Gitiles
Code Review Sign In
review.vexxhost.dev / atmosphere / bf8c07de6935dc8418501fcd282de7b5e3cecdff / . / charts / designate / values.yaml
blob: 5f85acf598e493ee4dcd09b94a2cad2e9808a6ad [file] [log] [blame]
Mohammed Naserf3f59a72023-01-15 21:02:04 -0500[diff] [blame]1# Licensed under the Apache License, Version 2.0 (the "License");
2# you may not use this file except in compliance with the License.
3# You may obtain a copy of the License at
4#
5# http://www.apache.org/licenses/LICENSE-2.0
6#
7# Unless required by applicable law or agreed to in writing, software
8# distributed under the License is distributed on an "AS IS" BASIS,
9# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
10# See the License for the specific language governing permissions and
11# limitations under the License.
12
13# Default values for designate.
14# This is a YAML-formatted file.
15# Declare name/value pairs to be passed into your templates.
16# name: value
17
18---
19release_group: null
20
21labels:
22 api:
23 node_selector_key: openstack-control-plane
24 node_selector_value: enabled
25 central:
26 node_selector_key: openstack-control-plane
27 node_selector_value: enabled
28 producer:
29 node_selector_key: openstack-control-plane
30 node_selector_value: enabled
31 worker:
32 node_selector_key: openstack-control-plane
33 node_selector_value: enabled
34 job:
35 node_selector_key: openstack-control-plane
36 node_selector_value: enabled
37 mdns:
38 node_selector_key: openstack-control-plane
39 node_selector_value: enabled
40 sink:
41 node_selector_key: openstack-control-plane
42 node_selector_value: enabled
43
44images:
45 tags:
46 bootstrap: docker.io/openstackhelm/heat:wallaby-ubuntu_focal
47 db_init: docker.io/openstackhelm/heat:wallaby-ubuntu_focal
48 db_drop: docker.io/openstackhelm/heat:wallaby-ubuntu_focal
49 rabbit_init: docker.io/rabbitmq:3.7-management
50 ks_user: docker.io/openstackhelm/heat:wallaby-ubuntu_focal
51 ks_service: docker.io/openstackhelm/heat:wallaby-ubuntu_focal
52 ks_endpoints: docker.io/openstackhelm/heat:wallaby-ubuntu_focal
53 dep_check: quay.io/airshipit/kubernetes-entrypoint:v1.0.0
54 designate_db_sync: docker.io/openstackhelm/designate:wallaby-ubuntu_focal
55 designate_api: docker.io/openstackhelm/designate:wallaby-ubuntu_focal
56 designate_central: docker.io/openstackhelm/designate:wallaby-ubuntu_focal
57 designate_mdns: docker.io/openstackhelm/designate:wallaby-ubuntu_focal
58 designate_worker: docker.io/openstackhelm/designate:wallaby-ubuntu_focal
59 designate_producer: docker.io/openstackhelm/designate:wallaby-ubuntu_focal
60 designate_sink: docker.io/openstackhelm/designate:wallaby-ubuntu_focal
61 pull_policy: "IfNotPresent"
62 local_registry:
63 active: false
64 exclude:
65 - dep_check
66 - image_repo_sync
67
68pod:
69 affinity:
70 anti:
71 type:
72 default: preferredDuringSchedulingIgnoredDuringExecution
73 topologyKey:
74 default: kubernetes.io/hostname
75 mounts:
76 designate_api:
77 init_container: null
78 designate_api:
79 volumeMounts:
80 volumes:
81 designate_central:
82 init_container: null
83 designate_central:
84 volumeMounts:
85 volumes:
86 designate_mdns:
87 init_container: null
88 designate_mdns:
89 volumeMounts:
90 volumes:
91 designate_worker:
92 init_container: null
93 designate_worker:
94 volumeMounts:
95 volumes:
96 designate_producer:
97 init_container: null
98 designate_producer:
99 volumeMounts:
100 volumes:
101 designate_sink:
102 init_container: null
103 designate_sink:
104 volumeMounts:
105 volumes:
106 designate_db_sync:
107 designate_db_sync:
108 volumeMounts:
109 volumes:
110 replicas:
111 api: 1
112 central: 1
113 mdns: 1
114 producer: 1
115 sink: 1
116 worker: 1
117 lifecycle:
118 upgrades:
119 deployments:
120 revision_history: 3
121 pod_replacement_strategy: RollingUpdate
122 rolling_update:
123 max_unavailable: 1
124 max_surge: 3
125 disruption_budget:
126 api:
127 min_available: 0
128 central:
129 min_available: 0
130 mdns:
131 min_available: 0
132 worker:
133 min_available: 0
134 producer:
135 min_available: 0
136 sink:
137 min_available: 0
138 termination_grace_period:
139 api:
140 timeout: 30
141 mdns:
142 timeout: 30
143
144 resources:
145 enabled: false
146 api:
147 requests:
148 memory: "128Mi"
149 cpu: "100m"
150 limits:
151 memory: "1024Mi"
152 cpu: "2000m"
153 jobs:
154 bootstrap:
155 requests:
156 memory: "128Mi"
157 cpu: "100m"
158 limits:
159 memory: "1024Mi"
160 cpu: "2000m"
161 db_init:
162 requests:
163 memory: "128Mi"
164 cpu: "100m"
165 limits:
166 memory: "1024Mi"
167 cpu: "2000m"
168 db_sync:
169 requests:
170 memory: "128Mi"
171 cpu: "100m"
172 limits:
173 memory: "1024Mi"
174 cpu: "2000m"
175 ks_endpoints:
176 requests:
177 memory: "128Mi"
178 cpu: "100m"
179 limits:
180 memory: "1024Mi"
181 cpu: "2000m"
182 ks_service:
183 requests:
184 memory: "128Mi"
185 cpu: "100m"
186 limits:
187 memory: "1024Mi"
188 cpu: "2000m"
189 ks_user:
190 requests:
191 memory: "128Mi"
192 cpu: "100m"
193 limits:
194 memory: "1024Mi"
195 cpu: "2000m"
196 rabbit_init:
197 requests:
198 memory: "128Mi"
199 cpu: "100m"
200 limits:
201 memory: "1024Mi"
202 cpu: "2000m"
203 tests:
204 requests:
205 memory: "128Mi"
206 cpu: "100m"
207 limits:
208 memory: "1024Mi"
209 cpu: "2000m"
210
211network:
212 api:
213 ingress:
214 public: true
215 classes:
216 namespace: "nginx"
217 cluster: "nginx-cluster"
218 annotations:
219 nginx.ingress.kubernetes.io/rewrite-target: /
220 external_policy_local: false
221 node_port:
222 enabled: false
223 port: 9001
224 mdns:
225 name: "designate-mdns"
226 proto: "http"
227 external_policy_local: false
228 node_port:
229 enabled: true
230 port: 5354
231
232bootstrap:
233 enabled: false
234 script: |
235 openstack token issue
236
237dependencies:
238 dynamic:
239 common:
240 local_image_registry:
241 jobs:
242 - designate-image-repo-sync
243 services:
244 - endpoint: node
245 service: local_image_registry
246 job_rabbit_init:
247 api:
248 jobs:
249 - designate-rabbit-init
250 sink:
251 jobs:
252 - designate-rabbit-init
253 central:
254 jobs:
255 - designate-rabbit-init
256 worker:
257 jobs:
258 - designate-rabbit-init
259 static:
260 db_init:
261 services:
262 - service: oslo_db
263 endpoint: internal
264 db_sync:
265 jobs:
266 - designate-db-init
267 services:
268 - service: oslo_db
269 endpoint: internal
270 ks_user:
271 services:
272 - service: identity
273 endpoint: internal
274 ks_service:
275 services:
276 - service: identity
277 endpoint: internal
278 ks_endpoints:
279 jobs:
280 - designate-ks-service
281 services:
282 - service: identity
283 endpoint: internal
284 rabbit_init:
285 services:
286 - service: oslo_messaging
287 endpoint: internal
288 api:
289 jobs:
290 - designate-db-sync
291 - designate-ks-user
292 - designate-ks-endpoints
293 service:
294 - service: oslo_db
295 endpoint: internal
296 - service: identity
297 endpoint: internal
298 - service: oslo_messaging
299 endpoint: internal
300 central:
301 jobs:
302 - designate-db-sync
303 - designate-ks-user
304 - designate-ks-endpoints
305 service:
306 - service: oslo_db
307 endpoint: internal
308 - service: identity
309 endpoint: internal
310 - service: oslo_messaging
311 endpoint: internal
312 worker:
313 jobs:
314 - designate-db-sync
315 - designate-ks-user
316 - designate-ks-endpoints
317 services:
318 - service: oslo_db
319 endpoint: internal
320 - service: identity
321 endpoint: internal
322 - service: mdns
323 endpoint: internal
324 mdns:
325 jobs:
326 - designate-db-sync
327 - designate-ks-user
328 - designate-ks-endpoints
329 services:
330 - service: oslo_db
331 endpoint: internal
332 - service: identity
333 endpoint: internal
334 producer:
335 jobs:
336 - designate-db-sync
337 - designate-ks-user
338 - designate-ks-endpoints
339 services:
340 - service: oslo_db
341 endpoint: internal
342 - service: identity
343 endpoint: internal
344 sink:
345 jobs:
346 - designate-db-sync
347 - designate-ks-user
348 - designate-ks-endpoints
349 services:
350 - service: oslo_db
351 endpoint: internal
352 - service: identity
353 endpoint: internal
354
355conf:
356 pools: |
357 - name: default
358 # The name is immutable. There will be no option to change the name after
359 # creation and the only way will to change it will be to delete it
360 # (and all zones associated with it) and recreate it.
361 description: Default Pool
362
363 attributes: {}
364
365 # List out the NS records for zones hosted within this pool
366 # This should be a record that is created outside of designate, that
367 # points to the public IP of the controller node.
368 ns_records:
369 - hostname: {{ printf "ns.%s.svc.%s." .Release.Namespace .Values.endpoints.cluster_domain_suffix }}
370 priority: 1
371
372 # List out the nameservers for this pool. These are the actual DNS servers.
373 # We use these to verify changes have propagated to all nameservers.
374 nameservers:
375 - host: ${POWERDNS_SERVICE_HOST}
376 port: {{ tuple "powerdns" "internal" "powerdns" . | include "helm-toolkit.endpoints.endpoint_port_lookup" }}
377
378 # List out the targets for this pool. For BIND there will be one
379 # entry for each BIND server, as we have to run rndc command on each server
380 targets:
381 - type: pdns4
382 description: PowerDNS Server
383
384 # List out the designate-mdns servers from which PowerDNS servers should
385 # request zone transfers (AXFRs) from.
386 # This should be the IP of the controller node.
387 # If you have multiple controllers you can add multiple masters
388 # by running designate-mdns on them, and adding them here.
389 masters:
390 - host: ${MINIDNS_SERVICE_HOST}
391 port: {{ tuple "mdns" "internal" "ipc" . | include "helm-toolkit.endpoints.endpoint_port_lookup" }}
392
393 # PowerDNS Configuration options
394 options:
395 host: ${POWERDNS_SERVICE_HOST}
396 port: {{ tuple "powerdns" "internal" "powerdns" . | include "helm-toolkit.endpoints.endpoint_port_lookup" }}
397 api_endpoint: http://${POWERDNS_SERVICE_HOST}:{{ tuple "powerdns" "internal" "powerdns_api" . | include "helm-toolkit.endpoints.endpoint_port_lookup" }}
398 api_token: {{ tuple "powerdns" "service" . | include "helm-toolkit.endpoints.endpoint_token_lookup" }}
Oleksandr Kozachenkoc0022be2023-05-23 20:36:21 +0200[diff] [blame]399 paste: {}
Mohammed Naserbcdd25c2023-01-18 03:38:47 +0000[diff] [blame]400 policy: {}
Mohammed Naserf3f59a72023-01-15 21:02:04 -0500[diff] [blame]401 designate:
402 DEFAULT:
403 debug: false
404 log_config_append: /etc/designate/logging.conf
405 service:api:
406 auth_strategy: keystone
407 enable_api_v2: true
408 enable_api_admin: true
409 enabled_extensions_v2: quotas,reports
410 workers: 2
411 service:worker:
412 enabled: true
413 notify: false
414 oslo_middleware:
415 enable_proxy_headers_parsing: true
416 oslo_policy:
417 policy_file: /etc/designate/policy.yaml
418 database:
419 max_retries: -1
420 storage:sqlalchemy:
421 max_retries: -1
422 keystone_authtoken:
423 auth_version: v3
424 auth_type: password
425 memcache_security_strategy: ENCRYPT
Oleksandr Kozachenkoc0022be2023-05-23 20:36:21 +0200[diff] [blame]426 service_type: dns
Mohammed Naserf3f59a72023-01-15 21:02:04 -0500[diff] [blame]427 logging:
428 loggers:
429 keys:
430 - root
431 - designate
432 handlers:
433 keys:
434 - stdout
435 - stderr
436 - "null"
437 formatters:
438 keys:
439 - context
440 - default
441 logger_root:
442 level: WARNING
443 handlers: 'null'
444 logger_designate:
445 level: INFO
446 handlers:
447 - stdout
448 qualname: designate
449 logger_amqp:
450 level: WARNING
451 handlers: stderr
452 qualname: amqp
453 logger_amqplib:
454 level: WARNING
455 handlers: stderr
456 qualname: amqplib
457 logger_eventletwsgi:
458 level: WARNING
459 handlers: stderr
460 qualname: eventlet.wsgi.server
461 logger_sqlalchemy:
462 level: WARNING
463 handlers: stderr
464 qualname: sqlalchemy
465 logger_boto:
466 level: WARNING
467 handlers: stderr
468 qualname: boto
469 handler_null:
470 class: logging.NullHandler
471 formatter: default
472 args: ()
473 handler_stdout:
474 class: StreamHandler
475 args: (sys.stdout,)
476 formatter: context
477 handler_stderr:
478 class: StreamHandler
479 args: (sys.stderr,)
480 formatter: context
481 formatter_context:
482 class: oslo_log.formatters.ContextFormatter
483 datefmt: "%Y-%m-%d %H:%M:%S"
484 formatter_default:
485 format: "%(message)s"
486 datefmt: "%Y-%m-%d %H:%M:%S"
487
488# Names of secrets used by bootstrap and environmental checks
489secrets:
490 identity:
491 admin: designate-keystone-admin
492 designate: designate-keystone-user
493 test: designate-keystone-test
494 oslo_db:
495 admin: designate-db-admin
496 designate: designate-db-user
497 oslo_messaging:
498 admin: designate-rabbitmq-admin
499 designate: designate-rabbitmq-user
500 tls:
501 dns:
502 api:
503 public: designate-tls-public
504 oci_image_registry:
505 designate: designate-oci-image-registry
506
507endpoints:
508 cluster_domain_suffix: cluster.local
509 local_image_registry:
510 name: docker-registry
511 namespace: docker-registry
512 hosts:
513 default: localhost
514 internal: docker-registry
515 node: localhost
516 host_fqdn_override:
517 default: null
518 port:
519 registry:
520 node: 5000
521 oci_image_registry:
522 name: oci-image-registry
523 namespace: oci-image-registry
524 auth:
525 enabled: false
526 designate:
527 username: designate
528 password: password
529 hosts:
530 default: localhost
531 host_fqdn_override:
532 default: null
533 port:
534 registry:
535 default: null
536 identity:
537 name: keystone
538 auth:
539 admin:
540 region_name: RegionOne
541 username: admin
542 password: password
543 project_name: admin
544 user_domain_name: default
545 project_domain_name: default
546 designate:
547 role: admin
548 region_name: RegionOne
549 username: designate
550 password: password
551 project_name: service
552 user_domain_name: service
553 project_domain_name: service
554 test:
555 role: admin
556 region_name: RegionOne
557 username: designate-test
558 password: password
559 project_name: test
560 user_domain_name: service
561 project_domain_name: service
562 hosts:
563 default: keystone
564 internal: keystone-api
565 host_fqdn_override:
566 default: null
567 path:
568 default: /v3
569 scheme:
570 default: http
571 port:
572 api:
573 default: 80
574 internal: 5000
575 dns:
576 name: designate
577 hosts:
578 default: designate-api
579 public: designate
580 host_fqdn_override:
581 default: null
582 path:
583 default: /
584 scheme:
585 default: 'http'
586 port:
587 api:
588 default: 9001
589 public: 80
590 mdns:
591 name: minidns
592 hosts:
593 default: minidns
594 public: designate-mdns
595 host_fqdn_override:
596 default: null
597 path:
598 default: null
599 scheme:
600 default: 'tcp'
601 port:
602 ipc:
603 default: 5354
604 oslo_db:
605 auth:
606 admin:
607 username: root
608 password: password
609 designate:
610 username: designate
611 password: password
612 hosts:
613 default: mariadb
614 host_fqdn_override:
615 default: null
616 path: /designate
617 scheme: mysql+pymysql
618 port:
619 mysql:
620 default: 3306
621 oslo_cache:
622 hosts:
623 default: memcached
624 host_fqdn_override:
625 default: null
626 port:
627 memcache:
628 default: 11211
629 auth:
630 # NOTE: this is used to define the value for keystone
631 # authtoken cache encryption key, if not set it will be populated
632 # automatically with a random value, but to take advantage of
633 # this feature all services should be set to use the same key,
634 # and memcache service.
635 memcache_secret_key: null
636 oslo_messaging:
637 auth:
638 admin:
639 username: rabbitmq
640 password: password
641 designate:
642 username: designate
643 password: password
644 statefulset:
645 replicas: 2
646 name: rabbitmq-rabbitmq
647 hosts:
648 default: rabbitmq
649 host_fqdn_override:
650 default: null
651 path: /designate
652 scheme: rabbit
653 port:
654 amqp:
655 default: 5672
656 http:
657 default: 15672
658 powerdns:
659 auth:
660 service:
661 token: chiave_segreta
662 hosts:
663 default: powerdns
664 host_fqdn_override:
665 default: null
666 port:
667 powerdns_api:
668 default: 8081
669 powerdns:
670 default: 53
671
672manifests:
673 configmap_bin: true
674 configmap_etc: true
675 deployment_api: true
676 deployment_central: true
677 deployment_worker: true
678 deployment_producer: true
679 deployment_mdns: true
680 deployment_sink: false
681 ingress_api: true
682 job_bootstrap: true
683 job_db_init: true
684 job_db_sync: true
685 job_ks_endpoints: true
686 job_ks_service: true
687 job_ks_user: true
688 job_rabbit_init: true
689 pdb_api: true
690 pdb_producer: true
691 pdb_central: true
692 pdb_worker: true
693 pdb_mdns: true
694 pdb_sink: false
695 secret_db: true
696 secret_ingress_tls: true
697 secret_keystone: true
698 secret_rabbitmq: true
699 secret_registry: true
700 service_api: true
701 service_mdns: true
702 service_ingress_api: true
703...