forked from aws/eks-charts
-
Notifications
You must be signed in to change notification settings - Fork 0
/
values.yaml
168 lines (143 loc) · 4.29 KB
/
values.yaml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
# Default values for appmesh-controller.
# This is a YAML-formatted file.
# Declare variables to be passed into your templates.
replicaCount: 1
region: ""
accountId: ""
preview: false
enableBackendGroups: false
clusterName: ""
useAwsDualStackEndpoint: false
useAwsFIPSEndpoint: false
image:
repository: 840364872350.dkr.ecr.us-west-2.amazonaws.com/amazon/appmesh-controller
tag: v1.13.1
pullPolicy: IfNotPresent
sidecar:
image:
repository: 840364872350.dkr.ecr.us-west-2.amazonaws.com/aws-appmesh-envoy
tag: v1.29.6.0-prod
# sidecar.logLevel: Envoy log level can be info, warn, error or debug
logLevel: info
envoyAdminAccessPort: 9901
envoyAdminAccessLogFile: /tmp/envoy_admin_access.log
envoyAdminAccessEnableIPv6: false
useDualStackEndpoint: false
useFipsEndpoint: false
resources:
# sidecar.resources.requests: Envoy CPU and memory requests
requests:
cpu: 10m
memory: 32Mi
# sidecar.resources/limits: Envoy CPU and memory limits
limits:
cpu: ""
memory: ""
lifecycleHooks:
# sidecar.lifecycleHooks: Envoy PreStop Hook Delay
preStopDelay: 20
postStartInterval: 5
postStartTimeout: 180
probes:
# sidecar.probes: Envoy Readiness Probe
readinessProbeInitialDelay: 1
readinessProbePeriod: 10
waitUntilProxyReady: false
init:
image:
repository: 840364872350.dkr.ecr.us-west-2.amazonaws.com/aws-appmesh-proxy-route-manager
tag: v7-prod
xray:
image:
repository: public.ecr.aws/xray/aws-xray-daemon
tag: latest
nameOverride: ""
fullnameOverride: ""
resources:
limits:
cpu: 2000m
memory: 1Gi
requests:
cpu: 100m
memory: 200Mi
nodeSelector: {}
tolerations: []
affinity: {}
podAnnotations: {}
podLabels: {}
cloudMapCustomHealthCheck:
# cloudMapCustomHealthCheck.enabled: `true` if CustomHealthCheck needs to be enabled in CloudMap
enabled: false
cloudMapDNS:
# cloudMapDNS.ttl if set will use this global ttl value
ttl: 300
sds:
# sds.enabled: `true` if SDS based mTLS support needs to be enabled in envoy
enabled: false
#sds.udsPath: UDS Path of the SDS Provider. Default value is tied to SPIRE.
udsPath: /run/spire/sockets/agent.sock
serviceAccount:
# serviceAccount.create: Whether to create a service account or not
create: true
# serviceAccount.name: The name of the service account to create or use
name: ""
# serviceAccount.annotations: optional annotations to be applied to service account
annotations: {}
rbac:
# rbac.create: `true` if rbac resources should be created
create: true
# rbac.pspEnabled: `true` if PodSecurityPolicy resources should be created
pspEnabled: false
log:
#log.level: info (default), debug
level: "info"
tracing:
# tracing.enabled: `true` if Envoy should be configured tracing
enabled: false
# tracing.provider: can be x-ray, jaeger or datadog
provider: x-ray
# tracing.address: Jaeger or Datadog agent server address (ignored for X-Ray)
address: appmesh-jaeger.appmesh-system
# tracing.port: X-Ray, Jaeger or Datadog agent server port
port: 2000
# tracing.samplingRate: X-Ray tracer sampling rate
samplingRate: 0.05
# tracing.logLevel: X-Ray agent log level
logLevel: prod
# tracing.role: X-Ray agent IAM role to upload segments to a different account
role: ""
stats:
# stats.tagsEnabled: `true` if Envoy should include app-mesh tags
tagsEnabled: false
# stats.statsdEnabled: `true` if Envoy should publish stats to statsd endpoint @ 127.0.0.1:8125
statsdEnabled: false
#stats.statsdAddress: DogStatsD daemon address
statsdAddress: 127.0.0.1
#stats.statsdPort: DogStatsD daemon port
statsdPort: 8125
#stats.statsdSocketPath: DogStatsD unix domain socket path
statsdSocketPath: ""
# Enable cert-manager
enableCertManager: false
# podDisruptionBudget for Appmesh controller
podDisruptionBudget: {}
# minAvailable: 1
# Environment variables to set in appmesh-controller pod
env: {}
# TLS setting for appmesh-controller
tlsMinVersion: VersionTLS12
tlsCipherSuite:
#Example
#env:
# http_proxy: http://proxyserver:3128
# https_proxy: http://proxyserver:3128
# no_proxy: "localhost,127.0.0.1,.cluster.local"
# Liveness probe configuration for the controller
livenessProbe:
failureThreshold: 2
httpGet:
path: /healthz
port: 61779
scheme: HTTP
initialDelaySeconds: 30
timeoutSeconds: 10