Running all stack
This commit is contained in:
@@ -1,11 +1,11 @@
|
||||
env: {{ .Release.Name }} # For storage class provisioning
|
||||
host: exemple.com # For reverse proxy rule
|
||||
registryHost: registry.exemple.com # For reverse proxy rule
|
||||
env: test # For storage class provisioning
|
||||
host: beta.opencloud.com # For reverse proxy rule
|
||||
registryHost: oc # For reverse proxy rule
|
||||
scheme: https # For reverse proxy rule
|
||||
|
||||
mongo-express:
|
||||
enabled: true
|
||||
mongodbServer: "{{ .Release.Name }}-mongodb.{{ .Release.Namespace }}" # TO LOOK AFTER
|
||||
mongodbServer: "test-mongodb.test" # TO LOOK AFTER
|
||||
mongodbPort: 27017
|
||||
mongodbEnableAdmin: true
|
||||
mongodbAdminUsername: admin
|
||||
@@ -19,8 +19,8 @@ mongo-express:
|
||||
mongodb:
|
||||
enabled: true
|
||||
global:
|
||||
defaultStorageClass: longhorn-nor1
|
||||
storageClass: longhorn-nor1
|
||||
defaultStorageClass:
|
||||
storageClass:
|
||||
architecture: standalone
|
||||
useStatefulSet: false
|
||||
auth:
|
||||
@@ -28,17 +28,18 @@ mongodb:
|
||||
rootUser: admin
|
||||
rootPassword: admin
|
||||
databases: [ opencloud ]
|
||||
usernames: []
|
||||
passwords: []
|
||||
usernames: [ admin ]
|
||||
passwords: [ admin ]
|
||||
resourcesPreset: "small"
|
||||
replicaCount: 1
|
||||
persistence:
|
||||
enabled: true
|
||||
storageClass: longhorn-nor1
|
||||
create: false # do not auto-create
|
||||
existingClaim: mongo-pvc
|
||||
storageClassName:
|
||||
accessModes:
|
||||
- ReadWriteOnce
|
||||
size: 5000Mi
|
||||
- ReadWriteOnce
|
||||
size: 5000Mi
|
||||
persistentVolumeClaimRetentionPolicy:
|
||||
enabled: true
|
||||
whenDeleted: Retain
|
||||
@@ -52,11 +53,45 @@ mongodb:
|
||||
|
||||
nats:
|
||||
enabled: true
|
||||
jetstream:
|
||||
enabled: true
|
||||
fileStore:
|
||||
size: 20Mi
|
||||
storageClassName: longhorn-nor1
|
||||
extraEnv:
|
||||
- name: NATS_MAX_FILE_DESCRIPTORS
|
||||
value: "65536"
|
||||
extraVolumeMounts:
|
||||
- name: nats-config
|
||||
mountPath: /etc/nats
|
||||
config:
|
||||
jetstream:
|
||||
enabled: true
|
||||
fileStore:
|
||||
enabled: true
|
||||
dir: /data/jetstream # mountPath used by template
|
||||
# pvc block must live here
|
||||
pvc:
|
||||
enabled: true
|
||||
# if you already created the claim, set existingClaim:
|
||||
existingClaim: nats-pvc
|
||||
# storageClassName: local-path or standard (use the SC in your cluster)
|
||||
storageClassName:
|
||||
size: 50Gi
|
||||
# name is the volume name used in volumeMounts; keep it simple
|
||||
name: nats-jetstream
|
||||
|
||||
reloader:
|
||||
enabled: false
|
||||
image: "natsio/nats-server-config-reloader:0.16.0-debian"
|
||||
# Override ENTRYPOINT so we can raise ulimit before starting the real binary
|
||||
command:
|
||||
- /bin/sh
|
||||
- -c
|
||||
args:
|
||||
- -pid
|
||||
- /var/run/nats/nats.pid
|
||||
- -config
|
||||
- /etc/nats-config/nats.conf
|
||||
|
||||
# Required to allow ulimit raise
|
||||
securityContext:
|
||||
runAsUser: 0
|
||||
|
||||
openldap:
|
||||
enabled: true
|
||||
@@ -73,8 +108,8 @@ openldap:
|
||||
LDAP_ORGANISATION: Opencloud
|
||||
LDAP_DOMAIN: opencloud.com
|
||||
LDAP_BACKEND: "mdb"
|
||||
LDAP_TLS: false
|
||||
LDAP_TLS_ENFORCE: false
|
||||
LDAP_TLS: "false"
|
||||
LDAP_TLS_ENFORCE: "false"
|
||||
LDAP_REMOVE_CONFIG_AFTER_SETUP: "true"
|
||||
adminPassword: admin
|
||||
configPassword: "config"
|
||||
@@ -82,9 +117,11 @@ openldap:
|
||||
enabled: false
|
||||
persistence:
|
||||
enabled: true
|
||||
create: false # do not auto-create
|
||||
existingClaim: openldap-pvc
|
||||
accessMode: ReadWriteOnce
|
||||
size: 10Mi
|
||||
storageClass: longhorn-nor1
|
||||
storageClassName:
|
||||
replication:
|
||||
enabled: false
|
||||
externalLDAP:
|
||||
@@ -154,7 +191,7 @@ openldap:
|
||||
uid: admin
|
||||
userPassword: admin
|
||||
mail: admin@example.com
|
||||
ou: Users
|
||||
ou: users
|
||||
|
||||
dn: ou=AppRoles,dc=example,dc=com
|
||||
objectClass: organizationalunit
|
||||
@@ -168,6 +205,7 @@ openldap:
|
||||
|
||||
prometheus:
|
||||
enabled: true
|
||||
enableTraefikProxyIntegration: true
|
||||
server:
|
||||
persistentVolume:
|
||||
enabled: true
|
||||
@@ -188,13 +226,13 @@ ldapUserManager:
|
||||
env:
|
||||
SERVER_HOSTNAME: ldap.exemple.com
|
||||
LDAP_BASE_DN: dc=example,dc=com
|
||||
LDAP_REQUIRE_STARTTLS: false
|
||||
LDAP_REQUIRE_STARTTLS: "false"
|
||||
LDAP_ADMINS_GROUP: ldapadmin
|
||||
LDAP_ADMIN_BIND_DN: cn=admin,dc=example,dc=com
|
||||
LDAP_ADMIN_BIND_PWD: admin
|
||||
LDAP_IGNORE_CERT_ERRORS: true
|
||||
LDAP_IGNORE_CERT_ERRORS: "true"
|
||||
EMAIL_DOMAIN:
|
||||
NO_HTTPS: true
|
||||
NO_HTTPS: "true"
|
||||
SERVER_PATH: "/users"
|
||||
ORGANISATION_NAME: Opencloud
|
||||
LDAP_USER_OU: users
|
||||
@@ -239,7 +277,7 @@ hydra:
|
||||
# consent: https://localhost-consent/consent/consent
|
||||
# logout: https://localhost-logout/authentication/logout
|
||||
self:
|
||||
issuer: "http://{{ .Release.Name }}-hydra-public.{{ .Release.Namespace }}:4444/"
|
||||
issuer: "http://test-hydra-public.test:4444/"
|
||||
|
||||
keto:
|
||||
enabled: true
|
||||
@@ -303,8 +341,9 @@ loki:
|
||||
enabled: false # Deactivate loki auto provisioning, rely on existing PVC
|
||||
accessMode: ReadWriteOnce
|
||||
size: 1Gi
|
||||
storageClassName: longhorn-nor1
|
||||
claimName: loki-pvc
|
||||
storageClassName:
|
||||
create: false
|
||||
claimName: loki-pvc
|
||||
|
||||
extraVolumeMounts:
|
||||
- name: loki-storage
|
||||
@@ -382,7 +421,7 @@ argo-workflows:
|
||||
ocAuth:
|
||||
enabled: true
|
||||
enableTraefikProxyIntegration: true
|
||||
image: registry-opencloud.pf.irt-saintexupery.com/oc-auth:0.0.1
|
||||
image: "oc/oc-auth:0.0.1"
|
||||
authType: hydra
|
||||
keto:
|
||||
adminRole: admin
|
||||
@@ -410,7 +449,7 @@ ocAuth:
|
||||
ocFront:
|
||||
enabled: true
|
||||
enableTraefikProxyIntegration: true
|
||||
image: registry-opencloud.pf.irt-saintexupery.com/oc-front:0.0.1
|
||||
image: "oc/oc-front:0.0.1"
|
||||
resources:
|
||||
limits:
|
||||
cpu: 128m
|
||||
@@ -428,7 +467,7 @@ ocFront:
|
||||
ocWorkspace:
|
||||
enabled: true
|
||||
enableTraefikProxyIntegration: true
|
||||
image: registry-opencloud.pf.irt-saintexupery.com/oc-workspace:0.0.1
|
||||
image: "oc/oc-workspace:0.0.1"
|
||||
resources:
|
||||
limits:
|
||||
cpu: 128m
|
||||
@@ -447,7 +486,7 @@ ocWorkspace:
|
||||
ocShared:
|
||||
enabled: true
|
||||
enableTraefikProxyIntegration: true
|
||||
image: registry-opencloud.pf.irt-saintexupery.com/oc-shared:0.0.1
|
||||
image: "oc/oc-shared:0.0.1"
|
||||
resources:
|
||||
limits:
|
||||
cpu: 128m
|
||||
@@ -465,7 +504,7 @@ ocShared:
|
||||
ocWorkflow:
|
||||
enabled: true
|
||||
enableTraefikProxyIntegration: true
|
||||
image: registry-opencloud.pf.irt-saintexupery.com/oc-workflow:0.0.1
|
||||
image: "oc/oc-workflow:0.0.1"
|
||||
resources:
|
||||
limits:
|
||||
cpu: 128m
|
||||
@@ -483,7 +522,7 @@ ocWorkflow:
|
||||
ocCatalog:
|
||||
enabled: true
|
||||
enableTraefikProxyIntegration: true
|
||||
image: registry-opencloud.pf.irt-saintexupery.com/oc-catalog:0.0.1
|
||||
image: "oc/oc-catalog:0.0.1"
|
||||
resources:
|
||||
limits:
|
||||
cpu: 128m
|
||||
@@ -501,7 +540,7 @@ ocCatalog:
|
||||
ocPeer:
|
||||
enabled: true
|
||||
enableTraefikProxyIntegration: true
|
||||
image: registry-opencloud.pf.irt-saintexupery.com/oc-peer:0.0.1
|
||||
image: "oc/oc-peer:0.0.1"
|
||||
resources:
|
||||
limits:
|
||||
cpu: 128m
|
||||
@@ -519,7 +558,7 @@ ocPeer:
|
||||
ocDatacenter:
|
||||
enabled: true
|
||||
enableTraefikProxyIntegration: true
|
||||
image: registry-opencloud.pf.irt-saintexupery.com/oc-datacenter:0.0.1
|
||||
image: "oc/oc-datacenter:0.0.1"
|
||||
resources:
|
||||
limits:
|
||||
cpu: 128m
|
||||
@@ -537,7 +576,7 @@ ocDatacenter:
|
||||
ocSchedulerd:
|
||||
enabled: true
|
||||
enableTraefikProxyIntegration: true
|
||||
image: registry-opencloud.pf.irt-saintexupery.com/oc-schedulerd:0.0.1
|
||||
image: "oc/oc-schedulerd:0.0.1"
|
||||
resources:
|
||||
limits:
|
||||
cpu: 128m
|
||||
@@ -555,7 +594,7 @@ ocSchedulerd:
|
||||
ocScheduler:
|
||||
enabled: true
|
||||
enableTraefikProxyIntegration: true
|
||||
image: registry-opencloud.pf.irt-saintexupery.com/oc-scheduler:0.0.1
|
||||
image: "oc/oc-scheduler:0.0.1"
|
||||
resources:
|
||||
limits:
|
||||
cpu: 128m
|
||||
@@ -575,7 +614,7 @@ docker-registry-ui:
|
||||
ui:
|
||||
title: "opencloud docker registry"
|
||||
proxy: true
|
||||
dockerRegistryUrl: "http://{{ .Release.Name }}-docker-registry-ui-registry-server.{{ .Release.Namespace }}.svc.cluster.local:5000"
|
||||
dockerRegistryUrl: "http://test-docker-registry-ui-registry-server.test.svc.cluster.local:5000"
|
||||
registry:
|
||||
secretName: regcred
|
||||
enabled: true
|
||||
@@ -583,6 +622,8 @@ docker-registry-ui:
|
||||
persistentVolumeClaim:
|
||||
claimName: docker-registry-pvc
|
||||
persistence:
|
||||
create: false
|
||||
existingClaim: docker-registry-pvc
|
||||
accessMode: ReadWriteOnce
|
||||
storage: 5000Mi
|
||||
storageClassName: longhorn-nor1
|
||||
storage: 5Gi
|
||||
storageClassName:
|
||||
|
||||
Reference in New Issue
Block a user