marklogic
diff --git a/‎.gitignore
Lines changed: 0 additions & 1 deletion b/‎.gitignore
Lines changed: 0 additions & 1 deletion
diff --git a/‎README.md
Lines changed: 79 additions & 1 deletion b/‎README.md
Lines changed: 79 additions & 1 deletion
diff --git a/‎charts/Chart.yaml
Lines changed: 7 additions & 2 deletions b/‎charts/Chart.yaml
Lines changed: 7 additions & 2 deletions
diff --git a/‎charts/charts/haproxy/.helmignore
Lines changed: 23 additions & 0 deletions b/‎charts/charts/haproxy/.helmignore
Lines changed: 23 additions & 0 deletions
diff --git a/‎charts/charts/haproxy/Chart.yaml
Lines changed: 38 additions & 0 deletions b/‎charts/charts/haproxy/Chart.yaml
Lines changed: 38 additions & 0 deletions
@@ -1,3 +1,2 @@
 .vscode
-values.yaml
 test/test_results
@@ -33,6 +33,15 @@
   - [Port Forward](#port-forward)
     - [Forward to Pod](#forward-to-pod)
     - [Forward to Service](#forward-to-service)
+  - [HAPorxy Load Balancer](#haporxy-load-balancer)
+    - [Enable HAProxy](#enable-haproxy)
+    - [Configuration](#configuration)
+      - [ConfigMap](#configmap)
+      - [Modify Port Configuration](#modify-port-configuration)
+      - [Automatic Reload Configuration](#automatic-reload-configuration)
+      - [External Access](#external-access)
+    - [Access HAProxy](#access-haproxy)
+- [Security](#security)
   - [Security Context](#security-context)
   - [Network Policy](#network-policy)
   - [Pod Priorty](#pod-priorty)
@@ -249,7 +258,7 @@ Identify the name of the secret.
 
 2. Save the secret name from step 1 and get the admin password using the following script:
 ```
-kubectl get secret SECRET_NAME -o jsonpath='{.data.marklogic-password}' | base64 --decode
+kubectl get secret SECRET_NAME -o jsonpath='{.data.password}' | base64 --decode
 ```
 ### Log Collection
 
@@ -412,6 +421,75 @@ kubectl port-forward svc/marklogic 8000:8000
 
 This pod can now be accessed via http://localhost:8001.
 
+## HAPorxy Load Balancer
+
+HAProxy is provided as a load balancer that is configured to supported cookie-based session affinity and multi-statement transaction that is needed by some of the MarkLogic client application like MLCP. 
+
+### Enable HAProxy
+
+The HAProxy Load Balancer is disabled by default. To enable the HAProxy, provide the following config in your values file for your Chart installation:
+```
+haproxy:
+  enabled: true
+```
+
+### Configuration
+
+#### ConfigMap
+
+The HAProxy configuation is dynamically generated in ConfigMap with the name of "marklogic-haproxy". You can provide your own configuation by creating a new ConfigMap and set the "existingConfigmap" in values file to the name of the new ConfigMap.
+
+#### Modify Port Configuration 
+
+By default, port 8000, 8001, 8002 are configuered to handle HTTP traffic.
+
+You can modify the default ports selection for the HAProxy by providing your own configuration in values file. Below is the default configuration:
+```
+haproxy:
+  ports:
+    - name: app-service
+      type: HTTP
+      port: 8000
+    - name: admin
+      type: HTTP
+      port: 8001
+    - name: manage
+      type: HTTP
+      port: 8002
+    - name: odbc
+      type: TCP
+      port: 5432
+```
+You can remove/add/modify the entry in ports by providing your own entry. For each entry, you need to specify the name, type and port. There are three type backend supported when configuring the loadbalancer:
+1. HTTP: configure the backend as HTTP proxy that handles HTTPC traffic. It also configured to handle Cookie based session affinity and multi-statement trasaction from MarkLogic Client.
+2. TCP: configure the backend as TCP proxy that handles TCP traffic.
+
+#### Automatic Reload Configuration
+
+When any change to the current deployment happens(change the backend ports, number of running MarkLogic nodes), the HAProxy will be restarted to load the new configuration by default. You can change this behavior by change the setting below:
+```
+haproxy:
+  restartWhenUpgrade:
+    enabled: false
+```
+Note: if restartWhenUpgrade.enabled set to false, you have to manually delete the HAProxy deployment to have the lastest configuration if you update the number of MarkLogic node.
+
+#### External Access
+
+By default, the HAProxy is configured to provide access within the Kubernetes cluster. You can configure the HAProxy to provide external access by setting the service type in values file below:
+```
+haproxy:
+  service:
+    type: LoadBalancer
+```
+Warning: By setting the haproxy service type to loadbalancer MarkLogic endpoint is exposed to public Internet. Please set the networkPolicy to limit the sources that can visit MarkLogic.
+
+### Access HAProxy
+
+The HAProxy can be accessed from service with the name of <RELEASE_NAME>-haproxy. For example, if the release name is marklogic, then the name of the service will be marklogic-haproxy. 
+
+# Security
+
 ## Security Context
 
 Security context defines privilege and access control settings for a Pod or Container. By default security context for containers is enabled with runAsUser, runAsNonRoot, allowPrivilegeEscalation settings. To configure these values for containers, set the containerSecurityContext in the values.yaml file or using the `--set` flag. Additional security context settings can be added to containerSecurityContext configuration. Please refer [https://kubernetes.io/docs/tasks/configure-pod-container/security-context/](https://kubernetes.io/docs/tasks/configure-pod-container/security-context/).
 
@@ -1,9 +1,14 @@
 annotations:
   category: Database
 apiVersion: v2
+dependencies:
+  - condition: haproxy.enabled
+    name: haproxy
+    repository: "file://./charts/haproxy"
+    version: "1.18.0"
 name: marklogic
 description: MarkLogic Server is a multi-model database that has both NoSQL and trusted enterprise data management capabilities.
-appVersion: "10.0-9.5"
+appVersion: "11.0.0"
 type: application
 keywords:
   - marklogic
@@ -12,4 +17,4 @@ keywords:
 sources:
   - https://github.com/marklogic/marklogic-kubernetes
   - https://www.marklogic.com/
-version: 1.0.0-ea2
+version: 1.0.0
@@ -0,0 +1,23 @@
+# Patterns to ignore when building packages.
+# This supports shell glob matching, relative path matching, and
+# negation (prefixed with !). Only one pattern per line.
+.DS_Store
+# Common VCS dirs
+.git/
+.gitignore
+.bzr/
+.bzrignore
+.hg/
+.hgignore
+.svn/
+# Common backup files
+*.swp
+*.bak
+*.tmp
+*.orig
+*~
+# Various IDEs
+.project
+.idea/
+*.tmproj
+.vscode/
@@ -0,0 +1,38 @@
+# Copyright 2020 HAProxy Technologies LLC
+#
+# Licensed under the Apache License, Version 2.0 (the "License");
+# you may not use this file except in compliance with the License.
+# You may obtain a copy of the License at
+#
+#     http://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing, software
+# distributed under the License is distributed on an "AS IS" BASIS,
+# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# See the License for the specific language governing permissions and
+# limitations under the License.
+
+apiVersion: v2
+name: haproxy
+description: A Helm chart for HAProxy on Kubernetes
+type: application
+version: 1.18.0
+appVersion: 2.6.9
+kubeVersion: ">=1.17.0-0"
+keywords:
+  - haproxy
+home: https://github.com/haproxytech/helm-charts/tree/main/haproxy
+sources:
+  - http://www.haproxy.org/
+icon: https://raw.githubusercontent.com/haproxytech/helm-charts/main/haproxy/chart-icon.png
+maintainers:
+  - name: Dinko Korunic
+    email: [email protected]
+engine: gotpl
+annotations:
+  artifacthub.io/changes: |
+    - Update base image to HAProxy 2.6.9
+    - Update HPA API version (#172)
+    - Fix HPA spec (#173)
+    - Ensure api version capabilities of PodDisruptionBudget (#175)
+    - Add additionalPorts to service (#177)
Original file line number	Diff line number	Diff line change
`@@ -1,3 +1,2 @@`
`1`	`1`	`.vscode`
`2`		`-values.yaml`
`3`	`2`	`test/test_results`