istio.io/istio@v0.0.0-20240520182934-d79c90f27776/manifests/charts/gateway/values.yaml

istio.io/istio@v0.0.0-20240520182934-d79c90f27776/manifests/charts/gateway/values.yaml (about)

     1  defaults:
     2    # Name allows overriding the release name. Generally this should not be set
     3    name: ""
     4    # revision declares which revision this gateway is a part of
     5    revision: ""
     6  
     7    # Controls the spec.replicas setting for the Gateway deployment if set.
     8    # Otherwise defaults to Kubernetes Deployment default (1).
     9    replicaCount:
    10  
    11    kind: Deployment
    12  
    13    rbac:
    14      # If enabled, roles will be created to enable accessing certificates from Gateways. This is not needed
    15      # when using http://gateway-api.org/.
    16      enabled: true
    17  
    18    serviceAccount:
    19      # If set, a service account will be created. Otherwise, the default is used
    20      create: true
    21      # Annotations to add to the service account
    22      annotations: {}
    23      # The name of the service account to use.
    24      # If not set, the release name is used
    25      name: ""
    26  
    27    podAnnotations:
    28      prometheus.io/port: "15020"
    29      prometheus.io/scrape: "true"
    30      prometheus.io/path: "/stats/prometheus"
    31      inject.istio.io/templates: "gateway"
    32      sidecar.istio.io/inject: "true"
    33  
    34    # Define the security context for the pod.
    35    # If unset, this will be automatically set to the minimum privileges required to bind to port 80 and 443.
    36    # On Kubernetes 1.22+, this only requires the `net.ipv4.ip_unprivileged_port_start` sysctl.
    37    securityContext: ~
    38    containerSecurityContext: ~
    39  
    40    service:
    41      # Type of service. Set to "None" to disable the service entirely
    42      type: LoadBalancer
    43      ports:
    44      - name: status-port
    45        port: 15021
    46        protocol: TCP
    47        targetPort: 15021
    48      - name: http2
    49        port: 80
    50        protocol: TCP
    51        targetPort: 80
    52      - name: https
    53        port: 443
    54        protocol: TCP
    55        targetPort: 443
    56      annotations: {}
    57      loadBalancerIP: ""
    58      loadBalancerSourceRanges: []
    59      externalTrafficPolicy: ""
    60      externalIPs: []
    61      ipFamilyPolicy: ""
    62      ipFamilies: []
    63      ## Whether to automatically allocate NodePorts (only for LoadBalancers).
    64      # allocateLoadBalancerNodePorts: false
    65  
    66    resources:
    67      requests:
    68        cpu: 100m
    69        memory: 128Mi
    70      limits:
    71        cpu: 2000m
    72        memory: 1024Mi
    73  
    74    autoscaling:
    75      enabled: true
    76      minReplicas: 1
    77      maxReplicas: 5
    78      targetCPUUtilizationPercentage: 80
    79      targetMemoryUtilizationPercentage: {}
    80      autoscaleBehavior: {}
    81  
    82    # Pod environment variables
    83    env: {}
    84  
    85    # Labels to apply to all resources
    86    labels: {}
    87  
    88    # Annotations to apply to all resources
    89    annotations: {}
    90  
    91    nodeSelector: {}
    92  
    93    tolerations: []
    94  
    95    topologySpreadConstraints: []
    96  
    97    affinity: {}
    98  
    99    # If specified, the gateway will act as a network gateway for the given network.
   100    networkGateway: ""
   101  
   102    # Specify image pull policy if default behavior isn't desired.
   103    # Default behavior: latest images will be Always else IfNotPresent
   104    imagePullPolicy: ""
   105  
   106    imagePullSecrets: []
   107  
   108    # This value is used to configure a Kubernetes PodDisruptionBudget for the gateway.
   109    #
   110    # By default, the `podDisruptionBudget` is disabled (set to `{}`),
   111    # which means that no PodDisruptionBudget resource will be created.
   112    #
   113    # To enable the PodDisruptionBudget, configure it by specifying the
   114    # `minAvailable` or `maxUnavailable`. For example, to set the
   115    # minimum number of available replicas to 1, you can update this value as follows:
   116    #
   117    # podDisruptionBudget:
   118    #   minAvailable: 1
   119    #
   120    # Or, to allow a maximum of 1 unavailable replica, you can set:
   121    #
   122    # podDisruptionBudget:
   123    #   maxUnavailable: 1
   124    #
   125    # You can also specify the `unhealthyPodEvictionPolicy` field, and the valid values are `IfHealthyBudget` and `AlwaysAllow`.
   126    # For example, to set the `unhealthyPodEvictionPolicy` to `AlwaysAllow`, you can update this value as follows:
   127    #
   128    # podDisruptionBudget:
   129    #   minAvailable: 1
   130    #   unhealthyPodEvictionPolicy: AlwaysAllow
   131    #
   132    # To disable the PodDisruptionBudget, you can leave it as an empty object `{}`:
   133    #
   134    # podDisruptionBudget: {}
   135    #
   136    podDisruptionBudget: {}
   137  
   138    terminationGracePeriodSeconds: 30
   139  
   140    # A list of `Volumes` added into the Gateway Pods. See
   141    # https://kubernetes.io/docs/concepts/storage/volumes/.
   142    volumes: []
   143  
   144    # A list of `VolumeMounts` added into the Gateway Pods. See
   145    # https://kubernetes.io/docs/concepts/storage/volumes/.
   146    volumeMounts: []
   147  
   148    # Configure this to a higher priority class in order to make sure your Istio gateway pods
   149    # will not be killed because of low priority class.
   150    # Refer to https://kubernetes.io/docs/concepts/configuration/pod-priority-preemption/#priorityclass
   151    # for more detail.
   152    priorityClassName: ""