anchore-enterprise values.yaml📜
domain📜
Type: string
Default value
"dev.bigbang.mil"
istio.enabled📜
Type: bool
Default value
false
istio.hardened.enabled📜
Type: bool
Default value
false
istio.hardened.outboundTrafficPolicyMode📜
Type: string
Default value
"REGISTRY_ONLY"
istio.hardened.customServiceEntries📜
Type: list
Default value
[]
istio.hardened.customAuthorizationPolicies📜
Type: list
Default value
[]
istio.injection📜
Type: string
Default value
"disabled"
istio.ui.enabled📜
Type: bool
Default value
true
istio.ui.annotations📜
Type: object
Default value
{}
istio.ui.labels📜
Type: object
Default value
{}
istio.ui.gateways[0]📜
Type: string
Default value
"istio-system/main"
istio.ui.hosts[0]📜
Type: string
Default value
"anchore.{{ .Values.domain }}"
istio.api.enabled📜
Type: bool
Default value
true
istio.api.annotations📜
Type: object
Default value
{}
istio.api.labels📜
Type: object
Default value
{}
istio.api.gateways[0]📜
Type: string
Default value
"istio-system/main"
istio.api.hosts[0]📜
Type: string
Default value
"anchore-api.{{ .Values.domain }}"
istio.api.service.apiVersion📜
Type: string
Default value
"v2"
istio.mtls📜
Type: object
Default value
mode: STRICT
Description: Default peer authentication
istio.mtls.mode📜
Type: string
Default value
"STRICT"
Description: STRICT = Allow only mutual TLS traffic, PERMISSIVE = Allow both plain text and mutual TLS traffic
networkPolicies.enabled📜
Type: bool
Default value
false
networkPolicies.ingressLabels.app📜
Type: string
Default value
"istio-ingressgateway"
networkPolicies.ingressLabels.istio📜
Type: string
Default value
"ingressgateway"
networkPolicies.additionalPolicies📜
Type: list
Default value
[]
sso.enabled📜
Type: bool
Default value
false
sso.name📜
Type: string
Default value
"keycloak"
sso.acsHttpsPort📜
Type: int
Default value
-1
sso.spEntityId📜
Type: string
Default value
"platform1_a8604cc9-f5e9-4656-802d-d05624370245_bb8-anchore"
sso.acsUrl📜
Type: string
Default value
"https://anchore.bigbang.dev/service/sso/auth/keycloak"
sso.defaultAccount📜
Type: string
Default value
"user"
sso.defaultRole📜
Type: string
Default value
"read-write"
sso.roleAttribute📜
Type: string
Default value
""
sso.requireSignedAssertions📜
Type: bool
Default value
false
sso.requireSignedResponse📜
Type: bool
Default value
true
sso.idpMetadataUrl📜
Type: string
Default value
"https://login.dso.mil/auth/realms/baby-yoda/protocol/saml/descriptor"
sso.host📜
Type: string
Default value
"login.dso.mil"
sso.realm📜
Type: string
Default value
"baby-yoda"
sso.resources.limits.cpu📜
Type: string
Default value
"100m"
sso.resources.limits.memory📜
Type: string
Default value
"256Mi"
sso.resources.requests.cpu📜
Type: string
Default value
"100m"
sso.resources.requests.memory📜
Type: string
Default value
"256Mi"
sso.containerSecurityContext.runAsUser📜
Type: int
Default value
1001
sso.containerSecurityContext.runAsGroup📜
Type: int
Default value
1001
sso.containerSecurityContext.capabilities.drop[0]📜
Type: string
Default value
"ALL"
monitoring.enabled📜
Type: bool
Default value
false
monitoring.namespace📜
Type: string
Default value
"monitoring"
monitoring.serviceMonitor.scheme📜
Type: string
Default value
""
monitoring.serviceMonitor.tlsConfig📜
Type: object
Default value
{}
bbtests.enabled📜
Type: bool
Default value
false
bbtests.scripts.image📜
Type: string
Default value
"registry1.dso.mil/ironbank/anchore/cli/cli:0.9.4"
bbtests.scripts.envs.ANCHORE_CLI_URL📜
Type: string
Default value
"http://{{ include \"enterprise.api.fullname\" . }}:{{ .Values.api.service.port }}/v2"
bbtests.scripts.envs.ANCHORE_CLI_USER📜
Type: string
Default value
"admin"
bbtests.scripts.envs.ANCHORE_SCAN_IMAGE📜
Type: string
Default value
"quay.io/prometheus/node-exporter:latest"
bbtests.scripts.secretEnvs[0].name📜
Type: string
Default value
"ANCHORE_CLI_PASS"
bbtests.scripts.secretEnvs[0].valueFrom.secretKeyRef.name📜
Type: string
Default value
"{{ include \"enterprise.fullname\" . }}"
bbtests.scripts.secretEnvs[0].valueFrom.secretKeyRef.key📜
Type: string
Default value
"ANCHORE_ADMIN_PASSWORD"
bbtests.cypress.resources.requests.cpu📜
Type: string
Default value
"2"
bbtests.cypress.resources.requests.memory📜
Type: string
Default value
"4Gi"
bbtests.cypress.resources.limits.cpu📜
Type: string
Default value
"2"
bbtests.cypress.resources.limits.memory📜
Type: string
Default value
"4Gi"
bbtests.cypress.artifacts📜
Type: bool
Default value
true
bbtests.cypress.envs.cypress_url📜
Type: string
Default value
"http://{{ include \"enterprise.ui.fullname\" . }}:{{ .Values.ui.service.port }}"
bbtests.cypress.envs.cypress_user📜
Type: string
Default value
"admin"
bbtests.cypress.envs.cypress_registry📜
Type: string
Default value
"docker.io"
bbtests.cypress.envs.cypress_repository📜
Type: string
Default value
"anchore/grype"
bbtests.cypress.envs.cypress_tag📜
Type: string
Default value
"latest"
bbtests.cypress.secretEnvs[0].name📜
Type: string
Default value
"cypress_password"
bbtests.cypress.secretEnvs[0].valueFrom.secretKeyRef.name📜
Type: string
Default value
"{{ include \"enterprise.fullname\" . }}"
bbtests.cypress.secretEnvs[0].valueFrom.secretKeyRef.key📜
Type: string
Default value
"ANCHORE_ADMIN_PASSWORD"
global.fullnameOverride📜
Type: string
Default value
""
global.nameOverride📜
Type: string
Default value
"anchore-enterprise"
ui-redis.enabled📜
Type: bool
Default value
true
ui-redis.istio.enabled📜
Type: string
Default value
"{{ .Values.istio.enabled }}"
ui-redis.externalEndpoint📜
Type: string
Default value
""
ui-redis.upstream.nameOverride📜
Type: string
Default value
"ui-redis"
ui-redis.upstream.fullnameOverride📜
Type: string
Default value
"anchore-enterprise-ui-redis"
ui-redis.upstream.auth.password📜
Type: string
Default value
"anchore-redis,123"
ui-redis.upstream.architecture📜
Type: string
Default value
"standalone"
ui-redis.upstream.master.persistence.enabled📜
Type: bool
Default value
false
ui-redis.upstream.commonConfiguration📜
Type: string
Default value
"maxmemory 200mb\nsave \"\""
ui-redis.cleanUpgrade.enabled📜
Type: bool
Default value
false
ui-redis.cleanUpgrade.redisLabel📜
Type: string
Default value
"app.kubernetes.io/name: ui-redis"
postgresql.enabled📜
Type: bool
Default value
true
postgresql.externalDBCheckEnabled📜
Type: bool
Default value
false
postgresql.primary.podSecurityContext.enabled📜
Type: bool
Default value
true
postgresql.primary.podSecurityContext.fsGroup📜
Type: int
Default value
1001
postgresql.primary.podSecurityContext.runAsUser📜
Type: int
Default value
1001
postgresql.primary.podSecurityContext.runAsGroup📜
Type: int
Default value
1001
postgresql.primary.containerSecurityContext.enabled📜
Type: bool
Default value
true
postgresql.primary.containerSecurityContext.runAsUser📜
Type: int
Default value
1001
postgresql.primary.containerSecurityContext.runAsGroup📜
Type: int
Default value
1001
postgresql.primary.containerSecurityContext.capabilities.drop[0]📜
Type: string
Default value
"ALL"
postgresql.primary.persistence.resourcePolicy📜
Type: string
Default value
"keep"
postgresql.primary.persistence.subPath📜
Type: string
Default value
"data/pgdata"
postgresql.primary.persistence.mountPath📜
Type: string
Default value
"/var/lib/postgresql"
postgresql.primary.postgresqlDataDir📜
Type: string
Default value
"/var/lib/postgresql/data"
postgresql.primary.service.ports.postgresql📜
Type: int
Default value
5432
postgresql.image.registry📜
Type: string
Default value
"registry1.dso.mil"
postgresql.image.repository📜
Type: string
Default value
"ironbank/opensource/postgres/postgresql"
postgresql.image.tag📜
Type: string
Default value
"18.1"
postgresql.global.imagePullSecrets[0]📜
Type: string
Default value
"private-registry"
postgresql.postgresqlConfiguration.listen_addresses📜
Type: string
Default value
"*"
postgresql.pgHbaConfiguration📜
Type: string
Default value
"local all all scram-sha-256\nhost all all all scram-sha-256"
postgresql.postgresUser📜
Type: string
Default value
"anchore"
postgresql.postgresPassword📜
Type: string
Default value
"anchore-postgres,123"
postgresql.postgresDatabase📜
Type: string
Default value
"anchore"
postgresql.resources.limits.cpu📜
Type: string
Default value
"1000m"
postgresql.resources.limits.memory📜
Type: string
Default value
"4096Mi"
postgresql.resources.requests.cpu📜
Type: string
Default value
"1000m"
postgresql.resources.requests.memory📜
Type: string
Default value
"4096Mi"
postgresql.metrics.resources.limits.cpu📜
Type: string
Default value
"200m"
postgresql.metrics.resources.limits.memory📜
Type: string
Default value
"256Mi"
postgresql.metrics.resources.requests.cpu📜
Type: string
Default value
"200m"
postgresql.metrics.resources.requests.memory📜
Type: string
Default value
"256Mi"
postgresql.securityContext.enabled📜
Type: bool
Default value
true
postgresql.securityContext.fsGroup📜
Type: int
Default value
1001
postgresql.securityContext.runAsUser📜
Type: int
Default value
1001
postgresql.securityContext.runAsGroup📜
Type: int
Default value
1001
postgresql.containerSecurityContext.enabled📜
Type: bool
Default value
true
postgresql.containerSecurityContext.runAsUser📜
Type: int
Default value
1001
postgresql.containerSecurityContext.runAsGroup📜
Type: int
Default value
1001
postgresql.containerSecurityContext.capabilities.drop[0]📜
Type: string
Default value
"ALL"
postgresqlSuperUser.postgresUsername📜
Type: string
Default value
""
postgresqlSuperUser.postgresPassword📜
Type: string
Default value
""
postgresqlSuperUser.existingSecret📜
Type: string
Default value
nil
ensureDbJobs.resources.limits.cpu📜
Type: int
Default value
2
ensureDbJobs.resources.limits.memory📜
Type: string
Default value
"2G"
ensureDbJobs.resources.requests.cpu📜
Type: int
Default value
2
ensureDbJobs.resources.requests.memory📜
Type: string
Default value
"2G"