Code Review / oom.git / blob
? search:
summary | shortlog | log | commit | commitdiff | review | tree
history | raw | HEAD
[COMMON] Add custom certs into AAF truststore
[oom.git] / kubernetes / cds / components / cds-blueprints-processor / templates / deployment.yaml
1 {{/*
2 # Copyright (c) 2019 IBM, Bell Canada
3 # Copyright (c) 2020 Samsung Electronics
4 #
5 # Licensed under the Apache License, Version 2.0 (the "License");
6 # you may not use this file except in compliance with the License.
7 # You may obtain a copy of the License at
8 #
9 #       http://www.apache.org/licenses/LICENSE-2.0
10 #
11 # Unless required by applicable law or agreed to in writing, software
12 # distributed under the License is distributed on an "AS IS" BASIS,
13 # WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
14 # See the License for the specific language governing permissions and
15 # limitations under the License.
16 */}}
17
18 apiVersion: apps/v1
19 kind: Deployment
20 metadata:
21   name: {{ include "common.fullname" . }}
22   namespace: {{ include "common.namespace" . }}
23   labels:
24     app: {{ include "common.name" . }}
25     chart: {{ .Chart.Name }}-{{ .Chart.Version | replace "+" "_" }}
26     release: {{ include "common.release" . }}
27     heritage: {{ .Release.Service }}
28 spec:
29   selector:
30     matchLabels:
31       app: {{ include "common.name" . }}
32   replicas: {{ .Values.replicaCount }}
33   strategy:
34     type: RollingUpdate
35     rollingUpdate:
36       # This allow a new pod to be ready before terminating the old one
37       # causing no downtime when replicas is set to 1
38       maxUnavailable: 0
39
40       # maxSurge to 1 is very important for the hazelcast integration
41       # we only want one pod at a time to restart not multiple
42       # and break the hazelcast cluster. We should not use % maxSurge value
43       # ref : https://hazelcast.com/blog/rolling-upgrade-hazelcast-imdg-on-kubernetes/
44       maxSurge: 1
45   template:
46     metadata:
47       labels:
48         app: {{ include "common.name" . }}
49         release: {{ include "common.release" . }}
50     spec:
51       initContainers:
52       - command:
53         - sh
54         args:
55         - -c
56         - "cd /config-input && for PFILE in `ls -1 .`; do envsubst '${CDS_DB_USERNAME},${CDS_DB_PASSWORD},${SDNC_DB_USERNAME},${SDNC_DB_PASSWORD}' <${PFILE} >/config/${PFILE}; done"
57         env:
58         - name: CDS_DB_USERNAME
59           {{- include "common.secret.envFromSecretFast" (dict "global" . "uid" "cds-db-user-creds" "key" "login") | indent 10}}
60         - name: CDS_DB_PASSWORD
61           {{- include "common.secret.envFromSecretFast" (dict "global" . "uid" "cds-db-user-creds" "key" "password") | indent 10}}
62         - name: SDNC_DB_USERNAME
63           value: root
64         - name: SDNC_DB_PASSWORD
65           {{- include "common.secret.envFromSecretFast" (dict "global" . "uid" "sdnc-db-root-pass" "key" "password") | indent 10}}
66         volumeMounts:
67         - mountPath: /config-input/application.properties
68           name: {{ include "common.fullname" . }}-config
69           subPath: application.properties
70         - mountPath: /config
71           name: processed-config
72         image: {{ include "repositoryGenerator.image.envsubst" . }}
73         imagePullPolicy: {{ .Values.global.pullPolicy | default .Values.pullPolicy }}
74         name: {{ include "common.name" . }}-update-config
75
76       - command:
77         - /app/ready.py
78         args:
79         - --container-name
80         - cds-db
81         {{- if .Values.dmaapEnabled  }}
82         - --container-name
83         - message-router
84         {{ end }}
85         env:
86         - name: NAMESPACE
87           valueFrom:
88             fieldRef:
89               apiVersion: v1
90               fieldPath: metadata.namespace
91         image: {{ include "repositoryGenerator.image.readiness" . }}
92         imagePullPolicy: {{ .Values.global.pullPolicy | default .Values.pullPolicy }}
93         name: {{ include "common.name" . }}-readiness
94       - name: fix-permission
95         command:
96         - chown
97         - -R
98         - 1000:1000
99         - /opt/app/onap/blueprints/deploy
100         image: {{ include "repositoryGenerator.image.busybox" . }}
101         imagePullPolicy: {{ .Values.global.pullPolicy | default .Values.pullPolicy }}
102         volumeMounts:
103         - mountPath: {{ .Values.persistence.deployedBlueprint }}
104           name: {{ include "common.fullname" . }}-blueprints
105       containers:
106         - name: {{ include "common.name" . }}
107           image: {{ include "repositoryGenerator.repository" . }}/{{ .Values.image }}
108           imagePullPolicy: {{ .Values.global.pullPolicy | default .Values.pullPolicy }}
109           env:
110           - name: APP_CONFIG_HOME
111             value: {{ .Values.config.appConfigDir }}
112           - name: CLUSTER_ENABLED
113             value: {{ if (gt (int (.Values.replicaCount)) 2) }} {{ .Values.cluster.enabled | quote }} {{ else }} "false" {{ end }}
114           - name: CLUSTER_ID
115             value: {{ .Values.cluster.clusterName }}
116           - name: CLUSTER_NODE_ID
117             valueFrom:
118               fieldRef:
119                 fieldPath: metadata.name
120           - name: CLUSTER_CONFIG_FILE
121             value: {{ .Values.config.appConfigDir }}/hazelcast.yaml
122           ports:
123           - containerPort: {{ .Values.service.http.internalPort }}
124           - containerPort: {{ .Values.service.grpc.internalPort }}
125           - containerPort: {{ .Values.service.cluster.internalPort }}
126           # disable liveness probe when breakpoints set in debugger
127           # so K8s doesn't restart unresponsive container
128           {{ if .Values.liveness.enabled }}
129           livenessProbe:
130             httpGet:
131               path: /api/v1/execution-service/health-check
132               port: {{ .Values.service.http.internalPort }}
133               httpHeaders:
134               - name: Authorization
135                 value: Basic Y2NzZGthcHBzOmNjc2RrYXBwcw==
136             initialDelaySeconds: {{ .Values.liveness.initialDelaySeconds }}
137             periodSeconds: {{ .Values.liveness.periodSeconds }}
138             timeoutSeconds: {{ .Values.liveness.timeoutSeconds }}
139           {{ end }}
140           readinessProbe:
141             httpGet:
142               path: /api/v1/execution-service/health-check
143               port: {{ .Values.service.http.internalPort }}
144               httpHeaders:
145               - name: Authorization
146                 value: Basic Y2NzZGthcHBzOmNjc2RrYXBwcw==
147             initialDelaySeconds: {{ .Values.readiness.initialDelaySeconds }}
148             periodSeconds: {{ .Values.readiness.periodSeconds }}
149             timeoutSeconds: {{ .Values.readiness.timeoutSeconds }}
150           volumeMounts:
151           - mountPath: /etc/localtime
152             name: localtime
153             readOnly: true
154           - mountPath: {{ .Values.config.appConfigDir }}/application.properties
155             name: processed-config
156             subPath: application.properties
157           - mountPath: {{ .Values.config.appConfigDir }}/error-messages_en.properties
158             name: {{ include "common.fullname" . }}-config
159             subPath: error-messages_en.properties
160           - mountPath: {{ .Values.config.appConfigDir }}/logback.xml
161             name: {{ include "common.fullname" . }}-config
162             subPath: logback.xml
163           - mountPath: {{ .Values.config.appConfigDir }}/hazelcast.yaml
164             name: {{ include "common.fullname" . }}-config
165             subPath: hazelcast.yaml
166
167           - mountPath: {{ .Values.config.appConfigDir }}/ONAP_RootCA.cer
168             name: {{ include "common.fullname" . }}-config
169             subPath: ONAP_RootCA.cer
170
171           - mountPath: {{ .Values.persistence.deployedBlueprint }}
172             name: {{ include "common.fullname" . }}-blueprints
173           resources:
174 {{ include "common.resources" . | indent 12 }}
175         {{- if .Values.nodeSelector }}
176         nodeSelector:
177 {{ toYaml .Values.nodeSelector | indent 10 }}
178         {{- end -}}
179         {{- if .Values.affinity }}
180         affinity:
181 {{ toYaml .Values.affinity | indent 10 }}
182         {{- end }}
183       volumes:
184         - name: localtime
185           hostPath:
186             path: /etc/localtime
187         - name: {{ include "common.fullname" . }}-config
188           configMap:
189             name: {{ include "common.fullname" . }}-configmap
190             items:
191             - key: application.properties
192               path: application.properties
193             - key: error-messages_en.properties
194               path: error-messages_en.properties
195             - key: logback.xml
196               path: logback.xml
197             - key: hazelcast.yaml
198               path: hazelcast.yaml
199             - key: ONAP_RootCA.cer
200               path: ONAP_RootCA.cer
201         - name: {{ include "common.fullname" . }}-blueprints
202           persistentVolumeClaim:
203             claimName: {{ include "common.release" . }}-cds-blueprints
204         - name: processed-config
205           emptyDir:
206             medium: Memory
207       imagePullSecrets:
208       - name: "{{ include "common.namespace" . }}-docker-registry-key"
Introduces the ONAP Platform OOM (ONAP Operations Manager) to efficiently Deploy, Manage, Operate the ONAP platform and its components (e.g. MSO, DCAE, SDC, etc.) and infrastructure (VMs, Containers).