UNCLASSIFIED

Skip to content

GitLab

Switch branch/tag
Find file Normal viewHistoryPermalink
values.yaml 2.83 KB
Newer Older
Josh Wolf's avatar
initial commit  
Josh Wolf committed
1 2 3 4 5 6 7 8 9 10 11 12 
# The istio profile to use
profile: default

# The hub to use for the image (note: the image is built as ".Values.hub/<component>:.Values.tag"
hub: registry1.dsop.io/ironbank/opensource/istio

# The tag to use for the image
tag: 1.7.3

# The hostname to use for the default gateway
hostname: bigbang.dev
Ryan Garcia's avatar
[BB-844] - SSO Feature and haproxy addition  
Ryan Garcia committed
13 14 15 
monitoring:
  enabled: true
Josh Wolf's avatar
initial commit  
Josh Wolf committed
16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 
imagePullSecrets:
  []
#  - private-registry

tls:
  credentialName: wildcard-cert
  mode: SIMPLE

extraServers:
  []
# Example below of complete values capable of being set
# NOTE: hosts[] is capable of dynamic templating from the .Values context
#  - port:
#      name: https-other                          # required: must not be equal to "http"
#      protocol: HTTPS
#      number: 443
#    hosts:
#      - "*.sub.{{ .Values.hostname }}"
#    tls:
#      credentialName: "another-credential"       # required
#      mode: SIMPLE

ingressGateway:
  minReplicas: 1
  maxReplicas: 5
adam.toy's avatar
Bumped chart version and changed commented out values so pods can run on...  
adam.toy committed
41
Josh Wolf's avatar
define ingress service type and render based off of that  
Josh Wolf committed
42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 
  type: LoadBalancer
  ports:
    # NOTE: Below are ripped directly from istio gateway helm chart defaults: https://github.com/istio/istio/blob/master/manifests/charts/gateways/istio-ingress/values.yaml
    ## You can add custom gateway ports in user values overrides, but it must include those ports since helm replaces.
    # Note that AWS ELB will by default perform health checks on the first port
    # on this list. Setting this to the health check port will ensure that health
    # checks always work. https://github.com/istio/istio/issues/12503
    - port: 15021
      targetPort: 15021
      name: status-port
      protocol: TCP
      nodePort: 30080
    - port: 80
      targetPort: 8080
      name: http2
      protocol: TCP
      nodePort: 30080
    - port: 443
      targetPort: 8443
      name: https
      protocol: TCP
      nodePort: 30080
    - port: 15012
      targetPort: 15012
      name: tcp-istiod
      protocol: TCP
      nodePort: 30080
    # This is the port where sni routing happens
    - port: 15443
      targetPort: 15443
      name: tls
      protocol: TCP
      nodePort: 30080
Josh Wolf's avatar
initial commit  
Josh Wolf committed
76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 
  serviceAnnotations:
    {}
#    service.beta.kubernetes.io/aws-load-balancer-internal: "true"
#    service.beta.kubernetes.io/azure-load-balancer-internal: "true"

extraIngressGateways:
  []
# Complete example of an additional ingressgateway defined below
#  - name: private-ingressgateway
#    k8s:
#      hpaSpec:
#        minReplicas: 1
#        maxReplicas: 3
#      serviceAnnotations:
#        service.beta.kubernetes.io/aws-load-balancer-internal: "true"

kiali:
  enabled: true

  image:
    name: kiali
    hub: registry1.dsop.io/ironbank/opensource/kiali
    tag: v1.23.0

  dashboard:
    auth:
      strategy: ""

tracing:
  enabled: true

  image:
    name: all-in-one
    hub: registry1.dsop.io/ironbank/opensource/jaegertracing
Ryan Garcia's avatar
[BB-844] - SSO Feature and haproxy addition  
Ryan Garcia committed
110 111 112 113 114 115 116 117 118 
    tag: 1.19.2

sso:
  enabled: false

  namespace: istio-addons-sso
  selector:
    key: protect
    value: keycloak

UNCLASSIFIED