.. _ONAP Next Generation Security & Logging Architecture: https://lf-onap.atlassian.net/wiki/x/bVn7
.. _Istio setup guide: https://istio.io/latest/docs/setup/install/helm/
.. _Kiali setup guide: https://kiali.io/docs/installation/installation-guide/example-install/
-.. _Kserve setup guide: https://kserve.github.io/website/0.10/admin/kubernetes_deployment/
+.. _Kserve setup guide: https://kserve.github.io/website/docs/admin-guide/kubernetes-deployment
.. _K8ssandra setup guide: https://docs.k8ssandra.io/install/
.. _Mariadb-Operator setup guide: https://github.com/mariadb-operator/mariadb-operator
.. _Postgres-Operator setup guide: https://github.com/CrunchyData/postgres-operator
claim.name: "sdc_user"
jsonType.label: "String"
additionalDefaultScopes:
+ - "basic"
- "onap_roles"
portal_app:
clientId: "portal-app"
post.logout.redirect.uris: 'https://{{ include "ingress.config.host" (dict "dot" . "baseaddr" "portal-ng-ui") }}/*'
protocolMappers:
- name: "User-Roles"
- protocolMapper: "oidc-usermodel-attribute-mapper"
+ protocolMapper: "oidc-usermodel-realm-role-mapper"
config:
userinfo.token.claim: "true"
id.token.claim: "true"
jsonType.label: "String"
portal_bff:
clientId: "portal-bff"
- protocol: openid-connect
secret : pKOuVH1bwRZoNzp5P5t4GV8CqcCJYVtr
+ standardFlowEnabled: "false"
+ directAccessGrantsEnabled: "false"
+ serviceAccountsEnabled: "true"
protocolMappers:
- name: "Client Host"
protocolMapper: "oidc-usersessionmodel-note-mapper"
apiVersion: v2
description: ONAP Next Generation Portal
name: portal-ng
-version: 14.0.0
+version: 14.1.0
dependencies:
- name: common
# This is the chart version. This version number should be incremented each time you make changes
# to the chart and its templates, including the app version.
# Versions are expected to follow Semantic Versioning (https://semver.org/)
-version: 13.0.1
+version: 13.1.0
# This is the version number of the application being deployed. This version number should be
# incremented each time you make changes to the application. Versions are not expected to
# follow Semantic Versioning. They should reflect the version the application is using.
-appVersion: 0.1.2
+appVersion: 0.2.0
dependencies:
- name: common
- name: http
containerPort: {{ .Values.service.port }}
protocol: TCP
- readinessProbe:
+ startupProbe:
httpGet:
- path: /actuator/health/readiness
+ path: /actuator/health/liveness
port: {{ .Values.service.port }}
- initialDelaySeconds: {{ .Values.probes.readiness.initialDelaySeconds }}
- failureThreshold: {{ .Values.probes.readiness.failureThreshold }}
+ failureThreshold: {{ .Values.probes.startup.failureThreshold }}
+ periodSeconds: {{ .Values.probes.startup.periodSeconds }}
livenessProbe:
httpGet:
path: /actuator/health/liveness
port: {{ .Values.service.port }}
- initialDelaySeconds: {{ .Values.probes.liveness.initialDelaySeconds }}
failureThreshold: {{ .Values.probes.liveness.failureThreshold }}
+ readinessProbe:
+ httpGet:
+ path: /actuator/health/readiness
+ port: {{ .Values.service.port }}
+ failureThreshold: {{ .Values.probes.readiness.failureThreshold }}
resources: {{ include "common.resources" . | nindent 12 }}
env:
KEYCLOAK_URL: http://keycloak-http.keycloak
KEYCLOAK_REALM: onap
- COLLECTOR_HOST: jaeger-collector.istio-config
+ COLLECTOR_HOST: http://jaeger-collector.istio-config
COLLECTOR_PORT: 9411
## Default values for portal-ng-bff.
## Readiness and liveness probes
##
probes:
- # Configuration of the readiness probe to check if the container is ready.
+ # Configuration of the startup probe that
+ # runs before readiness and liveness probe.
+ startup:
+ ## Number of consecutive failures allowed before marking probe as failed.
+ failureThreshold: 90
+ ## check interval of probe.
+ periodSeconds: 1
+ # Configuration of the readiness probe to check
+ # if the container is ready to accept traffic.
readiness:
- ## Wait before performing the first probe
- initialDelaySeconds: 20
## Number of consecutive failures allowed before marking probe as failed.
failureThreshold: 4
# Configuration of the liveness probe to check if the container is alive.
liveness:
- ## Wait before performing the first probe
- initialDelaySeconds: 20
## Number of consecutive failures allowed before marking probe as failed.
failureThreshold: 4
# This is the chart version. This version number should be incremented each time you make changes
# to the chart and its templates, including the app version.
# Versions are expected to follow Semantic Versioning (https://semver.org/)
-version: 14.0.0
+version: 14.1.0
# This is the version number of the application being deployed. This version number should be
# incremented each time you make changes to the application. Versions are not expected to
# follow Semantic Versioning. They should reflect the version the application is using.
-appVersion: 0.2.1
+appVersion: 0.3.0
dependencies:
- name: common
- configMapRef:
name: {{ include "common.fullname" . }}-configmap
ports: {{ include "common.containerPorts" . | nindent 12 }}
+ startupProbe:
+ httpGet:
+ path: /actuator/health/liveness
+ port: {{ .Values.service.port }}
+ failureThreshold: {{ .Values.probes.startup.failureThreshold }}
+ periodSeconds: {{ .Values.probes.startup.periodSeconds }}
livenessProbe:
httpGet:
path: /actuator/health/liveness
port: {{ .Values.service.port }}
- initialDelaySeconds: {{ .Values.probes.liveness.initialDelaySeconds }}
failureThreshold: {{ .Values.probes.liveness.failureThreshold }}
readinessProbe:
httpGet:
path: /actuator/health/readiness
port: {{ .Values.service.port }}
- initialDelaySeconds: {{ .Values.probes.readiness.initialDelaySeconds }}
failureThreshold: {{ .Values.probes.readiness.failureThreshold }}
resources: {{ include "common.resources" . | nindent 12 }}
env:
KEYCLOAK_URL: http://keycloak-http.keycloak
KEYCLOAK_REALM: onap
- COLLECTOR_HOST: jaeger-collector.istio-config
+ COLLECTOR_HOST: http://jaeger-collector.istio-config
COLLECTOR_PORT: 9411
#Service Names of the postgres db to connect to.
postgres:
targetCPUUtilizationPercentage: 80
probes:
+ # Configuration of the startup probe that
+ # runs before readiness and liveness probe.
+ startup:
+ ## Number of consecutive failures allowed before marking probe as failed.
+ failureThreshold: 90
+ ## check interval of probe.
+ periodSeconds: 1
+ # Configuration of the readiness probe to check
+ # if the container is ready to accept traffic.
readiness:
- initialDelaySeconds: 30
- failureThreshold: 5
+ ## Number of consecutive failures allowed before marking probe as failed.
+ failureThreshold: 4
+ # Configuration of the liveness probe to check if the container is alive.
liveness:
- initialDelaySeconds: 30
- failureThreshold: 5
+ ## Number of consecutive failures allowed before marking probe as failed.
+ failureThreshold: 4
env:
TRACING_ENABLED: true
# This is the chart version. This version number should be incremented each time you make changes
# to the chart and its templates, including the app version.
# Versions are expected to follow Semantic Versioning (https://semver.org/)
-version: 14.0.0
+version: 14.1.0
# This is the version number of the application being deployed. This version number should be
# incremented each time you make changes to the application. Versions are not expected to
# follow Semantic Versioning. They should reflect the version the application is using.
-appVersion: 0.2.1
+appVersion: 0.3.0
dependencies:
- name: common
- configMapRef:
name: {{ include "common.fullname" . }}-configmap
ports: {{ include "common.containerPorts" . | nindent 12 }}
+ startupProbe:
+ httpGet:
+ path: /actuator/health/liveness
+ port: {{ .Values.service.port }}
+ failureThreshold: {{ .Values.probes.startup.failureThreshold }}
+ periodSeconds: {{ .Values.probes.startup.periodSeconds }}
livenessProbe:
httpGet:
path: /actuator/health/liveness
port: {{ .Values.service.port }}
- initialDelaySeconds: {{ .Values.probes.liveness.initialDelaySeconds }}
failureThreshold: {{ .Values.probes.liveness.failureThreshold }}
readinessProbe:
httpGet:
path: /actuator/health/readiness
port: {{ .Values.service.port }}
- initialDelaySeconds: {{ .Values.probes.readiness.initialDelaySeconds }}
failureThreshold: {{ .Values.probes.readiness.failureThreshold }}
resources: {{ include "common.resources" . | nindent 12 }}
env:
KEYCLOAK_URL: http://keycloak-http.keycloak
KEYCLOAK_REALM: onap
- COLLECTOR_HOST: jaeger-collector.istio-config
+ COLLECTOR_HOST: http://jaeger-collector.istio-config
COLLECTOR_PORT: 9411
#Service Names of the postgres db to connect to.
postgres:
targetCPUUtilizationPercentage: 80
probes:
+ # Configuration of the startup probe that
+ # runs before readiness and liveness probe.
+ startup:
+ ## Number of consecutive failures allowed before marking probe as failed.
+ failureThreshold: 90
+ ## check interval of probe.
+ periodSeconds: 1
+ # Configuration of the readiness probe to check
+ # if the container is ready to accept traffic.
readiness:
- initialDelaySeconds: 30
- failureThreshold: 5
+ ## Number of consecutive failures allowed before marking probe as failed.
+ failureThreshold: 4
+ # Configuration of the liveness probe to check if the container is alive.
liveness:
- initialDelaySeconds: 30
- failureThreshold: 5
+ ## Number of consecutive failures allowed before marking probe as failed.
+ failureThreshold: 4
env:
TRACING_ENABLED: true
- configMapRef:
name: {{ include "common.fullname" . }}-configmap
ports: {{ include "common.containerPorts" . | nindent 12 }}
+ startupProbe:
+ httpGet:
+ path: /
+ port: {{ .Values.service.internalPort }}
+ failureThreshold: {{ .Values.probes.startup.failureThreshold }}
+ periodSeconds: {{ .Values.probes.startup.periodSeconds }}
livenessProbe:
httpGet:
path: /
- port: {{ .Values.service.internalPort}}
- initialDelaySeconds: {{ .Values.probes.liveness.initialDelaySeconds }}
+ port: {{ .Values.service.internalPort }}
failureThreshold: {{ .Values.probes.liveness.failureThreshold }}
readinessProbe:
httpGet:
path: /
- port: {{ .Values.service.internalPort}}
- initialDelaySeconds: {{ .Values.probes.readiness.initialDelaySeconds }}
+ port: {{ .Values.service.internalPort }}
failureThreshold: {{ .Values.probes.readiness.failureThreshold }}
volumeMounts:
- name: tiles-icons
targetCPUUtilizationPercentage: 80
probes:
+ # Configuration of the startup probe that
+ # runs before readiness and liveness probe.
+ startup:
+ ## Number of consecutive failures allowed before marking probe as failed.
+ failureThreshold: 90
+ ## check interval of probe.
+ periodSeconds: 1
+ # Configuration of the readiness probe to check
+ # if the container is ready to accept traffic.
readiness:
- initialDelaySeconds: 20
+ ## Number of consecutive failures allowed before marking probe as failed.
failureThreshold: 4
+ # Configuration of the liveness probe to check if the container is alive.
liveness:
- initialDelaySeconds: 20
+ ## Number of consecutive failures allowed before marking probe as failed.
failureThreshold: 4
nodeSelector: {}
Code Review / oom.git / commitdiff