-
Notifications
You must be signed in to change notification settings - Fork 11
/
values.yaml
128 lines (124 loc) · 4.05 KB
/
values.yaml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
###############################################################
# Copyright (c) 2021 Robert Bosch Manufacturing Solutions GmbH
# Copyright (c) 2021 Contributors to the Eclipse Foundation
#
# See the NOTICE file(s) distributed with this work for additional
# information regarding copyright ownership.
#
# This program and the accompanying materials are made available under the
# terms of the Apache License, Version 2.0 which is available at
# https://www.apache.org/licenses/LICENSE-2.0.
#
# Unless required by applicable law or agreed to in writing, software
# distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
# WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the
# License for the specific language governing permissions and limitations
# under the License.
#
# SPDX-License-Identifier: Apache-2.0
###############################################################
nameOverride:
fullnameOverride:
# enables the default keycloak identity provider
enableKeycloak: false
hub:
image:
registry: docker.io
repository: tractusx/sldt-semantic-hub
# This version property overwrites the default image version. The default image version is the appVersion of the Chart.yaml.
version: ""
imagePullPolicy: IfNotPresent
replicaCount: 1
containerPort: 4242
## Use in-memory triple store that is not persistent
embeddedTripleStore: false
host: minikube
## If 'authentication' is set to false, no OAuth authentication is enforced
authentication: false
# Issuer url for the hub (resource server),
# make sure that the url points to an externally resolvable hostname.
# If no value is committed, and the integrated Keycloak is enabled,
# the K8s internal service name is used, which is a problem, when
# validating the issuer claim in an access token
idpIssuerUri: ""
idpClientId: default-client
## Ignored if 'graphdb.enabled' is set to true
graphdbBaseUrl: http://graphdb:3030
service:
port: 8080
type: ClusterIP
livenessProbe:
failureThreshold: 3
periodSeconds: 3
initialDelaySeconds: 100
readinessProbe:
failureThreshold: 3
periodSeconds: 3
initialDelaySeconds: 100
ingress:
## Enable ingress for the Semantic Hub
enabled: false
## Enable TLS (e.g. by using cert-manager)
tls: true
## The secret name that contains the necessary 'tls.crt' and 'tls.key' entries
## When using cert-manager this secret is created automatically
tlsSecretName: ""
urlPrefix: /semantics/hub
className: ""
annotations: []
resources:
limits:
cpu: 750m
memory: 1024Mi
requests:
cpu: 250m
memory: 1024Mi
graphdb:
## Include Fuski deployment or deploy separately
enabled: false
image: jena-fuseki-docker:4.7.0
imagePullPolicy: IfNotPresent
replicaCount: 1
containerPort: 3030
queryEndpoint: query
updateEndpoint: update
username: admin
password:
javaOptions: "-Xmx1048m -Xms1048m"
args: ["--tdb2", "--update", "--loc", "databases/", "/ds"]
storageClassName: default
storageSize: 50Gi
pvcAccessModes:
- ReadWriteOnce
resources:
limits:
memory: "1024Mi"
requests:
memory: "512Mi"
service:
port: 3030
keycloak:
postgresql:
enabled: false
auth:
adminUser:
adminPassword:
service:
type: ClusterIP
extraVolumes:
- name: init-script-vol
configMap:
name: init-script-vol
# Mounting a keycloak realm configuration file
fullnameOverride: hub-keycloak
extraVolumeMounts:
- mountPath: /opt/keycloak/data/import/default-realm-import.json
subPath: default-realm-import.json
name: init-script-vol
# Using a pre-configured Keycloak with a default realm,
# containing a test client and user with the necessary roles to
# authorize requests to the semantic hub.
# Make sure to remove the '--hostname' property when deploying
# in a non-test scenario
command: ["/bin/sh", "-c"]
args: ["kc.sh import --file /opt/keycloak/data/import/default-realm-import.json; kc.sh start-dev --hostname=registry-keycloak --hostname-strict=false --proxy=edge --proxy=edge"]