andata
/
rancher-partner-charts
mirror of https://git.rancher.io/partner-charts
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
rancher-partner-charts/charts/codefresh/cf-runtime/values.yaml

299 lines
8.8 KiB
YAML
Raw Blame History

# Global parameters.
# Global values are in generated_values.yaml. Run `codefresh runner init --generate-helm-values-file`!
# @default -- See below
global:
namespace: "codefresh"
codefreshHost: ""
agentToken: ""
# -- Existing secret (name-of-existing-secret) with API token from Codefresh (supersedes value for global.agentToken; secret must contain `codefresh.token` key)
existingAgentToken: ""
agentId: ""
agentName: ""
accountId: ""
runtimeName: ""
# -- Existing secret (name has to be `codefresh-certs-server`) (supersedes value for global.keys; secret must contain `server-cert.pem` `server-key.pem` and `ca.pem`` keys)
existingDindCertsSecret: ""
keys:
key: ""
ca: ""
serverCert: ""
# -- Set docker registry prefix for the runtime images
dockerRegistry: "quay.io"
# E.g.
# dockerRegistry: "myreqistry.local"
# Runner parameters
# @default -- See below
runner:
# -- Set runner image
image: "codefresh/venona:1.9.16"
# -- Add additional env vars
env: {}
# E.g.
# env:
# HTTP_PROXY: 10.20.0.35:8080
# HTTPS_PROXY: 10.20.0.35:8080
# NO_PROXY: 10.20.0.*
# -- Set runner requests and limits
resources: {}
# E.g.
# resources:
# limits:
# cpu: 400m
# memory: 1200Mi
# requests:
# cpu: 200m
# memory: 500Mi
# -- Set runner node selector
nodeSelector: {}
# E.g.
# nodeSelector:
# foo: bar
# -- Set runner tolerations
tolerations: []
## E.g.
# tolerations:
# - key: codefresh
# operator: Equal
# value: dind
# effect: NoSchedule
# -- Add annotations to runner pod
annotations: {}
# Volume Provisioner parameters
# @default -- See below
volumeProvisioner:
# -- Set volume-provisioner image
image: "codefresh/dind-volume-provisioner:1.33.3"
# -- Set annotation on volume-provisioner Service Account
serviceAccount: {}
# E.g.
# serviceAccount:
# annotations:
# eks.amazonaws.com/role-arn: "arn:aws:iam::<ACCOUNT_ID>:role/<IAM_ROLE_NAME>"
# -- Set volume-provisioner node selector
nodeSelector: {}
# -- Set volume-provisioner requests and limits
resources: {}
# -- Set volume-provisioner tolerations
tolerations: []
# -- Enable volume-provisioner pod's security context (running as non root user)
securityContext:
enabled: true
# -- Add additional env vars
env: {}
# E.g.
# env:
# PRIVILEGED_CONTAINER: true
### https://codefresh.io/docs/docs/administration/codefresh-runner/#installing-on-aks
# mountAzureJson: true
annotations: {} # annotate volume-provisioner pod
# `dind-volume-cleanup` CronJob parameters
# @default -- See below
volume-cleanup:
# -- Set `dind-volume-cleanup` image
image: codefresh/dind-volume-cleanup:1.2.0
# Storage parameters for volume-provisioner
# @default -- See below
storage:
# -- Set backend volume type (`local`/`ebs`/`ebs-csi`/`gcedisk`/`azuredisk`)
backend: local
# -- Set filesystem type (`ext4`/`xfs`)
fsType: "ext4"
# Storage parametrs example for local volumes on the K8S nodes filesystem (i.e. `storage.backend=local`)
# https://kubernetes.io/docs/concepts/storage/volumes/#local
# @default -- See below
local:
# -- Set volume path on the host filesystem
volumeParentDir: /var/lib/codefresh/dind-volumes
# `dind-lv-monitor` DaemonSet parametes (deployed only when `storage.backend=local`)
# @default -- See below
localVolumeMonitor:
# -- Set `dind-lv-monitor` image
image: codefresh/dind-volume-utils:1.29.4
initContainer:
image: alpine
nodeSelector: {}
resources: {}
tolerations: []
env: {}
# Storage parameters example for aws ebs disks (i.e. `storage.backend=ebs`/`storage.backend=ebs-csi`)
# https://aws.amazon.com/ebs/
# https://codefresh.io/docs/docs/administration/codefresh-runner/#installing-on-aws
# @default -- See below
ebs:
# -- Set EBS volume type (`gp2`/`gp3`/`io1`) (required)
volumeType: "gp2"
# -- Set EBS volumes availability zone (required)
availabilityZone: "us-east-1a"
# -- Enable encryption (optional)
encrypted: "false"
# -- Set KMS encryption key ID (optional)
kmsKeyId: ""
# -- Set AWS_ACCESS_KEY_ID for volume-provisioner (optional)
# Ref: https://codefresh.io/docs/docs/installation/codefresh-runner/#dind-volume-provisioner-permissions
accessKeyId: ""
# -- Set AWS_SECRET_ACCESS_KEY for volume-provisioner (optional)
# Ref: https://codefresh.io/docs/docs/installation/codefresh-runner/#dind-volume-provisioner-permissions
secretAccessKey: ""
# E.g.
# ebs:
# volumeType: gp3
# availabilityZone: us-east-1c
# encrypted: false
# iops: "5000"
# # I/O operations per second. Only effetive when gp3 volume type is specified.
# # Default value - 3000.
# # Max - 16,000
# throughput: "500"
# # Throughput in MiB/s. Only effective when gp3 volume type is specified.
# # Default value - 125.
# # Max - 1000.
# ebs:
# volumeType: gp2
# availabilityZone: us-east-1c
# encrypted: true
# kmsKeyId: "1234abcd-12ab-34cd-56ef-1234567890ab"
# accessKeyId: "MYKEYID"
# secretAccessKey: "MYACCESSKEY"
# Storage parameters example for gce disks
# https://cloud.google.com/compute/docs/disks#pdspecs
# https://codefresh.io/docs/docs/administration/codefresh-runner/#installing-on-google-kubernetes-engine
# @default -- See below
gcedisk:
# -- Set GCP volume backend type (`pd-ssd`/`pd-standard`)
volumeType: "pd-ssd"
# -- Set GCP volume availability zone
availabilityZone: "us-west1-a"
# -- Set Google SA JSON key for volume-provisioner (optional)
serviceAccountJson: ""
# E.g.
# gcedisk:
# volumeType: pd-ssd
# availabilityZone: us-central1-c
# serviceAccountJson: |-
# {
# "type": "service_account",
# "project_id": "...",
# "private_key_id": "...",
# "private_key": "...",
# "client_email": "...",
# "client_id": "...",
# "auth_uri": "...",
# "token_uri": "...",
# "auth_provider_x509_cert_url": "...",
# "client_x509_cert_url": "..."
# }
# Storage parameters example for Azure Disks
# https://codefresh.io/docs/docs/administration/codefresh-runner/#installing-on-aks
# @default -- See below
azuredisk:
# -- Set storage type (`Premium_LRS`)
skuName: Premium_LRS
cachingMode: None
# location: westcentralus
# resourceGroup:
# DiskIOPSReadWrite: 500
# DiskMBpsReadWrite: 100
# Set runtime parameters
# @default -- See below
re:
# -- Set annotation on engine Service Account
# Ref: https://codefresh.io/docs/docs/administration/codefresh-runner/#injecting-aws-arn-roles-into-the-cluster
serviceAccount:
annotations: {}
# E.g.
# serviceAccount:
# annotations:
# eks.amazonaws.com/role-arn: "arn:aws:iam::<ACCOUNT_ID>:role/<IAM_ROLE_NAME>"
# DinD pod daemon config
# @default -- See below
dindDaemon:
hosts:
- unix:///var/run/docker.sock
- tcp://0.0.0.0:1300
tlsverify: true
tls: true
tlscacert: /etc/ssl/cf-client/ca.pem
tlscert: /etc/ssl/cf/server-cert.pem
tlskey: /etc/ssl/cf/server-key.pem
insecure-registries:
- 192.168.99.100:5000
metrics-addr: 0.0.0.0:9323
experimental: true
# App-Proxy parameters
# Ref: https://codefresh.io/docs/docs/installation/codefresh-runner/#app-proxy-installation
# @default -- See below
appProxy:
# -- Enable app-proxy
enabled: false
# -- Set app-proxy image
image: "codefresh/cf-app-proxy:latest"
# Set app-proxy ingress parameters
# @default -- See below
ingress:
# -- Set path prefix for ingress
pathPrefix: "/"
# -- Set ingress class
class: ""
# -- Set DNS hostname the ingress will use
host: ""
# -- Set k8s tls secret for the ingress object
tlsSecret: ""
# -- Set extra annotations for ingress object
annotations: {}
# E.g.
# ingress:
# pathPrefix: "/app-proxy"
# class: "nginx"
# host: "mydomain.com"
# tlsSecret: "tls-cert-app-proxy"
# annotations:
# nginx.ingress.kubernetes.io/whitelist-source-range: 123.123.123.123/130
env: {}
resources: {}
serviceAccount:
annotations: {}
# Monitor parameters
# @default -- See below
monitor:
# -- Enable monitor
# Ref: https://codefresh.io/docs/docs/installation/codefresh-runner/#install-monitoring-component
enabled: false
# -- Set monitor image
image: "codefresh/agent:stable"
# -- keep true as default!
helm3: true
# -- Use ClusterRole (`false`) or Role (`true`) RBAC
useNamespaceWideRole: false #
# -- Cluster name as it registered in account
clusterId: ""
# -- API token from Codefresh
token: ""
# -- Set Existing secret (name-of-existing-secret) with API token from Codefresh (supersedes value of monitor.token; secret must contain `codefresh.token` key)
existingMonitorToken: ""
env: {}
resources: {}
serviceAccount:
annotations: {}
Reference in New Issue View Git Blame Copy Permalink