sonarqube values.yaml
π
deploymentTypeπ
Type: string
"StatefulSet"
replicaCountπ
Type: int
1
revisionHistoryLimitπ
Type: int
10
deploymentStrategyπ
Type: object
{}
OpenShift.enabledπ
Type: bool
false
OpenShift.createSCCπ
Type: bool
true
sso.enabledπ
Type: bool
false
sso.nameπ
Type: string
""
sso.applicationidπ
Type: string
""
sso.provideridπ
Type: string
""
sso.loginUrlπ
Type: string
""
sso.securedπ
Type: string
""
sso.serverBaseURLπ
Type: string
""
sso.idpmetadataurlπ
Type: string
""
sso.imageπ
Type: string
""
sso.resources.limits.cpuπ
Type: string
"100m"
sso.resources.limits.memoryπ
Type: string
"256Mi"
sso.resources.requests.cpuπ
Type: string
"100m"
sso.resources.requests.memoryπ
Type: string
"256Mi"
sso.containerSecurityContext.enabledπ
Type: bool
true
sso.containerSecurityContext.fsGroupπ
Type: int
26
sso.containerSecurityContext.runAsUserπ
Type: int
26
sso.containerSecurityContext.runAsGroupπ
Type: int
26
sso.containerSecurityContext.capabilities.drop[0]π
Type: string
"ALL"
editionπ
Type: string
"community"
image.repositoryπ
Type: string
"registry1.dso.mil/ironbank/big-bang/sonarqube-10"
image.tagπ
Type: string
"10.7.0-community"
image.pullPolicyπ
Type: string
"IfNotPresent"
image.pullSecrets[0].nameπ
Type: string
"private-registry"
securityContext.fsGroupπ
Type: int
1000
securityContext.runAsUserπ
Type: int
1000
securityContext.runAsGroupπ
Type: int
1000
containerSecurityContext.allowPrivilegeEscalationπ
Type: bool
false
containerSecurityContext.runAsNonRootπ
Type: bool
true
containerSecurityContext.runAsUserπ
Type: int
1000
containerSecurityContext.runAsGroupπ
Type: int
1000
containerSecurityContext.capabilities.drop[0]π
Type: string
"ALL"
elasticsearch.configureNodeπ
Type: bool
false
elasticsearch.bootstrapChecksπ
Type: bool
true
nginx.enabledπ
Type: bool
false
service.typeπ
Type: string
"ClusterIP"
service.externalPortπ
Type: int
9000
service.internalPortπ
Type: int
9000
service.labelsπ
Type: string
nil
service.annotationsπ
Type: object
{}
networkPolicy.enabledπ
Type: bool
false
networkPolicy.prometheusNamespaceπ
Type: string
"monitoring"
sonarWebContextπ
Type: string
""
ingress-nginx.enabledπ
Type: bool
false
ingress.enabledπ
Type: bool
false
ingress.hosts[0].nameπ
Type: string
"sonarqube.your-org.com"
ingress.annotationsπ
Type: object
{}
ingress.tlsπ
Type: list
[]
route.enabledπ
Type: bool
false
route.hostπ
Type: string
""
route.tls.terminationπ
Type: string
"edge"
route.annotationsπ
Type: object
{}
affinityπ
Type: object
{}
tolerationsπ
Type: list
[]
nodeSelectorπ
Type: object
{}
hostAliasesπ
Type: list
[]
readinessProbe.exec.command[0]π
Type: string
"sh"
readinessProbe.exec.command[1]π
Type: string
"-c"
readinessProbe.exec.command[2]π
Type: string
"#!/bin/bash\n# A Sonarqube container is considered ready if the status is UP, DB_MIGRATION_NEEDED or DB_MIGRATION_RUNNING\n# status about migration are added to prevent the node to be kill while sonarqube is upgrading the database.\nif curl -s http://localhost:{{ .Values.service.internalPort }}{{ .Values.readinessProbe.sonarWebContext | default (include \"sonarqube.webcontext\" .) }}api/system/status | grep -q -e '\"status\":\"UP\"' -e '\"status\":\"DB_MIGRATION_NEEDED\"' -e '\"status\":\"DB_MIGRATION_RUNNING\"'; then\n exit 0\nfi\nexit 1\n"
readinessProbe.initialDelaySecondsπ
Type: int
60
readinessProbe.periodSecondsπ
Type: int
30
readinessProbe.failureThresholdπ
Type: int
6
readinessProbe.timeoutSecondsπ
Type: int
90
livenessProbe.exec.command[0]π
Type: string
"sh"
livenessProbe.exec.command[1]π
Type: string
"-c"
livenessProbe.exec.command[2]π
Type: string
"curl --silent --fail --output /dev/null --max-time {{ .Values.livenessProbe.timeoutSeconds | default 1 }} --header \"X-Sonar-Passcode: $SONAR_WEB_SYSTEMPASSCODE\" \"http://localhost:{{ .Values.service.internalPort }}{{ .Values.livenessProbe.sonarWebContext | default (include \"sonarqube.webcontext\" .) }}api/system/liveness\"\n"
livenessProbe.initialDelaySecondsπ
Type: int
60
livenessProbe.periodSecondsπ
Type: int
30
livenessProbe.failureThresholdπ
Type: int
6
livenessProbe.timeoutSecondsπ
Type: int
1
startupProbe.initialDelaySecondsπ
Type: int
30
startupProbe.periodSecondsπ
Type: int
10
startupProbe.failureThresholdπ
Type: int
24
startupProbe.timeoutSecondsπ
Type: int
1
initContainers.imageπ
Type: string
"registry1.dso.mil/ironbank/big-bang/base:2.1.0"
initContainers.allowPrivilegeEscalationπ
Type: bool
false
initContainers.runAsNonRootπ
Type: bool
true
initContainers.runAsUserπ
Type: int
1000
initContainers.runAsGroupπ
Type: int
0
initContainers.seccompProfile.typeπ
Type: string
"RuntimeDefault"
initContainers.capabilities.drop[0]π
Type: string
"ALL"
initContainers.resources.limits.memoryπ
Type: string
"300Mi"
initContainers.resources.limits.cpuπ
Type: string
"50m"
initContainers.resources.requests.memoryπ
Type: string
"300Mi"
initContainers.resources.requests.cpuπ
Type: string
"50m"
initContainers.securityContext.capabilities.drop[0]π
Type: string
"ALL"
extraInitContainersπ
Type: object
{}
extraContainersπ
Type: list
[]
waitForDb.imageπ
Type: string
"registry1.dso.mil/ironbank/opensource/postgres/postgresql:16.2"
caCerts.enabledπ
Type: bool
false
initSysctl.enabledπ
Type: bool
false
initSysctl.vmMaxMapCountπ
Type: int
524288
initSysctl.fsFileMaxπ
Type: int
131072
initSysctl.nofileπ
Type: int
131072
initSysctl.nprocπ
Type: int
8192
initSysctl.securityContext.privilegedπ
Type: bool
true
initSysctl.securityContext.capabilities.drop[0]π
Type: string
"ALL"
initSysctl.securityContext.runAsUserπ
Type: int
0
initFs.enabledπ
Type: bool
false
initFs.securityContext.privilegedπ
Type: bool
false
initFs.securityContext.runAsNonRootπ
Type: bool
false
initFs.securityContext.runAsUserπ
Type: int
0
initFs.securityContext.runAsGroupπ
Type: int
0
initFs.securityContext.seccompProfile.typeπ
Type: string
"RuntimeDefault"
initFs.securityContext.capabilities.drop[0]π
Type: string
"ALL"
initFs.securityContext.capabilities.add[0]π
Type: string
"CHOWN"
prometheusExporter.enabledπ
Type: bool
false
prometheusExporter.versionπ
Type: string
"0.17.2"
prometheusExporter.webBeanPortπ
Type: int
8000
prometheusExporter.ceBeanPortπ
Type: int
8001
prometheusExporter.config.rules[0].patternπ
Type: string
".*"
prometheusExporter.imageπ
Type: string
"registry1.dso.mil/ironbank/opensource/prometheus/jmx-exporter:1.0.1"
prometheusMonitoring.podMonitor.enabledπ
Type: bool
false
prometheusMonitoring.podMonitor.intervalπ
Type: string
"30s"
plugins.installπ
Type: list
[]
plugins.imageπ
Type: string
"registry1.dso.mil/ironbank/big-bang/sonarqube-10:10.7.0-community"
plugins.noCheckCertificateπ
Type: bool
false
jvmOptsπ
Type: string
""
jvmCeOptsπ
Type: string
""
monitoringPasscodeπ
Type: string
"define_it"
env[0].nameπ
Type: string
"JDK_JAVA_OPTIONS"
env[0].valueπ
Type: string
"-Dcom.redhat.fips=false"
annotationsπ
Type: object
{}
resources.limits.cpuπ
Type: string
"1000m"
resources.limits.memoryπ
Type: string
"6144M"
resources.limits.ephemeral-storageπ
Type: string
"512000M"
resources.requests.cpuπ
Type: string
"500m"
resources.requests.memoryπ
Type: string
"2048M"
resources.requests.ephemeral-storageπ
Type: string
"1536M"
persistence.enabledπ
Type: bool
false
persistence.annotationsπ
Type: object
{}
persistence.storageClassπ
Type: string
nil
persistence.accessModeπ
Type: string
"ReadWriteOnce"
persistence.sizeπ
Type: string
"20Gi"
persistence.uidπ
Type: int
1000
persistence.guidπ
Type: int
0
persistence.volumesπ
Type: list
[]
persistence.mountsπ
Type: list
[]
emptyDirπ
Type: object
{}
sonarProperties.βsonar.forceAuthenticationβπ
Type: bool
true
sonarProperties.βsonar.ce.javaAdditionalOptsβπ
Type: string
"-Dcom.redhat.fips=false"
sonarProperties.βsonar.search.javaAdditionalOptsβπ
Type: string
"-Dcom.redhat.fips=false"
sonarProperties.βsonar.web.javaAdditionalOptsβπ
Type: string
"-Dcom.redhat.fips=false"
jdbcOverwrite.enableπ
Type: bool
false
jdbcOverwrite.jdbcUsernameπ
Type: string
"sonarUser"
jdbcOverwrite.jdbcPasswordπ
Type: string
"sonarPass"
postgresql.enabledπ
Type: bool
true
postgresql.service.portπ
Type: int
5432
postgresql.postgresqlUsernameπ
Type: string
"sonarUser"
postgresql.postgresqlPasswordπ
Type: string
"sonarPass"
postgresql.postgresqlDatabaseπ
Type: string
"sonarDB"
postgresql.auth.enablePostgresUserπ
Type: bool
false
postgresql.auth.usernameπ
Type: string
"sonarUser"
postgresql.auth.passwordπ
Type: string
"sonarPass"
postgresql.auth.databaseπ
Type: string
"sonarDB"
postgresql.resources.requests.cpuπ
Type: string
"100m"
postgresql.resources.requests.memoryπ
Type: string
"200Mi"
postgresql.image.registryπ
Type: string
"registry1.dso.mil"
postgresql.image.repositoryπ
Type: string
"ironbank/opensource/postgres/postgresql"
postgresql.image.tagπ
Type: string
"16.2"
postgresql.image.pullSecrets[0]π
Type: string
"private-registry"
postgresql.postgresqlDataDirπ
Type: string
"/var/lib/postgresql/data"
postgresql.primary.extraEnvVars[0].nameπ
Type: string
"POSTGRES_DB"
postgresql.primary.extraEnvVars[0].valueπ
Type: string
"sonarDB"
postgresql.primary.extraVolumeMounts[0].nameπ
Type: string
"runtime"
postgresql.primary.extraVolumeMounts[0].mountPathπ
Type: string
"/var/run/postgresql"
postgresql.primary.extraVolumes[0].nameπ
Type: string
"runtime"
postgresql.primary.extraVolumes[0].emptyDirπ
Type: object
{}
postgresql.primary.configurationπ
Type: string
"listen_addresses = '*'\n"
postgresql.primary.pgHbaConfigurationπ
Type: string
"local all all md5\nhost all all all md5"
postgresql.primary.persistence.sizeπ
Type: string
"20Gi"
postgresql.primary.persistence.mountPathπ
Type: string
"/var/lib/postgresql"
podLabelsπ
Type: object
{}
sonarqubeFolderπ
Type: string
"/opt/sonarqube"
tests.imageπ
Type: string
"bitnami/minideb-extras"
tests.enabledπ
Type: bool
false
tests.resourcesπ
Type: object
{}
serviceAccount.createπ
Type: bool
true
serviceAccount.automountTokenπ
Type: bool
false
serviceAccount.annotationsπ
Type: object
{}
extraConfig.secretsπ
Type: list
[]
extraConfig.configmapsπ
Type: list
[]
terminationGracePeriodSecondsπ
Type: int
60
curlContainerImageπ
Type: string
"registry1.dso.mil/ironbank/redhat/ubi/ubi8:8.10"
domainπ
Type: string
"dev.bigbang.mil"
istio.enabledπ
Type: bool
false
istio.hardened.enabledπ
Type: bool
false
istio.hardened.customAuthorizationPoliciesπ
Type: list
[]
istio.hardened.outboundTrafficPolicyModeπ
Type: string
"REGISTRY_ONLY"
istio.hardened.customServiceEntriesπ
Type: list
[]
istio.hardened.tempo.enabledπ
Type: bool
true
istio.hardened.tempo.namespaces[0]π
Type: string
"tempo"
istio.hardened.tempo.principals[0]π
Type: string
"cluster.local/ns/tempo/sa/tempo-tempo"
istio.hardened.monitoring.enabledπ
Type: bool
true
istio.hardened.monitoring.namespaces[0]π
Type: string
"monitoring"
istio.hardened.monitoring.principals[0]π
Type: string
"cluster.local/ns/monitoring/sa/monitoring-grafana"
istio.hardened.monitoring.principals[1]π
Type: string
"cluster.local/ns/monitoring/sa/monitoring-monitoring-kube-alertmanager"
istio.hardened.monitoring.principals[2]π
Type: string
"cluster.local/ns/monitoring/sa/monitoring-monitoring-kube-operator"
istio.hardened.monitoring.principals[3]π
Type: string
"cluster.local/ns/monitoring/sa/monitoring-monitoring-kube-prometheus"
istio.hardened.monitoring.principals[4]π
Type: string
"cluster.local/ns/monitoring/sa/monitoring-monitoring-kube-state-metrics"
istio.hardened.monitoring.principals[5]π
Type: string
"cluster.local/ns/monitoring/sa/monitoring-monitoring-prometheus-node-exporter"
istio.mtlsπ
Type: object
mode: STRICT
Description: Default argocd peer authentication
istio.mtls.modeπ
Type: string
"STRICT"
Description: STRICT = Allow only mutual TLS traffic, PERMISSIVE = Allow both plain text and mutual TLS traffic
istio.sonarqube.enabledπ
Type: bool
true
istio.sonarqube.annotationsπ
Type: object
{}
istio.sonarqube.labelsπ
Type: object
{}
istio.sonarqube.gateways[0]π
Type: string
"istio-system/main"
istio.sonarqube.hosts[0]π
Type: string
"sonarqube.{{ .Values.domain }}"
istio.injectionπ
Type: string
"disabled"
monitoring.enabledπ
Type: bool
false
networkPolicies.enabledπ
Type: bool
false
networkPolicies.ingressLabels.appπ
Type: string
"istio-ingressgateway"
networkPolicies.ingressLabels.istioπ
Type: string
"ingressgateway"
networkPolicies.egressHttps.enabledπ
Type: bool
true
networkPolicies.additionalPoliciesπ
Type: list
[]
bbtests.enabledπ
Type: bool
false
bbtests.cypress.artifactsπ
Type: bool
true
bbtests.cypress.envs.cypress_urlπ
Type: string
"http://sonarqube-sonarqube:9000"
bbtests.cypress.envs.cypress_url_setupπ
Type: string
"http://sonarqube-sonarqube:9000/setup"
bbtests.cypress.envs.cypress_userπ
Type: string
"admin"
bbtests.cypress.envs.cypress_passwordπ
Type: string
"new_admin_password"
bbtests.cypress.envs.cypress_timeoutπ
Type: string
"10000"