From 42d07b5e9d7d9af7ae37db72659d94a6fb917fa4 Mon Sep 17 00:00:00 2001
From: David Hu <davidhu314@gmail.com>
Date: Sun, 17 Nov 2024 15:55:15 -0800
Subject: [PATCH] feat: add ability to configure airbyte db volume claim

---
 charts/airbyte/templates/airbyte-db.yaml |  2 +-
 charts/airbyte/values.yaml               | 60 ++++++++++++------------
 charts/airbyte/values.yaml.test          |  2 +
 3 files changed, 33 insertions(+), 31 deletions(-)

diff --git a/charts/airbyte/templates/airbyte-db.yaml b/charts/airbyte/templates/airbyte-db.yaml
index 91cbd658928..b3c9908282c 100644
--- a/charts/airbyte/templates/airbyte-db.yaml
+++ b/charts/airbyte/templates/airbyte-db.yaml
@@ -81,5 +81,5 @@ spec:
       accessModes: [ "ReadWriteOnce" ]
       resources:
         requests:
-          storage: 500Mi
+          storage: {{ .Values.postgresql.storage.volumeClaimValue  }}
 {{- end }}
diff --git a/charts/airbyte/values.yaml b/charts/airbyte/values.yaml
index 08c1f383860..dbdc1204c68 100644
--- a/charts/airbyte/values.yaml
+++ b/charts/airbyte/values.yaml
@@ -1,6 +1,5 @@
 ### TEST FOR RELEASE WORKFLOW
 
-
 # Global params that are overwritten with umbrella chart
 global:
   # -- Service Account name override
@@ -25,7 +24,7 @@ global:
   image:
     # Docker registry to pull platform images from, e.g. http://my-registry:8000/
     registry: ""
-    # Image tag to use for airbyte images. 
+    # Image tag to use for airbyte images.
     # Does not include non-airbyte images such as busybox, temporal, minio, etc.
     tag: ""
 
@@ -43,12 +42,12 @@ global:
       # -- The first name of the initial user
       firstName: ""
       # -- The last name of the initial user
-      lastName:  ""
+      lastName: ""
       # -- The key within `emailSecretName` where the initial user's email is stored
       emailSecretKey: "instance-admin-email"
       # -- The key within `passwordSecretName` where the initial user's password is stored
       passwordSecretKey: "instance-admin-password"
-    
+
     # -- SSO Identify Provider configuration; (requires Enterprise)
     #identityProvider:
     #  # -- Secret name where the OIDC configuration is stored
@@ -95,8 +94,6 @@ global:
     # -- The key within `secretName` where the password is stored
     #passwordSecretKey: "" # e.g."database-password"
 
-
-
   storage:
     # -- The storage backend type. Supports s3, gcs, azure, minio (default)
     type: minio # default storage used
@@ -241,7 +238,7 @@ webapp:
     fsGroup: 101
 
   containerSecurityContext:
-    allowPrivilegeEscalation: false 
+    allowPrivilegeEscalation: false
     runAsNonRoot: true
     # uid=101(nginx)
     runAsUser: 101
@@ -468,7 +465,7 @@ pod-sweeper:
     fsGroup: 1001
 
   containerSecurityContext:
-    allowPrivilegeEscalation: false 
+    allowPrivilegeEscalation: false
     runAsNonRoot: true
     # uid=1001(anon)
     runAsUser: 1001
@@ -576,7 +573,7 @@ server:
     fsGroup: 1000
 
   containerSecurityContext:
-    allowPrivilegeEscalation: false 
+    allowPrivilegeEscalation: false
     runAsNonRoot: true
     # uid=1000(airbyte)
     runAsUser: 1000
@@ -758,7 +755,7 @@ worker:
     fsGroup: 1000
 
   containerSecurityContext:
-    allowPrivilegeEscalation: false 
+    allowPrivilegeEscalation: false
     runAsNonRoot: true
     # uid=1000(airbyte)
     runAsUser: 1000
@@ -893,7 +890,7 @@ workload-launcher:
     fsGroup: 1000
 
   containerSecurityContext:
-    allowPrivilegeEscalation: false 
+    allowPrivilegeEscalation: false
     runAsNonRoot: true
     # uid=1000(airbyte)
     runAsUser: 1000
@@ -1188,7 +1185,7 @@ metrics:
     fsGroup: 1000
 
   containerSecurityContext:
-    allowPrivilegeEscalation: false 
+    allowPrivilegeEscalation: false
     runAsNonRoot: true
     # uid=1000(airbyte)
     runAsUser: 1000
@@ -1310,7 +1307,7 @@ airbyte-bootloader:
     fsGroup: 1000
 
   containerSecurityContext:
-    allowPrivilegeEscalation: false 
+    allowPrivilegeEscalation: false
     runAsNonRoot: true
     # uid=1000(airbyte)
     runAsUser: 1000
@@ -1441,7 +1438,7 @@ temporal:
     fsGroup: 1000
 
   containerSecurityContext:
-    allowPrivilegeEscalation: false 
+    allowPrivilegeEscalation: false
     runAsNonRoot: true
     # uid=1000(temporal)
     runAsUser: 1000
@@ -1670,6 +1667,9 @@ postgresql:
   ## image.repository Repository for airbyte-db statefulset
   image:
     repository: airbyte/db
+  storage:
+    volumeClaimValue: 500Mi
+
   # -- Airbyte Postgresql username
   postgresqlUsername: airbyte
   # -- Airbyte Postgresql password
@@ -1685,7 +1685,7 @@ postgresql:
     fsGroup: 70
   containerSecurityContext:
     # -- Ensures the container will run with a non-root user
-    allowPrivilegeEscalation: false 
+    allowPrivilegeEscalation: false
     runAsNonRoot: true
     # uid=70(postgres)
     runAsUser: 70
@@ -1758,12 +1758,12 @@ minio:
   affinity: {}
 
   resources:
-     requests:
-       memory: 1Gi
-       cpu: 250m
-     limits:
-       cpu: 300m
-       memory: 2Gi
+    requests:
+      memory: 1Gi
+      cpu: 250m
+    limits:
+      cpu: 300m
+      memory: 2Gi
 ## @section cron parameters
 cron:
   enabled: true
@@ -1787,7 +1787,7 @@ cron:
     fsGroup: 1000
 
   containerSecurityContext:
-    allowPrivilegeEscalation: false 
+    allowPrivilegeEscalation: false
     runAsNonRoot: true
     # uid=1000(airbyte)
     runAsUser: 1000
@@ -1958,7 +1958,7 @@ connector-builder-server:
     fsGroup: 1000
 
   containerSecurityContext:
-    allowPrivilegeEscalation: false 
+    allowPrivilegeEscalation: false
     runAsNonRoot: true
     # uid=1000(airbyte)
     runAsUser: 1000
@@ -2058,7 +2058,7 @@ keycloak:
       image: "postgres:13-alpine"
 
   initContainerSecurityContext:
-    allowPrivilegeEscalation: false 
+    allowPrivilegeEscalation: false
     runAsNonRoot: true
     # uid=70(postgres)
     runAsUser: 70
@@ -2069,9 +2069,9 @@ keycloak:
       drop: ["ALL"]
     seccompProfile:
       type: RuntimeDefault
-    
+
   containerSecurityContext:
-    allowPrivilegeEscalation: false 
+    allowPrivilegeEscalation: false
     runAsNonRoot: true
     # uid=1000(keycloak)
     runAsUser: 1000
@@ -2107,7 +2107,7 @@ keycloak-setup:
     fsGroup: 1000
 
   initContainerSecurityContext:
-    allowPrivilegeEscalation: false 
+    allowPrivilegeEscalation: false
     runAsNonRoot: true
     # gid=100(curl_user)
     runAsUser: 100
@@ -2124,7 +2124,7 @@ keycloak-setup:
       image: "curlimages/curl:8.1.1"
 
   containerSecurityContext:
-    allowPrivilegeEscalation: false 
+    allowPrivilegeEscalation: false
     runAsNonRoot: true
     # uid=1000(airbyte)
     runAsUser: 1000
@@ -2166,7 +2166,7 @@ workload-api-server:
     fsGroup: 1000
 
   containerSecurityContext:
-    allowPrivilegeEscalation: false 
+    allowPrivilegeEscalation: false
     runAsNonRoot: true
     # uid=1000(airbyte)
     runAsUser: 1000
@@ -2387,4 +2387,4 @@ featureflag-server:
 testWebapp:
   image:
     repository: busybox
-    tag: latest
\ No newline at end of file
+    tag: latest
diff --git a/charts/airbyte/values.yaml.test b/charts/airbyte/values.yaml.test
index 2c9b6c11ab9..2d30b94bbe0 100644
--- a/charts/airbyte/values.yaml.test
+++ b/charts/airbyte/values.yaml.test
@@ -1351,6 +1351,8 @@ postgresql:
   ## image.repository Repository for airbyte-db statefulset
   image:
     repository: airbyte/db
+  storage:
+    volumeClaimValue: 500Mi
 
   postgresqlUsername: airbyte
   postgresqlPassword: airbyte