Code Review / oom.git / blob
? search:
summary | shortlog | log | commit | commitdiff | review | tree
history | raw | HEAD
Merge "[UUI] Service Mesh Compliance for UUI"
[oom.git] / kubernetes / common / postgres / templates / _deployment.tpl
1 {{/*
2 # Copyright © 2018 Amdocs, AT&T, Bell Canada
3 # Copyright © 2020 Samsung Electronics
4 # Copyright © 2021 Orange
5 # Modifications Copyright (C) 2021 Bell Canada.
6 # #
7 # # Licensed under the Apache License, Version 2.0 (the "License");
8 # # you may not use this file except in compliance with the License.
9 # # You may obtain a copy of the License at
10 # #
11 # #       http://www.apache.org/licenses/LICENSE-2.0
12 # #
13 # # Unless required by applicable law or agreed to in writing, software
14 # # distributed under the License is distributed on an "AS IS" BASIS,
15 # # WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
16 # # See the License for the specific language governing permissions and
17 # # limitations under the License.
18 */}}
19
20 {{- define "common.postgres.deployment" -}}
21   {{- $dot := .dot }}
22   {{- $pgMode := .pgMode }}
23 apiVersion: apps/v1
24 kind: Deployment
25 metadata:
26   name: {{ include "common.fullname" $dot }}-{{ $pgMode }}
27   namespace: {{ include "common.namespace" $dot }}
28   labels:
29     app: {{ include "common.name" $dot }}-{{ $pgMode }}
30     chart: {{ $dot.Chart.Name }}-{{ $dot.Chart.Version | replace "+" "_" }}
31     release: {{ include "common.release" $dot }}
32     heritage: {{ $dot.Release.Service }}
33     name: "{{ index $dot.Values "container" "name" $pgMode }}"
34 spec:
35   replicas: 1
36   strategy:
37     type: Recreate
38   selector:
39     matchLabels:
40       app: {{ include "common.name" $dot }}-{{ $pgMode }}
41   template:
42     metadata:
43       labels:
44         app: {{ include "common.name" $dot }}-{{ $pgMode }}
45         release: {{ include "common.release" $dot }}
46         name: "{{ index $dot.Values "container" "name" $pgMode }}"
47     spec:
48       imagePullSecrets:
49       - name: "{{ include "common.namespace" $dot }}-docker-registry-key"
50       initContainers:
51       - command:
52         - sh
53         args:
54         - -c
55         - |
56           function prepare_password {
57             echo -n $1 | sed -e "s/'/''/g"
58           }
59           export PG_PRIMARY_PASSWORD=`prepare_password $PG_PRIMARY_PASSWORD_INPUT`;
60           export PG_PASSWORD=`prepare_password $PG_PASSWORD_INPUT`;
61           export PG_ROOT_PASSWORD=`prepare_password $PG_ROOT_PASSWORD_INPUT`;
62           cd /config-input && for PFILE in `ls -1 .`; do envsubst <${PFILE} >/config/${PFILE}; done
63         env:
64         - name: PG_PRIMARY_USER
65           value: primaryuser
66         - name: MODE
67           value: postgres
68         - name: PG_PRIMARY_PASSWORD_INPUT
69           {{- include "common.secret.envFromSecretFast" (dict "global" $dot "uid" (include "common.postgres.secret.primaryPasswordUID" .) "key" "password") | indent 10 }}
70         - name: PG_USER
71           {{- include "common.secret.envFromSecretFast" (dict "global" $dot "uid" (include "common.postgres.secret.userCredentialsUID" .) "key" "login") | indent 10 }}
72         - name: PG_PASSWORD_INPUT
73           {{- include "common.secret.envFromSecretFast" (dict "global" $dot "uid" (include "common.postgres.secret.userCredentialsUID" .) "key" "password") | indent 10 }}
74         - name: PG_DATABASE
75           value: "{{ $dot.Values.config.pgDatabase }}"
76         - name: PG_ROOT_PASSWORD_INPUT
77           {{- include "common.secret.envFromSecretFast" (dict "global" $dot "uid" (include "common.postgres.secret.rootPassUID" .) "key" "password") | indent 10 }}
78         volumeMounts:
79         - mountPath: /config-input/setup.sql
80           name: config
81           subPath: setup.sql
82         - mountPath: /config
83           name: pgconf
84         image: {{ include "repositoryGenerator.image.envsubst" $dot }}
85         imagePullPolicy: {{ $dot.Values.global.pullPolicy | default $dot.Values.pullPolicy }}
86         name: {{ include "common.name" $dot }}-update-config
87
88       - name: init-sysctl
89         command:
90         - /bin/sh
91         - -c
92         - |
93           chown 26:26 /podroot/;
94           chmod 700 /podroot/;
95         image: {{ include "repositoryGenerator.image.busybox" $dot }}
96         imagePullPolicy: {{ $dot.Values.global.pullPolicy | default $dot.Values.pullPolicy }}
97         volumeMounts:
98         - name: {{ include "common.fullname" $dot }}-data
99           mountPath: /podroot/
100       containers:
101       - name: {{ include "common.name" $dot }}
102         image: {{ include "repositoryGenerator.image.postgres" $dot }}
103         imagePullPolicy: {{ $dot.Values.global.pullPolicy | default $dot.Values.pullPolicy }}
104         ports:
105         - containerPort: {{ $dot.Values.service.internalPort }}
106           name: {{ $dot.Values.service.portName }}
107         # disable liveness probe when breakpoints set in debugger
108         # so K8s doesn't restart unresponsive container
109         {{- if eq $dot.Values.liveness.enabled true }}
110         livenessProbe:
111           tcpSocket:
112             port: {{ $dot.Values.service.internalPort }}
113           initialDelaySeconds: {{ $dot.Values.liveness.initialDelaySeconds }}
114           periodSeconds: {{ $dot.Values.liveness.periodSeconds }}
115           timeoutSeconds: {{ $dot.Values.liveness.timeoutSeconds }}
116         {{- end }}
117         readinessProbe:
118           tcpSocket:
119             port: {{ $dot.Values.service.internalPort }}
120           initialDelaySeconds: {{ $dot.Values.readiness.initialDelaySeconds }}
121           periodSeconds: {{ $dot.Values.readiness.periodSeconds }}
122         env:
123         - name: PGHOST
124           value: /tmp
125         - name: PG_PRIMARY_USER
126           value: primaryuser
127         - name: MODE
128           value: postgres
129         - name: PG_MODE
130           value: {{ $pgMode }}
131         - name: PG_PRIMARY_HOST
132           value: "{{ $dot.Values.service.name2 }}"
133         - name: PG_REPLICA_HOST
134           value: "{{ $dot.Values.service.name3 }}"
135         - name: PG_PRIMARY_PORT
136           value: "{{ $dot.Values.service.internalPort }}"
137         - name: PG_PRIMARY_PASSWORD
138           {{- include "common.secret.envFromSecretFast" (dict "global" $dot "uid" (include "common.postgres.secret.primaryPasswordUID" .) "key" "password") | indent 10 }}
139         - name: PG_USER
140           {{- include "common.secret.envFromSecretFast" (dict "global" $dot "uid" (include "common.postgres.secret.userCredentialsUID" .) "key" "login") | indent 10 }}
141         - name: PG_PASSWORD
142           {{- include "common.secret.envFromSecretFast" (dict "global" $dot "uid" (include "common.postgres.secret.userCredentialsUID" .) "key" "password") | indent 10 }}
143         - name: PG_DATABASE
144           value: "{{ $dot.Values.config.pgDatabase }}"
145         - name: PG_ROOT_PASSWORD
146           {{- include "common.secret.envFromSecretFast" (dict "global" $dot "uid" (include "common.postgres.secret.rootPassUID" .) "key" "password") | indent 10 }}
147         - name: PGDATA_PATH_OVERRIDE
148           value: "{{ $dot.Values.config.pgDataPath }}"
149         volumeMounts:
150         - name: config
151           mountPath: /pgconf/pool_hba.conf
152           subPath: pool_hba.conf
153         - name: pgconf
154           mountPath: /pgconf/setup.sql
155           subPath: setup.sql
156         - mountPath: /pgdata
157           name: {{ include "common.fullname" $dot }}-data
158         - mountPath: /backup
159           name: {{ include "common.fullname" $dot }}-backup
160           readOnly: true
161         resources: {{ include "common.resources" $dot | nindent 12 }}
162         {{- if $dot.Values.nodeSelector }}
163         nodeSelector:
164 {{ toYaml $dot.Values.nodeSelector | indent 10 }}
165         {{- end -}}
166         {{- if $dot.Values.affinity }}
167         affinity:
168 {{ toYaml $dot.Values.affinity | indent 10 }}
169         {{- end }}
170       volumes:
171       - name: localtime
172         hostPath:
173           path: /etc/localtime
174       - name: {{ include "common.fullname" $dot }}-backup
175         emptyDir: {}
176       - name: {{ include "common.fullname" $dot }}-data
177 {{- if $dot.Values.persistence.enabled }}
178         persistentVolumeClaim:
179             claimName: {{ include "common.fullname" $dot }}-{{ $pgMode }}
180 {{- else }}
181         emptyDir: {}
182 {{ end }}
183       - name: config
184         configMap:
185           name: {{ include "common.fullname" $dot }}
186       - name: pgconf
187         emptyDir:
188           medium: Memory
189 {{- end -}}
Introduces the ONAP Platform OOM (ONAP Operations Manager) to efficiently Deploy, Manage, Operate the ONAP platform and its components (e.g. MSO, DCAE, SDC, etc.) and infrastructure (VMs, Containers).