Gitiles
Code Review Sign In
review.vexxhost.dev / atmosphere / cf8424d7fef7246f6e4c23be52b02e10c1d01659 / . / charts / octavia / values.yaml
blob: 8ba4e7b138a4dba2c2f1a9327fffefd04725cb5d [file] [log] [blame]
Mohammed Naserf3f59a72023-01-15 21:02:04 -0500[diff] [blame]1# Copyright 2019 Samsung Electronics Co., Ltd.
2#
3# Licensed under the Apache License, Version 2.0 (the "License");
4# you may not use this file except in compliance with the License.
5# You may obtain a copy of the License at
6#
7# http://www.apache.org/licenses/LICENSE-2.0
8#
9# Unless required by applicable law or agreed to in writing, software
10# distributed under the License is distributed on an "AS IS" BASIS,
11# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
12# See the License for the specific language governing permissions and
13# limitations under the License.
14
15# Default values for octavia.
16# This is a YAML-formatted file.
17# Declare name/value pairs to be passed into your templates.
18# name: value
19
20---
21release_group: null
22
23labels:
24 api:
25 node_selector_key: openstack-control-plane
26 node_selector_value: enabled
27 worker:
28 node_selector_key: openstack-control-plane
29 node_selector_value: enabled
30 housekeeping:
31 node_selector_key: openstack-control-plane
32 node_selector_value: enabled
33 health_manager:
34 node_selector_key: openstack-control-plane
35 node_selector_value: enabled
36 job:
37 node_selector_key: openstack-control-plane
38 node_selector_value: enabled
39
40images:
41 tags:
42 test: docker.io/xrally/xrally-openstack:2.0.0
43 bootstrap: docker.io/openstackhelm/heat:ocata
44 db_init: docker.io/openstackhelm/heat:ocata
45 octavia_db_sync: docker.io/loci/octavia:master-ubuntu
46 db_drop: docker.io/openstackhelm/heat:ocata
47 rabbit_init: docker.io/rabbitmq:3.7-management
48 ks_user: docker.io/openstackhelm/heat:ocata
49 ks_service: docker.io/openstackhelm/heat:ocata
50 ks_endpoints: docker.io/openstackhelm/heat:ocata
51 dep_check: quay.io/airshipit/kubernetes-entrypoint:v1.0.0
52 image_repo_sync: docker.io/docker:17.07.0
53 octavia_api: docker.io/loci/octavia:master-ubuntu
54 octavia_worker: docker.io/loci/octavia:master-ubuntu
55 octavia_housekeeping: docker.io/loci/octavia:master-ubuntu
56 octavia_health_manager: docker.io/loci/octavia:master-ubuntu
57 octavia_health_manager_init: docker.io/kolla/ubuntu-source-octavia-health-manager:rocky
58 openvswitch_vswitchd: docker.io/kolla/centos-source-openvswitch-vswitchd:rocky
59 pull_policy: "IfNotPresent"
60 local_registry:
61 active: false
62 exclude:
63 - dep_check
64 - image_repo_sync
65
66bootstrap:
67 enabled: true
68 ks_user: admin
69 script: |
70 openstack role create --or-show load-balancer_admin
71 openstack role create --or-show load-balancer_observer
72 openstack role create --or-show load-balancer_global_observer
73 openstack role create --or-show load-balancer_quota_admin
74 openstack role create --or-show load-balancer_member
75
76network:
77 api:
78 ingress:
79 public: true
80 classes:
81 namespace: "nginx"
82 cluster: "nginx-cluster"
83 annotations:
84 nginx.ingress.kubernetes.io/rewrite-target: /
85 external_policy_local: false
86 node_port:
87 enabled: false
88 port: 30826
89
90dependencies:
91 dynamic:
92 common:
93 local_image_registry:
94 jobs:
95 - heat-image-repo-sync
96 services:
97 - endpoint: node
98 service: local_image_registry
99 static:
100 api:
101 jobs:
102 - octavia-db-sync
103 - octavia-ks-user
104 - octavia-ks-endpoints
105 - octavia-rabbit-init
106 services:
107 - endpoint: internal
108 service: oslo_db
109 - endpoint: internal
110 service: identity
111 - endpoint: internal
112 service: oslo_messaging
113 - endpoint: internal
114 service: oslo_cache
115 - endpoint: internal
116 service: network
117 worker:
118 jobs:
119 - octavia-db-sync
120 - octavia-ks-user
121 - octavia-ks-endpoints
122 - octavia-rabbit-init
123 services:
124 - endpoint: internal
125 service: oslo_db
126 - endpoint: internal
127 service: identity
128 - endpoint: internal
129 service: oslo_messaging
130 - endpoint: internal
131 service: oslo_cache
132 - endpoint: internal
133 service: network
134 - endpoint: internal
135 service: load_balancer
136 housekeeping:
137 jobs:
138 - octavia-db-sync
139 - octavia-ks-user
140 - octavia-ks-endpoints
141 - octavia-rabbit-init
142 services:
143 - endpoint: internal
144 service: oslo_db
145 - endpoint: internal
146 service: identity
147 - endpoint: internal
148 service: oslo_messaging
149 - endpoint: internal
150 service: oslo_cache
151 - endpoint: internal
152 service: network
153 - endpoint: internal
154 service: load_balancer
155 health_manager:
156 jobs:
157 - octavia-db-sync
158 - octavia-ks-user
159 - octavia-ks-endpoints
160 - octavia-rabbit-init
161 services:
162 - endpoint: internal
163 service: oslo_db
164 - endpoint: internal
165 service: identity
166 - endpoint: internal
167 service: oslo_messaging
168 - endpoint: internal
169 service: oslo_cache
170 - endpoint: internal
171 service: network
172 - endpoint: internal
173 service: load_balancer
174 db_init:
175 services:
176 - endpoint: internal
177 service: oslo_db
178 db_sync:
179 jobs:
180 - octavia-db-init
181 services:
182 - endpoint: internal
183 service: oslo_db
184 ks_endpoints:
185 jobs:
186 - octavia-ks-service
187 services:
188 - endpoint: internal
189 service: identity
190 ks_service:
191 services:
192 - endpoint: internal
193 service: identity
194 ks_user:
195 services:
196 - endpoint: internal
197 service: identity
198 rabbit_init:
199 services:
200 - endpoint: internal
201 service: oslo_messaging
202 image_repo_sync:
203 services:
204 - endpoint: internal
205 service: local_image_registry
206
207conf:
208 octavia:
209 DEFAULT:
210 log_config_append: /etc/octavia/logging.conf
211 api_settings:
212 api_handler: queue_producer
213 bind_host: 0.0.0.0
214 database:
215 max_retries: -1
216 health_manager:
217 bind_port: 5555
218 bind_ip: 0.0.0.0
219 controller_ip_port_list: 0.0.0.0:5555
220 heartbeat_key: insecure
221 keystone_authtoken:
222 auth_type: password
223 auth_version: v3
224 memcache_security_strategy: ENCRYPT
225 certificates:
226 ca_private_key_passphrase: foobar
227 ca_private_key: /etc/octavia/certs/private/cakey.pem
228 ca_certificate: /etc/octavia/certs/ca_01.pem
229 haproxy_amphora:
230 server_ca: /etc/octavia/certs/ca_01.pem
231 client_cert: /etc/octavia/certs/client.pem
232 base_path: /var/lib/octavia
233 base_cert_dir: /var/lib/octavia/certs
234 connection_max_retries: 1500
235 connection_retry_interval: 1
236 rest_request_conn_timeout: 10
237 rest_request_read_timeout: 120
238 controller_worker:
239 amp_image_owner_id: null
240 amp_secgroup_list: null
241 amp_flavor_id: null
242 amp_boot_network_list: null
243 amp_ssh_key_name: octavia_ssh_key
244 amp_image_tag: amphora
245 network_driver: allowed_address_pairs_driver
246 compute_driver: compute_nova_driver
247 amphora_driver: amphora_haproxy_rest_driver
248 workers: 2
249 amp_active_retries: 100
250 amp_active_wait_sec: 2
251 loadbalancer_topology: SINGLE
252 oslo_messaging:
253 topic: octavia_prov
254 rpc_thread_pool_size: 2
255 oslo_messaging_notifications:
256 driver: messagingv2
257 house_keeping:
258 load_balancer_expiry_age: 3600
259 amphora_expiry_age: 3600
260 service_auth:
261 auth_type: password
262 cafile: ""
263 auth_version: v3
264 memcache_security_strategy: ENCRYPT
265 logging:
266 loggers:
267 keys:
268 - root
269 - octavia
270 handlers:
271 keys:
272 - stdout
273 - stderr
274 - "null"
275 formatters:
276 keys:
277 - context
278 - default
279 logger_root:
280 level: WARNING
281 handlers: 'null'
282 logger_octavia:
283 level: WARNING
284 handlers:
285 - stdout
286 qualname: octavia
287 logger_amqp:
288 level: WARNING
289 handlers: stderr
290 qualname: amqp
291 logger_amqplib:
292 level: WARNING
293 handlers: stderr
294 qualname: amqplib
295 logger_eventletwsgi:
296 level: WARNING
297 handlers: stderr
298 qualname: eventlet.wsgi.server
299 logger_sqlalchemy:
300 level: WARNING
301 handlers: stderr
302 qualname: sqlalchemy
303 logger_boto:
304 level: WARNING
305 handlers: stderr
306 qualname: boto
307 handler_null:
308 class: logging.NullHandler
309 formatter: default
310 args: ()
311 handler_stdout:
312 class: StreamHandler
313 args: (sys.stdout,)
314 formatter: context
315 handler_stderr:
316 class: StreamHandler
317 args: (sys.stderr,)
318 formatter: context
319 formatter_context:
320 class: oslo_log.formatters.ContextFormatter
321 formatter_default:
322 format: "%(message)s"
323 rabbitmq:
324 # NOTE(rk760n): adding rmq policy to mirror messages from notification queues and set expiration time for the ones
325 policies:
326 - vhost: "octavia"
327 name: "ha_ttl_octavia"
328 definition:
329 # mirror messges to other nodes in rmq cluster
330 ha-mode: "all"
331 ha-sync-mode: "automatic"
332 # 70s
333 message-ttl: 70000
334 priority: 0
335 apply-to: all
336 pattern: '(notifications)\.'
337
338secrets:
339 identity:
340 admin: octavia-keystone-admin
341 octavia: octavia-keystone-user
342 test: octavia-keystone-test
343 oslo_db:
344 admin: octavia-db-admin
345 octavia: octavia-db-user
346 oslo_messaging:
347 admin: octavia-rabbitmq-admin
348 octavia: octavia-rabbitmq-user
349 tls:
350 load_balancer:
351 api:
352 public: octavia-tls-public
353
354endpoints:
355 cluster_domain_suffix: cluster.local
356 local_image_registry:
357 name: docker-registry
358 namespace: docker-registry
359 hosts:
360 default: localhost
361 internal: docker-registry
362 node: localhost
363 host_fqdn_override:
364 default: null
365 port:
366 registry:
367 node: 5000
368 identity:
369 name: keystone
370 auth:
371 admin:
372 region_name: RegionOne
373 username: admin
374 password: password
375 project_name: admin
376 user_domain_name: default
377 project_domain_name: default
378 octavia:
379 role: admin
380 region_name: RegionOne
381 username: octavia
382 password: password
383 project_name: service
384 user_domain_name: service
385 project_domain_name: service
386 test:
387 role: admin
388 region_name: RegionOne
389 username: test
390 password: password
391 project_name: test
392 user_domain_name: service
393 project_domain_name: service
394 hosts:
395 default: keystone
396 internal: keystone-api
397 host_fqdn_override:
398 default: null
399 path:
400 default: /v3
401 scheme:
402 default: 'http'
403 port:
404 api:
405 default: 80
406 internal: 5000
407 load_balancer:
408 name: octavia
409 hosts:
410 default: octavia-api
411 public: octavia
412 host_fqdn_override:
413 default: null
414 path:
415 default: null
416 scheme:
417 default: http
418 port:
419 api:
420 default: 9876
421 public: 80
422 oslo_db:
423 auth:
424 admin:
425 username: root
426 password: password
427 octavia:
428 username: octavia
429 password: password
430 hosts:
431 default: mariadb
432 host_fqdn_override:
433 default: null
434 path: /octavia
435 scheme: mysql+pymysql
436 port:
437 mysql:
438 default: 3306
439 oslo_cache:
440 auth:
441 # NOTE(portdirect): this is used to define the value for keystone
442 # authtoken cache encryption key, if not set it will be populated
443 # automatically with a random value, but to take advantage of
444 # this feature all services should be set to use the same key,
445 # and memcache service.
446 memcache_secret_key: null
447 hosts:
448 default: memcached
449 host_fqdn_override:
450 default: null
451 port:
452 memcache:
453 default: 11211
454 oslo_messaging:
455 auth:
456 admin:
457 username: rabbitmq
458 password: password
459 octavia:
460 username: octavia
461 password: password
462 statefulset:
463 replicas: 2
464 name: rabbitmq-rabbitmq
465 hosts:
466 default: rabbitmq
467 host_fqdn_override:
468 default: null
469 path: /octavia
470 scheme: rabbit
471 port:
472 amqp:
473 default: 5672
474 http:
475 default: 15672
476 network:
477 name: neutron
478 hosts:
479 default: neutron-server
480 public: neutron
481 host_fqdn_override:
482 default: null
483 path:
484 default: null
485 scheme:
486 default: 'http'
487 port:
488 api:
489 default: 9696
490 public: 80
491
492pod:
493 user:
494 octavia:
495 uid: 42424
496 affinity:
497 anti:
498 type:
499 default: preferredDuringSchedulingIgnoredDuringExecution
500 topologyKey:
501 default: kubernetes.io/hostname
502 mounts:
503 octavia_api:
504 init_container: null
505 octavia_api:
506 volumeMounts:
507 volumes:
508 octavia_worker:
509 init_container: null
510 octavia_worker:
511 volumeMounts:
512 volumes:
513 octavia_housekeeping:
514 init_container: null
515 octavia_housekeeping:
516 volumeMounts:
517 volumes:
518 octavia_health_manager:
519 init_container: null
520 octavia_health_manager:
521 volumeMounts:
522 volumes:
523 octavia_bootstrap:
524 init_container: null
525 octavia_bootstrap:
526 volumeMounts:
527 volumes:
528 replicas:
529 api: 1
530 worker: 1
531 housekeeping: 1
532 lifecycle:
533 upgrades:
534 deployments:
535 revision_history: 3
536 pod_replacement_strategy: RollingUpdate
537 rolling_update:
538 max_unavailable: 1
539 max_surge: 3
540 daemonsets:
541 pod_replacement_strategy: RollingUpdate
542 health_manager:
543 enabled: true
544 min_ready_seconds: 0
545 max_unavailable: 1
546 disruption_budget:
547 api:
548 min_available: 0
549 termination_grace_period:
550 api:
551 timeout: 30
552 resources:
553 enabled: false
554 api:
555 requests:
556 memory: "128Mi"
557 cpu: "100m"
558 limits:
559 memory: "1024Mi"
560 cpu: "2000m"
561 worker:
562 requests:
563 memory: "128Mi"
564 cpu: "100m"
565 limits:
566 memory: "1024Mi"
567 cpu: "2000m"
568 housekeeping:
569 requests:
570 memory: "128Mi"
571 cpu: "100m"
572 limits:
573 memory: "1024Mi"
574 cpu: "2000m"
575 health_manager:
576 requests:
577 memory: "128Mi"
578 cpu: "100m"
579 limits:
580 memory: "1024Mi"
581 cpu: "2000m"
582 jobs:
583 bootstrap:
584 requests:
585 memory: "128Mi"
586 cpu: "100m"
587 limits:
588 memory: "1024Mi"
589 cpu: "2000m"
590 rabbit_init:
591 requests:
592 memory: "128Mi"
593 cpu: "100m"
594 limits:
595 memory: "1024Mi"
596 cpu: "2000m"
597 db_init:
598 requests:
599 memory: "128Mi"
600 cpu: "100m"
601 limits:
602 memory: "1024Mi"
603 cpu: "2000m"
604 db_sync:
605 requests:
606 memory: "128Mi"
607 cpu: "100m"
608 limits:
609 memory: "1024Mi"
610 cpu: "2000m"
611 db_drop:
612 requests:
613 memory: "128Mi"
614 cpu: "100m"
615 limits:
616 memory: "1024Mi"
617 cpu: "2000m"
618 ks_endpoints:
619 requests:
620 memory: "128Mi"
621 cpu: "100m"
622 limits:
623 memory: "1024Mi"
624 cpu: "2000m"
625 ks_service:
626 requests:
627 memory: "128Mi"
628 cpu: "100m"
629 limits:
630 memory: "1024Mi"
631 cpu: "2000m"
632 ks_user:
633 requests:
634 memory: "128Mi"
635 cpu: "100m"
636 limits:
637 memory: "1024Mi"
638 cpu: "2000m"
639 tests:
640 requests:
641 memory: "128Mi"
642 cpu: "100m"
643 limits:
644 memory: "1024Mi"
645 cpu: "2000m"
646 image_repo_sync:
647 requests:
648 memory: "128Mi"
649 cpu: "100m"
650 limits:
651 memory: "1024Mi"
652 cpu: "2000m"
653
654network_policy:
655 octavia:
656 ingress:
657 - {}
658
659manifests:
660 configmap_bin: true
661 configmap_etc: true
662 daemonset_health_manager: true
663 deployment_api: true
664 deployment_worker: true
665 deployment_housekeeping: true
666 ingress_api: true
667 job_bootstrap: true
668 job_db_init: true
669 job_db_sync: true
670 job_db_drop: false
671 job_image_repo_sync: true
672 job_rabbit_init: true
673 job_ks_endpoints: true
674 job_ks_service: true
675 job_ks_user: true
676 pdb_api: true
677 pod_rally_test: false
678 network_policy: false
679 secret_credential_keys: true
680 secret_db: true
681 secret_ingress_tls: true
682 secret_keystone: true
683 secret_rabbitmq: true
684 service_ingress_api: true
685 service_api: true
686...