github.com/replicatedhq/ship@v0.55.0/integration/init/forgeops/expected/.ship/helm/defaults.yaml

github.com/replicatedhq/ship@v0.55.0/integration/init/forgeops/expected/.ship/helm/defaults.yaml (about)

     1  # Copyright (c) 2016-2018 ForgeRock AS.
     2  
     3  
     4  # If useDefaultSecrets is set to true (the default), the secret values in ../secrets will
     5  # be used to create a secret map with the same name as the instance ($instance).
     6  # If you set useDefaultSecrets to false, you must create this secret map yourself before the DS
     7  # instances will be provisioned. This allows you to inject your own secrets rather
     8  # than use the default ones bundled in the chart. An alternate strategy is to fork this chart.
     9  # and replace the secrets in ./secrets with your own.
    10  useDefaultSecrets: true
    11  
    12  # The default DS baseDN for the user store.  Note the ds image creates several backends that are hard coded and this
    13  # setting will have no impact on those backends. This setting will be removed in the future.
    14  baseDN: "ou=identities"
    15  
    16  # The default instance name. This will create a stateful set that can be resolved at
    17  #  $instance-0.$instance. You can also use the service name $instance - which will get (randomly)
    18  # load balanced to an instance (not recommended )
    19  instance: ds
    20  
    21  component: ds
    22  
    23  # If you want to disable the userstore backend, set this to false
    24  userstore:
    25    enabled: true
    26  
    27  # If you want to disable specific backends, set to false:
    28  cts:
    29    enabled: true
    30  
    31  configstore:
    32    enabled: true
    33  
    34  idmRepo:
    35    enabled: true
    36  
    37  image:
    38    repository: forgerock-docker-public.bintray.io/forgerock/ds
    39    pullPolicy: IfNotPresent
    40    tag: 6.5.0
    41  
    42  # The number of instances in the StatefulSet. Each instance is a combined DS/RS pair.
    43  # You can not change this after installation.
    44  replicas: 1
    45  
    46  # Size for DS database storage. Note GKE IOPS scale based on the size of the volume.
    47  storageSize: "10Gi"
    48  
    49  # Set storageClass only on clusters that support it (GCP / AWS).
    50  #storageClass: fast
    51  
    52  
    53  backup:
    54    # This is an optional parameter that will mount the named PVC volume (most likely an NFS share)
    55    # on the bak/ directory. If this is not specified, an emptyDir will be mounted instead.
    56    # The pvc is usually created by the dsadmin/ chart.
    57    #pvcClaimName: ds-backup
    58  
    59    # This configures the top level directory under bak/
    60    # The backup folder is set to $clusterName/$instance-$namespace. This
    61    # forces each instance backup to go to a different folder on the shared PVC drive. Without this
    62    # you will get collisions on backup / restore.
    63    # If you have many clusters backing up same shared NFS volume, change the default here. For example, 
    64    # set it to "production"
    65    clusterName: "default"
    66  
    67  
    68  # You need to be on JDK 8u131 or higher to enable these options.
    69  # todo: find JDK 11 args
    70  #opendjJavaArgs: "-server -XX:+UnlockExperimentalVMOptions -XX:+UseCGroupMemoryLimitForHeap -XX:+UseCompressedOops -XX:+UseG1GC -XX:MaxGCPauseMillis=100 -XX:MaxRAMFraction=2"
    71  
    72  # These defaults work for a small test instance
    73  opendjJavaArgs: "-Xmx512m"
    74  
    75  # Resource limits.
    76  # These help for pod placement in a larger cluster to ensure the DS instance gets sufficient resources.
    77  # The default values are artificially low.
    78  # For production, you will want to increase them.
    79  resources:
    80    requests:
    81     memory: 512Mi
    82    limits:
    83     memory: 768Mi
    84  
    85  # DS persistence switch. Setting this to false disables volume claims - all data is stored inside the docker image.
    86  # Used in testing environments without pv providers. When the pod is terminated, the DS data will be deleted!
    87  persistence: true
    88  
    89  # Pod Anti Affinity switch. For production this should be set to "hard", otherwise use "soft".
    90  # The hard setting will force ds pods to be spread out over multiple hosts/zones. soft is best effort
    91  # but pods will still be scheduled together if sufficient resources are not available.
    92  podAntiAffinity: "soft"
    93  
    94  # This is the exact value for TopologyKey. The other possible value is "failure-domain.beta.kubernetes.io/zone"
    95  # which will ensure that pod is scheduled on nodes in different zones thus allowing for HA across zones.
    96  # Note you want to leave this value as is if you are deploying a single zone cluster and change the values only
    97  # if you have a multi-zone cluster.
    98  topologyKey: "kubernetes.io/hostname"
    99  
   100  # Restore parameters. 
   101  restore:
   102    # If true, runs the init containers that restores the directory from a backup folder in the bak/ folder.
   103    # The backup data must be present in the bak/ folder. 
   104    # Restore will not overwrite existing DS data.  
   105    # A backup folder contains a full backup and a number of incrementals. The most up to date incremental 
   106    # is used to recover.
   107    enabled: false
   108  
   109  securityContext:
   110    runAsUser: 11111
   111    fsGroup: 11111
   112    supplementalGroups: [ 0 ]