-
Notifications
You must be signed in to change notification settings - Fork 94
/
Copy pathvalues.yaml
452 lines (392 loc) · 12.9 KB
/
values.yaml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
351
352
353
354
355
356
357
358
359
360
361
362
363
364
365
366
367
368
369
370
371
372
373
374
375
376
377
378
379
380
381
382
383
384
385
386
387
388
389
390
391
392
393
394
395
396
397
398
399
400
401
402
403
404
405
406
407
408
409
410
411
412
413
414
415
416
417
418
419
420
421
422
423
424
425
426
427
428
429
430
431
432
433
434
435
436
437
438
439
440
441
442
443
444
445
446
447
448
449
450
451
452
# prefect-server configuration
# serverVersionTag configures the default tag for prefect server
# images which are used for the apollo, graphql, and towel
# services. If null, this value defaults to `appVersion` but is
# provided here to allow override at chart install time. Each
# service image tag can be overriden individually in their
# configurations but it is not recommended.
# See https://github.com/helm/helm/issues/8194 for details
# on why the `appVersion` cannot be set at install time.
serverVersionTag: null
# prefectVersionTag configures the default tag for Prefect Core based
# services, including the agent and default tenant creation job.
# This value is automatically pinned on chart release to the latest
# core version.
prefectVersionTag: "latest"
# uiVersionTag configures the default tag for the Prefect UI service.
# It is defined here for easy update using `sed` for automation.
# This value is automatically pinned on chart release to the latest
# ui version.
uiVersionTag: "latest"
# includeChartNameInComponents determines if the name of the chart should
# be included in generated component names. By default, it will not
# be included and names will be formatted as {release}-{component}.
# If 'true'', names will be formatted as {release}-{chart}-{compnent}.
# This is useful if this chart is being used as a subchart with names
# that may collide with other objects.
includeChartNameInComponents: false
# imagePullSecrets provides configuration to reference the k8s Secret
# resources the Helm chart's pods can get credentials from to pull
# their images.
imagePullSecrets:
[]
# - name: "secret_name"
# annotations to merge into all object configurations
# NOTE: These will not apply to the postgresql subchart and must be
# defined within `postgresql` as well if that is desired
annotations: {}
# postgresql configures the backing database
# NOTE: the variables names must remain as is to match the
# bitnami subchart even if the bitnami subchart is not being
# used, these variables are used to create the connection
# string
postgresql:
auth:
# postgresql.auth.username defines the username to authenticate
# with.
# NOTE: If you are using Azure, this will include an '@'
# which must be encoded as '%40' for the connection string
# to work with both Hasura, the GraphQL server, and the
# Alembic migration manager
username: prefect
# postgresql.auth.password sets the password to be used if
# `existingSecret` is not set. This is the password for
# `postgresqlUsername` and will be set within the secret at
# the key `postgres-password`. This argument is only relevant
# when using the Postgres database included in the chart.
# For an external postgres connection, you must create
# and use `existingSecret` instead of `postgresqlPassword`.
# postgresqlPassword: use-a-strong-password
password: prefect
database: prefect
postgresPassword: prefect
# postgresql.auth.existingSecret configures which secret should be referenced
# for access to the database. If null and `useSubChart` is
# enabled, the secret will be generated. If using an external
# postgres service, this value should be set to the name of
# an existing Kubernetes secret. This secret must contain
# a key-value pair where the key is `postgres-password `
# and the value is your password. For more information,
# see the "Database" section of the README.
existingSecret: null
# externalHostname defines the address to contact an externally
# managed postgres database instance at. This is not required if
# `internalPostgres` is `true`
externalHostname: ""
# servicePort configures the port that the database should be
# accessed at
primary:
service:
type: ClusterIP
ports:
postgresql: 5432
initdb:
user: postgres
scripts:
create_pgcrypto.sql: |
-- create pgcrypto extension, required for Hasura UUID
CREATE EXTENSION IF NOT EXISTS pgcrypto;
CREATE EXTENSION IF NOT EXISTS "pg_trgm";
SET TIME ZONE 'UTC';
# postgresql.primary.persistence enables a PVC that stores the database between
# deployments. If making changes to the database deployment, this
# PVC will need to be deleted for database changes to take effect.
# This is especially notable when the authentication password
# changes on redeploys.
# This is disabled by default because we do not recommend using
# the subchart deployment for production deployments.
persistence:
enabled: false
size: 8Gi
# useSubChart determines if a this chart should deploy a
# user-manager postgres database or use an externally managed
# postgres instance. If `useSubChart` is `true`, the
# bitnami/postgresql subchart will be deployed
useSubChart: true
# prefectConfig allows override of prefect_server/config.toml values
# Values placed here will result in environment variable definitions
# starting with "PREFECT_SERVER__" and will be passed to relevant
# services
prefectConfig:
# env: "local"
# debug: "false"
# queued_runs_returned_limit: "25"
# hasura:
# execute_retry_seconds: "10"
# logging:
# level: "DEBUG"
# format: "[%(asctime)s] %(levelname)s - %(name)s | %(message)s"
# services:
# scheduler:
# scheduler_loop_seconds: "300"
# lazarus:
# resurrection_attempt_limit: "3"
# telemetry:
# enabled: "true"
# hasura configures the Prefect hasura deployment and service
# which creates a graphql api from the postgres database
hasura:
# hasura.image configures the docker image used for hasura
# and is the only image in the chart that is not hosted by
# Prefect
image:
name: hasura/graphql-engine
tag: v2.1.1
pullPolicy: IfNotPresent
pullSecrets: []
# - name: "secret_name"
service:
# type defines the service type and defaults to ClusterIP
# because this service does not need to be exposed outside
# the cluster
type: ClusterIP
port: 3000
labels: {}
annotations: {}
podAnnotations: {}
replicas: 1
strategy: {}
podSecurityContext: {}
securityContext: {}
env: []
resources: {}
nodeSelector: {}
tolerations: []
affinity: {}
# graphql configures the Prefect graphql deployment and service
# which provides a python graphql server on starlette
graphql:
image:
name: prefecthq/server
tag: null
pullPolicy: Always
pullSecrets: []
# - name: "secret_name"
service:
type: ClusterIP
port: 4201
labels: {}
annotations: {}
podAnnotations: {}
replicas: 1
strategy: {}
podSecurityContext: {}
securityContext: {}
env: []
resources: {}
nodeSelector: {}
tolerations: []
affinity: {}
init:
enabled: true
# init.resources configures resources for the initContainer
# which upgrades the database
env: []
resources: {}
securityContext: {}
# apollo configures the Prefect apollo deployment and service
# which provides a unified graphql schema for users and the UI
# to interact with
apollo:
image:
name: prefecthq/apollo
tag: null
pullPolicy: Always
pullSecrets: []
# - name: "secret_name"
options:
telemetryEnabled: true
service:
# type defines the service type and defaults to LoadBalancer
# to expose the apollo service to users and the UI.
type: LoadBalancer
port: 4200
ingress:
enabled: false
# For Kubernetes >= 1.18 you should specify the ingress-controller via the field ingressClassName
# See https://kubernetes.io/blog/2020/04/02/improvements-to-the-ingress-api-in-kubernetes-1.18/#specifying-the-class-of-an-ingress
# ingressClassName: nginx
annotations: {}
labels: {}
## Hosts must be provided if Ingress is enabled.
hosts:
[]
# - prefecthq-apollo.domain.com
## Path to use for ingress rules
path: /
## TLS configuration for Prefect Ingress
## Secret must be manually created in the namespace
tls: []
# - secretName: prefecthq-apollo-general-tls
# hosts:
# - prefecthq-apollo.example.com
labels: {}
annotations: {}
podAnnotations: {}
replicas: 1
strategy: {}
podSecurityContext: {}
securityContext: {}
env: []
resources: {}
nodeSelector: {}
tolerations: []
affinity: {}
# ui configures the Prefect ui deployment and service
ui:
image:
name: prefecthq/ui
tag: null # See `uiVersionTag` instead
pullPolicy: Always
pullSecrets: []
# - name: "secret_name"
# apolloApiUrl defines the default gateway to the Apollo
# GraphQL server. This location must be accessible by the
# user of the API because the browser is making requests
# (not the ui server)
apolloApiUrl: http://localhost:4200/graphql
service:
# type defines the service type and defaults to LoadBalancer
# to expose the ui service to users and the UI.
type: LoadBalancer
port: 8080
ingress:
enabled: false
# For Kubernetes >= 1.18 you should specify the ingress-controller via the field ingressClassName
# See https://kubernetes.io/blog/2020/04/02/improvements-to-the-ingress-api-in-kubernetes-1.18/#specifying-the-class-of-an-ingress
# ingressClassName: nginx
annotations: {}
labels: {}
## Hosts must be provided if Ingress is enabled.
hosts:
[]
# - prefecthq-ui.domain.com
## Path to use for ingress rules
path: /
## TLS configuration for Prefect Ingress
## Secret must be manually created in the namespace
tls: []
# - secretName: prefecthq-ui-general-tls
# hosts:
# - prefecthq-ui.example.com
labels: {}
annotations: {}
podAnnotations: {}
replicas: 1
strategy: {}
podSecurityContext: {}
securityContext: {}
env: []
resources: {}
nodeSelector: {}
tolerations: []
affinity: {}
# towel configures the Prefect towel deployment which provides
# a group of useful services
towel:
image:
name: prefecthq/server
tag: null
pullPolicy: Always
pullSecrets: []
# - name: "secret_name"
labels: {}
annotations: {}
podAnnotations: {}
replicas: 1
strategy: {}
podSecurityContext: {}
securityContext: {}
env: []
resources: {}
nodeSelector: {}
tolerations: []
affinity: {}
# agent configures an optional Prefect Kubernetes agent which will
# schedule flows as jobs in the cluster
agent:
# enabled determines if the Prefect Kubernetes agent is deployed
enabled: false
# prefectLabels defines what scheduling labels (not K8s labels) should
# be associated with the agent
prefectLabels: []
# jobTemplateFilePath defines which template to use for the agent's jobs. Defaults
# to an empty string, which will use the default template.
# reference: https://docs.prefect.io/orchestration/agents/kubernetes.html#custom-job-template
jobTemplateFilePath: ""
# mount job template file from Kubernetes configmap. Filename in configmap must match the filename in jobTemplateFilePath.
jobTemplateFileConfigMap: ""
# image configures the container image for the agent deployment
image:
name: prefecthq/prefect
tag: null
pullPolicy: Always
pullSecrets: []
# - name: "secret_name"
labels: {}
annotations: {}
podAnnotations: {}
replicas: 1
strategy: {}
podSecurityContext: {}
securityContext: {}
env: []
nodeSelector: {}
tolerations: []
affinity: {}
# resources defines the computational resources for the Prefect Agent
resources:
limits:
cpu: 100m
memory: 128Mi
# job configures values associated with jobs the agent launches
job:
# resources defines the computational resources for flow jobs
resources:
limits:
memory: ""
cpu: ""
requests:
memory: ""
cpu: ""
# imagePullPolicy configures the image pull policy for the flow job
imagePullPolicy: ""
# imagePullSecrets defines image pull secrets for the flow job
# NOTE: These secrets are not merged with the global imagePullSecrets
imagePullSecrets: []
# - "secret_name"
serviceAccount:
# create specifies whether a service account should be created to be
# associated with the prefect-server infrastructure
create: true
annotations: {}
# name sets the name of the service account to use
# If not set and create is true, a name is generated using the
# prefect-server.nameField template
name: null
# jobs contain one-time job definitions
jobs:
# create a tenant so that Agent and UI are immediately usable after installation
createTenant:
enabled: false
# tenant sets the details of the created tenant
tenant:
name: default
slug: default
# image configures the container image for the job
image:
name: prefecthq/prefect
tag: null
pullPolicy: Always
pullSecrets: []
# - name: "secret_name"
labels: {}
annotations: {}
podSecurityContext: {}
securityContext: {}
nodeSelector: {}
tolerations: []
affinity: {}
resources: {}
# backoffLimit configures the number of retries; needed to wait for the server to become available
backoffLimit: 10