zitadel/zitadel-charts zitadel-9.16.1

on GitHub

A Helm chart for ZITADEL

What's Changed

• feat: install a secure HA CockroachDB by @eliobischof in #1
• integration tests by @eliobischof in #2
• fix release by @eliobischof in #3
• detect git changes by @eliobischof in #4
• build dependencies by @eliobischof in #5
• Add repo by @eliobischof in #6
• add pages permission by @eliobischof in #7
• make content writable by @eliobischof in #8
• move repo to charts.zitadel.com by @eliobischof in #10
• enable insecure cockroachdb by @eliobischof in #11
• support k8s prereleases by @eliobischof in #13
• don't pollute container env by @eliobischof in #14
• fix default instance config by @eliobischof in #15
• docs: fix example domain by @eliobischof in #19
• Restart pods on helm upgrade by @DoGab in #17
• Include client certs for db connection always if dbSslClientCrtSecret is not empty by @DoGab in #16
• Developer focus by @eliobischof in #21
• Add appProtocol to service by @DoGab in #18
• Update ZITADEL version, add probes and ServiceMonitor by @eliobischof in #23
• fix: Update v2 by @livio-a in #26
• only lint if chart has changed by @eliobischof in #28
• link to docs by @eliobischof in #27
• Fix broken serviceMonitor tlsConfig by @DoGab in #32
• Make it possible to reference existing secrets for masterkey and secretConfig by @DoGab in #24
• fix: update to zitadel 2.2.0 by @eliobischof in #35
• feat(services): Annotation config by @fdelucchijr in #37
• docs(README.md): list contributors by @eliobischof in #38
• fix(deployment): fix probes for external domain by @karma-git in #40
• Add option to configure additional env variables by @ansarhun in #41
• fix: update dependencies by @eliobischof in #44
• Small fixes by @ansarhun in #42
• feat: update default zitadel version by @eliobischof in #46
• feat: allow configuring readinessProbe, livenessProbe and add a startupProbe by @DoGab in #47
• feat: use k8s init and setup jobs and remove cockroach chart dependency by @eliobischof in #48
• fix: enable and describe proper cleanup by @eliobischof in #50
• feat: add firstinstance handling by @stebenz in #49
• fix: configurable key writer image by @eliobischof in #55
• fix: enable empty secrets by @eliobischof in #58
• fix: await zitadel-setup container by @eliobischof in #60
• chore: add issues automatically to project by @hifabienne in #61
• fix: Only create secret if configuration is provided via secretConfig by @lusu007 in #63
• Corrects typo in values.yaml by @mheers in #65
• feat: update default ZITADEL version by @eliobischof in #75
• ci: automate bumping ZITADEL version by @eliobischof in #43
• docs: fix URL for Zitadel k8s deployment guide by @wesjdj in #78
• docs: Fix a typo by @seandlg in #76
• feat: add pod disruption budget and update app version by @bitfactory-sem-denbroeder in #81
• chore: add PR template by @eliobischof in #86
• feat: support helm 3.9 by @eliobischof in #92
• chore: sync readme by @eliobischof in #96
• chore: fix link in PR template by @eliobischof in #101
• chore: fix readme sync by @eliobischof in #103
• [feat]: annotations as values by @oliverbaehler in #90
• feat: Add securityContext settings to machinekey container by @lusu007 in #88
• fix: guarantee setup job with machine user by @eliobischof in #100
• docs: add issue template for docs by @hifabienne in #102
• chore: fix comment by @jessebot in #117
• chore: Generate release notes by @lusu007 in #107
• fix: add and test examples directory by @eliobischof in #111
• feat: Support specifying a fixed clusterIP by @meyfa in #119
• Add possibility to configure configSecretKey by @skeletorXVI in #112
• Bump golang.org/x/text from 0.3.6 to 0.3.8 by @dependabot[bot] in #70
• docs(examples): align database release name with zitadel configuration by @dbourasseau in #130
• feat: Allow resource specification for machinekey container by @lusu007 in #133
• feat: add support for topologySpreadConstraints by @mdarii in #136
• feat: add self-signed certificate init container by @eliobischof in #141
• feat: set probe scheme to HTTPS when TLS is enabled by @PurseChicken in #144
• Make the initJob's backoff limit configurable via values.yaml by @jessebot in #147
• fix: Use .Values.image.tag for common labels by @lusu007 in #148
• chore: Test against Kubernetes 1.28 by @lusu007 in #149
• [Docs] Fix a Typo in Cockroach insecure example by @hreddy-klaviyo in #152
• feat: allow choose init command by @orblazer in #154
• docs: update issue templates by @hifabienne in #157
• docs: cockroach helm install without wait by @raunodepasquale in #155
• feat: add annotation fields to configMap and deployment resources by @arnouthoebreckx in #158
• feat: support multi-chart deployment by @thomaspetit in #162
• fix: Update chownImage to alpine 3.19 by @meyfa in #164
• Update tagline by @mffap in #166
• chore: update pm board action by @hifabienne in #169
• feat: add option to insert additional labels to the pod by @mdarii in #172
• chore: group dependabot by @eliobischof in #174
• test: bump the testsuite group with 6 updates by @dependabot[bot] in #175
• test: bump the testsuite group with 3 updates by @dependabot[bot] in #176
• feat: update default zitadel version to v2.46.0 with init projections by @eliobischof in #160
• test: bump the testsuite group with 1 update by @dependabot[bot] in #179
• chore: update github action with correct dependabot actor by @hifabienne in #180
• feat: introduce parameterization to probe schemes by @pisarz in #132
• fix: remove test pod by @eliobischof in #182
• fix: setup with secret config by @eliobischof in #181
• feat: add debug pod by @eliobischof in #183
• test: bump the testsuite group with 2 updates by @dependabot[bot] in #185
• test: bump the testsuite group with 5 updates by @dependabot[bot] in #192
• feat: Add additionalLabels to Jobs by @bjw-s in #190
• feat: update appVersion to v2.49.1, current latest release by @rud in #193
• fix: remove illegal characters from port name by @ameijboom in #191
• test: bump golang.org/x/net from 0.22.0 to 0.23.0 by @dependabot[bot] in #195
• test: bump the testsuite group across 1 directory with 5 updates by @dependabot[bot] in #197
• feat: Add ability to mount server ssl cert from secret by @Exeteres in #199
• chore: fix pending checks by @eliobischof in #202
• feat: update appVersion to v2.51.3 by @kleberbaum in #198
• test: bump github.com/zitadel/zitadel-go/v2 from 2.2.1 to 2.2.3 in the testsuite group across 1 directory by @dependabot[bot] in #201
• feat: support extraVolumes and extraVolumeMounts by @cr1cr1 in #205
• test: update k8s versions by @eliobischof in #206
• test: bump github.com/zitadel/zitadel-go/v2 from 2.2.3 to 2.2.4 in the testsuite group across 1 directory by @dependabot[bot] in #211
• test: add new error handling for user not found by @panapol-p in #216
• feat: upgrade default app version to v2.55.0 by @eliobischof in #219
• test: bump github.com/gorilla/schema from 1.3.0 to 1.4.1 by @dependabot[bot] in #221
• feat: use security contexts and mount configs instead of chown init containers by @bpow in #223
• test: bump the testsuite group across 1 directory with 5 updates by @dependabot[bot] in #229
• test: bump google.golang.org/grpc from 1.64.0 to 1.64.1 by @dependabot[bot] in #225
• chore: fix bump workflow for manual runs by @rud in #235
• test: bump the testsuite group across 1 directory with 4 updates by @dependabot[bot] in #233
• chore: helm chart bump.yml repair by @rud in #236
• chore: Dependabot updates for used Github Actions by @rud in #234
• chore: bump the actions group with 11 updates by @dependabot[bot] in #237
• chore: approve and merge automatic PRs by @eliobischof in #239
• chore: squash by @eliobischof in #241
• chore: fix automerge by @eliobischof in #243
• chore: run checks on auto PRs by @eliobischof in #245
• chore: sort tags by @eliobischof in #248
• Bump ZITADEL Version by @zitadel-workflow[bot] in #249
• chore: trigger releases from auto PRs by @eliobischof in #250
• test: bump github.com/gruntwork-io/terratest from 0.47.0 to 0.47.1 in the testsuite group by @dependabot[bot] in #251
• chore: bump actions/setup-python from 5.1.1 to 5.2.0 in the actions group by @dependabot[bot] in #252
• Bump ZITADEL Version by @zitadel-workflow[bot] in #253
• Bump ZITADEL Version by @zitadel-workflow[bot] in #255
• chore: add license by @eliobischof in #256
• fix: duplicate scheme in probes when TLS is enabled by @Smana in #258
• feat: sourcing envVars from a secret by @Smana in #261
• test: bump the testsuite group across 1 directory with 4 updates by @dependabot[bot] in #265
• test: fix grpc health check by @eliobischof in #268
• Bump ZITADEL Version by @zitadel-workflow[bot] in #260
• chore: bump the actions group across 1 directory with 2 updates by @dependabot[bot] in #266
• Bump ZITADEL Version by @zitadel-workflow[bot] in #272
• test: bump the testsuite group with 2 updates by @dependabot[bot] in #273
• test: use go 1.23 by @eliobischof in #274
• test: bump the testsuite group with 4 updates by @dependabot[bot] in #275
• Bump ZITADEL Version by @zitadel-workflow[bot] in #278
• chore: stop adding issues to product board by @eliobischof in #279
• Bump ZITADEL Version by @zitadel-workflow[bot] in #283
• feat: add extra manifests by @amine7777 in #277
• fix(appProtocol): ensure appProtocol can be valid without invalidating probes by @rawkode in #276
• Bump ZITADEL Version by @zitadel-workflow[bot] in #285
• Bump ZITADEL Version by @zitadel-workflow[bot] in #286
• test: bump the testsuite group with 4 updates by @dependabot[bot] in #288
• chore: bump helm/kind-action from 1.10.0 to 1.11.0 in the actions group by @dependabot[bot] in #289
• Bump ZITADEL Version by @zitadel-workflow[bot] in #290
• Bump ZITADEL Version by @zitadel-workflow[bot] in #293
• Bump ZITADEL Version by @zitadel-workflow[bot] in #294
• Bump ZITADEL Version by @zitadel-workflow[bot] in #297
• test: bump the testsuite group across 1 directory with 3 updates by @dependabot[bot] in #296
• chore: bump helm/kind-action from 1.11.0 to 1.12.0 in the actions group by @dependabot[bot] in #291
• feat: add possibility to set extra labels and externalTrafficPolicy for service template by @cyril-s in #295
• feat: Add ability to specify extraContainers by @PurseChicken in #287
• Bump ZITADEL Version by @zitadel-workflow[bot] in #298
• docs: describe jobs by @eliobischof in #299
• Bump ZITADEL Version by @zitadel-workflow[bot] in #301
• test: bump the testsuite group across 1 directory with 5 updates by @dependabot[bot] in #308
• chore: bump the actions group across 1 directory with 3 updates by @dependabot[bot] in #307
• fix: follow up on database certificates properties renaming by @yann-soubeyrand in #284
• feat: Add ability to specify initContainers by @czuares in #305
• docs: remove CRDB by @eliobischof in #325
• chore: bump tj-actions/changed-files from 45 to 46 in the actions group by @dependabot[bot] in #326
• test: bump the testsuite group across 1 directory with 6 updates by @dependabot[bot] in #318
• fix: change initContainers reference to avoid nil pointer exception by @petqa in #320
• chore: updating go to 1.23.7 by @kkrime in #323
• feat(setup): make backoffLimit configurable by @eliobischof in #331
• test: bump the testsuite group with 5 updates by @dependabot[bot] in #330
• chore: add workflow dispatch again by @eliobischof in #333
• fix: Allow to override app.kubernetes.io/version label with .Values.image.tag by @unique-jakub in #329
• chore: bump actions/setup-python from 5.4.0 to 5.5.0 in the actions group by @dependabot[bot] in #334
• fix: correct labels and selector labels by @yann-soubeyrand in #339
• test: bump the testsuite group across 1 directory with 6 updates by @dependabot[bot] in #338
• chore: bump actions/setup-python from 5.5.0 to 5.6.0 in the actions group by @dependabot[bot] in #340
• fix: avoid duplicate labels by @eliobischof in #342
• test: bump the testsuite group with 4 updates by @dependabot[bot] in #343
• test: bump github.com/zitadel/zitadel-go/v3 from 3.5.2 to 3.5.3 in the testsuite group by @dependabot[bot] in #346
• fix: truncate version tag label by @bo0tzz in #347
• test: bump the testsuite group with 2 updates by @dependabot[bot] in #349
• feat: use zitadel v4 release candidate by @eliobischof in #356
• feat: default to v4.0.0-rc.2 by @eliobischof in #360
• feat: use Zitadel v4 by @eliobischof in #366
• Update README.md by @amitmavgupta in #374
• Update README.md by @amitmavgupta in #373
• Update README.md by @amitmavgupta in #372
• Update README.md by @amitmavgupta in #371
• test: bump the testsuite group across 1 directory with 8 updates by @dependabot[bot] in #370
• chore: bump browser-actions/setup-chrome from 1 to 2 in the actions group by @dependabot[bot] in #359
• feat: allow multiple releases in a single namespace by @mdarii in #365
• Update README.md by @amitmavgupta in #377
• chore: bump actions/checkout from 4 to 5 in the actions group by @dependabot[bot] in #380
• test: bump the testsuite group with 4 updates by @dependabot[bot] in #378
• fix: pay attention to FirstInstance.Skip by @ml1nk in #385
• chore: add OCI image publishing to release workflow by @mridang in #392
• docs: enable publishing readme to artifact-hub by @mridang in #391
• fix: use correct selectorLabels for login deployment by @mridang in #395
• feat: add Prometheus scrape annotations to the deployment by @mridang in #384
• feat: add revision-history-limit support for replicaSet cleanup by @mridang in #393
• feat(login): add support for environment variables in login deployment by @mridang in #401
• chore: improved the release process using semantic-release by @mridang in #403
• chore: reverted the improvements to the release process using semantic-release by @mridang in #406
• fix(helm): Replace deprecated bitnami/kubectl image by @mridang in #388
• fix: update reference to renamed configmap.yaml in debug_replicaset by @mridang in #402
• test: bump the testsuite group with 6 updates by @dependabot[bot] in #427
• chore: add .editorconfig for consistent formatting by @mridang in #425
• chore: bump the actions group with 3 updates by @dependabot[bot] in #433
• fix(tests): stabilize acceptance test suite by @mridang in #436
• fix(service monitor): use correct selector labels by @eliobischof in #382
• chore: add kubeconform validation for Helm charts by @mridang in #437
• test: bump the testsuite group with 2 updates by @dependabot[bot] in #434
• test: bump google.golang.org/grpc from 1.75.1 to 1.76.0 in the testsuite group by @dependabot[bot] in #442
• chore: bump the actions group with 2 updates by @dependabot[bot] in #443
• feat(chart): add horizontal pod autoscaler support by @mridang in #422
• test: add smoke tests for more core resources by @mridang in #445
• feat: added a separate pod-disruption-budget for the login container too by @mridang in #440
• fix: correct login replica count and adjust chart defaults by @mridang in #432
• fix(example): image bitnami/postgresql not found by @panapol-p in #449
• feat(ci): migrate to Depot runners for faster helm tests by @mridang in #451
• fix: resolve login client secret mount when using loginClientSecretPr… by @mridang in #429
• feat: update minimum supported Kubernetes version to 1.30 by @mridang in #452
• chore(deps): standardize Dependabot configuration and remove auto-merge by @mridang in #453
• chore(deps): bump github.com/chromedp/chromedp from 0.14.1 to 0.14.2 in the go-version-updates group by @dependabot[bot] in #454
• fix: invert readme symlink direction to resolve Helm warnings by @mridang in #456
• fix: use semver parsing for setup job image tag by @mridang in #458
• feat: add dependency wait logic for proper startup ordering by @mridang in #455
• fix: cleanup imperatively created secrets on helm uninstall by @mridang in #459
• feat: allow optional PAT creation for admin machine user by @mridang in #420
• feat: add ALB support by @mridang in #460
• fix: fix the labels consistency across the chart by @mridang in #461
• feat: replace cert initContainer with genSelfSignedCert by @mridang in #421
• fix: resolve image pull error in pre-upgrade hook on EKS by @DexterYan in #464
• chore(deps): bump github.com/zitadel/zitadel-go/v3 from 3.13.0 to 3.14.0 in the go-version-updates group by @dependabot[bot] in #467
• fix(chart): Use --h2c flag for login init check by @mridang in #468
• test: used a fixed name to always hit the helm cache by @mridang in #471
• ci: run Go tests in parallel in CI by @mridang in #469
• chore(deps): bump github.com/gruntwork-io/terratest from 0.51.0 to 0.52.0 in the go-version-updates group by @dependabot[bot] in #473
• ci: add Qodana analysis on pull requests by @mridang in #466
• ci: enable Qodana inspection on main branch by @mridang in #477
• chore: improve template inspection quality by @mridang in #478
• docs: add CloudNativePG example with Traefik and self-signed certificates by @mridang in #479
• chore: improvements to the release process using semantic-release by @mridang in #407
• Revert "chore: improvements to the release process using semantic-release" by @mridang in #484
• docs: fix links by @eliobischof in #488
• fix(zitadel): add securityContext to initContainers by @ciphax in #487
• fix: prioritize Login Ingress for AWS ALB routing by @mridang in #497
• ci: upgrade test environment, Traefik, and add K8s 1.35 by @mridang in #507
• fix: prevent gitops from pruning dynamic secrets by @axellpadilla in #506
• feat: make tool container images configurable via tools.* values by @mridang in #493
• refactor(test): restructure acceptance tests for better stability by @mridang in #517
• fix: align pod and container security contexts with global defaults by @mridang in #515

New Contributors

• @eliobischof made their first contribution in #1
• @DoGab made their first contribution in #17
• @livio-a made their first contribution in #26
• @fdelucchijr made their first contribution in #37
• @karma-git made their first contribution in #40
• @ansarhun made their first contribution in #41
• @stebenz made their first contribution in #49
• @hifabienne made their first contribution in #61
• @lusu007 made their first contribution in #63
• @mheers made their first contribution in #65
• @wesjdj made their first contribution in #78
• @seandlg made their first contribution in #76
• @bitfactory-sem-denbroeder made their first contribution in #81
• @oliverbaehler made their first contribution in #90
• @jessebot made their first contribution in #117
• @meyfa made their first contribution in #119
• @skeletorXVI made their first contribution in #112
• @dependabot[bot] made their first contribution in #70
• @dbourasseau made their first contribution in #130
• @mdarii made their first contribution in #136
• @PurseChicken made their first contribution in #144
• @hreddy-klaviyo made their first contribution in #152
• @orblazer made their first contribution in #154
• @raunodepasquale made their first contribution in #155
• @arnouthoebreckx made their first contribution in #158
• @thomaspetit made their first contribution in #162
• @mffap made their first contribution in #166
• @pisarz made their first contribution in #132
• @bjw-s made their first contribution in #190
• @rud made their first contribution in #193
• @ameijboom made their first contribution in #191
• @Exeteres made their first contribution in #199
• @kleberbaum made their first contribution in #198
• @cr1cr1 made their first contribution in #205
• @panapol-p made their first contribution in #216
• @bpow made their first contribution in #223
• @zitadel-workflow[bot] made their first contribution in #249
• @Smana made their first contribution in #258
• @amine7777 made their first contribution in #277
• @rawkode made their first contribution in #276
• @cyril-s made their first contribution in #295
• @yann-soubeyrand made their first contribution in #284
• @czuares made their first contribution in #305
• @petqa made their first contribution in #320
• @kkrime made their first contribution in #323
• @unique-jakub made their first contribution in #329
• @bo0tzz made their first contribution in #347
• @amitmavgupta made their first contribution in #374
• @ml1nk made their first contribution in #385
• @DexterYan made their first contribution in #464
• @ciphax made their first contribution in #487
• @axellpadilla made their first contribution in #506

Full Changelog: https://github.com/zitadel/zitadel-charts/commits/zitadel-9.16.1