upd values.yaml

mikhail-klimko · mikhail-klimko · commit 9a75949cf980 · 2022-10-06T18:36:50.000+03:00
diff --git a/README.md b/README.md
@@ -1,28 +1,35 @@
-### How to build CF onprem chart locally
+# Codefresh On-Premises
 
-```shell
-# Optionally: update runtime images from SAAS system/default-plan runtime first
-./update_re_images.sh
+## Prerequisites
 
-helm dependency update codefresh --debug
-helm package codefresh
-```
+- Kubernetes 1.19+
+- Helm 3.2.0+
+- PV provisioner support in the underlying infrastructure
+- GCR Service Account JSON `sa.json` (provided by Codefresh)
+- Firebase secret (provided by Codefresh)
+
+## Get Repo Info
 
-### How to install CF onprem chart locally
+```console
+helm repo add codefresh-onprem https://chartmuseum.codefresh.io/codefresh
+helm repo update
+```
 
-See [kcfi README.md](https://github.com/codefresh-io/kcfi#example---codefresh-onprem-installation)
+## Install Chart
 
-or with HELM:
+**Important:** only helm3 is supported
 
 - obtain GCR Service Account JSON and Firebase secret from Codefresh:
+
 ```shell
+GCR_SA_KEY_B64=$(cat sa.json | base64)
 DOCKER_CFG_VAR=$(echo -n "_json_key:$(echo ${GCR_SA_KEY_B64} | base64 -d)" | base64 | tr -d '\n')
-REGISTRY="gcr.io"
-VALUES_MAIN="values-main.yaml"
-CF_APP_HOST="myonprem.local"
+FIREBASE_SECRET="<token>"
+VALUES_MAIN="cf-values.yaml"
+CF_APP_HOST="onprem.example.com"
 ```
 
-- feed them into `values-main.yaml`:
+- Edit default `values.yaml` or create empty `cf-values.yaml`
 
 ```shell
 cat <<EOF > ${VALUES_MAIN}
@@ -36,16 +43,72 @@ firebaseSecret: ${FIREBASE_SECRET}
 
 dockerconfigjson:
   auths:
-    ${REGISTRY}:
+    gcr.io:
       auth: ${DOCKER_CFG_VAR}
 EOF
 ```
 
-```shell
-helm repo add codefresh-onprem https://chartmuseum.codefresh.io/codefresh
-helm pull codefresh-onprem/codefresh
-helm upgrade --install cf codefresh-onprem/codefresh -f values-main.yaml --create-namespace --namespace codefresh --debug
+- Install Chart
+```console
+helm upgrade --install cf codefresh-onprem/codefresh -f cf-values.yaml --create-namespace --namespace codefresh --debug
 ```
 
-### Additional docs
+The command deploys Codefresh On-Premises on the Kubernetes cluster in the default configuration.
+
+_See [configuration](#configuration) below._
+
+_See [helm upgrade](https://helm.sh/docs/helm/helm_upgrade/) for command documentation._
+
+## Configuration
+
+
+## Parameters
+
+### Tags
+
+| Name                 | Description                                           | Value                                              |
+| -------------------- | ----------------------------------------------------- | -------------------------------------------------- |
+| `tags.cf-infra`      | Enable Codefresh Classic services(charts)             | `true`                                             |
+| `tags.argo-platform` | (WIP) Enable Codefresh Argo-Platform services(charts) | `false`                                            |
+| `firebaseUrl`        | Firebase URL for logs streaming                       | `https://codefresh-on-prem.firebaseio.com/on-prem` |
+| `firebaseSecret`     | Firebase Secret                                       | `placeholder`                                      |
+
+
+### Global parameters
+
+| Name                          | Description                                                                                                     | Value                                            |
+| ----------------------------- | --------------------------------------------------------------------------------------------------------------- | ------------------------------------------------ |
+| `global.appUrl`               | Application root url                                                                                            | `onprem.codefresh.local`                         |
+| `global.seedJobs`             | Instantiate databases with seed data. Used in on-prem environments. `true/false`                                | `nil`                                            |
+| `global.certsJobs`            | Generate self-signed certificates for Builder/Runner. Used in on-prem environments. `true/false`                | `nil`                                            |
+| `global.privateRegistry`      | When using private docker registry, enable this flag                                                            | `false`                                          |
+| `global.dockerRegistry`       | Replaces/adds docker registry prefix for images when `privateRegistry` is enabled (has to be with trailing "/") | `""`                                             |
+| `global.rabbitService`        | Default Internal RabbitMQ service address                                                                       | `rabbitmq`                                       |
+| `global.rabbitmqHostname`     | External RabbitMQ service address                                                                               | `nil`                                            |
+| `global.rabbitmqUsername`     | Default RabbitMQ username                                                                                       | `user`                                           |
+| `global.rabbitmqPassword`     | Default RabbitMQ password                                                                                       | `cVz9ZdJKYm7u`                                   |
+| `global.mongoURI`             | Default Internal MongoDB URI                                                                                    | `mongodb://cfuser:mTiXcU2wafr9@cf-mongodb:27017` |
+| `global.mongodbDatabase`      | Default MongoDB database name                                                                                   | `codefresh`                                      |
+| `global.mongodbRootUser`      | Default MongoDB root user                                                                                       | `root`                                           |
+| `global.mongodbRootPassword`  | Default MongoDB root password                                                                                   | `XT9nmM8dZD`                                     |
+| `global.mongodbImage`         | Default Image used in seed-jobs                                                                                 | `bitnami/mongodb:4.2`                            |
+| `global.redisService`         | Default Internal Redis service address                                                                          | `redis-master`                                   |
+| `global.redisPort`            | Default Internal Redis port number                                                                              | `6379`                                           |
+| `global.redisUrl`             | Default External Redis service address                                                                          | `nil`                                            |
+| `global.redisPassword`        | Default Internal Redis password                                                                                 | `hoC9szf7NtrU`                                   |
+| `global.runtimeRedisHost`     | Default for OfflineLogging feature                                                                              | `cf-redis-master`                                |
+| `global.runtimeRedisPassword` | Default for OfflineLogging feature                                                                              | `hoC9szf7NtrU`                                   |
+| `global.runtimeRedisDb`       | Default for OfflineLogging feature                                                                              | `1`                                              |
+| `global.runtimeRedisPort`     | Default for OfflineLogging feature                                                                              | `6379`                                           |
+| `global.runtimeMongoURI`      | Default for OfflineLogging feature                                                                              | `mongodb://cfuser:mTiXcU2wafr9@cf-mongodb:27017` |
+| `global.runtimeMongoDb`       | Default for OfflineLogging feature                                                                              | `codefresh`                                      |
+| `global.postgresService`      | Default Internal Postgresql service address                                                                     | `cf-postgresql`                                  |
+| `global.postgresHostname`     | Default External Postgresql service address                                                                     | `nil`                                            |
+| `global.postgresUser`         | Default Internal Postgresql username                                                                            | `postgres`                                       |
+| `global.postgresPassword`     | Default Internal Postgresql password                                                                            | `eC9arYka4ZbH`                                   |
+| `global.postgresDatabase`     | Default Internal Postgresql database name                                                                       | `codefresh`                                      |
+| `global.postgresPort`         | Default Internal Postgresql port number                                                                         | `5432`                                           |
+
+
+## Additional Documentation
 [Codefresh On-Premises](https://codefresh.io/docs/docs/administration/codefresh-on-prem/)
diff --git a/codefresh/Chart.yaml b/codefresh/Chart.yaml
@@ -58,12 +58,6 @@ dependencies:
   version: 1.0.2
   tags:
   - cf-infra
-- name: runner
-  repository: https://chartmuseum.codefresh.io/runner
-  condition: runner.enabled
-  version: 1.0.0
-  tags:
-  - cf-infra
 - name: ingress-nginx
   version: 4.1.0
   repository: 'https://kubernetes.github.io/ingress-nginx'
diff --git a/codefresh/templates/configmaps/runtime-envs-cm.yaml b/codefresh/templates/configmaps/runtime-envs-cm.yaml
@@ -10,8 +10,4 @@ metadata:
     heritage: {{ .Release.Service  | quote }}
 data:
   runtimeEnvironments.json: |
-{{- if .Values.getRuntimeEnvs }}
 {{ include "runtime-environment-config" . | indent 4 }}
-{{- else }}
-    {}
-{{- end }}
diff --git a/codefresh/templates/hooks/migrate-hermes-store.yaml b/codefresh/templates/hooks/migrate-hermes-store.yaml
@@ -29,7 +29,7 @@ spec:
       {{- end }}
       containers:
       - name: {{ template "fullname" . }}-migrate-hermes-store
-        {{- if .Values.global.privateRegistry }} 
+        {{- if .Values.global.privateRegistry }}
         image: "{{ .Values.global.dockerRegistry }}codefresh/hermes-store-backup:0.2"
         {{- else }}
         image: "codefresh/hermes-store-backup:0.2"
@@ -59,6 +59,6 @@ spec:
           - "/bin/bash"
           - "-c"
           - |
-{{ .Files.Get (print .Values.migrateHermesDataScript) | indent 12 }}
+{{ .Files.Get "files/on-prem/migrateHermesDataScript" | indent 12 }}
       restartPolicy: Never
 {{- end }}
diff --git a/codefresh/templates/hooks/set-mongo-compat-version.yaml b/codefresh/templates/hooks/set-mongo-compat-version.yaml
@@ -28,7 +28,7 @@ spec:
       {{- end }}
       containers:
       - name: {{ template "fullname" . }}-set-mdb-compat-ver
-        {{- if .Values.global.privateRegistry }} 
+        {{- if .Values.global.privateRegistry }}
         image: "{{ .Values.global.dockerRegistry }}{{ .Values.global.mongodbImage }}"
         {{- else }}
         image: {{ .Values.global.mongodbImage }}
@@ -45,7 +45,7 @@ spec:
           - "/bin/bash"
           - "-c"
           - |
-{{ .Files.Get (print .Values.setMdbCompatVerScript ) | indent 12  }}
+{{ .Files.Get "files/on-prem/setMdbCompatVerScript" | indent 12  }}
       restartPolicy: Never
-{{- end }}      
+{{- end }}
 {{- end }}
diff --git a/codefresh/templates/hooks/update-default-runtimes.yaml b/codefresh/templates/hooks/update-default-runtimes.yaml
@@ -46,36 +46,36 @@ spec:
           - name: MONGO_URI_RE_MANAGER
             value: {{ include "calculateMongoURI" (dict "dbName" "runtime-environment-manager" "mongoURI" .Values.global.mongoURI) }}
           - name: DIND_IMAGE
-            value: {{ include "buildImageName" (dict "registry" .Values.global.dockerRegistry "imageFullName" .Values.DIND_IMAGE) }}
+            value: {{ include "buildImageName" (dict "registry" .Values.global.dockerRegistry "imageFullName" .Values.runtimeImages.DIND_IMAGE) }}
           - name: ENGINE_IMAGE
-            value: {{ include "buildImageName" (dict "registry" .Values.global.dockerRegistry "imageFullName" .Values.ENGINE_IMAGE) }}
+            value: {{ include "buildImageName" (dict "registry" .Values.global.dockerRegistry "imageFullName" .Values.runtimeImages.ENGINE_IMAGE) }}
           - name: DOCKER_PUSHER_IMAGE
-            value: {{ include "buildImageName" (dict "registry" .Values.global.dockerRegistry "imageFullName" .Values.DOCKER_PUSHER_IMAGE) }}
+            value: {{ include "buildImageName" (dict "registry" .Values.global.dockerRegistry "imageFullName" .Values.runtimeImages.DOCKER_PUSHER_IMAGE) }}
           - name: DOCKER_PULLER_IMAGE
-            value: {{  include "buildImageName" (dict "registry" .Values.global.dockerRegistry "imageFullName" .Values.DOCKER_PULLER_IMAGE) }}
+            value: {{  include "buildImageName" (dict "registry" .Values.global.dockerRegistry "imageFullName" .Values.runtimeImages.DOCKER_PULLER_IMAGE) }}
           - name: DOCKER_BUILDER_IMAGE
-            value: {{ include "buildImageName" (dict "registry" .Values.global.dockerRegistry "imageFullName" .Values.DOCKER_BUILDER_IMAGE) }}
+            value: {{ include "buildImageName" (dict "registry" .Values.global.dockerRegistry "imageFullName" .Values.runtimeImages.DOCKER_BUILDER_IMAGE) }}
           - name: CONTAINER_LOGGER_IMAGE
-            value: {{ include "buildImageName" (dict "registry" .Values.global.dockerRegistry "imageFullName" .Values.CONTAINER_LOGGER_IMAGE) }}
+            value: {{ include "buildImageName" (dict "registry" .Values.global.dockerRegistry "imageFullName" .Values.runtimeImages.CONTAINER_LOGGER_IMAGE) }}
           - name: GIT_CLONE_IMAGE
-            value: {{ include "buildImageName" (dict "registry" .Values.global.dockerRegistry "imageFullName" .Values.GIT_CLONE_IMAGE) }}
+            value: {{ include "buildImageName" (dict "registry" .Values.global.dockerRegistry "imageFullName" .Values.runtimeImages.GIT_CLONE_IMAGE) }}
           - name: DOCKER_TAG_PUSHER_IMAGE
-            value: {{ include "buildImageName" (dict "registry" .Values.global.dockerRegistry "imageFullName" .Values.DOCKER_TAG_PUSHER_IMAGE) }}
+            value: {{ include "buildImageName" (dict "registry" .Values.global.dockerRegistry "imageFullName" .Values.runtimeImages.DOCKER_TAG_PUSHER_IMAGE) }}
           - name: FS_OPS_IMAGE
-            value: {{ include "buildImageName" (dict "registry" .Values.global.dockerRegistry "imageFullName" .Values.FS_OPS_IMAGE) }}
+            value: {{ include "buildImageName" (dict "registry" .Values.global.dockerRegistry "imageFullName" .Values.runtimeImages.FS_OPS_IMAGE) }}
           - name: COMPOSE_IMAGE
-            value: {{ include "buildImageName" (dict "registry" .Values.global.dockerRegistry "imageFullName" .Values.COMPOSE_IMAGE) }}
+            value: {{ include "buildImageName" (dict "registry" .Values.global.dockerRegistry "imageFullName" .Values.runtimeImages.COMPOSE_IMAGE) }}
           - name: KUBE_DEPLOY
-            value: {{ include "buildImageName" (dict "registry" .Values.global.dockerRegistry "imageFullName" .Values.KUBE_DEPLOY) }}
+            value: {{ include "buildImageName" (dict "registry" .Values.global.dockerRegistry "imageFullName" .Values.runtimeImages.KUBE_DEPLOY) }}
           - name: TEMPLATE_ENGINE
-            value: {{ include "buildImageName" (dict "registry" .Values.global.dockerRegistry "imageFullName" .Values.TEMPLATE_ENGINE) }}
+            value: {{ include "buildImageName" (dict "registry" .Values.global.dockerRegistry "imageFullName" .Values.runtimeImages.TEMPLATE_ENGINE) }}
           - name: PIPELINE_DEBUGGER_IMAGE
-            value: {{ include "buildImageName" (dict "registry" .Values.global.dockerRegistry "imageFullName" .Values.PIPELINE_DEBUGGER_IMAGE) }}
+            value: {{ include "buildImageName" (dict "registry" .Values.global.dockerRegistry "imageFullName" .Values.runtimeImages.PIPELINE_DEBUGGER_IMAGE) }}
         command:
           - "/bin/bash"
           - "-c"
           - |
-{{ .Files.Get (print .Values.updateDefREImgScript ) | indent 12  }}
+{{ .Files.Get "files/on-prem/updateDefREImgScript" | indent 12  }}
         volumeMounts:
         {{- if $.Values.global.mongoTLS }}
         - mountPath: /etc/ssl/mongodb/
diff --git a/codefresh/templates/jobs/certs-job.yaml b/codefresh/templates/jobs/certs-job.yaml
@@ -29,7 +29,7 @@ spec:
       containers:
       {{- if not .Values.global.clientCertsCA }}
       - name: {{ template "fullname" . }}-certs
-        image: "{{ include "buildImageName" (dict "registry" .Values.global.dockerRegistry "imageFullName" .Values.kubectlImage) }}"
+        image: "{{ include "buildImageName" (dict "registry" .Values.global.dockerRegistry "imageFullName" .Values.certsJobsImage) }}"
         imagePullPolicy: IfNotPresent
         command: ["/bin/sh", "/opt/codefresh/gen-runtime-certs"]
         env:
@@ -48,7 +48,7 @@ spec:
       {{- end }}
       {{- if not .Values.webTLS }}
       - name: {{ template "fullname" . }}-tls
-        image: "{{ include "buildImageName" (dict "registry" .Values.global.dockerRegistry "imageFullName" .Values.kubectlImage) }}"
+        image: "{{ include "buildImageName" (dict "registry" .Values.global.dockerRegistry "imageFullName" .Values.certsJobsImage) }}"
         imagePullPolicy: {{ default "" .Values.imagePullPolicy | quote }}
         command: ["/bin/sh", "/opt/codefresh/gen-website-tls"]
         env:
diff --git a/codefresh/templates/jobs/mongo-seed-job.yaml b/codefresh/templates/jobs/mongo-seed-job.yaml
@@ -54,7 +54,7 @@ spec:
           - "/bin/bash"
           - "-exc"
           - |
-{{ .Files.Get (print .Values.mongoSeedJobScript ) | indent 12  }}
+{{ .Files.Get "files/on-prem/mongoSeedJobScript" | indent 12  }}
         volumeMounts:
         - name: seed
           mountPath: "/etc/admin/accounts.json"
diff --git a/codefresh/templates/jobs/postgres-clean-cronjob.yaml b/codefresh/templates/jobs/postgres-clean-cronjob.yaml
@@ -64,5 +64,5 @@ spec:
               - "/bin/bash"
               - "-c"
               - |
-{{ .Files.Get (print .Values.postgresCleanJobScript ) | indent 16  }}
+{{ .Files.Get "files/on-prem/postgresCleanJobScript" | indent 16  }}
 {{- end }}
diff --git a/codefresh/templates/jobs/postgres-seed-job.yaml b/codefresh/templates/jobs/postgres-seed-job.yaml
@@ -96,5 +96,5 @@ spec:
           - "/bin/bash"
           - "-exc"
           - |
-{{ .Files.Get (print .Values.postgresSeedJobScript ) | indent 12  }}
+{{ .Files.Get "files/on-prem/postgresSeedScript" | indent 12  }}
 {{- end }}
diff --git a/codefresh/templates/runtimeEnvironments.json.tpl b/codefresh/templates/runtimeEnvironments.json.tpl
diff --git a/codefresh/values.yaml b/codefresh/values.yaml
