1 # Copyright © 2017 Amdocs, Bell Canada
2 # Copyright © 2020 Samsung Electronics
3 # Copyright © 2021 Orange
5 # Licensed under the Apache License, Version 2.0 (the "License");
6 # you may not use this file except in compliance with the License.
7 # You may obtain a copy of the License at
9 # http://www.apache.org/licenses/LICENSE-2.0
11 # Unless required by applicable law or agreed to in writing, software
12 # distributed under the License is distributed on an "AS IS" BASIS,
13 # WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
14 # See the License for the specific language governing permissions and
15 # limitations under the License.
17 # Default values for vid.
18 # This is a YAML-formatted file.
19 # Declare variables to be passed into your templates.
22 mariadbGalera: &mariadbGalera
23 #This flag allows VID to instantiate its own mariadb-galera cluster
25 service: mariadb-galera
27 nameOverride: mariadb-galera
29 #################################################################
31 #################################################################
33 - uid: vid-db-user-secret
34 name: &dbUserSecretName '{{ include "common.release" . }}-vid-db-user-secret'
36 externalSecret: '{{ tpl (default "" .Values.config.db.userCredentialsExternalSecret) . }}'
37 login: '{{ .Values.config.db.userName }}'
38 password: '{{ .Values.config.db.userPassword }}'
40 #################################################################
42 #################################################################
44 nameOverride: vid-cert-initializer
45 aafDeployFqi: deployer@people.osaaf.org
46 aafDeployPass: demo123456!
47 # aafDeployCredsExternalSecret: some secret
50 public_fqdn: vid.onap.org
51 fqi_namespace: "org.onap.vid"
55 credsPath: /opt/app/osaaf/local
57 echo "*** retrieving password for keystore and trustore"
58 export $(/opt/app/aaf_config/bin/agent.sh local showpass \
59 {{.Values.fqi}} {{ .Values.fqdn }} | grep '^c' | xargs -0)
60 if [ -z "$cadi_keystore_password" ]
62 echo " /!\ certificates retrieval failed"
65 echo "*** changing them into shell safe ones"
66 export KEYSTORE_PASSWD=$(tr -cd '[:alnum:]' < /dev/urandom | fold -w64 | head -n1)
67 export TRUSTORE_PASSWD=$(tr -cd '[:alnum:]' < /dev/urandom | fold -w64 | head -n1)
68 cd {{ .Values.credsPath }}
69 keytool -storepasswd -new "${KEYSTORE_PASSWD}" \
70 -storepass "${cadi_keystore_password_jks}" \
71 -keystore {{ .Values.fqi_namespace }}.jks
72 keytool -storepasswd -new "${TRUSTORE_PASSWD}" \
73 -storepass "${cadi_truststore_password}" \
74 -keystore {{ .Values.fqi_namespace }}.trust.jks
75 echo "*** set key password as same password as keystore password"
76 keytool -keypasswd -new "${KEYSTORE_PASSWD}" \
77 -keystore {{ .Values.fqi_namespace }}.jks \
78 -keypass "${cadi_keystore_password_jks}" \
79 -storepass "${KEYSTORE_PASSWD}" -alias {{ .Values.fqi }}
80 echo "*** save the generated passwords"
81 echo "VID_KEYSTORE_PASSWORD=${KEYSTORE_PASSWD}" > mycreds.prop
82 echo "VID_TRUSTSTORE_PASSWORD=${TRUSTORE_PASSWD}" >> mycreds.prop
83 echo "*** change ownership of certificates to targeted user"
94 # application configuration
98 # userCredentialsExternalSecret: some secret
99 # userPassword: password
100 asdcclientrestauth: "Basic dmlkOktwOGJKNFNYc3pNMFdYbGhhazNlSGxjc2UyZ0F3ODR2YW9HR21KdlV5MlU="
101 asdcclientrestport: "8443"
105 portalhost: "portal.api.simpledemo.onap.org"
107 vidmsopass: OBF:1ih71i271vny1yf41ymf1ylz1yf21vn41hzj1icz
108 msodme2serverurl: http://localhost:8081
109 vidcontactuslink: https://todo_contact_us_link.com
110 vidmysqlmaxconnections: "5"
111 logstashServiceName: log-ls
113 roleaccesscentralized: remote
118 externalSecret: *dbUserSecretName
119 name: &mysqlDbName vid_openecomp_epsdk
120 nameOverride: &vid-galera vid-galera
124 mountSubPath: vid/maria/data
127 lower_case_table_names = 1
129 nameOverride: *vid-galera
133 userCredentialsExternalSecret: *dbUserSecretName
134 mysqlDatabase: *mysqlDbName
135 nameOverride: vid-mariadb-init
136 # A configMap of same name is created. It points to file that will be run after
137 # The DB has been created.
138 dbScriptConfigMap: '{{ include "common.release" . }}-vid-db-init'
140 # default number of instances
147 # probe configuration parameters
149 initialDelaySeconds: 120
151 # necessary to disable liveness probe when setting breakpoints
152 # in debugger so K8s doesn't restart unresponsive container
156 initialDelaySeconds: 10
166 externalHttpPort: 8080
167 internalHttpPort: 8080
172 - baseaddr: "vid.api"
178 # Resource Limit flavor -By Default using small
180 # Segregation for Different environment (Small and Large)