Add graphadmin microservice to oom

[oom.git] / kubernetes / aai / charts / aai-traversal / templates / job.yaml
diff --git a/kubernetes/aai/charts/aai-traversal/templates/job.yaml b/kubernetes/aai/charts/aai-traversal/templates/job.yaml

index 41c26db..a018ede 100644 (file)
--- a/kubernetes/aai/charts/aai-traversal/templates/job.yaml
+++ b/kubernetes/aai/charts/aai-traversal/templates/job.yaml
@@ -13,6 +13,8 @@
  # See the License for the specific language governing permissions and
  # limitations under the License.
  
+{{ if .Values.global.jobs.updateQueryData.enabled }}
+
  apiVersion: batch/v1
  kind: Job
  metadata:
@@ -59,9 +61,9 @@ spec:
            bash -x /opt/app/aai-traversal/docker-entrypoint.sh install/updateQueryData.sh
          env:
          - name: LOCAL_USER_ID
-          value: "1000"
+          value: {{ .Values.global.config.userId | quote }}
          - name: LOCAL_GROUP_ID
-          value: "1000"
+          value: {{ .Values.global.config.groupId | quote }}
          volumeMounts:
          - mountPath: /etc/localtime
            name: localtime
@@ -86,9 +88,12 @@ spec:
          - mountPath: /opt/app/aai-traversal/resources/application.properties
            name: {{ include "common.fullname" . }}-springapp-conf
            subPath: application.properties
-        - mountPath: /opt/app/aai-traversal/resources/etc/auth/aai_keystore
-          name: {{ include "common.fullname" . }}-auth-sec
-          subPath: aai_keystore
+          {{ $global := . }}
+          {{ range $job := .Values.global.config.auth.files }}
+        - mountPath: /opt/app/aai-traversal/resources/etc/auth/{{ . }}
+          name: {{ include "common.fullname" $global }}-auth-truststore-sec
+          subPath: {{ . }}
+          {{ end }}
          # disable liveness probe when breakpoints set in debugger
          # so K8s doesn't restart unresponsive container
        volumes:
@@ -124,9 +129,15 @@ spec:
        - name: {{ include "common.fullname" . }}-realm-conf
          configMap:
           name: {{ include "common.fullname" . }}-realm-configmap
-      - name: {{ include "common.fullname" . }}-auth-sec
+      - name: {{ include "common.fullname" . }}-auth-truststore-sec
          secret:
-         secretName: aai-auth-secret
+         secretName: aai-auth-truststore-secret
+         items:
+          {{ range $job := .Values.global.config.auth.files }}
+           - key: {{ . }}
+             path: {{ . }}
+          {{ end }}
        restartPolicy: OnFailure
        imagePullSecrets:
        - name: "{{ include "common.namespace" . }}-docker-registry-key"
+{{ end }}