valitydev/helmsdeep
14
0
Fork 0
mirror of https://github.com/valitydev/helmsdeep.git synced 2024-11-06 00:45:18 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity
8567dee0c7
helmsdeep/default.values.yaml

100 lines
3.0 KiB
YAML
Raw Normal View History

demostand-fix (#202) * dark-api fix KK url * Enlarge domainconfig init with providers, payouts, payment_routing * add reporter enable wapi-* fix fistfull config for identities create * add create account in settlement * fix wallet_contract * Service urls now requires own place in config * fix wapi-pcidss config * fix wapi for creation destination * add environment for devstand * fix wapi endpoint in fistful-magista * darkapi bump * bump dashboard * bump KK version * add roles to internal realm * bump questionary-proxy * reduce default_ttl * add wapi port * group ingress tls secrets for api and iddqd * reduce cert number by splitting tls section in papi * change domain inliner to use vars * refactor ingress domain logic * refactor trigger name * Update erlang services (#204) * Update wapi-pcidss to latest * Update wapi-v0 to latest * Update hellgate * Update fistful * Remove legacy capi services * Add party-management * Add limiter * Fix files for config output for limiter and party-management * Update capi-v2 to latest * Update dominant * Update kds * Update cds * Update bender * Convert template vars to values * Update machinegun * Add token-keeper * Add token-keeper * ED-159: shamway fix * ED-159: Add bouncer and bouncer-policies * Update config/bouncer-policies/values.yaml.gotmpl Co-authored-by: vilorij <vilorij@ya.ru> * Code review fixes * Update bouncer* * Add keys * Move to new way of ingress templating * drop doubled parameter * typofix in dominant host * devstand change * typofix in bouncers * disable LE and tls in devstand * Fix bouncer config * Fix binapi config * fix papi shebang * typofix add probes port * fix bouncer-policies port * disable KK tls if disabled in Values * Fix path to party service in mg * capi-v1 is back for test transaction * ingress secret typofix * capi-v1 in helmfile * typofix in domain address * enable idkfa * fix ttl * bump deps * Add links to provider and rulesets Co-authored-by: r.shaidullin <ndiezel0@gmail.com> Co-authored-by: vilorij <vilorij@ya.ru> Co-authored-by: Dmitry Skokov <d.skokov@rbkmoney.com> * Update devstand.rbk.yaml * move prometheus to helm-infra * fix test-transaction stateless values * Add comment to default.values Co-authored-by: Dmitry Skokov <d.skokov@rbkmoney.com> Co-authored-by: Sergey Yelin <elinsn@gmail.com> Co-authored-by: ilyatrub <ilyatrub@gmail.com> Co-authored-by: Sergey Yelin <s.elin@rbkmoney.com> Co-authored-by: r.shaidullin <ndiezel0@gmail.com>
2021-09-09 17:44:45 +00:00
# Deploy CiliumNetworkPolicies if you already use cilium as cni
Refactor (#157) * delete submodule * stateless * capi switch to genericchart * default ports change * all capi move to generic * change api port in values of capi * add command to chart * ingress port in chart * right ingress values in capis * binbase to stateless * hellgate move * move holmes * move hooker * fix needs * move shortener * move payform * move cds * more fixes * hook in chart * add pvc * fix pvc template * move kds * move shumway * move machinegun * delay for moket * MG fix * binbase fix resource * capi fix volumes path * prepare config for dominant * hooks * move bender * proxy move * payform liveness * needs fix * fix urls * add env to chart * fix machineid matcher * last move mocket * ingress bump from deprecation * moket url in dominanta fix * move wapi * add api init to chart * move wapi-pcidss * log annotations refactor * add volumes for hook * move dominant * typo fix in vault annotations * use zookeeper from kafka chart * zookeeper replicas * move to githab charts from services folder * bender statefull and consul label * delete useless folder * Apply suggestions from code review Co-authored-by: vilorij <vilorij@ya.ru> * fix mocket-mpi port * metrics enable * delete metrics from service without metrics * fix indent in values Co-authored-by: Andrey Fadeev <me@ciiol.net> * drop empty lines Co-authored-by: Andrey Fadeev <me@ciiol.net> * fix comment and bump deps * riak and bump deps chart * Add missing services (#159) * Add anapi * Add bin-api * Fix naming * Fix oopsBody paths * Update config/anapi/sys.config Co-authored-by: Andrey Fadeev <me@ciiol.net> * Update config/anapi/sys.config Co-authored-by: Andrey Fadeev <me@ciiol.net> * Update config/binapi/sys.config Co-authored-by: Andrey Fadeev <me@ciiol.net> * Update config/binapi/sys.config Co-authored-by: Andrey Fadeev <me@ciiol.net> * Use existing binbase for API Co-authored-by: Andrey Fadeev <me@ciiol.net> * grafana to refactor (#160) * grafana to refactor * clean values * clean Co-authored-by: ilya <Ilya Ivanov> * network policies refactored (#158) * cilium network policies added Co-authored-by: vilorij <vilorij@ya.ru> * Add ability deploy to not only "default" namespace * change kafka chart from incubator to bitnamii (#164) * change kafka chart from incubator to bitnamii * road to default Co-authored-by: ilya <Ilya Ivanov> * options for disable CNP * riak fix * raw chart * bump deps * Update config/machinegun/values.yaml.gotmpl * delete netpolicy * riak hacks * bump deps * another try * Enable IPv6 for riak * KK ipv6 * consul switch to native chart * MG to new consul * ipv6 for erlangs services * riak adopt to ipv6 * Add inet6 to vm.args * global value for ipv6-only cluster * Enable ipv6 for machinegun * add ipv6 support to keycloak * vault config for ipv6 * disable dashboard if elk disabled * bump deps version add wrapper around elk enabled * add transactions values * typo fix in values * payform ipv6 * typo fix transaction Co-authored-by: Dmitry Skokov <d.skokov@rbkmoney.com> Co-authored-by: Pospolita Nikita <nikita7asics@gmail.com> Co-authored-by: Andrey Fadeev <me@ciiol.net> Co-authored-by: Sergey Yelin <elinsn@gmail.com> Co-authored-by: TeadRIM <37904338+TeadRIM@users.noreply.github.com> Co-authored-by: Ivan Panteleev <amalgamm@users.noreply.github.com>
2021-02-19 12:27:50 +00:00
cilium:
enabled: false
demostand-fix (#202) * dark-api fix KK url * Enlarge domainconfig init with providers, payouts, payment_routing * add reporter enable wapi-* fix fistfull config for identities create * add create account in settlement * fix wallet_contract * Service urls now requires own place in config * fix wapi-pcidss config * fix wapi for creation destination * add environment for devstand * fix wapi endpoint in fistful-magista * darkapi bump * bump dashboard * bump KK version * add roles to internal realm * bump questionary-proxy * reduce default_ttl * add wapi port * group ingress tls secrets for api and iddqd * reduce cert number by splitting tls section in papi * change domain inliner to use vars * refactor ingress domain logic * refactor trigger name * Update erlang services (#204) * Update wapi-pcidss to latest * Update wapi-v0 to latest * Update hellgate * Update fistful * Remove legacy capi services * Add party-management * Add limiter * Fix files for config output for limiter and party-management * Update capi-v2 to latest * Update dominant * Update kds * Update cds * Update bender * Convert template vars to values * Update machinegun * Add token-keeper * Add token-keeper * ED-159: shamway fix * ED-159: Add bouncer and bouncer-policies * Update config/bouncer-policies/values.yaml.gotmpl Co-authored-by: vilorij <vilorij@ya.ru> * Code review fixes * Update bouncer* * Add keys * Move to new way of ingress templating * drop doubled parameter * typofix in dominant host * devstand change * typofix in bouncers * disable LE and tls in devstand * Fix bouncer config * Fix binapi config * fix papi shebang * typofix add probes port * fix bouncer-policies port * disable KK tls if disabled in Values * Fix path to party service in mg * capi-v1 is back for test transaction * ingress secret typofix * capi-v1 in helmfile * typofix in domain address * enable idkfa * fix ttl * bump deps * Add links to provider and rulesets Co-authored-by: r.shaidullin <ndiezel0@gmail.com> Co-authored-by: vilorij <vilorij@ya.ru> Co-authored-by: Dmitry Skokov <d.skokov@rbkmoney.com> * Update devstand.rbk.yaml * move prometheus to helm-infra * fix test-transaction stateless values * Add comment to default.values Co-authored-by: Dmitry Skokov <d.skokov@rbkmoney.com> Co-authored-by: Sergey Yelin <elinsn@gmail.com> Co-authored-by: ilyatrub <ilyatrub@gmail.com> Co-authored-by: Sergey Yelin <s.elin@rbkmoney.com> Co-authored-by: r.shaidullin <ndiezel0@gmail.com>
2021-09-09 17:44:45 +00:00
# Deploy ECK https://www.elastic.co/guide/en/cloud-on-k8s/current/index.html
# include operator,elastic,kibana,filebeats
Refactor (#157) * delete submodule * stateless * capi switch to genericchart * default ports change * all capi move to generic * change api port in values of capi * add command to chart * ingress port in chart * right ingress values in capis * binbase to stateless * hellgate move * move holmes * move hooker * fix needs * move shortener * move payform * move cds * more fixes * hook in chart * add pvc * fix pvc template * move kds * move shumway * move machinegun * delay for moket * MG fix * binbase fix resource * capi fix volumes path * prepare config for dominant * hooks * move bender * proxy move * payform liveness * needs fix * fix urls * add env to chart * fix machineid matcher * last move mocket * ingress bump from deprecation * moket url in dominanta fix * move wapi * add api init to chart * move wapi-pcidss * log annotations refactor * add volumes for hook * move dominant * typo fix in vault annotations * use zookeeper from kafka chart * zookeeper replicas * move to githab charts from services folder * bender statefull and consul label * delete useless folder * Apply suggestions from code review Co-authored-by: vilorij <vilorij@ya.ru> * fix mocket-mpi port * metrics enable * delete metrics from service without metrics * fix indent in values Co-authored-by: Andrey Fadeev <me@ciiol.net> * drop empty lines Co-authored-by: Andrey Fadeev <me@ciiol.net> * fix comment and bump deps * riak and bump deps chart * Add missing services (#159) * Add anapi * Add bin-api * Fix naming * Fix oopsBody paths * Update config/anapi/sys.config Co-authored-by: Andrey Fadeev <me@ciiol.net> * Update config/anapi/sys.config Co-authored-by: Andrey Fadeev <me@ciiol.net> * Update config/binapi/sys.config Co-authored-by: Andrey Fadeev <me@ciiol.net> * Update config/binapi/sys.config Co-authored-by: Andrey Fadeev <me@ciiol.net> * Use existing binbase for API Co-authored-by: Andrey Fadeev <me@ciiol.net> * grafana to refactor (#160) * grafana to refactor * clean values * clean Co-authored-by: ilya <Ilya Ivanov> * network policies refactored (#158) * cilium network policies added Co-authored-by: vilorij <vilorij@ya.ru> * Add ability deploy to not only "default" namespace * change kafka chart from incubator to bitnamii (#164) * change kafka chart from incubator to bitnamii * road to default Co-authored-by: ilya <Ilya Ivanov> * options for disable CNP * riak fix * raw chart * bump deps * Update config/machinegun/values.yaml.gotmpl * delete netpolicy * riak hacks * bump deps * another try * Enable IPv6 for riak * KK ipv6 * consul switch to native chart * MG to new consul * ipv6 for erlangs services * riak adopt to ipv6 * Add inet6 to vm.args * global value for ipv6-only cluster * Enable ipv6 for machinegun * add ipv6 support to keycloak * vault config for ipv6 * disable dashboard if elk disabled * bump deps version add wrapper around elk enabled * add transactions values * typo fix in values * payform ipv6 * typo fix transaction Co-authored-by: Dmitry Skokov <d.skokov@rbkmoney.com> Co-authored-by: Pospolita Nikita <nikita7asics@gmail.com> Co-authored-by: Andrey Fadeev <me@ciiol.net> Co-authored-by: Sergey Yelin <elinsn@gmail.com> Co-authored-by: TeadRIM <37904338+TeadRIM@users.noreply.github.com> Co-authored-by: Ivan Panteleev <amalgamm@users.noreply.github.com>
2021-02-19 12:27:50 +00:00
elk:
enabled: false
demostand-fix (#202) * dark-api fix KK url * Enlarge domainconfig init with providers, payouts, payment_routing * add reporter enable wapi-* fix fistfull config for identities create * add create account in settlement * fix wallet_contract * Service urls now requires own place in config * fix wapi-pcidss config * fix wapi for creation destination * add environment for devstand * fix wapi endpoint in fistful-magista * darkapi bump * bump dashboard * bump KK version * add roles to internal realm * bump questionary-proxy * reduce default_ttl * add wapi port * group ingress tls secrets for api and iddqd * reduce cert number by splitting tls section in papi * change domain inliner to use vars * refactor ingress domain logic * refactor trigger name * Update erlang services (#204) * Update wapi-pcidss to latest * Update wapi-v0 to latest * Update hellgate * Update fistful * Remove legacy capi services * Add party-management * Add limiter * Fix files for config output for limiter and party-management * Update capi-v2 to latest * Update dominant * Update kds * Update cds * Update bender * Convert template vars to values * Update machinegun * Add token-keeper * Add token-keeper * ED-159: shamway fix * ED-159: Add bouncer and bouncer-policies * Update config/bouncer-policies/values.yaml.gotmpl Co-authored-by: vilorij <vilorij@ya.ru> * Code review fixes * Update bouncer* * Add keys * Move to new way of ingress templating * drop doubled parameter * typofix in dominant host * devstand change * typofix in bouncers * disable LE and tls in devstand * Fix bouncer config * Fix binapi config * fix papi shebang * typofix add probes port * fix bouncer-policies port * disable KK tls if disabled in Values * Fix path to party service in mg * capi-v1 is back for test transaction * ingress secret typofix * capi-v1 in helmfile * typofix in domain address * enable idkfa * fix ttl * bump deps * Add links to provider and rulesets Co-authored-by: r.shaidullin <ndiezel0@gmail.com> Co-authored-by: vilorij <vilorij@ya.ru> Co-authored-by: Dmitry Skokov <d.skokov@rbkmoney.com> * Update devstand.rbk.yaml * move prometheus to helm-infra * fix test-transaction stateless values * Add comment to default.values Co-authored-by: Dmitry Skokov <d.skokov@rbkmoney.com> Co-authored-by: Sergey Yelin <elinsn@gmail.com> Co-authored-by: ilyatrub <ilyatrub@gmail.com> Co-authored-by: Sergey Yelin <s.elin@rbkmoney.com> Co-authored-by: r.shaidullin <ndiezel0@gmail.com>
2021-09-09 17:44:45 +00:00
# Deploy Prometheus operator in monitoring namespace.
# Must have as we use ServiceMonitor by CRD in setup with processing services
internal_services (#167) * add dashboard and CC to helmfile * ServiceMonitors and CNP move in Releases namespace * -revert vault init script sleep for devsetup - vault-injector webhook only for Release namespace * - dont install prom if processing namespaced - bump chart versions in lock * bump TT version Co-authored-by: Dmitry Skokov <d.skokov@rbkmoney.com>
2021-02-26 17:14:11 +00:00
prometheus:
Improove (#193) * add epic branch with java services * Introduce analytics (#166) * Introduce questionary (#175) * Introduce questionary * actualize questionary * actualize questionary * Introduce claim-management (#173) * Introduce questionary-aggr-proxy (#176) * management.endpoint.prometheus.enabled=true * Change Claim database name for PG compatability * move CH pasword from template * Introduce magista (#169) * Introduce magista-kafka * Introduce magista-kafka * Introduce magista-kafka * Introduce mst * move kafka comment to the end of file * actualize magista * actualize magista * actualize mgista * management.endpoint.prometheus.enabled=true Co-authored-by: Dmitry Skokov <d.skokov@rbkmoney.com> Co-authored-by: vilorij <vilorij@ya.ru> * fix url in anapi for correct rendering in logs * Add LE certs issuer to ingress * erl default templating disable ServiceMonitor * new db init * riak fix ConfigMap * shortener config templating * Dashboard fix realm, 404 error and add ingress * disable SM in hooker * add objectselector in vault * Shumway add schema * add ingress tls variable into defaults.values * Fistful templatimg erl defaults typo fix in MG address * add default realms * Consuela for MG add namespace for payouts * helmfile deps bump * add fistful-magista * add payouter * add columbus * add columbus * disable SM * analitics fix clickhouse node for analytics * claimmgmt add * fix iddqd appconfig mounts * deanonimus add * add antifraud * kafka scale and infinity retention * KK realms readability fix password for manager add roles mapping * disable consuella for the issues in consul * typo fix in checkout * DB for antifraud * add schema setting for questionary * shortener fix with KK public key * HG ingress for iddqd * Dominant ingress for iddqd * messages add disable vault password control because of foreign keys in DB * papi add * idkfa add * dark-api add * fix hooker DB name add DB for fraudbusters * add new services in helmfile and bump deps * delete useless keycloak values Co-authored-by: karleowne <a.karlov@rbkmoney.com> Co-authored-by: Dmitry Skokov <d.skokov@rbkmoney.com>
2021-07-08 01:10:39 +00:00
enabled: false
demostand-fix (#202) * dark-api fix KK url * Enlarge domainconfig init with providers, payouts, payment_routing * add reporter enable wapi-* fix fistfull config for identities create * add create account in settlement * fix wallet_contract * Service urls now requires own place in config * fix wapi-pcidss config * fix wapi for creation destination * add environment for devstand * fix wapi endpoint in fistful-magista * darkapi bump * bump dashboard * bump KK version * add roles to internal realm * bump questionary-proxy * reduce default_ttl * add wapi port * group ingress tls secrets for api and iddqd * reduce cert number by splitting tls section in papi * change domain inliner to use vars * refactor ingress domain logic * refactor trigger name * Update erlang services (#204) * Update wapi-pcidss to latest * Update wapi-v0 to latest * Update hellgate * Update fistful * Remove legacy capi services * Add party-management * Add limiter * Fix files for config output for limiter and party-management * Update capi-v2 to latest * Update dominant * Update kds * Update cds * Update bender * Convert template vars to values * Update machinegun * Add token-keeper * Add token-keeper * ED-159: shamway fix * ED-159: Add bouncer and bouncer-policies * Update config/bouncer-policies/values.yaml.gotmpl Co-authored-by: vilorij <vilorij@ya.ru> * Code review fixes * Update bouncer* * Add keys * Move to new way of ingress templating * drop doubled parameter * typofix in dominant host * devstand change * typofix in bouncers * disable LE and tls in devstand * Fix bouncer config * Fix binapi config * fix papi shebang * typofix add probes port * fix bouncer-policies port * disable KK tls if disabled in Values * Fix path to party service in mg * capi-v1 is back for test transaction * ingress secret typofix * capi-v1 in helmfile * typofix in domain address * enable idkfa * fix ttl * bump deps * Add links to provider and rulesets Co-authored-by: r.shaidullin <ndiezel0@gmail.com> Co-authored-by: vilorij <vilorij@ya.ru> Co-authored-by: Dmitry Skokov <d.skokov@rbkmoney.com> * Update devstand.rbk.yaml * move prometheus to helm-infra * fix test-transaction stateless values * Add comment to default.values Co-authored-by: Dmitry Skokov <d.skokov@rbkmoney.com> Co-authored-by: Sergey Yelin <elinsn@gmail.com> Co-authored-by: ilyatrub <ilyatrub@gmail.com> Co-authored-by: Sergey Yelin <s.elin@rbkmoney.com> Co-authored-by: r.shaidullin <ndiezel0@gmail.com>
2021-09-09 17:44:45 +00:00
# Deploy nginx Ingresscontroller.
# We use and recommend https://github.com/kubernetes/ingress-nginx/ coz we have
# a lot sublocation on same host on different services
# and we do not fell in love with minion config by nginx official controller
Added ingress controller & state charts update (#195) * Added ingress controller & state charts update Co-authored-by: i.panteleev <i.panteleev@rbk.money>
2021-07-29 14:51:03 +00:00
ingress:
Removed vault-init from tools, disable ingress controller by default (#196) Co-authored-by: i.panteleev <i.panteleev@rbk.money>
2021-08-02 09:00:20 +00:00
enabled: false
demostand-fix (#202) * dark-api fix KK url * Enlarge domainconfig init with providers, payouts, payment_routing * add reporter enable wapi-* fix fistfull config for identities create * add create account in settlement * fix wallet_contract * Service urls now requires own place in config * fix wapi-pcidss config * fix wapi for creation destination * add environment for devstand * fix wapi endpoint in fistful-magista * darkapi bump * bump dashboard * bump KK version * add roles to internal realm * bump questionary-proxy * reduce default_ttl * add wapi port * group ingress tls secrets for api and iddqd * reduce cert number by splitting tls section in papi * change domain inliner to use vars * refactor ingress domain logic * refactor trigger name * Update erlang services (#204) * Update wapi-pcidss to latest * Update wapi-v0 to latest * Update hellgate * Update fistful * Remove legacy capi services * Add party-management * Add limiter * Fix files for config output for limiter and party-management * Update capi-v2 to latest * Update dominant * Update kds * Update cds * Update bender * Convert template vars to values * Update machinegun * Add token-keeper * Add token-keeper * ED-159: shamway fix * ED-159: Add bouncer and bouncer-policies * Update config/bouncer-policies/values.yaml.gotmpl Co-authored-by: vilorij <vilorij@ya.ru> * Code review fixes * Update bouncer* * Add keys * Move to new way of ingress templating * drop doubled parameter * typofix in dominant host * devstand change * typofix in bouncers * disable LE and tls in devstand * Fix bouncer config * Fix binapi config * fix papi shebang * typofix add probes port * fix bouncer-policies port * disable KK tls if disabled in Values * Fix path to party service in mg * capi-v1 is back for test transaction * ingress secret typofix * capi-v1 in helmfile * typofix in domain address * enable idkfa * fix ttl * bump deps * Add links to provider and rulesets Co-authored-by: r.shaidullin <ndiezel0@gmail.com> Co-authored-by: vilorij <vilorij@ya.ru> Co-authored-by: Dmitry Skokov <d.skokov@rbkmoney.com> * Update devstand.rbk.yaml * move prometheus to helm-infra * fix test-transaction stateless values * Add comment to default.values Co-authored-by: Dmitry Skokov <d.skokov@rbkmoney.com> Co-authored-by: Sergey Yelin <elinsn@gmail.com> Co-authored-by: ilyatrub <ilyatrub@gmail.com> Co-authored-by: Sergey Yelin <s.elin@rbkmoney.com> Co-authored-by: r.shaidullin <ndiezel0@gmail.com>
2021-09-09 17:44:45 +00:00
# OUR setup is in baremetal, so there is ip which bind to ingresscontroller
Added ingress controller & state charts update (#195) * Added ingress controller & state charts update Co-authored-by: i.panteleev <i.panteleev@rbk.money>
2021-07-29 14:51:03 +00:00
ip: 'someip'
demostand-fix (#202) * dark-api fix KK url * Enlarge domainconfig init with providers, payouts, payment_routing * add reporter enable wapi-* fix fistfull config for identities create * add create account in settlement * fix wallet_contract * Service urls now requires own place in config * fix wapi-pcidss config * fix wapi for creation destination * add environment for devstand * fix wapi endpoint in fistful-magista * darkapi bump * bump dashboard * bump KK version * add roles to internal realm * bump questionary-proxy * reduce default_ttl * add wapi port * group ingress tls secrets for api and iddqd * reduce cert number by splitting tls section in papi * change domain inliner to use vars * refactor ingress domain logic * refactor trigger name * Update erlang services (#204) * Update wapi-pcidss to latest * Update wapi-v0 to latest * Update hellgate * Update fistful * Remove legacy capi services * Add party-management * Add limiter * Fix files for config output for limiter and party-management * Update capi-v2 to latest * Update dominant * Update kds * Update cds * Update bender * Convert template vars to values * Update machinegun * Add token-keeper * Add token-keeper * ED-159: shamway fix * ED-159: Add bouncer and bouncer-policies * Update config/bouncer-policies/values.yaml.gotmpl Co-authored-by: vilorij <vilorij@ya.ru> * Code review fixes * Update bouncer* * Add keys * Move to new way of ingress templating * drop doubled parameter * typofix in dominant host * devstand change * typofix in bouncers * disable LE and tls in devstand * Fix bouncer config * Fix binapi config * fix papi shebang * typofix add probes port * fix bouncer-policies port * disable KK tls if disabled in Values * Fix path to party service in mg * capi-v1 is back for test transaction * ingress secret typofix * capi-v1 in helmfile * typofix in domain address * enable idkfa * fix ttl * bump deps * Add links to provider and rulesets Co-authored-by: r.shaidullin <ndiezel0@gmail.com> Co-authored-by: vilorij <vilorij@ya.ru> Co-authored-by: Dmitry Skokov <d.skokov@rbkmoney.com> * Update devstand.rbk.yaml * move prometheus to helm-infra * fix test-transaction stateless values * Add comment to default.values Co-authored-by: Dmitry Skokov <d.skokov@rbkmoney.com> Co-authored-by: Sergey Yelin <elinsn@gmail.com> Co-authored-by: ilyatrub <ilyatrub@gmail.com> Co-authored-by: Sergey Yelin <s.elin@rbkmoney.com> Co-authored-by: r.shaidullin <ndiezel0@gmail.com>
2021-09-09 17:44:45 +00:00
# Deploy certmaanger operator. But you still need setup you Issuer or ClusterIssuer for certmanager
Cert manager added (#199) * add cert-manager in helmfile-infra.yaml
2021-08-12 15:23:33 +00:00
certmanager:
enabled: false
Refactor (#157) * delete submodule * stateless * capi switch to genericchart * default ports change * all capi move to generic * change api port in values of capi * add command to chart * ingress port in chart * right ingress values in capis * binbase to stateless * hellgate move * move holmes * move hooker * fix needs * move shortener * move payform * move cds * more fixes * hook in chart * add pvc * fix pvc template * move kds * move shumway * move machinegun * delay for moket * MG fix * binbase fix resource * capi fix volumes path * prepare config for dominant * hooks * move bender * proxy move * payform liveness * needs fix * fix urls * add env to chart * fix machineid matcher * last move mocket * ingress bump from deprecation * moket url in dominanta fix * move wapi * add api init to chart * move wapi-pcidss * log annotations refactor * add volumes for hook * move dominant * typo fix in vault annotations * use zookeeper from kafka chart * zookeeper replicas * move to githab charts from services folder * bender statefull and consul label * delete useless folder * Apply suggestions from code review Co-authored-by: vilorij <vilorij@ya.ru> * fix mocket-mpi port * metrics enable * delete metrics from service without metrics * fix indent in values Co-authored-by: Andrey Fadeev <me@ciiol.net> * drop empty lines Co-authored-by: Andrey Fadeev <me@ciiol.net> * fix comment and bump deps * riak and bump deps chart * Add missing services (#159) * Add anapi * Add bin-api * Fix naming * Fix oopsBody paths * Update config/anapi/sys.config Co-authored-by: Andrey Fadeev <me@ciiol.net> * Update config/anapi/sys.config Co-authored-by: Andrey Fadeev <me@ciiol.net> * Update config/binapi/sys.config Co-authored-by: Andrey Fadeev <me@ciiol.net> * Update config/binapi/sys.config Co-authored-by: Andrey Fadeev <me@ciiol.net> * Use existing binbase for API Co-authored-by: Andrey Fadeev <me@ciiol.net> * grafana to refactor (#160) * grafana to refactor * clean values * clean Co-authored-by: ilya <Ilya Ivanov> * network policies refactored (#158) * cilium network policies added Co-authored-by: vilorij <vilorij@ya.ru> * Add ability deploy to not only "default" namespace * change kafka chart from incubator to bitnamii (#164) * change kafka chart from incubator to bitnamii * road to default Co-authored-by: ilya <Ilya Ivanov> * options for disable CNP * riak fix * raw chart * bump deps * Update config/machinegun/values.yaml.gotmpl * delete netpolicy * riak hacks * bump deps * another try * Enable IPv6 for riak * KK ipv6 * consul switch to native chart * MG to new consul * ipv6 for erlangs services * riak adopt to ipv6 * Add inet6 to vm.args * global value for ipv6-only cluster * Enable ipv6 for machinegun * add ipv6 support to keycloak * vault config for ipv6 * disable dashboard if elk disabled * bump deps version add wrapper around elk enabled * add transactions values * typo fix in values * payform ipv6 * typo fix transaction Co-authored-by: Dmitry Skokov <d.skokov@rbkmoney.com> Co-authored-by: Pospolita Nikita <nikita7asics@gmail.com> Co-authored-by: Andrey Fadeev <me@ciiol.net> Co-authored-by: Sergey Yelin <elinsn@gmail.com> Co-authored-by: TeadRIM <37904338+TeadRIM@users.noreply.github.com> Co-authored-by: Ivan Panteleev <amalgamm@users.noreply.github.com>
2021-02-19 12:27:50 +00:00
demostand-fix (#202) * dark-api fix KK url * Enlarge domainconfig init with providers, payouts, payment_routing * add reporter enable wapi-* fix fistfull config for identities create * add create account in settlement * fix wallet_contract * Service urls now requires own place in config * fix wapi-pcidss config * fix wapi for creation destination * add environment for devstand * fix wapi endpoint in fistful-magista * darkapi bump * bump dashboard * bump KK version * add roles to internal realm * bump questionary-proxy * reduce default_ttl * add wapi port * group ingress tls secrets for api and iddqd * reduce cert number by splitting tls section in papi * change domain inliner to use vars * refactor ingress domain logic * refactor trigger name * Update erlang services (#204) * Update wapi-pcidss to latest * Update wapi-v0 to latest * Update hellgate * Update fistful * Remove legacy capi services * Add party-management * Add limiter * Fix files for config output for limiter and party-management * Update capi-v2 to latest * Update dominant * Update kds * Update cds * Update bender * Convert template vars to values * Update machinegun * Add token-keeper * Add token-keeper * ED-159: shamway fix * ED-159: Add bouncer and bouncer-policies * Update config/bouncer-policies/values.yaml.gotmpl Co-authored-by: vilorij <vilorij@ya.ru> * Code review fixes * Update bouncer* * Add keys * Move to new way of ingress templating * drop doubled parameter * typofix in dominant host * devstand change * typofix in bouncers * disable LE and tls in devstand * Fix bouncer config * Fix binapi config * fix papi shebang * typofix add probes port * fix bouncer-policies port * disable KK tls if disabled in Values * Fix path to party service in mg * capi-v1 is back for test transaction * ingress secret typofix * capi-v1 in helmfile * typofix in domain address * enable idkfa * fix ttl * bump deps * Add links to provider and rulesets Co-authored-by: r.shaidullin <ndiezel0@gmail.com> Co-authored-by: vilorij <vilorij@ya.ru> Co-authored-by: Dmitry Skokov <d.skokov@rbkmoney.com> * Update devstand.rbk.yaml * move prometheus to helm-infra * fix test-transaction stateless values * Add comment to default.values Co-authored-by: Dmitry Skokov <d.skokov@rbkmoney.com> Co-authored-by: Sergey Yelin <elinsn@gmail.com> Co-authored-by: ilyatrub <ilyatrub@gmail.com> Co-authored-by: Sergey Yelin <s.elin@rbkmoney.com> Co-authored-by: r.shaidullin <ndiezel0@gmail.com>
2021-09-09 17:44:45 +00:00
# Section of common settings for some services
Refactor (#157) * delete submodule * stateless * capi switch to genericchart * default ports change * all capi move to generic * change api port in values of capi * add command to chart * ingress port in chart * right ingress values in capis * binbase to stateless * hellgate move * move holmes * move hooker * fix needs * move shortener * move payform * move cds * more fixes * hook in chart * add pvc * fix pvc template * move kds * move shumway * move machinegun * delay for moket * MG fix * binbase fix resource * capi fix volumes path * prepare config for dominant * hooks * move bender * proxy move * payform liveness * needs fix * fix urls * add env to chart * fix machineid matcher * last move mocket * ingress bump from deprecation * moket url in dominanta fix * move wapi * add api init to chart * move wapi-pcidss * log annotations refactor * add volumes for hook * move dominant * typo fix in vault annotations * use zookeeper from kafka chart * zookeeper replicas * move to githab charts from services folder * bender statefull and consul label * delete useless folder * Apply suggestions from code review Co-authored-by: vilorij <vilorij@ya.ru> * fix mocket-mpi port * metrics enable * delete metrics from service without metrics * fix indent in values Co-authored-by: Andrey Fadeev <me@ciiol.net> * drop empty lines Co-authored-by: Andrey Fadeev <me@ciiol.net> * fix comment and bump deps * riak and bump deps chart * Add missing services (#159) * Add anapi * Add bin-api * Fix naming * Fix oopsBody paths * Update config/anapi/sys.config Co-authored-by: Andrey Fadeev <me@ciiol.net> * Update config/anapi/sys.config Co-authored-by: Andrey Fadeev <me@ciiol.net> * Update config/binapi/sys.config Co-authored-by: Andrey Fadeev <me@ciiol.net> * Update config/binapi/sys.config Co-authored-by: Andrey Fadeev <me@ciiol.net> * Use existing binbase for API Co-authored-by: Andrey Fadeev <me@ciiol.net> * grafana to refactor (#160) * grafana to refactor * clean values * clean Co-authored-by: ilya <Ilya Ivanov> * network policies refactored (#158) * cilium network policies added Co-authored-by: vilorij <vilorij@ya.ru> * Add ability deploy to not only "default" namespace * change kafka chart from incubator to bitnamii (#164) * change kafka chart from incubator to bitnamii * road to default Co-authored-by: ilya <Ilya Ivanov> * options for disable CNP * riak fix * raw chart * bump deps * Update config/machinegun/values.yaml.gotmpl * delete netpolicy * riak hacks * bump deps * another try * Enable IPv6 for riak * KK ipv6 * consul switch to native chart * MG to new consul * ipv6 for erlangs services * riak adopt to ipv6 * Add inet6 to vm.args * global value for ipv6-only cluster * Enable ipv6 for machinegun * add ipv6 support to keycloak * vault config for ipv6 * disable dashboard if elk disabled * bump deps version add wrapper around elk enabled * add transactions values * typo fix in values * payform ipv6 * typo fix transaction Co-authored-by: Dmitry Skokov <d.skokov@rbkmoney.com> Co-authored-by: Pospolita Nikita <nikita7asics@gmail.com> Co-authored-by: Andrey Fadeev <me@ciiol.net> Co-authored-by: Sergey Yelin <elinsn@gmail.com> Co-authored-by: TeadRIM <37904338+TeadRIM@users.noreply.github.com> Co-authored-by: Ivan Panteleev <amalgamm@users.noreply.github.com>
2021-02-19 12:27:50 +00:00
services:
global:
demostand-fix (#202) * dark-api fix KK url * Enlarge domainconfig init with providers, payouts, payment_routing * add reporter enable wapi-* fix fistfull config for identities create * add create account in settlement * fix wallet_contract * Service urls now requires own place in config * fix wapi-pcidss config * fix wapi for creation destination * add environment for devstand * fix wapi endpoint in fistful-magista * darkapi bump * bump dashboard * bump KK version * add roles to internal realm * bump questionary-proxy * reduce default_ttl * add wapi port * group ingress tls secrets for api and iddqd * reduce cert number by splitting tls section in papi * change domain inliner to use vars * refactor ingress domain logic * refactor trigger name * Update erlang services (#204) * Update wapi-pcidss to latest * Update wapi-v0 to latest * Update hellgate * Update fistful * Remove legacy capi services * Add party-management * Add limiter * Fix files for config output for limiter and party-management * Update capi-v2 to latest * Update dominant * Update kds * Update cds * Update bender * Convert template vars to values * Update machinegun * Add token-keeper * Add token-keeper * ED-159: shamway fix * ED-159: Add bouncer and bouncer-policies * Update config/bouncer-policies/values.yaml.gotmpl Co-authored-by: vilorij <vilorij@ya.ru> * Code review fixes * Update bouncer* * Add keys * Move to new way of ingress templating * drop doubled parameter * typofix in dominant host * devstand change * typofix in bouncers * disable LE and tls in devstand * Fix bouncer config * Fix binapi config * fix papi shebang * typofix add probes port * fix bouncer-policies port * disable KK tls if disabled in Values * Fix path to party service in mg * capi-v1 is back for test transaction * ingress secret typofix * capi-v1 in helmfile * typofix in domain address * enable idkfa * fix ttl * bump deps * Add links to provider and rulesets Co-authored-by: r.shaidullin <ndiezel0@gmail.com> Co-authored-by: vilorij <vilorij@ya.ru> Co-authored-by: Dmitry Skokov <d.skokov@rbkmoney.com> * Update devstand.rbk.yaml * move prometheus to helm-infra * fix test-transaction stateless values * Add comment to default.values Co-authored-by: Dmitry Skokov <d.skokov@rbkmoney.com> Co-authored-by: Sergey Yelin <elinsn@gmail.com> Co-authored-by: ilyatrub <ilyatrub@gmail.com> Co-authored-by: Sergey Yelin <s.elin@rbkmoney.com> Co-authored-by: r.shaidullin <ndiezel0@gmail.com>
2021-09-09 17:44:45 +00:00
# Set to "true" if your cluster CIDR only ipv6 family
Improove (#193) * add epic branch with java services * Introduce analytics (#166) * Introduce questionary (#175) * Introduce questionary * actualize questionary * actualize questionary * Introduce claim-management (#173) * Introduce questionary-aggr-proxy (#176) * management.endpoint.prometheus.enabled=true * Change Claim database name for PG compatability * move CH pasword from template * Introduce magista (#169) * Introduce magista-kafka * Introduce magista-kafka * Introduce magista-kafka * Introduce mst * move kafka comment to the end of file * actualize magista * actualize magista * actualize mgista * management.endpoint.prometheus.enabled=true Co-authored-by: Dmitry Skokov <d.skokov@rbkmoney.com> Co-authored-by: vilorij <vilorij@ya.ru> * fix url in anapi for correct rendering in logs * Add LE certs issuer to ingress * erl default templating disable ServiceMonitor * new db init * riak fix ConfigMap * shortener config templating * Dashboard fix realm, 404 error and add ingress * disable SM in hooker * add objectselector in vault * Shumway add schema * add ingress tls variable into defaults.values * Fistful templatimg erl defaults typo fix in MG address * add default realms * Consuela for MG add namespace for payouts * helmfile deps bump * add fistful-magista * add payouter * add columbus * add columbus * disable SM * analitics fix clickhouse node for analytics * claimmgmt add * fix iddqd appconfig mounts * deanonimus add * add antifraud * kafka scale and infinity retention * KK realms readability fix password for manager add roles mapping * disable consuella for the issues in consul * typo fix in checkout * DB for antifraud * add schema setting for questionary * shortener fix with KK public key * HG ingress for iddqd * Dominant ingress for iddqd * messages add disable vault password control because of foreign keys in DB * papi add * idkfa add * dark-api add * fix hooker DB name add DB for fraudbusters * add new services in helmfile and bump deps * delete useless keycloak values Co-authored-by: karleowne <a.karlov@rbkmoney.com> Co-authored-by: Dmitry Skokov <d.skokov@rbkmoney.com>
2021-07-08 01:10:39 +00:00
ipv6only: false
Global values for metrics (#208) Co-authored-by: Dmitry Skokov <d.skokov@rbkmoney.com>
2021-09-17 06:35:40 +00:00
# Deploy ServiceMonitors with processing services
metrics:
enabled: true
add values for registry address (#212) * add values for registry address * stage another lines Co-authored-by: Dmitry Skokov <d.skokov@rbkmoney.com>
2021-09-17 06:31:49 +00:00
# Set if use your own container registry for processing service's images
registry:
add configurable folder to registry bump dashboard fix reporter party-management url
2021-09-20 11:28:31 +00:00
repository: docker.io/rbkmoney
add values for registry address (#212) * add values for registry address * stage another lines Co-authored-by: Dmitry Skokov <d.skokov@rbkmoney.com>
2021-09-17 06:31:49 +00:00
imagePullSecret: {}
Add-flexibility-config (#239) * bouncer ip family * bump dark-api * move iddqd locations to ingress * values for future flex config of external storages * improove anaytics * improove anapi * improove bender * fix ImagePullSecret * add binapi tolerations * binbase tolerate * improove capi-v2-pcidss * improove cds * improove deanon * improove dominant hook container * improove ff-magista * improove hooker * kafka ClusterDomain in values * kds improove with tolerate * improove KK * improove machinegun * improove magista * improove messages * improove org-manager * improove payouter * mocketbank tolerate * improove questionary * improove reporter * improove shumway * Testtransaction changeble registry * improove wapi-pcidss * kafka endpoint from template * payouts limits fix * typo fix * add file-storage * add registry secret to reporter and riak Co-authored-by: Dmitry Skokov <d.skokov@rbkmoney.com>
2021-10-07 16:07:42 +00:00
# Set tolerations for pcidss services. Need manually set taints to pcidss nodes:
# kubectl taint nodes wrk1-dss wrk2-dss pcidss=true:NoSchedule
pcidss:
taints:
enabled: false
key: pcidss
value: true
add values for registry address (#212) * add values for registry address * stage another lines Co-authored-by: Dmitry Skokov <d.skokov@rbkmoney.com>
2021-09-17 06:31:49 +00:00
Ft/k8s facelift (#165) * namespaced vault for dev and standalone * keycloak ingress * ingress host templating * payform templating * Control center to k8s * Dashboard service to k8s * machinegun ipv6-ready config * change default values structure
2021-02-24 17:48:54 +00:00
vault:
Add-flexibility-config (#239) * bouncer ip family * bump dark-api * move iddqd locations to ingress * values for future flex config of external storages * improove anaytics * improove anapi * improove bender * fix ImagePullSecret * add binapi tolerations * binbase tolerate * improove capi-v2-pcidss * improove cds * improove deanon * improove dominant hook container * improove ff-magista * improove hooker * kafka ClusterDomain in values * kds improove with tolerate * improove KK * improove machinegun * improove magista * improove messages * improove org-manager * improove payouter * mocketbank tolerate * improove questionary * improove reporter * improove shumway * Testtransaction changeble registry * improove wapi-pcidss * kafka endpoint from template * payouts limits fix * typo fix * add file-storage * add registry secret to reporter and riak Co-authored-by: Dmitry Skokov <d.skokov@rbkmoney.com>
2021-10-07 16:07:42 +00:00
# enabled:false switch getting postgres user and password from annotations to secret
enabled: true
Ft/k8s facelift (#165) * namespaced vault for dev and standalone * keycloak ingress * ingress host templating * payform templating * Control center to k8s * Dashboard service to k8s * machinegun ipv6-ready config * change default values structure
2021-02-24 17:48:54 +00:00
dev: true
Add-flexibility-config (#239) * bouncer ip family * bump dark-api * move iddqd locations to ingress * values for future flex config of external storages * improove anaytics * improove anapi * improove bender * fix ImagePullSecret * add binapi tolerations * binbase tolerate * improove capi-v2-pcidss * improove cds * improove deanon * improove dominant hook container * improove ff-magista * improove hooker * kafka ClusterDomain in values * kds improove with tolerate * improove KK * improove machinegun * improove magista * improove messages * improove org-manager * improove payouter * mocketbank tolerate * improove questionary * improove reporter * improove shumway * Testtransaction changeble registry * improove wapi-pcidss * kafka endpoint from template * payouts limits fix * typo fix * add file-storage * add registry secret to reporter and riak Co-authored-by: Dmitry Skokov <d.skokov@rbkmoney.com>
2021-10-07 16:07:42 +00:00
# Change in case of external splited riak clusters for CDS and Machinegun
riak:
riakMgAddress: riak
riakCdAddress: riak
# Enable postgresql external cluster with One user for any services
# TODO: split users
postgres:
external: false
# Values below uses only if postgres.external is true
endpoint: postgresql-postgres
uniUser: postgres
uniPassword: H@ckM3
# Enable external kafka cluster
kafka:
external: false
endpoint: kafka
port: 9092
ssl:
enabled: false
keystorePass: 12341234
# Set if differ from keystore password
keyPass: 12341234
truststorePass: 43214321
s3:
endpoint: minio:9000
region: EU
bucket: bucket-files
accessKey: user_01
secretKey: SomeSecretKeyFromS3AdminConsole
Ft/k8s facelift (#165) * namespaced vault for dev and standalone * keycloak ingress * ingress host templating * payform templating * Control center to k8s * Dashboard service to k8s * machinegun ipv6-ready config * change default values structure
2021-02-24 17:48:54 +00:00
ingress:
demostand-fix (#202) * dark-api fix KK url * Enlarge domainconfig init with providers, payouts, payment_routing * add reporter enable wapi-* fix fistfull config for identities create * add create account in settlement * fix wallet_contract * Service urls now requires own place in config * fix wapi-pcidss config * fix wapi for creation destination * add environment for devstand * fix wapi endpoint in fistful-magista * darkapi bump * bump dashboard * bump KK version * add roles to internal realm * bump questionary-proxy * reduce default_ttl * add wapi port * group ingress tls secrets for api and iddqd * reduce cert number by splitting tls section in papi * change domain inliner to use vars * refactor ingress domain logic * refactor trigger name * Update erlang services (#204) * Update wapi-pcidss to latest * Update wapi-v0 to latest * Update hellgate * Update fistful * Remove legacy capi services * Add party-management * Add limiter * Fix files for config output for limiter and party-management * Update capi-v2 to latest * Update dominant * Update kds * Update cds * Update bender * Convert template vars to values * Update machinegun * Add token-keeper * Add token-keeper * ED-159: shamway fix * ED-159: Add bouncer and bouncer-policies * Update config/bouncer-policies/values.yaml.gotmpl Co-authored-by: vilorij <vilorij@ya.ru> * Code review fixes * Update bouncer* * Add keys * Move to new way of ingress templating * drop doubled parameter * typofix in dominant host * devstand change * typofix in bouncers * disable LE and tls in devstand * Fix bouncer config * Fix binapi config * fix papi shebang * typofix add probes port * fix bouncer-policies port * disable KK tls if disabled in Values * Fix path to party service in mg * capi-v1 is back for test transaction * ingress secret typofix * capi-v1 in helmfile * typofix in domain address * enable idkfa * fix ttl * bump deps * Add links to provider and rulesets Co-authored-by: r.shaidullin <ndiezel0@gmail.com> Co-authored-by: vilorij <vilorij@ya.ru> Co-authored-by: Dmitry Skokov <d.skokov@rbkmoney.com> * Update devstand.rbk.yaml * move prometheus to helm-infra * fix test-transaction stateless values * Add comment to default.values Co-authored-by: Dmitry Skokov <d.skokov@rbkmoney.com> Co-authored-by: Sergey Yelin <elinsn@gmail.com> Co-authored-by: ilyatrub <ilyatrub@gmail.com> Co-authored-by: Sergey Yelin <s.elin@rbkmoney.com> Co-authored-by: r.shaidullin <ndiezel0@gmail.com>
2021-09-09 17:44:45 +00:00
# Ingressclass if have more than one controller:
Improove (#193) * add epic branch with java services * Introduce analytics (#166) * Introduce questionary (#175) * Introduce questionary * actualize questionary * actualize questionary * Introduce claim-management (#173) * Introduce questionary-aggr-proxy (#176) * management.endpoint.prometheus.enabled=true * Change Claim database name for PG compatability * move CH pasword from template * Introduce magista (#169) * Introduce magista-kafka * Introduce magista-kafka * Introduce magista-kafka * Introduce mst * move kafka comment to the end of file * actualize magista * actualize magista * actualize mgista * management.endpoint.prometheus.enabled=true Co-authored-by: Dmitry Skokov <d.skokov@rbkmoney.com> Co-authored-by: vilorij <vilorij@ya.ru> * fix url in anapi for correct rendering in logs * Add LE certs issuer to ingress * erl default templating disable ServiceMonitor * new db init * riak fix ConfigMap * shortener config templating * Dashboard fix realm, 404 error and add ingress * disable SM in hooker * add objectselector in vault * Shumway add schema * add ingress tls variable into defaults.values * Fistful templatimg erl defaults typo fix in MG address * add default realms * Consuela for MG add namespace for payouts * helmfile deps bump * add fistful-magista * add payouter * add columbus * add columbus * disable SM * analitics fix clickhouse node for analytics * claimmgmt add * fix iddqd appconfig mounts * deanonimus add * add antifraud * kafka scale and infinity retention * KK realms readability fix password for manager add roles mapping * disable consuella for the issues in consul * typo fix in checkout * DB for antifraud * add schema setting for questionary * shortener fix with KK public key * HG ingress for iddqd * Dominant ingress for iddqd * messages add disable vault password control because of foreign keys in DB * papi add * idkfa add * dark-api add * fix hooker DB name add DB for fraudbusters * add new services in helmfile and bump deps * delete useless keycloak values Co-authored-by: karleowne <a.karlov@rbkmoney.com> Co-authored-by: Dmitry Skokov <d.skokov@rbkmoney.com>
2021-07-08 01:10:39 +00:00
class: "nginx"
demostand-fix (#202) * dark-api fix KK url * Enlarge domainconfig init with providers, payouts, payment_routing * add reporter enable wapi-* fix fistfull config for identities create * add create account in settlement * fix wallet_contract * Service urls now requires own place in config * fix wapi-pcidss config * fix wapi for creation destination * add environment for devstand * fix wapi endpoint in fistful-magista * darkapi bump * bump dashboard * bump KK version * add roles to internal realm * bump questionary-proxy * reduce default_ttl * add wapi port * group ingress tls secrets for api and iddqd * reduce cert number by splitting tls section in papi * change domain inliner to use vars * refactor ingress domain logic * refactor trigger name * Update erlang services (#204) * Update wapi-pcidss to latest * Update wapi-v0 to latest * Update hellgate * Update fistful * Remove legacy capi services * Add party-management * Add limiter * Fix files for config output for limiter and party-management * Update capi-v2 to latest * Update dominant * Update kds * Update cds * Update bender * Convert template vars to values * Update machinegun * Add token-keeper * Add token-keeper * ED-159: shamway fix * ED-159: Add bouncer and bouncer-policies * Update config/bouncer-policies/values.yaml.gotmpl Co-authored-by: vilorij <vilorij@ya.ru> * Code review fixes * Update bouncer* * Add keys * Move to new way of ingress templating * drop doubled parameter * typofix in dominant host * devstand change * typofix in bouncers * disable LE and tls in devstand * Fix bouncer config * Fix binapi config * fix papi shebang * typofix add probes port * fix bouncer-policies port * disable KK tls if disabled in Values * Fix path to party service in mg * capi-v1 is back for test transaction * ingress secret typofix * capi-v1 in helmfile * typofix in domain address * enable idkfa * fix ttl * bump deps * Add links to provider and rulesets Co-authored-by: r.shaidullin <ndiezel0@gmail.com> Co-authored-by: vilorij <vilorij@ya.ru> Co-authored-by: Dmitry Skokov <d.skokov@rbkmoney.com> * Update devstand.rbk.yaml * move prometheus to helm-infra * fix test-transaction stateless values * Add comment to default.values Co-authored-by: Dmitry Skokov <d.skokov@rbkmoney.com> Co-authored-by: Sergey Yelin <elinsn@gmail.com> Co-authored-by: ilyatrub <ilyatrub@gmail.com> Co-authored-by: Sergey Yelin <s.elin@rbkmoney.com> Co-authored-by: r.shaidullin <ndiezel0@gmail.com>
2021-09-09 17:44:45 +00:00
# root domain with will be used for services subdomain:
Improove (#193) * add epic branch with java services * Introduce analytics (#166) * Introduce questionary (#175) * Introduce questionary * actualize questionary * actualize questionary * Introduce claim-management (#173) * Introduce questionary-aggr-proxy (#176) * management.endpoint.prometheus.enabled=true * Change Claim database name for PG compatability * move CH pasword from template * Introduce magista (#169) * Introduce magista-kafka * Introduce magista-kafka * Introduce magista-kafka * Introduce mst * move kafka comment to the end of file * actualize magista * actualize magista * actualize mgista * management.endpoint.prometheus.enabled=true Co-authored-by: Dmitry Skokov <d.skokov@rbkmoney.com> Co-authored-by: vilorij <vilorij@ya.ru> * fix url in anapi for correct rendering in logs * Add LE certs issuer to ingress * erl default templating disable ServiceMonitor * new db init * riak fix ConfigMap * shortener config templating * Dashboard fix realm, 404 error and add ingress * disable SM in hooker * add objectselector in vault * Shumway add schema * add ingress tls variable into defaults.values * Fistful templatimg erl defaults typo fix in MG address * add default realms * Consuela for MG add namespace for payouts * helmfile deps bump * add fistful-magista * add payouter * add columbus * add columbus * disable SM * analitics fix clickhouse node for analytics * claimmgmt add * fix iddqd appconfig mounts * deanonimus add * add antifraud * kafka scale and infinity retention * KK realms readability fix password for manager add roles mapping * disable consuella for the issues in consul * typo fix in checkout * DB for antifraud * add schema setting for questionary * shortener fix with KK public key * HG ingress for iddqd * Dominant ingress for iddqd * messages add disable vault password control because of foreign keys in DB * papi add * idkfa add * dark-api add * fix hooker DB name add DB for fraudbusters * add new services in helmfile and bump deps * delete useless keycloak values Co-authored-by: karleowne <a.karlov@rbkmoney.com> Co-authored-by: Dmitry Skokov <d.skokov@rbkmoney.com>
2021-07-08 01:10:39 +00:00
rootDomain: some-site.ru
demostand-fix (#202) * dark-api fix KK url * Enlarge domainconfig init with providers, payouts, payment_routing * add reporter enable wapi-* fix fistfull config for identities create * add create account in settlement * fix wallet_contract * Service urls now requires own place in config * fix wapi-pcidss config * fix wapi for creation destination * add environment for devstand * fix wapi endpoint in fistful-magista * darkapi bump * bump dashboard * bump KK version * add roles to internal realm * bump questionary-proxy * reduce default_ttl * add wapi port * group ingress tls secrets for api and iddqd * reduce cert number by splitting tls section in papi * change domain inliner to use vars * refactor ingress domain logic * refactor trigger name * Update erlang services (#204) * Update wapi-pcidss to latest * Update wapi-v0 to latest * Update hellgate * Update fistful * Remove legacy capi services * Add party-management * Add limiter * Fix files for config output for limiter and party-management * Update capi-v2 to latest * Update dominant * Update kds * Update cds * Update bender * Convert template vars to values * Update machinegun * Add token-keeper * Add token-keeper * ED-159: shamway fix * ED-159: Add bouncer and bouncer-policies * Update config/bouncer-policies/values.yaml.gotmpl Co-authored-by: vilorij <vilorij@ya.ru> * Code review fixes * Update bouncer* * Add keys * Move to new way of ingress templating * drop doubled parameter * typofix in dominant host * devstand change * typofix in bouncers * disable LE and tls in devstand * Fix bouncer config * Fix binapi config * fix papi shebang * typofix add probes port * fix bouncer-policies port * disable KK tls if disabled in Values * Fix path to party service in mg * capi-v1 is back for test transaction * ingress secret typofix * capi-v1 in helmfile * typofix in domain address * enable idkfa * fix ttl * bump deps * Add links to provider and rulesets Co-authored-by: r.shaidullin <ndiezel0@gmail.com> Co-authored-by: vilorij <vilorij@ya.ru> Co-authored-by: Dmitry Skokov <d.skokov@rbkmoney.com> * Update devstand.rbk.yaml * move prometheus to helm-infra * fix test-transaction stateless values * Add comment to default.values Co-authored-by: Dmitry Skokov <d.skokov@rbkmoney.com> Co-authored-by: Sergey Yelin <elinsn@gmail.com> Co-authored-by: ilyatrub <ilyatrub@gmail.com> Co-authored-by: Sergey Yelin <s.elin@rbkmoney.com> Co-authored-by: r.shaidullin <ndiezel0@gmail.com>
2021-09-09 17:44:45 +00:00
# If true ingress will be rendered with name of namespace. For example, if deploy
# in Namespace test api will be available at api.test.some-site.ru
namespacedDomain: false
internal_services (#167) * add dashboard and CC to helmfile * ServiceMonitors and CNP move in Releases namespace * -revert vault init script sleep for devsetup - vault-injector webhook only for Release namespace * - dont install prom if processing namespaced - bump chart versions in lock * bump TT version Co-authored-by: Dmitry Skokov <d.skokov@rbkmoney.com>
2021-02-26 17:14:11 +00:00
tls:
Frolov changes (#198) * add deps, fix versions, vault host address, minikube config * fix back unnecessary changes * delete outdated vaulues.yaml for keycloak realms * return back keycloak fixed version * remove keycloak fixed version and fix ingress path * made helmfile deps * delete outdated values.yaml for vault-cm * return back keycloak fixed version * remove keycloak fixed version and fix ingress path * made helmfile deps
2021-08-09 14:48:46 +00:00
enabled: false
demostand-fix (#202) * dark-api fix KK url * Enlarge domainconfig init with providers, payouts, payment_routing * add reporter enable wapi-* fix fistfull config for identities create * add create account in settlement * fix wallet_contract * Service urls now requires own place in config * fix wapi-pcidss config * fix wapi for creation destination * add environment for devstand * fix wapi endpoint in fistful-magista * darkapi bump * bump dashboard * bump KK version * add roles to internal realm * bump questionary-proxy * reduce default_ttl * add wapi port * group ingress tls secrets for api and iddqd * reduce cert number by splitting tls section in papi * change domain inliner to use vars * refactor ingress domain logic * refactor trigger name * Update erlang services (#204) * Update wapi-pcidss to latest * Update wapi-v0 to latest * Update hellgate * Update fistful * Remove legacy capi services * Add party-management * Add limiter * Fix files for config output for limiter and party-management * Update capi-v2 to latest * Update dominant * Update kds * Update cds * Update bender * Convert template vars to values * Update machinegun * Add token-keeper * Add token-keeper * ED-159: shamway fix * ED-159: Add bouncer and bouncer-policies * Update config/bouncer-policies/values.yaml.gotmpl Co-authored-by: vilorij <vilorij@ya.ru> * Code review fixes * Update bouncer* * Add keys * Move to new way of ingress templating * drop doubled parameter * typofix in dominant host * devstand change * typofix in bouncers * disable LE and tls in devstand * Fix bouncer config * Fix binapi config * fix papi shebang * typofix add probes port * fix bouncer-policies port * disable KK tls if disabled in Values * Fix path to party service in mg * capi-v1 is back for test transaction * ingress secret typofix * capi-v1 in helmfile * typofix in domain address * enable idkfa * fix ttl * bump deps * Add links to provider and rulesets Co-authored-by: r.shaidullin <ndiezel0@gmail.com> Co-authored-by: vilorij <vilorij@ya.ru> Co-authored-by: Dmitry Skokov <d.skokov@rbkmoney.com> * Update devstand.rbk.yaml * move prometheus to helm-infra * fix test-transaction stateless values * Add comment to default.values Co-authored-by: Dmitry Skokov <d.skokov@rbkmoney.com> Co-authored-by: Sergey Yelin <elinsn@gmail.com> Co-authored-by: ilyatrub <ilyatrub@gmail.com> Co-authored-by: Sergey Yelin <s.elin@rbkmoney.com> Co-authored-by: r.shaidullin <ndiezel0@gmail.com>
2021-09-09 17:44:45 +00:00
# Use certmanager annotations for tls certificate
Improove (#193) * add epic branch with java services * Introduce analytics (#166) * Introduce questionary (#175) * Introduce questionary * actualize questionary * actualize questionary * Introduce claim-management (#173) * Introduce questionary-aggr-proxy (#176) * management.endpoint.prometheus.enabled=true * Change Claim database name for PG compatability * move CH pasword from template * Introduce magista (#169) * Introduce magista-kafka * Introduce magista-kafka * Introduce magista-kafka * Introduce mst * move kafka comment to the end of file * actualize magista * actualize magista * actualize mgista * management.endpoint.prometheus.enabled=true Co-authored-by: Dmitry Skokov <d.skokov@rbkmoney.com> Co-authored-by: vilorij <vilorij@ya.ru> * fix url in anapi for correct rendering in logs * Add LE certs issuer to ingress * erl default templating disable ServiceMonitor * new db init * riak fix ConfigMap * shortener config templating * Dashboard fix realm, 404 error and add ingress * disable SM in hooker * add objectselector in vault * Shumway add schema * add ingress tls variable into defaults.values * Fistful templatimg erl defaults typo fix in MG address * add default realms * Consuela for MG add namespace for payouts * helmfile deps bump * add fistful-magista * add payouter * add columbus * add columbus * disable SM * analitics fix clickhouse node for analytics * claimmgmt add * fix iddqd appconfig mounts * deanonimus add * add antifraud * kafka scale and infinity retention * KK realms readability fix password for manager add roles mapping * disable consuella for the issues in consul * typo fix in checkout * DB for antifraud * add schema setting for questionary * shortener fix with KK public key * HG ingress for iddqd * Dominant ingress for iddqd * messages add disable vault password control because of foreign keys in DB * papi add * idkfa add * dark-api add * fix hooker DB name add DB for fraudbusters * add new services in helmfile and bump deps * delete useless keycloak values Co-authored-by: karleowne <a.karlov@rbkmoney.com> Co-authored-by: Dmitry Skokov <d.skokov@rbkmoney.com>
2021-07-08 01:10:39 +00:00
letsEncrypt:
enabled: false
issuer: ""
demostand-fix (#202) * dark-api fix KK url * Enlarge domainconfig init with providers, payouts, payment_routing * add reporter enable wapi-* fix fistfull config for identities create * add create account in settlement * fix wallet_contract * Service urls now requires own place in config * fix wapi-pcidss config * fix wapi for creation destination * add environment for devstand * fix wapi endpoint in fistful-magista * darkapi bump * bump dashboard * bump KK version * add roles to internal realm * bump questionary-proxy * reduce default_ttl * add wapi port * group ingress tls secrets for api and iddqd * reduce cert number by splitting tls section in papi * change domain inliner to use vars * refactor ingress domain logic * refactor trigger name * Update erlang services (#204) * Update wapi-pcidss to latest * Update wapi-v0 to latest * Update hellgate * Update fistful * Remove legacy capi services * Add party-management * Add limiter * Fix files for config output for limiter and party-management * Update capi-v2 to latest * Update dominant * Update kds * Update cds * Update bender * Convert template vars to values * Update machinegun * Add token-keeper * Add token-keeper * ED-159: shamway fix * ED-159: Add bouncer and bouncer-policies * Update config/bouncer-policies/values.yaml.gotmpl Co-authored-by: vilorij <vilorij@ya.ru> * Code review fixes * Update bouncer* * Add keys * Move to new way of ingress templating * drop doubled parameter * typofix in dominant host * devstand change * typofix in bouncers * disable LE and tls in devstand * Fix bouncer config * Fix binapi config * fix papi shebang * typofix add probes port * fix bouncer-policies port * disable KK tls if disabled in Values * Fix path to party service in mg * capi-v1 is back for test transaction * ingress secret typofix * capi-v1 in helmfile * typofix in domain address * enable idkfa * fix ttl * bump deps * Add links to provider and rulesets Co-authored-by: r.shaidullin <ndiezel0@gmail.com> Co-authored-by: vilorij <vilorij@ya.ru> Co-authored-by: Dmitry Skokov <d.skokov@rbkmoney.com> * Update devstand.rbk.yaml * move prometheus to helm-infra * fix test-transaction stateless values * Add comment to default.values Co-authored-by: Dmitry Skokov <d.skokov@rbkmoney.com> Co-authored-by: Sergey Yelin <elinsn@gmail.com> Co-authored-by: ilyatrub <ilyatrub@gmail.com> Co-authored-by: Sergey Yelin <s.elin@rbkmoney.com> Co-authored-by: r.shaidullin <ndiezel0@gmail.com>
2021-09-09 17:44:45 +00:00
# Put here name of secret with wildcard cert for services.ingress.rootDomain if you have one.
# If use Lets Encrypt for cert this value will be used as suffix for secrets with certs
Frolov changes (#198) * add deps, fix versions, vault host address, minikube config * fix back unnecessary changes * delete outdated vaulues.yaml for keycloak realms * return back keycloak fixed version * remove keycloak fixed version and fix ingress path * made helmfile deps * delete outdated values.yaml for vault-cm * return back keycloak fixed version * remove keycloak fixed version and fix ingress path * made helmfile deps
2021-08-09 14:48:46 +00:00
secretName: sometlssecret
Ft/k8s facelift (#165) * namespaced vault for dev and standalone * keycloak ingress * ingress host templating * payform templating * Control center to k8s * Dashboard service to k8s * machinegun ipv6-ready config * change default values structure
2021-02-24 17:48:54 +00:00
Reference in New Issue Copy Permalink