| Jakub Latusek | 67f4e8d | 2020-10-21 13:36:29 +0200 | [diff] [blame] | 1 | {{/* |
| pramod | ad6382f | 2018-03-28 22:32:00 +0000 | [diff] [blame] | 2 | # Copyright © 2017 Amdocs, Bell Canada |
| Durgpal | 7ad4069 | 2018-08-03 07:28:36 +0000 | [diff] [blame] | 3 | # Modifications Copyright © 2018 AT&T |
| efiacor | fe8f8c9 | 2022-03-15 15:36:48 +0000 | [diff] [blame] | 4 | # Modifications Copyright © 2021-2022 Nordix Foundation |
| pramod | ad6382f | 2018-03-28 22:32:00 +0000 | [diff] [blame] | 5 | # |
| 6 | # Licensed under the Apache License, Version 2.0 (the "License"); |
| 7 | # you may not use this file except in compliance with the License. |
| 8 | # You may obtain a copy of the License at |
| 9 | # |
| 10 | # http://www.apache.org/licenses/LICENSE-2.0 |
| 11 | # |
| 12 | # Unless required by applicable law or agreed to in writing, software |
| 13 | # distributed under the License is distributed on an "AS IS" BASIS, |
| 14 | # WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. |
| 15 | # See the License for the specific language governing permissions and |
| 16 | # limitations under the License. |
| Jakub Latusek | 67f4e8d | 2020-10-21 13:36:29 +0200 | [diff] [blame] | 17 | */}} |
| Sylvain Desbureaux | be72888 | 2020-03-06 08:58:23 +0100 | [diff] [blame] | 18 | |
| 19 | apiVersion: apps/v1 |
| sunil unnava | b96a391 | 2018-12-06 09:50:39 -0500 | [diff] [blame] | 20 | kind: StatefulSet |
| Sylvain Desbureaux | be72888 | 2020-03-06 08:58:23 +0100 | [diff] [blame] | 21 | metadata: {{- include "common.resourceMetadata" . | nindent 2 }} |
| pramod | ad6382f | 2018-03-28 22:32:00 +0000 | [diff] [blame] | 22 | spec: |
| Sylvain Desbureaux | be72888 | 2020-03-06 08:58:23 +0100 | [diff] [blame] | 23 | selector: {{- include "common.selectors" . | nindent 4 }} |
| 24 | serviceName: {{ include "common.servicename" . }} |
| efiacor | 2123fec | 2022-12-09 13:40:55 +0000 | [diff] [blame] | 25 | replicas: 1 |
| pramod | ad6382f | 2018-03-28 22:32:00 +0000 | [diff] [blame] | 26 | template: |
| Sylvain Desbureaux | be72888 | 2020-03-06 08:58:23 +0100 | [diff] [blame] | 27 | metadata: {{- include "common.templateMetadata" . | nindent 6 }} |
| pramod | ad6382f | 2018-03-28 22:32:00 +0000 | [diff] [blame] | 28 | spec: |
| pramod | ad6382f | 2018-03-28 22:32:00 +0000 | [diff] [blame] | 29 | containers: |
| 30 | - name: {{ include "common.name" . }} |
| Sylvain Desbureaux | 6b09654 | 2020-11-21 22:51:24 +0100 | [diff] [blame] | 31 | image: {{ include "repositoryGenerator.repository" . }}/{{ .Values.image }} |
| pramod | ad6382f | 2018-03-28 22:32:00 +0000 | [diff] [blame] | 32 | imagePullPolicy: {{ .Values.global.pullPolicy | default .Values.pullPolicy }} |
| Sylvain Desbureaux | be72888 | 2020-03-06 08:58:23 +0100 | [diff] [blame] | 33 | ports: {{ include "common.containerPorts" . | nindent 10 }} |
| pramod | ad6382f | 2018-03-28 22:32:00 +0000 | [diff] [blame] | 34 | {{- if eq .Values.liveness.enabled true }} |
| 35 | livenessProbe: |
| 36 | tcpSocket: |
| Sylvain Desbureaux | be72888 | 2020-03-06 08:58:23 +0100 | [diff] [blame] | 37 | port: {{ .Values.liveness.port }} |
| pramod | ad6382f | 2018-03-28 22:32:00 +0000 | [diff] [blame] | 38 | initialDelaySeconds: {{ .Values.liveness.initialDelaySeconds }} |
| 39 | periodSeconds: {{ .Values.liveness.periodSeconds }} |
| su622b | 8b763cd | 2019-10-14 15:37:37 -0400 | [diff] [blame] | 40 | timeoutSeconds: {{ .Values.liveness.timeoutSeconds }} |
| Sylvain Desbureaux | 8fade99 | 2021-12-06 11:33:11 +0100 | [diff] [blame] | 41 | successThreshold: {{ .Values.liveness.successThreshold }} |
| 42 | failureThreshold: {{ .Values.liveness.failureThreshold }} |
| 43 | {{ end }} |
| pramod | ad6382f | 2018-03-28 22:32:00 +0000 | [diff] [blame] | 44 | readinessProbe: |
| 45 | tcpSocket: |
| Sylvain Desbureaux | be72888 | 2020-03-06 08:58:23 +0100 | [diff] [blame] | 46 | port: {{ .Values.readiness.port }} |
| pramod | ad6382f | 2018-03-28 22:32:00 +0000 | [diff] [blame] | 47 | initialDelaySeconds: {{ .Values.readiness.initialDelaySeconds }} |
| 48 | periodSeconds: {{ .Values.readiness.periodSeconds }} |
| su622b | 8b763cd | 2019-10-14 15:37:37 -0400 | [diff] [blame] | 49 | timeoutSeconds: {{ .Values.readiness.timeoutSeconds }} |
| Sylvain Desbureaux | 8fade99 | 2021-12-06 11:33:11 +0100 | [diff] [blame] | 50 | successThreshold: {{ .Values.readiness.successThreshold }} |
| 51 | failureThreshold: {{ .Values.readiness.failureThreshold }} |
| 52 | startupProbe: |
| 53 | tcpSocket: |
| 54 | port: {{ .Values.startup.port }} |
| 55 | initialDelaySeconds: {{ .Values.startup.initialDelaySeconds }} |
| 56 | periodSeconds: {{ .Values.startup.periodSeconds }} |
| 57 | timeoutSeconds: {{ .Values.startup.timeoutSeconds }} |
| 58 | successThreshold: {{ .Values.startup.successThreshold }} |
| 59 | failureThreshold: {{ .Values.startup.failureThreshold }} |
| sunil unnava | 49aa92d | 2018-10-17 16:25:50 -0400 | [diff] [blame] | 60 | env: |
| efiacor | fe8f8c9 | 2022-03-15 15:36:48 +0000 | [diff] [blame] | 61 | - name: JAASLOGIN |
| efiacor | 2123fec | 2022-12-09 13:40:55 +0000 | [diff] [blame] | 62 | valueFrom: |
| 63 | secretKeyRef: |
| 64 | name: strimzi-kafka-admin |
| 65 | key: sasl.jaas.config |
| efiacor | fe8f8c9 | 2022-03-15 15:36:48 +0000 | [diff] [blame] | 66 | - name: SASLMECH |
| efiacor | 57901a9 | 2022-11-14 16:17:15 +0000 | [diff] [blame] | 67 | value: scram-sha-512 |
| sunil unnava | 49aa92d | 2018-10-17 16:25:50 -0400 | [diff] [blame] | 68 | - name: enableCadi |
| efiacor | 2123fec | 2022-12-09 13:40:55 +0000 | [diff] [blame] | 69 | value: "true" |
| efiacor | b66260d | 2022-09-26 10:28:43 +0100 | [diff] [blame] | 70 | - name: useZkTopicStore |
| 71 | value: "false" |
| efiacor | 2123fec | 2022-12-09 13:40:55 +0000 | [diff] [blame] | 72 | volumeMounts: |
| 73 | - mountPath: /etc/localtime |
| 74 | name: localtime |
| 75 | readOnly: true |
| 76 | - mountPath: /appl/dmaapMR1/bundleconfig/etc/appprops/MsgRtrApi.properties |
| 77 | subPath: MsgRtrApi.properties |
| 78 | name: appprops |
| 79 | - mountPath: /appl/dmaapMR1/bundleconfig/etc/logback.xml |
| 80 | subPath: logback.xml |
| 81 | name: logback |
| 82 | resources: |
| 83 | {{ include "common.resources" . }} |
| 84 | - name: {{ .Values.zkTunnelService.name }} |
| 85 | image: {{ include "repositoryGenerator.dockerHubRepository" . }}/{{ .Values.zkTunnelService.image }} |
| 86 | imagePullPolicy: {{ .Values.global.pullPolicy | default .Values.pullPolicy }} |
| 87 | command: |
| 88 | - /opt/stunnel/stunnel_run.sh |
| 89 | ports: |
| 90 | - containerPort: {{ .Values.zkTunnelService.internalPort }} |
| 91 | name: {{ .Values.zkTunnelService.portName }} |
| 92 | protocol: {{ .Values.zkTunnelService.protocol }} |
| 93 | env: |
| 94 | - name: LOG_LEVEL |
| 95 | value: {{ .Values.zkTunnelService.logLevel }} |
| 96 | - name: STRIMZI_ZOOKEEPER_CONNECT |
| 97 | value: '{{ include "common.release" . }}-strimzi-zookeeper-client:{{ .Values.zkTunnelService.internalPort }}' |
| 98 | livenessProbe: |
| 99 | exec: |
| 100 | command: |
| 101 | - /opt/stunnel/stunnel_healthcheck.sh |
| 102 | - '{{ .Values.zkTunnelService.internalPort }}' |
| 103 | failureThreshold: 3 |
| 104 | initialDelaySeconds: 15 |
| 105 | periodSeconds: 10 |
| 106 | successThreshold: 1 |
| 107 | timeoutSeconds: 5 |
| 108 | readinessProbe: |
| 109 | exec: |
| 110 | command: |
| 111 | - /opt/stunnel/stunnel_healthcheck.sh |
| 112 | - '{{ .Values.zkTunnelService.internalPort }}' |
| 113 | failureThreshold: 3 |
| 114 | initialDelaySeconds: 15 |
| 115 | periodSeconds: 10 |
| 116 | successThreshold: 1 |
| 117 | timeoutSeconds: 5 |
| 118 | volumeMounts: |
| 119 | - mountPath: /etc/cluster-operator-certs/ |
| 120 | name: cluster-operator-certs |
| 121 | - mountPath: /etc/cluster-ca-certs/ |
| 122 | name: cluster-ca-certs |
| farida azmy | 13388ba | 2021-03-17 11:33:28 +0200 | [diff] [blame] | 123 | serviceAccountName: {{ include "common.fullname" (dict "suffix" "read" "dot" . )}} |
| efiacor | 2123fec | 2022-12-09 13:40:55 +0000 | [diff] [blame] | 124 | volumes: |
| pramod | ad6382f | 2018-03-28 22:32:00 +0000 | [diff] [blame] | 125 | - name: localtime |
| 126 | hostPath: |
| 127 | path: /etc/localtime |
| 128 | - name: appprops |
| 129 | configMap: |
| 130 | name: {{ include "common.fullname" . }}-msgrtrapi-prop-configmap |
| su622b | fdce659 | 2019-08-08 00:28:29 -0400 | [diff] [blame] | 131 | - name: logback |
| 132 | configMap: |
| 133 | name: {{ include "common.fullname" . }}-logback-xml-configmap |
| efiacor | fe8f8c9 | 2022-03-15 15:36:48 +0000 | [diff] [blame] | 134 | - name: cluster-operator-certs |
| 135 | secret: |
| 136 | defaultMode: 288 |
| 137 | secretName: {{ include "common.release" . }}-strimzi-cluster-operator-certs |
| 138 | - name: cluster-ca-certs |
| 139 | secret: |
| 140 | defaultMode: 288 |
| 141 | secretName: {{ include "common.release" . }}-strimzi-cluster-ca-cert |
| pramod | ad6382f | 2018-03-28 22:32:00 +0000 | [diff] [blame] | 142 | imagePullSecrets: |
| 143 | - name: "{{ include "common.namespace" . }}-docker-registry-key" |
| efiacor | fe8f8c9 | 2022-03-15 15:36:48 +0000 | [diff] [blame] | 144 | --- |
| 145 | apiVersion: networking.k8s.io/v1 |
| 146 | kind: NetworkPolicy |
| 147 | metadata: |
| 148 | name: {{ include "common.fullname" . }}-zk-network-policy |
| 149 | namespace: {{ include "common.namespace" . }} |
| 150 | spec: |
| 151 | podSelector: |
| 152 | matchLabels: |
| 153 | strimzi.io/name: {{ include "common.release" . }}-strimzi-zookeeper |
| 154 | ingress: |
| 155 | - from: |
| 156 | - podSelector: |
| 157 | matchLabels: |
| 158 | app.kubernetes.io/name: {{ include "common.name" . }} |
| 159 | ports: |
| efiacor | 2123fec | 2022-12-09 13:40:55 +0000 | [diff] [blame] | 160 | - port: {{ .Values.zkTunnelService.internalPort }} |
| 161 | protocol: {{ .Values.zkTunnelService.protocol }} |
| efiacor | fe8f8c9 | 2022-03-15 15:36:48 +0000 | [diff] [blame] | 162 | policyTypes: |
| Andreas Geissler | e7d5687 | 2022-06-22 11:23:11 +0200 | [diff] [blame] | 163 | - Ingress |