# Copyright Broadcom, Inc. All Rights Reserved. # SPDX-License-Identifier: APACHE-2.0 ## @section Global parameters ## Global Docker image parameters ## Please, note that this will override the image parameters, including dependencies, configured to use the global value ## Current available global Docker image parameters: imageRegistry, imagePullSecrets and storageClass ## ## @param global.imageRegistry Global Docker image registry ## @param global.imagePullSecrets Global Docker registry secret names as an array ## @param global.defaultStorageClass Global default StorageClass for Persistent Volume(s) ## @param global.storageClass DEPRECATED: use global.defaultStorageClass instead ## global: imageRegistry: "" ## E.g. ## imagePullSecrets: ## - myRegistryKeySecretName ## imagePullSecrets: [] defaultStorageClass: "" storageClass: "" ## Security parameters ## security: ## @param global.security.allowInsecureImages Allows skipping image verification allowInsecureImages: false ## Compatibility adaptations for Kubernetes platforms ## compatibility: ## Compatibility adaptations for Openshift ## openshift: ## @param global.compatibility.openshift.adaptSecurityContext Adapt the securityContext sections of the deployment to make them compatible with Openshift restricted-v2 SCC: remove runAsUser, runAsGroup and fsGroup and let the platform use their allowed default IDs. Possible values: auto (apply if the detected running cluster is Openshift), force (perform the adaptation always), disabled (do not perform adaptation) ## adaptSecurityContext: auto ## @section Common parameters ## ## @param kubeVersion Override Kubernetes version ## kubeVersion: "" ## @param nameOverride String to partially override common.names.name ## nameOverride: "" ## @param fullnameOverride String to fully override common.names.fullname ## fullnameOverride: "" ## @param namespaceOverride String to fully override common.names.namespace ## namespaceOverride: "" ## @param commonLabels Labels to add to all deployed objects ## commonLabels: {} ## @param commonAnnotations Annotations to add to all deployed objects ## commonAnnotations: {} ## @param clusterDomain Kubernetes cluster domain name ## clusterDomain: cluster.local ## @param extraDeploy Array of extra objects to deploy with the release ## extraDeploy: [] ## Enable diagnostic mode in the deployment ## diagnosticMode: ## @param diagnosticMode.enabled Enable diagnostic mode (all probes will be disabled and the command will be overridden) ## enabled: false ## @param diagnosticMode.command Command to override all containers in the deployment ## command: - sleep ## @param diagnosticMode.args Args to override all containers in the deployment ## args: - infinity ## @section MongoDB(®) Sharded parameters ## ## Bitnami MongoDB(®) Sharded image version ## ref: https://hub.docker.com/r/bitnami/mongodb-sharded/tags/ ## @param image.registry [default: REGISTRY_NAME] MongoDB(®) Sharded image registry ## @param image.repository [default: REPOSITORY_NAME/mongodb-sharded] MongoDB(®) Sharded Image name ## @skip image.tag MongoDB(®) Sharded image tag (immutable tags are recommended) ## @param image.digest MongoDB(®) Sharded image digest in the way sha256:aa.... Please note this parameter, if set, will override the tag ## @param image.pullPolicy MongoDB(®) Sharded image pull policy ## @param image.pullSecrets Specify docker-registry secret names as an array ## @param image.debug Specify if debug logs should be enabled ## image: registry: docker.io repository: bitnami/mongodb-sharded tag: 8.0.10-debian-12-r2 digest: "" ## Specify a imagePullPolicy ## ref: https://kubernetes.io/docs/concepts/containers/images/#pre-pulled-images ## pullPolicy: IfNotPresent ## Optionally specify an array of imagePullSecrets. ## Secrets must be manually created in the namespace. ## ref: https://kubernetes.io/docs/tasks/configure-pod-container/pull-image-private-registry/ ## e.g: ## pullSecrets: ## - myRegistryKeySecretName ## pullSecrets: [] ## Set to true if you would like to see extra information on logs ## debug: false ## MongoDB(®) Authentication parameters ## auth: ## @param auth.enabled Enable authentication ## ref: https://docs.mongodb.com/manual/tutorial/enable-authentication/ ## enabled: true ## @param auth.rootUser MongoDB(®) root user ## rootUser: root ## @param auth.rootPassword MongoDB(®) root password ## ref: https://github.com/bitnami/containers/tree/main/bitnami/mongodb#setting-the-root-user-and-password-on-first-run ## rootPassword: "Mongodb01" ## @param auth.replicaSetKey Key used for authentication in the replicaset ## replicaSetKey: "" ## @param auth.existingSecret Existing secret with MongoDB(®) credentials (keys: `mongodb-password`, `mongodb-root-password`, `mongodb-replica-set-key`) ## NOTE: When it's set the previous parameters are ignored. ## existingSecret: "" ## @param auth.usePasswordFiles Mount credentials as files instead of using environment variables ## usePasswordFiles: true ## @param shards Number of shards to be created ## ref: https://docs.mongodb.com/manual/core/sharded-cluster-shards/ ## shards: 2 ## Properties for all of the pods in the cluster (shards, config servers and mongos) ## common: ## @param common.mongodbEnableNumactl Enable launch MongoDB instance prefixed with "numactl --interleave=all" ## ref: https://docs.mongodb.com/manual/administration/production-notes/#mongodb-and-numa-hardware ## mongodbEnableNumactl: false ## @param common.useHostnames Enable DNS hostnames in the replica set config ## useHostnames: true ## @param common.mongodbEnableIPv6 Switch to enable/disable IPv6 on MongoDB® ## ref: https://github.com/bitnami/containers/tree/main/bitnami/mongodb#enablingdisabling-ipv6 ## mongodbEnableIPv6: false ## @param common.mongodbDirectoryPerDB Switch to enable/disable DirectoryPerDB on MongoDB® ## ref: https://github.com/bitnami/containers/tree/main/bitnami/mongodb#enablingdisabling-directoryperdb ## mongodbDirectoryPerDB: false ## @param common.mongodbSystemLogVerbosity MongoDB® system log verbosity level ## ref: https://docs.mongodb.com/manual/reference/program/mongo/#cmdoption-mongo-ipv6 ## mongodbSystemLogVerbosity: 0 ## @param common.mongodbDisableSystemLog Whether to disable MongoDB® system log or not ## ref: https://github.com/bitnami/containers/tree/main/bitnami/mongodb#configuring-system-log-verbosity-level ## mongodbDisableSystemLog: false ## @param common.mongodbInitRetryAttempts Maximum retries for checking the MongoDB® initialization status ## mongodbInitRetryAttempts: 24 ## @param common.mongodbInitRetryDelay Time (in seconds) to wait between retries for checking the MongoDB® initialization status ## mongodbInitRetryDelay: 5 ## @param common.initScriptsCM Configmap with init scripts to execute ## initScriptsCM: "" ## @param common.initScriptsSecret Secret with init scripts to execute (for sensitive data) ## initScriptsSecret: "" ## @param common.extraEnvVars An array to add extra env vars ## For example: ## extraEnvVars: ## - name: KIBANA_ELASTICSEARCH_URL ## value: test ## extraEnvVars: [] ## @param common.extraEnvVarsCM Name of a ConfigMap containing extra env vars ## extraEnvVarsCM: "" ## @param common.extraEnvVarsSecret Name of a Secret containing extra env vars ## extraEnvVarsSecret: "" ## @param common.sidecars Add sidecars to the pod ## For example: ## sidecars: ## - name: your-image-name ## image: your-image ## imagePullPolicy: Always ## ports: ## - name: portname ## containerPort: 1234 ## sidecars: [] ## @param common.initContainers Add init containers to the pod ## For example: ## initcontainers: ## - name: your-image-name ## image: your-image ## imagePullPolicy: Always ## initContainers: [] ## @param common.podAnnotations Additional pod annotations ## ref: https://kubernetes.io/docs/concepts/overview/working-with-objects/annotations/ ## podAnnotations: {} ## @param common.podLabels Additional pod labels ## ref: https://kubernetes.io/docs/concepts/overview/working-with-objects/labels/ ## podLabels: {} ## @param common.extraVolumes Array to add extra volumes ## extraVolumes: [] ## @param common.extraVolumeMounts Array to add extra mounts (normally used with extraVolumes) ## extraVolumeMounts: [] ## @param common.containerPorts.mongodb MongoDB container port ## containerPorts: mongodb: 27017 ## K8s Service Account. ## ref: https://kubernetes.io/docs/tasks/configure-pod-container/configure-service-account/ ## serviceAccount: ## @param common.serviceAccount.create Whether to create a Service Account for all pods automatically ## create: true ## @param common.serviceAccount.name Name of a Service Account to be used by all Pods ## If not set and create is true, a name is generated using the XXX.fullname template ## name: "" ## @param common.serviceAccount.annotations Additional Service Account annotations (evaluated as a template) ## annotations: {} ## @param common.serviceAccount.automountServiceAccountToken Automount service account token for the server service account ## automountServiceAccountToken: false ## Init containers parameters: ## volumePermissions: Change the owner and group of the persistent volume mountpoint to runAsUser:fsGroup values from the securityContext section. ## volumePermissions: ## @param volumePermissions.enabled Enable init container that changes volume permissions in the data directory (for cases where the default k8s `runAsUser` and `fsUser` values do not work) ## enabled: false ## @param volumePermissions.image.registry [default: REGISTRY_NAME] Init container volume-permissions image registry ## @param volumePermissions.image.repository [default: REPOSITORY_NAME/os-shell] Init container volume-permissions image name ## @skip volumePermissions.image.tag Init container volume-permissions image tag ## @param volumePermissions.image.digest Init container volume-permissions image digest in the way sha256:aa.... Please note this parameter, if set, will override the tag ## @param volumePermissions.image.pullPolicy Init container volume-permissions image pull policy ## @param volumePermissions.image.pullSecrets Init container volume-permissions image pull secrets ## image: registry: docker.io repository: bitnami/os-shell tag: 12-debian-12-r40 digest: "" pullPolicy: IfNotPresent ## Optionally specify an array of imagePullSecrets. ## Secrets must be manually created in the namespace. ## ref: https://kubernetes.io/docs/tasks/configure-pod-container/pull-image-private-registry/ ## e.g: ## pullSecrets: ## - myRegistryKeySecretName ## pullSecrets: [] ## @param volumePermissions.resourcesPreset Set container resources according to one common preset (allowed values: none, nano, micro, small, medium, large, xlarge, 2xlarge). This is ignored if volumePermissions.resources is set (volumePermissions.resources is recommended for production). ## More information: https://github.com/bitnami/charts/blob/main/bitnami/common/templates/_resources.tpl#L15 ## resourcesPreset: "nano" ## @param volumePermissions.resources Set container requests and limits for different resources like CPU or memory (essential for production workloads) ## Example: ## resources: ## requests: ## cpu: 2 ## memory: 512Mi ## limits: ## cpu: 3 ## memory: 1024Mi ## resources: {} ## Kubernetes service type ## ref: https://kubernetes.io/docs/concepts/services-networking/service/ ## service: ## @param service.name Specify an explicit service name ## name: "" ## @param service.annotations Additional service annotations (evaluate as a template) ## ref: https://kubernetes.io/docs/concepts/overview/working-with-objects/annotations/ ## annotations: {} ## @param service.type Service type ## ref: https://kubernetes.io/docs/concepts/services-networking/service/#publishing-services-service-types ## type: ClusterIP ## @param service.externalTrafficPolicy External traffic policy ## Enable client source IP preservation ## ref: https://kubernetes.io/docs/concepts/services-networking/service/#publishing-services-service-types ## externalTrafficPolicy: Cluster ## @param service.ports.mongodb MongoDB® service port ## ports: mongodb: 27017 ## @param service.clusterIP Static clusterIP or None for headless services ## ref: https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.16/#servicespec-v1-core ## clusterIP: "" ## @param service.nodePorts.mongodb Specify the nodePort value for the LoadBalancer and NodePort service types. ## ref: https://kubernetes.io/docs/concepts/services-networking/service/#type-nodeport ## nodePorts: mongodb: "" ## @param service.externalIPs External IP list to use with ClusterIP service type ## ref: https://kubernetes.io/docs/concepts/services-networking/service/#external-ips ## externalIPs: [] ## @param service.loadBalancerIP Static IP Address to use for LoadBalancer service type ## ref: https://kubernetes.io/docs/concepts/services-networking/service/#loadbalancer ## loadBalancerIP: "" ## @param service.loadBalancerSourceRanges List of IP ranges allowed access to load balancer (if supported) ## ref: https://kubernetes.io/docs/tasks/access-application-cluster/configure-cloud-provider-firewall/#restrict-access-for-loadbalancer-service ## loadBalancerSourceRanges: [] ## @param service.extraPorts Extra ports to expose (normally used with the `sidecar` value) ## extraPorts: [] ## @param service.sessionAffinity Session Affinity for Kubernetes service, can be "None" or "ClientIP" ## If "ClientIP", consecutive client requests will be directed to the same mongos Pod ## ref: https://kubernetes.io/docs/concepts/services-networking/service/#virtual-ips-and-service-proxies ## sessionAffinity: None ## @param service.sessionAffinityConfig Additional settings for the sessionAffinity ## sessionAffinityConfig: ## clientIP: ## timeoutSeconds: 300 ## sessionAffinityConfig: {} ## Headless service properties ## headless: ## @param service.headless.annotations Annotations for the headless service. ## annotations: {} ## Network Policies ## Ref: https://kubernetes.io/docs/concepts/services-networking/network-policies/ ## networkPolicy: ## @param networkPolicy.enabled Specifies whether a NetworkPolicy should be created ## enabled: true ## @param networkPolicy.allowExternal Don't require server label for connections ## The Policy model to apply. When set to false, only pods with the correct ## server label will have network access to the ports server is listening ## on. When true, server will accept connections from any source ## (with the correct destination port). ## allowExternal: true ## @param networkPolicy.allowExternalEgress Allow the pod to access any range of port and all destinations. ## allowExternalEgress: true ## @param networkPolicy.extraIngress [array] Add extra ingress rules to the NetworkPolicy ## e.g: ## extraIngress: ## - ports: ## - port: 1234 ## from: ## - podSelector: ## - matchLabels: ## - role: frontend ## - podSelector: ## - matchExpressions: ## - key: role ## operator: In ## values: ## - frontend extraIngress: [] ## @param networkPolicy.extraEgress [array] Add extra ingress rules to the NetworkPolicy ## e.g: ## extraEgress: ## - ports: ## - port: 1234 ## to: ## - podSelector: ## - matchLabels: ## - role: frontend ## - podSelector: ## - matchExpressions: ## - key: role ## operator: In ## values: ## - frontend ## extraEgress: [] ## @param networkPolicy.ingressNSMatchLabels [object] Labels to match to allow traffic from other namespaces ## @param networkPolicy.ingressNSPodMatchLabels [object] Pod labels to match to allow traffic from other namespaces ## ingressNSMatchLabels: {} ingressNSPodMatchLabels: {} ## @section Config Server parameters ## ## Config Server replica set properties ## ref: https://docs.mongodb.com/manual/core/sharded-cluster-config-servers/ ## configsvr: ## @param configsvr.replicaCount Number of nodes in the replica set (the first node will be primary) ## replicaCount: 1 ## @param configsvr.resourcesPreset Set container resources according to one common preset (allowed values: none, nano, micro, small, medium, large, xlarge, 2xlarge). This is ignored if configsvr.resources is set (configsvr.resources is recommended for production). ## More information: https://github.com/bitnami/charts/blob/main/bitnami/common/templates/_resources.tpl#L15 ## resourcesPreset: "small" ## @param configsvr.resources Set container requests and limits for different resources like CPU or memory (essential for production workloads) ## Example: ## resources: ## requests: ## cpu: 2 ## memory: 512Mi ## limits: ## cpu: 3 ## memory: 1024Mi ## ref: https://kubernetes.io/docs/concepts/configuration/manage-compute-resources-container/ ## resources: {} ## @param configsvr.automountServiceAccountToken Mount Service Account token in pod ## automountServiceAccountToken: false ## @param configsvr.hostAliases Deployment pod host aliases ## https://kubernetes.io/docs/concepts/services-networking/add-entries-to-pod-etc-hosts-with-host-aliases/ ## hostAliases: [] ## @param configsvr.mongodbExtraFlags MongoDB® additional command line flags ## Can be used to specify command line flags, for example: ## mongodbExtraFlags: ## - "--wiredTigerCacheSizeGB=2" ## mongodbExtraFlags: [] ## @param configsvr.topologySpreadConstraints Topology Spread Constraints for pod assignment spread across your cluster among failure-domains. Evaluated as a template ## Ref: https://kubernetes.io/docs/concepts/workloads/pods/pod-topology-spread-constraints/#spread-constraints-for-pods ## topologySpreadConstraints: [] ## @param configsvr.priorityClassName Pod priority class name ## https://kubernetes.io/docs/concepts/configuration/pod-priority-preemption/ ## priorityClassName: "" ## @param configsvr.podAffinityPreset Config Server Pod affinity preset. Ignored if `affinity` is set. Allowed values: `soft` or `hard` ## ref: https://kubernetes.io/docs/concepts/scheduling-eviction/assign-pod-node/#inter-pod-affinity-and-anti-affinity ## podAffinityPreset: "" ## @param configsvr.podAntiAffinityPreset Config Server Pod anti-affinity preset. Ignored if `affinity` is set. Allowed values: `soft` or `hard` ## ref: https://kubernetes.io/docs/concepts/scheduling-eviction/assign-pod-node/#inter-pod-affinity-and-anti-affinity ## podAntiAffinityPreset: soft ## Node affinity preset ## ref: https://kubernetes.io/docs/concepts/scheduling-eviction/assign-pod-node/#node-affinity ## nodeAffinityPreset: ## @param configsvr.nodeAffinityPreset.type Config Server Node affinity preset type. Ignored if `affinity` is set. Allowed values: `soft` or `hard` ## type: "" ## @param configsvr.nodeAffinityPreset.key Config Server Node label key to match Ignored if `affinity` is set. ## E.g. ## key: "kubernetes.io/e2e-az-name" ## key: "" ## @param configsvr.nodeAffinityPreset.values Config Server Node label values to match. Ignored if `affinity` is set. ## E.g. ## values: ## - e2e-az1 ## - e2e-az2 ## values: [] ## @param configsvr.affinity Config Server Affinity for pod assignment ## ref: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/#affinity-and-anti-affinity ## Note: configsvr.podAffinityPreset, configsvr.podAntiAffinityPreset, and configsvr.nodeAffinityPreset will be ignored when it's set ## affinity: {} ## @param configsvr.nodeSelector Config Server Node labels for pod assignment ## ref: https://kubernetes.io/docs/concepts/scheduling-eviction/assign-pod-node/ ## nodeSelector: {} ## @param configsvr.tolerations Config Server Tolerations for pod assignment ## ref: https://kubernetes.io/docs/concepts/configuration/taint-and-toleration/ ## tolerations: [] ## @param configsvr.podManagementPolicy Statefulset's pod management policy, allows parallel startup of pods ## ref: https://kubernetes.io/docs/concepts/workloads/controllers/statefulset/#pod-management-policies ## podManagementPolicy: OrderedReady ## @param configsvr.updateStrategy.type updateStrategy for MongoDB® Primary, Secondary and Arbiter statefulsets ## ref: https://kubernetes.io/docs/concepts/workloads/controllers/statefulset/#update-strategies ## updateStrategy: type: RollingUpdate ## @param configsvr.config MongoDB® configuration file ## ref: http://docs.mongodb.org/manual/reference/configuration-options/ ## config: "" ## @param configsvr.configCM ConfigMap name with Config Server configuration file (cannot be used with configsvr.config) ## ref: http://docs.mongodb.org/manual/reference/configuration-options/ ## configCM: "" ## @param configsvr.extraEnvVars An array to add extra env vars ## For example: ## extraEnvVars: ## - name: KIBANA_ELASTICSEARCH_URL ## value: test ## extraEnvVars: [] ## @param configsvr.extraEnvVarsCM Name of a ConfigMap containing extra env vars ## extraEnvVarsCM: "" ## @param configsvr.extraEnvVarsSecret Name of a Secret containing extra env vars ## extraEnvVarsSecret: "" ## @param configsvr.sidecars Add sidecars to the pod ## For example: ## sidecars: ## - name: your-image-name ## image: your-image ## imagePullPolicy: Always ## ports: ## - name: portname ## containerPort: 1234 ## sidecars: [] ## @param configsvr.initContainers Add init containers to the pod ## For example: ## initcontainers: ## - name: your-image-name ## image: your-image ## imagePullPolicy: Always ## initContainers: [] ## @param configsvr.podAnnotations Additional pod annotations ## ref: https://kubernetes.io/docs/concepts/overview/working-with-objects/annotations/ ## podAnnotations: {} ## @param configsvr.podLabels Additional pod labels ## ref: https://kubernetes.io/docs/concepts/overview/working-with-objects/labels/ ## podLabels: {} ## @param configsvr.extraVolumes Array to add extra volumes. Requires setting `extraVolumeMounts` ## extraVolumes: [] ## @param configsvr.extraVolumeMounts Array to add extra mounts (normally used with extraVolumes). Normally used with `extraVolumes` ## extraVolumeMounts: [] ## @param configsvr.schedulerName Use an alternate scheduler, e.g. "stork". ## ref: https://kubernetes.io/docs/tasks/administer-cluster/configure-multiple-schedulers/ ## schedulerName: "" ## Pod disruption budget ## pdb: ## @param configsvr.pdb.create Enable pod disruption budget ## create: true ## @param configsvr.pdb.minAvailable Minimum number of available config pods allowed (`0` to disable) ## minAvailable: 0 ## @param configsvr.pdb.maxUnavailable Maximum number of unavailable config pods allowed (`0` to disable) ## maxUnavailable: 1 ## Enable persistence using Persistent Volume Claims ## ref: https://kubernetes.io/docs/concepts/storage/persistent-volumes/ ## persistence: ## @param configsvr.persistence.enabled Use a PVC to persist data ## enabled: true ## @param configsvr.persistence.mountPath Path to mount the volume at ## MongoDB® images. ## mountPath: /bitnami/mongodb ## @param configsvr.persistence.subPath Subdirectory of the volume to mount at (evaluated as a template) ## Useful in dev environments and one PV for multiple services. ## subPath: "" ## @param configsvr.persistence.storageClass Storage class of backing PVC ## If defined, storageClassName: ## If set to "-", storageClassName: "", which disables dynamic provisioning ## If undefined (the default) or set to null, no storageClassName spec is ## set, choosing the default provisioner. (gp2 on AWS, standard on ## GKE, AWS & OpenStack) ## storageClass: "" ## @param configsvr.persistence.accessModes Use volume as ReadOnly or ReadWrite ## accessModes: - ReadWriteOnce ## @param configsvr.persistence.size PersistentVolumeClaim size ## size: 8Gi ## @param configsvr.persistence.annotations Persistent Volume annotations ## ref: https://kubernetes.io/docs/concepts/overview/working-with-objects/annotations/ ## annotations: {} ## Persistent Volume Claim Retention Policy ## ref: https://kubernetes.io/docs/concepts/workloads/controllers/statefulset/#persistentvolumeclaim-retention ## persistentVolumeClaimRetentionPolicy: ## @param configsvr.persistentVolumeClaimRetentionPolicy.enabled Enable Persistent volume retention policy for Config Server StatefulSet ## enabled: false ## @param configsvr.persistentVolumeClaimRetentionPolicy.whenScaled Volume retention behavior when the replica count of the StatefulSet is reduced ## whenScaled: Retain ## @param configsvr.persistentVolumeClaimRetentionPolicy.whenDeleted Volume retention behavior that applies when the StatefulSet is deleted ## whenDeleted: Retain ## K8s Service Account. ## ref: https://kubernetes.io/docs/tasks/configure-pod-container/configure-service-account/ ## serviceAccount: ## @param configsvr.serviceAccount.create Specifies whether a ServiceAccount should be created for Config Server ## create: true ## @param configsvr.serviceAccount.name Name of a Service Account to be used by Config Server ## If not set and create is true, a name is generated using the XXX.fullname template ## name: "" ## @param configsvr.serviceAccount.annotations Additional Service Account annotations (evaluated as a template) ## annotations: {} ## @param configsvr.serviceAccount.automountServiceAccountToken Automount service account token for the server service account ## automountServiceAccountToken: false ## Use a external config server instead of deploying one ## external: ## @param configsvr.external.host Primary node of an external Config Server replicaset ## host: "" ## @param configsvr.external.rootPassword Root password of the external Config Server replicaset ## rootPassword: "" ## @param configsvr.external.replicasetName Replicaset name of an external Config Server ## replicasetName: "" ## @param configsvr.external.replicasetKey Replicaset key of an external Config Server ## replicasetKey: "" ## Configure Pods Security Context ## ref: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/ ## @param configsvr.podSecurityContext.enabled Enable security context ## @param configsvr.podSecurityContext.fsGroupChangePolicy Set filesystem group change policy ## @param configsvr.podSecurityContext.sysctls Set kernel settings using the sysctl interface ## @param configsvr.podSecurityContext.supplementalGroups Set filesystem extra groups ## @param configsvr.podSecurityContext.fsGroup Group ID for the container ## podSecurityContext: enabled: true fsGroupChangePolicy: Always sysctls: [] supplementalGroups: [] fsGroup: 1001 ## Configure Container Security Context ## ref: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/#set-the-security-context-for-a-container ## @param configsvr.containerSecurityContext.enabled Enabled containers' Security Context ## @param configsvr.containerSecurityContext.seLinuxOptions [object,nullable] Set SELinux options in container ## @param configsvr.containerSecurityContext.runAsUser Set containers' Security Context runAsUser ## @param configsvr.containerSecurityContext.runAsGroup Set containers' Security Context runAsGroup ## @param configsvr.containerSecurityContext.runAsNonRoot Set container's Security Context runAsNonRoot ## @param configsvr.containerSecurityContext.privileged Set container's Security Context privileged ## @param configsvr.containerSecurityContext.readOnlyRootFilesystem Set container's Security Context readOnlyRootFilesystem ## @param configsvr.containerSecurityContext.allowPrivilegeEscalation Set container's Security Context allowPrivilegeEscalation ## @param configsvr.containerSecurityContext.capabilities.drop List of capabilities to be dropped ## @param configsvr.containerSecurityContext.seccompProfile.type Set container's Security Context seccomp profile ## containerSecurityContext: enabled: true seLinuxOptions: {} runAsUser: 1001 runAsGroup: 1001 runAsNonRoot: true privileged: false readOnlyRootFilesystem: true allowPrivilegeEscalation: false capabilities: drop: ["ALL"] seccompProfile: type: "RuntimeDefault" ## @param configsvr.command Override default container command (useful when using custom images) ## command: - /bin/bash - /entrypoint/replicaset-entrypoint.sh ## @param configsvr.args Override default container args (useful when using custom images) ## args: [] ## @param configsvr.terminationGracePeriodSeconds Seconds Redmine pod needs to terminate gracefully ## ref: https://kubernetes.io/docs/concepts/workloads/pods/pod/#termination-of-pods ## terminationGracePeriodSeconds: "" ## @param configsvr.lifecycleHooks for the Config Server container(s) to automate configuration before or after startup ## lifecycleHooks: {} ## Configure extra options for liveness probes ## ref: https://kubernetes.io/docs/tasks/configure-pod-container/configure-liveness-readiness-startup-probes/#configure-probes ## @param configsvr.livenessProbe.enabled Enable livenessProbe ## @param configsvr.livenessProbe.initialDelaySeconds Initial delay seconds for livenessProbe ## @param configsvr.livenessProbe.periodSeconds Period seconds for livenessProbe ## @param configsvr.livenessProbe.timeoutSeconds Timeout seconds for livenessProbe ## @param configsvr.livenessProbe.failureThreshold Failure threshold for livenessProbe ## @param configsvr.livenessProbe.successThreshold Success threshold for livenessProbe ## livenessProbe: enabled: true initialDelaySeconds: 60 periodSeconds: 30 timeoutSeconds: 20 failureThreshold: 2 successThreshold: 1 ## Configure extra options for readiness probe ## ref: https://kubernetes.io/docs/tasks/configure-pod-container/configure-liveness-readiness-startup-probes/#configure-probes ## @param configsvr.readinessProbe.enabled Enable readinessProbe ## @param configsvr.readinessProbe.initialDelaySeconds Initial delay seconds for readinessProbe ## @param configsvr.readinessProbe.periodSeconds Period seconds for readinessProbe ## @param configsvr.readinessProbe.timeoutSeconds Timeout seconds for readinessProbe ## @param configsvr.readinessProbe.failureThreshold Failure threshold for readinessProbe ## @param configsvr.readinessProbe.successThreshold Success threshold for readinessProbe ## readinessProbe: enabled: true initialDelaySeconds: 10 periodSeconds: 30 timeoutSeconds: 20 failureThreshold: 6 successThreshold: 1 ## Configure extra options for startup probe ## ref: https://kubernetes.io/docs/tasks/configure-pod-container/configure-liveness-readiness-startup-probes/#configure-probes ## @param configsvr.startupProbe.enabled Enable startupProbe ## @param configsvr.startupProbe.initialDelaySeconds Initial delay seconds for startupProbe ## @param configsvr.startupProbe.periodSeconds Period seconds for startupProbe ## @param configsvr.startupProbe.timeoutSeconds Timeout seconds for startupProbe ## @param configsvr.startupProbe.failureThreshold Failure threshold for startupProbe ## @param configsvr.startupProbe.successThreshold Success threshold for startupProbe ## startupProbe: enabled: true initialDelaySeconds: 0 periodSeconds: 10 timeoutSeconds: 5 failureThreshold: 30 successThreshold: 1 ## @param configsvr.customLivenessProbe Custom livenessProbe that overrides the default one ## customLivenessProbe: {} ## @param configsvr.customReadinessProbe Custom readinessProbe that overrides the default one ## customReadinessProbe: {} ## @param configsvr.customStartupProbe Custom startupProbe that overrides the default one ## customStartupProbe: {} ## @section Mongos parameters ## ## Mongos properties ## ref: https://docs.mongodb.com/manual/reference/program/mongos/#bin.mongos ## mongos: ## @param mongos.replicaCount Number of replicas ## replicaCount: 1 ## @param mongos.resourcesPreset Set container resources according to one common preset (allowed values: none, nano, micro, small, medium, large, xlarge, 2xlarge). This is ignored if mongos.resources is set (mongos.resources is recommended for production). ## More information: https://github.com/bitnami/charts/blob/main/bitnami/common/templates/_resources.tpl#L15 ## resourcesPreset: "small" ## @param mongos.resources Set container requests and limits for different resources like CPU or memory (essential for production workloads) ## Example: ## resources: ## requests: ## cpu: 2 ## memory: 512Mi ## limits: ## cpu: 3 ## memory: 1024Mi ## ref: https://kubernetes.io/docs/concepts/configuration/manage-compute-resources-container/ ## resources: {} ## @param mongos.automountServiceAccountToken Mount Service Account token in pod ## automountServiceAccountToken: false ## @param mongos.hostAliases Deployment pod host aliases ## https://kubernetes.io/docs/concepts/services-networking/add-entries-to-pod-etc-hosts-with-host-aliases/ ## hostAliases: [] ## @param mongos.mongodbExtraFlags MongoDB® additional command line flags ## Can be used to specify command line flags, for example: ## mongodbExtraFlags: ## - "--wiredTigerCacheSizeGB=2" ## mongodbExtraFlags: [] ## @param mongos.topologySpreadConstraints Topology Spread Constraints for pod assignment spread across your cluster among failure-domains. Evaluated as a template ## Ref: https://kubernetes.io/docs/concepts/workloads/pods/pod-topology-spread-constraints/#spread-constraints-for-pods ## topologySpreadConstraints: [] ## @param mongos.priorityClassName Pod priority class name ## https://kubernetes.io/docs/concepts/configuration/pod-priority-preemption/ ## priorityClassName: "" ## @param mongos.podAffinityPreset Mongos Pod affinity preset. Ignored if `affinity` is set. Allowed values: `soft` or `hard` ## ref: https://kubernetes.io/docs/concepts/scheduling-eviction/assign-pod-node/#inter-pod-affinity-and-anti-affinity ## podAffinityPreset: "" ## @param mongos.podAntiAffinityPreset Mongos Pod anti-affinity preset. Ignored if `affinity` is set. Allowed values: `soft` or `hard` ## ref: https://kubernetes.io/docs/concepts/scheduling-eviction/assign-pod-node/#inter-pod-affinity-and-anti-affinity ## podAntiAffinityPreset: soft ## Node affinity preset ## ref: https://kubernetes.io/docs/concepts/scheduling-eviction/assign-pod-node/#node-affinity ## nodeAffinityPreset: ## @param mongos.nodeAffinityPreset.type Mongos Node affinity preset type. Ignored if `affinity` is set. Allowed values: `soft` or `hard` ## type: "" ## @param mongos.nodeAffinityPreset.key Mongos Node label key to match Ignored if `affinity` is set. ## E.g. ## key: "kubernetes.io/e2e-az-name" ## key: "" ## @param mongos.nodeAffinityPreset.values Mongos Node label values to match. Ignored if `affinity` is set. ## E.g. ## values: ## - e2e-az1 ## - e2e-az2 ## values: [] ## @param mongos.affinity Mongos Affinity for pod assignment ## ref: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/#affinity-and-anti-affinity ## Note: mongos.podAffinityPreset, mongos.podAntiAffinityPreset, and mongos.nodeAffinityPreset will be ignored when it's set ## affinity: {} ## @param mongos.nodeSelector Mongos Node labels for pod assignment ## ref: https://kubernetes.io/docs/concepts/scheduling-eviction/assign-pod-node/ ## nodeSelector: {} ## @param mongos.tolerations Mongos Tolerations for pod assignment ## ref: https://kubernetes.io/docs/concepts/configuration/taint-and-toleration/ ## tolerations: [] ## @param mongos.podManagementPolicy Statefulsets pod management policy, allows parallel startup of pods ## ref: https://kubernetes.io/docs/concepts/workloads/controllers/statefulset/#pod-management-policies ## podManagementPolicy: OrderedReady ## @param mongos.updateStrategy.type updateStrategy for MongoDB® Primary, Secondary and Arbiter statefulsets ## ref: https://kubernetes.io/docs/concepts/workloads/controllers/statefulset/#update-strategies ## updateStrategy: type: RollingUpdate ## @param mongos.config MongoDB® configuration file ## ref: http://docs.mongodb.org/manual/reference/configuration-options/ ## config: "" ## @param mongos.configCM ConfigMap name with MongoDB® configuration file (cannot be used with mongos.config) ## ref: http://docs.mongodb.org/manual/reference/configuration-options/ ## configCM: "" ## @param mongos.extraEnvVars An array to add extra env vars ## For example: ## extraEnvVars: ## - name: KIBANA_ELASTICSEARCH_URL ## value: test ## extraEnvVars: [] ## @param mongos.extraEnvVarsCM Name of a ConfigMap containing extra env vars ## extraEnvVarsCM: "" ## @param mongos.extraEnvVarsSecret Name of a Secret containing extra env vars ## extraEnvVarsSecret: "" ## @param mongos.sidecars Add sidecars to the pod ## For example: ## sidecars: ## - name: your-image-name ## image: your-image ## imagePullPolicy: Always ## ports: ## - name: portname ## containerPort: 1234 ## sidecars: [] ## @param mongos.initContainers Add init containers to the pod ## For example: ## initcontainers: ## - name: your-image-name ## image: your-image ## imagePullPolicy: Always ## initContainers: [] ## @param mongos.podAnnotations Additional pod annotations ## ref: https://kubernetes.io/docs/concepts/overview/working-with-objects/annotations/ ## podAnnotations: {} ## @param mongos.podLabels Additional pod labels ## ref: https://kubernetes.io/docs/concepts/overview/working-with-objects/labels/ ## podLabels: {} ## @param mongos.extraVolumes Array to add extra volumes. Requires setting `extraVolumeMounts` ## extraVolumes: [] ## @param mongos.extraVolumeMounts Array to add extra volume mounts. Normally used with `extraVolumes`. ## extraVolumeMounts: [] ## @param mongos.schedulerName Use an alternate scheduler, e.g. "stork". ## ref: https://kubernetes.io/docs/tasks/administer-cluster/configure-multiple-schedulers/ ## schedulerName: "" ## @param mongos.useStatefulSet Use StatefulSet instead of Deployment ## useStatefulSet: false ## When using a statefulset, you can enable one service per replica ## This is useful when exposing the mongos through load balancers to make sure clients ## connect to the same mongos and therefore can follow their cursors ## servicePerReplica: ## @param mongos.servicePerReplica.enabled Create one service per mongos replica (must be used with statefulset) ## enabled: false ## @param mongos.servicePerReplica.annotations Additional service annotations (evaluate as a template) ## ref: https://kubernetes.io/docs/concepts/overview/working-with-objects/annotations/ ## annotations: {} ## @param mongos.servicePerReplica.type Service type ## ref: https://kubernetes.io/docs/concepts/services-networking/service/#publishing-services-service-types ## type: ClusterIP ## @param mongos.servicePerReplica.externalTrafficPolicy External traffic policy ## Enable client source IP preservation ## ref: https://kubernetes.io/docs/concepts/services-networking/service/#publishing-services-service-types ## externalTrafficPolicy: Cluster ## @param mongos.servicePerReplica.port MongoDB® service port ## port: 27017 ## @param mongos.servicePerReplica.clusterIPs Array of static clusterIPs for each MongoDB@reg; replica. Length must be the same as mongos.replicaCount ## ref: https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.16/#servicespec-v1-core ## clusterIPs: [] ## @param mongos.servicePerReplica.nodePorts Array of node ports used for each MongoDB@reg; replica. Length must be the same as mongos.replicaCount ## ref: https://kubernetes.io/docs/concepts/services-networking/service/#type-nodeport ## nodePorts: [] ## @param mongos.servicePerReplica.externalIPs External IP list to use with ClusterIP service type ## ref: https://kubernetes.io/docs/concepts/services-networking/service/#external-ips ## externalIPs: [] ## @param mongos.servicePerReplica.loadBalancerIPs Array of static IP Address to use for each replica LoadBalancer service type. Length must be the same as mongos.replicaCount ## ref: https://kubernetes.io/docs/concepts/services-networking/service/#loadbalancer ## loadBalancerIPs: [] ## @param mongos.servicePerReplica.loadBalancerSourceRanges List of IP ranges allowed access to load balancer (if supported) ## ref: https://kubernetes.io/docs/tasks/access-application-cluster/configure-cloud-provider-firewall/#restrict-access-for-loadbalancer-service ## loadBalancerSourceRanges: [] ## @param mongos.servicePerReplica.extraPorts Extra ports to expose (normally used with the `sidecar` value) ## extraPorts: [] ## @param mongos.servicePerReplica.sessionAffinity Session Affinity for Kubernetes service, can be "None" or "ClientIP" ## If "ClientIP", consecutive client requests will be directed to the same mongos Pod ## ref: https://kubernetes.io/docs/concepts/services-networking/service/#virtual-ips-and-service-proxies ## sessionAffinity: None ## @param mongos.servicePerReplica.sessionAffinityConfig Additional settings for the sessionAffinity ## sessionAffinityConfig: ## clientIP: ## timeoutSeconds: 300 ## sessionAffinityConfig: {} ## Pod disruption budget ## pdb: ## @param mongos.pdb.create Enable pod disruption budget ## create: true ## @param mongos.pdb.minAvailable Minimum number of available mongo pods allowed (`0` to disable) ## minAvailable: 0 ## @param mongos.pdb.maxUnavailable Maximum number of unavailable mongo pods allowed (`0` to disable) ## maxUnavailable: 1 ## K8s Service Account. ## ref: https://kubernetes.io/docs/tasks/configure-pod-container/configure-service-account/ ## serviceAccount: ## @param mongos.serviceAccount.create Whether to create a Service Account for mongos automatically ## create: true ## @param mongos.serviceAccount.name Name of a Service Account to be used by mongos ## If not set and create is true, a name is generated using the XXX.fullname template ## name: "" ## @param mongos.serviceAccount.annotations Additional Service Account annotations (evaluated as a template) ## annotations: {} ## @param mongos.serviceAccount.automountServiceAccountToken Automount service account token for the server service account ## automountServiceAccountToken: false ## Configure Pods Security Context ## ref: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/ ## @param mongos.podSecurityContext.enabled Enable security context ## @param mongos.podSecurityContext.fsGroupChangePolicy Set filesystem group change policy ## @param mongos.podSecurityContext.sysctls Set kernel settings using the sysctl interface ## @param mongos.podSecurityContext.supplementalGroups Set filesystem extra groups ## @param mongos.podSecurityContext.fsGroup Group ID for the container ## podSecurityContext: enabled: true fsGroupChangePolicy: Always sysctls: [] supplementalGroups: [] fsGroup: 1001 ## Configure Container Security Context ## ref: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/#set-the-security-context-for-a-container ## @param mongos.containerSecurityContext.enabled Enabled containers' Security Context ## @param mongos.containerSecurityContext.seLinuxOptions [object,nullable] Set SELinux options in container ## @param mongos.containerSecurityContext.runAsUser Set containers' Security Context runAsUser ## @param mongos.containerSecurityContext.runAsGroup Set containers' Security Context runAsGroup ## @param mongos.containerSecurityContext.runAsNonRoot Set container's Security Context runAsNonRoot ## @param mongos.containerSecurityContext.privileged Set container's Security Context privileged ## @param mongos.containerSecurityContext.readOnlyRootFilesystem Set container's Security Context readOnlyRootFilesystem ## @param mongos.containerSecurityContext.allowPrivilegeEscalation Set container's Security Context allowPrivilegeEscalation ## @param mongos.containerSecurityContext.capabilities.drop List of capabilities to be dropped ## @param mongos.containerSecurityContext.seccompProfile.type Set container's Security Context seccomp profile ## containerSecurityContext: enabled: true seLinuxOptions: {} runAsUser: 1001 runAsGroup: 1001 runAsNonRoot: true privileged: false readOnlyRootFilesystem: true allowPrivilegeEscalation: false capabilities: drop: ["ALL"] seccompProfile: type: "RuntimeDefault" ## @param mongos.command Override default container command (useful when using custom images) ## command: [] ## @param mongos.args Override default container args (useful when using custom images) ## args: [] ## @param mongos.terminationGracePeriodSeconds Seconds Redmine pod needs to terminate gracefully ## ref: https://kubernetes.io/docs/concepts/workloads/pods/pod/#termination-of-pods ## terminationGracePeriodSeconds: "" ## @param mongos.lifecycleHooks for the Mongo container(s) to automate configuration before or after startup ## lifecycleHooks: {} ## Configure extra options for liveness probes ## ref: https://kubernetes.io/docs/tasks/configure-pod-container/configure-liveness-readiness-startup-probes/#configure-probes ## @param mongos.livenessProbe.enabled Enable livenessProbe ## @param mongos.livenessProbe.initialDelaySeconds Initial delay seconds for livenessProbe ## @param mongos.livenessProbe.periodSeconds Period seconds for livenessProbe ## @param mongos.livenessProbe.timeoutSeconds Timeout seconds for livenessProbe ## @param mongos.livenessProbe.failureThreshold Failure threshold for livenessProbe ## @param mongos.livenessProbe.successThreshold Success threshold for livenessProbe ## livenessProbe: enabled: true initialDelaySeconds: 60 periodSeconds: 30 timeoutSeconds: 20 failureThreshold: 2 successThreshold: 1 ## Configure extra options for readiness probe ## ref: https://kubernetes.io/docs/tasks/configure-pod-container/configure-liveness-readiness-startup-probes/#configure-probes ## @param mongos.readinessProbe.enabled Enable readinessProbe ## @param mongos.readinessProbe.initialDelaySeconds Initial delay seconds for readinessProbe ## @param mongos.readinessProbe.periodSeconds Period seconds for readinessProbe ## @param mongos.readinessProbe.timeoutSeconds Timeout seconds for readinessProbe ## @param mongos.readinessProbe.failureThreshold Failure threshold for readinessProbe ## @param mongos.readinessProbe.successThreshold Success threshold for readinessProbe ## readinessProbe: enabled: true initialDelaySeconds: 10 periodSeconds: 30 timeoutSeconds: 20 failureThreshold: 6 successThreshold: 1 ## Configure extra options for startup probe ## ref: https://kubernetes.io/docs/tasks/configure-pod-container/configure-liveness-readiness-startup-probes/#configure-probes ## @param mongos.startupProbe.enabled Enable startupProbe ## @param mongos.startupProbe.initialDelaySeconds Initial delay seconds for startupProbe ## @param mongos.startupProbe.periodSeconds Period seconds for startupProbe ## @param mongos.startupProbe.timeoutSeconds Timeout seconds for startupProbe ## @param mongos.startupProbe.failureThreshold Failure threshold for startupProbe ## @param mongos.startupProbe.successThreshold Success threshold for startupProbe ## startupProbe: enabled: false initialDelaySeconds: 0 periodSeconds: 10 timeoutSeconds: 5 failureThreshold: 30 successThreshold: 1 ## @param mongos.customLivenessProbe Custom livenessProbe that overrides the default one ## customLivenessProbe: {} ## @param mongos.customReadinessProbe Custom readinessProbe that overrides the default one ## customReadinessProbe: {} ## @param mongos.customStartupProbe Custom startupProbe that overrides the default one ## customStartupProbe: {} ## @section Shard configuration: Data node parameters ## ## Shard replica set properties ## ref: https://docs.mongodb.com/manual/replication/index.html ## shardsvr: ## Properties for data nodes (primary and secondary) ## dataNode: ## @param shardsvr.dataNode.replicaCount Number of nodes in each shard replica set (the first node will be primary) ## replicaCount: 1 ## @param shardsvr.dataNode.resourcesPreset Set container resources according to one common preset (allowed values: none, nano, micro, small, medium, large, xlarge, 2xlarge). This is ignored if shardsvr.dataNode.resources is set (shardsvr.dataNode.resources is recommended for production). ## More information: https://github.com/bitnami/charts/blob/main/bitnami/common/templates/_resources.tpl#L15 ## resourcesPreset: "medium" ## @param shardsvr.dataNode.resources Set container requests and limits for different resources like CPU or memory (essential for production workloads) ## Example: ## resources: ## requests: ## cpu: 2 ## memory: 512Mi ## limits: ## cpu: 3 ## memory: 1024Mi ## ref: https://kubernetes.io/docs/concepts/configuration/manage-compute-resources-container/ ## resources: {} ## @param shardsvr.dataNode.mongodbExtraFlags MongoDB® additional command line flags ## Can be used to specify command line flags, for example: ## mongodbExtraFlags: ## - "--wiredTigerCacheSizeGB=2" ## mongodbExtraFlags: [] ## @param shardsvr.dataNode.topologySpreadConstraints Topology Spread Constraints for pod assignment spread across your cluster among failure-domains. Evaluated as a template ## Ref: https://kubernetes.io/docs/concepts/workloads/pods/pod-topology-spread-constraints/#spread-constraints-for-pods ## topologySpreadConstraints: [] ## @param shardsvr.dataNode.priorityClassName Pod priority class name ## https://kubernetes.io/docs/concepts/configuration/pod-priority-preemption/ ## priorityClassName: "" ## @param shardsvr.dataNode.podAffinityPreset Data nodes Pod affinity preset. Ignored if `affinity` is set. Allowed values: `soft` or `hard` ## ref: https://kubernetes.io/docs/concepts/scheduling-eviction/assign-pod-node/#inter-pod-affinity-and-anti-affinity ## podAffinityPreset: "" ## @param shardsvr.dataNode.podAntiAffinityPreset Data nodes Pod anti-affinity preset. Ignored if `affinity` is set. Allowed values: `soft` or `hard` ## ref: https://kubernetes.io/docs/concepts/scheduling-eviction/assign-pod-node/#inter-pod-affinity-and-anti-affinity ## podAntiAffinityPreset: soft ## Node affinity preset ## ref: https://kubernetes.io/docs/concepts/scheduling-eviction/assign-pod-node/#node-affinity ## nodeAffinityPreset: ## @param shardsvr.dataNode.nodeAffinityPreset.type Data nodes Node affinity preset type. Ignored if `affinity` is set. Allowed values: `soft` or `hard` ## type: "" ## @param shardsvr.dataNode.nodeAffinityPreset.key Data nodes Node label key to match Ignored if `affinity` is set. ## E.g. ## key: "kubernetes.io/e2e-az-name" ## key: "" ## @param shardsvr.dataNode.nodeAffinityPreset.values Data nodes Node label values to match. Ignored if `affinity` is set. ## E.g. ## values: ## - e2e-az1 ## - e2e-az2 ## values: [] ## @param shardsvr.dataNode.affinity Data nodes Affinity for pod assignment ## ref: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/#affinity-and-anti-affinity ## You can set dataNodeLoopId (or any other parameter) by setting the below code block under this 'affinity' section: ## affinity: ## matchLabels: ## shard: "{{ .dataNodeLoopId }}" ## ## Note: shardsvr.dataNode.podAffinityPreset, shardsvr.dataNode.podAntiAffinityPreset, and shardsvr.dataNode.nodeAffinityPreset will be ignored when it's set ## affinity: {} ## @param shardsvr.dataNode.nodeSelector Data nodes Node labels for pod assignment ## ref: https://kubernetes.io/docs/concepts/scheduling-eviction/assign-pod-node/ ## You can set dataNodeLoopId (or any other parameter) by setting the below code block under this 'nodeSelector' section: ## nodeSelector: { shardId: "{{ .dataNodeLoopId }}" } ## nodeSelector: {} ## @param shardsvr.dataNode.tolerations Data nodes Tolerations for pod assignment ## ref: https://kubernetes.io/docs/concepts/configuration/taint-and-toleration/ ## You can set dataNodeLoopId (or any other parameter) by setting the below code block under this 'nodeSelector' section: ## tolerations: ## - key: "shardId" ## operator: "Equal" ## value: "{{ .dataNodeLoopId }}" ## effect: "NoSchedule" ## tolerations: [] ## @param shardsvr.dataNode.podManagementPolicy podManagementPolicy for the statefulset, allows parallel startup of pods ## ref: https://kubernetes.io/docs/concepts/workloads/controllers/statefulset/#pod-management-policies ## podManagementPolicy: OrderedReady ## @param shardsvr.dataNode.updateStrategy.type updateStrategy for MongoDB® Primary, Secondary and Arbiter statefulsets ## ref: https://kubernetes.io/docs/concepts/workloads/controllers/statefulset/#update-strategies ## updateStrategy: type: RollingUpdate ## @param shardsvr.dataNode.automountServiceAccountToken Mount Service Account token in pod ## automountServiceAccountToken: false ## @param shardsvr.dataNode.hostAliases Deployment pod host aliases ## https://kubernetes.io/docs/concepts/services-networking/add-entries-to-pod-etc-hosts-with-host-aliases/ ## hostAliases: [] ## @param shardsvr.dataNode.config Entries for the MongoDB® config file ## ref: http://docs.mongodb.org/manual/reference/configuration-options/ ## config: "" ## @param shardsvr.dataNode.configCM ConfigMap name with MongoDB® configuration (cannot be used with shardsvr.dataNode.config) ## ref: http://docs.mongodb.org/manual/reference/configuration-options/ ## configCM: "" ## @param shardsvr.dataNode.extraEnvVars An array to add extra env vars ## For example: ## extraEnvVars: ## - name: KIBANA_ELASTICSEARCH_URL ## value: test ## extraEnvVars: [] ## @param shardsvr.dataNode.extraEnvVarsCM Name of a ConfigMap containing extra env vars ## extraEnvVarsCM: "" ## @param shardsvr.dataNode.extraEnvVarsSecret Name of a Secret containing extra env vars ## extraEnvVarsSecret: "" ## @param shardsvr.dataNode.sidecars Attach additional containers (evaluated as a template) ## For example: ## sidecars: ## - name: your-image-name ## image: your-image ## imagePullPolicy: Always ## ports: ## - name: portname ## containerPort: 1234 ## sidecars: [] ## @param shardsvr.dataNode.initContainers Add init containers to the pod ## For example: ## initcontainers: ## - name: your-image-name ## image: your-image ## imagePullPolicy: Always ## initContainers: [] ## @param shardsvr.dataNode.podAnnotations Additional pod annotations ## ref: https://kubernetes.io/docs/concepts/overview/working-with-objects/annotations/ ## podAnnotations: {} ## @param shardsvr.dataNode.podLabels Additional pod labels ## ref: https://kubernetes.io/docs/concepts/overview/working-with-objects/labels/ ## podLabels: {} ## @param shardsvr.dataNode.extraVolumes Array to add extra volumes. Requires setting `extraVolumeMounts` ## extraVolumes: [] ## @param shardsvr.dataNode.extraVolumeMounts Array to add extra mounts. Normally used with `extraVolumes` ## extraVolumeMounts: [] ## @param shardsvr.dataNode.schedulerName Use an alternate scheduler, e.g. "stork". ## ref: https://kubernetes.io/docs/tasks/administer-cluster/configure-multiple-schedulers/ ## schedulerName: "" ## Pod disruption budget ## pdb: ## @param shardsvr.dataNode.pdb.create Enable pod disruption budget ## create: true ## @param shardsvr.dataNode.pdb.minAvailable Minimum number of available data pods allowed (`0` to disable) ## minAvailable: 0 ## @param shardsvr.dataNode.pdb.maxUnavailable Maximum number of unavailable data pods allowed (`0` to disable) ## maxUnavailable: 1 ## K8s Service Account. ## ref: https://kubernetes.io/docs/tasks/configure-pod-container/configure-service-account/ ## serviceAccount: ## @param shardsvr.dataNode.serviceAccount.create Specifies whether a ServiceAccount should be created for shardsvr ## create: true ## @param shardsvr.dataNode.serviceAccount.name Name of a Service Account to be used by shardsvr data pods ## If not set and create is true, a name is generated using the XXX.fullname template ## name: "" ## @param shardsvr.dataNode.serviceAccount.annotations Additional Service Account annotations (evaluated as a template) ## annotations: {} ## @param shardsvr.dataNode.serviceAccount.automountServiceAccountToken Automount service account token for the server service account ## automountServiceAccountToken: false ## Configure Pods Security Context ## ref: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/ ## @param shardsvr.dataNode.podSecurityContext.enabled Enable security context ## @param shardsvr.dataNode.podSecurityContext.fsGroupChangePolicy Set filesystem group change policy ## @param shardsvr.dataNode.podSecurityContext.sysctls Set kernel settings using the sysctl interface ## @param shardsvr.dataNode.podSecurityContext.supplementalGroups Set filesystem extra groups ## @param shardsvr.dataNode.podSecurityContext.fsGroup Group ID for the container ## podSecurityContext: enabled: true fsGroupChangePolicy: Always sysctls: [] supplementalGroups: [] fsGroup: 1001 ## Configure Container Security Context ## ref: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/#set-the-security-context-for-a-container ## @param shardsvr.dataNode.containerSecurityContext.enabled Enabled containers' Security Context ## @param shardsvr.dataNode.containerSecurityContext.seLinuxOptions [object,nullable] Set SELinux options in container ## @param shardsvr.dataNode.containerSecurityContext.runAsUser Set containers' Security Context runAsUser ## @param shardsvr.dataNode.containerSecurityContext.runAsGroup Set containers' Security Context runAsGroup ## @param shardsvr.dataNode.containerSecurityContext.runAsNonRoot Set container's Security Context runAsNonRoot ## @param shardsvr.dataNode.containerSecurityContext.privileged Set container's Security Context privileged ## @param shardsvr.dataNode.containerSecurityContext.readOnlyRootFilesystem Set container's Security Context readOnlyRootFilesystem ## @param shardsvr.dataNode.containerSecurityContext.allowPrivilegeEscalation Set container's Security Context allowPrivilegeEscalation ## @param shardsvr.dataNode.containerSecurityContext.capabilities.drop List of capabilities to be dropped ## @param shardsvr.dataNode.containerSecurityContext.seccompProfile.type Set container's Security Context seccomp profile ## containerSecurityContext: enabled: true seLinuxOptions: {} runAsUser: 1001 runAsGroup: 1001 runAsNonRoot: true privileged: false readOnlyRootFilesystem: true allowPrivilegeEscalation: false capabilities: drop: ["ALL"] seccompProfile: type: "RuntimeDefault" ## @param shardsvr.dataNode.command Override default container command (useful when using custom images) ## command: - /bin/bash - /entrypoint/replicaset-entrypoint.sh ## @param shardsvr.dataNode.args Override default container args (useful when using custom images) ## args: [] ## @param shardsvr.dataNode.terminationGracePeriodSeconds Seconds Redmine pod needs to terminate gracefully ## ref: https://kubernetes.io/docs/concepts/workloads/pods/pod/#termination-of-pods ## terminationGracePeriodSeconds: "" ## @param shardsvr.dataNode.lifecycleHooks for the Data container(s) to automate configuration before or after startup ## lifecycleHooks: {} ## Configure extra options for liveness probes ## ref: https://kubernetes.io/docs/tasks/configure-pod-container/configure-liveness-readiness-startup-probes/#configure-probes ## @param shardsvr.dataNode.livenessProbe.enabled Enable livenessProbe ## @param shardsvr.dataNode.livenessProbe.initialDelaySeconds Initial delay seconds for livenessProbe ## @param shardsvr.dataNode.livenessProbe.periodSeconds Period seconds for livenessProbe ## @param shardsvr.dataNode.livenessProbe.timeoutSeconds Timeout seconds for livenessProbe ## @param shardsvr.dataNode.livenessProbe.failureThreshold Failure threshold for livenessProbe ## @param shardsvr.dataNode.livenessProbe.successThreshold Success threshold for livenessProbe ## livenessProbe: enabled: true initialDelaySeconds: 60 periodSeconds: 30 timeoutSeconds: 20 failureThreshold: 2 successThreshold: 1 ## Configure extra options for readiness probe ## ref: https://kubernetes.io/docs/tasks/configure-pod-container/configure-liveness-readiness-startup-probes/#configure-probes ## @param shardsvr.dataNode.readinessProbe.enabled Enable readinessProbe ## @param shardsvr.dataNode.readinessProbe.initialDelaySeconds Initial delay seconds for readinessProbe ## @param shardsvr.dataNode.readinessProbe.periodSeconds Period seconds for readinessProbe ## @param shardsvr.dataNode.readinessProbe.timeoutSeconds Timeout seconds for readinessProbe ## @param shardsvr.dataNode.readinessProbe.failureThreshold Failure threshold for readinessProbe ## @param shardsvr.dataNode.readinessProbe.successThreshold Success threshold for readinessProbe ## readinessProbe: enabled: true initialDelaySeconds: 10 periodSeconds: 30 timeoutSeconds: 20 failureThreshold: 6 successThreshold: 1 ## Configure extra options for startup probe ## ref: https://kubernetes.io/docs/tasks/configure-pod-container/configure-liveness-readiness-startup-probes/#configure-probes ## @param shardsvr.dataNode.startupProbe.enabled Enable startupProbe ## @param shardsvr.dataNode.startupProbe.initialDelaySeconds Initial delay seconds for startupProbe ## @param shardsvr.dataNode.startupProbe.periodSeconds Period seconds for startupProbe ## @param shardsvr.dataNode.startupProbe.timeoutSeconds Timeout seconds for startupProbe ## @param shardsvr.dataNode.startupProbe.failureThreshold Failure threshold for startupProbe ## @param shardsvr.dataNode.startupProbe.successThreshold Success threshold for startupProbe ## startupProbe: enabled: false initialDelaySeconds: 0 periodSeconds: 10 timeoutSeconds: 5 failureThreshold: 30 successThreshold: 1 ## @param shardsvr.dataNode.customLivenessProbe Custom livenessProbe that overrides the default one ## customLivenessProbe: {} ## @param shardsvr.dataNode.customReadinessProbe Custom readinessProbe that overrides the default one ## customReadinessProbe: {} ## @param shardsvr.dataNode.customStartupProbe Custom startupProbe that overrides the default one ## customStartupProbe: {} ## @section Shard configuration: Persistence parameters ## ## Enable persistence using Persistent Volume Claims ## ref: https://kubernetes.io/docs/concepts/storage/persistent-volumes/ ## persistence: ## @param shardsvr.persistence.enabled Use a PVC to persist data ## enabled: true ## @param shardsvr.persistence.mountPath The path the volume will be mounted at, useful when using different MongoDB® images. ## mountPath: /bitnami/mongodb ## @param shardsvr.persistence.subPath Subdirectory of the volume to mount at (evaluated as a template) ## Useful in development environments and one PV for multiple services. ## subPath: "" ## @param shardsvr.persistence.storageClass Storage class of backing PVC ## If defined, storageClassName: ## If set to "-", storageClassName: "", which disables dynamic provisioning ## If undefined (the default) or set to null, no storageClassName spec is ## set, choosing the default provisioner. (gp2 on AWS, standard on ## GKE, AWS & OpenStack) ## storageClass: "" ## @param shardsvr.persistence.accessModes Use volume as ReadOnly or ReadWrite ## accessModes: - ReadWriteOnce ## @param shardsvr.persistence.size PersistentVolumeClaim size ## size: 8Gi ## @param shardsvr.persistence.annotations Additional volume annotations ## ref: https://kubernetes.io/docs/concepts/overview/working-with-objects/annotations/ ## annotations: {} ## Persistent Volume Claim Retention Policy ## ref: https://kubernetes.io/docs/concepts/workloads/controllers/statefulset/#persistentvolumeclaim-retention ## persistentVolumeClaimRetentionPolicy: ## @param shardsvr.persistentVolumeClaimRetentionPolicy.enabled Enable Persistent volume retention policy for Shard replicas StatefulSet ## enabled: false ## @param shardsvr.persistentVolumeClaimRetentionPolicy.whenScaled Volume retention behavior when the replica count of the StatefulSet is reduced ## whenScaled: Retain ## @param shardsvr.persistentVolumeClaimRetentionPolicy.whenDeleted Volume retention behavior that applies when the StatefulSet is deleted ## whenDeleted: Retain ## @section Shard configuration: Arbiter parameters ## ## Properties for arbiter nodes ## ref: https://docs.mongodb.com/manual/tutorial/add-replica-set-arbiter/ ## arbiter: ## @param shardsvr.arbiter.replicaCount Number of arbiters in each shard replica set (the first node will be primary) ## replicaCount: 0 ## @param shardsvr.arbiter.automountServiceAccountToken Mount Service Account token in pod ## automountServiceAccountToken: false ## @param shardsvr.arbiter.hostAliases Deployment pod host aliases ## https://kubernetes.io/docs/concepts/services-networking/add-entries-to-pod-etc-hosts-with-host-aliases/ ## hostAliases: [] ## @param shardsvr.arbiter.resourcesPreset Set container resources according to one common preset (allowed values: none, nano, micro, small, medium, large, xlarge, 2xlarge). This is ignored if shardsvr.arbiter.resources is set (shardsvr.arbiter.resources is recommended for production). ## More information: https://github.com/bitnami/charts/blob/main/bitnami/common/templates/_resources.tpl#L15 ## resourcesPreset: "small" ## @param shardsvr.arbiter.resources Set container requests and limits for different resources like CPU or memory (essential for production workloads) ## Example: ## resources: ## requests: ## cpu: 2 ## memory: 512Mi ## limits: ## cpu: 3 ## memory: 1024Mi ## ref: https://kubernetes.io/docs/concepts/configuration/manage-compute-resources-container/ ## resources: {} ## @param shardsvr.arbiter.mongodbExtraFlags MongoDB® additional command line flags ## Can be used to specify command line flags, for example: ## mongodbExtraFlags: ## - "--wiredTigerCacheSizeGB=2" ## mongodbExtraFlags: [] ## @param shardsvr.arbiter.topologySpreadConstraints Topology Spread Constraints for pod assignment spread across your cluster among failure-domains. Evaluated as a template ## Ref: https://kubernetes.io/docs/concepts/workloads/pods/pod-topology-spread-constraints/#spread-constraints-for-pods ## topologySpreadConstraints: [] ## @param shardsvr.arbiter.priorityClassName Pod priority class name ## https://kubernetes.io/docs/concepts/configuration/pod-priority-preemption/ ## priorityClassName: "" ## @param shardsvr.arbiter.podAffinityPreset Arbiter's Pod affinity preset. Ignored if `affinity` is set. Allowed values: `soft` or `hard` ## ref: https://kubernetes.io/docs/concepts/scheduling-eviction/assign-pod-node/#inter-pod-affinity-and-anti-affinity ## podAffinityPreset: "" ## @param shardsvr.arbiter.podAntiAffinityPreset Arbiter's Pod anti-affinity preset. Ignored if `affinity` is set. Allowed values: `soft` or `hard` ## ref: https://kubernetes.io/docs/concepts/scheduling-eviction/assign-pod-node/#inter-pod-affinity-and-anti-affinity ## podAntiAffinityPreset: soft ## Node affinity preset ## ref: https://kubernetes.io/docs/concepts/scheduling-eviction/assign-pod-node/#node-affinity ## nodeAffinityPreset: ## @param shardsvr.arbiter.nodeAffinityPreset.type Arbiter's Node affinity preset type. Ignored if `affinity` is set. Allowed values: `soft` or `hard` ## type: "" ## @param shardsvr.arbiter.nodeAffinityPreset.key Arbiter's Node label key to match Ignored if `affinity` is set. ## E.g. ## key: "kubernetes.io/e2e-az-name" ## key: "" ## @param shardsvr.arbiter.nodeAffinityPreset.values Arbiter's Node label values to match. Ignored if `affinity` is set. ## E.g. ## values: ## - e2e-az1 ## - e2e-az2 ## values: [] ## @param shardsvr.arbiter.affinity Arbiter's Affinity for pod assignment ## ref: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/#affinity-and-anti-affinity ## You can set arbiterLoopId (or any other parameter) by setting the below code block under this 'affinity' section: ## affinity: ## matchLabels: ## shard: "{{ .arbiterLoopId }}" ## ## Note: shardsvr.arbiter.podAffinityPreset, shardsvr.arbiter.podAntiAffinityPreset, and shardsvr.arbiter.nodeAffinityPreset will be ignored when it's set ## affinity: {} ## @param shardsvr.arbiter.nodeSelector Arbiter's Node labels for pod assignment ## ref: https://kubernetes.io/docs/concepts/scheduling-eviction/assign-pod-node/ ## nodeSelector: {} ## @param shardsvr.arbiter.tolerations Arbiter's Tolerations for pod assignment ## ref: https://kubernetes.io/docs/concepts/configuration/taint-and-toleration/ ## tolerations: [] ## @param shardsvr.arbiter.podManagementPolicy Statefulset's pod management policy, allows parallel startup of pods ## ref: https://kubernetes.io/docs/concepts/workloads/controllers/statefulset/#pod-management-policies ## podManagementPolicy: OrderedReady ## @param shardsvr.arbiter.updateStrategy.type updateStrategy for MongoDB® Primary, Secondary and Arbiter statefulsets ## ref: https://kubernetes.io/docs/concepts/workloads/controllers/statefulset/#update-strategies ## updateStrategy: type: RollingUpdate ## @param shardsvr.arbiter.config MongoDB® configuration file ## ref: http://docs.mongodb.org/manual/reference/configuration-options/ ## config: "" ## @param shardsvr.arbiter.configCM ConfigMap name with MongoDB® configuration file (cannot be used with shardsvr.arbiter.config) ## ref: http://docs.mongodb.org/manual/reference/configuration-options/ ## configCM: "" ## @param shardsvr.arbiter.extraEnvVars An array to add extra env vars ## For example: ## extraEnvVars: ## - name: KIBANA_ELASTICSEARCH_URL ## value: test ## extraEnvVars: [] ## @param shardsvr.arbiter.extraEnvVarsCM Name of a ConfigMap containing extra env vars ## extraEnvVarsCM: "" ## @param shardsvr.arbiter.extraEnvVarsSecret Name of a Secret containing extra env vars ## extraEnvVarsSecret: "" ## @param shardsvr.arbiter.sidecars Add sidecars to the pod ## For example: ## sidecars: ## - name: your-image-name ## image: your-image ## imagePullPolicy: Always ## ports: ## - name: portname ## containerPort: 1234 ## sidecars: [] ## @param shardsvr.arbiter.initContainers Add init containers to the pod ## For example: ## initcontainers: ## - name: your-image-name ## image: your-image ## imagePullPolicy: Always ## initContainers: [] ## @param shardsvr.arbiter.podAnnotations Additional pod annotations ## ref: https://kubernetes.io/docs/concepts/overview/working-with-objects/annotations/ ## podAnnotations: {} ## @param shardsvr.arbiter.podLabels Additional pod labels ## ref: https://kubernetes.io/docs/concepts/overview/working-with-objects/labels/ ## podLabels: {} ## @param shardsvr.arbiter.extraVolumes Array to add extra volumes ## extraVolumes: [] ## @param shardsvr.arbiter.extraVolumeMounts Array to add extra mounts (normally used with extraVolumes) ## extraVolumeMounts: [] ## @param shardsvr.arbiter.schedulerName Use an alternate scheduler, e.g. "stork". ## ref: https://kubernetes.io/docs/tasks/administer-cluster/configure-multiple-schedulers/ ## schedulerName: "" ## K8s Service Account. ## ref: https://kubernetes.io/docs/tasks/configure-pod-container/configure-service-account/ ## serviceAccount: ## @param shardsvr.arbiter.serviceAccount.create Specifies whether a ServiceAccount should be created for shardsvr arbiter nodes ## create: true ## @param shardsvr.arbiter.serviceAccount.name Name of a Service Account to be used by shardsvr arbiter pods ## If not set and create is true, a name is generated using the XXX.fullname template ## name: "" ## @param shardsvr.arbiter.serviceAccount.annotations Additional Service Account annotations (evaluated as a template) ## annotations: {} ## @param shardsvr.arbiter.serviceAccount.automountServiceAccountToken Automount service account token for the server service account ## automountServiceAccountToken: false ## Configure Pods Security Context ## ref: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/ ## @param shardsvr.arbiter.podSecurityContext.enabled Enable security context ## @param shardsvr.arbiter.podSecurityContext.fsGroupChangePolicy Set filesystem group change policy ## @param shardsvr.arbiter.podSecurityContext.sysctls Set kernel settings using the sysctl interface ## @param shardsvr.arbiter.podSecurityContext.supplementalGroups Set filesystem extra groups ## @param shardsvr.arbiter.podSecurityContext.fsGroup Group ID for the container ## podSecurityContext: enabled: true fsGroupChangePolicy: Always sysctls: [] supplementalGroups: [] fsGroup: 1001 ## Configure Container Security Context ## ref: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/#set-the-security-context-for-a-container ## @param shardsvr.arbiter.containerSecurityContext.enabled Enabled containers' Security Context ## @param shardsvr.arbiter.containerSecurityContext.seLinuxOptions [object,nullable] Set SELinux options in container ## @param shardsvr.arbiter.containerSecurityContext.runAsUser Set containers' Security Context runAsUser ## @param shardsvr.arbiter.containerSecurityContext.runAsGroup Set containers' Security Context runAsGroup ## @param shardsvr.arbiter.containerSecurityContext.runAsNonRoot Set container's Security Context runAsNonRoot ## @param shardsvr.arbiter.containerSecurityContext.privileged Set container's Security Context privileged ## @param shardsvr.arbiter.containerSecurityContext.readOnlyRootFilesystem Set container's Security Context readOnlyRootFilesystem ## @param shardsvr.arbiter.containerSecurityContext.allowPrivilegeEscalation Set container's Security Context allowPrivilegeEscalation ## @param shardsvr.arbiter.containerSecurityContext.capabilities.drop List of capabilities to be dropped ## @param shardsvr.arbiter.containerSecurityContext.seccompProfile.type Set container's Security Context seccomp profile ## containerSecurityContext: enabled: true seLinuxOptions: {} runAsUser: 1001 runAsGroup: 1001 runAsNonRoot: true privileged: false readOnlyRootFilesystem: true allowPrivilegeEscalation: false capabilities: drop: ["ALL"] seccompProfile: type: "RuntimeDefault" ## @param shardsvr.arbiter.command Override default container command (useful when using custom images) ## command: [] ## @param shardsvr.arbiter.args Override default container args (useful when using custom images) ## args: [] ## @param shardsvr.arbiter.terminationGracePeriodSeconds Seconds Redmine pod needs to terminate gracefully ## ref: https://kubernetes.io/docs/concepts/workloads/pods/pod/#termination-of-pods ## terminationGracePeriodSeconds: "" ## @param shardsvr.arbiter.lifecycleHooks for the arbiter container(s) to automate configuration before or after startup ## lifecycleHooks: {} ## Configure extra options for liveness probes ## ref: https://kubernetes.io/docs/tasks/configure-pod-container/configure-liveness-readiness-startup-probes/#configure-probes ## @param shardsvr.arbiter.livenessProbe.enabled Enable livenessProbe ## @param shardsvr.arbiter.livenessProbe.initialDelaySeconds Initial delay seconds for livenessProbe ## @param shardsvr.arbiter.livenessProbe.periodSeconds Period seconds for livenessProbe ## @param shardsvr.arbiter.livenessProbe.timeoutSeconds Timeout seconds for livenessProbe ## @param shardsvr.arbiter.livenessProbe.failureThreshold Failure threshold for livenessProbe ## @param shardsvr.arbiter.livenessProbe.successThreshold Success threshold for livenessProbe ## livenessProbe: enabled: true initialDelaySeconds: 60 periodSeconds: 30 timeoutSeconds: 20 failureThreshold: 2 successThreshold: 1 ## Configure extra options for readiness probe ## ref: https://kubernetes.io/docs/tasks/configure-pod-container/configure-liveness-readiness-startup-probes/#configure-probes ## @param shardsvr.arbiter.readinessProbe.enabled Enable readinessProbe ## @param shardsvr.arbiter.readinessProbe.initialDelaySeconds Initial delay seconds for readinessProbe ## @param shardsvr.arbiter.readinessProbe.periodSeconds Period seconds for readinessProbe ## @param shardsvr.arbiter.readinessProbe.timeoutSeconds Timeout seconds for readinessProbe ## @param shardsvr.arbiter.readinessProbe.failureThreshold Failure threshold for readinessProbe ## @param shardsvr.arbiter.readinessProbe.successThreshold Success threshold for readinessProbe ## readinessProbe: enabled: true initialDelaySeconds: 10 periodSeconds: 30 timeoutSeconds: 20 failureThreshold: 6 successThreshold: 1 ## Configure extra options for startup probe ## ref: https://kubernetes.io/docs/tasks/configure-pod-container/configure-liveness-readiness-startup-probes/#configure-probes ## @param shardsvr.arbiter.startupProbe.enabled Enable startupProbe ## @param shardsvr.arbiter.startupProbe.initialDelaySeconds Initial delay seconds for startupProbe ## @param shardsvr.arbiter.startupProbe.periodSeconds Period seconds for startupProbe ## @param shardsvr.arbiter.startupProbe.timeoutSeconds Timeout seconds for startupProbe ## @param shardsvr.arbiter.startupProbe.failureThreshold Failure threshold for startupProbe ## @param shardsvr.arbiter.startupProbe.successThreshold Success threshold for startupProbe ## startupProbe: enabled: false initialDelaySeconds: 0 periodSeconds: 10 timeoutSeconds: 5 failureThreshold: 30 successThreshold: 1 ## @param shardsvr.arbiter.customLivenessProbe Custom livenessProbe that overrides the default one ## customLivenessProbe: {} ## @param shardsvr.arbiter.customReadinessProbe Custom readinessProbe that overrides the default one ## customReadinessProbe: {} ## @param shardsvr.arbiter.customStartupProbe Custom startupProbe that overrides the default one ## customStartupProbe: {} ## @section Metrics parameters ## metrics: ## @param metrics.enabled Start a side-car prometheus exporter ## enabled: false ## @param metrics.image.registry [default: REGISTRY_NAME] MongoDB® exporter image registry ## @param metrics.image.repository [default: REPOSITORY_NAME/mongodb-exporter] MongoDB® exporter image name ## @skip metrics.image.tag MongoDB® exporter image tag ## @param metrics.image.digest MongoDB® exporter image digest in the way sha256:aa.... Please note this parameter, if set, will override the tag ## @param metrics.image.pullPolicy MongoDB® exporter image pull policy ## @param metrics.image.pullSecrets MongoDB® exporter image pull secrets ## image: registry: docker.io repository: bitnami/mongodb-exporter tag: 0.44.0-debian-12-r1 digest: "" pullPolicy: Always ## Optionally specify an array of imagePullSecrets. ## Secrets must be manually created in the namespace. ## ref: https://kubernetes.io/docs/tasks/configure-pod-container/pull-image-private-registry/ ## e.g: ## pullSecrets: ## - myRegistryKeySecretName ## pullSecrets: [] ## @param metrics.useTLS Whether to connect to MongoDB® with TLS ## useTLS: false ## @param metrics.extraArgs String with extra arguments to the metrics exporter ## ref: https://github.com/percona/mongodb_exporter/blob/main/main.go ## extraArgs: "" ## @param metrics.resourcesPreset Set container resources according to one common preset (allowed values: none, nano, micro, small, medium, large, xlarge, 2xlarge). This is ignored if metrics.resources is set (metrics.resources is recommended for production). ## More information: https://github.com/bitnami/charts/blob/main/bitnami/common/templates/_resources.tpl#L15 ## resourcesPreset: "nano" ## @param metrics.resources Set container requests and limits for different resources like CPU or memory (essential for production workloads) ## Example: ## resources: ## requests: ## cpu: 2 ## memory: 512Mi ## limits: ## cpu: 3 ## memory: 1024Mi ## ref: https://kubernetes.io/docs/concepts/configuration/manage-compute-resources-container/ ## resources: {} ## Configure Container Security Context ## ref: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/#set-the-security-context-for-a-container ## @param metrics.containerSecurityContext.enabled Enabled containers' Security Context ## @param metrics.containerSecurityContext.seLinuxOptions [object,nullable] Set SELinux options in container ## @param metrics.containerSecurityContext.runAsUser Set containers' Security Context runAsUser ## @param metrics.containerSecurityContext.runAsGroup Set containers' Security Context runAsGroup ## @param metrics.containerSecurityContext.runAsNonRoot Set container's Security Context runAsNonRoot ## @param metrics.containerSecurityContext.privileged Set container's Security Context privileged ## @param metrics.containerSecurityContext.readOnlyRootFilesystem Set container's Security Context readOnlyRootFilesystem ## @param metrics.containerSecurityContext.allowPrivilegeEscalation Set container's Security Context allowPrivilegeEscalation ## @param metrics.containerSecurityContext.capabilities.drop List of capabilities to be dropped ## @param metrics.containerSecurityContext.seccompProfile.type Set container's Security Context seccomp profile ## containerSecurityContext: enabled: true seLinuxOptions: {} runAsUser: 1001 runAsGroup: 1001 runAsNonRoot: true privileged: false readOnlyRootFilesystem: true allowPrivilegeEscalation: false capabilities: drop: ["ALL"] seccompProfile: type: "RuntimeDefault" ## Metrics exporter liveness probe ## ref: https://kubernetes.io/docs/tasks/configure-pod-container/configure-liveness-readiness-probes/#configure-probes) ## @param metrics.livenessProbe.enabled Enable livenessProbe ## @param metrics.livenessProbe.initialDelaySeconds Initial delay seconds for livenessProbe ## @param metrics.livenessProbe.periodSeconds Period seconds for livenessProbe ## @param metrics.livenessProbe.timeoutSeconds Timeout seconds for livenessProbe ## @param metrics.livenessProbe.failureThreshold Failure threshold for livenessProbe ## @param metrics.livenessProbe.successThreshold Success threshold for livenessProbe ## livenessProbe: enabled: false initialDelaySeconds: 15 periodSeconds: 5 timeoutSeconds: 5 failureThreshold: 3 successThreshold: 1 ## Metrics exporter liveness and readiness probes ## ref: https://kubernetes.io/docs/tasks/configure-pod-container/configure-liveness-readiness-probes/#configure-probes) ## @param metrics.readinessProbe.enabled Enable readinessProbe ## @param metrics.readinessProbe.initialDelaySeconds Initial delay seconds for readinessProbe ## @param metrics.readinessProbe.periodSeconds Period seconds for readinessProbe ## @param metrics.readinessProbe.timeoutSeconds Timeout seconds for readinessProbe ## @param metrics.readinessProbe.failureThreshold Failure threshold for readinessProbe ## @param metrics.readinessProbe.successThreshold Success threshold for readinessProbe ## readinessProbe: enabled: false initialDelaySeconds: 5 periodSeconds: 5 timeoutSeconds: 1 failureThreshold: 3 successThreshold: 1 ## Configure extra options for startup probe ## ref: https://kubernetes.io/docs/tasks/configure-pod-container/configure-liveness-readiness-startup-probes/#configure-probes ## @param metrics.startupProbe.enabled Enable startupProbe ## @param metrics.startupProbe.initialDelaySeconds Initial delay seconds for startupProbe ## @param metrics.startupProbe.periodSeconds Period seconds for startupProbe ## @param metrics.startupProbe.timeoutSeconds Timeout seconds for startupProbe ## @param metrics.startupProbe.failureThreshold Failure threshold for startupProbe ## @param metrics.startupProbe.successThreshold Success threshold for startupProbe ## startupProbe: enabled: false initialDelaySeconds: 0 periodSeconds: 5 timeoutSeconds: 2 failureThreshold: 15 successThreshold: 1 ## @param metrics.customLivenessProbe Custom livenessProbe that overrides the default one ## customLivenessProbe: {} ## @param metrics.customReadinessProbe Custom readinessProbe that overrides the default one ## customReadinessProbe: {} ## @param metrics.customStartupProbe Custom startupProbe that overrides the default one ## customStartupProbe: {} ## @param metrics.containerPorts.metrics Port of the Prometheus metrics container ## containerPorts: metrics: 9216 ## @param metrics.podAnnotations [object] Metrics exporter pod Annotation ## podAnnotations: prometheus.io/scrape: "true" prometheus.io/port: "{{ .Values.metrics.containerPort }}" ## Prometheus Service Monitor ## ref: https://github.com/coreos/prometheus-operator ## https://github.com/coreos/prometheus-operator/blob/master/Documentation/api.md#endpoint ## podMonitor: ## @param metrics.podMonitor.enabled Create PodMonitor Resource for scraping metrics using PrometheusOperator ## enabled: false ## @param metrics.podMonitor.namespace Namespace where podmonitor resource should be created ## namespace: monitoring ## @param metrics.podMonitor.interval Specify the interval at which metrics should be scraped ## interval: 30s ## @param metrics.podMonitor.scrapeTimeout Specify the timeout after which the scrape is ended ## e.g: ## scrapeTimeout: 30s ## scrapeTimeout: "" ## @param metrics.podMonitor.additionalLabels Additional labels that can be used so PodMonitors will be discovered by Prometheus ## ref: https://github.com/coreos/prometheus-operator/blob/master/Documentation/api.md#prometheusspec ## additionalLabels: {}