Skip to content

Commit

Permalink
feat(stmp-sasl): Updates values and secrets for STMP SASL integration.
Browse files Browse the repository at this point in the history 
In prevision of sidekick version bump.
falcosecurity/falcosidekick#341

Signed-off-by: Lyonel Martinez <[email protected]>
  • Loading branch information
@Lowaiz
Lowaiz committed Jul 26, 2022
1 parent 06bf6d6 commit b9cd593
Show file tree
Hide file tree
Showing 4 changed files with 20 additions and 7 deletions.
1 change: 1 addition & 0 deletions falcosidekick/CHANGELOG.md
View file
Original file line number Diff line number Diff line change
Expand Up @@ -9,6 +9,7 @@ Before release 0.1.20, the helm chart can be found in `falcosidekick` [repositor

* Add `alertmanager.extralabels` and `alertmanager.extraannotations` to the values,
as a list of comma separated labels and annotations to add to the AlertManager trigger.
* Add `smtp.autmechanism` and associated fields to be able to use any SASL mechanism.

## 0.5.6

Expand Down
12 changes: 8 additions & 4 deletions falcosidekick/README.md
View file
Original file line number Diff line number Diff line change
Expand Up @@ -320,13 +320,17 @@ The following table lists the main configurable parameters of the Falcosidekick
| `config.slack.outputformat` | `all` (default), `text` (only text is displayed in Slack), `fields` (only fields are displayed in Slack) | `all` |
| `config.slack.username` | Slack username | `falcosidekick` |
| `config.slack.webhookurl` | Slack Webhook URL (ex: <https://hooks.slack.com/services/XXXX/YYYY/ZZZZ>), if not `empty`, Slack output is *enabled* | `""` |
| `config.smtp.from` | Sender address (mandatory if SMTP output is *enabled*) | `""` |
| `config.smtp.hostport` | "host:port" address of SMTP server, if not empty, SMTP output is *enabled* | `""` |
| `config.smtp.minimumpriority` | minimum priority of event for using use this output, order is `emergency\|alert\|critical\|error\|warning\|notice\|informational\|debug or ""` | `debug` |
| `config.smtp.outputformat` | html, text | `html` |
| `config.smtp.authmechanism` | SASL Mechanisms : plain, oauthbearer, external, anonymous or "" (disable SASL). | `plain` |
| `config.smtp.user` | user to access SMTP server | `""` |
| `config.smtp.password` | password to access SMTP server | `""` |
| `config.smtp.token` | OAuthBearer token for OAuthBearer Mechanism | `""` |
| `config.smtp.identity` | identity string for Plain and External Mechanisms | `""` |
| `config.smtp.trace` | trace string for Anonymous Mechanism | `""` |
| `config.smtp.from` | Sender address (mandatory if SMTP output is *enabled*) | `""` |
| `config.smtp.to` | comma-separated list of Recipident addresses, can't be empty (mandatory if SMTP output is *enabled*) | `""` |
| `config.smtp.user` | user to access SMTP server | `""` |
| `config.smtp.outputformat` | html, text | `html` |
| `config.smtp.minimumpriority` | minimum priority of event for using use this output, order is `emergency\|alert\|critical\|error\|warning\|notice\|informational\|debug or ""` | `debug` |
| `config.stan.checkcert` | check if ssl certificate of the output is valid | `true` |
| `config.stan.clientid` | Client ID, if not empty, STAN output is *enabled* | `""` |
| `config.stan.clusterid` | Cluster name, if not empty, STAN output is *enabled* | `debug` |
Expand Down
6 changes: 5 additions & 1 deletion falcosidekick/templates/secrets.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -94,9 +94,13 @@ data:
AWS_KINESIS_MINIMUMPRIORITY: "{{ .Values.config.aws.kinesis.minimumpriority | b64enc }}"

# SMTP Output
SMTP_HOSTPORT: "{{ .Values.config.smtp.hostport | b64enc }}"
SMTP_AUTHMECHANISM: "{{ .Values.config.smtp.authmechanism | b64enc }}"
SMTP_USER: "{{ .Values.config.smtp.user | b64enc }}"
SMTP_PASSWORD: "{{ .Values.config.smtp.password | b64enc }}"
SMTP_HOSTPORT: "{{ .Values.config.smtp.hostport | b64enc }}"
SMTP_TOKEN: "{{ .Values.config.smtp.token | b64enc }}"
SMTP_IDENTITY: "{{ .Values.config.smtp.identity | b64enc }}"
SMTP_TRACE: "{{ .Values.config.smtp.trace | b64enc }}"
SMTP_FROM: "{{ .Values.config.smtp.from | b64enc }}"
SMTP_TO: "{{ .Values.config.smtp.to | b64enc }}"
SMTP_OUTPUTFORMAT: "{{ .Values.config.smtp.outputformat | b64enc }}"
Expand Down
8 changes: 6 additions & 2 deletions falcosidekick/values.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -165,8 +165,12 @@ config:

smtp:
hostport: ""
user: ""
password: ""
authmechanism: "plain" # SASL Mechanisms : plain, oauthbearer, external, anonymous or "" (disable SASL). Default: plain
user: "" # user for Plain Mechanism
password: "" # password for Plain Mechanism
token: "" # OAuthBearer token for OAuthBearer Mechanism
identity: "" # identity string for Plain and External Mechanisms
trace: "" # trace string for Anonymous Mechanism
from: ""
to: ""
outputformat: "html"
Expand Down

0 comments on commit b9cd593

Please sign in to comment.