HaimKortovich
1fc2b50fbc
All checks were successful
Build and Publish / build-release (push) Successful in 1m24s
238 lines
6.4 KiB
YAML
238 lines
6.4 KiB
YAML
controllers:
|
|
main:
|
|
enabled: true
|
|
type: deployment
|
|
replicas: 1
|
|
initContainers:
|
|
migrate:
|
|
image:
|
|
repository: gitea.corredorconect.com/software-engineering/policy-service
|
|
tag: '{{ $.Chart.AppVersion }}'
|
|
command:
|
|
- "/bin/policy_service"
|
|
args:
|
|
- "eval"
|
|
- "PolicyService.Release.migrate"
|
|
env:
|
|
MIX_ENV: prod
|
|
SECRET_KEY_BASE:
|
|
valueFrom:
|
|
secretKeyRef:
|
|
name: '{{ include "bjw-s.common.lib.chart.names.fullname" $ }}-secrets'
|
|
key: secretKeyBase
|
|
RELEASE_COOKIE:
|
|
valueFrom:
|
|
secretKeyRef:
|
|
name: '{{ include "bjw-s.common.lib.chart.names.fullname" $ }}-secrets'
|
|
key: cookie
|
|
DATABASE_URL:
|
|
valueFrom:
|
|
secretKeyRef:
|
|
name: '{{ include "bjw-s.common.lib.chart.names.fullname" $ }}-cluster-pg-app'
|
|
key: uri
|
|
containers:
|
|
main:
|
|
image:
|
|
repository: gitea.corredorconect.com/software-engineering/policy-service
|
|
tag: '{{ $.Chart.AppVersion }}'
|
|
env:
|
|
LOG_LEVEL: debug
|
|
MIX_ENV: prod
|
|
PORT: "8080"
|
|
CORS_ORIGIN:
|
|
value: "*"
|
|
PHX_HOST: "0.0.0.0"
|
|
PHX_SERVER: "true"
|
|
RABBITMQ_HOST:
|
|
value: "rabbitmq.rabbitmq.svc.cluster.local"
|
|
RABBITMQ_VHOST:
|
|
value: "application"
|
|
RABBITMQ_USERNAME:
|
|
valueFrom:
|
|
secretKeyRef:
|
|
name: '{{ include "bjw-s.common.lib.chart.names.fullname" $ }}-rabbitmq-user-user-credentials'
|
|
key: username
|
|
RABBITMQ_PASSWORD:
|
|
valueFrom:
|
|
secretKeyRef:
|
|
name: '{{ include "bjw-s.common.lib.chart.names.fullname" $ }}-rabbitmq-user-user-credentials'
|
|
key: password
|
|
RELEASE_COOKIE:
|
|
valueFrom:
|
|
secretKeyRef:
|
|
name: '{{ include "bjw-s.common.lib.chart.names.fullname" $ }}-secrets'
|
|
key: cookie
|
|
SECRET_KEY_BASE:
|
|
valueFrom:
|
|
secretKeyRef:
|
|
name: '{{ include "bjw-s.common.lib.chart.names.fullname" $ }}-secrets'
|
|
key: secretKeyBase
|
|
DATABASE_URL:
|
|
valueFrom:
|
|
secretKeyRef:
|
|
name: '{{ include "bjw-s.common.lib.chart.names.fullname" $ }}-cluster-pg-app'
|
|
key: uri
|
|
probes:
|
|
liveness:
|
|
enabled: true
|
|
custom: true
|
|
spec:
|
|
httpGet:
|
|
path: /health
|
|
port: 8080
|
|
initialDelaySeconds: 30
|
|
periodSeconds: 10
|
|
readiness:
|
|
enabled: true
|
|
custom: true
|
|
spec:
|
|
httpGet:
|
|
path: /health/ready
|
|
port: 8080
|
|
initialDelaySeconds: 5
|
|
periodSeconds: 5
|
|
# resources:
|
|
# requests:
|
|
# cpu: 100m
|
|
# memory: 256Mi
|
|
# limits:
|
|
# cpu: 500m
|
|
# memory: 512Mi
|
|
|
|
service:
|
|
main:
|
|
controller: main
|
|
type: ClusterIP
|
|
ports:
|
|
http:
|
|
port: 8080
|
|
protocol: HTTP
|
|
|
|
rawResources:
|
|
rabbitmq-user:
|
|
enabled: true
|
|
apiVersion: rabbitmq.com/v1beta1
|
|
kind: User
|
|
sufix: rabbitmq-user
|
|
spec:
|
|
spec:
|
|
rabbitmqClusterReference:
|
|
name: rabbitmq
|
|
namespace: rabbitmq
|
|
tags:
|
|
- administrator
|
|
|
|
rabbitmq-user-permission:
|
|
enabled: true
|
|
apiVersion: rabbitmq.com/v1beta1
|
|
kind: Permission
|
|
sufix: rabbitmq-user-permission
|
|
spec:
|
|
spec:
|
|
rabbitmqClusterReference:
|
|
name: rabbitmq
|
|
namespace: rabbitmq
|
|
vhost: "application"
|
|
userReference:
|
|
name: '{{ include "bjw-s.common.lib.chart.names.fullname" $ }}-rabbitmq-user'
|
|
permissions:
|
|
write: ".*"
|
|
configure: ".*"
|
|
read: ".*"
|
|
|
|
exchange-quote-requested:
|
|
enabled: true
|
|
apiVersion: rabbitmq.com/v1beta1
|
|
kind: Exchange
|
|
suffix: exchange-quote-requested
|
|
spec:
|
|
spec:
|
|
name: policy_service.events.quote_requested
|
|
type: topic
|
|
durable: true
|
|
vhost: "application"
|
|
rabbitmqClusterReference:
|
|
name: rabbitmq
|
|
namespace: rabbitmq
|
|
|
|
exchange-solictation-requested:
|
|
enabled: true
|
|
apiVersion: rabbitmq.com/v1beta1
|
|
kind: Exchange
|
|
suffix: exchange-solicitation-requested
|
|
spec:
|
|
spec:
|
|
name: policy_service.events.solictation_requested
|
|
type: topic
|
|
durable: true
|
|
vhost: "application"
|
|
rabbitmqClusterReference:
|
|
name: rabbitmq
|
|
namespace: rabbitmq
|
|
|
|
password-generator:
|
|
enabled: true
|
|
apiVersion: generators.external-secrets.io/v1alpha1
|
|
kind: Password
|
|
suffix: password-generator
|
|
spec:
|
|
spec:
|
|
length: 32
|
|
noUpper: false
|
|
allowRepeat: true
|
|
secretKeys:
|
|
- cookie
|
|
- secretKeyBase
|
|
|
|
external-secret:
|
|
enabled: true
|
|
apiVersion: external-secrets.io/v1
|
|
kind: ExternalSecret
|
|
suffix: secrets
|
|
spec:
|
|
spec:
|
|
refreshInterval: 0s
|
|
secretStoreRef:
|
|
name: cluster-secrets-store
|
|
kind: ClusterSecretStore
|
|
target:
|
|
name: '{{ include "bjw-s.common.lib.chart.names.fullname" $ }}-secrets'
|
|
creationPolicy: Owner
|
|
dataFrom:
|
|
- sourceRef:
|
|
generatorRef:
|
|
apiVersion: generators.external-secrets.io/v1alpha1
|
|
kind: Password
|
|
name: '{{ include "bjw-s.common.lib.chart.names.fullname" $ }}-password-generator'
|
|
|
|
cluster:
|
|
enabled: true
|
|
apiVersion: postgresql.cnpg.io/v1
|
|
kind: Cluster
|
|
suffix: pg
|
|
spec:
|
|
spec:
|
|
description: "PostgreSQL cluster for policy-service"
|
|
instances: 1
|
|
bootstrap:
|
|
initdb:
|
|
database: policy_service
|
|
owner: policy_service
|
|
storage:
|
|
size: 5Gi
|
|
|
|
database:
|
|
enabled: true
|
|
apiVersion: postgresql.cnpg.io/v1
|
|
kind: Database
|
|
suffix: database
|
|
spec:
|
|
spec:
|
|
name: policy_service
|
|
owner: policy_service
|
|
cluster:
|
|
name: '{{ include "bjw-s.common.lib.chart.names.fullname" $ }}-cluster-pg'
|
|
schemas:
|
|
- name: eventstore
|
|
owner: policy_service
|