| # Copyright © 2018 AT&T USA |
| # Copyright © 2020 Huawei |
| # Licensed under the Apache License, Version 2.0 (the "License"); |
| # you may not use this file except in compliance with the License. |
| # You may obtain a copy of the License at |
| # |
| # http://www.apache.org/licenses/LICENSE-2.0 |
| # |
| # Unless required by applicable law or agreed to in writing, software |
| # distributed under the License is distributed on an "AS IS" BASIS, |
| # WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. |
| # See the License for the specific language governing permissions and |
| # limitations under the License. |
| ################################################################# |
| # Global configuration defaults. |
| ################################################################# |
| global: |
| nodePortPrefix: 302 |
| nodePortPrefixExt: 304 |
| persistence: |
| mountPath: /dockerdata-nfs |
| mariadbGalera: |
| # flag to enable the DB creation via mariadb-operator |
| useOperator: true |
| service: mariadb-galera |
| servicePort: '3306' |
| soSdcListenerKafkaUser: so-sdc-list-user |
| |
| readinessCheck: |
| wait_for: |
| jobs: |
| - '{{ include "common.release" . }}-so-mariadb-config-job' |
| |
| ################################################################# |
| # Secrets metaconfig |
| ################################################################# |
| secrets: |
| - uid: db-user-creds |
| type: basicAuth |
| externalSecret: '{{ tpl (default "" .Values.db.userCredsExternalSecret) . }}' |
| login: '{{ .Values.db.userName }}' |
| password: '{{ .Values.db.userPassword }}' |
| passwordPolicy: required |
| - uid: db-admin-creds |
| type: basicAuth |
| externalSecret: '{{ tpl (default "" .Values.db.adminCredsExternalSecret) . }}' |
| login: '{{ .Values.db.adminName }}' |
| password: '{{ .Values.db.adminPassword }}' |
| passwordPolicy: required |
| |
| #secretsFilePaths: | |
| # - 'my file 1' |
| # - '{{ include "templateThatGeneratesFileName" . }}' |
| |
| ################################################################# |
| # Application configuration defaults. |
| ################################################################# |
| image: onap/so/sdc-controller:1.12.2 |
| pullPolicy: Always |
| |
| # Local mariadb galera instance default name |
| mariadb-galera: |
| nameOverride: so-mariadb-galera |
| service: |
| internalPort: 3306 |
| mariadbOperator: |
| galera: |
| enabled: false |
| |
| db: |
| userName: so_user |
| userPassword: so_User123 |
| # userCredsExternalSecret: some secret |
| adminName: so_admin |
| adminPassword: so_Admin123 |
| # adminCredsExternalSecret: some secret |
| |
| aai: |
| auth: 2A11B07DB6214A839394AA1EC5844695F5114FC407FF5422625FB00175A3DCB8A1FF745F22867EFA72D5369D599BBD88DA8BED4233CF5586 |
| mso: |
| msoKey: 07a7159d3bf51a0e53be7a8f89699be7 |
| requestDb: |
| auth: Basic YnBlbDpwYXNzd29yZDEk |
| asdc: |
| config: |
| key: 566B754875657232314F5548556D3665 |
| asdc-connections: |
| asdc-controller1: |
| password: 76966BDD3C7414A03F7037264FF2E6C8EEC6C28F2B67F2840A1ED857C0260FEE731D73F47F828E5527125D29FD25D3E0DE39EE44C058906BF1657DE77BF897EECA93BDC07FA64F |
| |
| replicaCount: 1 |
| minReadySeconds: 10 |
| containerPort: &containerPort 8085 |
| logPath: ./logs/sdc/ |
| app: sdc-controller |
| |
| service: |
| type: ClusterIP |
| ports: |
| - name: http |
| port: *containerPort |
| |
| updateStrategy: |
| type: RollingUpdate |
| maxUnavailable: 1 |
| maxSurge: 1 |
| |
| ################################################################# |
| # soHelpers part |
| ################################################################# |
| soHelpers: |
| containerPort: *containerPort |
| |
| # Resource Limit flavor -By Default using small |
| flavor: small |
| # Segregation for Different environment (Small and Large) |
| resources: |
| small: |
| limits: |
| memory: 1.5Gi |
| cpu: 1 |
| requests: |
| memory: 1.5Gi |
| cpu: 0.5 |
| large: |
| limits: |
| memory: 3Gi |
| cpu: 2 |
| requests: |
| memory: 3Gi |
| cpu: 1 |
| unlimited: {} |
| |
| livenessProbe: |
| path: /manage/health |
| port: 8085 |
| scheme: HTTP |
| initialDelaySeconds: 600 |
| periodSeconds: 60 |
| timeoutSeconds: 10 |
| successThreshold: 1 |
| failureThreshold: 3 |
| |
| ingress: |
| enabled: false |
| |
| serviceMesh: |
| authorizationPolicy: |
| authorizedPrincipals: |
| - serviceAccount: robot-read |
| - serviceAccount: so-read |
| |
| nodeSelector: {} |
| tolerations: [] |
| affinity: {} |
| |
| # Strimzi KafkaUser config |
| kafkaUser: |
| acls: |
| - name: SO |
| type: group |
| operations: [Read] |
| - name: SDC-DISTR |
| type: topic |
| patternType: prefix |
| operations: [Read, Write] |
| |
| #Pods Service Account |
| serviceAccount: |
| nameOverride: so-sdc-controller |
| roles: |
| - read |
| |
| #Logs configuration |
| log: |
| path: /var/log/onap |
| logConfigMapNamePrefix: '{{ include "common.fullname" . }}' |