summaryrefslogtreecommitdiffstats
path: root/kubernetes/common/timescaledb/values.yaml
blob: 55acd9284743337eef825b76cb4bbb9e462fd26d (plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
# ============LICENSE_START=======================================================
#  Copyright (c) 2021 Bell Canada.
# ================================================================================
# Licensed under the Apache License, Version 2.0 (the "License");
# you may not use this file except in compliance with the License.
# You may obtain a copy of the License at

#       http://www.apache.org/licenses/LICENSE-2.0

# Unless required by applicable law or agreed to in writing, software
# distributed under the License is distributed on an "AS IS" BASIS,
# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
# See the License for the specific language governing permissions and
# limitations under the License.
#
#  SPDX-License-Identifier: Apache-2.0
# ============LICENSE_END=========================================================

replicaCount: 1
global:
  persistence: {}

#################################################################
# Secrets.
##############################################################
image: timescale/timescaledb:2.1.1-pg13

pullPolicy: Always
containerPorts: 5432

imagePullSecrets: []
nameOverride: ""
fullnameOverride: ""

serviceAccount:
  nameOverride: timescaledb
  roles:
    - read

podSecurityContext: {}
  # fsGroup: 2000

securityContext:
  # Uid and gid to run the entrypoint of the container process (uid 70 is postgres user and gid 70 is postgres group)
  runAsUser: 70
  runAsGroup: 70
  # capabilities:
  #   drop:
  #   - ALL
  # readOnlyRootFilesystem: true
  # runAsNonRoot: true

resources:
  # We usually recommend not to specify default resources and to leave this as a conscious
  # choice for the user. This also increases chances charts run on environments with little
  # resources, such as Minikube. If you do want to specify resources, uncomment the following
  # lines, adjust them as necessary, and remove the curly braces after 'resources:'.
 limits:
   cpu: 0.5
   memory: 256Mi
 requests:
   cpu: 20m
   memory: 256Mi

nodeSelector: {}

tolerations: []

affinity: {}

service:
  type: ClusterIP
  name: timescaledb
  ports:
    - name: tcp-timescaledb
      port: 5432

persistence:
  enabled: true

  ## A manually managed Persistent Volume and Claim
  ## Requires persistence.enabled: true
  ## If defined, PVC must be created manually before volume will be bound
  # existingClaim:
  volumeReclaimPolicy: Retain

  ## database data Persistent Volume Storage Class
  ## If defined, storageClassName: <storageClass>
  ## If set to "-", storageClassName: "", which disables dynamic provisioning
  ## If undefined (the default) or set to null, no storageClassName spec is
  ##   set, choosing the default provisioner.  (gp2 on AWS, standard on
  ##   GKE, AWS & OpenStack)
  accessMode: ReadWriteOnce
  size: 1Gi
  mountPath: /dockerdata-nfs

config:
  pgUserName: timescaledb
  pgRootUserName: postgres
  pgDatabase: timescaledb

secrets:
  - uid: root-creds
    type: basicAuth
    externalSecret: '{{ tpl (default "" .Values.config.pgRootPasswordExternalSecret) . }}'
    login: '{{ .Values.config.pgRootUserName }}'
    password: '{{ .Values.config.pgRootpassword }}'
  - uid: user-creds
    type: basicAuth
    externalSecret: '{{ tpl (default "" .Values.config.pgUserExternalSecret) . }}'
    login: '{{ .Values.config.pgUserName }}'
    password: '{{ .Values.config.pgUserPassword }}'