@@ -555,25 +555,181 @@ s3:
555555Configure access- and secret key for the S3 storage.
556556
557557
558- == `secrets`
558+ == `ingress`
559+
560+ Ingress configuration
561+
562+ === `ingress.enabled`
563+
564+ [horizontal]
565+ type:: boolean
566+ default::
567+ +
568+ [source,yaml]
569+ ----
570+ ingress:
571+ enabled: false
572+ ----
573+
574+ Enables ingress.
575+
576+ === `ingress.tls.enabled`
559577
560578[horizontal]
561579type:: dict
562- default:: `{}`
580+ default::
581+ +
582+ [source,yaml]
583+ ----
584+ ingress:
585+ tls:
586+ enabled: true
587+ ----
588+
589+ Enables using TLS for ingress.
590+
591+ === `ingress.tls.clusterIssuer`
592+
593+ [horizontal]
594+ type:: dict
595+ default::
596+ +
597+ [source,yaml]
598+ ----
599+ ingress:
600+ tls:
601+ clusterIssuer: letsencrypt-production
602+ ----
603+
604+ Configures the annotation for the cert-manager `ClusterIssuer`, this component assumes cert-manager is installed.
605+
606+ === `ingress.tls.key` and `ingress.tls.cert`
607+
608+ [horizontal]
609+ type:: dict
610+ default::
611+ +
612+ [source,yaml]
613+ ----
614+ ingress:
615+ tls:
616+ key: null
617+ cert: null
618+ ----
619+ default::
620+ +
621+ [source,yaml]
622+ ----
623+ ingress:
624+ tls:
625+ clusterIssuer: null
626+ key: |
627+ -----BEGIN PRIVATE KEY-----
628+ ...
629+ -----END PRIVATE KEY-----
630+ cert: |
631+ -----BEGIN CERTIFICATE-----
632+ ...
633+ -----END CERTIFICATE-----
634+ ----
635+
636+ Configures private key and certificate for TLS.
637+ The secret will automatically be created.
638+
639+ [TIP]
640+ ====
641+ This requires `ingress.tls.clusterIssuer` to be null.
642+ If both are enabled, `ingress.tls.clusterIssuer` takes precedence.
643+ ====
644+
645+ === `ingress.url`
646+
647+ [horizontal]
648+ type:: dict
649+ default::
650+ +
651+ [source,yaml]
652+ ----
653+ ingress:
654+ url: ''
655+ ----
656+
657+ The URL for witch the ingress is configured.
658+
659+ === `ingress.annotations` and `ingress.labels`
660+
661+ [horizontal]
662+ type:: dict
663+ default::
664+ +
665+ [source,yaml]
666+ ----
667+ ingress:
668+ annotations: {}
669+ labels: {}
670+ ----
563671example::
564672+
565673[source,yaml]
566674----
567- secrets:
568- loki-bucket-secret:
569- stringData:
570- S3_ACCESS_KEY_ID: null
571- S3_SECRET_ACCESS_KEY: null
572- S3_ENDPOINT: null
675+ ingress:
676+ annotations:
677+ cert-manager.io/cluster-issuer: letsencrypt-staging
573678----
574679
575- A dict of secrets to create in the namespace. The key is the name of the secret, the value is the content of the secret.
576- The value must be a dict with a key `stringData` which is a dict of key/value pairs to add to the secret.
680+ Add custom annotations and labels.
681+
682+
683+ == `basicAuth`
684+
685+ Configures basic authentication for nginx.
686+
687+ === `basicAuth.enabled`
688+
689+ [horizontal]
690+ type:: boolean
691+ default::
692+ +
693+ [source,yaml]
694+ ----
695+ basicAuth:
696+ enabled: false
697+ ----
698+
699+ Enables basic authentication for nginx.
700+
701+ === `basicAuth.htpasswd`
702+
703+ [horizontal]
704+ type:: boolean
705+ default::
706+ +
707+ [source,yaml]
708+ ----
709+ basicAuth:
710+ htpasswd: '?{vaultkv:${cluster:tenant}/${cluster:name}/${_instance}/htpasswd}'
711+ ----
712+
713+ The content of the `.htpasswd` file.
714+
715+ [TIP]
716+ ====
717+ If you set the `basicAuth.htpasswd: null`, you can use the `basicAuth.existingSecret` to inlcude an existing secret.
718+ ====
719+
720+
721+ == `monitoring`
722+
723+ [horizontal]
724+ type:: dict
725+ default::
726+ +
727+ [source,yaml]
728+ ----
729+ monitoring: true
730+ ----
731+
732+ Enable the service monitors, rules, and alerts from the Helm chart.
577733
578734
579735== `alerts`
@@ -644,6 +800,27 @@ The component expects valid partial Prometheus alert rule objects as values.
644800IMPORTANT: The provided values aren't validated, they're applied to the corresponding upstream alert as-is.
645801
646802
803+ == `secrets`
804+
805+ [horizontal]
806+ type:: dict
807+ default:: `{}`
808+ example::
809+ +
810+ [source,yaml]
811+ ----
812+ secrets:
813+ loki-bucket-secret:
814+ stringData:
815+ S3_ACCESS_KEY_ID: null
816+ S3_SECRET_ACCESS_KEY: null
817+ S3_ENDPOINT: null
818+ ----
819+
820+ A dict of secrets to create in the namespace. The key is the name of the secret, the value is the content of the secret.
821+ The value must be a dict with a key `stringData` which is a dict of key/value pairs to add to the secret.
822+
823+
647824== `helm_values`
648825
649826[horizontal]
0 commit comments