kubernetes/dcaegen2-services/components/dcae-pmsh/values.yaml

   1 # ================================ LICENSE_START =============================
   2 # ============================================================================
   3 #  Copyright (C) 2021 Nordix Foundation.
   4 #  Copyright (c) 2022 J. F. Lucas. All rights reserved.
   5 # ============================================================================
   6 # Licensed under the Apache License, Version 2.0 (the "License");
   7 # you may not use this file except in compliance with the License.
   8 # You may obtain a copy of the License at
   9 #
  10 #     http://www.apache.org/licenses/LICENSE-2.0
  11 #
  12 # Unless required by applicable law or agreed to in writing, software
  13 # distributed under the License is distributed on an "AS IS" BASIS,
  14 # WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
  15 # See the License for the specific language governing permissions and
  16 # limitations under the License.
  17 # ================================= LICENSE_END ==============================
  18
  19 #################################################################
  20 # Global Configuration Defaults.
  21 #################################################################
  22 global:
  23   nodePortPrefix: 302
  24   nodePortPrefixExt: 304
  25   centralizedLoggingEnabled: true
  26
  27 #################################################################
  28 # Filebeat Configuration Defaults.
  29 #################################################################
  30 filebeatConfig:
  31   logstashServiceName: log-ls
  32   logstashPort: 5044
  33
  34 #################################################################
  35 # Secrets Configuration.
  36 #################################################################
  37 secrets:
  38   - uid: &aafCredsUID aafcreds
  39     type: basicAuth
  40     login: '{{ .Values.aafCreds.identity }}'
  41     password: '{{ .Values.aafCreds.password }}'
  42     passwordPolicy: required
  43   - uid: &pgUserCredsSecretUid pg-user-creds
  44     name: &pgUserCredsSecretName '{{ include "common.release" . }}-pmsh-pg-user-creds'
  45     type: basicAuth
  46     externalSecret: '{{ ternary "" (tpl (default "" .Values.postgres.config.pgUserExternalSecret) .) (hasSuffix "pmsh-pg-user-creds" .Values.postgres.config.pgUserExternalSecret) }}'
  47     login: '{{ .Values.postgres.config.pgUserName }}'
  48     password: '{{ .Values.postgres.config.pgUserPassword }}'
  49     passwordPolicy: generate
  50
  51 #################################################################
  52 # InitContainer Images.
  53 #################################################################
  54 tlsImage: onap/org.onap.dcaegen2.deployments.tls-init-container:2.1.0
  55
  56 #################################################################
  57 # Application Configuration Defaults.
  58 #################################################################
  59 # Application Image
  60 image: onap/org.onap.dcaegen2.services.pmsh:2.2.2
  61 pullPolicy: Always
  62
  63 # Log directory where logging sidecar should look for log files
  64 # if path is set to null sidecar won't be deployed in spite of
  65 # global.centralizedLoggingEnabled setting.
  66 log:
  67   path: /var/log/ONAP/dcaegen2/services/pmsh
  68 logConfigMapNamePrefix: '{{ include "common.fullname" . }}'
  69
  70 # Directory where TLS certs should be stored
  71 # if absent, no certs will be retrieved and stored
  72 certDirectory: /opt/app/pmsh/etc/certs
  73
  74 # TLS role -- set to true if microservice acts as server
  75 # If true, an init container will retrieve a server cert
  76 # and key from AAF and mount them in certDirectory.
  77 tlsServer: false
  78
  79 # Dependencies
  80 readinessCheck:
  81   wait_for:
  82     - &postgresName dcae-pmsh-postgres
  83     - message-router
  84
  85 # Probe Configuration
  86 readiness:
  87   initialDelaySeconds: 10
  88   periodSeconds: 15
  89   timeoutSeconds: 1
  90   path: /healthcheck
  91   scheme: HTTP
  92   port: 8080
  93
  94 # Service Configuration
  95 service:
  96   type: ClusterIP
  97   name: dcae-pmsh
  98   ports:
  99     - name: http
 100       port: 8080
 101       plain_port: 8080
 102       port_protocol: http
 103
 104 # AAF Credentials
 105 aafCreds:
 106   identity: dcae@dcae.onap.org
 107   password: demo123456!
 108
 109 credentials:
 110 - name: AAF_IDENTITY
 111   uid: *aafCredsUID
 112   key: login
 113 - name: AAF_PASSWORD
 114   uid: *aafCredsUID
 115   key: password
 116
 117 # Initial Application Configuration
 118 applicationConfig:
 119   enable_tls: false
 120   aaf_identity: ${AAF_IDENTITY}
 121   aaf_password: ${AAF_PASSWORD}
 122   key_path: /opt/app/pmsh/etc/certs/key.pem
 123   cert_path: /opt/app/pmsh/etc/certs/cert.pem
 124   ca_cert_path: /opt/app/pmsh/etc/certs/cacert.pem
 125   control_loop_name: pmsh-control-loop
 126   operational_policy_name: pmsh-operational-policy
 127   pmsh_policy:
 128     subscription:
 129       subscriptionName: ExtraPM-All-gNB-R2B
 130       administrativeState: LOCKED
 131       fileBasedGP: 15
 132       fileLocation: "/pm/pm.xml"
 133       nfFilter: { "nfNames": [ "^pnf.*","^vnf.*" ],"modelInvariantIDs": [ ],"modelVersionIDs": [ ],"modelNames": [ ] }
 134       measurementGroups: [ { "measurementGroup": { "measurementTypes": [ { "measurementType": "countera" },{ "measurementType": "counterb" } ],"managedObjectDNsBasic": [ { "DN": "dna" },{ "DN": "dnb" } ] } },{ "measurementGroup": { "measurementTypes": [ { "measurementType": "counterc" },{ "measurementType": "counterd" } ],"managedObjectDNsBasic": [ { "DN": "dnc" },{ "DN": "dnd" } ] } } ]
 135   streams_publishes:
 136     policy_pm_publisher:
 137       type: message_router
 138       dmaap_info:
 139         topic_url: "http://message-router:3904/events/unauthenticated.DCAE_CL_OUTPUT"
 140   streams_subscribes:
 141     policy_pm_subscriber:
 142       type: message_router
 143       dmaap_info:
 144         topic_url: "http://message-router:3904/events/unauthenticated.PMSH_CL_INPUT"
 145     aai_subscriber:
 146       type: message_router
 147       dmaap_info:
 148         topic_url: "http://message-router:3904/events/AAI-EVENT"
 149
 150 applicationEnv:
 151   PMSH_PG_URL: &dcaePmshPgPrimary dcae-pmsh-pg-primary
 152   PMSH_PG_USERNAME:
 153      secretUid: *pgUserCredsSecretUid
 154      key: login
 155   PMSH_PG_PASSWORD:
 156      secretUid: *pgUserCredsSecretUid
 157      key: password
 158   PMSH_API_PORT: '8080'
 159
 160 # Resource Limit Flavor -By Default Using Small
 161 flavor: small
 162
 163 # Segregation for Different Environment (Small and Large)
 164 resources:
 165   small:
 166     limits:
 167       cpu: 1
 168       memory: 1Gi
 169     requests:
 170       cpu: 1
 171       memory: 1Gi
 172   large:
 173     limits:
 174       cpu: 2
 175       memory: 2Gi
 176     requests:
 177       cpu: 2
 178       memory: 2Gi
 179   unlimited: {}
 180
 181 #################################################################
 182 # Application configuration Overriding Defaults in the Postgres.
 183 #################################################################
 184 postgres:
 185   nameOverride: *postgresName
 186   service:
 187     name: *postgresName
 188     name2: *dcaePmshPgPrimary
 189     name3: dcae-pmsh-pg-replica
 190   container:
 191     name:
 192       primary: dcae-pmsh-pg-primary
 193       replica: dcae-pmsh-pg-replica
 194   persistence:
 195     mountSubPath: pmsh/data
 196     mountInitPath: pmsh
 197   config:
 198     pgUserName: pmsh
 199     pgDatabase: pmsh
 200     pgUserExternalSecret: *pgUserCredsSecretName
 201
 202 #Pods Service Account
 203 serviceAccount:
 204   nameOverride: dcae-pmsh
 205   roles:
 206     - read