1 # Copyright (c) 2018 Amdocs, Bell Canada, AT&T
2 # Modifications Copyright (c) 2020 Nokia
3 # Modifications Copyright (c) 2021 Orange
5 # Licensed under the Apache License, Version 2.0 (the "License");
6 # you may not use this file except in compliance with the License.
7 # You may obtain a copy of the License at
9 # http://www.apache.org/licenses/LICENSE-2.0
11 # Unless required by applicable law or agreed to in writing, software
12 # distributed under the License is distributed on an "AS IS" BASIS,
13 # WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
14 # See the License for the specific language governing permissions and
15 # limitations under the License.
17 # Default values for traversal.
18 # This is a YAML-formatted file.
19 # Declare variables to be passed into your templates.
20 global: # global defaults
25 #Service Name of the cassandra cluster to connect to.
26 #Override it to aai-cassandra if localCluster is enabled.
27 serviceName: cassandra
29 # Specifies a list of jobs to be run
31 # When enabled, it will create the schema based on oxm and edge rules
34 # When enabled, it will create the widget models via REST API to haproxy
37 #migration using helm hooks
41 # Common configuration for resources traversal and graphadmin
43 # User information for the admin user in container
47 # Specifies that the cluster connected to a dynamic
48 # cluster being spinned up by kubernetes deployment
53 # Specifies if the basic authorization is enabled
60 # Active spring profiles for the resources microservice
62 active: production,dmaap #,aaf-auth ,keycloak
64 # Notification event specific properties
69 # Schema specific properties that include supported versions of api
71 # Specifies if the connection should be one way ssl, two way ssl or no auth
74 # Specifies which translator to use if it has schema-service, then it will make a rest request to schema service
78 # Specifies which folder to take a look at
81 # Base URI Path of the application
85 # Current version of the REST API
88 # Specifies which version the depth parameter is configurable
90 # List of all the supported versions of the API
91 list: v11,v12,v13,v14,v15,v16,v17,v18,v19,v20,v21
92 # Specifies from which version related link should appear
95 # Specifies from which version the app root change happened
98 # Specifies from which version the xml namespace changed
101 # Specifies from which version the edge label appeared in API
105 # Specifies which clients should always default to realtime graph connection
107 clients: SDNC,MSO,SO,robot-ete
109 #################################################################
110 # Certificate configuration
111 #################################################################
113 nameOverride: aai-traversal-cert-initializer
114 aafDeployFqi: deployer@people.osaaf.org
115 aafDeployPass: demo123456!
116 # aafDeployCredsExternalSecret: some secret
118 fqi: aai-traversal@aai-traversal.onap.org
119 public_fqdn: aai-traversal.onap.org
120 cadi_longitude: "0.0"
122 app_ns: org.osaaf.aaf
123 credsPath: /opt/app/osaaf/local
124 fqi_namespace: org.onap.aai-traversal
126 echo "*** changing them into shell safe ones"
127 export KEYSTORE_PASSWORD=$(tr -cd '[:alnum:]' < /dev/urandom | fold -w64 | head -n1)
128 export TRUSTSTORE_PASSWORD=$(tr -cd '[:alnum:]' < /dev/urandom | fold -w64 | head -n1)
129 cd {{ .Values.credsPath }}
130 keytool -storepasswd -new "${KEYSTORE_PASSWORD}" \
131 -storepass "${cadi_keystore_password_p12}" \
132 -keystore {{ .Values.fqi_namespace }}.p12
133 keytool -storepasswd -new "${TRUSTSTORE_PASSWORD}" \
134 -storepass "${cadi_truststore_password}" \
135 -keystore {{ .Values.fqi_namespace }}.trust.jks
136 echo "*** save the generated passwords"
137 echo "KEYSTORE_PASSWORD=${KEYSTORE_PASSWORD}" > mycreds.prop
138 echo "TRUSTSTORE_PASSWORD=${TRUSTSTORE_PASSWORD}" >> mycreds.prop
139 echo "*** change ownership of certificates to targeted user"
140 chown -R 1000 {{ .Values.credsPath }}
143 image: onap/aai-traversal:1.8.0
145 restartPolicy: Always
147 flavorOverride: small
161 - name: aai-generic-query
162 url: search/generic-query
163 - name: aai-nodes-query
164 url: search/nodes-query
168 # application configuration
171 # configure keycloak according to your environment.
172 # don't forget to add keycloak in active profiles above (global.config.profiles)
174 host: keycloak.your.domain
176 # Specifies a set of users, credentials, roles, and groups
178 # Used by any client application for enabling fine-grained authorization for their protected resources
179 resource: aai-traversal-app
180 # If set to true, additional criteria will be added into traversal query to returns all the vertices that match
181 # the data-owner property with the given role to the user in keycloak
185 # Specifies timeout information such as application specific and limits
187 # If set to true application will timeout for queries taking longer than limit
189 # Specifies which apps (X-FromAppId) header should get overridden and (-1) no timeout
190 appspecific: JUNITTESTAPP1,1|JUNITTESTAPP2,-1|DCAE-CCS,-1|DCAES,-1|AAI-FILEGEN-GFPIP,-1
191 # Specifies how long should it wait before timing out the REST request
194 # Disables the updateQueryData script to run as part of traversal
195 disableUpdateQuery: true
197 # Override of the DSL Timeout Limit
198 dslOverride: 'ZV4V7E3N77SKIB6MR9MHQ6M4P6Q99Z7M76RBODA'
201 # Dsl timeout configuration
203 # Whether or not the dsl is enabled
205 # Default time limit of the DSL query
207 # App Specific Timeout Limit for each of the X-FromAppId
216 - VidAaiController,300000
220 mountPath: /dockerdata-nfs
221 mountSubPath: aai/aai-traversal
223 # default number of instances
230 # probe configuration parameters
232 initialDelaySeconds: 60
234 # necessary to disable liveness probe when setting breakpoints
235 # in debugger so K8s doesn't restart unresponsive container
239 initialDelaySeconds: 10
252 # Configure resource requests and limits
253 # ref: http://kubernetes.io/docs/user-guide/compute-resources/
Code Review / oom.git / blob