Skip to content

sonarqube values.yamlπŸ“œ

deploymentTypeπŸ“œ

Type: string

Default value
"StatefulSet"

replicaCountπŸ“œ

Type: int

Default value
1

revisionHistoryLimitπŸ“œ

Type: int

Default value
10

deploymentStrategyπŸ“œ

Type: object

Default value
{}

OpenShift.enabledπŸ“œ

Type: bool

Default value
false

OpenShift.createSCCπŸ“œ

Type: bool

Default value
true

sso.enabledπŸ“œ

Type: bool

Default value
false

sso.nameπŸ“œ

Type: string

Default value
""

sso.applicationidπŸ“œ

Type: string

Default value
""

sso.provideridπŸ“œ

Type: string

Default value
""

sso.loginUrlπŸ“œ

Type: string

Default value
""

sso.securedπŸ“œ

Type: string

Default value
""

sso.serverBaseURLπŸ“œ

Type: string

Default value
""

sso.idpmetadataurlπŸ“œ

Type: string

Default value
""

sso.imageπŸ“œ

Type: string

Default value
""

sso.resources.limits.cpuπŸ“œ

Type: string

Default value
"100m"

sso.resources.limits.memoryπŸ“œ

Type: string

Default value
"256Mi"

sso.resources.requests.cpuπŸ“œ

Type: string

Default value
"100m"

sso.resources.requests.memoryπŸ“œ

Type: string

Default value
"256Mi"

sso.containerSecurityContext.enabledπŸ“œ

Type: bool

Default value
true

sso.containerSecurityContext.fsGroupπŸ“œ

Type: int

Default value
26

sso.containerSecurityContext.runAsUserπŸ“œ

Type: int

Default value
26

sso.containerSecurityContext.runAsGroupπŸ“œ

Type: int

Default value
26

sso.containerSecurityContext.capabilities.drop[0]πŸ“œ

Type: string

Default value
"ALL"

editionπŸ“œ

Type: string

Default value
"community"

image.repositoryπŸ“œ

Type: string

Default value
"registry1.dso.mil/ironbank/big-bang/sonarqube-10"

image.tagπŸ“œ

Type: string

Default value
"10.7.0-community"

image.pullPolicyπŸ“œ

Type: string

Default value
"IfNotPresent"

image.pullSecrets[0].nameπŸ“œ

Type: string

Default value
"private-registry"

securityContext.fsGroupπŸ“œ

Type: int

Default value
1000

securityContext.runAsUserπŸ“œ

Type: int

Default value
1000

securityContext.runAsGroupπŸ“œ

Type: int

Default value
1000

containerSecurityContext.allowPrivilegeEscalationπŸ“œ

Type: bool

Default value
false

containerSecurityContext.runAsNonRootπŸ“œ

Type: bool

Default value
true

containerSecurityContext.runAsUserπŸ“œ

Type: int

Default value
1000

containerSecurityContext.runAsGroupπŸ“œ

Type: int

Default value
1000

containerSecurityContext.capabilities.drop[0]πŸ“œ

Type: string

Default value
"ALL"

elasticsearch.configureNodeπŸ“œ

Type: bool

Default value
false

elasticsearch.bootstrapChecksπŸ“œ

Type: bool

Default value
true

nginx.enabledπŸ“œ

Type: bool

Default value
false

service.typeπŸ“œ

Type: string

Default value
"ClusterIP"

service.externalPortπŸ“œ

Type: int

Default value
9000

service.internalPortπŸ“œ

Type: int

Default value
9000

service.labelsπŸ“œ

Type: string

Default value
nil

service.annotationsπŸ“œ

Type: object

Default value
{}

networkPolicy.enabledπŸ“œ

Type: bool

Default value
false

networkPolicy.prometheusNamespaceπŸ“œ

Type: string

Default value
"monitoring"

sonarWebContextπŸ“œ

Type: string

Default value
""

ingress-nginx.enabledπŸ“œ

Type: bool

Default value
false

ingress.enabledπŸ“œ

Type: bool

Default value
false

ingress.hosts[0].nameπŸ“œ

Type: string

Default value
"sonarqube.your-org.com"

ingress.annotationsπŸ“œ

Type: object

Default value
{}

ingress.tlsπŸ“œ

Type: list

Default value
[]

route.enabledπŸ“œ

Type: bool

Default value
false

route.hostπŸ“œ

Type: string

Default value
""

route.tls.terminationπŸ“œ

Type: string

Default value
"edge"

route.annotationsπŸ“œ

Type: object

Default value
{}

affinityπŸ“œ

Type: object

Default value
{}

tolerationsπŸ“œ

Type: list

Default value
[]

nodeSelectorπŸ“œ

Type: object

Default value
{}

hostAliasesπŸ“œ

Type: list

Default value
[]

readinessProbe.exec.command[0]πŸ“œ

Type: string

Default value
"sh"

readinessProbe.exec.command[1]πŸ“œ

Type: string

Default value
"-c"

readinessProbe.exec.command[2]πŸ“œ

Type: string

Default value
"#!/bin/bash\n# A Sonarqube container is considered ready if the status is UP, DB_MIGRATION_NEEDED or DB_MIGRATION_RUNNING\n# status about migration are added to prevent the node to be kill while sonarqube is upgrading the database.\nif curl -s http://localhost:{{ .Values.service.internalPort }}{{ .Values.readinessProbe.sonarWebContext | default (include \"sonarqube.webcontext\" .) }}api/system/status | grep -q -e '\"status\":\"UP\"' -e '\"status\":\"DB_MIGRATION_NEEDED\"' -e '\"status\":\"DB_MIGRATION_RUNNING\"'; then\n  exit 0\nfi\nexit 1\n"

readinessProbe.initialDelaySecondsπŸ“œ

Type: int

Default value
60

readinessProbe.periodSecondsπŸ“œ

Type: int

Default value
30

readinessProbe.failureThresholdπŸ“œ

Type: int

Default value
6

readinessProbe.timeoutSecondsπŸ“œ

Type: int

Default value
90

livenessProbe.exec.command[0]πŸ“œ

Type: string

Default value
"sh"

livenessProbe.exec.command[1]πŸ“œ

Type: string

Default value
"-c"

livenessProbe.exec.command[2]πŸ“œ

Type: string

Default value
"curl --silent --fail --output /dev/null --max-time {{ .Values.livenessProbe.timeoutSeconds | default 1 }} --header \"X-Sonar-Passcode: $SONAR_WEB_SYSTEMPASSCODE\" \"http://localhost:{{ .Values.service.internalPort }}{{ .Values.livenessProbe.sonarWebContext | default (include \"sonarqube.webcontext\" .) }}api/system/liveness\"\n"

livenessProbe.initialDelaySecondsπŸ“œ

Type: int

Default value
60

livenessProbe.periodSecondsπŸ“œ

Type: int

Default value
30

livenessProbe.failureThresholdπŸ“œ

Type: int

Default value
6

livenessProbe.timeoutSecondsπŸ“œ

Type: int

Default value
1

startupProbe.initialDelaySecondsπŸ“œ

Type: int

Default value
30

startupProbe.periodSecondsπŸ“œ

Type: int

Default value
10

startupProbe.failureThresholdπŸ“œ

Type: int

Default value
24

startupProbe.timeoutSecondsπŸ“œ

Type: int

Default value
1

initContainers.imageπŸ“œ

Type: string

Default value
"registry1.dso.mil/ironbank/big-bang/base:2.1.0"

initContainers.allowPrivilegeEscalationπŸ“œ

Type: bool

Default value
false

initContainers.runAsNonRootπŸ“œ

Type: bool

Default value
true

initContainers.runAsUserπŸ“œ

Type: int

Default value
1000

initContainers.runAsGroupπŸ“œ

Type: int

Default value
0

initContainers.seccompProfile.typeπŸ“œ

Type: string

Default value
"RuntimeDefault"

initContainers.capabilities.drop[0]πŸ“œ

Type: string

Default value
"ALL"

initContainers.resources.limits.memoryπŸ“œ

Type: string

Default value
"300Mi"

initContainers.resources.limits.cpuπŸ“œ

Type: string

Default value
"50m"

initContainers.resources.requests.memoryπŸ“œ

Type: string

Default value
"300Mi"

initContainers.resources.requests.cpuπŸ“œ

Type: string

Default value
"50m"

initContainers.securityContext.capabilities.drop[0]πŸ“œ

Type: string

Default value
"ALL"

extraInitContainersπŸ“œ

Type: object

Default value
{}

extraContainersπŸ“œ

Type: list

Default value
[]

waitForDb.imageπŸ“œ

Type: string

Default value
"registry1.dso.mil/ironbank/opensource/postgres/postgresql:16.2"

caCerts.enabledπŸ“œ

Type: bool

Default value
false

initSysctl.enabledπŸ“œ

Type: bool

Default value
false

initSysctl.vmMaxMapCountπŸ“œ

Type: int

Default value
524288

initSysctl.fsFileMaxπŸ“œ

Type: int

Default value
131072

initSysctl.nofileπŸ“œ

Type: int

Default value
131072

initSysctl.nprocπŸ“œ

Type: int

Default value
8192

initSysctl.securityContext.privilegedπŸ“œ

Type: bool

Default value
true

initSysctl.securityContext.capabilities.drop[0]πŸ“œ

Type: string

Default value
"ALL"

initSysctl.securityContext.runAsUserπŸ“œ

Type: int

Default value
0

initFs.enabledπŸ“œ

Type: bool

Default value
false

initFs.securityContext.privilegedπŸ“œ

Type: bool

Default value
false

initFs.securityContext.runAsNonRootπŸ“œ

Type: bool

Default value
false

initFs.securityContext.runAsUserπŸ“œ

Type: int

Default value
0

initFs.securityContext.runAsGroupπŸ“œ

Type: int

Default value
0

initFs.securityContext.seccompProfile.typeπŸ“œ

Type: string

Default value
"RuntimeDefault"

initFs.securityContext.capabilities.drop[0]πŸ“œ

Type: string

Default value
"ALL"

initFs.securityContext.capabilities.add[0]πŸ“œ

Type: string

Default value
"CHOWN"

prometheusExporter.enabledπŸ“œ

Type: bool

Default value
false

prometheusExporter.versionπŸ“œ

Type: string

Default value
"0.17.2"

prometheusExporter.webBeanPortπŸ“œ

Type: int

Default value
8000

prometheusExporter.ceBeanPortπŸ“œ

Type: int

Default value
8001

prometheusExporter.config.rules[0].patternπŸ“œ

Type: string

Default value
".*"

prometheusExporter.imageπŸ“œ

Type: string

Default value
"registry1.dso.mil/ironbank/opensource/prometheus/jmx-exporter:1.0.1"

prometheusMonitoring.podMonitor.enabledπŸ“œ

Type: bool

Default value
false

prometheusMonitoring.podMonitor.intervalπŸ“œ

Type: string

Default value
"30s"

plugins.installπŸ“œ

Type: list

Default value
[]

plugins.imageπŸ“œ

Type: string

Default value
"registry1.dso.mil/ironbank/big-bang/sonarqube-10:10.7.0-community"

plugins.noCheckCertificateπŸ“œ

Type: bool

Default value
false

jvmOptsπŸ“œ

Type: string

Default value
""

jvmCeOptsπŸ“œ

Type: string

Default value
""

monitoringPasscodeπŸ“œ

Type: string

Default value
"define_it"

env[0].nameπŸ“œ

Type: string

Default value
"JDK_JAVA_OPTIONS"

env[0].valueπŸ“œ

Type: string

Default value
"-Dcom.redhat.fips=false"

annotationsπŸ“œ

Type: object

Default value
{}

resources.limits.cpuπŸ“œ

Type: string

Default value
"1000m"

resources.limits.memoryπŸ“œ

Type: string

Default value
"6144M"

resources.limits.ephemeral-storageπŸ“œ

Type: string

Default value
"512000M"

resources.requests.cpuπŸ“œ

Type: string

Default value
"500m"

resources.requests.memoryπŸ“œ

Type: string

Default value
"2048M"

resources.requests.ephemeral-storageπŸ“œ

Type: string

Default value
"1536M"

persistence.enabledπŸ“œ

Type: bool

Default value
false

persistence.annotationsπŸ“œ

Type: object

Default value
{}

persistence.storageClassπŸ“œ

Type: string

Default value
nil

persistence.accessModeπŸ“œ

Type: string

Default value
"ReadWriteOnce"

persistence.sizeπŸ“œ

Type: string

Default value
"20Gi"

persistence.uidπŸ“œ

Type: int

Default value
1000

persistence.guidπŸ“œ

Type: int

Default value
0

persistence.volumesπŸ“œ

Type: list

Default value
[]

persistence.mountsπŸ“œ

Type: list

Default value
[]

emptyDirπŸ“œ

Type: object

Default value
{}

sonarProperties.”sonar.forceAuthenticationβ€πŸ“œ

Type: bool

Default value
true

sonarProperties.”sonar.ce.javaAdditionalOptsβ€πŸ“œ

Type: string

Default value
"-Dcom.redhat.fips=false"

sonarProperties.”sonar.search.javaAdditionalOptsβ€πŸ“œ

Type: string

Default value
"-Dcom.redhat.fips=false"

sonarProperties.”sonar.web.javaAdditionalOptsβ€πŸ“œ

Type: string

Default value
"-Dcom.redhat.fips=false"

jdbcOverwrite.enableπŸ“œ

Type: bool

Default value
false

jdbcOverwrite.jdbcUsernameπŸ“œ

Type: string

Default value
"sonarUser"

jdbcOverwrite.jdbcPasswordπŸ“œ

Type: string

Default value
"sonarPass"

postgresql.enabledπŸ“œ

Type: bool

Default value
true

postgresql.service.portπŸ“œ

Type: int

Default value
5432

postgresql.postgresqlUsernameπŸ“œ

Type: string

Default value
"sonarUser"

postgresql.postgresqlPasswordπŸ“œ

Type: string

Default value
"sonarPass"

postgresql.postgresqlDatabaseπŸ“œ

Type: string

Default value
"sonarDB"

postgresql.auth.enablePostgresUserπŸ“œ

Type: bool

Default value
false

postgresql.auth.usernameπŸ“œ

Type: string

Default value
"sonarUser"

postgresql.auth.passwordπŸ“œ

Type: string

Default value
"sonarPass"

postgresql.auth.databaseπŸ“œ

Type: string

Default value
"sonarDB"

postgresql.resources.requests.cpuπŸ“œ

Type: string

Default value
"100m"

postgresql.resources.requests.memoryπŸ“œ

Type: string

Default value
"200Mi"

postgresql.image.registryπŸ“œ

Type: string

Default value
"registry1.dso.mil"

postgresql.image.repositoryπŸ“œ

Type: string

Default value
"ironbank/opensource/postgres/postgresql"

postgresql.image.tagπŸ“œ

Type: string

Default value
"16.2"

postgresql.image.pullSecrets[0]πŸ“œ

Type: string

Default value
"private-registry"

postgresql.postgresqlDataDirπŸ“œ

Type: string

Default value
"/var/lib/postgresql/data"

postgresql.primary.extraEnvVars[0].nameπŸ“œ

Type: string

Default value
"POSTGRES_DB"

postgresql.primary.extraEnvVars[0].valueπŸ“œ

Type: string

Default value
"sonarDB"

postgresql.primary.extraVolumeMounts[0].nameπŸ“œ

Type: string

Default value
"runtime"

postgresql.primary.extraVolumeMounts[0].mountPathπŸ“œ

Type: string

Default value
"/var/run/postgresql"

postgresql.primary.extraVolumes[0].nameπŸ“œ

Type: string

Default value
"runtime"

postgresql.primary.extraVolumes[0].emptyDirπŸ“œ

Type: object

Default value
{}

postgresql.primary.configurationπŸ“œ

Type: string

Default value
"listen_addresses = '*'\n"

postgresql.primary.pgHbaConfigurationπŸ“œ

Type: string

Default value
"local all all md5\nhost all all all md5"

postgresql.primary.persistence.sizeπŸ“œ

Type: string

Default value
"20Gi"

postgresql.primary.persistence.mountPathπŸ“œ

Type: string

Default value
"/var/lib/postgresql"

podLabelsπŸ“œ

Type: object

Default value
{}

sonarqubeFolderπŸ“œ

Type: string

Default value
"/opt/sonarqube"

tests.imageπŸ“œ

Type: string

Default value
"bitnami/minideb-extras"

tests.enabledπŸ“œ

Type: bool

Default value
false

tests.resourcesπŸ“œ

Type: object

Default value
{}

serviceAccount.createπŸ“œ

Type: bool

Default value
true

serviceAccount.automountTokenπŸ“œ

Type: bool

Default value
false

serviceAccount.annotationsπŸ“œ

Type: object

Default value
{}

extraConfig.secretsπŸ“œ

Type: list

Default value
[]

extraConfig.configmapsπŸ“œ

Type: list

Default value
[]

terminationGracePeriodSecondsπŸ“œ

Type: int

Default value
60

curlContainerImageπŸ“œ

Type: string

Default value
"registry1.dso.mil/ironbank/redhat/ubi/ubi8:8.10"

domainπŸ“œ

Type: string

Default value
"dev.bigbang.mil"

istio.enabledπŸ“œ

Type: bool

Default value
false

istio.hardened.enabledπŸ“œ

Type: bool

Default value
false

istio.hardened.customAuthorizationPoliciesπŸ“œ

Type: list

Default value
[]

istio.hardened.outboundTrafficPolicyModeπŸ“œ

Type: string

Default value
"REGISTRY_ONLY"

istio.hardened.customServiceEntriesπŸ“œ

Type: list

Default value
[]

istio.hardened.tempo.enabledπŸ“œ

Type: bool

Default value
true

istio.hardened.tempo.namespaces[0]πŸ“œ

Type: string

Default value
"tempo"

istio.hardened.tempo.principals[0]πŸ“œ

Type: string

Default value
"cluster.local/ns/tempo/sa/tempo-tempo"

istio.hardened.monitoring.enabledπŸ“œ

Type: bool

Default value
true

istio.hardened.monitoring.namespaces[0]πŸ“œ

Type: string

Default value
"monitoring"

istio.hardened.monitoring.principals[0]πŸ“œ

Type: string

Default value
"cluster.local/ns/monitoring/sa/monitoring-grafana"

istio.hardened.monitoring.principals[1]πŸ“œ

Type: string

Default value
"cluster.local/ns/monitoring/sa/monitoring-monitoring-kube-alertmanager"

istio.hardened.monitoring.principals[2]πŸ“œ

Type: string

Default value
"cluster.local/ns/monitoring/sa/monitoring-monitoring-kube-operator"

istio.hardened.monitoring.principals[3]πŸ“œ

Type: string

Default value
"cluster.local/ns/monitoring/sa/monitoring-monitoring-kube-prometheus"

istio.hardened.monitoring.principals[4]πŸ“œ

Type: string

Default value
"cluster.local/ns/monitoring/sa/monitoring-monitoring-kube-state-metrics"

istio.hardened.monitoring.principals[5]πŸ“œ

Type: string

Default value
"cluster.local/ns/monitoring/sa/monitoring-monitoring-prometheus-node-exporter"

istio.mtlsπŸ“œ

Type: object

Default value
mode: STRICT

Description: Default argocd peer authentication

istio.mtls.modeπŸ“œ

Type: string

Default value
"STRICT"

Description: STRICT = Allow only mutual TLS traffic, PERMISSIVE = Allow both plain text and mutual TLS traffic

istio.sonarqube.enabledπŸ“œ

Type: bool

Default value
true

istio.sonarqube.annotationsπŸ“œ

Type: object

Default value
{}

istio.sonarqube.labelsπŸ“œ

Type: object

Default value
{}

istio.sonarqube.gateways[0]πŸ“œ

Type: string

Default value
"istio-system/main"

istio.sonarqube.hosts[0]πŸ“œ

Type: string

Default value
"sonarqube.{{ .Values.domain }}"

istio.injectionπŸ“œ

Type: string

Default value
"disabled"

monitoring.enabledπŸ“œ

Type: bool

Default value
false

networkPolicies.enabledπŸ“œ

Type: bool

Default value
false

networkPolicies.ingressLabels.appπŸ“œ

Type: string

Default value
"istio-ingressgateway"

networkPolicies.ingressLabels.istioπŸ“œ

Type: string

Default value
"ingressgateway"

networkPolicies.egressHttps.enabledπŸ“œ

Type: bool

Default value
true

networkPolicies.additionalPoliciesπŸ“œ

Type: list

Default value
[]

bbtests.enabledπŸ“œ

Type: bool

Default value
false

bbtests.cypress.artifactsπŸ“œ

Type: bool

Default value
true

bbtests.cypress.envs.cypress_urlπŸ“œ

Type: string

Default value
"http://sonarqube-sonarqube:9000"

bbtests.cypress.envs.cypress_url_setupπŸ“œ

Type: string

Default value
"http://sonarqube-sonarqube:9000/setup"

bbtests.cypress.envs.cypress_userπŸ“œ

Type: string

Default value
"admin"

bbtests.cypress.envs.cypress_passwordπŸ“œ

Type: string

Default value
"new_admin_password"

bbtests.cypress.envs.cypress_timeoutπŸ“œ

Type: string

Default value
"10000"