1 # Copyright (c) 2018 Amdocs, Bell Canada, AT&T
2 # Copyright (c) 2020 Nokia, Orange
3 # Modifications Copyright (c) 2021 Orange
4 # Modifications Copyright © 2023 Nordix Foundation
6 # Licensed under the Apache License, Version 2.0 (the "License");
7 # you may not use this file except in compliance with the License.
8 # You may obtain a copy of the License at
10 # http://www.apache.org/licenses/LICENSE-2.0
12 # Unless required by applicable law or agreed to in writing, software
13 # distributed under the License is distributed on an "AS IS" BASIS,
14 # WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
15 # See the License for the specific language governing permissions and
16 # limitations under the License.
18 # Default values for resources.
19 # This is a YAML-formatted file.
20 # Declare variables to be passed into your templates.
21 global: # global defaults
23 kafkaBootstrap: strimzi-kafka-bootstrap
24 aaiKafkaUser: aai-kafka-user
26 #Service Name of the cassandra cluster to connect to.
27 #Override it to aai-cassandra if localCluster is enabled.
28 serviceName: cassandra
30 # Specifies a list of jobs to be run
32 # When enabled, it will create the schema based on oxm and edge rules
35 #migration using helm hooks
40 # Specifies that the cluster connected to a dynamic
41 # cluster being spinned up by kubernetes deployment
46 # Specifies if the basic authorization is enabled
53 # Active spring profiles for the resources microservice
55 active: production,kafka
57 # Notification event specific properties
62 # Schema specific properties that include supported versions of api
64 # Specifies if the connection should be one way ssl, two way ssl or no auth
67 # Specifies which translator to use if it has schema-service, then it will make a rest request to schema service
71 # Specifies which folder to take a look at
74 # Base URI Path of the application
78 # Current version of the REST API
81 # Specifies which version the depth parameter is configurable
83 # List of all the supported versions of the API
84 list: v11,v12,v13,v14,v15,v16,v17,v18,v19,v20,v21,v22,v23,v24,v25,v26,v27,v28
85 # Specifies from which version related link should appear
88 # Specifies from which version the app root change happened
91 # Specifies from which version the xml namespace changed
94 # Specifies from which version the edge label appeared in API
98 # Specifies which clients should always default to realtime graph connection
100 clients: SDNC,MSO,SO,robot-ete
101 kafkaBootstrap: strimzi-kafka-bootstrap
102 jaasConfExternalSecret: '{{ include "common.release" . }}-{{ .Values.global.aaiKafkaUser }}'
118 - name: aai-cloudInfrastructure
119 url: cloud-infrastructure
124 - name: aai-service-design-and-creation
125 url: service-design-and-creation
128 - name: aai-externalSystem
132 image: onap/aai-resources:1.13.4
134 restartPolicy: Always
136 flavorOverride: small
137 # default number of instances
139 # the minimum number of seconds that a newly created Pod should be ready
143 # The number of pods that can be unavailable during the update process
145 # The number of pods that can be created above the desired amount of pods during an update
148 # Configuration for the resources deployment
150 # configure keycloak according to your environment.
151 # don't forget to add keycloak in active profiles above (global.config.profiles)
153 host: keycloak.your.domain
155 # Specifies a set of users, credentials, roles, and groups
157 # Used by any client application for enabling fine-grained authorization for their protected resources
158 resource: aai-resources-app
159 # If set to true, additional criteria will be added that match the data-owner property with the given role
160 # to the user in keycloak
165 # enable when running read-heavy workloads
166 # modifications to graph done by this service/janusgraph instance will immediately invalidate the cache
167 # modifications to graph done by other services (traversal) will only be visible
168 # after time specified in db-cache-time
170 # Documentation: https://docs.janusgraph.org/operations/cache/#database-level-caching
171 dbCacheTime: 180000 # in milliseconds
172 dbCacheSize: 0.1 # percentage (expressed as a decimal between 0 and 1) of the total heap space available to the JVM running
173 dbCacheCleanWait: 20 # in milliseconds
176 # Specifies crud related operation timeouts and overrides
179 # Specifies if the timeout for REST GET calls should be enabled
181 # Specifies the timeout values for application specific
182 # Its a pipe seperated list where each element before comma represents
183 # the X-FromAppId and the comma after specifies the timeout limit in ms
184 # If the timeout limit is -1 then it means for these apps no timeout
185 appspecific: JUNITTESTAPP1,1|JUNITTESTAPP2,-1|DCAE-CCS,-1|DCAES,-1|AAIRctFeed,-1|NewvceCreator,-1|IANewvceCreator,-1|AAI-CSIOVALS,-1
186 # Specifies what is the maximum timeout limit in milliseconds
189 # Specifies configuration for bulk apis
191 # Specifies for a bulk payload how many transactions in total allowed
193 # Specifies if the bulk can be override and if it can the value
196 # environment variables added to the launch of the image in deployment
198 MIN_HEAP_SIZE: "512m"
199 MAX_HEAP_SIZE: "1024m"
200 MAX_METASPACE_SIZE: "512m"
202 # adds jvm args for remote debugging the application
205 args: "-agentlib:jdwp=transport=dt_socket,server=y,suspend=n,address=5005"
207 # adds jvm args for remote profiling the application
209 # $ PODNAME=traversal
210 # $ kubectl -n ${NAMESPACE:=onap} port-forward pod/$(kubectl -n ${NAMESPACE:=onap}
211 # get pods | awk '{print $1}' | grep -m1 -e "$PODNAME") 9999:9999
215 - "-Dcom.sun.management.jmxremote"
216 - "-Dcom.sun.management.jmxremote.ssl=false"
217 - "-Dcom.sun.management.jmxremote.authenticate=false"
218 - "-Dcom.sun.management.jmxremote.local.only=false"
219 - "-Dcom.sun.management.jmxremote.port=9999"
220 - "-Dcom.sun.management.jmxremote.rmi.port=9999"
221 - "-Djava.rmi.server.hostname=127.0.0.1"
227 # probe configuration parameters
229 initialDelaySeconds: 60
231 # necessary to disable liveness probe when setting breakpoints
232 # in debugger so K8s doesn't restart unresponsive container
236 initialDelaySeconds: 60
245 portName3: http-resources
247 terminationGracePeriodSeconds: 120
248 sessionAffinity: None
255 authorizedPrincipals:
256 - serviceAccount: aai-read
257 - serviceAccount: consul-read
259 # We usually recommend not to specify default resources and to leave this as a conscious
260 # choice for the user. This also increases chances charts run on environments with little
261 # resources, such as Minikube. If you do want to specify resources, uncomment the following
262 # lines, adjust them as necessary, and remove the curly braces after 'resources:'.
265 # Configure resource requests and limits
266 # ref: http://kubernetes.io/docs/user-guide/compute-resources/
267 # Minimum memory for development is 2 CPU cores and 4GB memory
268 # Minimum memory for production is 4 CPU cores and 8GB memory
295 baseUrl: http://jaeger-collector.istio-system:9411
297 probability: 1.0 # percentage of requests that are sampled (between 0-1/0%-100%)
312 path: /actuator/prometheus
315 externalSecretName: mysecretname
316 externalSecretUserKey: login
317 externalSecretPasswordKey: password
319 ## Namespace in which Prometheus is running
321 # namespace: monitoring
323 ## Interval at which metrics should be scraped.
324 ## ref: https://github.com/coreos/prometheus-operator/blob/master/Documentation/api.md#endpoint
328 ## Timeout after which the scrape is ended
329 ## ref: https://github.com/coreos/prometheus-operator/blob/master/Documentation/api.md#endpoint
333 ## ServiceMonitor selector labels
334 ## ref: https://github.com/bitnami/charts/tree/master/bitnami/prometheus-operator#prometheus-configuration
337 app: '{{ include "common.name" . }}'
338 chart: '{{ .Chart.Name }}-{{ .Chart.Version | replace "+" "_" }}'
339 release: '{{ include "common.release" . }}'
340 heritage: '{{ .Release.Service }}'
342 ## RelabelConfigs to apply to samples before scraping
343 ## ref: https://github.com/coreos/prometheus-operator/blob/master/Documentation/api.md#relabelconfig
344 ## Value is evalued as a template
348 ## MetricRelabelConfigs to apply to samples before ingestion
349 ## ref: https://github.com/coreos/prometheus-operator/blob/master/Documentation/api.md#relabelconfig
350 ## Value is evalued as a template
352 metricRelabelings: []
355 # targetLabel: "__name__"
358 # replacement: 'example_prefix_$1'
360 #Pods Service Account
362 nameOverride: aai-resources
371 base: DEBUG # base package (org.onap.aai)
372 logConfigMapNamePrefix: '{{ include "common.fullname" . }}'
374 # To make logback capping values configurable
376 logToFileEnabled: false
382 livenessAccessLogEnabled: false # false: do not log kubernetes liveness probes
383 logToFileEnabled: false
386 #################################################################
388 #################################################################
390 - uid: aai-kafka-user
391 externalSecret: '{{ tpl (default "" .Values.config.jaasConfExternalSecret) . }}'
394 - name: sasl.jaas.config
395 value: '{{ .Values.config.someConfig }}'
398 authenticationType: scram-sha-512
402 operations: [Read, Write]