1 # Copyright © 2017 Amdocs, Bell Canada
2 # Modifications Copyright © 2018 AT&T
3 # Modifications Copyright © 2021-2022 Nordix Foundation
5 # Licensed under the Apache License, Version 2.0 (the "License");
6 # you may not use this file except in compliance with the License.
7 # You may obtain a copy of the License at
9 # http://www.apache.org/licenses/LICENSE-2.0
11 # Unless required by applicable law or agreed to in writing, software
12 # distributed under the License is distributed on an "AS IS" BASIS,
13 # WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
14 # See the License for the specific language governing permissions and
15 # limitations under the License.
17 #################################################################
18 # Global configuration defaults.
19 #################################################################
22 kafkaBootstrap: strimzi-kafka-bootstrap
23 saslMechanism: scram-sha-512
24 kafkaInternalPort: 9092
28 portName: tcp-zk-tunnel
31 #################################################################
33 #################################################################
35 nameOverride: dmaap-mr-cert-initializer
36 aafDeployFqi: deployer@people.osaaf.org
37 aafDeployPass: demo123456!
38 # aafDeployCredsExternalSecret: some secret
40 fqi: dmaapmr@mr.dmaap.onap.org
41 public_fqdn: mr.dmaap.onap.org
42 cadi_longitude: "-122.26147"
43 cadi_latitude: "37.78187"
45 credsPath: /opt/app/osaaf/local
46 appMountPath: /appl/dmaapMR1/bundleconfig/etc/sysprops
47 fqi_namespace: org.onap.dmaap.mr
49 cd {{ .Values.credsPath }}
50 echo "*** change jks password into shell safe one"
51 export KEYSTORE_PASSWD=$(tr -cd '[:alnum:]' < /dev/urandom | fold -w64 | head -n1)
52 keytool -storepasswd -new "${KEYSTORE_PASSWD}" \
53 -storepass "${cadi_keystore_password_jks}" \
54 -keystore {{ .Values.fqi_namespace }}.jks
55 echo "*** set key password as same password as jks keystore password"
56 keytool -keypasswd -new "${KEYSTORE_PASSWD}" \
57 -keystore {{ .Values.fqi_namespace }}.jks \
58 -keypass "${cadi_keystore_password_jks}" \
59 -storepass "${KEYSTORE_PASSWD}" -alias {{ .Values.fqi }}
60 echo "*** store the passwords"
61 echo "KEYSTORE_PASSWORD=${KEYSTORE_PASSWD}" > mycreds.prop
62 echo "KEYSTORE_PASSWORD_P12=${cadi_keystore_password_p12}" >> mycreds.prop
63 echo "TRUSTSTORE_PASSWORD=${cadi_truststore_password}" >> mycreds.prop
64 echo "*** give ownership of files to the user"
67 #################################################################
68 # Application configuration defaults.
69 #################################################################
71 image: onap/dmaap/dmaap-mr:1.3.2
76 image: scholzj/zoo-entrance:latest
79 - uid: mr-kafka-admin-secret
80 externalSecret: '{{ tpl (default "" .Values.config.jaasConfExternalSecret) . }}'
83 - name: sasl.jaas.config
84 value: '{{ .Values.config.someConfig }}'
87 # flag to enable debugging - application support required
90 # application configuration
94 # default number of instances
101 # probe configuration parameters
103 initialDelaySeconds: 10
108 # necessary to disable liveness probe when setting breakpoints
109 # in debugger so K8s doesn't restart unresponsive container
114 initialDelaySeconds: 10
122 initialDelaySeconds: 10
132 both_tls_and_plain: true
149 image: solsson/kafka-prometheus-jmx-exporter@sha256
150 imageTag: 6f82e2b0464f50da8104acd7363fb9b995001ddff77d248379f8788e78946143
158 name: "message-router"
164 # Resource Limit flavor -By Default using small
166 # Segregation for Different environment (Small and Large)
184 #Pods Service Account
186 nameOverride: message-router