Home Explore Help
Register Sign In
shixiong
/
okd
1
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Tree: c9ceb5f69c
Branches Tags
okd
/
roles
/
openshift_examples
/
files
/
examples
/
v3.10
/
xpaas-templates
/
rhpam70-prod-immutable-monitor.yaml

rhpam70-prod-immutable-monitor.yaml 20 KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419420421422423424425426427428429430431432433434435436437438439440441442443444445446447448449450451452453454455456457458459460461462463464465466467468469470471472473474475476477478479480481482483484485486487488489490491492493494495496497498499500501502503504505506507508509510511512513514515516517518519520521522523524525526527528529530531532533534535536537538539540541542543544545546547548549550551552553554555556557558 
  1. ---
    2. 

  2. kind: Template
    3. 

  3. apiVersion: v1
    4. 

  4. metadata:
    5. 

  5.   annotations:
    6. 

  6.     description: Application template for a router and monitoring console in a production environment, for Red Hat Process Automation Manager 7.0
    7. 

  7.     iconClass: icon-jboss
    8. 

  8.     tags: rhpam,jboss,xpaas
    9. 

  9.     version: 1.4.0
    10. 

  10.     openshift.io/display-name: Red Hat Process Automation Manager 7.0 production monitoring environment
    11. 

  11.   name: rhpam70-prod-immutable-monitor
    12. 

  12. labels:
    13. 

  13.   template: rhpam70-prod-immutable-monitor
    14. 

  14.   xpaas: 1.4.0
    15. 

  15. message: A new environment has been set up for Red Hat Process Automation Manager 7. To create a new KIE server and connect to this monitoring console/router, enter
    16. 

  16.   oc new-app -f rhpam70-prod-immutable-kieserver.yaml -p KIE_ADMIN_PWD=${KIE_ADMIN_PWD} -p KIE_SERVER_PWD=${KIE_SERVER_PWD} -p KIE_SERVER_MONITOR_PWD=${KIE_SERVER_MONITOR_PWD} -p KIE_SERVER_MONITOR_SERVICE=${APPLICATION_NAME}-rhpamcentrmon -p KIE_SERVER_ROUTER_SERVICE=${APPLICATION_NAME}-smartrouter -p SOURCE_REPOSITORY_URL=https://example.com/xxxx.git -p CONTEXT_DIR=rootDir -p KIE_SERVER_CONTAINER_DEPLOYMENT=containerId=G:A:V
    17. 

  17. parameters:
    18. 

  18. - displayName: Application Name
    19. 

  19.   description: The name for the application.
    20. 

  20.   name: APPLICATION_NAME
    21. 

  21.   value: myapp
    22. 

  22.   required: true
    23. 

  23. - displayName: Maven repository URL
    24. 

  24.   description: Fully qualified URL to a Maven repository or service.
    25. 

  25.   name: MAVEN_REPO_URL
    26. 

  26.   example: http://nexus.nexus-project.svc.cluster.local:8081/nexus/content/groups/public/
    27. 

  27.   required: false
    28. 

  28. - displayName: Maven repository username
    29. 

  29.   description: Username to access the Maven repository, if required.
    30. 

  30.   name: MAVEN_REPO_USERNAME
    31. 

  31.   required: false
    32. 

  32. - displayName: Maven repository password
    33. 

  33.   description: Password to access the Maven repository, if required.
    34. 

  34.   name: MAVEN_REPO_PASSWORD
    35. 

  35.   required: false
    36. 

  36. - displayName: EAP Admin User
    37. 

  37.   description: EAP administrator username
    38. 

  38.   name: ADMIN_USERNAME
    39. 

  39.   value: eapadmin
    40. 

  40.   required: false
    41. 

  41. - displayName: EAP Admin Password
    42. 

  42.   description: EAP administrator password
    43. 

  43.   name: ADMIN_PASSWORD
    44. 

  44.   from: "[a-zA-Z]{6}[0-9]{1}!"
    45. 

  45.   generate: expression
    46. 

  46.   required: false
    47. 

  47. - displayName: KIE Admin User
    48. 

  48.   description: KIE administrator username
    49. 

  49.   name: KIE_ADMIN_USER
    50. 

  50.   value: adminUser
    51. 

  51.   required: false
    52. 

  52. - displayName: KIE Admin Password
    53. 

  53.   description: KIE administrator password
    54. 

  54.   name: KIE_ADMIN_PWD
    55. 

  55.   from: "[a-zA-Z]{6}[0-9]{1}!"
    56. 

  56.   generate: expression
    57. 

  57.   required: false
    58. 

  58. - displayName: KIE Server User
    59. 

  59.   description: KIE execution server username (Sets the org.kie.server.user system property)
    60. 

  60.   name: KIE_SERVER_USER
    61. 

  61.   value: executionUser
    62. 

  62.   required: false
    63. 

  63. - displayName: KIE Server Password
    64. 

  64.   description: KIE execution server password, used to connect to KIE servers. Generated value can be a suggestion to use for thew s2i various (Sets the org.kie.server.pwd system property)
    65. 

  65.   name: KIE_SERVER_PWD
    66. 

  66.   from: "[a-zA-Z]{6}[0-9]{1}!"
    67. 

  67.   generate: expression
    68. 

  68.   required: false
    69. 

  69. - displayName: ImageStream Namespace
    70. 

  70.   description: Namespace in which the ImageStreams for Red Hat Middleware images are
    71. 

  71.     installed. These ImageStreams are normally installed in the openshift namespace.
    72. 

  72.     You should only need to modify this if you've installed the ImageStreams in a
    73. 

  73.     different namespace/project.
    74. 

  74.   name: IMAGE_STREAM_NAMESPACE
    75. 

  75.   value: openshift
    76. 

  76.   required: true
    77. 

  77. - displayName: ImageStream Tag
    78. 

  78.   description: A named pointer to an image in an image stream. Default is "1.0".
    79. 

  79.   name: IMAGE_STREAM_TAG
    80. 

  80.   value: "1.0"
    81. 

  81.   required: false
    82. 

  82. - displayName: Smart Router Custom http Route Hostname
    83. 

  83.   description: Custom hostname for http service route.  Leave blank for default hostname, e.g. <application-name>-smartrouter-<project>.<default-domain-suffix>'
    84. 

  84.   name: SMART_ROUTER_HOSTNAME_HTTP
    85. 

  85.   value: ''
    86. 

  86.   required: false
    87. 

  87. - displayName: Smart Router ID
    88. 

  88.   description: Router ID used when connecting to the controller (router property org.kie.server.router.id)
    89. 

  89.   name: KIE_SERVER_ROUTER_ID
    90. 

  90.   value: kie-server-router
    91. 

  91. - displayName: Smart Router listening port
    92. 

  92.   description: Port in which the smart router server listens (router property org.kie.server.router.port)
    93. 

  93.   name: KIE_SERVER_ROUTER_PORT
    94. 

  94.   example: "9000"
    95. 

  95.   required: false
    96. 

  96. - displayName: Smart Router protocol
    97. 

  97.   description: KIE server router protocol (Used to build the org.kie.server.router.url.external property)
    98. 

  98.   name: KIE_SERVER_ROUTER_PROTOCOL
    99. 

  99.   example: "http"
    100. 

  100.   required: false
    101. 

  101. - displayName: Smart Router external URL
    102. 

  102.   description: Public URL where the router can be found. Format http://<host>:<port>  (router property org.kie.server.router.url.external)
    103. 

  103.   name: KIE_SERVER_ROUTER_URL_EXTERNAL
    104. 

  104. - displayName: Smart Router name
    105. 

  105.   description: Router name used when connecting to the controller (router property org.kie.server.router.name)
    106. 

  106.   name: KIE_SERVER_ROUTER_NAME
    107. 

  107.   value: KIE Server Router
    108. 

  108. - displayName: KIE Server Monitor User
    109. 

  109.   description: KIE server monitor username (Sets the org.kie.server.controller.user system property)
    110. 

  110.   name: KIE_SERVER_MONITOR_USER
    111. 

  111.   value: monitorUser
    112. 

  112.   required: false
    113. 

  113. - displayName: KIE Server Monitor Password
    114. 

  114.   description: KIE server monitor password (Sets the org.kie.server.controller.pwd system property)
    115. 

  115.   name: KIE_SERVER_MONITOR_PWD
    116. 

  116.   from: "[a-zA-Z]{6}[0-9]{1}!"
    117. 

  117.   generate: expression
    118. 

  118.   required: false
    119. 

  119. - displayName: JGroups Cluster Password
    120. 

  120.   description: JGroups Cluster Password, used to establish an EAP cluster on OpenShift
    121. 

  121.   name: JGROUPS_CLUSTER_PASSWORD
    122. 

  122.   from: "[a-zA-Z]{6}[0-9]{1}!"
    123. 

  123.   generate: expression
    124. 

  124.   required: true
    125. 

  125. - displayName: KIE MBeans
    126. 

  126.   description: KIE mbeans enabled/disabled (Sets the kie.mbeans and kie.scanner.mbeans system properties)
    127. 

  127.   name: KIE_MBEANS
    128. 

  128.   value: enabled
    129. 

  129.   required: false
    130. 

  130. - displayName: Business Central Custom http Route Hostname
    131. 

  131.   description: 'Custom hostname for http service route.  Leave blank for default hostname,
    132. 

  132.     e.g.: <application-name>-rhpamcentrmon-<project>.<default-domain-suffix>'
    133. 

  133.   name: BUSINESS_CENTRAL_HOSTNAME_HTTP
    134. 

  134.   value: ''
    135. 

  135.   required: false
    136. 

  136. - displayName: Business Central Custom https Route Hostname
    137. 

  137.   description: 'Custom hostname for https service route.  Leave blank for default
    138. 

  138.     hostname, e.g.: secure-<application-name>-rhpamcentrmon-<project>.<default-domain-suffix>'
    139. 

  139.   name: BUSINESS_CENTRAL_HOSTNAME_HTTPS
    140. 

  140.   value: ''
    141. 

  141.   required: false
    142. 

  142. - displayName: Business Central Server Keystore Secret Name
    143. 

  143.   description: The name of the secret containing the keystore file
    144. 

  144.   name: BUSINESS_CENTRAL_HTTPS_SECRET
    145. 

  145.   example: businesscentral-app-secret
    146. 

  146.   required: true
    147. 

  147. - displayName: Business Central Server Keystore Filename
    148. 

  148.   description: The name of the keystore file within the secret
    149. 

  149.   name: BUSINESS_CENTRAL_HTTPS_KEYSTORE
    150. 

  150.   value: keystore.jks
    151. 

  151.   required: false
    152. 

  152. - displayName: Business Central Server Certificate Name
    153. 

  153.   description: The name associated with the server certificate
    154. 

  154.   name: BUSINESS_CENTRAL_HTTPS_NAME
    155. 

  155.   value: jboss
    156. 

  156.   required: false
    157. 

  157. - displayName: Business Central Server Keystore Password
    158. 

  158.   description: The password for the keystore and certificate
    159. 

  159.   name: BUSINESS_CENTRAL_HTTPS_PASSWORD
    160. 

  160.   value: mykeystorepass
    161. 

  161.   required: false
    162. 

  162. - displayName: Smart Router Custom http Route Hostname
    163. 

  163.   description: 'Custom hostname for http service route.  Leave blank for default hostname,
    164. 

  164.     e.g.: <application-name>-rhpamcentrmon-<project>.<default-domain-suffix>'
    165. 

  165.   name: SMART_ROUTER_HOSTNAME_HTTP
    166. 

  166.   value: ''
    167. 

  167.   required: false
    168. 

  168. - displayName: Business Central Container Memory Limit
    169. 

  169.   description: Business Central Container memory limit
    170. 

  170.   name: BUSINESS_CENTRAL_MEMORY_LIMIT
    171. 

  171.   value: 2Gi
    172. 

  172.   required: false
    173. 

  173. - displayName: Smart Router Container Memory Limit
    174. 

  174.   description: Smart Router Container memory limit
    175. 

  175.   name: SMART_ROUTER_MEMORY_LIMIT
    176. 

  176.   value: 512Mi
    177. 

  177.   required: false
    178. 

  178. - displayName: RH-SSO URL
    179. 

  179.   description: RH-SSO URL
    180. 

  180.   name: SSO_URL
    181. 

  181.   example: https://rh-sso.example.com/auth
    182. 

  182.   required: false
    183. 

  183. - displayName: RH-SSO Realm name
    184. 

  184.   description: RH-SSO Realm name
    185. 

  185.   name: SSO_REALM
    186. 

  186.   required: false
    187. 

  187. - displayName: Business Central Monitoring RH-SSO Client name
    188. 

  188.   description: Business Central Monitoring RH-SSO Client name
    189. 

  189.   name: BUSINESS_CENTRAL_SSO_CLIENT
    190. 

  190.   required: false
    191. 

  191. - displayName: Business Central Monitoring RH-SSO Client Secret
    192. 

  192.   description: Business Central Monitoring RH-SSO Client Secret
    193. 

  193.   name: BUSINESS_CENTRAL_SSO_SECRET
    194. 

  194.   example: "252793ed-7118-4ca8-8dab-5622fa97d892"
    195. 

  195.   required: false
    196. 

  196. - displayName: RH-SSO Realm Admin Username
    197. 

  197.   description: RH-SSO Realm Admin Username used to create the Client if it doesn't exist
    198. 

  198.   name: SSO_USERNAME
    199. 

  199.   required: false
    200. 

  200. - displayName: RH-SSO Realm Admin Password
    201. 

  201.   description: RH-SSO Realm Admin Password used to create the Client
    202. 

  202.   name: SSO_PASSWORD
    203. 

  203.   required: false
    204. 

  204. - displayName: RH-SSO Disable SSL Certificate Validation
    205. 

  205.   description: RH-SSO Disable SSL Certificate Validation
    206. 

  206.   name: SSO_DISABLE_SSL_CERTIFICATE_VALIDATION
    207. 

  207.   value: "false"
    208. 

  208.   required: false
    209. 

  209. objects:
    210. 

  210. - kind: Service
    211. 

  211.   apiVersion: v1
    212. 

  212.   spec:
    213. 

  213.     ports:
    214. 

  214.     - name: http
    215. 

  215.       port: 8080
    216. 

  216.       targetPort: 8080
    217. 

  217.     - name: https
    218. 

  218.       port: 8443
    219. 

  219.       targetPort: 8443
    220. 

  220.     selector:
    221. 

  221.       deploymentConfig: "${APPLICATION_NAME}-rhpamcentrmon"
    222. 

  222.   metadata:
    223. 

  223.     name: "${APPLICATION_NAME}-rhpamcentrmon"
    224. 

  224.     labels:
    225. 

  225.       application: "${APPLICATION_NAME}"
    226. 

  226.       service: "${APPLICATION_NAME}-rhpamcentrmon"
    227. 

  227.     annotations:
    228. 

  228.       description: All the Business Central Monitoring web server's ports.
    229. 

  229. - kind: Service
    230. 

  230.   apiVersion: v1
    231. 

  231.   spec:
    232. 

  232.     clusterIP: "None"
    233. 

  233.     ports:
    234. 

  234.     - name: "ping"
    235. 

  235.       port: 8888
    236. 

  236.     selector:
    237. 

  237.       deploymentConfig: "${APPLICATION_NAME}-rhpamcentrmon"
    238. 

  238.   metadata:
    239. 

  239.     name: "${APPLICATION_NAME}-rhpamcentrmon-ping"
    240. 

  240.     labels:
    241. 

  241.       application: "${APPLICATION_NAME}"
    242. 

  242.       service: "${APPLICATION_NAME}-rhpamcentrmon"
    243. 

  243.     annotations:
    244. 

  244.       service.alpha.kubernetes.io/tolerate-unready-endpoints: "true"
    245. 

  245.       description: "The JGroups ping port for clustering."
    246. 

  246. - kind: Service
    247. 

  247.   apiVersion: v1
    248. 

  248.   spec:
    249. 

  249.     ports:
    250. 

  250.     - port: 9000
    251. 

  251.       targetPort: 9000
    252. 

  252.     selector:
    253. 

  253.       deploymentConfig: "${APPLICATION_NAME}-smartrouter"
    254. 

  254.   metadata:
    255. 

  255.     name: "${APPLICATION_NAME}-smartrouter"
    256. 

  256.     labels:
    257. 

  257.       application: "${APPLICATION_NAME}"
    258. 

  258.       service: "${APPLICATION_NAME}-smartrouter"
    259. 

  259.     annotations:
    260. 

  260.       description: The smart router server http port.
    261. 

  261. - kind: Route
    262. 

  262.   apiVersion: v1
    263. 

  263.   id: "${APPLICATION_NAME}-rhpamcentrmon-http"
    264. 

  264.   metadata:
    265. 

  265.     name: "${APPLICATION_NAME}-rhpamcentrmon"
    266. 

  266.     labels:
    267. 

  267.       application: "${APPLICATION_NAME}"
    268. 

  268.       service: "${APPLICATION_NAME}-rhpamcentrmon"
    269. 

  269.     annotations:
    270. 

  270.       description: Route for Business Central Monitoring's http service.
    271. 

  271.       haproxy.router.openshift.io/timeout: 60s
    272. 

  272.   spec:
    273. 

  273.     host: "${BUSINESS_CENTRAL_HOSTNAME_HTTP}"
    274. 

  274.     to:
    275. 

  275.       name: "${APPLICATION_NAME}-rhpamcentrmon"
    276. 

  276.     port:
    277. 

  277.       targetPort: http
    278. 

  278. - kind: Route
    279. 

  279.   apiVersion: v1
    280. 

  280.   id: "${APPLICATION_NAME}-rhpamcentrmon-https"
    281. 

  281.   metadata:
    282. 

  282.     name: "secure-${APPLICATION_NAME}-rhpamcentrmon"
    283. 

  283.     labels:
    284. 

  284.       application: "${APPLICATION_NAME}"
    285. 

  285.       service: "${APPLICATION_NAME}-rhpamcentrmon"
    286. 

  286.     annotations:
    287. 

  287.       description: Route for Business Central Monitoring's https service.
    288. 

  288.       haproxy.router.openshift.io/timeout: 60s
    289. 

  289.   spec:
    290. 

  290.     host: "${BUSINESS_CENTRAL_HOSTNAME_HTTPS}"
    291. 

  291.     to:
    292. 

  292.       name: "${APPLICATION_NAME}-rhpamcentrmon"
    293. 

  293.     port:
    294. 

  294.       targetPort: https
    295. 

  295.     tls:
    296. 

  296.       termination: passthrough
    297. 

  297. - kind: Route
    298. 

  298.   apiVersion: v1
    299. 

  299.   id: "${APPLICATION_NAME}-smartrouter-http"
    300. 

  300.   metadata:
    301. 

  301.     name: "${APPLICATION_NAME}-smartrouter"
    302. 

  302.     labels:
    303. 

  303.       application: "${APPLICATION_NAME}"
    304. 

  304.       service: "${APPLICATION_NAME}-smartrouter"
    305. 

  305.     annotations:
    306. 

  306.       description: Route for Smart Router's http service.
    307. 

  307.   spec:
    308. 

  308.     host: "${SMART_ROUTER_HOSTNAME_HTTP}"
    309. 

  309.     to:
    310. 

  310.       name: "${APPLICATION_NAME}-smartrouter"
    311. 

  311. - kind: DeploymentConfig
    312. 

  312.   apiVersion: v1
    313. 

  313.   metadata:
    314. 

  314.     name: "${APPLICATION_NAME}-rhpamcentrmon"
    315. 

  315.     labels:
    316. 

  316.       application: "${APPLICATION_NAME}"
    317. 

  317.       service: "${APPLICATION_NAME}-rhpamcentrmon"
    318. 

  318.   spec:
    319. 

  319.     strategy:
    320. 

  320.       type: Recreate
    321. 

  321.     triggers:
    322. 

  322.     - type: ImageChange
    323. 

  323.       imageChangeParams:
    324. 

  324.         automatic: true
    325. 

  325.         containerNames:
    326. 

  326.         - "${APPLICATION_NAME}-rhpamcentrmon"
    327. 

  327.         from:
    328. 

  328.           kind: ImageStreamTag
    329. 

  329.           namespace: "${IMAGE_STREAM_NAMESPACE}"
    330. 

  330.           name: "rhpam70-businesscentral-monitoring-openshift:${IMAGE_STREAM_TAG}"
    331. 

  331.     - type: ConfigChange
    332. 

  332.     replicas: 1
    333. 

  333.     selector:
    334. 

  334.       deploymentConfig: "${APPLICATION_NAME}-rhpamcentrmon"
    335. 

  335.     template:
    336. 

  336.       metadata:
    337. 

  337.         name: "${APPLICATION_NAME}-rhpamcentrmon"
    338. 

  338.         labels:
    339. 

  339.           deploymentConfig: "${APPLICATION_NAME}-rhpamcentrmon"
    340. 

  340.           application: "${APPLICATION_NAME}"
    341. 

  341.           service: "${APPLICATION_NAME}-rhpamcentrmon"
    342. 

  342.       spec:
    343. 

  343.         terminationGracePeriodSeconds: 60
    344. 

  344.         containers:
    345. 

  345.         - name: "${APPLICATION_NAME}-rhpamcentrmon"
    346. 

  346.           image: rhpam70-businesscentral-monitoring-openshift
    347. 

  347.           imagePullPolicy: Always
    348. 

  348.           resources:
    349. 

  349.             limits:
    350. 

  350.               memory: "${BUSINESS_CENTRAL_MEMORY_LIMIT}"
    351. 

  351.           volumeMounts:
    352. 

  352.           - name: businesscentral-keystore-volume
    353. 

  353.             mountPath: "/etc/businesscentral-secret-volume"
    354. 

  354.             readOnly: true
    355. 

  355.           - name: "${APPLICATION_NAME}-rhpamcentr-pvol"
    356. 

  356.             mountPath: "/opt/eap/standalone/data/bpmsuite"
    357. 

  357.           livenessProbe:
    358. 

  358.             exec:
    359. 

  359.               command:
    360. 

  360.               - "/bin/bash"
    361. 

  361.               - "-c"
    362. 

  362.               - "curl --fail --silent -u '${KIE_ADMIN_USER}:${KIE_ADMIN_PWD}' http://localhost:8080/kie-wb.jsp"
    363. 

  363.             initialDelaySeconds: 180
    364. 

  364.             timeoutSeconds: 2
    365. 

  365.             periodSeconds: 15
    366. 

  366.           readinessProbe:
    367. 

  367.             exec:
    368. 

  368.               command:
    369. 

  369.               - "/bin/bash"
    370. 

  370.               - "-c"
    371. 

  371.               - "curl --fail --silent -u '${KIE_ADMIN_USER}:${KIE_ADMIN_PWD}' http://localhost:8080/kie-wb.jsp"
    372. 

  372.             initialDelaySeconds: 60
    373. 

  373.             timeoutSeconds: 2
    374. 

  374.             periodSeconds: 30
    375. 

  375.             failureThreshold: 6
    376. 

  376.           ports:
    377. 

  377.           - name: jolokia
    378. 

  378.             containerPort: 8778
    379. 

  379.             protocol: TCP
    380. 

  380.           - name: http
    381. 

  381.             containerPort: 8080
    382. 

  382.             protocol: TCP
    383. 

  383.           - name: https
    384. 

  384.             containerPort: 8443
    385. 

  385.             protocol: TCP
    386. 

  386.           - name: ping
    387. 

  387.             containerPort: 8888
    388. 

  388.             protocol: TCP
    389. 

  389.           env:
    390. 

  390.           - name: KIE_ADMIN_PWD
    391. 

  391.             value: "${KIE_ADMIN_PWD}"
    392. 

  392.           - name: KIE_ADMIN_USER
    393. 

  393.             value: "${KIE_ADMIN_USER}"
    394. 

  394.           - name: KIE_SERVER_PWD
    395. 

  395.             value: "${KIE_SERVER_PWD}"
    396. 

  396.           - name: KIE_SERVER_USER
    397. 

  397.             value: "${KIE_SERVER_USER}"
    398. 

  398.           - name: MAVEN_REPO_URL
    399. 

  399.             value: "${MAVEN_REPO_URL}"
    400. 

  400.           - name: MAVEN_REPO_USERNAME
    401. 

  401.             value: "${MAVEN_REPO_USERNAME}"
    402. 

  402.           - name: MAVEN_REPO_PASSWORD
    403. 

  403.             value: "${MAVEN_REPO_PASSWORD}"
    404. 

  404.           - name: ADMIN_USERNAME
    405. 

  405.             value: "${ADMIN_USERNAME}"
    406. 

  406.           - name: ADMIN_PASSWORD
    407. 

  407.             value: "${ADMIN_PASSWORD}"
    408. 

  408.           - name: KIE_SERVER_CONTROLLER_USER
    409. 

  409.             value: "${KIE_SERVER_MONITOR_USER}"
    410. 

  410.           - name: KIE_SERVER_CONTROLLER_PWD
    411. 

  411.             value: "${KIE_SERVER_MONITOR_PWD}"
    412. 

  412.           - name: PROBE_IMPL
    413. 

  413.             value: probe.eap.jolokia.EapProbe
    414. 

  414.           - name: PROBE_DISABLE_BOOT_ERRORS_CHECK
    415. 

  415.             value: 'true'
    416. 

  416.           - name: HTTPS_KEYSTORE_DIR
    417. 

  417.             value: "/etc/businesscentral-secret-volume"
    418. 

  418.           - name: HTTPS_KEYSTORE
    419. 

  419.             value: "${BUSINESS_CENTRAL_HTTPS_KEYSTORE}"
    420. 

  420.           - name: HTTPS_NAME
    421. 

  421.             value: "${BUSINESS_CENTRAL_HTTPS_NAME}"
    422. 

  422.           - name: HTTPS_PASSWORD
    423. 

  423.             value: "${BUSINESS_CENTRAL_HTTPS_PASSWORD}"
    424. 

  424.           - name: JGROUPS_PING_PROTOCOL
    425. 

  425.             value: "openshift.DNS_PING"
    426. 

  426.           - name: OPENSHIFT_DNS_PING_SERVICE_NAME
    427. 

  427.             value: "${APPLICATION_NAME}-rhpamcentrmon-ping"
    428. 

  428.           - name: OPENSHIFT_DNS_PING_SERVICE_PORT
    429. 

  429.             value: "8888"
    430. 

  430.           - name: SSO_URL
    431. 

  431.             value: "${SSO_URL}"
    432. 

  432.           - name: SSO_OPENIDCONNECT_DEPLOYMENTS
    433. 

  433.             value: "ROOT.war"
    434. 

  434.           - name: SSO_REALM
    435. 

  435.             value: "${SSO_REALM}"
    436. 

  436.           - name: SSO_SECRET
    437. 

  437.             value: "${BUSINESS_CENTRAL_SSO_SECRET}"
    438. 

  438.           - name: SSO_CLIENT
    439. 

  439.             value: "${BUSINESS_CENTRAL_SSO_CLIENT}"
    440. 

  440.           - name: SSO_USERNAME
    441. 

  441.             value: "${SSO_USERNAME}"
    442. 

  442.           - name: SSO_PASSWORD
    443. 

  443.             value: "${SSO_PASSWORD}"
    444. 

  444.           - name: SSO_DISABLE_SSL_CERTIFICATE_VALIDATION
    445. 

  445.             value: "${SSO_DISABLE_SSL_CERTIFICATE_VALIDATION}"
    446. 

  446.           - name: HOSTNAME_HTTP
    447. 

  447.             value: "${BUSINESS_CENTRAL_HOSTNAME_HTTP}"
    448. 

  448.           - name: HOSTNAME_HTTPS
    449. 

  449.             value: "${BUSINESS_CENTRAL_HOSTNAME_HTTPS}"
    450. 

  450.         volumes:
    451. 

  451.         - name: businesscentral-keystore-volume
    452. 

  452.           secret:
    453. 

  453.             secretName: "${BUSINESS_CENTRAL_HTTPS_SECRET}"
    454. 

  454.         - name: "${APPLICATION_NAME}-rhpamcentr-pvol"
    455. 

  455.           persistentVolumeClaim:
    456. 

  456.             claimName: "${APPLICATION_NAME}-rhpamcentr-claim"
    457. 

  457. - kind: DeploymentConfig
    458. 

  458.   apiVersion: v1
    459. 

  459.   metadata:
    460. 

  460.     name: ${APPLICATION_NAME}-smartrouter
    461. 

  461.     labels:
    462. 

  462.       application: "${APPLICATION_NAME}"
    463. 

  463.       service: "${APPLICATION_NAME}-smartrouter"
    464. 

  464.   spec:
    465. 

  465.     strategy:
    466. 

  466.       type: Recreate
    467. 

  467.     triggers:
    468. 

  468.     - type: ImageChange
    469. 

  469.       imageChangeParams:
    470. 

  470.         automatic: true
    471. 

  471.         containerNames:
    472. 

  472.         - "${APPLICATION_NAME}-smartrouter"
    473. 

  473.         from:
    474. 

  474.           kind: ImageStreamTag
    475. 

  475.           namespace: "${IMAGE_STREAM_NAMESPACE}"
    476. 

  476.           name: "rhpam70-smartrouter-openshift:${IMAGE_STREAM_TAG}"
    477. 

  477.     - type: ConfigChange
    478. 

  478.     replicas: 2
    479. 

  479.     selector:
    480. 

  480.       deploymentConfig: "${APPLICATION_NAME}-smartrouter"
    481. 

  481.     template:
    482. 

  482.       metadata:
    483. 

  483.         name: "${APPLICATION_NAME}-smartrouter"
    484. 

  484.         labels:
    485. 

  485.           deploymentConfig: "${APPLICATION_NAME}-smartrouter"
    486. 

  486.           application: "${APPLICATION_NAME}"
    487. 

  487.           service: "${APPLICATION_NAME}-smartrouter"
    488. 

  488.       spec:
    489. 

  489.         terminationGracePeriodSeconds: 60
    490. 

  490.         containers:
    491. 

  491.         - name: "${APPLICATION_NAME}-smartrouter"
    492. 

  492.           image: rhpam70-smartrouter-openshift
    493. 

  493.           imagePullPolicy: Always
    494. 

  494.           resources:
    495. 

  495.             limits:
    496. 

  496.               memory: "${SMART_ROUTER_MEMORY_LIMIT}"
    497. 

  497.           ports:
    498. 

  498.           - name: http
    499. 

  499.             containerPort: 9000
    500. 

  500.             protocol: TCP
    501. 

  501.           env:
    502. 

  502.           - name: KIE_SERVER_ROUTER_HOST
    503. 

  503.             valueFrom:
    504. 

  504.               fieldRef:
    505. 

  505.                 fieldPath: status.podIP
    506. 

  506.           - name: KIE_SERVER_ROUTER_PORT
    507. 

  507.             value: "${KIE_SERVER_ROUTER_PORT}"
    508. 

  508.           - name: KIE_SERVER_ROUTER_URL_EXTERNAL
    509. 

  509.             value: "${KIE_SERVER_ROUTER_URL_EXTERNAL}"
    510. 

  510.           - name: KIE_SERVER_ROUTER_ID
    511. 

  511.             value: "${KIE_SERVER_ROUTER_ID}"
    512. 

  512.           - name: KIE_SERVER_ROUTER_NAME
    513. 

  513.             value: "${KIE_SERVER_ROUTER_NAME}"
    514. 

  514.           - name: KIE_SERVER_ROUTER_PROTOCOL
    515. 

  515.             value: "${KIE_SERVER_ROUTER_PROTOCOL}"
    516. 

  516.           - name: KIE_SERVER_CONTROLLER_USER
    517. 

  517.             value: "${KIE_SERVER_MONITOR_USER}"
    518. 

  518.           - name: KIE_SERVER_CONTROLLER_PWD
    519. 

  519.             value: "${KIE_SERVER_MONITOR_PWD}"
    520. 

  520.           - name: KIE_SERVER_CONTROLLER_SERVICE
    521. 

  521.             value: "${APPLICATION_NAME}-rhpamcentrmon"
    522. 

  522.           - name: KIE_SERVER_ROUTER_REPO
    523. 

  523.             value: "/opt/rhpam-smartrouter/data"
    524. 

  524.           - name: KIE_SERVER_ROUTER_CONFIG_WATCHER_ENABLED
    525. 

  525.             value: "true"
    526. 

  526.           volumeMounts:
    527. 

  527.           - name: "${APPLICATION_NAME}-smartrouter"
    528. 

  528.             mountPath: "/opt/rhpam-smartrouter/data"
    529. 

  529.         volumes:
    530. 

  530.         - name: "${APPLICATION_NAME}-smartrouter"
    531. 

  531.           persistentVolumeClaim:
    532. 

  532.             claimName: "${APPLICATION_NAME}-smartrouter-claim"
    533. 

  533. - apiVersion: v1
    534. 

  534.   kind: PersistentVolumeClaim
    535. 

  535.   metadata:
    536. 

  536.     name: "${APPLICATION_NAME}-smartrouter-claim"
    537. 

  537.     labels:
    538. 

  538.       application: "${APPLICATION_NAME}"
    539. 

  539.       service: "${APPLICATION_NAME}-smartrouter"
    540. 

  540.   spec:
    541. 

  541.     accessModes:
    542. 

  542.     - ReadWriteMany
    543. 

  543.     resources:
    544. 

  544.       requests:
    545. 

  545.         storage: "64Mi"
    546. 

  546. - apiVersion: v1
    547. 

  547.   kind: PersistentVolumeClaim
    548. 

  548.   metadata:
    549. 

  549.     name: "${APPLICATION_NAME}-rhpamcentr-claim"
    550. 

  550.     labels:
    551. 

  551.       application: "${APPLICATION_NAME}"
    552. 

  552.       service: "${APPLICATION_NAME}-rhpamcentrmon"
    553. 

  553.   spec:
    554. 

  554.     accessModes:
    555. 

  555.     - ReadWriteMany
    556. 

  556.     resources:
    557. 

  557.       requests:
    558. 

  558.         storage: "64Mi"
    559.