Code Review / oom.git / blob
? search:
summary | shortlog | log | commit | commitdiff | review | tree
history | raw | HEAD
[CDS-STRIMZI] Migrate cds to use strimzi kafka
[oom.git] / kubernetes / cds / components / cds-blueprints-processor / templates / deployment.yaml
1 {{/*
2 # Copyright (c) 2019 IBM, Bell Canada
3 # Copyright (c) 2020 Samsung Electronics
4 # Modification Copyright © 2022 Nordix Foundation
5 #
6 # Licensed under the Apache License, Version 2.0 (the "License");
7 # you may not use this file except in compliance with the License.
8 # You may obtain a copy of the License at
9 #
10 #       http://www.apache.org/licenses/LICENSE-2.0
11 #
12 # Unless required by applicable law or agreed to in writing, software
13 # distributed under the License is distributed on an "AS IS" BASIS,
14 # WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
15 # See the License for the specific language governing permissions and
16 # limitations under the License.
17 */}}
18
19 apiVersion: apps/v1
20 kind: Deployment
21 metadata:
22   name: {{ include "common.fullname" . }}
23   namespace: {{ include "common.namespace" . }}
24   labels:
25     app: {{ include "common.name" . }}
26     chart: {{ .Chart.Name }}-{{ .Chart.Version | replace "+" "_" }}
27     release: {{ include "common.release" . }}
28     heritage: {{ .Release.Service }}
29 spec:
30   selector:
31     matchLabels:
32       app: {{ include "common.name" . }}
33   replicas: {{ .Values.replicaCount }}
34   strategy:
35     type: RollingUpdate
36     rollingUpdate:
37       # This allow a new pod to be ready before terminating the old one
38       # causing no downtime when replicas is set to 1
39       maxUnavailable: 0
40
41       # maxSurge to 1 is very important for the hazelcast integration
42       # we only want one pod at a time to restart not multiple
43       # and break the hazelcast cluster. We should not use % maxSurge value
44       # ref : https://hazelcast.com/blog/rolling-upgrade-hazelcast-imdg-on-kubernetes/
45       maxSurge: 1
46   template:
47     metadata:
48       labels:
49         app: {{ include "common.name" . }}
50         release: {{ include "common.release" . }}
51     spec:
52       initContainers: {{ include "common.certInitializer.initContainer" . | nindent 6 }}
53       - command:
54         - sh
55         args:
56         - -c
57         - "cd /config-input && for PFILE in `ls -1 .`; do envsubst '${CDS_DB_USERNAME},${CDS_DB_PASSWORD},${SDNC_DB_USERNAME},${SDNC_DB_PASSWORD}' <${PFILE} >/config/${PFILE}; done"
58         env:
59         - name: CDS_DB_USERNAME
60           {{- include "common.secret.envFromSecretFast" (dict "global" . "uid" "cds-db-user-creds" "key" "login") | indent 10}}
61         - name: CDS_DB_PASSWORD
62           {{- include "common.secret.envFromSecretFast" (dict "global" . "uid" "cds-db-user-creds" "key" "password") | indent 10}}
63         - name: SDNC_DB_USERNAME
64           value: root
65         - name: SDNC_DB_PASSWORD
66           {{- include "common.secret.envFromSecretFast" (dict "global" . "uid" "sdnc-db-root-pass" "key" "password") | indent 10}}
67         volumeMounts:
68         - mountPath: /config-input/application.properties
69           name: {{ include "common.fullname" . }}-config
70           subPath: application.properties
71         - mountPath: /config
72           name: processed-config
73         image: {{ include "repositoryGenerator.image.envsubst" . }}
74         imagePullPolicy: {{ .Values.global.pullPolicy | default .Values.pullPolicy }}
75         name: {{ include "common.name" . }}-update-config
76
77       - command:
78         - /app/ready.py
79         args:
80         - --container-name
81         - cds-db
82         env:
83         - name: NAMESPACE
84           valueFrom:
85             fieldRef:
86               apiVersion: v1
87               fieldPath: metadata.namespace
88         image: {{ include "repositoryGenerator.image.readiness" . }}
89         imagePullPolicy: {{ .Values.global.pullPolicy | default .Values.pullPolicy }}
90         name: {{ include "common.name" . }}-readiness
91       - name: fix-permission
92         command:
93         - chown
94         - -R
95         - 1000:1000
96         - /opt/app/onap/blueprints/deploy
97         image: {{ include "repositoryGenerator.image.busybox" . }}
98         imagePullPolicy: {{ .Values.global.pullPolicy | default .Values.pullPolicy }}
99         volumeMounts:
100         - mountPath: {{ .Values.persistence.deployedBlueprint }}
101           name: {{ include "common.fullname" . }}-blueprints
102       containers:
103         - name: {{ include "common.name" . }}
104           image: {{ include "repositoryGenerator.repository" . }}/{{ .Values.image }}
105           imagePullPolicy: {{ .Values.global.pullPolicy | default .Values.pullPolicy }}
106           env:
107           - name: APP_CONFIG_HOME
108             value: {{ .Values.config.appConfigDir }}
109           - name: CLUSTER_ENABLED
110             value: {{ if (gt (int (.Values.replicaCount)) 2) }} {{ .Values.cluster.enabled | quote }} {{ else }} "false" {{ end }}
111           - name: CLUSTER_ID
112             value: {{ .Values.cluster.clusterName }}
113           - name: AAF_CREDSPATH
114             value: {{ .Values.certInitializer.credsPath }}
115           - name: CLUSTER_NODE_ID
116             valueFrom:
117               fieldRef:
118                 fieldPath: metadata.name
119           - name: CLUSTER_CONFIG_FILE
120             value: {{ .Values.config.appConfigDir }}/hazelcast.yaml
121           {{ if .Values.useStrimziKafka }}
122           - name: JAAS_PASS
123             value: {{- include "common.secret.envFromSecretFast" (dict "global" . "uid" "cds-kafka-secret" "key" "password") | indent 12 }}
124           {{ end }}
125           ports:
126           - containerPort: {{ .Values.service.http.internalPort }}
127           - containerPort: {{ .Values.service.grpc.internalPort }}
128           - containerPort: {{ .Values.service.cluster.internalPort }}
129           startupProbe:
130             httpGet:
131               path: /api/v1/execution-service/health-check
132               port: {{ .Values.service.http.internalPort }}
133               httpHeaders:
134                 - name: Authorization
135                   value: Basic Y2NzZGthcHBzOmNjc2RrYXBwcw==
136             initialDelaySeconds: {{ .Values.startup.initialDelaySeconds }}
137             failureThreshold: {{ .Values.startup.failureThreshold }}
138             periodSeconds: {{ .Values.startup.periodSeconds }}
139           # disable liveness probe when breakpoints set in debugger
140           # so K8s doesn't restart unresponsive container
141           {{ if .Values.liveness.enabled }}
142           livenessProbe:
143             httpGet:
144               path: /api/v1/execution-service/health-check
145               port: {{ .Values.service.http.internalPort }}
146               httpHeaders:
147               - name: Authorization
148                 value: Basic Y2NzZGthcHBzOmNjc2RrYXBwcw==
149             initialDelaySeconds: {{ .Values.liveness.initialDelaySeconds }}
150             periodSeconds: {{ .Values.liveness.periodSeconds }}
151             timeoutSeconds: {{ .Values.liveness.timeoutSeconds }}
152           {{ end }}
153           readinessProbe:
154             httpGet:
155               path: /api/v1/execution-service/health-check
156               port: {{ .Values.service.http.internalPort }}
157               httpHeaders:
158               - name: Authorization
159                 value: Basic Y2NzZGthcHBzOmNjc2RrYXBwcw==
160             initialDelaySeconds: {{ .Values.readiness.initialDelaySeconds }}
161             periodSeconds: {{ .Values.readiness.periodSeconds }}
162             timeoutSeconds: {{ .Values.readiness.timeoutSeconds }}
163           volumeMounts: {{ include "common.certInitializer.volumeMount" . | nindent 10 }}
164           - mountPath: /etc/localtime
165             name: localtime
166             readOnly: true
167           - mountPath: {{ .Values.config.appConfigDir }}/application.properties
168             name: processed-config
169             subPath: application.properties
170           - mountPath: {{ .Values.config.appConfigDir }}/error-messages_en.properties
171             name: {{ include "common.fullname" . }}-config
172             subPath: error-messages_en.properties
173           - mountPath: {{ .Values.config.appConfigDir }}/logback.xml
174             name: {{ include "common.fullname" . }}-config
175             subPath: logback.xml
176           - mountPath: {{ .Values.config.appConfigDir }}/hazelcast.yaml
177             name: {{ include "common.fullname" . }}-config
178             subPath: hazelcast.yaml
179
180           - mountPath: {{ .Values.config.appConfigDir }}/ONAP_RootCA.cer
181             name: {{ include "common.fullname" . }}-config
182             subPath: ONAP_RootCA.cer
183
184           - mountPath: {{ .Values.persistence.deployedBlueprint }}
185             name: {{ include "common.fullname" . }}-blueprints
186           resources:
187 {{ include "common.resources" . | indent 12 }}
188         {{- if .Values.nodeSelector }}
189         nodeSelector:
190 {{ toYaml .Values.nodeSelector | indent 10 }}
191         {{- end -}}
192         {{- if .Values.affinity }}
193         affinity:
194 {{ toYaml .Values.affinity | indent 10 }}
195         {{- end }}
196       serviceAccountName: {{ include "common.fullname" (dict "suffix" "read" "dot" . )}}
197       volumes: {{ include "common.certInitializer.volumes" . | nindent 8 }}
198         - name: localtime
199           hostPath:
200             path: /etc/localtime
201         - name: {{ include "common.fullname" . }}-config
202           configMap:
203             name: {{ include "common.fullname" . }}-configmap
204             items:
205             - key: application.properties
206               path: application.properties
207             - key: error-messages_en.properties
208               path: error-messages_en.properties
209             - key: logback.xml
210               path: logback.xml
211             - key: hazelcast.yaml
212               path: hazelcast.yaml
213             - key: ONAP_RootCA.cer
214               path: ONAP_RootCA.cer
215         - name: {{ include "common.fullname" . }}-blueprints
216           persistentVolumeClaim:
217             claimName: {{ include "common.release" . }}-cds-blueprints
218         - name: processed-config
219           emptyDir:
220             medium: Memory
221       imagePullSecrets:
222       - name: "{{ include "common.namespace" . }}-docker-registry-key"
Introduces the ONAP Platform OOM (ONAP Operations Manager) to efficiently Deploy, Manage, Operate the ONAP platform and its components (e.g. MSO, DCAE, SDC, etc.) and infrastructure (VMs, Containers).