blob: 9d14dfe5b5f337c18bc1131bc545af31d7f223d2 [file] [log] [blame]
Jakub Latusekd8eaff62020-10-21 13:36:29 +02001{{/*
Mandeep Khinda51a8b1b2018-04-24 20:05:32 +00002# Copyright © 2017 Amdocs, AT&T, Bell Canada
toshrajbhardwajf4fc1c62018-08-06 07:35:14 +00003# Modifications Copyright © 2018 ZTE
Mandeep Khinda51a8b1b2018-04-24 20:05:32 +00004#
5# Licensed under the Apache License, Version 2.0 (the "License");
6# you may not use this file except in compliance with the License.
7# You may obtain a copy of the License at
8#
9# http://www.apache.org/licenses/LICENSE-2.0
10#
11# Unless required by applicable law or agreed to in writing, software
12# distributed under the License is distributed on an "AS IS" BASIS,
13# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
14# See the License for the specific language governing permissions and
15# limitations under the License.
Jakub Latusekd8eaff62020-10-21 13:36:29 +020016*/}}
Mandeep Khinda51a8b1b2018-04-24 20:05:32 +000017
kwasiel59cc6a42020-07-23 10:02:49 +000018apiVersion: apps/v1
Mandeep Khinda51a8b1b2018-04-24 20:05:32 +000019kind: Deployment
20metadata:
21 name: {{ include "common.fullname" . }}
22 namespace: {{ include "common.namespace" . }}
23 labels:
24 app: {{ include "common.name" . }}
25 chart: {{ .Chart.Name }}-{{ .Chart.Version | replace "+" "_" }}
Krzysztof Opasiak137d7cc2020-01-24 23:49:11 +010026 release: {{ include "common.release" . }}
Mandeep Khinda51a8b1b2018-04-24 20:05:32 +000027 heritage: {{ .Release.Service }}
28spec:
kwasiel59cc6a42020-07-23 10:02:49 +000029 selector:
30 matchLabels:
31 app: {{ include "common.name" . }}
Mandeep Khinda51a8b1b2018-04-24 20:05:32 +000032 replicas: {{ .Values.replicaCount }}
33 template:
34 metadata:
35 labels:
36 app: {{ include "common.name" . }}
Krzysztof Opasiak137d7cc2020-01-24 23:49:11 +010037 release: {{ include "common.release" . }}
Mandeep Khinda51a8b1b2018-04-24 20:05:32 +000038 spec:
ChrisC742a7b22020-09-04 11:29:57 +020039 initContainers: {{ include "common.certInitializer.initContainer" . | nindent 6 }}
Mandeep Khinda51a8b1b2018-04-24 20:05:32 +000040 - name: {{ include "common.name" . }}-job-completion
Sylvain Desbureaux1694e1d2020-08-21 09:58:25 +020041 image: "{{ include "common.repository" . }}/{{ .Values.global.readinessImage }}"
Mandeep Khinda51a8b1b2018-04-24 20:05:32 +000042 imagePullPolicy: "{{ .Values.global.pullPolicy | default .Values.pullPolicy }}"
43 command:
Sylvain Desbureaux1694e1d2020-08-21 09:58:25 +020044 - /app/ready.py
Mandeep Khinda51a8b1b2018-04-24 20:05:32 +000045 args:
46 - --job-name
Krzysztof Opasiak137d7cc2020-01-24 23:49:11 +010047 - {{ include "common.release" . }}-sdc-onboarding-be-cassandra-init
Mandeep Khinda51a8b1b2018-04-24 20:05:32 +000048 env:
49 - name: NAMESPACE
50 valueFrom:
51 fieldRef:
52 apiVersion: v1
53 fieldPath: metadata.namespace
ChrisC32172342020-10-02 16:39:13 +020054 resources:
55 limits:
56 cpu: 100m
57 memory: 100Mi
58 requests:
59 cpu: 3m
60 memory: 20Mi
ChrisC742a7b22020-09-04 11:29:57 +020061 {{- if .Values.global.aafEnabled }}
k.kedron2774ab12020-03-26 11:13:46 +010062 - name: {{ include "common.name" . }}-update-config
63 image: "{{ .Values.global.envsubstImage }}"
64 imagePullPolicy: {{ .Values.global.pullPolicy | default .Values.pullPolicy }}
65 command:
ChrisC742a7b22020-09-04 11:29:57 +020066 - sh
k.kedron2774ab12020-03-26 11:13:46 +010067 args:
ChrisC742a7b22020-09-04 11:29:57 +020068 - "-c"
69 - |
70 export $(grep '^c' {{ .Values.certInitializer.credsPath }}/mycreds.prop | xargs -0)
71 export KEYSTORE_PASS=$cadi_keystore_password_p12
72 export KEYMANAGER_PASS=$cadi_keystore_password_p12
73 export TRUSTSTORE_PASS=$cadi_truststore_password
74 cp {{ .Values.certInitializer.credsPath }}/{{ .Values.certInitializer.keystoreFile }} /config-output
75 cp {{ .Values.certInitializer.credsPath }}/{{ .Values.certInitializer.truststoreFile }} /config-output
76 cd /config-input && \
77 for PFILE in `find . -not -type d | grep -v -F ..`
78 do
79 envsubst <${PFILE} >/config-output/${PFILE}
80 chmod 0755 /config-output/${PFILE}
81 done
82 volumeMounts: {{ include "common.certInitializer.volumeMount" . | nindent 10 }}
k.kedron2774ab12020-03-26 11:13:46 +010083 - name: {{ include "common.fullname" . }}-environments
84 mountPath: /config-input/
85 - name: sdc-environments-output
86 mountPath: /config-output/
ChrisC32172342020-10-02 16:39:13 +020087 resources:
88 limits:
89 cpu: 100m
90 memory: 100Mi
91 requests:
92 cpu: 3m
93 memory: 20Mi
ChrisC742a7b22020-09-04 11:29:57 +020094 {{- end }}
Krzysztof Kuzmicki868a2802020-11-20 17:00:27 +010095 - name: volume-permissions
96 image: {{ .Values.global.busyboxRepository | default .Values.busyboxRepository }}/{{ .Values.global.busyboxImage | default .Values.busyboxImage }}
97 imagePullPolicy: {{ .Values.global.pullPolicy | default .Values.pullPolicy }}
98 command:
99 - sh
100 args:
101 - "-c"
102 - |
103 chown -R {{ .Values.securityContext.runAsUser }}:{{ .Values.securityContext.fsGroup }} //onboard/cert
104 securityContext:
105 runAsUser: 0
106 volumeMounts:
107 - name: {{ include "common.fullname" . }}-cert-storage
108 mountPath: "/onboard/cert"
109 resources:
110 limits:
111 cpu: 100m
112 memory: 100Mi
113 requests:
114 cpu: 3m
115 memory: 20Mi
Mandeep Khinda51a8b1b2018-04-24 20:05:32 +0000116 containers:
117 - name: {{ include "common.name" . }}
118 image: "{{ include "common.repository" . }}/{{ .Values.image }}"
119 imagePullPolicy: {{ .Values.global.pullPolicy | default .Values.pullPolicy }}
120 ports:
121 - containerPort: {{ .Values.service.internalPort }}
122 - containerPort: {{ .Values.service.internalPort2 }}
123 {{ if eq .Values.liveness.enabled true }}
124 livenessProbe:
amitjaia4cef272019-01-08 15:29:42 +0530125 exec:
126 command:
MichaelMorrisb137f7e2020-03-15 17:44:48 +0000127 - "/var/lib/jetty/ready-probe.sh"
Mandeep Khinda51a8b1b2018-04-24 20:05:32 +0000128 initialDelaySeconds: {{ .Values.liveness.initialDelaySeconds }}
129 periodSeconds: {{ .Values.liveness.periodSeconds }}
Brian Freeman6142d942019-10-02 09:50:19 -0500130 timeoutSeconds: {{ .Values.liveness.timeoutSeconds }}
Mandeep Khinda51a8b1b2018-04-24 20:05:32 +0000131 {{ end }}
132 readinessProbe:
133 exec:
134 command:
MichaelMorrisb137f7e2020-03-15 17:44:48 +0000135 - "/var/lib/jetty/ready-probe.sh"
Mandeep Khinda51a8b1b2018-04-24 20:05:32 +0000136 initialDelaySeconds: {{ .Values.readiness.initialDelaySeconds }}
137 periodSeconds: {{ .Values.readiness.periodSeconds }}
Brian Freeman6142d942019-10-02 09:50:19 -0500138 timeoutSeconds: {{ .Values.liveness.timeoutSeconds }}
ChrisC32172342020-10-02 16:39:13 +0200139 resources: {{ include "common.resources" . | nindent 12 }}
Mandeep Khinda51a8b1b2018-04-24 20:05:32 +0000140 env:
141 - name: ENVNAME
ChrisC742a7b22020-09-04 11:29:57 +0200142 value: {{ .Values.env.name }}
Mandeep Khinda51a8b1b2018-04-24 20:05:32 +0000143 - name: JAVA_OPTIONS
144 value: {{ .Values.config.javaOptions }}
145 - name: SDC_CLUSTER_NAME
ChrisC742a7b22020-09-04 11:29:57 +0200146 value: "SDC-CS-{{ .Values.env.name }}"
Mandeep Khinda51a8b1b2018-04-24 20:05:32 +0000147 - name: cassandra_ssl_enabled
148 value: {{ .Values.config.cassandraSslEnabled | quote }}
149 - name: HOST_IP
150 valueFrom:
151 fieldRef:
152 fieldPath: status.podIP
153 - name: SDC_USER
154 valueFrom:
Krzysztof Opasiak137d7cc2020-01-24 23:49:11 +0100155 secretKeyRef: {name: {{ include "common.release" . }}-sdc-cs-secrets, key: sdc_user}
Mandeep Khinda51a8b1b2018-04-24 20:05:32 +0000156 - name: SDC_PASSWORD
157 valueFrom:
Krzysztof Opasiak137d7cc2020-01-24 23:49:11 +0100158 secretKeyRef: {name: {{ include "common.release" . }}-sdc-cs-secrets, key: sdc_password}
kooper543d3aa2019-05-02 10:27:15 +0000159 - name: SDC_CERT_DIR
160 value: {{ .Values.cert.certDir }}
Mandeep Khinda51a8b1b2018-04-24 20:05:32 +0000161 volumeMounts:
k.kedron2774ab12020-03-26 11:13:46 +0100162 - name: sdc-environments-output
MichaelMorrisb137f7e2020-03-15 17:44:48 +0000163 mountPath: /var/lib/jetty/chef-solo/environments/
ChrisC742a7b22020-09-04 11:29:57 +0200164 - name: sdc-environments-output
k.kedron2774ab12020-03-26 11:13:46 +0100165 mountPath: /var/lib/jetty/chef-solo/cookbooks/sdc-onboard-backend/files/default/org.onap.sdc.p12
166 subPath: org.onap.sdc.p12
ChrisC742a7b22020-09-04 11:29:57 +0200167 - name: sdc-environments-output
k.kedron2774ab12020-03-26 11:13:46 +0100168 mountPath: /var/lib/jetty/chef-solo/cookbooks/sdc-onboard-backend/files/default/org.onap.sdc.trust.jks
169 subPath: org.onap.sdc.trust.jks
Mandeep Khinda51a8b1b2018-04-24 20:05:32 +0000170 - name: {{ include "common.fullname" . }}-localtime
171 mountPath: /etc/localtime
172 readOnly: true
173 - name: {{ include "common.fullname" . }}-logs
174 mountPath: /var/log/onap
sebdete33ecd12020-11-04 18:22:19 +0100175 - name: {{ include "common.fullname" . }}-cert-storage
176 mountPath: "{{ .Values.cert.certDir }}"
Mandeep Khinda51a8b1b2018-04-24 20:05:32 +0000177 - name: {{ include "common.fullname" . }}-logback
178 mountPath: /tmp/logback.xml
179 subPath: logback.xml
180 lifecycle:
181 postStart:
182 exec:
183 command: ["/bin/sh", "-c", "export LOG=wait_logback.log; touch $LOG; export SRC=/tmp/logback.xml; export DST=/var/lib/jetty/config/onboarding-be/; while [ ! -e $DST ]; do echo 'Waiting for $DST...' >> $LOG; sleep 5; done; sleep 2; /bin/cp -f $SRC $DST; echo 'Done' >> $LOG"]
Mandeep Khinda51a8b1b2018-04-24 20:05:32 +0000184 # side car containers
185 - name: {{ include "common.name" . }}-filebeat-onap
186 image: "{{ .Values.global.loggingRepository }}/{{ .Values.global.loggingImage }}"
187 imagePullPolicy: {{ .Values.global.pullPolicy | default .Values.pullPolicy }}
188 volumeMounts:
189 - name: {{ include "common.fullname" . }}-filebeat-conf
190 mountPath: /usr/share/filebeat/filebeat.yml
191 subPath: filebeat.yml
192 - name: {{ include "common.fullname" . }}-logs
193 mountPath: /var/log/onap
194 - name: {{ include "common.fullname" . }}-data-filebeat
195 mountPath: /usr/share/filebeat/data
ChrisC32172342020-10-02 16:39:13 +0200196 resources:
197 limits:
198 cpu: 100m
199 memory: 100Mi
200 requests:
201 cpu: 3m
202 memory: 20Mi
ChrisC742a7b22020-09-04 11:29:57 +0200203 volumes: {{ include "common.certInitializer.volumes" . | nindent 6 }}
Mandeep Khinda51a8b1b2018-04-24 20:05:32 +0000204 - name: {{ include "common.fullname" . }}-localtime
205 hostPath:
206 path: /etc/localtime
207 - name: {{ include "common.fullname" . }}-filebeat-conf
208 configMap:
Krzysztof Opasiak137d7cc2020-01-24 23:49:11 +0100209 name: {{ include "common.release" . }}-sdc-filebeat-configmap
Mandeep Khinda51a8b1b2018-04-24 20:05:32 +0000210 - name: {{ include "common.fullname" . }}-data-filebeat
211 emptyDir: {}
212 - name: {{ include "common.fullname" . }}-logback
213 configMap:
214 name : {{ include "common.fullname" . }}-logging-configmap
215 - name: {{ include "common.fullname" . }}-environments
216 configMap:
Krzysztof Opasiak137d7cc2020-01-24 23:49:11 +0100217 name: {{ include "common.release" . }}-sdc-environments-configmap
Mandeep Khinda51a8b1b2018-04-24 20:05:32 +0000218 defaultMode: 0755
k.kedron2774ab12020-03-26 11:13:46 +0100219 - name: sdc-environments-output
220 emptyDir: { medium: "Memory" }
Mandeep Khinda51a8b1b2018-04-24 20:05:32 +0000221 - name: {{ include "common.fullname" . }}-logs
222 emptyDir: {}
sebdete33ecd12020-11-04 18:22:19 +0100223 - name: {{ include "common.fullname" . }}-cert-storage
224 persistentVolumeClaim:
225 claimName: {{ include "common.fullname" . }}-cert
Mandeep Khinda51a8b1b2018-04-24 20:05:32 +0000226 imagePullSecrets:
toshrajbhardwajf4fc1c62018-08-06 07:35:14 +0000227 - name: "{{ include "common.namespace" . }}-docker-registry-key"