feat: add configurability of external dependencies and their configma…

tbmq/Chart.yaml

@@ -3,7 +3,7 @@ appVersion: 2.1.0
 description: Helm chart for TBMQ cluster.
 name: tbmq-cluster
 type: application
-version: 1.0.0
+version: 1.1.0
 annotations:
   artifacthub.io/category: streaming-messaging
   licenses: Apache-2.0
@@ -15,7 +15,7 @@ annotations:
   artifacthub.io/prerelease: "false"
   artifacthub.io/changes: |
     - kind: added
-      description: Release 1.0.0
+      description: Release 1.1.0
       links:
         - name: GitHub PR
           url: https://github.com/thingsboard/helm-charts/pull/9
@@ -34,10 +34,12 @@ dependencies:
   - name: redis-cluster
     version: 10.3.0
     repository: oci://registry-1.docker.io/bitnamicharts
+    condition: redis-cluster.enabled
   - name: postgresql
     version: 15.5.38
     repository: oci://registry-1.docker.io/bitnamicharts
     condition: postgresql.enabled
   - name: kafka
     version: 29.3.4
     repository: oci://registry-1.docker.io/bitnamicharts
+    condition: kafka.enabled

tbmq/templates/_helpers.tpl

@@ -76,12 +76,15 @@
 {{/*Return redis cluster configurations environment variables for tbmq services*/}}
 {{- define "tbmq.redis.configuration.ref"}}
 - configMapRef:
-    name: {{ .Release.Name }}-redis-config
-{{- end}}
+    name: {{ .Values.externalRedis.existingConfigMap | default (printf "%s-redis-config" .Release.Name) }}
+{{- end }}
 
 {{/*Returns redis cluster secret name*/}}
 {{- define "tbmq.redis.secretName" -}}
 {{- $redis := index .Values "redis-cluster" }}
+{{- if not $redis.enabled -}}
+{{- .Values.externalRedis.existingSecret -}}
+{{- else -}}
 {{- if $redis.existingSecret }}
 {{- $redis.existingSecret }}
 {{- else if $redis.fullnameOverride }}
@@ -92,18 +95,19 @@
 {{- printf "%s-redis-cluster" .Release.Name }}
 {{- end }}
 {{- end }}
+{{- end }}
 
 {{/*Returns redis cluster secret key*/}}
 {{- define "tbmq.redis.secretKey" -}}
 {{- $redis := index .Values "redis-cluster" }}
-{{- if $redis.existingSecret -}}
+{{- if not $redis.enabled }}
+{{- .Values.externalRedis.existingSecretKey -}}
+{{- else if $redis.existingSecret}}
 {{ $redis.existingSecretPasswordKey | default "REDIS_PASSWORD" }}
 {{- else -}}
 redis-password
-{{- end -}}
 {{- end }}
-
-
+{{- end }}
 
 {{/*Return redis cluster nodes*/}}
 {{- define "tbmq.redis.nodes" -}}
@@ -119,13 +123,17 @@ redis-password
 {{/*Return postgresql configurations environment variables for tbmq services*/}}
 {{- define "tbmq.postgres.configuration.ref"}}
 - configMapRef:
-    name: {{ .Release.Name }}-postgres-config
-{{- end}}
+    name: {{ .Values.externalPostgresql.existingConfigMap | default (printf "%s-postgres-config" .Release.Name) }}
+{{- end }}
 
 {{/*Return postgresql secret name*/}}
 {{- define "tbmq.postgres.secretName" -}}
 {{- if not .Values.postgresql.enabled }}
+{{- if .Values.externalPostgresql.existingSecret }}
+{{- .Values.externalPostgresql.existingSecret }}
+{{- else -}}
 {{- printf "%s-postgres-external" .Release.Name }}
+{{- end }}
 {{- else if .Values.postgresql.auth.existingSecret }}
 {{- .Values.postgresql.auth.existingSecret }}
 {{- else if .Values.postgresql.fullnameOverride }}
@@ -137,10 +145,15 @@ redis-password
 {{- end }}
 {{- end }}
 
+
 {{/*Return postgresql secret key*/}}
-{{- define "tbmq.postgres.secretKey" -}}
+{{- define "tbmq.postgres.secretPasswordKey" -}}
 {{- if not .Values.postgresql.enabled -}}
+{{- if .Values.externalPostgresql.existingSecretPasswordKey -}}
+{{- .Values.externalPostgresql.existingSecretPasswordKey -}}
+{{- else -}}
 external-postgres-password
+{{- end }}
 {{- else if .Values.postgresql.auth.existingSecret }}
     {{- if and .Values.postgresql.auth.enablePostgresUser (not .Values.postgresql.auth.username) -}}
         {{- .Values.postgresql.auth.secretKeys.adminPasswordKey }}
@@ -156,6 +169,17 @@ external-postgres-password
 {{- end -}}
 {{- end }}
 
+{{/*Return postgresql secret key*/}}
+{{- define "tbmq.postgres.secretUsernameKey" -}}
+{{- if not .Values.postgresql.enabled -}}
+{{- if .Values.externalPostgresql.existingSecretUsernameKey -}}
+{{- .Values.externalPostgresql.existingSecretUsernameKey -}}
+{{- else -}}
+external-postgres-username
+{{- end }}
+{{- end }}
+{{- end }}
+
 {{/*Return postgres host*/}}
 {{- define "tbmq.postgres.host" -}}
 {{- if .Values.postgresql.enabled -}}
@@ -204,8 +228,8 @@ external-postgres-password
 {{/*Return kafka configurations environment variables for tbmq services*/}}
 {{- define "tbmq.kafka.configuration.ref"}}
 - configMapRef:
-    name: {{ .Release.Name }}-kafka-config
-{{- end}}
+    name: {{ .Values.externalKafka.existingConfigMap | default (printf "%s-kafka-config" .Release.Name) }}
+{{- end }}
 
 {{/*Return kafka servers environment variables for tbmq services*/}}
 {{- define "tbmq.kafka.servers" -}}
@@ -238,15 +262,20 @@ external-postgres-password
       value: {{ include "tbmq.postgres.host" . | quote }}
     - name: PGDATABASE
       value: {{ include "tbmq.postgres.database" . | quote }}
-    - name: PGUSER
-      value: {{ include "tbmq.postgres.username" . | quote }}
     - name: QUERY_TO_VALIDATE_DATA
       value: {{ $query | quote }}
     - name: PGPASSWORD
       valueFrom:
         secretKeyRef:
           name: {{ include "tbmq.postgres.secretName" . }}
-          key: {{ include "tbmq.postgres.secretKey" . }}
+          key: {{ include "tbmq.postgres.secretPasswordKey" . }}
+    {{- if .Values.externalPostgresql.existingSecretUsernameKey }}
+    - name: PGUSER
+      valueFrom:
+          secretKeyRef:
+            name: {{ include "tbmq.postgres.secretName" . }}
+            key: {{ include "tbmq.postgres.secretUsernameKey" . }}
+    {{- end }}
   command:
     - bash
   args:

tbmq/templates/install/post-install-job.yml

@@ -74,8 +74,15 @@ spec:
           valueFrom:
             secretKeyRef:
               name: {{ include "tbmq.postgres.secretName" . }}
-              key: {{ include "tbmq.postgres.secretKey" . }}
-        {{- if index .Values "redis-cluster" "usePassword" }}
+              key: {{ include "tbmq.postgres.secretPasswordKey" . }}
+        {{- if .Values.externalPostgresql.existingSecretUsernameKey }}
+        - name: SPRING_DATASOURCE_USER
+          valueFrom:
+              secretKeyRef:
+                name: {{ include "tbmq.postgres.secretName" . }}
+                key: {{ include "tbmq.postgres.secretUsernameKey" . }}
+        {{- end }}
+        {{- if or (index .Values "redis-cluster" "usePassword") .Values.externalRedis.existingSecret }}
         - name: REDIS_PASSWORD
           valueFrom:
             secretKeyRef:

tbmq/templates/kafka/kafka-configmap.yml

@@ -1,3 +1,4 @@
+{{- if and (empty .Values.kafka.existingConfigMap) .Values.kafka.enabled }}
 {{- $namespace := .Release.Namespace -}}
 {{- $releaseName := .Release.Name }}
 apiVersion: v1
@@ -39,3 +40,4 @@ data:
   TB_KAFKA_DEFAULT_PRODUCER_BUFFER_MEMORY: "33554432"
   # The compression type for all data generated by the producer. Valid values are `none`, `gzip`, `snappy`, `lz4`, or `zstd`
   TB_KAFKA_DEFAULT_COMPRESSION_TYPE: "none"
+{{- end -}}

tbmq/templates/loadbalancer/default/http-load-balancer.yml

@@ -4,10 +4,15 @@ kind: Ingress
 metadata:
   name: {{ .Release.Name }}-http-lb
   namespace: {{ .Release.Namespace }}
+  {{- with .Values.loadbalancer.http.annotations }}
+  annotations:
+    {{ toYaml . | nindent 4 }}
+  {{- end }}
 spec:
-  ingressClassName: nginx
-  rules:
-    - http:
+  ingressClassName: {{ .Values.loadbalancer.http.ingressClassName | default "nginx" }}
+  rules: 
+    - host: {{ .Values.loadbalancer.http.host | default "\"\"" }}
+      http:
         paths:
           - path: /
             pathType: Prefix
@@ -16,4 +21,12 @@ spec:
                 name: {{ include "tbmq.node.label" . }}
                 port:
                   name: http
+  {{- if .Values.loadbalancer.http.ssl.enabled }}
+  tls:
+    - hosts:
+        {{- range .Values.loadbalancer.http.ssl.hosts }}
+        - {{ . | quote }}
+        {{- end }}
+      secretName: {{ .Values.loadbalancer.http.ssl.secretName }}
+  {{- end }}
 {{- end }}

tbmq/templates/loadbalancer/default/mqtt-load-balancer.yml

@@ -1,12 +1,19 @@
-{{- if and (eq .Values.loadbalancer.type "nginx") .Values.loadbalancer.mqtt.enabled }}
+{{- if and (eq .Values.loadbalancer.type "nginx") .Values.loadbalancer.mqtt.enabled -}}
+{{- $serviceType := .Values.loadbalancer.mqtt.type | default "LoadBalancer" }}
 apiVersion: v1
 kind: Service
 metadata:
   name: {{ .Release.Name }}-mqtt-lb
   namespace: {{ .Release.Namespace }}
+  {{- with .Values.loadbalancer.mqtt.annotations }}
+  annotations:
+    {{ toYaml . | nindent 4 }}
+  {{- end }}
 spec:
-  type: LoadBalancer
+  type: {{ $serviceType }}
+  {{- if or (eq $serviceType "NodePort") (eq $serviceType "LoadBalancer") }}
   externalTrafficPolicy: Local
+  {{- end }}
   selector:
     app: {{ include "tbmq.node.label" . }}
   ports:

tbmq/templates/postgres/postgres-configmap.yml

@@ -1,3 +1,4 @@
+{{- if and (empty .Values.postgresql.existingConfigMap) .Values.postgresql.enabled }}
 {{- $namespace := .Release.Namespace -}}
 {{- $releaseName := .Release.Name }}
 apiVersion: v1
@@ -20,3 +21,4 @@ data:
   SPRING_DATASOURCE_MAXIMUM_POOL_SIZE: "16"
   # This property controls the max lifetime in milliseconds of a connection. Only when it is closed will it then be removed. Default is 10 minutes
   SPRING_DATASOURCE_MAX_LIFETIME: "600000"
+{{- end -}}

tbmq/templates/postgres/postgres-secret.yml

@@ -1,4 +1,4 @@
-{{- if not .Values.postgresql.enabled }}
+{{- if and (not .Values.postgresql.enabled) (not .Values.externalPostgresql.existingSecret) }}
 {{- $namespace := .Release.Namespace -}}
 {{- $releaseName := .Release.Name }}
 apiVersion: v1

tbmq/templates/redis/redis-configmap.yml

@@ -1,3 +1,4 @@
+{{- if and (empty (index .Values "redis-cluster" "existingConfigMap")) (index .Values "redis-cluster" "enabled") }}
 {{- $namespace := .Release.Namespace -}}
 {{- $releaseName := .Release.Name }}
 {{- $redisName := index .Values "redis-cluster" "nameOverride" }}
@@ -53,3 +54,4 @@ data:
   REDIS_JEDIS_CLUSTER_TOPOLOGY_REFRESH_ENABLED: "true"
   # Specifies the interval (in seconds) for periodic cluster topology updates
   REDIS_JEDIS_CLUSTER_TOPOLOGY_REFRESH_PERIOD_SEC: "60"
+{{- end -}}

tbmq/templates/tbmq/tbmq-statefulset.yml

@@ -81,8 +81,15 @@ spec:
               valueFrom:
                 secretKeyRef:
                   name: {{ include "tbmq.postgres.secretName" . }}
-                  key: {{ include "tbmq.postgres.secretKey" . }}
-            {{- if index .Values "redis-cluster" "usePassword" }}
+                  key: {{ include "tbmq.postgres.secretPasswordKey" . }}
+            {{- if .Values.externalPostgresql.existingSecretUsernameKey }}
+            - name: SPRING_DATASOURCE_USER
+              valueFrom:
+                  secretKeyRef:
+                    name: {{ include "tbmq.postgres.secretName" . }}
+                    key: {{ include "tbmq.postgres.secretUsernameKey" . }}
+            {{- end }}
+            {{- if or (index .Values "redis-cluster" "usePassword") .Values.externalRedis.existingSecret }}
             - name: REDIS_PASSWORD
               valueFrom:
                 secretKeyRef:
@@ -144,4 +151,4 @@ spec:
         - name: {{ $releaseName }}-tbmq-node-logs
           emptyDir: { }
         - name: {{ printf "%s-tbmq-node-data" $releaseName }}
-          emptyDir: { }
+          emptyDir: { }