stt/infra-gravitee-apim
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
4f1c251ff831a3c1c96348906ee81193dbf5f67b
infra-gravitee-apim/elastic-values.yml
T
sttlab 0d1e5dd9b8 First commit
2026-05-03 11:54:33 +00:00

66 lines
1.7 KiB
YAML
Raw Blame History

# Elasticsearch - single node with TLS on HTTP
clusterName: "gravitee-es"
nodeGroup: "master"
replicas: 1
minimumMasterNodes: 1
# Mount the cert-manager-issued cert
secretMounts:
- name: elasticsearch-tls
secretName: elasticsearch-tls
path: /usr/share/elasticsearch/config/tls
defaultMode: "0755"
esConfig:
elasticsearch.yml: |
cluster.name: gravitee-es
network.host: 0.0.0.0
xpack.security.enabled: true
xpack.security.http.ssl.enabled: true
xpack.security.http.ssl.certificate: /usr/share/elasticsearch/config/tls/tls.crt
xpack.security.http.ssl.key: /usr/share/elasticsearch/config/tls/tls.key
xpack.security.http.ssl.certificate_authorities: /usr/share/elasticsearch/config/tls/ca.crt
xpack.security.transport.ssl.enabled: true
xpack.security.transport.ssl.verification_mode: certificate
xpack.security.transport.ssl.certificate: /usr/share/elasticsearch/config/tls/tls.crt
xpack.security.transport.ssl.key: /usr/share/elasticsearch/config/tls/tls.key
xpack.security.transport.ssl.certificate_authorities: /usr/share/elasticsearch/config/tls/ca.crt
# Tell the chart that HTTPS is in use for readiness probes
protocol: https
# Disable cert verification on probes (self-signed)
readinessProbe:
exec:
command:
- bash
- -c
- |
curl -k -s --fail -u "elastic:${ELASTIC_PASSWORD}" https://127.0.0.1:9200/_cluster/health?local=true
esJavaOpts: "-Xms512m -Xmx512m"
resources:
requests:
cpu: 200m
memory: 1Gi
limits:
cpu: 1000m
memory: 2Gi
volumeClaimTemplate:
accessModes: ["ReadWriteOnce"]
storageClassName: local-path
resources:
requests:
storage: 10Gi
createCert: false
sysctlInitContainer:
enabled: false
service:
type: ClusterIP
Reference in New Issue View Git Blame Copy Permalink