software-engineering/policy-service
2
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
20d5e869756e817e162f16877ad92f4f127bb5ed
policy-service/ops/chart/values.yaml
HaimKortovich 20d5e86975
Some checks failed
Build and Publish / build-release (push) Failing after 1m49s
Details
refactor auth
2026-05-13 13:04:31 -05:00

286 lines
7.8 KiB
YAML
Raw Blame History

controllers:
main:
enabled: true
type: deployment
replicas: 1
initContainers:
migrate:
image:
repository: gitea.corredorconect.com/software-engineering/policy-service
tag: '{{ $.Chart.AppVersion }}'
command:
- "/bin/policy_service"
args:
- "eval"
- "PolicyService.Release.migrate"
env:
MIX_ENV: prod
SECRET_KEY_BASE:
valueFrom:
secretKeyRef:
name: '{{ include "bjw-s.common.lib.chart.names.fullname" $ }}-secrets'
key: secretKeyBase
RELEASE_COOKIE:
valueFrom:
secretKeyRef:
name: '{{ include "bjw-s.common.lib.chart.names.fullname" $ }}-secrets'
key: cookie
DATABASE_URL:
valueFrom:
secretKeyRef:
name: '{{ include "bjw-s.common.lib.chart.names.fullname" $ }}-cluster-pg-app'
key: uri
containers:
main:
image:
repository: gitea.corredorconect.com/software-engineering/policy-service
tag: '{{ $.Chart.AppVersion }}'
env:
LOG_LEVEL: debug
MIX_ENV: prod
PORT: "8080"
CORS_ORIGIN:
value: "*"
PHX_HOST: "0.0.0.0"
PHX_SERVER: "true"
RABBITMQ_HOST:
value: "rabbitmq.rabbitmq.svc.cluster.local"
RABBITMQ_VHOST:
value: "application"
RABBITMQ_USERNAME:
valueFrom:
secretKeyRef:
name: '{{ include "bjw-s.common.lib.chart.names.fullname" $ }}-rabbitmq-user-user-credentials'
key: username
RABBITMQ_PASSWORD:
valueFrom:
secretKeyRef:
name: '{{ include "bjw-s.common.lib.chart.names.fullname" $ }}-rabbitmq-user-user-credentials'
key: password
RELEASE_COOKIE:
valueFrom:
secretKeyRef:
name: '{{ include "bjw-s.common.lib.chart.names.fullname" $ }}-secrets'
key: cookie
SECRET_KEY_BASE:
valueFrom:
secretKeyRef:
name: '{{ include "bjw-s.common.lib.chart.names.fullname" $ }}-secrets'
key: secretKeyBase
DATABASE_URL:
valueFrom:
secretKeyRef:
name: '{{ include "bjw-s.common.lib.chart.names.fullname" $ }}-cluster-pg-app'
key: uri
# Zitadel Configuration
ZITADEL_ISSUER:
value: "https://id.corredorconect.com"
ZITADEL_CLIENT_ID:
valueFrom:
secretKeyRef:
name: '{{ include "bjw-s.common.lib.chart.names.fullname" $ }}-apiapp-client-secret'
key: clientId
ZITADEL_CLIENT_SECRET:
valueFrom:
secretKeyRef:
name: '{{ include "bjw-s.common.lib.chart.names.fullname" $ }}-apiapp-client-secret'
key: clientSecret
ZITADEL_PROJECT_ID:
valueFrom:
secretKeyRef:
name: '{{ include "bjw-s.common.lib.chart.names.fullname" $ }}-apiapp-client-secret'
key: projectId
probes:
liveness:
enabled: true
custom: true
spec:
httpGet:
path: /health
port: 8080
initialDelaySeconds: 30
periodSeconds: 10
readiness:
enabled: true
custom: true
spec:
httpGet:
path: /health/ready
port: 8080
initialDelaySeconds: 5
periodSeconds: 5
# resources:
# requests:
# cpu: 100m
# memory: 256Mi
# limits:
# cpu: 500m
# memory: 512Mi
service:
main:
controller: main
type: ClusterIP
ports:
http:
port: 8080
protocol: HTTP
rawResources:
rabbitmq-user:
enabled: true
apiVersion: rabbitmq.com/v1beta1
kind: User
sufix: rabbitmq-user
spec:
spec:
rabbitmqClusterReference:
name: rabbitmq
namespace: rabbitmq
tags:
- administrator
rabbitmq-user-permission:
enabled: true
apiVersion: rabbitmq.com/v1beta1
kind: Permission
sufix: rabbitmq-user-permission
spec:
spec:
rabbitmqClusterReference:
name: rabbitmq
namespace: rabbitmq
vhost: "application"
userReference:
name: '{{ include "bjw-s.common.lib.chart.names.fullname" $ }}-rabbitmq-user'
permissions:
write: ".*"
configure: ".*"
read: ".*"
exchange-quote-requested:
enabled: true
apiVersion: rabbitmq.com/v1beta1
kind: Exchange
suffix: exchange-quote-requested
spec:
spec:
name: policy_service.events.quote_requested
type: topic
durable: true
vhost: "application"
rabbitmqClusterReference:
name: rabbitmq
namespace: rabbitmq
exchange-solicitation-requested:
enabled: true
apiVersion: rabbitmq.com/v1beta1
kind: Exchange
suffix: exchange-solicitation-requested
spec:
spec:
name: policy_service.events.solicitation_requested
type: topic
durable: true
vhost: "application"
rabbitmqClusterReference:
name: rabbitmq
namespace: rabbitmq
exchange-solicitation-task-completed:
enabled: true
apiVersion: rabbitmq.com/v1beta1
kind: Exchange
suffix: exchange-solicitation-task-completed
spec:
spec:
name: workload_service.events.solicitation_task_completed
type: topic
durable: true
vhost: "application"
rabbitmqClusterReference:
name: rabbitmq
namespace: rabbitmq
password-generator:
enabled: true
apiVersion: generators.external-secrets.io/v1alpha1
kind: Password
suffix: password-generator
spec:
spec:
length: 32
noUpper: false
allowRepeat: true
secretKeys:
- cookie
- secretKeyBase
external-secret:
enabled: true
apiVersion: external-secrets.io/v1
kind: ExternalSecret
suffix: secrets
spec:
spec:
refreshInterval: 0s
secretStoreRef:
name: cluster-secrets-store
kind: ClusterSecretStore
target:
name: '{{ include "bjw-s.common.lib.chart.names.fullname" $ }}-secrets'
creationPolicy: Owner
dataFrom:
- sourceRef:
generatorRef:
apiVersion: generators.external-secrets.io/v1alpha1
kind: Password
name: '{{ include "bjw-s.common.lib.chart.names.fullname" $ }}-password-generator'
cluster:
enabled: true
apiVersion: postgresql.cnpg.io/v1
kind: Cluster
suffix: pg
spec:
spec:
description: "PostgreSQL cluster for policy-service"
instances: 1
bootstrap:
initdb:
database: policy_service
owner: policy_service
storage:
size: 5Gi
database:
enabled: true
apiVersion: postgresql.cnpg.io/v1
kind: Database
suffix: database
spec:
spec:
name: policy_service
owner: policy_service
cluster:
name: '{{ include "bjw-s.common.lib.chart.names.fullname" $ }}-cluster-pg'
schemas:
- name: eventstore
owner: policy_service
apiapp:
enabled: true
apiVersion: zitadel.github.com/v1alpha1
kind: APIApp
suffix: apiapp
spec:
spec:
projectRef:
name: seguros-dev
namespace: zitadel-resources-operator
apiAppName: policy-service
authMethodType: API_AUTH_METHOD_TYPE_BASIC
Reference in New Issue View Git Blame Copy Permalink