blob: 77ebb09dd97a88ee2fb2040ec8d8f4699ec98928 (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
|
# Copyright (C) 2021 Pantheon.tech, Orange, Bell Canada.
#
# Licensed under the Apache License, Version 2.0 (the "License");
# you may not use this file except in compliance with the License.
# You may obtain a copy of the License at
#
# http://www.apache.org/licenses/LICENSE-2.0
#
# Unless required by applicable law or agreed to in writing, software
# distributed under the License is distributed on an "AS IS" BASIS,
# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
# See the License for the specific language governing permissions and
# limitations under the License.
#################################################################
# Secrets.
#################################################################
secrets:
- uid: pg-root-pass
name: &pgRootPassSecretName '{{ include "common.release" . }}-cps-pg-root-pass'
type: password
externalSecret: '{{ ternary "" (tpl (default "" .Values.postgres.config.pgRootPasswordExternalSecret) .) (hasSuffix "cps-pg-root-pass" .Values.postgres.config.pgRootPasswordExternalSecret) }}'
password: '{{ .Values.postgres.config.pgRootpassword }}'
policy: generate
- uid: pg-user-creds
name: &pgUserCredsSecretName '{{ include "common.release" . }}-cps-pg-user-creds'
type: basicAuth
externalSecret: '{{ ternary "" (tpl (default "" .Values.postgres.config.pgUserExternalSecret) .) (hasSuffix "cps-pg-user-creds" .Values.postgres.config.pgUserExternalSecret) }}'
login: '{{ .Values.postgres.config.pgUserName }}'
password: '{{ .Values.postgres.config.pgUserPassword }}'
passwordPolicy: generate
- uid: app-user-creds
type: basicAuth
externalSecret: '{{ tpl (default "" .Values.config.appUserExternalSecret) . }}'
login: '{{ .Values.config.appUserName }}'
password: '{{ .Values.config.appUserPassword }}'
passwordPolicy: generate
#################################################################
# Global configuration defaults.
#################################################################
# bitnami image doesn't support well single quote in password
passwordStrengthOverride: basic
global:
ingress:
virtualhost:
baseurl: "simpledemo.onap.org"
image: onap/cps-and-nf-proxy:1.0.0
containerPort: &svc_port 8080
service:
type: ClusterIP
name: cps
ports:
- name: &port http
port: *svc_port
pullPolicy: Always
# flag to enable debugging - application support required
debugEnabled: false
nodeSelector: {}
affinity: {}
# Resource Limit flavor -By Default using small
flavor: small
# default number of instances
replicaCount: 1
# Segregation for Different environment (Small and Large)
resources:
small:
limits:
cpu: 2
memory: 2Gi
requests:
cpu: 1
memory: 1Gi
large:
limits:
cpu: 4
memory: 4Gi
requests:
cpu: 2
memory: 2Gi
unlimited: {}
# probe configuration parameters
liveness:
initialDelaySeconds: 20
periodSeconds: 20
# necessary to disable liveness probe when setting breakpoints
# in debugger so K8s doesn't restart unresponsive container
enabled: true
path: /manage/health
port: *port
readiness:
initialDelaySeconds: 15
periodSeconds: 15
path: /manage/health
port: *port
ingress:
enabled: true
service:
- baseaddr: "cps"
path: "/"
name: "cps"
port: *svc_port
serviceAccount:
nameOverride: cps
roles:
- read
securityContext:
user_id: 100
group_id: 655533
#################################################################
# Application configuration defaults.
#################################################################
config:
# Set it for pre loading xnfdata, else set to null
liquibaseLabels: xnf-data-preload
# REST API basic authentication credentials (passsword is generated if not provided)
appUserName: cpsuser
#appUserPassword:
logging:
level: INFO
path: /tmp
#################################################################
# Postgres overriding defaults in the postgres
#################################################################
postgres:
nameOverride: &postgresName cps-postgres
service:
name: *postgresName
name2: cps-pg-primary
name3: cps-pg-replica
container:
name:
primary: cps-pg-primary
replica: cps-pg-replica
persistence:
mountSubPath: cps/data
mountInitPath: cps
config:
pgUserName: cps
pgDatabase: cpsdb
pgUserExternalSecret: *pgUserCredsSecretName
pgRootPasswordExternalSecret: *pgRootPassSecretName
readinessCheck:
wait_for:
- cps-postgres
|