kubernetes/dcaegen2/components/dcae-cloudify-manager/templates/deployment.yaml

   1 #============LICENSE_START========================================================
   2 # ================================================================================
   3 # Copyright (c) 2018-2020 AT&T Intellectual Property. All rights reserved.
   4 # Modifications Copyright © 2018 Amdocs, Bell Canada
   5 # Copyright (c) 2020 J. F. Lucas.  All rights reserved.
   6 # ================================================================================
   7 # Licensed under the Apache License, Version 2.0 (the "License");
   8 # you may not use this file except in compliance with the License.
   9 # You may obtain a copy of the License at
  10 #
  11 #     http://www.apache.org/licenses/LICENSE-2.0
  12 #
  13 # Unless required by applicable law or agreed to in writing, software
  14 # distributed under the License is distributed on an "AS IS" BASIS,
  15 # WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
  16 # See the License for the specific language governing permissions and
  17 # limitations under the License.
  18 # ============LICENSE_END=========================================================
  19
  20 apiVersion: apps/v1
  21 kind: Deployment
  22 metadata:
  23   name: {{ include "common.fullname" . }}
  24   namespace: {{ include "common.namespace" . }}
  25   labels:
  26     app: {{ include "common.name" . }}
  27     chart: {{ .Chart.Name }}-{{ .Chart.Version | replace "+" "_" }}
  28     release: {{ include "common.release" . }}
  29     heritage: {{ .Release.Service }}
  30 spec:
  31   replicas: 1
  32   selector:
  33     matchLabels:
  34       app: {{ include "common.name" . }}
  35   template:
  36     metadata:
  37       labels:
  38         app: {{ include "common.name" . }}
  39         release: {{ include "common.release" . }}
  40     spec:
  41       # host alias allows local 'cfy' command to use https and match
  42       # the host name in the certificate
  43       hostAliases:
  44       - ip: "127.0.0.1"
  45         hostnames:
  46         - "dcae-cloudify-manager"
  47       initContainers:
  48       - name: {{ include "common.name" . }}-readiness
  49         image: {{ include "common.repository" . }}/{{ .Values.global.readinessImage }}
  50         imagePullPolicy: {{ .Values.global.pullPolicy | default .Values.pullPolicy }}
  51         command:
  52           - /app/ready.py
  53         args:
  54           - --container-name
  55           - aaf-cm
  56           - "-t"
  57           - "15"
  58         env:
  59           - name: NAMESPACE
  60             valueFrom:
  61               fieldRef:
  62                 apiVersion: v1
  63                 fieldPath: metadata.namespace
  64       - name: {{ include "common.name" . }}-multisite-init
  65         image: {{ include "common.repository" . }}/{{ .Values.multisiteInitImage }}
  66         imagePullPolicy: {{ .Values.global.pullPolicy | default .Values.pullPolicy }}
  67         args:
  68           - --namespace
  69           - {{ include "common.namespace" . }}
  70           - --configmap
  71           - {{ .Values.multisiteConfigMapName }}
  72       - name: init-tls
  73         env:
  74           - name: POD_IP
  75             valueFrom:
  76               fieldRef:
  77                 apiVersion: v1
  78                 fieldPath: status.podIP
  79           - name: aaf_locator_fqdn
  80             value: dcae
  81         image: {{ .Values.global.tlsRepository }}/{{ .Values.global.tlsImage }}
  82         imagePullPolicy: {{ .Values.global.pullPolicy | default .Values.pullPolicy }}
  83         resources: {}
  84         volumeMounts:
  85             - mountPath: /opt/app/osaaf
  86               name: tls-info
  87       {{- if .Values.persistence.enabled }}
  88       - name: remove-lost-found
  89         image: "{{ .Values.global.busyboxRepository }}/{{ .Values.global.busyboxImage }}"
  90         imagePullPolicy: {{ .Values.global.pullPolicy | default .Values.pullPolicy }}
  91         volumeMounts:
  92         - mountPath: /cfy-persist
  93           name: cm-persistent
  94         command:
  95         - /bin/sh
  96         args:
  97         - -c
  98         - "rm -rf '/cfy-persist/lost+found';"
  99       {{- end }}
 100       containers:
 101         - name: {{ include "common.name" . }}
 102           image: "{{ include "common.repository" . }}/{{ .Values.image }}"
 103           imagePullPolicy: {{ .Values.global.pullPolicy | default .Values.pullPolicy }}
 104           env:
 105             - name: REQUESTS_CA_BUNDLE
 106               value: "/opt/onap/certs/cacert.pem"
 107           resources:
 108 {{ include "common.resources" . | indent 12 }}
 109           ports:
 110           - containerPort: {{ .Values.service.internalPort }}
 111           # disable liveness probe when breakpoints set in debugger
 112           # so K8s doesn't restart unresponsive container
 113           {{- if eq .Values.liveness.enabled true }}
 114           livenessProbe:
 115             tcpSocket:
 116               port: {{ .Values.service.internalPort }}
 117             initialDelaySeconds: {{ .Values.liveness.initialDelaySeconds }}
 118             periodSeconds: {{ .Values.liveness.periodSeconds }}
 119             timeoutSeconds: {{ .Values.liveness.timeoutSeconds }}
 120           {{ end }}
 121           readinessProbe:
 122             exec:
 123               command:
 124               - /scripts/readiness-check.sh
 125             initialDelaySeconds: {{ .Values.readiness.initialDelaySeconds }}
 126             periodSeconds: {{ .Values.readiness.periodSeconds }}
 127             timeoutSeconds: {{ .Values.readiness.timeoutSeconds }}
 128           volumeMounts:
 129           - mountPath: /opt/onap/config.txt
 130             subPath: config.txt
 131             name: {{ include "common.fullname" .}}-config
 132             readOnly: true
 133           - mountPath: /opt/onap/kube
 134             name: {{ include "common.fullname" .}}-kubeconfig
 135             readOnly: true
 136           - mountPath: /secret
 137             name: dcae-token
 138             readOnly: true
 139           - mountPath: /sys/fs/cgroup
 140             name: {{ include "common.fullname" . }}-cgroup
 141             readOnly: true
 142           - mountPath: /etc/localtime
 143             name: localtime
 144             readOnly: true
 145           - mountPath: /cfy-persist
 146             name: cm-persistent
 147           - mountPath: /opt/onap/certs
 148             name: tls-info
 149           - mountPath: /opt/onap/cm-secrets
 150             name: cm-secrets
 151             readOnly: true
 152           securityContext:
 153             privileged: True
 154       volumes:
 155         - name: {{ include "common.fullname" . }}-config
 156           configMap:
 157             name: {{ include "common.fullname" . }}-configmap
 158         - name: {{ include "common.fullname" .}}-kubeconfig
 159           configMap:
 160             name: {{ .Values.multisiteConfigMapName }}
 161         - name: dcae-token
 162           secret:
 163             secretName: dcae-token
 164         - name: {{ include "common.fullname" . }}-cgroup
 165           hostPath:
 166             path: /sys/fs/cgroup
 167         - name: localtime
 168           hostPath:
 169             path: /etc/localtime
 170         - name: cm-persistent
 171         {{- if .Values.persistence.enabled }}
 172           persistentVolumeClaim:
 173             claimName: {{ include "common.fullname" . }}-data
 174         {{- else }}
 175           emptyDir: {}
 176         {{- end }}
 177         - emptyDir: {}
 178           name: tls-info
 179         - name: cm-secrets
 180           secret:
 181             secretName: {{ include "common.secret.getSecretNameFast" (dict "global" . "uid" "cm-pass") }}
 182       imagePullSecrets:
 183       - name: "{{ include "common.namespace" . }}-docker-registry-key"