3 SPDX-License-Identifier: APACHE-2.0
6 {{- if (include "mongodb.hidden.enabled" .) }}
7 {{- $replicaCount := int .Values.hidden.replicaCount }}
8 {{- $loadBalancerIPListLength := len .Values.externalAccess.hidden.service.loadBalancerIPs }}
9 {{- if not (and .Values.externalAccess.hidden.enabled (not .Values.externalAccess.autoDiscovery.enabled) (not (eq $replicaCount $loadBalancerIPListLength )) (eq .Values.externalAccess.hidden.service.type "LoadBalancer")) }}
10 apiVersion: {{ include "common.capabilities.statefulset.apiVersion" . }}
13 name: {{ printf "%s-hidden" (include "mongodb.fullname" .) }}
14 namespace: {{ include "mongodb.namespace" . | quote }}
15 {{- $labels := include "common.tplvalues.merge" ( dict "values" ( list .Values.hidden.labels .Values.commonLabels ) "context" . ) }}
16 labels: {{- include "common.labels.standard" ( dict "customLabels" $labels "context" $ ) | nindent 4 }}
17 app.kubernetes.io/component: hidden
18 {{- if or .Values.hidden.annotations .Values.commonAnnotations }}
19 {{- $annotations := include "common.tplvalues.merge" ( dict "values" ( list .Values.hidden.annotations .Values.commonAnnotations ) "context" . ) }}
20 annotations: {{- include "common.tplvalues.render" ( dict "value" $annotations "context" $) | nindent 4 }}
23 serviceName: {{ printf "%s-hidden-headless" (include "mongodb.fullname" .) }}
24 podManagementPolicy: {{ .Values.hidden.podManagementPolicy }}
25 replicas: {{ .Values.hidden.replicaCount }}
26 {{- if .Values.hidden.updateStrategy }}
27 updateStrategy: {{- toYaml .Values.hidden.updateStrategy | nindent 4 }}
29 {{- $podLabels := include "common.tplvalues.merge" ( dict "values" ( list .Values.hidden.podLabels .Values.commonLabels ) "context" . ) }}
31 matchLabels: {{- include "common.labels.matchLabels" ( dict "customLabels" $podLabels "context" $ ) | nindent 6 }}
32 app.kubernetes.io/component: hidden
35 labels: {{- include "common.labels.standard" ( dict "customLabels" $podLabels "context" $ ) | nindent 8 }}
36 app.kubernetes.io/component: hidden
37 {{- if or (include "mongodb.hidden.createConfigmap" .) .Values.hidden.podAnnotations }}
39 {{- if (include "mongodb.hidden.createConfigmap" .) }}
40 checksum/configuration: {{ include (print $.Template.BasePath "/hidden/configmap.yaml") . | sha256sum }}
42 {{- if .Values.hidden.podAnnotations }}
43 {{- include "common.tplvalues.render" (dict "value" .Values.hidden.podAnnotations "context" $) | nindent 8 }}
47 {{- include "mongodb.imagePullSecrets" . | nindent 6 }}
48 {{- if .Values.hidden.schedulerName }}
49 schedulerName: {{ .Values.hidden.schedulerName | quote }}
51 serviceAccountName: {{ template "mongodb.serviceAccountName" . }}
52 automountServiceAccountToken: {{ .Values.hidden.automountServiceAccountToken }}
53 {{- if .Values.hidden.hostAliases }}
54 hostAliases: {{- include "common.tplvalues.render" (dict "value" .Values.hidden.hostAliases "context" $) | nindent 8 }}
56 {{- if .Values.hidden.affinity }}
57 affinity: {{- include "common.tplvalues.render" (dict "value" .Values.hidden.affinity "context" $) | nindent 8 }}
60 podAffinity: {{- include "common.affinities.pods" (dict "type" .Values.hidden.podAffinityPreset "component" "hidden" "customLabels" $podLabels "topologyKey" .Values.topologyKey "context" $) | nindent 10 }}
61 podAntiAffinity: {{- include "common.affinities.pods" (dict "type" .Values.hidden.podAntiAffinityPreset "component" "hidden" "customLabels" $podLabels "topologyKey" .Values.topologyKey "context" $) | nindent 10 }}
62 nodeAffinity: {{- include "common.affinities.nodes" (dict "type" .Values.hidden.nodeAffinityPreset.type "key" .Values.hidden.nodeAffinityPreset.key "values" .Values.hidden.nodeAffinityPreset.values) | nindent 10 }}
64 {{- if .Values.hidden.nodeSelector }}
65 nodeSelector: {{- include "common.tplvalues.render" (dict "value" .Values.hidden.nodeSelector "context" $) | nindent 8 }}
67 {{- if .Values.hidden.tolerations }}
68 tolerations: {{- include "common.tplvalues.render" (dict "value" .Values.hidden.tolerations "context" $) | nindent 8 }}
70 {{- if .Values.hidden.topologySpreadConstraints }}
71 topologySpreadConstraints: {{- include "common.tplvalues.render" (dict "value" .Values.hidden.topologySpreadConstraints "context" $) | nindent 8 }}
73 {{- if .Values.hidden.priorityClassName }}
74 priorityClassName: {{ .Values.hidden.priorityClassName }}
76 {{- if .Values.hidden.runtimeClassName }}
77 runtimeClassName: {{ .Values.hidden.runtimeClassName }}
79 {{- if .Values.hidden.podSecurityContext.enabled }}
80 securityContext: {{- omit .Values.hidden.podSecurityContext "enabled" | toYaml | nindent 8 }}
82 {{ if .Values.hidden.terminationGracePeriodSeconds }}
83 terminationGracePeriodSeconds: {{ .Values.hidden.terminationGracePeriodSeconds }}
85 enableServiceLinks: {{ .Values.enableServiceLinks }}
86 {{- if or .Values.hidden.initContainers (and .Values.volumePermissions.enabled .Values.hidden.persistence.enabled) (and .Values.externalAccess.hidden.enabled .Values.externalAccess.autoDiscovery.enabled) .Values.tls.enabled }}
88 {{- if .Values.hidden.initContainers }}
89 {{- include "common.tplvalues.render" (dict "value" .Values.hidden.initContainers "context" $) | nindent 8 }}
91 {{- if and .Values.volumePermissions.enabled .Values.hidden.persistence.enabled }}
92 - name: volume-permissions
93 image: {{ include "mongodb.volumePermissions.image" . }}
94 imagePullPolicy: {{ .Values.volumePermissions.image.pullPolicy | quote }}
100 mkdir -p {{ printf "%s/%s" .Values.hidden.persistence.mountPath (default "" .Values.hidden.persistence.subPath) }}
101 chown {{ .Values.containerSecurityContext.runAsUser }}:{{ .Values.podSecurityContext.fsGroup }} {{ printf "%s/%s" .Values.hidden.persistence.mountPath (default "" .Values.hidden.persistence.subPath) }}
102 find {{ printf "%s/%s" .Values.hidden.persistence.mountPath (default "" .Values.hidden.persistence.subPath) }} -mindepth 1 -maxdepth 1 -not -name ".snapshot" -not -name "lost+found" | xargs -r chown -R {{ .Values.containerSecurityContext.runAsUser }}:{{ .Values.podSecurityContext.fsGroup }}
103 {{- if eq ( toString ( .Values.volumePermissions.securityContext.runAsUser )) "auto" }}
104 securityContext: {{- omit .Values.volumePermissions.securityContext "runAsUser" | toYaml | nindent 12 }}
106 securityContext: {{- .Values.volumePermissions.securityContext | toYaml | nindent 12 }}
108 {{- if .Values.volumePermissions.resources }}
109 resources: {{- toYaml .Values.volumePermissions.resources | nindent 12 }}
110 {{- else if ne .Values.volumePermissions.resourcesPreset "none" }}
111 resources: {{- include "common.resources.preset" (dict "type" .Values.volumePermissions.resourcesPreset) | nindent 12 }}
118 mountPath: {{ .Values.hidden.persistence.mountPath }}
120 {{- if .Values.tls.enabled }}
121 - name: generate-tls-certs
122 image: {{ include "mongodb.tls.image" . }}
123 imagePullPolicy: {{ .Values.tls.image.pullPolicy | quote }}
125 - name: MY_POD_NAMESPACE
128 fieldPath: metadata.namespace
129 - name: MY_POD_HOST_IP
132 fieldPath: status.hostIP
136 fieldPath: metadata.name
138 {{- if (include "mongodb.autoGenerateCerts" .) }}
140 mountPath: /certs/CAs
142 {{- range $index, $_ := .Values.tls.hidden.existingSecrets }}
143 - name: mongodb-certs-{{ $index }}
144 mountPath: /certs-{{ $index }}
149 - name: common-scripts
150 mountPath: /bitnami/scripts
155 - /bitnami/scripts/generate-certs.sh
157 - -s {{ printf "%s-hidden-headless" (include "mongodb.fullname" .) }}
158 {{- if .Values.externalAccess.hidden.service.loadBalancerIPs }}
159 - -i {{ join "," .Values.externalAccess.hidden.service.loadBalancerIPs }}
161 {{- if .Values.tls.extraDnsNames }}
162 - -n {{ join "," .Values.tls.extraDnsNames }}
164 {{- if .Values.tls.resources }}
165 resources: {{- toYaml .Values.tls.resources | nindent 12 }}
166 {{- else if ne .Values.tls.resourcesPreset "none" }}
167 resources: {{- include "common.resources.preset" (dict "type" .Values.tls.resourcesPreset) | nindent 12 }}
170 {{- if and .Values.externalAccess.hidden.enabled .Values.externalAccess.autoDiscovery.enabled (eq .Values.externalAccess.hidden.service.type "LoadBalancer") }}
171 - name: auto-discovery
172 image: {{ include "mongodb.externalAccess.autoDiscovery.image" . }}
173 imagePullPolicy: {{ .Values.externalAccess.autoDiscovery.image.pullPolicy | quote }}
175 - /scripts/auto-discovery.sh
176 # We need the service account token for contacting the k8s API
177 automountServiceAccountToken: true
182 fieldPath: metadata.name
184 value: "/shared/info.txt"
185 {{- if .Values.externalAccess.autoDiscovery.resources }}
186 resources: {{- toYaml .Values.externalAccess.autoDiscovery.resources | nindent 12 }}
187 {{- else if ne .Values.externalAccess.autoDiscovery.resourcesPreset "none" }}
188 resources: {{- include "common.resources.preset" (dict "type" .Values.externalAccess.autoDiscovery.resourcesPreset) | nindent 12 }}
194 mountPath: /scripts/auto-discovery.sh
195 subPath: auto-discovery.sh
203 image: {{ include "mongodb.image" . }}
204 imagePullPolicy: {{ .Values.image.pullPolicy | quote }}
205 {{- if .Values.hidden.containerSecurityContext.enabled }}
206 securityContext: {{- omit .Values.hidden.containerSecurityContext "enabled" | toYaml | nindent 12 }}
208 {{- if .Values.diagnosticMode.enabled }}
209 command: {{- include "common.tplvalues.render" (dict "value" .Values.diagnosticMode.command "context" $) | nindent 12 }}
210 {{- else if .Values.hidden.command }}
211 command: {{- include "common.tplvalues.render" (dict "value" .Values.hidden.command "context" $) | nindent 12 }}
214 - /scripts/setup-hidden.sh
216 {{- if .Values.diagnosticMode.enabled }}
217 args: {{- include "common.tplvalues.render" (dict "value" .Values.diagnosticMode.args "context" $) | nindent 12 }}
218 {{- else if .Values.hidden.args }}
219 args: {{- include "common.tplvalues.render" (dict "value" .Values.hidden.args "context" $) | nindent 12 }}
221 {{- if .Values.hidden.lifecycleHooks }}
222 lifecycle: {{- include "common.tplvalues.render" (dict "value" .Values.hidden.lifecycleHooks "context" $) | nindent 12 }}
225 - name: BITNAMI_DEBUG
226 value: {{ ternary "true" "false" (or .Values.image.debug .Values.diagnosticMode.enabled) | quote }}
227 {{- if and .Values.externalAccess.hidden.enabled .Values.externalAccess.autoDiscovery.enabled (eq .Values.externalAccess.hidden.service.type "LoadBalancer") }}
229 value: "/shared/info.txt"
234 fieldPath: metadata.name
235 - name: MY_POD_HOST_IP
238 fieldPath: status.hostIP
239 - name: MY_POD_NAMESPACE
242 fieldPath: metadata.namespace
243 - name: K8S_SERVICE_NAME
244 value: "{{ include "mongodb.service.nameOverride" . }}"
245 - name: K8S_HIDDEN_NODE_SERVICE_NAME
246 value: "{{ include "mongodb.fullname" . }}-hidden-headless"
247 - name: MONGODB_REPLICA_SET_MODE
249 - name: MONGODB_INITIAL_PRIMARY_HOST
250 value: {{ printf "%s-0.$(K8S_SERVICE_NAME).$(MY_POD_NAMESPACE).svc.%s" (include "mongodb.fullname" .) .Values.clusterDomain }}
251 - name: MONGODB_REPLICA_SET_NAME
252 value: {{ .Values.replicaSetName | quote }}
253 {{- if and .Values.replicaSetHostnames (not .Values.externalAccess.hidden.enabled) }}
254 - name: MONGODB_ADVERTISED_HOSTNAME
255 value: "$(MY_POD_NAME).$(K8S_HIDDEN_NODE_SERVICE_NAME).$(MY_POD_NAMESPACE).svc.{{ .Values.clusterDomain }}"
257 {{- $customUsers := include "mongodb.customUsers" . -}}
258 {{- $customDatabases := include "mongodb.customDatabases" . -}}
259 {{- if not (empty $customUsers) }}
260 - name: MONGODB_EXTRA_USERNAMES
261 value: {{ $customUsers | quote }}
263 {{- if not (empty $customDatabases) }}
264 - name: MONGODB_EXTRA_DATABASES
265 value: {{ $customDatabases | quote }}
267 {{- if .Values.auth.enabled }}
268 {{- if and (not (empty $customUsers)) (not (empty $customDatabases)) }}
269 - name: MONGODB_EXTRA_PASSWORDS
272 name: {{ include "mongodb.secretName" . }}
273 key: mongodb-passwords
275 - name: MONGODB_ROOT_USER
276 value: {{ .Values.auth.rootUser | quote }}
277 - name: MONGODB_ROOT_PASSWORD
280 name: {{ include "mongodb.secretName" . }}
281 key: mongodb-root-password
282 - name: MONGODB_REPLICA_SET_KEY
285 name: {{ include "mongodb.secretName" . }}
286 key: mongodb-replica-set-key
288 {{- if and .Values.metrics.enabled (not (empty .Values.metrics.username)) }}
289 - name: MONGODB_METRICS_USERNAME
290 value: {{ .Values.metrics.username | quote }}
291 {{- if .Values.auth.enabled }}
292 - name: MONGODB_METRICS_PASSWORD
295 name: {{ include "mongodb.secretName" . }}
296 key: mongodb-metrics-password
299 - name: ALLOW_EMPTY_PASSWORD
300 value: {{ ternary "no" "yes" .Values.auth.enabled | quote }}
301 - name: MONGODB_SYSTEM_LOG_VERBOSITY
302 value: {{ .Values.systemLogVerbosity | quote }}
303 - name: MONGODB_DISABLE_SYSTEM_LOG
304 value: {{ ternary "yes" "no" .Values.disableSystemLog | quote }}
305 - name: MONGODB_DISABLE_JAVASCRIPT
306 value: {{ ternary "yes" "no" .Values.disableJavascript | quote }}
307 - name: MONGODB_ENABLE_JOURNAL
308 value: {{ ternary "yes" "no" .Values.enableJournal | quote }}
309 - name: MONGODB_PORT_NUMBER
310 value: {{ .Values.hidden.containerPorts.mongodb | quote }}
311 - name: MONGODB_ENABLE_IPV6
312 value: {{ ternary "yes" "no" .Values.enableIPv6 | quote }}
313 - name: MONGODB_ENABLE_DIRECTORY_PER_DB
314 value: {{ ternary "yes" "no" .Values.directoryPerDB | quote }}
315 {{- $extraFlags := .Values.hidden.extraFlags | join " " -}}
316 {{- if .Values.tls.enabled }}
317 {{- if .Values.tls.mTLS.enabled }}
318 {{- $extraFlags = printf "--tlsCAFile=/certs/mongodb-ca-cert %s" $extraFlags }}
320 {{- $extraFlags = printf "--tlsMode=%s --tlsCertificateKeyFile=/certs/mongodb.pem %s" .Values.tls.mode $extraFlags }}
322 {{- if ne $extraFlags "" }}
323 - name: MONGODB_EXTRA_FLAGS
324 value: {{ $extraFlags | quote }}
326 {{- if .Values.tls.enabled }}
327 - name: MONGODB_CLIENT_EXTRA_FLAGS
328 value: --tls {{ if .Values.tls.mTLS.enabled }}--tlsCertificateKeyFile=/certs/mongodb.pem {{ end }}--tlsCAFile=/certs/mongodb-ca-cert
330 {{- if .Values.hidden.extraEnvVars }}
331 {{- include "common.tplvalues.render" (dict "value" .Values.hidden.extraEnvVars "context" $) | nindent 12 }}
333 {{- if or .Values.hidden.extraEnvVarsCM .Values.hidden.extraEnvVarsSecret }}
335 {{- if .Values.hidden.extraEnvVarsCM }}
337 name: {{ tpl .Values.hidden.extraEnvVarsCM . | quote }}
339 {{- if .Values.hidden.extraEnvVarsSecret }}
341 name: {{ tpl .Values.hidden.extraEnvVarsSecret . | quote }}
345 - containerPort: {{ .Values.hidden.containerPorts.mongodb }}
347 {{- if not .Values.diagnosticMode.enabled }}
348 {{- if .Values.hidden.customLivenessProbe }}
349 livenessProbe: {{- include "common.tplvalues.render" (dict "value" .Values.hidden.customLivenessProbe "context" $) | nindent 12 }}
350 {{- else if .Values.hidden.livenessProbe.enabled }}
351 livenessProbe: {{- include "common.tplvalues.render" (dict "value" (omit .Values.hidden.livenessProbe "enabled") "context" $) | nindent 12 }}
354 - /bitnami/scripts/ping-mongodb.sh
356 {{- if .Values.hidden.customReadinessProbe }}
357 readinessProbe: {{- include "common.tplvalues.render" (dict "value" .Values.hidden.customReadinessProbe "context" $) | nindent 12 }}
358 {{- else if .Values.hidden.readinessProbe.enabled }}
359 readinessProbe: {{- include "common.tplvalues.render" (dict "value" (omit .Values.hidden.readinessProbe "enabled") "context" $) | nindent 12 }}
362 - /bitnami/scripts/ping-mongodb.sh
364 {{- if .Values.hidden.customStartupProbe }}
365 startupProbe: {{- include "common.tplvalues.render" (dict "value" .Values.hidden.customStartupProbe "context" $) | nindent 12 }}
366 {{- else if .Values.hidden.startupProbe.enabled }}
367 startupProbe: {{- include "common.tplvalues.render" (dict "value" (omit .Values.hidden.startupProbe "enabled") "context" $) | nindent 12 }}
370 - /bitnami/scripts/startup-probe.sh
373 {{- if .Values.hidden.resources }}
374 resources: {{- toYaml .Values.hidden.resources | nindent 12 }}
375 {{- else if ne .Values.hidden.resourcesPreset "none" }}
376 resources: {{- include "common.resources.preset" (dict "type" .Values.hidden.resourcesPreset) | nindent 12 }}
380 mountPath: {{ .Values.hidden.persistence.mountPath }}
381 subPath: {{ .Values.hidden.persistence.subPath }}
382 - name: common-scripts
383 mountPath: /bitnami/scripts
384 {{- if or .Values.initdbScriptsConfigMap .Values.initdbScripts }}
385 - name: custom-init-scripts
386 mountPath: /docker-entrypoint-initdb.d
388 {{- if or .Values.hidden.configuration .Values.hidden.existingConfigmap }}
390 mountPath: /opt/bitnami/mongodb/conf/mongodb.conf
391 subPath: mongodb.conf
394 mountPath: /scripts/setup-hidden.sh
395 subPath: setup-hidden.sh
396 {{- if and .Values.externalAccess.hidden.enabled .Values.externalAccess.autoDiscovery.enabled (eq .Values.externalAccess.hidden.service.type "LoadBalancer") }}
400 {{- if .Values.tls.enabled }}
408 mountPath: /opt/bitnami/mongodb/conf
409 subPath: app-conf-dir
411 mountPath: /opt/bitnami/mongodb/tmp
414 mountPath: /opt/bitnami/mongodb/logs
415 subPath: app-logs-dir
416 {{- if .Values.hidden.extraVolumeMounts }}
417 {{- include "common.tplvalues.render" (dict "value" .Values.hidden.extraVolumeMounts "context" $) | nindent 12 }}
419 {{- if .Values.metrics.enabled }}
421 image: {{ template "mongodb.metrics.image" . }}
422 imagePullPolicy: {{ .Values.metrics.image.pullPolicy | quote }}
423 {{- if .Values.containerSecurityContext.enabled }}
424 securityContext: {{- omit .Values.containerSecurityContext "enabled" | toYaml | nindent 12 }}
426 {{- if .Values.diagnosticMode.enabled }}
427 command: {{- include "common.tplvalues.render" (dict "value" .Values.diagnosticMode.command "context" $) | nindent 12 }}
428 {{- else if .Values.metrics.command }}
429 command: {{- include "common.tplvalues.render" (dict "value" .Values.metrics.command "context" $) | nindent 12 }}
435 {{- if .Values.diagnosticMode.enabled }}
436 args: {{- include "common.tplvalues.render" (dict "value" .Values.diagnosticMode.args "context" $) | nindent 12 }}
437 {{- else if .Values.metrics.args }}
438 args: {{- include "common.tplvalues.render" (dict "value" .Values.metrics.args "context" $) | nindent 12 }}
442 /bin/mongodb_exporter {{ include "mongodb.exporterArgs" $ }} --mongodb.direct-connect --mongodb.global-conn-pool --mongodb.uri "{{ include "mongodb.mongodb_exporter.uri" . }}" {{ .Values.metrics.extraFlags }}
445 {{- if .Values.auth.enabled }}
446 {{- if not .Values.metrics.username }}
447 - name: MONGODB_ROOT_USER
448 value: {{ .Values.auth.rootUser | quote }}
449 - name: MONGODB_ROOT_PASSWORD
452 name: {{ include "mongodb.secretName" . }}
453 key: mongodb-root-password
455 - name: MONGODB_METRICS_USERNAME
456 value: {{ .Values.metrics.username | quote }}
457 - name: MONGODB_METRICS_PASSWORD
460 name: {{ include "mongodb.secretName" . }}
461 key: mongodb-metrics-password
468 {{- if .Values.tls.enabled }}
473 mountPath: /opt/bitnami/redis-cluster/tmp
475 {{- if .Values.metrics.extraVolumeMounts }}
476 {{- include "common.tplvalues.render" (dict "value" .Values.metrics.extraVolumeMounts "context" $) | nindent 12 }}
481 {{- if not .Values.diagnosticMode.enabled }}
482 {{- if .Values.metrics.customLivenessProbe }}
483 livenessProbe: {{- include "common.tplvalues.render" (dict "value" .Values.metrics.customLivenessProbe "context" $) | nindent 12 }}
484 {{- else if .Values.metrics.livenessProbe.enabled }}
485 livenessProbe: {{- include "common.tplvalues.render" (dict "value" (omit .Values.metrics.livenessProbe "enabled") "context" $) | nindent 12 }}
490 {{- if .Values.metrics.customReadinessProbe }}
491 readinessProbe: {{- include "common.tplvalues.render" (dict "value" .Values.metrics.customReadinessProbe "context" $) | nindent 12 }}
492 {{- else if .Values.metrics.readinessProbe.enabled }}
493 readinessProbe: {{- include "common.tplvalues.render" (dict "value" (omit .Values.metrics.readinessProbe "enabled") "context" $) | nindent 12 }}
498 {{- if .Values.metrics.customStartupProbe }}
499 startupProbe: {{- include "common.tplvalues.render" (dict "value" .Values.metrics.customStartupProbe "context" $) | nindent 12 }}
500 {{- else if .Values.metrics.startupProbe.enabled }}
501 startupProbe: {{- include "common.tplvalues.render" (dict "value" (omit .Values.metrics.startupProbe "enabled") "context" $) | nindent 12 }}
506 {{- if .Values.metrics.resources }}
507 resources: {{- toYaml .Values.metrics.resources | nindent 12 }}
508 {{- else if ne .Values.metrics.resourcesPreset "none" }}
509 resources: {{- include "common.resources.preset" (dict "type" .Values.metrics.resourcesPreset) | nindent 12 }}
512 {{- if .Values.hidden.sidecars }}
513 {{- include "common.tplvalues.render" (dict "value" .Values.hidden.sidecars "context" $) | nindent 8 }}
518 - name: common-scripts
520 name: {{ printf "%s-common-scripts" (include "mongodb.fullname" .) }}
522 {{- if or .Values.initdbScriptsConfigMap .Values.initdbScripts }}
523 - name: custom-init-scripts
525 name: {{ template "mongodb.initdbScriptsCM" . }}
527 {{- if or .Values.hidden.configuration .Values.hidden.existingConfigmap }}
530 name: {{ include "mongodb.hidden.configmapName" . }}
532 {{- if and .Values.externalAccess.hidden.enabled .Values.externalAccess.autoDiscovery.enabled (eq .Values.externalAccess.hidden.service.type "LoadBalancer") }}
538 name: {{ printf "%s-scripts" (include "mongodb.fullname" .) }}
540 {{- if .Values.hidden.extraVolumes }}
541 {{- include "common.tplvalues.render" (dict "value" .Values.hidden.extraVolumes "context" $) | nindent 8 }}
543 {{- if .Values.tls.enabled }}
546 {{- if (include "mongodb.autoGenerateCerts" .) }}
549 secretName: {{ template "mongodb.tlsSecretName" . }}
551 - key: mongodb-ca-cert
552 path: mongodb-ca-cert
554 - key: mongodb-ca-key
558 {{- range $index, $secret := .Values.tls.hidden.existingSecrets }}
559 - name: mongodb-certs-{{ $index }}
561 secretName: {{ include "common.tplvalues.render" ( dict "value" $secret "context" $) }}
566 {{- if not .Values.hidden.persistence.enabled }}
568 {{- if .Values.hidden.persistence.medium }}
570 medium: {{ .Values.hidden.persistence.medium | quote }}
575 volumeClaimTemplates:
578 {{- if .Values.hidden.persistence.annotations }}
579 annotations: {{- include "common.tplvalues.render" (dict "value" .Values.hidden.persistence.annotations "context" $) | nindent 10 }}
583 {{- range .Values.hidden.persistence.accessModes }}
588 storage: {{ .Values.hidden.persistence.size | quote }}
589 {{- if .Values.hidden.persistence.volumeClaimTemplates.requests }}
590 {{- include "common.tplvalues.render" (dict "value" .Values.hidden.persistence.volumeClaimTemplates.requests "context" $) | nindent 12 }}
592 {{- if .Values.hidden.persistence.volumeClaimTemplates.dataSource }}
593 dataSource: {{- include "common.tplvalues.render" (dict "value" .Values.hidden.persistence.volumeClaimTemplates.dataSource "context" $) | nindent 10 }}
595 {{- if .Values.hidden.persistence.volumeClaimTemplates.selector }}
596 selector: {{- include "common.tplvalues.render" (dict "value" .Values.hidden.persistence.volumeClaimTemplates.selector "context" $) | nindent 10 }}
598 {{ include "common.storage.class" (dict "persistence" .Values.hidden.persistence "global" .Values.global) }}