graphic card in your Kubernetes node to run Games on Whales:
+
+#### Intel
+
+It does not require any custom settings but if you use [intel-gpu-plugin](https://github.com/k8s-at-home/charts/tree/master/charts/stable/intel-gpu-plugin)
+then you might use the `graphic_resources` value to specify the resource limits
+such as:
+
+```
+graphic_resources:
+  gpu.intel.com/i915: 1 # requesting 1 i915 GPU
+```
+
+#### Nvidia
+
+If you use the Nvidia propietary device driver then you will need the
+[Nvidia device plugin](https://github.com/NVIDIA/k8s-device-plugin)
+and set `graphic_resources` value to specify the resource limits.
+Example:
+
+```
+graphic_resources:
+  nvidia.com/gpu: 1 # requesting 1 nvidia GPU
+```
+
+#### Proxmox
+
+If you use Proxmox you might use PCI pass-through but you also need to ensure
+the host does not load any modules for the graphic card. See the
+[instructions](https://pve.proxmox.com/wiki/Pci_passthrough).
+
+{{- end -}}

charts/stable/games-on-whales/templates/NOTES.txt

@@ -0,0 +1 @@
+{{- include "common.notes.defaultNotes" . -}}

charts/stable/games-on-whales/templates/common.yaml

@@ -0,0 +1,310 @@
+{{/* Make sure all variables are set properly */}}
+{{- include "common.values.setup" . }}
+
+{{/* Append the hardcoded settings */}}
+{{- define "games-on-whales.harcodedValues" -}}
+
+image:
+  {{ .Values.sunshine.image | toYaml | nindent 2 }}
+
+securityContext:
+  privileged: true
+
+{{- if .Values.graphic_resources }}
+resources:
+  requests:
+    {{ .Values.graphic_resources | toYaml | nindent 4 }}
+  limits:
+    {{ .Values.graphic_resources | toYaml | nindent 4 }}
+{{- end }}
+
+env:
+  DISPLAY: {{ .Values.xorg.display }}
+  LOG_LEVEL: {{ .Values.sunshine.logLevel }}
+  PULSE_SERVER: /tmp/pulse/pulse-socket
+  SUNSHINE_PASS: {{ .Values.sunshine.password }}
+  SUNSHINE_USER: {{ .Values.sunshine.user }}
+  GOW_REQUIRED_DEVICES: /dev/uinput /dev/input/event* /dev/dri/*
+  XDG_RUNTIME_DIR: /tmp/.X11-unix
+  {{- if .Values.sunshine.env }}
+  {{ .Values.sunshine.env | toYaml | nindent 2 }}
+  {{- end }}
+
+initContainers:
+  mkhomeretrodirs:
+    image: {{.Values.mkhomeretrodirs.image.repository }}:{{ .Values.mkhomeretrodirs.image.tag }}
+    imagePullPolicy: {{ .Values.mkhomeretrodirs.image.pullPolicy }}
+    command:
+    - sh
+    - -c
+    - chown -R 1000:1000 /home/retro
+    {{- if .Values.persistence.home.enabled }}
+    volumeMounts:
+    - name: home
+      mountPath: /home/retro
+    {{- end }}
+
+additionalContainers:
+  xorg:
+    image: {{.Values.xorg.image.repository }}:{{ .Values.xorg.image.tag }}
+    imagePullPolicy: {{ .Values.xorg.image.pullPolicy }}
+    securityContext:
+      privileged: true
+    {{- if .Values.graphic_resources }}
+    resources:
+      requests:
+        {{ .Values.graphic_resources | toYaml | nindent 8 }}
+      limits:
+        {{ .Values.graphic_resources | toYaml | nindent 8 }}
+    {{- end }}
+    env:
+    - name: DISPLAY
+      value: {{ .Values.xorg.display | quote }}
+    - name: REFRESH_RATE
+      value: {{ .Values.xorg.refreshrate | quote}}
+    - name: RESOLUTION
+      value: {{ .Values.xorg.resolution | quote }}
+    volumeMounts:
+    - name: dev-input
+      mountPath: /dev/input
+      readOnly: true
+    - name: udev
+      mountPath: /run/udev
+      readOnly: true
+    - name: xorg
+      mountPath: /tmp/.X11-unix
+    - name: var-log
+      mountPath: /var/log
+  pulseaudio:
+    image: {{.Values.pulseaudio.image.repository }}:{{ .Values.pulseaudio.image.tag }}
+    imagePullPolicy: {{ .Values.pulseaudio.image.pullPolicy }}
+    volumeMounts:
+    - name: audio-socket
+      mountPath: /tmp/pulse
+    - name: pulse-conf
+      mountPath: /etc/pulse
+  {{- if .Values.retroarch.enabled }}
+  retroarch:
+    image: {{.Values.retroarch.image.repository }}:{{ .Values.retroarch.image.tag }}
+    imagePullPolicy: {{ .Values.retroarch.image.pullPolicy }}
+    securityContext:
+      privileged: true
+    {{- if .Values.graphic_resources }}
+    resources:
+      requests:
+        {{ .Values.graphic_resources | toYaml | nindent 8 }}
+      limits:
+        {{ .Values.graphic_resources | toYaml | nindent 8 }}
+    {{- end }}
+    env:
+    - name: DISPLAY
+      value: {{ .Values.xorg.display | quote }}
+    - name: LOG_LEVEL
+      value: {{ .Values.retroarch.logLevel | quote }}
+    - name: PULSE_SERVER
+      value: "/tmp/pulse/pulse-socket"
+    - name: GOW_REQUIRED_DEVICES
+      value: /dev/uinput /dev/input/event* /dev/dri/* /dev/snd/*
+    volumeMounts:
+    - name: audio-socket
+      mountPath: /tmp/pulse
+    - name: dev-input
+      mountPath: /dev/input
+      readOnly: true
+    - name: udev
+      mountPath: /run/udev
+      readOnly: true
+    - name: xorg
+      mountPath: /tmp/.X11-unix
+    # Default 64MB not enough for some emulators - https://github.com/libretro/dolphin/issues/222
+    - name: dshm
+      mountPath: /dev/shm
+    {{- if .Values.persistence.home.enabled }}
+    - name: home
+      mountPath: /home/retro
+    {{- end }}
+    {{- if .Values.retroarch.volumeMounts }}
+    {{ .Values.retroarch.volumeMounts | toYaml | nindent 4 }}
+    {{- end }}
+  {{- end }}
+  {{- if .Values.steam.enabled }}
+  steam:
+    image: {{.Values.steam.image.repository }}:{{ .Values.steam.image.tag }}
+    imagePullPolicy: {{ .Values.steam.image.pullPolicy }}
+    securityContext:
+      privileged: true
+    {{- if .Values.graphic_resources }}
+    resources:
+      requests:
+        {{ .Values.graphic_resources | toYaml | nindent 8 }}
+      limits:
+        {{ .Values.graphic_resources | toYaml | nindent 8 }}
+    {{- end }}
+    env:
+    - name: DISPLAY
+      value: {{ .Values.xorg.display | quote }}
+    - name: PROTON_LOG
+      value: {{ .Values.steam.protonLog | quote }}
+    - name: PULSE_SERVER
+      value: "/tmp/pulse/pulse-socket"
+    volumeMounts:
+    - name: audio-socket
+      mountPath: /tmp/pulse
+    - name: dev-input
+      mountPath: /dev/input
+      readOnly: true
+    - name: udev
+      mountPath: /run/udev
+      readOnly: true
+    - name: xorg
+      mountPath: /tmp/.X11-unix
+    {{- if .Values.persistence.home.enabled }}
+    - name: home
+      mountPath: /home/retro
+    {{- end }}
+    # The following is needed by the webview otherwise you'll get Less than 64MB of free space in temporary directory (https://github.com/microsoft/vscode/issues/111729#issuecomment-737399692)
+    - name: dshm
+      mountPath: /dev/shm
+    {{- if .Values.steam.volumeMounts }}
+    {{ .Values.steam.volumeMounts | toYaml | nindent 4 }}
+    {{- end }}
+  {{- end }}
+  {{- if .Values.firefox.enabled }}
+  firefox:
+    image: {{.Values.firefox.image.repository }}:{{ .Values.firefox.image.tag }}
+    imagePullPolicy: {{ .Values.firefox.image.pullPolicy }}
+    env:
+    - name: DISPLAY
+      value: {{ .Values.xorg.display | quote }}
+    - name: LOG_LEVEL
+      value: {{ .Values.firefox.logLevel | quote }}
+    - name: PULSE_SERVER
+      value: "/tmp/pulse/pulse-socket"
+    volumeMounts:
+    - name: audio-socket
+      mountPath: /tmp/pulse
+    - name: xorg
+      mountPath: /tmp/.X11-unix
+    {{- if .Values.persistence.home.enabled }}
+    - name: home
+      mountPath: /run/user/1000
+    {{- end }}
+    {{- if .Values.firefox.volumeMounts }}
+    {{ .Values.firefox.volumeMounts | toYaml | nindent 4 }}
+    {{- end }}
+  {{- end }}
+
+
+# -- Configures service settings for the chart.
+# @default -- See values.yaml
+service:
+  main:
+    primary: true
+    ports:
+      http:
+        enabled: false
+        primary: false
+      sunshine:
+        enabled: true
+        port: 48010
+        protocol: TCP
+      sunshine-tcp1:
+        enabled: true
+        port: 47984
+        protocol: TCP
+      sunshine-tcp2:
+        enabled: true
+        port: 47985
+        protocol: TCP
+      sunshine-tcp3:
+        enabled: true
+        port: 47986
+        protocol: TCP
+      sunshine-tcp4:
+        enabled: true
+        port: 47987
+        protocol: TCP
+      sunshine-tcp5:
+        enabled: true
+        port: 47988
+        protocol: TCP
+      sunshine-tcp6:
+        enabled: true
+        port: 47989
+        protocol: TCP
+      sunshine-tcp7:
+        enabled: true
+        primary: true
+        port: 47990
+        protocol: HTTPS
+    externalTrafficPolicy: Local
+  udp:
+    enabled: true
+    ports:
+      sunshine-udp1:
+        enabled: true
+        port: 47998
+        protocol: UDP
+      sunshine-udp2:
+        enabled: true
+        port: 47999
+        protocol: UDP
+      sunshine-udp3:
+        enabled: true
+        port: 48000
+        protocol: UDP
+    externalTrafficPolicy: Local
+
+# Required for udev to work
+hostNetwork: true
+
+persistence:
+  dev-input:
+    enabled: true
+    type: hostPath
+    mountPath: /dev/input
+    hostPath: /dev/input
+  udev:
+    enabled: true
+    type: hostPath
+    mountPath: /run/udev
+    hostPath: /run/udev
+  xorg:
+    enabled: true
+    type: hostPath
+    mountPath: /tmp/.X11-unix
+    hostPath: /tmp/.X11-unix
+  var-log:
+    enabled: true
+    type: hostPath
+    mountPath: /var/log
+    hostPath: /var/log
+  audio-socket:
+    enabled: true
+    type: hostPath
+    mountPath: /tmp/pulse
+    hostPath: /tmp/pulse
+  dshm:
+    enabled: true
+    type: emptyDir
+    medium: Memory
+  pulse-conf:
+    enabled: true
+    type: custom
+    volumeSpec:
+      configMap:
+        name: {{ include "common.names.fullname" . }}-pulse
+        items:
+        - key: default.pa
+          path: default.pa
+        - key: client.conf
+          path: client.conf
+        - key: daemon.conf
+          path: daemon.conf
+
+
+{{- end -}}
+{{- $_ := mergeOverwrite .Values (include "games-on-whales.harcodedValues" . | fromYaml) -}}
+
+{{/* Render the templates */}}
+{{ include "common.all" . }}

charts/stable/games-on-whales/templates/pulse-audio-configmap.yaml

@@ -0,0 +1,8 @@
+apiVersion: v1
+kind: ConfigMap
+metadata:
+  name: {{ include "common.names.fullname" . }}-pulse
+  labels:
+    {{- include "common.labels" . | nindent 4 }}
+data:
+  {{- tpl (.Values.pulse.config | toYaml) $ | nindent 2 }}

charts/stable/games-on-whales/values.yaml

@@ -0,0 +1,143 @@
+#
+# IMPORTANT NOTE
+#
+# This chart inherits from our common library chart. You can check the default values/options here:
+# https://github.com/k8s-at-home/library-charts/tree/main/charts/stable/common/values.yaml
+#
+
+ingress:
+  # -- Enable and configure ingress settings for the chart under this key.
+  # @default -- See values.yaml
+  main:
+    enabled: false
+
+service:
+  # -- Enable and configure TCP service settings for the chart under this key.
+  # @default -- See values.yaml
+  main: {}
+  # type: LoadBalancer
+  # loadBalancerIP: 192.168.1.129
+
+  # -- Enable and configure UDP service settings for the chart under this key.
+  # @default -- See values.yaml
+  udp: {}
+  # type: LoadBalancer
+  # loadBalancerIP: 192.168.1.129
+
+# -- Configure persistence settings for the chart under this key.
+# @default -- See values.yaml
+persistence:
+  home:
+    enabled: true
+    type: emptyDir
+    mountPath: /home/retro
+
+# -- (object) Pass GPU resources to Xorg, steam and retroarch containers
+# See Custom configuration section in the Readme
+graphic_resources:
+
+sunshine:
+  image:
+    # -- sunshine image repository
+    repository: ghcr.io/games-on-whales/sunshine
+    # -- sunshine image tag
+    tag: 1.0.0
+    # -- sunshine image pull policy
+    pullPolicy: IfNotPresent
+  # -- sunshine web interface user
+  user: admin
+  # -- sunshine web interface pasword
+  password: admin
+  # -- sunshine log level
+  logLevel: info
+  # -- sunshine additional env settings
+  env: {}
+xorg:
+  image:
+    # -- xorg image repository
+    repository: ghcr.io/games-on-whales/xorg
+    # -- xorg image tag
+    tag: 1.0.0
+    # -- xorg image pull policy
+    pullPolicy: IfNotPresent
+  # -- xorg display ID
+  display: :99
+  # -- xorg refresh rate
+  refreshrate: 60
+  # -- xorg resolution
+  resolution: 1920x1080
+pulseaudio:
+  image:
+    # -- pulseaudio image repository
+    repository: ghcr.io/games-on-whales/pulseaudio
+    # -- pulseaudio image tag
+    tag: 1.0.0
+    # -- pulseaudio image pull policy
+    pullPolicy: IfNotPresent
+retroarch:
+  # -- enable/disable retroarch container
+  enabled: true
+  image:
+    # -- retroarch image repository
+    repository: ghcr.io/games-on-whales/retroarch
+    # -- retroarch image tag
+    tag: 1.0.0
+    # -- retroarch image pull policy
+    pullPolicy: IfNotPresent
+  # -- retroarch log level
+  logLevel: info
+  # -- retroarch extra volume mounts
+  volumeMounts: []
+steam:
+  # -- enable/disable steam container
+  enabled: true
+  image:
+    # -- steam image repository
+    repository: ghcr.io/games-on-whales/steam
+    # -- steam image tag
+    tag: 1.0.0
+    # -- steam image pull policy
+    pullPolicy: IfNotPresent
+  # -- enable proton log
+  protonLog: 1
+  # -- steam extra volume mounts
+  volumeMounts: []
+firefox:
+  # -- enable/disable firefox container
+  enabled: true
+  image:
+    # -- image repository
+    repository: andrewmackrodt/firefox-x11
+    # -- image tag
+    tag: 91.0.2-r1
+    # -- image pull policy
+    pullPolicy: IfNotPresent
+  # -- firefox log level
+  logLevel: info
+  # -- firefox extra volume mounts
+  volumeMounts: []
+mkhomeretrodirs:
+  image:
+    # -- image repository
+    repository: busybox
+    # -- image tag
+    tag: 1.34.0
+    # -- image pull policy
+    pullPolicy: IfNotPresent
+
+# -- Configure pulse audio settings
+# @default -- See values.yaml
+pulse:
+  config:
+    default.pa: |-
+      .fail
+          load-module module-null-sink sink_name=sunshine
+          set-default-sink sunshine
+          load-module module-native-protocol-unix auth-anonymous=1 socket=/tmp/pulse/pulse-socket
+    client.conf: |-
+      default-sink = sink-sunshine-stereo
+      autospawn = no
+      daemon-binary = /bin/true
+    daemon.conf: |-
+      exit-idle-time = -1
+      flat-volumes = yes

charts/stable/home-assistant/Chart.yaml

@@ -2,7 +2,7 @@ apiVersion: v2
 appVersion: 2021.6.3
 description: Home Assistant
 name: home-assistant
-version: 10.0.0
+version: 10.1.0
 kubeVersion: ">=1.16.0-0"
 keywords:
 - home-assistant
@@ -22,11 +22,11 @@ dependencies:
   repository: https://library-charts.k8s-at-home.com
   version: 4.0.0
 - name: postgresql
-  version: 10.5.3
+  version: 10.9.4
   repository: https://charts.bitnami.com/bitnami
   condition: postgresql.enabled
 - name: mariadb
-  version: 9.3.19
+  version: 9.4.4
   repository: https://charts.bitnami.com/bitnami
   condition: mariadb.enabled
 - name: influxdb

charts/stable/home-assistant/README.md

@@ -1,6 +1,6 @@
 # home-assistant
 
-![Version: 10.0.0](https://img.shields.io/badge/Version-10.0.0-informational?style=flat-square) ![AppVersion: 2021.6.3](https://img.shields.io/badge/AppVersion-2021.6.3-informational?style=flat-square)
+![Version: 10.1.0](https://img.shields.io/badge/Version-10.1.0-informational?style=flat-square) ![AppVersion: 2021.6.3](https://img.shields.io/badge/AppVersion-2021.6.3-informational?style=flat-square)
 
 Home Assistant
 
@@ -21,8 +21,8 @@ Kubernetes: `>=1.16.0-0`
 | Repository | Name | Version |
 |------------|------|---------|
 | https://charts.bitnami.com/bitnami | influxdb | 1.1.9 |
-| https://charts.bitnami.com/bitnami | mariadb | 9.3.19 |
-| https://charts.bitnami.com/bitnami | postgresql | 10.5.3 |
+| https://charts.bitnami.com/bitnami | mariadb | 9.4.4 |
+| https://charts.bitnami.com/bitnami | postgresql | 10.9.4 |
 | https://library-charts.k8s-at-home.com | common | 4.0.0 |
 
 ## TL;DR

charts/stable/homebridge/Chart.yaml

@@ -2,7 +2,7 @@ apiVersion: v2
 appVersion: 4.0.0
 description: A lightweight NodeJS server that emulates the iOS HomeKit API
 name: homebridge
-version: 4.0.0
+version: 4.1.0
 kubeVersion: ">=1.16.0-0"
 keywords:
 - homebridge

charts/stable/homebridge/README.md

@@ -1,6 +1,6 @@
 # homebridge
 
-![Version: 4.0.0](https://img.shields.io/badge/Version-4.0.0-informational?style=flat-square) ![AppVersion: 4.0.0](https://img.shields.io/badge/AppVersion-4.0.0-informational?style=flat-square)
+![Version: 4.1.0](https://img.shields.io/badge/Version-4.1.0-informational?style=flat-square) ![AppVersion: 4.0.0](https://img.shields.io/badge/AppVersion-4.0.0-informational?style=flat-square)
 
 A lightweight NodeJS server that emulates the iOS HomeKit API
 
@@ -84,8 +84,8 @@ N/A
 | env.TZ | string | `"UTC"` | Set the container timezone |
 | hostNetwork | bool | `false` | Enable hostNetwork - needed for discovery to work |
 | image.pullPolicy | string | `"IfNotPresent"` | image pull policy |
-| image.repository | string | `"oznu/homebridge"` | image repository |
-| image.tag | string | `"4.0.0"` | image tag |
+| image.repository | string | `"ghcr.io/oznu/homebridge"` | image repository |
+| image.tag | string | `"latest@sha256:4703dca68510307587361f4312e6bad0e765e85f8986a7517e0f393d8d0e2410"` | image tag |
 | ingress.main | object | See values.yaml | Enable and configure ingress settings for the chart under this key. |
 | persistence | object | See values.yaml | Configure persistence settings for the chart under this key. |
 | service | object | See values.yaml | Configures service settings for the chart. |
@@ -96,6 +96,12 @@ All notable changes to this application Helm chart will be documented in this fi
 
 The format is based on [Keep a Changelog](https://keepachangelog.com/en/1.0.0/), and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0.html).
 
+### [4.1.0]
+
+#### Changed
+
+- Moved image to Oznu's GHCR mirror.
+
 ### [4.0.0]
 
 #### Changed
@@ -116,6 +122,7 @@ The format is based on [Keep a Changelog](https://keepachangelog.com/en/1.0.0/),
 
 - **BREAKING** Migrate to the common library, a lot of configuration has changed.
 
+[4.1.0]: #410
 [4.0.0]: #400
 [3.0.0]: #300
 [2.0.0]: #200

charts/stable/homebridge/README_CHANGELOG.md.gotmpl

@@ -9,6 +9,12 @@ All notable changes to this application Helm chart will be documented in this fi
 
 The format is based on [Keep a Changelog](https://keepachangelog.com/en/1.0.0/), and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0.html).
 
+### [4.1.0]
+
+#### Changed
+
+- Moved image to Oznu's GHCR mirror.
+
 ### [4.0.0]
 
 #### Changed
@@ -29,6 +35,7 @@ The format is based on [Keep a Changelog](https://keepachangelog.com/en/1.0.0/),
 
 - **BREAKING** Migrate to the common library, a lot of configuration has changed.
 
+[4.1.0]: #410
 [4.0.0]: #400
 [3.0.0]: #300
 [2.0.0]: #200

charts/stable/homebridge/values.yaml

@@ -7,9 +7,9 @@
 
 image:
   # -- image repository
-  repository: oznu/homebridge
+  repository: ghcr.io/oznu/homebridge
   # -- image tag
-  tag: 4.0.0
+  tag: latest@sha256:4703dca68510307587361f4312e6bad0e765e85f8986a7517e0f393d8d0e2410
   # -- image pull policy
   pullPolicy: IfNotPresent
 

charts/stable/icinga2/Chart.yaml

@@ -2,7 +2,7 @@ apiVersion: v2
 appVersion: latest
 description: A monitoring system which checks the availability of your network resources, notifies users of outages, and generates performance data for reporting.
 name: icinga2
-version: 2.0.0
+version: 2.1.0
 kubeVersion: ">=1.16.0-0"
 keywords:
 - icinga2
@@ -20,6 +20,6 @@ dependencies:
   repository: https://library-charts.k8s-at-home.com
   version: 4.0.0
 - name: mariadb
-  version: 9.3.19
+  version: 9.4.4
   repository: https://charts.bitnami.com/bitnami
   condition: mariadb.enabled

charts/stable/icinga2/README.md

@@ -1,6 +1,6 @@
 # icinga2
 
-![Version: 2.0.0](https://img.shields.io/badge/Version-2.0.0-informational?style=flat-square) ![AppVersion: latest](https://img.shields.io/badge/AppVersion-latest-informational?style=flat-square)
+![Version: 2.1.0](https://img.shields.io/badge/Version-2.1.0-informational?style=flat-square) ![AppVersion: latest](https://img.shields.io/badge/AppVersion-latest-informational?style=flat-square)
 
 A monitoring system which checks the availability of your network resources, notifies users of outages, and generates performance data for reporting.
 
@@ -19,7 +19,7 @@ Kubernetes: `>=1.16.0-0`
 
 | Repository | Name | Version |
 |------------|------|---------|
-| https://charts.bitnami.com/bitnami | mariadb | 9.3.19 |
+| https://charts.bitnami.com/bitnami | mariadb | 9.4.4 |
 | https://library-charts.k8s-at-home.com | common | 4.0.0 |
 
 ## TL;DR

charts/stable/joplin-server/Chart.yaml

@@ -2,7 +2,7 @@ apiVersion: v2
 appVersion: 2.1.2
 description: This server allows you to sync any Joplin client
 name: joplin-server
-version: 4.0.0
+version: 4.1.0
 keywords:
   - joplin
   - notes
@@ -20,6 +20,6 @@ dependencies:
     repository: https://library-charts.k8s-at-home.com
     version: 4.0.0
   - name: postgresql
-    version: 10.5.3
+    version: 10.9.4
     repository: https://charts.bitnami.com/bitnami
     condition: postgresql.enabled

charts/stable/joplin-server/README.md

@@ -1,6 +1,6 @@
 # joplin-server
 
-![Version: 4.0.0](https://img.shields.io/badge/Version-4.0.0-informational?style=flat-square) ![AppVersion: 2.1.2](https://img.shields.io/badge/AppVersion-2.1.2-informational?style=flat-square)
+![Version: 4.1.0](https://img.shields.io/badge/Version-4.1.0-informational?style=flat-square) ![AppVersion: 2.1.2](https://img.shields.io/badge/AppVersion-2.1.2-informational?style=flat-square)
 
 This server allows you to sync any Joplin client
 
@@ -18,7 +18,7 @@ This server allows you to sync any Joplin client
 
 | Repository | Name | Version |
 |------------|------|---------|
-| https://charts.bitnami.com/bitnami | postgresql | 10.5.3 |
+| https://charts.bitnami.com/bitnami | postgresql | 10.9.4 |
 | https://library-charts.k8s-at-home.com | common | 4.0.0 |
 
 ## TL;DR

charts/stable/kanboard/Chart.yaml

@@ -2,7 +2,7 @@ apiVersion: v2
 appVersion: v1.2.20
 description: Kanboard is a free and open source Kanban project management software.
 name: kanboard
-version: 4.0.0
+version: 4.1.0
 kubeVersion: ">=1.16.0-0"
 keywords:
 - kanboard
@@ -19,6 +19,6 @@ dependencies:
   repository: https://library-charts.k8s-at-home.com
   version: 4.0.0
 - name: postgresql
-  version: 10.5.3
+  version: 10.9.4
   repository: https://charts.bitnami.com/bitnami
   condition: postgresql.enabled

charts/stable/kanboard/README.md

@@ -1,6 +1,6 @@
 # kanboard
 
-![Version: 4.0.0](https://img.shields.io/badge/Version-4.0.0-informational?style=flat-square) ![AppVersion: v1.2.20](https://img.shields.io/badge/AppVersion-v1.2.20-informational?style=flat-square)
+![Version: 4.1.0](https://img.shields.io/badge/Version-4.1.0-informational?style=flat-square) ![AppVersion: v1.2.20](https://img.shields.io/badge/AppVersion-v1.2.20-informational?style=flat-square)
 
 Kanboard is a free and open source Kanban project management software.
 
@@ -18,7 +18,7 @@ Kubernetes: `>=1.16.0-0`
 
 | Repository | Name | Version |
 |------------|------|---------|
-| https://charts.bitnami.com/bitnami | postgresql | 10.5.3 |
+| https://charts.bitnami.com/bitnami | postgresql | 10.9.4 |
 | https://library-charts.k8s-at-home.com | common | 4.0.0 |
 
 ## TL;DR

charts/stable/littlelink-server/.helmignore

@@ -0,0 +1,26 @@
+# Patterns to ignore when building packages.
+# This supports shell glob matching, relative path matching, and
+# negation (prefixed with !). Only one pattern per line.
+.DS_Store
+# Common VCS dirs
+.git/
+.gitignore
+.bzr/
+.bzrignore
+.hg/
+.hgignore
+.svn/
+# Common backup files
+*.swp
+*.bak
+*.tmp
+*~
+# Various IDEs
+.project
+.idea/
+*.tmproj
+.vscode/
+# OWNERS file for Kubernetes
+OWNERS
+# helm-docs templates
+*.gotmpl

charts/stable/littlelink-server/Chart.yaml

@@ -0,0 +1,20 @@
+apiVersion: v2
+appVersion: 1.0.0
+description: "A lightweight open source alternative to linktree"
+name: littlelink-server
+version: 1.0.0
+kubeVersion: ">=1.16.0-0"
+keywords:
+- littlelink-server
+home: "https://github.com/k8s-at-home/charts/tree/master/charts/stable/littlelink-server"
+icon: https://camo.githubusercontent.com/edebb9bce46a8d4a75fa8c4f50f20996c3fe55ace28ecfbfdc5da3794cc90e9a/68747470733a2f2f63646e2e636f74746c652e636c6f75642f6c6974746c656c696e6b2f736f6369616c2d636972636c652e706e67
+sources:
+- https://github.com/techno-tim/littlelink-server
+- https://github.com/sethcottle/littlelink
+maintainers:
+- name: rwaltr
+  email: rwaltr@pm.me
+dependencies:
+- name: common
+  repository: https://library-charts.k8s-at-home.com
+  version: 4.0.0

charts/stable/littlelink-server/README.md

@@ -0,0 +1,117 @@
+# littlelink-server
+
+![Version: 1.0.0](https://img.shields.io/badge/Version-1.0.0-informational?style=flat-square) ![AppVersion: 1.0.0](https://img.shields.io/badge/AppVersion-1.0.0-informational?style=flat-square)
+
+A lightweight open source alternative to linktree
+
+**This chart is not maintained by the upstream project and any issues with the chart should be raised [here](https://github.com/k8s-at-home/charts/issues/new/choose)**
+
+## Source Code
+
+* <https://github.com/techno-tim/littlelink-server>
+* <https://github.com/sethcottle/littlelink>
+
+## Requirements
+
+Kubernetes: `>=1.16.0-0`
+
+## Dependencies
+
+| Repository | Name | Version |
+|------------|------|---------|
+| https://library-charts.k8s-at-home.com | common | 4.0.0 |
+
+## TL;DR
+
+```console
+helm repo add k8s-at-home https://k8s-at-home.com/charts/
+helm repo update
+helm install littlelink-server k8s-at-home/littlelink-server
+```
+
+## Installing the Chart
+
+To install the chart with the release name `littlelink-server`
+
+```console
+helm install littlelink-server k8s-at-home/littlelink-server
+```
+
+## Uninstalling the Chart
+
+To uninstall the `littlelink-server` deployment
+
+```console
+helm uninstall littlelink-server
+```
+
+The command removes all the Kubernetes components associated with the chart **including persistent volumes** and deletes the release.
+
+## Configuration
+
+Read through the [values.yaml](./values.yaml) file. It has several commented out suggested values.
+Other values may be used from the [values.yaml](https://github.com/k8s-at-home/library-charts/tree/main/charts/stable/common/values.yaml) from the [common library](https://github.com/k8s-at-home/library-charts/tree/main/charts/stable/common).
+
+Specify each parameter using the `--set key=value[,key=value]` argument to `helm install`.
+
+```console
+helm install littlelink-server \
+  --set env.TZ="America/New York" \
+    k8s-at-home/littlelink-server
+```
+
+Alternatively, a YAML file that specifies the values for the above parameters can be provided while installing the chart.
+
+```console
+helm install littlelink-server k8s-at-home/littlelink-server -f values.yaml
+```
+
+## Custom configuration
+
+N/A
+
+## Values
+
+**Important**: When deploying an application Helm chart you can add more values from our common library chart [here](https://github.com/k8s-at-home/library-charts/tree/main/charts/stable/common)
+
+| Key | Type | Default | Description |
+|-----|------|---------|-------------|
+| env | object | See below | environment variables. See more environment variables in the [littlelink-server documentation](https://github.com/techno-tim/littlelink-server). |
+| env.TZ | string | `"UTC"` | Set the container timezone |
+| image.pullPolicy | string | `"IfNotPresent"` | image pull policy |
+| image.repository | string | `"ghcr.io/techno-tim/littlelink-server"` | image repository |
+| image.tag | string | `"latest"` | image tag |
+| ingress.main | object | See values.yaml | Enable and configure ingress settings for the chart under this key. |
+| service | object | See values.yaml | Configures service settings for the chart. |
+
+## Changelog
+
+All notable changes to this application Helm chart will be documented in this file but does not include changes from our common library. To read those click [here](https://github.com/k8s-at-home/library-charts/tree/main/charts/stable/common#changelog).
+
+The format is based on [Keep a Changelog](https://keepachangelog.com/en/1.0.0/), and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0.html).
+
+### [1.0.0]
+
+#### Added
+
+- Initial version
+
+#### Changed
+
+- N/A
+
+#### Removed
+
+- N/A
+
+[1.0.0]: #1126
+
+## Support
+
+- See the [Docs](https://docs.k8s-at-home.com/our-helm-charts/getting-started/)
+- Open an [issue](https://github.com/k8s-at-home/charts/issues/new/choose)
+- Ask a [question](https://github.com/k8s-at-home/organization/discussions)
+- Join our [Discord](https://discord.gg/sTMX7Vh) community
+
+----------------------------------------------
+Autogenerated from chart metadata using [helm-docs v1.5.0](https://github.com/norwoodj/helm-docs/releases/v1.5.0)

charts/stable/littlelink-server/README.md.gotmpl

@@ -0,0 +1,146 @@
+{{- define "custom.repository.organization" -}}
+k8s-at-home
+{{- end -}}
+
+{{- define "custom.repository.url" -}}
+https://github.com/k8s-at-home/charts
+{{- end -}}
+
+{{- define "custom.helm.url" -}}
+https://k8s-at-home.com/charts/
+{{- end -}}
+
+{{- define "custom.helm.path" -}}
+{{ template "custom.repository.organization" . }}/{{ template "chart.name" . }}
+{{- end -}}
+
+{{- define "custom.notes" -}}
+**This chart is not maintained by the upstream project and any issues with the chart should be raised [here](https://github.com/k8s-at-home/charts/issues/new/choose)**
+{{- end -}}
+
+{{- define "custom.requirements" -}}
+## Requirements
+
+{{ template "chart.kubeVersionLine" . }}
+{{- end -}}
+
+{{- define "custom.dependencies" -}}
+## Dependencies
+
+{{ template "chart.requirementsTable" . }}
+{{- end -}}
+
+{{- define "custom.install.tldr" -}}
+## TL;DR
+
+```console
+helm repo add {{ template "custom.repository.organization" . }} {{ template "custom.helm.url" . }}
+helm repo update
+helm install {{ template "chart.name" . }} {{ template "custom.helm.path" . }}
+```
+{{- end -}}
+
+{{- define "custom.install" -}}
+## Installing the Chart
+
+To install the chart with the release name `{{ template "chart.name" . }}`
+
+```console
+helm install {{ template "chart.name" . }} {{ template "custom.helm.path" . }}
+```
+{{- end -}}
+
+{{- define "custom.uninstall" -}}
+## Uninstalling the Chart
+
+To uninstall the `{{ template "chart.name" . }}` deployment
+
+```console
+helm uninstall {{ template "chart.name" . }}
+```
+
+The command removes all the Kubernetes components associated with the chart **including persistent volumes** and deletes the release.
+{{- end -}}
+
+{{- define "custom.configuration.header" -}}
+## Configuration
+{{- end -}}
+
+{{- define "custom.configuration.readValues" -}}
+Read through the [values.yaml](./values.yaml) file. It has several commented out suggested values.
+Other values may be used from the [values.yaml](https://github.com/k8s-at-home/library-charts/tree/main/charts/stable/common/values.yaml) from the [common library](https://github.com/k8s-at-home/library-charts/tree/main/charts/stable/common).
+{{- end -}}
+
+{{- define "custom.configuration.example.set" -}}
+Specify each parameter using the `--set key=value[,key=value]` argument to `helm install`.
+
+```console
+helm install {{ template "chart.name" . }} \
+  --set env.TZ="America/New York" \
+    {{ template "custom.helm.path" . }}
+```
+{{- end -}}
+
+{{- define "custom.configuration.example.file" -}}
+Alternatively, a YAML file that specifies the values for the above parameters can be provided while installing the chart.
+
+```console
+helm install {{ template "chart.name" . }} {{ template "custom.helm.path" . }} -f values.yaml
+```
+{{- end -}}
+
+{{- define "custom.valuesSection" -}}
+## Values
+
+**Important**: When deploying an application Helm chart you can add more values from our common library chart [here](https://github.com/k8s-at-home/library-charts/tree/main/charts/stable/common)
+
+{{ template "chart.valuesTable" . }}
+{{- end -}}
+
+{{- define "custom.support" -}}
+## Support
+
+- See the [Docs](https://docs.k8s-at-home.com/our-helm-charts/getting-started/)
+- Open an [issue](https://github.com/k8s-at-home/charts/issues/new/choose)
+- Ask a [question](https://github.com/k8s-at-home/organization/discussions)
+- Join our [Discord](https://discord.gg/sTMX7Vh) community
+{{- end -}}
+
+{{ template "chart.header" . }}
+
+{{ template "chart.versionBadge" . }}{{ template "chart.typeBadge" . }}{{ template "chart.appVersionBadge" . }}
+
+{{ template "chart.description" . }}
+
+{{ template "custom.notes" . }}
+
+{{ template "chart.sourcesSection" . }}
+
+{{ template "custom.requirements" . }}
+
+{{ template "custom.dependencies" . }}
+
+{{ template "custom.install.tldr" . }}
+
+{{ template "custom.install" . }}
+
+{{ template "custom.uninstall" . }}
+
+{{ template "custom.configuration.header" . }}
+
+{{ template "custom.configuration.readValues" . }}
+
+{{ template "custom.configuration.example.set" . }}
+
+{{ template "custom.configuration.example.file" . }}
+
+{{ template "custom.custom.configuration" . }}
+
+{{ template "custom.valuesSection" . }}
+
+{{ template "custom.changelog" . }}
+
+{{ template "custom.support" . }}
+
+{{ template "helm-docs.versionFooter" . }}
+{{ "" }}

charts/stable/littlelink-server/README_CHANGELOG.md.gotmpl

@@ -0,0 +1,27 @@
+{{- define "custom.changelog.header" -}}
+## Changelog
+{{- end -}}
+
+{{- define "custom.changelog" -}}
+{{ template "custom.changelog.header" . }}
+
+All notable changes to this application Helm chart will be documented in this file but does not include changes from our common library. To read those click [here](https://github.com/k8s-at-home/library-charts/tree/main/charts/stable/common#changelog).
+
+The format is based on [Keep a Changelog](https://keepachangelog.com/en/1.0.0/), and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0.html).
+
+### [1.0.0]
+
+#### Added
+
+- Initial version
+
+#### Changed
+
+- N/A
+
+#### Removed
+
+- N/A
+
+[1.0.0]: #1126
+{{- end -}}

charts/stable/littlelink-server/README_CONFIG.md.gotmpl

@@ -0,0 +1,9 @@
+{{- define "custom.custom.configuration.header" -}}
+## Custom configuration
+{{- end -}}
+
+{{- define "custom.custom.configuration" -}}
+{{ template "custom.custom.configuration.header" . }}
+
+N/A
+{{- end -}}

charts/stable/littlelink-server/templates/NOTES.txt

@@ -0,0 +1 @@
+{{- include "common.notes.defaultNotes" . -}}

charts/stable/littlelink-server/templates/common.yaml

@@ -0,0 +1 @@
+{{ include "common.all" . }}

charts/stable/littlelink-server/values.yaml

@@ -0,0 +1,73 @@
+#
+# IMPORTANT NOTE
+#
+# This chart inherits from our common library chart. You can check the default values/options here:
+# https://github.com/k8s-at-home/library-charts/tree/main/charts/stable/common/values.yaml
+#
+
+image:
+  # -- image repository
+  repository: ghcr.io/techno-tim/littlelink-server
+  # -- image tag
+  tag: latest
+  # -- image pull policy
+  pullPolicy: IfNotPresent
+
+# -- environment variables. See more environment variables in the [littlelink-server documentation](https://github.com/techno-tim/littlelink-server).
+# @default -- See below
+env:
+  # -- Set the container timezone
+  TZ: UTC
+  META_TITLE: Techno Tim
+  META_DESCRIPTION: Techno Tim Link page
+  META_AUTHOR: Techno Tim
+  THEME: Dark
+  FAVICON_URL: https://pbs.twimg.com/profile_images/1286144221217316864/qIAsKOpB_200x200.jpg
+  AVATAR_URL: https://pbs.twimg.com/profile_images/1286144221217316864/qIAsKOpB_200x200.jpg
+  AVATAR_2X_URL: https://pbs.twimg.com/profile_images/1286144221217316864/qIAsKOpB_400x400.jpg
+  AVATAR_ALT: Techno Tim Profile Pic
+  NAME: TechnoTim
+  BIO: Hey! Just a place where you can connect with me!
+  GITHUB: https://github.com/timothystewart6
+  # TWITTER: https://twitter.com/TechnoTimLive
+  # INSTAGRAM: https://www.instagram.com/techno.tim
+  # YOUTUBE: https://www.youtube.com/channel/UCOk-gHyjcWZNj3Br4oxwh0A
+  # TWITCH: https://www.twitch.tv/technotim/
+  # DISCORD: https://discord.gg/DJKexrJ
+  # TIKTOK: https://www.tiktok.com/@technotim
+  # KIT: https://kit.co/TechnoTim
+  # FACEBOOK: https://facebook.com
+  # FACEBOOK_MESSENGER: https://facebook.com
+  # LINKED_IN: https://linkedin.com
+  # PRODUCT_HUNT: https://www.producthunt.com/
+  # SNAPCHAT: https://www.snapchat.com/
+  # SPOTIFY: https://www.spotify.com/
+  # REDDIT: https://www.reddit.com/
+  # MEDIUM: https://medium.com
+  # PINTEREST: https://www.pinterest.com/
+  # EMAIL: you@example.com
+  # EMAIL_ALT: you@example.com
+  # SOUND_CLOUD: https://souncloud.com
+  # FIGMA: https://figma.com
+  # TELEGRAM: https://telegram.org/
+  # TUMBLR: https://www.tumblr.com/
+  # STEAM: https://steamcommunity.com/
+  # VIMEO: https://vimeo.com/
+  # WORDPRESS: https://wordpress.com/
+  # GOODREADS: https://www.goodreads.com/
+  # SKOOB: https://www.skoob.com.br/
+  FOOTER: Thanks for stopping by!
+
+#  -- Configures service settings for the chart.
+# @default -- See values.yaml
+service:
+  main:
+    ports:
+      http:
+        port: 3000
+
+ingress:
+  # -- Enable and configure ingress settings for the chart under this key.
+  # @default -- See values.yaml
+  main:
+    enabled: false

charts/stable/miniflux/Chart.yaml

@@ -2,7 +2,7 @@ apiVersion: v2
 appVersion: 2.0.32
 description: Miniflux is a minimalist and opinionated feed reader.
 name: miniflux
-version: 4.0.0
+version: 4.1.0
 kubeVersion: ">=1.16.0-0"
 keywords:
 - miniflux
@@ -20,6 +20,6 @@ dependencies:
   repository: https://library-charts.k8s-at-home.com
   version: 4.0.0
 - name: postgresql
-  version: 10.5.3
+  version: 10.9.4
   repository: https://charts.bitnami.com/bitnami
   condition: postgresql.enabled

charts/stable/miniflux/README.md

@@ -1,6 +1,6 @@
 # miniflux
 
-![Version: 4.0.0](https://img.shields.io/badge/Version-4.0.0-informational?style=flat-square) ![AppVersion: 2.0.32](https://img.shields.io/badge/AppVersion-2.0.32-informational?style=flat-square)
+![Version: 4.1.0](https://img.shields.io/badge/Version-4.1.0-informational?style=flat-square) ![AppVersion: 2.0.32](https://img.shields.io/badge/AppVersion-2.0.32-informational?style=flat-square)
 
 Miniflux is a minimalist and opinionated feed reader.
 
@@ -18,7 +18,7 @@ Kubernetes: `>=1.16.0-0`
 
 | Repository | Name | Version |
 |------------|------|---------|
-| https://charts.bitnami.com/bitnami | postgresql | 10.5.3 |
+| https://charts.bitnami.com/bitnami | postgresql | 10.9.4 |
 | https://library-charts.k8s-at-home.com | common | 4.0.0 |
 
 ## TL;DR

charts/stable/monica/Chart.yaml

@@ -2,7 +2,7 @@ apiVersion: v2
 appVersion: 3.1.1-apache
 description: A Personal Relationship Management tool to help you organize your social life
 name: monica
-version: 6.0.0
+version: 6.1.0
 kubeVersion: ">=1.16.0-0"
 keywords:
 - crm
@@ -19,6 +19,6 @@ dependencies:
   repository: https://library-charts.k8s-at-home.com
   version: 4.0.0
 - name: mariadb
-  version: 9.3.19
+  version: 9.4.4
   repository: https://charts.bitnami.com/bitnami
   condition: mariadb.enabled

charts/stable/monica/README.md

@@ -1,6 +1,6 @@
 # monica
 
-![Version: 6.0.0](https://img.shields.io/badge/Version-6.0.0-informational?style=flat-square) ![AppVersion: 3.1.1-apache](https://img.shields.io/badge/AppVersion-3.1.1--apache-informational?style=flat-square)
+![Version: 6.1.0](https://img.shields.io/badge/Version-6.1.0-informational?style=flat-square) ![AppVersion: 3.1.1-apache](https://img.shields.io/badge/AppVersion-3.1.1--apache-informational?style=flat-square)
 
 A Personal Relationship Management tool to help you organize your social life
 
@@ -19,7 +19,7 @@ Kubernetes: `>=1.16.0-0`
 
 | Repository | Name | Version |
 |------------|------|---------|
-| https://charts.bitnami.com/bitnami | mariadb | 9.3.19 |
+| https://charts.bitnami.com/bitnami | mariadb | 9.4.4 |
 | https://library-charts.k8s-at-home.com | common | 4.0.0 |
 
 ## TL;DR

charts/stable/oauth2-proxy/Chart.yaml

@@ -1,21 +0,0 @@
-name: oauth2-proxy
-version: 5.0.6
-apiVersion: v1
-appVersion: 7.1.3
-home: https://github.com/k8s-at-home/charts/tree/master/charts/stable/oauth2-proxy
-description: A reverse proxy that provides authentication with Google, Github or other providers
-icon: https://avatars.githubusercontent.com/u/62798169?s=200&v=4
-keywords:
-- kubernetes
-- oauth
-- oauth2
-- authentication
-- google
-- github
-sources:
-- https://github.com/oauth2-proxy/oauth2-proxy
-engine: gotpl
-kubeVersion: ">=1.9.0-0"
-maintainers:
-  - name: carpenike
-    email: ryan@ryanholt.net

charts/stable/oauth2-proxy/README.md

@@ -1,256 +0,0 @@
-# oauth2-proxy
-
-![Version: 5.0.6](https://img.shields.io/badge/Version-5.0.6-informational?style=flat-square) ![AppVersion: 7.1.3](https://img.shields.io/badge/AppVersion-7.1.3-informational?style=flat-square)
-
-A reverse proxy that provides authentication with Google, Github or other providers
-
-**This chart is not maintained by the upstream project and any issues with the chart should be raised [here](https://github.com/k8s-at-home/charts/issues/new/choose)**
-
-## Source Code
-
-* <https://github.com/oauth2-proxy/oauth2-proxy>
-
-## Requirements
-
-Kubernetes: `>=1.9.0-0`
-
-## Dependencies
-
-| Repository | Name | Version |
-|------------|------|---------|
-
-## TL;DR
-
-```console
-helm repo add k8s-at-home https://k8s-at-home.com/charts/
-helm repo update
-helm install oauth2-proxy k8s-at-home/oauth2-proxy
-```
-
-## Installing the Chart
-
-To install the chart with the release name `oauth2-proxy`
-
-```console
-helm install oauth2-proxy k8s-at-home/oauth2-proxy
-```
-
-## Uninstalling the Chart
-
-To uninstall the `oauth2-proxy` deployment
-
-```console
-helm uninstall oauth2-proxy
-```
-
-The command removes all the Kubernetes components associated with the chart **including persistent volumes** and deletes the release.
-
-## Configuration
-
-Read through the [values.yaml](./values.yaml) file. It has several commented out suggested values.
-Other values may be used from the [values.yaml](https://github.com/k8s-at-home/library-charts/tree/main/charts/stable/common/values.yaml) from the [common library](https://github.com/k8s-at-home/library-charts/tree/main/charts/stable/common).
-
-Specify each parameter using the `--set key=value[,key=value]` argument to `helm install`.
-
-```console
-helm install oauth2-proxy \
-  --set env.TZ="America/New York" \
-    k8s-at-home/oauth2-proxy
-```
-
-Alternatively, a YAML file that specifies the values for the above parameters can be provided while installing the chart.
-
-```console
-helm install oauth2-proxy k8s-at-home/oauth2-proxy -f values.yaml
-```
-
-## Custom configuration
-
-### SSL Configuration
-
-See: [SSL Configuration](https://oauth2-proxy.github.io/oauth2-proxy/docs/configuration/tls).
-Use ```values.yaml``` like:
-
-```yaml
-...
-extraArgs:
-  tls-cert: /path/to/cert.pem
-  tls-key: /path/to/cert.key
-
-extraVolumes:
-  - name: ssl-cert
-    secret:
-      secretName: my-ssl-secret
-
-extraVolumeMounts:
-  - mountPath: /path/to/
-    name: ssl-cert
-...
-```
-
-With a secret called `my-ssl-secret`:
-
-```yaml
-...
-data:
-  cert.pem: AB..==
-  cert.key: CD..==
-```
-
-## Values
-
-**Important**: When deploying an application Helm chart you can add more values from our common library chart [here](https://github.com/k8s-at-home/library-charts/tree/main/charts/stable/common)
-
-| Key | Type | Default | Description |
-|-----|------|---------|-------------|
-| affinity | object | `{}` | node/pod affinities Ref: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/#affinity-and-anti-affinity |
-| authenticatedEmailsFile.enabled | bool | `false` | Enables authorize individual email addresses |
-| authenticatedEmailsFile.restricted_access | string | `""` | [email addresses](https://oauth2-proxy.github.io/oauth2-proxy/docs/configuration/oauth_provider#email-authentication) list config |
-| authenticatedEmailsFile.template | string | `""` | Name of the configmap that is handled outside of that chart It's a simpler way to maintain only one configmap (user list) instead changing it for each oauth2-proxy service. Be aware the value name in the extern config map in data needs to be named to "restricted_user_access". One email per line example: restricted_access: |-   name1@domain   name2@domain If you override the config with restricted_access it will configure a user list within this chart what takes care of the config map resource. |
-| config.clientID | string | `"XXXXXXX"` | OAuth client ID |
-| config.clientSecret | string | `"XXXXXXXX"` | OAuth client secret |
-| config.configFile | string | `"email_domains = [ \"*\" ]\nupstreams = [ \"file:///dev/null\" ]"` | google service account json contents serviceAccountJson: xxxx -- Alternatively, use an existing secret (see google-secret.yaml for required fields) existingSecret: google-secret -- custom [oauth2_proxy.cfg](https://github.com/oauth2-proxy/oauth2-proxy/blob/master/contrib/oauth2-proxy.cfg.example) contents for settings not overridable via environment nor command line |
-| config.cookieSecret | string | `"XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX"` | server specific cookie for the secret; create a new one with `openssl rand -base64 32 | head -c 32 | base64` |
-| config.existingConfig | string | `nil` | xisting Kubernetes configmap to use for the configuration file. See [config template](https://github.com/helm/charts/blob/master/stable/oauth2-proxy/templates/configmap.yaml) for the required values |
-| config.google | object | `{}` |  |
-| extraArgs | object | `{}` | key:value list of extra arguments to give the binary |
-| extraEnv | list | `[]` | key:value list of extra environment variables to give the binary |
-| extraVolumeMounts | list | `[]` | list of extra volumeMounts |
-| extraVolumes | list | `[]` | list of extra volumes |
-| htpasswdFile.enabled | bool | `false` | enable htpasswd-file option |
-| htpasswdFile.entries | object | `{}` | list of [SHA encrypted user:passwords](https://oauth2-proxy.github.io/oauth2-proxy/configuration#command-line-options) |
-| htpasswdFile.existingSecret | string | `""` | existing Kubernetes secret to use for OAuth2 htpasswd file |
-| httpScheme | string | `"http"` | `http` or `https`. `name` used for port on the deployment. `httpGet` port `name` and `scheme` used for `liveness`- and `readinessProbes`. `name` and `targetPort` used for the service. |
-| image.pullPolicy | string | `"IfNotPresent"` | Image pull policy |
-| image.repository | string | `"quay.io/oauth2-proxy/oauth2-proxy"` | Image repository |
-| image.tag | string | `"v7.1.3"` | Image tag |
-| imagePullSecrets | list | `nil` | Optionally specify an array of imagePullSecrets. Secrets must be manually created in the namespace. ref: https://kubernetes.io/docs/concepts/containers/images/#specifying-imagepullsecrets-on-a-pod |
-| ingress.annotations | object | `{}` | Ingress annotations |
-| ingress.enabled | bool | `false` | Enable Ingress |
-| ingress.extraPaths | list | `[]` | Ingress extra paths to prepend to every host configuration. Useful when configuring [custom actions with AWS ALB Ingress Controller](https://kubernetes-sigs.github.io/aws-alb-ingress-controller/guide/ingress/annotation/#actions). |
-| ingress.hosts | list | `[]` | Ingress accepted hostnames |
-| ingress.ingressClassName | string | `nil` | Set ingressClassName |
-| ingress.path | string | `"/"` | Ingress accepted path |
-| ingress.tls | list | `nil` | Ingress TLS configuration |
-| initContainers | list | `[]` | Configure init containers for pod Ref: https://kubernetes.io/docs/concepts/workloads/pods/init-containers/ |
-| livenessProbe | object | `{"enabled":true,"initialDelaySeconds":0,"timeoutSeconds":1}` | Configure Kubernetes liveness probes. Ref: https://kubernetes.io/docs/tasks/configure-pod-container/configure-liveness-readiness-probes/ Disable both when deploying with Istio 1.0 mTLS. https://istio.io/help/faq/security/#k8s-health-checks |
-| nodeSelector | object | `{}` | Node labels for pod assignment Ref: https://kubernetes.io/docs/user-guide/node-selection/ |
-| podAnnotations | object | `{}` | annotations to add to each pod |
-| podDisruptionBudget | object | `{"enabled":true,"minAvailable":1}` | PodDisruptionBudget settings Ref: https://kubernetes.io/docs/concepts/workloads/pods/disruptions/ |
-| podLabels | object | `{}` | labels to add to each pod |
-| podSecurityContext | object | `{}` |  |
-| priorityClassName | string | `""` |  |
-| proxyVarsAsSecrets | bool | `true` |  |
-| readinessProbe | object | `{"enabled":true,"initialDelaySeconds":0,"periodSeconds":10,"successThreshold":1,"timeoutSeconds":1}` | Configure Kubernetes readiness probes. |
-| replicaCount | int | `1` |  |
-| resources | object | `{}` |  |
-| securityContext | object | `{"enabled":false,"runAsNonRoot":true}` | Configure Kubernetes security context for container Ref: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/ |
-| service.annotations | object | `{}` | Service annotations for the GUI |
-| service.loadBalancerIP | string | `nil` | Loadbalance IP for the GUI |
-| service.loadBalancerSourceRanges | list | `nil` | List of IP CIDRs allowed access to load balancer (if supported) |
-| service.port | int | `80` | Kubernetes port where the GUI is exposed |
-| service.type | string | `"ClusterIP"` | Kubernetes service type for the GUI |
-| serviceAccount.annotations | object | `{}` |  |
-| serviceAccount.enabled | bool | `true` |  |
-| serviceAccount.name | string | `nil` |  |
-| tolerations | list | `[]` | Tolerations for pod assignment Ref: https://kubernetes.io/docs/concepts/configuration/taint-and-toleration/ |
-| topologySpreadConstraints | object | `{"enabled":false,"maxSkew":1,"topologyKey":"topology.kubernetes.io/zone","whenUnsatisfiable":"DoNotSchedule"}` | Configure Pod Topology Spread Constraints See https://kubernetes.io/docs/concepts/workloads/pods/pod-topology-spread-constraints/ Requires Kubernetes >= v1.16 |
-
-## Changelog
-
-All notable changes to this application Helm chart will be documented in this file but does not include changes from our common library. To read those click [here](https://github.com/k8s-at-home/library-charts/tree/main/charts/stable/common#changelog).
-
-The format is based on [Keep a Changelog](https://keepachangelog.com/en/1.0.0/), and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0.html).
-
-### [1.0.0]
-
-#### Changed
-
-- This version upgrade oauth2-proxy to v4.0.0. Please see the [changelog](https://github.com/oauth2-proxy/oauth2-proxy/blob/v4.0.0/CHANGELOG.md#v400) in order to upgrade.
-
-### [2.0.0]
-
-#### Changed
-
-- support for Kubernetes v1.16.x by way of addressing the deprecation of the Deployment object apiVersion `apps/v1beta2`.  See [the v1.16 API deprecations page](https://kubernetes.io/blog/2019/07/18/api-deprecations-in-1-16/) for more information.
-
-Due to [this issue](https://github.com/helm/helm/issues/6583) there may be errors performing a `helm upgrade`of this chart from versions earlier than 2.0.0.
-
-### [3.0.0]
-
-#### Changed
-
-- support for [EKS IAM roles for service accounts](https://docs.aws.amazon.com/eks/latest/userguide/iam-roles-for-service-accounts.html) by adding a managed service account to the chart.  This is a breaking change since the service account is enabled by default.  To disable this behaviour set `serviceAccount.enabled` to `false`
-
-### [4.0.0]
-
-#### Changed
-
-- This is a breaking change as the chart was moved to k8s-at-home. No other change on top of the 3.x.x branch.
-
-### [5.0.0]
-
-#### Changed
-
-- Not many breaking changes. See the [changelog](https://github.com/oauth2-proxy/oauth2-proxy/releases/tag/v7.0.0) for oauth2-proxy, specifically the section "Breaking Changes" for a few configuration changes, particularly to do with the Azure provider.
-
-### [5.0.1]
-
-#### Added
-
-- N/A
-
-#### Changed
-
-- Use helm-docs
-
-#### Removed
-
-- N/A
-
-### [5.0.4]
-
-#### Added
-
-- Added icon url.
-
-#### Changed
-
-- N/A
-
-#### Removed
-
-- N/A
-
-### [5.0.5]
-
-#### Fixed
-
-- Update oauth2-proxy website URLs.
-
-### [5.0.6]
-
-#### Added
-
-- N/A
-
-#### Changed
-
-- This version upgrade oauth2-proxy to 7.1.3. Please see the [changelog](https://github.com/oauth2-proxy/oauth2-proxy/blob/v7.1.3/CHANGELOG.md) in order to upgrade.
-
-#### Removed
-
-- N/A
-
-[5.0.4]: #5.0.4
-[5.0.1]: #5.0.1
-
-## Support
-
-- See the [Docs](https://docs.k8s-at-home.com/our-helm-charts/getting-started/)
-- Open an [issue](https://github.com/k8s-at-home/charts/issues/new/choose)
-- Ask a [question](https://github.com/k8s-at-home/organization/discussions)
-- Join our [Discord](https://discord.gg/sTMX7Vh) community
-
-----------------------------------------------
-Autogenerated from chart metadata using [helm-docs v1.5.0](https://github.com/norwoodj/helm-docs/releases/v1.5.0)

charts/stable/oauth2-proxy/README_CHANGELOG.md.gotmpl

@@ -1,94 +0,0 @@
-{{- define "custom.changelog.header" -}}
-## Changelog
-{{- end -}}
-
-{{- define "custom.changelog" -}}
-{{ template "custom.changelog.header" . }}
-
-All notable changes to this application Helm chart will be documented in this file but does not include changes from our common library. To read those click [here](https://github.com/k8s-at-home/library-charts/tree/main/charts/stable/common#changelog).
-
-The format is based on [Keep a Changelog](https://keepachangelog.com/en/1.0.0/), and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0.html).
-
-### [1.0.0]
-
-#### Changed
-
-- This version upgrade oauth2-proxy to v4.0.0. Please see the [changelog](https://github.com/oauth2-proxy/oauth2-proxy/blob/v4.0.0/CHANGELOG.md#v400) in order to upgrade.
-
-### [2.0.0]
-
-#### Changed
-
-- support for Kubernetes v1.16.x by way of addressing the deprecation of the Deployment object apiVersion `apps/v1beta2`.  See [the v1.16 API deprecations page](https://kubernetes.io/blog/2019/07/18/api-deprecations-in-1-16/) for more information.
-
-Due to [this issue](https://github.com/helm/helm/issues/6583) there may be errors performing a `helm upgrade`of this chart from versions earlier than 2.0.0.
-
-### [3.0.0]
-
-#### Changed
-
-- support for [EKS IAM roles for service accounts](https://docs.aws.amazon.com/eks/latest/userguide/iam-roles-for-service-accounts.html) by adding a managed service account to the chart.  This is a breaking change since the service account is enabled by default.  To disable this behaviour set `serviceAccount.enabled` to `false`
-
-### [4.0.0]
-
-#### Changed
-
-- This is a breaking change as the chart was moved to k8s-at-home. No other change on top of the 3.x.x branch.
-
-### [5.0.0]
-
-#### Changed
-
-- Not many breaking changes. See the [changelog](https://github.com/oauth2-proxy/oauth2-proxy/releases/tag/v7.0.0) for oauth2-proxy, specifically the section "Breaking Changes" for a few configuration changes, particularly to do with the Azure provider.
-
-### [5.0.1]
-
-#### Added
-
-- N/A
-
-#### Changed
-
-- Use helm-docs
-
-#### Removed
-
-- N/A
-
-### [5.0.4]
-
-#### Added
-
-- Added icon url.
-
-#### Changed
-
-- N/A
-
-#### Removed
-
-- N/A
-
-### [5.0.5]
-
-#### Fixed
-
-- Update oauth2-proxy website URLs.
-
-### [5.0.6]
-
-#### Added
-
-- N/A
-
-#### Changed
-
-- This version upgrade oauth2-proxy to 7.1.3. Please see the [changelog](https://github.com/oauth2-proxy/oauth2-proxy/blob/v7.1.3/CHANGELOG.md) in order to upgrade.
-
-#### Removed
-
-- N/A
-
-[5.0.4]: #5.0.4
-[5.0.1]: #5.0.1
-{{- end -}}

charts/stable/oauth2-proxy/README_CONFIG.md.gotmpl

@@ -1,38 +0,0 @@
-{{- define "custom.custom.configuration.header" -}}
-## Custom configuration
-{{- end -}}
-
-{{- define "custom.custom.configuration" -}}
-{{ template "custom.custom.configuration.header" . }}
-
-### SSL Configuration
-
-See: [SSL Configuration](https://oauth2-proxy.github.io/oauth2-proxy/docs/configuration/tls).
-Use ```values.yaml``` like:
-
-```yaml
-...
-extraArgs:
-  tls-cert: /path/to/cert.pem
-  tls-key: /path/to/cert.key
-
-extraVolumes:
-  - name: ssl-cert
-    secret:
-      secretName: my-ssl-secret
-
-extraVolumeMounts:
-  - mountPath: /path/to/
-    name: ssl-cert
-...
-```
-
-With a secret called `my-ssl-secret`:
-
-```yaml
-...
-data:
-  cert.pem: AB..==
-  cert.key: CD..==
-```
-{{- end -}}

charts/stable/oauth2-proxy/ci/default-values.yaml

@@ -1 +0,0 @@
-# Leave this file empty to ensure that CI runs builds against the default configuration in values.yaml.

charts/stable/oauth2-proxy/ci/ingress-extra-paths-values.yaml

@@ -1,6 +0,0 @@
-ingress:
-  extraPaths:
-  - path: /*
-    backend:
-      serviceName: ssl-redirect
-      servicePort: use-annotation

charts/stable/oauth2-proxy/ci/pdb-values.yaml

@@ -1 +0,0 @@
-replicaCount: 2  # Enables PodDisruptionBudget which is disabled when replicaCount is 1

charts/stable/oauth2-proxy/ci/pod-security-context-values.yaml

@@ -1,4 +0,0 @@
-# Allocate a FSGroup that owns the pod’s volumes via podSecurityContext
----
-podSecurityContext:
-  fsGroup: 2000

charts/stable/oauth2-proxy/default-values.yaml

@@ -1 +0,0 @@
-# Leave this file empty to ensure that CI runs builds against the default configuration in values.yaml.

charts/stable/oauth2-proxy/pdb-values.yaml

@@ -1,2 +0,0 @@
-# Will trigger creation of pdb
-replicaCount: 2

charts/stable/oauth2-proxy/templates/NOTES.txt

@@ -1,3 +0,0 @@
-To verify that oauth2-proxy has started, run:
-
-  kubectl --namespace={{ .Release.Namespace }} get pods -l "app={{ template "oauth2-proxy.fullname" . }}"

charts/stable/oauth2-proxy/templates/_helpers.tpl

@@ -1,54 +0,0 @@
-{{/* vim: set filetype=mustache: */}}
-{{/*
-Expand the name of the chart.
-*/}}
-{{- define "oauth2-proxy.name" -}}
-{{- default .Chart.Name .Values.nameOverride | trunc 63 | trimSuffix "-" -}}
-{{- end -}}
-
-{{/*
-Create a default fully qualified app name.
-We truncate at 63 chars because some Kubernetes name fields are limited to this (by the DNS naming spec).
-If release name contains chart name it will be used as a full name.
-*/}}
-{{- define "oauth2-proxy.fullname" -}}
-{{- if .Values.fullnameOverride -}}
-{{- .Values.fullnameOverride | trunc 63 | trimSuffix "-" -}}
-{{- else -}}
-{{- $name := default .Chart.Name .Values.nameOverride -}}
-{{- if contains $name .Release.Name -}}
-{{- .Release.Name | trunc 63 | trimSuffix "-" -}}
-{{- else -}}
-{{- printf "%s-%s" .Release.Name $name | trunc 63 | trimSuffix "-" -}}
-{{- end -}}
-{{- end -}}
-{{- end -}}
-
-{{/*
-Create chart name and version as used by the chart label.
-*/}}
-{{- define "oauth2-proxy.chart" -}}
-{{- printf "%s-%s" .Chart.Name .Chart.Version | replace "+" "_" | trunc 63 | trimSuffix "-" -}}
-{{- end -}}
-
-{{/*
-Get the secret name.
-*/}}
-{{- define "oauth2-proxy.secretName" -}}
-{{- if .Values.config.existingSecret -}}
-{{- printf "%s" .Values.config.existingSecret -}}
-{{- else -}}
-{{- printf "%s" (include "oauth2-proxy.fullname" .) -}}
-{{- end -}}
-{{- end -}}
-
-{{/*
-Create the name of the service account to use
-*/}}
-{{- define "oauth2-proxy.serviceAccountName" -}}
-{{- if .Values.serviceAccount.enabled -}}
-    {{ default (include "oauth2-proxy.fullname" .) .Values.serviceAccount.name }}
-{{- else -}}
-    {{ default "default" .Values.serviceAccount.name }}
-{{- end -}}
-{{- end -}}

charts/stable/oauth2-proxy/templates/configmap-authenticated-emails-file.yaml

@@ -1,15 +0,0 @@
-{{- if .Values.authenticatedEmailsFile.enabled }}
-{{- if .Values.authenticatedEmailsFile.restricted_access }}
-apiVersion: v1
-kind: ConfigMap
-metadata:
-  labels:
-    app: {{ template "oauth2-proxy.name" . }}
-    chart: {{ template "oauth2-proxy.chart" . }}
-    heritage: {{ .Release.Service }}
-    release: {{ .Release.Name }}
-  name: {{ template "oauth2-proxy.fullname" . }}-accesslist
-data:
-  restricted_user_access: {{ .Values.authenticatedEmailsFile.restricted_access | quote }}
-{{- end }}
-{{- end }}

charts/stable/oauth2-proxy/templates/configmap-htpasswd-file.yaml

@@ -1,17 +0,0 @@
-{{- if and .Values.htpasswdFile.enabled (not .Values.htpasswdFile.existingSecret) }}
-apiVersion: v1
-kind: Secret
-metadata:
-  labels:
-    app: {{ template "oauth2-proxy.name" . }}
-    chart: {{ template "oauth2-proxy.chart" . }}
-    heritage: {{ .Release.Service }}
-    release: {{ .Release.Name }}
-  name: {{ template "oauth2-proxy.fullname" . }}-htpasswd-file
-type: Opaque
-stringData:
-  users.txt: |-
-    {{- range $entries := .Values.htpasswdFile.entries }}
-    {{ $entries }}
-    {{- end -}}
-{{- end }}

charts/stable/oauth2-proxy/templates/configmap.yaml

@@ -1,15 +0,0 @@
-{{- if not .Values.config.existingConfig }}
-{{- if .Values.config.configFile }}
-apiVersion: v1
-kind: ConfigMap
-metadata:
-  labels:
-    app: {{ template "oauth2-proxy.name" . }}
-    chart: {{ template "oauth2-proxy.chart" . }}
-    heritage: {{ .Release.Service }}
-    release: {{ .Release.Name }}
-  name: {{ template "oauth2-proxy.fullname" . }}
-data:
-  oauth2_proxy.cfg: {{ .Values.config.configFile | quote }}
-{{- end }}
-{{- end }}

charts/stable/oauth2-proxy/templates/deployment.yaml

@@ -1,222 +0,0 @@
-apiVersion: apps/v1
-kind: Deployment
-metadata:
-  labels:
-    app: {{ template "oauth2-proxy.name" . }}
-    chart: {{ template "oauth2-proxy.chart" . }}
-    heritage: {{ .Release.Service }}
-    release: {{ .Release.Name }}
-  name: {{ template "oauth2-proxy.fullname" . }}
-spec:
-  replicas: {{ .Values.replicaCount }}
-  selector:
-    matchLabels:
-      app: {{ template "oauth2-proxy.name" . }}
-      release: {{ .Release.Name }}
-  template:
-    metadata:
-      annotations:
-        checksum/config: {{ include (print $.Template.BasePath "/configmap.yaml") . | sha256sum }}
-        checksum/config-emails: {{ include (print $.Template.BasePath "/configmap-authenticated-emails-file.yaml") . | sha256sum }}
-        checksum/secret: {{ include (print $.Template.BasePath "/secret.yaml") . | sha256sum }}
-        checksum/google-secret: {{ include (print $.Template.BasePath "/google-secret.yaml") . | sha256sum }}
-{{- if .Values.htpasswdFile.enabled }}
-        checksum/htpasswd: {{ include (print $.Template.BasePath "/configmap-htpasswd-file.yaml") . | sha256sum }}
-{{- end }}
-    {{- if .Values.podAnnotations }}
-{{ toYaml .Values.podAnnotations | indent 8 }}
-    {{- end }}
-      labels:
-        app: {{ template "oauth2-proxy.name" . }}
-        release: "{{ .Release.Name }}"
-      {{- if .Values.podLabels }}
-{{ toYaml .Values.podLabels | indent 8 }}
-      {{- end }}
-    spec:
-    {{- if .Values.priorityClassName }}
-      priorityClassName: "{{ .Values.priorityClassName }}"
-    {{- end }}
-      {{- with .Values.podSecurityContext }}
-      securityContext:
-        {{- toYaml . | nindent 8 }}
-      {{- end }}
-      serviceAccountName: {{ template "oauth2-proxy.serviceAccountName" . }}
-{{- if ne (len .Values.initContainers) 0 }}
-      initContainers:
-{{ toYaml .Values.initContainers | indent 6 }}
-{{- end }}
-      containers:
-      - name: {{ .Chart.Name }}
-        image: "{{ .Values.image.repository }}:{{ .Values.image.tag }}"
-        imagePullPolicy: {{ .Values.image.pullPolicy }}
-        args:
-          - --http-address=0.0.0.0:4180
-        {{- range $key, $value := .Values.extraArgs }}
-          {{- if $value }}
-          - --{{ $key }}={{ $value }}
-          {{- else }}
-          - --{{ $key }}
-          {{- end }}
-        {{- end }}
-        {{- if or .Values.config.existingConfig .Values.config.configFile }}
-          - --config=/etc/oauth2_proxy/oauth2_proxy.cfg
-        {{- end }}
-        {{- if .Values.authenticatedEmailsFile.enabled }}
-        {{- if .Values.authenticatedEmailsFile.template }}
-          - --authenticated-emails-file=/etc/oauth2-proxy/{{ .Values.authenticatedEmailsFile.template }}
-        {{- else }}
-          - --authenticated-emails-file=/etc/oauth2-proxy/authenticated-emails-list
-        {{- end }}
-        {{- end }}
-        {{- with .Values.config.google }}
-        {{- if and .adminEmail (or .serviceAccountJson .existingSecret) }}
-          - --google-admin-email={{ .adminEmail }}
-          - --google-service-account-json=/google/service-account.json
-        {{- end }}
-        {{- end }}
-        {{- if .Values.htpasswdFile.enabled }}
-          - --htpasswd-file=/etc/oauth2_proxy/htpasswd/users.txt
-        {{- end }}
-        env:
-        {{- if .Values.proxyVarsAsSecrets }}
-        - name: OAUTH2_PROXY_CLIENT_ID
-          valueFrom:
-            secretKeyRef:
-              name:  {{ template "oauth2-proxy.secretName" . }}
-              key: client-id
-        - name: OAUTH2_PROXY_CLIENT_SECRET
-          valueFrom:
-            secretKeyRef:
-              name:  {{ template "oauth2-proxy.secretName" . }}
-              key: client-secret
-        - name: OAUTH2_PROXY_COOKIE_SECRET
-          valueFrom:
-            secretKeyRef:
-              name:  {{ template "oauth2-proxy.secretName" . }}
-              key: cookie-secret
-        {{- end }}
-        {{- if .Values.extraEnv }}
-{{ toYaml .Values.extraEnv | indent 8 }}
-        {{- end }}
-        ports:
-          - containerPort: 4180
-            name: {{ .Values.httpScheme }}
-            protocol: TCP
-{{- if .Values.livenessProbe.enabled }}
-        livenessProbe:
-          httpGet:
-            path: /ping
-            port: {{ .Values.httpScheme }}
-            scheme: {{ .Values.httpScheme | upper }}
-          initialDelaySeconds: {{ .Values.livenessProbe.initialDelaySeconds }}
-          timeoutSeconds: {{ .Values.livenessProbe.timeoutSeconds }}
-{{- end }}
-{{- if .Values.readinessProbe.enabled }}
-        readinessProbe:
-          httpGet:
-            path: /ping
-            port: {{ .Values.httpScheme }}
-            scheme: {{ .Values.httpScheme | upper }}
-          initialDelaySeconds: {{ .Values.readinessProbe.initialDelaySeconds }}
-          timeoutSeconds: {{ .Values.readinessProbe.timeoutSeconds }}
-          successThreshold: {{ .Values.readinessProbe.successThreshold }}
-          periodSeconds: {{ .Values.readinessProbe.periodSeconds }}
-{{- end }}
-        resources:
-{{ toYaml .Values.resources | indent 10 }}
-        volumeMounts:
-{{- with .Values.config.google }}
-{{- if and .adminEmail (or .serviceAccountJson .existingSecret) }}
-        - name: google-secret
-          mountPath: /google
-          readOnly: true
-{{- end }}
-{{- end }}
-{{- if or .Values.config.existingConfig .Values.config.configFile }}
-        - mountPath: /etc/oauth2_proxy
-          name: configmain
-{{- end }}
-{{- if .Values.authenticatedEmailsFile.enabled }}
-        - mountPath: /etc/oauth2-proxy
-          name: configaccesslist
-          readOnly: true
-{{- end }}
-{{- if .Values.htpasswdFile.enabled }}
-        - mountPath: /etc/oauth2_proxy/htpasswd
-          name: {{ template "oauth2-proxy.fullname" . }}-htpasswd-file
-          readOnly: true
-{{- end }}
-{{- if ne (len .Values.extraVolumeMounts) 0 }}
-{{ toYaml .Values.extraVolumeMounts | indent 8 }}
-{{- end }}
-{{- if .Values.securityContext.enabled }}
-        securityContext:
-          runAsNonRoot: {{ .Values.securityContext.runAsNonRoot }}
-{{- end}}
-      volumes:
-{{- with .Values.config.google }}
-{{- if and .adminEmail (or .serviceAccountJson .existingSecret) }}
-      - name: google-secret
-        secret:
-          secretName: {{ if .existingSecret }}{{ .existingSecret }}{{ else }} {{ template "oauth2-proxy.secretName" $ }}{{ end }}
-{{- end }}
-{{- end }}
-
-{{- if .Values.htpasswdFile.enabled }}
-      - name: {{ template "oauth2-proxy.fullname" . }}-htpasswd-file
-        secret:
-          secretName: {{ if .Values.htpasswdFile.existingSecret }}{{ .Values.htpasswdFile.existingSecret }}{{ else }} {{ template "oauth2-proxy.fullname" . }}-htpasswd-file {{ end }}
-{{- end }}
-
-{{- if or .Values.config.existingConfig .Values.config.configFile }}
-      - configMap:
-          defaultMode: 420
-          name: {{ if .Values.config.existingConfig }}{{ .Values.config.existingConfig }}{{ else }}{{ template "oauth2-proxy.fullname" . }}{{ end }}
-        name: configmain
-{{- end }}
-{{- if ne (len .Values.extraVolumes) 0 }}
-{{ toYaml .Values.extraVolumes | indent 6 }}
-{{- end }}
-{{- if .Values.authenticatedEmailsFile.enabled }}
-      - configMap:
-{{- if .Values.authenticatedEmailsFile.template }}
-          name: {{ .Values.authenticatedEmailsFile.template }}
-{{- else }}
-          name: {{ template "oauth2-proxy.fullname" . }}-accesslist
-{{- end }}
-          items:
-          - key: restricted_user_access
-{{- if .Values.authenticatedEmailsFile.template }}
-            path: {{ .Values.authenticatedEmailsFile.template }}
-{{- else }}
-            path: authenticated-emails-list
-{{- end }}
-        name: configaccesslist
-{{- end }}
-
-      {{- if .Values.imagePullSecrets }}
-      imagePullSecrets:
-{{ toYaml .Values.imagePullSecrets | indent 8 }}
-      {{- end }}
-    {{- if .Values.affinity }}
-      affinity:
-{{ toYaml .Values.affinity | indent 8 }}
-    {{- end }}
-    {{- if .Values.nodeSelector }}
-      nodeSelector:
-{{ toYaml .Values.nodeSelector | indent 8 }}
-    {{- end }}
-      tolerations:
-{{ toYaml .Values.tolerations | indent 8 }}
-{{- if semverCompare ">=1.16-0" .Capabilities.KubeVersion.GitVersion -}}
-{{- if .Values.topologySpreadConstraints.enabled }}
-      topologySpreadConstraints:
-      - labelSelector:
-          matchLabels:
-            app: {{ template "oauth2-proxy.name" . }}
-            release: "{{ .Release.Name }}"
-        maxSkew: {{ .Values.topologySpreadConstraints.maxSkew }}
-        topologyKey: {{ .Values.topologySpreadConstraints.topologyKey }}
-        whenUnsatisfiable: {{ .Values.topologySpreadConstraints.whenUnsatisfiable }}
-{{- end }}
-{{- end }}

charts/stable/oauth2-proxy/templates/google-secret.yaml

@@ -1,14 +0,0 @@
-{{- if and .Values.config.google (not .Values.config.google.existingSecret) }}
-apiVersion: v1
-kind: Secret
-metadata:
-  labels:
-    app: {{ template "oauth2-proxy.name" . }}
-    chart: {{ template "oauth2-proxy.chart" . }}
-    heritage: {{ .Release.Service }}
-    release: {{ .Release.Name }}
-  name: {{ template "oauth2-proxy.fullname" . }}-google
-type: Opaque
-data:
-  service-account.json: {{ .serviceAccountJson }}
-{{- end -}}

charts/stable/oauth2-proxy/templates/ingress.yaml

@@ -1,46 +0,0 @@
-{{- if .Values.ingress.enabled -}}
-{{- $serviceName := include "oauth2-proxy.fullname" . -}}
-{{- $servicePort := .Values.service.port -}}
-{{- $ingressPath := .Values.ingress.path -}}
-{{- $extraPaths := .Values.ingress.extraPaths -}}
-{{- if .Capabilities.APIVersions.Has "networking.k8s.io/v1beta1" -}}
-apiVersion: networking.k8s.io/v1beta1
-{{- else -}}
-apiVersion: extensions/v1beta1
-{{- end }}
-kind: Ingress
-metadata:
-  labels:
-    app: {{ template "oauth2-proxy.name" . }}
-    chart: {{ template "oauth2-proxy.chart" . }}
-    heritage: {{ .Release.Service }}
-    release: {{ .Release.Name }}
-  name: {{ template "oauth2-proxy.fullname" . }}
-{{- with .Values.ingress.annotations }}
-  annotations:
-{{ toYaml . | indent 4 }}
-{{- end }}
-spec:
-  {{- if .Capabilities.APIVersions.Has "networking.k8s.io/v1" -}}
-  {{- if .Values.ingress.ingressClassName }}
-  ingressClassName: {{ .Values.ingress.ingressClassName }}
-  {{- end }}
-  {{- end }}
-  rules:
-    {{- range $host := .Values.ingress.hosts }}
-    - host: {{ $host | quote }}
-      http:
-        paths:
-{{ if $extraPaths }}
-{{ toYaml $extraPaths | indent 10 }}
-{{- end }}
-          - path: {{ $ingressPath }}
-            backend:
-              serviceName: {{ $serviceName }}
-              servicePort: {{ $servicePort }}
-    {{- end -}}
-  {{- if .Values.ingress.tls }}
-  tls:
-{{ toYaml .Values.ingress.tls | indent 4 }}
-  {{- end -}}
-{{- end -}}

charts/stable/oauth2-proxy/templates/poddisruptionbudget.yaml

@@ -1,17 +0,0 @@
-{{- if and .Values.podDisruptionBudget.enabled (gt (.Values.replicaCount | int) 1) }}
-apiVersion: policy/v1beta1
-kind: PodDisruptionBudget
-metadata:
-  labels:
-    app: {{ template "oauth2-proxy.name" . }}
-    chart: {{ template "oauth2-proxy.chart" . }}
-    heritage: {{ .Release.Service }}
-    release: {{ .Release.Name }}
-  name: {{ template "oauth2-proxy.fullname" . }}
-spec:
-  selector:
-    matchLabels:
-      app: {{ template "oauth2-proxy.name" . }}
-      release: {{ .Release.Name }}
-  minAvailable: {{ .Values.podDisruptionBudget.minAvailable }}
-{{- end }}

charts/stable/oauth2-proxy/templates/secret.yaml

@@ -1,16 +0,0 @@
-{{- if and (not .Values.config.existingSecret) (.Values.proxyVarsAsSecrets) }}
-apiVersion: v1
-kind: Secret
-metadata:
-  labels:
-    app: {{ template "oauth2-proxy.name" . }}
-    chart: {{ template "oauth2-proxy.chart" . }}
-    heritage: {{ .Release.Service }}
-    release: {{ .Release.Name }}
-  name: {{ template "oauth2-proxy.fullname" . }}
-type: Opaque
-data:
-  cookie-secret: {{ .Values.config.cookieSecret | b64enc | quote }}
-  client-secret: {{ .Values.config.clientSecret | b64enc | quote }}
-  client-id: {{ .Values.config.clientID | b64enc | quote }}
-{{- end -}}

charts/stable/oauth2-proxy/templates/service.yaml

@@ -1,39 +0,0 @@
-apiVersion: v1
-kind: Service
-metadata:
-  labels:
-    app: {{ template "oauth2-proxy.name" . }}
-    chart: {{ template "oauth2-proxy.chart" . }}
-    release: {{ .Release.Name }}
-    heritage: {{ .Release.Service }}
-  name: {{ template "oauth2-proxy.fullname" . }}
-{{- if .Values.service.annotations }}
-  annotations:
-{{ toYaml .Values.service.annotations | indent 4 }}
-{{- end }}
-spec:
-{{- if (or (eq .Values.service.type "ClusterIP") (empty .Values.service.type)) }}
-  type: ClusterIP
-  {{- if .Values.service.clusterIP }}
-  clusterIP: {{ .Values.service.clusterIP }}
-  {{end}}
-{{- else if eq .Values.service.type "LoadBalancer" }}
-  type: {{ .Values.service.type }}
-  {{- if .Values.service.loadBalancerIP }}
-  loadBalancerIP: {{ .Values.service.loadBalancerIP }}
-  {{- end }}
-  {{- if .Values.service.loadBalancerSourceRanges }}
-  loadBalancerSourceRanges:
-{{ toYaml .Values.service.loadBalancerSourceRanges | indent 4 }}
-  {{- end -}}
-{{- else }}
-  type: {{ .Values.service.type }}
-{{- end }}
-  ports:
-    - port: {{ .Values.service.port }}
-      targetPort: {{ .Values.httpScheme }}
-      protocol: TCP
-      name: {{ .Values.httpScheme }}
-  selector:
-    app: {{ template "oauth2-proxy.name" . }}
-    release: {{ .Release.Name }}

charts/stable/oauth2-proxy/templates/serviceaccount.yaml

@@ -1,15 +0,0 @@
-{{- if or .Values.serviceAccount.enabled -}}
-apiVersion: v1
-kind: ServiceAccount
-metadata:
-  {{- with .Values.serviceAccount.annotations }}
-  annotations:
-    {{- toYaml . | nindent 4 }}
-  {{- end }}
-  labels:
-    app: {{ template "oauth2-proxy.name" . }}
-    chart: {{ template "oauth2-proxy.chart" . }}
-    release: {{ .Release.Name }}
-    heritage: {{ .Release.Service }}
-  name: {{ template "oauth2-proxy.fullname" . }}
-{{- end -}}

charts/stable/oauth2-proxy/values.yaml

@@ -1,223 +0,0 @@
-# Oauth client configuration specifics
-config:
-  # -- OAuth client ID
-  clientID: "XXXXXXX"
-  # -- OAuth client secret
-  clientSecret: "XXXXXXXX"
-  # -- server specific cookie for the secret; create a new one with `openssl rand -base64 32 | head -c 32 | base64`
-  cookieSecret: "XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX"
-  google: {}
-    # -- user impersonated by the google service account
-    # adminEmail: xxxx
-
-    # -- google service account json contents
-    # serviceAccountJson: xxxx
-
-    # -- Alternatively, use an existing secret (see google-secret.yaml for required fields)
-    # existingSecret: google-secret
-
-  # -- custom [oauth2_proxy.cfg](https://github.com/oauth2-proxy/oauth2-proxy/blob/master/contrib/oauth2-proxy.cfg.example) contents for settings not overridable via environment nor command line
-  configFile: |-
-    email_domains = [ "*" ]
-    upstreams = [ "file:///dev/null" ]
-  # Custom configuration file: oauth2_proxy.cfg
-  # configFile: |-
-  #   pass_basic_auth = false
-  #   pass_access_token = true
-
-  # -- (string)existing Kubernetes configmap to use for the configuration file. See [config template](https://github.com/helm/charts/blob/master/stable/oauth2-proxy/templates/configmap.yaml) for the required values
-  existingConfig:
-
-image:
-  # -- Image repository
-  repository: "quay.io/oauth2-proxy/oauth2-proxy"
-  # -- Image tag
-  tag: "v7.1.3"
-  # -- Image pull policy
-  pullPolicy: "IfNotPresent"
-
-# -- (list) Optionally specify an array of imagePullSecrets.
-# Secrets must be manually created in the namespace.
-# ref: https://kubernetes.io/docs/concepts/containers/images/#specifying-imagepullsecrets-on-a-pod
-imagePullSecrets:
-  # - name: myRegistryKeySecretName
-
-# -- key:value list of extra arguments to give the binary
-extraArgs: {}
-# -- key:value list of extra environment variables to give the binary
-extraEnv: []
-
-# To authorize individual email addresses
-# That is part of extraArgs but since this needs special treatment we need to do a separate section
-authenticatedEmailsFile:
-  # -- Enables authorize individual email addresses
-  enabled: false
-  # -- Name of the configmap that is handled outside of that chart
-  # It's a simpler way to maintain only one configmap (user list) instead changing it for each oauth2-proxy service.
-  # Be aware the value name in the extern config map in data needs to be named to "restricted_user_access".
-  # One email per line
-  # example:
-  # restricted_access: |-
-  #   name1@domain
-  #   name2@domain
-  # If you override the config with restricted_access it will configure a user list within this chart what takes care of the
-  # config map resource.
-  template: ""
-
-  # -- [email addresses](https://oauth2-proxy.github.io/oauth2-proxy/docs/configuration/oauth_provider#email-authentication) list config
-  restricted_access: ""
-
-service:
-  # -- Kubernetes service type for the GUI
-  type: ClusterIP
-  # -- Kubernetes port where the GUI is exposed
-  port: 80
-  # -- Service annotations for the GUI
-  annotations: {}
-  # -- (string) Loadbalance IP for the GUI
-  loadBalancerIP:
-  # -- (list) List of IP CIDRs allowed access to load balancer (if supported)
-  loadBalancerSourceRanges:
-
-## Create or use ServiceAccount
-serviceAccount:
-  ## Specifies whether a ServiceAccount should be created
-  enabled: true
-  ## The name of the ServiceAccount to use.
-  ## If not set and create is true, a name is generated using the fullname template
-  name:
-  annotations: {}
-
-ingress:
-  # -- Enable Ingress
-  enabled: false
-  # -- Ingress accepted path
-  path: /
-  # -- Ingress accepted hostnames
-  hosts: []
-  # -- Ingress extra paths to prepend to every host configuration. Useful when configuring [custom actions with AWS ALB Ingress Controller](https://kubernetes-sigs.github.io/aws-alb-ingress-controller/guide/ingress/annotation/#actions).
-  extraPaths: []
-  # - path: /*
-  #   backend:
-  #     serviceName: ssl-redirect
-  #     servicePort: use-annotation
-
-  # -- Ingress annotations
-  annotations: {}
-  #   kubernetes.io/ingress.class: nginx
-  #   kubernetes.io/tls-acme: "true"
-
-  # -- (list) Ingress TLS configuration
-  tls:
-    # Secrets must be manually created in the namespace.
-    # - secretName: chart-example-tls
-    #   hosts:
-    #     - chart-example.local
-
-  # -- (string) Set ingressClassName
-  ingressClassName:
-
-resources: {}
-  # limits:
-  #   cpu: 100m
-  #   memory: 300Mi
-  # requests:
-  #   cpu: 100m
-  #   memory: 300Mi
-
-# -- list of extra volumes
-extraVolumes: []
-  # - name: ca-bundle-cert
-  #   secret:
-  #     secretName: <secret-name>
-
-# -- list of extra volumeMounts
-extraVolumeMounts: []
-  # - mountPath: /etc/ssl/certs/
-  #   name: ca-bundle-cert
-
-priorityClassName: ""
-
-# -- node/pod affinities
-# Ref: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/#affinity-and-anti-affinity
-affinity: {}
-
-# -- Tolerations for pod assignment
-# Ref: https://kubernetes.io/docs/concepts/configuration/taint-and-toleration/
-tolerations: []
-
-# -- Node labels for pod assignment
-# Ref: https://kubernetes.io/docs/user-guide/node-selection/
-nodeSelector: {}
-
-# Whether to use secrets instead of environment values for setting up OAUTH2_PROXY variables
-proxyVarsAsSecrets: true
-
-# -- Configure Kubernetes liveness probes.
-# Ref: https://kubernetes.io/docs/tasks/configure-pod-container/configure-liveness-readiness-probes/
-# Disable both when deploying with Istio 1.0 mTLS. https://istio.io/help/faq/security/#k8s-health-checks
-livenessProbe:
-  enabled: true
-  initialDelaySeconds: 0
-  timeoutSeconds: 1
-
-# -- Configure Kubernetes readiness probes.
-readinessProbe:
-  enabled: true
-  initialDelaySeconds: 0
-  timeoutSeconds: 1
-  periodSeconds: 10
-  successThreshold: 1
-
-# -- Configure Kubernetes security context for container
-# Ref: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/
-securityContext:
-  enabled: false
-  runAsNonRoot: true
-
-# -- annotations to add to each pod
-podAnnotations: {}
-# -- labels to add to each pod
-podLabels: {}
-replicaCount: 1
-
-# -- PodDisruptionBudget settings
-# Ref: https://kubernetes.io/docs/concepts/workloads/pods/disruptions/
-podDisruptionBudget:
-  enabled: true
-  minAvailable: 1
-
-# Configure Kubernetes security context for pod
-# Ref: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/
-podSecurityContext: {}
-
-# -- Configure init containers for pod
-# Ref: https://kubernetes.io/docs/concepts/workloads/pods/init-containers/
-initContainers: []
-
-# -- `http` or `https`. `name` used for port on the deployment. `httpGet` port `name` and `scheme` used for `liveness`- and `readinessProbes`. `name` and `targetPort` used for the service.
-httpScheme: http
-
-# Additionally authenticate against a htpasswd file. Entries must be created with "htpasswd -s" for SHA encryption.
-# Alternatively supply an existing secret which contains the required information.
-htpasswdFile:
-  # -- enable htpasswd-file option
-  enabled: false
-  # -- existing Kubernetes secret to use for OAuth2 htpasswd file
-  existingSecret: ""
-  # -- list of [SHA encrypted user:passwords](https://oauth2-proxy.github.io/oauth2-proxy/configuration#command-line-options)
-  entries: {}
-  # One row for each user
-  # example:
-  # entries:
-  #  - testuser:{SHA}EWhzdhgoYJWy0z2gyzhRYlN9DSiv
-
-# -- Configure Pod Topology Spread Constraints
-# See https://kubernetes.io/docs/concepts/workloads/pods/pod-topology-spread-constraints/
-# Requires Kubernetes >= v1.16
-topologySpreadConstraints:
-  enabled: false
-  maxSkew: 1
-  # See https://kubernetes.io/docs/reference/kubernetes-api/labels-annotations-taints/
-  topologyKey: topology.kubernetes.io/zone
-  whenUnsatisfiable: DoNotSchedule

charts/stable/openemr/Chart.yaml

@@ -3,7 +3,7 @@ apiVersion: v2
 appVersion: 6.1.0
 description: OpenEMR is the most popular open source electronic health records and medical practice management solution.
 name: openemr
-version: 3.0.0
+version: 3.1.0
 kubeVersion: ">=1.16.0-0"
 keywords:
   - openemr
@@ -23,6 +23,6 @@ dependencies:
     repository: https://library-charts.k8s-at-home.com
     version: 4.0.0
   - name: mariadb
-    version: 9.3.19
+    version: 9.4.4
     repository: https://charts.bitnami.com/bitnami
     condition: mariadb.enabled

charts/stable/openemr/README.md

@@ -1,6 +1,6 @@
 # openemr
 
-![Version: 3.0.0](https://img.shields.io/badge/Version-3.0.0-informational?style=flat-square) ![AppVersion: 6.1.0](https://img.shields.io/badge/AppVersion-6.1.0-informational?style=flat-square)
+![Version: 3.1.0](https://img.shields.io/badge/Version-3.1.0-informational?style=flat-square) ![AppVersion: 6.1.0](https://img.shields.io/badge/AppVersion-6.1.0-informational?style=flat-square)
 
 OpenEMR is the most popular open source electronic health records and medical practice management solution.
 
@@ -18,7 +18,7 @@ Kubernetes: `>=1.16.0-0`
 
 | Repository | Name | Version |
 |------------|------|---------|
-| https://charts.bitnami.com/bitnami | mariadb | 9.3.19 |
+| https://charts.bitnami.com/bitnami | mariadb | 9.4.4 |
 | https://library-charts.k8s-at-home.com | common | 4.0.0 |
 
 ## TL;DR

charts/stable/openkm/Chart.yaml

@@ -2,7 +2,7 @@ apiVersion: v2
 appVersion: 1.0.0
 description: OpenKM integrates all essential documents management, collaboration and an advanced search functionality into one easy to use solution.
 name: openkm
-version: 2.0.0
+version: 2.1.0
 kubeVersion: ">=1.16.0-0"
 keywords:
 - openkm
@@ -21,10 +21,10 @@ dependencies:
   repository: https://library-charts.k8s-at-home.com
   version: 4.0.0
 - name: postgresql
-  version: 10.5.3
+  version: 10.9.4
   repository: https://charts.bitnami.com/bitnami
   condition: postgresql.enabled
 - name: mariadb
-  version: 9.3.19
+  version: 9.4.4
   repository: https://charts.bitnami.com/bitnami
   condition: mariadb.enabled

charts/stable/openkm/README.md

@@ -1,6 +1,6 @@
 # openkm
 
-![Version: 2.0.0](https://img.shields.io/badge/Version-2.0.0-informational?style=flat-square) ![AppVersion: 1.0.0](https://img.shields.io/badge/AppVersion-1.0.0-informational?style=flat-square)
+![Version: 2.1.0](https://img.shields.io/badge/Version-2.1.0-informational?style=flat-square) ![AppVersion: 1.0.0](https://img.shields.io/badge/AppVersion-1.0.0-informational?style=flat-square)
 
 OpenKM integrates all essential documents management, collaboration and an advanced search functionality into one easy to use solution.
 
@@ -19,8 +19,8 @@ Kubernetes: `>=1.16.0-0`
 
 | Repository | Name | Version |
 |------------|------|---------|
-| https://charts.bitnami.com/bitnami | mariadb | 9.3.19 |
-| https://charts.bitnami.com/bitnami | postgresql | 10.5.3 |
+| https://charts.bitnami.com/bitnami | mariadb | 9.4.4 |
+| https://charts.bitnami.com/bitnami | postgresql | 10.9.4 |
 | https://library-charts.k8s-at-home.com | common | 4.0.0 |
 
 ## TL;DR

charts/stable/plex/Chart.yaml

@@ -1,8 +1,8 @@
 apiVersion: v2
-appVersion: v1.23.2.4656-85f0adf5b
+appVersion: v1.24.1.4931-1a38e63c6
 description: Plex Media Server
 name: plex
-version: 6.0.0
+version: 6.0.1
 kubeVersion: ">=1.16.0-0"
 keywords:
 - plex

charts/stable/plex/README.md

@@ -1,6 +1,6 @@
 # plex
 
-![Version: 6.0.0](https://img.shields.io/badge/Version-6.0.0-informational?style=flat-square) ![AppVersion: v1.23.2.4656-85f0adf5b](https://img.shields.io/badge/AppVersion-v1.23.2.4656--85f0adf5b-informational?style=flat-square)
+![Version: 6.0.1](https://img.shields.io/badge/Version-6.0.1-informational?style=flat-square) ![AppVersion: v1.24.1.4931-1a38e63c6](https://img.shields.io/badge/AppVersion-v1.24.1.4931--1a38e63c6-informational?style=flat-square)
 
 Plex Media Server
 
@@ -81,7 +81,7 @@ N/A
 | hostNetwork | bool | `false` | Enable devices to be discoverable |
 | image.pullPolicy | string | `"IfNotPresent"` | image pull policy |
 | image.repository | string | `"ghcr.io/k8s-at-home/plex"` | image repository |
-| image.tag | string | `"v1.23.2.4656-85f0adf5b"` | image tag |
+| image.tag | string | `"v1.24.1.4931-1a38e63c6"` | image tag |
 | ingress.main | object | See values.yaml | Enable and configure ingress settings for the chart under this key. |
 | persistence | object | See values.yaml | Configure persistence settings for the chart under this key. |
 | podSecurityContext | object | `{}` | Configure the Security Context for the Pod |

charts/stable/plex/values.yaml

@@ -9,7 +9,7 @@ image:
   # -- image repository
   repository: ghcr.io/k8s-at-home/plex
   # -- image tag
-  tag: v1.23.2.4656-85f0adf5b
+  tag: v1.24.1.4931-1a38e63c6
   # -- image pull policy
   pullPolicy: IfNotPresent
 

charts/stable/powerdns/Chart.yaml

@@ -2,7 +2,7 @@ apiVersion: v2
 appVersion: v4.3.1
 description: PowerDNS is a DNS server, written in C++ and licensed under the GPL. It runs on most Unix derivatives. PowerDNS features a large number of different backends ranging from simple BIND style zonefiles to relational databases and load balancing/failover algorithms. A DNS recursor is provided as a separate program.
 name: powerdns
-version: 3.3.2
+version: 3.4.0
 home: https://github.com/k8s-at-home/charts/tree/master/charts/stable/powerdns
 sources:
   - http://www.github.com/PowerDNS/
@@ -12,10 +12,10 @@ maintainers:
     email: ryan@ryanholt.net
 dependencies:
   - name: postgresql
-    version: 10.5.3
+    version: 10.9.4
     repository: https://charts.bitnami.com/bitnami
     condition: postgresql.enabled
   - name: mariadb
-    version: 9.3.19
+    version: 9.4.4
     repository: https://charts.bitnami.com/bitnami
     condition: mariadb.enabled

charts/stable/powerdns/README.md

@@ -1,6 +1,6 @@
 # powerdns
 
-![Version: 3.3.2](https://img.shields.io/badge/Version-3.3.2-informational?style=flat-square) ![AppVersion: v4.3.1](https://img.shields.io/badge/AppVersion-v4.3.1-informational?style=flat-square)
+![Version: 3.4.0](https://img.shields.io/badge/Version-3.4.0-informational?style=flat-square) ![AppVersion: v4.3.1](https://img.shields.io/badge/AppVersion-v4.3.1-informational?style=flat-square)
 
 PowerDNS is a DNS server, written in C++ and licensed under the GPL. It runs on most Unix derivatives. PowerDNS features a large number of different backends ranging from simple BIND style zonefiles to relational databases and load balancing/failover algorithms. A DNS recursor is provided as a separate program.
 
@@ -16,8 +16,8 @@ PowerDNS is a DNS server, written in C++ and licensed under the GPL. It runs on
 
 | Repository | Name | Version |
 |------------|------|---------|
-| https://charts.bitnami.com/bitnami | mariadb | 9.3.19 |
-| https://charts.bitnami.com/bitnami | postgresql | 10.5.3 |
+| https://charts.bitnami.com/bitnami | mariadb | 9.4.4 |
+| https://charts.bitnami.com/bitnami | postgresql | 10.9.4 |
 
 ## TL;DR
 

charts/stable/searx/Chart.yaml

@@ -2,7 +2,7 @@ apiVersion: v2
 appVersion: 1.0.0
 description: Searx is a privacy-respecting, hackable metasearch engine
 name: searx
-version: 5.0.0
+version: 5.1.0
 kubeVersion: ">=1.16.0-0"
 keywords:
 - searx

charts/stable/searx/README.md

@@ -1,6 +1,6 @@
 # searx
 
-![Version: 5.0.0](https://img.shields.io/badge/Version-5.0.0-informational?style=flat-square) ![AppVersion: 1.0.0](https://img.shields.io/badge/AppVersion-1.0.0-informational?style=flat-square)
+![Version: 5.1.0](https://img.shields.io/badge/Version-5.1.0-informational?style=flat-square) ![AppVersion: 1.0.0](https://img.shields.io/badge/AppVersion-1.0.0-informational?style=flat-square)
 
 Searx is a privacy-respecting, hackable metasearch engine
 
@@ -77,6 +77,7 @@ N/A
 
 | Key | Type | Default | Description |
 |-----|------|---------|-------------|
+| caddy.noTls | bool | `false` | caddy sidecar disable auto tls if behind another loadbalancer or ingress |
 | caddy.pullPolicy | string | `"IfNotPresent"` | caddy sidecar image pull policy |
 | caddy.repository | string | `"caddy"` | caddy sidecar image repository |
 | caddy.tag | string | `"2.2.0-alpine"` | caddy sidecar image tag |
@@ -85,7 +86,7 @@ N/A
 | filtron.tag | string | `"latest"` | filtron sidecar image tag |
 | image.pullPolicy | string | `"IfNotPresent"` | image pull policy |
 | image.repository | string | `"searx/searx"` | image repository |
-| image.tag | string | `"1.0.0"` | image tag |
+| image.tag | string | `"1.0.0-211-968b2899"` | image tag |
 | ingress.main | object | See values.yaml | Enable and configure ingress settings for the chart under this key. |
 | morty.pullPolicy | string | `"Always"` | morty sidecar image pull policy |
 | morty.repository | string | `"dalf/morty"` | morty sidecar image repository |
@@ -94,9 +95,6 @@ N/A
 | searx.baseUrl | string | `"https://searx.DOMAIN"` | External URL where the application is reachable |
 | searx.existingSecret | string | `nil` | Specify an existing secret that contains the environment variables required for the application configuration. |
 | searx.mortyKey | string | `"changeme"` | Generate a random key used by Morty (Privacy aware web content sanitizer proxy as a service). Example : `openssl rand -base64 24` |
-| searxChecker.pullPolicy | string | `"Always"` | searx-checker sidecar image pull policy |
-| searxChecker.repository | string | `"searx/searx-checker"` | searx-checker sidecar image repository |
-| searxChecker.tag | string | `"latest"` | searx-checker sidecar image tag |
 | service | object | See values.yaml | Configures service settings for the chart. |
 
 ## Changelog
@@ -105,6 +103,14 @@ All notable changes to this application Helm chart will be documented in this fi
 
 The format is based on [Keep a Changelog](https://keepachangelog.com/en/1.0.0/), and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0.html).
 
+### [5.1.0]
+
+#### Changed
+
+- Removed searx-checker container from Helm chart because it's integrated into Searx.
+- Added the `caddy.noTls` option to disable automatic Let's Encrypt certificates for situations where Searx is running behind another Ingress controller that handles certificates.
+- Changed image tag to `1.0.0-211-968b2899`.
+
 ### [5.0.0]
 
 #### Changed

charts/stable/searx/README_CHANGELOG.md.gotmpl

@@ -9,6 +9,15 @@ All notable changes to this application Helm chart will be documented in this fi
 
 The format is based on [Keep a Changelog](https://keepachangelog.com/en/1.0.0/), and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0.html).
 
+### [5.1.0]
+
+#### Changed
+
+- Removed searx-checker container from Helm chart because it's integrated into Searx.
+- Added the `caddy.noTls` option to disable automatic Let's Encrypt certificates for situations where Searx is running behind another Ingress controller that handles certificates.
+- Changed image tag to `1.0.0-211-968b2899`.
+
+
 ### [5.0.0]
 
 #### Changed

charts/stable/searx/templates/common.yaml

@@ -19,11 +19,6 @@ persistence:
       configMap:
         name: {{ printf "%v-config" (include "common.names.fullname" .) }}
 
-  searx-checker:
-    enabled: true
-    type: emptyDir
-    mountPath: "-"
-
 additionalContainers:
   caddy:
     name: caddy
@@ -36,18 +31,6 @@ additionalContainers:
     - name: searx-config
       mountPath: /etc/caddy/Caddyfile
       subPath: Caddyfile
-    - name: searx-checker
-      mountPath: /srv/searx-checker
-
-  searx-checker:
-    name: searx-checker
-    image: "{{ .Values.searxChecker.repository }}:{{ .Values.searxChecker.tag }}"
-    imagePullPolicy: {{ .Values.searxChecker.pullPolicy }}
-    args:
-      ["-cron", "-o", "html/data/status.json", "http://localhost:8080"]
-    volumeMounts:
-    - name: searx-checker
-      mountPath: /usr/local/searx-checker/html/data
 
   filtron:
     name: filtron

charts/stable/searx/templates/configmap.yaml

@@ -10,35 +10,38 @@ data:
   Caddyfile: |-
     {
       admin off
+    {{- if .Values.caddy.noTls }}
+      auto_https off
+    {{- end }}
     }
 
     :80 {
-      log {
+        log {
             output discard
-      }
+        }
 
-      @api {
+        @api {
             path /config
-        path /status
-      }
+            path /status
+        }
 
-      @static {
+        @static {
             path /static/*
-      }
+        }
 
-      @notstatic {
+        @notstatic {
             not path /static/*
-      }
+        }
 
-      @morty {
+        @morty {
             path /morty/*
-      }
+        }
 
-      @notmorty {
+        @notmorty {
             not path /morty/*
-      }
+        }
 
-      header {
+        header {
             # Enable HTTP Strict Transport Security (HSTS) to force clients to always connect via HTTPS
             Strict-Transport-Security "max-age=31536000; includeSubDomains; preload"
 
@@ -52,6 +55,9 @@ data:
             X-Frame-Options "SAMEORIGIN"
 
             # Disable some features
+            Permissions-Policy "accelerometer=();ambient-light-sensor=(); autoplay=();camera=();encrypted-media=();focus-without-user-activation=(); geolocation=();gyroscope=();magnetometer=();microphone=();midi=();payment=();picture-in-picture=(); speaker=();sync-xhr=();usb=();vr=()"
+
+            # Disable some features (legacy)
             Feature-Policy "accelerometer 'none';ambient-light-sensor 'none'; autoplay 'none';camera 'none';encrypted-media 'none';focus-without-user-activation 'none'; geolocation 'none';gyroscope 'none';magnetometer 'none';microphone 'none';midi 'none';payment 'none';picture-in-picture 'none'; speaker 'none';sync-xhr 'none';usb 'none';vr 'none'"
 
             # Referer
@@ -62,60 +68,52 @@ data:
 
             # Remove Server header
             -Server
-      }
+        }
 
-      header @api {
+        header @api {
             Access-Control-Allow-Methods "GET, OPTIONS"
             Access-Control-Allow-Origin  "*"
-      }
+        }
 
-      # Cache
-      header @static {
+        # Cache
+        header @static {
             # Cache
-        Cache-Control "public, max-age=31536000"
-        defer
-      }
+            Cache-Control "public, max-age=31536000"
+            defer
+        }
 
-      header @notstatic {
+        header @notstatic {
             # No Cache
             Cache-Control "no-cache, no-store"
             Pragma "no-cache"
-      }
+        }
 
-      # CSP (see http://content-security-policy.com/ )
-      header @morty {
-        Content-Security-Policy "default-src 'none'; style-src 'self' 'unsafe-inline'; form-action 'self'; frame-ancestors 'self'; base-uri 'self'; img-src 'self' data:; font-src 'self'; frame-src 'self'"
-      }
+        # CSP (see http://content-security-policy.com/ )
+        header @morty {
+            Content-Security-Policy "default-src 'none'; style-src 'self' 'unsafe-inline'; form-action 'self'; frame-ancestors 'self'; base-uri 'self'; img-src 'self' data:; font-src 'self'; frame-src 'self'"
+        }
 
-      header @notmorty {
+        header @notmorty {
             Content-Security-Policy "upgrade-insecure-requests; default-src 'none'; script-src 'self'; style-src 'self' 'unsafe-inline'; form-action 'self'; font-src 'self'; frame-ancestors 'self'; base-uri 'self'; connect-src 'self' https://overpass-api.de; img-src 'self' data: https://*.tile.openstreetmap.org; frame-src https://www.youtube-nocookie.com https://player.vimeo.com https://www.dailymotion.com https://www.deezer.com https://www.mixcloud.com https://w.soundcloud.com https://embed.spotify.com"
-      }
+        }
 
-      # Searx-Checker
-      uri replace /status /searx-checker/status.json
-      handle /searx-checker/status.json {
-            root * /srv
-            file_server
-      }
-
-      # Morty
-      handle @morty {
+        # Morty
+        handle @morty {
             reverse_proxy localhost:3000
-      }
+        }
 
-      # Filtron
-      handle {
+        # Filtron
+        handle {
             encode zstd gzip
 
             reverse_proxy localhost:4040 {
-                   header_up X-Forwarded-Port {http.request.port}
-                   header_up X-Forwarded-Proto {http.request.scheme}
-                   header_up X-Forwarded-TlsProto {tls_protocol}
-                   header_up X-Forwarded-TlsCipher {tls_cipher}
-                   header_up X-Forwarded-HttpsProto {proto}
+                header_up X-Forwarded-Port {http.request.port}
+                header_up X-Forwarded-Proto {http.request.scheme}
+                header_up X-Forwarded-TlsProto {tls_protocol}
+                header_up X-Forwarded-TlsCipher {tls_cipher}
+                header_up X-Forwarded-HttpsProto {proto}
             }
-      }
-
+        }
     }
   rules.json: |-
     [
@@ -238,7 +236,7 @@ data:
                     "aggregations": ["Header:X-Forwarded-For"],
                     "actions": [
                         {"name": "block",
-            "params": {"message": "Rate limit exceeded, try again later."}}
+                        "params": {"message": "Rate limit exceeded, try again later."}}
                     ]
                 },
                 {
@@ -260,7 +258,7 @@ data:
                     "actions": [
                         {"name": "block",
                         "params": {"message": "Rate limit exceeded, try again later."}}
-        ]
+                    ]
                 }
             ]
         }

charts/stable/searx/values.yaml

@@ -9,7 +9,7 @@ image:
   # -- image repository
   repository: searx/searx
   # -- image tag
-  tag: 1.0.0
+  tag: 1.0.0-211-968b2899
   # -- image pull policy
   pullPolicy: IfNotPresent
 
@@ -23,14 +23,6 @@ searx:
   # Example : `openssl rand -base64 24`
   mortyKey: "changeme"
 
-searxChecker:
-  # -- searx-checker sidecar image repository
-  repository: searx/searx-checker
-  # -- searx-checker sidecar image tag
-  tag: latest
-  # -- searx-checker sidecar image pull policy
-  pullPolicy: Always
-
 filtron:
   # -- filtron sidecar image repository
   repository: dalf/filtron
@@ -54,6 +46,8 @@ caddy:
   tag: 2.2.0-alpine
   # -- caddy sidecar image pull policy
   pullPolicy: IfNotPresent
+  # -- caddy sidecar disable auto tls if behind another loadbalancer or ingress
+  noTls: false
 
 # -- Configures service settings for the chart.
 # @default -- See values.yaml

charts/stable/shlink/Chart.yaml

@@ -2,7 +2,7 @@ apiVersion: v2
 appVersion: 2.7.1
 description: A self-hosted and PHP-based URL shortener application with CLI and REST interfaces
 name: shlink
-version: 3.0.0
+version: 3.1.0
 kubeVersion: ">=1.16.0-0"
 keywords:
   - shlink
@@ -19,10 +19,10 @@ dependencies:
     repository: https://library-charts.k8s-at-home.com
     version: 4.0.0
   - name: postgresql
-    version: 10.5.3
+    version: 10.9.4
     repository: https://charts.bitnami.com/bitnami
     condition: postgresql.enabled
   - name: mariadb
-    version: 9.3.19
+    version: 9.4.4
     repository: https://charts.bitnami.com/bitnami
     condition: mariadb.enabled

charts/stable/shlink/README.md

@@ -1,6 +1,6 @@
 # shlink
 
-![Version: 3.0.0](https://img.shields.io/badge/Version-3.0.0-informational?style=flat-square) ![AppVersion: 2.7.1](https://img.shields.io/badge/AppVersion-2.7.1-informational?style=flat-square)
+![Version: 3.1.0](https://img.shields.io/badge/Version-3.1.0-informational?style=flat-square) ![AppVersion: 2.7.1](https://img.shields.io/badge/AppVersion-2.7.1-informational?style=flat-square)
 
 A self-hosted and PHP-based URL shortener application with CLI and REST interfaces
 
@@ -18,8 +18,8 @@ Kubernetes: `>=1.16.0-0`
 
 | Repository | Name | Version |
 |------------|------|---------|
-| https://charts.bitnami.com/bitnami | mariadb | 9.3.19 |
-| https://charts.bitnami.com/bitnami | postgresql | 10.5.3 |
+| https://charts.bitnami.com/bitnami | mariadb | 9.4.4 |
+| https://charts.bitnami.com/bitnami | postgresql | 10.9.4 |
 | https://library-charts.k8s-at-home.com | common | 4.0.0 |
 
 ## TL;DR