blob: f1a428fb337b7fd9aa14963992ab14cb029e4882 [file] [log] [blame]
Alexander Dehn9b797d62020-04-21 09:53:50 +00001# Copyright © 2020 Samsung Electronics, highstreet technologies GmbH
vaibhav_16dece04b2fe2018-03-22 09:07:12 +00002# Copyright © 2017 Amdocs, Bell Canada
Remigiusz Janeczek42177a12020-12-10 13:10:15 +01003# Copyright © 2021 Nokia
vaibhav_16dece04b2fe2018-03-22 09:07:12 +00004#
5# Licensed under the Apache License, Version 2.0 (the "License");
6# you may not use this file except in compliance with the License.
7# You may obtain a copy of the License at
8#
9# http://www.apache.org/licenses/LICENSE-2.0
10#
11# Unless required by applicable law or agreed to in writing, software
12# distributed under the License is distributed on an "AS IS" BASIS,
13# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
14# See the License for the specific language governing permissions and
15# limitations under the License.
16
jmac065e2ce2018-03-29 01:18:02 +000017#################################################################
18# Global configuration defaults.
19#################################################################
20global:
21 nodePortPrefix: 302
jmac0e4f7172018-09-07 18:06:43 +000022 nodePortPrefixExt: 304
jmac065e2ce2018-03-29 01:18:02 +000023 persistence:
24 mountPath: /dockerdata-nfs
Maciej Wereski537d71e2021-11-03 13:31:44 +000025 centralizedLoggingEnabled: true
Krzysztof Opasiakcc97c732020-02-25 23:31:20 +010026 mariadbGalera:
27 #This flag allows SO to instantiate its own mariadb-galera cluster
28 #If shared instance is used, this chart assumes that DB already exists
29 localCluster: false
30 service: mariadb-galera
31 internalPort: 3306
32 nameOverride: mariadb-galera
33
demskeq83166b222023-04-26 10:27:00 +020034
Krzysztof Opasiakcc97c732020-02-25 23:31:20 +010035#################################################################
36# Secrets metaconfig
37#################################################################
38secrets:
39 - uid: db-root-password
Sylvain Desbureaux93a5b492020-11-27 11:07:42 +010040 name: &rootDbSecret '{{ include "common.release" . }}-sdnc-db-root-password'
Krzysztof Opasiakcc97c732020-02-25 23:31:20 +010041 type: password
Sylvain Desbureaux93a5b492020-11-27 11:07:42 +010042 # If we're using shared mariadb, we need to use the secret name (second
43 # part).
44 # If not, we do the same trick than for user db secret hat allows you
45 # override this secret using external one with the same field that is used
46 # to pass this to subchart.
Krzysztof Opasiakab7a6bb2020-03-24 03:30:51 +010047 externalSecret: '{{ .Values.global.mariadbGalera.localCluster |
Sylvain Desbureaux93a5b492020-11-27 11:07:42 +010048 ternary ((hasSuffix "sdnc-db-root-password" (index .Values "mariadb-galera" "rootUser" "externalSecret")) |
49 ternary
50 ""
51 (tpl (default "" (index .Values "mariadb-galera" "rootUser" "externalSecret")) .))
52 (include "common.mariadb.secret.rootPassSecretName"
53 (dict "dot" .
54 "chartName" .Values.global.mariadbGalera.nameOverride)) }}'
55 password: '{{ (index .Values "mariadb-galera" "rootUser" "password") }}'
Krzysztof Opasiakcc97c732020-02-25 23:31:20 +010056 - uid: db-secret
57 name: &dbSecretName '{{ include "common.release" . }}-sdnc-db-secret'
58 type: basicAuth
59 # This is a nasty trick that allows you override this secret using external one
60 # with the same field that is used to pass this to subchart
Sylvain Desbureaux93a5b492020-11-27 11:07:42 +010061 externalSecret: '{{ (hasSuffix "sdnc-db-secret" (index .Values "mariadb-galera" "db" "externalSecret")) |
62 ternary
63 ""
64 (tpl (default "" (index .Values "mariadb-galera" "db" "externalSecret")) .) }}'
65 login: '{{ index .Values "mariadb-galera" "db" "user" }}'
66 password: '{{ index .Values "mariadb-galera" "db" "password" }}'
Krzysztof Opasiakcc97c732020-02-25 23:31:20 +010067 - uid: odl-creds
68 name: &odlCredsSecretName '{{ include "common.release" . }}-sdnc-odl-creds'
69 type: basicAuth
70 externalSecret: '{{ .Values.config.odlCredsExternalSecret }}'
71 login: '{{ .Values.config.odlUser }}'
72 password: '{{ .Values.config.odlPassword }}'
73 # For now this is left hardcoded but should be revisited in a future
74 passwordPolicy: required
Krzysztof Opasiakcc97c732020-02-25 23:31:20 +010075 - uid: netbox-apikey
76 type: password
77 externalSecret: '{{ .Values.config.netboxApikeyExternalSecret }}'
78 password: '{{ .Values.config.netboxApikey }}'
79 passwordPolicy: required
Dan Timoney9e310e72021-02-23 11:25:39 -050080 - uid: aai-truststore-password
81 type: password
82 externalSecret: '{{ .Values.config.aaiTruststoreExternalSecret }}'
83 password: '{{ .Values.config.aaiTruststorePassword }}'
84 passwordPolicy: required
85 - uid: ansible-truststore-password
86 type: password
87 externalSecret: '{{ .Values.config.ansibleTruststoreExternalSecret }}'
88 password: '{{ .Values.config.ansibleTruststorePassword }}'
89 passwordPolicy: required
90 - uid: truststore-password
91 type: password
92 externalSecret: '{{ .Values.config.truststoreExternalSecret }}'
93 password: '{{ .Values.config.truststorePassword }}'
94 passwordPolicy: required
95 - uid: keystore-password
96 type: password
97 externalSecret: '{{ .Values.config.keystoreExternalSecret }}'
98 password: '{{ .Values.config.keystorePassword }}'
99 passwordPolicy: required
100 - uid: dmaap-authkey
101 type: password
102 externalSecret: '{{ .Values.config.dmaapAuthKeyExternalSecret }}'
103 password: '{{ .Values.config.dmaapAuthKey }}'
104 passwordPolicy: required
Krzysztof Opasiakcc97c732020-02-25 23:31:20 +0100105 - uid: aai-user-creds
106 type: basicAuth
107 externalSecret: '{{ .Values.config.aaiCredsExternalSecret}}'
108 login: '{{ .Values.config.aaiUser }}'
109 password: '{{ .Values.config.aaiPassword }}'
110 passwordPolicy: required
Dan Timoney9e310e72021-02-23 11:25:39 -0500111 - uid: so-user-creds
112 type: basicAuth
113 externalSecret: '{{ .Values.config.soCredsExternalSecret}}'
114 login: '{{ .Values.config.soUser }}'
115 password: '{{ .Values.config.soPassword }}'
116 passwordPolicy: required
117 - uid: neng-user-creds
118 type: basicAuth
119 externalSecret: '{{ .Values.config.nengCredsExternalSecret}}'
120 login: '{{ .Values.config.nengUser }}'
121 password: '{{ .Values.config.nengPassword }}'
122 passwordPolicy: required
123 - uid: cds-user-creds
124 type: basicAuth
125 externalSecret: '{{ .Values.config.cdsCredsExternalSecret}}'
126 login: '{{ .Values.config.cdsUser }}'
127 password: '{{ .Values.config.cdsPassword }}'
128 passwordPolicy: required
129 - uid: honeycomb-user-creds
130 type: basicAuth
131 externalSecret: '{{ .Values.config.honeycombCredsExternalSecret}}'
132 login: '{{ .Values.config.honeycombUser }}'
133 password: '{{ .Values.config.honeycombPassword }}'
134 passwordPolicy: required
135 - uid: dmaap-user-creds
136 type: basicAuth
137 externalSecret: '{{ .Values.config.dmaapCredsExternalSecret}}'
138 login: '{{ .Values.config.dmaapUser }}'
139 password: '{{ .Values.config.dmaapPassword }}'
140 passwordPolicy: required
Krzysztof Opasiakcc97c732020-02-25 23:31:20 +0100141 - uid: modeling-user-creds
142 type: basicAuth
143 externalSecret: '{{ .Values.config.modelingCredsExternalSecret}}'
144 login: '{{ .Values.config.modelingUser }}'
145 password: '{{ .Values.config.modelingPassword }}'
146 passwordPolicy: required
147 - uid: restconf-creds
148 type: basicAuth
149 externalSecret: '{{ .Values.config.restconfCredsExternalSecret}}'
150 login: '{{ .Values.config.restconfUser }}'
151 password: '{{ .Values.config.restconfPassword }}'
152 passwordPolicy: required
153 - uid: ansible-creds
154 name: &ansibleSecretName '{{ include "common.release" . }}-sdnc-ansible-creds'
155 type: basicAuth
156 externalSecret: '{{ .Values.config.ansibleCredsExternalSecret}}'
157 login: '{{ .Values.config.ansibleUser }}'
158 password: '{{ .Values.config.ansiblePassword }}'
159 passwordPolicy: required
160 - uid: scaleout-creds
161 type: basicAuth
162 externalSecret: '{{ .Values.config.scaleoutCredsExternalSecret}}'
163 login: '{{ .Values.config.scaleoutUser }}'
164 password: '{{ .Values.config.scaleoutPassword }}'
165 passwordPolicy: required
demskeq8b43e92c2021-02-12 15:43:48 +0100166 - uid: oauth-token-secret
167 type: password
168 externalSecret: '{{ ternary (tpl (default "" .Values.config.sdnr.oauth.tokenExternalSecret) .) "oauth-disabled" .Values.config.sdnr.oauth.enabled }}'
169 password: '{{ .Values.config.sdnr.oauth.tokenSecret }}'
170 passwordPolicy: required
171 - uid: keycloak-secret
172 type: password
173 externalSecret: '{{ ternary (tpl (default "" .Values.config.sdnr.oauth.providersSecrets.keycloakExternalSecret) .) "oauth-disabled" .Values.config.sdnr.oauth.enabled }}'
174 password: '{{ .Values.config.sdnr.oauth.providersSecrets.keycloak }}'
175 passwordPolicy: required
sebdetb205f402021-10-20 12:16:02 +0200176 - uid: ves-collector-secret
177 type: basicAuth
178 login: '{{ .Values.config.sdnr.vesCollector.username }}'
179 password: '{{ .Values.config.sdnr.vesCollector.password }}'
Jan Malkiewicz0e53c9f2020-12-08 15:08:01 +0100180#################################################################
181# Certificates
182#################################################################
183certificates:
Remigiusz Janeczek42177a12020-12-10 13:10:15 +0100184 - mountPath: /var/custom-certs
185 commonName: sdnc.simpledemo.onap.org
Jan Malkiewicz0e53c9f2020-12-08 15:08:01 +0100186 dnsNames:
187 - sdnc.simpledemo.onap.org
Piotr Marcinkiewicz59571012021-01-12 17:37:08 +0100188 keystore:
189 outputType:
190 - jks
Jan Malkiewicz0e53c9f2020-12-08 15:08:01 +0100191 passwordSecretRef:
Piotr Marcinkiewicz32672932021-03-26 13:06:35 +0100192 create: true
Piotr Marcinkiewicz59571012021-01-12 17:37:08 +0100193 name: sdnc-cmpv2-keystore-password
Jan Malkiewicz0e53c9f2020-12-08 15:08:01 +0100194 key: password
Piotr Marcinkiewicz59571012021-01-12 17:37:08 +0100195 issuer:
196 group: certmanager.onap.org
197 kind: CMPv2Issuer
198 name: cmpv2-issuer-onap
jmac065e2ce2018-03-29 01:18:02 +0000199#################################################################
200# Application configuration defaults.
201#################################################################
202# application images
Alexander Dehn238450f2020-10-27 13:03:53 +0000203
jmac065e2ce2018-03-29 01:18:02 +0000204pullPolicy: Always
Dan Timoneyc6144822023-04-27 10:17:20 -0400205image: onap/sdnc-image:2.5.5
Timoney, Dan (dt5972)a3bc1a52019-06-26 16:16:52 -0400206
jmac065e2ce2018-03-29 01:18:02 +0000207# flag to enable debugging - application support required
208debugEnabled: false
209
210# application configuration
BorislavG5f3b6192018-03-25 18:12:38 +0300211config:
Timoney, Dan (dt5972)ba4d2eb2019-05-07 13:32:42 -0400212 odlUid: 100
213 odlGid: 101
Krzysztof Opasiakcc97c732020-02-25 23:31:20 +0100214 odlUser: admin
jmaca68f4cb2018-05-10 22:44:19 +0000215 odlPassword: Kp8bJ4SXszM0WXlhak3eHlcse2gAw84vaoGGmJvUy2U
Krzysztof Opasiakcc97c732020-02-25 23:31:20 +0100216 # odlCredsExternalSecret: some secret
217 netboxApikey: onceuponatimeiplayedwithnetbox20180814
218 # netboxApikeyExternalSecret: some secret
Dan Timoney9e310e72021-02-23 11:25:39 -0500219 aaiTruststorePassword: changeit
220 # aaiTruststoreExternalSecret: some secret
221 ansibleTruststorePassword: changeit
222 # ansibleTruststoreExternalSecret: some secret
223 truststorePassword: adminadmin
224 # truststoreExternalSecret: some secret
225 keystorePassword: adminadmin
226 # keystoreExternalSecret: some secret
Krzysztof Opasiakcc97c732020-02-25 23:31:20 +0100227 aaiUser: sdnc@sdnc.onap.org
228 aaiPassword: demo123456!
229 # aaiCredsExternalSecret: some secret
Dan Timoney9e310e72021-02-23 11:25:39 -0500230 soUser: sdncaBpmn
231 soPassword: password1$
232 # soCredsExternalSecret: some secret
233 nengUser: ccsdkapps
234 nengPassword: ccsdkapps
235 # nengCredsExternalSecret: some secret
236 cdsUser: ccsdkapps
237 cdsPassword: ccsdkapps
238 # cdsCredsExternalSecret: some secret
239 honeycombUser: admin
240 honeycombPassword: admin
241 # honeycombCredsExternalSecret: some secret
242 dmaapUser: admin
243 dmaapPassword: admin
244 dmaapAuthKey: "fs20cKwalJ6ry4kX:7Hqm6BDZK47IKxGRkOPFk33qMYs="
245 # dmaapCredsExternalSecret: some secret
246 # dmaapAuthKeyExternalSecret: some secret
Krzysztof Opasiakcc97c732020-02-25 23:31:20 +0100247 modelingUser: ccsdkapps
248 modelingPassword: ccsdkapps
249 # modelingCredsExternalSecret: some secret
250 restconfUser: admin
251 restconfPassword: admin
252 # restconfCredsExternalSecret: some secret
253 scaleoutUser: admin
254 scaleoutPassword: admin
255 # scaleoutExternalSecret: some secret
256 ansibleUser: sdnc
257 ansiblePassword: sdnc
258 # ansibleCredsExternalSecret: some secret
sebdetb205f402021-10-20 12:16:02 +0200259
Krzysztof Opasiakcc97c732020-02-25 23:31:20 +0100260 dbSdnctlDatabase: &sdncDbName sdnctl
jmac065e2ce2018-03-29 01:18:02 +0000261 enableClustering: true
Timoney, Dan (dt5972)a3bc1a52019-06-26 16:16:52 -0400262 sdncHome: /opt/onap/sdnc
jmaca68f4cb2018-05-10 22:44:19 +0000263 binDir: /opt/onap/sdnc/bin
Timoney, Dan (dt5972)a3bc1a52019-06-26 16:16:52 -0400264 etcDir: /opt/onap/sdnc/data
Trevor Tait567ff1e2018-05-01 16:20:54 -0400265 geoEnabled: false
Neha Jain7b0d6c62018-05-17 14:34:49 -0400266# if geoEnabled is set to true here, mysql.geoEnabled must be set to true
Trevor Tait567ff1e2018-05-01 16:20:54 -0400267# if geoEnabled is set to true the following 3 values must be set to their proper values
268 myODLCluster: 127.0.0.1
269 peerODLCluster: 127.0.0.1
Mohammadreza Pasandidehb642ee52018-06-19 15:19:53 -0400270 isPrimaryCluster: true
jmac065e2ce2018-03-29 01:18:02 +0000271 configDir: /opt/onap/sdnc/data/properties
Konrad Bańka5ea1db32020-04-06 14:32:46 +0200272 ccsdkConfigDir: /opt/onap/ccsdk/data/properties
jmac065e2ce2018-03-29 01:18:02 +0000273 dmaapTopic: SUCCESS
jmaca68f4cb2018-05-10 22:44:19 +0000274 dmaapPort: 3904
BorislavG5f3b6192018-03-25 18:12:38 +0300275 logstashServiceName: log-ls
276 logstashPort: 5044
jmac7c434672018-05-11 20:14:17 +0000277 ansibleServiceName: sdnc-ansible-server
278 ansiblePort: 8000
Dan Timoneya98765b2020-09-14 11:57:55 -0400279 javaHome: /opt/java/openjdk
jmac7c434672018-05-11 20:14:17 +0000280
Timoney, Dan (dt5972)58774772019-08-21 16:50:54 -0400281 odl:
282 etcDir: /opt/opendaylight/etc
283 binDir: /opt/opendaylight/bin
Dan Timoneya98765b2020-09-14 11:57:55 -0400284 gcLogDir: /opt/opendaylight/data/log
Timoney, Dan (dt5972)58774772019-08-21 16:50:54 -0400285 salConfigDir: /opt/opendaylight/system/org/opendaylight/controller/sal-clustering-config
Dan Timoney9520e7c2021-01-12 11:10:58 -0500286 salConfigVersion: 1.10.4
Timoney, Dan (dt5972)58774772019-08-21 16:50:54 -0400287 akka:
288 seedNodeTimeout: 15s
289 circuitBreaker:
290 maxFailures: 10
291 callTimeout: 90s
292 resetTimeout: 30s
293 recoveryEventTimeout: 90s
294 datastore:
295 persistentActorRestartMinBackoffInSeconds: 10
296 persistentActorRestartMaxBackoffInSeconds: 40
297 persistentActorRestartResetBackoffInSeconds: 20
298 shardTransactionCommitTimeoutInSeconds: 120
299 shardIsolatedLeaderCheckIntervalInMillis: 30000
300 operationTimeoutInSeconds: 120
301 javaOptions:
302 maxGCPauseMillis: 100
303 parallelGCThreads : 3
Dan Timoneya98765b2020-09-14 11:57:55 -0400304 numberGCLogFiles: 10
305 minMemory: 512m
306 maxMemory: 2048m
307 gcLogOptions: ""
308 # Next line enables gc logging
309 # gcLogOptions: "-Xlog:gc=trace:file={{.Values.config.odl.gcLogDir}}/gc-%t.log}:time,level,tags:filecount={{.Values.config.odl.javaOptions.numberGCLogFiles}}"
Alexander Dehn9b797d62020-04-21 09:53:50 +0000310 # enables sdnr functionality
311 sdnr:
Alexander Dehn5c1105e2020-09-14 20:55:56 +0000312 enabled: true
Alexander Dehn9b797d62020-04-21 09:53:50 +0000313 # mode: web - SDNC contains device manager only plus dedicated webserver service for ODLUX (default),
314 # mode: dm - SDNC contains sdnr device manager + ODLUX components
315 mode: dm
316 # sdnronly: true starts sdnc container with odl and sdnrwt features only
317 sdnronly: false
318 sdnrdbTrustAllCerts: true
demskeq83166b222023-04-26 10:27:00 +0200319 kafka:
320 enabled: false
321 consumerGroupPrefix: &consumerGroupPrefix sdnr
322 # Strimzi KafkaUser config see configuration below
323 kafkaUser: &kafkaUser
324 acls:
325 - name: unauthenticated.SEC_
326 type: topic
327 patternType: prefix
328 operations: [Read]
329 - name: unauthenticated.VES_PNFREG_OUTPUT
330 type: topic
331 patternType: literal
332 operations: [Read]
333 - name: *consumerGroupPrefix
334 type: group
335 patternType: prefix
336 operations: [Read]
337 ## set if bootstrap server is not OOM standard
338 # bootstrapServers: []
339 ## set connection parameters if not default
340 # securityProtocol: PLAINTEXT
341 # saslMechanism: SCRAM-SHA-512
342 ## saslJassConfig: provided by secret
343
344
Alexander Dehn9b797d62020-04-21 09:53:50 +0000345 mountpointStateProviderEnabled: false
demskeq827854662021-04-08 14:49:47 +0200346 netconfCallHome:
347 enabled: true
demskeq83166b222023-04-26 10:27:00 +0200348
349
demskeq8b43e92c2021-02-12 15:43:48 +0100350 oauth:
351 enabled: false
352 tokenIssuer: ONAP SDNC
353 tokenSecret: secret
354 supportOdlusers: true
355 redirectUri: null
356 publicUrl: none
357 odluxRbac:
358 enabled: true
359 # example definition for a oauth provider
360 providersSecrets:
361 keycloak: d8d7ed52-0691-4353-9ac6-5383e72e9c46
362 providers:
363 - id: keycloak
364 type: KEYCLOAK
365 host: http://keycloak:8080
366 clientId: odlux.app
367 secret: ${KEYCLOAK_SECRET}
368 scope: openid
369 title: ONAP Keycloak Provider
370 roleMapping:
371 mykeycloak: admin
sebdetb205f402021-10-20 12:16:02 +0200372 vesCollector:
373 enabled: false
374 tls:
375 enabled: true
376 trustAllCertificates: false
377 username: sample1
378 password: sample1
379 address: dcae-ves-collector.onap
Andreas Geissler2af50792023-03-27 17:11:27 +0200380 port: 8080
sebdetb205f402021-10-20 12:16:02 +0200381 version: v7
382 reportingEntityName: ONAP SDN-R
383 eventLogMsgDetail: SHORT
Timoney, Dan (dt5972)58774772019-08-21 16:50:54 -0400384
demskeq83166b222023-04-26 10:27:00 +0200385# Strimzi KafkaUser/Topic config on top level
386kafkaUser: *kafkaUser
387
388
jmac065e2ce2018-03-29 01:18:02 +0000389# dependency / sub-chart configuration
Alexander Dehn9b797d62020-04-21 09:53:50 +0000390network-name-gen:
391 enabled: true
vladimir turokd8044182023-07-27 16:28:36 +0200392 serviceAccount:
393 nameOverride: sdnc-name-gen
Krzysztof Opasiakcc97c732020-02-25 23:31:20 +0100394mariadb-galera: &mariadbGalera
Sylvain Desbureaux93a5b492020-11-27 11:07:42 +0100395 nameOverride: &sdnc-db sdnc-db
Konrad Bańkaa9d44032020-03-19 18:31:34 +0100396 config: &mariadbGaleraConfig
Sylvain Desbureaux93a5b492020-11-27 11:07:42 +0100397 rootPasswordExternalSecret: *rootDbSecret
398 userName: &dbUser sdnctl
Krzysztof Opasiakcc97c732020-02-25 23:31:20 +0100399 userCredentialsExternalSecret: *dbSecretName
Sylvain Desbureaux93a5b492020-11-27 11:07:42 +0100400 rootUser:
401 externalSecret: *rootDbSecret
402 db:
403 user: *dbUser
404 externalSecret: *dbSecretName
jmac065e2ce2018-03-29 01:18:02 +0000405 service:
406 name: sdnc-dbhost
jmac065e2ce2018-03-29 01:18:02 +0000407 sdnctlPrefix: sdnc
408 persistence:
Mahendra Raghuwanshib76cb282019-04-09 10:13:07 +0000409 mountSubPath: sdnc/mariadb-galera
jmac065e2ce2018-03-29 01:18:02 +0000410 enabled: true
jmac065e2ce2018-03-29 01:18:02 +0000411 replicaCount: 1
Sylvain Desbureaux93a5b492020-11-27 11:07:42 +0100412 serviceAccount:
413 nameOverride: *sdnc-db
jmac065e2ce2018-03-29 01:18:02 +0000414
Krzysztof Opasiakcc97c732020-02-25 23:31:20 +0100415cds:
416 enabled: false
417
418dmaap-listener:
Alexander Dehn9b797d62020-04-21 09:53:50 +0000419 enabled: true
Krzysztof Opasiakcc97c732020-02-25 23:31:20 +0100420 nameOverride: sdnc-dmaap-listener
421 mariadb-galera:
Konrad Bańkaa9d44032020-03-19 18:31:34 +0100422 <<: *mariadbGalera
Krzysztof Opasiakcc97c732020-02-25 23:31:20 +0100423 config:
Konrad Bańkaa9d44032020-03-19 18:31:34 +0100424 <<: *mariadbGaleraConfig
Krzysztof Opasiakcc97c732020-02-25 23:31:20 +0100425 mysqlDatabase: *sdncDbName
426 config:
427 sdncChartName: sdnc
428 dmaapPort: 3904
429 sdncPort: 8282
430 configDir: /opt/onap/sdnc/data/properties
431 odlCredsExternalSecret: *odlCredsSecretName
432
433ueb-listener:
Alexander Dehn9b797d62020-04-21 09:53:50 +0000434 enabled: true
Krzysztof Opasiakcc97c732020-02-25 23:31:20 +0100435 mariadb-galera:
Konrad Bańkaa9d44032020-03-19 18:31:34 +0100436 <<: *mariadbGalera
Krzysztof Opasiakcc97c732020-02-25 23:31:20 +0100437 config:
Konrad Bańkaa9d44032020-03-19 18:31:34 +0100438 <<: *mariadbGaleraConfig
Krzysztof Opasiakcc97c732020-02-25 23:31:20 +0100439 mysqlDatabase: *sdncDbName
440 nameOverride: sdnc-ueb-listener
441 config:
442 sdncPort: 8282
443 sdncChartName: sdnc
444 configDir: /opt/onap/sdnc/data/properties
445 odlCredsExternalSecret: *odlCredsSecretName
446
Krzysztof Opasiakcc97c732020-02-25 23:31:20 +0100447sdnc-ansible-server:
Alexander Dehn9b797d62020-04-21 09:53:50 +0000448 enabled: true
Krzysztof Opasiakcc97c732020-02-25 23:31:20 +0100449 config:
450 restCredsExternalSecret: *ansibleSecretName
451 mariadb-galera:
Konrad Bańkaa9d44032020-03-19 18:31:34 +0100452 <<: *mariadbGalera
Krzysztof Opasiakcc97c732020-02-25 23:31:20 +0100453 config:
Konrad Bańkaa9d44032020-03-19 18:31:34 +0100454 <<: *mariadbGaleraConfig
Krzysztof Opasiakcc97c732020-02-25 23:31:20 +0100455 mysqlDatabase: ansible
456 service:
457 name: sdnc-ansible-server
458 internalPort: 8000
459
jmac065e2ce2018-03-29 01:18:02 +0000460dgbuilder:
Alexander Dehn9b797d62020-04-21 09:53:50 +0000461 enabled: true
jmac065e2ce2018-03-29 01:18:02 +0000462 nameOverride: sdnc-dgbuilder
463 config:
Krzysztof Opasiakcc97c732020-02-25 23:31:20 +0100464 db:
465 dbName: *sdncDbName
Sylvain Desbureaux93a5b492020-11-27 11:07:42 +0100466 rootPasswordExternalSecret: '{{ .Values.global.mariadbGalera.localCluster |
467 ternary
468 (printf "%s-sdnc-db-root-password" (include "common.release" .))
469 (include "common.mariadb.secret.rootPassSecretName"
470 (dict "dot" . "chartName" "mariadb-galera")) }}'
Krzysztof Opasiakcc97c732020-02-25 23:31:20 +0100471 userCredentialsExternalSecret: *dbSecretName
Mahendra Raghuwanshib76cb282019-04-09 10:13:07 +0000472 dbPodName: mariadb-galera
473 dbServiceName: mariadb-galera
Krzysztof Opasiakcc97c732020-02-25 23:31:20 +0100474 # This should be revisited and changed to plain text
jmac70863e12018-05-16 14:53:03 +0000475 dgUserPassword: cc03e747a6afbbcbf8be7668acfebee5
farida azmydc9aef02021-04-07 17:07:09 +0200476 serviceAccount:
477 nameOverride: sdnc-dgbuilder
Krzysztof Opasiakcc97c732020-02-25 23:31:20 +0100478 mariadb-galera:
jmac065e2ce2018-03-29 01:18:02 +0000479 service:
BorislavG1ffbd992018-04-24 07:56:27 +0000480 name: sdnc-dgbuilder
Andreas Geissler2af50792023-03-27 17:11:27 +0200481 ports:
482 - name: http
483 port: 3100
demskeq895bf73a2023-05-09 12:31:07 +0000484 nodePort: "03"
jmac065e2ce2018-03-29 01:18:02 +0000485
Sylvain Desbureauxe54644e2020-05-04 11:45:16 +0200486 ingress:
487 enabled: false
488 service:
Andreas Geissler51900a92022-08-03 13:10:35 +0200489 - baseaddr: "sdnc-dgbuilder-ui"
Sylvain Desbureauxe54644e2020-05-04 11:45:16 +0200490 name: "sdnc-dgbuilder"
Andreas Geissler1b174e52023-04-13 16:50:23 +0200491 port: 3100
Sylvain Desbureauxe54644e2020-05-04 11:45:16 +0200492 config:
493 ssl: "redirect"
494
Alexander Dehn9b797d62020-04-21 09:53:50 +0000495
496
Alexander Dehnab86ec12020-02-05 14:38:54 +0000497# local elasticsearch cluster
498localElasticCluster: true
499elasticsearch:
Sylvain Desbureaux829344b2020-11-19 17:07:26 +0100500 nameOverride: &elasticSearchName sdnrdb
Alexander Dehnab86ec12020-02-05 14:38:54 +0000501 name: sdnrdb-cluster
Alexander Dehnab86ec12020-02-05 14:38:54 +0000502 service:
Sylvain Desbureaux829344b2020-11-19 17:07:26 +0100503 name: *elasticSearchName
Alexander Dehnab86ec12020-02-05 14:38:54 +0000504 master:
505 replicaCount: 3
506 # dedicatednode: "yes"
507 # working as master node only, in this case increase replicaCount for elasticsearch-data
508 # dedicatednode: "no"
509 # handles master and data node functionality
510 dedicatednode: "no"
Sylvain Desbureaux829344b2020-11-19 17:07:26 +0100511 nameOverride: *elasticSearchName
demskeq8eb56da72021-02-19 12:11:48 +0100512 cluster_name: sdnrdb-cluster
sebdetb205f402021-10-20 12:16:02 +0200513
Alexander Dehn9b797d62020-04-21 09:53:50 +0000514# enable
515sdnc-web:
Alexander Dehn8789a722020-10-16 14:29:05 +0000516 enabled: true
demskeq895bf73a2023-05-09 12:31:07 +0000517 ## set if web socket port should not be default
518 # sdnrWebsocketPort: *sdnrWebsocketPort
jmac065e2ce2018-03-29 01:18:02 +0000519# default number of instances
520replicaCount: 1
521
522nodeSelector: {}
523
524affinity: {}
525
526# probe configuration parameters
527liveness:
528 initialDelaySeconds: 10
529 periodSeconds: 10
530 # necessary to disable liveness probe when setting breakpoints
531 # in debugger so K8s doesn't restart unresponsive container
532 enabled: true
533
534readiness:
535 initialDelaySeconds: 10
536 periodSeconds: 10
537
538service:
539 type: NodePort
540 name: sdnc
Radoslaw Chmiel58662a32022-06-02 19:37:35 +0200541 portName: http
jmac065e2ce2018-03-29 01:18:02 +0000542 internalPort: 8181
543 internalPort2: 8101
544 internalPort3: 8080
Mohammadreza Pasandidehb756fb72018-04-03 10:06:45 -0400545
jmac065e2ce2018-03-29 01:18:02 +0000546 #port
547 externalPort: 8282
jmac065e2ce2018-03-29 01:18:02 +0000548
549 externalPort2: 8202
jmac065e2ce2018-03-29 01:18:02 +0000550
551 externalPort3: 8280
jmac065e2ce2018-03-29 01:18:02 +0000552
jmaca68f4cb2018-05-10 22:44:19 +0000553 nodePort4: 67
554
jmac065e2ce2018-03-29 01:18:02 +0000555 clusterPort: 2550
Mohammadreza Pasandidehb756fb72018-04-03 10:06:45 -0400556 clusterPort2: 2650
557 clusterPort3: 2681
558
559 geoNodePort1: 61
560 geoNodePort2: 62
561 geoNodePort3: 63
562 geoNodePort4: 64
563 geoNodePort5: 65
564 geoNodePort6: 66
jmac065e2ce2018-03-29 01:18:02 +0000565
Andreas Geissler2af50792023-03-27 17:11:27 +0200566 callHomePort: &chport 4334
demskeq827854662021-04-08 14:49:47 +0200567 callHomeNodePort: 66
demskeq895bf73a2023-05-09 12:31:07 +0000568 ## set if web socket port should not be default
569 ## change in sdnc-web section as well
570 # sdnrWebsocketPort: &sdnrWebsocketPort 8182
571
demskeq827854662021-04-08 14:49:47 +0200572
jmac8d6dc962018-04-26 14:26:55 +0000573## Persist data to a persitent volume
574persistence:
575 enabled: true
576
577 ## A manually managed Persistent Volume and Claim
578 ## Requires persistence.enabled: true
579 ## If defined, PVC must be created manually before volume will be bound
580 # existingClaim:
581 volumeReclaimPolicy: Retain
582
583 ## database data Persistent Volume Storage Class
584 ## If defined, storageClassName: <storageClass>
585 ## If set to "-", storageClassName: "", which disables dynamic provisioning
586 ## If undefined (the default) or set to null, no storageClassName spec is
587 ## set, choosing the default provisioner. (gp2 on AWS, standard on
588 ## GKE, AWS & OpenStack)
589 accessMode: ReadWriteOnce
590 size: 1Gi
591 mountPath: /dockerdata-nfs
592 mountSubPath: sdnc/mdsal
Dan Timoney2ee28a52021-01-15 16:39:50 -0500593 mdsalPath: /opt/opendaylight/mdsal
demskeq8a86300a2021-02-10 09:53:33 +0100594 daeximPath: /opt/opendaylight/mdsal/daexim
Satoshi Fujii31b8b432021-08-28 12:12:36 +0000595 journalPath: /opt/opendaylight/segmented-journal
Dan Timoney2ee28a52021-01-15 16:39:50 -0500596 snapshotsPath: /opt/opendaylight/snapshots
jmac8d6dc962018-04-26 14:26:55 +0000597
jmac065e2ce2018-03-29 01:18:02 +0000598ingress:
599 enabled: false
Lucjan Bryndza08448402019-11-27 14:26:54 +0100600 service:
Andreas Geissler2af50792023-03-27 17:11:27 +0200601 - baseaddr: "sdnc-api"
602 name: "sdnc"
603 port: 8282
604 - baseaddr: "sdnc-callhome"
Andreas Geissler1b174e52023-04-13 16:50:23 +0200605 name: "sdnc-callhome"
Andreas Geissler2af50792023-03-27 17:11:27 +0200606 port: *chport
607 protocol: tcp
608 exposedPort: *chport
609 exposedProtocol: TCP
Lucjan Bryndza08448402019-11-27 14:26:54 +0100610 config:
611 ssl: "redirect"
jmac065e2ce2018-03-29 01:18:02 +0000612
AndrewLamb7709c172023-05-12 15:37:14 +0100613serviceMesh:
614 authorizationPolicy:
615 authorizedPrincipals:
616 - serviceAccount: a1policymanagement-read
617 - serviceAccount: cds-blueprints-processor-read
618 - serviceAccount: consul-read
619 - serviceAccount: ncmp-dmi-plugin-read
620 - serviceAccount: policy-drools-pdp-read
621 - serviceAccount: robot-read
622 - serviceAccount: sdnc-ansible-server-read
623 - serviceAccount: sdnc-dmaap-listener-read
624 - serviceAccount: sdnc-prom-read
625 - serviceAccount: sdnc-ueb-listener-read
626 - serviceAccount: sdnc-web-read
627 - serviceAccount: so-sdnc-adapter-read
628 - serviceAccount: istio-ingress
629 namespace: istio-ingress
630 authorizedPrincipalsSdnHosts:
631 - serviceAccount: sdnc-read
632
toshrajbhardwaj72b5f0f2018-09-13 02:45:22 +0000633#Resource Limit flavor -By Default using small
634flavor: small
635#segregation for different envionment (Small and Large)
636
637resources:
Mandeep Khindade045712018-09-19 18:11:57 +0000638 small:
639 limits:
Andreas Geissler555db9c2023-06-20 11:38:39 +0200640 cpu: 999
641 memory: 4.7Gi
Mandeep Khindade045712018-09-19 18:11:57 +0000642 requests:
Mandeep Khinda3c134252018-09-19 23:56:37 +0000643 cpu: 1
Andreas Geissler555db9c2023-06-20 11:38:39 +0200644 memory: 4.7Gi
Mandeep Khindade045712018-09-19 18:11:57 +0000645 large:
646 limits:
Andreas Geissler555db9c2023-06-20 11:38:39 +0200647 cpu: 999
648 memory: 9.4Gi
Mandeep Khindade045712018-09-19 18:11:57 +0000649 requests:
Mandeep Khinda3c134252018-09-19 23:56:37 +0000650 cpu: 2
Andreas Geissler555db9c2023-06-20 11:38:39 +0200651 memory: 9.4Gi
Mandeep Khinda60d36d42018-09-24 15:15:48 +0000652 unlimited: {}
farida azmy32c5ed82021-08-04 14:46:09 +0200653
654#Pods Service Account
655serviceAccount:
656 nameOverride: sdnc
657 roles:
658 - read
Maciej Wereski537d71e2021-11-03 13:31:44 +0000659
660#Log configuration
661log:
662 path: /var/log/onap