NOTES.txt

Thank you for supporting PlatformOne!

{{ if $.Values.addons.gitlab.enabled }}
Gitlab is enabled.
Please follow the Gitlab online documentation for proper configuration.
This BigBang chart provides convenient enhancements to the Gitlab Package helm chart.
If you enable these features certain settings will be defaulted for you and any required secrets will be automatically created.
You should point to your cloud provider's RDS and object storage.
Gitlab will not provision storage for you. You will need to provision the database and the S3 buckets.
Here is an example of how to configure your deployment.

addons:
  gitlab:
    enabled: true
    hostnames:
      gitlab: gitlab.example.mil
      registry: registry.example.mil
    sso:
      enabled: true
      label: "Platform One SSO"
      client_id: "platform1_a8604cc9-f5e9-4656-802d-d05624370245_bb8-gitlab"
      client_secret: ""
    database:
      host: postgres.example.mil
      port: 5432
      username: gitlab
      database: gitlab
      password: mysecretpassword
    objectstorage:
      type: s3
      endpoint: https://s3.us-gov-west-1.amazonaws.com
      region: us-gov-west-1
      accessKey: myaccesskey
      accessSecret: mysecretkey
      bucketPrefix: prod

{{ if $.Values.addons.gitlab.objectStorage.endpoint }}
GITLAB: You have enabled Gitlab external object storage.
Here is the list of buckets that you must provision in your s3 service:
{{- if .Values.addons.gitlab.objectStorage.bucketPrefix }}
{{ .Values.addons.gitlab.objectStorage.bucketPrefix }}-gitlab-registry
{{ .Values.addons.gitlab.objectStorage.bucketPrefix }}-gitlab-lfs
{{ .Values.addons.gitlab.objectStorage.bucketPrefix }}-gitlab-artifacts
{{ .Values.addons.gitlab.objectStorage.bucketPrefix }}-gitlab-uploads
{{ .Values.addons.gitlab.objectStorage.bucketPrefix }}-gitlab-packages
{{ .Values.addons.gitlab.objectStorage.bucketPrefix }}-gitlab-mr-diffs
{{ .Values.addons.gitlab.objectStorage.bucketPrefix }}-gitlab-terraform-state
{{ .Values.addons.gitlab.objectStorage.bucketPrefix }}-gitlab-dependency-proxy
{{ .Values.addons.gitlab.objectStorage.bucketPrefix }}-gitlab-pseudo
{{ .Values.addons.gitlab.objectStorage.bucketPrefix }}-gitlab-backup
{{ .Values.addons.gitlab.objectStorage.bucketPrefix }}-gitlab-backup-tmp
{{- else }}
gitlab-registry
gitlab-lfs
gitlab-artifacts
gitlab-uploads
gitlab-packages
gitlab-mr-diffs
gitlab-terraform-state
gitlab-dependency-proxy
gitlab-pseudo
gitlab-backup
gitlab-backup-tmp
{{- end }}
{{- end }}

{{ if $.Values.addons.gitlab.database.host }}
{{ else }}
PLATFORM ONE GITLAB WARNING:
  You have enabled an internal postgres database in the BigBang configuration.
  PlatformOne does not support this option for production deployments because your persistent data can be permanently lost.
  This option should only be used for development or CI pipelines.
{{- end -}}

{{ if $.Values.addons.gitlab.objectStorage.endpoint }}
{{ else }}
PLATFORM ONE GITLAB WARNING:
  You have enabled a MinIO internal service in the BigBang configuration.
  PlatformOne does not support this option for production deployments because your persistent data can be permanently lost.
  This option should only be used for development or CI pipelines.
{{- end }}
{{- end }}

{{- if $.Values.addons.anchore.enabled }}
Anchore is enabled.
{{- if not (and $.Values.addons.anchore.database.host $.Values.addons.anchore.database.port $.Values.addons.anchore.database.username $.Values.addons.anchore.database.password $.Values.addons.anchore.database.database) }}
PLATFORM ONE ANCHORE WARNING:
  You have enabled an internal postgres database (main-db) in the values configuration.
  PlatformOne does not support this option for production deployments.
  This option should only be used for development or CI pipelines.
{{- end }}
{{- if $.Values.addons.anchore.enterprise.enabled }}
{{- if not (and $.Values.addons.anchore.redis.host $.Values.addons.anchore.redis.port $.Values.addons.anchore.redis.password) }}
PLATFORM ONE ANCHORE WARNING:
  You have enabled an internal redis database in the values configuration.
  PlatformOne does not support this option for production deployments.
  This option should only be used for development or CI pipelines.
{{- end }}
{{- if not (and $.Values.addons.anchore.database.host $.Values.addons.anchore.database.port $.Values.addons.anchore.database.username $.Values.addons.anchore.database.password $.Values.addons.anchore.database.feeds_database) }}
PLATFORM ONE ANCHORE WARNING:
  You have enabled an internal postgres database (feeds-db) in the values configuration.
  PlatformOne does not support this option for production deployments.
  This option should only be used for development or CI pipelines.
{{- end }}
{{- end }}
{{- if and ($.Values.addons.anchore.enterprise.enabled) (not $.Values.addons.anchore.enterprise.licenseYaml) }}
PLATFORM ONE ANCHORE WARNING:
  You have enabled an enterprise Anchore in the values configuration, but not provided a license.
  Your deployment will fail without a license, please review your configuration and supply a license
  or disable the enterprise features.
{{- end }}
{{- if and ($.Values.addons.anchore.sso.enabled) (not $.Values.addons.anchore.enterprise.enabled) }}
PLATFORM ONE ANCHORE WARNING:
  You have enabled SSO in the values configuration, but not enabled enterprise Anchore.
  Your SSO configuration will be ignored, the Anchore UI is only available for enterprise deployments.
{{- end }}
{{- end }}

{{- if and $.Values.eckoperator.enabled $.Values.logging.enabled }}
  {{- if $.Values.logging.sso.enabled }}
    {{- if and (not $.Values.logging.license.trial) (not $.Values.logging.license.keyJSON) }}
PLATFORM ONE LOGGING WARNING:
  You have enabled SSO but not provided an enterprise license configuration to use. SSO is not functional without a license.
  Edit the values for the eck-operator to specify a license key JSON or use the trial license for development.
    {{- end }}
  {{- end }}
{{- end }}

{{- if and (or $.Values.promtail.enabled $.Values.loki.enabled) .Values.logging.enabled }}
PLATFORM ONE LOGGING WARNING:
  You have enabled both promtail/loki and efk logging.  This is permitted during beta testing of promtail/loki.
  After the beta period, only one logging stack will be supported at one time, with the PLG stack becoming the default supported stack.
{{- end }}

{{- if and $.Values.loki.enabled (dig "values" "global" "createGlobalConfig" false $.Values.loki) }}
PLATFORM ONE LOKI WARNING:
  You still have Loki global values set but this version of Loki has changed significantly, please review the latest production document within the Loki package repo: https://repo1.dso.mil/platform-one/big-bang/apps/sandbox/loki/-/blob/main/docs/production.md
{{- end }}

{{- if and $.Values.loki.enabled (dig "values" "gel" "enabled" false $.Values.loki) }}
PLATFORM ONE LOKI WARNING:
  You still have Loki gel values set but this version of Loki has changed significantly, please review the latest grafana enterprise document within the Loki package repo: https://repo1.dso.mil/platform-one/big-bang/apps/sandbox/loki/-/blob/main/docs/grafana-enterprise.md
{{- end }}

{{- if and $.Values.jaeger.enabled .Values.tempo.enabled }}
PLATFORM ONE TRACING WARNING:
  You have enabled both Jaeger and Tempo Tracing Engines.  This is permitted during beta testing of Tempo.
  After the beta period, only one Tracing engine will be supported at one time, with Tempo becoming the default supported engine over a direct Jaeger installation. Tempo will deploy with Tempo-Query, a Jaeger frontend with Tempo as the backend.
{{- end }}

{{- if $.Values.addons.mattermost.enabled }}
Mattermost is enabled.
{{- with .Values.addons.mattermost.database }}
{{- if not (and .username .password .host .port .database .ssl_mode) }}
PLATFORM ONE MATTERMOST WARNING:
  You have enabled an internal postgres database in the values configuration.
  PlatformOne does not support this option for production deployments.
  This option should only be used for development or CI pipelines.
{{- end }}
{{- end }}
{{- with .Values.addons.mattermost.objectStorage }}
{{- if not (and .endpoint .accessKey .accessSecret .bucket) }}
PLATFORM ONE MATTERMOST WARNING:
  You have enabled an internal Minio instance in the values configuration.
  PlatformOne does not support this option for production deployments.
  This option should only be used for development or CI pipelines.
{{- end }}
{{- end }}
{{- if and (.Values.addons.mattermost.enterprise.enabled) (not .Values.addons.mattermost.enterprise.license) }}
PLATFORM ONE MATTERMOST WARNING:
  You have enabled enterprise Mattermost in the values configuration, but not provided a license.
  Make sure to go back and edit your values or ensure you add the license through the mattermost settings page.
{{- end }}
{{- end }}

{{- if .Values.hostname }}
DEPRECATION NOTICE:
  The top level yaml key "hostname" has been deprecated and replaced with "domain".
  Please update your values override to use the "domain" key.
{{- end }}

{{- if .Values.addons.nexus }}
DEPRECATION NOTICE:
  .Values.addons.nexus has been deprecated and will be removed in a future Big Bang release.
  Please reconfigure your values overrides to use .Values.addons.nexusRepositoryManager 
{{- end }}

{{- if .Values.addons.mattermostoperator }}
DEPRECATION NOTICE:
  .Values.addons.mattermostoperator has been deprecated and will be removed in a future Big Bang release.
  Please reconfigure your values overrides to use .Values.addons.mattermostOperator 
{{- end }}