argocd values.yamlπ
awsCredentials.awsAccessKeyIdπ
Type: string
""
awsCredentials.awsSecretAccessKeyπ
Type: string
""
awsCredentials.awsDefaultRegionπ
Type: string
"us-gov-west-1"
domainπ
Type: string
"dev.bigbang.mil"
istio.enabledπ
Type: bool
false
Description: Toggle BigBang istio integration
istio.hardened.enabledπ
Type: bool
false
istio.hardened.outboundTrafficPolicyModeπ
Type: string
"REGISTRY_ONLY"
istio.hardened.customServiceEntriesπ
Type: list
[]
istio.hardened.customAuthorizationPoliciesπ
Type: list
[]
istio.hardened.monitoring.enabledπ
Type: bool
true
istio.hardened.monitoring.namespaces[0]π
Type: string
"monitoring"
istio.hardened.monitoring.principals[0]π
Type: string
"cluster.local/ns/monitoring/sa/monitoring-grafana"
istio.hardened.monitoring.principals[1]π
Type: string
"cluster.local/ns/monitoring/sa/monitoring-monitoring-kube-alertmanager"
istio.hardened.monitoring.principals[2]π
Type: string
"cluster.local/ns/monitoring/sa/monitoring-monitoring-kube-operator"
istio.hardened.monitoring.principals[3]π
Type: string
"cluster.local/ns/monitoring/sa/monitoring-monitoring-kube-prometheus"
istio.hardened.monitoring.principals[4]π
Type: string
"cluster.local/ns/monitoring/sa/monitoring-monitoring-kube-state-metrics"
istio.hardened.monitoring.principals[5]π
Type: string
"cluster.local/ns/monitoring/sa/monitoring-monitoring-prometheus-node-exporter"
istio.hardened.argocd.enabledπ
Type: bool
true
istio.hardened.argocd.namespaces[0]π
Type: string
"argocd"
istio.hardened.argocd.principals[0]π
Type: string
"cluster.local/ns/argocd/sa/argocd-application-controller"
istio.hardened.argocd.principals[1]π
Type: string
"cluster.local/ns/argocd/sa/argocd-applicationset-controller"
istio.hardened.argocd.principals[2]π
Type: string
"cluster.local/ns/argocd/sa/argocd-argocd-redis-bb"
istio.hardened.argocd.principals[3]π
Type: string
"cluster.local/ns/argocd/sa/argocd-argocd-repo-server"
istio.hardened.argocd.principals[4]π
Type: string
"cluster.local/ns/argocd/sa/argocd-dex-server"
istio.hardened.argocd.principals[5]π
Type: string
"cluster.local/ns/argocd/sa/argocd-notifications-controller"
istio.hardened.argocd.principals[6]π
Type: string
"cluster.local/ns/argocd/sa/argocd-server"
istio.hardened.argocd.principals[7]π
Type: string
"cluster.local/ns/argocd/sa/upgrade-job-svc-account"
istio.hardened.argocd.principals[8]π
Type: string
"cluster.local/ns/argocd/sa/argocd-argocd-redis-bb-metrics"
istio.injectionπ
Type: string
"disabled"
Description: Toggle BigBang istio injection
istio.mtlsπ
Type: object
mode: STRICT
Description: Default argocd peer authentication
istio.mtls.modeπ
Type: string
"STRICT"
Description: STRICT = Allow only mutual TLS traffic, PERMISSIVE = Allow both plain text and mutual TLS traffic
istio.argocd.enabledπ
Type: bool
true
Description: Toggle Istio VirtualService creation
istio.argocd.annotationsπ
Type: object
{}
Description: Set Annotations for VirtualService
istio.argocd.labelsπ
Type: object
{}
Description: Set Labels for VirtualService
istio.argocd.gatewaysπ
Type: list
- istio-system/main
Description: Set Gateway for VirtualService
istio.argocd.hostsπ
Type: list
- argocd.{{ .Values.domain }}
Description: Set Hosts for VirtualService
monitoring.enabledπ
Type: bool
false
Description: Toggle BigBang monitoring integration
networkPolicies.enabledπ
Type: bool
false
Description: Toggle BigBang networkPolicies integration
networkPolicies.ingressLabels.appπ
Type: string
"istio-ingressgateway"
networkPolicies.ingressLabels.istioπ
Type: string
"ingressgateway"
networkPolicies.controlPlaneCidrπ
Type: string
"0.0.0.0/0"
Description: Control Plane CIDR, defaults to 0.0.0.0/0, use kubectl get endpoints -n default kubernetes to get the CIDR range needed for your cluster Must be an IP CIDR range (x.x.x.x/x - ideally with /32 for the specific IP of a single endpoint, broader range for multiple masters/endpoints) Used by package NetworkPolicies to allow Kube API access
networkPolicies.additionalPoliciesπ
Type: list
[]
upgradeJob.enabledπ
Type: bool
true
upgradeJob.image.repositoryπ
Type: string
"registry1.dso.mil/ironbank/big-bang/base"
upgradeJob.image.tagπ
Type: string
"2.1.0"
upgradeJob.image.imagePullPolicyπ
Type: string
"IfNotPresent"
bbtests.enabledπ
Type: bool
false
bbtests.cypress.artifactsπ
Type: bool
true
bbtests.cypress.envs.cypress_urlπ
Type: string
"http://argocd-server"
bbtests.cypress.envs.cypress_userπ
Type: string
"admin"
bbtests.cypress.envs.cypress_passwordπ
Type: string
"Password123"
bbtests.cypress.envs.cypress_timeoutπ
Type: string
"120000"
bbtests.cypress.resources.requests.cpuπ
Type: int
4
bbtests.cypress.resources.requests.memoryπ
Type: string
"4Gi"
bbtests.cypress.resources.limits.cpuπ
Type: int
4
bbtests.cypress.resources.limits.memoryπ
Type: string
"8Gi"
bbtests.scripts.imageπ
Type: string
"registry1.dso.mil/bigbang-ci/devops-tester:1.1.2"
bbtests.scripts.envs.ARGOCD_SERVERπ
Type: string
"http://argocd-server"
bbtests.scripts.envs.ARGOCD_USERπ
Type: string
"admin"
bbtests.scripts.envs.ARGOCD_PASSWORDπ
Type: string
"Password123"
redis-bbπ
Type: object
auth:
enabled: false
commonConfiguration: 'maxmemory 200mb
save ""'
enabled: true
image:
pullSecrets:
- private-registry
istio:
redis:
enabled: false
master:
containerSecurityContext:
capabilities:
drop:
- ALL
enabled: true
runAsGroup: 1001
runAsNonRoot: true
runAsUser: 1001
resources:
limits:
cpu: 100m
memory: 256Mi
requests:
cpu: 100m
memory: 256Mi
metrics:
containerSecurityContext:
enabled: true
runAsGroup: 1001
runAsUser: 1001
enabled: true
labels:
app.kubernetes.io/name: argocd-redis-ha-haproxy
metrics: null
replica:
containerSecurityContext:
capabilities:
drop:
- ALL
enabled: true
runAsGroup: 1001
runAsNonRoot: true
runAsUser: 1001
readinessProbe:
failureThreshold: 3
initialDelaySeconds: 5
periodSeconds: 10
successThreshold: 1
tcpSocket:
port: 6379
timeoutSeconds: 30
resources:
limits:
cpu: 100m
memory: 256Mi
requests:
cpu: 100m
memory: 256Mi
Description: BigBang HA Redis Passthrough
redis-bb.metrics.labelsπ
Type: object
app.kubernetes.io/name: argocd-redis-ha-haproxy
Description: Custom labels for the haproxy pod. This is relevant for Argo CD CLI.
redis-bb.metrics.containerSecurityContextπ
Type: object
enabled: true
runAsGroup: 1001
runAsUser: 1001
Description: HAProxy enable prometheus metric scraping
global.domainπ
Type: string
"argocd.example.com"
Description: Default domain used by all components # Used for ingresses, certificates, SSO, notifications, etc.
global.runtimeClassNameπ
Type: string
""
Description: Runtime class name for all components
global.additionalLabelsπ
Type: object
{}
Description: Common labels for the all resources
global.revisionHistoryLimitπ
Type: int
3
Description: Number of old deployment ReplicaSets to retain. The rest will be garbage collected.
global.image.repositoryπ
Type: string
"registry1.dso.mil/ironbank/big-bang/argocd"
Description: If defined, a repository applied to all Argo CD deployments
global.image.tagπ
Type: string
"v3.0.6"
Description: Overrides the global Argo CD image tag whose default is the chart appVersion
global.image.imagePullPolicyπ
Type: string
"IfNotPresent"
Description: If defined, a imagePullPolicy applied to all Argo CD deployments
global.imagePullSecretsπ
Type: list
- name: private-registry
Description: Secrets with credentials to pull images from a private registry
global.logging.formatπ
Type: string
"text"
Description: Set the global logging format. Either: text or json
global.logging.levelπ
Type: string
"info"
Description: Set the global logging level. One of: debug, info, warn or error
global.statefulsetAnnotationsπ
Type: object
{}
Description: Annotations for the all deployed Statefulsets
global.deploymentAnnotationsπ
Type: object
{}
Description: Annotations for the all deployed Deployments
global.podAnnotationsπ
Type: object
{}
Description: Annotations for the all deployed pods
global.podLabelsπ
Type: object
{}
Description: Labels for the all deployed pods
global.addPrometheusAnnotationsπ
Type: bool
false
Description: Add Prometheus scrape annotations to all metrics services. This can be used as an alternative to the ServiceMonitors.
global.hostAliasesπ
Type: list
[]
Description: Mapping between IP and hostnames that will be injected as entries in the pod’s hosts files
global.dualStack.ipFamilyPolicyπ
Type: string
""
Description: IP family policy to configure dual-stack see Configure dual-stack
global.dualStack.ipFamiliesπ
Type: list
[]
Description: IP families that should be supported and the order in which they should be applied to ClusterIP as well. Can be IPv4 and/or IPv6.
global.networkPolicy.createπ
Type: bool
false
Description: Create NetworkPolicy objects for all components
global.networkPolicy.defaultDenyIngressπ
Type: bool
false
Description: Default deny all ingress traffic
global.priorityClassNameπ
Type: string
""
Description: Default priority class for all components
global.nodeSelectorπ
Type: object
kubernetes.io/os: linux
Description: Default node selector for all components
global.tolerationsπ
Type: list
[]
Description: Default tolerations for all components
global.affinity.podAntiAffinityπ
Type: string
"soft"
Description: Default pod anti-affinity rules. Either: none, soft or hard
global.affinity.nodeAffinity.typeπ
Type: string
"hard"
Description: Default node affinity rules. Either: none, soft or hard
global.affinity.nodeAffinity.matchExpressionsπ
Type: list
[]
Description: Default match expressions for node affinity
global.topologySpreadConstraintsπ
Type: list
[]
Description: Default [TopologySpreadConstraints] rules for all components # Ref: https://kubernetes.io/docs/concepts/scheduling-eviction/topology-spread-constraints/ # If labelSelector is left out, it will default to the labelSelector of the component
global.deploymentStrategyπ
Type: object
{}
Description: Deployment strategy for the all deployed Deployments
global.envπ
Type: list
[]
Description: Environment variables to pass to all deployed Deployments
global.certificateAnnotationsπ
Type: object
{}
Description: Annotations for the all deployed Certificates
upstream.nameOverrideπ
Type: string
"argocd"
Description: Provide a name in place of argocd
upstream.fullnameOverrideπ
Type: string
""
Description: String to fully override "argo-cd.fullname"
upstream.namespaceOverrideπ
Type: string
.Release.Namespace
Description: Override the namespace
upstream.kubeVersionOverrideπ
Type: string
""
Description: Override the Kubernetes version, which is used to evaluate certain manifests
upstream.apiVersionOverridesπ
Type: object
{}
upstream.createAggregateRolesπ
Type: bool
false
Description: Create aggregated roles that extend existing cluster roles to interact with argo-cd resources # Ref: https://kubernetes.io/docs/reference/access-authn-authz/rbac/#aggregated-clusterroles
upstream.createClusterRolesπ
Type: bool
true
Description: Create cluster roles for cluster-wide installation. # Used when you manage applications in the same cluster where Argo CD runs
upstream.openshift.enabledπ
Type: bool
false
Description: enables using arbitrary uid for argo repo server
upstream.crds.installπ
Type: bool
true
Description: Install and upgrade CRDs
upstream.crds.keepπ
Type: bool
true
Description: Keep CRDs on chart uninstall
upstream.crds.annotationsπ
Type: object
{}
Description: Annotations to be added to all CRDs
upstream.crds.additionalLabelsπ
Type: object
{}
Description: Addtional labels to be added to all CRDs
upstream.configs.cm.createπ
Type: bool
true
Description: Create the argocd-cm configmap for [declarative setup]
upstream.configs.cm.annotationsπ
Type: object
{}
Description: Annotations to be added to argocd-cm configmap
upstream.configs.cm.”application.instanceLabelKey”π
Type: string
"argocd.argoproj.io/instance"
Description: The name of tracking label used by Argo CD for resource pruning
upstream.configs.cm.”application.sync.impersonation.enabled”π
Type: bool
false
Description: Enable control of the service account used for the sync operation (alpha) # Ref: https://argo-cd.readthedocs.io/en/stable/operator-manual/app-sync-using-impersonation/
upstream.configs.cm.”server.rbac.log.enforce.enable”π
Type: bool
false
Description: Enable logs RBAC enforcement # Ref: https://argo-cd.readthedocs.io/en/latest/operator-manual/upgrading/2.3-2.4/#enable-logs-rbac-enforcement
upstream.configs.cm.”exec.enabled”π
Type: bool
false
Description: Enable exec feature in Argo UI # Ref: https://argo-cd.readthedocs.io/en/latest/operator-manual/rbac/#exec-resource
upstream.configs.cm.”admin.enabled”π
Type: bool
true
Description: Enable local admin user # Ref: https://argo-cd.readthedocs.io/en/latest/faq/#how-to-disable-admin-user
upstream.configs.cm.”timeout.reconciliation”π
Type: string
"180s"
Description: Timeout to discover if a new manifests version got published to the repository
upstream.configs.cm.”timeout.hard.reconciliation”π
Type: string
"0s"
Description: Timeout to refresh application data as well as target manifests cache
upstream.configs.cm.”statusbadge.enabled”π
Type: bool
false
Description: Enable Status Badge # Ref: https://argo-cd.readthedocs.io/en/stable/user-guide/status-badge/
upstream.configs.params.createπ
Type: bool
true
Description: Create the argocd-cmd-params-cm configmap If false, it is expected the configmap will be created by something else.
upstream.configs.params.annotationsπ
Type: object
{}
Description: Annotations to be added to the argocd-cmd-params-cm ConfigMap
upstream.configs.params.”otlp.address”π
Type: string
""
Description: Open-Telemetry collector address: (e.g. “otel-collector:4317”)
upstream.configs.params.”controller.status.processors”π
Type: int
20
Description: Number of application status processors
upstream.configs.params.”controller.operation.processors”π
Type: int
10
Description: Number of application operation processors
upstream.configs.params.”controller.self.heal.timeout.seconds”π
Type: int
5
Description: Specifies timeout between application self heal attempts
upstream.configs.params.”controller.repo.server.timeout.seconds”π
Type: int
60
Description: Repo server RPC call timeout seconds.
upstream.configs.params.”controller.sync.timeout.seconds”π
Type: int
0
Description: Specifies the timeout after which a sync would be terminated. 0 means no timeout
upstream.configs.params.”server.insecure”π
Type: bool
true
Description: Run server without TLS # NOTE: This value should be set when you generate params by other means as it changes ports used by ingress template.
upstream.configs.params.”server.basehref”π
Type: string
"/"
Description: Value for base href in index.html. Used if Argo CD is running behind reverse proxy under subpath different from /
upstream.configs.params.”server.rootpath”π
Type: string
""
Description: Used if Argo CD is running behind reverse proxy under subpath different from /
upstream.configs.params.”server.staticassets”π
Type: string
"/shared/app"
Description: Directory path that contains additional static assets
upstream.configs.params.”server.disable.auth”π
Type: bool
false
Description: Disable Argo CD RBAC for user authentication
upstream.configs.params.”server.enable.gzip”π
Type: bool
true
Description: Enable GZIP compression
upstream.configs.params.”server.enable.proxy.extension”π
Type: bool
false
Description: Enable proxy extension feature. (proxy extension is in Alpha phase)
upstream.configs.params.”server.x.frame.options”π
Type: string
"sameorigin"
Description: Set X-Frame-Options header in HTTP responses to value. To disable, set to “”.
upstream.configs.params.”reposerver.parallelism.limit”π
Type: int
0
Description: Limit on number of concurrent manifests generate requests. Any value less the 1 means no limit.
upstream.configs.params.”applicationsetcontroller.policy”π
Type: string
"sync"
Description: Modify how application is synced between the generator and the cluster. One of: sync, create-only, create-update, create-delete
upstream.configs.params.”applicationsetcontroller.enable.progressive.syncs”π
Type: bool
false
Description: Enables use of the Progressive Syncs capability
upstream.configs.params.”application.namespaces”π
Type: string
""
Description: Enables [Applications in any namespace] # List of additional namespaces where applications may be created in and reconciled from. # The namespace where Argo CD is installed to will always be allowed. # Set comma-separated list. (e.g. app-team-one, app-team-two)
upstream.configs.params.”controller.ignore.normalizer.jq.timeout”π
Type: string
"1s"
Description: JQ Path expression timeout # By default, the evaluation of a JQPathExpression is limited to one second. # If you encounter a “JQ patch execution timed out” error message due to a complex JQPathExpression # that requires more time to evaluate, you can extend the timeout period.
upstream.configs.rbac.createπ
Type: bool
true
Description: Create the argocd-rbac-cm configmap with ([Argo CD RBAC policy]) definitions. If false, it is expected the configmap will be created by something else. Argo CD will not work if there is no configmap created with the name above.
upstream.configs.rbac.annotationsπ
Type: object
{}
Description: Annotations to be added to argocd-rbac-cm configmap
upstream.configs.rbac.”policy.default”π
Type: string
""
Description: The name of the default role which Argo CD will falls back to, when authorizing API requests (optional). If omitted or empty, users may be still be able to login, but will see no apps, projects, etc…
upstream.configs.rbac.scopesπ
Type: string
"[groups]"
Description: OIDC scopes to examine during rbac enforcement (in addition to sub scope). The scope value can be a string, or a list of strings.
upstream.configs.rbac.”policy.matchMode”π
Type: string
"glob"
Description: Matcher function for Casbin, glob for glob matcher and regex for regex matcher.
upstream.configs.gpg.annotationsπ
Type: object
{}
Description: Annotations to be added to argocd-gpg-keys-cm configmap
upstream.configs.ssh.createπ
Type: bool
true
Description: Specifies if the argocd-ssh-known-hosts-cm configmap should be created by Helm.
upstream.configs.ssh.annotationsπ
Type: object
{}
Description: Annotations to be added to argocd-ssh-known-hosts-cm configmap
upstream.configs.ssh.extraHostsπ
Type: string
""
Description: Additional known hosts for private repositories
upstream.configs.tls.annotationsπ
Type: object
{}
Description: Annotations to be added to argocd-tls-certs-cm configmap
upstream.configs.tls.createπ
Type: bool
true
Description: Specifies if the argocd-tls-certs-cm configmap should be created by Helm.
upstream.configs.cmp.createπ
Type: bool
false
Description: Create the argocd-cmp-cm configmap
upstream.configs.cmp.annotationsπ
Type: object
{}
Description: Annotations to be added to argocd-cmp-cm configmap
upstream.configs.cmp.pluginsπ
Type: object
{}
Description: Plugin yaml files to be added to argocd-cmp-cm
upstream.configs.credentialTemplatesπ
Type: object
{}
Description: Repository credentials to be used as Templates for other repos # Creates a secret for each key/value specified below to create repository credentials
upstream.configs.credentialTemplatesAnnotationsπ
Type: object
{}
Description: Annotations to be added to configs.credentialTemplates Secret
upstream.configs.repositoriesπ
Type: object
{}
Description: Repositories list to be used by applications # Creates a secret for each key/value specified below to create repositories # Note: the last example in the list would use a repository credential template, configured under “configs.credentialTemplates”.
upstream.configs.repositoriesAnnotationsπ
Type: object
{}
Description: Annotations to be added to configs.repositories Secret
upstream.configs.secret.createSecretπ
Type: bool
true
Description: Create the argocd-secret
upstream.configs.secret.labelsπ
Type: object
{}
Description: Labels to be added to argocd-secret
upstream.configs.secret.annotationsπ
Type: object
{}
Description: Annotations to be added to argocd-secret
upstream.configs.secret.githubSecretπ
Type: string
""
Description: Shared secret for authenticating GitHub webhook events
upstream.configs.secret.gitlabSecretπ
Type: string
""
Description: Shared secret for authenticating GitLab webhook events
upstream.configs.secret.bitbucketServerSecretπ
Type: string
""
Description: Shared secret for authenticating BitbucketServer webhook events
upstream.configs.secret.bitbucketUUIDπ
Type: string
""
Description: UUID for authenticating Bitbucket webhook events
upstream.configs.secret.gogsSecretπ
Type: string
""
Description: Shared secret for authenticating Gogs webhook events
upstream.configs.secret.azureDevops.usernameπ
Type: string
""
Description: Shared secret username for authenticating Azure DevOps webhook events
upstream.configs.secret.azureDevops.passwordπ
Type: string
""
Description: Shared secret password for authenticating Azure DevOps webhook events
upstream.configs.secret.extraπ
Type: object
{}
Description: add additional secrets to be added to argocd-secret # Custom secrets. Useful for injecting SSO secrets into environment variables. # Ref: https://argo-cd.readthedocs.io/en/stable/operator-manual/user-management/#sensitive-data-and-sso-client-secrets # Note that all values must be non-empty.
upstream.extraObjectsπ
Type: list
[]
Description: Array of extra K8s manifests to deploy # Note: Supports use of custom Helm templates
upstream.controller.nameπ
Type: string
"application-controller"
Description: Application controller name string
upstream.controller.replicasπ
Type: int
1
Description: The number of application controller pods to run. Additional replicas will cause sharding of managed clusters across number of replicas. # With dynamic cluster distribution turned on, sharding of the clusters will gracefully # rebalance if the number of replica’s changes or one becomes unhealthy. (alpha)
upstream.controller.dynamicClusterDistributionπ
Type: bool
false
Description: Enable dynamic cluster distribution (alpha) Ref: https://argo-cd.readthedocs.io/en/stable/operator-manual/dynamic-cluster-distribution # This is done using a deployment instead of a statefulSet # When replicas are added or removed, the sharding algorithm is re-run to ensure that the # clusters are distributed according to the algorithm. If the algorithm is well-balanced, # like round-robin, then the shards will be well-balanced.
upstream.controller.heartbeatTimeπ
Type: int
10
Description: Application controller heartbeat time Ref: https://argo-cd.readthedocs.io/en/stable/operator-manual/dynamic-cluster-distribution/#working-of-dynamic-distribution
upstream.controller.revisionHistoryLimitπ
Type: int
5
Description: Maximum number of controller revisions that will be maintained in StatefulSet history
upstream.controller.pdb.enabledπ
Type: bool
false
Description: Deploy a [PodDisruptionBudget] for the application controller
upstream.controller.pdb.labelsπ
Type: object
{}
Description: Labels to be added to application controller pdb
upstream.controller.pdb.annotationsπ
Type: object
{}
Description: Annotations to be added to application controller pdb
upstream.controller.pdb.maxUnavailableπ
Type: string
""
Description: Number of pods that are unavailable after eviction as number or percentage (eg.: 50%). # Has higher precedence over controller.pdb.minAvailable
upstream.controller.extraArgsπ
Type: list
[]
Description: Additional command line arguments to pass to application controller
upstream.controller.envπ
Type: list
[]
Description: Environment variables to pass to application controller
upstream.controller.extraContainersπ
Type: list
[]
Description: Additional containers to be added to the application controller pod # Note: Supports use of custom Helm templates
upstream.controller.initContainersπ
Type: list
[]
Description: Init containers to add to the application controller pod # If your target Kubernetes cluster(s) require a custom credential (exec) plugin # you could use this (and the same in the server pod) to provide such executable # Ref: https://kubernetes.io/docs/reference/access-authn-authz/authentication/#client-go-credential-plugins # Note: Supports use of custom Helm templates
upstream.controller.volumeMountsπ
Type: list
[]
Description: Additional volumeMounts to the application controller main container
upstream.controller.volumesπ
Type: list
[]
Description: Additional volumes to the application controller pod
upstream.controller.statefulsetAnnotationsπ
Type: object
{}
Description: Annotations for the application controller StatefulSet
upstream.controller.deploymentAnnotationsπ
Type: object
{}
Description: Annotations for the application controller Deployment
upstream.controller.podAnnotationsπ
Type: object
{}
Description: Annotations to be added to application controller pods
upstream.controller.podLabelsπ
Type: object
{}
Description: Labels to be added to application controller pods
upstream.controller.resourcesπ
Type: object
limits:
cpu: 500m
memory: 3Gi
requests:
cpu: 500m
memory: 3Gi
Description: Resource limits and requests for the application controller pods
upstream.controller.containerPorts.metricsπ
Type: int
8082
Description: Metrics container port
upstream.controller.hostNetworkπ
Type: bool
false
Description: Host Network for application controller pods
upstream.controller.dnsConfigπ
Type: object
{}
Description: [DNS configuration]
upstream.controller.dnsPolicyπ
Type: string
"ClusterFirst"
Description: Alternative DNS policy for application controller pods
upstream.controller.readinessProbe.failureThresholdπ
Type: int
3
Description: Minimum consecutive failures for the [probe] to be considered failed after having succeeded
upstream.controller.readinessProbe.initialDelaySecondsπ
Type: int
10
Description: Number of seconds after the container has started before [probe] is initiated
upstream.controller.readinessProbe.periodSecondsπ
Type: int
10
Description: How often (in seconds) to perform the [probe]
upstream.controller.readinessProbe.successThresholdπ
Type: int
1
Description: Minimum consecutive successes for the [probe] to be considered successful after having failed
upstream.controller.readinessProbe.timeoutSecondsπ
Type: int
30
Description: Number of seconds after which the [probe] times out
upstream.controller.terminationGracePeriodSecondsπ
Type: int
30
Description: terminationGracePeriodSeconds for container lifecycle hook
upstream.controller.automountServiceAccountTokenπ
Type: bool
true
Description: Automount API credentials for the Service Account into the pod.
upstream.controller.serviceAccount.createπ
Type: bool
true
Description: Create a service account for the application controller
upstream.controller.serviceAccount.nameπ
Type: string
"argocd-application-controller"
Description: Service account name
upstream.controller.serviceAccount.annotationsπ
Type: object
{}
Description: Annotations applied to created service account
upstream.controller.serviceAccount.labelsπ
Type: object
{}
Description: Labels applied to created service account
upstream.controller.serviceAccount.automountServiceAccountTokenπ
Type: bool
true
Description: Automount API credentials for the Service Account
upstream.controller.metrics.enabledπ
Type: bool
false
Description: Deploy metrics service
upstream.controller.metrics.scrapeTimeoutπ
Type: string
""
Description: Prometheus ServiceMonitor scrapeTimeout. If empty, Prometheus uses the global scrape timeout unless it is less than the target’s scrape interval value in which the latter is used.
upstream.controller.metrics.applicationLabels.enabledπ
Type: bool
false
Description: Enables additional labels in argocd_app_labels metric
upstream.controller.metrics.applicationLabels.labelsπ
Type: list
[]
Description: Additional labels
upstream.controller.metrics.service.typeπ
Type: string
"ClusterIP"
Description: Metrics service type
upstream.controller.metrics.service.clusterIPπ
Type: string
""
Description: Metrics service clusterIP. None makes a “headless service” (no virtual IP)
upstream.controller.metrics.service.annotationsπ
Type: object
{}
Description: Metrics service annotations
upstream.controller.metrics.service.labelsπ
Type: object
{}
Description: Metrics service labels
upstream.controller.metrics.service.servicePortπ
Type: int
8082
Description: Metrics service port
upstream.controller.metrics.service.portNameπ
Type: string
"http-metrics"
Description: Metrics service port name
upstream.controller.metrics.serviceMonitor.enabledπ
Type: bool
false
Description: Enable a prometheus ServiceMonitor
upstream.controller.metrics.serviceMonitor.intervalπ
Type: string
"30s"
Description: Prometheus ServiceMonitor interval
upstream.controller.metrics.serviceMonitor.honorLabelsπ
Type: bool
false
Description: When true, honorLabels preserves the metricβs labels when they collide with the targetβs labels.
upstream.controller.metrics.serviceMonitor.relabelingsπ
Type: list
[]
Description: Prometheus [RelabelConfigs] to apply to samples before scraping
upstream.controller.metrics.serviceMonitor.metricRelabelingsπ
Type: list
[]
Description: Prometheus [MetricRelabelConfigs] to apply to samples before ingestion
upstream.controller.metrics.serviceMonitor.selectorπ
Type: object
{}
Description: Prometheus ServiceMonitor selector
upstream.controller.metrics.serviceMonitor.schemeπ
Type: string
""
Description: Prometheus ServiceMonitor scheme
upstream.controller.metrics.serviceMonitor.tlsConfigπ
Type: object
{}
Description: Prometheus ServiceMonitor tlsConfig
upstream.controller.metrics.serviceMonitor.namespaceπ
Type: string
""
Description: Prometheus ServiceMonitor namespace
upstream.controller.metrics.serviceMonitor.additionalLabelsπ
Type: object
{}
Description: Prometheus ServiceMonitor labels
upstream.controller.metrics.serviceMonitor.annotationsπ
Type: object
{}
Description: Prometheus ServiceMonitor annotations
upstream.controller.metrics.rules.enabledπ
Type: bool
false
Description: Deploy a PrometheusRule for the application controller
upstream.controller.metrics.rules.namespaceπ
Type: string
""
Description: PrometheusRule namespace
upstream.controller.metrics.rules.selectorπ
Type: object
{}
Description: PrometheusRule selector
upstream.controller.metrics.rules.additionalLabelsπ
Type: object
{}
Description: PrometheusRule labels
upstream.controller.metrics.rules.annotationsπ
Type: object
{}
Description: PrometheusRule annotations
upstream.controller.metrics.rules.specπ
Type: list
[]
Description: PrometheusRule.Spec for the application controller
upstream.controller.clusterRoleRules.enabledπ
Type: bool
false
Description: Enable custom rules for the application controller’s ClusterRole resource
upstream.controller.clusterRoleRules.rulesπ
Type: list
[]
Description: List of custom rules for the application controller’s ClusterRole resource
upstream.dex.enabledπ
Type: bool
true
Description: Enable dex
upstream.dex.nameπ
Type: string
"dex-server"
Description: Dex name
upstream.dex.extraArgsπ
Type: list
[]
Description: Additional command line arguments to pass to the Dex server
upstream.dex.metrics.enabledπ
Type: bool
false
Description: Deploy metrics service
upstream.dex.metrics.service.annotationsπ
Type: object
{}
Description: Metrics service annotations
upstream.dex.metrics.service.labelsπ
Type: object
{}
Description: Metrics service labels
upstream.dex.metrics.service.portNameπ
Type: string
"http-metrics"
Description: Metrics service port name
upstream.dex.metrics.serviceMonitor.enabledπ
Type: bool
false
Description: Enable a prometheus ServiceMonitor
upstream.dex.metrics.serviceMonitor.intervalπ
Type: string
"30s"
Description: Prometheus ServiceMonitor interval
upstream.dex.metrics.serviceMonitor.honorLabelsπ
Type: bool
false
Description: When true, honorLabels preserves the metricβs labels when they collide with the targetβs labels.
upstream.dex.metrics.serviceMonitor.relabelingsπ
Type: list
[]
Description: Prometheus [RelabelConfigs] to apply to samples before scraping
upstream.dex.metrics.serviceMonitor.metricRelabelingsπ
Type: list
[]
Description: Prometheus [MetricRelabelConfigs] to apply to samples before ingestion
upstream.dex.metrics.serviceMonitor.selectorπ
Type: object
{}
Description: Prometheus ServiceMonitor selector
upstream.dex.metrics.serviceMonitor.schemeπ
Type: string
""
Description: Prometheus ServiceMonitor scheme
upstream.dex.metrics.serviceMonitor.tlsConfigπ
Type: object
{}
Description: Prometheus ServiceMonitor tlsConfig
upstream.dex.metrics.serviceMonitor.namespaceπ
Type: string
""
Description: Prometheus ServiceMonitor namespace
upstream.dex.metrics.serviceMonitor.additionalLabelsπ
Type: object
{}
Description: Prometheus ServiceMonitor labels
upstream.dex.metrics.serviceMonitor.annotationsπ
Type: object
{}
Description: Prometheus ServiceMonitor annotations
upstream.dex.pdb.enabledπ
Type: bool
false
Description: Deploy a [PodDisruptionBudget] for the Dex server
upstream.dex.pdb.labelsπ
Type: object
{}
Description: Labels to be added to Dex server pdb
upstream.dex.pdb.annotationsπ
Type: object
{}
Description: Annotations to be added to Dex server pdb
upstream.dex.pdb.maxUnavailableπ
Type: string
""
Description: Number of pods that are unavailble after eviction as number or percentage (eg.: 50%). # Has higher precedence over dex.pdb.minAvailable
upstream.dex.image.repositoryπ
Type: string
"registry1.dso.mil/ironbank/opensource/dexidp/dex"
Description: Dex image repository
upstream.dex.image.tagπ
Type: string
"v2.43.1"
Description: Dex image tag
upstream.dex.envπ
Type: list
[]
Description: Environment variables to pass to the Dex server
upstream.dex.extraContainersπ
Type: list
[]
Description: Additional containers to be added to the dex pod # Note: Supports use of custom Helm templates
upstream.dex.initContainersπ
Type: list
[]
Description: Init containers to add to the dex pod # Note: Supports use of custom Helm templates
upstream.dex.volumeMountsπ
Type: list
[]
Description: Additional volumeMounts to the dex main container
upstream.dex.volumesπ
Type: list
[]
Description: Additional volumes to the dex pod
upstream.dex.certificateSecret.enabledπ
Type: bool
false
Description: Create argocd-dex-server-tls secret
upstream.dex.certificateSecret.labelsπ
Type: object
{}
Description: Labels to be added to argocd-dex-server-tls secret
upstream.dex.certificateSecret.annotationsπ
Type: object
{}
Description: Annotations to be added to argocd-dex-server-tls secret
upstream.dex.certificateSecret.caπ
Type: string
""
Description: Certificate authority. Required for self-signed certificates.
upstream.dex.certificateSecret.keyπ
Type: string
""
Description: Certificate private key
upstream.dex.certificateSecret.crtπ
Type: string
""
Description: Certificate data. Must contain SANs of Dex service (ie: argocd-dex-server, argocd-dex-server.argo-cd.svc)
upstream.dex.deploymentAnnotationsπ
Type: object
{}
Description: Annotations to be added to the Dex server Deployment
upstream.dex.podAnnotationsπ
Type: object
{}
Description: Annotations to be added to the Dex server pods
upstream.dex.podLabelsπ
Type: object
{}
Description: Labels to be added to the Dex server pods
upstream.dex.resourcesπ
Type: object
limits:
cpu: 20m
memory: 256Mi
requests:
cpu: 10m
memory: 128Mi
Description: Resource limits and requests for dex
upstream.dex.containerPorts.httpπ
Type: int
5556
Description: HTTP container port
upstream.dex.containerPorts.grpcπ
Type: int
5557
Description: gRPC container port
upstream.dex.containerPorts.metricsπ
Type: int
5558
Description: Metrics container port
upstream.dex.dnsConfigπ
Type: object
{}
Description: [DNS configuration]
upstream.dex.dnsPolicyπ
Type: string
"ClusterFirst"
Description: Alternative DNS policy for Dex server pods
upstream.dex.livenessProbe.enabledπ
Type: bool
false
Description: Enable Kubernetes liveness probe for Dex >= 2.28.0
upstream.dex.livenessProbe.httpPathπ
Type: string
"/healthz/live"
Description: Http path to use for the liveness probe
upstream.dex.livenessProbe.httpPortπ
Type: string
"metrics"
Description: Http port to use for the liveness probe
upstream.dex.livenessProbe.httpSchemeπ
Type: string
"HTTP"
Description: Scheme to use for for the liveness probe (can be HTTP or HTTPS)
upstream.dex.livenessProbe.failureThresholdπ
Type: int
3
Description: Minimum consecutive failures for the [probe] to be considered failed after having succeeded
upstream.dex.livenessProbe.initialDelaySecondsπ
Type: int
10
Description: Number of seconds after the container has started before [probe] is initiated
upstream.dex.livenessProbe.periodSecondsπ
Type: int
10
Description: How often (in seconds) to perform the [probe]
upstream.dex.livenessProbe.successThresholdπ
Type: int
1
Description: Minimum consecutive successes for the [probe] to be considered successful after having failed
upstream.dex.livenessProbe.timeoutSecondsπ
Type: int
30
Description: Number of seconds after which the [probe] times out
upstream.dex.readinessProbe.enabledπ
Type: bool
false
Description: Enable Kubernetes readiness probe for Dex >= 2.28.0
upstream.dex.readinessProbe.httpPathπ
Type: string
"/healthz/ready"
Description: Http path to use for the readiness probe
upstream.dex.readinessProbe.httpPortπ
Type: string
"metrics"
Description: Http port to use for the readiness probe
upstream.dex.readinessProbe.httpSchemeπ
Type: string
"HTTP"
Description: Scheme to use for for the liveness probe (can be HTTP or HTTPS)
upstream.dex.readinessProbe.failureThresholdπ
Type: int
3
Description: Minimum consecutive failures for the [probe] to be considered failed after having succeeded
upstream.dex.readinessProbe.initialDelaySecondsπ
Type: int
10
Description: Number of seconds after the container has started before [probe] is initiated
upstream.dex.readinessProbe.periodSecondsπ
Type: int
10
Description: How often (in seconds) to perform the [probe]
upstream.dex.readinessProbe.successThresholdπ
Type: int
1
Description: Minimum consecutive successes for the [probe] to be considered successful after having failed
upstream.dex.readinessProbe.timeoutSecondsπ
Type: int
30
Description: Number of seconds after which the [probe] times out
upstream.dex.terminationGracePeriodSecondsπ
Type: int
30
Description: terminationGracePeriodSeconds for container lifecycle hook
upstream.dex.automountServiceAccountTokenπ
Type: bool
true
Description: Automount API credentials for the Service Account into the pod.
upstream.dex.serviceAccount.createπ
Type: bool
true
Description: Create dex service account
upstream.dex.serviceAccount.nameπ
Type: string
"argocd-dex-server"
Description: Dex service account name
upstream.dex.serviceAccount.annotationsπ
Type: object
{}
Description: Annotations applied to created service account
upstream.dex.serviceAccount.automountServiceAccountTokenπ
Type: bool
true
Description: Automount API credentials for the Service Account
upstream.dex.servicePortHttpπ
Type: int
5556
Description: Service port for HTTP access
upstream.dex.servicePortHttpNameπ
Type: string
"http"
Description: Service port name for HTTP access
upstream.dex.servicePortGrpcπ
Type: int
5557
Description: Service port for gRPC access
upstream.dex.servicePortGrpcNameπ
Type: string
"grpc"
Description: Service port name for gRPC access
upstream.dex.servicePortMetricsπ
Type: int
5558
Description: Service port for metrics access
upstream.dex.deploymentStrategyπ
Type: object
{}
Description: Deployment strategy to be added to the Dex server Deployment
upstream.redis.enabledπ
Type: bool
false
Description: Enable redis
upstream.redis.nameπ
Type: string
"redis"
Description: Redis name
upstream.redis.pdb.enabledπ
Type: bool
false
Description: Deploy a [PodDisruptionBudget] for the Redis
upstream.redis.pdb.labelsπ
Type: object
{}
Description: Labels to be added to Redis pdb
upstream.redis.pdb.annotationsπ
Type: object
{}
Description: Annotations to be added to Redis pdb
upstream.redis.pdb.maxUnavailableπ
Type: string
""
Description: Number of pods that are unavailble after eviction as number or percentage (eg.: 50%). # Has higher precedence over redis.pdb.minAvailable
upstream.redis.image.repositoryπ
Type: string
"registry1.dso.mil/ironbank/bitnami/redis"
Description: Redis repository
upstream.redis.image.tagπ
Type: string
"8.0.2"
Description: Redis tag
upstream.redis.exporter.enabledπ
Type: bool
false
Description: Enable Prometheus redis-exporter sidecar
upstream.redis.exporter.envπ
Type: list
[]
Description: Environment variables to pass to the Redis exporter
upstream.redis.exporter.image.repositoryπ
Type: string
"ironbank/bitnami/analytics/redis-exporter"
Description: Repository to use for the redis-exporter
upstream.redis.exporter.image.tagπ
Type: string
"v1.73.0"
Description: Tag to use for the redis-exporter
upstream.redis.exporter.readinessProbe.enabledπ
Type: bool
false
Description: Enable Kubernetes liveness probe for Redis exporter (optional)
upstream.redis.exporter.readinessProbe.initialDelaySecondsπ
Type: int
30
Description: Number of seconds after the container has started before [probe] is initiated
upstream.redis.exporter.readinessProbe.periodSecondsπ
Type: int
15
Description: How often (in seconds) to perform the [probe]
upstream.redis.exporter.readinessProbe.timeoutSecondsπ
Type: int
30
Description: Number of seconds after which the [probe] times out
upstream.redis.exporter.readinessProbe.successThresholdπ
Type: int
1
Description: Minimum consecutive successes for the [probe] to be considered successful after having failed
upstream.redis.exporter.readinessProbe.failureThresholdπ
Type: int
5
Description: Minimum consecutive failures for the [probe] to be considered failed after having succeeded
upstream.redis.exporter.livenessProbe.enabledπ
Type: bool
false
Description: Enable Kubernetes liveness probe for Redis exporter
upstream.redis.exporter.livenessProbe.initialDelaySecondsπ
Type: int
30
Description: Number of seconds after the container has started before [probe] is initiated
upstream.redis.exporter.livenessProbe.periodSecondsπ
Type: int
15
Description: How often (in seconds) to perform the [probe]
upstream.redis.exporter.livenessProbe.timeoutSecondsπ
Type: int
30
Description: Number of seconds after which the [probe] times out
upstream.redis.exporter.livenessProbe.successThresholdπ
Type: int
1
Description: Minimum consecutive successes for the [probe] to be considered successful after having failed
upstream.redis.exporter.livenessProbe.failureThresholdπ
Type: int
5
Description: Minimum consecutive failures for the [probe] to be considered failed after having succeeded
upstream.redis.exporter.resourcesπ
Type: object
{}
Description: Resource limits and requests for redis-exporter sidecar
upstream.redis.extraArgsπ
Type: list
[]
Description: Additional command line arguments to pass to redis-server
upstream.redis.envπ
Type: list
[]
Description: Environment variables to pass to the Redis server
upstream.redis.readinessProbe.enabledπ
Type: bool
false
Description: Enable Kubernetes liveness probe for Redis server
upstream.redis.readinessProbe.initialDelaySecondsπ
Type: int
30
Description: Number of seconds after the container has started before [probe] is initiated
upstream.redis.readinessProbe.periodSecondsπ
Type: int
15
Description: How often (in seconds) to perform the [probe]
upstream.redis.readinessProbe.timeoutSecondsπ
Type: int
30
Description: Number of seconds after which the [probe] times out
upstream.redis.readinessProbe.successThresholdπ
Type: int
1
Description: Minimum consecutive successes for the [probe] to be considered successful after having failed
upstream.redis.readinessProbe.failureThresholdπ
Type: int
5
Description: Minimum consecutive failures for the [probe] to be considered failed after having succeeded
upstream.redis.livenessProbe.enabledπ
Type: bool
false
Description: Enable Kubernetes liveness probe for Redis server
upstream.redis.livenessProbe.initialDelaySecondsπ
Type: int
30
Description: Number of seconds after the container has started before [probe] is initiated
upstream.redis.livenessProbe.periodSecondsπ
Type: int
15
Description: How often (in seconds) to perform the [probe]
upstream.redis.livenessProbe.timeoutSecondsπ
Type: int
30
Description: Number of seconds after which the [probe] times out
upstream.redis.livenessProbe.successThresholdπ
Type: int
1
Description: Minimum consecutive successes for the [probe] to be considered successful after having failed
upstream.redis.livenessProbe.failureThresholdπ
Type: int
5
Description: Minimum consecutive failures for the [probe] to be considered failed after having succeeded
upstream.redis.extraContainersπ
Type: list
[]
Description: Additional containers to be added to the redis pod # Note: Supports use of custom Helm templates
upstream.redis.initContainersπ
Type: list
[]
Description: Init containers to add to the redis pod # Note: Supports use of custom Helm templates
upstream.redis.volumeMountsπ
Type: list
[]
Description: Additional volumeMounts to the redis container
upstream.redis.volumesπ
Type: list
[]
Description: Additional volumes to the redis pod
upstream.redis.deploymentAnnotationsπ
Type: object
{}
Description: Annotations to be added to the Redis server Deployment
upstream.redis.podAnnotationsπ
Type: object
{}
Description: Annotations to be added to the Redis server pods
upstream.redis.podLabelsπ
Type: object
{}
Description: Labels to be added to the Redis server pods
upstream.redis.resourcesπ
Type: object
limits:
cpu: 50m
memory: 64Mi
requests:
cpu: 50m
memory: 64Mi
Description: Resource limits and requests for redis
upstream.redis.containerPorts.redisπ
Type: int
6379
Description: Redis container port
upstream.redis.containerPorts.metricsπ
Type: int
9121
Description: Metrics container port
upstream.redis.dnsConfigπ
Type: object
{}
Description: [DNS configuration]
upstream.redis.dnsPolicyπ
Type: string
"ClusterFirst"
Description: Alternative DNS policy for Redis server pods
upstream.redis.servicePortπ
Type: int
6379
Description: Redis service port
upstream.redis.terminationGracePeriodSecondsπ
Type: int
30
Description: terminationGracePeriodSeconds for container lifecycle hook
upstream.redis.automountServiceAccountTokenπ
Type: bool
true
Description: Automount API credentials for the Service Account into the pod.
upstream.redis.serviceAccount.createπ
Type: bool
false
Description: Create a service account for the redis pod
upstream.redis.serviceAccount.nameπ
Type: string
""
Description: Service account name for redis pod
upstream.redis.serviceAccount.annotationsπ
Type: object
{}
Description: Annotations applied to created service account
upstream.redis.serviceAccount.automountServiceAccountTokenπ
Type: bool
false
Description: Automount API credentials for the Service Account
upstream.redis.service.annotationsπ
Type: object
{}
Description: Redis service annotations
upstream.redis.service.labelsπ
Type: object
{}
Description: Additional redis service labels
upstream.redis.master.containerSecurityContext.enabledπ
Type: bool
true
upstream.redis.master.containerSecurityContext.runAsUserπ
Type: int
999
upstream.redis.master.containerSecurityContext.runAsGroupπ
Type: int
999
upstream.redis.replica.containerSecurityContext.enabledπ
Type: bool
true
upstream.redis.replica.containerSecurityContext.runAsUserπ
Type: int
999
upstream.redis.replica.containerSecurityContext.runAsGroupπ
Type: int
999
upstream.redis.metrics.enabledπ
Type: bool
false
Description: Deploy metrics service
upstream.redis.metrics.service.typeπ
Type: string
"ClusterIP"
Description: Metrics service type
upstream.redis.metrics.service.clusterIPπ
Type: string
"None"
Description: Metrics service clusterIP. None makes a “headless service” (no virtual IP)
upstream.redis.metrics.service.annotationsπ
Type: object
{}
Description: Metrics service annotations
upstream.redis.metrics.service.labelsπ
Type: object
{}
Description: Metrics service labels
upstream.redis.metrics.service.servicePortπ
Type: int
9121
Description: Metrics service port
upstream.redis.metrics.service.portNameπ
Type: string
"http-metrics"
Description: Metrics service port name
upstream.redis.metrics.serviceMonitor.enabledπ
Type: bool
false
Description: Enable a prometheus ServiceMonitor
upstream.redis.metrics.serviceMonitor.intervalπ
Type: string
"30s"
Description: Interval at which metrics should be scraped
upstream.redis.metrics.serviceMonitor.honorLabelsπ
Type: bool
false
Description: When true, honorLabels preserves the metricβs labels when they collide with the targetβs labels.
upstream.redis.metrics.serviceMonitor.relabelingsπ
Type: list
[]
Description: Prometheus [RelabelConfigs] to apply to samples before scraping
upstream.redis.metrics.serviceMonitor.metricRelabelingsπ
Type: list
[]
Description: Prometheus [MetricRelabelConfigs] to apply to samples before ingestion
upstream.redis.metrics.serviceMonitor.selectorπ
Type: object
{}
Description: Prometheus ServiceMonitor selector
upstream.redis.metrics.serviceMonitor.schemeπ
Type: string
""
Description: Prometheus ServiceMonitor scheme
upstream.redis.metrics.serviceMonitor.tlsConfigπ
Type: object
{}
Description: Prometheus ServiceMonitor tlsConfig
upstream.redis.metrics.serviceMonitor.namespaceπ
Type: string
""
Description: Prometheus ServiceMonitor namespace
upstream.redis.metrics.serviceMonitor.additionalLabelsπ
Type: object
{}
Description: Prometheus ServiceMonitor labels
upstream.redis.metrics.serviceMonitor.annotationsπ
Type: object
{}
Description: Prometheus ServiceMonitor annotations
upstream.redis.metrics.containerSecurityContext.enabledπ
Type: bool
true
upstream.redis.metrics.containerSecurityContext.runAsUserπ
Type: int
999
upstream.redis.metrics.containerSecurityContext.runAsGroupπ
Type: int
999
upstream.externalRedis.hostπ
Type: string
"argocd-argocd-redis-bb-headless.argocd.svc.cluster.local"
Description: External Redis server host
upstream.externalRedis.usernameπ
Type: string
""
Description: External Redis username
upstream.externalRedis.passwordπ
Type: string
""
Description: External Redis password
upstream.externalRedis.portπ
Type: int
6379
Description: External Redis server port
upstream.externalRedis.existingSecretπ
Type: string
""
Description: The name of an existing secret with Redis (must contain key redis-password) and Sentinel credentials. When it’s set, the externalRedis.password parameter is ignored
upstream.externalRedis.secretAnnotationsπ
Type: object
{}
Description: External Redis Secret annotations
upstream.redisSecretInit.enabledπ
Type: bool
false
Description: Enable Redis secret initialization. If disabled, secret must be provisioned by alternative methods
upstream.redisSecretInit.nameπ
Type: string
"redis-secret-init"
Description: Redis secret-init name
upstream.redisSecretInit.jobAnnotationsπ
Type: object
{}
Description: Annotations to be added to the Redis secret-init Job
upstream.redisSecretInit.podAnnotationsπ
Type: object
{}
Description: Annotations to be added to the Redis secret-init Job
upstream.redisSecretInit.podLabelsπ
Type: object
{}
Description: Labels to be added to the Redis secret-init Job
upstream.redisSecretInit.resourcesπ
Type: object
{}
Description: Resource limits and requests for Redis secret-init Job
upstream.redisSecretInit.securityContextπ
Type: object
{}
Description: Redis secret-init Job pod-level security context
upstream.redisSecretInit.serviceAccount.createπ
Type: bool
true
Description: Create a service account for the redis pod
upstream.redisSecretInit.serviceAccount.nameπ
Type: string
""
Description: Service account name for redis pod
upstream.redisSecretInit.serviceAccount.annotationsπ
Type: object
{}
Description: Annotations applied to created service account
upstream.redisSecretInit.serviceAccount.automountServiceAccountTokenπ
Type: bool
true
Description: Automount API credentials for the Service Account
upstream.redisSecretInit.affinityπ
Type: object
{}
Description: Assign custom [affinity] rules to the Redis secret-init Job
upstream.server.nameπ
Type: string
"server"
Description: Argo CD server name
upstream.server.replicasπ
Type: int
1
Description: The number of server pods to run
upstream.server.autoscaling.enabledπ
Type: bool
false
Description: Enable Horizontal Pod Autoscaler ([HPA]) for the Argo CD server
upstream.server.autoscaling.minReplicasπ
Type: int
1
Description: Minimum number of replicas for the Argo CD server [HPA]
upstream.server.autoscaling.maxReplicasπ
Type: int
5
Description: Maximum number of replicas for the Argo CD server [HPA]
upstream.server.autoscaling.targetCPUUtilizationPercentageπ
Type: int
50
Description: Average CPU utilization percentage for the Argo CD server [HPA]
upstream.server.autoscaling.targetMemoryUtilizationPercentageπ
Type: int
50
Description: Average memory utilization percentage for the Argo CD server [HPA]
upstream.server.autoscaling.behaviorπ
Type: object
{}
Description: Configures the scaling behavior of the target in both Up and Down directions.
upstream.server.autoscaling.metricsπ
Type: list
[]
Description: Configures custom HPA metrics for the Argo CD server Ref: https://kubernetes.io/docs/tasks/run-application/horizontal-pod-autoscale/
upstream.server.pdb.enabledπ
Type: bool
false
Description: Deploy a [PodDisruptionBudget] for the Argo CD server
upstream.server.pdb.labelsπ
Type: object
{}
Description: Labels to be added to Argo CD server pdb
upstream.server.pdb.annotationsπ
Type: object
{}
Description: Annotations to be added to Argo CD server pdb
upstream.server.pdb.maxUnavailableπ
Type: string
""
Description: Number of pods that are unavailable after eviction as number or percentage (eg.: 50%). # Has higher precedence over server.pdb.minAvailable
upstream.server.extraArgsπ
Type: list
[]
Description: Additional command line arguments to pass to Argo CD server
upstream.server.envπ
Type: list
[]
Description: Environment variables to pass to Argo CD server
upstream.server.lifecycleπ
Type: object
{}
Description: Specify postStart and preStop lifecycle hooks for your argo-cd-server container
upstream.server.extensions.enabledπ
Type: bool
false
Description: Enable support for Argo CD extensions
upstream.server.extensions.image.repositoryπ
Type: string
"quay.io/argoprojlabs/argocd-extension-installer"
Description: Repository to use for extension installer image
upstream.server.extensions.image.tagπ
Type: string
"v0.0.8"
Description: Tag to use for extension installer image
upstream.server.extensions.resourcesπ
Type: object
{}
Description: Resource limits and requests for the argocd-extensions container
upstream.server.extraContainersπ
Type: list
[]
Description: Additional containers to be added to the server pod # Note: Supports use of custom Helm templates
upstream.server.initContainersπ
Type: list
[]
Description: Init containers to add to the server pod # If your target Kubernetes cluster(s) require a custom credential (exec) plugin # you could use this (and the same in the application controller pod) to provide such executable # Ref: https://kubernetes.io/docs/reference/access-authn-authz/authentication/#client-go-credential-plugins
upstream.server.volumeMountsπ
Type: list
[]
Description: Additional volumeMounts to the server main container
upstream.server.volumesπ
Type: list
[]
Description: Additional volumes to the server pod
upstream.server.deploymentAnnotationsπ
Type: object
{}
Description: Annotations to be added to server Deployment
upstream.server.podAnnotationsπ
Type: object
{}
Description: Annotations to be added to server pods
upstream.server.podLabelsπ
Type: object
{}
Description: Labels to be added to server pods
upstream.server.resourcesπ
Type: object
limits:
cpu: 20m
memory: 128Mi
requests:
cpu: 20m
memory: 128Mi
Description: Resource limits and requests for the Argo CD server
upstream.server.containerPorts.serverπ
Type: int
8080
Description: Server container port
upstream.server.containerPorts.metricsπ
Type: int
8083
Description: Metrics container port
upstream.server.hostNetworkπ
Type: bool
false
Description: Host Network for Server pods
upstream.server.dnsConfigπ
Type: object
{}
Description: [DNS configuration]
upstream.server.dnsPolicyπ
Type: string
"ClusterFirst"
Description: Alternative DNS policy for Server pods
upstream.server.readinessProbe.failureThresholdπ
Type: int
5
Description: Minimum consecutive failures for the [probe] to be considered failed after having succeeded
upstream.server.readinessProbe.initialDelaySecondsπ
Type: int
10
Description: Number of seconds after the container has started before [probe] is initiated
upstream.server.readinessProbe.periodSecondsπ
Type: int
10
Description: How often (in seconds) to perform the [probe]
upstream.server.readinessProbe.successThresholdπ
Type: int
1
Description: Minimum consecutive successes for the [probe] to be considered successful after having failed
upstream.server.readinessProbe.timeoutSecondsπ
Type: int
30
Description: Number of seconds after which the [probe] times out
upstream.server.livenessProbe.failureThresholdπ
Type: int
5
Description: Minimum consecutive failures for the [probe] to be considered failed after having succeeded
upstream.server.livenessProbe.initialDelaySecondsπ
Type: int
10
Description: Number of seconds after the container has started before [probe] is initiated
upstream.server.livenessProbe.periodSecondsπ
Type: int
10
Description: How often (in seconds) to perform the [probe]
upstream.server.livenessProbe.successThresholdπ
Type: int
1
Description: Minimum consecutive successes for the [probe] to be considered successful after having failed
upstream.server.livenessProbe.timeoutSecondsπ
Type: int
30
Description: Number of seconds after which the [probe] times out
upstream.server.terminationGracePeriodSecondsπ
Type: int
30
Description: terminationGracePeriodSeconds for container lifecycle hook
upstream.server.deploymentStrategyπ
Type: object
{}
Description: Deployment strategy to be added to the server Deployment
upstream.server.certificate.enabledπ
Type: bool
false
Description: Deploy a Certificate resource (requires cert-manager)
upstream.server.certificate.additionalHostsπ
Type: list
[]
Description: Certificate Subject Alternate Names (SANs)
upstream.server.certificate.issuer.groupπ
Type: string
""
Description: Certificate issuer group. Set if using an external issuer. Eg. cert-manager.io
upstream.server.certificate.issuer.kindπ
Type: string
""
Description: Certificate issuer kind. Either Issuer or ClusterIssuer
upstream.server.certificate.issuer.nameπ
Type: string
""
Description: Certificate issuer name. Eg. letsencrypt
upstream.server.certificate.privateKey.rotationPolicyπ
Type: string
"Never"
Description: Rotation policy of private key when certificate is re-issued. Either: Never or Always
upstream.server.certificate.privateKey.encodingπ
Type: string
"PKCS1"
Description: The private key cryptography standards (PKCS) encoding for private key. Either: PCKS1 or PKCS8
upstream.server.certificate.privateKey.algorithmπ
Type: string
"RSA"
Description: Algorithm used to generate certificate private key. One of: RSA, Ed25519 or ECDSA
upstream.server.certificate.privateKey.sizeπ
Type: int
2048
Description: Key bit size of the private key. If algorithm is set to Ed25519, size is ignored.
upstream.server.certificate.annotationsπ
Type: object
{}
Description: Annotations to be applied to the Server Certificate
upstream.server.certificate.usagesπ
Type: list
[]
Description: Usages for the certificate ## Ref: https://cert-manager.io/docs/reference/api-docs/#cert-manager.io/v1.KeyUsage
upstream.server.certificate.secretTemplateAnnotationsπ
Type: object
{}
Description: Annotations that allow the certificate to be composed from data residing in existing Kubernetes Resources
upstream.server.certificateSecret.enabledπ
Type: bool
false
Description: Create argocd-server-tls secret
upstream.server.certificateSecret.annotationsπ
Type: object
{}
Description: Annotations to be added to argocd-server-tls secret
upstream.server.certificateSecret.labelsπ
Type: object
{}
Description: Labels to be added to argocd-server-tls secret
upstream.server.certificateSecret.keyπ
Type: string
""
Description: Private Key of the certificate
upstream.server.certificateSecret.crtπ
Type: string
""
Description: Certificate data
upstream.server.service.annotationsπ
Type: object
{}
Description: Server service annotations
upstream.server.service.labelsπ
Type: object
{}
Description: Server service labels
upstream.server.service.typeπ
Type: string
"ClusterIP"
Description: Server service type
upstream.server.service.nodePortHttpπ
Type: int
30080
Description: Server service http port for NodePort service type (only if server.service.type is set to “NodePort”)
upstream.server.service.nodePortHttpsπ
Type: int
30443
Description: Server service https port for NodePort service type (only if server.service.type is set to “NodePort”)
upstream.server.service.servicePortHttpπ
Type: int
80
Description: Server service http port
upstream.server.service.servicePortHttpsπ
Type: int
443
Description: Server service https port
upstream.server.service.servicePortHttpNameπ
Type: string
"http"
Description: Server service http port name, can be used to route traffic via istio
upstream.server.service.servicePortHttpsNameπ
Type: string
"https"
Description: Server service https port name, can be used to route traffic via istio
upstream.server.service.servicePortHttpsAppProtocolπ
Type: string
""
Description: Server service https port appProtocol # Ref: https://kubernetes.io/docs/concepts/services-networking/service/#application-protocol
upstream.server.service.loadBalancerClassπ
Type: string
""
Description: The class of the load balancer implementation
upstream.server.service.loadBalancerIPπ
Type: string
""
Description: LoadBalancer will get created with the IP specified in this field
upstream.server.service.loadBalancerSourceRangesπ
Type: list
[]
Description: Source IP ranges to allow access to service from # EKS Ref: https://repost.aws/knowledge-center/eks-cidr-ip-address-loadbalancer # GKE Ref: https://cloud.google.com/kubernetes-engine/docs/concepts/network-overview#limit-connectivity-ext-lb
upstream.server.service.externalIPsπ
Type: list
[]
Description: Server service external IPs
upstream.server.service.externalTrafficPolicyπ
Type: string
""
Description: Denotes if this Service desires to route external traffic to node-local or cluster-wide endpoints
upstream.server.service.sessionAffinityπ
Type: string
""
Description: Used to maintain session affinity. Supports ClientIP and None
upstream.server.metrics.enabledπ
Type: bool
false
Description: Deploy metrics service
upstream.server.metrics.service.typeπ
Type: string
"ClusterIP"
Description: Metrics service type
upstream.server.metrics.service.clusterIPπ
Type: string
""
Description: Metrics service clusterIP. None makes a “headless service” (no virtual IP)
upstream.server.metrics.service.annotationsπ
Type: object
{}
Description: Metrics service annotations
upstream.server.metrics.service.labelsπ
Type: object
{}
Description: Metrics service labels
upstream.server.metrics.service.servicePortπ
Type: int
8083
Description: Metrics service port
upstream.server.metrics.service.portNameπ
Type: string
"http-metrics"
Description: Metrics service port name
upstream.server.metrics.serviceMonitor.enabledπ
Type: bool
false
Description: Enable a prometheus ServiceMonitor
upstream.server.metrics.serviceMonitor.intervalπ
Type: string
"30s"
Description: Prometheus ServiceMonitor interval
upstream.server.metrics.serviceMonitor.scrapeTimeoutπ
Type: string
""
Description: Prometheus ServiceMonitor scrapeTimeout. If empty, Prometheus uses the global scrape timeout unless it is less than the target’s scrape interval value in which the latter is used.
upstream.server.metrics.serviceMonitor.honorLabelsπ
Type: bool
false
Description: When true, honorLabels preserves the metricβs labels when they collide with the targetβs labels.
upstream.server.metrics.serviceMonitor.relabelingsπ
Type: list
[]
Description: Prometheus [RelabelConfigs] to apply to samples before scraping
upstream.server.metrics.serviceMonitor.metricRelabelingsπ
Type: list
[]
Description: Prometheus [MetricRelabelConfigs] to apply to samples before ingestion
upstream.server.metrics.serviceMonitor.selectorπ
Type: object
{}
Description: Prometheus ServiceMonitor selector
upstream.server.metrics.serviceMonitor.schemeπ
Type: string
""
Description: Prometheus ServiceMonitor scheme
upstream.server.metrics.serviceMonitor.tlsConfigπ
Type: object
{}
Description: Prometheus ServiceMonitor tlsConfig
upstream.server.metrics.serviceMonitor.namespaceπ
Type: string
""
Description: Prometheus ServiceMonitor namespace
upstream.server.metrics.serviceMonitor.additionalLabelsπ
Type: object
{}
Description: Prometheus ServiceMonitor labels
upstream.server.metrics.serviceMonitor.annotationsπ
Type: object
{}
Description: Prometheus ServiceMonitor annotations
upstream.server.automountServiceAccountTokenπ
Type: bool
true
Description: Automount API credentials for the Service Account into the pod.
upstream.server.serviceAccount.createπ
Type: bool
true
Description: Create server service account
upstream.server.serviceAccount.nameπ
Type: string
"argocd-server"
Description: Server service account name
upstream.server.serviceAccount.annotationsπ
Type: object
{}
Description: Annotations applied to created service account
upstream.server.serviceAccount.labelsπ
Type: object
{}
Description: Labels applied to created service account
upstream.server.serviceAccount.automountServiceAccountTokenπ
Type: bool
true
Description: Automount API credentials for the Service Account
upstream.server.ingress.enabledπ
Type: bool
false
Description: Enable an ingress resource for the Argo CD server
upstream.server.ingress.controllerπ
Type: string
"generic"
Description: Specific implementation for ingress controller. One of generic, aws or gke # Additional configuration might be required in related configuration sections
upstream.server.ingress.labelsπ
Type: object
{}
Description: Additional ingress labels
upstream.server.ingress.annotationsπ
Type: object
{}
Description: Additional ingress annotations # Ref: https://argo-cd.readthedocs.io/en/stable/operator-manual/ingress/#option-1-ssl-passthrough
upstream.server.ingress.ingressClassNameπ
Type: string
""
Description: Defines which ingress controller will implement the resource
upstream.server.ingress.pathπ
Type: string
"/"
Description: The path to Argo CD server
upstream.server.ingress.pathTypeπ
Type: string
"Prefix"
Description: Ingress path type. One of Exact, Prefix or ImplementationSpecific
upstream.server.ingress.tlsπ
Type: bool
false
Description: Enable TLS configuration for the hostname defined at server.ingress.hostname # TLS certificate will be retrieved from a TLS secret argocd-server-tls # You can create this secret via certificate or certificateSecret option
upstream.server.ingress.aws.backendProtocolVersionπ
Type: string
"GRPC"
Description: Backend protocol version for the AWS ALB gRPC service # This tells AWS to send traffic from the ALB using gRPC. # For more information: https://docs.aws.amazon.com/elasticloadbalancing/latest/application/target-group-health-checks.html#health-check-settings
upstream.server.ingress.aws.serviceTypeπ
Type: string
"NodePort"
Description: Service type for the AWS ALB gRPC service # Can be of type NodePort or ClusterIP depending on which mode you are running. # Instance mode needs type NodePort, IP mode needs type ClusterIP # Ref: https://kubernetes-sigs.github.io/aws-load-balancer-controller/v2.2/how-it-works/#ingress-traffic
upstream.server.ingress.gke.managedCertificate.createπ
Type: bool
true
Description: Create ManagedCertificate resource and annotations for Google Load balancer # Ref: https://cloud.google.com/kubernetes-engine/docs/how-to/managed-certs
upstream.server.ingress.gke.managedCertificate.extraDomainsπ
Type: list
[]
Description: Additional domains for ManagedCertificate resource
upstream.server.ingressGrpc.enabledπ
Type: bool
false
Description: Enable an ingress resource for the Argo CD server for dedicated [gRPC-ingress]
upstream.server.ingressGrpc.annotationsπ
Type: object
{}
Description: Additional ingress annotations for dedicated [gRPC-ingress]
upstream.server.ingressGrpc.labelsπ
Type: object
{}
Description: Additional ingress labels for dedicated [gRPC-ingress]
upstream.server.ingressGrpc.ingressClassNameπ
Type: string
""
Description: Defines which ingress controller will implement the resource [gRPC-ingress]
upstream.server.ingressGrpc.pathπ
Type: string
"/"
Description: Argo CD server ingress path for dedicated [gRPC-ingress]
upstream.server.ingressGrpc.pathTypeπ
Type: string
"Prefix"
Description: Ingress path type for dedicated [gRPC-ingress]. One of Exact, Prefix or ImplementationSpecific
upstream.server.ingressGrpc.tlsπ
Type: bool
false
Description: Enable TLS configuration for the hostname defined at server.ingressGrpc.hostname # TLS certificate will be retrieved from a TLS secret with name: argocd-server-grpc-tls
upstream.server.route.enabledπ
Type: bool
false
Description: Enable an OpenShift Route for the Argo CD server
upstream.server.route.annotationsπ
Type: object
{}
Description: Openshift Route annotations
upstream.server.route.hostnameπ
Type: string
""
Description: Hostname of OpenShift Route
upstream.server.route.termination_typeπ
Type: string
"passthrough"
Description: Termination type of Openshift Route
upstream.server.route.termination_policyπ
Type: string
"None"
Description: Termination policy of Openshift Route
upstream.server.clusterRoleRules.enabledπ
Type: bool
false
Description: Enable custom rules for the server’s ClusterRole resource
upstream.server.clusterRoleRules.rulesπ
Type: list
[]
Description: List of custom rules for the server’s ClusterRole resource
upstream.repoServer.nameπ
Type: string
"repo-server"
Description: Repo server name
upstream.repoServer.replicasπ
Type: int
1
Description: The number of repo server pods to run
upstream.repoServer.autoscaling.enabledπ
Type: bool
false
Description: Enable Horizontal Pod Autoscaler ([HPA]) for the repo server
upstream.repoServer.autoscaling.minReplicasπ
Type: int
1
Description: Minimum number of replicas for the repo server [HPA]
upstream.repoServer.autoscaling.maxReplicasπ
Type: int
5
Description: Maximum number of replicas for the repo server [HPA]
upstream.repoServer.autoscaling.targetCPUUtilizationPercentageπ
Type: int
50
Description: Average CPU utilization percentage for the repo server [HPA]
upstream.repoServer.autoscaling.targetMemoryUtilizationPercentageπ
Type: int
50
Description: Average memory utilization percentage for the repo server [HPA]
upstream.repoServer.autoscaling.behaviorπ
Type: object
{}
Description: Configures the scaling behavior of the target in both Up and Down directions.
upstream.repoServer.autoscaling.metricsπ
Type: list
[]
Description: Configures custom HPA metrics for the Argo CD repo server Ref: https://kubernetes.io/docs/tasks/run-application/horizontal-pod-autoscale/
upstream.repoServer.pdb.enabledπ
Type: bool
false
Description: Deploy a [PodDisruptionBudget] for the repo server
upstream.repoServer.pdb.labelsπ
Type: object
{}
Description: Labels to be added to repo server pdb
upstream.repoServer.pdb.annotationsπ
Type: object
{}
Description: Annotations to be added to repo server pdb
upstream.repoServer.pdb.maxUnavailableπ
Type: string
""
Description: Number of pods that are unavailable after eviction as number or percentage (eg.: 50%). # Has higher precedence over repoServer.pdb.minAvailable
upstream.repoServer.extraArgsπ
Type: list
[]
Description: Additional command line arguments to pass to repo server
upstream.repoServer.envπ
Type: list
[]
Description: Environment variables to pass to repo server
upstream.repoServer.lifecycleπ
Type: object
{}
Description: Specify postStart and preStop lifecycle hooks for your argo-repo-server container
upstream.repoServer.extraContainersπ
Type: list
[]
Description: Additional containers to be added to the repo server pod # Ref: https://argo-cd.readthedocs.io/en/stable/user-guide/config-management-plugins/ # Note: Supports use of custom Helm templates
upstream.repoServer.initContainersπ
Type: list
[]
Description: Init containers to add to the repo server pods
upstream.repoServer.volumeMountsπ
Type: list
[]
Description: Additional volumeMounts to the repo server main container
upstream.repoServer.volumesπ
Type: list
[]
Description: Additional volumes to the repo server pod
upstream.repoServer.existingVolumesπ
Type: object
{}
Description: Volumes to be used in replacement of emptydir on default volumes
upstream.repoServer.useEphemeralHelmWorkingDirπ
Type: bool
true
Description: Toggle the usage of a ephemeral Helm working directory
upstream.repoServer.deploymentAnnotationsπ
Type: object
{}
Description: Annotations to be added to repo server Deployment
upstream.repoServer.podAnnotationsπ
Type: object
{}
Description: Annotations to be added to repo server pods
upstream.repoServer.podLabelsπ
Type: object
{}
Description: Labels to be added to repo server pods
upstream.repoServer.resourcesπ
Type: object
limits:
cpu: 100m
memory: 1Gi
requests:
cpu: 100m
memory: 1Gi
Description: Resource limits and requests for the repo server pods
upstream.repoServer.containerPorts.serverπ
Type: int
8081
Description: Repo server container port
upstream.repoServer.containerPorts.metricsπ
Type: int
8084
Description: Metrics container port
upstream.repoServer.hostNetworkπ
Type: bool
false
Description: Host Network for Repo server pods
upstream.repoServer.dnsConfigπ
Type: object
{}
Description: [DNS configuration]
upstream.repoServer.dnsPolicyπ
Type: string
"ClusterFirst"
Description: Alternative DNS policy for Repo server pods
upstream.repoServer.readinessProbe.failureThresholdπ
Type: int
5
Description: Minimum consecutive failures for the [probe] to be considered failed after having succeeded
upstream.repoServer.readinessProbe.initialDelaySecondsπ
Type: int
10
Description: Number of seconds after the container has started before [probe] is initiated
upstream.repoServer.readinessProbe.periodSecondsπ
Type: int
10
Description: How often (in seconds) to perform the [probe]
upstream.repoServer.readinessProbe.successThresholdπ
Type: int
1
Description: Minimum consecutive successes for the [probe] to be considered successful after having failed
upstream.repoServer.readinessProbe.timeoutSecondsπ
Type: int
30
Description: Number of seconds after which the [probe] times out
upstream.repoServer.livenessProbe.failureThresholdπ
Type: int
5
Description: Minimum consecutive failures for the [probe] to be considered failed after having succeeded
upstream.repoServer.livenessProbe.initialDelaySecondsπ
Type: int
10
Description: Number of seconds after the container has started before [probe] is initiated
upstream.repoServer.livenessProbe.periodSecondsπ
Type: int
10
Description: How often (in seconds) to perform the [probe]
upstream.repoServer.livenessProbe.successThresholdπ
Type: int
1
Description: Minimum consecutive successes for the [probe] to be considered successful after having failed
upstream.repoServer.livenessProbe.timeoutSecondsπ
Type: int
30
Description: Number of seconds after which the [probe] times out
upstream.repoServer.terminationGracePeriodSecondsπ
Type: int
30
Description: terminationGracePeriodSeconds for container lifecycle hook
upstream.repoServer.deploymentStrategyπ
Type: object
{}
Description: Deployment strategy to be added to the repo server Deployment
upstream.repoServer.certificateSecret.enabledπ
Type: bool
false
Description: Create argocd-repo-server-tls secret
upstream.repoServer.certificateSecret.annotationsπ
Type: object
{}
Description: Annotations to be added to argocd-repo-server-tls secret
upstream.repoServer.certificateSecret.labelsπ
Type: object
{}
Description: Labels to be added to argocd-repo-server-tls secret
upstream.repoServer.certificateSecret.caπ
Type: string
""
Description: Certificate authority. Required for self-signed certificates.
upstream.repoServer.certificateSecret.keyπ
Type: string
""
Description: Certificate private key
upstream.repoServer.certificateSecret.crtπ
Type: string
""
Description: Certificate data. Must contain SANs of Repo service (ie: argocd-repo-server, argocd-repo-server.argo-cd.svc)
upstream.repoServer.service.annotationsπ
Type: object
{}
Description: Repo server service annotations
upstream.repoServer.service.labelsπ
Type: object
{}
Description: Repo server service labels
upstream.repoServer.service.portπ
Type: int
8081
Description: Repo server service port
upstream.repoServer.service.portNameπ
Type: string
"tcp-repo-server"
Description: Repo server service port name
upstream.repoServer.metrics.enabledπ
Type: bool
false
Description: Deploy metrics service
upstream.repoServer.metrics.service.typeπ
Type: string
"ClusterIP"
Description: Metrics service type
upstream.repoServer.metrics.service.clusterIPπ
Type: string
""
Description: Metrics service clusterIP. None makes a “headless service” (no virtual IP)
upstream.repoServer.metrics.service.annotationsπ
Type: object
{}
Description: Metrics service annotations
upstream.repoServer.metrics.service.labelsπ
Type: object
{}
Description: Metrics service labels
upstream.repoServer.metrics.service.servicePortπ
Type: int
8084
Description: Metrics service port
upstream.repoServer.metrics.service.portNameπ
Type: string
"http-metrics"
Description: Metrics service port name
upstream.repoServer.metrics.serviceMonitor.enabledπ
Type: bool
false
Description: Enable a prometheus ServiceMonitor
upstream.repoServer.metrics.serviceMonitor.intervalπ
Type: string
"30s"
Description: Prometheus ServiceMonitor interval
upstream.repoServer.metrics.serviceMonitor.scrapeTimeoutπ
Type: string
""
Description: Prometheus ServiceMonitor scrapeTimeout. If empty, Prometheus uses the global scrape timeout unless it is less than the target’s scrape interval value in which the latter is used.
upstream.repoServer.metrics.serviceMonitor.honorLabelsπ
Type: bool
false
Description: When true, honorLabels preserves the metricβs labels when they collide with the targetβs labels.
upstream.repoServer.metrics.serviceMonitor.relabelingsπ
Type: list
[]
Description: Prometheus [RelabelConfigs] to apply to samples before scraping
upstream.repoServer.metrics.serviceMonitor.metricRelabelingsπ
Type: list
[]
Description: Prometheus [MetricRelabelConfigs] to apply to samples before ingestion
upstream.repoServer.metrics.serviceMonitor.selectorπ
Type: object
{}
Description: Prometheus ServiceMonitor selector
upstream.repoServer.metrics.serviceMonitor.schemeπ
Type: string
""
Description: Prometheus ServiceMonitor scheme
upstream.repoServer.metrics.serviceMonitor.tlsConfigπ
Type: object
{}
Description: Prometheus ServiceMonitor tlsConfig
upstream.repoServer.metrics.serviceMonitor.namespaceπ
Type: string
""
Description: Prometheus ServiceMonitor namespace
upstream.repoServer.metrics.serviceMonitor.additionalLabelsπ
Type: object
{}
Description: Prometheus ServiceMonitor labels
upstream.repoServer.metrics.serviceMonitor.annotationsπ
Type: object
{}
Description: Prometheus ServiceMonitor annotations
upstream.repoServer.clusterRoleRules.enabledπ
Type: bool
false
Description: Enable custom rules for the Repo server’s Cluster Role resource
upstream.repoServer.clusterRoleRules.rulesπ
Type: list
[]
Description: List of custom rules for the Repo server’s Cluster Role resource
upstream.repoServer.automountServiceAccountTokenπ
Type: bool
true
Description: Automount API credentials for the Service Account into the pod.
upstream.repoServer.serviceAccount.createπ
Type: bool
true
Description: Create repo server service account
upstream.repoServer.serviceAccount.nameπ
Type: string
""
Description: Repo server service account name
upstream.repoServer.serviceAccount.annotationsπ
Type: object
{}
Description: Annotations applied to created service account
upstream.repoServer.serviceAccount.labelsπ
Type: object
{}
Description: Labels applied to created service account
upstream.repoServer.serviceAccount.automountServiceAccountTokenπ
Type: bool
true
Description: Automount API credentials for the Service Account
upstream.repoServer.rbacπ
Type: list
[]
Description: Repo server rbac rules
upstream.applicationSet.enabledπ
Type: bool
true
Description: Enable ApplicationSet controller
upstream.applicationSet.nameπ
Type: string
"applicationset-controller"
Description: ApplicationSet controller name string
upstream.applicationSet.replicasπ
Type: int
1
Description: The number of ApplicationSet controller pods to run
upstream.applicationSet.pdb.enabledπ
Type: bool
false
Description: Deploy a [PodDisruptionBudget] for the ApplicationSet controller
upstream.applicationSet.pdb.labelsπ
Type: object
{}
Description: Labels to be added to ApplicationSet controller pdb
upstream.applicationSet.pdb.annotationsπ
Type: object
{}
Description: Annotations to be added to ApplicationSet controller pdb
upstream.applicationSet.pdb.maxUnavailableπ
Type: string
""
Description: Number of pods that are unavailable after eviction as number or percentage (eg.: 50%). # Has higher precedence over applicationSet.pdb.minAvailable
upstream.applicationSet.extraArgsπ
Type: list
[]
Description: ApplicationSet controller command line flags
upstream.applicationSet.extraEnvπ
Type: list
[]
Description: Environment variables to pass to the ApplicationSet controller
upstream.applicationSet.extraContainersπ
Type: list
[]
Description: Additional containers to be added to the ApplicationSet controller pod # Note: Supports use of custom Helm templates
upstream.applicationSet.initContainersπ
Type: list
[]
Description: Init containers to add to the ApplicationSet controller pod # Note: Supports use of custom Helm templates
upstream.applicationSet.extraVolumeMountsπ
Type: list
[]
Description: List of extra mounts to add (normally used with extraVolumes)
upstream.applicationSet.extraVolumesπ
Type: list
[]
Description: List of extra volumes to add
upstream.applicationSet.metrics.enabledπ
Type: bool
false
Description: Deploy metrics service
upstream.applicationSet.metrics.service.typeπ
Type: string
"ClusterIP"
Description: Metrics service type
upstream.applicationSet.metrics.service.clusterIPπ
Type: string
""
Description: Metrics service clusterIP. None makes a “headless service” (no virtual IP)
upstream.applicationSet.metrics.service.annotationsπ
Type: object
{}
Description: Metrics service annotations
upstream.applicationSet.metrics.service.labelsπ
Type: object
{}
Description: Metrics service labels
upstream.applicationSet.metrics.service.servicePortπ
Type: int
8080
Description: Metrics service port
upstream.applicationSet.metrics.service.portNameπ
Type: string
"http-metrics"
Description: Metrics service port name
upstream.applicationSet.metrics.serviceMonitor.enabledπ
Type: bool
false
Description: Enable a prometheus ServiceMonitor
upstream.applicationSet.metrics.serviceMonitor.intervalπ
Type: string
"30s"
Description: Prometheus ServiceMonitor interval
upstream.applicationSet.metrics.serviceMonitor.scrapeTimeoutπ
Type: string
""
Description: Prometheus ServiceMonitor scrapeTimeout. If empty, Prometheus uses the global scrape timeout unless it is less than the target’s scrape interval value in which the latter is used.
upstream.applicationSet.metrics.serviceMonitor.honorLabelsπ
Type: bool
false
Description: When true, honorLabels preserves the metricβs labels when they collide with the targetβs labels.
upstream.applicationSet.metrics.serviceMonitor.relabelingsπ
Type: list
[]
Description: Prometheus [RelabelConfigs] to apply to samples before scraping
upstream.applicationSet.metrics.serviceMonitor.metricRelabelingsπ
Type: list
[]
Description: Prometheus [MetricRelabelConfigs] to apply to samples before ingestion
upstream.applicationSet.metrics.serviceMonitor.selectorπ
Type: object
{}
Description: Prometheus ServiceMonitor selector
upstream.applicationSet.metrics.serviceMonitor.schemeπ
Type: string
""
Description: Prometheus ServiceMonitor scheme
upstream.applicationSet.metrics.serviceMonitor.tlsConfigπ
Type: object
{}
Description: Prometheus ServiceMonitor tlsConfig
upstream.applicationSet.metrics.serviceMonitor.namespaceπ
Type: string
""
Description: Prometheus ServiceMonitor namespace
upstream.applicationSet.metrics.serviceMonitor.additionalLabelsπ
Type: object
{}
Description: Prometheus ServiceMonitor labels
upstream.applicationSet.metrics.serviceMonitor.annotationsπ
Type: object
{}
Description: Prometheus ServiceMonitor annotations
upstream.applicationSet.service.annotationsπ
Type: object
{}
Description: ApplicationSet service annotations
upstream.applicationSet.service.labelsπ
Type: object
{}
Description: ApplicationSet service labels
upstream.applicationSet.service.typeπ
Type: string
"ClusterIP"
Description: ApplicationSet service type
upstream.applicationSet.service.portπ
Type: int
7000
Description: ApplicationSet service port
upstream.applicationSet.service.portNameπ
Type: string
"http-webhook"
Description: ApplicationSet service port name
upstream.applicationSet.automountServiceAccountTokenπ
Type: bool
true
Description: Automount API credentials for the Service Account into the pod.
upstream.applicationSet.serviceAccount.createπ
Type: bool
true
Description: Create ApplicationSet controller service account
upstream.applicationSet.serviceAccount.nameπ
Type: string
"argocd-applicationset-controller"
Description: ApplicationSet controller service account name
upstream.applicationSet.serviceAccount.annotationsπ
Type: object
{}
Description: Annotations applied to created service account
upstream.applicationSet.serviceAccount.labelsπ
Type: object
{}
Description: Labels applied to created service account
upstream.applicationSet.serviceAccount.automountServiceAccountTokenπ
Type: bool
true
Description: Automount API credentials for the Service Account
upstream.applicationSet.deploymentAnnotationsπ
Type: object
{}
Description: Annotations to be added to ApplicationSet controller Deployment
upstream.applicationSet.podAnnotationsπ
Type: object
{}
Description: Annotations for the ApplicationSet controller pods
upstream.applicationSet.podLabelsπ
Type: object
{}
Description: Labels for the ApplicationSet controller pods
upstream.applicationSet.resourcesπ
Type: object
{}
Description: Resource limits and requests for the ApplicationSet controller pods.
upstream.applicationSet.containerPorts.metricsπ
Type: int
8080
Description: Metrics container port
upstream.applicationSet.containerPorts.probeπ
Type: int
8081
Description: Probe container port
upstream.applicationSet.containerPorts.webhookπ
Type: int
7000
Description: Webhook container port
upstream.applicationSet.dnsConfigπ
Type: object
{}
Description: [DNS configuration]
upstream.applicationSet.dnsPolicyπ
Type: string
"ClusterFirst"
Description: Alternative DNS policy for ApplicationSet controller pods
upstream.applicationSet.readinessProbe.enabledπ
Type: bool
false
Description: Enable Kubernetes liveness probe for ApplicationSet controller
upstream.applicationSet.readinessProbe.initialDelaySecondsπ
Type: int
10
Description: Number of seconds after the container has started before [probe] is initiated
upstream.applicationSet.readinessProbe.periodSecondsπ
Type: int
10
Description: How often (in seconds) to perform the [probe]
upstream.applicationSet.readinessProbe.timeoutSecondsπ
Type: int
30
Description: Number of seconds after which the [probe] times out
upstream.applicationSet.readinessProbe.successThresholdπ
Type: int
1
Description: Minimum consecutive successes for the [probe] to be considered successful after having failed
upstream.applicationSet.readinessProbe.failureThresholdπ
Type: int
5
Description: Minimum consecutive failures for the [probe] to be considered failed after having succeeded
upstream.applicationSet.livenessProbe.enabledπ
Type: bool
false
Description: Enable Kubernetes liveness probe for ApplicationSet controller
upstream.applicationSet.livenessProbe.initialDelaySecondsπ
Type: int
10
Description: Number of seconds after the container has started before [probe] is initiated
upstream.applicationSet.livenessProbe.periodSecondsπ
Type: int
10
Description: How often (in seconds) to perform the [probe]
upstream.applicationSet.livenessProbe.timeoutSecondsπ
Type: int
30
Description: Number of seconds after which the [probe] times out
upstream.applicationSet.livenessProbe.successThresholdπ
Type: int
1
Description: Minimum consecutive successes for the [probe] to be considered successful after having failed
upstream.applicationSet.livenessProbe.failureThresholdπ
Type: int
5
Description: Minimum consecutive failures for the [probe] to be considered failed after having succeeded
upstream.applicationSet.terminationGracePeriodSecondsπ
Type: int
30
Description: terminationGracePeriodSeconds for container lifecycle hook
upstream.applicationSet.deploymentStrategyπ
Type: object
{}
Description: Deployment strategy to be added to the ApplicationSet controller Deployment
upstream.applicationSet.certificate.enabledπ
Type: bool
false
Description: Deploy a Certificate resource (requires cert-manager)
upstream.applicationSet.certificate.additionalHostsπ
Type: list
[]
Description: Certificate Subject Alternate Names (SANs)
upstream.applicationSet.certificate.issuer.groupπ
Type: string
""
Description: Certificate issuer group. Set if using an external issuer. Eg. cert-manager.io
upstream.applicationSet.certificate.issuer.kindπ
Type: string
""
Description: Certificate issuer kind. Either Issuer or ClusterIssuer
upstream.applicationSet.certificate.issuer.nameπ
Type: string
""
Description: Certificate issuer name. Eg. letsencrypt
upstream.applicationSet.certificate.privateKey.rotationPolicyπ
Type: string
"Never"
Description: Rotation policy of private key when certificate is re-issued. Either: Never or Always
upstream.applicationSet.certificate.privateKey.encodingπ
Type: string
"PKCS1"
Description: The private key cryptography standards (PKCS) encoding for private key. Either: PCKS1 or PKCS8
upstream.applicationSet.certificate.privateKey.algorithmπ
Type: string
"RSA"
Description: Algorithm used to generate certificate private key. One of: RSA, Ed25519 or ECDSA
upstream.applicationSet.certificate.privateKey.sizeπ
Type: int
2048
Description: Key bit size of the private key. If algorithm is set to Ed25519, size is ignored.
upstream.applicationSet.certificate.annotationsπ
Type: object
{}
Description: Annotations to be applied to the ApplicationSet Certificate
upstream.applicationSet.ingress.enabledπ
Type: bool
false
Description: Enable an ingress resource for ApplicationSet webhook
upstream.applicationSet.ingress.labelsπ
Type: object
{}
Description: Additional ingress labels
upstream.applicationSet.ingress.annotationsπ
Type: object
{}
Description: Additional ingress annotations
upstream.applicationSet.ingress.ingressClassNameπ
Type: string
""
Description: Defines which ingress ApplicationSet controller will implement the resource
upstream.applicationSet.ingress.pathπ
Type: string
"/api/webhook"
Description: List of ingress paths
upstream.applicationSet.ingress.pathTypeπ
Type: string
"Prefix"
Description: Ingress path type. One of Exact, Prefix or ImplementationSpecific
upstream.applicationSet.ingress.tlsπ
Type: bool
false
Description: Enable TLS configuration for the hostname defined at applicationSet.webhook.ingress.hostname # TLS certificate will be retrieved from a TLS secret with name:argocd-applicationset-controller-tls
upstream.applicationSet.allowAnyNamespaceπ
Type: bool
false
Description: Enable ApplicationSet in any namespace feature
upstream.notifications.enabledπ
Type: bool
true
Description: Enable notifications controller
upstream.notifications.nameπ
Type: string
"notifications-controller"
Description: Notifications controller name string
upstream.notifications.pdb.enabledπ
Type: bool
false
Description: Deploy a [PodDisruptionBudget] for the notifications controller
upstream.notifications.pdb.labelsπ
Type: object
{}
Description: Labels to be added to notifications controller pdb
upstream.notifications.pdb.annotationsπ
Type: object
{}
Description: Annotations to be added to notifications controller pdb
upstream.notifications.pdb.maxUnavailableπ
Type: string
""
Description: Number of pods that are unavailable after eviction as number or percentage (eg.: 50%). # Has higher precedence over notifications.pdb.minAvailable
upstream.notifications.extraArgsπ
Type: list
[]
Description: Extra arguments to provide to the notifications controller
upstream.notifications.extraEnvπ
Type: list
[]
Description: Additional container environment variables
upstream.notifications.extraContainersπ
Type: list
[]
Description: Additional containers to be added to the notifications controller pod # Note: Supports use of custom Helm templates
upstream.notifications.initContainersπ
Type: list
[]
Description: Init containers to add to the notifications controller pod # Note: Supports use of custom Helm templates
upstream.notifications.extraVolumeMountsπ
Type: list
[]
Description: List of extra mounts to add (normally used with extraVolumes)
upstream.notifications.extraVolumesπ
Type: list
[]
Description: List of extra volumes to add
upstream.notifications.contextπ
Type: object
{}
Description: Define user-defined context # For more information: https://argo-cd.readthedocs.io/en/stable/operator-manual/notifications/templates/#defining-user-defined-context
upstream.notifications.secret.createπ
Type: bool
true
Description: Whether helm chart creates notifications controller secret # If true, will create a secret with the name below. Otherwise, will assume existence of a secret with that name.
upstream.notifications.secret.nameπ
Type: string
"argocd-notifications-secret"
Description: notifications controller Secret name
upstream.notifications.secret.annotationsπ
Type: object
{}
Description: key:value pairs of annotations to be added to the secret
upstream.notifications.secret.labelsπ
Type: object
{}
Description: key:value pairs of labels to be added to the secret
upstream.notifications.secret.itemsπ
Type: object
{}
Description: Generic key:value pairs to be inserted into the secret # Can be used for templates, notification services etc. Some examples given below. # For more information: https://argo-cd.readthedocs.io/en/stable/operator-manual/notifications/services/overview/
upstream.notifications.metrics.enabledπ
Type: bool
false
Description: Enables prometheus metrics server
upstream.notifications.metrics.portπ
Type: int
9001
Description: Metrics port
upstream.notifications.metrics.service.typeπ
Type: string
"ClusterIP"
Description: Metrics service type
upstream.notifications.metrics.service.clusterIPπ
Type: string
""
Description: Metrics service clusterIP. None makes a “headless service” (no virtual IP)
upstream.notifications.metrics.service.annotationsπ
Type: object
{}
Description: Metrics service annotations
upstream.notifications.metrics.service.labelsπ
Type: object
{}
Description: Metrics service labels
upstream.notifications.metrics.service.portNameπ
Type: string
"http-metrics"
Description: Metrics service port name
upstream.notifications.metrics.serviceMonitor.enabledπ
Type: bool
false
Description: Enable a prometheus ServiceMonitor
upstream.notifications.metrics.serviceMonitor.selectorπ
Type: object
{}
Description: Prometheus ServiceMonitor selector
upstream.notifications.metrics.serviceMonitor.additionalLabelsπ
Type: object
{}
Description: Prometheus ServiceMonitor labels
upstream.notifications.metrics.serviceMonitor.annotationsπ
Type: object
{}
Description: Prometheus ServiceMonitor annotations
upstream.notifications.metrics.serviceMonitor.schemeπ
Type: string
""
Description: Prometheus ServiceMonitor scheme
upstream.notifications.metrics.serviceMonitor.tlsConfigπ
Type: object
{}
Description: Prometheus ServiceMonitor tlsConfig
upstream.notifications.metrics.serviceMonitor.honorLabelsπ
Type: bool
false
Description: When true, honorLabels preserves the metricβs labels when they collide with the targetβs labels.
upstream.notifications.metrics.serviceMonitor.relabelingsπ
Type: list
[]
Description: Prometheus [RelabelConfigs] to apply to samples before scraping
upstream.notifications.metrics.serviceMonitor.metricRelabelingsπ
Type: list
[]
Description: Prometheus [MetricRelabelConfigs] to apply to samples before ingestion
upstream.notifications.deploymentAnnotationsπ
Type: object
{}
Description: Annotations to be applied to the notifications controller Deployment
upstream.notifications.podAnnotationsπ
Type: object
{}
Description: Annotations to be applied to the notifications controller Pods
upstream.notifications.podLabelsπ
Type: object
{}
Description: Labels to be applied to the notifications controller Pods
upstream.notifications.resourcesπ
Type: object
{}
Description: Resource limits and requests for the notifications controller
upstream.notifications.containerPorts.metricsπ
Type: int
9001
Description: Metrics container port
upstream.notifications.dnsConfigπ
Type: object
{}
Description: [DNS configuration]
upstream.notifications.dnsPolicyπ
Type: string
"ClusterFirst"
Description: Alternative DNS policy for notifications controller Pods
upstream.notifications.readinessProbe.enabledπ
Type: bool
false
Description: Enable Kubernetes liveness probe for notifications controller Pods
upstream.notifications.readinessProbe.initialDelaySecondsπ
Type: int
10
Description: Number of seconds after the container has started before [probe] is initiated
upstream.notifications.readinessProbe.periodSecondsπ
Type: int
10
Description: How often (in seconds) to perform the [probe]
upstream.notifications.readinessProbe.timeoutSecondsπ
Type: int
30
Description: Number of seconds after which the [probe] times out
upstream.notifications.readinessProbe.successThresholdπ
Type: int
1
Description: Minimum consecutive successes for the [probe] to be considered successful after having failed
upstream.notifications.readinessProbe.failureThresholdπ
Type: int
5
Description: Minimum consecutive failures for the [probe] to be considered failed after having succeeded
upstream.notifications.livenessProbe.enabledπ
Type: bool
false
Description: Enable Kubernetes liveness probe for notifications controller Pods
upstream.notifications.livenessProbe.initialDelaySecondsπ
Type: int
10
Description: Number of seconds after the container has started before [probe] is initiated
upstream.notifications.livenessProbe.periodSecondsπ
Type: int
10
Description: How often (in seconds) to perform the [probe]
upstream.notifications.livenessProbe.timeoutSecondsπ
Type: int
30
Description: Number of seconds after which the [probe] times out
upstream.notifications.livenessProbe.successThresholdπ
Type: int
1
Description: Minimum consecutive successes for the [probe] to be considered successful after having failed
upstream.notifications.livenessProbe.failureThresholdπ
Type: int
5
Description: Minimum consecutive failures for the [probe] to be considered failed after having succeeded
upstream.notifications.terminationGracePeriodSecondsπ
Type: int
30
Description: terminationGracePeriodSeconds for container lifecycle hook
upstream.notifications.deploymentStrategyπ
Type: object
type: Recreate
Description: Deployment strategy to be added to the notifications controller Deployment
upstream.notifications.automountServiceAccountTokenπ
Type: bool
true
Description: Automount API credentials for the Service Account into the pod.
upstream.notifications.serviceAccount.createπ
Type: bool
true
Description: Create notifications controller service account
upstream.notifications.serviceAccount.nameπ
Type: string
"argocd-notifications-controller"
Description: Notification controller service account name
upstream.notifications.serviceAccount.annotationsπ
Type: object
{}
Description: Annotations applied to created service account
upstream.notifications.serviceAccount.labelsπ
Type: object
{}
Description: Labels applied to created service account
upstream.notifications.serviceAccount.automountServiceAccountTokenπ
Type: bool
true
Description: Automount API credentials for the Service Account
upstream.notifications.cm.createπ
Type: bool
true
Description: Whether helm chart creates notifications controller config map
upstream.notifications.clusterRoleRules.rulesπ
Type: list
[]
Description: List of custom rules for the notifications controller’s ClusterRole resource
upstream.notifications.subscriptionsπ
Type: list
[]
Description: Contains centrally managed global application subscriptions # For more information: https://argo-cd.readthedocs.io/en/stable/operator-manual/notifications/subscriptions/
upstream.notifications.templatesπ
Type: object
{}
Description: The notification template is used to generate the notification content # For more information: https://argo-cd.readthedocs.io/en/stable/operator-manual/notifications/templates/
upstream.notifications.triggersπ
Type: object
{}
Description: The trigger defines the condition when the notification should be sent # For more information: https://argo-cd.readthedocs.io/en/stable/operator-manual/notifications/triggers/
upstream.notifications.bots.slack.enabledπ
Type: bool
false
Description: Enable slack bot # You have to set secret.notifiers.slack.signingSecret
upstream.notifications.bots.slack.pdb.enabledπ
Type: bool
false
Description: Deploy a [PodDisruptionBudget] for the Slack bot
upstream.notifications.bots.slack.pdb.labelsπ
Type: object
{}
Description: Labels to be added to Slack bot pdb
upstream.notifications.bots.slack.pdb.annotationsπ
Type: object
{}
Description: Annotations to be added to Slack bot pdb
upstream.notifications.bots.slack.pdb.maxUnavailableπ
Type: string
""
Description: Number of pods that are unavailble after eviction as number or percentage (eg.: 50%). # Has higher precedence over notifications.bots.slack.pdb.minAvailable
upstream.notifications.bots.slack.extraArgsπ
Type: list
[]
Description: List of extra cli args to add for Slack bot
upstream.notifications.bots.slack.service.annotationsπ
Type: object
{}
Description: Service annotations for Slack bot
upstream.notifications.bots.slack.service.portπ
Type: int
80
Description: Service port for Slack bot
upstream.notifications.bots.slack.service.typeπ
Type: string
"LoadBalancer"
Description: Service type for Slack bot
upstream.notifications.bots.slack.serviceAccount.createπ
Type: bool
true
Description: Specifies whether a service account should be created
upstream.notifications.bots.slack.serviceAccount.nameπ
Type: string
"argocd-notifications-bot"
Description: The name of the service account to use. # If not set and create is true, a name is generated using the fullname template
upstream.notifications.bots.slack.serviceAccount.annotationsπ
Type: object
{}
Description: Annotations applied to created service account
upstream.notifications.bots.slack.dnsConfigπ
Type: object
{}
Description: [DNS configuration]
upstream.notifications.bots.slack.dnsPolicyπ
Type: string
"ClusterFirst"
Description: Alternative DNS policy for Slack bot pods
upstream.notifications.bots.slack.resourcesπ
Type: object
{}
Description: Resource limits and requests for the Slack bot
upstream.notifications.bots.slack.tolerationsπ
Type: list
[]
Description: [Tolerations] for use with node taints
upstream.notifications.bots.slack.nodeSelectorπ
Type: object
{}
Description: [Node selector]
upstream.commitServer.enabledπ
Type: bool
false
Description: Enable commit server
upstream.commitServer.nameπ
Type: string
"commit-server"
Description: Commit server name
upstream.commitServer.extraArgsπ
Type: list
[]
Description: commit server command line flags
upstream.commitServer.extraEnvπ
Type: list
[]
Description: Environment variables to pass to the commit server
upstream.commitServer.extraVolumeMountsπ
Type: list
[]
Description: List of extra mounts to add (normally used with extraVolumes)
upstream.commitServer.extraVolumesπ
Type: list
[]
Description: List of extra volumes to add
upstream.commitServer.metrics.enabledπ
Type: bool
false
Description: Enables prometheus metrics server
upstream.commitServer.metrics.service.typeπ
Type: string
"ClusterIP"
Description: Metrics service type
upstream.commitServer.metrics.service.clusterIPπ
Type: string
""
Description: Metrics service clusterIP. None makes a “headless service” (no virtual IP)
upstream.commitServer.metrics.service.annotationsπ
Type: object
{}
Description: Metrics service annotations
upstream.commitServer.metrics.service.labelsπ
Type: object
{}
Description: Metrics service labels
upstream.commitServer.metrics.service.servicePortπ
Type: int
8087
Description: Metrics service port
upstream.commitServer.metrics.service.portNameπ
Type: string
"metrics"
Description: Metrics service port name
upstream.commitServer.service.annotationsπ
Type: object
{}
Description: commit server service annotations
upstream.commitServer.service.labelsπ
Type: object
{}
Description: commit server service labels
upstream.commitServer.automountServiceAccountTokenπ
Type: bool
false
Description: Automount API credentials for the Service Account into the pod.
upstream.commitServer.serviceAccount.createπ
Type: bool
true
Description: Create commit server service account
upstream.commitServer.serviceAccount.nameπ
Type: string
"argocd-commit-server"
Description: commit server service account name
upstream.commitServer.serviceAccount.annotationsπ
Type: object
{}
Description: Annotations applied to created service account
upstream.commitServer.serviceAccount.labelsπ
Type: object
{}
Description: Labels applied to created service account
upstream.commitServer.serviceAccount.automountServiceAccountTokenπ
Type: bool
true
Description: Automount API credentials for the Service Account
upstream.commitServer.deploymentAnnotationsπ
Type: object
{}
Description: Annotations to be added to commit server Deployment
upstream.commitServer.podAnnotationsπ
Type: object
{}
Description: Annotations for the commit server pods
upstream.commitServer.podLabelsπ
Type: object
{}
Description: Labels for the commit server pods
upstream.commitServer.resourcesπ
Type: object
{}
Description: Resource limits and requests for the commit server pods.
upstream.commitServer.dnsConfigπ
Type: object
{}
Description: [DNS configuration]
upstream.commitServer.dnsPolicyπ
Type: string
"ClusterFirst"
Description: Alternative DNS policy for commit server pods
upstream.commitServer.readinessProbe.enabledπ
Type: bool
true
Description: Enable Kubernetes liveness probe for commit server
upstream.commitServer.readinessProbe.initialDelaySecondsπ
Type: int
5
Description: Number of seconds after the container has started before [probe] is initiated
upstream.commitServer.readinessProbe.periodSecondsπ
Type: int
10
Description: How often (in seconds) to perform the [probe]
upstream.commitServer.readinessProbe.timeoutSecondsπ
Type: int
1
Description: Number of seconds after which the [probe] times out
upstream.commitServer.readinessProbe.failureThresholdπ
Type: int
3
Description: Minimum consecutive failures for the [probe] to be considered failed after having succeeded
upstream.commitServer.livenessProbe.enabledπ
Type: bool
true
Description: Enable Kubernetes liveness probe for commit server
upstream.commitServer.livenessProbe.initialDelaySecondsπ
Type: int
30
Description: Number of seconds after the container has started before [probe] is initiated
upstream.commitServer.livenessProbe.periodSecondsπ
Type: int
30
Description: How often (in seconds) to perform the [probe]
upstream.commitServer.livenessProbe.timeoutSecondsπ
Type: int
5
Description: Number of seconds after which the [probe] times out
upstream.commitServer.livenessProbe.failureThresholdπ
Type: int
3
Description: Minimum consecutive failures for the [probe] to be considered failed after having succeeded
upstream.commitServer.terminationGracePeriodSecondsπ
Type: int
30
Description: terminationGracePeriodSeconds for container lifecycle hook
upstream.commitServer.deploymentStrategyπ
Type: object
{}
Description: Deployment strategy to be added to the commit server Deployment