kubernetes/cds/values.yaml

   1 # Copyright © 2020 Samsung Electronics
   2 # Copyright © 2019 Orange, Bell Canada
   3 # Copyright © 2017 Amdocs, Bell Canada
   4 # Modification Copyright © 2022 Nordix Foundation
   5 #
   6 # Licensed under the Apache License, Version 2.0 (the "License");
   7 # you may not use this file except in compliance with the License.
   8 # You may obtain a copy of the License at
   9 #
  10 #       http://www.apache.org/licenses/LICENSE-2.0
  11 #
  12 # Unless required by applicable law or agreed to in writing, software
  13 # distributed under the License is distributed on an "AS IS" BASIS,
  14 # WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
  15 # See the License for the specific language governing permissions and
  16 # limitations under the License.
  17
  18 #################################################################
  19 # Global configuration defaults.
  20 #################################################################
  21 global:
  22   nodePortPrefix: 302
  23   nodePortPrefixExt: 304
  24   persistence:
  25     mountPath: /dockerdata-nfs
  26   cdsKafkaUser: cds-kafka-user
  27
  28 #################################################################
  29 # Secrets metaconfig
  30 #################################################################
  31 secrets:
  32   - name: &dbUserSecretName '{{ include "common.release" . }}-cds-db-secret'
  33     uid: 'cds-db-secret'
  34     type: basicAuth
  35     externalSecret: '{{ ternary "" (tpl (default "" (index .Values "mariadb-galera" "db" "externalSecret")) .) (hasSuffix "cds-db-secret" (index .Values "mariadb-galera" "db" "externalSecret"))}}'
  36     login: '{{ index .Values "mariadb-galera" "db" "user" }}'
  37     password: '{{ index .Values "mariadb-galera" "db" "password" }}'
  38
  39 #################################################################
  40 # Application configuration defaults.
  41 #################################################################
  42 # application images
  43 pullPolicy: Always
  44
  45
  46 subChartsOnly:
  47   enabled: true
  48
  49 # flag to enable debugging - application support required
  50 debugEnabled: false
  51
  52 # default number of instances
  53 replicaCount: 1
  54
  55 nodeSelector: {}
  56
  57 affinity: {}
  58
  59 # probe configuration parameters
  60 liveness:
  61   initialDelaySeconds: 20
  62   periodSeconds: 20
  63   timeoutSeconds: 20
  64   # necessary to disable liveness probe when setting breakpoints
  65   # in debugger so K8s doesn't restart unresponsive container
  66   enabled: true
  67
  68 readiness:
  69   initialDelaySeconds: 10
  70   periodSeconds: 10
  71
  72 ingress:
  73   enabled: false
  74
  75 mariadb-galera:
  76   db:
  77     user: sdnctl
  78     # password:
  79     externalSecret: *dbUserSecretName
  80     name: &mysqlDbName sdnctl
  81   nameOverride: &dbServer cds-db
  82   replicaCount: 1
  83   persistence:
  84     enabled: true
  85     mountSubPath: cds/data
  86   serviceAccount:
  87     nameOverride: *dbServer
  88
  89   mariadbConfiguration: |-
  90     [client]
  91     port=3306
  92     socket=/opt/bitnami/mariadb/tmp/mysql.sock
  93     plugin_dir=/opt/bitnami/mariadb/plugin
  94
  95     [mysqld]
  96     lower_case_table_names = 1
  97     default_storage_engine=InnoDB
  98     basedir=/opt/bitnami/mariadb
  99     datadir=/bitnami/mariadb/data
 100     plugin_dir=/opt/bitnami/mariadb/plugin
 101     tmpdir=/opt/bitnami/mariadb/tmp
 102     socket=/opt/bitnami/mariadb/tmp/mysql.sock
 103     pid_file=/opt/bitnami/mariadb/tmp/mysqld.pid
 104     bind_address=0.0.0.0
 105
 106     ## Character set
 107     collation_server=utf8_unicode_ci
 108     init_connect='SET NAMES utf8'
 109     character_set_server=utf8
 110
 111     ## MyISAM
 112     key_buffer_size=32M
 113     myisam_recover_options=FORCE,BACKUP
 114
 115     ## Safety
 116     skip_host_cache
 117     skip_name_resolve
 118     max_allowed_packet=16M
 119     max_connect_errors=1000000
 120     sql_mode=STRICT_TRANS_TABLES,ERROR_FOR_DIVISION_BY_ZERO,NO_AUTO_CREATE_USER,NO_AUTO_VALUE_ON_ZERO,NO_ENGINE_SUBSTITUTION,NO_ZERO_DATE,NO_ZERO_IN_DATE,ONLY_FULL_GROUP_BY
 121     sysdate_is_now=1
 122
 123     ## Binary Logging
 124     log_bin=mysql-bin
 125     expire_logs_days=14
 126     # Disabling for performance per http://severalnines.com/blog/9-tips-going-production-galera-cluster-mysql
 127     sync_binlog=0
 128     # Required for Galera
 129     binlog_format=row
 130
 131     ## Caches and Limits
 132     tmp_table_size=32M
 133     max_heap_table_size=32M
 134     # Re-enabling as now works with Maria 10.1.2
 135     query_cache_type=1
 136     query_cache_limit=4M
 137     query_cache_size=256M
 138     max_connections=500
 139     thread_cache_size=50
 140     open_files_limit=65535
 141     table_definition_cache=4096
 142     table_open_cache=4096
 143
 144     ## InnoDB
 145     innodb=FORCE
 146     innodb_strict_mode=1
 147     # Mandatory per https://github.com/codership/documentation/issues/25
 148     innodb_autoinc_lock_mode=2
 149     # Per https://www.percona.com/blog/2006/08/04/innodb-double-write/
 150     innodb_doublewrite=1
 151     innodb_flush_method=O_DIRECT
 152     innodb_log_files_in_group=2
 153     innodb_log_file_size=128M
 154     innodb_flush_log_at_trx_commit=1
 155     innodb_file_per_table=1
 156     # 80% Memory is default reco.
 157     # Need to re-evaluate when DB size grows
 158     innodb_buffer_pool_size=2G
 159     innodb_file_format=Barracuda
 160
 161     ## Logging
 162     log_error=/opt/bitnami/mariadb/logs/mysqld.log
 163     slow_query_log_file=/opt/bitnami/mariadb/logs/mysqld.log
 164     log_queries_not_using_indexes=1
 165     slow_query_log=1
 166
 167     ## SSL
 168     ## Use extraVolumes and extraVolumeMounts to mount /certs filesystem
 169     # ssl_ca=/certs/ca.pem
 170     # ssl_cert=/certs/server-cert.pem
 171     # ssl_key=/certs/server-key.pem
 172
 173     [galera]
 174     wsrep_on=ON
 175     wsrep_provider=/opt/bitnami/mariadb/lib/libgalera_smm.so
 176     wsrep_sst_method=mariabackup
 177     wsrep_slave_threads=4
 178     wsrep_cluster_address=gcomm://
 179     wsrep_cluster_name=galera
 180     wsrep_sst_auth="root:"
 181     # Enabled for performance per https://mariadb.com/kb/en/innodb-system-variables/#innodb_flush_log_at_trx_commit
 182     innodb_flush_log_at_trx_commit=2
 183     # MYISAM REPLICATION SUPPORT #
 184     wsrep_replicate_myisam=ON
 185
 186     [mariadb]
 187     plugin_load_add=auth_pam
 188
 189     ## Data-at-Rest Encryption
 190     ## Use extraVolumes and extraVolumeMounts to mount /encryption filesystem
 191     # plugin_load_add=file_key_management
 192     # file_key_management_filename=/encryption/keyfile.enc
 193     # file_key_management_filekey=FILE:/encryption/keyfile.key
 194     # file_key_management_encryption_algorithm=AES_CTR
 195     # encrypt_binlog=ON
 196     # encrypt_tmp_files=ON
 197
 198     ## InnoDB/XtraDB Encryption
 199     # innodb_encrypt_tables=ON
 200     # innodb_encrypt_temporary_tables=ON
 201     # innodb_encrypt_log=ON
 202     # innodb_encryption_threads=4
 203     # innodb_encryption_rotate_key_age=1
 204
 205     ## Aria Encryption
 206     # aria_encrypt_tables=ON
 207     # encrypt_tmp_disk_tables=ON
 208
 209 cds-blueprints-processor:
 210   enabled: true
 211   config:
 212     cdsDB:
 213       dbServer: *dbServer
 214       dbPort: 3306
 215       dbName: *mysqlDbName
 216       dbCredsExternalSecret: *dbUserSecretName
 217     jaasConfExternalSecret: '{{ include "common.release" . }}-{{ .Values.global.kafkaUser }}'
 218
 219 cds-command-executor:
 220   enabled: true
 221
 222 cds-py-executor:
 223   enabled: true
 224
 225 cds-sdc-listener:
 226   enabled: true
 227
 228 cds-ui:
 229   enabled: true
 230
 231
 232 #Resource Limit flavor -By Default using small
 233 flavor: small
 234 #segregation for different envionment (Small and Large)
 235
 236 resources:
 237   small:
 238     limits:
 239       cpu: 2
 240       memory: 4Gi
 241     requests:
 242       cpu: 1
 243       memory: 2Gi
 244   large:
 245     limits:
 246       cpu: 4
 247       memory: 8Gi
 248     requests:
 249       cpu: 2
 250       memory: 4Gi
 251   unlimited: {}