team-server-down/infrastructure/whiteboard-app/pullrequest.values.yaml at 52a4ede23d4515dd1c141d07251075c72292538c · AET-DevOps25/team-server-down · GitHub

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
client:
  image:
    repository: ghcr.io/aet-devops25/team-server-down/client
    tag: ""
    pullPolicy: Always
  service:
    type: ClusterIP
    port: 3000
    targetPort: 3000
  replicaCount: 1
  env:
    - name: KEYCLOAK_CLIENT_SECRET
      value: SXiMvr1GG10bk2J63ODZC9SOaoAZ4dbe
    - name: NEXTAUTH_URL
      value: 'https://{{ .Values.client.url }}/api/auth/'
    - name: NEXTAUTH_SECRET
      value: feZJWB3mcQ93VBmqHKQI5er5NEIxcDPb3wtT/KaLB9s=
    - name: KEYCLOAK_CLIENT_ID
      value: webclient
    - name: KEYCLOAK_ISSUER
      value: 'https://{{ .Values.auth.url }}/realms/{{ .Values.namespace }}'
    - name: KEYCLOAK_END_SESSION_ENDPOINT
      value: 'https://{{ .Values.auth.url }}/realms/{{ .Values.namespace }}/protocol/openid-connect/logout'

server:
  image:
    repository: ghcr.io/aet-devops25/team-server-down/server
    tag: ""
    pullPolicy: Always
  service:
    type: ClusterIP
    port: 9091
    targetPort: 9091
  env:
    - name: DB_HOST
      value: '{{ printf "%s-postgresql" .Release.Name }}'
    - name: DB_PORT
      value: "5432"
    - name: DB_NAME
      value: main
    - name: DB_USER
      value: postgres
    - name: DB_PASSWORD
      value: password
    - name: ALLOWED_ORIGIN
      value: 'https://{{ .Values.client.url }}'
    - name: IDP_INTERNAL_URI
      value: 'https://{{ .Values.auth.url }}/realms/{{ .Values.namespace }}'
    - name: IDP_EXTERNAL_URI
      value: 'https://{{ .Values.auth.url }}/realms/{{ .Values.namespace }}'
    - name: SERVER_URL
      value: 'https://{{ .Values.server.url }}'
  replicaCount: 1

postgresql:
  primary:
    extraEnvVars:
      - name: POSTGRES_USER
        value: postgres
      - name: POSTGRES_PASSWORD
        value: password
      - name: POSTGRES_MULTIPLE_DATABASES
        value: "main,keycloak"
    extraVolumes:
      - name: db-init
        configMap:
          name: postgresql-configmap
    extraVolumeMounts:
      - name: db-init
        mountPath: /docker-entrypoint-initdb.d

keycloak:
  ingress:
    enabled: false
  auth:
    adminUser: admin
    adminPassword: password
  postgresql:
    enabled: false
  externalDatabase:
    host: '{{ printf "%s-postgresql" .Release.Name }}'
    user: postgres
    password: password
    database: keycloak
    port: 5432
  extraEnvVars:
    - name: KEYCLOAK_EXTRA_ARGS
      value: "--import-realm"
    - name: KC_PROXY
      value: edge
    - name: KC_PROXY_HEADERS
      value: xforwarded
    - name: KC_HOSTNAME
      value: '{{ .Values.auth.url }}'
  extraVolumes:
    - name: realm-export
      configMap:
        name: keycloak-configmap
  extraVolumeMounts:
    - name: realm-export
      mountPath: /opt/bitnami/keycloak/data/import

genai:
  image:
    repository: ghcr.io/aet-devops25/team-server-down/genai
    tag: ""
    pullPolicy: Always
  service:
    type: ClusterIP
    port: 8000
    targetPort: 8000
  env:
    - name: OPEN_WEB_UI_API_KEY
      value: '{{ .Values.genai.apiKey }}'
    - name: SERVER_URL
      value: 'https://{{ .Values.server.url }}'
    - name: CLIENT_URL
      value: 'https://{{ .Values.client.url }}'
    - name: GENAI_URL
      value: 'https://{{ .Values.genai.url }}'
    - name: API_URL
      value: 'https://gpu.aet.cit.tum.de/api/chat/completions'

ingress:
  enabled: true
  className: "nginx"
  annotations:
    cert-manager.io/cluster-issuer: "letsencrypt-prod"
    nginx.ingress.kubernetes.io/rewrite-target: /
    nginx.ingress.kubernetes.io/use-forwarded-headers: "true"
    nginx.ingress.kubernetes.io/proxy-buffer-size: "8k"
  tls:
    hosts:
      - '{{ .Values.client.url }}'
      - '{{ .Values.server.url }}'
      - '{{ .Values.auth.url }}'
      - '{{ .Values.genai.url }}'
    secretName: '{{ .Values.namespace }}-whiteboard-devops25-tls'
  rules:
    - host: '{{ .Values.client.url }}'
      paths:
        - path: /
          pathType: Prefix
          service:
              name: '{{ printf "%s-client" .Release.Name }}'
              port:
                number: 3000
    - host: '{{ .Values.server.url }}'
      paths:
        - path: /
          pathType: Prefix
          service:
            name: '{{ printf "%s-server" .Release.Name }}'
            port:
              number: 9091
    - host: '{{ .Values.auth.url }}'
      paths:
        - path: /
          pathType: Prefix
          service:
            name: '{{ printf "%s-keycloak" .Release.Name }}'
            port:
              number: 80
    - host: '{{ .Values.genai.url }}'
      paths:
        - path: /
          pathType: Prefix
          service:
            name: '{{ printf "%s-genai" .Release.Name }}'
            port:
              number: 8000