From cd5ef08b10abd86c1ba222e00f74841a0f1e5e3e Mon Sep 17 00:00:00 2001 From: Maicon Berlofa Date: Sat, 4 Jul 2026 04:47:58 -0300 Subject: [PATCH] docs(sonarqube): sync template standards updates --- src/data/playground-configs.ts | 28 ++++++++++++++++ src/pages/docs/charts/sonarqube.mdx | 50 ++++++++++++++++++++++------- src/pages/playground.astro | 1 + 3 files changed, 67 insertions(+), 12 deletions(-) diff --git a/src/data/playground-configs.ts b/src/data/playground-configs.ts index ddd39839..2c52bbbe 100644 --- a/src/data/playground-configs.ts +++ b/src/data/playground-configs.ts @@ -1584,6 +1584,34 @@ export const chartConfigs: Record = { }, ], }, + { + name: 'Network Policy', + collapsible: true, + gateField: 'networkPolicy.enabled', + fields: [ + { + label: 'Egress Policy', + key: 'networkPolicy.egress.enabled', + type: 'toggle', + default: 'false', + description: 'Render explicit egress rules', + }, + { + label: 'Extra Egress CIDR', + key: 'networkPolicy.egress.extraEgress[0].to[0].ipBlock.cidr', + type: 'text', + default: '10.80.0.0/16', + description: 'Additional egress destination', + }, + { + label: 'Extra Egress Port', + key: 'networkPolicy.egress.extraEgress[0].ports[0].port', + type: 'number', + default: '443', + description: 'Additional TCP egress port', + }, + ], + }, ], tomcat: [ { diff --git a/src/pages/docs/charts/sonarqube.mdx b/src/pages/docs/charts/sonarqube.mdx index 8380d6ae..441b9c10 100644 --- a/src/pages/docs/charts/sonarqube.mdx +++ b/src/pages/docs/charts/sonarqube.mdx @@ -16,6 +16,7 @@ SonarQube Community Build provides code quality and security analysis. The HelmF - First-class community branch plugin wiring, Java agents, and webapp replacement support - Gateway API, Ingress, dual-stack Service fields, NetworkPolicy, PDB, persistence, and Helm tests - External Secrets Operator support for database credentials +- `extraManifests` extension point for small companion resources and self-contained validation fixtures @@ -97,6 +98,13 @@ networkPolicy: enabled: true egress: enabled: true + extraEgress: + - to: + - ipBlock: + cidr: 10.80.0.0/16 + ports: + - protocol: TCP + port: 443 pdb: enabled: true @@ -146,6 +154,21 @@ plugins: Use an internal artifact repository for production. Startup should not depend on public internet availability. +## Extension Manifests + +Use `extraManifests` for small companion resources that must ship with the release, such as a Service alias or a +short-lived validation dependency: + +```yaml +extraManifests: + - apiVersion: v1 + kind: ConfigMap + metadata: + name: sonarqube-extra + data: + enabled: 'true' +``` + ## Community Branch Plugin Community Branch Plugin wiring is explicit because it replaces web application files and adds Java agents: @@ -225,18 +248,21 @@ is enabled. ## Values -| Parameter | Default | Description | -| ------------------------------- | ----------------------------- | --------------------------------------------------------------- | -| `image.repository` | `docker.io/library/sonarqube` | Official SonarQube image. | -| `image.tag` | `26.4.0.121862-community` | SonarQube Community Build tag. | -| `sonarqube.databaseMode` | `auto` | Database mode: `auto`, `embedded`, `postgresql`, or `external`. | -| `postgresql.enabled` | `false` | Deploy HelmForge PostgreSQL dependency. | -| `waitForDatabase.enabled` | `true` | Wait for PostgreSQL before startup. | -| `plugins.enabled` | `false` | Enable plugin download init container. | -| `communityBranchPlugin.enabled` | `false` | Install and wire the community branch plugin. | -| `persistence.data.enabled` | `true` | Persist SonarQube data. | -| `gatewayAPI.enabled` | `false` | Render Gateway API HTTPRoute. | -| `externalSecrets.enabled` | `false` | Render ExternalSecret resources. | +| Parameter | Default | Description | +| ---------------------------------- | ----------------------------- | --------------------------------------------------------------- | +| `image.repository` | `docker.io/library/sonarqube` | Official SonarQube image. | +| `image.tag` | `26.4.0.121862-community` | SonarQube Community Build tag. | +| `sonarqube.databaseMode` | `auto` | Database mode: `auto`, `embedded`, `postgresql`, or `external`. | +| `postgresql.enabled` | `false` | Deploy HelmForge PostgreSQL dependency. | +| `waitForDatabase.enabled` | `true` | Wait for PostgreSQL before startup. | +| `plugins.enabled` | `false` | Enable plugin download init container. | +| `communityBranchPlugin.enabled` | `false` | Install and wire the community branch plugin. | +| `persistence.data.enabled` | `true` | Persist SonarQube data. | +| `gatewayAPI.enabled` | `false` | Render Gateway API HTTPRoute. | +| `networkPolicy.enabled` | `false` | Render NetworkPolicy. | +| `networkPolicy.egress.extraEgress` | `[]` | Additional complete NetworkPolicy egress rules. | +| `externalSecrets.enabled` | `false` | Render ExternalSecret resources. | +| `extraManifests` | `[]` | Additional Kubernetes manifests rendered with the release. | ## Links diff --git a/src/pages/playground.astro b/src/pages/playground.astro index 07b8fe5b..2367103a 100644 --- a/src/pages/playground.astro +++ b/src/pages/playground.astro @@ -28,6 +28,7 @@ const siteSyncPlaygroundConfigs: Record = { memcached: 'src/data/playground-configs.ts', notediscovery: 'src/data/playground-configs.ts', poznote: 'src/data/playground-configs.ts', + sonarqube: 'src/data/playground-configs.ts', }; const configuredChartSlugs = new Set([...Object.keys(mergedConfigs), ...Object.keys(siteSyncPlaygroundConfigs)]); const playgroundCharts = charts.filter(