| # Copyright © 2017 Amdocs, Bell Canada |
| # |
| # Licensed under the Apache License, Version 2.0 (the "License"); |
| # you may not use this file except in compliance with the License. |
| # You may obtain a copy of the License at |
| # |
| # http://www.apache.org/licenses/LICENSE-2.0 |
| # |
| # Unless required by applicable law or agreed to in writing, software |
| # distributed under the License is distributed on an "AS IS" BASIS, |
| # WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. |
| # See the License for the specific language governing permissions and |
| # limitations under the License. |
| |
| apiVersion: apps/v1beta1 |
| kind: StatefulSet |
| metadata: |
| name: {{ include "common.fullname" . }} |
| namespace: {{ include "common.namespace" . }} |
| labels: |
| app: {{ include "common.name" . }} |
| chart: {{ .Chart.Name }}-{{ .Chart.Version | replace "+" "_" }} |
| release: {{ include "common.release" . }} |
| heritage: {{ .Release.Service }} |
| spec: |
| serviceName: {{ include "common.servicename" . }}-cluster |
| replicas: {{ .Values.replicaCount }} |
| podManagementPolicy: Parallel |
| template: |
| metadata: |
| labels: |
| app: {{ include "common.name" . }} |
| release: {{ include "common.release" . }} |
| spec: |
| initContainers: |
| - command: |
| - sh |
| args: |
| - -c |
| - "cd /config-input && for PFILE in `ls -1 .`; do envsubst <${PFILE} >/config/${PFILE}; done" |
| env: |
| - name: AAI_CLIENT_NAME |
| {{- include "common.secret.envFromSecret" (dict "global" . "uid" "aai-user-creds" "key" "login") | indent 10 }} |
| - name: AAI_CLIENT_PASSWORD |
| {{- include "common.secret.envFromSecret" (dict "global" . "uid" "aai-user-creds" "key" "password") | indent 10 }} |
| - name: MODELSERVICE_USER |
| {{- include "common.secret.envFromSecret" (dict "global" . "uid" "modeling-user-creds" "key" "login") | indent 10 }} |
| - name: MODELSERVICE_PASSWORD |
| {{- include "common.secret.envFromSecret" (dict "global" . "uid" "modeling-user-creds" "key" "password") | indent 10 }} |
| - name: RESTCONF_USER |
| {{- include "common.secret.envFromSecret" (dict "global" . "uid" "restconf-creds" "key" "login") | indent 10 }} |
| - name: RESTCONF_PASSWORD |
| {{- include "common.secret.envFromSecret" (dict "global" . "uid" "restconf-creds" "key" "password") | indent 10 }} |
| - name: ANSIBLE_USER |
| {{- include "common.secret.envFromSecret" (dict "global" . "uid" "ansible-creds" "key" "login") | indent 10 }} |
| - name: ANSIBLE_PASSWORD |
| {{- include "common.secret.envFromSecret" (dict "global" . "uid" "ansible-creds" "key" "password") | indent 10 }} |
| - name: SCALEOUT_USER |
| {{- include "common.secret.envFromSecret" (dict "global" . "uid" "scaleout-creds" "key" "login") | indent 10 }} |
| - name: SCALEOUT_PASSWORD |
| {{- include "common.secret.envFromSecret" (dict "global" . "uid" "scaleout-creds" "key" "password") | indent 10 }} |
| - name: NETBOX_APIKEY |
| {{- include "common.secret.envFromSecret" (dict "global" . "uid" "netbox-apikey" "key" "password") | indent 10 }} |
| - name: SDNC_DB_USER |
| {{- include "common.secret.envFromSecret" (dict "global" . "uid" "db-secret" "key" "login") | indent 10 }} |
| - name: SDNC_DB_PASSWORD |
| {{- include "common.secret.envFromSecret" (dict "global" . "uid" "db-secret" "key" "password") | indent 10 }} |
| volumeMounts: |
| - mountPath: /config-input |
| name: config-input |
| - mountPath: /config |
| name: properties |
| image: "{{ .Values.global.envsubstImage }}" |
| imagePullPolicy: {{ .Values.global.pullPolicy | default .Values.pullPolicy }} |
| name: {{ include "common.name" . }}-update-config |
| |
| - command: |
| - /root/ready.py |
| args: |
| - --container-name |
| - {{ include "common.mariadbService" . }} |
| env: |
| - name: NAMESPACE |
| valueFrom: |
| fieldRef: |
| apiVersion: v1 |
| fieldPath: metadata.namespace |
| image: "{{ .Values.global.readinessRepository }}/{{ .Values.global.readinessImage }}" |
| imagePullPolicy: {{ .Values.global.pullPolicy | default .Values.pullPolicy }} |
| name: {{ include "common.name" . }}-readiness |
| {{ if .Values.global.aafEnabled }} |
| - name: {{ include "common.name" . }}-aaf-readiness |
| image: "{{ .Values.global.readinessRepository }}/{{ .Values.global.readinessImage }}" |
| imagePullPolicy: {{ .Values.global.pullPolicy | default .Values.pullPolicy }} |
| command: |
| - /root/ready.py |
| args: |
| - --container-name |
| - aaf-locate |
| env: |
| - name: NAMESPACE |
| valueFrom: |
| fieldRef: |
| apiVersion: v1 |
| fieldPath: metadata.namespace |
| - name: {{ include "common.name" . }}-aaf |
| image: {{ .Values.global.repository }}/{{ .Values.aaf_init.agentImage }} |
| imagePullPolicy: {{ .Values.global.pullPolicy | default .Values.pullPolicy }} |
| volumeMounts: |
| - mountPath: {{ .Values.certpersistence.certPath }} |
| name: {{ include "common.fullname" . }}-certs |
| command: |
| - bash |
| - -c |
| - | |
| /opt/app/aaf_config/bin/agent.sh && |
| cd /opt/app/osaaf/local && |
| /opt/app/aaf_config/bin/agent.sh local showpass | grep cadi_keystore_password= | cut -d= -f 2 > /opt/app/osaaf/local/.pass 2>&1 |
| env: |
| - name: APP_FQI |
| value: "{{ .Values.aaf_init.fqi }}" |
| - name: aaf_locate_url |
| value: "https://aaf-locate.{{ .Release.Namespace}}:8095" |
| - name: aaf_locator_container |
| value: "oom" |
| - name: aaf_locator_container_ns |
| value: "{{ .Release.Namespace }}" |
| - name: aaf_locator_fqdn |
| value: "{{ .Values.aaf_init.fqdn }}" |
| - name: aaf_locator_app_ns |
| value: "{{ .Values.aaf_init.app_ns }}" |
| - name: DEPLOY_FQI |
| {{- include "common.secret.envFromSecret" (dict "global" . "uid" "aaf-creds" "key" "login") | indent 12 }} |
| - name: DEPLOY_PASSWORD |
| {{- include "common.secret.envFromSecret" (dict "global" . "uid" "aaf-creds" "key" "password") | indent 12 }} |
| - name: cadi_longitude |
| value: "{{ .Values.aaf_init.cadi_longitude }}" |
| - name: cadi_latitude |
| value: "{{ .Values.aaf_init.cadi_latitude }}" |
| {{ end }} |
| - name: {{ include "common.name" . }}-chown |
| image: "busybox" |
| command: ["sh", "-c", "chown -R {{ .Values.config.odlUid }}:{{ .Values.config.odlGid}} {{ .Values.persistence.mdsalPath }} ; chown -R {{ .Values.config.odlUid }}:{{ .Values.config.odlGid}} {{ .Values.certpersistence.certPath }}"] |
| volumeMounts: |
| - mountPath: {{ .Values.persistence.mdsalPath }} |
| name: {{ include "common.fullname" . }}-data |
| - mountPath: {{ .Values.certpersistence.certPath }} |
| name: {{ include "common.fullname" . }}-certs |
| containers: |
| - name: {{ include "common.name" . }} |
| image: "{{ include "common.repository" . }}/{{ .Values.image }}" |
| imagePullPolicy: {{ .Values.global.pullPolicy | default .Values.pullPolicy }} |
| command: ["/bin/bash"] |
| args: ["-c", "/opt/sdnc/bin/startODL.sh"] |
| ports: |
| - containerPort: {{ .Values.service.internalPort }} |
| - containerPort: {{ .Values.service.internalPort2 }} |
| - containerPort: {{ .Values.service.internalPort3 }} |
| - containerPort: {{ .Values.service.clusterPort }} |
| readinessProbe: |
| tcpSocket: |
| port: {{ .Values.service.internalPort }} |
| initialDelaySeconds: {{ .Values.readiness.initialDelaySeconds }} |
| periodSeconds: {{ .Values.readiness.periodSeconds }} |
| env: |
| - name: MYSQL_ROOT_PASSWORD |
| {{- include "common.secret.envFromSecret" (dict "global" . "uid" "db-root-password" "key" "password") | indent 12 }} |
| - name: ODL_ADMIN_USERNAME |
| {{- include "common.secret.envFromSecret" (dict "global" . "uid" "odl-creds" "key" "login") | indent 12 }} |
| - name: ODL_ADMIN_PASSWORD |
| {{- include "common.secret.envFromSecret" (dict "global" . "uid" "odl-creds" "key" "password") | indent 12 }} |
| - name: SDNC_DB_USER |
| {{- include "common.secret.envFromSecret" (dict "global" . "uid" "db-secret" "key" "login") | indent 12 }} |
| - name: SDNC_DB_PASSWORD |
| {{- include "common.secret.envFromSecret" (dict "global" . "uid" "db-secret" "key" "password") | indent 12 }} |
| - name: SDNC_CONFIG_DIR |
| value: "{{ .Values.config.configDir }}" |
| - name: ENABLE_ODL_CLUSTER |
| value: "{{ .Values.config.enableClustering }}" |
| - name: MY_ODL_CLUSTER |
| value: "{{ .Values.config.myODLCluster }}" |
| - name: PEER_ODL_CLUSTER |
| value: "{{ .Values.config.peerODLCluster }}" |
| - name: IS_PRIMARY_CLUSTER |
| value: "{{ .Values.config.isPrimaryCluster }}" |
| - name: GEO_ENABLED |
| value: "{{ .Values.config.geoEnabled}}" |
| - name: SDNC_AAF_ENABLED |
| value: "{{ .Values.global.aafEnabled}}" |
| - name: SDNC_REPLICAS |
| value: "{{ .Values.replicaCount }}" |
| - name: MYSQL_HOST |
| value: {{ include "common.mariadbService" . }} |
| - name: JAVA_HOME |
| value: "{{ .Values.config.javaHome}}" |
| volumeMounts: |
| - mountPath: /etc/localtime |
| name: localtime |
| readOnly: true |
| - mountPath: /opt/opendaylight/current/etc/org.ops4j.pax.logging.cfg |
| name: sdnc-logging-cfg-config |
| subPath: org.ops4j.pax.logging.cfg |
| - mountPath: {{ .Values.config.binDir }}/startODL.sh |
| name: bin |
| subPath: startODL.sh |
| - mountPath: {{ .Values.config.binDir }}/installSdncDb.sh |
| name: bin |
| subPath: installSdncDb.sh |
| - mountPath: {{ .Values.config.configDir }}/aaiclient.properties |
| name: properties |
| subPath: aaiclient.properties |
| - mountPath: {{ .Values.config.configDir }}/dblib.properties |
| name: properties |
| subPath: dblib.properties |
| - mountPath: {{ .Values.config.configDir }}/lcm-dg.properties |
| name: properties |
| subPath: lcm-dg.properties |
| - mountPath: {{ .Values.config.configDir }}/svclogic.properties |
| name: properties |
| subPath: svclogic.properties |
| - mountPath: /opt/onap/sdnc/svclogic/config/svclogic.properties |
| name: properties |
| subPath: svclogic.properties |
| - mountPath: {{ .Values.config.configDir }}/netbox.properties |
| name: properties |
| subPath: netbox.properties |
| - mountPath: {{ .Values.config.configDir }}/blueprints-processor-adaptor.properties |
| name: properties |
| subPath: blueprints-processor-adaptor.properties |
| - mountPath: {{ .Values.persistence.mdsalPath }} |
| name: {{ include "common.fullname" . }}-data |
| - mountPath: /var/log/onap |
| name: logs |
| - mountPath: {{ .Values.certpersistence.certPath }} |
| name: {{ include "common.fullname" . }}-certs |
| - mountPath: {{ .Values.config.odl.salConfigDir }}/{{ .Values.config.odl.salConfigVersion}}/sal-clustering-config-{{ .Values.config.odl.salConfigVersion}}-akkaconf.xml |
| name: properties |
| subPath: akka.conf |
| - mountPath: {{ .Values.config.odl.etcDir }}/org.opendaylight.controller.cluster.datastore.cfg |
| name: properties |
| subPath: org.opendaylight.controller.cluster.datastore.cfg |
| - mountPath: {{ .Values.config.odl.binDir }}/setenv |
| name: properties |
| subPath: setenv |
| resources: |
| {{ include "common.resources" . | indent 12 }} |
| {{- if .Values.nodeSelector }} |
| nodeSelector: |
| {{ toYaml .Values.nodeSelector | indent 10 }} |
| {{- end -}} |
| {{- if .Values.affinity }} |
| affinity: |
| {{ toYaml .Values.affinity | indent 10 }} |
| {{- end }} |
| |
| # side car containers |
| - name: filebeat-onap |
| image: "{{ .Values.global.loggingRepository }}/{{ .Values.global.loggingImage }}" |
| imagePullPolicy: {{ .Values.global.pullPolicy | default .Values.pullPolicy }} |
| volumeMounts: |
| - mountPath: /usr/share/filebeat/filebeat.yml |
| name: filebeat-conf |
| subPath: filebeat.yml |
| - mountPath: /var/log/onap |
| name: logs |
| - mountPath: /usr/share/filebeat/data |
| name: data-filebeat |
| imagePullSecrets: |
| - name: "{{ include "common.namespace" . }}-docker-registry-key" |
| volumes: |
| - name: localtime |
| hostPath: |
| path: /etc/localtime |
| - name: logs |
| emptyDir: {} |
| - name: data-filebeat |
| emptyDir: {} |
| - name: filebeat-conf |
| configMap: |
| name: {{ include "common.fullname" . }}-filebeat-configmap |
| - name: sdnc-logging-cfg-config |
| configMap: |
| name: {{ include "common.fullname" . }}-log-configmap |
| - name: bin |
| configMap: |
| name: {{ include "common.fullname" . }}-bin |
| defaultMode: 0755 |
| - name: config-input |
| configMap: |
| name: {{ include "common.fullname" . }}-properties |
| defaultMode: 0644 |
| - name: properties |
| emptyDir: |
| medium: Memory |
| - name: {{ include "common.fullname" . }}-certs |
| {{ if .Values.certpersistence.enabled }} |
| persistentVolumeClaim: |
| claimName: {{ include "common.fullname" . }}-certs |
| {{ else }} |
| emptyDir: {} |
| {{ end }} |
| {{ if not .Values.persistence.enabled }} |
| - name: {{ include "common.fullname" . }}-data |
| emptyDir: {} |
| {{ else }} |
| volumeClaimTemplates: |
| - metadata: |
| name: {{ include "common.fullname" . }}-data |
| labels: |
| name: {{ include "common.fullname" . }} |
| chart: "{{ .Chart.Name }}-{{ .Chart.Version }}" |
| release: "{{ include "common.release" . }}" |
| heritage: "{{ .Release.Service }}" |
| spec: |
| accessModes: |
| - {{ .Values.persistence.accessMode }} |
| storageClassName: {{ include "common.storageClass" . }} |
| resources: |
| requests: |
| storage: {{ .Values.persistence.size }} |
| {{- end }} |