Code Review / oom.git / blob
? search:
summary | shortlog | log | commit | commitdiff | review | tree
history | raw | HEAD
Merge "[MariaDB] Create NFVO Database Within MariaDB"
[oom.git] / kubernetes / policy / components / policy-distribution / templates / deployment.yaml
1 #  ============LICENSE_START=======================================================
2 #   Copyright (C) 2020 AT&T Intellectual Property.
3 #  ================================================================================
4 #  Licensed under the Apache License, Version 2.0 (the "License");
5 #  you may not use this file except in compliance with the License.
6 #  You may obtain a copy of the License at
7 #
8 #       http://www.apache.org/licenses/LICENSE-2.0
9 #
10 #  Unless required by applicable law or agreed to in writing, software
11 #  distributed under the License is distributed on an "AS IS" BASIS,
12 #  WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
13 #  See the License for the specific language governing permissions and
14 #  limitations under the License.
15 #
16 #  SPDX-License-Identifier: Apache-2.0
17 #  ============LICENSE_END=========================================================
18
19 apiVersion: apps/v1
20 kind: Deployment
21 metadata:
22   name: {{ include "common.fullname" . }}
23   namespace: {{ include "common.namespace" . }}
24   labels:
25     app: {{ include "common.name" . }}
26     chart: {{ .Chart.Name }}-{{ .Chart.Version | replace "+" "_" }}
27     release: {{ include "common.release" . }}
28     heritage: {{ .Release.Service }}
29 spec:
30   selector:
31     matchLabels:
32       app: {{ include "common.name" . }}
33   replicas: {{ .Values.replicaCount }}
34   template:
35     metadata:
36       labels:
37         app: {{ include "common.name" . }}
38         release: {{ include "common.release" . }}
39     spec:
40       initContainers:
41       - command:
42         - sh
43         args:
44         - -c
45         - "cd /config-input && for PFILE in `ls -1`; do envsubst <${PFILE} >/config/${PFILE}; done"
46         env:
47         - name: RESTSERVER_USER
48           {{- include "common.secret.envFromSecretFast" (dict "global" . "uid" "restserver-creds" "key" "login") | indent 10 }}
49         - name: RESTSERVER_PASSWORD
50           {{- include "common.secret.envFromSecretFast" (dict "global" . "uid" "restserver-creds" "key" "password") | indent 10 }}
51         - name: API_USER
52           {{- include "common.secret.envFromSecretFast" (dict "global" . "uid" "apiparameters-creds" "key" "login") | indent 10 }}
53         - name: API_PASSWORD
54           {{- include "common.secret.envFromSecretFast" (dict "global" . "uid" "apiparameters-creds" "key" "password") | indent 10 }}
55         - name: PAP_USER
56           {{- include "common.secret.envFromSecretFast" (dict "global" . "uid" "papparameters-creds" "key" "login") | indent 10 }}
57         - name: PAP_PASSWORD
58           {{- include "common.secret.envFromSecretFast" (dict "global" . "uid" "papparameters-creds" "key" "password") | indent 10 }}
59         - name: SDCBE_USER
60           {{- include "common.secret.envFromSecretFast" (dict "global" . "uid" "sdcbe-creds" "key" "login") | indent 10 }}
61         - name: SDCBE_PASSWORD
62           {{- include "common.secret.envFromSecretFast" (dict "global" . "uid" "sdcbe-creds" "key" "password") | indent 10 }}
63         volumeMounts:
64         - mountPath: /config-input
65           name: distributionconfig-input
66         - mountPath: /config
67           name: distributionconfig
68         image: "{{ .Values.global.envsubstImage }}"
69         imagePullPolicy: {{ .Values.global.pullPolicy | default .Values.pullPolicy }}
70         name: {{ include "common.name" . }}-update-config
71 {{ include "common.certInitializer.initContainer" . | indent 6 }}
72       containers:
73         - name: {{ include "common.name" . }}
74           image: "{{ include "common.repository" . }}/{{ .Values.image }}"
75           imagePullPolicy: {{ .Values.global.pullPolicy | default .Values.pullPolicy }}
76 {{- if .Values.global.aafEnabled }}
77           command: ["bash","-c"]
78           args: ["source {{ .Values.certInitializer.credsPath }}/.ci;\
79                   cp {{ .Values.certInitializer.credsPath }}/org.onap.policy.p12 ${POLICY_HOME}/etc/ssl/policy-keystore;\
80                   /opt/app/policy/distribution/bin/policy-dist.sh /opt/app/policy/distribution/etc/mounted/config.json"]
81 {{- else }}
82           command: ["/opt/app/policy/distribution/bin/policy-dist.sh"]
83           args: ["/opt/app/policy/distribution/etc/mounted/config.json"]
84           env:
85           - name: KEYSTORE_PASSWD
86             {{- include "common.secret.envFromSecretFast" (dict "global" . "uid" "keystore-password" "key" "password") | indent 12 }}
87           - name: TRUSTSTORE_PASSWD
88             {{- include "common.secret.envFromSecretFast" (dict "global" . "uid" "truststore-password" "key" "password") | indent 12 }}
89 {{- end }}
90           ports:
91           - containerPort: {{ .Values.service.internalPort }}
92           # disable liveness probe when breakpoints set in debugger
93           # so K8s doesn't restart unresponsive container
94           {{- if eq .Values.liveness.enabled true }}
95           livenessProbe:
96             tcpSocket:
97               port: {{ .Values.service.internalPort }}
98             initialDelaySeconds: {{ .Values.liveness.initialDelaySeconds }}
99             periodSeconds: {{ .Values.liveness.periodSeconds }}
100           {{ end -}}
101           readinessProbe:
102             tcpSocket:
103               port: {{ .Values.service.internalPort }}
104             initialDelaySeconds: {{ .Values.readiness.initialDelaySeconds }}
105             periodSeconds: {{ .Values.readiness.periodSeconds }}
106           volumeMounts:
107 {{ include "common.certInitializer.volumeMount" . | indent 10 }}
108           - mountPath: /etc/localtime
109             name: localtime
110             readOnly: true
111           - mountPath: /opt/app/policy/distribution/etc/mounted
112             name: distributionconfig
113           resources:
114 {{ include "common.resources" . }}
115         {{- if .Values.nodeSelector }}
116         nodeSelector:
117 {{ toYaml .Values.nodeSelector | indent 10 }}
118         {{- end -}}
119         {{- if .Values.affinity }}
120         affinity:
121 {{ toYaml .Values.affinity | indent 10 }}
122         {{- end }}
123       volumes:
124 {{ include "common.certInitializer.volumes" . | indent 8 }}
125         - name: localtime
126           hostPath:
127              path: /etc/localtime
128         - name: distributionconfig-input
129           configMap:
130             name: {{ include "common.fullname" . }}-configmap
131             defaultMode: 0755
132         - name: distributionconfig
133           emptyDir:
134             medium: Memory
135       imagePullSecrets:
136       - name: "{{ include "common.namespace" . }}-docker-registry-key"
Introduces the ONAP Platform OOM (ONAP Operations Manager) to efficiently Deploy, Manage, Operate the ONAP platform and its components (e.g. MSO, DCAE, SDC, etc.) and infrastructure (VMs, Containers).