1 # Copyright (c) 2018 Amdocs, Bell Canada, AT&T
2 # Copyright (c) 2020 Nokia, Orange
3 # Modifications Copyright (c) 2021 Orange
5 # Licensed under the Apache License, Version 2.0 (the "License");
6 # you may not use this file except in compliance with the License.
7 # You may obtain a copy of the License at
9 # http://www.apache.org/licenses/LICENSE-2.0
11 # Unless required by applicable law or agreed to in writing, software
12 # distributed under the License is distributed on an "AS IS" BASIS,
13 # WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
14 # See the License for the specific language governing permissions and
15 # limitations under the License.
17 # Default values for resources.
18 # This is a YAML-formatted file.
19 # Declare variables to be passed into your templates.
20 global: # global defaults
23 #Service Name of the cassandra cluster to connect to.
24 #Override it to aai-cassandra if localCluster is enabled.
25 serviceName: cassandra
27 # Specifies a list of jobs to be run
29 # When enabled, it will create the schema based on oxm and edge rules
32 #migration using helm hooks
39 # Specifies that the cluster connected to a dynamic
40 # cluster being spinned up by kubernetes deployment
45 # Specifies if the basic authorization is enabled
52 # Active spring profiles for the resources microservice
54 # aaf-auth profile will be automatically set if aaf enabled is set to true
55 active: production,dmaap #,aaf-auth
57 # Notification event specific properties
62 # Schema specific properties that include supported versions of api
64 # Specifies if the connection should be one way ssl, two way ssl or no auth
67 # Specifies which translator to use if it has schema-service, then it will make a rest request to schema service
71 # Specifies which folder to take a look at
74 # Base URI Path of the application
78 # Current version of the REST API
81 # Specifies which version the depth parameter is configurable
83 # List of all the supported versions of the API
84 list: v11,v12,v13,v14,v15,v16,v17,v18,v19,v20,v21,v22,v23,v24
85 # Specifies from which version related link should appear
88 # Specifies from which version the app root change happened
91 # Specifies from which version the xml namespace changed
94 # Specifies from which version the edge label appeared in API
98 # Specifies which clients should always default to realtime graph connection
100 clients: SDNC,MSO,SO,robot-ete
114 - name: aai-cloudInfrastructure
115 url: cloud-infrastructure
120 - name: aai-service-design-and-creation
121 url: service-design-and-creation
124 - name: aai-externalSystem
126 #################################################################
127 # Certificate configuration
128 #################################################################
130 nameOverride: aai-resources-cert-initializer
131 aafDeployFqi: deployer@people.osaaf.org
132 aafDeployPass: demo123456!
133 # aafDeployCredsExternalSecret: some secret
135 fqi: aai-resources@aai-resources.onap.org
136 public_fqdn: aai-resources.onap.org
137 cadi_longitude: "0.0"
139 app_ns: org.osaaf.aaf
140 credsPath: /opt/app/osaaf/local
141 fqi_namespace: org.onap.aai-resources
143 echo "*** changing them into shell safe ones"
144 export KEYSTORE_PASSWORD=$(tr -cd '[:alnum:]' < /dev/urandom | fold -w64 | head -n1)
145 export TRUSTSTORE_PASSWORD=$(tr -cd '[:alnum:]' < /dev/urandom | fold -w64 | head -n1)
146 cd {{ .Values.credsPath }}
147 keytool -storepasswd -new "${KEYSTORE_PASSWORD}" \
148 -storepass "${cadi_keystore_password_p12}" \
149 -keystore {{ .Values.fqi_namespace }}.p12
150 keytool -storepasswd -new "${TRUSTSTORE_PASSWORD}" \
151 -storepass "${cadi_truststore_password}" \
152 -keystore {{ .Values.fqi_namespace }}.trust.jks
153 echo "*** save the generated passwords"
154 echo "KEYSTORE_PASSWORD=${KEYSTORE_PASSWORD}" > mycreds.prop
155 echo "TRUSTSTORE_PASSWORD=${TRUSTSTORE_PASSWORD}" >> mycreds.prop
156 echo "*** change ownership of certificates to targeted user"
157 chown -R 1000 {{ .Values.credsPath }}
160 image: onap/aai-resources:1.9.3
162 restartPolicy: Always
164 flavorOverride: small
165 # default number of instances
167 # the minimum number of seconds that a newly created Pod should be ready
171 # The number of pods that can be unavailable during the update process
173 # The number of pods that can be created above the desired amount of pods during an update
176 # Configuration for the resources deployment
178 # configure keycloak according to your environment.
179 # don't forget to add keycloak in active profiles above (global.config.profiles)
181 host: keycloak.your.domain
183 # Specifies a set of users, credentials, roles, and groups
185 # Used by any client application for enabling fine-grained authorization for their protected resources
186 resource: aai-resources-app
187 # If set to true, additional criteria will be added that match the data-owner property with the given role
188 # to the user in keycloak
192 # Specifies crud related operation timeouts and overrides
195 # Specifies if the timeout for REST GET calls should be enabled
197 # Specifies the timeout values for application specific
198 # Its a pipe seperated list where each element before comma represents
199 # the X-FromAppId and the comma after specifies the timeout limit in ms
200 # If the timeout limit is -1 then it means for these apps no timeout
201 appspecific: JUNITTESTAPP1,1|JUNITTESTAPP2,-1|DCAE-CCS,-1|DCAES,-1|AAIRctFeed,-1|NewvceCreator,-1|IANewvceCreator,-1|AAI-CSIOVALS,-1
202 # Specifies what is the maximum timeout limit in milliseconds
205 # Specifies configuration for bulk apis
207 # Specifies for a bulk payload how many transactions in total allowed
209 # Specifies if the bulk can be override and if it can the value
216 # probe configuration parameters
218 initialDelaySeconds: 60
220 # necessary to disable liveness probe when setting breakpoints
221 # in debugger so K8s doesn't restart unresponsive container
225 initialDelaySeconds: 60
234 terminationGracePeriodSeconds: 120
239 # We usually recommend not to specify default resources and to leave this as a conscious
240 # choice for the user. This also increases chances charts run on environments with little
241 # resources, such as Minikube. If you do want to specify resources, uncomment the following
242 # lines, adjust them as necessary, and remove the curly braces after 'resources:'.
245 # Configure resource requests and limits
246 # ref: http://kubernetes.io/docs/user-guide/compute-resources/
247 # Minimum memory for development is 2 CPU cores and 4GB memory
248 # Minimum memory for production is 4 CPU cores and 8GB memory
273 #Pods Service Account
275 nameOverride: aai-resources
282 logConfigMapNamePrefix: '{{ include "common.fullname" . }}'