1 # Copyright © 2019 Amdocs, Bell Canada
2 # Copyright (c) 2020 Nordix Foundation, Modifications
4 # Licensed under the Apache License, Version 2.0 (the "License");
5 # you may not use this file except in compliance with the License.
6 # You may obtain a copy of the License at
8 # http://www.apache.org/licenses/LICENSE-2.0
10 # Unless required by applicable law or agreed to in writing, software
11 # distributed under the License is distributed on an "AS IS" BASIS,
12 # WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
13 # See the License for the specific language governing permissions and
14 # limitations under the License.
16 #################################################################
17 # Global configuration overrides.
19 # These overrides will affect all helm charts (ie. applications)
20 # that are listed below and are 'enabled'.
21 #################################################################
23 # Change to an unused port prefix range to prevent port conflicts
24 # with other instances running within the same k8s cluster
26 nodePortPrefixExt: 304
29 # Install test components
30 # test components are out of the scope of ONAP but allow to have a entire
31 # environment to test the different features of ONAP
32 # Current tests environments provided:
33 # - netbox (needed for CDS IPAM)
34 # - AWX (needed for XXX)
35 # - EJBCA Server (needed for CMPv2 tests)
36 # Today, "contrib" chart that hosting these components must also be enabled
37 # in order to make it work. So `contrib.enabled` must have the same value than
38 # addTestingComponents
39 addTestingComponents: &testing false
42 # Uncomment the following to enable the use of a single docker
43 # repository but ONLY if your repository mirrors all ONAP
44 # docker images. This includes all images from dockerhub and
45 # any other repository that hosts images for ONAP components.
46 #repository: nexus3.onap.org:10001
50 dockerHubRepository: docker.io
53 readinessImage: onap/oom/readiness:3.0.1
56 curlImage: curlimages/curl:7.69.1
58 # logging agent - temporary repo until images migrated to nexus3
59 loggingRepository: docker.elastic.co
61 # dockerHub main repository
62 dockerHubRepository: docker.io
64 # busybox repo and image
65 busyboxRepository: docker.io
66 busyboxImage: busybox:1.30
69 kubectlImage: "bitnami/kubectl:1.15"
75 # {{ template "common.fullname" . }}.{{ template "common.namespace" . }}.svc.{{ .Values.global.clusterName }}
76 clusterName: cluster.local
78 # default mount path root directory referenced
79 # by persistent volumes and log files
81 mountPath: /dockerdata-nfs
82 enableDefaultStorageclass: false
84 storageclassProvisioner: kubernetes.io/no-provisioner
85 volumeReclaimPolicy: Retain
87 # override default resource limit flavor for all charts
90 # flag to enable debugging - application support required
93 # default password complexity
94 # available options: phrase, name, pin, basic, short, medium, long, maximum security
95 # More datails: https://masterpassword.app/masterpassword-algorithm.pdf
96 passwordStrength: long
98 # configuration to set log level to all components (the one that are using
99 # "common.log.level" to set this)
100 # can be overrided per components by setting logConfiguration.logLevelOverride
101 # to the desired value
104 #Global ingress configuration
109 baseurl: "simpledemo.onap.org"
111 # Global Service Mesh configuration
112 # POC Mode, don't use it in production
118 # POC Mode, only for use in development environment
119 # Keep it enabled in production
121 aafAgentImage: onap/aaf/aaf_agent:2.1.20
127 image: onap/org.onap.aaf.certservice.aaf-certservice-client:1.2.0
129 name: aaf-cert-service-client-tls-secret
130 mountPath: /etc/onap/aaf/certservice/certs/
132 # Certificate related
133 cmpv2Organization: "Linux-Foundation"
134 cmpv2OrganizationalUnit: "ONAP"
135 cmpv2Location: "San-Francisco"
136 cmpv2State: "California"
138 # Client configuration related
140 requestURL: "https://aaf-cert-service:8443/v1/certificate/"
141 requestTimeout: "30000"
142 keystorePath: "/etc/onap/aaf/certservice/certs/certServiceClient-keystore.jks"
143 keystorePassword: "secret"
144 truststorePath: "/etc/onap/aaf/certservice/certs/truststore.jks"
145 truststorePassword: "secret"
148 # Set to false if you want to disable TLS for NodePorts. Be aware that this
149 # will loosen your security.
150 # if set this element will force or not tls even if serviceMesh.tls is set.
154 # Currently, centralized logging is not in best shape so it's disabled by
156 centralizedLoggingEnabled: ¢ralizedLogging false
159 # Example of specific for the components where you want to disable TLS only for
161 # if set this element will force or not tls even if global.serviceMesh.tls and
162 # global.tlsEnabled is set otherwise.
166 # Global storage configuration
167 # Set to "-" for default, or with the name of the storage class
168 # Please note that if you use AAF, CDS, SDC, Netbox or Robot, you need a
169 # storageclass with RWX capabilities (or set specific configuration for these
174 # Example of specific for the components which requires RWX:
177 # storageClassOverride: "My_RWX_Storage_Class"
182 # storageClassOverride: "My_RWX_Storage_Class"
184 # cds-blueprints-processor:
186 # storageClassOverride: "My_RWX_Storage_Class"
190 # storageClassOverride: "My_RWX_Storage_Class"
192 #################################################################
193 # Enable/disable and configure helm charts (ie. applications)
194 # to customize the ONAP deployment.
195 #################################################################
203 openStackType: OpenStackProvider
204 openStackName: OpenStack
205 openStackKeyStoneUrl: http://localhost:8181/apidoc/explorer/index.html
206 openStackServiceTenantName: default
207 openStackDomain: default
208 openStackUserName: admin
209 openStackEncryptedPassword: admin
220 # Today, "contrib" chart that hosting these components must also be enabled
221 # in order to make it work. So `contrib.enabled` must have the same value than
222 # addTestingComponents
235 # Today, "logging" chart that perform the central part of logging must also be
236 # enabled in order to make it work. So `logging.enabled` must have the same
237 # value than centralizedLoggingEnabled
239 enabled: *centralizedLogging
253 # openstack configuration
254 openStackRegion: "Yolo"
255 openStackVNFTenantId: "1234"
265 # openStackEncryptedPasswordHere should match the encrypted string used in SO and APPC and overridden per environment
266 openStackEncryptedPasswordHere: "c124921a3a0efbe579782cde8227681e"
282 # necessary to disable liveness probe when setting breakpoints
283 # in debugger so K8s doesn't restart unresponsive container
286 # so server configuration
288 # message router configuration
290 # openstack configuration
291 openStackUserName: "vnf_user"
292 openStackRegion: "RegionOne"
293 openStackKeyStoneUrl: "http://1.2.3.4:5000"
294 openStackServiceTenantName: "service"
295 openStackEncryptedPasswordHere: "c124921a3a0efbe579782cde8227681e"
297 # configure embedded mariadb
300 mariadbRootPassword: password