Allow USE_UNAUTHORIZED_STORAGE and ONLYOFFICE_HTTPS_HSTS_ENABLED

Closes: #964

templates/onlyoffice-deployment.yaml

@@ -82,6 +82,10 @@ spec:
               value: "{{ .Values.redis.master.service.port }}"
             - name: SKIP_FONTS_GENERATION
               value: "{{ .Values.onlyoffice.skipFontsGeneration }}"
+            - name: USE_UNAUTHORIZED_STORAGE
+              value: "{{ .Values.onlyoffice.unauthorizedStorage }}"
+            - name: ONLYOFFICE_HTTPS_HSTS_ENABLED
+              value: "{{ .Values.onlyoffice.httpsHstsEnabled }}"
           ports:
             - name: http
               containerPort: {{ .Values.onlyoffice.containerPort }}

values.yaml

@@ -56,6 +56,14 @@ onlyoffice:
   # for context.
   skipFontsGeneration: true
 
+  # Allow chainging unauthorizedStorage and httpsHstsEnabled
+  # Useful if you want to make Nextcloud and Onlyoffice work without proper
+  # certificates, i.e. when testing or in CI
+  # see https://open.greenhost.net/openappstack/nextcloud/-/issues/964
+  # Default is to *not* allow unauthorizedStorage and to enforce HSTS
+  unauthorizedStorage: false
+  httpsHstsEnabled: true
+
   # Port of onlyoffice server inside docker container.
   containerPort: 8000
 
@@ -142,4 +150,4 @@ sociallogin:
   server_name: sso.oas.example.net
   client_id: nextcloud
   groups_claim: openappstack_roles
-  # client_secret: "YouReallyNeedToChangeThis"
\ No newline at end of file
+  # client_secret: "YouReallyNeedToChangeThis"