-
-
Notifications
You must be signed in to change notification settings - Fork 2
Expand file tree
/
Copy pathvalues.yaml
More file actions
355 lines (350 loc) · 11.4 KB
/
values.yaml
File metadata and controls
355 lines (350 loc) · 11.4 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
351
352
353
354
355
# Default values
# This is a YAML-formatted file.
# Declare variables to be passed into your templates.
global:
# -- Bootstrap job for external MongoDB: creates users and grants privileges
externalMongoDefinitions:
# -- Enable or disable the MongoDB bootstrap job
enabled: false
# -- MongoDB connection settings
connection:
# -- MongoDB host
host: "plugin-fees-mongodb"
# -- MongoDB port
port: "27017"
# -- Admin credentials for MongoDB (rootUser from bitnami subchart)
mongoAdminLogin:
useExistingSecret:
# -- Name of existing secret containing MONGO_ROOT_USER and MONGO_ROOT_PASSWORD keys
name: ""
# -- Admin username (ignored if useExistingSecret.name is set)
username: "plugin-fees"
# -- Admin password (ignored if useExistingSecret.name is set)
password: "lerian"
# -- Credentials for plugin-fees user created by the job
pluginFeesCredentials:
useExistingSecret:
# -- Name of existing secret containing MONGO_APP_USER and MONGO_APP_PASSWORD keys
name: ""
# -- App username (ignored if useExistingSecret.name is set)
username: "plugin-fees"
# -- Password for plugin-fees user (ignored if useExistingSecret.name is set)
password: "lerian"
# -- List of roles to grant to the user. Each item is a {role, db} pair.
roles:
- role: "readWrite"
db: "plugin-fees-db"
fees:
replicaCount: 1
name: "plugin-fees"
description: "Plugin Fees for Midaz"
# -- Number of old ReplicaSets to retain for deployment rollback
revisionHistoryLimit: 10
image:
# -- Repository for the container image
repository: ghcr.io/lerianstudio/plugin-fees
# -- Image pull policy
pullPolicy: Always
# -- Image tag used for deployment
tag: "3.1.0"
# -- Secrets for pulling images from a private registry
imagePullSecrets:
- name: regcred
# -- Overrides the default generated name by Helm
nameOverride: ""
# -- Overrides the full name generated by Helm
fullnameOverride: ""
ingress:
# -- Enable or disable ingress
enabled: false
# -- Ingress class name
className: ""
# -- Additional ingress annotations
annotations: {}
hosts:
- host: ""
paths:
- path: /
pathType: Prefix
# -- TLS configuration for ingress
tls: []
# - secretName: chart-example-tls
# hosts:
# - chart-example.local
service:
# -- Kubernetes service type
type: ClusterIP
# -- Service port
port: 4002
deploymentStrategy:
type: RollingUpdate
rollingUpdate:
maxSurge: 1
maxUnavailable: 1
podSecurityContext: {}
# fsGroup: 2000
securityContext:
# -- Defines the group ID for the user running the process inside the container
runAsGroup: 1000
# -- Defines the user ID for the process running inside the container
runAsUser: 1000
# -- Ensures the process does not run as root
runAsNonRoot: true
capabilities:
drop:
- ALL
# -- Defines the root filesystem as read-only
readOnlyRootFilesystem: true
pdb:
# -- Enable or disable PodDisruptionBudget
enabled: true
# -- Maximum number of unavailable pods
maxUnavailable: 1
# -- Minimum number of available pods
minAvailable: 0
# -- Annotations for PodDisruptionBudget
annotations: {}
resources:
# -- CPU and memory limits for pods
limits:
cpu: 200m
memory: 256Mi
# -- Minimum CPU and memory requests
requests:
cpu: 100m
memory: 128Mi
autoscaling:
# -- Enable or disable horizontal pod autoscaling
enabled: true
# -- Minimum number of replicas
minReplicas: 1
# -- Maximum number of replicas
maxReplicas: 3
# -- Target CPU utilization percentage for autoscaling
targetCPUUtilizationPercentage: 80
targetMemoryUtilizationPercentage: 80
# -- Node selector for scheduling pods on specific nodes
nodeSelector: {}
# -- Tolerations for scheduling on tainted nodes
tolerations: {}
# -- Affinity rules for pod scheduling
affinity: {}
# nodeAffinity:
# requiredDuringSchedulingIgnoredDuringExecution:
# nodeSelectorTerms:
# - matchExpressions:
# - key: midaz.io/owner
# operator: In
# values:
# - midaz
# podAffinity:
# requiredDuringSchedulingIgnoredDuringExecution:
# - labelSelector:
# matchExpressions: []
# topologyKey: kubernetes.io/hostname
# -- ConfigMap for environment variables and configurations
# -- All environment variables are declared in the templates/configmap.yaml
# @default -- templates/configmap.yaml
configmap:
# -- Default Environment
ENV_NAME: "development"
PLUGIN_AUTH_ENABLED: "false"
PLUGIN_AUTH_ADDRESS: "http://plugin-access-manager-auth:4000"
MONGO_HOST: "plugin-fees-mongodb.midaz-plugins.svc.cluster.local"
MONGO_NAME: "plugin-fees-db"
MONGO_PORT: "27017"
MONGO_USER: "plugin-fees"
MONGO_PARAMETERS: ""
MONGO_TLS_CA_CERT: ""
MONGO_MIN_POOL_SIZE: "10"
MONGO_MAX_CONN_IDLE_TIME_SECONDS: "300"
CLIENT_ID: "ac56c81d4d6d95c0ac12"
MIDAZ_TRANSACTION_URL: "http://midaz-transaction.midaz.svc.cluster.local:3002/v1/"
CORS_ALLOW_ORIGINS: "http://localhost:3000"
RATE_LIMIT_MAX: "100"
RATE_LIMIT_WINDOW_SECONDS: "60"
DEFAULT_CURRENCY: "BRL"
PACKAGE_CACHE_ENABLED: "true"
PACKAGE_CACHE_TTL_SECONDS: "180"
BILLING_PACKAGE_CACHE_ENABLED: "true"
BILLING_PACKAGE_CACHE_TTL_SECONDS: "180"
ACCOUNT_CACHE_ENABLED: "true"
ACCOUNT_CACHE_TTL_SECONDS: "300"
TRUSTED_PROXIES: ""
# -- Enable multi-tenant support via tenant-manager
MULTI_TENANT_ENABLED: "false"
# -- URL of the tenant-manager service (required when MULTI_TENANT_ENABLED=true)
MULTI_TENANT_URL: ""
# -- Environment label sent to tenant-manager for tenant scoping
MULTI_TENANT_ENVIRONMENT: ""
# -- Maximum number of per-tenant MongoDB connection pools
MULTI_TENANT_MAX_TENANT_POOLS: "100"
# -- Seconds before an idle tenant connection pool is released
MULTI_TENANT_IDLE_TIMEOUT_SEC: "300"
# -- Number of failures before the circuit breaker opens
MULTI_TENANT_CIRCUIT_BREAKER_THRESHOLD: "5"
# -- Seconds the circuit breaker stays open before retrying
MULTI_TENANT_CIRCUIT_BREAKER_TIMEOUT_SEC: "30"
# -- Interval in seconds to re-check tenant-manager settings
# -- Hostname of the Redis/Valkey instance used for tenant cache
MULTI_TENANT_REDIS_HOST: ""
# -- Port of the Redis/Valkey instance
MULTI_TENANT_REDIS_PORT: "6379"
# -- Enable TLS for the Redis/Valkey connection
MULTI_TENANT_REDIS_TLS: "false"
extraEnvVars: {}
# -- Secrets for storing sensitive data
# -- All secrets are declared in the templates/secrets.yaml
# @default -- templates/secrets.yaml
useExistingSecret: false
existingSecretName: ""
# -- Default sensitive variables for the plugin-fees
secrets:
MONGO_PASSWORD: "lerian"
CLIENT_SECRET: "6add4bc64f394456a77fa85708ad8c9b67e39e4c"
LICENSE_KEY: ""
ORGANIZATION_IDS: ""
# -- API key used to authenticate with the tenant-manager service (required when MULTI_TENANT_ENABLED=true)
MULTI_TENANT_SERVICE_API_KEY: ""
# -- Password for the Redis/Valkey instance used by the multi-tenant cache (required when MULTI_TENANT_ENABLED=true)
MULTI_TENANT_REDIS_PASSWORD: ""
frontend:
# -- Service name
name: plugin-fees-ui
# -- Enable or disable the frontend service
enabled: true
# -- Number of old ReplicaSets to retain for deployment rollback
revisionHistoryLimit: 10
# -- Number of replicas for the deployment
replicaCount: 1
image:
# -- Repository for the frontend service container image
repository: ghcr.io/lerianstudio/plugin-fees-frontend
# -- Image pull policy
pullPolicy: IfNotPresent
# -- Image tag used for deployment
tag: "3.0.0"
# -- Secrets for pulling images from a private registry
imagePullSecrets: []
# -- Overrides the default generated name by Helm
nameOverride: ""
# -- Overrides the full name generated by Helm
fullnameOverride: ""
# -- Annotations to be added to the Pod
podAnnotations: {}
podSecurityContext: {}
# fsGroup: 2000
securityContext:
# -- Defines the group ID for the user running the process inside the container
runAsGroup: 0
# -- Defines the user ID for the process running inside the container
runAsUser: 0
# -- Ensures the process does not run as root
runAsNonRoot: false
capabilities:
drop:
- ALL
# -- Defines the root filesystem as read-only
readOnlyRootFilesystem: false
# -- PodDisruptionBudget configuration
pdb:
# -- Enable or disable PodDisruptionBudget
enabled: false
# -- Minimum number of available pods
minAvailable: 1
# -- Maximum number of unavailable pods
maxUnavailable: 1
# -- Annotations for the PodDisruptionBudget
annotations: {}
# -- Deployment update strategy
deploymentUpdate:
# -- Type of deployment strategy
type: RollingUpdate
# -- Maximum number of pods that can be created over the desired number of pods
maxSurge: 100%
# -- Maximum number of pods that can be unavailable during the update
maxUnavailable: 0
service:
# -- Kubernetes service type
type: ClusterIP
# -- Service port
port: 8084
ingress:
# -- Enable or disable ingress
enabled: false
# -- Ingress class name
className: ""
# -- Additional ingress annotations
annotations: {}
hosts:
- host: ""
paths:
- path: /
pathType: Prefix
# -- TLS configuration for ingress
tls: []
# - secretName: chart-example-tls
# hosts:
# - chart-example.local
resources:
# -- CPU and memory limits for pods
limits:
cpu: 200m
memory: 256Mi
# -- Minimum CPU and memory requests
requests:
cpu: 100m
memory: 128Mi
autoscaling:
# -- Enable or disable horizontal pod autoscaling
enabled: false
# -- Minimum number of replicas
minReplicas: 1
# -- Maximum number of replicas
maxReplicas: 3
# -- Target CPU utilization percentage for autoscaling
targetCPUUtilizationPercentage: 80
targetMemoryUtilizationPercentage: 80
# -- Node selector for scheduling pods on specific nodes
nodeSelector: {}
# -- Tolerations for scheduling on tainted nodes
tolerations: {}
# -- Affinity rules for pod scheduling
affinity: {}
# nodeAffinity:
# requiredDuringSchedulingIgnoredDuringExecution:
# nodeSelectorTerms:
# - matchExpressions:
# - key: midaz.io/owner
# operator: In
# values:
# - midaz
# -- ConfigMap for environment variables and configurations
# @default -- templates/frontend/configmap.yaml
configmap: {}
# Extra Env Vars
extraEnvVars: {}
# -- Secrets for storing sensitive data
# @default -- templates/frontend/secrets.yaml
secrets: {}
serviceAccount:
# -- Specifies whether a ServiceAccount should be created
create: true
# -- Annotations for the ServiceAccount
annotations: {}
# -- Name of the service account
# @default -- `plugin-fees-frontend.fullname`
name: ""
mongodb:
# MongoDB’s flexibility and scalability make it the perfect choice for managing evolving and less structured data.
enabled: true
external: false
auth:
enabled: true
rootUser: "plugin-fees"
rootPassword: "lerian"
persistence:
size: 8Gi
resourcesPreset: "medium"
otel-collector-lerian:
enabled: true