1 # Copyright © 2020 Samsung Electronics
2 # Copyright © 2019 Orange, Bell Canada
3 # Copyright © 2017 Amdocs, Bell Canada
5 # Licensed under the Apache License, Version 2.0 (the "License");
6 # you may not use this file except in compliance with the License.
7 # You may obtain a copy of the License at
9 # http://www.apache.org/licenses/LICENSE-2.0
11 # Unless required by applicable law or agreed to in writing, software
12 # distributed under the License is distributed on an "AS IS" BASIS,
13 # WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
14 # See the License for the specific language governing permissions and
15 # limitations under the License.
17 #################################################################
18 # Global configuration defaults.
19 #################################################################
22 nodePortPrefixExt: 304
24 mountPath: /dockerdata-nfs
26 #################################################################
28 #################################################################
30 - name: &dbUserSecretName '{{ include "common.release" . }}-cds-db-secret'
33 externalSecret: '{{ ternary "" (tpl (default "" (index .Values "mariadb-galera" "db" "externalSecret")) .) (hasSuffix "cds-db-secret" (index .Values "mariadb-galera" "db" "externalSecret"))}}'
34 login: '{{ index .Values "mariadb-galera" "db" "user" }}'
35 password: '{{ index .Values "mariadb-galera" "db" "password" }}'
37 #################################################################
38 # Application configuration defaults.
39 #################################################################
47 # flag to enable debugging - application support required
50 # default number of instances
57 # probe configuration parameters
59 initialDelaySeconds: 20
62 # necessary to disable liveness probe when setting breakpoints
63 # in debugger so K8s doesn't restart unresponsive container
67 initialDelaySeconds: 10
77 externalSecret: *dbUserSecretName
78 name: &mysqlDbName sdnctl
79 nameOverride: &dbServer cds-db
83 mountSubPath: cds/data
85 nameOverride: *dbServer
87 mariadbConfiguration: |-
90 socket=/opt/bitnami/mariadb/tmp/mysql.sock
91 plugin_dir=/opt/bitnami/mariadb/plugin
94 lower_case_table_names = 1
95 default_storage_engine=InnoDB
96 basedir=/opt/bitnami/mariadb
97 datadir=/bitnami/mariadb/data
98 plugin_dir=/opt/bitnami/mariadb/plugin
99 tmpdir=/opt/bitnami/mariadb/tmp
100 socket=/opt/bitnami/mariadb/tmp/mysql.sock
101 pid_file=/opt/bitnami/mariadb/tmp/mysqld.pid
105 collation_server=utf8_unicode_ci
106 init_connect='SET NAMES utf8'
107 character_set_server=utf8
111 myisam_recover_options=FORCE,BACKUP
116 max_allowed_packet=16M
117 max_connect_errors=1000000
118 sql_mode=STRICT_TRANS_TABLES,ERROR_FOR_DIVISION_BY_ZERO,NO_AUTO_CREATE_USER,NO_AUTO_VALUE_ON_ZERO,NO_ENGINE_SUBSTITUTION,NO_ZERO_DATE,NO_ZERO_IN_DATE,ONLY_FULL_GROUP_BY
124 # Disabling for performance per http://severalnines.com/blog/9-tips-going-production-galera-cluster-mysql
126 # Required for Galera
131 max_heap_table_size=32M
132 # Re-enabling as now works with Maria 10.1.2
135 query_cache_size=256M
138 open_files_limit=65535
139 table_definition_cache=4096
140 table_open_cache=4096
145 # Mandatory per https://github.com/codership/documentation/issues/25
146 innodb_autoinc_lock_mode=2
147 # Per https://www.percona.com/blog/2006/08/04/innodb-double-write/
149 innodb_flush_method=O_DIRECT
150 innodb_log_files_in_group=2
151 innodb_log_file_size=128M
152 innodb_flush_log_at_trx_commit=1
153 innodb_file_per_table=1
154 # 80% Memory is default reco.
155 # Need to re-evaluate when DB size grows
156 innodb_buffer_pool_size=2G
157 innodb_file_format=Barracuda
160 log_error=/opt/bitnami/mariadb/logs/mysqld.log
161 slow_query_log_file=/opt/bitnami/mariadb/logs/mysqld.log
162 log_queries_not_using_indexes=1
166 ## Use extraVolumes and extraVolumeMounts to mount /certs filesystem
167 # ssl_ca=/certs/ca.pem
168 # ssl_cert=/certs/server-cert.pem
169 # ssl_key=/certs/server-key.pem
173 wsrep_provider=/opt/bitnami/mariadb/lib/libgalera_smm.so
174 wsrep_sst_method=mariabackup
175 wsrep_slave_threads=4
176 wsrep_cluster_address=gcomm://
177 wsrep_cluster_name=galera
178 wsrep_sst_auth="root:"
179 # Enabled for performance per https://mariadb.com/kb/en/innodb-system-variables/#innodb_flush_log_at_trx_commit
180 innodb_flush_log_at_trx_commit=2
181 # MYISAM REPLICATION SUPPORT #
182 wsrep_replicate_myisam=ON
185 plugin_load_add=auth_pam
187 ## Data-at-Rest Encryption
188 ## Use extraVolumes and extraVolumeMounts to mount /encryption filesystem
189 # plugin_load_add=file_key_management
190 # file_key_management_filename=/encryption/keyfile.enc
191 # file_key_management_filekey=FILE:/encryption/keyfile.key
192 # file_key_management_encryption_algorithm=AES_CTR
194 # encrypt_tmp_files=ON
196 ## InnoDB/XtraDB Encryption
197 # innodb_encrypt_tables=ON
198 # innodb_encrypt_temporary_tables=ON
199 # innodb_encrypt_log=ON
200 # innodb_encryption_threads=4
201 # innodb_encryption_rotate_key_age=1
204 # aria_encrypt_tables=ON
205 # encrypt_tmp_disk_tables=ON
207 cds-blueprints-processor:
214 dbCredsExternalSecret: *dbUserSecretName
216 cds-command-executor:
229 #Resource Limit flavor -By Default using small
231 #segregation for different envionment (Small and Large)