+secrets:
+ - uid: db-root-password
+ name: &dbRootPassSecretName '{{ include "common.release" . }}-policy-db-root-password'
+ type: password
+ externalSecret: '{{ ternary "" (tpl (default "" (index .Values "mariadb-galera" "rootUser" "externalSecret")) .) (hasSuffix "policy-db-root-password" (index .Values "mariadb-galera" "rootUser" "externalSecret"))}}'
+ password: '{{ (index .Values "mariadb-galera" "rootUser" "password") }}'
+ policy: generate
+ - uid: db-secret
+ name: &dbSecretName '{{ include "common.release" . }}-policy-db-secret'
+ type: basicAuth
+ externalSecret: '{{ ternary "" (tpl (default "" (index .Values "mariadb-galera" "db" "externalSecret")) .) (hasSuffix "policy-db-secret" (index .Values "mariadb-galera" "db" "externalSecret"))}}'
+ login: '{{ index .Values "mariadb-galera" "db" "user" }}'
+ password: '{{ index .Values "mariadb-galera" "db" "password" }}'
+ passwordPolicy: generate
+
+db: &dbSecretsHook
+ credsExternalSecret: *dbSecretName
+
+policy-api:
+ enabled: true
+ db: *dbSecretsHook
+policy-pap:
+ enabled: true
+ db: *dbSecretsHook
+policy-xacml-pdp:
+ enabled: true
+ db: *dbSecretsHook
+policy-apex-pdp:
+ enabled: true
+ db: *dbSecretsHook
+policy-drools-pdp:
+ enabled: true
+ db: *dbSecretsHook
+policy-distribution:
+ enabled: true
+ db: *dbSecretsHook
+policy-clamp-be:
+ enabled: true
+ db: *dbSecretsHook
+policy-clamp-fe:
+ enabled: true
+policy-clamp-cl-k8s-ppnt:
+ enabled: true
+policy-nexus:
+ enabled: false
+
+#################################################################
+# DB configuration defaults.
+#################################################################
+