117 lines
3.0 KiB
YAML
117 lines
3.0 KiB
YAML
## Reference to one or more secrets to be used when pulling images
|
|
## ref: https://kubernetes.io/docs/tasks/configure-pod-container/pull-image-private-registry/
|
|
imagePullSecrets: []
|
|
# - name: "image-pull-secret"
|
|
|
|
## Operator
|
|
operator:
|
|
# Name that will be assigned to most of internal Kubernetes objects like
|
|
# Deployment, ServiceAccount, Role etc.
|
|
name: mongodb-kubernetes-operator
|
|
|
|
# Name of the operator image
|
|
operatorImageName: mongodb-kubernetes-operator
|
|
|
|
# Name of the deployment of the operator pod
|
|
deploymentName: mongodb-kubernetes-operator
|
|
|
|
# Version of mongodb-kubernetes-operator
|
|
version: 0.8.1
|
|
|
|
# Uncomment this line to watch all namespaces
|
|
# watchNamespace: "*"
|
|
|
|
# Resources allocated to Operator Pod
|
|
resources:
|
|
limits:
|
|
cpu: 1100m
|
|
memory: 1Gi
|
|
requests:
|
|
cpu: 500m
|
|
memory: 200Mi
|
|
|
|
# Additional environment variables
|
|
extraEnvs: []
|
|
# environment:
|
|
# - name: CLUSTER_DOMAIN
|
|
# value: my-cluster.domain
|
|
|
|
podSecurityContext:
|
|
runAsNonRoot: true
|
|
runAsUser: 2000
|
|
|
|
securityContext: {}
|
|
|
|
## Operator's database
|
|
database:
|
|
name: mongodb-database
|
|
# set this to the namespace where you would like
|
|
# to deploy the MongoDB database,
|
|
# Note if the database namespace is not same
|
|
# as the operator namespace,
|
|
# make sure to set "watchNamespace" to "*"
|
|
# to ensure that the operator has the
|
|
# permission to reconcile resources in other namespaces
|
|
# namespace: mongodb-database
|
|
|
|
agent:
|
|
name: mongodb-agent
|
|
version: 12.0.24.7719-1
|
|
versionUpgradeHook:
|
|
name: mongodb-kubernetes-operator-version-upgrade-post-start-hook
|
|
version: 1.0.7
|
|
readinessProbe:
|
|
name: mongodb-kubernetes-readinessprobe
|
|
version: 1.0.15
|
|
mongodb:
|
|
name: mongo
|
|
repo: docker.io
|
|
|
|
registry:
|
|
agent: quay.io/mongodb
|
|
versionUpgradeHook: quay.io/mongodb
|
|
readinessProbe: quay.io/mongodb
|
|
operator: quay.io/mongodb
|
|
pullPolicy: Always
|
|
|
|
# Set to false if CRDs have been installed already. The CRDs can be installed
|
|
# manually from the code repo: github.com/mongodb/mongodb-kubernetes-operator or
|
|
# using the `community-operator-crds` Helm chart.
|
|
community-operator-crds:
|
|
enabled: true
|
|
|
|
# Deploys MongoDB with `resource` attributes.
|
|
createResource: false
|
|
resource:
|
|
name: mongodb-replica-set
|
|
version: 4.4.0
|
|
members: 3
|
|
tls:
|
|
enabled: false
|
|
|
|
# Installs Cert-Manager in this cluster.
|
|
useCertManager: true
|
|
certificateKeySecretRef: tls-certificate
|
|
caCertificateSecretRef: tls-ca-key-pair
|
|
certManager:
|
|
certDuration: 8760h # 365 days
|
|
renewCertBefore: 720h # 30 days
|
|
|
|
users: []
|
|
# if using the MongoDBCommunity Resource, list any users to be added to the resource
|
|
# users:
|
|
# - name: my-user
|
|
# db: admin
|
|
# passwordSecretRef: # a reference to the secret that will be used to generate the user's password
|
|
# name: <secretName>
|
|
# roles:
|
|
# - name: clusterAdmin
|
|
# db: admin
|
|
# - name: userAdminAnyDatabase
|
|
# db: admin
|
|
# - name: readWriteAnyDatabase
|
|
# db: admin
|
|
# - name: dbAdminAnyDatabase
|
|
# db: admin
|
|
# scramCredentialsSecretName: my-scram
|