Code Review / oom.git / blob
? search:
summary | shortlog | log | commit | commitdiff | review | tree
history | raw | HEAD
[GENERAL] Use readiness container v3.0.1
[oom.git] / kubernetes / sdc / charts / sdc-onboarding-be / templates / deployment.yaml
1 # Copyright © 2017 Amdocs, AT&T, Bell Canada
2 # Modifications Copyright © 2018  ZTE
3 #
4 # Licensed under the Apache License, Version 2.0 (the "License");
5 # you may not use this file except in compliance with the License.
6 # You may obtain a copy of the License at
7 #
8 #       http://www.apache.org/licenses/LICENSE-2.0
9 #
10 # Unless required by applicable law or agreed to in writing, software
11 # distributed under the License is distributed on an "AS IS" BASIS,
12 # WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
13 # See the License for the specific language governing permissions and
14 # limitations under the License.
15
16 apiVersion: apps/v1
17 kind: Deployment
18 metadata:
19   name: {{ include "common.fullname" . }}
20   namespace: {{ include "common.namespace" . }}
21   labels:
22     app: {{ include "common.name" . }}
23     chart: {{ .Chart.Name }}-{{ .Chart.Version | replace "+" "_" }}
24     release: {{ include "common.release" . }}
25     heritage: {{ .Release.Service }}
26 spec:
27   selector:
28     matchLabels:
29       app: {{ include "common.name" . }}
30   replicas: {{ .Values.replicaCount }}
31   template:
32     metadata:
33       labels:
34         app: {{ include "common.name" . }}
35         release: {{ include "common.release" . }}
36     spec:
37       initContainers:
38       - name: {{ include "common.name" . }}-job-completion
39         image: "{{ include "common.repository" . }}/{{ .Values.global.readinessImage }}"
40         imagePullPolicy: "{{ .Values.global.pullPolicy | default .Values.pullPolicy }}"
41         command:
42         - /app/ready.py
43         args:
44         - --job-name
45         - {{ include "common.release" . }}-sdc-onboarding-be-cassandra-init
46         env:
47         - name: NAMESPACE
48           valueFrom:
49             fieldRef:
50               apiVersion: v1
51               fieldPath: metadata.namespace
52       - name: {{ include "common.name" . }}-update-config
53         image: "{{ .Values.global.envsubstImage }}"
54         imagePullPolicy: {{ .Values.global.pullPolicy | default .Values.pullPolicy }}
55         command:
56           - sh
57         args:
58           - -c
59           - "cd /config-input && for PFILE in `find . -not -type d | grep -v -F ..`; do envsubst <${PFILE} >/config-output/${PFILE}; chmod 0755 /config-output/${PFILE}; done"
60         env:
61           - name: KEYSTORE_PASS
62             valueFrom:
63               secretKeyRef:
64                 name: {{ include "common.release" . }}-sdc-cs-secrets
65                 key: keystore_password
66           - name: TRUSTSTORE_PASS
67             valueFrom:
68               secretKeyRef:
69                 name: {{ include "common.release" . }}-sdc-cs-secrets
70                 key: truststore_password
71         volumeMounts:
72           - name: {{ include "common.fullname" . }}-environments
73             mountPath: /config-input/
74           - name: sdc-environments-output
75             mountPath: /config-output/
76       - name: volume-permissions
77         image: {{ .Values.global.busyboxRepository | default .Values.busyboxRepository }}/{{ .Values.global.busyboxImage | default .Values.busyboxImage }}
78         imagePullPolicy: {{ .Values.global.pullPolicy | default .Values.pullPolicy }}
79         command:
80           - /bin/sh
81           - -c
82           - |
83             chown -R {{ .Values.securityContext.runAsUser }}:{{ .Values.securityContext.fsGroup }} //onboard/cert
84         securityContext:
85           runAsUser: 0
86         volumeMounts:
87           - name: {{ include "common.fullname" . }}-cert-storage
88             mountPath: "/onboard/cert"
89       containers:
90         - name: {{ include "common.name" . }}
91           image: "{{ include "common.repository" . }}/{{ .Values.image }}"
92           imagePullPolicy: {{ .Values.global.pullPolicy | default .Values.pullPolicy }}
93           ports:
94           - containerPort: {{ .Values.service.internalPort }}
95           - containerPort: {{ .Values.service.internalPort2 }}
96           {{ if eq .Values.liveness.enabled true }}
97           livenessProbe:
98             exec:
99               command:
100               - "/var/lib/jetty/ready-probe.sh"
101             initialDelaySeconds: {{ .Values.liveness.initialDelaySeconds }}
102             periodSeconds: {{ .Values.liveness.periodSeconds }}
103             timeoutSeconds: {{ .Values.liveness.timeoutSeconds }}
104           {{ end }}
105           readinessProbe:
106             exec:
107               command:
108               - "/var/lib/jetty/ready-probe.sh"
109             initialDelaySeconds: {{ .Values.readiness.initialDelaySeconds }}
110             periodSeconds: {{ .Values.readiness.periodSeconds }}
111             timeoutSeconds: {{ .Values.liveness.timeoutSeconds }}
112           resources:
113 {{ include "common.resources" . | indent 12 }}
114           env:
115           - name: ENVNAME
116             value: {{ .Values.global.env.name }}
117           - name: JAVA_OPTIONS
118             value: {{ .Values.config.javaOptions }}
119           - name: SDC_CLUSTER_NAME
120             value: "SDC-CS-{{ .Values.global.env.name }}"
121           - name: cassandra_ssl_enabled
122             value: {{ .Values.config.cassandraSslEnabled | quote }}
123           - name: HOST_IP
124             valueFrom:
125               fieldRef:
126                 fieldPath: status.podIP
127           - name: SDC_USER
128             valueFrom:
129               secretKeyRef: {name: {{ include "common.release" . }}-sdc-cs-secrets, key: sdc_user}
130           - name: SDC_PASSWORD
131             valueFrom:
132               secretKeyRef: {name: {{ include "common.release" . }}-sdc-cs-secrets, key: sdc_password}
133           - name: SDC_CERT_DIR
134             value: {{ .Values.cert.certDir }}
135           volumeMounts:
136           - name: sdc-environments-output
137             mountPath: /var/lib/jetty/chef-solo/environments/
138           - name: sdc-cert
139             mountPath: /var/lib/jetty/chef-solo/cookbooks/sdc-onboard-backend/files/default/org.onap.sdc.p12
140             subPath: org.onap.sdc.p12
141           - name: sdc-cert
142             mountPath: /var/lib/jetty/chef-solo/cookbooks/sdc-onboard-backend/files/default/org.onap.sdc.trust.jks
143             subPath: org.onap.sdc.trust.jks
144           - name: {{ include "common.fullname" . }}-localtime
145             mountPath: /etc/localtime
146             readOnly: true
147           - name: {{ include "common.fullname" . }}-logs
148             mountPath: /var/log/onap
149           - name: {{ include "common.fullname" . }}-logback
150             mountPath: /tmp/logback.xml
151             subPath: logback.xml
152           - name: {{ include "common.fullname" . }}-cert-storage
153             mountPath: "{{ .Values.cert.certDir }}"
154           lifecycle:
155             postStart:
156               exec:
157                 command: ["/bin/sh", "-c", "export LOG=wait_logback.log; touch $LOG; export SRC=/tmp/logback.xml; export DST=/var/lib/jetty/config/onboarding-be/; while [ ! -e $DST ]; do echo 'Waiting for $DST...' >> $LOG; sleep 5; done; sleep 2; /bin/cp -f $SRC $DST; echo 'Done' >> $LOG"]
158         # side car containers
159         - name: {{ include "common.name" . }}-filebeat-onap
160           image: "{{ .Values.global.loggingRepository }}/{{ .Values.global.loggingImage }}"
161           imagePullPolicy: {{ .Values.global.pullPolicy | default .Values.pullPolicy }}
162           volumeMounts:
163           - name: {{ include "common.fullname" . }}-filebeat-conf
164             mountPath: /usr/share/filebeat/filebeat.yml
165             subPath: filebeat.yml
166           - name: {{ include "common.fullname" . }}-logs
167             mountPath: /var/log/onap
168           - name: {{ include "common.fullname" . }}-data-filebeat
169             mountPath: /usr/share/filebeat/data
170       volumes:
171       - name: {{ include "common.fullname" . }}-localtime
172         hostPath:
173           path: /etc/localtime
174       - name: sdc-cert
175         secret:
176           secretName: sdc-cert
177       - name: {{ include "common.fullname" . }}-filebeat-conf
178         configMap:
179           name: {{ include "common.release" . }}-sdc-filebeat-configmap
180       - name: {{ include "common.fullname" . }}-data-filebeat
181         emptyDir: {}
182       - name: {{ include "common.fullname" . }}-logback
183         configMap:
184           name : {{ include "common.fullname" . }}-logging-configmap
185       - name: {{ include "common.fullname" . }}-environments
186         configMap:
187           name: {{ include "common.release" . }}-sdc-environments-configmap
188           defaultMode: 0755
189       - name: sdc-environments-output
190         emptyDir: { medium: "Memory" }
191       - name:  {{ include "common.fullname" . }}-logs
192         emptyDir: {}
193       - name:  {{ include "common.fullname" . }}-cert-storage
194         persistentVolumeClaim:
195           claimName: {{ include "common.fullname" . }}-cert
196       imagePullSecrets:
197       - name: "{{ include "common.namespace" . }}-docker-registry-key"
Introduces the ONAP Platform OOM (ONAP Operations Manager) to efficiently Deploy, Manage, Operate the ONAP platform and its components (e.g. MSO, DCAE, SDC, etc.) and infrastructure (VMs, Containers).