1 # Copyright (c) 2018 Amdocs, Bell Canada, AT&T
2 # Copyright (c) 2020 Nokia, Orange
3 # Modifications Copyright (c) 2021 Orange
5 # Licensed under the Apache License, Version 2.0 (the "License");
6 # you may not use this file except in compliance with the License.
7 # You may obtain a copy of the License at
9 # http://www.apache.org/licenses/LICENSE-2.0
11 # Unless required by applicable law or agreed to in writing, software
12 # distributed under the License is distributed on an "AS IS" BASIS,
13 # WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
14 # See the License for the specific language governing permissions and
15 # limitations under the License.
17 # Default values for resources.
18 # This is a YAML-formatted file.
19 # Declare variables to be passed into your templates.
20 global: # global defaults
23 #Service Name of the cassandra cluster to connect to.
24 #Override it to aai-cassandra if localCluster is enabled.
25 serviceName: cassandra
27 # Specifies a list of jobs to be run
29 # When enabled, it will create the schema based on oxm and edge rules
32 #migration using helm hooks
37 # Specifies that the cluster connected to a dynamic
38 # cluster being spinned up by kubernetes deployment
43 # Specifies if the basic authorization is enabled
50 # Active spring profiles for the resources microservice
52 active: production,dmaap,aaf-auth #,keycloak
54 # Notification event specific properties
59 # Schema specific properties that include supported versions of api
61 # Specifies if the connection should be one way ssl, two way ssl or no auth
64 # Specifies which translator to use if it has schema-service, then it will make a rest request to schema service
68 # Specifies which folder to take a look at
71 # Base URI Path of the application
75 # Current version of the REST API
78 # Specifies which version the depth parameter is configurable
80 # List of all the supported versions of the API
81 list: v11,v12,v13,v14,v15,v16,v17,v18,v19,v20,v21
82 # Specifies from which version related link should appear
85 # Specifies from which version the app root change happened
88 # Specifies from which version the xml namespace changed
91 # Specifies from which version the edge label appeared in API
95 # Specifies which clients should always default to realtime graph connection
97 clients: SDNC,MSO,SO,robot-ete
111 - name: aai-cloudInfrastructure
112 url: cloud-infrastructure
117 - name: aai-service-design-and-creation
118 url: service-design-and-creation
121 - name: aai-externalSystem
123 #################################################################
124 # Certificate configuration
125 #################################################################
127 nameOverride: aai-resources-cert-initializer
128 aafDeployFqi: deployer@people.osaaf.org
129 aafDeployPass: demo123456!
130 # aafDeployCredsExternalSecret: some secret
132 fqi: aai-resources@aai-resources.onap.org
133 public_fqdn: aai-resources.onap.org
134 cadi_longitude: "0.0"
136 app_ns: org.osaaf.aaf
137 credsPath: /opt/app/osaaf/local
138 fqi_namespace: org.onap.aai-resources
140 echo "*** changing them into shell safe ones"
141 export KEYSTORE_PASSWORD=$(tr -cd '[:alnum:]' < /dev/urandom | fold -w64 | head -n1)
142 export TRUSTSTORE_PASSWORD=$(tr -cd '[:alnum:]' < /dev/urandom | fold -w64 | head -n1)
143 cd {{ .Values.credsPath }}
144 keytool -storepasswd -new "${KEYSTORE_PASSWORD}" \
145 -storepass "${cadi_keystore_password_p12}" \
146 -keystore {{ .Values.fqi_namespace }}.p12
147 keytool -storepasswd -new "${TRUSTSTORE_PASSWORD}" \
148 -storepass "${cadi_truststore_password}" \
149 -keystore {{ .Values.fqi_namespace }}.trust.jks
150 echo "*** save the generated passwords"
151 echo "KEYSTORE_PASSWORD=${KEYSTORE_PASSWORD}" > mycreds.prop
152 echo "TRUSTSTORE_PASSWORD=${TRUSTSTORE_PASSWORD}" >> mycreds.prop
153 echo "*** change ownership of certificates to targeted user"
154 chown -R 1000 {{ .Values.credsPath }}
157 image: onap/aai-resources:1.8.2
159 restartPolicy: Always
161 flavorOverride: small
162 # default number of instances
165 # Configuration for the resources deployment
167 # configure keycloak according to your environment.
168 # don't forget to add keycloak in active profiles above (global.config.profiles)
170 host: keycloak.your.domain
172 # Specifies a set of users, credentials, roles, and groups
174 # Used by any client application for enabling fine-grained authorization for their protected resources
175 resource: aai-resources-app
176 # If set to true, additional criteria will be added that match the data-owner property with the given role
177 # to the user in keycloak
181 # Specifies crud related operation timeouts and overrides
184 # Specifies if the timeout for REST GET calls should be enabled
186 # Specifies the timeout values for application specific
187 # Its a pipe seperated list where each element before comma represents
188 # the X-FromAppId and the comma after specifies the timeout limit in ms
189 # If the timeout limit is -1 then it means for these apps no timeout
190 appspecific: JUNITTESTAPP1,1|JUNITTESTAPP2,-1|DCAE-CCS,-1|DCAES,-1|AAIRctFeed,-1|NewvceCreator,-1|IANewvceCreator,-1|AAI-CSIOVALS,-1
191 # Specifies what is the maximum timeout limit in milliseconds
194 # Specifies configuration for bulk apis
196 # Specifies for a bulk payload how many transactions in total allowed
198 # Specifies if the bulk can be override and if it can the value
205 # probe configuration parameters
207 initialDelaySeconds: 60
209 # necessary to disable liveness probe when setting breakpoints
210 # in debugger so K8s doesn't restart unresponsive container
214 initialDelaySeconds: 60
219 portName: aai-resources-8447
221 portName2: aai-resources-5005
227 # We usually recommend not to specify default resources and to leave this as a conscious
228 # choice for the user. This also increases chances charts run on environments with little
229 # resources, such as Minikube. If you do want to specify resources, uncomment the following
230 # lines, adjust them as necessary, and remove the curly braces after 'resources:'.
233 # Configure resource requests and limits
234 # ref: http://kubernetes.io/docs/user-guide/compute-resources/
235 # Minimum memory for development is 2 CPU cores and 4GB memory
236 # Minimum memory for production is 4 CPU cores and 8GB memory