Gitiles
Code Review Sign In
review.vexxhost.dev / atmosphere / refs/heads/main / . / charts / octavia / values.yaml
blob: 36fcbf0bc98effc7cb23eaf75617412847e490c6 [file] [log] [blame]
Mohammed Naserf3f59a72023-01-15 21:02:04 -0500[diff] [blame]1# Copyright 2019 Samsung Electronics Co., Ltd.
2#
3# Licensed under the Apache License, Version 2.0 (the "License");
4# you may not use this file except in compliance with the License.
5# You may obtain a copy of the License at
6#
7# http://www.apache.org/licenses/LICENSE-2.0
8#
9# Unless required by applicable law or agreed to in writing, software
10# distributed under the License is distributed on an "AS IS" BASIS,
11# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
12# See the License for the specific language governing permissions and
13# limitations under the License.
14
15# Default values for octavia.
16# This is a YAML-formatted file.
17# Declare name/value pairs to be passed into your templates.
18# name: value
19
20---
21release_group: null
22
23labels:
24 api:
25 node_selector_key: openstack-control-plane
26 node_selector_value: enabled
27 worker:
28 node_selector_key: openstack-control-plane
29 node_selector_value: enabled
30 housekeeping:
31 node_selector_key: openstack-control-plane
32 node_selector_value: enabled
33 health_manager:
34 node_selector_key: openstack-control-plane
35 node_selector_value: enabled
36 job:
37 node_selector_key: openstack-control-plane
38 node_selector_value: enabled
39
40images:
41 tags:
42 test: docker.io/xrally/xrally-openstack:2.0.0
43 bootstrap: docker.io/openstackhelm/heat:ocata
44 db_init: docker.io/openstackhelm/heat:ocata
45 octavia_db_sync: docker.io/loci/octavia:master-ubuntu
46 db_drop: docker.io/openstackhelm/heat:ocata
47 rabbit_init: docker.io/rabbitmq:3.7-management
48 ks_user: docker.io/openstackhelm/heat:ocata
49 ks_service: docker.io/openstackhelm/heat:ocata
50 ks_endpoints: docker.io/openstackhelm/heat:ocata
51 dep_check: quay.io/airshipit/kubernetes-entrypoint:v1.0.0
52 image_repo_sync: docker.io/docker:17.07.0
53 octavia_api: docker.io/loci/octavia:master-ubuntu
54 octavia_worker: docker.io/loci/octavia:master-ubuntu
55 octavia_housekeeping: docker.io/loci/octavia:master-ubuntu
56 octavia_health_manager: docker.io/loci/octavia:master-ubuntu
57 octavia_health_manager_init: docker.io/kolla/ubuntu-source-octavia-health-manager:rocky
58 openvswitch_vswitchd: docker.io/kolla/centos-source-openvswitch-vswitchd:rocky
59 pull_policy: "IfNotPresent"
60 local_registry:
61 active: false
62 exclude:
63 - dep_check
64 - image_repo_sync
65
66bootstrap:
67 enabled: true
68 ks_user: admin
69 script: |
70 openstack role create --or-show load-balancer_admin
71 openstack role create --or-show load-balancer_observer
72 openstack role create --or-show load-balancer_global_observer
73 openstack role create --or-show load-balancer_quota_admin
74 openstack role create --or-show load-balancer_member
75
76network:
77 api:
78 ingress:
79 public: true
80 classes:
81 namespace: "nginx"
82 cluster: "nginx-cluster"
83 annotations:
84 nginx.ingress.kubernetes.io/rewrite-target: /
85 external_policy_local: false
86 node_port:
87 enabled: false
88 port: 30826
89
90dependencies:
91 dynamic:
92 common:
93 local_image_registry:
94 jobs:
95 - heat-image-repo-sync
96 services:
97 - endpoint: node
98 service: local_image_registry
99 static:
100 api:
101 jobs:
102 - octavia-db-sync
103 - octavia-ks-user
104 - octavia-ks-endpoints
105 - octavia-rabbit-init
106 services:
107 - endpoint: internal
108 service: oslo_db
109 - endpoint: internal
110 service: identity
111 - endpoint: internal
112 service: oslo_messaging
113 - endpoint: internal
114 service: oslo_cache
115 - endpoint: internal
116 service: network
117 worker:
118 jobs:
119 - octavia-db-sync
120 - octavia-ks-user
121 - octavia-ks-endpoints
122 - octavia-rabbit-init
123 services:
124 - endpoint: internal
125 service: oslo_db
126 - endpoint: internal
127 service: identity
128 - endpoint: internal
129 service: oslo_messaging
130 - endpoint: internal
131 service: oslo_cache
132 - endpoint: internal
133 service: network
134 - endpoint: internal
135 service: load_balancer
136 housekeeping:
137 jobs:
138 - octavia-db-sync
139 - octavia-ks-user
140 - octavia-ks-endpoints
141 - octavia-rabbit-init
142 services:
143 - endpoint: internal
144 service: oslo_db
145 - endpoint: internal
146 service: identity
147 - endpoint: internal
148 service: oslo_messaging
149 - endpoint: internal
150 service: oslo_cache
151 - endpoint: internal
152 service: network
153 - endpoint: internal
154 service: load_balancer
155 health_manager:
156 jobs:
157 - octavia-db-sync
158 - octavia-ks-user
159 - octavia-ks-endpoints
160 - octavia-rabbit-init
161 services:
162 - endpoint: internal
163 service: oslo_db
164 - endpoint: internal
165 service: identity
166 - endpoint: internal
167 service: oslo_messaging
168 - endpoint: internal
169 service: oslo_cache
170 - endpoint: internal
171 service: network
172 - endpoint: internal
173 service: load_balancer
174 db_init:
175 services:
176 - endpoint: internal
177 service: oslo_db
178 db_sync:
179 jobs:
180 - octavia-db-init
181 services:
182 - endpoint: internal
183 service: oslo_db
184 ks_endpoints:
185 jobs:
186 - octavia-ks-service
187 services:
188 - endpoint: internal
189 service: identity
190 ks_service:
191 services:
192 - endpoint: internal
193 service: identity
194 ks_user:
195 services:
196 - endpoint: internal
197 service: identity
198 rabbit_init:
199 services:
200 - endpoint: internal
201 service: oslo_messaging
202 image_repo_sync:
203 services:
204 - endpoint: internal
205 service: local_image_registry
206
207conf:
208 octavia:
209 DEFAULT:
210 log_config_append: /etc/octavia/logging.conf
211 api_settings:
212 api_handler: queue_producer
213 bind_host: 0.0.0.0
214 database:
215 max_retries: -1
216 health_manager:
217 bind_port: 5555
218 bind_ip: 0.0.0.0
219 controller_ip_port_list: 0.0.0.0:5555
220 heartbeat_key: insecure
221 keystone_authtoken:
222 auth_type: password
223 auth_version: v3
224 memcache_security_strategy: ENCRYPT
ricolinbdde64d2023-08-10 20:12:59 +0800[diff] [blame]225 service_type: load-balancer
Mohammed Naserf3f59a72023-01-15 21:02:04 -0500[diff] [blame]226 certificates:
227 ca_private_key_passphrase: foobar
228 ca_private_key: /etc/octavia/certs/private/cakey.pem
229 ca_certificate: /etc/octavia/certs/ca_01.pem
230 haproxy_amphora:
231 server_ca: /etc/octavia/certs/ca_01.pem
232 client_cert: /etc/octavia/certs/client.pem
233 base_path: /var/lib/octavia
234 base_cert_dir: /var/lib/octavia/certs
Mohammed Naserf3f59a72023-01-15 21:02:04 -0500[diff] [blame]235 controller_worker:
236 amp_image_owner_id: null
237 amp_secgroup_list: null
238 amp_flavor_id: null
239 amp_boot_network_list: null
240 amp_ssh_key_name: octavia_ssh_key
241 amp_image_tag: amphora
242 network_driver: allowed_address_pairs_driver
243 compute_driver: compute_nova_driver
244 amphora_driver: amphora_haproxy_rest_driver
245 workers: 2
246 amp_active_retries: 100
247 amp_active_wait_sec: 2
248 loadbalancer_topology: SINGLE
249 oslo_messaging:
250 topic: octavia_prov
251 rpc_thread_pool_size: 2
252 oslo_messaging_notifications:
253 driver: messagingv2
254 house_keeping:
255 load_balancer_expiry_age: 3600
256 amphora_expiry_age: 3600
257 service_auth:
258 auth_type: password
259 cafile: ""
260 auth_version: v3
261 memcache_security_strategy: ENCRYPT
262 logging:
263 loggers:
264 keys:
265 - root
266 - octavia
267 handlers:
268 keys:
269 - stdout
270 - stderr
271 - "null"
272 formatters:
273 keys:
274 - context
275 - default
276 logger_root:
277 level: WARNING
278 handlers: 'null'
279 logger_octavia:
280 level: WARNING
281 handlers:
282 - stdout
283 qualname: octavia
284 logger_amqp:
285 level: WARNING
286 handlers: stderr
287 qualname: amqp
288 logger_amqplib:
289 level: WARNING
290 handlers: stderr
291 qualname: amqplib
292 logger_eventletwsgi:
293 level: WARNING
294 handlers: stderr
295 qualname: eventlet.wsgi.server
296 logger_sqlalchemy:
297 level: WARNING
298 handlers: stderr
299 qualname: sqlalchemy
300 logger_boto:
301 level: WARNING
302 handlers: stderr
303 qualname: boto
304 handler_null:
305 class: logging.NullHandler
306 formatter: default
307 args: ()
308 handler_stdout:
309 class: StreamHandler
310 args: (sys.stdout,)
311 formatter: context
312 handler_stderr:
313 class: StreamHandler
314 args: (sys.stderr,)
315 formatter: context
316 formatter_context:
317 class: oslo_log.formatters.ContextFormatter
318 formatter_default:
319 format: "%(message)s"
320 rabbitmq:
321 # NOTE(rk760n): adding rmq policy to mirror messages from notification queues and set expiration time for the ones
322 policies:
323 - vhost: "octavia"
324 name: "ha_ttl_octavia"
325 definition:
326 # mirror messges to other nodes in rmq cluster
327 ha-mode: "all"
328 ha-sync-mode: "automatic"
329 # 70s
330 message-ttl: 70000
331 priority: 0
332 apply-to: all
333 pattern: '(notifications)\.'
Oleksandr Kozachenko573b0e52023-10-04 17:38:01 +0200[diff] [blame]334 octavia_api_uwsgi:
335 uwsgi:
336 processes: 4
337 add-header: "Connection: close"
338 buffer-size: 65535
Mohammed Nasercb5d9c32024-04-03 16:19:01 -0400[diff] [blame]339 chunked-input-limit: "4096000"
Oleksandr Kozachenko573b0e52023-10-04 17:38:01 +0200[diff] [blame]340 die-on-term: true
341 enable-threads: true
342 exit-on-reload: false
343 hook-master-start: unix_signal:15 gracefully_kill_them_all
Mohammed Nasercb5d9c32024-04-03 16:19:01 -0400[diff] [blame]344 http-auto-chunked: true
345 http-raw-body: true
Oleksandr Kozachenko573b0e52023-10-04 17:38:01 +0200[diff] [blame]346 lazy-apps: true
347 log-x-forwarded-for: true
348 master: true
Mohammed Nasercb5d9c32024-04-03 16:19:01 -0400[diff] [blame]349 need-app: true
Oleksandr Kozachenko573b0e52023-10-04 17:38:01 +0200[diff] [blame]350 procname-prefix-spaced: "octavia-api:"
351 route-user-agent: '^kube-probe.* donotlog:'
Mohammed Nasercb5d9c32024-04-03 16:19:01 -0400[diff] [blame]352 socket-timeout: 10
Oleksandr Kozachenko573b0e52023-10-04 17:38:01 +0200[diff] [blame]353 thunder-lock: true
354 worker-reload-mercy: 80
355 wsgi-file: /var/lib/openstack/bin/octavia-wsgi
Mohammed Naserf3f59a72023-01-15 21:02:04 -0500[diff] [blame]356
357secrets:
358 identity:
359 admin: octavia-keystone-admin
360 octavia: octavia-keystone-user
361 test: octavia-keystone-test
362 oslo_db:
363 admin: octavia-db-admin
364 octavia: octavia-db-user
365 oslo_messaging:
366 admin: octavia-rabbitmq-admin
367 octavia: octavia-rabbitmq-user
368 tls:
369 load_balancer:
370 api:
371 public: octavia-tls-public
Oleksandr Kozachenkoa10d7852023-02-02 22:01:16 +0100[diff] [blame]372 oci_image_registry:
373 octavia: octavia-oci-image-registry
Mohammed Naserf3f59a72023-01-15 21:02:04 -0500[diff] [blame]374
375endpoints:
376 cluster_domain_suffix: cluster.local
377 local_image_registry:
378 name: docker-registry
379 namespace: docker-registry
380 hosts:
381 default: localhost
382 internal: docker-registry
383 node: localhost
384 host_fqdn_override:
385 default: null
386 port:
387 registry:
388 node: 5000
Oleksandr Kozachenkoa10d7852023-02-02 22:01:16 +0100[diff] [blame]389 oci_image_registry:
390 name: oci-image-registry
391 namespace: oci-image-registry
392 auth:
393 enabled: false
394 octavia:
395 username: octavia
396 password: password
397 hosts:
398 default: localhost
399 host_fqdn_override:
400 default: null
401 port:
402 registry:
403 default: null
Mohammed Naserf3f59a72023-01-15 21:02:04 -0500[diff] [blame]404 identity:
405 name: keystone
406 auth:
407 admin:
408 region_name: RegionOne
409 username: admin
410 password: password
411 project_name: admin
412 user_domain_name: default
413 project_domain_name: default
414 octavia:
415 role: admin
416 region_name: RegionOne
417 username: octavia
418 password: password
419 project_name: service
420 user_domain_name: service
421 project_domain_name: service
422 test:
423 role: admin
424 region_name: RegionOne
425 username: test
426 password: password
427 project_name: test
428 user_domain_name: service
429 project_domain_name: service
430 hosts:
431 default: keystone
432 internal: keystone-api
433 host_fqdn_override:
434 default: null
435 path:
436 default: /v3
437 scheme:
438 default: 'http'
439 port:
440 api:
441 default: 80
442 internal: 5000
443 load_balancer:
444 name: octavia
445 hosts:
446 default: octavia-api
447 public: octavia
448 host_fqdn_override:
449 default: null
450 path:
451 default: null
452 scheme:
453 default: http
454 port:
455 api:
456 default: 9876
457 public: 80
458 oslo_db:
459 auth:
460 admin:
461 username: root
462 password: password
463 octavia:
464 username: octavia
465 password: password
466 hosts:
467 default: mariadb
468 host_fqdn_override:
469 default: null
470 path: /octavia
471 scheme: mysql+pymysql
472 port:
473 mysql:
474 default: 3306
475 oslo_cache:
476 auth:
477 # NOTE(portdirect): this is used to define the value for keystone
478 # authtoken cache encryption key, if not set it will be populated
479 # automatically with a random value, but to take advantage of
480 # this feature all services should be set to use the same key,
481 # and memcache service.
482 memcache_secret_key: null
483 hosts:
484 default: memcached
485 host_fqdn_override:
486 default: null
487 port:
488 memcache:
489 default: 11211
490 oslo_messaging:
491 auth:
492 admin:
493 username: rabbitmq
494 password: password
495 octavia:
496 username: octavia
497 password: password
498 statefulset:
499 replicas: 2
500 name: rabbitmq-rabbitmq
501 hosts:
502 default: rabbitmq
503 host_fqdn_override:
504 default: null
505 path: /octavia
506 scheme: rabbit
507 port:
508 amqp:
509 default: 5672
510 http:
511 default: 15672
512 network:
513 name: neutron
514 hosts:
515 default: neutron-server
516 public: neutron
517 host_fqdn_override:
518 default: null
519 path:
520 default: null
521 scheme:
522 default: 'http'
523 port:
524 api:
525 default: 9696
526 public: 80
527
528pod:
Dong Maa37a7b12025-02-12 02:49:32 +0000[diff] [blame]529 priorityClassName:
530 octavia_health_manager: null
531 octavia_api: null
532 octavia_housekeeping: null
533 octavia_worker: null
Dong Ma36b89222025-02-13 16:15:52 +0000[diff] [blame]534 bootstrap: null
Dong Maa37a7b12025-02-12 02:49:32 +0000[diff] [blame]535 db_sync: null
536 runtimeClassName:
537 octavia_health_manager: null
538 octavia_api: null
539 octavia_housekeeping: null
540 octavia_worker: null
Dong Ma36b89222025-02-13 16:15:52 +0000[diff] [blame]541 bootstrap: null
Dong Maa37a7b12025-02-12 02:49:32 +0000[diff] [blame]542 db_sync: null
Mohammed Naserf3f59a72023-01-15 21:02:04 -0500[diff] [blame]543 user:
544 octavia:
545 uid: 42424
546 affinity:
547 anti:
548 type:
549 default: preferredDuringSchedulingIgnoredDuringExecution
550 topologyKey:
551 default: kubernetes.io/hostname
552 mounts:
553 octavia_api:
554 init_container: null
555 octavia_api:
556 volumeMounts:
557 volumes:
558 octavia_worker:
559 init_container: null
560 octavia_worker:
561 volumeMounts:
562 volumes:
563 octavia_housekeeping:
564 init_container: null
565 octavia_housekeeping:
566 volumeMounts:
567 volumes:
568 octavia_health_manager:
569 init_container: null
570 octavia_health_manager:
571 volumeMounts:
572 volumes:
573 octavia_bootstrap:
574 init_container: null
575 octavia_bootstrap:
576 volumeMounts:
577 volumes:
578 replicas:
579 api: 1
580 worker: 1
581 housekeeping: 1
582 lifecycle:
583 upgrades:
584 deployments:
585 revision_history: 3
586 pod_replacement_strategy: RollingUpdate
587 rolling_update:
588 max_unavailable: 1
589 max_surge: 3
590 daemonsets:
591 pod_replacement_strategy: RollingUpdate
592 health_manager:
593 enabled: true
594 min_ready_seconds: 0
595 max_unavailable: 1
596 disruption_budget:
597 api:
598 min_available: 0
599 termination_grace_period:
600 api:
601 timeout: 30
602 resources:
603 enabled: false
604 api:
605 requests:
606 memory: "128Mi"
607 cpu: "100m"
608 limits:
609 memory: "1024Mi"
610 cpu: "2000m"
611 worker:
612 requests:
613 memory: "128Mi"
614 cpu: "100m"
615 limits:
616 memory: "1024Mi"
617 cpu: "2000m"
618 housekeeping:
619 requests:
620 memory: "128Mi"
621 cpu: "100m"
622 limits:
623 memory: "1024Mi"
624 cpu: "2000m"
625 health_manager:
626 requests:
627 memory: "128Mi"
628 cpu: "100m"
629 limits:
630 memory: "1024Mi"
631 cpu: "2000m"
632 jobs:
633 bootstrap:
634 requests:
635 memory: "128Mi"
636 cpu: "100m"
637 limits:
638 memory: "1024Mi"
639 cpu: "2000m"
640 rabbit_init:
641 requests:
642 memory: "128Mi"
643 cpu: "100m"
644 limits:
645 memory: "1024Mi"
646 cpu: "2000m"
647 db_init:
648 requests:
649 memory: "128Mi"
650 cpu: "100m"
651 limits:
652 memory: "1024Mi"
653 cpu: "2000m"
654 db_sync:
655 requests:
656 memory: "128Mi"
657 cpu: "100m"
658 limits:
659 memory: "1024Mi"
660 cpu: "2000m"
661 db_drop:
662 requests:
663 memory: "128Mi"
664 cpu: "100m"
665 limits:
666 memory: "1024Mi"
667 cpu: "2000m"
668 ks_endpoints:
669 requests:
670 memory: "128Mi"
671 cpu: "100m"
672 limits:
673 memory: "1024Mi"
674 cpu: "2000m"
675 ks_service:
676 requests:
677 memory: "128Mi"
678 cpu: "100m"
679 limits:
680 memory: "1024Mi"
681 cpu: "2000m"
682 ks_user:
683 requests:
684 memory: "128Mi"
685 cpu: "100m"
686 limits:
687 memory: "1024Mi"
688 cpu: "2000m"
689 tests:
690 requests:
691 memory: "128Mi"
692 cpu: "100m"
693 limits:
694 memory: "1024Mi"
695 cpu: "2000m"
696 image_repo_sync:
697 requests:
698 memory: "128Mi"
699 cpu: "100m"
700 limits:
701 memory: "1024Mi"
702 cpu: "2000m"
703
704network_policy:
705 octavia:
706 ingress:
707 - {}
708
709manifests:
710 configmap_bin: true
711 configmap_etc: true
712 daemonset_health_manager: true
713 deployment_api: true
714 deployment_worker: true
715 deployment_housekeeping: true
716 ingress_api: true
717 job_bootstrap: true
718 job_db_init: true
719 job_db_sync: true
720 job_db_drop: false
721 job_image_repo_sync: true
722 job_rabbit_init: true
723 job_ks_endpoints: true
724 job_ks_service: true
725 job_ks_user: true
726 pdb_api: true
727 pod_rally_test: false
728 network_policy: false
729 secret_credential_keys: true
730 secret_db: true
731 secret_ingress_tls: true
732 secret_keystone: true
733 secret_rabbitmq: true
Oleksandr Kozachenkoa10d7852023-02-02 22:01:16 +0100[diff] [blame]734 secret_registry: true
Mohammed Naserf3f59a72023-01-15 21:02:04 -0500[diff] [blame]735 service_ingress_api: true
736 service_api: true
737...