Gitiles
Code Review Sign In
code.v1.dodo.cloud / pcloud / 2a79bfe4b885d4db6902603d9a6fdcd4358aacf7 / . / charts / hydra-maester / values.yaml
blob: caa6a90bde20d4e67a881ebcad9dd6f9fc1e03ac [file] [log] [blame]
Giorgi Lekveishvili925f0de2024-03-14 18:51:56 +0400[diff] [blame]1# -- Number of replicas in deployment
2replicaCount: 1
3
4# -- The Controller have CREATE and READ access to all Secrets in the namespaces listed below.
5enabledNamespaces: []
6
7# -- Single namespace mode. If enabled the controller will watch for resources only from namespace it is deployed in, ignoring others
8singleNamespaceMode: false
9
10image:
11 # -- Ory Hydra-maester image
12 repository: oryd/hydra-maester
13 # -- Ory Hydra-maester version
14 tag: v0.0.27
15 # -- Image pull policy
16 pullPolicy: IfNotPresent
17
18# -- Image pull secrets
19imagePullSecrets: []
20
21# -- Pod priority
22## https://kubernetes.io/docs/concepts/configuration/pod-priority-preemption/
23priorityClassName: ""
24
25# -- Connection data to admin service of Hydra
26adminService:
27 # -- Service name
28 name:
29 # -- Service port
30 port:
31 # -- Set the clients endpoint, should be `/clients` for Hydra 1.x and
32 # `/admin/clients` for Hydra 2.x
33 endpoint: /admin/clients
34
35forwardedProto:
36
37deployment:
38 resources:
39 {}
40 # We usually recommend not to specify default resources and to leave this as a conscious
41 # choice for the user. This also increases chances charts run on environments with little
42 # resources, such as Minikube. If you do want to specify resources, uncomment the following
43 # lines, adjust them as necessary, and remove the curly braces after 'resources:'.
44 # limits:
45 # cpu: 100m
46 # memory: 30Mi
47 # requests:
48 # cpu: 100m
49 # memory: 20Mi
50
51 # -- Default security context
52 securityContext:
53 capabilities:
54 drop:
55 - ALL
56 seccompProfile:
57 type: RuntimeDefault
58 readOnlyRootFilesystem: true
59 runAsNonRoot: true
60 runAsUser: 1000
61 allowPrivilegeEscalation: false
62 privileged: false
63
64 # -- Node labels for pod assignment.
65 nodeSelector: {}
66 # If you do want to specify node labels, uncomment the following
67 # lines, adjust them as necessary, and remove the curly braces after 'annotations:'.
68 # foo: bar
69
70 # -- Configure node tolerations.
71 tolerations: []
72 # -- Deployment level extra annotations
73 extraAnnotations: {}
74 # -- Deployment level extra labels
75 extraLabels: {}
76
77 # -- Configure pod topologySpreadConstraints.
78 topologySpreadConstraints: []
79 # - maxSkew: 1
80 # topologyKey: topology.kubernetes.io/zone
81 # whenUnsatisfiable: DoNotSchedule
82 # labelSelector:
83 # matchLabels:
84 # app.kubernetes.io/name: hydra
85 # app.kubernetes.io/instance: hydra
86
87 # -- Configure pod dnsConfig.
88 dnsConfig: {}
89 # options:
90 # - name: "ndots"
91 # value: "1"
92
93 # -- Specify pod metadata, this metadata is added directly to the pod, and not higher objects
94 podMetadata:
95 # -- Extra pod level labels
96 labels: {}
97 # -- Extra pod level annotations
98 annotations: {}
99
100 # https://github.com/kubernetes/kubernetes/issues/57601
101 # -- This applications connects to the k8s API and requires the permissions
102 automountServiceAccountToken: true
103
104 # -- Arguments to be passed to the program
105 args:
106 # -- The minimum frequency at which watched resources are reconciled
107 syncPeriod: ""
108 # syncPeriod: 10h
109
110 # -- Configure service account
111 serviceAccount:
112 # -- Annotations to add to the service account
113 annotations: {}
114
115# -- Configure node affinity
116affinity: {}
117
118# -- PodDistributionBudget configuration
119pdb:
120 enabled: false
121 spec:
122 minAvailable: 1