Sylvain Desbureaux | 7007041 | 2020-11-09 21:58:48 +0100 | [diff] [blame] | 1 | # Copyright © 2018 Amdocs, Bell Canada, AT&T |
Sylvain Desbureaux | 5b65132 | 2020-12-07 15:34:15 +0100 | [diff] [blame] | 2 | # Modifications Copyright © 2020 Orange |
Sylvain Desbureaux | 7007041 | 2020-11-09 21:58:48 +0100 | [diff] [blame] | 3 | # |
| 4 | # Licensed under the Apache License, Version 2.0 (the "License"); |
| 5 | # you may not use this file except in compliance with the License. |
| 6 | # You may obtain a copy of the License at |
| 7 | # |
| 8 | # http://www.apache.org/licenses/LICENSE-2.0 |
| 9 | # |
| 10 | # Unless required by applicable law or agreed to in writing, software |
| 11 | # distributed under the License is distributed on an "AS IS" BASIS, |
| 12 | # WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. |
| 13 | # See the License for the specific language governing permissions and |
| 14 | # limitations under the License. |
| 15 | |
| 16 | # Default values for resources. |
| 17 | # This is a YAML-formatted file. |
| 18 | # Declare variables to be passed into your templates. |
| 19 | global: # global defaults |
| 20 | nodePortPrefix: 302 |
| 21 | |
Sylvain Desbureaux | 5b65132 | 2020-12-07 15:34:15 +0100 | [diff] [blame] | 22 | # Common configuration for resources traversal and graphadmin |
| 23 | config: |
| 24 | # Specifies if the basic authorization is enabled |
| 25 | basic: |
| 26 | auth: |
| 27 | enabled: true |
| 28 | username: AAI |
| 29 | passwd: AAI |
| 30 | |
| 31 | # Schema specific properties that include supported versions of api |
| 32 | schema: |
| 33 | source: |
| 34 | # Specifies which folder to take a look at |
| 35 | name: onap |
| 36 | uri: |
| 37 | # Base URI Path of the application |
| 38 | base: |
| 39 | path: /aai |
| 40 | version: |
| 41 | # Current version of the REST API |
| 42 | api: |
wr148d | 77086d7 | 2021-08-27 16:15:36 -0400 | [diff] [blame] | 43 | default: v24 |
Sylvain Desbureaux | 5b65132 | 2020-12-07 15:34:15 +0100 | [diff] [blame] | 44 | # Specifies which version the depth parameter is configurable |
| 45 | depth: v11 |
| 46 | # List of all the supported versions of the API |
wr148d | 77086d7 | 2021-08-27 16:15:36 -0400 | [diff] [blame] | 47 | list: v11,v12,v13,v14,v15,v16,v17,v18,v19,v20,v21,v22,v23,v24 |
Sylvain Desbureaux | 5b65132 | 2020-12-07 15:34:15 +0100 | [diff] [blame] | 48 | # Specifies from which version related link should appear |
| 49 | related: |
| 50 | link: v11 |
| 51 | # Specifies from which version the app root change happened |
| 52 | app: |
| 53 | root: v11 |
| 54 | # Specifies from which version the xml namespace changed |
| 55 | namespace: |
| 56 | change: v12 |
| 57 | # Specifies from which version the edge label appeared in API |
| 58 | edge: |
| 59 | label: v12 |
| 60 | |
Sylvain Desbureaux | c57b58d | 2021-02-23 18:07:34 +0100 | [diff] [blame^] | 61 | ################################################################# |
| 62 | # Certificate configuration |
| 63 | ################################################################# |
| 64 | certInitializer: |
| 65 | nameOverride: aai-schema-service-cert-initializer |
| 66 | aafDeployFqi: deployer@people.osaaf.org |
| 67 | aafDeployPass: demo123456! |
| 68 | # aafDeployCredsExternalSecret: some secret |
| 69 | fqdn: aai-schema-service |
| 70 | fqi: aai-schema-service@aai-schema-service.onap.org |
| 71 | public_fqdn: aai-schema-service.onap.org |
| 72 | cadi_longitude: "0.0" |
| 73 | cadi_latitude: "0.0" |
| 74 | app_ns: org.osaaf.aaf |
| 75 | credsPath: /opt/app/osaaf/local |
| 76 | fqi_namespace: org.onap.aai-schema-service |
| 77 | user_id: &user_id 1000 |
| 78 | group_id: &group_id 1000 |
| 79 | aaf_add_config: | |
| 80 | echo "*** changing them into shell safe ones" |
| 81 | export KEYSTORE_PLAIN_PASSWORD=$(tr -cd '[:alnum:]' < /dev/urandom | fold -w64 | head -n1) |
| 82 | export TRUSTSTORE_PLAIN_PASSWORD=$(tr -cd '[:alnum:]' < /dev/urandom | fold -w64 | head -n1) |
| 83 | cd {{ .Values.credsPath }} |
| 84 | keytool -storepasswd -new "${KEYSTORE_PLAIN_PASSWORD}" \ |
| 85 | -storepass "${cadi_keystore_password_p12}" \ |
| 86 | -keystore {{ .Values.fqi_namespace }}.p12 |
| 87 | keytool -storepasswd -new "${TRUSTSTORE_PLAIN_PASSWORD}" \ |
| 88 | -storepass "${cadi_truststore_password}" \ |
| 89 | -keystore {{ .Values.fqi_namespace }}.trust.jks |
| 90 | echo "*** writing passwords into prop file" |
| 91 | echo "KEYSTORE_PLAIN_PASSWORD=${KEYSTORE_PLAIN_PASSWORD}" > {{ .Values.credsPath }}/mycreds.prop |
| 92 | echo "TRUSTSTORE_PLAIN_PASSWORD=${TRUSTSTORE_PLAIN_PASSWORD}" >> {{ .Values.credsPath }}/mycreds.prop |
| 93 | echo "*** change ownership of certificates to targeted user" |
| 94 | chown -R {{ .Values.user_id }}:{{ .Values.group_id }} {{ .Values.credsPath }} |
Sylvain Desbureaux | 5b65132 | 2020-12-07 15:34:15 +0100 | [diff] [blame] | 95 | |
Sylvain Desbureaux | 7007041 | 2020-11-09 21:58:48 +0100 | [diff] [blame] | 96 | # application image |
wr148d | cd32d1b | 2021-09-22 15:56:59 -0400 | [diff] [blame] | 97 | image: onap/aai-schema-service:1.9.2 |
Sylvain Desbureaux | 7007041 | 2020-11-09 21:58:48 +0100 | [diff] [blame] | 98 | pullPolicy: Always |
| 99 | restartPolicy: Always |
| 100 | flavorOverride: small |
| 101 | # default number of instances |
| 102 | replicaCount: 1 |
| 103 | |
| 104 | nodeSelector: {} |
| 105 | |
| 106 | affinity: {} |
| 107 | |
| 108 | # probe configuration parameters |
| 109 | liveness: |
| 110 | initialDelaySeconds: 60 |
| 111 | periodSeconds: 60 |
| 112 | # necessary to disable liveness probe when setting breakpoints |
| 113 | # in debugger so K8s doesn't restart unresponsive container |
| 114 | enabled: false |
| 115 | |
| 116 | readiness: |
| 117 | initialDelaySeconds: 60 |
| 118 | periodSeconds: 10 |
| 119 | |
| 120 | service: |
| 121 | type: ClusterIP |
osk11461 | 27fd7d8 | 2021-06-18 00:51:17 +0200 | [diff] [blame] | 122 | portName: http |
Sylvain Desbureaux | 7007041 | 2020-11-09 21:58:48 +0100 | [diff] [blame] | 123 | internalPort: 8452 |
osk11461 | 27fd7d8 | 2021-06-18 00:51:17 +0200 | [diff] [blame] | 124 | portName2: tcp-5005 |
Sylvain Desbureaux | 7007041 | 2020-11-09 21:58:48 +0100 | [diff] [blame] | 125 | internalPort2: 5005 |
| 126 | |
| 127 | ingress: |
| 128 | enabled: false |
| 129 | |
| 130 | # We usually recommend not to specify default resources and to leave this as a conscious |
| 131 | # choice for the user. This also increases chances charts run on environments with little |
| 132 | # resources, such as Minikube. If you do want to specify resources, uncomment the following |
| 133 | # lines, adjust them as necessary, and remove the curly braces after 'resources:'. |
| 134 | # |
| 135 | # Example: |
| 136 | # Configure resource requests and limits |
| 137 | # ref: http://kubernetes.io/docs/user-guide/compute-resources/ |
| 138 | # Minimum memory for development is 2 CPU cores and 4GB memory |
| 139 | # Minimum memory for production is 4 CPU cores and 8GB memory |
| 140 | #resources: |
| 141 | # limits: |
| 142 | # cpu: 2 |
| 143 | # memory: 4Gi |
| 144 | # requests: |
| 145 | # cpu: 2 |
| 146 | # memory: 4Gi |
| 147 | resources: |
| 148 | small: |
| 149 | limits: |
| 150 | cpu: 2 |
| 151 | memory: 4Gi |
| 152 | requests: |
| 153 | cpu: 1 |
| 154 | memory: 3Gi |
| 155 | large: |
| 156 | limits: |
| 157 | cpu: 4 |
| 158 | memory: 8Gi |
| 159 | requests: |
| 160 | cpu: 2 |
| 161 | memory: 4Gi |
| 162 | unlimited: {} |
farida azmy | d893733 | 2021-03-09 12:20:42 +0200 | [diff] [blame] | 163 | |
| 164 | #Pods Service Account |
| 165 | serviceAccount: |
| 166 | nameOverride: aai-schema-service |
| 167 | roles: |
| 168 | - read |
Maciej Wereski | d523d12 | 2021-09-21 11:22:13 +0200 | [diff] [blame] | 169 | |
Sylvain Desbureaux | c57b58d | 2021-02-23 18:07:34 +0100 | [diff] [blame^] | 170 | # Not fully used for now |
| 171 | securityContext: |
| 172 | user_id: *user_id |
| 173 | group_id: *group_id |
| 174 | |
Maciej Wereski | d523d12 | 2021-09-21 11:22:13 +0200 | [diff] [blame] | 175 | #Log configuration |
| 176 | log: |
| 177 | path: /var/log/onap |
| 178 | logConfigMapNamePrefix: '{{ include "common.fullname" . }}' |