-
Notifications
You must be signed in to change notification settings - Fork 4
/
values.yaml
450 lines (408 loc) · 19.4 KB
/
values.yaml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
351
352
353
354
355
356
357
358
359
360
361
362
363
364
365
366
367
368
369
370
371
372
373
374
375
376
377
378
379
380
381
382
383
384
385
386
387
388
389
390
391
392
393
394
395
396
397
398
399
400
401
402
403
404
405
406
407
408
409
410
411
412
413
414
415
416
417
418
419
420
421
422
423
424
425
426
427
428
429
430
431
432
433
434
435
436
437
438
439
440
441
442
443
444
445
446
447
448
449
450
# Default values for steadybit-agent.
# This is a YAML-formatted file.
# Declare variables to be passed into your templates.
global:
# global.clusterName -- Represents the name that will be assigned to this Kubernetes cluster in steadybit.
clusterName: null
agent:
# agent.key -- The secret token which your agent uses to authenticate to steadybit's servers.
# Get it from https://platform.steadybit.com/settings/agents/setup.
key: null
# agent.identifier -- The unique identifier of the agent. If not set, the agent will use "{{.Values.global.clusterName}}/{{.Release.Namespace}}/%HOSTNAME%". Required for persistence provider "redis".
identifier: null
auth:
# agent.auth.provider -- `agent-key` or `oauth2`
provider: agent-key
# agent.auth.oauth2.* -- additional settings if `agent.auth.provider` is set to `oauth2`
oauth2:
# agent.auth.oauth2.clientId --the client id to use when fetching the oauth2 token
clientId: null
# agent.auth.oauth2.clientSecret -- the client secret to use when fetching the oauth2 token
clientSecret:
value: null
valueFrom: null
# agent.auth.oauth2.authorizationGrantType -- the authorizationGrantType to use when fetching the oauth2 token; default is `client_credentials`
authorizationGrantType: null
# agent.auth.oauth2.clientAuthenticationMethod -- the auth_method used to fetch the token. If not specified or provided in the issuer discovery endpoint, 'client_secret_basic' will be used.
clientAuthenticationMethod: null
# agent.auth.oauth2.audience -- optional audience used to fetch the oauth2 token
audience: null
# agent.auth.oauth2.issuerUri -- the issuerUri of the authentication provider
issuerUri: null
# the tokenUri of the authentication provider to fetch the oauth2 token from. If set will suppress reading the oidc discovery endpoint.
tokenUri: null
tls:
# agent.auth.oauth2.tls.clientCertificate -- optional client certificate to be used when fetching the token.
clientCertificate:
# agent.auth.oauth2.tls.clientCertificate.fromSecret -- loads key and certificate from a secret
fromSecret: null
# agent.auth.oauth2.tls.clientCertificate.containerPath -- reference certificate from a containerPath
path: null
key:
# agent.auth.oauth2.tls.clientCertificate.key.path -- reference key from a containerPath
path: null
# agent.auth.oauth2.tls.clientCertificate.key.password -- optional password for the key
password:
value: null
valueFrom: null
# agent.auth.oauth2.tls.serverCert -- optional server certificate(s) to be used for validation when fetching the token.
# If not specified will use the default certificate pool or those in agent.extraCertificates
serverCertificate:
path: null
fromSecret: null
# agent.registerUrl -- The URL of the steadybit server your agents will connect to.
registerUrl: https://platform.steadybit.io
# agent.extraCertificates -- Specify a containerPath where the agent loads additional certificates from.
extraCertificates:
path: null
fromVolume: null
# agent.extraVolumes -- Additional volumes to which the agent container will be mounted.
extraVolumes: []
# agent.extraVolumeMounts -- Additional volumeMounts to which the agent container will be mounted.
extraVolumeMounts: []
# agent.port -- configure the port of the agent's HTTP endpoints (expose health and debugging information)
port: 42899
# agent.env -- Additional environment variables for the steadybit agent
env: []
# agent.extraLabels -- Additional labels added to all agent kubernetes resources.
extraLabels: {}
# agent.leaderElection -- On kubernetes <= 1.11 you we need to use configmaps for the leader election. Valid values: leases, configmaps
leaderElection: leases
# agent.livenessProbe.* -- Configuration of the Kubernetes liveness probe for the agent daemonset
livenessProbe:
enabled: true
initialDelaySeconds: 30
periodSeconds: 10
timeoutSeconds: 5
failureThreshold: 5
successThreshold: 1
proxy:
# agent.proxy.host sets the STEADYBIT_AGENT_PROXY_HOST environment variable.
host: null
# agent.proxy.port sets the STEADYBIT_AGENT_PROXY_PORT environment variable.
port: 80
# agent.proxy.protocol sets the STEADYBIT_AGENT_PROXY_PROTOCOL environment variable.
protocol: HTTP
# agent.proxy.user sets the STEADYBIT_AGENT_PROXY_USER environment variable.
user: null
# agent.proxy.password sets the STEADYBIT_AGENT_PROXY_PASSWORD environment variable.
password: null
# agent.persistence.* -- persistence configuration. Needed for cleanup if agent is unexpectedly terminated.
persistence:
# agent.persistence.provider -- `filesystem` (default) or `redis`
provider: filesystem
# agent.persistence.redis.* -- additional settings if `agent.state.provider` is set to `redis`
redis:
# agent.persistence.redis.host -- the host of the redis server
host: null
# agent.persistence.redis.port -- the port of the redis server
port: 6379
# agent.persistence.redis.username -- the username of the redis server
username: null
# agent.persistence.redis.password -- the password of the redis server
password:
value: null
valueFrom: null
# agent.persistence.redis.db -- the db of the redis server
db: 0
# agent.persistence.redis.sslEnabled -- enable ssl for the redis connection
sslEnabled: false
filesystem:
# agent.persistence.filesystem.size -- the size of the volume claim
size: 200Mi
# agent.persistence.filesystem.accessMode -- the access mode of the volume claim
accessMode: ReadWriteOnce
# agent.persistence.filesystem.storageClass -- the storage class of the volume claim
storageClass: null
# deprecated: use agent.persistence.filesystem.size
size: null
# deprecated: use agent.persistence.filesystem.accessMode
accessMode: null
# deprecated: use agent.persistence.filesystem.storageClass
storageClass: null
# agent.prometheus.scrape -- Controls the `prometheus.io/scrape` pod annotation which controls whether Prometheus will automatically scrape metrics from agent pods.
prometheus:
scrape: true
extensions:
tls:
# agent.extensions.tls.clientCertificate -- optional client certificate to be used when fetching the token.
clientCertificate:
# agent.extensions.tls.clientCertificate.fromSecret -- loads key and certificate from a secret
fromSecret: null
# agent.extensions.tls.clientCertificate.containerPath -- reference certificate from a containerPath
path: null
# agent.extensions.tls.clientCertificate.key.path -- reference key from a containerPath
key:
path: null
# agent.extensions.tls.clientCertificate.password -- optional password for the key
password:
value: null
valueFrom: null
# agent.auth.oauth2.tls.serverCert -- optional server certificate(s) to be used for validation when fetching the token.
# If not specified will use the default certificate pool or those in agent.extraCertificates
serverCertificate:
path: null
fromSecret: null
# agent.extensions.tls.hostnameVerification -- controls the hostname verification for the extensions. Default: unsafe_ip_addresses; Valid values: strict, unsafe, unsafe_ip_addresses
# strict: validates hostnames and ip addresses with the SAN field of the certificate
# unsafe_ip_addresses: validates only hostnames but not ip addresses with the SAN field of the certificate
# unsafe: no hostname validation
hostnameVerification: null
autodiscovery:
# agent.extensions.autodiscovery.matchLabels -- optional - extension-pods which match these labels will be included in the extension discovery. If not specified, all extension-pods are considered.
matchLabels: {}
# agent.extensions.autodiscovery.matchLabelsExclude -- optional - extension-pods which match these labels will be excluded from extension discovery.
matchLabelsExclude: {}
# agent.extensions.autodiscovery.namespace -- optional - the namespace in which the extension-pods are discovered. If not specified, all namespaces are considered.
namespace: null
aws:
# agent.aws.accountId -- If running on AWS, the account id of the agent. If not set, the account id will be determined from the instance metadata or using sts:GetCallerIdentity.
accountId: null
replicaCount: 1
# agent.serviceName -- serviceName used for the stateful set
serviceName: steadybit-agent
logging:
# logging.level -- The active log level. Valid values are: TRACE, DEBUG, INFO, WARN, ERROR
level: INFO
# logging.format -- The format of the log entries. One of text, json
format: text
image:
# image.name -- The container image to use of the steadybit agent.
name: steadybit/agent
# image.tag -- tag name of the agent container image to use. Defaults to appVersion of this chart.
tag: null
# image.pullPolicy -- Specifies when to pull the image container.
pullPolicy: Always
pullSecrets: []
priorityClassName:
# priorityClassName.use -- use a priorityClassName
use: false
# priorityClassName.name -- The name of the priority class to be used
name: high-priority
resources:
requests:
# resources.requests.memory -- The minimal amount of memory needed
memory: "250Mi"
# resources.requests.cpu -- The minimal amount of cpu shares needed
cpu: "125m"
limits:
# resources.limits.memory -- The limit of memory to be used
memory: "500Mi"
# resources.limits.cpu -- The limit of cpu share to be used during its interval
cpu: "1000m"
updateStrategy:
# updateStrategy.type -- Which type of `updateStrategy` should be used.
type: RollingUpdate
rbac:
# rbac.create -- Specifies whether RBAC resources should be created.
create: true
# rbac.readonly -- Specifies if Kubernetes API access should only be read only.
readonly: false
# rbac.roleKind -- Specifies if Kubernetes API access should be done with a "role" (namespace scope) or a "clusterrole"
roleKind: clusterrole
serviceAccount:
# serviceAccount.create -- Specifies whether a ServiceAccount should be created.
create: true
# serviceAccount.name -- The name of the ServiceAccount to use. If not set and `create` is true, a name is generated using the fullname template.
name: steadybit-agent
# serviceAccount.eksRoleArn -- The arn of the IAM role - [see aws docs](https://docs.aws.amazon.com/eks/latest/userguide/specify-service-account-role.html)
eksRoleArn: null
# podAnnotations -- Additional annotations to be added to the agent pods.
podAnnotations: {}
# podLabels -- Additional labels to be added to the agent pods.
podLabels: {}
# podSecurityContext -- the security context used for the pod
podSecurityContext:
seccompProfile:
type: RuntimeDefault
runAsNonRoot: true
# nodeSelector -- Node labels for pod assignment
nodeSelector: {}
# tolerations -- Tolerations to influence agent pod assignment.
tolerations: []
# affinity -- Affinities to influence agent pod assignment.
affinity: {}
# containerSecurityContext -- the security context used for the pod
containerSecurityContext:
readOnlyRootFilesystem: true
allowPrivilegeEscalation: false
capabilities:
drop:
- ALL
# extension-aws.* -- settings for the aws extension. See https://github.com/steadybit/extension-aws for more information.
extension-aws:
# extension-aws.enabled -- Enable the AWS extension
enabled: false
serviceAccount:
# extensions-aws.serviceAccount.eksRoleArn -- This is the recommended way to authenticate to AWS CLI. See extension-aws README for more information.
eksRoleArn: null
# extension-azure.* -- settings for the azure extension sub chart.
# Further configuration not listed here may be required.
# See https://github.com/steadybit/extension-azure for more information.
extension-azure:
# extension-azure.enabled -- Enable the Azure extension
enabled: false
azure:
clientID: null
clientSecret: null
tenantID: null
subscriptionID: null
certificatePath: null
certificatePassword: null
userAssertionString: null
# extension-container.* -- settings for the container extension. See https://github.com/steadybit/extension-container for more information.
extension-container:
# extension-container.enabled -- Enable the container extension
enabled: true
container:
# extension-container.runtime -- The container runtime to use. Valid values: containerd, docker, cri-o. See extension-container README for more information.
runtime: containerd
# extension-datadog.* -- settings for the datadog extension. See https://github.com/steadybit/extension-datadog for more information.
extension-datadog:
# extension-datadog.enabled -- Enable the Datadog extension
enabled: false
# extension-datadog.datadog.* -- these options are for accessing the datadog API either specify the values or reference a secret see extension-datadog README for more information.
datadog:
apiKey: null
applicationKey: null
siteParameter: null
siteUrl: null
existingSecret: null
# extension-debug.* -- settings for the debug extension. See https://github.com/steadybit/extension-debug for more information.
extension-debug:
# extension-debug.enabled -- Enable the debug extension
enabled: false
# extension-dynatrace.* -- settings for the dynatrace extension. See https://github.com/steadybit/extension-dynatrace for more information.
extension-dynatrace:
# extension-dynatrace.enabled -- Enable the Dynatrace extension
enabled: false
# extension-dynatrace.dynatrace.* -- these options are for accessing the dynatrace API either specify the values or reference a secret see extension-dynatrace README for more information.
dynatrace:
apiToken: null
apiBaseUrl: null
existingSecret: null
# extension-host.* -- settings for the host extension sub chart.
# See https://github.com/steadybit/extension-host for more information.
extension-host:
# extension-host.enabled -- Enable the Datadog extension
enabled: true
# extension-gatling.* -- settings for the gatling extension sub chart.
# See https://github.com/steadybit/extension-gatling for more information.
extension-gatling:
# extension-gatling.enabled -- Enable the Gatling extension
enabled: false
# extension-gcp.* -- settings for the google cloud extension sub chart.
# Further configuration not listed here may be required.
# See https://github.com/steadybit/extension-gcp for more information.
extension-gcp:
# extension-gcp.enabled -- Enable the Google Cloud extension
enabled: false
gcp:
credentialsKeyfilePath: null
credentialsKeyfileJson: null
projectID: null
# extension-http.* -- settings for the http extension sub chart.
# See https://github.com/steadybit/extension-http for more information.
extension-http:
# extension-http.enabled -- Enable the HTTP extension
enabled: true
# extension-instana.* -- settings for the instana extension. See https://github.com/steadybit/extension-instana for more information.
extension-instana:
# extension-instana.enabled -- Enable the Instana extension
enabled: false
# extension-instana.instana.* -- these options are for accessing the dynatrace API either specify the values or reference a secret see extension-dynatrace README for more information.
instana:
apiToken: null
baseUrl: null
existingSecret: null
# extension-istio.* -- settings for the istio extension sub chart.
# Further configuration not listed here may be required.
# See https://github.com/steadybit/extension-istio for more information.
extension-istio:
# extension-istio.enabled -- Enable the Istio extension
enabled: false
# extension-jmeter.* -- settings for the jmeter extension sub chart.
# See https://github.com/steadybit/extension-jmeter for more information.
extension-jmeter:
# extension-jmeter.enabled -- Enable the JMeter extension
enabled: false
# extension-jvm.* -- settings for the jvm extension sub chart.
# See https://github.com/steadybit/extension-jvm for more information.
extension-jvm:
# extension-jvm.enabled -- Enable the JVM extension
enabled: false
# extension-k6.* -- settings for the k6 extension sub chart.
# See https://github.com/steadybit/extension-k6 for more information.
extension-k6:
# extension-k6.enabled -- Enable the K6 extension
enabled: false
# extension-kafka.* -- settings for the kafka extension sub chart.
# See https://github.com/steadybit/extension-kafka for more information.
extension-kafka:
# extension-kafka.enabled -- Enable the Kafka extension
enabled: false
kafka:
seedBrokers: null
# extension-kong.* -- settings for the kong extension sub chart.
# Further configuration not listed here may be required.
# See https://github.com/steadybit/extension-kong for more information.
extension-kong:
# extension-kong.enabled -- Enable the Kong extension
enabled: false
kong:
name: null
origin: null
# extension-kubernetes.* -- settings for the kubernetes extension sub chart.
# See https://github.com/steadybit/extension-kubernetes for more information.
extension-kubernetes:
# extension-kubernetes.enabled -- Enable the Kubernetes extension
enabled: true
# extension-loadtest.* -- settings for the steadybit internal loadtest extension sub chart.
# Don't use this unless Steadybit support told you to do so. This deploys an extension which will create different load scenarios to test your steadybit setup.
extension-loadtest:
# extension-loadtest.enabled -- Enable the loadtest extension
enabled: false
# extension-newrelic.* -- settings for the newrelic extension sub chart.
# Further configuration not listed here may be required.
# See https://github.com/steadybit/extension-newrelic for more information.
extension-newrelic:
# extension-newrelic.enabled -- Enable the New Relic extension
enabled: false
newrelic:
apiBaseUrl: null
apiKey: null
insightsCollectorApiBaseUrl: null
insightsCollectorApiKey: null
existingSecret: null
# extension-postman.* -- settings for the postman extension sub chart.
# Further configuration not listed here may be required.
# See https://github.com/steadybit/extension-postman for more information.
extension-postman:
# extension-postman.enabled -- Enable the Postman extension
enabled: false
postman:
apiKey: null
# extension-prometheus.* -- settings for the prometheus extension sub chart.
# Further configuration not listed here may be required.
# See https://github.com/steadybit/extension-prometheus for more information.
extension-prometheus:
# extension-prometheus.enabled -- Enable the Prometheus extension
enabled: false
# extension-stackstate.* -- settings for the stackstate extension sub chart.
# Further configuration not listed here may be required.
# See https://github.com/steadybit/extension-stackstate for more information.
extension-stackstate:
# extension-stackstate.enabled -- Enable the Stackstate extension
enabled: false
stackstate:
serviceToken: null
apiBaseUrl: null
# extension-grafana.* -- settings for the grafana extension sub chart.
# Further configuration not listed here may be required.
# See https://github.com/steadybit/extension-grafana for more information.
extension-grafana:
# extension-grafana.enabled -- Enable the Grafana extension
enabled: false
grafana:
serviceToken: null
apiBaseUrl: null