zoriya/Kyoo
1
0
Fork 0
mirror of https://github.com/zoriya/Kyoo.git synced 2026-06-06 21:23:14 +00:00
Code Issues Packages Projects Releases Wiki Activity

Remove name prefix in apikeys (#1167)

Browse Source
This commit is contained in:
Zoe Roux
2025-11-19 23:29:31 +01:00
committed by GitHub
parent a115c83cba
commit 18b2ae2c5f
11 changed files with 46 additions and 51 deletions
Download Patch File Download Diff File Expand all files Collapse all files
chart/templates/scanner/deployment.yaml
+3 -5
View File
@@ -14,7 +14,7 @@ metadata:
spec:
replicas: {{ .Values.scanner.replicaCount }}
{{- with .Values.scanner.updateStrategy }}
strategy:
strategy:
{{- toYaml . | nindent 4 }}
{{- end }}
selector:
@@ -62,13 +62,11 @@ spec:
value: "http://{{ include "kyoo.auth.fullname" . }}:4568/.well-known/jwks.json"
- name: JWT_ISSUER
value: {{ .Values.kyoo.address | quote }}
- name: HELPERVAR_APIKEY
- name: KYOO_APIKEY
valueFrom:
secretKeyRef:
key: {{ .Values.kyoo.auth.apikeys.scanner.apikeyKey }}
name: {{ .Values.kyoo.auth.apikeys.scanner.existingSecret }}
- name: KYOO_APIKEY
value: "scanner-$(HELPERVAR_APIKEY)"
- name: THEMOVIEDB_API_ACCESS_TOKEN
valueFrom:
secretKeyRef:
@@ -136,4 +134,4 @@ spec:
{{- end }}
{{- with .Values.scanner.extraVolumes }}
{{- toYaml . | nindent 8 }}
{{- end }}
{{- end }}
chart/values.yaml
+6 -7
View File
@@ -115,7 +115,6 @@ kyoo:
extra: []
# - name: example
# existingSecret: bigsecret
## value of the apieky should be $name-$apikey
# apikeyKey: example_apikey
# claims: '{"permissions": ["core.read"]}'
@@ -201,7 +200,7 @@ api:
volumeMounts: []
volumes: []
replicaCount: 1
# default to recreate for better user experience with ReadWriteOnce volumes
# default to recreate for better user experience with ReadWriteOnce volumes
updateStrategy:
type: Recreate
podLabels: {}
@@ -472,7 +471,7 @@ postgres:
initdb:
scripts:
kyoo_api.sql: |
CREATE DATABASE {{ .Values.global.postgres.kyoo_api.database }} WITH OWNER {{ .Values.global.postgres.infra.user }};
CREATE DATABASE {{ .Values.global.postgres.kyoo_api.database }} WITH OWNER {{ .Values.global.postgres.infra.user }};
\connect {{ .Values.global.postgres.kyoo_api.database }};
REVOKE ALL ON SCHEMA public FROM PUBLIC;
CREATE SCHEMA IF NOT EXISTS kyoo AUTHORIZATION {{ .Values.global.postgres.infra.user }};
@@ -481,7 +480,7 @@ postgres:
SET pg_trgm.word_similarity_threshold = 0.4;
ALTER DATABASE {{ .Values.global.postgres.kyoo_api.database }} SET pg_trgm.word_similarity_threshold = 0.4;
kyoo_auth.sql: |
CREATE DATABASE {{ .Values.global.postgres.kyoo_auth.database }} WITH OWNER {{ .Values.global.postgres.infra.user }};
CREATE DATABASE {{ .Values.global.postgres.kyoo_auth.database }} WITH OWNER {{ .Values.global.postgres.infra.user }};
\connect {{ .Values.global.postgres.kyoo_auth.database }};
REVOKE ALL ON SCHEMA public FROM PUBLIC;
CREATE SCHEMA IF NOT EXISTS keibi AUTHORIZATION {{ .Values.global.postgres.infra.user }};
@@ -496,13 +495,13 @@ postgres:
REVOKE ALL ON SCHEMA public FROM PUBLIC;
CREATE SCHEMA IF NOT EXISTS gocoder AUTHORIZATION {{ .Values.global.postgres.infra.user }};
user.sql: |
ALTER ROLE {{ .Values.global.postgres.infra.user }}
ALTER ROLE {{ .Values.global.postgres.infra.user }}
IN DATABASE {{ .Values.global.postgres.kyoo_api.database }} SET search_path TO "$user", kyoo;
ALTER ROLE {{ .Values.global.postgres.infra.user }}
IN DATABASE {{ .Values.global.postgres.kyoo_auth.database }} SET search_path TO "$user", keibi;
ALTER ROLE {{ .Values.global.postgres.infra.user }}
ALTER ROLE {{ .Values.global.postgres.infra.user }}
IN DATABASE {{ .Values.global.postgres.kyoo_scanner.database }} SET search_path TO "$user", scanner;
ALTER ROLE {{ .Values.global.postgres.infra.user }}
ALTER ROLE {{ .Values.global.postgres.infra.user }}
IN DATABASE {{ .Values.global.postgres.kyoo_transcoder.database }} SET search_path TO "$user", gocoder;
persistence:
enabled: true