Gitiles
Code Review Sign In
gerrit.nordix.org / onap / oom / fa9bd70bd3e2b4e5ca8f070e9a5f6125fc7fc283 / . / kubernetes / vid / values.yaml
blob: aba010eb26ca25b09c8a1ee7c57c12990d4eaec4 [file] [log] [blame]
vaibhav_16dece04b2fe2018-03-22 09:07:12 +0000[diff] [blame]1# Copyright © 2017 Amdocs, Bell Canada
Krzysztof Opasiak4a4703b2020-02-08 01:04:48 +0100[diff] [blame]2# Copyright © 2020 Samsung Electronics
Sylvain Desbureauxcc3141d2021-02-08 15:59:33 +0100[diff] [blame]3# Copyright © 2021 Orange
vaibhav_16dece04b2fe2018-03-22 09:07:12 +0000[diff] [blame]4#
5# Licensed under the Apache License, Version 2.0 (the "License");
6# you may not use this file except in compliance with the License.
7# You may obtain a copy of the License at
8#
9# http://www.apache.org/licenses/LICENSE-2.0
10#
11# Unless required by applicable law or agreed to in writing, software
12# distributed under the License is distributed on an "AS IS" BASIS,
13# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
14# See the License for the specific language governing permissions and
15# limitations under the License.
16
Priyanka5fdca022018-03-13 12:53:06 +0000[diff] [blame]17# Default values for vid.
18# This is a YAML-formatted file.
19# Declare variables to be passed into your templates.
20global:
21 nodePortPrefix: 302
RPMishrae4ee7f12020-10-07 12:09:01 +0530[diff] [blame]22 mariadbGalera: &mariadbGalera
23 #This flag allows VID to instantiate its own mariadb-galera cluster
24 localCluster: false
25 service: mariadb-galera
26 internalPort: 3306
27 nameOverride: mariadb-galera
Maciej Wereskica5b1b52021-11-15 16:07:32 +0100[diff] [blame]28 centralizedLoggingEnabled: true
Priyanka5fdca022018-03-13 12:53:06 +0000[diff] [blame]29
Krzysztof Opasiak4a4703b2020-02-08 01:04:48 +0100[diff] [blame]30#################################################################
31# Secrets metaconfig
32#################################################################
33secrets:
34 - uid: vid-db-user-secret
Sylvain Desbureaux93a5b492020-11-27 11:07:42 +0100[diff] [blame]35 name: &dbUserSecretName '{{ include "common.release" . }}-vid-db-user-secret'
Krzysztof Opasiak4a4703b2020-02-08 01:04:48 +0100[diff] [blame]36 type: basicAuth
37 externalSecret: '{{ tpl (default "" .Values.config.db.userCredentialsExternalSecret) . }}'
38 login: '{{ .Values.config.db.userName }}'
39 password: '{{ .Values.config.db.userPassword }}'
40
Sylvain Desbureauxcc3141d2021-02-08 15:59:33 +0100[diff] [blame]41#################################################################
42# AAF part
43#################################################################
44certInitializer:
45 nameOverride: vid-cert-initializer
46 aafDeployFqi: deployer@people.osaaf.org
47 aafDeployPass: demo123456!
48 # aafDeployCredsExternalSecret: some secret
49 fqdn: vid
50 fqi: vid@vid.onap.org
51 public_fqdn: vid.onap.org
52 fqi_namespace: "org.onap.vid"
53 cadi_longitude: "0.0"
54 cadi_latitude: "0.0"
55 app_ns: org.osaaf.aaf
56 credsPath: /opt/app/osaaf/local
57 aaf_add_config: |
58 echo "*** retrieving password for keystore and trustore"
59 export $(/opt/app/aaf_config/bin/agent.sh local showpass \
60 {{.Values.fqi}} {{ .Values.fqdn }} | grep '^c' | xargs -0)
61 if [ -z "$cadi_keystore_password" ]
62 then
63 echo " /!\ certificates retrieval failed"
64 exit 1
65 else
66 echo "*** changing them into shell safe ones"
67 export KEYSTORE_PASSWD=$(tr -cd '[:alnum:]' < /dev/urandom | fold -w64 | head -n1)
Krzysztof Opasiakf4c61752021-03-18 11:08:36 +0100[diff] [blame]68 export TRUSTORE_PASSWD=$(tr -cd '[:alnum:]' < /dev/urandom | fold -w64 | head -n1)
Sylvain Desbureauxcc3141d2021-02-08 15:59:33 +0100[diff] [blame]69 cd {{ .Values.credsPath }}
70 keytool -storepasswd -new "${KEYSTORE_PASSWD}" \
71 -storepass "${cadi_keystore_password_jks}" \
72 -keystore {{ .Values.fqi_namespace }}.jks
73 keytool -storepasswd -new "${TRUSTORE_PASSWD}" \
74 -storepass "${cadi_truststore_password}" \
75 -keystore {{ .Values.fqi_namespace }}.trust.jks
76 echo "*** set key password as same password as keystore password"
77 keytool -keypasswd -new "${KEYSTORE_PASSWD}" \
78 -keystore {{ .Values.fqi_namespace }}.jks \
79 -keypass "${cadi_keystore_password_jks}" \
80 -storepass "${KEYSTORE_PASSWD}" -alias {{ .Values.fqi }}
81 echo "*** save the generated passwords"
82 echo "VID_KEYSTORE_PASSWORD=${KEYSTORE_PASSWD}" > mycreds.prop
Krzysztof Opasiakf4c61752021-03-18 11:08:36 +0100[diff] [blame]83 echo "VID_TRUSTSTORE_PASSWORD=${TRUSTORE_PASSWD}" >> mycreds.prop
Sylvain Desbureauxcc3141d2021-02-08 15:59:33 +0100[diff] [blame]84 echo "*** change ownership of certificates to targeted user"
85 chown -R 1000 .
86 fi
87
Priyanka5fdca022018-03-13 12:53:06 +0000[diff] [blame]88subChartsOnly:
89 enabled: true
90
91# application image
Ikramullah, Ikram4f88ec02021-03-10 10:14:02 -0500[diff] [blame]92image: onap/vid:8.0.2
yurynd0707be2017-09-27 14:54:18 +0300[diff] [blame]93pullPolicy: Always
Priyanka5fdca022018-03-13 12:53:06 +0000[diff] [blame]94
Priyanka5fdca022018-03-13 12:53:06 +0000[diff] [blame]95# application configuration
BorislavG5f3b6192018-03-25 18:12:38 +0300[diff] [blame]96config:
Krzysztof Opasiak4a4703b2020-02-08 01:04:48 +0100[diff] [blame]97 db:
98 userName: vidadmin
99# userCredentialsExternalSecret: some secret
100# userPassword: password
Priyanka5fdca022018-03-13 12:53:06 +0000[diff] [blame]101 asdcclientrestauth: "Basic dmlkOktwOGJKNFNYc3pNMFdYbGhhazNlSGxjc2UyZ0F3ODR2YW9HR21KdlV5MlU="
k.kedronc784bbd2019-09-05 18:28:16 +0200[diff] [blame]102 asdcclientrestport: "8443"
Priyanka5fdca022018-03-13 12:53:06 +0000[diff] [blame]103 vidaaiport: "8443"
Sonsino, Ofir (os0695)c9a6edf2018-10-18 11:26:03 +0300[diff] [blame]104 onapport: "30225"
105 onapportrest: "8443"
106 portalhost: "portal.api.simpledemo.onap.org"
Alexis de Talhouët6c9efc62018-09-20 11:54:03 -0400[diff] [blame]107 msoport: "8080"
Priyanka5fdca022018-03-13 12:53:06 +0000[diff] [blame]108 vidmsopass: OBF:1ih71i271vny1yf41ymf1ylz1yf21vn41hzj1icz
109 msodme2serverurl: http://localhost:8081
110 vidcontactuslink: https://todo_contact_us_link.com
Priyanka5fdca022018-03-13 12:53:06 +0000[diff] [blame]111 vidmysqlmaxconnections: "5"
BorislavG5f3b6192018-03-25 18:12:38 +0300[diff] [blame]112 logstashServiceName: log-ls
113 logstashPort: 5044
Sonsino, Ofir (os0695)c9a6edf2018-10-18 11:26:03 +0300[diff] [blame]114 roleaccesscentralized: remote
Priyanka5fdca022018-03-13 12:53:06 +0000[diff] [blame]115
Sylvain Desbureaux6383c442019-11-14 09:28:12 +0100[diff] [blame]116mariadb-galera:
Sylvain Desbureaux93a5b492020-11-27 11:07:42 +0100[diff] [blame]117 db:
Sylvain Desbureaux93a5b492020-11-27 11:07:42 +0100[diff] [blame]118 # password:
119 externalSecret: *dbUserSecretName
120 name: &mysqlDbName vid_openecomp_epsdk
121 nameOverride: &vid-galera vid-galera
Sylvain Desbureaux6383c442019-11-14 09:28:12 +0100[diff] [blame]122 replicaCount: 3
123 persistence:
124 enabled: true
125 mountSubPath: vid/maria/data
126 externalConfig: |-
Brian Freeman8a1d3142019-12-06 12:44:53 -0500[diff] [blame]127 [mysqld]
Sylvain Desbureaux6383c442019-11-14 09:28:12 +0100[diff] [blame]128 lower_case_table_names = 1
Sylvain Desbureaux93a5b492020-11-27 11:07:42 +0100[diff] [blame]129 serviceAccount:
130 nameOverride: *vid-galera
Priyanka5fdca022018-03-13 12:53:06 +0000[diff] [blame]131
RPMishrae4ee7f12020-10-07 12:09:01 +0530[diff] [blame]132mariadb-init:
Sylvain Desbureaux93a5b492020-11-27 11:07:42 +0100[diff] [blame]133 config:
134 userCredentialsExternalSecret: *dbUserSecretName
135 mysqlDatabase: *mysqlDbName
RPMishrae4ee7f12020-10-07 12:09:01 +0530[diff] [blame]136 nameOverride: vid-mariadb-init
137 # A configMap of same name is created. It points to file that will be run after
138 # The DB has been created.
139 dbScriptConfigMap: '{{ include "common.release" . }}-vid-db-init'
140
Priyanka5fdca022018-03-13 12:53:06 +0000[diff] [blame]141# default number of instances
142replicaCount: 1
143
144nodeSelector: {}
145
146affinity: {}
147
148# probe configuration parameters
149liveness:
Mandeep Khindacef0e3c2018-09-21 03:59:17 +0000[diff] [blame]150 initialDelaySeconds: 120
Priyanka5fdca022018-03-13 12:53:06 +0000[diff] [blame]151 periodSeconds: 10
152 # necessary to disable liveness probe when setting breakpoints
153 # in debugger so K8s doesn't restart unresponsive container
154 enabled: true
155
156readiness:
157 initialDelaySeconds: 10
158 periodSeconds: 10
159
160service:
161 type: NodePort
162 name: vid
BorislavG1ffbd992018-04-24 07:56:27 +0000[diff] [blame]163 portName: vid
Piotr Daroszd9dc2192018-09-10 10:40:26 +0200[diff] [blame]164 externalPort: 8443
Piotr Daroszaca7aa52018-08-29 14:27:02 +0200[diff] [blame]165 internalPort: 8443
Piotr Daroszd9dc2192018-09-10 10:40:26 +0200[diff] [blame]166 nodePort: "00"
Ittay Stern94094702019-08-04 14:00:22 +0300[diff] [blame]167 externalHttpPort: 8080
168 internalHttpPort: 8080
Priyanka5fdca022018-03-13 12:53:06 +0000[diff] [blame]169
170ingress:
171 enabled: false
Lucjan Bryndzaa9a362f2019-08-14 09:53:04 +0200[diff] [blame]172 service:
Sylvain Desbureauxab116a52020-11-19 17:27:59 +0100[diff] [blame]173 - baseaddr: "vid.api"
174 name: "vid-http"
175 port: 8443
Lucjan Bryndzaa9a362f2019-08-14 09:53:04 +0200[diff] [blame]176 config:
Sylvain Desbureauxab116a52020-11-19 17:27:59 +0100[diff] [blame]177 ssl: "redirect"
Priyanka5fdca022018-03-13 12:53:06 +0000[diff] [blame]178
Mandeep Khinda60d36d42018-09-24 15:15:48 +0000[diff] [blame]179# Resource Limit flavor -By Default using small
vaibhavjayasafb925d2018-09-19 09:33:41 +0000[diff] [blame]180flavor: small
181# Segregation for Different environment (Small and Large)
182resources:
183 small:
184 limits:
Mandeep Khindacef0e3c2018-09-21 03:59:17 +0000[diff] [blame]185 cpu: 200m
vaibhavjayasafb925d2018-09-19 09:33:41 +0000[diff] [blame]186 memory: 2Gi
187 requests:
Mandeep Khindacef0e3c2018-09-21 03:59:17 +0000[diff] [blame]188 cpu: 100m
Mandeep Khinda3c134252018-09-19 23:56:37 +0000[diff] [blame]189 memory: 1Gi
vaibhavjayasafb925d2018-09-19 09:33:41 +0000[diff] [blame]190 large:
191 limits:
Mandeep Khindacef0e3c2018-09-21 03:59:17 +0000[diff] [blame]192 cpu: 400m
vaibhavjayasafb925d2018-09-19 09:33:41 +0000[diff] [blame]193 memory: 4Gi
194 requests:
Mandeep Khindacef0e3c2018-09-21 03:59:17 +0000[diff] [blame]195 cpu: 200m
Mandeep Khinda60d36d42018-09-24 15:15:48 +0000[diff] [blame]196 memory: 2Gi
Ittay Stern91751272019-05-05 12:11:47 +0300[diff] [blame]197 unlimited: {}
Maciej Wereskica5b1b52021-11-15 16:07:32 +0100[diff] [blame]198
199# Log configuration
200log:
201 path: /var/log/onap