1 # Copyright © 2018 Amdocs, AT&T
2 # Modifications Copyright © 2018 Bell Canada
4 # Licensed under the Apache License, Version 2.0 (the "License");
5 # you may not use this file except in compliance with the License.
6 # You may obtain a copy of the License at
8 # http://www.apache.org/licenses/LICENSE-2.0
10 # Unless required by applicable law or agreed to in writing, software
11 # distributed under the License is distributed on an "AS IS" BASIS,
12 # WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
13 # See the License for the specific language governing permissions and
14 # limitations under the License.
16 apiVersion: extensions/v1beta1
19 name: {{ include "common.fullname" . }}
20 namespace: {{ include "common.namespace" . }}
22 app: {{ include "common.name" . }}
23 chart: {{ .Chart.Name }}-{{ .Chart.Version | replace "+" "_" }}
24 release: {{ .Release.Name }}
25 heritage: {{ .Release.Service }}
27 replicas: {{ .Values.replicaCount }}
31 app: {{ include "common.name" . }}
32 release: {{ .Release.Name }}
34 {{ if .Values.global.installSidecarSecurity }}
36 - name: {{ .Values.global.tproxyConfig.name }}
37 image: "{{ include "common.repository" . }}/{{ .Values.global.tproxyConfig.image }}"
38 imagePullPolicy: {{ .Values.global.pullPolicy | default .Values.pullPolicy }}
43 - name: {{ .Chart.Name }}
44 image: "{{ include "common.repository" . }}/{{ .Values.image }}"
45 imagePullPolicy: {{ .Values.global.pullPolicy | default .Values.pullPolicy }}
47 - containerPort: {{ .Values.service.internalPort }}
48 # disable liveness probe when breakpoints set in debugger
49 # so K8s doesn't restart unresponsive container
50 {{ if .Values.liveness.enabled }}
53 port: {{ .Values.service.internalPort }}
54 initialDelaySeconds: {{ .Values.liveness.initialDelaySeconds }}
55 periodSeconds: {{ .Values.liveness.periodSeconds }}
59 port: {{ .Values.service.internalPort }}
60 initialDelaySeconds: {{ .Values.readiness.initialDelaySeconds }}
61 periodSeconds: {{ .Values.readiness.periodSeconds }}
64 value: /opt/app/crud-service/config/
65 - name: KEY_STORE_PASSWORD
68 name: {{ template "common.fullname" . }}-pass
69 key: KEY_STORE_PASSWORD
70 - name: KEY_MANAGER_PASSWORD
73 name: {{ template "common.fullname" . }}-pass
74 key: KEY_MANAGER_PASSWORD
76 value: /opt/app/crud-service/dynamic/conf
78 - mountPath: /etc/localtime
81 - mountPath: /opt/app/crud-service/config/crud-api.properties
82 subPath: crud-api.properties
83 name: {{ include "common.fullname" . }}-config
84 - mountPath: /opt/app/crud-service/config/schema-ingest.properties
85 subPath: schema-ingest.properties
86 name: {{ include "common.fullname" . }}-config
87 - mountPath: /opt/app/crud-service/config/edgeprops-ingest.properties
88 subPath: edgeprops-ingest.properties
89 name: {{ include "common.fullname" . }}-config
90 - mountPath: /opt/app/crud-service/config/model/
91 name: {{ include "common.fullname" . }}-model-config
92 - mountPath: /opt/app/crud-service/config/auth
93 name: {{ include "common.fullname" . }}-auth-secret
94 - mountPath: /opt/app/crud-service/dynamic/conf/crud-beans.xml
95 name: {{ include "common.fullname" . }}-config
96 subPath: crud-beans.xml
97 - mountPath: /var/log/onap
98 name: {{ include "common.fullname" . }}-logs
99 - mountPath: /opt/app/crud-api/bundleconfig/etc/logback.xml
100 name: {{ include "common.fullname" . }}-logback-config
103 {{ include "common.resources" . | indent 12 }}
104 {{- if .Values.nodeSelector }}
106 {{ toYaml .Values.nodeSelector | indent 10 }}
108 {{- if .Values.affinity }}
110 {{ toYaml .Values.affinity | indent 10 }}
113 - name: filebeat-onap
114 image: "{{ .Values.global.loggingRepository }}/{{ .Values.global.loggingImage }}"
115 imagePullPolicy: {{ .Values.global.pullPolicy | default .Values.pullPolicy }}
117 - mountPath: /usr/share/filebeat/filebeat.yml
119 subPath: filebeat.yml
120 - mountPath: /var/log/onap
121 name: {{ include "common.fullname" . }}-logs
122 - mountPath: /usr/share/filebeat/data
123 name: {{ include "common.fullname" . }}-data-filebeat
125 {{ if .Values.global.installSidecarSecurity }}
126 - name: {{ .Values.global.rproxy.name }}
127 image: "{{ include "common.repository" . }}/{{ .Values.global.rproxy.image }}"
128 imagePullPolicy: {{ .Values.global.pullPolicy | default .Values.pullPolicy }}
131 value: "/opt/app/rproxy/config"
132 - name: KEY_STORE_PASSWORD
133 value: {{ .Values.config.keyStorePassword }}
134 - name: spring_profiles_active
135 value: {{ .Values.global.rproxy.activeSpringProfiles }}
137 - name: {{ include "common.fullname" . }}-rproxy-config
138 mountPath: /opt/app/rproxy/config/forward-proxy.properties
139 subPath: forward-proxy.properties
140 - name: {{ include "common.fullname" . }}-rproxy-config
141 mountPath: /opt/app/rproxy/config/primary-service.properties
142 subPath: primary-service.properties
143 - name: {{ include "common.fullname" . }}-rproxy-config
144 mountPath: /opt/app/rproxy/config/reverse-proxy.properties
145 subPath: reverse-proxy.properties
146 - name: {{ include "common.fullname" . }}-rproxy-config
147 mountPath: /opt/app/rproxy/config/cadi.properties
148 subPath: cadi.properties
149 - name: {{ include "common.fullname" . }}-rproxy-log-config
150 mountPath: /opt/app/rproxy/config/logback-spring.xml
151 subPath: logback-spring.xml
152 - name: {{ include "common.fullname" . }}-rproxy-auth-certs
153 mountPath: /opt/app/rproxy/config/auth/tomcat_keystore
154 subPath: tomcat_keystore
155 - name: {{ include "common.fullname" . }}-rproxy-auth-certs
156 mountPath: /opt/app/rproxy/config/auth/client-cert.p12
157 subPath: client-cert.p12
158 - name: {{ include "common.fullname" . }}-rproxy-auth-certs
159 mountPath: /opt/app/rproxy/config/auth/org.onap.aai.p12
160 subPath: org.onap.aai.p12
161 - name: {{ include "common.fullname" . }}-rproxy-auth-config
162 mountPath: /opt/app/rproxy/config/auth/uri-authorization.json
163 subPath: uri-authorization.json
164 - name: {{ include "common.fullname" . }}-rproxy-security-config
165 mountPath: /opt/app/rproxy/config/security/keyfile
169 - containerPort: {{ .Values.global.rproxy.port }}
171 - name: {{ .Values.global.fproxy.name }}
172 image: "{{ include "common.repository" . }}/{{ .Values.global.fproxy.image }}"
173 imagePullPolicy: {{ .Values.global.pullPolicy | default .Values.pullPolicy }}
176 value: "/opt/app/fproxy/config"
177 - name: KEY_STORE_PASSWORD
178 value: {{ .Values.config.keyStorePassword }}
179 - name: TRUST_STORE_PASSWORD
180 value: {{ .Values.config.trustStorePassword }}
181 - name: spring_profiles_active
182 value: {{ .Values.global.fproxy.activeSpringProfiles }}
184 - name: {{ include "common.fullname" . }}-fproxy-config
185 mountPath: /opt/app/fproxy/config/fproxy.properties
186 subPath: fproxy.properties
187 - name: {{ include "common.fullname" . }}-fproxy-log-config
188 mountPath: /opt/app/fproxy/config/logback-spring.xml
189 subPath: logback-spring.xml
190 - name: {{ include "common.fullname" . }}-fproxy-auth-certs
191 mountPath: /opt/app/fproxy/config/auth/tomcat_keystore
192 subPath: tomcat_keystore
193 - name: {{ include "common.fullname" . }}-fproxy-auth-certs
194 mountPath: /opt/app/fproxy/config/auth/fproxy_truststore
195 subPath: fproxy_truststore
196 - name: {{ include "common.fullname" . }}-fproxy-auth-certs
197 mountPath: /opt/app/fproxy/config/auth/client-cert.p12
198 subPath: client-cert.p12
200 - containerPort: {{ .Values.global.fproxy.port }}
207 - name: {{ include "common.fullname" . }}-data-filebeat
209 - name: filebeat-conf
211 name: {{ include "common.fullname" . }}-filebeat-configmap
212 - name: {{ include "common.fullname" . }}-logs
214 - name: {{ include "common.fullname" . }}-auth-secret
216 secretName: {{ include "common.fullname" . }}-auth
217 - name: {{ include "common.fullname" . }}-config
219 name: {{ include "common.fullname" . }}-configmap
221 - key: crud-api.properties
222 path: crud-api.properties
223 - key: schema-ingest.properties
224 path: schema-ingest.properties
225 - key: edgeprops-ingest.properties
226 path: edgeprops-ingest.properties
227 - key: crud-beans.xml
229 - name: {{ include "common.fullname" . }}-logback-config
231 name: {{ include "common.fullname" . }}-log-configmap
235 - name: {{ include "common.fullname" . }}-model-config
237 name: {{ include "common.fullname" . }}-model-configmap
238 {{ if .Values.global.installSidecarSecurity }}
239 - name: {{ include "common.fullname" . }}-rproxy-config
241 name: {{ include "common.fullname" . }}-rproxy-config
242 - name: {{ include "common.fullname" . }}-rproxy-log-config
244 name: {{ include "common.fullname" . }}-rproxy-log-config
245 - name: {{ include "common.fullname" . }}-rproxy-auth-config
247 secretName: {{ include "common.fullname" . }}-rproxy-auth-config
248 - name: {{ include "common.fullname" . }}-rproxy-auth-certs
250 secretName: aai-rproxy-auth-certs
251 - name: {{ include "common.fullname" . }}-rproxy-security-config
253 secretName: aai-rproxy-security-config
254 - name: {{ include "common.fullname" . }}-fproxy-config
256 name: {{ include "common.fullname" . }}-fproxy-config
257 - name: {{ include "common.fullname" . }}-fproxy-log-config
259 name: {{ include "common.fullname" . }}-fproxy-log-config
260 - name: {{ include "common.fullname" . }}-fproxy-auth-certs
262 secretName: aai-fproxy-auth-certs
266 - name: "{{ include "common.namespace" . }}-docker-registry-key"