1 # Copyright © 2020 Samsung Electronics, highstreet technologies GmbH
2 # Copyright © 2017 Amdocs, Bell Canada
4 # Licensed under the Apache License, Version 2.0 (the "License");
5 # you may not use this file except in compliance with the License.
6 # You may obtain a copy of the License at
8 # http://www.apache.org/licenses/LICENSE-2.0
10 # Unless required by applicable law or agreed to in writing, software
11 # distributed under the License is distributed on an "AS IS" BASIS,
12 # WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
13 # See the License for the specific language governing permissions and
14 # limitations under the License.
16 #################################################################
17 # Global configuration defaults.
18 #################################################################
21 nodePortPrefixExt: 304
22 repository: nexus3.onap.org:10001
23 readinessImage: onap/oom/readiness:3.0.1
24 loggingRepository: docker.elastic.co
25 loggingImage: beats/filebeat:5.5.0
27 mountPath: /dockerdata-nfs
30 envsubstImage: dibi/envsubst
32 #This flag allows SO to instantiate its own mariadb-galera cluster
33 #If shared instance is used, this chart assumes that DB already exists
35 service: mariadb-galera
37 nameOverride: mariadb-galera
39 #################################################################
41 #################################################################
43 - uid: db-root-password
44 name: '{{ include "common.release" . }}-sdnc-db-root-password'
46 externalSecret: '{{ .Values.global.mariadbGalera.localCluster |
47 ternary (default (include "common.mariadb.secret.rootPassSecretName"
48 (dict "dot" . "chartName"
49 (index .Values "mariadb-galera" "nameOverride")))
50 (index .Values "mariadb-galera" "config"
51 "mariadbRootPasswordExternalSecret"))
52 (include "common.mariadb.secret.rootPassSecretName"
53 (dict "dot" . "chartName" .Values.global.mariadbGalera.nameOverride)) }}'
54 password: '{{ (index .Values "mariadb-galera" "config" "mariadbRootPassword") }}'
56 name: &dbSecretName '{{ include "common.release" . }}-sdnc-db-secret'
58 # This is a nasty trick that allows you override this secret using external one
59 # with the same field that is used to pass this to subchart
60 externalSecret: '{{ ternary "" (tpl (default "" (index .Values "mariadb-galera" "config" "userCredentialsExternalSecret")) .) (hasSuffix "sdnc-db-secret" (index .Values "mariadb-galera" "config" "userCredentialsExternalSecret"))}}'
61 login: '{{ index .Values "mariadb-galera" "config" "userName" }}'
62 password: '{{ index .Values "mariadb-galera" "config" "userPassword" }}'
64 name: &odlCredsSecretName '{{ include "common.release" . }}-sdnc-odl-creds'
66 externalSecret: '{{ .Values.config.odlCredsExternalSecret }}'
67 login: '{{ .Values.config.odlUser }}'
68 password: '{{ .Values.config.odlPassword }}'
69 # For now this is left hardcoded but should be revisited in a future
70 passwordPolicy: required
73 externalSecret: '{{ .Values.config.netboxApikeyExternalSecret }}'
74 password: '{{ .Values.config.netboxApikey }}'
75 passwordPolicy: required
78 externalSecret: '{{ .Values.config.aaiCredsExternalSecret}}'
79 login: '{{ .Values.config.aaiUser }}'
80 password: '{{ .Values.config.aaiPassword }}'
81 passwordPolicy: required
82 - uid: modeling-user-creds
84 externalSecret: '{{ .Values.config.modelingCredsExternalSecret}}'
85 login: '{{ .Values.config.modelingUser }}'
86 password: '{{ .Values.config.modelingPassword }}'
87 passwordPolicy: required
90 externalSecret: '{{ .Values.config.restconfCredsExternalSecret}}'
91 login: '{{ .Values.config.restconfUser }}'
92 password: '{{ .Values.config.restconfPassword }}'
93 passwordPolicy: required
95 name: &ansibleSecretName '{{ include "common.release" . }}-sdnc-ansible-creds'
97 externalSecret: '{{ .Values.config.ansibleCredsExternalSecret}}'
98 login: '{{ .Values.config.ansibleUser }}'
99 password: '{{ .Values.config.ansiblePassword }}'
100 passwordPolicy: required
101 - uid: scaleout-creds
103 externalSecret: '{{ .Values.config.scaleoutCredsExternalSecret}}'
104 login: '{{ .Values.config.scaleoutUser }}'
105 password: '{{ .Values.config.scaleoutPassword }}'
106 passwordPolicy: required
107 #################################################################
108 # Application configuration defaults.
109 #################################################################
111 repository: nexus3.onap.org:10001
113 image: onap/sdnc-image:1.8.4
116 # flag to enable debugging - application support required
119 # application configuration
124 odlPassword: Kp8bJ4SXszM0WXlhak3eHlcse2gAw84vaoGGmJvUy2U
125 # odlCredsExternalSecret: some secret
126 netboxApikey: onceuponatimeiplayedwithnetbox20180814
127 # netboxApikeyExternalSecret: some secret
128 aaiUser: sdnc@sdnc.onap.org
129 aaiPassword: demo123456!
130 # aaiCredsExternalSecret: some secret
131 modelingUser: ccsdkapps
132 modelingPassword: ccsdkapps
133 # modelingCredsExternalSecret: some secret
135 restconfPassword: admin
136 # restconfCredsExternalSecret: some secret
138 scaleoutPassword: admin
139 # scaleoutExternalSecret: some secret
141 ansiblePassword: sdnc
142 # ansibleCredsExternalSecret: some secret
143 dbSdnctlDatabase: &sdncDbName sdnctl
144 enableClustering: true
145 sdncHome: /opt/onap/sdnc
146 binDir: /opt/onap/sdnc/bin
147 etcDir: /opt/onap/sdnc/data
149 # if geoEnabled is set to true here, mysql.geoEnabled must be set to true
150 # if geoEnabled is set to true the following 3 values must be set to their proper values
151 myODLCluster: 127.0.0.1
152 peerODLCluster: 127.0.0.1
153 isPrimaryCluster: true
154 configDir: /opt/onap/sdnc/data/properties
155 ccsdkConfigDir: /opt/onap/ccsdk/data/properties
158 logstashServiceName: log-ls
160 ansibleServiceName: sdnc-ansible-server
162 javaHome: /usr/lib/jvm/java-1.8-openjdk
165 etcDir: /opt/opendaylight/etc
166 binDir: /opt/opendaylight/bin
167 salConfigDir: /opt/opendaylight/system/org/opendaylight/controller/sal-clustering-config
168 salConfigVersion: 1.9.1
175 recoveryEventTimeout: 90s
177 persistentActorRestartMinBackoffInSeconds: 10
178 persistentActorRestartMaxBackoffInSeconds: 40
179 persistentActorRestartResetBackoffInSeconds: 20
180 shardTransactionCommitTimeoutInSeconds: 120
181 shardIsolatedLeaderCheckIntervalInMillis: 30000
182 operationTimeoutInSeconds: 120
184 maxGCPauseMillis: 100
185 parallelGCThreads : 3
187 # enables sdnr functionality
190 # mode: web - SDNC contains device manager only plus dedicated webserver service for ODLUX (default),
191 # mode: dm - SDNC contains sdnr device manager + ODLUX components
193 # sdnronly: true starts sdnc container with odl and sdnrwt features only
195 sdnrdbTrustAllCerts: true
196 mountpointRegistrarEnabled: false
197 mountpointStateProviderEnabled: false
201 # dependency / sub-chart configuration
203 nameOverride: sdnc-cert-initializer
204 truststoreMountpath: /opt/onap/sdnc/data/stores
206 app_ns: "org.osaaf.aaf"
207 fqi: "sdnc@sdnc.onap.org"
208 fqi_namespace: org.onap.sdnc
209 public_fqdn: "sdnc.onap.org"
210 aafDeployFqi: "deployer@people.osaaf.org"
211 aafDeployPass: demo123456!
212 cadi_latitude: "38.0"
213 cadi_longitude: "-72.0"
214 credsPath: /opt/app/osaaf/local
216 cd /opt/app/osaaf/local;
217 /opt/app/aaf_config/bin/agent.sh local showpass {{.Values.fqi}} {{ .Values.fqdn }} | grep cadi_keystore_password= | cut -d= -f 2 > {{ .Values.credsPath }}/.pass 2>&1
219 # dependency / sub-chart configuration
222 mariadb-galera: &mariadbGalera
223 nameOverride: sdnc-db
224 config: &mariadbGaleraConfig
225 rootPasswordExternalSecret: '{{ ternary (include "common.release" .)-sdnc-db-root-password "" .Values.global.mariadbGalera.localCluster }}'
227 userCredentialsExternalSecret: *dbSecretName
233 mountSubPath: sdnc/mariadb-galera
242 nameOverride: sdnc-dmaap-listener
246 <<: *mariadbGaleraConfig
247 mysqlDatabase: *sdncDbName
252 configDir: /opt/onap/sdnc/data/properties
253 odlCredsExternalSecret: *odlCredsSecretName
260 <<: *mariadbGaleraConfig
261 mysqlDatabase: *sdncDbName
262 nameOverride: sdnc-ueb-listener
266 configDir: /opt/onap/sdnc/data/properties
267 odlCredsExternalSecret: *odlCredsSecretName
272 restCredsExternalSecret: *ansibleSecretName
276 <<: *mariadbGaleraConfig
277 mysqlDatabase: ansible
279 name: sdnc-ansible-server
284 nameOverride: sdnc-dgbuilder
288 rootPasswordExternalSecret: '{{ ternary (printf "%s-sdnc-db-root-password" (include "common.release" .)) (include "common.mariadb.secret.rootPassSecretName" (dict "dot" . "chartName" "mariadb-galera")) .Values.global.mariadbGalera.localCluster }}'
289 userCredentialsExternalSecret: *dbSecretName
290 dbPodName: mariadb-galera
291 dbServiceName: mariadb-galera
292 # This should be revisited and changed to plain text
293 dgUserPassword: cc03e747a6afbbcbf8be7668acfebee5
302 - baseaddr: "sdnc-dgbuilder"
303 name: "sdnc-dgbuilder"
305 - baseaddr: "sdnc-web-service"
306 name: "sdnc-web-service"
313 # local elasticsearch cluster
314 localElasticCluster: true
320 fqi_namespace: org.onap.sdnc
321 fqi: "sdnc@sdnc.onap.org"
326 # dedicatednode: "yes"
327 # working as master node only, in this case increase replicaCount for elasticsearch-data
328 # dedicatednode: "no"
329 # handles master and data node functionality
335 # default number of instances
342 # probe configuration parameters
344 initialDelaySeconds: 10
346 # necessary to disable liveness probe when setting breakpoints
347 # in debugger so K8s doesn't restart unresponsive container
351 initialDelaySeconds: 10
384 ## Persist data to a persitent volume
388 ## A manually managed Persistent Volume and Claim
389 ## Requires persistence.enabled: true
390 ## If defined, PVC must be created manually before volume will be bound
392 volumeReclaimPolicy: Retain
394 ## database data Persistent Volume Storage Class
395 ## If defined, storageClassName: <storageClass>
396 ## If set to "-", storageClassName: "", which disables dynamic provisioning
397 ## If undefined (the default) or set to null, no storageClassName spec is
398 ## set, choosing the default provisioner. (gp2 on AWS, standard on
399 ## GKE, AWS & OpenStack)
400 accessMode: ReadWriteOnce
402 mountPath: /dockerdata-nfs
403 mountSubPath: sdnc/mdsal
404 mdsalPath: /opt/opendaylight/current/daexim
409 - baseaddr: "sdnc.api"
415 #Resource Limit flavor -By Default using small
417 #segregation for different envionment (Small and Large)