[jackett] Migrate to media-common (#50 )

* [jackett] Migrate to media-common * [jackett] Rename alias * [jackett] Process review comments
[nzbget] Migrate to media-common (#49 )
2020-09-21 09:36:29 -04:00 · 2020-09-19 09:03:23 -04:00 · 2020-09-15 11:25:35 -04:00 · 2020-09-15 08:28:32 -04:00 · 2020-09-13 20:39:15 -04:00 · 2020-09-13 12:20:04 -05:00
56 changed files with 1439 additions and 1152 deletions
--- a/.gitignore
+++ b/.gitignore
@@ -1,4 +1,4 @@
 .env
 .idea
 charts/*/Chart.lock
-charts/*/charts
+charts/*/charts
--- a/README.md
+++ b/README.md
@@ -3,7 +3,7 @@
 [![License](https://img.shields.io/badge/License-Apache%202.0-blue.svg)](https://opensource.org/licenses/Apache-2.0)
 [![](https://github.com/k8s-at-home/charts/workflows/Release%20Charts/badge.svg?branch=master)](https://github.com/k8s-at-home/charts/actions)
 [![pre-commit](https://img.shields.io/badge/pre--commit-enabled-brightgreen?logo=pre-commit&logoColor=white)](https://github.com/pre-commit/pre-commit)
-
+[![Artifact HUB](https://img.shields.io/endpoint?url=https://artifacthub.io/badge/repository/k8s-at-home)](https://artifacthub.io/packages/search?repo=k8s-at-home)
 ## Usage

 [Helm](https://helm.sh) must be installed to use the charts.
--- a/charts/README.templates.md.gotmpl
+++ b/charts/README.templates.md.gotmpl
@@ -0,0 +1,72 @@
+{{- define "repository.organization" -}}
+  k8s-at-home
+{{- end -}}
+
+{{- define "repository.url" -}}
+  https://github.com/k8s-at-home/charts
+{{- end -}}
+
+{{- define "helm.url" -}}
+  https://k8s-at-home.com/charts/
+{{- end -}}
+
+{{- define "helm.path" -}}
+    {{ template "repository.organization" . }}/{{ template "chart.name" . }}
+{{- end -}}
+{{- define "badge.artifactHub" -}}
+  [![ArtifactHub](https://img.shields.io/endpoint?url=https://artifacthub.io/badge/repository/{{ template "chart.name" . }})](https://artifacthub.io/packages/helm/{{ template "chart.name" . }})
+{{- end -}}
+{{- define "description.multiarch" -}}
+The default values and container images used in this chart will allow for running in a multi-arch cluster (amd64, arm, arm64)
+{{- end -}}
+
+{{- define "install.tldr" -}}
+## TL;DR
+```console
+$ helm repo add {{ template "repository.organization" . }} {{ template "helm.url" . }}
+$ helm install {{ template "helm.path" . }}
+```
+{{- end -}}
+
+{{- define "install" -}}
+## Installing the Chart
+To install the chart with the release name `{{ template "chart.name" . }}`:
+```console
+helm install {{ template "chart.name" . }} {{ template "helm.path" . }}
+```
+{{- end -}}
+
+{{- define "uninstall" -}}
+## Uninstalling the Chart
+To uninstall the `{{ template "chart.name" . }}` deployment:
+```console
+helm uninstall {{ template "chart.name" . }}
+```
+The command removes all the Kubernetes components associated with the chart and deletes the release.
+{{- end -}}
+
+{{- define "configuration.header" -}}
+## Configuration
+{{- end -}}
+
+{{- define "configuration.readValues" -}}
+Read through the [values.yaml]({{ template "repository.url" . }}/blob/master/charts/{{ template "chart.name" . }}/values.yaml)
+file. It has several commented out suggested values.
+{{- end -}}
+
+{{- define "configuration.example.set" -}}
+Specify each parameter using the `--set key=value[,key=value]` argument to `helm install`. For example,
+```console
+helm install {{ template "chart.name" . }} \
+  --set env.TZ="America/New York" \
+    {{ template "helm.path" . }}
+```
+{{- end -}}
+
+{{- define "configuration.example.file" -}}
+Alternatively, a YAML file that specifies the values for the above parameters can be provided while installing the chart.
+For example,
+```console
+helm install {{ template "chart.name" . }} {{ template "helm.path" . }} --values values.yaml
+```
+{{- end -}}
--- a/charts/jackett/Chart.yaml
+++ b/charts/jackett/Chart.yaml
@@ -2,7 +2,7 @@ apiVersion: v2
 appVersion: v0.16.1045
 description: API Support for your favorite torrent trackers
 name: jackett
-version: 3.1.0
+version: 4.0.0
 keywords:
  - jackett
  - torrent
@@ -14,3 +14,8 @@ sources:
 maintainers:
  - name: billimek
    email: jeff@billimek.com
+dependencies:
+  - name: media-common
+    repository: https://k8s-at-home.com/charts/
+    version: ^1.0.0
+    alias: jackett
--- a/charts/jackett/README.md
+++ b/charts/jackett/README.md
@@ -28,82 +28,35 @@ helm delete my-release --purge
 The command removes all the Kubernetes components associated with the chart and deletes the release.

 ## Configuration
-
-The following tables lists the configurable parameters of the Sentry chart and their default values.
-
-| Parameter                                    | Description                                                                                                                                                                        | Default               |
-| -------------------------------------------- | ---------------------------------------------------------------------------------------------------------------------------------------------------------------------------------- | --------------------- |
-| `image.repository`                           | Image repository                                                                                                                                                                   | `linuxserver/jackett` |
-| `image.tag`                                  | Image tag. Possible values listed [here](https://hub.docker.com/r/linuxserver/jackett/tags/).                                                                                      | `v0.12.1132-ls37`     |
-| `image.pullPolicy`                           | Image pull policy                                                                                                                                                                  | `IfNotPresent`        |
-| `strategyType`                               | Specifies the strategy used to replace old Pods by new ones                                                                                                                        | `Recreate`            |
-| `timezone`                                   | Timezone the Jackett instance should run as, e.g. 'America/New_York'                                                                                                               | `UTC`                 |
-| `puid`                                       | process userID the Jackett instance should run as                                                                                                                                  | `1001`                |
-| `pgid`                                       | process groupID the Jackett instance should run as                                                                                                                                 | `1001`                |
-| `probes.liveness.failureThreshold`           | Specify liveness `failureThreshold` parameter for the deployment                                                                                                                   | `5`                   |
-| `probes.liveness.periodSeconds`              | Specify liveness `periodSeconds` parameter for the deployment                                                                                                                      | `10`                  |
-| `probes.readiness.failureThreshold`          | Specify readiness `failureThreshold` parameter for the deployment                                                                                                                  | `5`                   |
-| `probes.readiness.periodSeconds`             | Specify readiness `periodSeconds` parameter for the deployment                                                                                                                     | `10`                  |
-| `probes.startup.initialDelaySeconds`         | Specify startup `initialDelaySeconds` parameter for the deployment                                                                                                                 | `5`                   |
-| `probes.startup.failureThreshold`            | Specify startup `failureThreshold` parameter for the deployment                                                                                                                    | `30`                  |
-| `probes.startup.periodSeconds`               | Specify startup `periodSeconds` parameter for the deployment                                                                                                                       | `10`                  |
-| `Service.type`                               | Kubernetes service type for the Jackett GUI                                                                                                                                        | `ClusterIP`           |
-| `Service.port`                               | Kubernetes port where the Jackett GUI is exposed                                                                                                                                   | `9117`                |
-| `Service.annotations`                        | Service annotations for the Jackett GUI                                                                                                                                            | `{}`                  |
-| `Service.labels`                             | Custom labels                                                                                                                                                                      | `{}`                  |
-| `Service.loadBalancerIP`                     | Loadbalance IP for the Jackett GUI                                                                                                                                                 | `{}`                  |
-| `Service.loadBalancerSourceRanges`           | List of IP CIDRs allowed access to load balancer (if supported)                                                                                                                    | None                  |
-| `ingress.enabled`                            | Enables Ingress                                                                                                                                                                    | `false`               |
-| `ingress.annotations`                        | Ingress annotations                                                                                                                                                                | `{}`                  |
-| `ingress.labels`                             | Custom labels                                                                                                                                                                      | `{}`                  |
-| `ingress.path`                               | Ingress path                                                                                                                                                                       | `/`                   |
-| `ingress.hosts`                              | Ingress accepted hostnames                                                                                                                                                         | `chart-example.local` |
-| `ingress.tls`                                | Ingress TLS configuration                                                                                                                                                          | `[]`                  |
-| `persistence.config.enabled`                 | Use persistent volume to store configuration data                                                                                                                                  | `true`                |
-| `persistence.config.size`                    | Size of persistent volume claim                                                                                                                                                    | `1Gi`                 |
-| `persistence.config.existingClaim`           | Use an existing PVC to persist data                                                                                                                                                | `nil`                 |
-| `persistence.config.subPath`                 | Mount a sub directory of the persistent volume if set                                                                                                                              | `""`                  |
-| `persistence.config.storageClass`            | Type of persistent volume claim                                                                                                                                                    | `-`                   |
-| `persistence.config.accessMode`              | Persistence access mode                                                                                                                                                            | `ReadWriteOnce`       |
-| `persistence.config.skipuninstall`           | Do not delete the pvc upon helm uninstall                                                                                                                                          | `false`               |
-| `persistence.torrentblackhole.enabled`       | Use persistent volume to store torrent files                                                                                                                                       | `false`               |
-| `persistence.torrentblackhole.size`          | Size of persistent volume claim                                                                                                                                                    | `1Gi`                 |
-| `persistence.torrentblackhole.existingClaim` | Use an existing PVC to persist data                                                                                                                                                | `nil`                 |
-| `persistence.torrentblackhole.subPath`       | Mount a sub directory of the persistent volume if set                                                                                                                              | `""`                  |
-| `persistence.torrentblackhole.storageClass`  | Type of persistent volume claim                                                                                                                                                    | `-`                   |
-| `persistence.torrentblackhole.accessMode`    | Persistence access mode                                                                                                                                                            | `ReadWriteOnce`       |
-| `persistence.torrentblackhole.skipuninstall` | Do not delete the pvc upon helm uninstall                                                                                                                                          | `false`               |
-| `persistence.extraExistingClaimMounts`       | Optionally add multiple existing claims                                                                                                                                            | `[]`                  |
-| `resources`                                  | CPU/Memory resource requests/limits                                                                                                                                                | `{}`                  |
-| `nodeSelector`                               | Node labels for pod assignment                                                                                                                                                     | `{}`                  |
-| `tolerations`                                | Toleration labels for pod assignment                                                                                                                                               | `[]`                  |
-| `affinity`                                   | Affinity settings for pod assignment                                                                                                                                               | `{}`                  |
-| `podAnnotations`                             | Key-value pairs to add as pod annotations                                                                                                                                          | `{}`                  |
-| `deploymentAnnotations`                      | Key-value pairs to add as deployment annotations                                                                                                                                   | `{}`                  |
-| `hostNetwork`                                | Specify whether pods should use host networking                                                                                                                                    | `false`               |
-| `dnsPolicy`                                  | Set the DNS policy for pods, ex: ClusterFirst, ClusterFirstWithHostNet. See info [here](https://kubernetes.io/docs/concepts/services-networking/dns-pod-service/#pod-s-dns-policy) | `ClusterFirst`        |
-| `dnsConfig`                                  | Specify DNS options for pods, see values.yaml for details, or see [here](https://kubernetes.io/docs/concepts/services-networking/dns-pod-service/#pod-dns-config)                  | `{}`                  |
+Read through the media-common [values.yaml](https://github.com/k8s-at-home/charts/blob/master/charts/media-common/values.yaml)
+file. It has several commented out suggested values.

 Specify each parameter using the `--set key=value[,key=value]` argument to `helm install`. For example,
-
 ```console
-helm install --name my-release \
-  --set timezone="America/New York" \
+helm install jackett \
+  --set jackett.env.TZ="America/New York" \
    k8s-at-home/jackett
 ```
-
-Alternatively, a YAML file that specifies the values for the above parameters can be provided while installing the chart. For example,
-
+Alternatively, a YAML file that specifies the values for the above parameters can be provided while installing the
+chart. For example,
 ```console
-helm install --name my-release -f values.yaml k8s-at-home/jackett
+helm install jackett k8s-at-home/jackett --values values.yaml 
+```
+
+These values will be nested as it is a dependency, for example
+```yaml
+jackett:
+  image:
+    tag: ...
 ```

 ---
-
 **NOTE**

-If you get `Error: rendered manifests contain a resource that already exists. Unable to continue with install: existing resource conflict: ...` it may be because you uninstalled the chart with `skipuninstall` enabled, you need to manually delete the pvc or use `existingClaim`.
+If you get
+```console
+Error: rendered manifests contain a resource that already exists. Unable to continue with install: existing resource conflict: ...`
+```
+it may be because you uninstalled the chart with `skipuninstall` enabled, you need to manually delete the pvc or use `existingClaim`.

---
-
-Read through the [values.yaml](https://github.com/k8s-at-home/charts/blob/master/charts/jackett/values.yaml) file. It has several commented out suggested values.
+---
--- a/charts/jackett/ci/ct-values.yaml
+++ b/charts/jackett/ci/ct-values.yaml
@@ -0,0 +1,10 @@
+jackett:
+  image:
+    organization: linuxserver
+    repository: jackett
+    tag: v0.16.1045-ls14
+  service:
+    type: ClusterIP
+    port: 9117
+  ingress:
+    enabled: false
--- a/charts/jackett/templates/NOTES.txt
+++ b/charts/jackett/templates/NOTES.txt
@@ -1,19 +1,20 @@
+{{- $svcPort := .Values.jackett.service.port -}}
 1. Get the application URL by running these commands:
-{{- if .Values.ingress.enabled }}
-{{- range .Values.ingress.hosts }}
-  http{{ if $.Values.ingress.tls }}s{{ end }}://{{ . }}{{ $.Values.ingress.path }}
+{{- if .Values.jackett.ingress.enabled }}
+{{- range .Values.jackett.ingress.hosts }}
+  http{{ if $.Values.jackett.ingress.tls }}s{{ end }}://{{ . }}{{ $.Values.jackett.ingress.path }}
 {{- end }}
-{{- else if contains "NodePort" .Values.service.type }}
-  export NODE_PORT=$(kubectl get --namespace {{ .Release.Namespace }} -o jsonpath="{.spec.ports[0].nodePort}" services {{ include "jackett.fullname" . }})
+{{- else if contains "NodePort" .Values.jackett.service.type }}
+  export NODE_PORT=$(kubectl get --namespace {{ .Release.Namespace }} -o jsonpath="{.spec.ports[0].nodePort}" services {{ include "media-common.fullname" . }})
  export NODE_IP=$(kubectl get nodes --namespace {{ .Release.Namespace }} -o jsonpath="{.items[0].status.addresses[0].address}")
  echo http://$NODE_IP:$NODE_PORT
-{{- else if contains "LoadBalancer" .Values.service.type }}
+{{- else if contains "LoadBalancer" .Values.jackett.service.type }}
     NOTE: It may take a few minutes for the LoadBalancer IP to be available.
-           You can watch the status of by running 'kubectl get svc -w {{ include "jackett.fullname" . }}'
-  export SERVICE_IP=$(kubectl get svc --namespace {{ .Release.Namespace }} {{ include "jackett.fullname" . }} -o jsonpath='{.status.loadBalancer.ingress[0].ip}')
-  echo http://$SERVICE_IP:{{ .Values.service.port }}
-{{- else if contains "ClusterIP" .Values.service.type }}
-  export POD_NAME=$(kubectl get pods --namespace {{ .Release.Namespace }} -l "app.kubernetes.io/name={{ include "jackett.name" . }},app.kubernetes.io/instance={{ .Release.Name }}" -o jsonpath="{.items[0].metadata.name}")
-  echo "Visit http://127.0.0.1:9117 to use your application"
-  kubectl port-forward $POD_NAME 9117:80
-{{- end }}
+           You can watch the status of by running 'kubectl get svc -w {{ include "media-common.fullname" . }}'
+  export SERVICE_IP=$(kubectl get svc --namespace {{ .Release.Namespace }} {{ include "media-common.fullname" . }} -o jsonpath='{.status.loadBalancer.ingress[0].ip}')
+  echo http://$SERVICE_IP:{{ $svcPort }}
+{{- else if contains "ClusterIP" .Values.jackett.service.type }}
+  export POD_NAME=$(kubectl get pods --namespace {{ .Release.Namespace }} -l "app.kubernetes.io/name={{ include "media-common.name" . }},app.kubernetes.io/instance={{ .Release.Name }}" -o jsonpath="{.items[0].metadata.name}")
+  echo "Visit http://127.0.0.1:8080 to use your application"
+  kubectl port-forward $POD_NAME 8080:{{ $svcPort }}
+{{- end }}
--- a/charts/jackett/templates/_helpers.tpl
+++ b/charts/jackett/templates/_helpers.tpl
@@ -1,32 +0,0 @@
-{{/* vim: set filetype=mustache: */}}
-{{/*
-Expand the name of the chart.
-*/}}
-{{- define "jackett.name" -}}
-{{- default .Chart.Name .Values.nameOverride | trunc 63 | trimSuffix "-" -}}
-{{- end -}}
-
-{{/*
-Create a default fully qualified app name.
-We truncate at 63 chars because some Kubernetes name fields are limited to this (by the DNS naming spec).
-If release name contains chart name it will be used as a full name.
-*/}}
-{{- define "jackett.fullname" -}}
-{{- if .Values.fullnameOverride -}}
-{{- .Values.fullnameOverride | trunc 63 | trimSuffix "-" -}}
-{{- else -}}
-{{- $name := default .Chart.Name .Values.nameOverride -}}
-{{- if contains $name .Release.Name -}}
-{{- .Release.Name | trunc 63 | trimSuffix "-" -}}
-{{- else -}}
-{{- printf "%s-%s" .Release.Name $name | trunc 63 | trimSuffix "-" -}}
-{{- end -}}
-{{- end -}}
-{{- end -}}
-
-{{/*
-Create chart name and version as used by the chart label.
-*/}}
-{{- define "jackett.chart" -}}
-{{- printf "%s-%s" .Chart.Name .Chart.Version | replace "+" "_" | trunc 63 | trimSuffix "-" -}}
-{{- end -}}
--- a/charts/jackett/templates/config-pvc.yaml
+++ b/charts/jackett/templates/config-pvc.yaml
@@ -1,29 +0,0 @@
-
-{{- if and .Values.persistence.config.enabled (not .Values.persistence.config.existingClaim) }}
-kind: PersistentVolumeClaim
-apiVersion: v1
-metadata:
-  name: {{ template "jackett.fullname" . }}-config
-  {{- if .Values.persistence.config.skipuninstall }}
-  annotations:
-    "helm.sh/resource-policy": keep
-  {{- end }}
-  labels:
-    app.kubernetes.io/name: {{ include "jackett.name" . }}
-    helm.sh/chart: {{ include "jackett.chart" . }}
-    app.kubernetes.io/instance: {{ .Release.Name }}
-    app.kubernetes.io/managed-by: {{ .Release.Service }}
-spec:
-  accessModes:
-    - {{ .Values.persistence.config.accessMode | quote }}
-  resources:
-    requests:
-      storage: {{ .Values.persistence.config.size | quote }}
-{{- if .Values.persistence.config.storageClass }}
-{{- if (eq "-" .Values.persistence.config.storageClass) }}
-  storageClassName: ""
-{{- else }}
-  storageClassName: "{{ .Values.persistence.config.storageClass }}"
-{{- end }}
-{{- end }}
-{{- end -}}
--- a/charts/jackett/templates/deployment.yaml
+++ b/charts/jackett/templates/deployment.yaml
@@ -1,122 +0,0 @@
-apiVersion: apps/v1
-kind: Deployment
-metadata:
-  name: {{ include "jackett.fullname" . }}
-  {{- if .Values.deploymentAnnotations }}
-  annotations:
-    {{- range $key, $value := .Values.deploymentAnnotations }}
-    {{ $key }}: {{ $value | quote }}
-    {{- end }}
-  {{- end }}
-  labels:
-    app.kubernetes.io/name: {{ include "jackett.name" . }}
-    helm.sh/chart: {{ include "jackett.chart" . }}
-    app.kubernetes.io/instance: {{ .Release.Name }}
-    app.kubernetes.io/managed-by: {{ .Release.Service }}
-spec:
-  replicas: 1
-  revisionHistoryLimit: 3
-  strategy:
-    type: {{ .Values.strategyType }}
-  selector:
-    matchLabels:
-      app.kubernetes.io/name: {{ include "jackett.name" . }}
-      app.kubernetes.io/instance: {{ .Release.Name }}
-  template:
-    metadata:
-      labels:
-        app.kubernetes.io/name: {{ include "jackett.name" . }}
-        app.kubernetes.io/instance: {{ .Release.Name }}
-      {{- if .Values.podAnnotations }}
-      annotations:
-        {{- range $key, $value := .Values.podAnnotations }}
-        {{ $key }}: {{ $value | quote }}
-        {{- end }}
-      {{- end }}
-    spec:
-      hostNetwork: {{ .Values.hostNetwork }}
-      dnsPolicy: {{ .Values.dnsPolicy }}
-      {{- if .Values.dnsConfig }}
-      dnsConfig: {{ toYaml .Values.dnsConfig | nindent 8}}
-      {{- end }}
-      containers:
-        - name: {{ .Chart.Name }}
-          image: "{{ .Values.image.repository }}:{{ .Values.image.tag }}"
-          imagePullPolicy: {{ .Values.image.pullPolicy }}
-          ports:
-            - name: http
-              containerPort: 9117
-              protocol: TCP
-          livenessProbe:
-            tcpSocket:
-              port: http
-            failureThreshold: {{ .Values.probes.liveness.failureThreshold }}
-            periodSeconds: {{ .Values.probes.liveness.periodSeconds }}
-          readinessProbe:
-            tcpSocket:
-              port: http
-            failureThreshold: {{ .Values.probes.readiness.failureThreshold }}
-            periodSeconds: {{ .Values.probes.readiness.periodSeconds }}
-          startupProbe:
-            tcpSocket:
-              port: http
-            initialDelaySeconds: {{ .Values.probes.startup.initialDelaySeconds }}
-            failureThreshold: {{ .Values.probes.startup.failureThreshold }}
-            periodSeconds: {{ .Values.probes.startup.periodSeconds }}
-          env:
-            - name: TZ
-              value: "{{ .Values.timezone }}"
-            - name: PUID
-              value: "{{ .Values.puid }}"
-            - name: PGID
-              value: "{{ .Values.pgid }}"
-          volumeMounts:
-            - mountPath: /config
-              name: config
-              {{- if .Values.persistence.config.subPath }}
-              subPath: "{{ .Values.persistence.config.subPath }}"
-              {{- end }}
-            - mountPath: /downloads
-              name: torrentblackhole
-              {{- if .Values.persistence.torrentblackhole.subPath }}
-              subPath: "{{ .Values.persistence.torrentblackhole.subPath }}"
-              {{- end }}
-            {{- range .Values.persistence.extraExistingClaimMounts }}
-            - name: {{ .name }}
-              mountPath: {{ .mountPath }}
-              readOnly: {{ .readOnly }}
-            {{- end }}
-          resources:
-{{ toYaml .Values.resources | indent 12 }}
-      volumes:
-      - name: config
-      {{- if .Values.persistence.config.enabled }}
-        persistentVolumeClaim:
-          claimName: {{ if .Values.persistence.config.existingClaim }}{{ .Values.persistence.config.existingClaim }}{{- else }}{{ template "jackett.fullname" . }}-config{{- end }}
-      {{- else }}
-        emptyDir: {}
-      {{ end }}
-      - name: torrentblackhole
-      {{- if .Values.persistence.torrentblackhole.enabled }}
-        persistentVolumeClaim:
-          claimName: {{ if .Values.persistence.torrentblackhole.existingClaim }}{{ .Values.persistence.torrentblackhole.existingClaim }}{{- else }}{{ template "jackett.fullname" . }}-torrentblackhole{{- end }}
-      {{- else }}
-        emptyDir: {}
-      {{- end }}
-      {{- range .Values.persistence.extraExistingClaimMounts }}
-      - name: {{ .name }}
-        persistentVolumeClaim:
-          claimName: {{ .existingClaim }}
-      {{- end }}
-    {{- with .Values.nodeSelector }}
-      nodeSelector:
-{{ toYaml . | indent 8 }}
-    {{- end }}
-    {{- with .Values.affinity }}
-      affinity:
-{{ toYaml . | indent 8 }}
-    {{- end }}
-    {{- with .Values.tolerations }}
-      tolerations:
-{{ toYaml . | indent 8 }}
-    {{- end }}
--- a/charts/jackett/templates/ingress.yaml
+++ b/charts/jackett/templates/ingress.yaml
@@ -1,41 +0,0 @@
-{{- if .Values.ingress.enabled -}}
-{{- $fullName := include "jackett.fullname" . -}}
-{{- $ingressPath := .Values.ingress.path -}}
-apiVersion: extensions/v1beta1
-kind: Ingress
-metadata:
-  name: {{ $fullName }}
-  labels:
-    app.kubernetes.io/name: {{ include "jackett.name" . }}
-    helm.sh/chart: {{ include "jackett.chart" . }}
-    app.kubernetes.io/instance: {{ .Release.Name }}
-    app.kubernetes.io/managed-by: {{ .Release.Service }}
-    {{- with .Values.ingress.labels -}}
-    {{ toYaml . | nindent 4 }}
-    {{- end -}}
-{{- with .Values.ingress.annotations }}
-  annotations:
-{{ toYaml . | indent 4 }}
-{{- end }}
-spec:
-{{- if .Values.ingress.tls }}
-  tls:
-  {{- range .Values.ingress.tls }}
-    - hosts:
-      {{- range .hosts }}
-        - {{ . | quote }}
-      {{- end }}
-      secretName: {{ .secretName }}
-  {{- end }}
-{{- end }}
-  rules:
-  {{- range .Values.ingress.hosts }}
-    - host: {{ . | quote }}
-      http:
-        paths:
-          - path: {{ $ingressPath }}
-            backend:
-              serviceName: {{ $fullName }}
-              servicePort: http
-  {{- end }}
-{{- end }}
--- a/charts/jackett/templates/pvc.yaml
+++ b/charts/jackett/templates/pvc.yaml
@@ -0,0 +1,22 @@
+{{- if and .Values.jackett.persistence.torrentblackhole.enabled (not .Values.jackett.persistence.torrentblackhole.existingClaim) }}
+---
+kind: PersistentVolumeClaim
+apiVersion: v1
+metadata:
+  name: {{ template "media-common.fullname" . }}-downloads
+  {{- if .Values.jackett.persistence.torrentblackhole.skipuninstall }}
+  annotations:
+    "helm.sh/resource-policy": keep
+  {{- end }}
+  labels:
+  {{- include "media-common.labels" . | nindent 4 }}
+spec:
+  accessModes:
+    - {{ .Values.jackett.persistence.torrentblackhole.accessMode | quote }}
+  resources:
+    requests:
+      storage: {{ .Values.jackett.persistence.torrentblackhole.size | quote }}
+  {{- if .Values.jackett.persistence.torrentblackhole.storageClass }}
+  storageClassName: {{ if (eq "-" .Values.jackett.persistence.torrentblackhole.storageClass) }}""{{- else }}{{ .Values.jackett.persistence.torrentblackhole.storageClass | quote}}{{- end }}
+  {{- end }}
+{{- end -}}
--- a/charts/jackett/templates/service.yaml
+++ b/charts/jackett/templates/service.yaml
@@ -1,53 +0,0 @@
-apiVersion: v1
-kind: Service
-metadata:
-  name: {{ template "jackett.fullname" . }}
-  labels:
-    app.kubernetes.io/name: {{ include "jackett.name" . }}
-    helm.sh/chart: {{ include "jackett.chart" . }}
-    app.kubernetes.io/instance: {{ .Release.Name }}
-    app.kubernetes.io/managed-by: {{ .Release.Service }}
-{{- if .Values.service.labels }}
-{{ toYaml .Values.service.labels | indent 4 }}
-{{- end }}
-{{- with .Values.service.annotations }}
-  annotations:
-{{ toYaml . | indent 4 }}
-{{- end }}
-spec:
-{{- if (or (eq .Values.service.type "ClusterIP") (empty .Values.service.type)) }}
-  type: ClusterIP
-  {{- if .Values.service.clusterIP }}
-  clusterIP: {{ .Values.service.clusterIP }}
-  {{end}}
-{{- else if eq .Values.service.type "LoadBalancer" }}
-  type: {{ .Values.service.type }}
-  {{- if .Values.service.loadBalancerIP }}
-  loadBalancerIP: {{ .Values.service.loadBalancerIP }}
-  {{- end }}
-  {{- if .Values.service.loadBalancerSourceRanges }}
-  loadBalancerSourceRanges:
-{{ toYaml .Values.service.loadBalancerSourceRanges | indent 4 }}
-  {{- end -}}
-{{- else }}
-  type: {{ .Values.service.type }}
-{{- end }}
-{{- if .Values.service.externalIPs }}
-  externalIPs:
-{{ toYaml .Values.service.externalIPs | indent 4 }}
-{{- end }}
-  {{- if .Values.service.externalTrafficPolicy }}
-  externalTrafficPolicy: {{ .Values.service.externalTrafficPolicy }}
-  {{- end }}
-  ports:
-    - name: http
-      port: {{ .Values.service.port }}
-      protocol: TCP
-      targetPort: http
-{{ if (and (eq .Values.service.type "NodePort") (not (empty .Values.service.nodePort))) }}
-      nodePort: {{.Values.service.nodePort}}
-{{ end }}
-  selector:
-    app.kubernetes.io/name: {{ include "jackett.name" . }}
-    app.kubernetes.io/instance: {{ .Release.Name }}
-    
--- a/charts/jackett/templates/torrent-blackhole-pvc.yaml
+++ b/charts/jackett/templates/torrent-blackhole-pvc.yaml
@@ -1,29 +0,0 @@
-
-{{- if and .Values.persistence.torrentblackhole.enabled (not .Values.persistence.torrentblackhole.existingClaim) }}
-kind: PersistentVolumeClaim
-apiVersion: v1
-metadata:
-  name: {{ template "jackett.fullname" . }}-torrentblackhole
-  {{- if .Values.persistence.torrentblackhole.skipuninstall }}
-  annotations:
-    "helm.sh/resource-policy": keep
-  {{- end }}
-  labels:
-    app.kubernetes.io/name: {{ include "jackett.name" . }}
-    helm.sh/chart: {{ include "jackett.chart" . }}
-    app.kubernetes.io/instance: {{ .Release.Name }}
-    app.kubernetes.io/managed-by: {{ .Release.Service }}
-spec:
-  accessModes:
-    - {{ .Values.persistence.torrentblackhole.accessMode | quote }}
-  resources:
-    requests:
-      storage: {{ .Values.persistence.torrentblackhole.size | quote }}
-{{- if .Values.persistence.torrentblackhole.storageClass }}
-{{- if (eq "-" .Values.persistence.torrentblackhole.storageClass) }}
-  storageClassName: ""
-{{- else }}
-  storageClassName: "{{ .Values.persistence.torrentblackhole.storageClass }}"
-{{- end }}
-{{- end }}
-{{- end -}}
--- a/charts/jackett/values.yaml
+++ b/charts/jackett/values.yaml
@@ -1,149 +1,43 @@
 # Default values for Jackett.
-# This is a YAML-formatted file.
-# Declare variables to be passed into your templates.

-image:
-  repository: linuxserver/jackett
-  tag: v0.16.1045-ls14
-  pullPolicy: IfNotPresent
+jackett:
+  image:
+    organization: linuxserver
+    repository: jackett
+    pullPolicy: IfNotPresent
+    tag: v0.16.1045-ls14

-# upgrade strategy type (e.g. Recreate or RollingUpdate)
-strategyType: Recreate
+  service:
+    port: 9117

-# Probes configuration
-probes:
-  liveness:
-    failureThreshold: 5
-    periodSeconds: 10
-  readiness:
-    failureThreshold: 5
-    periodSeconds: 10
-  startup:
-    initialDelaySeconds: 5
-    failureThreshold: 30
-    periodSeconds: 10
+  env: {}
+    # TZ: UTC
+    # PUID: 1001
+    # PGID: 1001

-nameOverride: ""
-fullnameOverride: ""
+  persistence:
+    torrentblackhole:
+      enabled: false
+      ## Jackett torrent torrentblackhole Persistent Volume Storage Class
+      ## If defined, storageClassName: <storageClass>
+      ## If set to "-", storageClassName: "", which disables dynamic provisioning
+      ## If undefined (the default) or set to null, no storageClassName spec is
+      ##   set, choosing the default provisioner.  (gp2 on AWS, standard on
+      ##   GKE, AWS & OpenStack)
+      # storageClass: "-"
+      # accessMode: ReadWriteOnce
+      # size: 1Gi
+      ## Do not delete the pvc upon helm uninstall
+      # skipuninstall: false
+      # existingClaim: ""

-timezone: UTC
-puid: 1001
-pgid: 1001
+  additionalVolumes:
+    - name: torrentblackhole
+      emptyDir: {}
+      ## When using persistence.torrentblackhole.enabled: true, adjust this to:
+      # persistentVolumeClaim:
+      #   claimName: jackett-torrentblackhole

-service:
-  type: ClusterIP
-  port: 9117
-  ## Specify the nodePort value for the LoadBalancer and NodePort service types.
-  ## ref: https://kubernetes.io/docs/concepts/services-networking/service/#type-nodeport
-  ##
-  # nodePort:
-  ## Provide any additional annotations which may be required. This can be used to
-  ## set the LoadBalancer service type to internal only.
-  ## ref: https://kubernetes.io/docs/concepts/services-networking/service/#internal-load-balancer
-  ##
-  annotations: {}
-  labels: {}
-  ## Use loadBalancerIP to request a specific static IP,
-  ## otherwise leave blank
-  ##
-  loadBalancerIP:
-  # loadBalancerSourceRanges: []
-  ## Set the externalTrafficPolicy in the Service to either Cluster or Local
-  # externalTrafficPolicy: Cluster
-
-ingress:
-  enabled: false
-  annotations: {}
-    # kubernetes.io/ingress.class: nginx
-    # kubernetes.io/tls-acme: "true"
-  labels: {}
-  path: /
-  hosts:
-    - chart-example.local
-  tls: []
-  #  - secretName: chart-example-tls
-  #    hosts:
-  #      - chart-example.local
-
-persistence:
-  config:
-    enabled: true
-    ## Jackett configuration data Persistent Volume Storage Class
-    ## If defined, storageClassName: <storageClass>
-    ## If set to "-", storageClassName: "", which disables dynamic provisioning
-    ## If undefined (the default) or set to null, no storageClassName spec is
-    ##   set, choosing the default provisioner.  (gp2 on AWS, standard on
-    ##   GKE, AWS & OpenStack)
-    ##
-    # storageClass: "-"
-    ##
-    ## If you want to reuse an existing claim, you can pass the name of the PVC using
-    ## the existingClaim variable
-    # existingClaim: your-claim
-    accessMode: ReadWriteOnce
-    size: 1Gi
-
-    ## If subPath is set mount a sub folder of a volume instead of the root of the volume.
-    ## This is especially handy for volume plugins that don't natively support sub mounting (like glusterfs).
-    ##
-    subPath: ""
-    ## Do not delete the pvc upon helm uninstall
-    skipuninstall: false
-  torrentblackhole:
-    enabled: false
-    ## Jackett torrentblackhole directory volume configuration
-    ## If defined, storageClassName: <storageClass>
-    ## If set to "-", storageClassName: "", which disables dynamic provisioning
-    ## If undefined (the default) or set to null, no storageClassName spec is
-    ##   set, choosing the default provisioner.  (gp2 on AWS, standard on
-    ##   GKE, AWS & OpenStack)
-    ##
-    # storageClass: "-"
-    ##
-    ## If you want to reuse an existing claim, you can pass the name of the PVC using
-    ## the existingClaim variable
-    # existingClaim: your-claim
-    # subPath: some-subpath
-    accessMode: ReadWriteOnce
-    size: 1Gi
-    ## Do not delete the pvc upon helm uninstall
-    skipuninstall: false
-
-resources: {}
-  # We usually recommend not to specify default resources and to leave this as a conscious
-  # choice for the user. This also increases chances charts run on environments with little
-  # resources, such as Minikube. If you do want to specify resources, uncomment the following
-  # lines, adjust them as necessary, and remove the curly braces after 'resources:'.
-  # limits:
-  #  cpu: 100m
-  #  memory: 128Mi
-  # requests:
-  #  cpu: 100m
-  #  memory: 128Mi
-
-dnsPolicy: ClusterFirst
-
-dnsConfig: {}
-  # dnsConfig may be used with any dnsPolicy, but is required when dnsPolicy: "None"
-  # To use, remove the braces above, and uncomment/modify the following lines.
-  # See https://kubernetes.io/docs/concepts/services-networking/dns-pod-service/#pod-dns-config
-  # for additional information
-  # nameservers:
-  #   - 1.1.1.1
-  # searches:
-  #   - ns1.mysearch.domain
-  # options:
-  #   - name: ndots
-  #     value: "1"
-
-hostNetwork: false
-
-nodeSelector: {}
-
-tolerations: []
-
-affinity: {}
-
-podAnnotations: {}
-
-deploymentAnnotations: {}
+  additionalVolumeMounts:
+    - name: torrentblackhole
+      mountPath: /downloads
--- a/charts/nzbget/Chart.yaml
+++ b/charts/nzbget/Chart.yaml
@@ -2,7 +2,7 @@ apiVersion: v2
 appVersion: v21.0
 description: NZBGet is a Usenet downloader client
 name: nzbget
-version: 4.0.1
+version: 5.0.0
 keywords:
  - nzbget
  - usenet
@@ -14,3 +14,8 @@ sources:
 maintainers:
  - name: billimek
    email: jeff@billimek.com
+dependencies:
+  - name: media-common
+    repository: https://k8s-at-home.com/charts/
+    version: ^1.0.0
+    alias: nzbget
--- a/charts/nzbget/README.md
+++ b/charts/nzbget/README.md
@@ -33,75 +33,35 @@ helm delete my-release --purge
 The command removes all the Kubernetes components associated with the chart and deletes the release.

 ## Configuration
-
-The following tables lists the configurable parameters of the Sentry chart and their default values.
-
-| Parameter                  | Description                         | Default                                                 |
-|----------------------------|-------------------------------------|---------------------------------------------------------|
-| `image.repository`         | Image repository | `linuxserver/nzbget` |
-| `image.tag`                | Image tag. Possible values listed [here](https://hub.docker.com/r/linuxserver/nzbget/tags/).| `v21.0-ls14`|
-| `image.pullPolicy`         | Image pull policy | `IfNotPresent` |
-| `strategyType`             | Specifies the strategy used to replace old Pods by new ones | `Recreate` |
-| `timezone`                 | Timezone the nzbget instance should run as, e.g. 'America/New_York' | `UTC` |
-| `puid`                     | process userID the nzbget instance should run as | `1001` |
-| `pgid`                     | process groupID the nzbget instance should run as | `1001` |
-| `probes.liveness.initialDelaySeconds`  | Specify liveness `initialDelaySeconds` parameter for the deployment  | `60` |
-| `probes.liveness.failureThreshold`     | Specify liveness `failureThreshold` parameter for the deployment     | `5`  |
-| `probes.liveness.timeoutSeconds`       | Specify liveness `timeoutSeconds` parameter for the deployment       | `10` |
-| `probes.readiness.initialDelaySeconds` | Specify readiness `initialDelaySeconds` parameter for the deployment | `60` |
-| `probes.readiness.failureThreshold`    | Specify readiness `failureThreshold` parameter for the deployment    | `5`  |
-| `probes.readiness.timeoutSeconds`      | Specify readiness `timeoutSeconds` parameter for the deployment      | `10` |
-| `Service.type`          | Kubernetes service type for the nzbget GUI | `ClusterIP` |
-| `Service.port`          | Kubernetes port where the nzbget GUI is exposed| `6789` |
-| `Service.annotations`   | Service annotations for the nzbget GUI | `{}` |
-| `Service.labels`        | Custom labels | `{}` |
-| `Service.loadBalancerIP` | Loadbalance IP for the nzbget GUI | `{}` |
-| `Service.loadBalancerSourceRanges` | List of IP CIDRs allowed access to load balancer (if supported)      | None
-| `ingress.enabled`              | Enables Ingress | `false` |
-| `ingress.annotations`          | Ingress annotations | `{}` |
-| `ingress.labels`               | Custom labels                       | `{}`
-| `ingress.path`                 | Ingress path | `/` |
-| `ingress.hosts`                | Ingress accepted hostnames | `chart-example.local` |
-| `ingress.tls`                  | Ingress TLS configuration | `[]` |
-| `persistence.config.enabled`      | Use persistent volume to store configuration data | `true` |
-| `persistence.config.size`         | Size of persistent volume claim | `1Gi` |
-| `persistence.config.existingClaim`| Use an existing PVC to persist data | `nil` |
-| `persistence.config.storageClass` | Type of persistent volume claim | `-` |
-| `persistence.config.accessMode`  | Persistence access mode | `ReadWriteOnce` |
-| `persistence.config.skipuninstall`  | Do not delete the pvc upon helm uninstall | `false` |
-| `persistence.downloads.enabled`      | Use persistent volume to store configuration data | `true` |
-| `persistence.downloads.size`         | Size of persistent volume claim | `10Gi` |
-| `persistence.downloads.existingClaim`| Use an existing PVC to persist data | `nil` |
-| `persistence.downloads.storageClass` | Type of persistent volume claim | `-` |
-| `persistence.downloads.accessMode`   | Persistence access mode | `ReadWriteOnce` |
-| `persistence.downloads.skipuninstall`  | Do not delete the pvc upon helm uninstall | `false` |
-| `persistence.extraMounts`            | Array of additional claims to mount | `[]` |
-| `resources`                | CPU/Memory resource requests/limits | `{}` |
-| `nodeSelector`             | Node labels for pod assignment | `{}` |
-| `tolerations`              | Toleration labels for pod assignment | `[]` |
-| `affinity`                 | Affinity settings for pod assignment | `{}` |
-| `podAnnotations`           | Key-value pairs to add as pod annotations  | `{}` |
-| `deploymentAnnotations`           | Key-value pairs to add as pod annotations  | `{}` |
+Read through the media-common [values.yaml](https://github.com/k8s-at-home/charts/blob/master/charts/media-common/values.yaml)
+file. It has several commented out suggested values.

 Specify each parameter using the `--set key=value[,key=value]` argument to `helm install`. For example,
-
 ```console
-helm install --name my-release \
-  --set timezone="America/New York" \
+helm install nzbget \
+  --set radarr.env.TZ="America/New York" \
    k8s-at-home/nzbget
 ```
-
-Alternatively, a YAML file that specifies the values for the above parameters can be provided while installing the chart. For example,
-
+Alternatively, a YAML file that specifies the values for the above parameters can be provided while installing the
+chart. For example,
 ```console
-helm install --name my-release -f values.yaml stable/nzbget
+helm install radarr k8s-at-home/nzbget --values values.yaml 
+```
+
+These values will be nested as it is a dependency, for example
+```yaml
+nzbget:
+  image:
+    tag: ...
 ```

 ---
 **NOTE**

-If you get `Error: rendered manifests contain a resource that already exists. Unable to continue with install: existing resource conflict: ...` it may be because you uninstalled the chart with `skipuninstall` enabled, you need to manually delete the pvc or use `existingClaim`.
+If you get
+```console
+Error: rendered manifests contain a resource that already exists. Unable to continue with install: existing resource conflict: ...`
+```
+it may be because you uninstalled the chart with `skipuninstall` enabled, you need to manually delete the pvc or use `existingClaim`.

 ---
-
-Read through the [values.yaml](https://github.com/k8s-at-home/charts/blob/master/charts/nzbget/values.yaml) file. It has several commented out suggested values.
--- a/charts/nzbget/ci/ct-values.yaml
+++ b/charts/nzbget/ci/ct-values.yaml
@@ -0,0 +1,10 @@
+nzbget:
+  image:
+    organization: linuxserver
+    repository: nzbget
+    tag: latest
+  service:
+    type: ClusterIP
+    port: 6789
+  ingress:
+    enabled: false
--- a/charts/nzbget/templates/NOTES.txt
+++ b/charts/nzbget/templates/NOTES.txt
@@ -1,21 +1,23 @@
+{{- $svcPort := .Values.nzbget.service.port -}}
 1. Get the application URL by running these commands:
-{{- if .Values.ingress.enabled }}
-{{- range .Values.ingress.hosts }}
-  http{{ if $.Values.ingress.tls }}s{{ end }}://{{ . }}{{ $.Values.ingress.path }}
+{{- if .Values.nzbget.ingress.enabled }}
+{{- range .Values.nzbget.ingress.hosts }}
+  http{{ if $.Values.nzbget.ingress.tls }}s{{ end }}://{{ . }}{{ $.Values.nzbget.ingress.path }}
 {{- end }}
-{{- else if contains "NodePort" .Values.service.type }}
-  export NODE_PORT=$(kubectl get --namespace {{ .Release.Namespace }} -o jsonpath="{.spec.ports[0].nodePort}" services {{ include "nzbget.fullname" . }})
+{{- else if contains "NodePort" .Values.nzbget.service.type }}
+  export NODE_PORT=$(kubectl get --namespace {{ .Release.Namespace }} -o jsonpath="{.spec.ports[0].nodePort}" services {{ include "media-common.fullname" . }})
  export NODE_IP=$(kubectl get nodes --namespace {{ .Release.Namespace }} -o jsonpath="{.items[0].status.addresses[0].address}")
  echo http://$NODE_IP:$NODE_PORT
-{{- else if contains "LoadBalancer" .Values.service.type }}
+{{- else if contains "LoadBalancer" .Values.nzbget.service.type }}
     NOTE: It may take a few minutes for the LoadBalancer IP to be available.
-           You can watch the status of by running 'kubectl get svc -w {{ include "nzbget.fullname" . }}'
-  export SERVICE_IP=$(kubectl get svc --namespace {{ .Release.Namespace }} {{ include "nzbget.fullname" . }} -o jsonpath='{.status.loadBalancer.ingress[0].ip}')
-  echo http://$SERVICE_IP:{{ .Values.service.port }}
-{{- else if contains "ClusterIP" .Values.service.type }}
-  export POD_NAME=$(kubectl get pods --namespace {{ .Release.Namespace }} -l "app.kubernetes.io/name={{ include "nzbget.name" . }},app.kubernetes.io/instance={{ .Release.Name }}" -o jsonpath="{.items[0].metadata.name}")
+           You can watch the status of by running 'kubectl get svc -w {{ include "media-common.fullname" . }}'
+  export SERVICE_IP=$(kubectl get svc --namespace {{ .Release.Namespace }} {{ include "media-common.fullname" . }} -o jsonpath='{.status.loadBalancer.ingress[0].ip}')
+  echo http://$SERVICE_IP:{{ $svcPort }}
+{{- else if contains "ClusterIP" .Values.nzbget.service.type }}
+  export POD_NAME=$(kubectl get pods --namespace {{ .Release.Namespace }} -l "app.kubernetes.io/name={{ include "media-common.name" . }},app.kubernetes.io/instance={{ .Release.Name }}" -o jsonpath="{.items[0].metadata.name}")
  echo "Visit http://127.0.0.1:8080 to use your application"
-  kubectl port-forward $POD_NAME 8080:80
+  kubectl port-forward $POD_NAME 8080:{{ $svcPort }}
 {{- end }}

-The default login to the GUI is login:nzbget, password:tegbzn6789
+The default login to the GUI is login:nzbget, password:tegbzn6789
+You should change this as soon as possible!
--- a/charts/nzbget/templates/_helpers.tpl
+++ b/charts/nzbget/templates/_helpers.tpl
@@ -1,32 +0,0 @@
-{{/* vim: set filetype=mustache: */}}
-{{/*
-Expand the name of the chart.
-*/}}
-{{- define "nzbget.name" -}}
-{{- default .Chart.Name .Values.nameOverride | trunc 63 | trimSuffix "-" -}}
-{{- end -}}
-
-{{/*
-Create a default fully qualified app name.
-We truncate at 63 chars because some Kubernetes name fields are limited to this (by the DNS naming spec).
-If release name contains chart name it will be used as a full name.
-*/}}
-{{- define "nzbget.fullname" -}}
-{{- if .Values.fullnameOverride -}}
-{{- .Values.fullnameOverride | trunc 63 | trimSuffix "-" -}}
-{{- else -}}
-{{- $name := default .Chart.Name .Values.nameOverride -}}
-{{- if contains $name .Release.Name -}}
-{{- .Release.Name | trunc 63 | trimSuffix "-" -}}
-{{- else -}}
-{{- printf "%s-%s" .Release.Name $name | trunc 63 | trimSuffix "-" -}}
-{{- end -}}
-{{- end -}}
-{{- end -}}
-
-{{/*
-Create chart name and version as used by the chart label.
-*/}}
-{{- define "nzbget.chart" -}}
-{{- printf "%s-%s" .Chart.Name .Chart.Version | replace "+" "_" | trunc 63 | trimSuffix "-" -}}
-{{- end -}}
--- a/charts/nzbget/templates/config-pvc.yaml
+++ b/charts/nzbget/templates/config-pvc.yaml
@@ -1,29 +0,0 @@
-
-{{- if and .Values.persistence.config.enabled (not .Values.persistence.config.existingClaim) }}
-kind: PersistentVolumeClaim
-apiVersion: v1
-metadata:
-  name: {{ template "nzbget.fullname" . }}-config
-  {{- if .Values.persistence.config.skipuninstall }}
-  annotations:
-    "helm.sh/resource-policy": keep
-  {{- end }}
-  labels:
-    app.kubernetes.io/name: {{ include "nzbget.name" . }}
-    helm.sh/chart: {{ include "nzbget.chart" . }}
-    app.kubernetes.io/instance: {{ .Release.Name }}
-    app.kubernetes.io/managed-by: {{ .Release.Service }}
-spec:
-  accessModes:
-    - {{ .Values.persistence.config.accessMode | quote }}
-  resources:
-    requests:
-      storage: {{ .Values.persistence.config.size | quote }}
-{{- if .Values.persistence.config.storageClass }}
-{{- if (eq "-" .Values.persistence.config.storageClass) }}
-  storageClassName: ""
-{{- else }}
-  storageClassName: "{{ .Values.persistence.config.storageClass }}"
-{{- end }}
-{{- end }}
-{{- end -}}
--- a/charts/nzbget/templates/deployment.yaml
+++ b/charts/nzbget/templates/deployment.yaml
@@ -1,140 +0,0 @@
-apiVersion: apps/v1
-kind: Deployment
-metadata:
-  name: {{ include "nzbget.fullname" . }}
-  {{- if .Values.deploymentAnnotations }}
-  annotations:
-    {{- range $key, $value := .Values.deploymentAnnotations }}
-    {{ $key }}: {{ $value | quote }}
-    {{- end }}
-  {{- end }}
-  labels:
-    app.kubernetes.io/name: {{ include "nzbget.name" . }}
-    helm.sh/chart: {{ include "nzbget.chart" . }}
-    app.kubernetes.io/instance: {{ .Release.Name }}
-    app.kubernetes.io/managed-by: {{ .Release.Service }}
-spec:
-  replicas: 1
-  revisionHistoryLimit: 3
-  strategy:
-    type: {{ .Values.strategyType }}
-  selector:
-    matchLabels:
-      app.kubernetes.io/name: {{ include "nzbget.name" . }}
-      app.kubernetes.io/instance: {{ .Release.Name }}
-  template:
-    metadata:
-      labels:
-        app.kubernetes.io/name: {{ include "nzbget.name" . }}
-        app.kubernetes.io/instance: {{ .Release.Name }}
-      {{- if .Values.podAnnotations }}
-      annotations:
-        {{- range $key, $value := .Values.podAnnotations }}
-        {{ $key }}: {{ $value | quote }}
-        {{- end }}
-      {{- end }}
-    spec:
-      containers:
-        - name: {{ .Chart.Name }}
-          image: "{{ .Values.image.repository }}:{{ .Values.image.tag }}"
-          imagePullPolicy: {{ .Values.image.pullPolicy }}
-          ports:
-            - name: http
-              containerPort: 6789
-              protocol: TCP
-          livenessProbe:
-            tcpSocket:
-              port: http
-            initialDelaySeconds: {{ .Values.probes.liveness.initialDelaySeconds }}
-            failureThreshold: {{ .Values.probes.liveness.failureThreshold }}
-            timeoutSeconds: {{ .Values.probes.liveness.timeoutSeconds }}
-          readinessProbe:
-            tcpSocket:
-              port: http
-            initialDelaySeconds: {{ .Values.probes.readiness.initialDelaySeconds }}
-            failureThreshold: {{ .Values.probes.readiness.failureThreshold }}
-            timeoutSeconds: {{ .Values.probes.readiness.timeoutSeconds }}
-          env:
-            - name: TZ
-              value: "{{ .Values.timezone }}"
-            - name: PUID
-              value: "{{ .Values.puid }}"
-            - name: PGID
-              value: "{{ .Values.pgid }}"
-          volumeMounts:
-            - mountPath: /config
-              name: config
-            - mountPath: /downloads
-              name: downloads
-            {{- if .Values.persistence.downloads.subPath }}
-              subPath: {{ .Values.persistence.downloads.subPath }}
-            {{ end }}
-            {{-  range .Values.persistence.extraMounts }}
-            {{- if .mountPath }}
-            - mountPath: /{{ .mountPath }}
-            {{- else }}
-            - mountPath: /{{ .name }}
-            {{- end }}
-              name: {{ .name }}
-            {{- end }}
-          resources:
-{{ toYaml .Values.resources | indent 12 }}
-        {{- if .Values.openvpn.enabled }}
-        - name: openvpn
-          image: "{{ .Values.openvpn.image.repository }}:{{ .Values.openvpn.image.tag }}"
-          imagePullPolicy: {{ .Values.openvpn.image.pullPolicy }}
-          securityContext:
-            capabilities:
-              add: ["NET_ADMIN"]
-          {{- if .Values.openvpn.env }}
-          envFrom:
-          - secretRef:
-              name: {{ template "nzbget.fullname" . }}-openvpnenv
-          {{- end }}
-          {{- if .Values.openvpn.vpnConf }}
-          volumeMounts:
-          - name: openvpnconf
-            mountPath: /vpn/vpn.conf
-            subPath: vpnConf
-          {{- end }}
-          env:
-          - name: NETWORK_POLICY_ENABLED
-            value: {{ .Values.openvpn.networkPolicy.enabled | quote }}
-        {{- end }}
-      volumes:
-      - name: config
-      {{- if .Values.persistence.config.enabled }}
-        persistentVolumeClaim:
-          claimName: {{ if .Values.persistence.config.existingClaim }}{{ .Values.persistence.config.existingClaim }}{{- else }}{{ template "nzbget.fullname" . }}-config{{- end }}
-      {{- else }}
-        emptyDir: {}
-      {{ end }}
-      - name: downloads
-      {{- if .Values.persistence.downloads.enabled }}
-        persistentVolumeClaim:
-          claimName: {{ if .Values.persistence.downloads.existingClaim }}{{ .Values.persistence.downloads.existingClaim }}{{- else }}{{ template "nzbget.fullname" . }}-downloads{{- end }}
-      {{- else }}
-        emptyDir: {}
-      {{ end }}
-      {{- if .Values.openvpn.vpnConf }}
-      - name: openvpnconf
-        configMap:
-          name: {{ template "nzbget.fullname" . }}-openvpnconf
-      {{ end }}
-     {{- range .Values.persistence.extraMounts }}
-      - name: {{ .name }}
-        persistentVolumeClaim:
-          claimName: {{ .claimName }}
-     {{- end }}
-    {{- with .Values.nodeSelector }}
-      nodeSelector:
-{{ toYaml . | indent 8 }}
-    {{- end }}
-    {{- with .Values.affinity }}
-      affinity:
-{{ toYaml . | indent 8 }}
-    {{- end }}
-    {{- with .Values.tolerations }}
-      tolerations:
-{{ toYaml . | indent 8 }}
-    {{- end }}
--- a/charts/nzbget/templates/downloads-pvc.yaml
+++ b/charts/nzbget/templates/downloads-pvc.yaml
@@ -1,29 +0,0 @@
-
-{{- if and .Values.persistence.downloads.enabled (not .Values.persistence.downloads.existingClaim) }}
-kind: PersistentVolumeClaim
-apiVersion: v1
-metadata:
-  name: {{ template "nzbget.fullname" . }}-downloads
-  {{- if .Values.persistence.downloads.skipuninstall }}
-  annotations:
-    "helm.sh/resource-policy": keep
-  {{- end }}
-  labels:
-    app.kubernetes.io/name: {{ include "nzbget.name" . }}
-    helm.sh/chart: {{ include "nzbget.chart" . }}
-    app.kubernetes.io/instance: {{ .Release.Name }}
-    app.kubernetes.io/managed-by: {{ .Release.Service }}
-spec:
-  accessModes:
-    - {{ .Values.persistence.downloads.accessMode | quote }}
-  resources:
-    requests:
-      storage: {{ .Values.persistence.downloads.size | quote }}
-{{- if .Values.persistence.downloads.storageClass }}
-{{- if (eq "-" .Values.persistence.downloads.storageClass) }}
-  storageClassName: ""
-{{- else }}
-  storageClassName: "{{ .Values.persistence.downloads.storageClass }}"
-{{- end }}
-{{- end }}
-{{- end -}}
--- a/charts/nzbget/templates/ingress.yaml
+++ b/charts/nzbget/templates/ingress.yaml
@@ -1,41 +0,0 @@
-{{- if .Values.ingress.enabled -}}
-{{- $fullName := include "nzbget.fullname" . -}}
-{{- $ingressPath := .Values.ingress.path -}}
-apiVersion: extensions/v1beta1
-kind: Ingress
-metadata:
-  name: {{ $fullName }}
-  labels:
-    app.kubernetes.io/name: {{ include "nzbget.name" . }}
-    helm.sh/chart: {{ include "nzbget.chart" . }}
-    app.kubernetes.io/instance: {{ .Release.Name }}
-    app.kubernetes.io/managed-by: {{ .Release.Service }}
-    {{- with .Values.ingress.labels -}}
-    {{ toYaml . | nindent 4 }}
-    {{- end -}}
-{{- with .Values.ingress.annotations }}
-  annotations:
-{{ toYaml . | indent 4 }}
-{{- end }}
-spec:
-{{- if .Values.ingress.tls }}
-  tls:
-  {{- range .Values.ingress.tls }}
-    - hosts:
-      {{- range .hosts }}
-        - {{ . | quote }}
-      {{- end }}
-      secretName: {{ .secretName }}
-  {{- end }}
-{{- end }}
-  rules:
-  {{- range .Values.ingress.hosts }}
-    - host: {{ . | quote }}
-      http:
-        paths:
-          - path: {{ $ingressPath }}
-            backend:
-              serviceName: {{ $fullName }}
-              servicePort: http
-  {{- end }}
-{{- end }}
--- a/charts/nzbget/templates/openvpn-config.yaml
+++ b/charts/nzbget/templates/openvpn-config.yaml
@@ -1,16 +0,0 @@
-{{- if and .Values.openvpn.enabled .Values.openvpn.vpnConf}}
-apiVersion: v1
-kind: ConfigMap
-metadata:
-  name: {{ template "nzbget.fullname" . }}-openvpnconf
-  labels:
-    app.kubernetes.io/name: {{ include "nzbget.name" . }}
-    helm.sh/chart: {{ include "nzbget.chart" . }}
-    app.kubernetes.io/instance: {{ .Release.Name }}
-    app.kubernetes.io/managed-by: {{ .Release.Service }}
-data:
-  {{- if .Values.openvpn.vpnConf }}
-  vpnConf: |-
-    {{- .Values.openvpn.vpnConf | nindent 4}}
-  {{- end }}
-{{- end -}}
--- a/charts/nzbget/templates/openvpn-env.yaml
+++ b/charts/nzbget/templates/openvpn-env.yaml
@@ -1,20 +0,0 @@
-{{- if and .Values.openvpn.enabled ( or .Values.openvpn.env .Values.openvpn.auth )}}
-apiVersion: v1
-kind: Secret
-metadata:
-  name: {{ template "nzbget.fullname" . }}-openvpnenv
-  labels:
-    app.kubernetes.io/name: {{ include "nzbget.name" . }}
-    helm.sh/chart: {{ include "nzbget.chart" . }}
-    app.kubernetes.io/instance: {{ .Release.Name }}
-    app.kubernetes.io/managed-by: {{ .Release.Service }}
-data:
-  {{- if .Values.openvpn.auth }}
-  VPN_AUTH: {{ .Values.openvpn.auth | b64enc }}
-  {{- end }}
-  {{- if .Values.openvpn.env }}
-  {{- range $k, $v := .Values.openvpn.env }}
-  {{ $k }}: {{ $v | b64enc }}
-  {{- end }}
-  {{- end -}}
-{{- end -}}
--- a/charts/nzbget/templates/openvpn-networkpolicy.yaml
+++ b/charts/nzbget/templates/openvpn-networkpolicy.yaml
@@ -1,17 +0,0 @@
-{{- if .Values.openvpn.networkPolicy.enabled }}
-kind: NetworkPolicy
-apiVersion: networking.k8s.io/v1
-metadata:
-  name: {{ template "nzbget.fullname" . }}-deny-all-netpol
-spec:
-  podSelector:
-    matchLabels:
-      app.kubernetes.io/name: {{ include "nzbget.name" . }}
-      app.kubernetes.io/instance: {{ .Release.Name }}
-  policyTypes:
-  - Egress
-  egress:
-  {{- if .Values.openvpn.networkPolicy.egress }} 
-  {{- .Values.openvpn.networkPolicy.egress | toYaml | nindent 4 }}
-  {{- end -}}
-{{- end -}}
--- a/charts/nzbget/templates/pvc.yaml
+++ b/charts/nzbget/templates/pvc.yaml
@@ -0,0 +1,22 @@
+{{- if and .Values.nzbget.persistence.downloads.enabled (not .Values.nzbget.persistence.downloads.existingClaim) }}
+---
+kind: PersistentVolumeClaim
+apiVersion: v1
+metadata:
+  name: {{ template "media-common.fullname" . }}-downloads
+  {{- if .Values.nzbget.persistence.downloads.skipuninstall }}
+  annotations:
+    "helm.sh/resource-policy": keep
+  {{- end }}
+  labels:
+  {{- include "media-common.labels" . | nindent 4 }}
+spec:
+  accessModes:
+    - {{ .Values.nzbget.persistence.downloads.accessMode | quote }}
+  resources:
+    requests:
+      storage: {{ .Values.nzbget.persistence.downloads.size | quote }}
+  {{- if .Values.nzbget.persistence.downloads.storageClass }}
+  storageClassName: {{ if (eq "-" .Values.nzbget.persistence.downloads.storageClass) }}""{{- else }}{{ .Values.nzbget.persistence.downloads.storageClass | quote}}{{- end }}
+  {{- end }}
+{{- end -}}
--- a/charts/nzbget/templates/service.yaml
+++ b/charts/nzbget/templates/service.yaml
@@ -1,53 +0,0 @@
-apiVersion: v1
-kind: Service
-metadata:
-  name: {{ template "nzbget.fullname" . }}
-  labels:
-    app.kubernetes.io/name: {{ include "nzbget.name" . }}
-    helm.sh/chart: {{ include "nzbget.chart" . }}
-    app.kubernetes.io/instance: {{ .Release.Name }}
-    app.kubernetes.io/managed-by: {{ .Release.Service }}
-{{- if .Values.service.labels }}
-{{ toYaml .Values.service.labels | indent 4 }}
-{{- end }}
-{{- with .Values.service.annotations }}
-  annotations:
-{{ toYaml . | indent 4 }}
-{{- end }}
-spec:
-{{- if (or (eq .Values.service.type "ClusterIP") (empty .Values.service.type)) }}
-  type: ClusterIP
-  {{- if .Values.service.clusterIP }}
-  clusterIP: {{ .Values.service.clusterIP }}
-  {{end}}
-{{- else if eq .Values.service.type "LoadBalancer" }}
-  type: {{ .Values.service.type }}
-  {{- if .Values.service.loadBalancerIP }}
-  loadBalancerIP: {{ .Values.service.loadBalancerIP }}
-  {{- end }}
-  {{- if .Values.service.loadBalancerSourceRanges }}
-  loadBalancerSourceRanges:
-{{ toYaml .Values.service.loadBalancerSourceRanges | indent 4 }}
-  {{- end -}}
-{{- else }}
-  type: {{ .Values.service.type }}
-{{- end }}
-{{- if .Values.service.externalIPs }}
-  externalIPs:
-{{ toYaml .Values.service.externalIPs | indent 4 }}
-{{- end }}
-  {{- if .Values.service.externalTrafficPolicy }}
-  externalTrafficPolicy: {{ .Values.service.externalTrafficPolicy }}
-  {{- end }}
-  ports:
-    - name: http
-      port: {{ .Values.service.port }}
-      protocol: TCP
-      targetPort: http
-{{ if (and (eq .Values.service.type "NodePort") (not (empty .Values.service.nodePort))) }}
-      nodePort: {{.Values.service.nodePort}}
-{{ end }}
-  selector:
-    app.kubernetes.io/name: {{ include "nzbget.name" . }}
-    app.kubernetes.io/instance: {{ .Release.Name }}
-    
--- a/charts/nzbget/values.yaml
+++ b/charts/nzbget/values.yaml
@@ -1,179 +1,40 @@
 # Default values for nzbget.
-# This is a YAML-formatted file.
-# Declare variables to be passed into your templates.
-
-image:
-  repository: linuxserver/nzbget
-  tag: v21.0-ls61
-  pullPolicy: IfNotPresent
-
-# upgrade strategy type (e.g. Recreate or RollingUpdate)
-strategyType: Recreate
-
-# Probes configuration
-probes:
-  liveness:
-    initialDelaySeconds: 60
-    failureThreshold: 5
-    timeoutSeconds: 10
-  readiness:
-    initialDelaySeconds: 60
-    failureThreshold: 5
-    timeoutSeconds: 10
-
-nameOverride: ""
-fullnameOverride: ""
-
-timezone: UTC
-puid: 1001
-pgid: 1001
-
-service:
-  type: ClusterIP
-  port: 6789
-  ## Specify the nodePort value for the LoadBalancer and NodePort service types.
-  ## ref: https://kubernetes.io/docs/concepts/services-networking/service/#type-nodeport
-  ##
-  # nodePort:
-  ## Provide any additional annotations which may be required. This can be used to
-  ## set the LoadBalancer service type to internal only.
-  ## ref: https://kubernetes.io/docs/concepts/services-networking/service/#internal-load-balancer
-  ##
-  annotations: {}
-  labels: {}
-  ## Use loadBalancerIP to request a specific static IP,
-  ## otherwise leave blank
-  ##
-  loadBalancerIP:
-  # loadBalancerSourceRanges: []
-  ## Set the externalTrafficPolicy in the Service to either Cluster or Local
-  # externalTrafficPolicy: Cluster
-
-ingress:
-  enabled: false
-  annotations: {}
-    # kubernetes.io/ingress.class: nginx
-    # kubernetes.io/tls-acme: "true"
-  labels: {}
-  path: /
-  hosts:
-    - chart-example.local
-  tls: []
-  #  - secretName: chart-example-tls
-  #    hosts:
-  #      - chart-example.local
-
-openvpn:
-  # Enables an openvpn sidecar that when configured properly will provide a
-  # Secure outbound VPN for use by NZBGet.
-  enabled: false

+nzbget:
  image:
-    repository: dperson/openvpn-client
-    tag: latest
+    organization: linuxserver
+    repository: nzbget
    pullPolicy: IfNotPresent
+    tag: v21.0-ls61
+  service:
+    port: 6789

-  # All variables specified here will be added to the openvpn sidecar container
-  # Ref https://hub.docker.com/r/dperson/openvpn-client for all config values
-  env: []
-  # DNS: "true"
-  # TZ: EST5EDT
-
-  # Provide a customized vpn.conf file to be used by openvpn.
-  vpnConf:  # |-
-    # Some Example Config
-    # remote greatvpnhost.com 8888
-    # auth-user-pass
-    # Cipher AES
-
-  # Credentials to connect to the VPN Service (used with -a)
-  auth:  # "user;password"
-
-  # If set to true, will deploy a network policy that blocks all outbound
-  # traffic except traffic specified as allowed
-  networkPolicy:
+  # Configure the OpenVPN add-on
+  openvpn:
    enabled: false

-    # The egress configuration for your network policy, All outbound traffic
-    # From the pod will be blocked unless specified here. Your cluster must
-    # have a CNI that supports network policies (Canal, Calico, etc...)
-    # https://kubernetes.io/docs/concepts/services-networking/network-policies/
-    # https://github.com/ahmetb/kubernetes-network-policy-recipes
-    egress:
-      # - to:
-      #   - ipBlock:
-      #       cidr: 0.0.0.0/0
-      #   ports:
-      #   - port: 53
-      #     protocol: UDP
-      #   - port: 53
-      #     protocol: TCP
+  persistence:
+    downloads:
+      enabled: false
+      ## nzbget downloads Persistent Volume Storage Class
+      ## If defined, storageClassName: <storageClass>
+      ## If set to "-", storageClassName: "", which disables dynamic provisioning
+      ## If undefined (the default) or set to null, no storageClassName spec is
+      ##   set, choosing the default provisioner.  (gp2 on AWS, standard on
+      ##   GKE, AWS & OpenStack)
+      # storageClass: "-"
+      # accessMode: ReadWriteOnce
+      # size: 1Gi
+      ## Do not delete the pvc upon helm uninstall
+      # skipuninstall: false

-persistence:
-  config:
-    enabled: true
-    ## nzbget configuration data Persistent Volume Storage Class
-    ## If defined, storageClassName: <storageClass>
-    ## If set to "-", storageClassName: "", which disables dynamic provisioning
-    ## If undefined (the default) or set to null, no storageClassName spec is
-    ##   set, choosing the default provisioner.  (gp2 on AWS, standard on
-    ##   GKE, AWS & OpenStack)
-    ##
-    # storageClass: "-"
-    ##
-    ## If you want to reuse an existing claim, you can pass the name of the PVC using
-    ## the existingClaim variable
-    # existingClaim: your-claim
-    accessMode: ReadWriteOnce
-    size: 1Gi
-    ## Do not delete the pvc upon helm uninstall
-    skipuninstall: false
-  downloads:
-    enabled: true
-    ## nzbget torrents downloads volume configuration
-    ## If defined, storageClassName: <storageClass>
-    ## If set to "-", storageClassName: "", which disables dynamic provisioning
-    ## If undefined (the default) or set to null, no storageClassName spec is
-    ##   set, choosing the default provisioner.  (gp2 on AWS, standard on
-    ##   GKE, AWS & OpenStack)
-    ##
-    # storageClass: "-"
-    ##
-    ## If you want to reuse an existing claim, you can pass the name of the PVC using
-    ## the existingClaim variable
-    # existingClaim: your-claim
-    # subPath: some-subpath
-    accessMode: ReadWriteOnce
-    size: 10Gi
-    ## Do not delete the pvc upon helm uninstall
-    skipuninstall: false
-  extraMounts: []
-  ## Include additional claims that can be mounted inside the
-  ## pod. This is useful if you wish to use different paths with categories
-  ## Claim will me mounted as /{mountPath} if specified. If no {mountPath} is given,
-  ## mountPath will default to {name}
-  # - name: video
-  #   claimName: video-claim
-  #   mountPath: /mnt/path/in/pod
+  additionalVolumes:
+    - name: downloads
+      emptyDir: {}
+      ## When using persistence.downloads.enabled: true, adjust this to:
+      # persistentVolumeClaim:
+      #   claimName: nzbget-downloads

-resources: {}
-  # We usually recommend not to specify default resources and to leave this as a conscious
-  # choice for the user. This also increases chances charts run on environments with little
-  # resources, such as Minikube. If you do want to specify resources, uncomment the following
-  # lines, adjust them as necessary, and remove the curly braces after 'resources:'.
-  # limits:
-  #  cpu: 100m
-  #  memory: 128Mi
-  # requests:
-  #  cpu: 100m
-  #  memory: 128Mi
-
-nodeSelector: {}
-
-tolerations: []
-
-affinity: {}
-
-podAnnotations: {}
-
-deploymentAnnotations: {}
+  additionalVolumeMounts:
+    - name: downloads
+      mountPath: /downloads
--- a/charts/prometheus-nut-exporter/.helmignore
+++ b/charts/prometheus-nut-exporter/.helmignore
@@ -0,0 +1,23 @@
+# Patterns to ignore when building packages.
+# This supports shell glob matching, relative path matching, and
+# negation (prefixed with !). Only one pattern per line.
+.DS_Store
+# Common VCS dirs
+.git/
+.gitignore
+.bzr/
+.bzrignore
+.hg/
+.hgignore
+.svn/
+# Common backup files
+*.swp
+*.bak
+*.tmp
+*.orig
+*~
+# Various IDEs
+.project
+.idea/
+*.tmproj
+.vscode/
--- a/charts/prometheus-nut-exporter/Chart.yaml
+++ b/charts/prometheus-nut-exporter/Chart.yaml
@@ -0,0 +1,16 @@
+apiVersion: v2
+name: prometheus-nut-exporter
+description: A Helm chart for Kubernetes
+type: application
+version: 1.0.1
+appVersion: 1.0.1
+keywords:
+- nut
+- prometheus
+home: https://github.com/k8s-at-home/charts/tree/master/charts/prometheus-nut-exporter
+icon: https://www.iconfinder.com/data/icons/wpzoom-developer-icon-set/500/125-512.png
+sources:
+- https://github.com/HON95/prometheus-nut-exporter
+maintainers:
+- name: billimek
+  email: jeff@billimek.com
--- a/charts/prometheus-nut-exporter/README.md
+++ b/charts/prometheus-nut-exporter/README.md
@@ -0,0 +1,50 @@
+# Prometheus NUT Exporter
+
+This is a helm chart provides a service monitor to send NUT server metrics to a Prometheus instance. Based on [Prometheus NUT Exporter](https://github.com/HON95/prometheus-nut-exporter).
+
+## TL;DR;
+
+```console
+helm repo add k8s-at-home https://k8s-at-home.com/charts/
+helm install k8s-at-home/prometheus-nut-exporter
+```
+
+## Installing the Chart
+
+To install the chart with the release name `prometheus-nut-exporter`:
+
+```console
+helm install --name prometheus-nut-exporter k8s-at-home/prometheus-nut-exporter
+```
+
+## Uninstalling the Chart
+
+To uninstall/delete the `prometheus-nut-exporter` deployment:
+
+```console
+helm delete prometheus-nut-exporter
+```
+
+The command removes all the Kubernetes components associated with the chart and deletes the release.
+
+## Configuration
+
+Read through the [values.yaml](https://github.com/k8s-at-home/charts/blob/master/charts/prometheus-nut-exporter/values.yaml) file. It has several commented out suggested values.
+
+Specify each parameter using the `--set key=value[,key=value]` argument to `helm install`. For example,
+
+```console
+helm install --name prometheus-nut-exporter \
+   --set serviceMonitor.enabled=true \
+    k8s-at-home/prometheus-nut-exporter
+```
+
+Alternatively, a YAML file that specifies the values for the above parameters can be provided while installing the chart. For example,
+
+```console
+helm install --name prometheus-nut-exporter -f values.yaml k8s-at-home/prometheus-nut-exporter
+```
+
+## Metrics
+
+You can find the exported metrics here: [metrics](https://github.com/HON95/prometheus-nut-exporter/blob/master/metrics.md).
--- a/charts/prometheus-nut-exporter/templates/NOTES.txt
+++ b/charts/prometheus-nut-exporter/templates/NOTES.txt
@@ -0,0 +1,15 @@
+1. Get the application URL by running these commands:
+{{- if contains "NodePort" .Values.service.type }}
+  export NODE_PORT=$(kubectl get --namespace {{ .Release.Namespace }} -o jsonpath="{.spec.ports[0].nodePort}" services {{ include "prometheus-nut-exporter.fullname" . }})
+  export NODE_IP=$(kubectl get nodes --namespace {{ .Release.Namespace }} -o jsonpath="{.items[0].status.addresses[0].address}")
+  echo http://$NODE_IP:$NODE_PORT
+{{- else if contains "LoadBalancer" .Values.service.type }}
+     NOTE: It may take a few minutes for the LoadBalancer IP to be available.
+           You can watch the status of by running 'kubectl get --namespace {{ .Release.Namespace }} svc -w {{ include "prometheus-nut-exporter.fullname" . }}'
+  export SERVICE_IP=$(kubectl get svc --namespace {{ .Release.Namespace }} {{ include "prometheus-nut-exporter.fullname" . }} --template "{{"{{ range (index .status.loadBalancer.ingress 0) }}{{.}}{{ end }}"}}")
+  echo http://$SERVICE_IP:{{ .Values.service.port }}
+{{- else if contains "ClusterIP" .Values.service.type }}
+  export POD_NAME=$(kubectl get pods --namespace {{ .Release.Namespace }} -l "app.kubernetes.io/name={{ include "prometheus-nut-exporter.name" . }},app.kubernetes.io/instance={{ .Release.Name }}" -o jsonpath="{.items[0].metadata.name}")
+  echo "Visit http://127.0.0.1:8080 to use your application"
+  kubectl --namespace {{ .Release.Namespace }} port-forward $POD_NAME 8080:{{ .Values.service.port }}
+{{- end }}
--- a/charts/prometheus-nut-exporter/templates/_helpers.tpl
+++ b/charts/prometheus-nut-exporter/templates/_helpers.tpl
@@ -0,0 +1,62 @@
+{{/*
+Expand the name of the chart.
+*/}}
+{{- define "prometheus-nut-exporter.name" -}}
+{{- default .Chart.Name .Values.nameOverride | trunc 63 | trimSuffix "-" }}
+{{- end }}
+
+{{/*
+Create a default fully qualified app name.
+We truncate at 63 chars because some Kubernetes name fields are limited to this (by the DNS naming spec).
+If release name contains chart name it will be used as a full name.
+*/}}
+{{- define "prometheus-nut-exporter.fullname" -}}
+{{- if .Values.fullnameOverride }}
+{{- .Values.fullnameOverride | trunc 63 | trimSuffix "-" }}
+{{- else }}
+{{- $name := default .Chart.Name .Values.nameOverride }}
+{{- if contains $name .Release.Name }}
+{{- .Release.Name | trunc 63 | trimSuffix "-" }}
+{{- else }}
+{{- printf "%s-%s" .Release.Name $name | trunc 63 | trimSuffix "-" }}
+{{- end }}
+{{- end }}
+{{- end }}
+
+{{/*
+Create chart name and version as used by the chart label.
+*/}}
+{{- define "prometheus-nut-exporter.chart" -}}
+{{- printf "%s-%s" .Chart.Name .Chart.Version | replace "+" "_" | trunc 63 | trimSuffix "-" }}
+{{- end }}
+
+{{/*
+Common labels
+*/}}
+{{- define "prometheus-nut-exporter.labels" -}}
+helm.sh/chart: {{ include "prometheus-nut-exporter.chart" . }}
+{{ include "prometheus-nut-exporter.selectorLabels" . }}
+{{- if .Chart.AppVersion }}
+app.kubernetes.io/version: {{ .Chart.AppVersion | quote }}
+{{- end }}
+app.kubernetes.io/managed-by: {{ .Release.Service }}
+{{- end }}
+
+{{/*
+Selector labels
+*/}}
+{{- define "prometheus-nut-exporter.selectorLabels" -}}
+app.kubernetes.io/name: {{ include "prometheus-nut-exporter.name" . }}
+app.kubernetes.io/instance: {{ .Release.Name }}
+{{- end }}
+
+{{/*
+Create the name of the service account to use
+*/}}
+{{- define "prometheus-nut-exporter.serviceAccountName" -}}
+{{- if .Values.serviceAccount.create }}
+{{- default (include "prometheus-nut-exporter.fullname" .) .Values.serviceAccount.name }}
+{{- else }}
+{{- default "default" .Values.serviceAccount.name }}
+{{- end }}
+{{- end }}
--- a/charts/prometheus-nut-exporter/templates/deployment.yaml
+++ b/charts/prometheus-nut-exporter/templates/deployment.yaml
@@ -0,0 +1,72 @@
+apiVersion: apps/v1
+kind: Deployment
+metadata:
+  name: {{ include "prometheus-nut-exporter.fullname" . }}
+  labels:
+    {{- include "prometheus-nut-exporter.labels" . | nindent 4 }}
+spec:
+  replicas: {{ .Values.replicaCount }}
+  selector:
+    matchLabels:
+      {{- include "prometheus-nut-exporter.selectorLabels" . | nindent 6 }}
+  template:
+    metadata:
+    {{- with .Values.podAnnotations }}
+      annotations:
+        {{- toYaml . | nindent 8 }}
+    {{- end }}
+      labels:
+        {{- include "prometheus-nut-exporter.selectorLabels" . | nindent 8 }}
+    spec:
+      {{- with .Values.imagePullSecrets }}
+      imagePullSecrets:
+        {{- toYaml . | nindent 8 }}
+      {{- end }}
+      serviceAccountName: {{ include "prometheus-nut-exporter.serviceAccountName" . }}
+      securityContext:
+        {{- toYaml .Values.podSecurityContext | nindent 8 }}
+      containers:
+        - name: {{ .Chart.Name }}
+          securityContext:
+            {{- toYaml .Values.securityContext | nindent 12 }}
+          image: "{{ .Values.image.repository }}:{{ .Values.image.tag | default .Chart.AppVersion }}"
+          imagePullPolicy: {{ .Values.image.pullPolicy }}
+          ports:
+            - name: http
+              containerPort: {{ .Values.service.port }}
+              protocol: TCP
+          {{- if .Values.env }}
+          env:
+          {{- range $key, $value := .Values.env }}
+            - name: {{ $key | quote }}
+              value: {{ $value | quote }}
+          {{- end }}
+          {{- end }}
+          livenessProbe:
+            httpGet:
+              path: /
+              port: http
+            initialDelaySeconds: {{ .Values.probes.liveness.initialDelaySeconds }}
+            failureThreshold: {{ .Values.probes.liveness.failureThreshold }}
+            timeoutSeconds: {{ .Values.probes.liveness.timeoutSeconds }}
+          readinessProbe:
+            httpGet:
+              path: /
+              port: http
+            initialDelaySeconds: {{ .Values.probes.readiness.initialDelaySeconds }}
+            failureThreshold: {{ .Values.probes.readiness.failureThreshold }}
+            timeoutSeconds: {{ .Values.probes.readiness.timeoutSeconds }}
+          resources:
+            {{- toYaml .Values.resources | nindent 12 }}
+      {{- with .Values.nodeSelector }}
+      nodeSelector:
+        {{- toYaml . | nindent 8 }}
+      {{- end }}
+      {{- with .Values.affinity }}
+      affinity:
+        {{- toYaml . | nindent 8 }}
+      {{- end }}
+      {{- with .Values.tolerations }}
+      tolerations:
+        {{- toYaml . | nindent 8 }}
+      {{- end }}
--- a/charts/prometheus-nut-exporter/templates/service.yaml
+++ b/charts/prometheus-nut-exporter/templates/service.yaml
@@ -0,0 +1,15 @@
+apiVersion: v1
+kind: Service
+metadata:
+  name: {{ include "prometheus-nut-exporter.fullname" . }}
+  labels:
+    {{- include "prometheus-nut-exporter.labels" . | nindent 4 }}
+spec:
+  type: {{ .Values.service.type }}
+  ports:
+    - port: {{ .Values.service.port }}
+      targetPort: http
+      protocol: TCP
+      name: http
+  selector:
+    {{- include "prometheus-nut-exporter.selectorLabels" . | nindent 4 }}
--- a/charts/prometheus-nut-exporter/templates/serviceaccount.yaml
+++ b/charts/prometheus-nut-exporter/templates/serviceaccount.yaml
@@ -0,0 +1,12 @@
+{{- if .Values.serviceAccount.create -}}
+apiVersion: v1
+kind: ServiceAccount
+metadata:
+  name: {{ include "prometheus-nut-exporter.serviceAccountName" . }}
+  labels:
+    {{- include "prometheus-nut-exporter.labels" . | nindent 4 }}
+  {{- with .Values.serviceAccount.annotations }}
+  annotations:
+    {{- toYaml . | nindent 4 }}
+  {{- end }}
+{{- end }}
--- a/charts/prometheus-nut-exporter/templates/servicemonitor.yaml
+++ b/charts/prometheus-nut-exporter/templates/servicemonitor.yaml
@@ -0,0 +1,22 @@
+{{- if .Values.serviceMonitor.enabled }}
+apiVersion: monitoring.coreos.com/v1
+kind: ServiceMonitor
+metadata:
+  name: {{ include "prometheus-nut-exporter.fullname" . }}
+  labels:
+    {{- include "prometheus-nut-exporter.labels" . | nindent 4 }}
+spec:
+  selector:
+    matchLabels:
+      {{- include "prometheus-nut-exporter.selectorLabels" . | nindent 6 }}
+  endpoints:
+    {{- range .Values.serviceMonitor.targets }}
+    - port: http
+      interval: 15s
+      scrapeTimeout: 10s
+      path: "/nut"
+      params:
+        target:
+          - "{{ .hostname }}:{{ .port }}"
+    {{- end }}
+{{- end }}
--- a/charts/prometheus-nut-exporter/values.yaml
+++ b/charts/prometheus-nut-exporter/values.yaml
@@ -0,0 +1,79 @@
+# Default values for prometheus-nut-exporter.
+# This is a YAML-formatted file.
+# Declare variables to be passed into your templates.
+
+replicaCount: 1
+
+image:
+  repository: hon95/prometheus-nut-exporter
+  pullPolicy: IfNotPresent
+  tag: "1.0.1"
+
+imagePullSecrets: []
+nameOverride: ""
+fullnameOverride: ""
+
+serviceAccount:
+  # Specifies whether a service account should be created
+  create: true
+  # Annotations to add to the service account
+  annotations: {}
+  # The name of the service account to use.
+  # If not set and create is true, a name is generated using the fullname template
+  name: ""
+
+env: {}
+  # TZ: UTC
+
+serviceMonitor:
+  enabled: false
+  # Specify the list of NUT servers that should be monitored
+  targets: []
+    # - hostname: nut-server
+    #   port: 3493
+
+# Probes configuration
+probes:
+  liveness:
+    initialDelaySeconds: 30
+    failureThreshold: 5
+    timeoutSeconds: 10
+  readiness:
+    initialDelaySeconds: 30
+    failureThreshold: 5
+    timeoutSeconds: 10
+
+podAnnotations: {}
+
+podSecurityContext: {}
+  # fsGroup: 2000
+
+securityContext: {}
+  # capabilities:
+  #   drop:
+  #   - ALL
+  # readOnlyRootFilesystem: true
+  # runAsNonRoot: true
+  # runAsUser: 1000
+
+service:
+  type: ClusterIP
+  port: 9995
+
+resources: {}
+  # We usually recommend not to specify default resources and to leave this as a conscious
+  # choice for the user. This also increases chances charts run on environments with little
+  # resources, such as Minikube. If you do want to specify resources, uncomment the following
+  # lines, adjust them as necessary, and remove the curly braces after 'resources:'.
+  # limits:
+  #   cpu: 100m
+  #   memory: 128Mi
+  # requests:
+  #   cpu: 100m
+  #   memory: 128Mi
+
+nodeSelector: {}
+
+tolerations: []
+
+affinity: {}
--- a/charts/traefik-forward-auth/.helmignore
+++ b/charts/traefik-forward-auth/.helmignore
@@ -0,0 +1,25 @@
+# Patterns to ignore when building packages.
+# This supports shell glob matching, relative path matching, and
+# negation (prefixed with !). Only one pattern per line.
+.DS_Store
+# Common VCS dirs
+.git/
+.gitignore
+.bzr/
+.bzrignore
+.hg/
+.hgignore
+.svn/
+# Common backup files
+*.swp
+*.bak
+*.tmp
+*.orig
+*~
+# Various IDEs
+.project
+.idea/
+*.tmproj
+.vscode/
+
+README.md.gotmpl
--- a/charts/traefik-forward-auth/Chart.yaml
+++ b/charts/traefik-forward-auth/Chart.yaml
@@ -0,0 +1,19 @@
+apiVersion: v2
+name: traefik-forward-auth
+description: A minimal forward authentication service that provides OAuth/SSO login and authentication for the traefik reverse proxy/load balancer
+type: application
+version: 1.0.0
+appVersion: 2.2.0
+keywords:
+  - traefik
+  - traefik-forward-auth
+  - oauth
+  - oauth2
+  - oidc
+home: https://github.com/k8s-at-home/charts/tree/master/charts/traefik-forward-auth
+sources:
+  - https://github.com/thomseddon/traefik-forward-auth
+  - https://hub.docker.com/r/thomseddon/traefik-forward-auth
+maintainers:
+  - name: DirtyCajunRice
+    email: nick@cajun.pro
--- a/charts/traefik-forward-auth/OWNERS
+++ b/charts/traefik-forward-auth/OWNERS
@@ -0,0 +1,4 @@
+approvers:
+- DirtyCajunRice
+reviewers:
+- DirtyCajunRice
--- a/charts/traefik-forward-auth/README.md
+++ b/charts/traefik-forward-auth/README.md
@@ -0,0 +1,120 @@
+# traefik-forward-auth
+
+![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![Version: 1.0.0](https://img.shields.io/badge/Version-1.0.0-informational?style=flat-square) ![AppVersion: 2.2.0](https://img.shields.io/badge/AppVersion-2.2.0-informational?style=flat-square) [![ArtifactHub](https://img.shields.io/endpoint?url=https://artifacthub.io/badge/repository/traefik-forward-auth)](https://artifacthub.io/packages/helm/traefik-forward-auth)
+
+A minimal forward authentication service that provides OAuth/SSO login and authentication for the traefik reverse proxy/load balancer
+
+The default values and container images used in this chart will allow for running in a multi-arch cluster (amd64, arm, arm64)
+
+Chart that
+* Adds docker image information leveraging the [official image](https://github.com/thomseddon/traefik-forward-auth)
+* Deploys [traefik-forward-auth](https://github.com/thomseddon/traefik-forward-auth)
+
+## TL;DR
+```console
+$ helm repo add k8s-at-home https://k8s-at-home.com/charts/
+$ helm install k8s-at-home/traefik-forward-auth
+```
+
+## Installing the Chart
+To install the chart with the release name `traefik-forward-auth`:
+```console
+helm install traefik-forward-auth k8s-at-home/traefik-forward-auth
+```
+
+## Uninstalling the Chart
+To uninstall the `traefik-forward-auth` deployment:
+```console
+helm uninstall traefik-forward-auth
+```
+The command removes all the Kubernetes components associated with the chart and deletes the release.
+
+## Configuration
+
+Read through the [values.yaml](https://github.com/k8s-at-home/charts/blob/master/charts/traefik-forward-auth/values.yaml)
+file. It has several commented out suggested values.
+
+Specify each parameter using the `--set key=value[,key=value]` argument to `helm install`. For example,
+```console
+helm install traefik-forward-auth \
+  --set env.TZ="America/New York" \
+    k8s-at-home/traefik-forward-auth
+```
+
+Alternatively, a YAML file that specifies the values for the above parameters can be provided while installing the chart.
+For example,
+```console
+helm install traefik-forward-auth k8s-at-home/traefik-forward-auth --values values.yaml
+```
+
+## Values
+
+| Key | Type | Default | Description |
+|-----|------|---------|-------------|
+| affinity | object | `{}` |  |
+| authHost | string | `""` | Single host to use when returning from 3rd party auth |
+| autoscaling.enabled | bool | `false` |  |
+| autoscaling.maxReplicas | int | `100` |  |
+| autoscaling.minReplicas | int | `1` |  |
+| autoscaling.targetCPUUtilizationPercentage | int | `80` |  |
+| cookie.csrfName | string | `""` | CSRF Cookie Name (default: _forward_auth_csrf) |
+| cookie.domain | string | `""` | Domain(s) to set auth cookie on. (Comma delimited) |
+| cookie.insecure | string | `""` | Use insecure cookies |
+| cookie.name | string | `""` | Cookie Name (default: _forward_auth) |
+| default.action | string | `""` | [auth|allow] Default action (default: auth) |
+| default.provider | string | `""` | [google|oidc|generic-oauth] Default provider (default: google) |
+| env | list | `[]` |  |
+| fullnameOverride | string | `""` |  |
+| image.pullPolicy | string | `"IfNotPresent"` |  |
+| image.repository | string | `"thomseddon/traefik-forward-auth"` |  |
+| image.tag | string | `""` |  |
+| imagePullSecrets | list | `[]` |  |
+| ingress.annotations | object | `{}` |  |
+| ingress.enabled | bool | `false` |  |
+| ingress.hosts[0].host | string | `"chart-example.local"` |  |
+| ingress.hosts[0].paths | list | `[]` |  |
+| ingress.tls | list | `[]` |  |
+| lifetime | string | `""` | Lifetime in seconds (default: 43200) |
+| logging.format | string | `""` | [text|json|pretty] Log format (default: text) |
+| logging.level | string | `""` | [trace|debug|info|warn|error|fatal|panic] Log level (default: warn) |
+| logoutRedirect | string | `""` | URL to redirect to following logout |
+| middleware.enabled | bool | `false` | Enable to deploy a preconfigured middleware |
+| middleware.name | string | `""` | Name for the middleware |
+| nameOverride | string | `""` |  |
+| nodeSelector | object | `{}` |  |
+| podAnnotations | object | `{}` |  |
+| podSecurityContext | object | `{}` |  |
+| providers.genericOauth.authUrl | string | `""` | Auth/Login URL |
+| providers.genericOauth.clientId | string | `""` | Client ID |
+| providers.genericOauth.clientSecret | string | `""` | Client Secret |
+| providers.genericOauth.enabled | bool | `false` | Enable the generic OAUTH2 provider |
+| providers.genericOauth.resource | string | `""` | Optional resource indicator |
+| providers.genericOauth.scope | string | `""` | Scopes (default: profile, email) |
+| providers.genericOauth.tokenStyle | string | `""` | How token is presented when querying the User URL |
+| providers.genericOauth.tokenUrl | string | `""` | Token URL |
+| providers.genericOauth.userUrl | string | `""` | URL used to retrieve user info |
+| providers.google.clientId | string | `""` | Client ID |
+| providers.google.clientSecret | string | `""` | Client Secret |
+| providers.google.enabled | bool | `false` | Enable the google provider |
+| providers.google.prompt | string | `""` | Space separated list of OpenID prompt options |
+| providers.oidc.clientId | string | `""` | Client ID |
+| providers.oidc.clientSecret | string | `""` | Client Secret |
+| providers.oidc.enabled | bool | `false` | Enable the generic OIDC provider |
+| providers.oidc.issuerUrl | string | `""` | Issuer URL |
+| providers.oidc.resource | string | `""` | Optional resource indicator |
+| replicaCount | int | `1` |  |
+| resources | object | `{}` |  |
+| restrictions.domain | string | `""` | Only allow given email domains. (Comma delimited) |
+| restrictions.whitelist | string | `""` | Only allow given email addresses. (Comma delimited) |
+| secret | string | `""` | Secret used for signing. If empty, one will be generated. If specifying your own in env use "-" |
+| securityContext | object | `{}` |  |
+| service.additionalSpec | object | `{}` |  |
+| service.annotations | object | `{}` |  |
+| service.labels | object | `{}` |  |
+| service.port | int | `4181` |  |
+| service.type | string | `"ClusterIP"` |  |
+| serviceAccount.annotations | object | `{}` |  |
+| serviceAccount.create | bool | `true` |  |
+| serviceAccount.name | string | `""` |  |
+| tolerations | list | `[]` |  |
+| urlPath | string | `""` | Callback URL Path (default: /_oauth) |
--- a/charts/traefik-forward-auth/README.md.gotmpl
+++ b/charts/traefik-forward-auth/README.md.gotmpl
@@ -0,0 +1,26 @@
+{{ template "chart.header" . }}
+{{ template "chart.typeBadge" . }}{{ template "chart.versionBadge" . }}{{ template "chart.appVersionBadge" . }}{{ template "badge.artifactHub" . }}
+
+{{ template "chart.description" . }}
+
+{{ template "description.multiarch" . }}
+
+Chart that
+* Adds docker image information leveraging the [official image](https://github.com/thomseddon/traefik-forward-auth)
+* Deploys [traefik-forward-auth](https://github.com/thomseddon/traefik-forward-auth)
+
+{{ template "install.tldr" . }}
+
+{{ template "install" . }}
+
+{{ template "uninstall" . }}
+
+{{ template "configuration.header" . }}
+
+{{ template "configuration.readValues" . }}
+
+{{ template "configuration.example.set" .}}
+
+{{ template "configuration.example.file" . }}
+
+{{ template "chart.valuesSection" . }}
--- a/charts/traefik-forward-auth/ci/ct-values.yaml
+++ b/charts/traefik-forward-auth/ci/ct-values.yaml
@@ -0,0 +1,5 @@
+providers:
+  google:
+    enabled: true
+    clientId: "fakeclientid"
+    clientSecret: "fakeclientsecret"
--- a/charts/traefik-forward-auth/templates/NOTES.txt
+++ b/charts/traefik-forward-auth/templates/NOTES.txt
@@ -0,0 +1,21 @@
+1. Get the application URL by running these commands:
+{{- if .Values.ingress.enabled }}
+{{- range $host := .Values.ingress.hosts }}
+  {{- range .paths }}
+  http{{ if $.Values.ingress.tls }}s{{ end }}://{{ $host.host }}{{ . }}
+  {{- end }}
+{{- end }}
+{{- else if contains "NodePort" .Values.service.type }}
+  export NODE_PORT=$(kubectl get --namespace {{ .Release.Namespace }} -o jsonpath="{.spec.ports[0].nodePort}" services {{ include "traefik-forward-auth.fullname" . }})
+  export NODE_IP=$(kubectl get nodes --namespace {{ .Release.Namespace }} -o jsonpath="{.items[0].status.addresses[0].address}")
+  echo http://$NODE_IP:$NODE_PORT
+{{- else if contains "LoadBalancer" .Values.service.type }}
+     NOTE: It may take a few minutes for the LoadBalancer IP to be available.
+           You can watch the status of by running 'kubectl get --namespace {{ .Release.Namespace }} svc -w {{ include "traefik-forward-auth.fullname" . }}'
+  export SERVICE_IP=$(kubectl get svc --namespace {{ .Release.Namespace }} {{ include "traefik-forward-auth.fullname" . }} --template "{{"{{ range (index .status.loadBalancer.ingress 0) }}{{.}}{{ end }}"}}")
+  echo http://$SERVICE_IP:{{ .Values.service.port }}
+{{- else if contains "ClusterIP" .Values.service.type }}
+  export POD_NAME=$(kubectl get pods --namespace {{ .Release.Namespace }} -l "app.kubernetes.io/name={{ include "traefik-forward-auth.name" . }},app.kubernetes.io/instance={{ .Release.Name }}" -o jsonpath="{.items[0].metadata.name}")
+  echo "Visit http://127.0.0.1:8080 to use your application"
+  kubectl --namespace {{ .Release.Namespace }} port-forward $POD_NAME 8080:80
+{{- end }}
--- a/charts/traefik-forward-auth/templates/_helpers.tpl
+++ b/charts/traefik-forward-auth/templates/_helpers.tpl
@@ -0,0 +1,63 @@
+{{/* vim: set filetype=mustache: */}}
+{{/*
+Expand the name of the chart.
+*/}}
+{{- define "traefik-forward-auth.name" -}}
+{{- default .Chart.Name .Values.nameOverride | trunc 63 | trimSuffix "-" }}
+{{- end }}
+
+{{/*
+Create a default fully qualified app name.
+We truncate at 63 chars because some Kubernetes name fields are limited to this (by the DNS naming spec).
+If release name contains chart name it will be used as a full name.
+*/}}
+{{- define "traefik-forward-auth.fullname" -}}
+{{- if .Values.fullnameOverride }}
+{{- .Values.fullnameOverride | trunc 63 | trimSuffix "-" }}
+{{- else }}
+{{- $name := default .Chart.Name .Values.nameOverride }}
+{{- if contains $name .Release.Name }}
+{{- .Release.Name | trunc 63 | trimSuffix "-" }}
+{{- else }}
+{{- printf "%s-%s" .Release.Name $name | trunc 63 | trimSuffix "-" }}
+{{- end }}
+{{- end }}
+{{- end }}
+
+{{/*
+Create chart name and version as used by the chart label.
+*/}}
+{{- define "traefik-forward-auth.chart" -}}
+{{- printf "%s-%s" .Chart.Name .Chart.Version | replace "+" "_" | trunc 63 | trimSuffix "-" }}
+{{- end }}
+
+{{/*
+Common labels
+*/}}
+{{- define "traefik-forward-auth.labels" -}}
+helm.sh/chart: {{ include "traefik-forward-auth.chart" . }}
+{{ include "traefik-forward-auth.selectorLabels" . }}
+{{- if .Chart.AppVersion }}
+app.kubernetes.io/version: {{ .Chart.AppVersion | quote }}
+{{- end }}
+app.kubernetes.io/managed-by: {{ .Release.Service }}
+{{- end }}
+
+{{/*
+Selector labels
+*/}}
+{{- define "traefik-forward-auth.selectorLabels" -}}
+app.kubernetes.io/name: {{ include "traefik-forward-auth.name" . }}
+app.kubernetes.io/instance: {{ .Release.Name }}
+{{- end }}
+
+{{/*
+Create the name of the service account to use
+*/}}
+{{- define "traefik-forward-auth.serviceAccountName" -}}
+{{- if .Values.serviceAccount.create }}
+{{- default (include "traefik-forward-auth.fullname" .) .Values.serviceAccount.name }}
+{{- else }}
+{{- default "default" .Values.serviceAccount.name }}
+{{- end }}
+{{- end }}
--- a/charts/traefik-forward-auth/templates/deployment.yaml
+++ b/charts/traefik-forward-auth/templates/deployment.yaml
@@ -0,0 +1,207 @@
+{{- $fullName := include "traefik-forward-auth.fullname" . -}}
+apiVersion: apps/v1
+kind: Deployment
+metadata:
+  name: {{ $fullName }}
+  labels:
+  {{- include "traefik-forward-auth.labels" . | nindent 4 }}
+spec:
+  {{- if not .Values.autoscaling.enabled }}
+  replicas: {{ .Values.replicaCount }}
+  {{- end }}
+  selector:
+    matchLabels:
+  {{- include "traefik-forward-auth.selectorLabels" . | nindent 6 }}
+  template:
+    metadata:
+      {{- with .Values.podAnnotations }}
+      annotations:
+      {{- toYaml . | nindent 8 }}
+      {{- end }}
+      labels:
+    {{- include "traefik-forward-auth.selectorLabels" . | nindent 8 }}
+    spec:
+      {{- with .Values.imagePullSecrets }}
+      imagePullSecrets:
+      {{- toYaml . | nindent 8 }}
+      {{- end }}
+      serviceAccountName: {{ include "traefik-forward-auth.serviceAccountName" . }}
+      {{- with .Values.podSecurityContext }}
+      securityContext:
+      {{- toYaml . | nindent 8 }}
+      {{- end }}
+      containers:
+        - name: {{ .Chart.Name }}
+          {{- with .Values.securityContext }}
+          securityContext:
+          {{- toYaml . | nindent 12 }}
+          {{- end }}
+          image: "{{ .Values.image.repository }}:{{ .Values.image.tag | default .Chart.AppVersion }}"
+          imagePullPolicy: {{ .Values.image.pullPolicy }}
+          env:
+            {{- if .Values.logging.level }}
+            - name: LOG_LEVEL
+              value: {{ .Values.logging.level | quote }}
+            {{- end }}
+            {{- if .Values.logging.format }}
+            - name: LOG_FORMAT
+              value: {{ .Values.logging.format | quote }}
+            {{- end }}
+            {{- if .Values.authHost }}
+            - name: AUTH_HOST
+              value: {{ .Values.authHost | quote }}
+            {{- end }}
+            {{- if .Values.cookie.domain }}
+            - name: COOKIE_DOMAIN
+              value: {{ .Values.cookie.domain | quote }}
+            {{- end }}
+            {{- if .Values.cookie.insecure }}
+            - name: INSECURE_COOKIE
+              value: {{ .Values.cookie.insecure | quote }}
+            {{- end }}
+            {{- if .Values.cookie.name }}
+            - name: COOKIE_NAME
+              value: {{ .Values.cookie.name | quote }}
+            {{- end }}
+            {{- if .Values.cookie.csrfName }}
+            - name: CSRF_COOKIE_NAME
+              value: {{ .Values.cookie.csrfName | quote }}
+            {{- end }}
+            {{- if .Values.default.action }}
+            - name: DEFAULT_ACTION
+              value: {{ .Values.default.action | quote }}
+            {{- end }}
+            {{- if .Values.default.provider }}
+            - name: DEFAULT_PROVIDER
+              value: {{ .Values.default.provider | quote }}
+            {{- end }}
+            {{- if .Values.restrictions.domain }}
+            - name: DOMAIN
+              value: {{ .Values.restrictions.domain | quote }}
+            {{- end }}
+            {{- if .Values.restrictions.whitelist }}
+            - name: WHITELIST
+              value: {{ .Values.restrictions.whitelist | quote }}
+            {{- end }}
+            {{- if .Values.lifetime }}
+            - name: LIFETIME
+              value: {{ .Values.lifetime | quote }}
+            {{- end }}
+            {{- if .Values.logoutRedirect }}
+            - name: LOGOUT_REDIRECT
+              value: {{ .Values.logoutRedirect | quote }}
+            {{- end }}
+            {{- if .Values.urlPath }}
+            - name: URL_PATH
+              value: {{ .Values.urlPath | quote }}
+            {{- end }}
+            {{- if ne .Values.secret "-" }}
+            - name: SECRET
+              {{- if .Values.secret }}
+              value: {{ .Values.secret | quote }}
+              {{- else }}
+              valueFrom:
+                secretKeyRef:
+                  name: {{ $fullName }}
+                  key: secret
+              {{- end }}
+            {{- with .Values.providers}}
+            {{- if .google.enabled }}
+            {{- if .google.clientId }}
+            - name: PROVIDERS_GOOGLE_CLIENT_ID
+              value: {{ .google.clientId | quote }}
+            {{- end }}
+            {{- if .google.clientSecret }}
+            - name: PROVIDERS_GOOGLE_CLIENT_SECRET
+              value: {{ .google.clientSecret | quote }}
+            {{- end }}
+            {{- if .google.prompt }}
+            - name: PROVIDERS_GOOGLE_PROMPT
+              value: {{ .google.prompt | quote }}
+              {{- end }}
+            {{- end }}
+            {{- if .oidc.enabled }}
+            {{- if .oidc.clientId }}
+            - name: PROVIDERS_OIDC_CLIENT_ID
+              value: {{ .oidc.clientId | quote }}
+            {{- end }}
+            {{- if .oidc.clientSecret }}
+            - name: PROVIDERS_OIDC_CLIENT_SECRET
+              value: {{ .oidc.clientSecret | quote }}
+            {{- end }}
+            {{- if .oidc.issuerUrl }}
+            - name: PROVIDERS_OIDC_ISSUER_URL
+              value: {{ .oidc.issuerUrl | quote }}
+            {{- end }}
+            {{- if .oidc.resource }}
+            - name: PROVIDERS_OIDC_RESOURCE
+              value: {{ .oidc.resource | quote }}
+              {{- end }}
+            {{- end }}
+            {{- if .genericOauth.enabled }}
+            {{- if .genericOauth.clientId }}
+            - name: PROVIDERS_GENERIC_OAUTH_CLIENT_ID
+              value: {{ .genericOauth.clientId | quote }}
+            {{- end }}
+            {{- if .genericOauth.clientSecret }}
+            - name: PROVIDERS_GENERIC_OAUTH_CLIENT_SECRET
+              value: {{ .genericOauth.clientSecret | quote }}
+            {{- end }}
+            {{- if .genericOauth.authUrl }}
+            - name: PROVIDERS_GENERIC_OAUTH_AUTH_URL
+              value: {{ .genericOauth.authUrl | quote }}
+            {{- end }}
+            {{- if .genericOauth.tokenUrl }}
+            - name: PROVIDERS_GENERIC_OAUTH_TOKEN_URL
+              value: {{ .genericOauth.tokenUrl | quote }}
+            {{- end }}
+            {{- if .genericOauth.userUrl }}
+            - name: PROVIDERS_GENERIC_OAUTH_USER_URL
+              value: {{ .genericOauth.userUrl | quote }}
+            {{- end }}
+            {{- if .genericOauth.resource }}
+            - name: PROVIDERS_GENERIC_OAUTH_RESOURCE
+              value: {{ .genericOauth.resource | quote }}
+            {{- end }}
+            {{- if .genericOauth.scope }}
+            - name: PROVIDERS_GENERIC_OAUTH_SCOPE
+              value: {{ .genericOauth.scope | quote }}
+            {{- end }}
+            {{- if .genericOauth.tokenStyle }}
+            - name: PROVIDERS_GENERIC_OAUTH_TOKEN_STYLE
+              value: {{ .genericOauth.tokenStyle | quote }}
+          {{- end }}
+          {{- end }}
+          {{- end }}
+          {{- end }}
+          {{- if .Values.env }}
+          {{- toYaml .Values.env | nindent 12 }}
+          {{- end }}
+          ports:
+            - name: http
+              containerPort: 4181
+              protocol: TCP
+          livenessProbe:
+            httpGet:
+              path: /
+              port: http
+          readinessProbe:
+            httpGet:
+              path: /
+              port: http
+          {{- with .Values.resources }}
+          resources:
+      {{- toYaml . | nindent 12 }}
+      {{- end }}
+      {{- with .Values.nodeSelector }}
+      nodeSelector:
+      {{- toYaml . | nindent 8 }}
+      {{- end }}
+      {{- with .Values.affinity }}
+      affinity:
+      {{- toYaml . | nindent 8 }}
+      {{- end }}
+      {{- with .Values.tolerations }}
+      tolerations:
+  {{- toYaml . | nindent 8 }}
+  {{- end }}
--- a/charts/traefik-forward-auth/templates/hpa.yaml
+++ b/charts/traefik-forward-auth/templates/hpa.yaml
@@ -0,0 +1,28 @@
+{{- if .Values.autoscaling.enabled }}
+apiVersion: autoscaling/v2beta1
+kind: HorizontalPodAutoscaler
+metadata:
+  name: {{ include "traefik-forward-auth.fullname" . }}
+  labels:
+    {{- include "traefik-forward-auth.labels" . | nindent 4 }}
+spec:
+  scaleTargetRef:
+    apiVersion: apps/v1
+    kind: Deployment
+    name: {{ include "traefik-forward-auth.fullname" . }}
+  minReplicas: {{ .Values.autoscaling.minReplicas }}
+  maxReplicas: {{ .Values.autoscaling.maxReplicas }}
+  metrics:
+  {{- if .Values.autoscaling.targetCPUUtilizationPercentage }}
+    - type: Resource
+      resource:
+        name: cpu
+        targetAverageUtilization: {{ .Values.autoscaling.targetCPUUtilizationPercentage }}
+  {{- end }}
+  {{- if .Values.autoscaling.targetMemoryUtilizationPercentage }}
+    - type: Resource
+      resource:
+        name: memory
+        targetAverageUtilization: {{ .Values.autoscaling.targetMemoryUtilizationPercentage }}
+  {{- end }}
+{{- end }}
--- a/charts/traefik-forward-auth/templates/ingress.yaml
+++ b/charts/traefik-forward-auth/templates/ingress.yaml
@@ -0,0 +1,46 @@
+{{- if .Values.ingress.enabled -}}
+  {{- $fullName := include "traefik-forward-auth.fullname" . -}}
+  {{- $svcPort := .Values.service.port -}}
+  {{- if semverCompare ">=1.14-0" .Capabilities.KubeVersion.GitVersion -}}
+apiVersion: networking.k8s.io/v1beta1
+  {{- else -}}
+apiVersion: extensions/v1beta1
+  {{- end }}
+kind: Ingress
+metadata:
+  name: {{ $fullName }}
+  labels:
+  {{- include "traefik-forward-auth.labels" . | nindent 4 }}
+  {{- if or .Values.ingress.annotations (and .Values.middleware.enabled .Values.authHost) }}
+  annotations:
+    {{- with .Values.ingress.annotations }}
+    {{- toYaml . | nindent 4 }}
+    {{- end }}
+    {{- if and .Values.middleware.enabled .Values.authHost }}
+    traefik.ingress.kubernetes.io/router.middlewares: {{ .Release.Namespace }}-{{ .Values.middleware.name | default "traefik-forward-auth" }}@kubernetescrd
+  {{- end }}
+  {{- end }}
+spec:
+  {{- if .Values.ingress.tls }}
+  tls:
+    {{- range .Values.ingress.tls }}
+    - hosts:
+        {{- range .hosts }}
+        - {{ . | quote }}
+      {{- end }}
+      secretName: {{ .secretName }}
+  {{- end }}
+  {{- end }}
+  rules:
+    {{- range .Values.ingress.hosts }}
+    - host: {{ .host | quote }}
+      http:
+        paths:
+          {{- range .paths }}
+          - path: {{ . }}
+            backend:
+              serviceName: {{ $fullName }}
+              servicePort: {{ $svcPort }}
+  {{- end }}
+  {{- end }}
+  {{- end }}
--- a/charts/traefik-forward-auth/templates/middleware.yaml
+++ b/charts/traefik-forward-auth/templates/middleware.yaml
@@ -0,0 +1,11 @@
+{{- if .Values.middleware.enabled -}}
+apiVersion: traefik.containo.us/v1alpha1
+kind: Middleware
+metadata:
+  name: {{ .Values.middleware.name | default "traefik-forward-auth" }}
+spec:
+  forwardAuth:
+    address: "http://{{ include "traefik-forward-auth.fullname" . }}:{{ .Values.service.port }}"
+    authResponseHeaders:
+      - X-Forwarded-User
+  {{- end }}
--- a/charts/traefik-forward-auth/templates/secret.yaml
+++ b/charts/traefik-forward-auth/templates/secret.yaml
@@ -0,0 +1,11 @@
+{{- if and (ne .Values.secret "-") (not .Values.secret) }}
+apiVersion: v1
+kind: Secret
+metadata:
+  name: {{ template "traefik-forward-auth.fullname" . }}
+  labels:
+  {{- include "traefik-forward-auth.labels" . | nindent 4 }}
+type: Opaque
+data:
+  secret: {{ randAlphaNum 16 | b64enc | quote }}
+  {{- end }}
--- a/charts/traefik-forward-auth/templates/service.yaml
+++ b/charts/traefik-forward-auth/templates/service.yaml
@@ -0,0 +1,22 @@
+apiVersion: v1
+kind: Service
+metadata:
+  name: {{ include "traefik-forward-auth.fullname" . }}
+  labels:
+    {{- include "traefik-forward-auth.labels" . | nindent 4 }}
+  {{- with .Values.service.annotations }}
+  annotations:
+  {{- toYaml . | nindent 4 }}
+  {{- end }}
+spec:
+  type: {{ .Values.service.type }}
+  ports:
+    - port: {{ .Values.service.port }}
+      targetPort: http
+      protocol: TCP
+      name: http
+  {{- with .Values.service.additionalSpec }}
+  {{- toYaml . | nindent 2 }}
+  {{- end }}
+  selector:
+    {{- include "traefik-forward-auth.selectorLabels" . | nindent 4 }}
--- a/charts/traefik-forward-auth/templates/serviceaccount.yaml
+++ b/charts/traefik-forward-auth/templates/serviceaccount.yaml
@@ -0,0 +1,12 @@
+{{- if .Values.serviceAccount.create -}}
+apiVersion: v1
+kind: ServiceAccount
+metadata:
+  name: {{ include "traefik-forward-auth.serviceAccountName" . }}
+  labels:
+    {{- include "traefik-forward-auth.labels" . | nindent 4 }}
+  {{- with .Values.serviceAccount.annotations }}
+  annotations:
+    {{- toYaml . | nindent 4 }}
+  {{- end }}
+{{- end }}
--- a/charts/traefik-forward-auth/values.yaml
+++ b/charts/traefik-forward-auth/values.yaml
@@ -0,0 +1,167 @@
+# Default values for traefik-forward-auth.
+
+
+replicaCount: 1
+
+image:
+  repository: thomseddon/traefik-forward-auth
+  pullPolicy: IfNotPresent
+  tag: ""
+
+imagePullSecrets: []
+nameOverride: ""
+fullnameOverride: ""
+
+logging:
+  # logging.level -- [trace|debug|info|warn|error|fatal|panic] Log level (default: warn)
+  level: ""
+  # logging.format -- [text|json|pretty] Log format (default: text)
+  format: ""
+# authHost -- Single host to use when returning from 3rd party auth
+authHost: ""
+restrictions:
+  # restrictions.domain -- Only allow given email domains. (Comma delimited)
+  domain: ""
+  # restrictions.whitelist -- Only allow given email addresses. (Comma delimited)
+  whitelist: ""
+# lifetime -- Lifetime in seconds (default: 43200)
+lifetime: ""
+cookie:
+  # cookie.domain -- Domain(s) to set auth cookie on. (Comma delimited)
+  domain: ""
+  # cookie.insecure -- Use insecure cookies
+  insecure: ""
+  # cookie.name -- Cookie Name (default: _forward_auth)
+  name: ""
+  # cookie.csrfName -- CSRF Cookie Name (default: _forward_auth_csrf)
+  csrfName: ""
+default:
+  # default.action -- [auth|allow] Default action (default: auth)
+  action: ""
+  # default.provider -- [google|oidc|generic-oauth] Default provider (default: google)
+  provider: ""
+# logoutRedirect -- URL to redirect to following logout
+logoutRedirect: ""
+# urlPath -- Callback URL Path (default: /_oauth)
+urlPath: ""
+# secret -- Secret used for signing. If empty, one will be generated. If specifying your own in env use "-"
+secret: ""
+
+middleware:
+  # middleware.enabled -- Enable to deploy a preconfigured middleware
+  enabled: false
+  # middleware.name -- Name for the middleware
+  name: ""
+providers:
+  google:
+    # providers.google.enabled -- Enable the google provider
+    enabled: false
+    # providers.google.clientId -- Client ID
+    clientId: ""
+    # providers.google.clientSecret -- Client Secret
+    clientSecret: ""
+    # providers.google.prompt -- Space separated list of OpenID prompt options
+    prompt: ""
+  oidc:
+    # providers.oidc.enabled -- Enable the generic OIDC provider
+    enabled: false
+    # providers.oidc.issuerUrl -- Issuer URL
+    issuerUrl: ""
+    # providers.oidc.clientId -- Client ID
+    clientId: ""
+    # providers.oidc.clientSecret -- Client Secret
+    clientSecret: ""
+    # providers.oidc.resource -- Optional resource indicator
+    resource: ""
+  genericOauth:
+    # providers.genericOauth.enabled -- Enable the generic OAUTH2 provider
+    enabled: false
+    # providers.genericOauth.authUrl -- Auth/Login URL
+    authUrl: ""
+    # providers.genericOauth.tokenUrl -- Token URL
+    tokenUrl: ""
+    # providers.genericOauth.userUrl -- URL used to retrieve user info
+    userUrl: ""
+    # providers.genericOauth.clientId -- Client ID
+    clientId: ""
+    # providers.genericOauth.clientSecret -- Client Secret
+    clientSecret: ""
+    # providers.genericOauth.scope -- Scopes (default: profile, email)
+    scope: ""
+    # providers.genericOauth.tokenStyle -- How token is presented when querying the User URL
+    tokenStyle: ""
+    # providers.genericOauth.resource -- Optional resource indicator
+    resource: ""
+
+env: []
+
+serviceAccount:
+  # Specifies whether a service account should be created
+  create: true
+  # Annotations to add to the service account
+  annotations: {}
+  # The name of the service account to use.
+  # If not set and create is true, a name is generated using the fullname template
+  name: ""
+
+podAnnotations: {}
+
+podSecurityContext: {}
+  # fsGroup: 2000
+
+securityContext: {}
+  # capabilities:
+  #   drop:
+  #   - ALL
+  # readOnlyRootFilesystem: true
+  # runAsNonRoot: true
+  # runAsUser: 1000
+
+service:
+  type: ClusterIP
+  port: 4181
+  ## Provide any additional annotations which may be required. This can be used to
+  ## set the LoadBalancer service type to internal only.
+  ## ref: https://kubernetes.io/docs/concepts/services-networking/service/#internal-load-balancer
+  ##
+  annotations: {}
+  labels: {}
+  additionalSpec: {}
+
+ingress:
+  enabled: false
+  annotations: {}
+    # kubernetes.io/ingress.class: nginx
+    # kubernetes.io/tls-acme: "true"
+  hosts:
+    - host: chart-example.local
+      paths: []
+  tls: []
+  #  - secretName: chart-example-tls
+  #    hosts:
+  #      - chart-example.local
+
+resources: {}
+  # We usually recommend not to specify default resources and to leave this as a conscious
+  # choice for the user. This also increases chances charts run on environments with little
+  # resources, such as Minikube. If you do want to specify resources, uncomment the following
+  # lines, adjust them as necessary, and remove the curly braces after 'resources:'.
+  # limits:
+  #   cpu: 100m
+  #   memory: 128Mi
+  # requests:
+  #   cpu: 100m
+  #   memory: 128Mi
+
+autoscaling:
+  enabled: false
+  minReplicas: 1
+  maxReplicas: 100
+  targetCPUUtilizationPercentage: 80
+  # targetMemoryUtilizationPercentage: 80
+
+nodeSelector: {}
+
+tolerations: []
+
+affinity: {}
Author	SHA1	Message	Date
Bernd Schörgers	9e284da7a6	[jackett] Migrate to media-common (#50 ) * [jackett] Migrate to media-common * [jackett] Rename alias * [jackett] Process review comments	2020-09-21 09:36:29 -04:00
Bernd Schörgers	6929543b6f	[nzbget] Migrate to media-common (#49 ) * [nzbget] Migrate to media-common * [nzbget] Migrate to media-common * [nzbget] Fix indenting in values Co-authored-by: Jeff Billimek <jeff@billimek.com>	2020-09-19 09:03:23 -04:00
Bernd Schörgers	979349b96f	[prometheus-nut-exporter] Fix selector (#52 ) * [prometheus-nut-exporter] Fix selector * [prometheus-nut-exporter] Add tests * Remove tests because no serviceMonitor in pipeline	2020-09-15 11:25:35 -04:00
Bernd Schörgers	521d473cc0	[prometheus-nut-exporter] New chart (#51 )	2020-09-15 08:28:32 -04:00
Ryan Holt	00f3ce5523	Merge pull request #48 from k8s-at-home/new/traefik-forward-auth [traefik-forward-auth] New Chart	2020-09-13 20:39:15 -04:00
Nicholas St. Germain	f7e980ab9c	Merge branch 'master' into new/traefik-forward-auth	2020-09-13 12:20:04 -05:00
Nicholas St. Germain	2eedb285e8	add artifacthub badge	2020-09-13 05:08:51 -05:00
Nicholas St. Germain	54d5f5aaeb	fix readme up with templating	2020-09-13 04:21:06 -05:00
Nicholas St. Germain	f15926425f	add traefik-forward-auth	2020-09-13 00:57:28 -05:00