kubernetes/dcaegen2/components/dcae-cloudify-manager/templates/deployment.yaml

   1 #============LICENSE_START========================================================
   2 # ================================================================================
   3 # Copyright (c) 2018 AT&T Intellectual Property. All rights reserved.
   4 # Modifications Copyright © 2018 Amdocs, Bell Canada
   5 # ================================================================================
   6 # Licensed under the Apache License, Version 2.0 (the "License");
   7 # you may not use this file except in compliance with the License.
   8 # You may obtain a copy of the License at
   9 #
  10 #     http://www.apache.org/licenses/LICENSE-2.0
  11 #
  12 # Unless required by applicable law or agreed to in writing, software
  13 # distributed under the License is distributed on an "AS IS" BASIS,
  14 # WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
  15 # See the License for the specific language governing permissions and
  16 # limitations under the License.
  17 # ============LICENSE_END=========================================================
  18
  19 apiVersion: extensions/v1beta1
  20 kind: Deployment
  21 metadata:
  22   name: {{ include "common.fullname" . }}
  23   namespace: {{ include "common.namespace" . }}
  24   labels:
  25     app: {{ include "common.name" . }}
  26     chart: {{ .Chart.Name }}-{{ .Chart.Version | replace "+" "_" }}
  27     release: {{ include "common.release" . }}
  28     heritage: {{ .Release.Service }}
  29 spec:
  30   replicas: 1
  31   template:
  32     metadata:
  33       labels:
  34         app: {{ include "common.name" . }}
  35         release: {{ include "common.release" . }}
  36     spec:
  37       # host alias allows local 'cfy' command to use https and match
  38       # the host name in the certificate
  39       hostAliases:
  40       - ip: "127.0.0.1"
  41         hostnames:
  42         - "dcae-cloudify-manager"
  43       initContainers:
  44       - name: {{ include "common.name" . }}-multisite-init
  45         image: {{ include "common.repository" . }}/{{ .Values.multisiteInitImage }}
  46         imagePullPolicy: {{ .Values.global.pullPolicy | default .Values.pullPolicy }}
  47         args:
  48           - --namespace
  49           - {{ include "common.namespace" . }}
  50           - --configmap
  51           - {{ .Values.multisiteConfigMapName }}
  52         restartPolicy: Never
  53       - name: init-tls
  54         env:
  55           - name: POD_IP
  56             valueFrom:
  57               fieldRef:
  58                 apiVersion: v1
  59                 fieldPath: status.podIP
  60           - name: aaf_locator_fqdn
  61             value: dcae
  62         image: {{ .Values.global.tlsRepository }}/{{ .Values.global.tlsImage }}
  63         imagePullPolicy: {{ .Values.global.pullPolicy | default .Values.pullPolicy }}
  64         resources: {}
  65         volumeMounts:
  66             - mountPath: /opt/app/osaaf
  67               name: tls-info
  68       {{- if .Values.persistence.enabled }}
  69       - name: remove-lost-found
  70         image: "{{ .Values.global.busyboxRepository }}/{{ .Values.global.busyboxImage }}"
  71         imagePullPolicy: {{ .Values.global.pullPolicy | default .Values.pullPolicy }}
  72         volumeMounts:
  73         - mountPath: /cfy-persist
  74           name: cm-persistent
  75         command:
  76         - /bin/sh
  77         args:
  78         - -c
  79         - "rm -rf '/cfy-persist/lost+found';"
  80       {{- end }}
  81       containers:
  82         - name: {{ include "common.name" . }}
  83           image: "{{ include "common.repository" . }}/{{ .Values.image }}"
  84           imagePullPolicy: {{ .Values.global.pullPolicy | default .Values.pullPolicy }}
  85           env:
  86             - name: REQUESTS_CA_BUNDLE
  87               value: "/opt/onap/certs/cacert.pem"
  88           resources:
  89 {{ include "common.resources" . | indent 12 }}
  90           ports:
  91           - containerPort: {{ .Values.service.internalPort }}
  92           # disable liveness probe when breakpoints set in debugger
  93           # so K8s doesn't restart unresponsive container
  94           {{- if eq .Values.liveness.enabled true }}
  95           livenessProbe:
  96             tcpSocket:
  97               port: {{ .Values.service.internalPort }}
  98             initialDelaySeconds: {{ .Values.liveness.initialDelaySeconds }}
  99             periodSeconds: {{ .Values.liveness.periodSeconds }}
 100           {{ end }}
 101           readinessProbe:
 102             exec:
 103               command:
 104               - /scripts/readiness-check.sh
 105             initialDelaySeconds: {{ .Values.readiness.initialDelaySeconds }}
 106             periodSeconds: {{ .Values.readiness.periodSeconds }}
 107           volumeMounts:
 108           - mountPath: /opt/onap/config.txt
 109             subPath: config.txt
 110             name: {{ include "common.fullname" .}}-config
 111             readOnly: true
 112           - mountPath: /opt/onap/kube
 113             name: {{ include "common.fullname" .}}-kubeconfig
 114             readOnly: true
 115           - mountPath: /secret
 116             name: dcae-token
 117             readOnly: true
 118           - mountPath: /sys/fs/cgroup
 119             name: {{ include "common.fullname" . }}-cgroup
 120             readOnly: true
 121           - mountPath: /etc/localtime
 122             name: localtime
 123             readOnly: true
 124           - mountPath: /cfy-persist
 125             name: cm-persistent
 126           - mountPath: /opt/onap/certs
 127             name: tls-info
 128           securityContext:
 129             privileged: True
 130       volumes:
 131         - name: {{ include "common.fullname" . }}-config
 132           configMap:
 133             name: {{ include "common.fullname" . }}-configmap
 134         - name: {{ include "common.fullname" .}}-kubeconfig
 135           configMap:
 136             name: {{ .Values.multisiteConfigMapName }}
 137         - name: dcae-token
 138           secret:
 139             secretName: dcae-token
 140         - name: {{ include "common.fullname" . }}-cgroup
 141           hostPath:
 142             path: /sys/fs/cgroup
 143         - name: localtime
 144           hostPath:
 145             path: /etc/localtime
 146         - name: cm-persistent
 147         {{- if .Values.persistence.enabled }}
 148           persistentVolumeClaim:
 149             claimName: {{ include "common.fullname" . }}-data
 150         {{- else }}
 151           emptyDir: {}
 152         {{- end }}
 153         - emptyDir: {}
 154           name: tls-info
 155       imagePullSecrets:
 156       - name: "{{ include "common.namespace" . }}-docker-registry-key"