sonarqube values.yaml

deploymentType

Type: string

Default value

"StatefulSet"

replicaCount

Type: int

Default value

1

revisionHistoryLimit

Type: int

Default value

10

deploymentStrategy

Type: object

Default value

{}

OpenShift.enabled

Type: bool

Default value

false

OpenShift.createSCC

Type: bool

Default value

true

sso.enabled

Type: bool

Default value

false

sso.name

Type: string

Default value

""

sso.applicationid

Type: string

Default value

""

sso.providerid

Type: string

Default value

""

sso.loginUrl

Type: string

Default value

""

sso.secured

Type: string

Default value

""

sso.serverBaseURL

Type: string

Default value

""

sso.idpmetadataurl

Type: string

Default value

""

sso.image

Type: string

Default value

""

sso.resources.limits.cpu

Type: string

Default value

"100m"

sso.resources.limits.memory

Type: string

Default value

"256Mi"

sso.resources.requests.cpu

Type: string

Default value

"100m"

sso.resources.requests.memory

Type: string

Default value

"256Mi"

sso.containerSecurityContext.enabled

Type: bool

Default value

true

sso.containerSecurityContext.fsGroup

Type: int

Default value

26

sso.containerSecurityContext.runAsUser

Type: int

Default value

26

sso.containerSecurityContext.runAsGroup

Type: int

Default value

26

sso.containerSecurityContext.capabilities.drop[0]

Type: string

Default value

"ALL"

edition

Type: string

Default value

"community"

image.repository

Type: string

Default value

"registry1.dso.mil/ironbank/big-bang/sonarqube-10"

image.tag

Type: string

Default value

"10.7.0-community"

image.pullPolicy

Type: string

Default value

"IfNotPresent"

image.pullSecrets[0].name

Type: string

Default value

"private-registry"

securityContext.fsGroup

Type: int

Default value

1000

securityContext.runAsUser

Type: int

Default value

1000

securityContext.runAsGroup

Type: int

Default value

1000

containerSecurityContext.allowPrivilegeEscalation

Type: bool

Default value

false

containerSecurityContext.runAsNonRoot

Type: bool

Default value

true

containerSecurityContext.runAsUser

Type: int

Default value

1000

containerSecurityContext.runAsGroup

Type: int

Default value

1000

containerSecurityContext.capabilities.drop[0]

Type: string

Default value

"ALL"

elasticsearch.configureNode

Type: bool

Default value

false

elasticsearch.bootstrapChecks

Type: bool

Default value

true

nginx.enabled

Type: bool

Default value

false

service.type

Type: string

Default value

"ClusterIP"

service.externalPort

Type: int

Default value

9000

service.internalPort

Type: int

Default value

9000

service.labels

Type: string

Default value

nil

service.annotations

Type: object

Default value

{}

networkPolicy.enabled

Type: bool

Default value

false

networkPolicy.prometheusNamespace

Type: string

Default value

"monitoring"

sonarWebContext

Type: string

Default value

""

ingress-nginx.enabled

Type: bool

Default value

false

ingress.enabled

Type: bool

Default value

false

ingress.hosts[0].name

Type: string

Default value

"sonarqube.your-org.com"

ingress.annotations

Type: object

Default value

{}

ingress.tls

Type: list

Default value

[]

route.enabled

Type: bool

Default value

false

route.host

Type: string

Default value

""

route.tls.termination

Type: string

Default value

"edge"

route.annotations

Type: object

Default value

{}

affinity

Type: object

Default value

{}

tolerations

Type: list

Default value

[]

nodeSelector

Type: object

Default value

{}

hostAliases

Type: list

Default value

[]

readinessProbe.exec.command[0]

Type: string

Default value

"sh"

readinessProbe.exec.command[1]

Type: string

Default value

"-c"

readinessProbe.exec.command[2]

Type: string

Default value

"#!/bin/bash\n# A Sonarqube container is considered ready if the status is UP, DB_MIGRATION_NEEDED or DB_MIGRATION_RUNNING\n# status about migration are added to prevent the node to be kill while sonarqube is upgrading the database.\nif curl -s http://localhost:{{ .Values.service.internalPort }}{{ .Values.readinessProbe.sonarWebContext | default (include \"sonarqube.webcontext\" .) }}api/system/status | grep -q -e '\"status\":\"UP\"' -e '\"status\":\"DB_MIGRATION_NEEDED\"' -e '\"status\":\"DB_MIGRATION_RUNNING\"'; then\n  exit 0\nfi\nexit 1\n"

readinessProbe.initialDelaySeconds

Type: int

Default value

60

readinessProbe.periodSeconds

Type: int

Default value

30

readinessProbe.failureThreshold

Type: int

Default value

6

readinessProbe.timeoutSeconds

Type: int

Default value

90

livenessProbe.exec.command[0]

Type: string

Default value

"sh"

livenessProbe.exec.command[1]

Type: string

Default value

"-c"

livenessProbe.exec.command[2]

Type: string

Default value

"curl --silent --fail --output /dev/null --max-time {{ .Values.livenessProbe.timeoutSeconds | default 1 }} --header \"X-Sonar-Passcode: $SONAR_WEB_SYSTEMPASSCODE\" \"http://localhost:{{ .Values.service.internalPort }}{{ .Values.livenessProbe.sonarWebContext | default (include \"sonarqube.webcontext\" .) }}api/system/liveness\"\n"

livenessProbe.initialDelaySeconds

Type: int

Default value

60

livenessProbe.periodSeconds

Type: int

Default value

30

livenessProbe.failureThreshold

Type: int

Default value

6

livenessProbe.timeoutSeconds

Type: int

Default value

1

startupProbe.initialDelaySeconds

Type: int

Default value

30

startupProbe.periodSeconds

Type: int

Default value

10

startupProbe.failureThreshold

Type: int

Default value

24

startupProbe.timeoutSeconds

Type: int

Default value

1

initContainers.image

Type: string

Default value

"registry1.dso.mil/ironbank/big-bang/base:2.1.0"

initContainers.allowPrivilegeEscalation

Type: bool

Default value

false

initContainers.runAsNonRoot

Type: bool

Default value

true

initContainers.runAsUser

Type: int

Default value

1000

initContainers.runAsGroup

Type: int

Default value

0

initContainers.seccompProfile.type

Type: string

Default value

"RuntimeDefault"

initContainers.capabilities.drop[0]

Type: string

Default value

"ALL"

initContainers.resources.limits.memory

Type: string

Default value

"300Mi"

initContainers.resources.limits.cpu

Type: string

Default value

"50m"

initContainers.resources.requests.memory

Type: string

Default value

"300Mi"

initContainers.resources.requests.cpu

Type: string

Default value

"50m"

initContainers.securityContext.capabilities.drop[0]

Type: string

Default value

"ALL"

extraInitContainers

Type: object

Default value

{}

extraContainers

Type: list

Default value

[]

waitForDb.image

Type: string

Default value

"registry1.dso.mil/ironbank/opensource/postgres/postgresql:16.2"

caCerts.enabled

Type: bool

Default value

false

initSysctl.enabled

Type: bool

Default value

false

initSysctl.vmMaxMapCount

Type: int

Default value

524288

initSysctl.fsFileMax

Type: int

Default value

131072

initSysctl.nofile

Type: int

Default value

131072

initSysctl.nproc

Type: int

Default value

8192

initSysctl.securityContext.privileged

Type: bool

Default value

true

initSysctl.securityContext.capabilities.drop[0]

Type: string

Default value

"ALL"

initSysctl.securityContext.runAsUser

Type: int

Default value

0

initFs.enabled

Type: bool

Default value

false

initFs.securityContext.privileged

Type: bool

Default value

false

initFs.securityContext.runAsNonRoot

Type: bool

Default value

false

initFs.securityContext.runAsUser

Type: int

Default value

0

initFs.securityContext.runAsGroup

Type: int

Default value

0

initFs.securityContext.seccompProfile.type

Type: string

Default value

"RuntimeDefault"

initFs.securityContext.capabilities.drop[0]

Type: string

Default value

"ALL"

initFs.securityContext.capabilities.add[0]

Type: string

Default value

"CHOWN"

prometheusExporter.enabled

Type: bool

Default value

false

prometheusExporter.version

Type: string

Default value

"0.17.2"

prometheusExporter.webBeanPort

Type: int

Default value

8000

prometheusExporter.ceBeanPort

Type: int

Default value

8001

prometheusExporter.config.rules[0].pattern

Type: string

Default value

".*"

prometheusExporter.image

Type: string

Default value

"registry1.dso.mil/ironbank/opensource/prometheus/jmx-exporter:1.0.1"

prometheusMonitoring.podMonitor.enabled

Type: bool

Default value

false

prometheusMonitoring.podMonitor.interval

Type: string

Default value

"30s"

plugins.install

Type: list

Default value

[]

plugins.image

Type: string

Default value

"registry1.dso.mil/ironbank/big-bang/sonarqube-10:10.7.0-community"

plugins.noCheckCertificate

Type: bool

Default value

false

jvmOpts

Type: string

Default value

""

jvmCeOpts

Type: string

Default value

""

monitoringPasscode

Type: string

Default value

"define_it"

env[0].name

Type: string

Default value

"JDK_JAVA_OPTIONS"

env[0].value

Type: string

Default value

"-Dcom.redhat.fips=false"

annotations

Type: object

Default value

{}

resources.limits.cpu

Type: string

Default value

"1000m"

resources.limits.memory

Type: string

Default value

"6144M"

resources.limits.ephemeral-storage

Type: string

Default value

"512000M"

resources.requests.cpu

Type: string

Default value

"500m"

resources.requests.memory

Type: string

Default value

"2048M"

resources.requests.ephemeral-storage

Type: string

Default value

"1536M"

persistence.enabled

Type: bool

Default value

false

persistence.annotations

Type: object

Default value

{}

persistence.storageClass

Type: string

Default value

nil

persistence.accessMode

Type: string

Default value

"ReadWriteOnce"

persistence.size

Type: string

Default value

"20Gi"

persistence.uid

Type: int

Default value

1000

persistence.guid

Type: int

Default value

0

persistence.volumes

Type: list

Default value

[]

persistence.mounts

Type: list

Default value

[]

emptyDir

Type: object

Default value

{}

sonarProperties.”sonar.forceAuthentication”

Type: bool

Default value

true

sonarProperties.”sonar.ce.javaAdditionalOpts”

Type: string

Default value

"-Dcom.redhat.fips=false"

sonarProperties.”sonar.search.javaAdditionalOpts”

Type: string

Default value

"-Dcom.redhat.fips=false"

sonarProperties.”sonar.web.javaAdditionalOpts”

Type: string

Default value

"-Dcom.redhat.fips=false"

jdbcOverwrite.enable

Type: bool

Default value

false

jdbcOverwrite.jdbcUsername

Type: string

Default value

"sonarUser"

jdbcOverwrite.jdbcPassword

Type: string

Default value

"sonarPass"

postgresql.enabled

Type: bool

Default value

true

postgresql.service.port

Type: int

Default value

5432

postgresql.postgresqlUsername

Type: string

Default value

"sonarUser"

postgresql.postgresqlPassword

Type: string

Default value

"sonarPass"

postgresql.postgresqlDatabase

Type: string

Default value

"sonarDB"

postgresql.auth.enablePostgresUser

Type: bool

Default value

false

postgresql.auth.username

Type: string

Default value

"sonarUser"

postgresql.auth.password

Type: string

Default value

"sonarPass"

postgresql.auth.database

Type: string

Default value

"sonarDB"

postgresql.resources.requests.cpu

Type: string

Default value

"100m"

postgresql.resources.requests.memory

Type: string

Default value

"200Mi"

postgresql.image.registry

Type: string

Default value

"registry1.dso.mil"

postgresql.image.repository

Type: string

Default value

"ironbank/opensource/postgres/postgresql"

postgresql.image.tag

Type: string

Default value

"16.2"

postgresql.image.pullSecrets[0]

Type: string

Default value

"private-registry"

postgresql.postgresqlDataDir

Type: string

Default value

"/var/lib/postgresql/data"

postgresql.primary.extraEnvVars[0].name

Type: string

Default value

"POSTGRES_DB"

postgresql.primary.extraEnvVars[0].value

Type: string

Default value

"sonarDB"

postgresql.primary.extraVolumeMounts[0].name

Type: string

Default value

"runtime"

postgresql.primary.extraVolumeMounts[0].mountPath

Type: string

Default value

"/var/run/postgresql"

postgresql.primary.extraVolumes[0].name

Type: string

Default value

"runtime"

postgresql.primary.extraVolumes[0].emptyDir

Type: object

Default value

{}

postgresql.primary.configuration

Type: string

Default value

"listen_addresses = '*'\n"

postgresql.primary.pgHbaConfiguration

Type: string

Default value

"local all all md5\nhost all all all md5"

postgresql.primary.persistence.size

Type: string

Default value

"20Gi"

postgresql.primary.persistence.mountPath

Type: string

Default value

"/var/lib/postgresql"

podLabels

Type: object

Default value

{}

sonarqubeFolder

Type: string

Default value

"/opt/sonarqube"

tests.image

Type: string

Default value

"bitnami/minideb-extras"

tests.enabled

Type: bool

Default value

false

tests.resources

Type: object

Default value

{}

serviceAccount.create

Type: bool

Default value

true

serviceAccount.automountToken

Type: bool

Default value

false

serviceAccount.annotations

Type: object

Default value

{}

extraConfig.secrets

Type: list

Default value

[]

extraConfig.configmaps

Type: list

Default value

[]

terminationGracePeriodSeconds

Type: int

Default value

60

curlContainerImage

Type: string

Default value

"registry1.dso.mil/ironbank/redhat/ubi/ubi8:8.10"

domain

Type: string

Default value

"dev.bigbang.mil"

istio.enabled

Type: bool

Default value

false

istio.hardened.enabled

Type: bool

Default value

false

istio.hardened.customAuthorizationPolicies

Type: list

Default value

[]

istio.hardened.outboundTrafficPolicyMode

Type: string

Default value

"REGISTRY_ONLY"

istio.hardened.customServiceEntries

Type: list

Default value

[]

istio.hardened.tempo.enabled

Type: bool

Default value

true

istio.hardened.tempo.namespaces[0]

Type: string

Default value

"tempo"

istio.hardened.tempo.principals[0]

Type: string

Default value

"cluster.local/ns/tempo/sa/tempo-tempo"

istio.hardened.monitoring.enabled

Type: bool

Default value

true

istio.hardened.monitoring.namespaces[0]

Type: string

Default value

"monitoring"

istio.hardened.monitoring.principals[0]

Type: string

Default value

"cluster.local/ns/monitoring/sa/monitoring-grafana"

istio.hardened.monitoring.principals[1]

Type: string

Default value

"cluster.local/ns/monitoring/sa/monitoring-monitoring-kube-alertmanager"

istio.hardened.monitoring.principals[2]

Type: string

Default value

"cluster.local/ns/monitoring/sa/monitoring-monitoring-kube-operator"

istio.hardened.monitoring.principals[3]

Type: string

Default value

"cluster.local/ns/monitoring/sa/monitoring-monitoring-kube-prometheus"

istio.hardened.monitoring.principals[4]

Type: string

Default value

"cluster.local/ns/monitoring/sa/monitoring-monitoring-kube-state-metrics"

istio.hardened.monitoring.principals[5]

Type: string

Default value

"cluster.local/ns/monitoring/sa/monitoring-monitoring-prometheus-node-exporter"

istio.mtls

Type: object

Default value

mode: STRICT

Description: Default argocd peer authentication

istio.mtls.mode

Type: string

Default value

"STRICT"

Description: STRICT = Allow only mutual TLS traffic, PERMISSIVE = Allow both plain text and mutual TLS traffic

istio.sonarqube.enabled

Type: bool

Default value

true

istio.sonarqube.annotations

Type: object

Default value

{}

istio.sonarqube.labels

Type: object

Default value

{}

istio.sonarqube.gateways[0]

Type: string

Default value

"istio-system/main"

istio.sonarqube.hosts[0]

Type: string

Default value

"sonarqube.{{ .Values.domain }}"

istio.injection

Type: string

Default value

"disabled"

monitoring.enabled

Type: bool

Default value

false

networkPolicies.enabled

Type: bool

Default value

false

networkPolicies.ingressLabels.app

Type: string

Default value

"istio-ingressgateway"

networkPolicies.ingressLabels.istio

Type: string

Default value

"ingressgateway"

networkPolicies.egressHttps.enabled

Type: bool

Default value

true

networkPolicies.additionalPolicies

Type: list

Default value

[]

bbtests.enabled

Type: bool

Default value

false

bbtests.cypress.artifacts

Type: bool

Default value

true

bbtests.cypress.envs.cypress_url

Type: string

Default value

"http://sonarqube-sonarqube:9000"

bbtests.cypress.envs.cypress_url_setup

Type: string

Default value

"http://sonarqube-sonarqube:9000/setup"

bbtests.cypress.envs.cypress_user

Type: string

Default value

"admin"

bbtests.cypress.envs.cypress_password

Type: string

Default value

"new_admin_password"

bbtests.cypress.envs.cypress_timeout

Type: string

Default value

"10000"