# ============LICENSE_START======================================================= # Copyright (C) 2018 Ericsson. All rights reserved. # Modifications Copyright (C) 2019-2021 AT&T Intellectual Property. # ================================================================================ # Licensed under the Apache License, Version 2.0 (the "License"); # you may not use this file except in compliance with the License. # You may obtain a copy of the License at # # http://www.apache.org/licenses/LICENSE-2.0 # # Unless required by applicable law or agreed to in writing, software # distributed under the License is distributed on an "AS IS" BASIS, # WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. # See the License for the specific language governing permissions and # limitations under the License. # # SPDX-License-Identifier: Apache-2.0 # ============LICENSE_END========================================================= ################################################################# # Global configuration defaults. ################################################################# global: nodePortPrefix: 302 aafEnabled: true persistence: {} ################################################################# # Secrets metaconfig ################################################################# secrets: - uid: restserver-creds type: basicAuth externalSecret: '{{ tpl (default "" .Values.restServer.credsExternalSecret) . }}' login: '{{ .Values.restServer.user }}' password: '{{ .Values.restServer.password }}' - uid: truststore-pass type: password externalSecret: '{{ tpl (default "" .Values.certStores.trustStorePasswordExternalSecret) . }}' password: '{{ .Values.certStores.trustStorePassword }}' passwordPolicy: required - uid: keystore-pass type: password externalSecret: '{{ tpl (default "" .Values.certStores.keyStorePasswordExternalSecret) . }}' password: '{{ .Values.certStores.keyStorePassword }}' passwordPolicy: required ################################################################# # Application configuration defaults. ################################################################# # application image image: onap/policy-apex-pdp:2.5.4 pullPolicy: Always # flag to enable debugging - application support required debugEnabled: false # application configuration restServer: user: healthcheck password: zb!XztG34 truststore: password: Pol1cy_0nap certStores: keyStorePassword: Pol1cy_0nap trustStorePassword: Pol1cy_0nap certInitializer: nameOverride: policy-apex-pdp-cert-initializer aafDeployFqi: deployer@people.osaaf.org aafDeployPass: demo123456! fqdn: policy fqi: policy@policy.onap.org public_fqdn: policy.onap.org cadi_latitude: "0.0" cadi_longitude: "0.0" credsPath: /opt/app/osaaf/local app_ns: org.osaaf.aaf uid: 101 gid: 102 aaf_add_config: > /opt/app/aaf_config/bin/agent.sh; export $(/opt/app/aaf_config/bin/agent.sh local showpass {{ .Values.fqi }} {{ .Values.fqdn }} | grep "^cadi_keystore_password_p12"); echo "export KEYSTORE='{{ .Values.credsPath }}/org.onap.policy.p12'" >> {{ .Values.credsPath }}/.ci; echo "export KEYSTORE_PASSWORD='${cadi_keystore_password_p12}'" >> {{ .Values.credsPath }}/.ci; chown -R {{ .Values.uid }}:{{ .Values.gid }} $(dirname {{ .Values.credsPath }}); # default number of instances replicaCount: 1 nodeSelector: {} affinity: {} # probe configuration parameters liveness: initialDelaySeconds: 20 periodSeconds: 10 # necessary to disable liveness probe when setting breakpoints # in debugger so K8s doesn't restart unresponsive container enabled: true readiness: initialDelaySeconds: 20 periodSeconds: 10 service: type: ClusterIP name: policy-apex-pdp portName: policy-apex-pdp externalPort: 6969 internalPort: 6969 nodePort: 37 ingress: enabled: false # Resource Limit flavor -By Default using small # Segregation for Different environment (Small and Large) flavor: small resources: small: limits: cpu: 1 memory: 4Gi requests: cpu: 10m memory: 1Gi large: limits: cpu: 2 memory: 8Gi requests: cpu: 20m memory: 2Gi unlimited: {}