kubernetes/dcaegen2-services/components/dcae-prh/values.yaml

   1 #============LICENSE_START========================================================
   2 # ================================================================================
   3 # Copyright (c) 2021-2023 J. F. Lucas. All rights reserved.
   4 # Copyright (c) 2022 Nokia.  All rights reserved.
   5 # Copyright (c) 2024 Deutsche Telekom Intellectual Property. All rights reserved.
   6 # ================================================================================
   7 # Licensed under the Apache License, Version 2.0 (the "License");
   8 # you may not use this file except in compliance with the License.
   9 # You may obtain a copy of the License at
  10 #
  11 #     http://www.apache.org/licenses/LICENSE-2.0
  12 #
  13 # Unless required by applicable law or agreed to in writing, software
  14 # distributed under the License is distributed on an "AS IS" BASIS,
  15 # WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
  16 # See the License for the specific language governing permissions and
  17 # limitations under the License.
  18 # ============LICENSE_END=========================================================
  19
  20 #################################################################
  21 # Global configuration defaults.
  22 #################################################################
  23 global:
  24   nodePortPrefix: 302
  25   nodePortPrefixExt: 304
  26   centralizedLoggingEnabled: true
  27
  28 #################################################################
  29 # Filebeat configuration defaults.
  30 #################################################################
  31 filebeatConfig:
  32   logstashServiceName: log-ls
  33   logstashPort: 5044
  34
  35 #################################################################
  36 # Application configuration defaults.
  37 #################################################################
  38 # application image
  39 image: onap/org.onap.dcaegen2.services.prh.prh-app-server:1.10.1
  40 pullPolicy: Always
  41
  42 # log directory where logging sidecar should look for log files
  43 # if path is set to null sidecar won't be deployed in spite of
  44 # global.centralizedLoggingEnabled setting.
  45 log:
  46   path: /opt/app/prh/logs
  47 logConfigMapNamePrefix: '{{ include "common.fullname" . }}'
  48
  49 secrets:
  50   - uid: &aaiCredsUID aaicreds
  51     type: basicAuth
  52     login: '{{ .Values.aaiCreds.user }}'
  53     password: '{{ .Values.aaiCreds.password }}'
  54     passwordPolicy: required
  55
  56 # dependencies
  57 readinessCheck:
  58   wait_for:
  59     - message-router
  60
  61 # probe configuration
  62 readiness:
  63   initialDelaySeconds: 5
  64   periodSeconds: 15
  65   path: /heartbeat
  66   scheme: HTTP
  67   port: 8100
  68
  69 # service configuration
  70 service:
  71   type: ClusterIP
  72   name: dcae-prh
  73   ports:
  74     - port: 8100
  75       name: http
  76
  77 serviceMesh:
  78   authorizationPolicy:
  79     authorizedPrincipals:
  80       - serviceAccount: message-router-read
  81
  82 aaiCreds:
  83   user: AAI
  84   password: AAI
  85
  86 credentials:
  87 - name: AAI_USER
  88   uid: *aaiCredsUID
  89   key: login
  90 - name: AAI_PASSWORD
  91   uid: *aaiCredsUID
  92   key: password
  93
  94 # initial application configuration
  95 applicationConfig:
  96   dmaap.dmaapConsumerConfiguration.dmaapContentType: "application/json"
  97   dmaap.dmaapConsumerConfiguration.consumerId: "c12"
  98   dmaap.dmaapConsumerConfiguration.consumerGroup: "OpenDCAE-c12"
  99   dmaap.dmaapConsumerConfiguration.timeoutMs: -1
 100   dmaap.dmaapProducerConfiguration.dmaapContentType: "application/json"
 101   dmaap.dmaapUpdateProducerConfiguration.dmaapContentType: "application/json"
 102   aai.aaiClientConfiguration.pnfUrl: http://aai-internal.onap.svc.cluster.local:80/aai/v23/network/pnfs/pnf
 103   aai.aaiClientConfiguration.baseUrl: http://aai-internal.onap.svc.cluster.local:80/aai/v23
 104   aai.aaiClientConfiguration.aaiHost: aai-internal.onap.svc.cluster.local
 105   aai.aaiClientConfiguration.aaiHostPortNumber: 80
 106   aai.aaiClientConfiguration.aaiProtocol: "http"
 107   aai.aaiClientConfiguration.aaiUserName: ${AAI_USER}
 108   aai.aaiClientConfiguration.aaiUserPassword: ${AAI_PASSWORD}
 109   aai.aaiClientConfiguration.aaiIgnoreSslCertificateErrors: true
 110   aai.aaiClientConfiguration.aaiBasePath: "/aai/v23"
 111   aai.aaiClientConfiguration.aaiPnfPath: "/network/pnfs/pnf"
 112   aai.aaiClientConfiguration.aaiServiceInstancePath: "/business/customers/customer/{{customer}}/service-subscriptions/service-subscription/{{serviceType}}/service-instances/service-instance/{{serviceInstanceId}}"
 113   aai.aaiClientConfiguration.aaiHeaders:
 114       X-FromAppId: "prh"
 115       X-TransactionId: "9999"
 116       Accept: "application/json"
 117       Real-Time: "true"
 118       Authorization: ${AUTH_HDR}
 119   security.trustStorePath: "/opt/app/prh/etc/cert/trust.jks"
 120   security.trustStorePasswordPath: "/opt/app/prh/etc/cert/trust.pass"
 121   security.keyStorePath: "/opt/app/prh/etc/cert/cert.jks"
 122   security.keyStorePasswordPath: "/opt/app/prh/etc/cert/jks.pass"
 123   security.enableAaiCertAuth: false
 124   security.enableDmaapCertAuth: false
 125   streams_publishes:
 126       pnf-update:
 127         type: "message_router"
 128         dmaap_info:
 129           topic_url: http://message-router.onap.svc.cluster.local:3904/events/unauthenticated.PNF_UPDATE
 130       pnf-ready:
 131         type: "message_router"
 132         dmaap_info:
 133           topic_url: http://message-router.onap.svc.cluster.local:3904/events/unauthenticated.PNF_READY
 134   streams_subscribes:
 135       ves-reg-output:
 136         type: "message_router"
 137         dmaap_info:
 138           topic_url: http://message-router.onap.svc.cluster.local:3904/events/unauthenticated.VES_PNFREG_OUTPUT
 139
 140 applicationEnv:
 141   CBS_CLIENT_CONFIG_PATH: '/app-config-input/application_config.yaml'
 142   AUTH_HDR: '{{ printf "Basic %s" (print .Values.aaiCreds.user ":" .Values.aaiCreds.password | b64enc) }}'
 143   BOOTSTRAP_SERVERS: '{{ include "common.release" . }}-strimzi-kafka-bootstrap:9092'
 144   JAAS_CONFIG:
 145     externalSecret: true
 146     externalSecretUid: '{{ include "common.name" . }}-ku'
 147     key: sasl.jaas.config
 148
 149 # Strimzi Kafka User config
 150 kafkaUser:
 151   acls:
 152     - name: OpenDCAE-c12
 153       type: group
 154       patternType: literal
 155       operations: [Read]
 156     - name: \"*\"
 157       type: topic
 158       patternType: literal
 159       operations: [DescribeConfigs]
 160     - name: unauthenticated.VES_PNFREG_OUTPUT
 161       type: topic
 162       patternType: literal
 163       operations: [Read]
 164     - name: unauthenticated.PNF_READY
 165       type: topic
 166       patternType: literal
 167       operations: [Write]
 168     - name: unauthenticated.PNF_UPDATE
 169       type: topic
 170       patternType: literal
 171       operations: [Write]
 172
 173 # Strimzi Kafka Topics
 174 kafkaTopic:
 175   - name: unauthenticated.PNF_READY
 176     strimziTopicName: unauthenticated.pnf-ready
 177   - name: unauthenticated.PNF_UPDATE
 178     strimziTopicName: unauthenticated.pnf-update
 179
 180 # Resource Limit flavor -By Default using small
 181 flavor: small
 182 # Segregation for Different environment (Small and Large)
 183 resources:
 184   small:
 185     limits:
 186       cpu: "1"
 187       memory: "3Gi"
 188     requests:
 189       cpu: "0.5"
 190       memory: "3Gi"
 191   large:
 192     limits:
 193       cpu: "2"
 194       memory: "6Gi"
 195     requests:
 196       cpu: "1"
 197       memory: "6Gi"
 198   unlimited: {}
 199
 200 #Pods Service Account
 201 serviceAccount:
 202   nameOverride: dcae-prh
 203   roles:
 204     - read