Gitiles
Code Review Sign In
review.vexxhost.dev / atmosphere / 92a39f18903ced17ee4d7d9574d1e73dd408dfa8 / . / charts / octavia / values.yaml
blob: 0f0ea75d3cfb7e82728ef6b039681ad726990d5b [file] [log] [blame]
Mohammed Naserf3f59a72023-01-15 21:02:04 -0500[diff] [blame]1# Copyright 2019 Samsung Electronics Co., Ltd.
2#
3# Licensed under the Apache License, Version 2.0 (the "License");
4# you may not use this file except in compliance with the License.
5# You may obtain a copy of the License at
6#
7# http://www.apache.org/licenses/LICENSE-2.0
8#
9# Unless required by applicable law or agreed to in writing, software
10# distributed under the License is distributed on an "AS IS" BASIS,
11# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
12# See the License for the specific language governing permissions and
13# limitations under the License.
14
15# Default values for octavia.
16# This is a YAML-formatted file.
17# Declare name/value pairs to be passed into your templates.
18# name: value
19
20---
21release_group: null
22
23labels:
24 api:
25 node_selector_key: openstack-control-plane
26 node_selector_value: enabled
27 worker:
28 node_selector_key: openstack-control-plane
29 node_selector_value: enabled
30 housekeeping:
31 node_selector_key: openstack-control-plane
32 node_selector_value: enabled
33 health_manager:
34 node_selector_key: openstack-control-plane
35 node_selector_value: enabled
36 job:
37 node_selector_key: openstack-control-plane
38 node_selector_value: enabled
39
40images:
41 tags:
42 test: docker.io/xrally/xrally-openstack:2.0.0
43 bootstrap: docker.io/openstackhelm/heat:ocata
44 db_init: docker.io/openstackhelm/heat:ocata
45 octavia_db_sync: docker.io/loci/octavia:master-ubuntu
46 db_drop: docker.io/openstackhelm/heat:ocata
47 rabbit_init: docker.io/rabbitmq:3.7-management
48 ks_user: docker.io/openstackhelm/heat:ocata
49 ks_service: docker.io/openstackhelm/heat:ocata
50 ks_endpoints: docker.io/openstackhelm/heat:ocata
51 dep_check: quay.io/airshipit/kubernetes-entrypoint:v1.0.0
52 image_repo_sync: docker.io/docker:17.07.0
53 octavia_api: docker.io/loci/octavia:master-ubuntu
54 octavia_worker: docker.io/loci/octavia:master-ubuntu
55 octavia_housekeeping: docker.io/loci/octavia:master-ubuntu
56 octavia_health_manager: docker.io/loci/octavia:master-ubuntu
57 octavia_health_manager_init: docker.io/kolla/ubuntu-source-octavia-health-manager:rocky
58 openvswitch_vswitchd: docker.io/kolla/centos-source-openvswitch-vswitchd:rocky
59 pull_policy: "IfNotPresent"
60 local_registry:
61 active: false
62 exclude:
63 - dep_check
64 - image_repo_sync
65
66bootstrap:
67 enabled: true
68 ks_user: admin
69 script: |
70 openstack role create --or-show load-balancer_admin
71 openstack role create --or-show load-balancer_observer
72 openstack role create --or-show load-balancer_global_observer
73 openstack role create --or-show load-balancer_quota_admin
74 openstack role create --or-show load-balancer_member
75
76network:
77 api:
78 ingress:
79 public: true
80 classes:
81 namespace: "nginx"
82 cluster: "nginx-cluster"
83 annotations:
84 nginx.ingress.kubernetes.io/rewrite-target: /
85 external_policy_local: false
86 node_port:
87 enabled: false
88 port: 30826
89
90dependencies:
91 dynamic:
92 common:
93 local_image_registry:
94 jobs:
95 - heat-image-repo-sync
96 services:
97 - endpoint: node
98 service: local_image_registry
99 static:
100 api:
101 jobs:
102 - octavia-db-sync
103 - octavia-ks-user
104 - octavia-ks-endpoints
105 - octavia-rabbit-init
106 services:
107 - endpoint: internal
108 service: oslo_db
109 - endpoint: internal
110 service: identity
111 - endpoint: internal
112 service: oslo_messaging
113 - endpoint: internal
114 service: oslo_cache
115 - endpoint: internal
116 service: network
117 worker:
118 jobs:
119 - octavia-db-sync
120 - octavia-ks-user
121 - octavia-ks-endpoints
122 - octavia-rabbit-init
123 services:
124 - endpoint: internal
125 service: oslo_db
126 - endpoint: internal
127 service: identity
128 - endpoint: internal
129 service: oslo_messaging
130 - endpoint: internal
131 service: oslo_cache
132 - endpoint: internal
133 service: network
134 - endpoint: internal
135 service: load_balancer
136 housekeeping:
137 jobs:
138 - octavia-db-sync
139 - octavia-ks-user
140 - octavia-ks-endpoints
141 - octavia-rabbit-init
142 services:
143 - endpoint: internal
144 service: oslo_db
145 - endpoint: internal
146 service: identity
147 - endpoint: internal
148 service: oslo_messaging
149 - endpoint: internal
150 service: oslo_cache
151 - endpoint: internal
152 service: network
153 - endpoint: internal
154 service: load_balancer
155 health_manager:
156 jobs:
157 - octavia-db-sync
158 - octavia-ks-user
159 - octavia-ks-endpoints
160 - octavia-rabbit-init
161 services:
162 - endpoint: internal
163 service: oslo_db
164 - endpoint: internal
165 service: identity
166 - endpoint: internal
167 service: oslo_messaging
168 - endpoint: internal
169 service: oslo_cache
170 - endpoint: internal
171 service: network
172 - endpoint: internal
173 service: load_balancer
174 db_init:
175 services:
176 - endpoint: internal
177 service: oslo_db
178 db_sync:
179 jobs:
180 - octavia-db-init
181 services:
182 - endpoint: internal
183 service: oslo_db
184 ks_endpoints:
185 jobs:
186 - octavia-ks-service
187 services:
188 - endpoint: internal
189 service: identity
190 ks_service:
191 services:
192 - endpoint: internal
193 service: identity
194 ks_user:
195 services:
196 - endpoint: internal
197 service: identity
198 rabbit_init:
199 services:
200 - endpoint: internal
201 service: oslo_messaging
202 image_repo_sync:
203 services:
204 - endpoint: internal
205 service: local_image_registry
206
207conf:
208 octavia:
209 DEFAULT:
210 log_config_append: /etc/octavia/logging.conf
211 api_settings:
212 api_handler: queue_producer
213 bind_host: 0.0.0.0
214 database:
215 max_retries: -1
216 health_manager:
217 bind_port: 5555
218 bind_ip: 0.0.0.0
219 controller_ip_port_list: 0.0.0.0:5555
220 heartbeat_key: insecure
221 keystone_authtoken:
222 auth_type: password
223 auth_version: v3
224 memcache_security_strategy: ENCRYPT
ricolinbdde64d2023-08-10 20:12:59 +0800[diff] [blame]225 service_type: load-balancer
Mohammed Naserf3f59a72023-01-15 21:02:04 -0500[diff] [blame]226 certificates:
227 ca_private_key_passphrase: foobar
228 ca_private_key: /etc/octavia/certs/private/cakey.pem
229 ca_certificate: /etc/octavia/certs/ca_01.pem
230 haproxy_amphora:
231 server_ca: /etc/octavia/certs/ca_01.pem
232 client_cert: /etc/octavia/certs/client.pem
233 base_path: /var/lib/octavia
234 base_cert_dir: /var/lib/octavia/certs
Mohammed Naserf3f59a72023-01-15 21:02:04 -0500[diff] [blame]235 controller_worker:
236 amp_image_owner_id: null
237 amp_secgroup_list: null
238 amp_flavor_id: null
239 amp_boot_network_list: null
240 amp_ssh_key_name: octavia_ssh_key
241 amp_image_tag: amphora
242 network_driver: allowed_address_pairs_driver
243 compute_driver: compute_nova_driver
244 amphora_driver: amphora_haproxy_rest_driver
245 workers: 2
246 amp_active_retries: 100
247 amp_active_wait_sec: 2
248 loadbalancer_topology: SINGLE
249 oslo_messaging:
250 topic: octavia_prov
251 rpc_thread_pool_size: 2
252 oslo_messaging_notifications:
253 driver: messagingv2
254 house_keeping:
255 load_balancer_expiry_age: 3600
256 amphora_expiry_age: 3600
257 service_auth:
258 auth_type: password
259 cafile: ""
260 auth_version: v3
261 memcache_security_strategy: ENCRYPT
262 logging:
263 loggers:
264 keys:
265 - root
266 - octavia
267 handlers:
268 keys:
269 - stdout
270 - stderr
271 - "null"
272 formatters:
273 keys:
274 - context
275 - default
276 logger_root:
277 level: WARNING
278 handlers: 'null'
279 logger_octavia:
280 level: WARNING
281 handlers:
282 - stdout
283 qualname: octavia
284 logger_amqp:
285 level: WARNING
286 handlers: stderr
287 qualname: amqp
288 logger_amqplib:
289 level: WARNING
290 handlers: stderr
291 qualname: amqplib
292 logger_eventletwsgi:
293 level: WARNING
294 handlers: stderr
295 qualname: eventlet.wsgi.server
296 logger_sqlalchemy:
297 level: WARNING
298 handlers: stderr
299 qualname: sqlalchemy
300 logger_boto:
301 level: WARNING
302 handlers: stderr
303 qualname: boto
304 handler_null:
305 class: logging.NullHandler
306 formatter: default
307 args: ()
308 handler_stdout:
309 class: StreamHandler
310 args: (sys.stdout,)
311 formatter: context
312 handler_stderr:
313 class: StreamHandler
314 args: (sys.stderr,)
315 formatter: context
316 formatter_context:
317 class: oslo_log.formatters.ContextFormatter
318 formatter_default:
319 format: "%(message)s"
320 rabbitmq:
321 # NOTE(rk760n): adding rmq policy to mirror messages from notification queues and set expiration time for the ones
322 policies:
323 - vhost: "octavia"
324 name: "ha_ttl_octavia"
325 definition:
326 # mirror messges to other nodes in rmq cluster
327 ha-mode: "all"
328 ha-sync-mode: "automatic"
329 # 70s
330 message-ttl: 70000
331 priority: 0
332 apply-to: all
333 pattern: '(notifications)\.'
334
335secrets:
336 identity:
337 admin: octavia-keystone-admin
338 octavia: octavia-keystone-user
339 test: octavia-keystone-test
340 oslo_db:
341 admin: octavia-db-admin
342 octavia: octavia-db-user
343 oslo_messaging:
344 admin: octavia-rabbitmq-admin
345 octavia: octavia-rabbitmq-user
346 tls:
347 load_balancer:
348 api:
349 public: octavia-tls-public
Oleksandr Kozachenkoa10d7852023-02-02 22:01:16 +0100[diff] [blame]350 oci_image_registry:
351 octavia: octavia-oci-image-registry
Mohammed Naserf3f59a72023-01-15 21:02:04 -0500[diff] [blame]352
353endpoints:
354 cluster_domain_suffix: cluster.local
355 local_image_registry:
356 name: docker-registry
357 namespace: docker-registry
358 hosts:
359 default: localhost
360 internal: docker-registry
361 node: localhost
362 host_fqdn_override:
363 default: null
364 port:
365 registry:
366 node: 5000
Oleksandr Kozachenkoa10d7852023-02-02 22:01:16 +0100[diff] [blame]367 oci_image_registry:
368 name: oci-image-registry
369 namespace: oci-image-registry
370 auth:
371 enabled: false
372 octavia:
373 username: octavia
374 password: password
375 hosts:
376 default: localhost
377 host_fqdn_override:
378 default: null
379 port:
380 registry:
381 default: null
Mohammed Naserf3f59a72023-01-15 21:02:04 -0500[diff] [blame]382 identity:
383 name: keystone
384 auth:
385 admin:
386 region_name: RegionOne
387 username: admin
388 password: password
389 project_name: admin
390 user_domain_name: default
391 project_domain_name: default
392 octavia:
393 role: admin
394 region_name: RegionOne
395 username: octavia
396 password: password
397 project_name: service
398 user_domain_name: service
399 project_domain_name: service
400 test:
401 role: admin
402 region_name: RegionOne
403 username: test
404 password: password
405 project_name: test
406 user_domain_name: service
407 project_domain_name: service
408 hosts:
409 default: keystone
410 internal: keystone-api
411 host_fqdn_override:
412 default: null
413 path:
414 default: /v3
415 scheme:
416 default: 'http'
417 port:
418 api:
419 default: 80
420 internal: 5000
421 load_balancer:
422 name: octavia
423 hosts:
424 default: octavia-api
425 public: octavia
426 host_fqdn_override:
427 default: null
428 path:
429 default: null
430 scheme:
431 default: http
432 port:
433 api:
434 default: 9876
435 public: 80
436 oslo_db:
437 auth:
438 admin:
439 username: root
440 password: password
441 octavia:
442 username: octavia
443 password: password
444 hosts:
445 default: mariadb
446 host_fqdn_override:
447 default: null
448 path: /octavia
449 scheme: mysql+pymysql
450 port:
451 mysql:
452 default: 3306
453 oslo_cache:
454 auth:
455 # NOTE(portdirect): this is used to define the value for keystone
456 # authtoken cache encryption key, if not set it will be populated
457 # automatically with a random value, but to take advantage of
458 # this feature all services should be set to use the same key,
459 # and memcache service.
460 memcache_secret_key: null
461 hosts:
462 default: memcached
463 host_fqdn_override:
464 default: null
465 port:
466 memcache:
467 default: 11211
468 oslo_messaging:
469 auth:
470 admin:
471 username: rabbitmq
472 password: password
473 octavia:
474 username: octavia
475 password: password
476 statefulset:
477 replicas: 2
478 name: rabbitmq-rabbitmq
479 hosts:
480 default: rabbitmq
481 host_fqdn_override:
482 default: null
483 path: /octavia
484 scheme: rabbit
485 port:
486 amqp:
487 default: 5672
488 http:
489 default: 15672
490 network:
491 name: neutron
492 hosts:
493 default: neutron-server
494 public: neutron
495 host_fqdn_override:
496 default: null
497 path:
498 default: null
499 scheme:
500 default: 'http'
501 port:
502 api:
503 default: 9696
504 public: 80
505
506pod:
507 user:
508 octavia:
509 uid: 42424
510 affinity:
511 anti:
512 type:
513 default: preferredDuringSchedulingIgnoredDuringExecution
514 topologyKey:
515 default: kubernetes.io/hostname
516 mounts:
517 octavia_api:
518 init_container: null
519 octavia_api:
520 volumeMounts:
521 volumes:
522 octavia_worker:
523 init_container: null
524 octavia_worker:
525 volumeMounts:
526 volumes:
527 octavia_housekeeping:
528 init_container: null
529 octavia_housekeeping:
530 volumeMounts:
531 volumes:
532 octavia_health_manager:
533 init_container: null
534 octavia_health_manager:
535 volumeMounts:
536 volumes:
537 octavia_bootstrap:
538 init_container: null
539 octavia_bootstrap:
540 volumeMounts:
541 volumes:
542 replicas:
543 api: 1
544 worker: 1
545 housekeeping: 1
546 lifecycle:
547 upgrades:
548 deployments:
549 revision_history: 3
550 pod_replacement_strategy: RollingUpdate
551 rolling_update:
552 max_unavailable: 1
553 max_surge: 3
554 daemonsets:
555 pod_replacement_strategy: RollingUpdate
556 health_manager:
557 enabled: true
558 min_ready_seconds: 0
559 max_unavailable: 1
560 disruption_budget:
561 api:
562 min_available: 0
563 termination_grace_period:
564 api:
565 timeout: 30
566 resources:
567 enabled: false
568 api:
569 requests:
570 memory: "128Mi"
571 cpu: "100m"
572 limits:
573 memory: "1024Mi"
574 cpu: "2000m"
575 worker:
576 requests:
577 memory: "128Mi"
578 cpu: "100m"
579 limits:
580 memory: "1024Mi"
581 cpu: "2000m"
582 housekeeping:
583 requests:
584 memory: "128Mi"
585 cpu: "100m"
586 limits:
587 memory: "1024Mi"
588 cpu: "2000m"
589 health_manager:
590 requests:
591 memory: "128Mi"
592 cpu: "100m"
593 limits:
594 memory: "1024Mi"
595 cpu: "2000m"
596 jobs:
597 bootstrap:
598 requests:
599 memory: "128Mi"
600 cpu: "100m"
601 limits:
602 memory: "1024Mi"
603 cpu: "2000m"
604 rabbit_init:
605 requests:
606 memory: "128Mi"
607 cpu: "100m"
608 limits:
609 memory: "1024Mi"
610 cpu: "2000m"
611 db_init:
612 requests:
613 memory: "128Mi"
614 cpu: "100m"
615 limits:
616 memory: "1024Mi"
617 cpu: "2000m"
618 db_sync:
619 requests:
620 memory: "128Mi"
621 cpu: "100m"
622 limits:
623 memory: "1024Mi"
624 cpu: "2000m"
625 db_drop:
626 requests:
627 memory: "128Mi"
628 cpu: "100m"
629 limits:
630 memory: "1024Mi"
631 cpu: "2000m"
632 ks_endpoints:
633 requests:
634 memory: "128Mi"
635 cpu: "100m"
636 limits:
637 memory: "1024Mi"
638 cpu: "2000m"
639 ks_service:
640 requests:
641 memory: "128Mi"
642 cpu: "100m"
643 limits:
644 memory: "1024Mi"
645 cpu: "2000m"
646 ks_user:
647 requests:
648 memory: "128Mi"
649 cpu: "100m"
650 limits:
651 memory: "1024Mi"
652 cpu: "2000m"
653 tests:
654 requests:
655 memory: "128Mi"
656 cpu: "100m"
657 limits:
658 memory: "1024Mi"
659 cpu: "2000m"
660 image_repo_sync:
661 requests:
662 memory: "128Mi"
663 cpu: "100m"
664 limits:
665 memory: "1024Mi"
666 cpu: "2000m"
667
668network_policy:
669 octavia:
670 ingress:
671 - {}
672
673manifests:
674 configmap_bin: true
675 configmap_etc: true
676 daemonset_health_manager: true
677 deployment_api: true
678 deployment_worker: true
679 deployment_housekeeping: true
680 ingress_api: true
681 job_bootstrap: true
682 job_db_init: true
683 job_db_sync: true
684 job_db_drop: false
685 job_image_repo_sync: true
686 job_rabbit_init: true
687 job_ks_endpoints: true
688 job_ks_service: true
689 job_ks_user: true
690 pdb_api: true
691 pod_rally_test: false
692 network_policy: false
693 secret_credential_keys: true
694 secret_db: true
695 secret_ingress_tls: true
696 secret_keystone: true
697 secret_rabbitmq: true
Oleksandr Kozachenkoa10d7852023-02-02 22:01:16 +0100[diff] [blame]698 secret_registry: true
Mohammed Naserf3f59a72023-01-15 21:02:04 -0500[diff] [blame]699 service_ingress_api: true
700 service_api: true
701...