1 # Copyright (c) 2018 Amdocs, Bell Canada, AT&T
2 # Modifications Copyright (c) 2020 Nokia, Orange
4 # Licensed under the Apache License, Version 2.0 (the "License");
5 # you may not use this file except in compliance with the License.
6 # You may obtain a copy of the License at
8 # http://www.apache.org/licenses/LICENSE-2.0
10 # Unless required by applicable law or agreed to in writing, software
11 # distributed under the License is distributed on an "AS IS" BASIS,
12 # WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
13 # See the License for the specific language governing permissions and
14 # limitations under the License.
16 # Default values for sparky-be.
17 # This is a YAML-formatted file.
18 # Declare variables to be passed into your templates.
19 global: # global defaults
24 serviceName: aai-elasticsearch
26 serviceName: aai-gizmo
28 serviceName: aai-search-data
31 #################################################################
32 # Certificate configuration
33 #################################################################
35 nameOverride: aai-sparky-cert-initializer
36 aafDeployFqi: deployer@people.osaaf.org
37 aafDeployPass: demo123456!
38 # aafDeployCredsExternalSecret: some secret
40 app_ns: "org.osaaf.aaf"
41 fqi_namespace: "org.onap.aai"
42 fqi: "aai@aai.onap.org"
43 public_fqdn: "aaf.osaaf.org"
46 credsPath: /opt/app/osaaf/local
48 echo "*** changing passwords into shell safe ones"
49 export KEYSTORE_PASSWORD=$(tr -cd '[:alnum:]' < /dev/urandom | fold -w64 | head -n1)
50 export TRUSTSTORE_PASSWORD=$(tr -cd '[:alnum:]' < /dev/urandom | fold -w64 | head -n1)
51 cd {{ .Values.credsPath }}
52 keytool -storepasswd -new "${KEYSTORE_PASSWORD}" \
53 -storepass "${cadi_keystore_password_p12}" \
54 -keystore {{ .Values.fqi_namespace }}.p12
55 keytool -storepasswd -new "${TRUSTSTORE_PASSWORD}" \
56 -storepass "${cadi_truststore_password}" \
57 -keystore {{ .Values.fqi_namespace }}.trust.jks
58 echo "*** save the generated passwords"
59 echo "KEYSTORE_PASSWORD=${KEYSTORE_PASSWORD}" > mycreds.prop
60 echo "TRUSTSTORE_PASSWORD=${TRUSTSTORE_PASSWORD}" >> mycreds.prop
61 echo "*** change ownership of certificates to targeted user"
62 chown -R 1000 {{ .Values.credsPath }}
65 image: onap/sparky-be:2.0.3
70 dockerhubRepository: registry.hub.docker.com
71 ubuntuInitImage: oomk8s/ubuntu-init:2.0.0
72 # application configuration
74 elasticsearchHttpPort: 9200
75 gerritBranch: 3.0.0-ONAP
76 gerritProject: http://gerrit.onap.org/r/aai/test-config
78 portalPassword: OBF:1t2v1vfv1unz1vgz1t3b
79 portalCookieName: UserId
80 portalAppRoles: ui_view
81 cadiFileLocation: /opt/app/sparky/config/portal/cadi.properties
82 cookieDecryptorClass: org.onap.aai.sparky.security.BaseCookieDecryptor
84 # ONAP Cookie Processing - During initial development, the following flag, if true, will
85 # prevent the portal interface's login processing from searching for a user
86 # specific cookie, and will instead allow passage if a valid session cookie is discovered.
87 portalOnapEnabled: true
90 # override chart name (sparky-be) to share a common namespace
91 # suffix with parent chart (aai)
95 # default number of instances
102 # probe configuration parameters
104 initialDelaySeconds: 10
106 # necessary to disable liveness probe when setting breakpoints
107 # in debugger so K8s doesn't restart unresponsive container
111 initialDelaySeconds: 10
116 portName: aai-sparky-be
123 - baseaddr: "aaisparkybe"
124 name: "aai-sparky-be"
129 # Configure resource requests and limits
130 # ref: http://kubernetes.io/docs/user-guide/compute-resources/