promtail values.yamlπ
nameOverrideπ
Type: string
nil
Description: Overrides the chartβs name
fullnameOverrideπ
Type: string
nil
Description: Overrides the chartβs computed fullname
vpaπ
Type: object
annotations: {}
controlledResources: []
enabled: false
kind: DaemonSet
maxAllowed: {}
minAllowed: {}
updatePolicy:
updateMode: Auto
Description: config for VerticalPodAutoscaler
daemonset.enabledπ
Type: bool
true
Description: Deploys Promtail as a DaemonSet
daemonset.autoscaling.enabledπ
Type: bool
false
Description: Creates a VerticalPodAutoscaler for the daemonset
daemonset.autoscaling.controlledResourcesπ
Type: list
[]
Description: List of resources that the vertical pod autoscaler can control. Defaults to cpu and memory
daemonset.autoscaling.maxAllowedπ
Type: object
{}
Description: Defines the max allowed resources for the pod
daemonset.autoscaling.minAllowedπ
Type: object
{}
Description: Defines the min allowed resources for the pod
deployment.enabledπ
Type: bool
false
Description: Deploys Promtail as a Deployment
deployment.replicaCountπ
Type: int
1
deployment.autoscaling.enabledπ
Type: bool
false
Description: Creates a HorizontalPodAutoscaler for the deployment
deployment.autoscaling.minReplicasπ
Type: int
1
deployment.autoscaling.maxReplicasπ
Type: int
10
deployment.autoscaling.targetCPUUtilizationPercentageπ
Type: int
80
deployment.autoscaling.targetMemoryUtilizationPercentageπ
Type: string
nil
deployment.strategyπ
Type: object
type: RollingUpdate
Description: Set deployment object update strategy
service.enabledπ
Type: bool
false
service.labelsπ
Type: object
{}
Description: Labels for the service
service.annotationsπ
Type: object
{}
Description: Annotations for the service
secret.labelsπ
Type: object
{}
Description: Labels for the Secret
secret.annotationsπ
Type: object
{}
Description: Annotations for the Secret
configmap.enabledπ
Type: bool
false
Description: If enabled, promtail config will be created as a ConfigMap instead of a secret
initContainerπ
Type: list
[]
image.registryπ
Type: string
"registry1.dso.mil"
Description: The Docker registry
image.repositoryπ
Type: string
"ironbank/opensource/grafana/promtail"
Description: Docker image repository
image.tagπ
Type: string
"v3.3.2"
Description: Overrides the image tag whose default is the chartβs appVersion
image.pullPolicyπ
Type: string
"IfNotPresent"
Description: Docker image pull policy
imagePullSecretsπ
Type: list
- name: private-registry
Description: Image pull secrets for Docker images
hostAliasesπ
Type: list
[]
Description: hostAliases to add
hostNetworkπ
Type: string
nil
Description: Controls whether the pod has the hostNetwork flag set.
annotationsπ
Type: object
{}
Description: Annotations for the DaemonSet
updateStrategyπ
Type: object
{}
Description: The update strategy for the DaemonSet
podLabelsπ
Type: object
{}
Description: Pod labels
podAnnotationsπ
Type: object
{}
Description: Pod annotations
priorityClassNameπ
Type: string
nil
Description: The name of the PriorityClass
livenessProbeπ
Type: object
{}
Description: Liveness probe
resourcesπ
Type: object
limits:
cpu: 200m
memory: 128Mi
requests:
cpu: 200m
memory: 128Mi
Description: Resource requests and limits
podSecurityContextπ
Type: object
runAsGroup: 0
runAsUser: 0
Description: The security context for pods
containerSecurityContextπ
Type: object
allowPrivilegeEscalation: false
capabilities:
drop:
- ALL
privileged: false
readOnlyRootFilesystem: true
runAsUser: 0
seLinuxOptions:
type: spc_t
Description: The security context for containers
rbac.createπ
Type: bool
true
Description: Specifies whether RBAC resources are to be created
rbac.pspEnabledπ
Type: bool
false
Description: Specifies whether a PodSecurityPolicy is to be created
namespaceπ
Type: string
nil
Description: The name of the Namespace to deploy If not set, .Release.Namespace is used
serviceAccount.createπ
Type: bool
true
Description: Specifies whether a ServiceAccount should be created
serviceAccount.nameπ
Type: string
nil
Description: The name of the ServiceAccount to use. If not set and create is true, a name is generated using the fullname template
serviceAccount.imagePullSecretsπ
Type: list
[]
Description: Image pull secrets for the service account
serviceAccount.annotationsπ
Type: object
{}
Description: Annotations for the service account
serviceAccount.automountServiceAccountTokenπ
Type: bool
true
Description: Automatically mount a ServiceAccountβs API credentials
automountServiceAccountTokenπ
Type: bool
true
Description: Automatically mount API credentials for a particular Pod
nodeSelectorπ
Type: object
{}
Description: Node selector for pods
affinityπ
Type: object
{}
Description: Affinity configuration for pods
tolerationsπ
Type: list
- effect: NoSchedule
key: node-role.kubernetes.io/master
operator: Exists
- effect: NoSchedule
key: node-role.kubernetes.io/control-plane
operator: Exists
Description: Tolerations for pods. By default, pods will be scheduled on master/control-plane nodes.
extraVolumes[0].nameπ
Type: string
"varlog"
extraVolumes[0].hostPath.pathπ
Type: string
"/var/log"
extraVolumeMounts[0].nameπ
Type: string
"varlog"
extraVolumeMounts[0].mountPathπ
Type: string
"/var/log"
extraVolumeMounts[0].readOnlyπ
Type: bool
true
extraArgsπ
Type: list
- -config.expand-env=true
Description: - -client.external-labels=hostname=$(HOSTNAME)
extraEnvπ
Type: list
- name: NODE_HOSTNAME
valueFrom:
fieldRef:
fieldPath: spec.nodeName
Description: Extra environment variables
extraEnvFromπ
Type: list
[]
Description: Extra environment variables from secrets or configmaps
enableServiceLinksπ
Type: bool
true
Description: Configure enableServiceLinks in pod
serviceMonitor.enabledπ
Type: bool
false
Description: If enabled, ServiceMonitor resources for Prometheus Operator are created
serviceMonitor.namespaceπ
Type: string
nil
Description: Alternative namespace for ServiceMonitor resources
serviceMonitor.namespaceSelectorπ
Type: object
{}
Description: Namespace selector for ServiceMonitor resources
serviceMonitor.annotationsπ
Type: object
{}
Description: ServiceMonitor annotations
serviceMonitor.labelsπ
Type: object
{}
Description: Additional ServiceMonitor labels
serviceMonitor.intervalπ
Type: string
nil
Description: ServiceMonitor scrape interval
serviceMonitor.scrapeTimeoutπ
Type: string
nil
Description: ServiceMonitor scrape timeout in Go duration format (e.g. 15s)
serviceMonitor.relabelingsπ
Type: list
[]
Description: ServiceMonitor relabel configs to apply to samples before scraping https://github.com/prometheus-operator/prometheus-operator/blob/master/Documentation/api.md#relabelconfig (defines relabel_configs)
serviceMonitor.metricRelabelingsπ
Type: list
[]
Description: ServiceMonitor relabel configs to apply to samples as the last step before ingestion https://github.com/prometheus-operator/prometheus-operator/blob/master/Documentation/api.md#relabelconfig (defines metric_relabel_configs)
serviceMonitor.targetLabelsπ
Type: list
[]
Description: ServiceMonitor will add labels from the service to the Prometheus metric https://github.com/prometheus-operator/prometheus-operator/blob/main/Documentation/api.md#servicemonitorspec
serviceMonitor.schemeπ
Type: string
"http"
Description: ServiceMonitor will use http by default, but you can pick https as well
serviceMonitor.tlsConfigπ
Type: string
nil
Description: ServiceMonitor will use these tlsConfig settings to make the health check requests
serviceMonitor.prometheusRuleπ
Type: object
additionalLabels: {}
enabled: false
rules: []
Description: Prometheus rules will be deployed for alerting purposes
extraContainersπ
Type: object
{}
extraPortsπ
Type: object
{}
Description: Configure additional ports and services. For each configured port, a corresponding service is created. See values.yaml for details
config.enabledπ
Type: bool
true
Description: Enable Promtail config from Helm chart Set configmap.enabled: true and this to false to manage your own Promtail config See default config in values.yaml
config.logLevelπ
Type: string
"info"
Description: The log level of the Promtail server Must be reference in config.file to configure server.log_level See default config in values.yaml
config.logFormatπ
Type: string
"logfmt"
Description: The log format of the Promtail server Must be reference in config.file to configure server.log_format Valid formats: logfmt, json See default config in values.yaml
config.serverPortπ
Type: int
3101
Description: The port of the Promtail server Must be reference in config.file to configure server.http_listen_port See default config in values.yaml
config.positionsπ
Type: object
filename: /run/promtail/positions.yaml
Description: Configures where Promtail will save itβs positions file, to resume reading after restarts. Must be referenced in config.file to configure positions
config.enableTracingπ
Type: bool
false
Description: The config to enable tracing
config.snippets.extraRelabelConfigsπ
Type: list
[]
Description: You can put here any additional relabel_configs to βkubernetes-podsβ job
networkPolicy.enabledπ
Type: bool
false
Description: Specifies whether Network Policies should be created
networkPolicy.metrics.podSelectorπ
Type: object
{}
Description: Specifies the Pods which are allowed to access the metrics port. As this is cross-namespace communication, you also neeed the namespaceSelector.
networkPolicy.metrics.namespaceSelectorπ
Type: object
{}
Description: Specifies the namespaces which are allowed to access the metrics port
networkPolicy.metrics.cidrsπ
Type: list
[]
Description: Specifies specific network CIDRs which are allowed to access the metrics port. In case you use namespaceSelector, you also have to specify your kubelet networks here. The metrics ports are also used for probes.
networkPolicy.k8sApi.portπ
Type: int
8443
Description: Specify the k8s API endpoint port
networkPolicy.k8sApi.cidrsπ
Type: list
[]
Description: Specifies specific network CIDRs you want to limit access to
httpPathPrefixπ
Type: string
""
Description: Base path to server all API routes fro
sidecar.configReloader.enabledπ
Type: bool
false
sidecar.configReloader.image.registryπ
Type: string
"registry1.dso.mil"
Description: The Docker registry for sidecar config-reloader
sidecar.configReloader.image.repositoryπ
Type: string
"ironbank/opensource/jimmidyson/configmap-reload"
Description: Docker image repository for sidecar config-reloader
sidecar.configReloader.image.tagπ
Type: string
"v0.14.0"
Description: Docker image tag for sidecar config-reloader
sidecar.configReloader.image.pullPolicyπ
Type: string
"IfNotPresent"
Description: Docker image pull policy for sidecar config-reloader
sidecar.configReloader.extraArgsπ
Type: list
[]
sidecar.configReloader.extraEnvπ
Type: list
[]
Description: Extra environment variables for sidecar config-reloader
sidecar.configReloader.extraEnvFromπ
Type: list
[]
Description: Extra environment variables from secrets or configmaps for sidecar config-reloader
sidecar.configReloader.containerSecurityContextπ
Type: object
allowPrivilegeEscalation: false
capabilities:
drop:
- ALL
readOnlyRootFilesystem: true
Description: The security context for containers for sidecar config-reloader
sidecar.configReloader.readinessProbeπ
Type: object
{}
Description: Readiness probe for sidecar config-reloader
sidecar.configReloader.livenessProbeπ
Type: object
{}
Description: Liveness probe for sidecar config-reloader
sidecar.configReloader.resourcesπ
Type: object
{}
Description: Resource requests and limits for sidecar config-reloader
sidecar.configReloader.config.serverPortπ
Type: int
9533
Description: The port of the config-reloader server
sidecar.configReloader.serviceMonitor.enabledπ
Type: bool
true
extraObjectsπ
Type: list
[]
Description: Extra K8s manifests to deploy
istio.enabledπ
Type: bool
false
Description: Toggle interaction with Istio
istio.hardened.enabledπ
Type: bool
false
istio.hardened.outboundTrafficPolicyModeπ
Type: string
"REGISTRY_ONLY"
istio.hardened.customServiceEntriesπ
Type: list
[]
istio.hardened.customAuthorizationPoliciesπ
Type: list
[]
istio.mtls.modeπ
Type: string
"STRICT"
Description: STRICT = Allow only mutual TLS traffic PERMISSIVE = Allow both plain text and mutual TLS traffic
networkPolicies.enabledπ
Type: bool
false
Description: Toggle networkPolicies
networkPolicies.controlPlaneCidrπ
Type: string
"0.0.0.0/0"
Description: Control Plane CIDR, defaults to 0.0.0.0/0, use kubectl get endpoints -n default kubernetes to get the CIDR range needed for your cluster Must be an IP CIDR range (x.x.x.x/x - ideally with /32 for the specific IP of a single endpoint, broader range for multiple masters/endpoints) Used by package NetworkPolicies to allow Kube API access
networkPolicies.additionalPoliciesπ
Type: list
[]
openshiftπ
Type: bool
false
Description: Toggle or openshift specific config
lokiπ
Type: object
enabled: false
Description: Toggle Loki network policy enabling