-
Notifications
You must be signed in to change notification settings - Fork 5
Expand file tree
/
Copy pathvalue-template.yaml
More file actions
193 lines (193 loc) · 6.89 KB
/
value-template.yaml
File metadata and controls
193 lines (193 loc) · 6.89 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
harness:
# -- If specified, an ingress will be created at [subdomain].[.Values.domain]
subdomain:
# -- If specified, an ingress will be created at [alias].[.Values.domain] for each alias
aliases: []
# -- If specified, an ingress will be created at [domain]
domain:
# -- Application dependencies are used to define what is required in the deployment when --include (-i) is used. Specify application names in the list.
dependencies:
# -- Hard dependencies indicate that the application may not start without these other applications.
hard: []
# -- Soft dependencies indicate that the application will work partially without these other applications.
soft: []
# -- Build dependencies indicate that the application Docker image build requires these base/common images
build: []
# -- When true, the application is shielded with a getekeeper
secured: false
# -- Uri/Role mapping for the gatekeeper
uri_role_mapping:
- uri: /*
roles:
- administrator
- uri: /api/openapi.json
white-listed: true
- uri: /openapi.json
white-listed: true
# -- Defines reference deployment parameters. Values maps to k8s spec
deployment:
# -- When true, enables automatic deployment
auto: false
# -- Number of pod replicas for the deployment.
replicas: 1
# -- Docker image url. Leave blank to leave Cloudharness automatic image name assignment.
image:
# -- Deployment name. Leave blank to leave Cloudharness automatic image name assignment.
name:
# -- Deployment port.
port: 8080
# -- volume specification
volume:
# -- Deployment resources.
resources:
requests:
memory: "32Mi"
cpu: "10m"
limits:
memory: "500Mi"
cpu: null
# -- Extra containers (init containers and sidecars) for the deployment.
# -- Each key is a container name. If initContainer is true, it runs as an init container; otherwise as a sidecar.
extraContainers:
# example:
# my-init:
# auto: true
# initContainer: true
# image:
# command: []
# shareVolume: true
# resources: {}
# -- Network policy configuration for the deployment pod.
network:
# -- If true, the Ingress policyType is omitted: all incoming traffic is unrestricted.
ingress: true
# -- If true, the Egress policyType is omitted: all outgoing traffic is unrestricted.
egress: true
# -- List of namespaces allowed to communicate with this pod (both ingress and egress), regardless of the ingress/egress blocks.
allowedNamespaces: [traefik, nginx-ingress, ingress-nginx]
# -- Defines automatic service parameters.
service:
# -- When true, enables automatic service
auto: true
# -- Service name. Leave blank to leave Cloudharness automatic image name assignment.
name:
# -- Service port.
port: 80
# -- Auto generated secrets key-value pairs. If no value is provided, a random hash is generated
secrets: {}
# -- Specify which services this application uses in the frontend to create proxy ingresses. e.g. - name: mnp-checkout
use_services: []
# -- enabled sentry for automated error report
sentry: false
# -- Reference database specs
database:
# -- When true, enables automatic database deployment
auto: false
# -- Database deployment name. Leave blank to leave Cloudharness automatic image name assignment.
name:
# -- supported db types: mongo, postgres, neo4j
type:
size: 1Gi
# -- database username
user: mnp
# -- database password
pass: metacell
# -- image ref for referencing images from the build, e.g. image_ref: myownpgimage
image_ref:
# -- expose database to the public with ingress
expose: false
# -- Set to "" to set the set the string in the CI/CD as a secret. Only set the full value for dev/testing
connect_string:
# -- settings for mongo database (for type==mongo)
mongo:
image: mongo:5
ports:
- name: http
port: 27017
# -- settings for postgers database (for type==postgres)
postgres:
image:
initialdb: cloudharness
# -- Use the CloudNative-PG operator instead of a plain Deployment. Requires the CNPG operator to be installed in the cluster.
operator: false
# -- Number of PostgreSQL instances managed by the CNPG operator (only used when operator is true)
instances: 1
# -- CIDR(s) allowed for CNPG pods to reach the Kubernetes API server (port 443).
# -- Resolved automatically at deploy time via cluster lookup. Set explicitly only as a fallback for helm-template or air-gapped use.
apiServerCidr: []
# -- PostgreSQL configuration parameters for CloudNative-PG clusters (operator: true). Values must be strings.
parameters: {}
ports:
- name: http
port: 5432
# -- settings for neo4j database (for type==neo4j)
neo4j:
image: neo4j:5
memory:
size: 256M
pagecache:
size: 64M
heap:
initial: 64M
max: 128M
dbms_security_auth_enabled: "true"
ports:
- name: http
port: 7474
- name: bolt
port: 7687
# -- database deployment resources
resources:
requests:
memory: "512Mi"
cpu: "100m"
limits:
memory: "2Gi"
# -- Network policy configuration for the database pod.
network:
# -- If true, the Ingress policyType is omitted: all incoming traffic is unrestricted.
ingress: false
# -- If true, the Egress policyType is omitted: all outgoing traffic is unrestricted.
egress: false
# -- List of namespaces allowed to communicate with this database pod (both ingress and egress), regardless of the ingress/egress blocks.
allowedNamespaces: [traefik]
test:
unit:
enabled: true
commands: []
api:
enabled: false
autotest: true
runParams: []
checks:
- all
e2e:
enabled: false
smoketest: true
ignoreConsoleErrors: false
ignoreRequestErrors: false
proxy:
timeout:
# -- Timeout for proxy connections in seconds.
send:
# -- Timeout for proxy responses in seconds.
read:
keepalive:
payload:
# -- Maximum size of payload in MB
max:
gatekeeper:
# -- Default gatekeeper image
image: "quay.io/gogatekeeper/gatekeeper:4.6.0"
# -- Default number of gatekeeper replicas
replicas: 1
resources:
requests:
memory: "32Mi"
limits:
memory: "64Mi"
gateway:
## -- The path mapped to the current application in the gateway. Default is "/". For regex paths, use the path specified in .Values.ingress.path and set pathType to ImplementationSpecific
path: "/"
## -- The pathType for the Ingress path. Default is Prefix. For regex paths, set to ImplementationSpecific
pathType: Prefix