-
Notifications
You must be signed in to change notification settings - Fork 109
Expand file tree
/
Copy pathvalues-secret.yaml.template
More file actions
71 lines (63 loc) · 2.48 KB
/
Copy pathvalues-secret.yaml.template
File metadata and controls
71 lines (63 loc) · 2.48 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
# A more formal description of this format can be found here:
# https://github.com/validatedpatterns/common/tree/main/ansible/roles/vault_utils#values-secret-file-format
version: "2.0"
# Do not update sensitive secrets (db credentials) in this file and commit to git.
# Copy this template file to ~/values-secret-rag-llm-gitops and update secrets in your home directory
backingStore: vault
vaultPolicies:
basicPolicy: |
length=16
rule "charset" { charset = "abcdefghijklmnopqrstuvwxyz" min-chars = 1 }
rule "charset" { charset = "ABCDEFGHIJKLMNOPQRSTUVWXYZ" min-chars = 1 }
rule "charset" { charset = "0123456789" min-chars = 1 }
secrets:
# This must be set to use models requiring huggingface authentication
# The default model (ibm-granite/granite-3.3-8b-instruct) does not require authentication
- name: hfmodel
fields:
- name: hftoken
value: null
# Only used when .global.db is set to PGVECTOR in values-global.yaml
- name: pgvector
fields:
- name: username
value: postgres
- name: password
onMissingValue: generate
override: true
vaultPolicy: basicPolicy
- name: dbname
value: rag_blueprint
# Only used when .global.db is set to EDB in values-global.yaml
# EDB Postgres Operator requires authentication to pull images from docker.enterprisedb.com
# Register for a free trial at: https://www.enterprisedb.com/accounts/register
# Get your token from: https://www.enterprisedb.com/repos-downloads
- name: edb
fields:
- name: token
value: null
description: EDB subscription token for pulling certified operator images
# Only used when .global.db is set to MSSQL in values-global.yaml
# The pattern creates a local SQL Server deployment. To use an existing SQL Server DB on Azure, use secret below.
- name: mssql
fields:
- name: sa-pass
onMissingValue: generate
override: true
vaultPolicy: basicPolicy
description: mssql password for sa user
# Only used when .global.db is set to AZURESQL in values-global.yaml
# The Azure SQL Server database needs to be created outside of the pattern.
- name: azuresql
fields:
- name: user
value: adminuser
description: server admin user for azure sql
- name: password
onMissingValue: generate
override: true
vaultPolicy: basicPolicy
description: server admin password for azure sql
- name: server
value: rag-llm-gitops.database.windows.net
description: server hostname