Blame - kubernetes/policy/components/policy-xacml-pdp/values.yaml - onap/oom

blob: c9a5a068fbe52c8cb01adf5292e59778e49601a5 [file] [log] [blame]

Michael Mokry	afae997	2019-03-11 14:46:34 -0500	[diff] [blame]	1	# ============LICENSE_START=======================================================
jhh	999c224	2021-02-24 12:10:02 -0600	[diff] [blame]	2	# Copyright (C) 2019-2021 AT&T Intellectual Property. All rights reserved.
Michael Mokry	afae997	2019-03-11 14:46:34 -0500	[diff] [blame]	3	# ================================================================================
				4	# Licensed under the Apache License, Version 2.0 (the "License");
				5	# you may not use this file except in compliance with the License.
				6	# You may obtain a copy of the License at
				7	#
				8	# http://www.apache.org/licenses/LICENSE-2.0
				9	#
				10	# Unless required by applicable law or agreed to in writing, software
				11	# distributed under the License is distributed on an "AS IS" BASIS,
				12	# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
				13	# See the License for the specific language governing permissions and
				14	# limitations under the License.
				15	#
				16	# SPDX-License-Identifier: Apache-2.0
				17	# ============LICENSE_END=========================================================
				18
				19	#################################################################
				20	# Global configuration defaults.
				21	#################################################################
				22	global:
				23	persistence: {}
				24
				25	#################################################################
Krzysztof Opasiak	7e31efc	2020-04-01 00:21:45 +0200	[diff] [blame]	26	# Secrets metaconfig
				27	#################################################################
				28	secrets:
				29	- uid: db-secret
				30	type: basicAuth
				31	externalSecret: '{{ tpl (default "" .Values.db.credsExternalSecret) . }}'
				32	login: '{{ .Values.db.user }}'
				33	password: '{{ .Values.db.password }}'
				34	passwordPolicy: required
Dominik Mizyn	c88bcc9	2020-04-14 18:20:20 +0200	[diff] [blame]	35	- uid: restserver-creds
				36	type: basicAuth
				37	externalSecret: '{{ tpl (default "" .Values.restServer.credsExternalSecret) . }}'
				38	login: '{{ .Values.restServer.user }}'
				39	password: '{{ .Values.restServer.password }}'
				40	passwordPolicy: required
				41	- uid: api-creds
				42	type: basicAuth
				43	externalSecret: '{{ tpl (default "" .Values.apiServer.credsExternalSecret) . }}'
				44	login: '{{ .Values.apiServer.user }}'
				45	password: '{{ .Values.apiServer.password }}'
				46	passwordPolicy: required
Krzysztof Opasiak	7e31efc	2020-04-01 00:21:45 +0200	[diff] [blame]	47
				48	#################################################################
Michael Mokry	afae997	2019-03-11 14:46:34 -0500	[diff] [blame]	49	# Application configuration defaults.
				50	#################################################################
				51	# application image
saul.gill	82b27e6	2024-04-26 12:45:10 +0100	[diff] [blame]	52	image: onap/policy-xacml-pdp:3.1.2
Michael Mokry	afae997	2019-03-11 14:46:34 -0500	[diff] [blame]	53	pullPolicy: Always
				54
rameshiyer27	bc8a6a4	2024-03-11 17:18:11 +0000	[diff] [blame]	55	componentName: &componentName policy-xacml-pdp
				56
Michael Mokry	afae997	2019-03-11 14:46:34 -0500	[diff] [blame]	57	# flag to enable debugging - application support required
				58	debugEnabled: false
				59
				60	# application configuration
				61
Krzysztof Opasiak	7e31efc	2020-04-01 00:21:45 +0200	[diff] [blame]	62	db:
Andreas Geissler	cfd8434	2023-08-16 17:18:49 +0200	[diff] [blame]	63	user: policy-user
Krzysztof Opasiak	7e31efc	2020-04-01 00:21:45 +0200	[diff] [blame]	64	password: policy_user
jhh	d425867	2020-08-09 12:08:08 -0500	[diff] [blame]	65	service:
				66	name: policy-mariadb
				67	internalPort: 3306
				68
Dominik Mizyn	c88bcc9	2020-04-14 18:20:20 +0200	[diff] [blame]	69	restServer:
				70	user: healthcheck
				71	password: zb!XztG34
jhh	d425867	2020-08-09 12:08:08 -0500	[diff] [blame]	72
Dominik Mizyn	c88bcc9	2020-04-14 18:20:20 +0200	[diff] [blame]	73	apiServer:
adheli.tavares	f3656cd	2021-11-10 14:54:32 +0000	[diff] [blame]	74	user: policyadmin
Dominik Mizyn	c88bcc9	2020-04-14 18:20:20 +0200	[diff] [blame]	75	password: zb!XztG34
Krzysztof Opasiak	7e31efc	2020-04-01 00:21:45 +0200	[diff] [blame]	76
Michael Mokry	afae997	2019-03-11 14:46:34 -0500	[diff] [blame]	77	# default number of instances
ramverma	39a79a4	2019-05-02 13:07:36 +0000	[diff] [blame]	78	replicaCount: 1
Michael Mokry	afae997	2019-03-11 14:46:34 -0500	[diff] [blame]	79
				80	nodeSelector: {}
				81
				82	affinity: {}
				83
				84	# probe configuration parameters
				85	liveness:
				86	initialDelaySeconds: 20
				87	periodSeconds: 10
				88	# necessary to disable liveness probe when setting breakpoints
				89	# in debugger so K8s doesn't restart unresponsive container
				90	enabled: true
				91
				92	readiness:
				93	initialDelaySeconds: 20
				94	periodSeconds: 10
				95
				96	service:
				97	type: ClusterIP
rameshiyer27	bc8a6a4	2024-03-11 17:18:11 +0000	[diff] [blame]	98	name: *componentName
Michael Mokry	afae997	2019-03-11 14:46:34 -0500	[diff] [blame]	99	internalPort: 6969
Andreas Geissler	f10c555	2023-03-21 18:09:46 +0100	[diff] [blame]	100	ports:
				101	- name: http
				102	port: 6969
Michael Mokry	afae997	2019-03-11 14:46:34 -0500	[diff] [blame]	103
				104	ingress:
				105	enabled: false
				106
AndrewLamb	7ef78ae	2023-04-20 16:24:13 +0100	[diff] [blame]	107	serviceMesh:
				108	authorizationPolicy:
				109	authorizedPrincipals:
				110	- serviceAccount: dcae-datafile-collector-read
				111	- serviceAccount: dcae-datalake-admin-ui-read
				112	- serviceAccount: dcae-datalake-des-read
				113	- serviceAccount: dcae-datalake-feeder-read
				114	- serviceAccount: dcae-heartbeat-read
				115	- serviceAccount: dcae-hv-ves-collector-read
				116	- serviceAccount: dcae-kpi-ms-read
				117	- serviceAccount: dcae-pm-mapper-read
				118	- serviceAccount: dcae-pmsh-read
				119	- serviceAccount: dcae-prh-read
				120	- serviceAccount: dcae-restconf-collector-read
				121	- serviceAccount: dcae-slice-analysis-ms-read
				122	- serviceAccount: dcae-snmptrap-collector-read
				123	- serviceAccount: dcae-son-handler-read
				124	- serviceAccount: dcae-tcagen2-read
				125	- serviceAccount: dcae-ves-collector-read
				126	- serviceAccount: dcae-ves-mapper-read
				127	- serviceAccount: dcae-ves-openapi-manager-read
rameshiyer27	bc8a6a4	2024-03-11 17:18:11 +0000	[diff] [blame]	128	- serviceAccount: strimzi-kafka-read
AndrewLamb	7ef78ae	2023-04-20 16:24:13 +0100	[diff] [blame]	129	- serviceAccount: oof-read
				130	- serviceAccount: sdnc-read
				131
jhh	d425867	2020-08-09 12:08:08 -0500	[diff] [blame]	132	flavor: small
				133	resources:
				134	small:
				135	limits:
Andreas Geissler	4753743	2024-02-27 08:55:23 +0100	[diff] [blame]	136	cpu: "1"
				137	memory: "1Gi"
jhh	d425867	2020-08-09 12:08:08 -0500	[diff] [blame]	138	requests:
Andreas Geissler	4753743	2024-02-27 08:55:23 +0100	[diff] [blame]	139	cpu: "0.5"
				140	memory: "1Gi"
jhh	d425867	2020-08-09 12:08:08 -0500	[diff] [blame]	141	large:
				142	limits:
Andreas Geissler	4753743	2024-02-27 08:55:23 +0100	[diff] [blame]	143	cpu: "2"
				144	memory: "2Gi"
jhh	d425867	2020-08-09 12:08:08 -0500	[diff] [blame]	145	requests:
Andreas Geissler	4753743	2024-02-27 08:55:23 +0100	[diff] [blame]	146	cpu: "1"
				147	memory: "2Gi"
jhh	d425867	2020-08-09 12:08:08 -0500	[diff] [blame]	148	unlimited: {}
farida azmy	c117837	2021-04-11 12:55:33 +0200	[diff] [blame]	149
				150	#Pods Service Account
				151	serviceAccount:
rameshiyer27	bc8a6a4	2024-03-11 17:18:11 +0000	[diff] [blame]	152	nameOverride: *componentName
farida azmy	c117837	2021-04-11 12:55:33 +0200	[diff] [blame]	153	roles:
				154	- read
Rashmi Pujar	a8b0926	2022-03-15 21:58:57 -0400	[diff] [blame]	155
Rashmi Pujar	a8b0926	2022-03-15 21:58:57 -0400	[diff] [blame]	156	metrics:
				157	serviceMonitor:
				158	# Override the labels based on the Prometheus config parameter: serviceMonitorSelector.
				159	# The default operator for prometheus enforces the below label.
				160	labels:
				161	release: prometheus
				162	enabled: true
				163	port: policy-xacml-pdp
				164	interval: 60s
Andreas Geissler	f10c555	2023-03-21 18:09:46 +0100	[diff] [blame]	165	isHttps: false
Rashmi Pujar	a8b0926	2022-03-15 21:58:57 -0400	[diff] [blame]	166	basicAuth:
				167	enabled: true
				168	externalSecretNameSuffix: policy-xacml-pdp-restserver-creds
				169	externalSecretUserKey: login
				170	externalSecretPasswordKey: password
				171	selector:
				172	app: '{{ include "common.name" . }}'
				173	chart: '{{ .Chart.Name }}-{{ .Chart.Version \| replace "+" "_" }}'
				174	release: '{{ include "common.release" . }}'
				175	heritage: '{{ .Release.Service }}'
rameshiyer27	bc8a6a4	2024-03-11 17:18:11 +0000	[diff] [blame]	176
				177	config:
				178	# Event consumption (kafka) properties
				179	kafka:
				180	consumer:
				181	groupId: policy-xacml-pdp
				182	app:
				183	listener:
				184	policyPdpPapTopic: policy-pdp-pap
				185
				186	# Strimzi Kafka config
				187	kafkaUser:
				188	authenticationType: scram-sha-512
				189	acls:
				190	- name: policy-xacml-pdp
				191	type: group
				192	operations: [ Create, Describe, Read, Write ]
				193	- name: policy-pdp-pap
				194	type: topic
				195	patternType: prefix
				196	operations: [ Create, Describe, Read, Write ]
				197
				198