Support MongoDB-based Snoty

Author: SIMULATAN

backend/Chart.lock

@@ -1,12 +1,12 @@
 dependencies:
 - name: common
   repository: oci://registry-1.docker.io/bitnamicharts
-  version: 2.19.2
-- name: postgresql
+  version: 2.22.0
+- name: mongodb
   repository: https://charts.bitnami.com/bitnami
-  version: 15.2.7
+  version: 15.6.22
 - name: keycloak
   repository: https://charts.bitnami.com/bitnami
-  version: 21.1.0
-digest: sha256:ca11fe2fc2cc24913bcc633ca927e4b30a48870285a3c8ae95a140ce19b44d1e
-generated: "2024-04-30T19:14:29.317387727+02:00"
+  version: 22.1.2
+digest: sha256:d12da76a8e37e2c842d48c0243765f275070a3b7d4876637280594aaa8d3035c
+generated: "2024-09-07T22:00:15.851075091+02:00"

backend/Chart.yaml

@@ -1,6 +1,6 @@
 apiVersion: v2
 name: backend
-version: 0.1.1
+version: 0.2.0
 description: Backend of the Snoty application suite
 type: application
 home: https://snoty.me
@@ -12,17 +12,17 @@ maintainers:
     email: [email protected]
     url: https://github.com/SIMULATAN
 icon: https://avatars.githubusercontent.com/u/163506575
-appVersion: "0.0.1-39"
+appVersion: "0.0.1-133"
 dependencies:
   - name: common
     version: 2.x.x
     repository: oci://registry-1.docker.io/bitnamicharts
-  - name: postgresql
-    version: ~15.2.5
+  - name: mongodb
+    version: ~15.6.19
     repository: https://charts.bitnami.com/bitnami
-    condition: postgresql.deploy
+    condition: mongodb.deploy
   - name: keycloak
-    version: 21.1.0
+    version: 22.1.2
     repository: https://charts.bitnami.com/bitnami
     condition: keycloak.deploy
 

backend/charts/common-2.19.2.tgz

@@ -1,35 +1,53 @@
 {{- define "snoty.baseConfig" -}}
     {{- with $.Values.appConfig }}
     environment: {{ .environment }}
+    corsHosts:
+      {{ range .corsHosts }}
+        - {{ . | quote }}
+      {{ end }}
+    featureFlags:
+      {{- toYaml .featureFlags | nindent 12 -}}
+      {{- if and .featureFlags.flags (ne .featureFlags.type "InMemory") -}}
+        {{- fail "Error: custom feature flag values are only supported when using the InMemory provider" -}}
+      {{- end -}}
     {{- end }}
     {{- with $.Values.ingress }}
     publicHost: {{ ternary "https" "http" .tls }}://{{ .hostname }}{{ .path }}
     {{- end }}
-    database:
-    # if `appConfig.database` is set, it overrides the config from `postgresql`.
-    {{- if and $.Values.postgresql.deploy (not (kindIs "map" $.Values.appConfig.database)) }}
-      {{- with $.Values.postgresql }}
-      username: {{ .auth.username }}
-      password: {{ .auth.password }}
-      jdbcUrl: jdbc:postgresql://{{ $.Release.Name }}-postgresql:{{ .primary.service.ports.postgresql | default 5432 }}/{{ .auth.database }}
+    mongodb:
+    # if `appConfig.mongodb` is set, it overrides the config from `mongodb`.
+    {{- if and $.Values.mongodb.deploy (not (kindIs "map" $.Values.appConfig.mongodb)) }}
+      {{- with $.Values.mongodb }}
+      {{- if .auth.existingSecret }}
+        connection:
+          type: Split
+          srv: {{ eq .architecture "replicaset" }}
+          host: {{ .service.nameOverride }}.{{ $.Release.Namespace }}.svc.{{ $.Values.clusterDomain }}
+          port: {{ .service.ports.mongodb }}
+          database: {{ index .auth.databases 0 }}
+          additionalOptions: tls={{ .tls.enabled }}&ssl={{ .tls.enabled }}
+        authentication:
+          username: {{ index .auth.usernames 0 }}
+          authDatabase: {{ index .auth.databases 0 }}
+          # password is loaded from existingSecret
+      {{- else }}
+        connection:
+          # does not support architecture=replicaset, prefer using externalSecret
+          type: ConnectionString
+          connectionString: mongodb://{{ index .auth.usernames 0 }}:{{ index .auth.passwords 0 }}@{{ $.Release.Name }}-mongodb/{{ index .auth.databases 0 }}
       {{- end }}
-    {{- else }}
-      {{- with $.Values.appConfig.database }}
-      {{- if kindIs "string" .username }}
-      username: {{ .username }}
-      {{- end }}
-      {{- if kindIs "string" .password }}
-      password: {{ .password }}
       {{- end }}
-      {{- if kindIs "string" .jdbcUrl }}
-      jdbcUrl: {{ .jdbcUrl }}
+    {{- else }}
+      {{- with $.Values.appConfig.mongodb }}
+      {{- if kindIs "string" .connectionString }}
+      connectionString: {{ .connectionString }}
       {{- end }}
       {{- end }}
     {{- end }}
     authentication:
     {{- if $.Values.keycloak.deploy }}
       {{- with $.Values.keycloak }}
-      serverUrl: {{ ternary "https" "http" .ingress.tls }}://{{ .ingress.hostname }}/{{ trimPrefix "/" ($.Values.appConfig.authentication.path | default .ingress.path) }}
+      serverUrl: {{ ternary "https" "http" .ingress.tls }}://{{ .ingress.hostname }}/{{ trimPrefix "/" (($.Values.appConfig.authentication).path | default .ingress.path) }}
       clientId: {{ $.Values.appConfig.authentication.clientId }}
       clientSecret: {{ $.Values.appConfig.authentication.clientSecret }}
       {{- end }}
@@ -38,6 +56,9 @@
       {{- if kindIs "string" .serverUrl }}
       serverUrl: {{ .serverUrl }}/{{ trimPrefix "/" (.path | default "") }}
       {{- end }}
+      {{- if kindIs "string" .issuerUrl }}
+      issuerUrl: {{ .issuerUrl }}{{ trimSuffix "/" (.path | default "") }}
+      {{- end }}
       {{- if kindIs "string" .clientId }}
       clientId: {{ .clientId }}
       {{- end }}

backend/charts/common-2.22.0.tgz

@@ -35,6 +35,11 @@ spec:
           {{- include "common.tplvalues.render" (dict "value" .Values.extraContainerPorts "context" $) | nindent 12 }}
           {{- end }}
         env:
+          - name: mongodb.authentication.password
+            valueFrom:
+              secretKeyRef:
+                name: {{ .Values.mongodb.auth.existingSecret }}
+                key: mongodb-passwords
           {{- $envLoaders := include "snoty.envLoaders" . | nindent 8 | trim }}
           {{- if $envLoaders }}
           {{ $envLoaders }}