Kezdőlap Felfedezés Súgó
Regisztráció Bejelentkezés
shixiong
/
okd
1
0
Másolás 0
Fájlok Problémák 0 Beolvasztási kérések 0 Wiki
Fa: b4a155f43b
Branch-ok Tag-ek
okd
/
roles
/
openshift_examples
/
files
/
examples
/
latest
/
xpaas-templates
/
rhdm70-kieserver.yaml

rhdm70-kieserver.yaml 14 KB
Előzmények Nyers

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367 
  1. kind: Template
    2. 

  2. apiVersion: v1
    3. 

  3. metadata:
    4. 

  4.   annotations:
    5. 

  5.     description: Application template for Red Hat Decision Manager Execution Server 7.0 application.
    6. 

  6.     iconClass: icon-jboss
    7. 

  7.     tags: rhdm,jboss,xpaas
    8. 

  8.     version: 1.4.0
    9. 

  9.     openshift.io/display-name: Red Hat Decision Manager Execution Server 7.0 (Ephemeral with https)
    10. 

  10.   name: rhdm70-kieserver
    11. 

  11. labels:
    12. 

  12.   template: rhdm70-kieserver
    13. 

  13.   xpaas: 1.4.0
    14. 

  14. message: A new Decision Manager Execution Server application has been created in your
    15. 

  15.   project. The user name/password for calls to the Decision Server is ${KIE_SERVER_USER}/${KIE_SERVER_PWD}.
    16. 

  16.   Please be sure to create the "kieserver-service-account" service account and
    17. 

  17.   the secret named "${HTTPS_SECRET}" containing the ${HTTPS_KEYSTORE} file used for
    18. 

  18.   serving secure content.
    19. 

  19.   Only stateless API calls to the Decision Server are supported.
    20. 

  20. parameters:
    21. 

  21. - displayName: Application Name
    22. 

  22.   description: The name for the application.
    23. 

  23.   name: APPLICATION_NAME
    24. 

  24.   value: myapp
    25. 

  25.   required: true
    26. 

  26. - displayName: Maven repository URL
    27. 

  27.   description: Fully qualified URL to a Maven repository or service.
    28. 

  28.   name: MAVEN_REPO_URL
    29. 

  29.   example: http://nexus.nexus-project.svc.cluster.local:8081/nexus/content/groups/public/
    30. 

  30.   required: true
    31. 

  31. - displayName: Maven repository username
    32. 

  32.   description: Username to access the Maven repository, if required.
    33. 

  33.   name: MAVEN_REPO_USERNAME
    34. 

  34.   required: false
    35. 

  35. - displayName: Maven repository password
    36. 

  36.   description: Password to access the Maven repository, if required.
    37. 

  37.   name: MAVEN_REPO_PASSWORD
    38. 

  38.   required: false
    39. 

  39. - displayName: EAP Admin User
    40. 

  40.   description: EAP administrator user name. Use this user account if you need use JBoss EAP command line management.
    41. 

  41.     You can use rsh to access the command line on the pods. 
    42. 

  42.   name: ADMIN_USERNAME
    43. 

  43.   value: eapadmin
    44. 

  44.   required: false
    45. 

  45. - displayName: EAP Admin Password
    46. 

  46.   description: EAP administrator password.
    47. 

  47.   name: ADMIN_PASSWORD
    48. 

  48.   from: "[a-zA-Z]{6}[0-9]{1}!"
    49. 

  49.   generate: expression
    50. 

  50.   required: false
    51. 

  51. - displayName: KIE Admin User  
    52. 

  52.   description: KIE administrator user name. Use this user account to manage the Decision Server using administrative 
    53. 

  53.     API calls.
    54. 

  54.   name: KIE_ADMIN_USER
    55. 

  55.   value: adminUser
    56. 

  56.   required: false
    57. 

  57. - displayName: KIE Admin Password
    58. 

  58.   description: KIE administrator password.
    59. 

  59.   name: KIE_ADMIN_PWD
    60. 

  60.   from: "[a-zA-Z]{6}[0-9]{1}!"
    61. 

  61.   generate: expression
    62. 

  62.   required: false
    63. 

  63. - displayName: KIE Server User
    64. 

  64.   description: KIE execution server user name. Use this user account for API calls to the Decision Server. 
    65. 

  65.     (Sets the org.kie.server.user system property).
    66. 

  66.   name: KIE_SERVER_USER
    67. 

  67.   value: executionUser
    68. 

  68.   required: false
    69. 

  69. - displayName: KIE Server Password
    70. 

  70.   description: KIE execution server password (sets the org.kie.server.pwd system property).
    71. 

  71.   name: KIE_SERVER_PWD
    72. 

  72.   from: "[a-zA-Z]{6}[0-9]{1}!"
    73. 

  73.   generate: expression
    74. 

  74.   required: false
    75. 

  75. - displayName: KIE Server ID
    76. 

  76.   description: Decision server identifier. Determines the template ID in Decision Central or controller. If this parameter is left blank, it is set using the $HOSTNAME environment variable or a random value. (Sets the org.kie.server.id system property).
    77. 

  77.   name: KIE_SERVER_ID
    78. 

  78.   value: ''
    79. 

  79.   required: false
    80. 

  80. - displayName: KIE Server Bypass Auth User
    81. 

  81.   description: KIE execution server bypass auth user. If this parameter is set to true, the Decision Server accepts
    82. 

  82.    API calls without user account authorization. (Sets the org.kie.server.bypass.auth.user system property).
    83. 

  83.   name: KIE_SERVER_BYPASS_AUTH_USER
    84. 

  84.   value: 'false'
    85. 

  85.   required: false
    86. 

  86. - displayName: KIE Server Controller User
    87. 

  87.   description: KIE server controller user name. The Decision Server uses this user account to log on to Decision 
    88. 

  88.     Central or a controller. (Sets the org.kie.server.controller.user system property).
    89. 

  89.   name: KIE_SERVER_CONTROLLER_USER
    90. 

  90.   value: controllerUser
    91. 

  91.   required: false
    92. 

  92. - displayName: KIE Server Controller Password
    93. 

  93.   description: KIE server controller password (sets the org.kie.server.controller.pwd system property).
    94. 

  94.   name: KIE_SERVER_CONTROLLER_PWD
    95. 

  95.   from: "[a-zA-Z]{6}[0-9]{1}!"
    96. 

  96.   generate: expression
    97. 

  97.   required: false
    98. 

  98. - displayName: KIE server controller protocol
    99. 

  99.   description: KIE server controller service. To use Decision Central that is hosted on the same OpenShift environment
    100. 

  100.       to manage this Decision Server, set this variable to the OpenShift service name for the Decision Central. In this
    101. 

  101.       case, do not set the KIE server controller protocol, KIE server controller host, and KIE server controller port.
    102. 

  102.       (Sets the org.kie.server.controller system property if host and port are not set).
    103. 

  103.   name: KIE_SERVER_CONTROLLER_PROTOCOL
    104. 

  104.   value: http
    105. 

  105.   required: false
    106. 

  106. - displayName: KIE server controller service
    107. 

  107.   description: The service name for the optional Decision Central or controller, where it can be reached and registered with. (Used to set the org.kie.server.controller system property if host and port aren't set)
    108. 

  108.   name: KIE_SERVER_CONTROLLER_SERVICE
    109. 

  109.   value: ''
    110. 

  110.   required: false
    111. 

  111. - displayName: KIE server controller host
    112. 

  112.   description: KIE server controller host. To use Decision Central or a controller to manage this Decision
    113. 

  113.     Server, set this parameter to the host part of the URL for the Decision Central or controller. (Used to 
    114. 

  114.     set the org.kie.server.controller system property).
    115. 

  115.   name: KIE_SERVER_CONTROLLER_HOST
    116. 

  116.   example: my-app-controller-ocpuser.os.example.com
    117. 

  117.   required: false
    118. 

  118. - displayName: KIE server controller port
    119. 

  119.   description: KIE server controller port. To use Decision Central or a controller to manage this Decision
    120. 

  120.     Server, set this parameter to the port part of the URL for the Decision Central or controller. (Used to 
    121. 

  121.     set the org.kie.server.controller system property).
    122. 

  122.   name: KIE_SERVER_CONTROLLER_PORT
    123. 

  123.   example: '8080'
    124. 

  124.   required: false
    125. 

  125. - displayName: KIE MBeans
    126. 

  126.   description: KIE execution server mbeans enabled/disabled. These MBeans provide monitoring information. (Sets
    127. 

  127.     the kie.mbeans and kie.scanner.mbeans system properties).
    128. 

  128.   name: KIE_MBEANS
    129. 

  129.   value: enabled
    130. 

  130.   required: false
    131. 

  131. - displayName: Drools Server Filter Classes
    132. 

  132.   description: KIE execution server class filtering. When this parameter is set to true, the Decision Server extension 
    133. 

  133.     accepts custom classes annotated by the XmlRootElement or Remotable annotations only. Setting to true is preferable 
    134. 

  134.     for performance, but some custom decision services might require false. (Sets the org.drools.server.filter.classes
    135. 

  135.     system property).
    136. 

  136.   name: DROOLS_SERVER_FILTER_CLASSES
    137. 

  137.   value: 'true'
    138. 

  138.   required: false
    139. 

  139. - displayName: Decision Server Custom http Route Hostname
    140. 

  140.   description: 'Custom hostname for http service route.  Leave blank for default hostname,
    141. 

  141.     example: <application-name>-kieserver-<project>.<default-domain-suffix>'
    142. 

  142.   name: EXECUTION_SERVER_HOSTNAME_HTTP
    143. 

  143.   value: ''
    144. 

  144.   required: false
    145. 

  145. - displayName: Decision Server Custom https Route Hostname
    146. 

  146.   description: 'Custom hostname for https service route.  Leave blank for default hostname,
    147. 

  147.     example: secure-<application-name>-kieserver-<project>.<default-domain-suffix>'
    148. 

  148.   name: EXECUTION_SERVER_HOSTNAME_HTTPS
    149. 

  149.   value: ''
    150. 

  150.   required: false
    151. 

  151. - displayName: Server Keystore Secret Name
    152. 

  152.   description: The name of the secret containing the keystore file for Decision Server.
    153. 

  153.   name: HTTPS_SECRET
    154. 

  154.   value: kieserver-app-secret
    155. 

  155.   required: false
    156. 

  156. - displayName: Server Keystore Filename
    157. 

  157.   description: The name of the keystore file within the secret.
    158. 

  158.   name: HTTPS_KEYSTORE
    159. 

  159.   value: keystore.jks
    160. 

  160.   required: false
    161. 

  161. - displayName: Server Certificate Name
    162. 

  162.   description: The name associated with the server certificate.
    163. 

  163.   name: HTTPS_NAME
    164. 

  164.   value: jboss
    165. 

  165.   required: false
    166. 

  166. - displayName: Server Keystore Password
    167. 

  167.   description: The password for the keystore and certificate.
    168. 

  168.   name: HTTPS_PASSWORD
    169. 

  169.   value: mykeystorepass
    170. 

  170.   required: false
    171. 

  171. - displayName: ImageStream Namespace
    172. 

  172.   description: Namespace in which the ImageStreams for Red Hat Middleware images are
    173. 

  173.     installed. These ImageStreams are normally installed in the openshift namespace.
    174. 

  174.     Modify this setting only if you have installed the ImageStreams in a different 
    175. 

  175.     namespace/project.
    176. 

  176.   name: IMAGE_STREAM_NAMESPACE
    177. 

  177.   value: openshift
    178. 

  178.   required: true
    179. 

  179. - displayName: ImageStream Tag
    180. 

  180.   description: A named pointer to an image in an image stream. Default is "1.1".
    181. 

  181.   name: IMAGE_STREAM_TAG
    182. 

  182.   value: "1.1"
    183. 

  183.   required: false
    184. 

  184. - displayName: KIE Server Container Deployment
    185. 

  185.   description: 'KIE Server Container deployment configuration in format: containerId=groupId:artifactId:version|c2=g2:a2:v2'
    186. 

  186.   name: KIE_SERVER_CONTAINER_DEPLOYMENT
    187. 

  187.   value: ''
    188. 

  188.   required: false
    189. 

  189. - displayName: Execution Server Container Memory Limit
    190. 

  190.   description: Execution Server Container memory limit
    191. 

  191.   name: EXCECUTION_SERVER_MEMORY_LIMIT
    192. 

  192.   value: 1Gi
    193. 

  193.   required: false
    194. 

  194. objects:
    195. 

  195. - kind: Service
    196. 

  196.   apiVersion: v1
    197. 

  197.   spec:
    198. 

  198.     ports:
    199. 

  199.     - port: 8080
    200. 

  200.       targetPort: 8080
    201. 

  201.     selector:
    202. 

  202.       deploymentConfig: "${APPLICATION_NAME}-kieserver"
    203. 

  203.   metadata:
    204. 

  204.     name: "${APPLICATION_NAME}-kieserver"
    205. 

  205.     labels:
    206. 

  206.       application: "${APPLICATION_NAME}"
    207. 

  207.     annotations:
    208. 

  208.       description: The execution server web server's http port.
    209. 

  209. - kind: Service
    210. 

  210.   apiVersion: v1
    211. 

  211.   spec:
    212. 

  212.     ports:
    213. 

  213.     - port: 8443
    214. 

  214.       targetPort: 8443
    215. 

  215.     selector:
    216. 

  216.       deploymentConfig: "${APPLICATION_NAME}-kieserver"
    217. 

  217.   metadata:
    218. 

  218.     name: secure-${APPLICATION_NAME}-kieserver
    219. 

  219.     labels:
    220. 

  220.       application: "${APPLICATION_NAME}"
    221. 

  221.     annotations:
    222. 

  222.       description: The execution server web server's https port.
    223. 

  223. - kind: Route
    224. 

  224.   apiVersion: v1
    225. 

  225.   id: "${APPLICATION_NAME}-kieserver-http"
    226. 

  226.   metadata:
    227. 

  227.     name: "${APPLICATION_NAME}-kieserver"
    228. 

  228.     labels:
    229. 

  229.       application: "${APPLICATION_NAME}"
    230. 

  230.     annotations:
    231. 

  231.       description: Route for execution server's http service.
    232. 

  232.   spec:
    233. 

  233.     host: "${EXECUTION_SERVER_HOSTNAME_HTTP}"
    234. 

  234.     to:
    235. 

  235.       name: "${APPLICATION_NAME}-kieserver"
    236. 

  236. - kind: Route
    237. 

  237.   apiVersion: v1
    238. 

  238.   id: "${APPLICATION_NAME}-kieserver-https"
    239. 

  239.   metadata:
    240. 

  240.     name: secure-${APPLICATION_NAME}-kieserver
    241. 

  241.     labels:
    242. 

  242.       application: "${APPLICATION_NAME}"
    243. 

  243.     annotations:
    244. 

  244.       description: Route for execution server's https service.
    245. 

  245.   spec:
    246. 

  246.     host: "${EXECUTION_SERVER_HOSTNAME_HTTPS}"
    247. 

  247.     to:
    248. 

  248.       name: secure-${APPLICATION_NAME}-kieserver
    249. 

  249.     tls:
    250. 

  250.       termination: passthrough
    251. 

  251. - kind: DeploymentConfig
    252. 

  252.   apiVersion: v1
    253. 

  253.   metadata:
    254. 

  254.     name: "${APPLICATION_NAME}-kieserver"
    255. 

  255.     labels:
    256. 

  256.       application: "${APPLICATION_NAME}"
    257. 

  257.   spec:
    258. 

  258.     strategy:
    259. 

  259.       type: Recreate
    260. 

  260.     triggers:
    261. 

  261.     - type: ImageChange
    262. 

  262.       imageChangeParams:
    263. 

  263.         automatic: true
    264. 

  264.         containerNames:
    265. 

  265.         - "${APPLICATION_NAME}-kieserver"
    266. 

  266.         from:
    267. 

  267.           kind: ImageStreamTag
    268. 

  268.           namespace: "${IMAGE_STREAM_NAMESPACE}"
    269. 

  269.           name: "rhdm70-kieserver-openshift:${IMAGE_STREAM_TAG}"
    270. 

  270.     - type: ConfigChange
    271. 

  271.     replicas: 1
    272. 

  272.     selector:
    273. 

  273.       deploymentConfig: "${APPLICATION_NAME}-kieserver"
    274. 

  274.     template:
    275. 

  275.       metadata:
    276. 

  276.         name: "${APPLICATION_NAME}-kieserver"
    277. 

  277.         labels:
    278. 

  278.           deploymentConfig: "${APPLICATION_NAME}-kieserver"
    279. 

  279.           application: "${APPLICATION_NAME}"
    280. 

  280.       spec:
    281. 

  281.         terminationGracePeriodSeconds: 60
    282. 

  282.         containers:
    283. 

  283.         - name: "${APPLICATION_NAME}-kieserver"
    284. 

  284.           image: rhdm70-kieserver-openshift
    285. 

  285.           imagePullPolicy: Always
    286. 

  286.           resources:
    287. 

  287.             limits:
    288. 

  288.               memory: "${EXCECUTION_SERVER_MEMORY_LIMIT}"
    289. 

  289.           volumeMounts:
    290. 

  290.           - name: kieserver-keystore-volume
    291. 

  291.             mountPath: "/etc/kieserver-secret-volume"
    292. 

  292.             readOnly: true
    293. 

  293.           livenessProbe:
    294. 

  294.             exec:
    295. 

  295.               command:
    296. 

  296.               - "/bin/bash"
    297. 

  297.               - "-c"
    298. 

  298.               - "/opt/eap/bin/livenessProbe.sh"
    299. 

  299.           readinessProbe:
    300. 

  300.             exec:
    301. 

  301.               command:
    302. 

  302.               - "/bin/bash"
    303. 

  303.               - "-c"
    304. 

  304.               - "/opt/eap/bin/readinessProbe.sh"
    305. 

  305.           ports:
    306. 

  306.           - name: jolokia
    307. 

  307.             containerPort: 8778
    308. 

  308.             protocol: TCP
    309. 

  309.           - name: http
    310. 

  310.             containerPort: 8080
    311. 

  311.             protocol: TCP
    312. 

  312.           - name: https
    313. 

  313.             containerPort: 8443
    314. 

  314.             protocol: TCP
    315. 

  315.           env:
    316. 

  316.           - name: DROOLS_SERVER_FILTER_CLASSES
    317. 

  317.             value: "${DROOLS_SERVER_FILTER_CLASSES}"
    318. 

  318.           - name: KIE_ADMIN_PWD
    319. 

  319.             value: "${KIE_ADMIN_PWD}"
    320. 

  320.           - name: KIE_ADMIN_USER
    321. 

  321.             value: "${KIE_ADMIN_USER}"
    322. 

  322.           - name: KIE_MBEANS
    323. 

  323.             value: "${KIE_MBEANS}"
    324. 

  324.           - name: KIE_SERVER_BYPASS_AUTH_USER
    325. 

  325.             value: "${KIE_SERVER_BYPASS_AUTH_USER}"
    326. 

  326.           - name: KIE_SERVER_CONTROLLER_USER
    327. 

  327.             value: "${KIE_SERVER_CONTROLLER_USER}"
    328. 

  328.           - name: KIE_SERVER_CONTROLLER_PWD
    329. 

  329.             value: "${KIE_SERVER_CONTROLLER_PWD}"
    330. 

  330.           - name: KIE_SERVER_CONTROLLER_SERVICE
    331. 

  331.             value: "${KIE_SERVER_CONTROLLER_SERVICE}"
    332. 

  332.           - name: KIE_SERVER_CONTROLLER_PROTOCOL
    333. 

  333.             value: "${KIE_SERVER_CONTROLLER_PROTOCOL}"
    334. 

  334.           - name: KIE_SERVER_CONTROLLER_HOST
    335. 

  335.             value: "${KIE_SERVER_CONTROLLER_HOST}"
    336. 

  336.           - name: KIE_SERVER_CONTROLLER_PORT
    337. 

  337.             value: "${KIE_SERVER_CONTROLLER_PORT}"
    338. 

  338.           - name: KIE_SERVER_ID
    339. 

  339.             value: "${KIE_SERVER_ID}"
    340. 

  340.           - name: KIE_SERVER_HOST
    341. 

  341.             valueFrom:
    342. 

  342.               fieldRef:
    343. 

  343.                 fieldPath: status.podIP
    344. 

  344.           - name: KIE_SERVER_PWD
    345. 

  345.             value: "${KIE_SERVER_PWD}"
    346. 

  346.           - name: KIE_SERVER_USER
    347. 

  347.             value: "${KIE_SERVER_USER}"
    348. 

  348.           - name: KIE_SERVER_CONTAINER_DEPLOYMENT
    349. 

  349.             value: "${KIE_SERVER_CONTAINER_DEPLOYMENT}"
    350. 

  350.           - name: MAVEN_REPO_URL
    351. 

  351.             value: "${MAVEN_REPO_URL}"
    352. 

  352.           - name: MAVEN_REPO_USERNAME
    353. 

  353.             value: "${MAVEN_REPO_USERNAME}"
    354. 

  354.           - name: MAVEN_REPO_PASSWORD
    355. 

  355.             value: "${MAVEN_REPO_PASSWORD}"
    356. 

  356.           - name: HTTPS_KEYSTORE_DIR
    357. 

  357.             value: "/etc/kieserver-secret-volume"
    358. 

  358.           - name: HTTPS_KEYSTORE
    359. 

  359.             value: "${HTTPS_KEYSTORE}"
    360. 

  360.           - name: HTTPS_NAME
    361. 

  361.             value: "${HTTPS_NAME}"
    362. 

  362.           - name: HTTPS_PASSWORD
    363. 

  363.             value: "${HTTPS_PASSWORD}"
    364. 

  364.         volumes:
    365. 

  365.         - name: kieserver-keystore-volume
    366. 

  366.           secret:
    367. 

  367.             secretName: "${HTTPS_SECRET}"
    368.