kubernetes/dcaegen2-services/components/dcae-pmsh/values.yaml

   1 # ================================ LICENSE_START =============================
   2 # ============================================================================
   3 #  Copyright (C) 2021 Nordix Foundation.
   4 # ============================================================================
   5 # Licensed under the Apache License, Version 2.0 (the "License");
   6 # you may not use this file except in compliance with the License.
   7 # You may obtain a copy of the License at
   8 #
   9 #     http://www.apache.org/licenses/LICENSE-2.0
  10 #
  11 # Unless required by applicable law or agreed to in writing, software
  12 # distributed under the License is distributed on an "AS IS" BASIS,
  13 # WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
  14 # See the License for the specific language governing permissions and
  15 # limitations under the License.
  16 # ================================= LICENSE_END ==============================
  17
  18 #################################################################
  19 # Global Configuration Defaults.
  20 #################################################################
  21 global:
  22   nodePortPrefix: 302
  23   nodePortPrefixExt: 304
  24   centralizedLoggingEnabled: true
  25
  26 #################################################################
  27 # Filebeat Configuration Defaults.
  28 #################################################################
  29 filebeatConfig:
  30   logstashServiceName: log-ls
  31   logstashPort: 5044
  32
  33 #################################################################
  34 # Secrets Configuration.
  35 #################################################################
  36 secrets:
  37   - uid: &aafCredsUID aafcreds
  38     type: basicAuth
  39     login: '{{ .Values.aafCreds.identity }}'
  40     password: '{{ .Values.aafCreds.password }}'
  41     passwordPolicy: required
  42   - uid: &pgUserCredsSecretUid pg-user-creds
  43     name: &pgUserCredsSecretName '{{ include "common.release" . }}-pmsh-pg-user-creds'
  44     type: basicAuth
  45     externalSecret: '{{ ternary "" (tpl (default "" .Values.postgres.config.pgUserExternalSecret) .) (hasSuffix "pmsh-pg-user-creds" .Values.postgres.config.pgUserExternalSecret) }}'
  46     login: '{{ .Values.postgres.config.pgUserName }}'
  47     password: '{{ .Values.postgres.config.pgUserPassword }}'
  48     passwordPolicy: generate
  49
  50 #################################################################
  51 # InitContainer Images.
  52 #################################################################
  53 tlsImage: onap/org.onap.dcaegen2.deployments.tls-init-container:2.1.0
  54 consulLoaderImage: onap/org.onap.dcaegen2.deployments.consul-loader-container:1.1.1
  55
  56 #################################################################
  57 # Application Configuration Defaults.
  58 #################################################################
  59 # Application Image
  60 image: onap/org.onap.dcaegen2.services.pmsh:1.3.2
  61 pullPolicy: Always
  62
  63 # Log directory where logging sidecar should look for log files
  64 # if path is set to null sidecar won't be deployed in spite of
  65 # global.centralizedLoggingEnabled setting.
  66 log:
  67   path: /var/log/ONAP/dcaegen2/services/pmsh
  68 logConfigMapNamePrefix: '{{ include "common.fullname" . }}'
  69
  70 # Directory where TLS certs should be stored
  71 # if absent, no certs will be retrieved and stored
  72 certDirectory: /opt/app/pmsh/etc/certs
  73
  74 # TLS role -- set to true if microservice acts as server
  75 # If true, an init container will retrieve a server cert
  76 # and key from AAF and mount them in certDirectory.
  77 tlsServer: true
  78
  79 # Dependencies
  80 readinessCheck:
  81   wait_for:
  82     - dcae-config-binding-service
  83     - aaf-cm
  84     - &postgresName dcae-pmsh-postgres
  85
  86 # Probe Configuration
  87 readiness:
  88   initialDelaySeconds: 10
  89   periodSeconds: 15
  90   timeoutSeconds: 1
  91   path: /healthcheck
  92   scheme: HTTPS
  93   port: 8443
  94
  95 # Service Configuration
  96 service:
  97   type: ClusterIP
  98   name: dcae-pmsh
  99   ports:
 100     - name: https
 101       port: 8443
 102       port_protocol: http
 103
 104 # AAF Credentials
 105 aafCreds:
 106   identity: dcae@dcae.onap.org
 107   password: demo123456!
 108
 109 credentials:
 110 - name: AAF_IDENTITY
 111   uid: *aafCredsUID
 112   key: login
 113 - name: AAF_PASSWORD
 114   uid: *aafCredsUID
 115   key: password
 116
 117 # Initial Application Configuration
 118 applicationConfig:
 119   enable_tls: true
 120   aaf_identity: ${AAF_IDENTITY}
 121   aaf_password: ${AAF_PASSWORD}
 122   key_path: /opt/app/pmsh/etc/certs/key.pem
 123   cert_path: /opt/app/pmsh/etc/certs/cert.pem
 124   ca_cert_path: /opt/app/pmsh/etc/certs/cacert.pem
 125   control_loop_name: pmsh-control-loop
 126   operational_policy_name: pmsh-operational-policy
 127   pmsh_policy:
 128     subscription:
 129       subscriptionName: ExtraPM-All-gNB-R2B
 130       administrativeState: LOCKED
 131       fileBasedGP: 15
 132       fileLocation: "/pm/pm.xml"
 133       nfFilter: { "nfNames": [ "^pnf.*","^vnf.*" ],"modelInvariantIDs": [ ],"modelVersionIDs": [ ],"modelNames": [ ] }
 134       measurementGroups: [ { "measurementGroup": { "measurementTypes": [ { "measurementType": "countera" },{ "measurementType": "counterb" } ],"managedObjectDNsBasic": [ { "DN": "dna" },{ "DN": "dnb" } ] } },{ "measurementGroup": { "measurementTypes": [ { "measurementType": "counterc" },{ "measurementType": "counterd" } ],"managedObjectDNsBasic": [ { "DN": "dnc" },{ "DN": "dnd" } ] } } ]
 135   streams_publishes:
 136     policy_pm_publisher:
 137       type: message_router
 138       dmaap_info:
 139         topic_url: "https://message-router:3905/events/unauthenticated.DCAE_CL_OUTPUT"
 140   streams_subscribes:
 141     policy_pm_subscriber:
 142       type: message_router
 143       dmaap_info:
 144         topic_url: "https://message-router:3905/events/unauthenticated.PMSH_CL_INPUT"
 145     aai_subscriber:
 146       type: message_router
 147       dmaap_info:
 148         topic_url: "https://message-router:3905/events/AAI-EVENT"
 149
 150 applicationEnv:
 151   PMSH_PG_URL: &dcaePmshPgPrimary dcae-pmsh-pg-primary
 152   PMSH_PG_USERNAME:
 153      secretUid: *pgUserCredsSecretUid
 154      key: login
 155   PMSH_PG_PASSWORD:
 156      secretUid: *pgUserCredsSecretUid
 157      key: password
 158
 159 # Resource Limit Flavor -By Default Using Small
 160 flavor: small
 161
 162 # Segregation for Different Environment (Small and Large)
 163 resources:
 164   small:
 165     limits:
 166       cpu: 1
 167       memory: 1Gi
 168     requests:
 169       cpu: 1
 170       memory: 1Gi
 171   large:
 172     limits:
 173       cpu: 2
 174       memory: 2Gi
 175     requests:
 176       cpu: 2
 177       memory: 2Gi
 178   unlimited: {}
 179
 180 #################################################################
 181 # Application configuration Overriding Defaults in the Postgres.
 182 #################################################################
 183 postgres:
 184   nameOverride: *postgresName
 185   service:
 186     name: *postgresName
 187     name2: *dcaePmshPgPrimary
 188     name3: dcae-pmsh-pg-replica
 189   container:
 190     name:
 191       primary: dcae-pmsh-pg-primary
 192       replica: dcae-pmsh-pg-replica
 193   persistence:
 194     mountSubPath: pmsh/data
 195     mountInitPath: pmsh
 196   config:
 197     pgUserName: pmsh
 198     pgDatabase: pmsh
 199     pgUserExternalSecret: *pgUserCredsSecretName
 200
 201 #Pods Service Account
 202 serviceAccount:
 203   nameOverride: dcae-pmsh
 204   roles:
 205     - read