From 07ea700fd771dcdcab5ad0156dccf94d115823ca Mon Sep 17 00:00:00 2001 From: KoiFresh Date: Sat, 15 Nov 2025 18:19:44 +0100 Subject: [PATCH 1/2] feat(charts/paperless-ngx): use official container images for postgres and redis per default instead of bitnami images Bitnami changed their image catalog and how they will publish their secure images. Duo to this secure images are no longer available for free. Bitnami still publishes a latest version for development only and old images will still be available under docker.io/bitnamilegacy. Images like docker.io/bitnami/redis:7.2.5-debian-12-r0 which are referenced from the bitnami redis helm chart are no longer available. --- charts/paperless-ngx/README.md | 16 +++++++--- charts/paperless-ngx/values.schema.json | 42 ++++++++++++++++++++++++- charts/paperless-ngx/values.yaml | 37 ++++++++++++++++++++++ 3 files changed, 89 insertions(+), 6 deletions(-) diff --git a/charts/paperless-ngx/README.md b/charts/paperless-ngx/README.md index 57ab545..096911e 100644 --- a/charts/paperless-ngx/README.md +++ b/charts/paperless-ngx/README.md @@ -350,6 +350,9 @@ Parameters. | Name | Description | Value | | ---------------------------------------------- | ------------------------------------------------------------------------------------------------------ | ------------------- | | `postgresql.enabled` | Enable or disable the PostgreSQL subchart | `true` | +| `postgresql.image.registry` | Registry for the postgres container image | `docker.io` | +| `postgresql.image.repository` | Repository for the postgres container image | `library/postgres` | +| `postgresql.image.tag` | Tag for the postgres container image | `16.4-bookworm` | | `postgresql.auth.enablePostgresUser` | Assign a password to the "postgres" admin user. Otherwise, remote access will be blocked for this user | `true` | | `postgresql.auth.postgresPassword` | Password for the "postgres" admin user. Ignored if `auth.existingSecret` is provided | `postgres` | | `postgresql.auth.username` | Name for a custom user to create | `paperless` | @@ -365,11 +368,14 @@ Parameters. ### Bitnami® Redis parameters -| Name | Description | Value | -| --------------------- | ---------------------------------------------------------------------- | ------------ | -| `redis.enabled` | Enable or disable the Redis® subchart | `true` | -| `redis.architecture` | Redis® architecture. Allowed values: `standalone` or `replication` | `standalone` | -| `redis.auth.password` | Redis® password | `paperless` | +| Name | Description | Value | +| ------------------------ | ---------------------------------------------------------------------- | ---------------- | +| `redis.enabled` | Enable or disable the Redis® subchart | `true` | +| `redis.image.registry` | Registry for the redis container image | `docker.io` | +| `redis.image.repository` | Repository for the redis container image | `library/redis` | +| `redis.image.tag` | Tag for the redis container image | `7.2.5-bookworm` | +| `redis.architecture` | Redis® architecture. Allowed values: `standalone` or `replication` | `standalone` | +| `redis.auth.password` | Redis® password | `paperless` | ### Apache® Tika parameters diff --git a/charts/paperless-ngx/values.schema.json b/charts/paperless-ngx/values.schema.json index 5d1613c..ee6ec10 100644 --- a/charts/paperless-ngx/values.schema.json +++ b/charts/paperless-ngx/values.schema.json @@ -1297,6 +1297,26 @@ "description": "Enable or disable the PostgreSQL subchart", "default": true }, + "image": { + "type": "object", + "properties": { + "registry": { + "type": "string", + "description": "Registry for the postgres container image", + "default": "docker.io" + }, + "repository": { + "type": "string", + "description": "Repository for the postgres container image", + "default": "library/postgres" + }, + "tag": { + "type": "string", + "description": "Tag for the postgres container image", + "default": "16.4-bookworm" + } + } + }, "auth": { "type": "object", "properties": { @@ -1387,6 +1407,26 @@ "description": "Enable or disable the Redis® subchart", "default": true }, + "image": { + "type": "object", + "properties": { + "registry": { + "type": "string", + "description": "Registry for the redis container image", + "default": "docker.io" + }, + "repository": { + "type": "string", + "description": "Repository for the redis container image", + "default": "library/redis" + }, + "tag": { + "type": "string", + "description": "Tag for the redis container image", + "default": "7.2.5-bookworm" + } + } + }, "architecture": { "type": "string", "description": "Redis® architecture. Allowed values: `standalone` or `replication`", @@ -1455,4 +1495,4 @@ } } } -} +} \ No newline at end of file diff --git a/charts/paperless-ngx/values.yaml b/charts/paperless-ngx/values.yaml index 4f0a3c8..5213b79 100644 --- a/charts/paperless-ngx/values.yaml +++ b/charts/paperless-ngx/values.yaml @@ -980,6 +980,17 @@ postgresql: ## @param postgresql.enabled Enable or disable the PostgreSQL subchart ## enabled: true + # Image configuration for the postgres container. Use the official postgres image by default, instead of the bitnami image. + image: + ## @param postgresql.image.registry Registry for the postgres container image + ## + registry: docker.io + ## @param postgresql.image.repository Repository for the postgres container image + ## + repository: library/postgres + ## @param postgresql.image.tag Tag for the postgres container image + ## + tag: 16.4-bookworm ## Authentication parameters ## ref: https://github.com/bitnami/containers/tree/main/bitnami/postgresql#setting-the-root-password-on-first-run ## ref: https://github.com/bitnami/containers/tree/main/bitnami/postgresql#creating-a-database-on-first-run @@ -1034,6 +1045,21 @@ postgresql: ## @param postgresql.primary.persistence.size PVC Storage Request for PostgreSQL volume ## size: 5Gi + # Extra volume mounts for /var/run/postgresql to allow postgres creating a socket while keeping a read only root filesystem + extraVolumeMounts: + ## @skip postgresql.primary.extraVolumeMounts[0].name An extra volume mount for the postgres socket + ## + - name: postgresql-socket + ## @skip postgresql.primary.extraVolumeMounts[0].mountPath The path of the postgres socket + ## + mountPath: /var/run/postgresql + extraVolumes: + ## @skip postgresql.primary.extraVolumes[0].name An extra volume for the postgres socket + ## + - name: postgresql-socket + ## @skip postgresql.primary.extraVolumes[0].emptyDir An empty dir mount for the postgres socket + ## + emptyDir: {} ## @section Bitnami® Redis parameters ## @@ -1044,6 +1070,17 @@ redis: ## @param redis.enabled Enable or disable the Redis® subchart ## enabled: true + # Image configuration for the redis container. Use the official redis image by default, instead of the bitnami image. + image: + ## @param redis.image.registry Registry for the redis container image + ## + registry: docker.io + ## @param redis.image.repository Repository for the redis container image + ## + repository: library/redis + ## @param redis.image.tag Tag for the redis container image + ## + tag: 7.2.5-bookworm ## @param redis.architecture Redis® architecture. Allowed values: `standalone` or `replication` ## architecture: standalone From b2921f744f6f6cbb3b95a7f50c6cf71e9493d898 Mon Sep 17 00:00:00 2001 From: KoiFresh Date: Sat, 15 Nov 2025 19:32:11 +0100 Subject: [PATCH 2/2] docs: add koifresh to AUTHORS --- .github/AUTHORS | 1 + 1 file changed, 1 insertion(+) diff --git a/.github/AUTHORS b/.github/AUTHORS index ee189f0..19bf542 100644 --- a/.github/AUTHORS +++ b/.github/AUTHORS @@ -11,3 +11,4 @@ Maximilian Gindorfer STRGZRS kehralexander fty4 +koifresh