blob: 516dcc4d709d1b7f6f1842b4ae1ee0755e805fcb [file] [log] [blame]
Sylvain Desbureaux70070412020-11-09 21:58:48 +01001# Copyright (c) 2017 Amdocs, Bell Canada
2# Modifications Copyright (c) 2018 AT&T
Sylvain Desbureaux5b651322020-12-07 15:34:15 +01003# Modifications Copyright (c) 2020 Nokia, Orange
Sylvain Desbureaux6212bb22021-01-18 11:43:33 +01004# Modifications Copyright (c) 2021 Orange
Sylvain Desbureaux70070412020-11-09 21:58:48 +01005#
6# Licensed under the Apache License, Version 2.0 (the "License");
7# you may not use this file except in compliance with the License.
8# You may obtain a copy of the License at
9#
10# http://www.apache.org/licenses/LICENSE-2.0
11#
12# Unless required by applicable law or agreed to in writing, software
13# distributed under the License is distributed on an "AS IS" BASIS,
14# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
15# See the License for the specific language governing permissions and
16# limitations under the License.
17
18# Default values for aai.
19# This is a YAML-formatted file.
20# Declare variables to be passed into your templates.
21global: # global defaults
22 nodePortPrefix: 302
23 repository: nexus3.onap.org:10001
24 dockerhubRepository: docker.io
25 busyboxImage: busybox
26
27 readinessImage: onap/oom/readiness:3.0.1
28
29 loggingRepository: docker.elastic.co
30 loggingImage: beats/filebeat:5.5.0
31
32 restartPolicy: Always
33
Sylvain Desbureaux70070412020-11-09 21:58:48 +010034 aafEnabled: true
Sylvain Desbureaux6212bb22021-01-18 11:43:33 +010035 msbEnabled: true
Sylvain Desbureaux70070412020-11-09 21:58:48 +010036
37 cassandra:
38 #This will instantiate AAI cassandra cluster, default:shared cassandra.
39 localCluster: false
40
41 #Service Name of the cassandra cluster to connect to.
42 #Override it to aai-cassandra if localCluster is enabled.
43 serviceName: cassandra
44
45 #This should be same as shared cassandra instance or if localCluster is enabled
46 #then it should be same as aai-cassandra replicaCount
47 replicas: 3
48
49 #Cassanara login details
50 username: cassandra
51 password: cassandra
52
53 aai:
54 serviceName: aai
55 babel:
56 serviceName: aai-babel
57 aaiElasticsearch:
58 serviceName: aai-elasticsearch
59 resources:
60 serviceName: aai-resources
61 sparkyBe:
62 serviceName: aai-sparky-be
63 dataRouter:
64 serviceName: aai-data-router
65 gizmo:
66 serviceName: aai-gizmo
67 modelloader:
68 serviceName: aai-modelloader
69 searchData:
70 serviceName: aai-search-data
71 traversal:
72 serviceName: aai-traversal
73 graphadmin:
74 serviceName: aai-graphadmin
75 spike:
76 serviceName: aai-spike
77
78 initContainers:
79 enabled: true
80 # Specifies a list of jobs to be run
81 jobs:
82 # When enabled, it will create the schema based on oxm and edge rules
83 createSchema:
84 enabled: true
85 # When enabled, it will create the widget models via REST API to haproxy
86 updateQueryData:
87 enabled: true
88 #migration using helm hooks
89 migration:
90 enabled: false
91 remoteCassandra:
92 enabled: false
93 storage:
94 backend: cassandra
95 hostname: 10.10.10.10
96 connectionTimeout: 100000
97 cacheSize: 1000000
98 keyConsistent: true
99
100 #If backend is cql or cassandra it should be keyspace name
101 #else backend is hbase it should be hbase table name
102 name: aaigraph
103
104 ## CQL driver specific properties for janusgraph
105 # cql:
106 # #Name of the Cassandra Cluster
107 # cluster: someclustername
108 # readConsistency: QUORUM
109 # writeConsistency: QUORUM
110 # replicationFactor: 3
111 # localConsistencyForSysOps: true
112
113 ## Cassandra driver specific properties for janusgraph
114 cassandra:
115 #Name of the Cassandra Cluster
116 clusterName: aai-cluster
117 localDataCenter: Pod lab
118 readConsistency: LOCAL_QUORUM
119 writeConsistency: LOCAL_QUORUM
120 replicationFactor: 3
121
122 #storage:
123 # backend: cassandra
124 # hostname: somehost1,somehost2,somehost3
125 # connectionTimeout: 100000
126 # cacheSize: 1000000
127 # clusterName: someClusterName
128 # localDataCenter: someDataCenter
129 # keyConsistent: true
130 # #If backend is cql or cassandra it should be keyspace name
131 # #else backend is hbase it should be hbase table name
132 # name: your_hbase_table_or_keyspace_name
133
134 ## CQL driver specific properties for janusgraph
135 # cql:
136 # #Name of the Cassandra Cluster
137 # cluster: someclustername
138 # readConsistency: QUORUM
139 # writeConsistency: QUORUM
140 # replicationFactor: 3
141 # localConsistencyForSysOps: true
142
143 ## Cassandra driver specific properties for janusgraph
144 # cassandra:
145 # #Name of the Cassandra Cluster
146 # cluster: someclustername
147 # readConsistency: LOCAL_QUORUM
148 # writeConsistency: LOCAL_QUORUM
149 # replicationFactor: 3
150
151
152 # Common configuration for resources traversal and graphadmin
153 config:
154 # User information for the admin user in container
155 userId: 1000
156 groupId: 1000
157
158 # Specifies that the cluster connected to a dynamic
159 # cluster being spinned up by kubernetes deployment
160 cluster:
161 cassandra:
162 dynamic: true
163
164 # If cluster.cassandra.dynamic is set to false
165 # Then the following configuration should be uncommented
166 # This is if you are planning to connect to a existing
167 # Cassandra cluster instead of doing the deployment
168 #storage:
169 # backend: cassandra
170 # hostname: somehost1,somehost2,somehost3
171 # connectionTimeout: 100000
172 # cacheSize: 1000000
173 # clusterName: someClusterName
174 # localDataCenter: someDataCenter
175 # keyConsistent: true
176 # # If backend is cql or cassandra it should be keyspace name
177 # # else backend is hbase it should be hbase table name
178 # name: your_hbase_table_or_keyspace_name
179
180 # # CQL driver specific properties for janusgraph
181 # cql:
182 # # Name of the Cassandra Cluster
183 # cluster: someclustername
184 # readConsistency: QUORUM
185 # writeConsistency: QUORUM
186 # replicationFactor: 3
187 # localConsistencyForSysOps: true
188
189 # # Cassandra driver specific properties for janusgraph
190 # cassandra:
191 # # Name of the Cassandra Cluster
192 # cluster: someclustername
193 # readConsistency: LOCAL_QUORUM
194 # writeConsistency: LOCAL_QUORUM
195 # replicationFactor: 3
196
197 # Specifies if the basic authorization is enabled
198 basic:
199 auth:
200 enabled: true
201 username: AAI
202 passwd: AAI
203
204 # Active spring profiles for the resources microservice
205 profiles:
206 active: production,dmaap,aaf-auth
207
208 # Notification event specific properties
209 notification:
210 eventType: AAI-EVENT
211 domain: dev
212
213 # Schema specific properties that include supported versions of api
214 schema:
215 # Specifies if the connection should be one way ssl, two way ssl or no auth
216 service:
217 client: one-way-ssl
218 # Specifies which translator to use if it has schema-service, then it will make a rest request to schema service
219 translator:
220 list: schema-service
221 source:
222 # Specifies which folder to take a look at
223 name: onap
224 uri:
225 # Base URI Path of the application
226 base:
227 path: /aai
228 version:
229 # Current version of the REST API
230 api:
231 default: v21
232 # Specifies which version the depth parameter is configurable
233 depth: v11
234 # List of all the supported versions of the API
235 list: v11,v12,v13,v14,v15,v16,v17,v18,v19,v20,v21
236 # Specifies from which version related link should appear
237 related:
238 link: v11
239 # Specifies from which version the app root change happened
240 app:
241 root: v11
242 # Specifies from which version the xml namespace changed
243 namespace:
244 change: v12
245 # Specifies from which version the edge label appeared in API
246 edge:
247 label: v12
248
249 # Keystore configuration password and filename
250 keystore:
251 filename: aai_keystore
252 passwd: OBF:1vn21ugu1saj1v9i1v941sar1ugw1vo0
253
254 # Truststore configuration password and filename
255 truststore:
256 filename: aai_keystore
257 passwd: OBF:1vn21ugu1saj1v9i1v941sar1ugw1vo0
258
259 # Specifies a list of files to be included in auth volume
260 auth:
261 files:
262 - aai_keystore
263
264 # Specifies which clients should always default to realtime graph connection
265 realtime:
266 clients: SDNC,MSO,SO,robot-ete
267
268 # Logback debug enabled
269 logback:
270 console:
271 # If enabled, container will print all logback to standard output
272 # This will make debugging much easier but it should only be done
273 # when debugging the issue and changed back as it can affect performance
274 # since when this is enabled, it prints a lot of information to console
275 enabled: false
276
Sylvain Desbureaux87f49af2020-12-15 11:56:51 +0100277#################################################################
278# Certificate configuration
279#################################################################
280certInitializer:
281 nameOverride: aai-cert-initializer
282 aafDeployFqi: deployer@people.osaaf.org
283 aafDeployPass: demo123456!
284 # aafDeployCredsExternalSecret: some secret
285 fqdn: "aai"
286 app_ns: "org.osaaf.aaf"
287 fqi_namespace: "org.onap.aai"
288 fqi: "aai@aai.onap.org"
289 public_fqdn: "aaf.osaaf.org"
290 cadi_longitude: "0.0"
291 cadi_latitude: "0.0"
292 credsPath: /opt/app/osaaf/local
293 aaf_add_config: |
294 echo "*** retrieving passwords from AAF"
295 /opt/app/aaf_config/bin/agent.sh local showpass \
296 {{.Values.fqi}} {{ .Values.fqdn }} > {{ .Values.credsPath }}/mycreds.prop
297 export $(grep '^c' {{ .Values.credsPath }}/mycreds.prop | xargs -0)
298 echo "*** transform AAF certs into pem files"
299 mkdir -p {{ .Values.credsPath }}/certs
300 keytool -exportcert -rfc -file {{ .Values.credsPath }}/certs/cacert.pem \
301 -keystore {{ .Values.credsPath }}/{{ .Values.fqi_namespace }}.trust.jks \
302 -alias ca_local_0 \
303 -storepass $cadi_truststore_password
304 openssl pkcs12 -in {{ .Values.credsPath }}/{{ .Values.fqi_namespace }}.p12 \
305 -nokeys -out {{ .Values.credsPath }}/certs/cert.pem \
306 -passin pass:$cadi_keystore_password_p12 \
307 -passout pass:$cadi_keystore_password_p12
308 echo "*** generating needed file"
309 cat {{ .Values.credsPath }}/certs/cert.pem \
310 {{ .Values.credsPath }}/certs/cacert.pem \
311 {{ .Values.credsPath }}/{{ .Values.fqi_namespace }}.key \
312 > {{ .Values.credsPath }}/certs/fullchain.pem;
313 chown 1001 {{ .Values.credsPath }}/certs/*
314
Sylvain Desbureaux70070412020-11-09 21:58:48 +0100315# application image
316dockerhubRepository: registry.hub.docker.com
317image: aaionap/haproxy:1.4.2
318pullPolicy: Always
319
320flavor: small
321flavorOverride: small
322
323# flag to enable debugging - application support required
324debugEnabled: false
325
326# application configuration
327config:
328 logstashServiceName: log-ls
329 logstashPort: 5044
330
331# default number of instances
332replicaCount: 1
333
334nodeSelector: {}
335
336affinity: {}
337
338# probe configuration parameters
339liveness:
340 initialDelaySeconds: 10
341 periodSeconds: 10
342 # necessary to disable liveness probe when setting breakpoints
343 # in debugger so K8s doesn't restart unresponsive container
344 enabled: true
345
346#This section is used when localCluster is enabled. AAI will create its own cassandra cluster for its specific use.
347#Below command will instantiate the aai cassandra instances:
348#helm deploy demo local/onap --version=4.0.0 --namespace onap --set aai.enabled=true \
349# --set aai.global.cassandra.localCluster=true \
350# --set aai.global.cassandra.serviceName=aai-cassandra
351cassandra:
352 nameOverride: aai-cassandra
353 replicaCount: 3
354 service:
355 name: aai-cassandra
356 persistence:
357 mountSubPath: aai/cassandra
358 enabled: true
359
360readiness:
361 initialDelaySeconds: 10
362 periodSeconds: 10
363
364service:
365 type: NodePort
366 portName: aai-ssl
367 externalPort: 8443
368 internalPort: 8443
369 nodePort: 33
370 # POLICY hotfix - Note this must be temporary
371 # See https://jira.onap.org/browse/POLICY-510
372 aaiServiceClusterIp:
373
374ingress:
375 enabled: false
376 service:
377 - baseaddr: "aai.api"
378 name: "aai"
379 port: 8443
380 config:
381 ssl: "redirect"
382
383resources:
384 small:
385 limits:
386 cpu: 2
387 memory: 4Gi
388 requests:
389 cpu: 1
390 memory: 1Gi
391 large:
392 limits:
393 cpu: 4
394 memory: 8Gi
395 requests:
396 cpu: 2
397 memory: 2Gi
398 unlimited: {}