factly · rapoler · Jan 12, 2026 · Jan 13, 2026 · coderabbitai · Jan 13, 2026
diff --git a/helm/gopie/Chart.lock b/helm/gopie/Chart.lock
@@ -8,5 +8,8 @@ dependencies:
 - name: qdrant
   repository: https://qdrant.github.io/qdrant-helm
   version: 1.12.5
-digest: sha256:8734b9e4d640b3b6e7876ce5fd50fa427a2b1b50d38ec46c2db867b7af200f4d
-generated: "2025-11-21T17:03:39.309977+05:30"
+# - name: zitadel
+#   repository: https://charts.zitadel.com
+#   version: 8.6.2
+# digest: sha256:800337654c501f38ca60acfb645b2bca91383e69829ad787af340293010dec7a
+# generated: "2026-01-09T11:51:20.510797+05:30"
diff --git a/helm/gopie/Chart.yaml b/helm/gopie/Chart.yaml
@@ -50,3 +50,8 @@ dependencies:
     repository: https://qdrant.github.io/qdrant-helm
     condition: qdrant.enabled
 
+  # - name: zitadel
+  #   version: 8.6.2
+  #   repository: https://charts.zitadel.com
+  #   condition: zitadel.enabled
+
diff --git a/helm/gopie/charts/zitadel-8.6.2.tgz b/helm/gopie/charts/zitadel-8.6.2.tgz
diff --git a/helm/gopie/templates/_pod-chat-server.tpl b/helm/gopie/templates/_pod-chat-server.tpl
@@ -55,5 +55,28 @@ tolerations:
   {{- toYaml . | nindent 2 }}
 {{- end }}
 volumes:
-  {{- toYaml .Values.chatserver.volumes | nindent 6 }}
+  {{- range .Values.chatserver.extraVolumes }}
+  - name: {{ .name }}
+    {{- if .existingClaim }}
+    persistentVolumeClaim:
+      claimName: {{ .existingClaim }}
+    {{- else if .hostPath }}
+    hostPath:
+      {{- toYaml .hostPath | nindent 6 }}
+    {{- else if .csi }}
+    csi:
+      {{- toYaml .csi | nindent 6 }}
+    {{- else if .configMap }}
+    configMap:
+      {{- toYaml .configMap | nindent 6 }}
+    {{- else if .secret }}
+    secret:
+      {{- toYaml .secret | nindent 6 }}
+    {{- else if .emptyDir }}
+    emptyDir:
+      {{- toYaml .emptyDir | nindent 6 }}
+    {{- else }}
+    emptyDir: {}
+    {{- end }}
+  {{- end }}
 {{- end }}
diff --git a/helm/gopie/templates/_pod-server.tpl b/helm/gopie/templates/_pod-server.tpl
@@ -53,26 +53,26 @@ containers:
       {{- toYaml .Values.deployment.readinessProbe | nindent 6 }}
     {{- end }}
     {{- if .Values.deployment.env }}
-    {{- with .Values.deployment.env }}
     env:
-    {{- toYaml . | nindent 6 }}
-    {{- end }}
+    {{- toYaml .Values.deployment.env | nindent 6 }}
+    {{- else }}
+    env:
+      - name: GOPIE_POSTGRES_HOST
+        value: {{ printf "%s-postgresql" $root.Release.Name | quote }}
+      - name: GOPIE_POSTGRES_DB
+        value: {{ $root.Values.postgresql.auth.database }}
+      - name: GOPIE_POSTGRES_USER
+        value: postgres
+      - name: GOPIE_POSTGRES_PASSWORD
+        valueFrom:
+          secretKeyRef:
+            name: {{ printf "%s-postgresql" $root.Release.Name }}
+            key: postgres-password
+      - name: GOPIE_POSTGRES_PORT
+        value: "5432"
+      - name: GOPIE_AIAGENT_URL
+        value: {{ printf "http://%s-chatserver:%v" $root.Release.Name ($root.Values.chatserver.service.portNumber | default 8000) }}
     {{- end }}
-      # - name: GOPIE_POSTGRES_HOST
-      #   value: {{ printf "%s-postgresql" $root.Release.Name | quote }}
-      # - name: GOPIE_POSTGRES_DB
-      #   value: {{ $root.Values.postgresql.auth.database }}
-      # - name: GOPIE_POSTGRES_USER
-      #   value: postgres
-      # - name: GOPIE_POSTGRES_PASSWORD
-      #   valueFrom:
-      #     secretKeyRef:
-      #       name: {{ printf "%s-postgresql" $root.Release.Name }}
-      #       key: postgres-password
-      # - name: GOPIE_POSTGRES_PORT
-      #   value: "5432"
-      # - name: GOPIE_AIAGENT_URL
-      #   value: {{ printf "http://%s-chatserver:%v" $root.Release.Name ($root.Values.chatserver.service.portNumber | default 8000) }}
     resources:
       {{- toYaml .Values.deployment.resources | nindent 6 }}
     volumeMounts:
@@ -95,8 +95,31 @@ tolerations:
   {{- toYaml . | nindent 2 }}
 {{- end }}
 volumes:
-  {{- toYaml .Values.deployment.volumes | nindent 6 }}
- {{- end }}
+  {{- range .Values.deployment.extraVolumes }}
+  - name: {{ .name }}
+    {{- if .existingClaim }}
+    persistentVolumeClaim:
+      claimName: {{ .existingClaim }}
+    {{- else if .hostPath }}
+    hostPath:
+      {{- toYaml .hostPath | nindent 6 }}
+    {{- else if .csi }}
+    csi:
+      {{- toYaml .csi | nindent 6 }}
+    {{- else if .configMap }}
+    configMap:
+      {{- toYaml .configMap | nindent 6 }}
+    {{- else if .secret }}
+    secret:
+      {{- toYaml .secret | nindent 6 }}
+    {{- else if .emptyDir }}
+    emptyDir:
+      {{- toYaml .emptyDir | nindent 6 }}
+    {{- else }}
+    emptyDir: {}
+    {{- end }}
+  {{- end }}
+{{- end }}
 
 
 
@@ -152,27 +175,29 @@ containers:
     readinessProbe:
       {{- toYaml .Values.stateful.readinessProbe | nindent 6 }}
     {{- end }}
-    env:
-      # - name: GOPIE_POSTGRES_HOST
-      #   value: {{ printf "%s-postgresql" $root.Release.Name | quote }}
-      # - name: GOPIE_POSTGRES_DB
-      #   value: {{ $root.Values.postgresql.auth.database }}
-      # - name: GOPIE_POSTGRES_USER
-      #   value: postgres
-      # - name: GOPIE_POSTGRES_PASSWORD
-      #   valueFrom:
-      #     secretKeyRef:
-      #       name: {{ printf "%s-postgresql" $root.Release.Name }}
-      #       key: postgres-password
-      # - name: GOPIE_POSTGRES_PORT
-      #   value: "5432"
-      # - name: GOPIE_AIAGENT_URL
-      #   value: {{ printf "http://%s-chatserver:%v" $root.Release.Name ($root.Values.chatserver.service.portNumber | default 8000) }}
     {{- if .Values.stateful.env }}
+    env:
     {{- range .Values.stateful.env }}
       - name: {{ .name }}
         value: {{ .value | quote }}
     {{- end }}
+    {{- else }}
+    env:
+      - name: GOPIE_POSTGRES_HOST
+        value: {{ printf "%s-postgresql" $root.Release.Name | quote }}
+      - name: GOPIE_POSTGRES_DB
+        value: {{ $root.Values.postgresql.auth.database }}
+      - name: GOPIE_POSTGRES_USER
+        value: postgres
+      - name: GOPIE_POSTGRES_PASSWORD
+        valueFrom:
+          secretKeyRef:
+            name: {{ printf "%s-postgresql" $root.Release.Name }}
+            key: postgres-password
+      - name: GOPIE_POSTGRES_PORT
+        value: "5432"
+      - name: GOPIE_AIAGENT_URL
+        value: {{ printf "http://%s-chatserver:%v" $root.Release.Name ($root.Values.chatserver.service.portNumber | default 8000) }}
     {{- end }}
     resources: {{- toYaml .Values.stateful.resources | nindent 6 }}
     volumeMounts:

diff --git a/helm/gopie/templates/_pod-web.tpl b/helm/gopie/templates/_pod-web.tpl
@@ -53,5 +53,28 @@ tolerations:
   {{- toYaml . | nindent 2 }}
 {{- end }}
 volumes:
-  {{- toYaml .Values.web.volumes | nindent 6 }}
+  {{- range .Values.web.extraVolumes }}
+  - name: {{ .name }}
+    {{- if .existingClaim }}
+    persistentVolumeClaim:
+      claimName: {{ .existingClaim }}
+    {{- else if .hostPath }}
+    hostPath:
+      {{- toYaml .hostPath | nindent 6 }}
+    {{- else if .csi }}
+    csi:
+      {{- toYaml .csi | nindent 6 }}
+    {{- else if .configMap }}
+    configMap:
+      {{- toYaml .configMap | nindent 6 }}
+    {{- else if .secret }}
+    secret:
+      {{- toYaml .secret | nindent 6 }}
+    {{- else if .emptyDir }}
+    emptyDir:
+      {{- toYaml .emptyDir | nindent 6 }}
+    {{- else }}
+    emptyDir: {}
+    {{- end }}
+  {{- end }}
 {{- end }}
diff --git a/helm/gopie/templates/chat-server/pdb.yaml b/helm/gopie/templates/chat-server/pdb.yaml
@@ -0,0 +1,18 @@
+{{- if .Values.chatserver.podDisruptionBudget.enabled }}
+apiVersion: policy/v1
+kind: PodDisruptionBudget
+metadata:
+  name: {{ include "chatserver.name" . }}-pdb
+  namespace: {{ include "chatserver.namespace" . }}
+  labels:
+    {{ include "chatserver.labels" . | nindent 4 }}
+spec:
+  {{- if .Values.chatserver.podDisruptionBudget.minAvailable }}
+  minAvailable: {{ .Values.chatserver.podDisruptionBudget.minAvailable }}
+  {{- else if .Values.chatserver.podDisruptionBudget.maxUnavailable }}
+  maxUnavailable: {{ .Values.chatserver.podDisruptionBudget.maxUnavailable }}
+  {{- end }}
+  selector:
+    matchLabels:
+      {{ include "chatserver.selectorLabels" . | nindent 6 }}
+{{- end }}
diff --git a/helm/gopie/templates/server/pdb.yaml b/helm/gopie/templates/server/pdb.yaml
@@ -0,0 +1,18 @@
+{{- if .Values.deployment.podDisruptionBudget.enabled }}
+apiVersion: policy/v1
+kind: PodDisruptionBudget
+metadata:
+  name: {{ include "server.name" . }}-pdb
+  namespace: {{ include "gopie.namespace" . }}
+  labels:
+    {{ include "server.labels" . | nindent 4 }}
+spec:
+  {{- if .Values.deployment.podDisruptionBudget.minAvailable }}
+  minAvailable: {{ .Values.deployment.podDisruptionBudget.minAvailable }}
+  {{- else if .Values.deployment.podDisruptionBudget.maxUnavailable }}
+  maxUnavailable: {{ .Values.deployment.podDisruptionBudget.maxUnavailable }}
+  {{- end }}
+  selector:
+    matchLabels:
+      {{ include "server.selectorLabels" . | nindent 6 }}
+{{- end }}
diff --git a/helm/gopie/templates/server/servicemonitor.yaml b/helm/gopie/templates/server/servicemonitor.yaml
@@ -0,0 +1,17 @@
+apiVersion: monitoring.coreos.com/v1
+kind: ServiceMonitor
+metadata:
+  name: {{ include "server.name" . }}
+  namespace: {{ include "gopie.namespace" . }}
+  labels:
+    {{- include "server.labels" . | nindent 4 }}
+spec:
+  selector:
+    matchLabels:
+      {{- include "server.selectorLabels" . | nindent 6 }}
+  endpoints:
+  - port: metrics
+    path: /metrics
+    interval: 30s
+    scrapeTimeout: 10s
+    honorLabels: true
diff --git a/helm/gopie/templates/web/pdb.yaml b/helm/gopie/templates/web/pdb.yaml
@@ -0,0 +1,18 @@
+{{- if .Values.web.podDisruptionBudget.enabled }}
+apiVersion: policy/v1
+kind: PodDisruptionBudget
+metadata:
+  name: {{ include "web.name" . }}-pdb
+  namespace: {{ include "gopie.namespace" . }}
+  labels:
+    {{ include "web.labels" . | nindent 4 }}
+spec:
+  {{- if .Values.web.podDisruptionBudget.minAvailable }}
+  minAvailable: {{ .Values.web.podDisruptionBudget.minAvailable }}
+  {{- else if .Values.web.podDisruptionBudget.maxUnavailable }}
+  maxUnavailable: {{ .Values.web.podDisruptionBudget.maxUnavailable }}
+  {{- end }}
-  {{- if .Values.web.podDisruptionBudget.minAvailable }}
-  minAvailable: {{ .Values.web.podDisruptionBudget.minAvailable }}
-  {{- else if .Values.web.podDisruptionBudget.maxUnavailable }}
-  maxUnavailable: {{ .Values.web.podDisruptionBudget.maxUnavailable }}
-  {{- end }}
+  {{- if .Values.web.podDisruptionBudget.minAvailable }}
+  minAvailable: {{ .Values.web.podDisruptionBudget.minAvailable }}
+  {{- else if .Values.web.podDisruptionBudget.maxUnavailable }}
+  maxUnavailable: {{ .Values.web.podDisruptionBudget.maxUnavailable }}
+  {{- else }}
+  maxUnavailable: 1
+  {{- end }}
-  {{- if .Values.web.podDisruptionBudget.minAvailable }}
-  minAvailable: {{ .Values.web.podDisruptionBudget.minAvailable }}
-  {{- else if .Values.web.podDisruptionBudget.maxUnavailable }}
-  maxUnavailable: {{ .Values.web.podDisruptionBudget.maxUnavailable }}
-  {{- end }}
+  {{- if .Values.web.podDisruptionBudget.minAvailable }}
+  minAvailable: {{ .Values.web.podDisruptionBudget.minAvailable }}
+  {{- else if .Values.web.podDisruptionBudget.maxUnavailable }}
+  maxUnavailable: {{ .Values.web.podDisruptionBudget.maxUnavailable }}
+  {{- else }}
+  maxUnavailable: 1
+  {{- end }}
+  selector:
+    matchLabels:
+      {{ include "web.selectorLabels" . | nindent 6 }}
+{{- end }}