1 # Copyright © 2017 Amdocs, Bell Canada
2 # Modifications Copyright © 2018 AT&T
4 # Licensed under the Apache License, Version 2.0 (the "License");
5 # you may not use this file except in compliance with the License.
6 # You may obtain a copy of the License at
8 # http://www.apache.org/licenses/LICENSE-2.0
10 # Unless required by applicable law or agreed to in writing, software
11 # distributed under the License is distributed on an "AS IS" BASIS,
12 # WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
13 # See the License for the specific language governing permissions and
14 # limitations under the License.
16 #################################################################
17 # Global configuration defaults.
18 #################################################################
21 centralizedLoggingEnabled: false
23 mountPath: /dockerdata-nfs
25 #################################################################
27 #################################################################
30 name: '{{ include "common.release" . }}-appc-db-root-pass'
31 externalSecret: '{{ .Values.config.dbRootPassExternalSecret }}'
33 password: '{{ .Values.config.dbRootPass }}'
34 - uid: 'appcdb-user-creds'
35 name: '{{ include "common.release" . }}-appcdb-user-creds'
37 externalSecret: '{{ tpl (default "" .Values.config.appcdb.userCredentialsExternalSecret) . }}'
38 login: '{{ .Values.config.appcdb.userName }}'
39 password: '{{ .Values.config.appcdb.password }}'
40 - uid: 'sdncdb-user-creds'
41 name: '{{ include "common.release" . }}-sdncdb-user-creds'
43 externalSecret: '{{ tpl (default "" .Values.config.sdncdb.userCredentialsExternalSecret) . }}'
44 login: '{{ .Values.config.sdncdb.userName }}'
45 password: '{{ .Values.config.sdncdb.password }}'
48 #################################################################
49 # Application configuration defaults.
50 #################################################################
53 image: onap/appc-image:1.7.2
56 # flag to enable debugging - application support required
63 # application configuration
65 # dbRootPassExternalSecret: some secret
66 # dbRootPass: password
68 # Warning: changing this config option may not work.
69 # It seems that the DB name is hardcoded.
73 # userCredsExternalSecret: some secret
75 # Warning: changing this config option may not work.
76 # It seems that the DB name is hardcoded.
80 # userCredsExternalSecret: some secret
83 ansibleServiceName: appc-ansible-server
85 mariadbGaleraSVCName: &appc-db appc-db
86 mariadbGaleraContName: *appc-db
88 enableClustering: false
89 configDir: /opt/onap/appc/data/properties
92 logstashServiceName: log-ls
94 odlPassword: Kp8bJ4SXszM0WXlhak3eHlcse2gAw84vaoGGmJvUy2U
95 openStackType: OpenStackProvider
96 openStackName: OpenStack
97 openStackKeyStoneUrl: http://localhost:8181/apidoc/explorer/index.html
98 openStackServiceTenantName: default
99 openStackDomain: default
100 openStackUserName: admin
101 openStackEncryptedPassword: enc:LDEbHEAvTF1R
103 dmaapServiceUrl: http://localhost:8080/publish
104 dmaapServiceUser: appc
105 dmaapServicePassword: onapappc
110 name: appc-ansible-server
113 mysqlServiceName: *appc-db
119 nameOverride: *appc-db
121 externalSecret: '{{ include "common.release" . }}-appc-db-root-pass'
124 nfsprovisionerPrefix: appc
127 mountSubPath: appc/data
129 disableNfsProvisioner: true
131 nameOverride: *appc-db
134 mariadbConfiguration: |-
137 socket=/opt/bitnami/mariadb/tmp/mysql.sock
138 plugin_dir=/opt/bitnami/mariadb/plugin
141 lower_case_table_names = 1
142 default_storage_engine=InnoDB
143 basedir=/opt/bitnami/mariadb
144 datadir=/bitnami/mariadb/data
145 plugin_dir=/opt/bitnami/mariadb/plugin
146 tmpdir=/opt/bitnami/mariadb/tmp
147 socket=/opt/bitnami/mariadb/tmp/mysql.sock
148 pid_file=/opt/bitnami/mariadb/tmp/mysqld.pid
152 collation_server=utf8_unicode_ci
153 init_connect='SET NAMES utf8'
154 character_set_server=utf8
158 myisam_recover_options=FORCE,BACKUP
163 max_allowed_packet=16M
164 max_connect_errors=1000000
165 sql_mode=STRICT_TRANS_TABLES,ERROR_FOR_DIVISION_BY_ZERO,NO_AUTO_CREATE_USER,NO_AUTO_VALUE_ON_ZERO,NO_ENGINE_SUBSTITUTION,NO_ZERO_DATE,NO_ZERO_IN_DATE
171 # Disabling for performance per http://severalnines.com/blog/9-tips-going-production-galera-cluster-mysql
173 # Required for Galera
178 max_heap_table_size=32M
179 # Re-enabling as now works with Maria 10.1.2
182 query_cache_size=256M
185 open_files_limit=65535
186 table_definition_cache=4096
187 table_open_cache=4096
192 # Mandatory per https://github.com/codership/documentation/issues/25
193 innodb_autoinc_lock_mode=2
194 # Per https://www.percona.com/blog/2006/08/04/innodb-double-write/
196 innodb_flush_method=O_DIRECT
197 innodb_log_files_in_group=2
198 innodb_log_file_size=128M
199 innodb_flush_log_at_trx_commit=1
200 innodb_file_per_table=1
201 # 80% Memory is default reco.
202 # Need to re-evaluate when DB size grows
203 innodb_buffer_pool_size=2G
204 innodb_file_format=Barracuda
207 log_error=/opt/bitnami/mariadb/logs/mysqld.log
208 slow_query_log_file=/opt/bitnami/mariadb/logs/mysqld.log
209 log_queries_not_using_indexes=1
213 ## Use extraVolumes and extraVolumeMounts to mount /certs filesystem
214 # ssl_ca=/certs/ca.pem
215 # ssl_cert=/certs/server-cert.pem
216 # ssl_key=/certs/server-key.pem
220 wsrep_provider=/opt/bitnami/mariadb/lib/libgalera_smm.so
221 wsrep_sst_method=mariabackup
222 wsrep_slave_threads=4
223 wsrep_cluster_address=gcomm://
224 wsrep_cluster_name=galera
225 wsrep_sst_auth="root:"
226 # Enabled for performance per https://mariadb.com/kb/en/innodb-system-variables/#innodb_flush_log_at_trx_commit
227 innodb_flush_log_at_trx_commit=2
228 # MYISAM REPLICATION SUPPORT #
229 wsrep_replicate_myisam=ON
231 default_storage_engine=InnoDB
232 innodb_autoinc_lock_mode=2
233 transaction-isolation=READ-COMMITTED
238 plugin_load_add=auth_pam
240 ## Data-at-Rest Encryption
241 ## Use extraVolumes and extraVolumeMounts to mount /encryption filesystem
242 # plugin_load_add=file_key_management
243 # file_key_management_filename=/encryption/keyfile.enc
244 # file_key_management_filekey=FILE:/encryption/keyfile.key
245 # file_key_management_encryption_algorithm=AES_CTR
247 # encrypt_tmp_files=ON
249 ## InnoDB/XtraDB Encryption
250 # innodb_encrypt_tables=ON
251 # innodb_encrypt_temporary_tables=ON
252 # innodb_encrypt_log=ON
253 # innodb_encryption_threads=4
254 # innodb_encryption_rotate_key_age=1
257 # aria_encrypt_tables=ON
258 # encrypt_tmp_disk_tables=ON
261 nameOverride: appc-dgbuilder
263 nameOverride: appc-dgbuilder-cert-initializer
266 rootPasswordExternalSecret: '{{ include "common.release" . }}-appc-db-root-pass'
267 userCredentialsExternalSecret: '{{ include "common.release" . }}-sdncdb-user-creds'
269 dbServiceName: *appc-db
273 nameOverride: appc-dgbuilder
277 - baseaddr: "appc-dgbuilder"
278 name: "appc-dgbuilder"
283 #passing value to cdt chart. value of nodePort3 will be same as appc.service.nodePort3.
286 # default number of instances
293 # probe configuration parameters
295 initialDelaySeconds: 300
297 # necessary to disable liveness probe when setting breakpoints
298 # in debugger so K8s doesn't restart unresponsive container
302 initialDelaySeconds: 300
322 ## Persist data to a persitent volume
326 ## A manually managed Persistent Volume and Claim
327 ## Requires persistence.enabled: true
328 ## If defined, PVC must be created manually before volume will be bound
330 volumeReclaimPolicy: Retain
332 ## database data Persistent Volume Storage Class
333 ## If defined, storageClassName: <storageClass>
334 ## If set to "-", storageClassName: "", which disables dynamic provisioning
335 ## If undefined (the default) or set to null, no storageClassName spec is
336 ## set, choosing the default provisioner. (gp2 on AWS, standard on
337 ## GKE, AWS & OpenStack)
338 accessMode: ReadWriteOnce
340 mountPath: /dockerdata-nfs
341 mountSubPath: appc/mdsal
342 mdsalPath: /opt/opendaylight/current/daexim
347 - baseaddr: "appc-api"
354 # Configure resource requests and limits
355 # ref: http://kubernetes.io/docs/user-guide/compute-resources/