1 # Copyright © 2017 Amdocs, Bell Canada
2 # Modifications Copyright © 2018 AT&T
4 # Licensed under the Apache License, Version 2.0 (the "License");
5 # you may not use this file except in compliance with the License.
6 # You may obtain a copy of the License at
8 # http://www.apache.org/licenses/LICENSE-2.0
10 # Unless required by applicable law or agreed to in writing, software
11 # distributed under the License is distributed on an "AS IS" BASIS,
12 # WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
13 # See the License for the specific language governing permissions and
14 # limitations under the License.
16 #################################################################
17 # Global configuration defaults.
18 #################################################################
24 #################################################################
26 #################################################################
28 nameOverride: dmaap-mr-kafka-cert-initializer
29 aafDeployFqi: deployer@people.osaaf.org
30 aafDeployPass: demo123456!
31 # aafDeployCredsExternalSecret: some secret
33 fqi: dmaapmr@mr.dmaap.onap.org
34 public_fqdn: mr.dmaap.onap.org
35 cadi_longitude: "-122.26147"
36 cadi_latitude: "37.78187"
38 credsPath: /opt/app/osaaf/local
39 fqi_namespace: org.onap.dmaap.mr
40 final_cadi_files: cadi.properties
42 echo "*** concat the three prop files"
43 cd {{ .Values.credsPath }}
44 cat {{ .Values.fqi_namespace }}.props > {{ .Values.final_cadi_files }}
45 cat {{ .Values.fqi_namespace }}.cred.props >> {{ .Values.final_cadi_files }}
46 cat {{ .Values.fqi_namespace }}.location.props >> {{ .Values.final_cadi_files }}
47 echo "*** configuration result:"
48 cat {{ .Values.final_cadi_files }}
52 #################################################################
53 # Application configuration defaults.
54 #################################################################
56 image: onap/dmaap/kafka111:1.0.4
61 name: message-router-zookeeper
66 heapOptions: -Xmx5G -Xms1G
67 jaasOptions: -Djava.security.auth.login.config=/etc/kafka/secrets/jaas/zk_client_jaas.conf
68 jaasOptionsAaf: -Djava.security.auth.login.config=/etc/kafka/secrets/jaas/kafka_server_jaas.conf
70 protocolMapAaf: INTERNAL_SASL_PLAINTEXT:SASL_PLAINTEXT,EXTERNAL_SASL_PLAINTEXT:SASL_PLAINTEXT
71 protocolMap: INTERNAL_PLAINTEXT:PLAINTEXT,EXTERNAL_PLAINTEXT:PLAINTEXT
72 listenersAaf: EXTERNAL_SASL_PLAINTEXT://0.0.0.0:9091,INTERNAL_SASL_PLAINTEXT://0.0.0.0:9092
73 listeners: EXTERNAL_PLAINTEXT://0.0.0.0:9091,INTERNAL_PLAINTEXT://0.0.0.0:9092
74 authorizer: org.onap.dmaap.kafkaAuthorize.KafkaCustomAuthorizer
75 saslInterBrokerProtocol: PLAIN
77 interBrokerListernerAaf: INTERNAL_SASL_PLAINTEXT
78 interBrokerListerner: INTERNAL_PLAINTEXT
81 configurationOverrides:
82 "offsets.topic.replication.factor": "3"
83 "log.dirs": "/var/lib/kafka/data"
84 "log.retention.hours": "168"
86 "offsets.topic.replication.factor": "3"
87 "transaction.state.log.replication.factor": "1"
88 "transaction.state.log.min.isr": "1"
89 "num.recovery.threads.per.data.dir": "5"
90 "log.retention.hours": "168"
91 "zookeeper.connection.timeout.ms": "6000"
92 "default.replication.factor": "3"
93 "zookeeper.set.acl": "true"
101 image: solsson/kafka-prometheus-jmx-exporter@sha256
102 imageTag: 6f82e2b0464f50da8104acd7363fb9b995001ddff77d248379f8788e78946143
108 zkClientPassword: kafka_secret
109 kafkaAdminUser: admin
110 kafkaAdminPassword: admin_secret
111 #kafkaAdminUserExternal: some secret
112 #zkClientPasswordExternal: some secret
118 externalSecret: '{{ .Values.jaas.config.zkClientPasswordExternal}}'
119 login: '{{ .Values.jaas.config.zkClient }}'
120 password: '{{ .Values.jaas.config.zkClientPassword }}'
121 passwordPolicy: required
124 externalSecret: '{{ .Values.jaas.config.kafkaAdminUserExternal}}'
125 login: '{{ .Values.jaas.config.kafkaAdminUser }}'
126 password: '{{ .Values.jaas.config.kafkaAdminPassword }}'
127 passwordPolicy: required
129 # flag to enable debugging - application support required
132 # default number of instances
136 # To access Kafka outside cluster, this value must be set to hard and the number of nodes in K8S cluster must be equal or greater then replica count
137 podAntiAffinityType: soft
152 # probe configuration parameters
154 initialDelaySeconds: 70
157 # necessary to disable liveness probe when setting breakpoints
158 # in debugger so K8s doesn't restart unresponsive container
162 initialDelaySeconds: 90
166 ## Persist data to a persitent volume
170 ## A manually managed Persistent Volume and Claim
171 ## Requires persistence.enabled: true
172 ## If defined, PVC must be created manually before volume will be bound
174 volumeReclaimPolicy: Retain
176 ## database data Persistent Volume Storage Class
177 ## If defined, storageClassName: <storageClass>
178 ## If set to "-", storageClassName: "", which disables dynamic provisioning
179 ## If undefined (the default) or set to null, no storageClassName spec is
180 ## set, choosing the default provisioner. (gp2 on AWS, standard on
181 ## GKE, AWS & OpenStack)
184 accessMode: ReadWriteOnce
186 mountPath: /dockerdata-nfs
187 mountSubPath: message-router/data-kafka
191 name: message-router-kafka
192 portName: tcp-message-router-kafka
194 internalSSLPort: 9093
203 # Resource Limit flavor -By Default using small
205 # Segregation for Different environment (Small and Large)