Code Review / oom.git / blob
? search:
summary | shortlog | log | commit | commitdiff | review | tree
history | raw | HEAD
[CONSUL] Add limits to consul chart.
[oom.git] / kubernetes / sdc / components / sdc-onboarding-be / templates / deployment.yaml
1 # Copyright © 2017 Amdocs, AT&T, Bell Canada
2 # Modifications Copyright © 2018  ZTE
3 #
4 # Licensed under the Apache License, Version 2.0 (the "License");
5 # you may not use this file except in compliance with the License.
6 # You may obtain a copy of the License at
7 #
8 #       http://www.apache.org/licenses/LICENSE-2.0
9 #
10 # Unless required by applicable law or agreed to in writing, software
11 # distributed under the License is distributed on an "AS IS" BASIS,
12 # WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
13 # See the License for the specific language governing permissions and
14 # limitations under the License.
15
16 apiVersion: apps/v1
17 kind: Deployment
18 metadata:
19   name: {{ include "common.fullname" . }}
20   namespace: {{ include "common.namespace" . }}
21   labels:
22     app: {{ include "common.name" . }}
23     chart: {{ .Chart.Name }}-{{ .Chart.Version | replace "+" "_" }}
24     release: {{ include "common.release" . }}
25     heritage: {{ .Release.Service }}
26 spec:
27   selector:
28     matchLabels:
29       app: {{ include "common.name" . }}
30   replicas: {{ .Values.replicaCount }}
31   template:
32     metadata:
33       labels:
34         app: {{ include "common.name" . }}
35         release: {{ include "common.release" . }}
36     spec:
37       initContainers: {{ include "common.certInitializer.initContainer" . | nindent 6 }}
38       - name: {{ include "common.name" . }}-job-completion
39         image: "{{ include "common.repository" . }}/{{ .Values.global.readinessImage }}"
40         imagePullPolicy: "{{ .Values.global.pullPolicy | default .Values.pullPolicy }}"
41         command:
42         - /app/ready.py
43         args:
44         - --job-name
45         - {{ include "common.release" . }}-sdc-onboarding-be-cassandra-init
46         env:
47         - name: NAMESPACE
48           valueFrom:
49             fieldRef:
50               apiVersion: v1
51               fieldPath: metadata.namespace
52         resources:
53           limits:
54             cpu: 100m
55             memory: 100Mi
56           requests:
57             cpu: 3m
58             memory: 20Mi
59       {{- if .Values.global.aafEnabled }}
60       - name: {{ include "common.name" . }}-update-config
61         image: "{{ .Values.global.envsubstImage }}"
62         imagePullPolicy: {{ .Values.global.pullPolicy | default .Values.pullPolicy }}
63         command:
64         - sh
65         args:
66         - "-c"
67         - |
68           export $(grep '^c' {{ .Values.certInitializer.credsPath }}/mycreds.prop | xargs -0)
69           export KEYSTORE_PASS=$cadi_keystore_password_p12
70           export KEYMANAGER_PASS=$cadi_keystore_password_p12
71           export TRUSTSTORE_PASS=$cadi_truststore_password
72           cp {{ .Values.certInitializer.credsPath }}/{{ .Values.certInitializer.keystoreFile }} /config-output
73           cp {{ .Values.certInitializer.credsPath }}/{{ .Values.certInitializer.truststoreFile }} /config-output
74           cd /config-input && \
75           for PFILE in `find . -not -type d | grep -v -F ..`
76           do
77             envsubst <${PFILE} >/config-output/${PFILE}
78             chmod 0755 /config-output/${PFILE}
79           done
80         volumeMounts: {{ include "common.certInitializer.volumeMount" . | nindent 10 }}
81           - name: {{ include "common.fullname" . }}-environments
82             mountPath: /config-input/
83           - name: sdc-environments-output
84             mountPath: /config-output/
85         resources:
86           limits:
87             cpu: 100m
88             memory: 100Mi
89           requests:
90             cpu: 3m
91             memory: 20Mi
92       {{- end }}
93       containers:
94         - name: {{ include "common.name" . }}
95           image: "{{ include "common.repository" . }}/{{ .Values.image }}"
96           imagePullPolicy: {{ .Values.global.pullPolicy | default .Values.pullPolicy }}
97           ports:
98           - containerPort: {{ .Values.service.internalPort }}
99           - containerPort: {{ .Values.service.internalPort2 }}
100           {{ if eq .Values.liveness.enabled true }}
101           livenessProbe:
102             exec:
103               command:
104               - "/var/lib/jetty/ready-probe.sh"
105             initialDelaySeconds: {{ .Values.liveness.initialDelaySeconds }}
106             periodSeconds: {{ .Values.liveness.periodSeconds }}
107             timeoutSeconds: {{ .Values.liveness.timeoutSeconds }}
108           {{ end }}
109           readinessProbe:
110             exec:
111               command:
112               - "/var/lib/jetty/ready-probe.sh"
113             initialDelaySeconds: {{ .Values.readiness.initialDelaySeconds }}
114             periodSeconds: {{ .Values.readiness.periodSeconds }}
115             timeoutSeconds: {{ .Values.liveness.timeoutSeconds }}
116           resources: {{ include "common.resources" . | nindent 12 }}
117           env:
118           - name: ENVNAME
119             value: {{ .Values.env.name }}
120           - name: JAVA_OPTIONS
121             value: {{ .Values.config.javaOptions }}
122           - name: SDC_CLUSTER_NAME
123             value: "SDC-CS-{{ .Values.env.name }}"
124           - name: cassandra_ssl_enabled
125             value: {{ .Values.config.cassandraSslEnabled | quote }}
126           - name: HOST_IP
127             valueFrom:
128               fieldRef:
129                 fieldPath: status.podIP
130           - name: SDC_USER
131             valueFrom:
132               secretKeyRef: {name: {{ include "common.release" . }}-sdc-cs-secrets, key: sdc_user}
133           - name: SDC_PASSWORD
134             valueFrom:
135               secretKeyRef: {name: {{ include "common.release" . }}-sdc-cs-secrets, key: sdc_password}
136           - name: SDC_CERT_DIR
137             value: {{ .Values.cert.certDir }}
138           volumeMounts:
139           - name: sdc-environments-output
140             mountPath: /var/lib/jetty/chef-solo/environments/
141           - name: sdc-environments-output
142             mountPath: /var/lib/jetty/chef-solo/cookbooks/sdc-onboard-backend/files/default/org.onap.sdc.p12
143             subPath: org.onap.sdc.p12
144           - name: sdc-environments-output
145             mountPath: /var/lib/jetty/chef-solo/cookbooks/sdc-onboard-backend/files/default/org.onap.sdc.trust.jks
146             subPath: org.onap.sdc.trust.jks
147           - name: {{ include "common.fullname" . }}-localtime
148             mountPath: /etc/localtime
149             readOnly: true
150           - name: {{ include "common.fullname" . }}-logs
151             mountPath: /var/log/onap
152           - name: {{ include "common.fullname" . }}-logback
153             mountPath: /tmp/logback.xml
154             subPath: logback.xml
155           lifecycle:
156             postStart:
157               exec:
158                 command: ["/bin/sh", "-c", "export LOG=wait_logback.log; touch $LOG; export SRC=/tmp/logback.xml; export DST=/var/lib/jetty/config/onboarding-be/; while [ ! -e $DST ]; do echo 'Waiting for $DST...' >> $LOG; sleep 5; done; sleep 2; /bin/cp -f $SRC $DST; echo 'Done' >> $LOG"]
159         # side car containers
160         - name: {{ include "common.name" . }}-filebeat-onap
161           image: "{{ .Values.global.loggingRepository }}/{{ .Values.global.loggingImage }}"
162           imagePullPolicy: {{ .Values.global.pullPolicy | default .Values.pullPolicy }}
163           volumeMounts:
164           - name: {{ include "common.fullname" . }}-filebeat-conf
165             mountPath: /usr/share/filebeat/filebeat.yml
166             subPath: filebeat.yml
167           - name: {{ include "common.fullname" . }}-logs
168             mountPath: /var/log/onap
169           - name: {{ include "common.fullname" . }}-data-filebeat
170             mountPath: /usr/share/filebeat/data
171           resources:
172             limits:
173               cpu: 100m
174               memory: 100Mi
175             requests:
176               cpu: 3m
177               memory: 20Mi
178       volumes: {{ include "common.certInitializer.volumes" . | nindent 6 }}
179       - name: {{ include "common.fullname" . }}-localtime
180         hostPath:
181           path: /etc/localtime
182       - name: {{ include "common.fullname" . }}-filebeat-conf
183         configMap:
184           name: {{ include "common.release" . }}-sdc-filebeat-configmap
185       - name: {{ include "common.fullname" . }}-data-filebeat
186         emptyDir: {}
187       - name: {{ include "common.fullname" . }}-logback
188         configMap:
189           name : {{ include "common.fullname" . }}-logging-configmap
190       - name: {{ include "common.fullname" . }}-environments
191         configMap:
192           name: {{ include "common.release" . }}-sdc-environments-configmap
193           defaultMode: 0755
194       - name: sdc-environments-output
195         emptyDir: { medium: "Memory" }
196       - name:  {{ include "common.fullname" . }}-logs
197         emptyDir: {}
198       imagePullSecrets:
199       - name: "{{ include "common.namespace" . }}-docker-registry-key"
Introduces the ONAP Platform OOM (ONAP Operations Manager) to efficiently Deploy, Manage, Operate the ONAP platform and its components (e.g. MSO, DCAE, SDC, etc.) and infrastructure (VMs, Containers).