blob: 52c613f357eb37426212ad5ef64b3d331540340a [file] [log] [blame]
mmis95971132018-07-17 00:13:13 +01001# ============LICENSE_START=======================================================
2# Copyright (C) 2018 Ericsson. All rights reserved.
jhh999c2242021-02-24 12:10:02 -06003# Modifications Copyright (C) 2019-2021 AT&T Intellectual Property.
Sirisha_Manchikantib402a592022-09-09 12:01:20 +01004# Modifications Copyright © 2022 Nordix Foundation
Andreas Geisslerf10c5552023-03-21 18:09:46 +01005# Modification (C) 2023 Deutsche Telekom. All rights reserved.
mmis95971132018-07-17 00:13:13 +01006# ================================================================================
7# Licensed under the Apache License, Version 2.0 (the "License");
8# you may not use this file except in compliance with the License.
9# You may obtain a copy of the License at
10#
11# http://www.apache.org/licenses/LICENSE-2.0
12#
13# Unless required by applicable law or agreed to in writing, software
14# distributed under the License is distributed on an "AS IS" BASIS,
15# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
16# See the License for the specific language governing permissions and
17# limitations under the License.
18#
19# SPDX-License-Identifier: Apache-2.0
20# ============LICENSE_END=========================================================
21
22#################################################################
23# Global configuration defaults.
24#################################################################
25global:
26 nodePortPrefix: 302
27 persistence: {}
saul.gillef208b02023-04-26 16:16:05 +010028 useStrimziKafkaPf: set-via-parent-chart-global-value
mmis95971132018-07-17 00:13:13 +010029
30#################################################################
Dominik Mizynb8c44b42020-04-21 10:48:27 +020031# Secrets metaconfig
32#################################################################
33secrets:
34 - uid: restserver-creds
35 type: basicAuth
36 externalSecret: '{{ tpl (default "" .Values.restServer.credsExternalSecret) . }}'
37 login: '{{ .Values.restServer.user }}'
38 password: '{{ .Values.restServer.password }}'
Sirisha_Manchikantib402a592022-09-09 12:01:20 +010039 - uid: policy-kafka-user
40 externalSecret: '{{ tpl (default "" .Values.config.jaasConfExternalSecret) . }}'
41 type: genericKV
42 envs:
43 - name: sasl.jaas.config
44 value: '{{ .Values.config.someConfig }}'
45 policy: generate
Dominik Mizynb8c44b42020-04-21 10:48:27 +020046
47#################################################################
mmis95971132018-07-17 00:13:13 +010048# Application configuration defaults.
49#################################################################
50# application image
saul.gillef208b02023-04-26 16:16:05 +010051image: onap/policy-apex-pdp:2.9.2
mmis95971132018-07-17 00:13:13 +010052pullPolicy: Always
53
54# flag to enable debugging - application support required
55debugEnabled: false
56
57# application configuration
58
Dominik Mizynb8c44b42020-04-21 10:48:27 +020059restServer:
60 user: healthcheck
61 password: zb!XztG34
Dominik Mizynb8c44b42020-04-21 10:48:27 +020062
mmis95971132018-07-17 00:13:13 +010063# default number of instances
64replicaCount: 1
65
66nodeSelector: {}
67
68affinity: {}
69
70# probe configuration parameters
71liveness:
72 initialDelaySeconds: 20
73 periodSeconds: 10
74 # necessary to disable liveness probe when setting breakpoints
75 # in debugger so K8s doesn't restart unresponsive container
76 enabled: true
77
78readiness:
79 initialDelaySeconds: 20
80 periodSeconds: 10
81
82service:
jhh59ce22d2019-05-14 17:59:36 -050083 type: ClusterIP
mmis95971132018-07-17 00:13:13 +010084 name: policy-apex-pdp
jhh59ce22d2019-05-14 17:59:36 -050085 internalPort: 6969
Andreas Geisslerf10c5552023-03-21 18:09:46 +010086 ports:
87 - name: http
88 port: 6969
mmis95971132018-07-17 00:13:13 +010089
90ingress:
91 enabled: false
92
AndrewLamb7ef78ae2023-04-20 16:24:13 +010093serviceMesh:
94 authorizationPolicy:
95 authorizedPrincipals:
96 - serviceAccount: message-router-read
97
vaibhavjayas4136f5d2018-08-17 07:01:05 +000098# Resource Limit flavor -By Default using small
vaibhavjayas4136f5d2018-08-17 07:01:05 +000099# Segregation for Different environment (Small and Large)
jhhd4258672020-08-09 12:08:08 -0500100flavor: small
vaibhavjayas4136f5d2018-08-17 07:01:05 +0000101resources:
102 small:
103 limits:
Andreas Geissler555db9c2023-06-20 11:38:39 +0200104 cpu: 999
105 memory: 1Gi
vaibhavjayas4136f5d2018-08-17 07:01:05 +0000106 requests:
Andreas Geissler555db9c2023-06-20 11:38:39 +0200107 cpu: 0.5
vaibhavjayas4136f5d2018-08-17 07:01:05 +0000108 memory: 1Gi
109 large:
110 limits:
Andreas Geissler555db9c2023-06-20 11:38:39 +0200111 cpu: 999
112 memory: 2Gi
vaibhavjayas4136f5d2018-08-17 07:01:05 +0000113 requests:
Andreas Geissler555db9c2023-06-20 11:38:39 +0200114 cpu: 1
Mandeep Khinda60d36d42018-09-24 15:15:48 +0000115 memory: 2Gi
Pamela Dragosh54048d32018-11-09 07:09:41 -0500116 unlimited: {}
farida azmyc1178372021-04-11 12:55:33 +0200117
118#Pods Service Account
119serviceAccount:
120 nameOverride: policy-apex-pdp
121 roles:
122 - read
Rashmi Pujara8b09262022-03-15 21:58:57 -0400123
Rashmi Pujara8b09262022-03-15 21:58:57 -0400124metrics:
125 serviceMonitor:
126 # Override the labels based on the Prometheus config parameter: serviceMonitorSelector.
127 # The default operator for prometheus enforces the below label.
128 labels:
129 release: prometheus
130 enabled: true
131 port: policy-apex-pdp
132 interval: 60s
Andreas Geisslerf10c5552023-03-21 18:09:46 +0100133 isHttps: false
Rashmi Pujara8b09262022-03-15 21:58:57 -0400134 basicAuth:
135 enabled: true
136 externalSecretNameSuffix: policy-apex-pdp-restserver-creds
137 externalSecretUserKey: login
138 externalSecretPasswordKey: password
139 selector:
140 app: '{{ include "common.name" . }}'
141 chart: '{{ .Chart.Name }}-{{ .Chart.Version | replace "+" "_" }}'
142 release: '{{ include "common.release" . }}'
143 heritage: '{{ .Release.Service }}'
Sirisha_Manchikantib402a592022-09-09 12:01:20 +0100144
145# application configuration
146config:
147# Event consumption (kafka) properties
saul.gillef208b02023-04-26 16:16:05 +0100148 useStrimziKafkaPf: true
Sirisha_Manchikantib402a592022-09-09 12:01:20 +0100149 kafkaBootstrap: strimzi-kafka-bootstrap
150 kafka:
151 consumer:
saul.gillef208b02023-04-26 16:16:05 +0100152 groupId: policy-apex
Sirisha_Manchikantib402a592022-09-09 12:01:20 +0100153 app:
154 listener:
155 policyPdpPapTopic: policy-pdp-pap
156# If targeting a custom kafka cluster, ie useStrimziKakfa: false
157# uncomment below config and target your kafka bootstrap servers,
158# along with any other security config.
159#
160# eventConsumption:
161# spring.kafka.bootstrap-servers: <kafka-bootstrap>:9092
162# spring.kafka.security.protocol: PLAINTEXT
163# spring.kafka.consumer.group-id: policy-group
164#
165# Any new property can be added in the env by setting in overrides in the format mentioned below
166# All the added properties must be in "key: value" format instead of yaml.
saul.gillef208b02023-04-26 16:16:05 +0100167kafkaUser:
168 authenticationType: scram-sha-512
169 acls:
170 - name: policy-apex
171 type: group
172 operations: [Create, Describe, Read, Write]
173 - name: policy-pdp-pap
174 type: topic
175 patternType: prefix
176 operations: [Create, Describe, Read, Write]
177 - name: policy-heartbeat
178 type: topic
179 patternType: prefix
180 operations: [Create, Describe, Read, Write]
181
182readinessCheck:
183 wait_for:
184 - message-router