1 # Copyright © 2020 Samsung Electronics
2 # Copyright © 2017 Amdocs, Bell Canada
4 # Licensed under the Apache License, Version 2.0 (the "License");
5 # you may not use this file except in compliance with the License.
6 # You may obtain a copy of the License at
8 # http://www.apache.org/licenses/LICENSE-2.0
10 # Unless required by applicable law or agreed to in writing, software
11 # distributed under the License is distributed on an "AS IS" BASIS,
12 # WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
13 # See the License for the specific language governing permissions and
14 # limitations under the License.
16 #################################################################
17 # Global configuration defaults.
18 #################################################################
21 nodePortPrefixExt: 304
22 repository: nexus3.onap.org:10001
23 readinessRepository: oomk8s
24 readinessImage: readiness-check:2.0.2
25 loggingRepository: docker.elastic.co
26 loggingImage: beats/filebeat:5.5.0
27 aafAgentImage: onap/aaf/aaf_agent:2.1.15
29 mountPath: /dockerdata-nfs
32 envsubstImage: dibi/envsubst
34 #This flag allows SO to instantiate its own mariadb-galera cluster
35 #If shared instance is used, this chart assumes that DB already exists
37 service: mariadb-galera
39 nameOverride: mariadb-galera
41 #################################################################
43 #################################################################
45 - uid: db-root-password
46 name: '{{ include "common.release" . }}-sdnc-db-root-password'
48 externalSecret: '{{ .Values.global.mariadbGalera.localCluster |
49 ternary (default (include "common.mariadb.secret.rootPassSecretName"
50 (dict "dot" . "chartName"
51 (index .Values "mariadb-galera" "nameOverride")))
52 (index .Values "mariadb-galera" "config"
53 "mariadbRootPasswordExternalSecret"))
54 (include "common.mariadb.secret.rootPassSecretName"
55 (dict "dot" . "chartName" .Values.global.mariadbGalera.nameOverride)) }}'
56 password: '{{ (index .Values "mariadb-galera" "config" "mariadbRootPassword") }}'
58 name: &dbSecretName '{{ include "common.release" . }}-sdnc-db-secret'
60 # This is a nasty trick that allows you override this secret using external one
61 # with the same field that is used to pass this to subchart
62 externalSecret: '{{ ternary "" (tpl (default "" (index .Values "mariadb-galera" "config" "userCredentialsExternalSecret")) .) (hasSuffix "sdnc-db-secret" (index .Values "mariadb-galera" "config" "userCredentialsExternalSecret"))}}'
63 login: '{{ index .Values "mariadb-galera" "config" "userName" }}'
64 password: '{{ index .Values "mariadb-galera" "config" "userPassword" }}'
66 name: &odlCredsSecretName '{{ include "common.release" . }}-sdnc-odl-creds'
68 externalSecret: '{{ .Values.config.odlCredsExternalSecret }}'
69 login: '{{ .Values.config.odlUser }}'
70 password: '{{ .Values.config.odlPassword }}'
71 # For now this is left hardcoded but should be revisited in a future
72 passwordPolicy: required
73 - uid: &aaf_secret_uid aaf-creds
75 externalSecret: '{{ ternary (tpl (default "" .Values.aaf_init.aafDeployCredsExternalSecret) .) "aafIsDiabled" .Values.global.aafEnabled }}'
76 login: '{{ .Values.aaf_init.deploy_fqi }}'
77 password: '{{ .Values.aaf_init.deploy_pass }}'
78 passwordPolicy: required
81 externalSecret: '{{ .Values.config.netboxApikeyExternalSecret }}'
82 password: '{{ .Values.config.netboxApikey }}'
83 passwordPolicy: required
86 externalSecret: '{{ .Values.config.aaiCredsExternalSecret}}'
87 login: '{{ .Values.config.aaiUser }}'
88 password: '{{ .Values.config.aaiPassword }}'
89 passwordPolicy: required
90 - uid: modeling-user-creds
92 externalSecret: '{{ .Values.config.modelingCredsExternalSecret}}'
93 login: '{{ .Values.config.modelingUser }}'
94 password: '{{ .Values.config.modelingPassword }}'
95 passwordPolicy: required
98 externalSecret: '{{ .Values.config.restconfCredsExternalSecret}}'
99 login: '{{ .Values.config.restconfUser }}'
100 password: '{{ .Values.config.restconfPassword }}'
101 passwordPolicy: required
103 name: &ansibleSecretName '{{ include "common.release" . }}-sdnc-ansible-creds'
105 externalSecret: '{{ .Values.config.ansibleCredsExternalSecret}}'
106 login: '{{ .Values.config.ansibleUser }}'
107 password: '{{ .Values.config.ansiblePassword }}'
108 passwordPolicy: required
109 - uid: scaleout-creds
111 externalSecret: '{{ .Values.config.scaleoutCredsExternalSecret}}'
112 login: '{{ .Values.config.scaleoutUser }}'
113 password: '{{ .Values.config.scaleoutPassword }}'
114 passwordPolicy: required
116 #################################################################
117 # Application configuration defaults.
118 #################################################################
120 repository: nexus3.onap.org:10001
122 image: onap/sdnc-image:1.8.2
125 # flag to enable debugging - application support required
128 # application configuration
133 odlPassword: Kp8bJ4SXszM0WXlhak3eHlcse2gAw84vaoGGmJvUy2U
134 # odlCredsExternalSecret: some secret
135 netboxApikey: onceuponatimeiplayedwithnetbox20180814
136 # netboxApikeyExternalSecret: some secret
137 aaiUser: sdnc@sdnc.onap.org
138 aaiPassword: demo123456!
139 # aaiCredsExternalSecret: some secret
140 modelingUser: ccsdkapps
141 modelingPassword: ccsdkapps
142 # modelingCredsExternalSecret: some secret
144 restconfPassword: admin
145 # restconfCredsExternalSecret: some secret
147 scaleoutPassword: admin
148 # scaleoutExternalSecret: some secret
150 ansiblePassword: sdnc
151 # ansibleCredsExternalSecret: some secret
152 dbSdnctlDatabase: &sdncDbName sdnctl
153 enableClustering: true
154 sdncHome: /opt/onap/sdnc
155 binDir: /opt/onap/sdnc/bin
156 etcDir: /opt/onap/sdnc/data
158 # if geoEnabled is set to true here, mysql.geoEnabled must be set to true
159 # if geoEnabled is set to true the following 3 values must be set to their proper values
160 myODLCluster: 127.0.0.1
161 peerODLCluster: 127.0.0.1
162 isPrimaryCluster: true
163 configDir: /opt/onap/sdnc/data/properties
164 ccsdkConfigDir: /opt/onap/ccsdk/data/properties
167 logstashServiceName: log-ls
169 ansibleServiceName: sdnc-ansible-server
171 javaHome: /usr/lib/jvm/java-1.8-openjdk
174 etcDir: /opt/opendaylight/etc
175 binDir: /opt/opendaylight/bin
176 salConfigDir: /opt/opendaylight/system/org/opendaylight/controller/sal-clustering-config
177 salConfigVersion: 1.8.2
184 recoveryEventTimeout: 90s
186 persistentActorRestartMinBackoffInSeconds: 10
187 persistentActorRestartMaxBackoffInSeconds: 40
188 persistentActorRestartResetBackoffInSeconds: 20
189 shardTransactionCommitTimeoutInSeconds: 120
190 shardIsolatedLeaderCheckIntervalInMillis: 30000
191 operationTimeoutInSeconds: 120
193 maxGCPauseMillis: 100
194 parallelGCThreads : 3
197 # dependency / sub-chart configuration
201 app_ns: "org.osaaf.aaf"
202 fqi: "sdnc@sdnc.onap.org"
203 fqi_namespace: org.onap.sdnc
204 public_fqdn: "sdnc.onap.org"
205 aafDeployFqi: "deployer@people.osaaf.org"
206 aafDeployPass: demo123456!
207 cadi_latitude: "38.0"
208 cadi_longitude: "-72.0"
209 secret_uid: *aaf_secret_uid
210 credsPath: /opt/app/osaaf/local
213 agentImage: onap/aaf/aaf_agent:2.1.15
214 app_ns: "org.osaaf.aaf"
215 fqi: "sdnc@sdnc.onap.org"
217 public_fqdn: "sdnc.onap.org"
218 deploy_fqi: "deployer@people.osaaf.org"
219 deploy_pass: "demo123456!"
220 cadi_latitude: "38.0"
221 cadi_longitude: "-72.0"
223 mariadb-galera: &mariadbGalera
224 nameOverride: sdnc-db
225 config: &mariadbGaleraConfig
226 rootPasswordExternalSecret: '{{ ternary (include "common.release" .)-sdnc-db-root-password "" .Values.global.mariadbGalera.localCluster }}'
228 userCredentialsExternalSecret: *dbSecretName
234 mountSubPath: sdnc/mariadb-galera
242 nameOverride: sdnc-dmaap-listener
246 <<: *mariadbGaleraConfig
247 mysqlDatabase: *sdncDbName
252 configDir: /opt/onap/sdnc/data/properties
253 odlCredsExternalSecret: *odlCredsSecretName
259 <<: *mariadbGaleraConfig
260 mysqlDatabase: *sdncDbName
261 nameOverride: sdnc-ueb-listener
265 configDir: /opt/onap/sdnc/data/properties
266 odlCredsExternalSecret: *odlCredsSecretName
272 <<: *mariadbGaleraConfig
273 mysqlDatabase: *sdncDbName
276 configDir: /opt/onap/sdnc/data/properties
277 odlCredsExternalSecret: *odlCredsSecretName
281 restCredsExternalSecret: *ansibleSecretName
285 <<: *mariadbGaleraConfig
286 mysqlDatabase: ansible
288 name: sdnc-ansible-server
292 nameOverride: sdnc-dgbuilder
296 rootPasswordExternalSecret: '{{ ternary (printf "%s-sdnc-db-root-password" (include "common.release" .)) (include "common.mariadb.secret.rootPassSecretName" (dict "dot" . "chartName" "mariadb-galera")) .Values.global.mariadbGalera.localCluster }}'
297 userCredentialsExternalSecret: *dbSecretName
298 dbPodName: mariadb-galera
299 dbServiceName: mariadb-galera
300 # This should be revisited and changed to plain text
301 dgUserPassword: cc03e747a6afbbcbf8be7668acfebee5
310 - baseaddr: "sdnc-dgbuilder"
311 name: "sdnc-dgbuilder"
316 # local elasticsearch cluster
317 localElasticCluster: true
323 fqi_namespace: org.onap.sdnc
324 fqi: "sdnc@sdnc.onap.org"
330 # dedicatednode: "yes"
331 # working as master node only, in this case increase replicaCount for elasticsearch-data
332 # dedicatednode: "no"
333 # handles master and data node functionality
346 # default number of instances
353 # probe configuration parameters
355 initialDelaySeconds: 10
357 # necessary to disable liveness probe when setting breakpoints
358 # in debugger so K8s doesn't restart unresponsive container
362 initialDelaySeconds: 10
395 ## Persist data to a persitent volume
399 ## A manually managed Persistent Volume and Claim
400 ## Requires persistence.enabled: true
401 ## If defined, PVC must be created manually before volume will be bound
403 volumeReclaimPolicy: Retain
405 ## database data Persistent Volume Storage Class
406 ## If defined, storageClassName: <storageClass>
407 ## If set to "-", storageClassName: "", which disables dynamic provisioning
408 ## If undefined (the default) or set to null, no storageClassName spec is
409 ## set, choosing the default provisioner. (gp2 on AWS, standard on
410 ## GKE, AWS & OpenStack)
411 accessMode: ReadWriteOnce
413 mountPath: /dockerdata-nfs
414 mountSubPath: sdnc/mdsal
415 mdsalPath: /opt/opendaylight/current/daexim
420 ## A manually managed Persistent Volume and Claim
421 ## Requires persistence.enabled: true
422 ## If defined, PVC must be created manually before volume will be bound
425 volumeReclaimPolicy: Retain
426 accessMode: ReadWriteOnce
428 mountPath: /dockerdata-nfs
429 mountSubPath: sdnc/certs
430 certPath: /opt/app/osaaf
431 ##storageClass: "manual"
436 - baseaddr: "sdnc.api"
442 #Resource Limit flavor -By Default using small
444 #segregation for different envionment (Small and Large)