valitydev/helmsdeep
14
0
Fork 0
mirror of https://github.com/valitydev/helmsdeep.git synced 2024-11-06 08:55:21 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity
18ebb1541f
helmsdeep/config/fistful/values.yaml.gotmpl
vilorij 18ebb1541f
Changes (#246) 
* Ch values added

* initdb-related fixes

* no optional

* vault fix for k8s 1.21

* policy add

* configurable replicas count

* typo fix

* add new env

* fix ingressclass

* return correct config

* policy refactor

* add FRONTURL for realms

* refactor papi

* add cnp

* bump deps

* delete useless cnp

* new service

* comment l7 cnp

* add needed cnp

* move vhost to ingress

* ZK label for cnp

* change create time for fixing UpdatePassword

* delete ns from cnp

* bump

* last policy

Co-authored-by: i.panteleev <i.panteleev@rbk.money>
Co-authored-by: Dmitry Skokov <d.skokov@rbkmoney.com>
2021-11-15 04:38:10 +03:00

110 lines
2.8 KiB
YAML
Raw Blame History

# -*- mode: yaml -*-
image:
repository: {{ .Values.services.global.registry.repository | default "docker.io/rbkmoney" }}/fistful-server
tag: b9f0cdf2e4954b47c366d0e7ea78d4690fc176af
pullPolicy: IfNotPresent
{{ if .Values.services.global.registry.imagePullSecret }}
imagePullSecrets:
- name: {{ .Values.services.global.registry.imagePullSecret }}
{{ end }}
configMap:
data:
sys.config: |
{{- readFile "sys.config" | nindent 6 }}
erl_inetrc: |
{{- tpl (readFile "../vm/erl_inetrc.gotmpl") . | nindent 6 }}
vm.args: |
{{- tpl (readFile "../vm/erl_vm_args.gotmpl") . | nindent 6 }}
volumeMounts:
- name: config-volume
mountPath: /opt/fistful-server/releases/0.1/sys.config
subPath: sys.config
readOnly: true
- name: config-volume
mountPath: /opt/fistful-server/releases/0.1/vm.args
subPath: vm.args
readOnly: true
- name: config-volume
mountPath: /opt/fistful-server/erl_inetrc
subPath: erl_inetrc
readOnly: true
volumes:
- name: config-volume
configMap:
name: {{ .Release.Name }}
defaultMode: 0755
service:
type: ClusterIP
ports:
- name: management
port: 8022
{{ $domainWithNamespace := printf "%s.%s" .Release.Namespace .Values.services.ingress.rootDomain }}
{{ $ingressDomain := .Values.services.ingress.namespacedDomain | ternary $domainWithNamespace .Values.services.ingress.rootDomain }}
ingress:
enabled: true
annotations:
{{- if .Values.services.ingress.tls.letsEncrypt.enabled }}
cert-manager.io/cluster-issuer: {{ .Values.services.ingress.tls.letsEncrypt.issuer }}
{{- end }}
nginx.ingress.kubernetes.io/cors-allow-headers: "DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization,X-Request-ID"
kubernetes.io/ingress.class: {{ .Values.services.ingress.class | quote }}
hosts:
- host: iddqd.{{ $ingressDomain | default "rbk.dev" }}
paths:
- /v1/admin
{{- if .Values.services.ingress.tls.enabled }}
tls:
{{ if .Values.services.ingress.tls.letsEncrypt.enabled }}
- secretName: iddqd-{{ .Values.services.ingress.tls.secretName }}
{{- else }}
- secretName: {{ .Values.services.ingress.tls.secretName }}
{{- end }}
hosts:
- iddqd.{{ $ingressDomain | default "rbk.dev" }}
{{- end }}
servicePort: 8022
livenessProbe:
httpGet:
path: /health
port: management
readinessProbe:
httpGet:
path: /health
port: management
ciliumPolicies:
- filters:
- port: 8022
type: TCP
name: binbase
- filters:
- port: 8022
type: TCP
name: cds
- filters:
- port: 8022
type: TCP
name: shumway
- filters:
- port: 8022
type: TCP
name: machinegun
- filters:
- port: 8022
type: TCP
name: dominant
- filters:
- port: 8022
type: TCP
name: hellgate
Reference in New Issue View Git Blame Copy Permalink