-
Notifications
You must be signed in to change notification settings - Fork 4
/
Copy pathvalues.yaml
198 lines (175 loc) · 6.56 KB
/
values.yaml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
# Default values for diffgram.
# This is a YAML-formatted file.
# Declare variables to be passed into your templates.
# The Diffgram Version. Whenever a new update arrives, this will be changed.
diffgramVersion: 1.17.5
# Set this to your public domain where you want diffgram to be.
# This must be a domain name and not a public IP address.
# The chart will generate TLS certificates for the provided domain if useCertManager is 'true'
diffgramDomain: example.com
# Set this to true if you want to use cert manager for TLS certificates generation.
useCertManager: true
# Use it to activate TLS on the nginx ingress
useTls: true
tlsIssuer: letsencrypt-prod # One of: "issuer-local", "letsencrypt-staging", or "letsencrypt-prod"
localCaSecretName: my-local-ca-key-pair
issuerEmail: anthony@diffgram.com
dbSettings:
# Specify How the DB Service should be created
# - local: use a Postgres Image and Service (No external service) Recommended only for non-production enviroments.
# - rds: use an ExternalService with an AWSwi RDS instance. If you set this you need to provide the rdsEndpoint field.
# - azure: use an ExternalService with an Azure Postgres instance. If you set this you need to provide the azureSqlEndpoint field.
# - gcsql: use an ExternalService with a Google Cloud SQL instance. If you set this you need to provide the gcSqlEndpoint field.
dbProvider: local
rdsEndpoint: none
azureSqlEndpoint: none
gcsqlEndpoint: none
dbUser: postgres
dbName: postgres
dbPassword: postgres
# For the local postgres DB. Does not have effect on RDS or GCP services.
storageAmount: 5Gi
# All the Secrets Used in Diffgram.
diffgramSecrets:
STRIPE_API_KEY: none
DIFFGRAM_AWS_ACCESS_KEY_ID: none
DIFFGRAM_AWS_ACCESS_KEY_SECRET: none
_ANALYTICS_WRITE_KEY: provided_by_diffgram_team
HUB_SPOT_KEY: provided_by_diffgram_team
SECRET_KEY: provided_by_diffgram_team
FERNET_KEY: NeL_RED6zZ1XF3XT7Yd1hzFPYyebrg6UdkECTOLHEdI= # Please change this for production usage
INTER_SERVICE_SECRET: interservicesecret_please_replace_with_secure_value
# Use diffgram-postgres, postgres-rds-service depending on which DB service you set on dbSettings
USER_PASSWORDS_SECRET: provided_by_diffgram_team
# The service account JSON for GCP Static Storage Encoded in Base64.
SERVICE_ACCOUNT_JSON_B64: put_your_gcp_secret_in_base_64_here
DIFFGRAM_AZURE_CONNECTION_STRING: put_your_azure_connection_string_here
# OAuth2 Secrets
OAUTH2_PROVIDER_CLIENT_SECRET: none
# Keycloak specific secrets
KEY_CLOAK_MASTER_PASSWORD: '"admin"'
KEY_CLOAK_DIFFGRAM_PASSWORD: '"admin"'
# Email Secrets
MAILGUN_KEY: none
SMTP_PASSWORD: none
diffgramSettings:
USERDOMAIN: kubernetes
DIFFGRAM_SYSTEM_MODE: production
DIFFGRAM_STATIC_STORAGE_PROVIDER: aws
DIFFGRAM_S3_BUCKET_NAME: diffgram-testing
DIFFGRAM_S3_BUCKET_REGION: us-west-1
DIFFGRAM_AZURE_CONTAINER_NAME: diffgram-testing
ML__DIFFGRAM_AZURE_CONTAINER_NAME: diffgram-testing
ML__DIFFGRAM_S3_BUCKET_NAME: diffgram-testing
CLOUD_STORAGE_BUCKET: diffgram-testing
ML__CLOUD_STORAGE_BUCKET: diffgram-testing
SERVICE_ACCOUNT_FULL_PATH: /etc/gcp/sa_credentials.json
PROCESS_MEDIA_NUM_VIDEO_THREADS: '"1"'
PROCESS_MEDIA_NUM_FRAME_THREADS: '"4"'
DATABASE_CONNECTION_POOL_SIZE: '"10"'
GOOGLE_APPLICATION_CREDENTIALS: /etc/gcp/sa_credentials.json # Check the volume in deployment.yaml and service_account_secret.yaml
IS_DIFFGRAM_S3_V4_SIGNATURE: '"False"'
# Set this value if you want to use GCP as your storage. Put your json service account encoded in base 64
SERVICE_ACCOUNT_JSON_B64: none
SERVICE_ACCOUNT: sa_credentials.json
# Change this to a unique ID, otherwise leave default
DIFFGRAM_INSTALL_FINGERPRINT: helm_fingerprint_default
# If you know the OS diffgram is running ON put it here, otherwise leave default
DIFFGRAM_HOST_OS: helm_os_default
NEW_RELIC_LICENSE_KEY: none
ALLOW_EVENTHUB: '"False"'
ALLOW_STRIPE_BILLING: '"False"'
IS_OPEN_SOURCE: '"True"'
Iwe can add S_OPEN_SOURCE: '"True"'
DIFFGRAM_MINIO_ENDPOINT_URL: none
DIFFGRAM_MINIO_ACCESS_KEY_ID: none
DIFFGRAM_MINIO_ACCESS_KEY_SECRET: none
DIFFGRAM_MINIO_DISABLED_SSL_VERIFY: '"False"'
RABBITMQ_PORT: "'5672'"
RABBITMQ_HOST: "diffgram-rabbitmq"
RABBITMQ_USE_SSL: '"False"'
SIGNED_URL_CACHE_MINIMUM_SECONDS_VALID: "'18000'" # 5 days default
SIGNED_URL_CACHE_NEW_OFFSET_SECONDS_VALID: "'21600'" # 6 days default
DATABASE_IDLE_SESSION_TRANSACTION_TIMEOUT: "'3600000'" # 1 hour tx timeout for DB
# Email Settings
EMAIL_VALIDATION: '"False"' # Turns on email verification for new accounts.
EMAIL_DOMAIN_NAME: example.com
SMTP_HOST: none
SMTP_PORT: '"465"'
SMTP_USERNAME: none
SMTP_FROM_EMAIL: none
# OAUTH2 Settings
USE_OAUTH2: "'False'"
OAUTH2_PROVIDER_NAME: "cognito"
OAUTH2_PROVIDER_HOST: "http://localhost:8099/auth/"
OAUTH2_PROVIDER_CLIENT_ID: "diffgram"
OAUTH2_PROVIDER_PUBLIC_KEY: none
DISABLE_SELF_REGISTRATION: '"False"'
# Project Settings
ONLY_SUPER_ADMINS_CREATE_PROJECTS: '"False"'
# Cognito-specific Settings
COGNITO_LOGIN_URL: '"False"'
# Keycloak-specific Settings
KEY_CLOAK_MASTER_USER: '"admin"'
KEY_CLOAK_DIFFGRAM_USER: '"admin"'
KEYCLOAK_REALM: '"admin"'
####### Dependencies
# Read: https://github.com/bitnami/charts/tree/master/bitnami/rabbitmq for further configs
useRabbitMq: true
rabbitmq:
auth:
username: "diffgram"
password: "diffgram"
erlangCookie: "diffgram_cookie"
tls:
enabled: true
autoGenerated: true
resources:
requests:
cpu: ".2"
memory: ".4G"
limits:
cpu: "1.0"
memory: "1G"
####### End Dependencies
nodeGroupLabel: null
# The service for API calls.
# This are minimal defaults. Please feel free to change them as you start having more usage
defaultService:
numReplicas: 1
requests:
cpu: "1.0"
memory: "1G"
limits:
cpu: "2.0"
memory: "2G"
# The service for Event Handlers.
# This are minimal defaults. Please feel free to change them as you start having more usage
eventHandlersService:
numReplicas: 1
requests:
cpu: ".2"
memory: ".4G"
limits:
cpu: "1.0"
memory: "1G"
# The service for the UI frontend.
# This are minimal defaults. Please feel free to change them as you start having more usage
frontendService:
numReplicas: 1
requests:
cpu: ".2"
memory: ".4G"
limits:
cpu: "1.0"
memory: "1G"
# The service for video processing. This is where the heavy processing takes place.
# This are minimal defaults. Please feel free to change them as you start having more usage
walrusService:
numReplicas: 1
requests:
cpu: "1.0"
memory: "2G"
limits:
cpu: "2.0"
memory: "4G"