REFACTOR(repo): restructure infra folder structure
- Remove argocd/, helm-values/, ingress/ subdirectories - Move files to parent directory with standardized names - Add namespace.yaml to all apps with Goldilocks labels - Preserve vault/ subdirectories (falco, velero) - Update main kustomization.yaml to reference argocd.yaml files directly - Comment out argocd.yaml in each app's kustomization.yaml to prevent circular reference Applications restructured: - cert-manager (2 ArgoCD apps) - external-secrets - reloader - vault (2 ArgoCD apps) - velero (2 ArgoCD apps) - falco - cnpg - haproxy - metallb - vpa - argocd
This commit is contained in:
84
cnpg/helm-values.yaml
Normal file
84
cnpg/helm-values.yaml
Normal file
@@ -0,0 +1,84 @@
|
||||
# CloudNativePG Operator Helm Values
|
||||
# Chart: https://github.com/cloudnative-pg/charts
|
||||
|
||||
# Operator image
|
||||
image:
|
||||
repository: ghcr.io/cloudnative-pg/cloudnative-pg
|
||||
tag: 1.25.1
|
||||
pullPolicy: IfNotPresent
|
||||
|
||||
# Replica count for operator
|
||||
replicaCount: 1
|
||||
|
||||
# Resource requests for operator
|
||||
resources:
|
||||
requests:
|
||||
cpu: 5m # Reduced from 100m based on actual usage (2m)
|
||||
memory: 128Mi
|
||||
limits:
|
||||
# cpu: removed to prevent throttling
|
||||
memory: 512Mi
|
||||
|
||||
# RBAC
|
||||
rbac:
|
||||
create: true
|
||||
|
||||
# Service Account
|
||||
serviceAccount:
|
||||
create: true
|
||||
name: cnpg-operator
|
||||
|
||||
# Monitoring
|
||||
monitoring:
|
||||
# Enable Prometheus PodMonitor
|
||||
podMonitorEnabled: true
|
||||
|
||||
# Grafana Dashboard auto-creation disabled due to ConfigMap size limit
|
||||
# Dashboard can be manually imported from Grafana.com (ID: 20417)
|
||||
# https://grafana.com/grafana/dashboards/20417-cloudnativepg/
|
||||
grafanaDashboard:
|
||||
create: false
|
||||
|
||||
# Webhook configuration
|
||||
webhook:
|
||||
port: 9443
|
||||
mutating:
|
||||
create: true
|
||||
validating:
|
||||
create: true
|
||||
|
||||
# Operator configuration
|
||||
config:
|
||||
# Data checksums for PostgreSQL
|
||||
data:
|
||||
INHERITED_ANNOTATIONS: "cert-manager.io/*, argocd.argoproj.io/*"
|
||||
INHERITED_LABELS: "app.kubernetes.io/*"
|
||||
|
||||
# Monitoring queries interval
|
||||
MONITORING_QUERIES_CONFIGMAP: ""
|
||||
MONITORING_QUERIES_SECRET: ""
|
||||
|
||||
# CRD configuration
|
||||
crds:
|
||||
create: true
|
||||
|
||||
# Node selector
|
||||
nodeSelector: {}
|
||||
|
||||
# Tolerations
|
||||
tolerations: []
|
||||
|
||||
# Affinity
|
||||
affinity: {}
|
||||
|
||||
# Security context
|
||||
securityContext:
|
||||
allowPrivilegeEscalation: false
|
||||
readOnlyRootFilesystem: true
|
||||
runAsNonRoot: true
|
||||
runAsUser: 10001
|
||||
capabilities:
|
||||
drop:
|
||||
- ALL
|
||||
seccompProfile:
|
||||
type: RuntimeDefault
|
||||
Reference in New Issue
Block a user