Gitiles
Code Review Sign In
review.vexxhost.dev / atmosphere / 96933d0819d8be981b8917676b0d8fa4f1859298 / . / charts / designate / values.yaml
blob: ea2c2aaca02980c7cf82ff92254e391087dab249 [file] [log] [blame]
Mohammed Naserf3f59a72023-01-15 21:02:04 -0500[diff] [blame]1# Licensed under the Apache License, Version 2.0 (the "License");
2# you may not use this file except in compliance with the License.
3# You may obtain a copy of the License at
4#
5# http://www.apache.org/licenses/LICENSE-2.0
6#
7# Unless required by applicable law or agreed to in writing, software
8# distributed under the License is distributed on an "AS IS" BASIS,
9# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
10# See the License for the specific language governing permissions and
11# limitations under the License.
12
13# Default values for designate.
14# This is a YAML-formatted file.
15# Declare name/value pairs to be passed into your templates.
16# name: value
17
18---
19release_group: null
20
21labels:
22 api:
23 node_selector_key: openstack-control-plane
24 node_selector_value: enabled
25 central:
26 node_selector_key: openstack-control-plane
27 node_selector_value: enabled
28 producer:
29 node_selector_key: openstack-control-plane
30 node_selector_value: enabled
31 worker:
32 node_selector_key: openstack-control-plane
33 node_selector_value: enabled
34 job:
35 node_selector_key: openstack-control-plane
36 node_selector_value: enabled
37 mdns:
38 node_selector_key: openstack-control-plane
39 node_selector_value: enabled
40 sink:
41 node_selector_key: openstack-control-plane
42 node_selector_value: enabled
43
44images:
45 tags:
46 bootstrap: docker.io/openstackhelm/heat:wallaby-ubuntu_focal
47 db_init: docker.io/openstackhelm/heat:wallaby-ubuntu_focal
48 db_drop: docker.io/openstackhelm/heat:wallaby-ubuntu_focal
49 rabbit_init: docker.io/rabbitmq:3.7-management
50 ks_user: docker.io/openstackhelm/heat:wallaby-ubuntu_focal
51 ks_service: docker.io/openstackhelm/heat:wallaby-ubuntu_focal
52 ks_endpoints: docker.io/openstackhelm/heat:wallaby-ubuntu_focal
53 dep_check: quay.io/airshipit/kubernetes-entrypoint:v1.0.0
54 designate_db_sync: docker.io/openstackhelm/designate:wallaby-ubuntu_focal
55 designate_api: docker.io/openstackhelm/designate:wallaby-ubuntu_focal
56 designate_central: docker.io/openstackhelm/designate:wallaby-ubuntu_focal
57 designate_mdns: docker.io/openstackhelm/designate:wallaby-ubuntu_focal
58 designate_worker: docker.io/openstackhelm/designate:wallaby-ubuntu_focal
59 designate_producer: docker.io/openstackhelm/designate:wallaby-ubuntu_focal
60 designate_sink: docker.io/openstackhelm/designate:wallaby-ubuntu_focal
61 pull_policy: "IfNotPresent"
62 local_registry:
63 active: false
64 exclude:
65 - dep_check
66 - image_repo_sync
67
68pod:
69 affinity:
70 anti:
71 type:
72 default: preferredDuringSchedulingIgnoredDuringExecution
73 topologyKey:
74 default: kubernetes.io/hostname
75 mounts:
76 designate_api:
77 init_container: null
78 designate_api:
79 volumeMounts:
80 volumes:
81 designate_central:
82 init_container: null
83 designate_central:
84 volumeMounts:
85 volumes:
86 designate_mdns:
87 init_container: null
88 designate_mdns:
89 volumeMounts:
90 volumes:
91 designate_worker:
92 init_container: null
93 designate_worker:
94 volumeMounts:
95 volumes:
96 designate_producer:
97 init_container: null
98 designate_producer:
99 volumeMounts:
100 volumes:
101 designate_sink:
102 init_container: null
103 designate_sink:
104 volumeMounts:
105 volumes:
106 designate_db_sync:
107 designate_db_sync:
108 volumeMounts:
109 volumes:
110 replicas:
111 api: 1
112 central: 1
113 mdns: 1
114 producer: 1
115 sink: 1
116 worker: 1
117 lifecycle:
118 upgrades:
119 deployments:
120 revision_history: 3
121 pod_replacement_strategy: RollingUpdate
122 rolling_update:
123 max_unavailable: 1
124 max_surge: 3
125 disruption_budget:
126 api:
127 min_available: 0
128 central:
129 min_available: 0
130 mdns:
131 min_available: 0
132 worker:
133 min_available: 0
134 producer:
135 min_available: 0
136 sink:
137 min_available: 0
138 termination_grace_period:
139 api:
140 timeout: 30
141 mdns:
142 timeout: 30
143
144 resources:
145 enabled: false
146 api:
147 requests:
148 memory: "128Mi"
149 cpu: "100m"
150 limits:
151 memory: "1024Mi"
152 cpu: "2000m"
153 jobs:
154 bootstrap:
155 requests:
156 memory: "128Mi"
157 cpu: "100m"
158 limits:
159 memory: "1024Mi"
160 cpu: "2000m"
161 db_init:
162 requests:
163 memory: "128Mi"
164 cpu: "100m"
165 limits:
166 memory: "1024Mi"
167 cpu: "2000m"
168 db_sync:
169 requests:
170 memory: "128Mi"
171 cpu: "100m"
172 limits:
173 memory: "1024Mi"
174 cpu: "2000m"
175 ks_endpoints:
176 requests:
177 memory: "128Mi"
178 cpu: "100m"
179 limits:
180 memory: "1024Mi"
181 cpu: "2000m"
182 ks_service:
183 requests:
184 memory: "128Mi"
185 cpu: "100m"
186 limits:
187 memory: "1024Mi"
188 cpu: "2000m"
189 ks_user:
190 requests:
191 memory: "128Mi"
192 cpu: "100m"
193 limits:
194 memory: "1024Mi"
195 cpu: "2000m"
196 rabbit_init:
197 requests:
198 memory: "128Mi"
199 cpu: "100m"
200 limits:
201 memory: "1024Mi"
202 cpu: "2000m"
203 tests:
204 requests:
205 memory: "128Mi"
206 cpu: "100m"
207 limits:
208 memory: "1024Mi"
209 cpu: "2000m"
210
211network:
212 api:
213 ingress:
214 public: true
215 classes:
216 namespace: "nginx"
217 cluster: "nginx-cluster"
218 annotations:
219 nginx.ingress.kubernetes.io/rewrite-target: /
220 external_policy_local: false
221 node_port:
222 enabled: false
223 port: 9001
224 mdns:
225 name: "designate-mdns"
226 proto: "http"
227 external_policy_local: false
228 node_port:
229 enabled: true
230 port: 5354
231
232bootstrap:
233 enabled: false
234 script: |
235 openstack token issue
236
237dependencies:
238 dynamic:
239 common:
240 local_image_registry:
241 jobs:
242 - designate-image-repo-sync
243 services:
244 - endpoint: node
245 service: local_image_registry
246 job_rabbit_init:
247 api:
248 jobs:
249 - designate-rabbit-init
250 sink:
251 jobs:
252 - designate-rabbit-init
253 central:
254 jobs:
255 - designate-rabbit-init
256 worker:
257 jobs:
258 - designate-rabbit-init
259 static:
260 db_init:
261 services:
262 - service: oslo_db
263 endpoint: internal
264 db_sync:
265 jobs:
266 - designate-db-init
267 services:
268 - service: oslo_db
269 endpoint: internal
270 ks_user:
271 services:
272 - service: identity
273 endpoint: internal
274 ks_service:
275 services:
276 - service: identity
277 endpoint: internal
278 ks_endpoints:
279 jobs:
280 - designate-ks-service
281 services:
282 - service: identity
283 endpoint: internal
284 rabbit_init:
285 services:
286 - service: oslo_messaging
287 endpoint: internal
288 api:
289 jobs:
290 - designate-db-sync
291 - designate-ks-user
292 - designate-ks-endpoints
293 service:
294 - service: oslo_db
295 endpoint: internal
296 - service: identity
297 endpoint: internal
298 - service: oslo_messaging
299 endpoint: internal
300 central:
301 jobs:
302 - designate-db-sync
303 - designate-ks-user
304 - designate-ks-endpoints
305 service:
306 - service: oslo_db
307 endpoint: internal
308 - service: identity
309 endpoint: internal
310 - service: oslo_messaging
311 endpoint: internal
312 worker:
313 jobs:
314 - designate-db-sync
315 - designate-ks-user
316 - designate-ks-endpoints
317 services:
318 - service: oslo_db
319 endpoint: internal
320 - service: identity
321 endpoint: internal
322 - service: mdns
323 endpoint: internal
324 mdns:
325 jobs:
326 - designate-db-sync
327 - designate-ks-user
328 - designate-ks-endpoints
329 services:
330 - service: oslo_db
331 endpoint: internal
332 - service: identity
333 endpoint: internal
334 producer:
335 jobs:
336 - designate-db-sync
337 - designate-ks-user
338 - designate-ks-endpoints
339 services:
340 - service: oslo_db
341 endpoint: internal
342 - service: identity
343 endpoint: internal
344 sink:
345 jobs:
346 - designate-db-sync
347 - designate-ks-user
348 - designate-ks-endpoints
349 services:
350 - service: oslo_db
351 endpoint: internal
352 - service: identity
353 endpoint: internal
354
355conf:
356 pools: |
357 - name: default
358 # The name is immutable. There will be no option to change the name after
359 # creation and the only way will to change it will be to delete it
360 # (and all zones associated with it) and recreate it.
361 description: Default Pool
362
363 attributes: {}
364
365 # List out the NS records for zones hosted within this pool
366 # This should be a record that is created outside of designate, that
367 # points to the public IP of the controller node.
368 ns_records:
369 - hostname: {{ printf "ns.%s.svc.%s." .Release.Namespace .Values.endpoints.cluster_domain_suffix }}
370 priority: 1
371
372 # List out the nameservers for this pool. These are the actual DNS servers.
373 # We use these to verify changes have propagated to all nameservers.
374 nameservers:
375 - host: ${POWERDNS_SERVICE_HOST}
376 port: {{ tuple "powerdns" "internal" "powerdns" . | include "helm-toolkit.endpoints.endpoint_port_lookup" }}
377
378 # List out the targets for this pool. For BIND there will be one
379 # entry for each BIND server, as we have to run rndc command on each server
380 targets:
381 - type: pdns4
382 description: PowerDNS Server
383
384 # List out the designate-mdns servers from which PowerDNS servers should
385 # request zone transfers (AXFRs) from.
386 # This should be the IP of the controller node.
387 # If you have multiple controllers you can add multiple masters
388 # by running designate-mdns on them, and adding them here.
389 masters:
390 - host: ${MINIDNS_SERVICE_HOST}
391 port: {{ tuple "mdns" "internal" "ipc" . | include "helm-toolkit.endpoints.endpoint_port_lookup" }}
392
393 # PowerDNS Configuration options
394 options:
395 host: ${POWERDNS_SERVICE_HOST}
396 port: {{ tuple "powerdns" "internal" "powerdns" . | include "helm-toolkit.endpoints.endpoint_port_lookup" }}
397 api_endpoint: http://${POWERDNS_SERVICE_HOST}:{{ tuple "powerdns" "internal" "powerdns_api" . | include "helm-toolkit.endpoints.endpoint_port_lookup" }}
398 api_token: {{ tuple "powerdns" "service" . | include "helm-toolkit.endpoints.endpoint_token_lookup" }}
399 paste:
400 composite:osapi_dns:
401 use: egg:Paste#urlmap
402 /: osapi_dns_versions
403 /v2: osapi_dns_v2
404 /admin: osapi_dns_admin
405 composite:osapi_dns_versions:
406 use: call:designate.api.middleware:auth_pipeline_factory
407 noauth: http_proxy_to_wsgi cors maintenance faultwrapper osapi_dns_app_versions
408 keystone: http_proxy_to_wsgi cors maintenance faultwrapper osapi_dns_app_versions
409 app:osapi_dns_app_versions:
410 paste.app_factory: designate.api.versions:factory
411 composite:osapi_dns_v2:
412 use: call:designate.api.middleware:auth_pipeline_factory
413 noauth: http_proxy_to_wsgi cors request_id faultwrapper validation_API_v2 noauthcontext maintenance normalizeuri osapi_dns_app_v2
414 keystone: http_proxy_to_wsgi cors request_id faultwrapper validation_API_v2 authtoken keystonecontext maintenance normalizeuri osapi_dns_app_v2
415 app:osapi_dns_app_v2:
416 paste.app_factory: designate.api.v2:factory
417 composite:osapi_dns_admin:
418 use: call:designate.api.middleware:auth_pipeline_factory
419 noauth: http_proxy_to_wsgi cors request_id faultwrapper noauthcontext maintenance normalizeuri osapi_dns_app_admin
420 keystone: http_proxy_to_wsgi cors request_id faultwrapper authtoken keystonecontext maintenance normalizeuri osapi_dns_app_admin
421 app:osapi_dns_app_admin:
422 paste.app_factory: designate.api.admin:factory
423 filter:cors:
424 paste.filter_factory: oslo_middleware.cors:filter_factory
425 oslo_config_project: designate
426 filter:request_id:
427 paste.filter_factory: oslo_middleware:RequestId.factory
428 filter:http_proxy_to_wsgi:
429 paste.filter_factory: oslo_middleware:HTTPProxyToWSGI.factory
430 filter:noauthcontext:
431 paste.filter_factory: designate.api.middleware:NoAuthContextMiddleware.factory
432 filter:authtoken:
433 paste.filter_factory: keystonemiddleware.auth_token:filter_factory
434 filter:keystonecontext:
435 paste.filter_factory: designate.api.middleware:KeystoneContextMiddleware.factory
436 filter:maintenance:
437 paste.filter_factory: designate.api.middleware:MaintenanceMiddleware.factory
438 filter:normalizeuri:
439 paste.filter_factory: designate.api.middleware:NormalizeURIMiddleware.factory
440 filter:faultwrapper:
441 paste.filter_factory: designate.api.middleware:FaultWrapperMiddleware.factory
442 filter:validation_API_v2:
443 paste.filter_factory: designate.api.middleware:APIv2ValidationErrorMiddleware.factory
Mohammed Naserbcdd25c2023-01-18 03:38:47 +0000[diff] [blame]444 policy: {}
Mohammed Naserf3f59a72023-01-15 21:02:04 -0500[diff] [blame]445 designate:
446 DEFAULT:
447 debug: false
448 log_config_append: /etc/designate/logging.conf
449 service:api:
450 auth_strategy: keystone
451 enable_api_v2: true
452 enable_api_admin: true
453 enabled_extensions_v2: quotas,reports
454 workers: 2
455 service:worker:
456 enabled: true
457 notify: false
458 oslo_middleware:
459 enable_proxy_headers_parsing: true
460 oslo_policy:
461 policy_file: /etc/designate/policy.yaml
462 database:
463 max_retries: -1
464 storage:sqlalchemy:
465 max_retries: -1
466 keystone_authtoken:
467 auth_version: v3
468 auth_type: password
469 memcache_security_strategy: ENCRYPT
470 logging:
471 loggers:
472 keys:
473 - root
474 - designate
475 handlers:
476 keys:
477 - stdout
478 - stderr
479 - "null"
480 formatters:
481 keys:
482 - context
483 - default
484 logger_root:
485 level: WARNING
486 handlers: 'null'
487 logger_designate:
488 level: INFO
489 handlers:
490 - stdout
491 qualname: designate
492 logger_amqp:
493 level: WARNING
494 handlers: stderr
495 qualname: amqp
496 logger_amqplib:
497 level: WARNING
498 handlers: stderr
499 qualname: amqplib
500 logger_eventletwsgi:
501 level: WARNING
502 handlers: stderr
503 qualname: eventlet.wsgi.server
504 logger_sqlalchemy:
505 level: WARNING
506 handlers: stderr
507 qualname: sqlalchemy
508 logger_boto:
509 level: WARNING
510 handlers: stderr
511 qualname: boto
512 handler_null:
513 class: logging.NullHandler
514 formatter: default
515 args: ()
516 handler_stdout:
517 class: StreamHandler
518 args: (sys.stdout,)
519 formatter: context
520 handler_stderr:
521 class: StreamHandler
522 args: (sys.stderr,)
523 formatter: context
524 formatter_context:
525 class: oslo_log.formatters.ContextFormatter
526 datefmt: "%Y-%m-%d %H:%M:%S"
527 formatter_default:
528 format: "%(message)s"
529 datefmt: "%Y-%m-%d %H:%M:%S"
530
531# Names of secrets used by bootstrap and environmental checks
532secrets:
533 identity:
534 admin: designate-keystone-admin
535 designate: designate-keystone-user
536 test: designate-keystone-test
537 oslo_db:
538 admin: designate-db-admin
539 designate: designate-db-user
540 oslo_messaging:
541 admin: designate-rabbitmq-admin
542 designate: designate-rabbitmq-user
543 tls:
544 dns:
545 api:
546 public: designate-tls-public
547 oci_image_registry:
548 designate: designate-oci-image-registry
549
550endpoints:
551 cluster_domain_suffix: cluster.local
552 local_image_registry:
553 name: docker-registry
554 namespace: docker-registry
555 hosts:
556 default: localhost
557 internal: docker-registry
558 node: localhost
559 host_fqdn_override:
560 default: null
561 port:
562 registry:
563 node: 5000
564 oci_image_registry:
565 name: oci-image-registry
566 namespace: oci-image-registry
567 auth:
568 enabled: false
569 designate:
570 username: designate
571 password: password
572 hosts:
573 default: localhost
574 host_fqdn_override:
575 default: null
576 port:
577 registry:
578 default: null
579 identity:
580 name: keystone
581 auth:
582 admin:
583 region_name: RegionOne
584 username: admin
585 password: password
586 project_name: admin
587 user_domain_name: default
588 project_domain_name: default
589 designate:
590 role: admin
591 region_name: RegionOne
592 username: designate
593 password: password
594 project_name: service
595 user_domain_name: service
596 project_domain_name: service
597 test:
598 role: admin
599 region_name: RegionOne
600 username: designate-test
601 password: password
602 project_name: test
603 user_domain_name: service
604 project_domain_name: service
605 hosts:
606 default: keystone
607 internal: keystone-api
608 host_fqdn_override:
609 default: null
610 path:
611 default: /v3
612 scheme:
613 default: http
614 port:
615 api:
616 default: 80
617 internal: 5000
618 dns:
619 name: designate
620 hosts:
621 default: designate-api
622 public: designate
623 host_fqdn_override:
624 default: null
625 path:
626 default: /
627 scheme:
628 default: 'http'
629 port:
630 api:
631 default: 9001
632 public: 80
633 mdns:
634 name: minidns
635 hosts:
636 default: minidns
637 public: designate-mdns
638 host_fqdn_override:
639 default: null
640 path:
641 default: null
642 scheme:
643 default: 'tcp'
644 port:
645 ipc:
646 default: 5354
647 oslo_db:
648 auth:
649 admin:
650 username: root
651 password: password
652 designate:
653 username: designate
654 password: password
655 hosts:
656 default: mariadb
657 host_fqdn_override:
658 default: null
659 path: /designate
660 scheme: mysql+pymysql
661 port:
662 mysql:
663 default: 3306
664 oslo_cache:
665 hosts:
666 default: memcached
667 host_fqdn_override:
668 default: null
669 port:
670 memcache:
671 default: 11211
672 auth:
673 # NOTE: this is used to define the value for keystone
674 # authtoken cache encryption key, if not set it will be populated
675 # automatically with a random value, but to take advantage of
676 # this feature all services should be set to use the same key,
677 # and memcache service.
678 memcache_secret_key: null
679 oslo_messaging:
680 auth:
681 admin:
682 username: rabbitmq
683 password: password
684 designate:
685 username: designate
686 password: password
687 statefulset:
688 replicas: 2
689 name: rabbitmq-rabbitmq
690 hosts:
691 default: rabbitmq
692 host_fqdn_override:
693 default: null
694 path: /designate
695 scheme: rabbit
696 port:
697 amqp:
698 default: 5672
699 http:
700 default: 15672
701 powerdns:
702 auth:
703 service:
704 token: chiave_segreta
705 hosts:
706 default: powerdns
707 host_fqdn_override:
708 default: null
709 port:
710 powerdns_api:
711 default: 8081
712 powerdns:
713 default: 53
714
715manifests:
716 configmap_bin: true
717 configmap_etc: true
718 deployment_api: true
719 deployment_central: true
720 deployment_worker: true
721 deployment_producer: true
722 deployment_mdns: true
723 deployment_sink: false
724 ingress_api: true
725 job_bootstrap: true
726 job_db_init: true
727 job_db_sync: true
728 job_ks_endpoints: true
729 job_ks_service: true
730 job_ks_user: true
731 job_rabbit_init: true
732 pdb_api: true
733 pdb_producer: true
734 pdb_central: true
735 pdb_worker: true
736 pdb_mdns: true
737 pdb_sink: false
738 secret_db: true
739 secret_ingress_tls: true
740 secret_keystone: true
741 secret_rabbitmq: true
742 secret_registry: true
743 service_api: true
744 service_mdns: true
745 service_ingress_api: true
746...