KubeZero/charts/kubezero-kiam/values.yaml

85 lines
2.1 KiB
YAML
Raw Normal View History

annotateKubeSystemNameSpace: false
kiam:
2020-09-14 15:06:53 +00:00
enabled: true
server:
# kiam.server.assumeRoleArn -- kiam server IAM role to assume, required as we run the agents next to the servers normally, eg. arn:aws:iam::123456789012:role/kiam-server-role
assumeRoleArn: ''
useHostNetwork: true
sslCertHostPath: /etc/ssl/certs
tlsSecret: kiam-server-tls
2020-05-15 15:35:33 +00:00
tlsCerts:
certFileName: tls.crt
keyFileName: tls.key
caFileName: ca.crt
service:
port: 6444
targetPort: 6444
deployment:
enabled: true
2020-05-15 15:07:01 +00:00
replicas: 1
updateStrategy: RollingUpdate
2020-09-10 13:22:47 +00:00
resources:
requests:
memory: "64Mi"
2021-03-05 09:22:54 +00:00
cpu: "50m"
2020-09-10 13:22:47 +00:00
limits:
memory: "128Mi"
2021-03-05 09:22:54 +00:00
# cpu: "300m"
tolerations:
- key: node-role.kubernetes.io/master
effect: NoSchedule
nodeSelector:
node-role.kubernetes.io/master: ""
priorityClassName: system-cluster-critical
prometheus:
servicemonitor:
enabled: false
interval: 30s
labels:
release: metrics
2020-05-15 15:07:01 +00:00
log:
level: info
2020-05-15 15:07:01 +00:00
agent:
gatewayTimeoutCreation: "5s"
updateStrategy: RollingUpdate
# IP tables set on each node at boot, see CloudBender
host:
iptables: false
interface: "cali+"
2021-01-21 13:35:20 +00:00
allowRouteRegexp: '^/latest/(meta-data/instance-id|dynamic)'
sslCertHostPath: /etc/ssl/certs
tlsSecret: kiam-agent-tls
2020-05-15 15:35:33 +00:00
tlsCerts:
certFileName: tls.crt
keyFileName: tls.key
caFileName: ca.crt
2020-09-10 13:22:47 +00:00
resources:
requests:
memory: "16Mi"
2020-09-10 13:22:47 +00:00
cpu: "50m"
limits:
memory: "64Mi"
2021-03-05 09:22:54 +00:00
# cpu: "50m"
tolerations:
- key: node-role.kubernetes.io/master
effect: NoSchedule
- key: kubezero-workergroup
effect: NoSchedule
2021-07-19 14:36:07 +00:00
operator: Exists
priorityClassName: system-node-critical
prometheus:
servicemonitor:
enabled: false
interval: 30s
labels:
release: metrics
2020-05-15 15:07:01 +00:00
log:
level: info
# extraEnv:
# - name: GRPC_GO_LOG_SEVERITY_LEVEL
# value: "info"
# - name: GRPC_GO_LOG_VERBOSITY_LEVEL
# value: "8"