Skip to content

arlas-aias

Version: 0.0.1

A Helm Chart to deploy the ARLAS Exploration Stack with AIAS services

Requirements

Repository Name Version
file://../aias-services aias-services 0.0.1
file://../arlas-services arlas-services 0.0.1
file://../arlas-uis arlas-uis 0.0.1
file://../titiler titiler 1.2.7
https://charts.bitnami.com/bitnami apisix 3.3.9
https://charts.bitnami.com/bitnami elasticsearch 22.0.4
https://charts.bitnami.com/bitnami keycloak 20.0.1
https://charts.bitnami.com/bitnami minio 16.0.10
https://charts.bitnami.com/bitnami rabbitmq 16.0.11
https://charts.bitnami.com/bitnami redis 21.2.13

Values

Key Type Default Description
aias-services.logger.loggingConsoleLevel string "INFO" Console logging level
aias-services.logger.loggingLevel string "INFO" Logging level
aias-services.services.aproc.worker.affinity object {}
aias-services.services.aproc.worker.nodeSelector object {}
aias-services.services.aproc.worker.replicaCount int 1
aias-services.services.aproc.worker.resources.limits.cpu int 2
aias-services.services.aproc.worker.resources.limits.memory string "10Gi"
aias-services.services.aproc.worker.tolerations list []
arlas-services.logger.loggingConsoleLevel string "DEBUG" Console logging level
arlas-services.logger.loggingLevel string "DEBUG" Logging level
arlas-services.services.mountCertificate bool true MUST BE CONFIGURED: Set to true if you want the services to use the certificate contained in the k8s/charts/arlas-stack/templates/keycloak-certificate-configmap.yaml file and enable the keycloak.ingress.extraTls bloc. False otherwise and disable the keycloak.ingress.extraTls bloc.
arlas-uis.basemap object {"storageSize":"50Mi"} MUST BE CONFIGURED: Set to 120 Gi if you copy the full basemap
arlas-uis.logger.loggingConsoleLevel string "INFO" Console logging level
arlas-uis.logger.loggingLevel string "INFO" Logging level
deployment.apisix.enabled bool true Should the chart deploy apisix
deployment.elasticsearch.enabled bool true Should the chart deploy elasticsearch
deployment.keycloak.enabled bool true MUST BE CONFIGURED: Should the chart deploy keycloak. Enable for tests only or configure carefully the chart for your production needs.
deployment.minio.enabled bool true Should the chart deploy minio
deployment.rabbitmq.enabled bool true Should the chart deploy rabbitmq
deployment.redis.enabled bool true Should the chart deploy redis
deployment.titiler.enabled bool true Should the chart deploy titiler
elasticsearch.coordinating.replicaCount int 0
elasticsearch.data.persistentVolumeClaimRetentionPolicy.enabled bool true
elasticsearch.data.replicaCount int 0
elasticsearch.ingest.replicaCount int 0
elasticsearch.master.masterOnly bool false
elasticsearch.master.persistentVolumeClaimRetentionPolicy.enabled bool true
elasticsearch.master.replicaCount int 1
elasticsearch.master.resourcesPreset string "large"
elasticsearch.security.enabled bool true
elasticsearch.security.tls.autoGenerated bool true
elasticsearch.service.type string "ClusterIP"
global.authIssuer string "https://keycloak.arlas.k8s/auth/realms/arlas" MUST BE CONFIGURED: The issuer's uri
global.defaultStorageClass string "standard-retain" MUST BE CONFIGURED: The default ARLAS storage class for the persistence. By default, the standard-retain storage class is created based on the provisioner rancher.io/local-path with a retain policy.
global.dnsDomain string "site.arlas.k8s" MUST BE CONFIGURED: The domain name for accessing the ARLAS deployment
global.elasticDnsDomain string "elastic.arlas.k8s" MUST BE CONFIGURED: The domain name for accessing ES for ARLAS deployment
global.elasticLogin string "elastic" Elasticsearch login for elasticsearch itself and the services that are connecting to elasticsearch
global.elasticPassword string "secret4elastic" MUST BE CONFIGURED: Elasticsearch password for elasticsearch itself and the services that are connecting to elasticsearch
global.ingressClassName string "nginx" MUST BE CONFIGURED: The default ingress class. By default, the nginx controler is used.
global.keycloackDnsDomain string "keycloak.arlas.k8s" MUST BE CONFIGURED: The domain name for accessing keycloak for ARLAS deployment
global.keycloak.secret string "rha14c4202RB0Dxlke6ZNCCTw9gkvLJ8" MUST BE CONFIGURED: The secret configured for the ARLAS client of the keyckloak's realm
global.keycloak.url string "https://keycloak.arlas.k8s/auth" MUST BE CONFIGURED: Keycloak URL
global.keycloakLogin string "admin" Keycloak admin login for keycloak deployment (for test only)
global.keycloakPassword string "secret4keycloak" MUST BE CONFIGURED: Keycloak admin password
global.logoutUrl string nil The logout URL to be used
global.minioLogin string "minioadmin" Minio login for minio itself and the services that are connecting to minio
global.minioPassword string "secret4minio" MUST BE CONFIGURED: Minio password for minio itself and the services that are connecting to minio
global.organization string "org.com" MUST BE CONFIGURED: Name of the organization using AIAS
global.postgresql.auth.password string "secret4postgres" MUST BE CONFIGURED: postgres password for keycloak
global.protocol string "https" MUST BE CONFIGURED: The protocol for accessing the ARLAS deployment
global.rabbitMQLogin string "admin" RabbitMQ Login
global.rabbitMQPassword string "secret4rabbitmq" MUST BE CONFIGURED: RabbitMQ Password
global.redisPassword string "secret4redis" MUST BE CONFIGURED: redis Password
keycloak.auth.adminPassword string "secret4keycloak"
keycloak.auth.adminUser string "admin"
keycloak.extraEnvVars[0].name string "KEYCLOAK_EXTRA_ARGS"
keycloak.extraEnvVars[0].value string "--import-realm"
keycloak.extraVolumeMounts[0].mountPath string "/opt/bitnami/keycloak/data/import"
keycloak.extraVolumeMounts[0].name string "realm-config"
keycloak.extraVolumes[0].configMap.name string "keycloak-realm-configmap"
keycloak.extraVolumes[0].name string "realm-config"
keycloak.httpRelativePath string "/auth/"
keycloak.ingress.annotations."nginx.ingress.kubernetes.io/proxy-buffer-size" string "16k" Default nginx ingress has default proxy buffers that are too small for keycloak headers.
keycloak.ingress.annotations."nginx.ingress.kubernetes.io/proxy-buffers-number" string "8"
keycloak.ingress.enabled bool true
keycloak.ingress.extraTls list [{"hosts":["keycloak.arlas.k8s"],"secretName":"keycloak-tls"}] MUST BE CONFIGURED: Enable extraTls bloc if you provide the certificate in the keycloak-tls secret, comment the block below otherwise. If the block is enabled, then set arlas-services.services.mountCertificate must be true, false otherwise (so that the certificate is mounted on the pods). start-of-block
keycloak.ingress.path string "/"
keycloak.ingress.servicePort int 8080
keycloak.ingress.tls bool true
keycloak.proxy string "edge"
keycloak.readinessProbe.initialDelaySeconds int 300
keycloak.readinessProbe.timeoutSeconds int 60
keycloak.resourcesPreset string "medium"
keycloak.service.http.enabled bool true
keycloak.service.ports.http int 8080
keycloak.service.ports.https int 8443
keycloak.service.type string "ClusterIP"
keycloak.startupProbe.initialDelaySeconds int 300
keycloak.startupProbe.timeoutSeconds int 60
minio.persistence.storageClass string "standard-retain"
rabbitmq.persistentVolumeClaimRetentionPolicy.enabled bool true
rabbitmq.resources.limits.memory string "2Gi"
rabbitmq.resources.requests.memory string "1Gi"
redis.architecture string "standalone"
redis.commonConfiguration string "loadmodule /opt/bitnami/redis/lib/redis/modules/redisbloom.so\nloadmodule /opt/bitnami/redis/lib/redis/modules/redisearch.so\nloadmodule /opt/bitnami/redis/lib/redis/modules/rejson.so\nloadmodule /opt/bitnami/redis/lib/redis/modules/redistimeseries.so\n"
redis.replica.persistence.storageClass string "standard-retain"
redis.replica.persistentVolumeClaimRetentionPolicy.enabled bool true

Autogenerated from chart metadata using helm-docs v1.13.1