Gitiles
Code Review Sign In
gerrit.nordix.org / onap / oom / 57681130892505f513df6d0902cbed0335f9dd29 / . / kubernetes / policy / components / policy-api / values.yaml
blob: 9193366422bd1a807d3253e14e34bedf6129a685 [file] [log] [blame]
Chenfei Gao9292e882019-02-27 22:14:45 -0500[diff] [blame]1# ============LICENSE_START=======================================================
jhh999c2242021-02-24 12:10:02 -0600[diff] [blame]2# Copyright (C) 2019-2021 AT&T Intellectual Property. All rights reserved.
a.sreekumar2f377362022-02-09 12:40:57 +0000[diff] [blame]3# Modifications Copyright (C) 2022 Bell Canada. All rights reserved.
Andreas Geissler57681132024-07-29 10:18:26 +0200[diff] [blame^]4# Modification (C) 2023-2024 Deutsche Telekom. All rights reserved.
Chenfei Gao9292e882019-02-27 22:14:45 -0500[diff] [blame]5# ================================================================================
6# Licensed under the Apache License, Version 2.0 (the "License");
7# you may not use this file except in compliance with the License.
8# You may obtain a copy of the License at
9#
10# http://www.apache.org/licenses/LICENSE-2.0
11#
12# Unless required by applicable law or agreed to in writing, software
13# distributed under the License is distributed on an "AS IS" BASIS,
14# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
15# See the License for the specific language governing permissions and
16# limitations under the License.
17#
18# SPDX-License-Identifier: Apache-2.0
19# ============LICENSE_END=========================================================
20
21#################################################################
22# Global configuration defaults.
23#################################################################
24global:
25 nodePortPrefix: 304
26 persistence: {}
saul.gillef208b02023-04-26 16:16:05 +0100[diff] [blame]27 postgres:
28 localCluster: false
Krzysztof Opasiak09d1b312020-03-31 23:44:22 +0200[diff] [blame]29
30#################################################################
31# Secrets metaconfig
32#################################################################
33secrets:
Dominik Mizyn11038102020-04-14 17:14:42 +0200[diff] [blame]34 - uid: db-creds
Krzysztof Opasiak09d1b312020-03-31 23:44:22 +0200[diff] [blame]35 type: basicAuth
36 externalSecret: '{{ tpl (default "" .Values.db.credsExternalSecret) . }}'
37 login: '{{ .Values.db.user }}'
38 password: '{{ .Values.db.password }}'
39 passwordPolicy: required
Dominik Mizyn11038102020-04-14 17:14:42 +0200[diff] [blame]40 - uid: restserver-creds
41 type: basicAuth
rameshiyer27ff176652021-09-21 15:19:05 +0100[diff] [blame]42 externalSecret: '{{ tpl (default "" .Values.restServer.apiUserExternalSecret) . }}'
Dominik Mizyn11038102020-04-14 17:14:42 +0200[diff] [blame]43 login: '{{ .Values.restServer.user }}'
44 password: '{{ .Values.restServer.password }}'
45 passwordPolicy: required
Chenfei Gao9292e882019-02-27 22:14:45 -0500[diff] [blame]46
47#################################################################
48# Application configuration defaults.
49#################################################################
50# application image
saul.gill1fa9c252024-05-20 15:34:32 +0100[diff] [blame]51image: onap/policy-api:3.1.3
Chenfei Gao9292e882019-02-27 22:14:45 -0500[diff] [blame]52pullPolicy: Always
53
54# flag to enable debugging - application support required
55debugEnabled: false
56
57# application configuration
Krzysztof Opasiak09d1b312020-03-31 23:44:22 +0200[diff] [blame]58db:
Andreas Geisslercfd84342023-08-16 17:18:49 +0200[diff] [blame]59 user: policy-user
Krzysztof Opasiak09d1b312020-03-31 23:44:22 +0200[diff] [blame]60 password: policy_user
jhhd4258672020-08-09 12:08:08 -0500[diff] [blame]61 service:
62 name: policy-mariadb
saul.gillef208b02023-04-26 16:16:05 +0100[diff] [blame]63 pgName: policy-pg-primary
jhhd4258672020-08-09 12:08:08 -0500[diff] [blame]64 internalPort: 3306
saul.gillef208b02023-04-26 16:16:05 +0100[diff] [blame]65 internalPgPort: 5432
jhhd4258672020-08-09 12:08:08 -0500[diff] [blame]66
Dominik Mizyn11038102020-04-14 17:14:42 +0200[diff] [blame]67restServer:
adheli.tavaresf3656cd2021-11-10 14:54:32 +0000[diff] [blame]68 user: policyadmin
a.sreekumar2f377362022-02-09 12:40:57 +0000[diff] [blame]69 password: zb!XztG34
Chenfei Gao9292e882019-02-27 22:14:45 -0500[diff] [blame]70
71# default number of instances
72replicaCount: 1
73
74nodeSelector: {}
75
76affinity: {}
77
78# probe configuration parameters
79liveness:
Andreas Geissler57681132024-07-29 10:18:26 +0200[diff] [blame^]80 initialDelaySeconds: 120
Chenfei Gao9292e882019-02-27 22:14:45 -0500[diff] [blame]81 periodSeconds: 10
82 # necessary to disable liveness probe when setting breakpoints
83 # in debugger so K8s doesn't restart unresponsive container
84 enabled: true
85
86readiness:
a.sreekumar2f377362022-02-09 12:40:57 +0000[diff] [blame]87 initialDelaySeconds: 10
88 periodSeconds: 120
89 api: /policy/api/v1/healthcheck
a.sreekumar2f377362022-02-09 12:40:57 +0000[diff] [blame]90 successThreshold: 1
91 failureThreshold: 3
Andreas Geissler57681132024-07-29 10:18:26 +0200[diff] [blame^]92 timeout: 120
Chenfei Gao9292e882019-02-27 22:14:45 -0500[diff] [blame]93
94service:
jhh59ce22d2019-05-14 17:59:36 -0500[diff] [blame]95 type: ClusterIP
Chenfei Gao9292e882019-02-27 22:14:45 -0500[diff] [blame]96 name: policy-api
Chenfei Gao9292e882019-02-27 22:14:45 -0500[diff] [blame]97 internalPort: 6969
Andreas Geisslerf10c5552023-03-21 18:09:46 +0100[diff] [blame]98 ports:
99 - name: http
100 port: 6969
101
Chenfei Gao9292e882019-02-27 22:14:45 -0500[diff] [blame]102ingress:
103 enabled: false
104
AndrewLamb7ef78ae2023-04-20 16:24:13 +0100[diff] [blame]105serviceMesh:
106 authorizationPolicy:
107 authorizedPrincipals:
108 - serviceAccount: policy-pap-read
109
jhhd4258672020-08-09 12:08:08 -0500[diff] [blame]110flavor: small
111resources:
112 small:
113 limits:
Andreas Geissler47537432024-02-27 08:55:23 +0100[diff] [blame]114 cpu: "1"
115 memory: "1Gi"
jhhd4258672020-08-09 12:08:08 -0500[diff] [blame]116 requests:
Andreas Geissler47537432024-02-27 08:55:23 +0100[diff] [blame]117 cpu: "0.5"
118 memory: "1Gi"
jhhd4258672020-08-09 12:08:08 -0500[diff] [blame]119 large:
120 limits:
Andreas Geissler47537432024-02-27 08:55:23 +0100[diff] [blame]121 cpu: "2"
122 memory: "2Gi"
jhhd4258672020-08-09 12:08:08 -0500[diff] [blame]123 requests:
Andreas Geissler47537432024-02-27 08:55:23 +0100[diff] [blame]124 cpu: "1"
125 memory: "2Gi"
jhhd4258672020-08-09 12:08:08 -0500[diff] [blame]126 unlimited: {}
farida azmyc1178372021-04-11 12:55:33 +0200[diff] [blame]127
Andreas Geissler57681132024-07-29 10:18:26 +0200[diff] [blame^]128securityContext:
129 user_id: 100
130 group_id: 102
131
132dirSizes:
133 emptyDir:
134 sizeLimit: 1Gi
135 logDir:
136 sizeLimit: 500Mi
137
farida azmyc1178372021-04-11 12:55:33 +0200[diff] [blame]138#Pods Service Account
139serviceAccount:
140 nameOverride: policy-api
141 roles:
142 - read
Rashmi Pujara8b09262022-03-15 21:58:57 -0400[diff] [blame]143
Rashmi Pujara8b09262022-03-15 21:58:57 -0400[diff] [blame]144metrics:
145 serviceMonitor:
146 # Override the labels based on the Prometheus config parameter: serviceMonitorSelector.
147 # The default operator for prometheus enforces the below label.
148 labels:
149 release: prometheus
150 enabled: true
151 port: policy-api
152 interval: 60s
Andreas Geisslerf10c5552023-03-21 18:09:46 +0100[diff] [blame]153 isHttps: false
Rashmi Pujara8b09262022-03-15 21:58:57 -0400[diff] [blame]154 basicAuth:
155 enabled: true
156 externalSecretNameSuffix: policy-api-user-creds
157 externalSecretUserKey: login
158 externalSecretPasswordKey: password
159 selector:
160 app: '{{ include "common.name" . }}'
161 chart: '{{ .Chart.Name }}-{{ .Chart.Version | replace "+" "_" }}'
162 release: '{{ include "common.release" . }}'
163 heritage: '{{ .Release.Service }}'