1 {{- if .Values.settings.integrations.knative.enabled }}
7 istio-injection: enabled
8 serving.knative.dev/release: devel
15 serving.knative.dev/controller: "true"
16 apiVersion: rbac.authorization.k8s.io/v1
20 serving.knative.dev/release: devel
21 name: knative-serving-admin
24 apiVersion: rbac.authorization.k8s.io/v1
28 serving.knative.dev/controller: "true"
29 serving.knative.dev/release: devel
30 name: knative-serving-core
79 - admissionregistration.k8s.io
81 - mutatingwebhookconfigurations
91 - apiextensions.k8s.io
93 - customresourcedefinitions
103 - serving.knative.dev
118 - serving.knative.dev
120 - configurations/status
133 - autoscaling.internal.knative.dev
136 - podautoscalers/status
148 - horizontalpodautoscalers
158 - caching.internal.knative.dev
170 - networking.internal.knative.dev
173 - clusteringresses/status
175 - serverlessservices/status
186 - networking.istio.io
203 serving.knative.dev/release: devel
205 namespace: knative-serving
208 apiVersion: rbac.authorization.k8s.io/v1
209 kind: ClusterRoleBinding
212 serving.knative.dev/release: devel
213 name: knative-serving-controller-admin
215 apiGroup: rbac.authorization.k8s.io
217 name: knative-serving-admin
219 - kind: ServiceAccount
221 namespace: knative-serving
229 serving.knative.dev/release: devel
230 name: activator-service
231 namespace: knative-serving
258 serving.knative.dev/release: devel
260 namespace: knative-serving
276 serving.knative.dev/release: devel
278 namespace: knative-serving
287 apiVersion: caching.internal.knative.dev/v1alpha1
291 serving.knative.dev/release: devel
293 namespace: knative-serving
295 image: gcr.io/knative-releases/github.com/knative/serving/cmd/queue@sha256:b5c759e4ea6f36ae4498c1ec794653920345b9ad7492731fb1d6087e3b95dc43
302 serving.knative.dev/release: devel
304 namespace: knative-serving
313 sidecar.istio.io/inject: "true"
317 serving.knative.dev/release: devel
322 - -stderrthreshold=FATAL
327 fieldPath: metadata.name
328 - name: SYSTEM_NAMESPACE
331 fieldPath: metadata.namespace
332 - name: CONFIG_LOGGING_NAME
333 value: config-logging
334 image: gcr.io/knative-releases/github.com/knative/serving/cmd/activator@sha256:60630ac88d8cb67debd1e2ab1ecd6ec3ff6cbab2336dda8e7ae1c01ebead76c0
341 - containerPort: 8080
343 - containerPort: 8081
345 - containerPort: 9090
359 - mountPath: /etc/config-logging
361 - mountPath: /etc/config-observability
362 name: config-observability
363 serviceAccountName: controller
369 name: config-observability
370 name: config-observability
378 serving.knative.dev/release: devel
380 namespace: knative-serving
399 serving.knative.dev/release: devel
401 namespace: knative-serving
410 sidecar.istio.io/inject: "true"
416 - name: SYSTEM_NAMESPACE
419 fieldPath: metadata.namespace
420 - name: CONFIG_LOGGING_NAME
421 value: config-logging
422 image: gcr.io/knative-releases/github.com/knative/serving/cmd/autoscaler@sha256:442f99e3a55653b19137b44c1d00f681b594d322cb39c1297820eb717e2134ba
425 - containerPort: 8080
427 - containerPort: 9090
437 - mountPath: /etc/config-autoscaler
438 name: config-autoscaler
439 - mountPath: /etc/config-logging
441 - mountPath: /etc/config-observability
442 name: config-observability
443 serviceAccountName: controller
446 name: config-autoscaler
447 name: config-autoscaler
452 name: config-observability
453 name: config-observability
459 ################################
461 # EXAMPLE CONFIGURATION #
463 ################################
465 # This block is not actually functional configuration,
466 # but serves to illustrate the available configuration
467 # options and document them in a way that is accessible
468 # to users that `kubectl edit` this config map.
470 # These sample configuration options may be copied out of
471 # this block and unindented to actually change the configuration.
473 # The Revision ContainerConcurrency field specifies the maximum number
474 # of requests the Container can handle at once. Container concurrency
475 # target percentage is how much of that maximum to use in a stable
476 # state. E.g. if a Revision specifies ContainerConcurrency of 10, then
477 # the Autoscaler will try to maintain 7 concurrent connections per pod
478 # on average. A value of 0.7 is chosen because the Autoscaler panics
479 # when concurrency exceeds 2x the desired set point. So we will panic
480 # before we reach the limit.
481 container-concurrency-target-percentage: "1.0"
483 # The container concurrency target default is what the Autoscaler will
484 # try to maintain when the Revision specifies unlimited concurrency.
485 # Even when specifying unlimited concurrency, the autoscaler will
486 # horizontally scale the application based on this target concurrency.
488 # A value of 100 is chosen because it's enough to allow vertical pod
489 # autoscaling to tune resource requests. E.g. maintaining 1 concurrent
490 # "hello world" request doesn't consume enough resources to allow VPA
491 # to achieve efficient resource usage (VPA CPU minimum is 300m).
492 container-concurrency-target-default: "100"
494 # When operating in a stable mode, the autoscaler operates on the
495 # average concurrency over the stable window.
498 # When observed average concurrency during the panic window reaches 2x
499 # the target concurrency, the autoscaler enters panic mode. When
500 # operating in panic mode, the autoscaler operates on the average
501 # concurrency over the panic window.
504 # Max scale up rate limits the rate at which the autoscaler will
505 # increase pod count. It is the maximum ratio of desired pods versus
507 max-scale-up-rate: "10"
509 # Scale to zero feature flag
510 enable-scale-to-zero: "true"
512 # Tick interval is the time between autoscaling calculations.
515 # Dynamic parameters (take effect when config map is updated):
517 # Scale to zero grace period is the time an inactive revision is left
518 # running before it is scaled to zero (min: 30s).
519 scale-to-zero-grace-period: "30s"
523 serving.knative.dev/release: devel
524 name: config-autoscaler
525 namespace: knative-serving
531 ################################
533 # EXAMPLE CONFIGURATION #
535 ################################
537 # This block is not actually functional configuration,
538 # but serves to illustrate the available configuration
539 # options and document them in a way that is accessible
540 # to users that `kubectl edit` this config map.
542 # These sample configuration options may be copied out of
543 # this block and unindented to actually change the configuration.
545 # List of repositories for which tag to digest resolving should be skipped
546 registriesSkippingTagResolving: "ko.local,dev.local"
547 queueSidecarImage: gcr.io/knative-releases/github.com/knative/serving/cmd/queue@sha256:b5c759e4ea6f36ae4498c1ec794653920345b9ad7492731fb1d6087e3b95dc43
551 serving.knative.dev/release: devel
552 name: config-controller
553 namespace: knative-serving
559 ################################
561 # EXAMPLE CONFIGURATION #
563 ################################
565 # This block is not actually functional configuration,
566 # but serves to illustrate the available configuration
567 # options and document them in a way that is accessible
568 # to users that `kubectl edit` this config map.
570 # These sample configuration options may be copied out of
571 # this block and unindented to actually change the configuration.
573 # revision-timeout-seconds contains the default number of
574 # seconds to use for the revision's per-request timeout, if
576 revision-timeout-seconds: "300" # 5 minutes
578 # revision-cpu-request contains the cpu allocation to assign
579 # to revisions by default.
580 revision-cpu-request: "400m" # 0.4 of a CPU (aka 400 milli-CPU)
584 serving.knative.dev/release: devel
585 name: config-defaults
586 namespace: knative-serving
592 ################################
594 # EXAMPLE CONFIGURATION #
596 ################################
598 # This block is not actually functional configuration,
599 # but serves to illustrate the available configuration
600 # options and document them in a way that is accessible
601 # to users that `kubectl edit` this config map.
603 # These sample configuration options may be copied out of
604 # this block and unindented to actually change the configuration.
606 # Default value for domain.
607 # Although it will match all routes, it is the least-specific rule so it
608 # will only be used if no other domain matches.
611 # These are example settings of domain.
612 # example.org will be used for routes having app=nonprofit.
617 # Routes having domain suffix of 'svc.cluster.local' will not be exposed
618 # through Ingress. You can define your own label selector to assign that
619 # domain suffix to your Route here, or you can set the label
620 # "serving.knative.dev/visibility=cluster-local"
621 # to achieve the same effect. This shows how to make routes having
622 # the label app=secret only exposed to the local cluster.
629 serving.knative.dev/release: devel
631 namespace: knative-serving
637 ################################
639 # EXAMPLE CONFIGURATION #
641 ################################
643 # This block is not actually functional configuration,
644 # but serves to illustrate the available configuration
645 # options and document them in a way that is accessible
646 # to users that `kubectl edit` this config map.
648 # These sample configuration options may be copied out of
649 # this block and unindented to actually change the configuration.
651 # Delay after revision creation before considering it for GC
652 stale-revision-create-delay: "24h"
654 # Duration since a route has been pointed at a revision before it should be GC'd
655 # This minus lastpinned-debounce be longer than the controller resync period (10 hours)
656 stale-revision-timeout: "15h"
658 # Minimum number of generations of revisions to keep before considering for GC
659 stale-revision-minimum-generations: "1"
661 # To avoid constant updates, we allow an existing annotation to be stale by this
662 # amount before we update the timestamp
663 stale-revision-lastpinned-debounce: "5h"
667 serving.knative.dev/release: devel
669 namespace: knative-serving
676 networking.knative.dev/ingress-provider: istio
677 serving.knative.dev/release: devel
679 namespace: knative-serving
685 ################################
687 # EXAMPLE CONFIGURATION #
689 ################################
691 # This block is not actually functional configuration,
692 # but serves to illustrate the available configuration
693 # options and document them in a way that is accessible
694 # to users that `kubectl edit` this config map.
696 # These sample configuration options may be copied out of
697 # this block and unindented to actually change the configuration.
699 # Common configuration for all Knative codebase
703 "development": false,
704 "outputPaths": ["stdout"],
705 "errorOutputPaths": ["stderr"],
711 "callerKey": "caller",
713 "stacktraceKey": "stacktrace",
716 "timeEncoder": "iso8601",
717 "durationEncoder": "",
722 # Log level overrides
723 # For all components except the autoscaler and queue proxy,
724 # changes are be picked up immediately.
725 # For autoscaler and queue proxy, changes require recreation of the pods.
726 loglevel.controller: "info"
727 loglevel.autoscaler: "info"
728 loglevel.queueproxy: "info"
729 loglevel.webhook: "info"
730 loglevel.activator: "info"
734 serving.knative.dev/release: devel
736 namespace: knative-serving
743 serving.knative.dev/release: devel
745 namespace: knative-serving
751 ################################
753 # EXAMPLE CONFIGURATION #
755 ################################
757 # This block is not actually functional configuration,
758 # but serves to illustrate the available configuration
759 # options and document them in a way that is accessible
760 # to users that `kubectl edit` this config map.
762 # These sample configuration options may be copied out of
763 # this block and unindented to actually change the configuration.
765 # logging.enable-var-log-collection defaults to false.
766 # A fluentd sidecar will be set up to collect var log if
768 logging.enable-var-log-collection: false
770 # logging.fluentd-sidecar-image provides the fluentd sidecar image
771 # to inject as a sidecar to collect logs from /var/log.
772 # Must be presented if logging.enable-var-log-collection is true.
773 logging.fluentd-sidecar-image: k8s.gcr.io/fluentd-elasticsearch:v2.0.4
775 # logging.fluentd-sidecar-output-config provides the configuration
776 # for the fluentd sidecar, which will be placed into a configmap and
777 # mounted into the fluentd sidecar image.
778 logging.fluentd-sidecar-output-config: |
779 # Parse json log before sending to Elastic Search
787 time_key fluentd-time # fluentd-time is reserved for structured logs
788 time_format %Y-%m-%dT%H:%M:%S.%NZ
796 # Send to Elastic Search
802 # Elasticsearch service is in monitoring namespace.
803 host elasticsearch-logging.knative-monitoring
808 path /var/log/fluentd-buffers/kubernetes.system.buffer
810 retry_type exponential_backoff
814 retry_max_interval 30
817 overflow_action block
821 # logging.revision-url-template provides a template to use for producing the
822 # logging URL that is injected into the status of each Revision.
823 # This value is what you might use the the Knative monitoring bundle, and provides
824 # access to Kibana after setting up kubectl proxy.
825 logging.revision-url-template: |
826 http://localhost:8001/api/v1/namespaces/knative-monitoring/services/kibana-logging/proxy/app/kibana#/discover?_a=(query:(match:(kubernetes.labels.knative-dev%2FrevisionUID:(query:'${REVISION_UID}',type:phrase))))
828 # If non-empty, this enables queue proxy writing request logs to stdout.
829 # The value determines the shape of the request logs and it must be a valid go text/template.
830 # It is important to keep this as a single line. Multiple lines are parsed as separate entities
831 # by most collection agents and will split the request logs into multiple records.
833 # The following fields and functions are available to the template:
835 # Request: An http.Request (see https://golang.org/pkg/net/http/#Request)
836 # representing an HTTP request received by the server.
840 # Code int // HTTP status code (see https://www.iana.org/assignments/http-status-codes/http-status-codes.xhtml)
841 # Size int // An int representing the size of the response.
842 # Latency float64 // A float64 representing the latency of the response in seconds.
847 # Name string // Knative revision name
848 # Namespace string // Knative revision namespace
849 # Service string // Knative service name
850 # Configuration string // Knative configuration name
851 # PodName string // Name of the pod hosting the revision
852 # PodIP string // IP of the pod hosting the revision
855 logging.request-log-template: '{"httpRequest": {"requestMethod": "{{ "{{" }}.Request.Method{{ "{{" }}", "requestUrl": "{{ "{{" }}js .Request.RequestURI{{ "{{" }}", "requestSize": "{{ "{{" }}.Request.ContentLength{{ "{{" }}", "status": {{ "{{" }}.Response.Code{{ "{{" }}, "responseSize": "{{ "{{" }}.Response.Size{{ "{{" }}", "userAgent": "{{ "{{" }}js .Request.UserAgent{{ "{{" }}", "remoteIp": "{{ "{{" }}js .Request.RemoteAddr{{ "{{" }}", "serverIp": "{{ "{{" }}.Revision.PodIP{{ "{{" }}", "referer": "{{ "{{" }}js .Request.Referer{{ "{{" }}", "latency": "{{ "{{" }}.Response.Latency{{ "{{" }}s", "protocol": "{{ "{{" }}.Request.Proto{{ "{{" }}"}, "traceId": "{{ "{{" }}index .Request.Header "X-B3-Traceid"{{ "{{" }}"}'
857 # metrics.backend-destination field specifies the system metrics destination.
858 # It supports either prometheus (the default) or stackdriver.
859 # Note: Using stackdriver will incur additional charges
860 metrics.backend-destination: prometheus
862 # metrics.request-metrics-backend-destination specifies the request metrics
863 # destination. If non-empty, it enables queue proxy to send request metrics.
864 # Currently supported values: prometheus, stackdriver.
865 metrics.request-metrics-backend-destination: prometheus
867 # metrics.stackdriver-project-id field specifies the stackdriver project ID. This
868 # field is optional. When running on GCE, application default credentials will be
869 # used if this field is not provided.
870 metrics.stackdriver-project-id: "<your stackdriver project id>"
872 # metrics.allow-stackdriver-custom-metrics indicates whether it is allowed to send metrics to
873 # Stackdriver using "global" resource type and custom metric type if the
874 # metrics are not supported by "knative_revision" resource type. Setting this
875 # flag to "true" could cause extra Stackdriver charge.
876 # If metrics.backend-destination is not Stackdriver, this is ignored.
877 metrics.allow-stackdriver-custom-metrics: "false"
881 serving.knative.dev/release: devel
882 name: config-observability
883 namespace: knative-serving
890 serving.knative.dev/release: devel
892 namespace: knative-serving
901 sidecar.istio.io/inject: "false"
907 - name: SYSTEM_NAMESPACE
910 fieldPath: metadata.namespace
911 - name: CONFIG_LOGGING_NAME
912 value: config-logging
913 image: gcr.io/knative-releases/github.com/knative/serving/cmd/controller@sha256:25af5f3adad8b65db3126e0d6e90aa36835c124c24d9d72ffbdd7ee739a7f571
916 - containerPort: 9090
926 - mountPath: /etc/config-logging
928 serviceAccountName: controller
939 serving.knative.dev/release: devel
941 namespace: knative-serving
951 sidecar.istio.io/inject: "false"
958 - name: SYSTEM_NAMESPACE
961 fieldPath: metadata.namespace
962 - name: CONFIG_LOGGING_NAME
963 value: config-logging
964 image: gcr.io/knative-releases/github.com/knative/serving/cmd/webhook@sha256:d1ba3e2c0d739084ff508629db001619cea9cc8780685e85dd910363774eaef6
974 - mountPath: /etc/config-logging
976 serviceAccountName: controller
Code Review / demo.git / blob