From 5a013b42ba591230c1f5e7522a3016d0f63bee04 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Moritz=20J=C3=B6rg?= Date: Sun, 1 Feb 2026 11:56:37 +0100 Subject: [PATCH 1/3] fix: Add gitea to sys-proj and whitelist --- values/argo/manifests/sys-project.yaml | 1 + values/gitea/values/values.yaml | 2 +- 2 files changed, 2 insertions(+), 1 deletion(-) diff --git a/values/argo/manifests/sys-project.yaml b/values/argo/manifests/sys-project.yaml index a52c4dcc..e6ff1f6c 100644 --- a/values/argo/manifests/sys-project.yaml +++ b/values/argo/manifests/sys-project.yaml @@ -95,6 +95,7 @@ spec: sourceRepos: - https://argoproj.github.io/argo-helm - https://kubernetes-sigs.github.io/metrics-server/ + - https://git.oceanbox.io/oceanbox/manifests - https://gitlab.com/oceanbox/manifests.git - https://kubernetes.github.io/ingress-nginx - https://cloudnative-pg.github.io/charts diff --git a/values/gitea/values/values.yaml b/values/gitea/values/values.yaml index a8b47b32..ce5535a3 100644 --- a/values/gitea/values/values.yaml +++ b/values/gitea/values/values.yaml @@ -145,7 +145,7 @@ ingress: nginx.ingress.kubernetes.io/proxy-body-size: "0" nginx.ingress.kubernetes.io/proxy-read-timeout: "600" nginx.ingress.kubernetes.io/proxy-send-timeout: "600" - nginx.ingress.kubernetes.io/whitelist-source-range: 10.0.0.0/8,172.16.0.0/12,192.168.0.0/16,172.19.255.0/24,100.64.0.0/12,185.125.160.4/32 + nginx.ingress.kubernetes.io/whitelist-source-range: 10.0.0.0/8,172.16.0.0/12,192.168.0.0/16,172.19.255.0/24,100.64.0.0/12,185.125.160.4/32,10.0.1.0/24 hosts: - host: git.oceanbox.io paths: From e4cb8b36dfcdd3ed76496f0521b17e576d76e2e6 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Moritz=20J=C3=B6rg?= Date: Sun, 1 Feb 2026 22:40:08 +0100 Subject: [PATCH 2/3] fix(gitea/pf): Add mail --- values/gitea/values/values.yaml | 14 ++++++-------- values/postfix/values/values.yaml | 20 ++++++++++---------- 2 files changed, 16 insertions(+), 18 deletions(-) diff --git a/values/gitea/values/values.yaml b/values/gitea/values/values.yaml index ce5535a3..169d78e5 100644 --- a/values/gitea/values/values.yaml +++ b/values/gitea/values/values.yaml @@ -73,14 +73,12 @@ gitea: ENABLE_AUTO_REGISTRATION: true ACCOUNT_LINKING: "login" USERNAME: "nickname" - # mailer: - # ENABLED: true - # FROM: "noreply@oceanbox.io" - # PROTOCOL: "smtp+startls" - # SMTP_ADDR: "smtp.office365.com" - # SMTP_PORT: 587 - # USER: "noreply@oceanbox.io" - # PASSWD: + mailer: + ENABLED: true + FROM: "gitea@oceanbox.io" + PROTOCOL: "smtp" + SMTP_ADDR: "postfix-mail.postfix.svc.cluster.local" + SMTP_PORT: 587 database: DB_TYPE: postgres MAX_OPEN_CONNS: 90 diff --git a/values/postfix/values/values.yaml b/values/postfix/values/values.yaml index 3172ea86..120c1873 100644 --- a/values/postfix/values/values.yaml +++ b/values/postfix/values/values.yaml @@ -27,16 +27,16 @@ config: LOG_FORMAT: "json" ALLOW_EMPTY_SENDER_DOMAINS: "true" ALLOWED_SENDER_DOMAINS: "oceanbox.io" - RELAYHOST: "smtp.office365.com:587" - RELAYHOST_USERNAME: "noreply@oceanbox.io" - RELAYHOST_PASSWORD: "00c73c4a-1ad5-477d-b773-d5d63986061e" - postfix: - myhostname: "oceanbox.io" - # mynetworks: "127.0.0.0/8, 10.1.0.0/24" - smtp_tls_security_level: "may" - # To reduce log noise, only try authentication mechanisms supported by Zoho.com - smtpd_sasl_auth_enable: "no" - smtp_sasl_mechanism_filter: "plain, login" + RELAYHOST: "[smtp.office365.com]:587" + RELAYHOST_USERNAME: "gitea@oceanbox.io" + RELAYHOST_TLS_LEVEL: "encrypt" + XOAUTH2_CLIENT_ID: "00c73c4a-1ad5-477d-b773-d5d63986061e" + XOAUTH2_SECRET: "3E18Q~ONNftFcCmHIHZmPbLtVqwLDBSCwI9hGagV" + XOAUTH2_TOKEN_ENDPOINT: https://login.microsoftonline.com/3f737008-e9a0-4485-9d27-40329d288089/oauth2/v2.0/token + # XOAUTH2_INITIAL_ACCESS_TOKEN: "" + # XOAUTH2_INITIAL_REFRESH_TOKEN: "" + XOAUTH2_SYSLOG_ON_FAILURE: "no" + XOAUTH2_FULL_TRACE: "no" resources: limits: From a30a5f28fbde213f4a1a8b47dbcb145018ab0f4d Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Moritz=20J=C3=B6rg?= Date: Sun, 1 Feb 2026 22:46:56 +0100 Subject: [PATCH 3/3] fix: Use working env --- values/postfix/values/values.yaml | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) diff --git a/values/postfix/values/values.yaml b/values/postfix/values/values.yaml index 120c1873..b9332904 100644 --- a/values/postfix/values/values.yaml +++ b/values/postfix/values/values.yaml @@ -29,7 +29,6 @@ config: ALLOWED_SENDER_DOMAINS: "oceanbox.io" RELAYHOST: "[smtp.office365.com]:587" RELAYHOST_USERNAME: "gitea@oceanbox.io" - RELAYHOST_TLS_LEVEL: "encrypt" XOAUTH2_CLIENT_ID: "00c73c4a-1ad5-477d-b773-d5d63986061e" XOAUTH2_SECRET: "3E18Q~ONNftFcCmHIHZmPbLtVqwLDBSCwI9hGagV" XOAUTH2_TOKEN_ENDPOINT: https://login.microsoftonline.com/3f737008-e9a0-4485-9d27-40329d288089/oauth2/v2.0/token @@ -37,6 +36,8 @@ config: # XOAUTH2_INITIAL_REFRESH_TOKEN: "" XOAUTH2_SYSLOG_ON_FAILURE: "no" XOAUTH2_FULL_TRACE: "no" + postfix: + smtp_tls_security_level: "encrypt" resources: limits: