Code Review / oom.git / blob
? search:
summary | shortlog | log | commit | commitdiff | review | tree
history | raw | HEAD
Merge "[SDC] Update pod limits and timeouts"
[oom.git] / kubernetes / sdc / components / sdc-wfd-fe / templates / deployment.yaml
1 # Copyright © 2018 Amdocs, Bell Canada
2 #
3 # Licensed under the Apache License, Version 2.0 (the "License");
4 # you may not use this file except in compliance with the License.
5 # You may obtain a copy of the License at
6 #
7 #       http://www.apache.org/licenses/LICENSE-2.0
8 #
9 # Unless required by applicable law or agreed to in writing, software
10 # distributed under the License is distributed on an "AS IS" BASIS,
11 # WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
12 # See the License for the specific language governing permissions and
13 # limitations under the License.
14
15 apiVersion: apps/v1
16 kind: Deployment
17 metadata:
18   name: {{ include "common.fullname" . }}
19   namespace: {{ include "common.namespace" . }}
20   labels:
21     app: {{ include "common.name" . }}
22     chart: {{ .Chart.Name }}-{{ .Chart.Version | replace "+" "_" }}
23     release: {{ include "common.release" . }}
24     heritage: {{ .Release.Service }}
25 spec:
26   selector:
27     matchLabels:
28       app: {{ include "common.name" . }}
29   replicas: {{ .Values.replicaCount }}
30   template:
31     metadata:
32       labels:
33         app: {{ include "common.name" . }}
34         release: {{ include "common.release" . }}
35     spec:
36       initContainers: {{ include "common.certInitializer.initContainer" . | nindent 6 }}
37       - name: {{ include "common.name" . }}-readiness
38         command:
39         - /app/ready.py
40         args:
41         - --container-name
42         - "sdc-wfd-be"
43         env:
44         - name: NAMESPACE
45           valueFrom:
46             fieldRef:
47               apiVersion: v1
48               fieldPath: metadata.namespace
49         image: "{{ include "common.repository" . }}/{{ .Values.global.readinessImage }}"
50         imagePullPolicy: {{ .Values.global.pullPolicy | default .Values.pullPolicy }}
51         resources:
52           limits:
53             cpu: 100m
54             memory: 100Mi
55           requests:
56             cpu: 3m
57             memory: 20Mi
58       {{- if .Values.global.aafEnabled }}
59       - name: {{ include "common.fullname" . }}-move-cert
60         command:
61           - /bin/sh
62         args:
63           - -c
64           - |
65             cp {{ .Values.certInitializer.credsPath }}/{{ .Values.certInitializer.keystoreFile }} /sdc-certs/{{ .Values.certInitializer.keystoreFile }}
66             cp {{ .Values.certInitializer.credsPath }}/{{ .Values.certInitializer.truststoreFile }} /sdc-certs/{{ .Values.certInitializer.truststoreFile }}
67             cp {{ .Values.certInitializer.credsPath }}/mycreds.prop /sdc-certs/mycreds.prop
68         image: "{{ .Values.global.busyboxRepository }}/{{ .Values.global.busyboxImage }}"
69         imagePullPolicy: {{ .Values.global.pullPolicy | default .Values.pullPolicy }}
70         volumeMounts: {{ include "common.certInitializer.volumeMount" . | nindent 10 }}
71           - name: sdc-certs
72             mountPath: /sdc-certs
73         resources:
74           limits:
75             cpu: 100m
76             memory: 100Mi
77           requests:
78             cpu: 3m
79             memory: 20Mi
80       {{- end }}
81       containers:
82         - name: {{ include "common.name" . }}
83           image: "{{ include "common.repository" . }}/{{ .Values.image }}"
84           imagePullPolicy: {{ .Values.global.pullPolicy | default .Values.pullPolicy }}
85           {{- if .Values.global.aafEnabled }}
86           command:
87           - sh
88           args:
89           - "-c"
90           - |
91             export $(grep '^c' /sdc-certs/mycreds.prop | xargs -0)
92             export KEYSTORE_PASS=$cadi_keystore_password_p12
93             export TRUSTSTORE_PASS=$cadi_truststore_password
94             export KEYSTORE_PATH=/etc/{{ .Values.certInitializer.keystoreFile }}
95             export TRUSTSTORE_PATH=/etc/{{ .Values.certInitializer.truststoreFile }}
96             ./startup.sh
97           {{- end }}
98           ports:
99           - containerPort: {{ template "wfd-fe.internalPort" . }}
100           {{ if .Values.liveness.enabled }}
101           livenessProbe:
102             tcpSocket:
103               port: {{ template "wfd-fe.internalPort" . }}
104             initialDelaySeconds: {{ .Values.liveness.initialDelaySeconds }}
105             periodSeconds: {{ .Values.liveness.periodSeconds }}
106           {{ end }}
107           readinessProbe:
108             tcpSocket:
109               port: {{ template "wfd-fe.internalPort" . }}
110             initialDelaySeconds: {{ .Values.readiness.initialDelaySeconds }}
111             periodSeconds: {{ .Values.readiness.periodSeconds }}
112           env:
113           - name: ENVNAME
114             value: {{ .Values.env.name }}
115           - name: JAVA_OPTIONS
116             value: {{ .Values.config.javaOptions }}
117           - name: BACKEND
118             value: {{ .Values.config.backendServerURL }}
119           - name: IS_HTTPS
120             value: "{{ .Values.config.isHttpsEnabled}}"
121             {{ if and .Values.config.isHttpsEnabled (eq .Values.security.isDefaultStore false) }}
122           - name: TRUST_ALL
123             value: "{{ .Values.config.isTrustAll}}"
124             {{ end }}
125           volumeMounts:
126           - name: {{ include "common.fullname" . }}-localtime
127             mountPath: /etc/localtime
128             readOnly: true
129           {{- if .Values.global.aafEnabled }}
130           - name: sdc-certs
131             mountPath: /sdc-certs/mycreds.prop
132             subPath: mycreds.prop
133           - name: sdc-certs
134             mountPath: /var/lib/jetty/etc/{{ .Values.certInitializer.keystoreFile }}
135             subPath: {{ .Values.certInitializer.keystoreFile }}
136           - name: sdc-certs
137             mountPath: /var/lib/jetty/etc/{{ .Values.certInitializer.truststoreFile }}
138             subPath: {{ .Values.certInitializer.truststoreFile }}
139           {{ end }}
140           resources: {{ include "common.resources" . | nindent 12 }}
141         {{- if .Values.nodeSelector }}
142         nodeSelector:
143 {{ toYaml .Values.nodeSelector | indent 10 }}
144         {{- end -}}
145         {{- if .Values.affinity }}
146         affinity:
147 {{ toYaml .Values.affinity | indent 10 }}
148         {{- end }}
149         # side car containers
150         - name: {{ include "common.name" . }}-filebeat-onap
151           image: "{{ .Values.global.loggingRepository }}/{{ .Values.global.loggingImage }}"
152           imagePullPolicy: {{ .Values.global.pullPolicy | default .Values.pullPolicy }}
153           volumeMounts:
154           - name: {{ include "common.fullname" . }}-filebeat-conf
155             mountPath: /usr/share/filebeat/filebeat.yml
156             subPath: filebeat.yml
157           - name: {{ include "common.fullname" . }}-logs
158             mountPath: /var/log/onap
159           - name: {{ include "common.fullname" . }}-data-filebeat
160             mountPath: /usr/share/filebeat/data
161           resources:
162             limits:
163               cpu: 100m
164               memory: 100Mi
165             requests:
166               cpu: 3m
167               memory: 20Mi
168       volumes: {{ include "common.certInitializer.volumes" . | nindent 8 }}
169         - name: {{ include "common.fullname" . }}-localtime
170           hostPath:
171             path: /etc/localtime
172         {{- if .Values.global.aafEnabled }}
173         - name: sdc-certs
174           emptyDir:
175             medium: "Memory"
176         {{- end }}
177         - name: {{ include "common.fullname" . }}-filebeat-conf
178           configMap:
179             name: {{ include "common.release" . }}-sdc-filebeat-configmap
180         - name: {{ include "common.fullname" . }}-data-filebeat
181           emptyDir: {}
182         - name:  {{ include "common.fullname" . }}-logs
183           emptyDir: {}
184       imagePullSecrets:
185       - name: "{{ include "common.namespace" . }}-docker-registry-key"
Introduces the ONAP Platform OOM (ONAP Operations Manager) to efficiently Deploy, Manage, Operate the ONAP platform and its components (e.g. MSO, DCAE, SDC, etc.) and infrastructure (VMs, Containers).