blob: 8682d147b463dca519844d4dca021d3abd756f21 [file] [log] [blame]
rameshiyer2701b8cc02021-09-21 15:07:50 +01001# ============LICENSE_START=======================================================
efiacor6910bbe2023-03-03 14:53:16 +00002# Copyright (C) 2021-2023 Nordix Foundation.
rameshiyer2701b8cc02021-09-21 15:07:50 +01003# ================================================================================
4# Licensed under the Apache License, Version 2.0 (the "License");
5# you may not use this file except in compliance with the License.
6# You may obtain a copy of the License at
7#
8# http://www.apache.org/licenses/LICENSE-2.0
9#
10# Unless required by applicable law or agreed to in writing, software
11# distributed under the License is distributed on an "AS IS" BASIS,
12# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
13# See the License for the specific language governing permissions and
14# limitations under the License.
15#
16# SPDX-License-Identifier: Apache-2.0
17# ============LICENSE_END=========================================================
18
19#################################################################
20# Global configuration defaults.
21#################################################################
22global:
23 nodePortPrefixExt: 304
24 persistence: {}
efiacor6910bbe2023-03-03 14:53:16 +000025 aafEnabled: false
26 #Strimzi Kafka properties
27 useStrimziKafka: set-via-parent-chart-global-value
28 kafkaTopics:
29 acRuntimeTopic:
30 name: &acRuntimeTopic policy.clamp-runtime-acm
rameshiyer2701b8cc02021-09-21 15:07:50 +010031
32#################################################################
33# Secrets metaconfig
34#################################################################
35secrets:
36 - uid: restserver-secret
37 type: basicAuth
38 externalSecret: '{{ tpl (default "" .Values.restServer.credsExternalSecret) . }}'
39 login: '{{ .Values.restServer.user }}'
40 password: '{{ .Values.restServer.password }}'
41 passwordPolicy: required
42 - uid: keystore-password
43 type: password
44 externalSecret: '{{ tpl (default "" .Values.certStores.keyStorePasswordExternalSecret) . }}'
45 password: '{{ .Values.certStores.keyStorePassword }}'
46 passwordPolicy: required
47 - uid: truststore-password
48 type: password
49 externalSecret: '{{ tpl (default "" .Values.certStores.trustStorePasswordExternalSecret) . }}'
50 password: '{{ .Values.certStores.trustStorePassword }}'
51 passwordPolicy: required
52
53certStores:
54 keyStorePassword: Pol1cy_0nap
55 trustStorePassword: Pol1cy_0nap
56
57certInitializer:
FrancescoFioraEst9c79e262022-02-22 13:12:19 +000058 nameOverride: policy-clamp-ac-k8s-ppnt-cert-initializer
rameshiyer2701b8cc02021-09-21 15:07:50 +010059 aafDeployFqi: deployer@people.osaaf.org
60 aafDeployPass: demo123456!
61 fqdn: policy
62 fqi: policy@policy.onap.org
63 public_fqdn: policy.onap.org
64 cadi_latitude: "0.0"
65 cadi_longitude: "0.0"
66 credsPath: /opt/app/osaaf/local
67 app_ns: org.osaaf.aaf
68 uid: 100
69 gid: 101
70 aaf_add_config: >
71 echo "export KEYSTORE='{{ .Values.credsPath }}/org.onap.policy.p12'" > {{ .Values.credsPath }}/.ci;
72 echo "export KEYSTORE_PASSWD='${cadi_keystore_password_p12}'" >> {{ .Values.credsPath }}/.ci;
73 chown -R {{ .Values.uid }}:{{ .Values.gid }} $(dirname {{ .Values.credsPath }});
74
75
76#################################################################
77# Application configuration defaults.
78#################################################################
79# application image
saul.gill5e611402023-03-02 11:49:23 +000080image: onap/policy-clamp-ac-k8s-ppnt:6.4.1
rameshiyer2701b8cc02021-09-21 15:07:50 +010081pullPolicy: Always
82
efiacor6910bbe2023-03-03 14:53:16 +000083componentName: &componentName policy-clamp-ac-k8s-ppnt
84
rameshiyer2701b8cc02021-09-21 15:07:50 +010085# flag to enable debugging - application support required
86debugEnabled: false
87
88# application configuration
89restServer:
90 user: participantUser
91 password: zb!XztG34
92
93# default number of instances
94replicaCount: 1
95
96nodeSelector: {}
97
98affinity: {}
99# probe configuration parameters
100liveness:
101 initialDelaySeconds: 20
102 periodSeconds: 10
103 # necessary to disable liveness probe when setting breakpoints
104 # in debugger so K8s doesn't restart unresponsive container
105 enabled: true
106 port: http-api
107
108readiness:
109 initialDelaySeconds: 20
110 periodSeconds: 10
111 port: http-api
guillaume.lambert600dc982021-10-20 20:42:32 +0200112
rameshiyer2701b8cc02021-09-21 15:07:50 +0100113service:
114 type: ClusterIP
efiacor6910bbe2023-03-03 14:53:16 +0000115 name: *componentName
rameshiyer2701b8cc02021-09-21 15:07:50 +0100116 useNodePortExt: true
117 ports:
118 - name: http-api
119 port: 8083
120 nodePort: 42
121
122ingress:
123 enabled: false
124
125flavor: small
126resources:
127 small:
128 limits:
129 cpu: 1
130 memory: 4Gi
131 requests:
132 cpu: 100m
133 memory: 1Gi
134 large:
135 limits:
136 cpu: 2
137 memory: 8Gi
138 requests:
139 cpu: 200m
140 memory: 2Gi
141 unlimited: {}
142
143#Pods Service Account
144serviceAccount:
efiacor6910bbe2023-03-03 14:53:16 +0000145 nameOverride: *componentName
rameshiyer2701b8cc02021-09-21 15:07:50 +0100146 roles:
147 - create
rameshiyer273c81b1d2022-07-18 16:54:51 +0100148# Update the config here for permitting repositories and protocols
149repoList:
150 helm:
151 repos:
152 -
153 repoName: kong
154 address: https://charts.konghq.com
155 -
156 repoName: bitnami
157 address: https://charts.bitnami.com/bitnami
158
159 protocols:
160 - http
161 - https
Sirisha_Manchikanti73c5f002022-07-25 17:04:45 +0100162
163config:
Sirisha_Manchikanti73c5f002022-07-25 17:04:45 +0100164# Any new property can be added in the env by setting in overrides in the format mentioned below
165# All the added properties must be in "key: value" format instead of yaml.
166# additional:
167# spring.config.max-size: 200
168# spring.config.min-size: 10
efiacor6910bbe2023-03-03 14:53:16 +0000169
170# Strimzi Kafka config
171kafkaUser:
172 authenticationType: scram-sha-512
173 acls:
174 - name: *componentName
175 type: group
176 operations: [Read]
177 - name: *acRuntimeTopic
178 type: topic
179 operations: [Read, Write]
180
181readinessCheck:
182 wait_for:
183 - message-router