| #============LICENSE_START======================================================== |
| # ================================================================================ |
| # Copyright (c) 2021-2023 J. F. Lucas. All rights reserved. |
| # Copyright (c) 2021-2022 Nokia. All rights reserved. |
| # Modifications Copyright (C) 2022-2023 Nordix Foundation. |
| # ================================================================================ |
| # Licensed under the Apache License, Version 2.0 (the "License"); |
| # you may not use this file except in compliance with the License. |
| # You may obtain a copy of the License at |
| # |
| # http://www.apache.org/licenses/LICENSE-2.0 |
| # |
| # Unless required by applicable law or agreed to in writing, software |
| # distributed under the License is distributed on an "AS IS" BASIS, |
| # WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. |
| # See the License for the specific language governing permissions and |
| # limitations under the License. |
| # ============LICENSE_END========================================================= |
| |
| ################################################################# |
| # Global configuration defaults. |
| ################################################################# |
| global: |
| nodePortPrefix: 302 |
| nodePortPrefixExt: 304 |
| centralizedLoggingEnabled: true |
| |
| ################################################################# |
| # Filebeat configuration defaults. |
| ################################################################# |
| filebeatConfig: |
| logstashServiceName: log-ls |
| logstashPort: 5044 |
| |
| ################################################################# |
| # initContainer images. |
| ################################################################# |
| certPostProcessorImage: onap/org.onap.oom.platform.cert-service.oom-certservice-post-processor:2.5.0 |
| |
| ################################################################# |
| # Application configuration defaults. |
| ################################################################# |
| # application image |
| image: onap/org.onap.dcaegen2.collectors.hv-ves.hv-collector-main:1.11.0 |
| pullPolicy: Always |
| |
| commonName: &commonName dcae-hv-ves-collector |
| containerPort: &containerPort 6061 |
| |
| # log directory where logging sidecar should look for log files |
| # if path is set to null sidecar won't be deployed in spite of |
| # global.centralizedLoggingEnabled setting. |
| log: |
| path: /var/log/ONAP/dcae-hv-ves-collector |
| logConfigMapNamePrefix: '{{ include "common.fullname" . }}' |
| |
| # directory where TLS certs should be stored |
| # if absent, no certs will be retrieved and stored |
| certDirectory: /etc/ves-hv/ssl |
| |
| # CMPv2 certificate |
| # It is used only when: |
| # - certDirectory is set |
| # - global cmpv2Enabled flag is set to true |
| # - flag useCmpv2Certificates is set to true |
| # Disabled by default |
| useCmpv2Certificates: false |
| certificates: |
| - mountPath: /etc/ves-hv/ssl/external |
| commonName: *commonName |
| dnsNames: |
| - *commonName |
| - hv-ves-collector |
| - hv-ves |
| keystore: |
| outputType: |
| - jks |
| passwordSecretRef: |
| name: hv-ves-cmpv2-keystore-password |
| key: password |
| create: true |
| |
| # probe configuration |
| readiness: |
| type: exec |
| initialDelaySeconds: 5 |
| periodSeconds: 15 |
| timeoutSeconds: 2 |
| command: |
| - /opt/ves-hv-collector/healthcheck.sh |
| |
| # since there are problems receiving binary data via the sidecar |
| # the service port is excluded in the sidecar processing |
| podAnnotations: |
| traffic.sidecar.istio.io/excludeInboundPorts: '6061' |
| traffic.sidecar.istio.io/includeInboundPorts: '*' |
| |
| # service configuration |
| service: |
| type: NodePort |
| name: *commonName |
| ports: |
| - name: tcp |
| port: *containerPort |
| port_protocol: tcp |
| app_protocol: tcp |
| nodePort: 22 |
| |
| ingress: |
| enabled: false |
| service: |
| - baseaddr: "dcae-hv-ves-collector-api" |
| name: *commonName |
| port: *containerPort |
| config: |
| ssl: "redirect" |
| |
| serviceMesh: |
| authorizationPolicy: |
| authorizedPrincipals: |
| - serviceAccount: istio-ingress |
| namespace: istio-ingress |
| |
| # initial application configuration |
| applicationConfig: |
| logLevel: INFO |
| server.idleTimeoutSec: 300 |
| server.listenPort: *containerPort |
| cbs.requestIntervalSec: 5 |
| security.sslDisable: true |
| security.keys.keyStoreFile: /etc/ves-hv/ssl/cert.jks |
| security.keys.keyStorePasswordFile: /etc/ves-hv/ssl/jks.pass |
| security.keys.trustStoreFile: /etc/ves-hv/ssl/trust.jks |
| security.keys.trustStorePasswordFile: /etc/ves-hv/ssl/trust.pass |
| streams_publishes: |
| ves-3gpp-fault-supervision: |
| type: ${MESSAGING_TYPE} |
| kafka_info: |
| bootstrap_servers: ${KAFKA_BOOTSTRAP_SERVERS} |
| topic_name: &ves3gppFaultSupervision SEC_3GPP_FAULTSUPERVISION_OUTPUT |
| ves-3gpp-provisioning: |
| type: ${MESSAGING_TYPE} |
| kafka_info: |
| bootstrap_servers: ${KAFKA_BOOTSTRAP_SERVERS} |
| topic_name: &ves3gppProvisioning SEC_3GPP_PROVISIONING_OUTPUT |
| ves-3gpp-heartbeat: |
| type: ${MESSAGING_TYPE} |
| kafka_info: |
| bootstrap_servers: ${KAFKA_BOOTSTRAP_SERVERS} |
| topic_name: &ves3gppHeartbeat SEC_3GPP_HEARTBEAT_OUTPUT |
| ves-3gpp-performance-assurance: |
| type: ${MESSAGING_TYPE} |
| kafka_info: |
| bootstrap_servers: ${KAFKA_BOOTSTRAP_SERVERS} |
| topic_name: &ves3gppPerformanceAssurance SEC_3GPP_PERFORMANCEASSURANCE_OUTPUT |
| perf3gpp: |
| type: ${MESSAGING_TYPE} |
| kafka_info: |
| bootstrap_servers: ${KAFKA_BOOTSTRAP_SERVERS} |
| topic_name: &perf3gpp HV_VES_PERF3GPP |
| |
| # Strimzi Kafka config |
| kafkaUser: |
| acls: |
| - name: SEC_3GPP |
| type: topic |
| patternType: prefix |
| operations: [Write, DescribeConfigs] |
| - name: *perf3gpp |
| type: topic |
| operations: [Write, DescribeConfigs] |
| |
| kafkaTopic: |
| - name: *ves3gppFaultSupervision |
| strimziTopicName: dcae-ves-3gpp-fault-supervision |
| # the default retention values below can be updated |
| # to meet use case requirements for each topic. |
| retentionMs: 7200000 |
| segmentBytes: 1073741824 |
| - name: *ves3gppProvisioning |
| strimziTopicName: dcae-ves-3gpp-provisioning |
| - name: *ves3gppHeartbeat |
| strimziTopicName: dcae-ves-3gpp-heartbeat |
| - name: *ves3gppPerformanceAssurance |
| strimziTopicName: dcae-ves-3gpp-performance-assurance |
| - name: *perf3gpp |
| strimziTopicName: dcae-ves-3gpp-perf |
| |
| |
| applicationEnv: |
| JAVA_OPTS: '-Dlogback.configurationFile=/etc/ONAP/dcae-hv-ves-collector/logback.xml' |
| CBS_CLIENT_CONFIG_PATH: '/app-config-input/application_config.yaml' |
| #Temporary Dummy CBS Port Value until internal SDK library is updated |
| CONFIG_BINDING_SERVICE_SERVICE_PORT: '0000' |
| MESSAGING_TYPE: 'kafka' |
| KAFKA_BOOTSTRAP_SERVERS: '{{ include "common.release" . }}-strimzi-kafka-bootstrap:9092' |
| USE_SCRAM: 'true' |
| JAAS_CONFIG: |
| externalSecret: true |
| externalSecretUid: '{{ include "common.name" . }}-ku' |
| key: sasl.jaas.config |
| |
| # Resource Limit flavor -By Default using small |
| flavor: small |
| # Segregation for Different environment (Small and Large) |
| resources: |
| small: |
| limits: |
| cpu: "2" |
| memory: "1Gi" |
| requests: |
| cpu: "1" |
| memory: "1Gi" |
| large: |
| limits: |
| cpu: "4" |
| memory: "2Gi" |
| requests: |
| cpu: "2" |
| memory: "2Gi" |
| unlimited: {} |
| |
| #Pods Service Account |
| serviceAccount: |
| nameOverride: *commonName |
| roles: |
| - read |