Skip to content

Commit e149a8b

Browse files
imrichardwuimrichardwu
authored
Merge branch 'main' into deadlines-endpoints
2 parents 7c076de + 4a1bc69 commit e149a8b

2 files changed

Lines changed: 70 additions & 5 deletions

File tree

chart/templates/NOTES.txt

Lines changed: 2 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -405,10 +405,10 @@ DEPRECATION WARNING:
405405

406406
{{- end }}
407407

408-
{{- if hasKey .Values.workers.podDisruptionBudget.config "minUnavailable" }}
408+
{{- if hasKey .Values.workers.podDisruptionBudget.config "minAvailable" }}
409409

410410
DEPRECATION WARNING:
411-
`workers.podDisruptionBudget.config.minUnavailable` has been renamed to `workers.celery.podDisruptionBudget.config.minUnavailable`.
411+
`workers.podDisruptionBudget.config.minAvailable` has been renamed to `workers.celery.podDisruptionBudget.config.minAvailable`.
412412
Please change your values as support for the old name will be dropped in a future release.
413413

414414
{{- end }}

chart/values.yaml

Lines changed: 68 additions & 3 deletions
Original file line numberDiff line numberDiff line change
@@ -508,8 +508,18 @@ data:
508508
# type: Opaque
509509
# data:
510510
# connection: base64_encoded_connection_string
511+
#
512+
# The secret must contain a key ``connection`` with a base64-encoded
513+
# SQLAlchemy connection string, e.g.:
514+
#
515+
# postgresql+psycopg2://airflow:password@postgres/airflow
511516

512517
metadataSecretName: ~
518+
# If not set, falls back to metadataSecretName. The secret must contain a key
519+
# ``connection`` with a base64-encoded connection string, e.g.:
520+
#
521+
# postgresql+psycopg2://user:password@host/db
522+
#
513523
resultBackendSecretName: ~
514524
brokerUrlSecretName: ~
515525

@@ -545,6 +555,17 @@ data:
545555
# Fernet key settings
546556
# Note: fernetKey can only be set during install, not upgrade
547557
fernetKey: ~
558+
# If set, the secret must contain a key ``fernet-key`` with a base64-encoded
559+
# Fernet key value. Example secret:
560+
#
561+
# kind: Secret
562+
# apiVersion: v1
563+
# metadata:
564+
# name: custom-fernet-key-secret
565+
# type: Opaque
566+
# data:
567+
# fernet-key: <base64_encoded_fernet_key>
568+
#
548569
fernetKeySecretName: ~
549570
# Add custom annotations to the fernet key secret
550571
fernetKeySecretAnnotations: {}
@@ -553,18 +574,52 @@ fernetKeySecretAnnotations: {}
553574
apiSecretKey: ~
554575
# Add custom annotations to the api secret
555576
apiSecretAnnotations: {}
577+
# If set, the secret must contain a key ``api-secret-key`` with a base64-encoded
578+
# API secret key value. Example secret:
579+
#
580+
# kind: Secret
581+
# apiVersion: v1
582+
# metadata:
583+
# name: custom-api-secret
584+
# type: Opaque
585+
# data:
586+
# api-secret-key: <base64_encoded_api_secret_key>
587+
#
556588
apiSecretKeySecretName: ~
557589

558590
# Secret key used to encode and decode JWTs: `[api_auth] jwt_secret` in airflow.cfg
559591
jwtSecret: ~
560592
# Add custom annotations to the JWT secret
561593
jwtSecretAnnotations: {}
594+
# If set, the secret must contain a key ``jwt-secret`` with a base64-encoded
595+
# JWT secret value. Example secret:
596+
#
597+
# kind: Secret
598+
# apiVersion: v1
599+
# metadata:
600+
# name: custom-jwt-secret
601+
# type: Opaque
602+
# data:
603+
# jwt-secret: <base64_encoded_jwt_secret>
604+
#
562605
jwtSecretName: ~
563606

564607
# Flask secret key for Airflow <3 Webserver: `[webserver] secret_key` in airflow.cfg
565608
webserverSecretKey: ~
566609
# Add custom annotations to the webserver secret
567610
webserverSecretAnnotations: {}
611+
# Deprecated in favor of apiSecretKeySecretName (Airflow 3+).
612+
# If set, the secret must contain a key ``webserver-secret-key`` with a
613+
# base64-encoded secret key value. Example secret:
614+
#
615+
# kind: Secret
616+
# apiVersion: v1
617+
# metadata:
618+
# name: custom-webserver-secret
619+
# type: Opaque
620+
# data:
621+
# webserver-secret-key: <base64_encoded_secret_key>
622+
#
568623
webserverSecretKeySecretName: ~
569624

570625
# In order to use kerberos you need to create secret containing the keytab file
@@ -722,10 +777,10 @@ workers:
722777
# (deprecated, use `workers.celery.podDisruptionBudget.config` instead)
723778
config:
724779
# minAvailable and maxUnavailable are mutually exclusive
725-
# (deprecated, use `workers.celery.podDisruptionBudget.config.maxUnavailable` instead)
726780
maxUnavailable: 1
727-
# (deprecated, use `workers.celery.podDisruptionBudget.config.minAvailable` instead)
781+
# (deprecated, use `workers.celery.podDisruptionBudget.config.maxUnavailable` instead)
728782
# minAvailable: 1
783+
# (deprecated, use `workers.celery.podDisruptionBudget.config.minAvailable` instead)
729784

730785
# Create ServiceAccount for Airflow Celery workers and pods created with pod-template-file
731786
serviceAccount:
@@ -2776,7 +2831,17 @@ flower:
27762831
# Annotations to add to worker kubernetes service account.
27772832
annotations: {}
27782833

2779-
# A secret containing the connection
2834+
# If set, the secret must contain a key ``connection`` with a base64-encoded
2835+
# Flower basic auth connection string (user:password). Example secret:
2836+
#
2837+
# kind: Secret
2838+
# apiVersion: v1
2839+
# metadata:
2840+
# name: custom-flower-secret
2841+
# type: Opaque
2842+
# data:
2843+
# connection: <base64_encoded_user_password>
2844+
#
27802845
secretName: ~
27812846
# Add custom annotations to the flower secret
27822847
secretAnnotations: {}

0 commit comments

Comments
 (0)