1 # ============LICENSE_START=======================================================
2 # Copyright (C) 2019-2021 AT&T Intellectual Property. All rights reserved.
3 # ================================================================================
4 # Licensed under the Apache License, Version 2.0 (the "License");
5 # you may not use this file except in compliance with the License.
6 # You may obtain a copy of the License at
8 # http://www.apache.org/licenses/LICENSE-2.0
10 # Unless required by applicable law or agreed to in writing, software
11 # distributed under the License is distributed on an "AS IS" BASIS,
12 # WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
13 # See the License for the specific language governing permissions and
14 # limitations under the License.
16 # SPDX-License-Identifier: Apache-2.0
17 # ============LICENSE_END=========================================================
19 #################################################################
20 # Global configuration defaults.
21 #################################################################
25 #################################################################
27 #################################################################
31 externalSecret: '{{ tpl (default "" .Values.db.credsExternalSecret) . }}'
32 login: '{{ .Values.db.user }}'
33 password: '{{ .Values.db.password }}'
34 passwordPolicy: required
35 - uid: restserver-creds
37 externalSecret: '{{ tpl (default "" .Values.restServer.credsExternalSecret) . }}'
38 login: '{{ .Values.restServer.user }}'
39 password: '{{ .Values.restServer.password }}'
40 passwordPolicy: required
43 externalSecret: '{{ tpl (default "" .Values.apiServer.credsExternalSecret) . }}'
44 login: '{{ .Values.apiServer.user }}'
45 password: '{{ .Values.apiServer.password }}'
46 passwordPolicy: required
48 #################################################################
49 # Application configuration defaults.
50 #################################################################
52 image: onap/policy-xacml-pdp:2.8.2
55 # flag to enable debugging - application support required
58 # application configuration
75 # default number of instances
82 # probe configuration parameters
84 initialDelaySeconds: 20
86 # necessary to disable liveness probe when setting breakpoints
87 # in debugger so K8s doesn't restart unresponsive container
91 initialDelaySeconds: 20
96 name: policy-xacml-pdp
107 authorizedPrincipals:
108 - serviceAccount: dcae-datafile-collector-read
109 - serviceAccount: dcae-datalake-admin-ui-read
110 - serviceAccount: dcae-datalake-des-read
111 - serviceAccount: dcae-datalake-feeder-read
112 - serviceAccount: dcae-heartbeat-read
113 - serviceAccount: dcae-hv-ves-collector-read
114 - serviceAccount: dcae-kpi-ms-read
115 - serviceAccount: dcae-pm-mapper-read
116 - serviceAccount: dcae-pmsh-read
117 - serviceAccount: dcae-prh-read
118 - serviceAccount: dcae-restconf-collector-read
119 - serviceAccount: dcae-slice-analysis-ms-read
120 - serviceAccount: dcae-snmptrap-collector-read
121 - serviceAccount: dcae-son-handler-read
122 - serviceAccount: dcae-tcagen2-read
123 - serviceAccount: dcae-ves-collector-read
124 - serviceAccount: dcae-ves-mapper-read
125 - serviceAccount: dcae-ves-openapi-manager-read
126 - serviceAccount: message-router-read
127 - serviceAccount: oof-read
128 - serviceAccount: sdnc-read
148 #Pods Service Account
150 nameOverride: policy-xacml-pdp
156 # Override the labels based on the Prometheus config parameter: serviceMonitorSelector.
157 # The default operator for prometheus enforces the below label.
161 port: policy-xacml-pdp
166 externalSecretNameSuffix: policy-xacml-pdp-restserver-creds
167 externalSecretUserKey: login
168 externalSecretPasswordKey: password
170 app: '{{ include "common.name" . }}'
171 chart: '{{ .Chart.Name }}-{{ .Chart.Version | replace "+" "_" }}'
172 release: '{{ include "common.release" . }}'
173 heritage: '{{ .Release.Service }}'