2 # Copyright © 2017 Amdocs, Bell Canada
3 # Modifications Copyright © 2018 AT&T
4 # Modifications Copyright © 2021-2022 Nordix Foundation
6 # Licensed under the Apache License, Version 2.0 (the "License");
7 # you may not use this file except in compliance with the License.
8 # You may obtain a copy of the License at
10 # http://www.apache.org/licenses/LICENSE-2.0
12 # Unless required by applicable law or agreed to in writing, software
13 # distributed under the License is distributed on an "AS IS" BASIS,
14 # WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
15 # See the License for the specific language governing permissions and
16 # limitations under the License.
21 metadata: {{- include "common.resourceMetadata" . | nindent 2 }}
23 selector: {{- include "common.selectors" . | nindent 4 }}
24 serviceName: {{ include "common.servicename" . }}
25 replicas: {{ .Values.replicaCount }}
27 metadata: {{- include "common.templateMetadata" . | nindent 6 }}
30 {{ include "common.certInitializer.initContainer" . | indent 6 | trim }}
31 {{- if .Values.global.aafEnabled }}
32 - name: {{ include "common.name" . }}-update-config
38 export $(cat {{ .Values.certInitializer.appMountPath }}/local/mycreds.prop | xargs -0);
39 cd /config-input && for PFILE in `ls -1 .`; do envsubst <${PFILE} >/config/${PFILE}; done
40 volumeMounts: {{ include "common.certInitializer.volumeMount" . | nindent 8 }}
43 - mountPath: /config-input
45 image: {{ include "repositoryGenerator.image.envsubst" . }}
46 imagePullPolicy: {{ .Values.global.pullPolicy | default .Values.pullPolicy }}
49 {{- if .Values.prometheus.jmx.enabled }}
50 - name: prometheus-jmx-exporter
51 image: {{ include "repositoryGenerator.dockerHubRepository" . }}/{{ .Values.prometheus.jmx.image }}:{{ .Values.prometheus.jmx.imageTag }}
52 imagePullPolicy: {{ .Values.global.pullPolicy | default .Values.pullPolicy }}
55 - -XX:+UnlockExperimentalVMOptions
56 - -XX:+UseCGroupMemoryLimitForHeap
57 - -XX:MaxRAMFraction=1
60 - jmx_prometheus_httpserver.jar
61 - {{ .Values.prometheus.jmx.port | quote }}
62 - /etc/jmx-kafka/jmx-mrservice-prometheus.yml
64 - containerPort: {{ .Values.prometheus.jmx.port }}
68 mountPath: /etc/jmx-kafka
70 - name: srimzi-zk-entrance
71 image: {{ include "repositoryGenerator.dockerHubRepository" . }}/{{ .Values.zookeeper.entrance.image }}
73 - /opt/stunnel/stunnel_run.sh
75 - containerPort: {{ .Values.global.zkTunnelService.internalPort }}
81 - name: STRIMZI_ZOOKEEPER_CONNECT
82 value: '{{ include "common.release" . }}-strimzi-zookeeper-client:{{ .Values.global.zkTunnelService.internalPort }}'
83 imagePullPolicy: Always
87 - /opt/stunnel/stunnel_healthcheck.sh
88 - '{{ .Values.global.zkTunnelService.internalPort }}'
90 initialDelaySeconds: 15
97 - /opt/stunnel/stunnel_healthcheck.sh
98 - '{{ .Values.global.zkTunnelService.internalPort }}'
100 initialDelaySeconds: 15
105 - mountPath: /etc/cluster-operator-certs/
106 name: cluster-operator-certs
107 - mountPath: /etc/cluster-ca-certs/
108 name: cluster-ca-certs
109 - name: {{ include "common.name" . }}
110 image: {{ include "repositoryGenerator.repository" . }}/{{ .Values.image }}
111 imagePullPolicy: {{ .Values.global.pullPolicy | default .Values.pullPolicy }}
112 {{- if .Values.global.aafEnabled }}
118 cp /jetty-config/ajsc-jetty.xml /appl/dmaapMR1/etc/
119 cp /jetty-config/cadi.properties {{ .Values.certInitializer.appMountPath }}/local/cadi.properties
120 /bin/sh /appl/startup.sh
122 ports: {{ include "common.containerPorts" . | nindent 10 }}
123 {{- if eq .Values.liveness.enabled true }}
126 port: {{ .Values.liveness.port }}
127 initialDelaySeconds: {{ .Values.liveness.initialDelaySeconds }}
128 periodSeconds: {{ .Values.liveness.periodSeconds }}
129 timeoutSeconds: {{ .Values.liveness.timeoutSeconds }}
130 successThreshold: {{ .Values.liveness.successThreshold }}
131 failureThreshold: {{ .Values.liveness.failureThreshold }}
135 port: {{ .Values.readiness.port }}
136 initialDelaySeconds: {{ .Values.readiness.initialDelaySeconds }}
137 periodSeconds: {{ .Values.readiness.periodSeconds }}
138 timeoutSeconds: {{ .Values.readiness.timeoutSeconds }}
139 successThreshold: {{ .Values.readiness.successThreshold }}
140 failureThreshold: {{ .Values.readiness.failureThreshold }}
143 port: {{ .Values.startup.port }}
144 initialDelaySeconds: {{ .Values.startup.initialDelaySeconds }}
145 periodSeconds: {{ .Values.startup.periodSeconds }}
146 timeoutSeconds: {{ .Values.startup.timeoutSeconds }}
147 successThreshold: {{ .Values.startup.successThreshold }}
148 failureThreshold: {{ .Values.startup.failureThreshold }}
151 {{- include "common.secret.envFromSecretFast" (dict "global" . "uid" "mr-kafka-admin-secret" "key" "sasl.jaas.config") | indent 12 }}
153 value: {{ .Values.global.saslMechanism }}
155 value: "{{ .Values.global.aafEnabled }}"
156 volumeMounts: {{ include "common.certInitializer.volumeMount" . | nindent 10 }}
157 - mountPath: /etc/localtime
160 - mountPath: /appl/dmaapMR1/bundleconfig/etc/appprops/MsgRtrApi.properties
161 subPath: MsgRtrApi.properties
163 - mountPath: /appl/dmaapMR1/bundleconfig/etc/logback.xml
166 {{- if .Values.global.aafEnabled }}
167 - mountPath: /appl/dmaapMR1/etc/runner-web.xml
168 subPath: runner-web.xml
170 - mountPath: /appl/dmaapMR1/bundleconfig/etc/sysprops/sys-props.properties
171 subPath: sys-props.properties
173 - mountPath: /jetty-config
176 resources: {{ include "common.resources" . | nindent 12 }}
177 serviceAccountName: {{ include "common.fullname" (dict "suffix" "read" "dot" . )}}
178 volumes: {{ include "common.certInitializer.volumes" . | nindent 8 }}
184 name: {{ include "common.fullname" . }}-msgrtrapi-prop-configmap
187 name: {{ include "common.fullname" . }}-etc
190 name: {{ include "common.fullname" . }}-logback-xml-configmap
191 {{- if .Values.prometheus.jmx.enabled }}
194 name: {{ include "common.fullname" . }}-prometheus-configmap
198 name: {{ include "common.fullname" . }}-sys-props
201 - name: cluster-operator-certs
204 secretName: {{ include "common.release" . }}-strimzi-cluster-operator-certs
205 - name: cluster-ca-certs
208 secretName: {{ include "common.release" . }}-strimzi-cluster-ca-cert
210 - name: "{{ include "common.namespace" . }}-docker-registry-key"
212 apiVersion: networking.k8s.io/v1
215 name: {{ include "common.fullname" . }}-zk-network-policy
216 namespace: {{ include "common.namespace" . }}
220 strimzi.io/name: {{ include "common.release" . }}-strimzi-zookeeper
225 app.kubernetes.io/name: {{ include "common.name" . }}
227 - port: {{ .Values.global.zkTunnelService.internalPort }}