Blame - deploy-manifests/k8s-rancher/1.authx-service/0.authx-service/4.4.authx-service-bff.yaml - institute/deploy-authx-service

blob: f253247dab01e6edb5217472af82b37d6289af9c [file] [log] [blame]

刘洪青	c04a9b5	2021-01-18 22:12:09 +0800	[diff] [blame]	1	# 4.4.authx-service-bff.yaml
				2
				3	---
				4	apiVersion: v1
				5	kind: ConfigMap
				6	metadata:
				7	namespace: authx-service
				8	name: authx-service-bff-env
				9	data:
				10	SERVER_PORT: "8080"
				11	SSL_ENABLED: "false"
				12	#SSL_KEYSTORE_FILE: file:/certs/server/server.keystore
				13	#SSL_KEYSTORE_PASSWORD: ""
				14	#SSL_TRUSTSTORE_FILE: file:/certs/server/server.truststore
				15	#SSL_TRUSTSTORE_PASSWORD: ""
				16
				17	SERVER_MAXHTTPHEADERSIZE: "10240"
				18
				19	SERVER_TOMCAT_ACCEPT_COUNT: "5000"
				20	SERVER_TOMCAT_MAX_CONNECTIONS: "10000"
				21	SERVER_TOMCAT_MAX_THREADS: "800"
				22	SERVER_TOMCAT_MIN_SPARE_THREADS: "100"
				23
				24	LOGGING_LEVEL_COM_SUPWISDOM_INSTITUTE_AUTHX_SERVICE_BFF: INFO
				25
				26
				27	SPRING_REDIS_JEDIS_POOL_MAXACTIVE: "800"
				28	SPRING_REDIS_JEDIS_POOL_MAXIDLE: "100"
				29	SPRING_REDIS_JEDIS_POOL_MINIDLE: "100"
				30
				31
刘洪青	eaacb62	2021-08-19 15:31:41 +0800	[diff] [blame]	32	UNIAUTH_BASIC_AUTH_USERNAME: saadmin
				33	UNIAUTH_BASIC_AUTH_PASSWORD: saadminfoobar
				34
				35
刘洪青	c04a9b5	2021-01-18 22:12:09 +0800	[diff] [blame]	36	CASSERVER_SA_API_SERVER_URL: http://cas-server-sa-api-svc.cas-server.svc.cluster.local:8080
				37	CASSERVER_SA_API_CLIENT_AUTH_ENABLED: "false"
				38	#CASSERVER_SA_API_CLIENT_AUTH_KEY_PASSWORD: ""
				39	#CASSERVER_SA_API_CLIENT_AUTH_KEYSTORE_FILE: file:/certs/common/common.keystore
				40	#CASSERVER_SA_API_CLIENT_AUTH_KEYSTORE_PASSWORD: ""
				41	#CASSERVER_SA_API_CLIENT_AUTH_TRUSTSTORE_FILE: file:/certs/common/common.truststore
				42	#CASSERVER_SA_API_CLIENT_AUTH_TRUSTSTORE_PASSWORD: ""
				43
				44	USER_DATA_SERVICE_SERVER_URL: http://user-data-service-goa-svc.user-data-service.svc.cluster.local:8080
				45	USER_DATA_SERVICE_CLIENT_AUTH_ENABLED: "false"
				46	#USER_DATA_SERVICE_CLIENT_AUTH_KEY_PASSWORD: ""
				47	#USER_DATA_SERVICE_CLIENT_AUTH_KEYSTORE_FILE: file:/certs/common/common.keystore
				48	#USER_DATA_SERVICE_CLIENT_AUTH_KEYSTORE_PASSWORD: ""
				49	#USER_DATA_SERVICE_CLIENT_AUTH_TRUSTSTORE_FILE: file:/certs/common/common.truststore
				50	#USER_DATA_SERVICE_CLIENT_AUTH_TRUSTSTORE_PASSWORD: ""
				51
				52	USER_AUTHZ_SERVICE_SERVER_URL: http://user-authorization-sa-svc.user-authorization-service.svc.cluster.local:8080
				53	USER_AUTHZ_SERVICE_CLIENT_AUTH_ENABLED: "false"
				54	#USER_AUTHZ_SERVICE_CLIENT_AUTH_KEY_PASSWORD: ""
				55	#USER_AUTHZ_SERVICE_CLIENT_AUTH_KEYSTORE_FILE: file:/certs/common/common.keystore
				56	#USER_AUTHZ_SERVICE_CLIENT_AUTH_KEYSTORE_PASSWORD: ""
				57	#USER_AUTHZ_SERVICE_CLIENT_AUTH_TRUSTSTORE_FILE: file:/certs/common/common.truststore
				58	#USER_AUTHZ_SERVICE_CLIENT_AUTH_TRUSTSTORE_PASSWORD: ""
				59
刘洪青	eaacb62	2021-08-19 15:31:41 +0800	[diff] [blame]	60	UNIAUTH_SERVER_SA_API_SERVER_URL: http://uniauth-prod-backend.uniauth.svc.cluster.local:9090
				61	UNIAUTH_SERVER_SA_API_CLIENT_AUTH_ENABLED: "false"
				62	#UNIAUTH_SERVER_SA_API_CLIENT_AUTH_KEY_PASSWORD: ""
				63	#UNIAUTH_SERVER_SA_API_CLIENT_AUTH_KEYSTORE_FILE: file:/certs/common/common.keystore
				64	#UNIAUTH_SERVER_SA_API_CLIENT_AUTH_KEYSTORE_PASSWORD: ""
				65	#UNIAUTH_SERVER_SA_API_CLIENT_AUTH_TRUSTSTORE_FILE: file:/certs/common/common.truststore
				66	#UNIAUTH_SERVER_SA_API_CLIENT_AUTH_TRUSTSTORE_PASSWORD: ""
				67
刘洪青	c04a9b5	2021-01-18 22:12:09 +0800	[diff] [blame]	68
				69	TPAS_FILE_API_URL: http://agent-service-svc.thirdparty-agent-service.svc.cluster.local:8080/api/v1/tpas/file/minio
				70	TPAS_CLIENT_AUTH_ENABLED: "false"
				71	#TPAS_CLIENT_AUTH_KEY_PASSWORD: ""
				72	#TPAS_CLIENT_AUTH_KEYSTORE_FILE: file:/certs/client/client.keystore
				73	#TPAS_CLIENT_AUTH_KEYSTORE_PASSWORD: ""
				74	#TPAS_CLIENT_AUTH_TRUSTSTORE_FILE: file:/certs/client/client.truststore
				75	#TPAS_CLIENT_AUTH_TRUSTSTORE_PASSWORD: ""
				76
				77	---
				78	apiVersion: v1
				79	kind: Service
				80	metadata:
				81	namespace: authx-service
				82	name: authx-service-bff-svc
				83	labels:
				84	app: authx-service-bff
				85	needMonitor: 'true'
				86	spec:
				87	ports:
				88	- port: 8080
				89	targetPort: http
				90	protocol: TCP
				91	name: http
				92	- port: 6060
				93	targetPort: http-metrics
				94	protocol: TCP
				95	name: http-metrics
				96	selector:
				97	app: authx-service-bff
				98
				99	---
				100	apiVersion: apps/v1
				101	kind: Deployment
				102	metadata:
				103	namespace: authx-service
				104	name: authx-service-bff
				105	spec:
				106	selector:
				107	matchLabels:
				108	app: authx-service-bff
				109	replicas: 1
				110	template:
				111	metadata:
				112	labels:
				113	app: authx-service-bff
				114	spec:
				115	containers:
				116	- name: authx-service-bff
刘洪青	166aa72	2022-01-10 17:11:02 +0800	[diff] [blame]	117	image: harbor.supwisdom.com/authx-service/authx-service-bff:1.3.5-RELEASE
刘洪青	c04a9b5	2021-01-18 22:12:09 +0800	[diff] [blame]	118	imagePullPolicy: Always
				119	ports:
				120	- containerPort: 8080
				121	name: http
				122	- containerPort: 6060
				123	name: http-metrics
				124	envFrom:
				125	- configMapRef:
				126	name: jvm-env
				127	- secretRef:
				128	name: redis-env-secret
				129	- configMapRef:
				130	name: authx-service-bff-env
				131	resources:
				132	requests:
刘洪青	9d7b202	2021-06-26 11:41:43 +0800	[diff] [blame]	133	memory: "1024Mi"
刘洪青	c04a9b5	2021-01-18 22:12:09 +0800	[diff] [blame]	134	limits:
刘洪青	9d7b202	2021-06-26 11:41:43 +0800	[diff] [blame]	135	memory: "1024Mi"
刘洪青	c04a9b5	2021-01-18 22:12:09 +0800	[diff] [blame]	136	readinessProbe:
				137	httpGet:
				138	path: /actuator/health
				139	port: 8080
				140	initialDelaySeconds: 20
				141	periodSeconds: 5
				142	timeoutSeconds: 5
				143	successThreshold: 1
				144	failureThreshold: 10
				145	imagePullSecrets:
				146	- name: harbor-registry