argocd values.yaml📜
sso.enabled📜
Type: bool
false
sso.rbac.”policy.csv”📜
Type: string
"g, Impact Level 2 Authorized, role:admin\n"
sso.keycloakClientSecret📜
Type: string
"this-can-be-anything-for-dev"
sso.config.”oidc.config”📜
Type: string
"name: Keycloak\nissuer: https://login.dso.mil/auth/realms/baby-yoda\nclientID: platform1_a8604cc9-f5e9-4656-802d-d05624370245_bb8-argocd\nclientSecret: $oidc.keycloak.clientSecret\nrequestedScopes: [\"openid\",\"ArgoCD\"]\n"
awsCredentials.awsAccessKeyId📜
Type: string
""
awsCredentials.awsSecretAccessKey📜
Type: string
""
awsCredentials.awsDefaultRegion📜
Type: string
"us-gov-west-1"
domain📜
Type: string
"bigbang.dev"
istio.enabled📜
Type: bool
false
Description: Toggle BigBang istio integration
istio.hardened.enabled📜
Type: bool
false
istio.hardened.outboundTrafficPolicyMode📜
Type: string
"REGISTRY_ONLY"
istio.hardened.customServiceEntries📜
Type: list
[]
istio.hardened.customAuthorizationPolicies📜
Type: list
[]
istio.hardened.monitoring.enabled📜
Type: bool
true
istio.hardened.monitoring.namespaces[0]📜
Type: string
"monitoring"
istio.hardened.monitoring.principals[0]📜
Type: string
"cluster.local/ns/monitoring/sa/monitoring-grafana"
istio.hardened.monitoring.principals[1]📜
Type: string
"cluster.local/ns/monitoring/sa/monitoring-monitoring-kube-alertmanager"
istio.hardened.monitoring.principals[2]📜
Type: string
"cluster.local/ns/monitoring/sa/monitoring-monitoring-kube-operator"
istio.hardened.monitoring.principals[3]📜
Type: string
"cluster.local/ns/monitoring/sa/monitoring-monitoring-kube-prometheus"
istio.hardened.monitoring.principals[4]📜
Type: string
"cluster.local/ns/monitoring/sa/monitoring-monitoring-kube-state-metrics"
istio.hardened.monitoring.principals[5]📜
Type: string
"cluster.local/ns/monitoring/sa/monitoring-monitoring-prometheus-node-exporter"
istio.hardened.argocd.enabled📜
Type: bool
true
istio.hardened.argocd.namespaces[0]📜
Type: string
"argocd"
istio.hardened.argocd.principals[0]📜
Type: string
"cluster.local/ns/argocd/sa/argocd-application-controller"
istio.hardened.argocd.principals[1]📜
Type: string
"cluster.local/ns/argocd/sa/argocd-applicationset-controller"
istio.hardened.argocd.principals[2]📜
Type: string
"cluster.local/ns/argocd/sa/argocd-argocd-redis-bb"
istio.hardened.argocd.principals[3]📜
Type: string
"cluster.local/ns/argocd/sa/argocd-argocd-repo-server"
istio.hardened.argocd.principals[4]📜
Type: string
"cluster.local/ns/argocd/sa/argocd-dex-server"
istio.hardened.argocd.principals[5]📜
Type: string
"cluster.local/ns/argocd/sa/argocd-notifications-controller"
istio.hardened.argocd.principals[6]📜
Type: string
"cluster.local/ns/argocd/sa/argocd-server"
istio.hardened.argocd.principals[7]📜
Type: string
"cluster.local/ns/argocd/sa/upgrade-job-svc-account"
istio.hardened.argocd.principals[8]📜
Type: string
"cluster.local/ns/argocd/sa/argocd-argocd-redis-bb-metrics"
istio.injection📜
Type: string
"disabled"
Description: Toggle BigBang istio injection
istio.mtls📜
Type: object
mode: STRICT
Description: Default argocd peer authentication
istio.mtls.mode📜
Type: string
"STRICT"
Description: STRICT = Allow only mutual TLS traffic, PERMISSIVE = Allow both plain text and mutual TLS traffic
istio.argocd.enabled📜
Type: bool
true
Description: Toggle Istio VirtualService creation
istio.argocd.annotations📜
Type: object
{}
Description: Set Annotations for VirtualService
istio.argocd.labels📜
Type: object
{}
Description: Set Labels for VirtualService
istio.argocd.gateways📜
Type: list
- istio-system/main
Description: Set Gateway for VirtualService
istio.argocd.hosts📜
Type: list
- argocd.{{ .Values.domain }}
Description: Set Hosts for VirtualService
monitoring.enabled📜
Type: bool
false
Description: Toggle BigBang monitoring integration
networkPolicies.enabled📜
Type: bool
false
Description: Toggle BigBang networkPolicies integration
networkPolicies.ingressLabels.app📜
Type: string
"istio-ingressgateway"
networkPolicies.ingressLabels.istio📜
Type: string
"ingressgateway"
networkPolicies.controlPlaneCidr📜
Type: string
"0.0.0.0/0"
Description: Control Plane CIDR, defaults to 0.0.0.0/0, use kubectl get endpoints -n default kubernetes to get the CIDR range needed for your cluster Must be an IP CIDR range (x.x.x.x/x - ideally with /32 for the specific IP of a single endpoint, broader range for multiple masters/endpoints) Used by package NetworkPolicies to allow Kube API access
networkPolicies.additionalPolicies📜
Type: list
[]
upgradeJob.enabled📜
Type: bool
true
upgradeJob.image.repository📜
Type: string
"registry1.dso.mil/ironbank/big-bang/base"
upgradeJob.image.tag📜
Type: string
"2.1.0"
upgradeJob.image.imagePullPolicy📜
Type: string
"IfNotPresent"
bbtests.enabled📜
Type: bool
false
bbtests.cypress.artifacts📜
Type: bool
true
bbtests.cypress.envs.cypress_url📜
Type: string
"http://argocd-server"
bbtests.cypress.envs.cypress_user📜
Type: string
"admin"
bbtests.cypress.envs.cypress_password📜
Type: string
"Password123"
bbtests.cypress.envs.cypress_timeout📜
Type: string
"120000"
bbtests.cypress.resources.requests.cpu📜
Type: int
4
bbtests.cypress.resources.requests.memory📜
Type: string
"4Gi"
bbtests.cypress.resources.limits.cpu📜
Type: int
4
bbtests.cypress.resources.limits.memory📜
Type: string
"8Gi"
bbtests.scripts.image📜
Type: string
"registry1.dso.mil/bigbang-ci/devops-tester:1.1.1"
bbtests.scripts.envs.ARGOCD_SERVER📜
Type: string
"http://argocd-server"
bbtests.scripts.envs.ARGOCD_USER📜
Type: string
"admin"
bbtests.scripts.envs.ARGOCD_PASSWORD📜
Type: string
"Password123"
nameOverride📜
Type: string
"argocd"
Description: Provide a name in place of argocd
fullnameOverride📜
Type: string
""
Description: String to fully override "argo-cd.fullname"
kubeVersionOverride📜
Type: string
""
Description: Override the Kubernetes version, which is used to evaluate certain manifests
apiVersionOverrides📜
Type: object
{}
createAggregateRoles📜
Type: bool
false
Description: Create aggregated roles that extend existing cluster roles to interact with argo-cd resources # Ref: https://kubernetes.io/docs/reference/access-authn-authz/rbac/#aggregated-clusterroles
createClusterRoles📜
Type: bool
true
Description: Create cluster roles for cluster-wide installation. # Used when you manage applications in the same cluster where Argo CD runs
openshift.enabled📜
Type: bool
false
Description: enables using arbitrary uid for argo repo server
crds.install📜
Type: bool
true
Description: Install and upgrade CRDs
crds.keep📜
Type: bool
true
Description: Keep CRDs on chart uninstall
crds.annotations📜
Type: object
{}
Description: Annotations to be added to all CRDs
crds.additionalLabels📜
Type: object
{}
Description: Addtional labels to be added to all CRDs
global.domain📜
Type: string
"argocd.example.com"
Description: Default domain used by all components # Used for ingresses, certificates, SSO, notifications, etc.
global.runtimeClassName📜
Type: string
""
Description: Runtime class name for all components
global.additionalLabels📜
Type: object
{}
Description: Common labels for the all resources
global.revisionHistoryLimit📜
Type: int
3
Description: Number of old deployment ReplicaSets to retain. The rest will be garbage collected.
global.image.repository📜
Type: string
"registry1.dso.mil/ironbank/big-bang/argocd"
Description: If defined, a repository applied to all Argo CD deployments
global.image.tag📜
Type: string
"v2.12.4"
Description: Overrides the global Argo CD image tag whose default is the chart appVersion
global.image.imagePullPolicy📜
Type: string
"IfNotPresent"
Description: If defined, a imagePullPolicy applied to all Argo CD deployments
global.imagePullSecrets📜
Type: list
- name: private-registry
Description: Secrets with credentials to pull images from a private registry
global.logging.format📜
Type: string
"text"
Description: Set the global logging format. Either: text or json
global.logging.level📜
Type: string
"info"
Description: Set the global logging level. One of: debug, info, warn or error
global.statefulsetAnnotations📜
Type: object
{}
Description: Annotations for the all deployed Statefulsets
global.deploymentAnnotations📜
Type: object
{}
Description: Annotations for the all deployed Deployments
global.podAnnotations📜
Type: object
{}
Description: Annotations for the all deployed pods
global.podLabels📜
Type: object
{}
Description: Labels for the all deployed pods
global.addPrometheusAnnotations📜
Type: bool
false
Description: Add Prometheus scrape annotations to all metrics services. This can be used as an alternative to the ServiceMonitors.
global.hostAliases📜
Type: list
[]
Description: Mapping between IP and hostnames that will be injected as entries in the pod’s hosts files
global.dualStack.ipFamilyPolicy📜
Type: string
""
Description: IP family policy to configure dual-stack see Configure dual-stack
global.dualStack.ipFamilies📜
Type: list
[]
Description: IP families that should be supported and the order in which they should be applied to ClusterIP as well. Can be IPv4 and/or IPv6.
global.networkPolicy.create📜
Type: bool
false
Description: Create NetworkPolicy objects for all components
global.networkPolicy.defaultDenyIngress📜
Type: bool
false
Description: Default deny all ingress traffic
global.priorityClassName📜
Type: string
""
Description: Default priority class for all components
global.nodeSelector📜
Type: object
{}
Description: Default node selector for all components
global.tolerations📜
Type: list
[]
Description: Default tolerations for all components
global.affinity.podAntiAffinity📜
Type: string
"soft"
Description: Default pod anti-affinity rules. Either: none, soft or hard
global.affinity.nodeAffinity.type📜
Type: string
"hard"
Description: Default node affinity rules. Either: none, soft or hard
global.affinity.nodeAffinity.matchExpressions📜
Type: list
[]
Description: Default match expressions for node affinity
global.topologySpreadConstraints📜
Type: list
[]
Description: Default [TopologySpreadConstraints] rules for all components # Ref: https://kubernetes.io/docs/concepts/workloads/pods/pod-topology-spread-constraints/ # If labelSelector is left out, it will default to the labelSelector of the component
global.deploymentStrategy📜
Type: object
{}
Description: Deployment strategy for the all deployed Deployments
global.env📜
Type: list
[]
Description: Environment variables to pass to all deployed Deployments
global.certificateAnnotations📜
Type: object
{}
Description: Annotations for the all deployed Certificates
configs.cm.create📜
Type: bool
true
Description: Create the argocd-cm configmap for [declarative setup]
configs.cm.annotations📜
Type: object
{}
Description: Annotations to be added to argocd-cm configmap
configs.cm.”application.instanceLabelKey”📜
Type: string
"argocd.argoproj.io/instance"
Description: The name of tracking label used by Argo CD for resource pruning
configs.cm.”server.rbac.log.enforce.enable”📜
Type: bool
false
Description: Enable logs RBAC enforcement # Ref: https://argo-cd.readthedocs.io/en/latest/operator-manual/upgrading/2.3-2.4/#enable-logs-rbac-enforcement
configs.cm.”exec.enabled”📜
Type: bool
false
Description: Enable exec feature in Argo UI # Ref: https://argo-cd.readthedocs.io/en/latest/operator-manual/rbac/#exec-resource
configs.cm.”admin.enabled”📜
Type: bool
true
Description: Enable local admin user # Ref: https://argo-cd.readthedocs.io/en/latest/faq/#how-to-disable-admin-user
configs.cm.”timeout.reconciliation”📜
Type: string
"180s"
Description: Timeout to discover if a new manifests version got published to the repository
configs.cm.”timeout.hard.reconciliation”📜
Type: string
"0s"
Description: Timeout to refresh application data as well as target manifests cache
configs.cm.”statusbadge.enabled”📜
Type: bool
false
Description: Enable Status Badge # Ref: https://argo-cd.readthedocs.io/en/stable/user-guide/status-badge/
configs.params.create📜
Type: bool
true
Description: Create the argocd-cmd-params-cm configmap If false, it is expected the configmap will be created by something else.
configs.params.annotations📜
Type: object
{}
Description: Annotations to be added to the argocd-cmd-params-cm ConfigMap
configs.params.”otlp.address”📜
Type: string
""
Description: Open-Telemetry collector address: (e.g. “otel-collector:4317”)
configs.params.”controller.status.processors”📜
Type: int
20
Description: Number of application status processors
configs.params.”controller.operation.processors”📜
Type: int
10
Description: Number of application operation processors
configs.params.”controller.self.heal.timeout.seconds”📜
Type: int
5
Description: Specifies timeout between application self heal attempts
configs.params.”controller.repo.server.timeout.seconds”📜
Type: int
60
Description: Repo server RPC call timeout seconds.
configs.params.”server.insecure”📜
Type: bool
true
Description: Run server without TLS # NOTE: This value should be set when you generate params by other means as it changes ports used by ingress template.
configs.params.”server.basehref”📜
Type: string
"/"
Description: Value for base href in index.html. Used if Argo CD is running behind reverse proxy under subpath different from /
configs.params.”server.rootpath”📜
Type: string
""
Description: Used if Argo CD is running behind reverse proxy under subpath different from /
configs.params.”server.staticassets”📜
Type: string
"/shared/app"
Description: Directory path that contains additional static assets
configs.params.”server.disable.auth”📜
Type: bool
false
Description: Disable Argo CD RBAC for user authentication
configs.params.”server.enable.gzip”📜
Type: bool
true
Description: Enable GZIP compression
configs.params.”server.enable.proxy.extension”📜
Type: bool
false
Description: Enable proxy extension feature. (proxy extension is in Alpha phase)
configs.params.”server.x.frame.options”📜
Type: string
"sameorigin"
Description: Set X-Frame-Options header in HTTP responses to value. To disable, set to “”.
configs.params.”reposerver.parallelism.limit”📜
Type: int
0
Description: Limit on number of concurrent manifests generate requests. Any value less the 1 means no limit.
configs.params.”applicationsetcontroller.policy”📜
Type: string
"sync"
Description: Modify how application is synced between the generator and the cluster. One of: sync, create-only, create-update, create-delete
configs.params.”applicationsetcontroller.enable.progressive.syncs”📜
Type: bool
false
Description: Enables use of the Progressive Syncs capability
configs.params.”applicationsetcontroller.namespaces”📜
Type: string
""
Description: A list of glob patterns specifying where to look for ApplicationSet resources. (e.g. "namespace1, namespace2")
configs.params.”application.namespaces”📜
Type: string
""
Description: Enables [Applications in any namespace] # List of additional namespaces where applications may be created in and reconciled from. # The namespace where Argo CD is installed to will always be allowed. # Set comma-separated list. (e.g. app-team-one, app-team-two)
configs.params.”controller.ignore.normalizer.jq.timeout”📜
Type: string
"1s"
Description: JQ Path expression timeout # By default, the evaluation of a JQPathExpression is limited to one second. # If you encounter a “JQ patch execution timed out” error message due to a complex JQPathExpression # that requires more time to evaluate, you can extend the timeout period.
configs.rbac.create📜
Type: bool
true
Description: Create the argocd-rbac-cm configmap with ([Argo CD RBAC policy]) definitions. If false, it is expected the configmap will be created by something else. Argo CD will not work if there is no configmap created with the name above.
configs.rbac.annotations📜
Type: object
{}
Description: Annotations to be added to argocd-rbac-cm configmap
configs.rbac.”policy.default”📜
Type: string
""
Description: The name of the default role which Argo CD will falls back to, when authorizing API requests (optional). If omitted or empty, users may be still be able to login, but will see no apps, projects, etc…
configs.rbac.scopes📜
Type: string
"[groups]"
Description: OIDC scopes to examine during rbac enforcement (in addition to sub scope). The scope value can be a string, or a list of strings.
configs.rbac.”policy.matchMode”📜
Type: string
"glob"
Description: Matcher function for Casbin, glob for glob matcher and regex for regex matcher.
configs.gpg.annotations📜
Type: object
{}
Description: Annotations to be added to argocd-gpg-keys-cm configmap
configs.ssh.annotations📜
Type: object
{}
Description: Annotations to be added to argocd-ssh-known-hosts-cm configmap
configs.ssh.extraHosts📜
Type: string
""
Description: Additional known hosts for private repositories
configs.tls.annotations📜
Type: object
{}
Description: Annotations to be added to argocd-tls-certs-cm configmap
configs.cmp.create📜
Type: bool
false
Description: Create the argocd-cmp-cm configmap
configs.cmp.annotations📜
Type: object
{}
Description: Annotations to be added to argocd-cmp-cm configmap
configs.cmp.plugins📜
Type: object
{}
Description: Plugin yaml files to be added to argocd-cmp-cm
configs.credentialTemplates📜
Type: object
{}
Description: Repository credentials to be used as Templates for other repos # Creates a secret for each key/value specified below to create repository credentials
configs.credentialTemplatesAnnotations📜
Type: object
{}
Description: Annotations to be added to configs.credentialTemplates Secret
configs.repositories📜
Type: object
{}
Description: Repositories list to be used by applications # Creates a secret for each key/value specified below to create repositories # Note: the last example in the list would use a repository credential template, configured under “configs.credentialTemplates”.
configs.repositoriesAnnotations📜
Type: object
{}
Description: Annotations to be added to configs.repositories Secret
configs.secret.createSecret📜
Type: bool
true
Description: Create the argocd-secret
configs.secret.labels📜
Type: object
{}
Description: Labels to be added to argocd-secret
configs.secret.annotations📜
Type: object
{}
Description: Annotations to be added to argocd-secret
configs.secret.githubSecret📜
Type: string
""
Description: Shared secret for authenticating GitHub webhook events
configs.secret.gitlabSecret📜
Type: string
""
Description: Shared secret for authenticating GitLab webhook events
configs.secret.bitbucketServerSecret📜
Type: string
""
Description: Shared secret for authenticating BitbucketServer webhook events
configs.secret.bitbucketUUID📜
Type: string
""
Description: UUID for authenticating Bitbucket webhook events
configs.secret.gogsSecret📜
Type: string
""
Description: Shared secret for authenticating Gogs webhook events
configs.secret.azureDevops.username📜
Type: string
""
Description: Shared secret username for authenticating Azure DevOps webhook events
configs.secret.azureDevops.password📜
Type: string
""
Description: Shared secret password for authenticating Azure DevOps webhook events
configs.secret.extra📜
Type: object
{}
Description: add additional secrets to be added to argocd-secret # Custom secrets. Useful for injecting SSO secrets into environment variables. # Ref: https://argo-cd.readthedocs.io/en/stable/operator-manual/user-management/#sensitive-data-and-sso-client-secrets # Note that all values must be non-empty.
extraObjects📜
Type: list
[]
Description: Array of extra K8s manifests to deploy # Note: Supports use of custom Helm templates
controller.name📜
Type: string
"application-controller"
Description: Application controller name string
controller.replicas📜
Type: int
1
Description: The number of application controller pods to run. Additional replicas will cause sharding of managed clusters across number of replicas. # With dynamic cluster distribution turned on, sharding of the clusters will gracefully # rebalance if the number of replica’s changes or one becomes unhealthy. (alpha)
controller.dynamicClusterDistribution📜
Type: bool
false
Description: Enable dynamic cluster distribution (alpha) Ref: https://argo-cd.readthedocs.io/en/stable/operator-manual/dynamic-cluster-distribution # This is done using a deployment instead of a statefulSet # When replicas are added or removed, the sharding algorithm is re-run to ensure that the # clusters are distributed according to the algorithm. If the algorithm is well-balanced, # like round-robin, then the shards will be well-balanced.
controller.heartbeatTime📜
Type: int
10
Description: Application controller heartbeat time Ref: https://argo-cd.readthedocs.io/en/stable/operator-manual/dynamic-cluster-distribution/#working-of-dynamic-distribution
controller.revisionHistoryLimit📜
Type: int
5
Description: Maximum number of controller revisions that will be maintained in StatefulSet history
controller.pdb.enabled📜
Type: bool
false
Description: Deploy a [PodDisruptionBudget] for the application controller
controller.pdb.labels📜
Type: object
{}
Description: Labels to be added to application controller pdb
controller.pdb.annotations📜
Type: object
{}
Description: Annotations to be added to application controller pdb
controller.pdb.maxUnavailable📜
Type: string
""
Description: Number of pods that are unavailable after eviction as number or percentage (eg.: 50%). # Has higher precedence over controller.pdb.minAvailable
controller.extraArgs📜
Type: list
[]
Description: Additional command line arguments to pass to application controller
controller.env📜
Type: list
[]
Description: Environment variables to pass to application controller
controller.extraContainers📜
Type: list
[]
Description: Additional containers to be added to the application controller pod # Note: Supports use of custom Helm templates
controller.initContainers📜
Type: list
[]
Description: Init containers to add to the application controller pod # If your target Kubernetes cluster(s) require a custom credential (exec) plugin # you could use this (and the same in the server pod) to provide such executable # Ref: https://kubernetes.io/docs/reference/access-authn-authz/authentication/#client-go-credential-plugins # Note: Supports use of custom Helm templates
controller.volumeMounts📜
Type: list
[]
Description: Additional volumeMounts to the application controller main container
controller.volumes📜
Type: list
[]
Description: Additional volumes to the application controller pod
controller.statefulsetAnnotations📜
Type: object
{}
Description: Annotations for the application controller StatefulSet
controller.deploymentAnnotations📜
Type: object
{}
Description: Annotations for the application controller Deployment
controller.podAnnotations📜
Type: object
{}
Description: Annotations to be added to application controller pods
controller.podLabels📜
Type: object
{}
Description: Labels to be added to application controller pods
controller.resources📜
Type: object
limits:
cpu: 500m
memory: 3Gi
requests:
cpu: 500m
memory: 3Gi
Description: Resource limits and requests for the application controller pods
controller.containerPorts.metrics📜
Type: int
8082
Description: Metrics container port
controller.hostNetwork📜
Type: bool
false
Description: Host Network for application controller pods
controller.dnsConfig📜
Type: object
{}
Description: [DNS configuration]
controller.dnsPolicy📜
Type: string
"ClusterFirst"
Description: Alternative DNS policy for application controller pods
controller.readinessProbe.failureThreshold📜
Type: int
3
Description: Minimum consecutive failures for the [probe] to be considered failed after having succeeded
controller.readinessProbe.initialDelaySeconds📜
Type: int
10
Description: Number of seconds after the container has started before [probe] is initiated
controller.readinessProbe.periodSeconds📜
Type: int
10
Description: How often (in seconds) to perform the [probe]
controller.readinessProbe.successThreshold📜
Type: int
1
Description: Minimum consecutive successes for the [probe] to be considered successful after having failed
controller.readinessProbe.timeoutSeconds📜
Type: int
1
Description: Number of seconds after which the [probe] times out
controller.terminationGracePeriodSeconds📜
Type: int
30
Description: terminationGracePeriodSeconds for container lifecycle hook
controller.automountServiceAccountToken📜
Type: bool
true
Description: Automount API credentials for the Service Account into the pod.
controller.serviceAccount.create📜
Type: bool
true
Description: Create a service account for the application controller
controller.serviceAccount.name📜
Type: string
"argocd-application-controller"
Description: Service account name
controller.serviceAccount.annotations📜
Type: object
{}
Description: Annotations applied to created service account
controller.serviceAccount.labels📜
Type: object
{}
Description: Labels applied to created service account
controller.serviceAccount.automountServiceAccountToken📜
Type: bool
true
Description: Automount API credentials for the Service Account
controller.metrics.enabled📜
Type: bool
false
Description: Deploy metrics service
controller.metrics.scrapeTimeout📜
Type: string
""
Description: Prometheus ServiceMonitor scrapeTimeout. If empty, Prometheus uses the global scrape timeout unless it is less than the target’s scrape interval value in which the latter is used.
controller.metrics.applicationLabels.enabled📜
Type: bool
false
Description: Enables additional labels in argocd_app_labels metric
controller.metrics.applicationLabels.labels📜
Type: list
[]
Description: Additional labels
controller.metrics.service.type📜
Type: string
"ClusterIP"
Description: Metrics service type
controller.metrics.service.clusterIP📜
Type: string
""
Description: Metrics service clusterIP. None makes a “headless service” (no virtual IP)
controller.metrics.service.annotations📜
Type: object
{}
Description: Metrics service annotations
controller.metrics.service.labels📜
Type: object
{}
Description: Metrics service labels
controller.metrics.service.servicePort📜
Type: int
8082
Description: Metrics service port
controller.metrics.service.portName📜
Type: string
"http-metrics"
Description: Metrics service port name
controller.metrics.serviceMonitor.enabled📜
Type: bool
false
Description: Enable a prometheus ServiceMonitor
controller.metrics.serviceMonitor.interval📜
Type: string
"30s"
Description: Prometheus ServiceMonitor interval
controller.metrics.serviceMonitor.relabelings📜
Type: list
[]
Description: Prometheus [RelabelConfigs] to apply to samples before scraping
controller.metrics.serviceMonitor.metricRelabelings📜
Type: list
[]
Description: Prometheus [MetricRelabelConfigs] to apply to samples before ingestion
controller.metrics.serviceMonitor.selector📜
Type: object
{}
Description: Prometheus ServiceMonitor selector
controller.metrics.serviceMonitor.scheme📜
Type: string
""
Description: Prometheus ServiceMonitor scheme
controller.metrics.serviceMonitor.tlsConfig📜
Type: object
{}
Description: Prometheus ServiceMonitor tlsConfig
controller.metrics.serviceMonitor.namespace📜
Type: string
""
Description: Prometheus ServiceMonitor namespace
controller.metrics.serviceMonitor.additionalLabels📜
Type: object
{}
Description: Prometheus ServiceMonitor labels
controller.metrics.serviceMonitor.annotations📜
Type: object
{}
Description: Prometheus ServiceMonitor annotations
controller.metrics.rules.enabled📜
Type: bool
false
Description: Deploy a PrometheusRule for the application controller
controller.metrics.rules.namespace📜
Type: string
""
Description: PrometheusRule namespace
controller.metrics.rules.selector📜
Type: object
{}
Description: PrometheusRule selector
controller.metrics.rules.additionalLabels📜
Type: object
{}
Description: PrometheusRule labels
controller.metrics.rules.annotations📜
Type: object
{}
Description: PrometheusRule annotations
controller.metrics.rules.spec📜
Type: list
[]
Description: PrometheusRule.Spec for the application controller
controller.clusterRoleRules.enabled📜
Type: bool
false
Description: Enable custom rules for the application controller’s ClusterRole resource
controller.clusterRoleRules.rules📜
Type: list
[]
Description: List of custom rules for the application controller’s ClusterRole resource
dex.enabled📜
Type: bool
true
Description: Enable dex
dex.name📜
Type: string
"dex-server"
Description: Dex name
dex.extraArgs📜
Type: list
[]
Description: Additional command line arguments to pass to the Dex server
dex.metrics.enabled📜
Type: bool
false
Description: Deploy metrics service
dex.metrics.service.annotations📜
Type: object
{}
Description: Metrics service annotations
dex.metrics.service.labels📜
Type: object
{}
Description: Metrics service labels
dex.metrics.service.portName📜
Type: string
"http-metrics"
Description: Metrics service port name
dex.metrics.serviceMonitor.enabled📜
Type: bool
false
Description: Enable a prometheus ServiceMonitor
dex.metrics.serviceMonitor.interval📜
Type: string
"30s"
Description: Prometheus ServiceMonitor interval
dex.metrics.serviceMonitor.relabelings📜
Type: list
[]
Description: Prometheus [RelabelConfigs] to apply to samples before scraping
dex.metrics.serviceMonitor.metricRelabelings📜
Type: list
[]
Description: Prometheus [MetricRelabelConfigs] to apply to samples before ingestion
dex.metrics.serviceMonitor.selector📜
Type: object
{}
Description: Prometheus ServiceMonitor selector
dex.metrics.serviceMonitor.scheme📜
Type: string
""
Description: Prometheus ServiceMonitor scheme
dex.metrics.serviceMonitor.tlsConfig📜
Type: object
{}
Description: Prometheus ServiceMonitor tlsConfig
dex.metrics.serviceMonitor.namespace📜
Type: string
""
Description: Prometheus ServiceMonitor namespace
dex.metrics.serviceMonitor.additionalLabels📜
Type: object
{}
Description: Prometheus ServiceMonitor labels
dex.metrics.serviceMonitor.annotations📜
Type: object
{}
Description: Prometheus ServiceMonitor annotations
dex.pdb.enabled📜
Type: bool
false
Description: Deploy a [PodDisruptionBudget] for the Dex server
dex.pdb.labels📜
Type: object
{}
Description: Labels to be added to Dex server pdb
dex.pdb.annotations📜
Type: object
{}
Description: Annotations to be added to Dex server pdb
dex.pdb.maxUnavailable📜
Type: string
""
Description: Number of pods that are unavailble after eviction as number or percentage (eg.: 50%). # Has higher precedence over dex.pdb.minAvailable
dex.image.repository📜
Type: string
"registry1.dso.mil/ironbank/opensource/dexidp/dex"
Description: Dex image repository
dex.image.tag📜
Type: string
"v2.41.1"
Description: Dex image tag
dex.env📜
Type: list
[]
Description: Environment variables to pass to the Dex server
dex.extraContainers📜
Type: list
[]
Description: Additional containers to be added to the dex pod # Note: Supports use of custom Helm templates
dex.initContainers📜
Type: list
[]
Description: Init containers to add to the dex pod # Note: Supports use of custom Helm templates
dex.volumeMounts📜
Type: list
[]
Description: Additional volumeMounts to the dex main container
dex.volumes📜
Type: list
[]
Description: Additional volumes to the dex pod
dex.certificateSecret.enabled📜
Type: bool
false
Description: Create argocd-dex-server-tls secret
dex.certificateSecret.labels📜
Type: object
{}
Description: Labels to be added to argocd-dex-server-tls secret
dex.certificateSecret.annotations📜
Type: object
{}
Description: Annotations to be added to argocd-dex-server-tls secret
dex.certificateSecret.ca📜
Type: string
""
Description: Certificate authority. Required for self-signed certificates.
dex.certificateSecret.key📜
Type: string
""
Description: Certificate private key
dex.certificateSecret.crt📜
Type: string
""
Description: Certificate data. Must contain SANs of Dex service (ie: argocd-dex-server, argocd-dex-server.argo-cd.svc)
dex.deploymentAnnotations📜
Type: object
{}
Description: Annotations to be added to the Dex server Deployment
dex.podAnnotations📜
Type: object
{}
Description: Annotations to be added to the Dex server pods
dex.podLabels📜
Type: object
{}
Description: Labels to be added to the Dex server pods
dex.resources📜
Type: object
limits:
cpu: 10m
memory: 128Mi
requests:
cpu: 10m
memory: 128Mi
Description: Resource limits and requests for dex
dex.containerPorts.http📜
Type: int
5556
Description: HTTP container port
dex.containerPorts.grpc📜
Type: int
5557
Description: gRPC container port
dex.containerPorts.metrics📜
Type: int
5558
Description: Metrics container port
dex.dnsConfig📜
Type: object
{}
Description: [DNS configuration]
dex.dnsPolicy📜
Type: string
"ClusterFirst"
Description: Alternative DNS policy for Dex server pods
dex.livenessProbe.enabled📜
Type: bool
false
Description: Enable Kubernetes liveness probe for Dex >= 2.28.0
dex.livenessProbe.httpPath📜
Type: string
"/healthz/live"
Description: Http path to use for the liveness probe
dex.livenessProbe.httpPort📜
Type: string
"metrics"
Description: Http port to use for the liveness probe
dex.livenessProbe.httpScheme📜
Type: string
"HTTP"
Description: Scheme to use for for the liveness probe (can be HTTP or HTTPS)
dex.livenessProbe.failureThreshold📜
Type: int
3
Description: Minimum consecutive failures for the [probe] to be considered failed after having succeeded
dex.livenessProbe.initialDelaySeconds📜
Type: int
10
Description: Number of seconds after the container has started before [probe] is initiated
dex.livenessProbe.periodSeconds📜
Type: int
10
Description: How often (in seconds) to perform the [probe]
dex.livenessProbe.successThreshold📜
Type: int
1
Description: Minimum consecutive successes for the [probe] to be considered successful after having failed
dex.livenessProbe.timeoutSeconds📜
Type: int
1
Description: Number of seconds after which the [probe] times out
dex.readinessProbe.enabled📜
Type: bool
false
Description: Enable Kubernetes readiness probe for Dex >= 2.28.0
dex.readinessProbe.httpPath📜
Type: string
"/healthz/ready"
Description: Http path to use for the readiness probe
dex.readinessProbe.httpPort📜
Type: string
"metrics"
Description: Http port to use for the readiness probe
dex.readinessProbe.httpScheme📜
Type: string
"HTTP"
Description: Scheme to use for for the liveness probe (can be HTTP or HTTPS)
dex.readinessProbe.failureThreshold📜
Type: int
3
Description: Minimum consecutive failures for the [probe] to be considered failed after having succeeded
dex.readinessProbe.initialDelaySeconds📜
Type: int
10
Description: Number of seconds after the container has started before [probe] is initiated
dex.readinessProbe.periodSeconds📜
Type: int
10
Description: How often (in seconds) to perform the [probe]
dex.readinessProbe.successThreshold📜
Type: int
1
Description: Minimum consecutive successes for the [probe] to be considered successful after having failed
dex.readinessProbe.timeoutSeconds📜
Type: int
1
Description: Number of seconds after which the [probe] times out
dex.terminationGracePeriodSeconds📜
Type: int
30
Description: terminationGracePeriodSeconds for container lifecycle hook
dex.automountServiceAccountToken📜
Type: bool
true
Description: Automount API credentials for the Service Account into the pod.
dex.serviceAccount.create📜
Type: bool
true
Description: Create dex service account
dex.serviceAccount.name📜
Type: string
"argocd-dex-server"
Description: Dex service account name
dex.serviceAccount.annotations📜
Type: object
{}
Description: Annotations applied to created service account
dex.serviceAccount.automountServiceAccountToken📜
Type: bool
true
Description: Automount API credentials for the Service Account
dex.servicePortHttp📜
Type: int
5556
Description: Service port for HTTP access
dex.servicePortHttpName📜
Type: string
"http"
Description: Service port name for HTTP access
dex.servicePortGrpc📜
Type: int
5557
Description: Service port for gRPC access
dex.servicePortGrpcName📜
Type: string
"grpc"
Description: Service port name for gRPC access
dex.servicePortMetrics📜
Type: int
5558
Description: Service port for metrics access
dex.deploymentStrategy📜
Type: object
{}
Description: Deployment strategy to be added to the Dex server Deployment
redis.externalEndpoint📜
Type: string
""
Description: Endpoint URL for external Redis For use with BigBang passthrough
redis.enabled📜
Type: bool
true
Description: Enable redis
redis.name📜
Type: string
"redis"
Description: Redis name
redis.pdb.enabled📜
Type: bool
false
Description: Deploy a [PodDisruptionBudget] for the Redis
redis.pdb.labels📜
Type: object
{}
Description: Labels to be added to Redis pdb
redis.pdb.annotations📜
Type: object
{}
Description: Annotations to be added to Redis pdb
redis.pdb.maxUnavailable📜
Type: string
""
Description: Number of pods that are unavailble after eviction as number or percentage (eg.: 50%). # Has higher precedence over redis.pdb.minAvailable
redis.image.repository📜
Type: string
"ironbank/bitnami/redis"
Description: Redis repository
redis.image.tag📜
Type: string
"7.4.0"
Description: Redis tag
redis.exporter.enabled📜
Type: bool
false
Description: Enable Prometheus redis-exporter sidecar
redis.exporter.env📜
Type: list
[]
Description: Environment variables to pass to the Redis exporter
redis.exporter.image.repository📜
Type: string
"ironbank/bitnami/analytics/redis-exporter"
Description: Repository to use for the redis-exporter
redis.exporter.image.tag📜
Type: string
"v1.63.0"
Description: Tag to use for the redis-exporter
redis.exporter.readinessProbe.enabled📜
Type: bool
false
Description: Enable Kubernetes liveness probe for Redis exporter (optional)
redis.exporter.readinessProbe.initialDelaySeconds📜
Type: int
30
Description: Number of seconds after the container has started before [probe] is initiated
redis.exporter.readinessProbe.periodSeconds📜
Type: int
15
Description: How often (in seconds) to perform the [probe]
redis.exporter.readinessProbe.timeoutSeconds📜
Type: int
15
Description: Number of seconds after which the [probe] times out
redis.exporter.readinessProbe.successThreshold📜
Type: int
1
Description: Minimum consecutive successes for the [probe] to be considered successful after having failed
redis.exporter.readinessProbe.failureThreshold📜
Type: int
5
Description: Minimum consecutive failures for the [probe] to be considered failed after having succeeded
redis.exporter.livenessProbe.enabled📜
Type: bool
false
Description: Enable Kubernetes liveness probe for Redis exporter
redis.exporter.livenessProbe.initialDelaySeconds📜
Type: int
30
Description: Number of seconds after the container has started before [probe] is initiated
redis.exporter.livenessProbe.periodSeconds📜
Type: int
15
Description: How often (in seconds) to perform the [probe]
redis.exporter.livenessProbe.timeoutSeconds📜
Type: int
15
Description: Number of seconds after which the [probe] times out
redis.exporter.livenessProbe.successThreshold📜
Type: int
1
Description: Minimum consecutive successes for the [probe] to be considered successful after having failed
redis.exporter.livenessProbe.failureThreshold📜
Type: int
5
Description: Minimum consecutive failures for the [probe] to be considered failed after having succeeded
redis.exporter.resources📜
Type: object
{}
Description: Resource limits and requests for redis-exporter sidecar
redis.extraArgs📜
Type: list
[]
Description: Additional command line arguments to pass to redis-server
redis.env📜
Type: list
[]
Description: Environment variables to pass to the Redis server
redis.readinessProbe.enabled📜
Type: bool
false
Description: Enable Kubernetes liveness probe for Redis server
redis.readinessProbe.initialDelaySeconds📜
Type: int
30
Description: Number of seconds after the container has started before [probe] is initiated
redis.readinessProbe.periodSeconds📜
Type: int
15
Description: How often (in seconds) to perform the [probe]
redis.readinessProbe.timeoutSeconds📜
Type: int
15
Description: Number of seconds after which the [probe] times out
redis.readinessProbe.successThreshold📜
Type: int
1
Description: Minimum consecutive successes for the [probe] to be considered successful after having failed
redis.readinessProbe.failureThreshold📜
Type: int
5
Description: Minimum consecutive failures for the [probe] to be considered failed after having succeeded
redis.livenessProbe.enabled📜
Type: bool
false
Description: Enable Kubernetes liveness probe for Redis server
redis.livenessProbe.initialDelaySeconds📜
Type: int
30
Description: Number of seconds after the container has started before [probe] is initiated
redis.livenessProbe.periodSeconds📜
Type: int
15
Description: How often (in seconds) to perform the [probe]
redis.livenessProbe.timeoutSeconds📜
Type: int
15
Description: Number of seconds after which the [probe] times out
redis.livenessProbe.successThreshold📜
Type: int
1
Description: Minimum consecutive successes for the [probe] to be considered successful after having failed
redis.livenessProbe.failureThreshold📜
Type: int
5
Description: Minimum consecutive failures for the [probe] to be considered failed after having succeeded
redis.extraContainers📜
Type: list
[]
Description: Additional containers to be added to the redis pod # Note: Supports use of custom Helm templates
redis.initContainers📜
Type: list
[]
Description: Init containers to add to the redis pod # Note: Supports use of custom Helm templates
redis.volumeMounts📜
Type: list
[]
Description: Additional volumeMounts to the redis container
redis.volumes📜
Type: list
[]
Description: Additional volumes to the redis pod
redis.deploymentAnnotations📜
Type: object
{}
Description: Annotations to be added to the Redis server Deployment
redis.podAnnotations📜
Type: object
{}
Description: Annotations to be added to the Redis server pods
redis.podLabels📜
Type: object
{}
Description: Labels to be added to the Redis server pods
redis.resources📜
Type: object
limits:
cpu: 50m
memory: 64Mi
requests:
cpu: 50m
memory: 64Mi
Description: Resource limits and requests for redis
redis.containerPorts.redis📜
Type: int
6379
Description: Redis container port
redis.containerPorts.metrics📜
Type: int
9121
Description: Metrics container port
redis.dnsConfig📜
Type: object
{}
Description: [DNS configuration]
redis.dnsPolicy📜
Type: string
"ClusterFirst"
Description: Alternative DNS policy for Redis server pods
redis.servicePort📜
Type: int
6379
Description: Redis service port
redis.terminationGracePeriodSeconds📜
Type: int
30
Description: terminationGracePeriodSeconds for container lifecycle hook
redis.automountServiceAccountToken📜
Type: bool
true
Description: Automount API credentials for the Service Account into the pod.
redis.serviceAccount.create📜
Type: bool
false
Description: Create a service account for the redis pod
redis.serviceAccount.name📜
Type: string
""
Description: Service account name for redis pod
redis.serviceAccount.annotations📜
Type: object
{}
Description: Annotations applied to created service account
redis.serviceAccount.automountServiceAccountToken📜
Type: bool
false
Description: Automount API credentials for the Service Account
redis.service.annotations📜
Type: object
{}
Description: Redis service annotations
redis.service.labels📜
Type: object
{}
Description: Additional redis service labels
redis.master.containerSecurityContext.enabled📜
Type: bool
true
redis.master.containerSecurityContext.runAsUser📜
Type: int
999
redis.master.containerSecurityContext.runAsGroup📜
Type: int
999
redis.replica.containerSecurityContext.enabled📜
Type: bool
true
redis.replica.containerSecurityContext.runAsUser📜
Type: int
999
redis.replica.containerSecurityContext.runAsGroup📜
Type: int
999
redis.metrics.enabled📜
Type: bool
false
Description: Deploy metrics service
redis.metrics.service.type📜
Type: string
"ClusterIP"
Description: Metrics service type
redis.metrics.service.clusterIP📜
Type: string
"None"
Description: Metrics service clusterIP. None makes a “headless service” (no virtual IP)
redis.metrics.service.annotations📜
Type: object
{}
Description: Metrics service annotations
redis.metrics.service.labels📜
Type: object
{}
Description: Metrics service labels
redis.metrics.service.servicePort📜
Type: int
9121
Description: Metrics service port
redis.metrics.service.portName📜
Type: string
"http-metrics"
Description: Metrics service port name
redis.metrics.serviceMonitor.enabled📜
Type: bool
false
Description: Enable a prometheus ServiceMonitor
redis.metrics.serviceMonitor.interval📜
Type: string
"30s"
Description: Interval at which metrics should be scraped
redis.metrics.serviceMonitor.relabelings📜
Type: list
[]
Description: Prometheus [RelabelConfigs] to apply to samples before scraping
redis.metrics.serviceMonitor.metricRelabelings📜
Type: list
[]
Description: Prometheus [MetricRelabelConfigs] to apply to samples before ingestion
redis.metrics.serviceMonitor.selector📜
Type: object
{}
Description: Prometheus ServiceMonitor selector
redis.metrics.serviceMonitor.scheme📜
Type: string
""
Description: Prometheus ServiceMonitor scheme
redis.metrics.serviceMonitor.tlsConfig📜
Type: object
{}
Description: Prometheus ServiceMonitor tlsConfig
redis.metrics.serviceMonitor.namespace📜
Type: string
""
Description: Prometheus ServiceMonitor namespace
redis.metrics.serviceMonitor.additionalLabels📜
Type: object
{}
Description: Prometheus ServiceMonitor labels
redis.metrics.serviceMonitor.annotations📜
Type: object
{}
Description: Prometheus ServiceMonitor annotations
redis.metrics.containerSecurityContext.enabled📜
Type: bool
true
redis.metrics.containerSecurityContext.runAsUser📜
Type: int
999
redis.metrics.containerSecurityContext.runAsGroup📜
Type: int
999
redis-bb📜
Type: object
auth:
enabled: false
commonConfiguration: 'maxmemory 200mb
save ""'
enabled: true
image:
pullSecrets:
- private-registry
istio:
redis:
enabled: false
master:
containerSecurityContext:
capabilities:
drop:
- ALL
enabled: true
runAsGroup: 1001
runAsNonRoot: true
runAsUser: 1001
resources:
limits:
cpu: 100m
memory: 256Mi
requests:
cpu: 100m
memory: 256Mi
metrics:
containerSecurityContext:
enabled: true
runAsGroup: 1001
runAsUser: 1001
enabled: true
labels:
app.kubernetes.io/name: argocd-redis-ha-haproxy
metrics: null
replica:
containerSecurityContext:
capabilities:
drop:
- ALL
enabled: true
runAsGroup: 1001
runAsNonRoot: true
runAsUser: 1001
resources:
limits:
cpu: 100m
memory: 256Mi
requests:
cpu: 100m
memory: 256Mi
Description: BigBang HA Redis Passthrough
redis-bb.metrics.labels📜
Type: object
app.kubernetes.io/name: argocd-redis-ha-haproxy
Description: Custom labels for the haproxy pod. This is relevant for Argo CD CLI.
redis-bb.metrics.containerSecurityContext📜
Type: object
enabled: true
runAsGroup: 1001
runAsUser: 1001
Description: HAProxy enable prometheus metric scraping
externalRedis.host📜
Type: string
""
Description: External Redis server host
externalRedis.username📜
Type: string
""
Description: External Redis username
externalRedis.password📜
Type: string
""
Description: External Redis password
externalRedis.port📜
Type: int
6379
Description: External Redis server port
externalRedis.existingSecret📜
Type: string
""
Description: The name of an existing secret with Redis (must contain key redis-password) and Sentinel credentials. When it’s set, the externalRedis.password parameter is ignored
externalRedis.secretAnnotations📜
Type: object
{}
Description: External Redis Secret annotations
redisSecretInit.enabled📜
Type: bool
false
Description: Enable Redis secret initialization. If disabled, secret must be provisioned by alternative methods
redisSecretInit.name📜
Type: string
"redis-secret-init"
Description: Redis secret-init name
redisSecretInit.jobAnnotations📜
Type: object
{}
Description: Annotations to be added to the Redis secret-init Job
redisSecretInit.podAnnotations📜
Type: object
{}
Description: Annotations to be added to the Redis secret-init Job
redisSecretInit.podLabels📜
Type: object
{}
Description: Labels to be added to the Redis secret-init Job
redisSecretInit.resources📜
Type: object
{}
Description: Resource limits and requests for Redis secret-init Job
redisSecretInit.securityContext📜
Type: object
{}
Description: Redis secret-init Job pod-level security context
redisSecretInit.serviceAccount.create📜
Type: bool
true
Description: Create a service account for the redis pod
redisSecretInit.serviceAccount.name📜
Type: string
""
Description: Service account name for redis pod
redisSecretInit.serviceAccount.annotations📜
Type: object
{}
Description: Annotations applied to created service account
redisSecretInit.serviceAccount.automountServiceAccountToken📜
Type: bool
true
Description: Automount API credentials for the Service Account
server.name📜
Type: string
"server"
Description: Argo CD server name
server.replicas📜
Type: int
1
Description: The number of server pods to run
server.autoscaling.enabled📜
Type: bool
false
Description: Enable Horizontal Pod Autoscaler ([HPA]) for the Argo CD server
server.autoscaling.minReplicas📜
Type: int
1
Description: Minimum number of replicas for the Argo CD server [HPA]
server.autoscaling.maxReplicas📜
Type: int
5
Description: Maximum number of replicas for the Argo CD server [HPA]
server.autoscaling.targetCPUUtilizationPercentage📜
Type: int
50
Description: Average CPU utilization percentage for the Argo CD server [HPA]
server.autoscaling.targetMemoryUtilizationPercentage📜
Type: int
50
Description: Average memory utilization percentage for the Argo CD server [HPA]
server.autoscaling.behavior📜
Type: object
{}
Description: Configures the scaling behavior of the target in both Up and Down directions.
server.autoscaling.metrics📜
Type: list
[]
Description: Configures custom HPA metrics for the Argo CD server Ref: https://kubernetes.io/docs/tasks/run-application/horizontal-pod-autoscale/
server.pdb.enabled📜
Type: bool
false
Description: Deploy a [PodDisruptionBudget] for the Argo CD server
server.pdb.labels📜
Type: object
{}
Description: Labels to be added to Argo CD server pdb
server.pdb.annotations📜
Type: object
{}
Description: Annotations to be added to Argo CD server pdb
server.pdb.maxUnavailable📜
Type: string
""
Description: Number of pods that are unavailable after eviction as number or percentage (eg.: 50%). # Has higher precedence over server.pdb.minAvailable
server.extraArgs📜
Type: list
[]
Description: Additional command line arguments to pass to Argo CD server
server.env📜
Type: list
[]
Description: Environment variables to pass to Argo CD server
server.lifecycle📜
Type: object
{}
Description: Specify postStart and preStop lifecycle hooks for your argo-cd-server container
server.extensions.enabled📜
Type: bool
false
Description: Enable support for Argo CD extensions
server.extensions.image.repository📜
Type: string
"quay.io/argoprojlabs/argocd-extension-installer"
Description: Repository to use for extension installer image
server.extensions.image.tag📜
Type: string
"v0.0.5"
Description: Tag to use for extension installer image
server.extensions.resources📜
Type: object
{}
Description: Resource limits and requests for the argocd-extensions container
server.extraContainers📜
Type: list
[]
Description: Additional containers to be added to the server pod # Note: Supports use of custom Helm templates
server.initContainers📜
Type: list
[]
Description: Init containers to add to the server pod # If your target Kubernetes cluster(s) require a custom credential (exec) plugin # you could use this (and the same in the application controller pod) to provide such executable # Ref: https://kubernetes.io/docs/reference/access-authn-authz/authentication/#client-go-credential-plugins
server.volumeMounts📜
Type: list
[]
Description: Additional volumeMounts to the server main container
server.volumes📜
Type: list
[]
Description: Additional volumes to the server pod
server.deploymentAnnotations📜
Type: object
{}
Description: Annotations to be added to server Deployment
server.podAnnotations📜
Type: object
{}
Description: Annotations to be added to server pods
server.podLabels📜
Type: object
{}
Description: Labels to be added to server pods
server.resources📜
Type: object
limits:
cpu: 20m
memory: 128Mi
requests:
cpu: 20m
memory: 128Mi
Description: Resource limits and requests for the Argo CD server
server.containerPorts.server📜
Type: int
8080
Description: Server container port
server.containerPorts.metrics📜
Type: int
8083
Description: Metrics container port
server.hostNetwork📜
Type: bool
false
Description: Host Network for Server pods
server.dnsConfig📜
Type: object
{}
Description: [DNS configuration]
server.dnsPolicy📜
Type: string
"ClusterFirst"
Description: Alternative DNS policy for Server pods
server.readinessProbe.failureThreshold📜
Type: int
3
Description: Minimum consecutive failures for the [probe] to be considered failed after having succeeded
server.readinessProbe.initialDelaySeconds📜
Type: int
10
Description: Number of seconds after the container has started before [probe] is initiated
server.readinessProbe.periodSeconds📜
Type: int
10
Description: How often (in seconds) to perform the [probe]
server.readinessProbe.successThreshold📜
Type: int
1
Description: Minimum consecutive successes for the [probe] to be considered successful after having failed
server.readinessProbe.timeoutSeconds📜
Type: int
1
Description: Number of seconds after which the [probe] times out
server.livenessProbe.failureThreshold📜
Type: int
3
Description: Minimum consecutive failures for the [probe] to be considered failed after having succeeded
server.livenessProbe.initialDelaySeconds📜
Type: int
10
Description: Number of seconds after the container has started before [probe] is initiated
server.livenessProbe.periodSeconds📜
Type: int
10
Description: How often (in seconds) to perform the [probe]
server.livenessProbe.successThreshold📜
Type: int
1
Description: Minimum consecutive successes for the [probe] to be considered successful after having failed
server.livenessProbe.timeoutSeconds📜
Type: int
1
Description: Number of seconds after which the [probe] times out
server.terminationGracePeriodSeconds📜
Type: int
30
Description: terminationGracePeriodSeconds for container lifecycle hook
server.deploymentStrategy📜
Type: object
{}
Description: Deployment strategy to be added to the server Deployment
server.certificate.enabled📜
Type: bool
false
Description: Deploy a Certificate resource (requires cert-manager)
server.certificate.additionalHosts📜
Type: list
[]
Description: Certificate Subject Alternate Names (SANs)
server.certificate.issuer.group📜
Type: string
""
Description: Certificate issuer group. Set if using an external issuer. Eg. cert-manager.io
server.certificate.issuer.kind📜
Type: string
""
Description: Certificate issuer kind. Either Issuer or ClusterIssuer
server.certificate.issuer.name📜
Type: string
""
Description: Certificate issuer name. Eg. letsencrypt
server.certificate.privateKey.rotationPolicy📜
Type: string
"Never"
Description: Rotation policy of private key when certificate is re-issued. Either: Never or Always
server.certificate.privateKey.encoding📜
Type: string
"PKCS1"
Description: The private key cryptography standards (PKCS) encoding for private key. Either: PCKS1 or PKCS8
server.certificate.privateKey.algorithm📜
Type: string
"RSA"
Description: Algorithm used to generate certificate private key. One of: RSA, Ed25519 or ECDSA
server.certificate.privateKey.size📜
Type: int
2048
Description: Key bit size of the private key. If algorithm is set to Ed25519, size is ignored.
server.certificate.annotations📜
Type: object
{}
Description: Annotations to be applied to the Server Certificate
server.certificate.usages📜
Type: list
[]
Description: Usages for the certificate ## Ref: https://cert-manager.io/docs/reference/api-docs/#cert-manager.io/v1.KeyUsage
server.certificate.secretTemplateAnnotations📜
Type: object
{}
Description: Annotations that allow the certificate to be composed from data residing in existing Kubernetes Resources
server.certificateSecret.enabled📜
Type: bool
false
Description: Create argocd-server-tls secret
server.certificateSecret.annotations📜
Type: object
{}
Description: Annotations to be added to argocd-server-tls secret
server.certificateSecret.labels📜
Type: object
{}
Description: Labels to be added to argocd-server-tls secret
server.certificateSecret.key📜
Type: string
""
Description: Private Key of the certificate
server.certificateSecret.crt📜
Type: string
""
Description: Certificate data
server.service.annotations📜
Type: object
{}
Description: Server service annotations
server.service.labels📜
Type: object
{}
Description: Server service labels
server.service.type📜
Type: string
"ClusterIP"
Description: Server service type
server.service.nodePortHttp📜
Type: int
30080
Description: Server service http port for NodePort service type (only if server.service.type is set to “NodePort”)
server.service.nodePortHttps📜
Type: int
30443
Description: Server service https port for NodePort service type (only if server.service.type is set to “NodePort”)
server.service.servicePortHttp📜
Type: int
80
Description: Server service http port
server.service.servicePortHttps📜
Type: int
443
Description: Server service https port
server.service.servicePortHttpName📜
Type: string
"http"
Description: Server service http port name, can be used to route traffic via istio
server.service.servicePortHttpsName📜
Type: string
"https"
Description: Server service https port name, can be used to route traffic via istio
server.service.servicePortHttpsAppProtocol📜
Type: string
""
Description: Server service https port appProtocol # Ref: https://kubernetes.io/docs/concepts/services-networking/service/#application-protocol
server.service.loadBalancerClass📜
Type: string
""
Description: The class of the load balancer implementation
server.service.loadBalancerIP📜
Type: string
""
Description: LoadBalancer will get created with the IP specified in this field
server.service.loadBalancerSourceRanges📜
Type: list
[]
Description: Source IP ranges to allow access to service from # Ref: https://kubernetes.io/docs/tasks/access-application-cluster/configure-cloud-provider-firewall/#restrict-access-for-loadbalancer-service
server.service.externalIPs📜
Type: list
[]
Description: Server service external IPs
server.service.externalTrafficPolicy📜
Type: string
""
Description: Denotes if this Service desires to route external traffic to node-local or cluster-wide endpoints
server.service.sessionAffinity📜
Type: string
""
Description: Used to maintain session affinity. Supports ClientIP and None
server.metrics.enabled📜
Type: bool
false
Description: Deploy metrics service
server.metrics.service.type📜
Type: string
"ClusterIP"
Description: Metrics service type
server.metrics.service.clusterIP📜
Type: string
""
Description: Metrics service clusterIP. None makes a “headless service” (no virtual IP)
server.metrics.service.annotations📜
Type: object
{}
Description: Metrics service annotations
server.metrics.service.labels📜
Type: object
{}
Description: Metrics service labels
server.metrics.service.servicePort📜
Type: int
8083
Description: Metrics service port
server.metrics.service.portName📜
Type: string
"http-metrics"
Description: Metrics service port name
server.metrics.serviceMonitor.enabled📜
Type: bool
false
Description: Enable a prometheus ServiceMonitor
server.metrics.serviceMonitor.interval📜
Type: string
"30s"
Description: Prometheus ServiceMonitor interval
server.metrics.serviceMonitor.scrapeTimeout📜
Type: string
""
Description: Prometheus ServiceMonitor scrapeTimeout. If empty, Prometheus uses the global scrape timeout unless it is less than the target’s scrape interval value in which the latter is used.
server.metrics.serviceMonitor.relabelings📜
Type: list
[]
Description: Prometheus [RelabelConfigs] to apply to samples before scraping
server.metrics.serviceMonitor.metricRelabelings📜
Type: list
[]
Description: Prometheus [MetricRelabelConfigs] to apply to samples before ingestion
server.metrics.serviceMonitor.selector📜
Type: object
{}
Description: Prometheus ServiceMonitor selector
server.metrics.serviceMonitor.scheme📜
Type: string
""
Description: Prometheus ServiceMonitor scheme
server.metrics.serviceMonitor.tlsConfig📜
Type: object
{}
Description: Prometheus ServiceMonitor tlsConfig
server.metrics.serviceMonitor.namespace📜
Type: string
""
Description: Prometheus ServiceMonitor namespace
server.metrics.serviceMonitor.additionalLabels📜
Type: object
{}
Description: Prometheus ServiceMonitor labels
server.metrics.serviceMonitor.annotations📜
Type: object
{}
Description: Prometheus ServiceMonitor annotations
server.automountServiceAccountToken📜
Type: bool
true
Description: Automount API credentials for the Service Account into the pod.
server.serviceAccount.create📜
Type: bool
true
Description: Create server service account
server.serviceAccount.name📜
Type: string
"argocd-server"
Description: Server service account name
server.serviceAccount.annotations📜
Type: object
{}
Description: Annotations applied to created service account
server.serviceAccount.labels📜
Type: object
{}
Description: Labels applied to created service account
server.serviceAccount.automountServiceAccountToken📜
Type: bool
true
Description: Automount API credentials for the Service Account
server.ingress.enabled📜
Type: bool
false
Description: Enable an ingress resource for the Argo CD server
server.ingress.controller📜
Type: string
"generic"
Description: Specific implementation for ingress controller. One of generic, aws or gke # Additional configuration might be required in related configuration sections
server.ingress.labels📜
Type: object
{}
Description: Additional ingress labels
server.ingress.annotations📜
Type: object
{}
Description: Additional ingress annotations # Ref: https://argo-cd.readthedocs.io/en/stable/operator-manual/ingress/#option-1-ssl-passthrough
server.ingress.ingressClassName📜
Type: string
""
Description: Defines which ingress controller will implement the resource
server.ingress.path📜
Type: string
"/"
Description: The path to Argo CD server
server.ingress.pathType📜
Type: string
"Prefix"
Description: Ingress path type. One of Exact, Prefix or ImplementationSpecific
server.ingress.tls📜
Type: bool
false
Description: Enable TLS configuration for the hostname defined at server.ingress.hostname # TLS certificate will be retrieved from a TLS secret argocd-server-tls # You can create this secret via certificate or certificateSecret option
server.ingress.aws.backendProtocolVersion📜
Type: string
"GRPC"
Description: Backend protocol version for the AWS ALB gRPC service # This tells AWS to send traffic from the ALB using gRPC. # For more information: https://docs.aws.amazon.com/elasticloadbalancing/latest/application/target-group-health-checks.html#health-check-settings
server.ingress.aws.serviceType📜
Type: string
"NodePort"
Description: Service type for the AWS ALB gRPC service # Can be of type NodePort or ClusterIP depending on which mode you are running. # Instance mode needs type NodePort, IP mode needs type ClusterIP # Ref: https://kubernetes-sigs.github.io/aws-load-balancer-controller/v2.2/how-it-works/#ingress-traffic
server.ingress.gke.managedCertificate.create📜
Type: bool
true
Description: Create ManagedCertificate resource and annotations for Google Load balancer # Ref: https://cloud.google.com/kubernetes-engine/docs/how-to/managed-certs
server.ingress.gke.managedCertificate.extraDomains📜
Type: list
[]
Description: Additional domains for ManagedCertificate resource
server.ingressGrpc.enabled📜
Type: bool
false
Description: Enable an ingress resource for the Argo CD server for dedicated [gRPC-ingress]
server.ingressGrpc.annotations📜
Type: object
{}
Description: Additional ingress annotations for dedicated [gRPC-ingress]
server.ingressGrpc.labels📜
Type: object
{}
Description: Additional ingress labels for dedicated [gRPC-ingress]
server.ingressGrpc.ingressClassName📜
Type: string
""
Description: Defines which ingress controller will implement the resource [gRPC-ingress]
server.ingressGrpc.path📜
Type: string
"/"
Description: Argo CD server ingress path for dedicated [gRPC-ingress]
server.ingressGrpc.pathType📜
Type: string
"Prefix"
Description: Ingress path type for dedicated [gRPC-ingress]. One of Exact, Prefix or ImplementationSpecific
server.ingressGrpc.tls📜
Type: bool
false
Description: Enable TLS configuration for the hostname defined at server.ingressGrpc.hostname # TLS certificate will be retrieved from a TLS secret with name: argocd-server-grpc-tls
server.route.enabled📜
Type: bool
false
Description: Enable an OpenShift Route for the Argo CD server
server.route.annotations📜
Type: object
{}
Description: Openshift Route annotations
server.route.hostname📜
Type: string
""
Description: Hostname of OpenShift Route
server.route.termination_type📜
Type: string
"passthrough"
Description: Termination type of Openshift Route
server.route.termination_policy📜
Type: string
"None"
Description: Termination policy of Openshift Route
server.clusterRoleRules.enabled📜
Type: bool
false
Description: Enable custom rules for the server’s ClusterRole resource
server.clusterRoleRules.rules📜
Type: list
[]
Description: List of custom rules for the server’s ClusterRole resource
repoServer.name📜
Type: string
"repo-server"
Description: Repo server name
repoServer.replicas📜
Type: int
1
Description: The number of repo server pods to run
repoServer.autoscaling.enabled📜
Type: bool
false
Description: Enable Horizontal Pod Autoscaler ([HPA]) for the repo server
repoServer.autoscaling.minReplicas📜
Type: int
1
Description: Minimum number of replicas for the repo server [HPA]
repoServer.autoscaling.maxReplicas📜
Type: int
5
Description: Maximum number of replicas for the repo server [HPA]
repoServer.autoscaling.targetCPUUtilizationPercentage📜
Type: int
50
Description: Average CPU utilization percentage for the repo server [HPA]
repoServer.autoscaling.targetMemoryUtilizationPercentage📜
Type: int
50
Description: Average memory utilization percentage for the repo server [HPA]
repoServer.autoscaling.behavior📜
Type: object
{}
Description: Configures the scaling behavior of the target in both Up and Down directions.
repoServer.autoscaling.metrics📜
Type: list
[]
Description: Configures custom HPA metrics for the Argo CD repo server Ref: https://kubernetes.io/docs/tasks/run-application/horizontal-pod-autoscale/
repoServer.pdb.enabled📜
Type: bool
false
Description: Deploy a [PodDisruptionBudget] for the repo server
repoServer.pdb.labels📜
Type: object
{}
Description: Labels to be added to repo server pdb
repoServer.pdb.annotations📜
Type: object
{}
Description: Annotations to be added to repo server pdb
repoServer.pdb.maxUnavailable📜
Type: string
""
Description: Number of pods that are unavailable after eviction as number or percentage (eg.: 50%). # Has higher precedence over repoServer.pdb.minAvailable
repoServer.extraArgs📜
Type: list
[]
Description: Additional command line arguments to pass to repo server
repoServer.env📜
Type: list
[]
Description: Environment variables to pass to repo server
repoServer.lifecycle📜
Type: object
{}
Description: Specify postStart and preStop lifecycle hooks for your argo-repo-server container
repoServer.extraContainers📜
Type: list
[]
Description: Additional containers to be added to the repo server pod # Ref: https://argo-cd.readthedocs.io/en/stable/user-guide/config-management-plugins/ # Note: Supports use of custom Helm templates
repoServer.initContainers📜
Type: list
[]
Description: Init containers to add to the repo server pods
repoServer.volumeMounts📜
Type: list
[]
Description: Additional volumeMounts to the repo server main container
repoServer.volumes📜
Type: list
[]
Description: Additional volumes to the repo server pod
repoServer.existingVolumes📜
Type: object
{}
Description: Volumes to be used in replacement of emptydir on default volumes
repoServer.useEphemeralHelmWorkingDir📜
Type: bool
true
Description: Toggle the usage of a ephemeral Helm working directory
repoServer.deploymentAnnotations📜
Type: object
{}
Description: Annotations to be added to repo server Deployment
repoServer.podAnnotations📜
Type: object
{}
Description: Annotations to be added to repo server pods
repoServer.podLabels📜
Type: object
{}
Description: Labels to be added to repo server pods
repoServer.resources📜
Type: object
limits:
cpu: 100m
memory: 1Gi
requests:
cpu: 100m
memory: 1Gi
Description: Resource limits and requests for the repo server pods
repoServer.containerPorts.server📜
Type: int
8081
Description: Repo server container port
repoServer.containerPorts.metrics📜
Type: int
8084
Description: Metrics container port
repoServer.hostNetwork📜
Type: bool
false
Description: Host Network for Repo server pods
repoServer.dnsConfig📜
Type: object
{}
Description: [DNS configuration]
repoServer.dnsPolicy📜
Type: string
"ClusterFirst"
Description: Alternative DNS policy for Repo server pods
repoServer.readinessProbe.failureThreshold📜
Type: int
3
Description: Minimum consecutive failures for the [probe] to be considered failed after having succeeded
repoServer.readinessProbe.initialDelaySeconds📜
Type: int
10
Description: Number of seconds after the container has started before [probe] is initiated
repoServer.readinessProbe.periodSeconds📜
Type: int
10
Description: How often (in seconds) to perform the [probe]
repoServer.readinessProbe.successThreshold📜
Type: int
1
Description: Minimum consecutive successes for the [probe] to be considered successful after having failed
repoServer.readinessProbe.timeoutSeconds📜
Type: int
1
Description: Number of seconds after which the [probe] times out
repoServer.livenessProbe.failureThreshold📜
Type: int
3
Description: Minimum consecutive failures for the [probe] to be considered failed after having succeeded
repoServer.livenessProbe.initialDelaySeconds📜
Type: int
10
Description: Number of seconds after the container has started before [probe] is initiated
repoServer.livenessProbe.periodSeconds📜
Type: int
10
Description: How often (in seconds) to perform the [probe]
repoServer.livenessProbe.successThreshold📜
Type: int
1
Description: Minimum consecutive successes for the [probe] to be considered successful after having failed
repoServer.livenessProbe.timeoutSeconds📜
Type: int
1
Description: Number of seconds after which the [probe] times out
repoServer.terminationGracePeriodSeconds📜
Type: int
30
Description: terminationGracePeriodSeconds for container lifecycle hook
repoServer.deploymentStrategy📜
Type: object
{}
Description: Deployment strategy to be added to the repo server Deployment
repoServer.certificateSecret.enabled📜
Type: bool
false
Description: Create argocd-repo-server-tls secret
repoServer.certificateSecret.annotations📜
Type: object
{}
Description: Annotations to be added to argocd-repo-server-tls secret
repoServer.certificateSecret.labels📜
Type: object
{}
Description: Labels to be added to argocd-repo-server-tls secret
repoServer.certificateSecret.ca📜
Type: string
""
Description: Certificate authority. Required for self-signed certificates.
repoServer.certificateSecret.key📜
Type: string
""
Description: Certificate private key
repoServer.certificateSecret.crt📜
Type: string
""
Description: Certificate data. Must contain SANs of Repo service (ie: argocd-repo-server, argocd-repo-server.argo-cd.svc)
repoServer.service.annotations📜
Type: object
{}
Description: Repo server service annotations
repoServer.service.labels📜
Type: object
{}
Description: Repo server service labels
repoServer.service.port📜
Type: int
8081
Description: Repo server service port
repoServer.service.portName📜
Type: string
"tcp-repo-server"
Description: Repo server service port name
repoServer.metrics.enabled📜
Type: bool
false
Description: Deploy metrics service
repoServer.metrics.service.type📜
Type: string
"ClusterIP"
Description: Metrics service type
repoServer.metrics.service.clusterIP📜
Type: string
""
Description: Metrics service clusterIP. None makes a “headless service” (no virtual IP)
repoServer.metrics.service.annotations📜
Type: object
{}
Description: Metrics service annotations
repoServer.metrics.service.labels📜
Type: object
{}
Description: Metrics service labels
repoServer.metrics.service.servicePort📜
Type: int
8084
Description: Metrics service port
repoServer.metrics.service.portName📜
Type: string
"http-metrics"
Description: Metrics service port name
repoServer.metrics.serviceMonitor.enabled📜
Type: bool
false
Description: Enable a prometheus ServiceMonitor
repoServer.metrics.serviceMonitor.interval📜
Type: string
"30s"
Description: Prometheus ServiceMonitor interval
repoServer.metrics.serviceMonitor.scrapeTimeout📜
Type: string
""
Description: Prometheus ServiceMonitor scrapeTimeout. If empty, Prometheus uses the global scrape timeout unless it is less than the target’s scrape interval value in which the latter is used.
repoServer.metrics.serviceMonitor.relabelings📜
Type: list
[]
Description: Prometheus [RelabelConfigs] to apply to samples before scraping
repoServer.metrics.serviceMonitor.metricRelabelings📜
Type: list
[]
Description: Prometheus [MetricRelabelConfigs] to apply to samples before ingestion
repoServer.metrics.serviceMonitor.selector📜
Type: object
{}
Description: Prometheus ServiceMonitor selector
repoServer.metrics.serviceMonitor.scheme📜
Type: string
""
Description: Prometheus ServiceMonitor scheme
repoServer.metrics.serviceMonitor.tlsConfig📜
Type: object
{}
Description: Prometheus ServiceMonitor tlsConfig
repoServer.metrics.serviceMonitor.namespace📜
Type: string
""
Description: Prometheus ServiceMonitor namespace
repoServer.metrics.serviceMonitor.additionalLabels📜
Type: object
{}
Description: Prometheus ServiceMonitor labels
repoServer.metrics.serviceMonitor.annotations📜
Type: object
{}
Description: Prometheus ServiceMonitor annotations
repoServer.clusterRoleRules.enabled📜
Type: bool
false
Description: Enable custom rules for the Repo server’s Cluster Role resource
repoServer.clusterRoleRules.rules📜
Type: list
[]
Description: List of custom rules for the Repo server’s Cluster Role resource
repoServer.automountServiceAccountToken📜
Type: bool
true
Description: Automount API credentials for the Service Account into the pod.
repoServer.serviceAccount.create📜
Type: bool
true
Description: Create repo server service account
repoServer.serviceAccount.name📜
Type: string
""
Description: Repo server service account name
repoServer.serviceAccount.annotations📜
Type: object
{}
Description: Annotations applied to created service account
repoServer.serviceAccount.labels📜
Type: object
{}
Description: Labels applied to created service account
repoServer.serviceAccount.automountServiceAccountToken📜
Type: bool
true
Description: Automount API credentials for the Service Account
repoServer.rbac📜
Type: list
[]
Description: Repo server rbac rules
applicationSet.enabled📜
Type: bool
true
Description: Enable ApplicationSet controller
applicationSet.name📜
Type: string
"applicationset-controller"
Description: ApplicationSet controller name string
applicationSet.replicas📜
Type: int
1
Description: The number of ApplicationSet controller pods to run
applicationSet.pdb.enabled📜
Type: bool
false
Description: Deploy a [PodDisruptionBudget] for the ApplicationSet controller
applicationSet.pdb.labels📜
Type: object
{}
Description: Labels to be added to ApplicationSet controller pdb
applicationSet.pdb.annotations📜
Type: object
{}
Description: Annotations to be added to ApplicationSet controller pdb
applicationSet.pdb.maxUnavailable📜
Type: string
""
Description: Number of pods that are unavailable after eviction as number or percentage (eg.: 50%). # Has higher precedence over applicationSet.pdb.minAvailable
applicationSet.extraArgs📜
Type: list
[]
Description: ApplicationSet controller command line flags
applicationSet.extraEnv📜
Type: list
[]
Description: Environment variables to pass to the ApplicationSet controller
applicationSet.extraContainers📜
Type: list
[]
Description: Additional containers to be added to the ApplicationSet controller pod # Note: Supports use of custom Helm templates
applicationSet.initContainers📜
Type: list
[]
Description: Init containers to add to the ApplicationSet controller pod # Note: Supports use of custom Helm templates
applicationSet.extraVolumeMounts📜
Type: list
[]
Description: List of extra mounts to add (normally used with extraVolumes)
applicationSet.extraVolumes📜
Type: list
[]
Description: List of extra volumes to add
applicationSet.metrics.enabled📜
Type: bool
false
Description: Deploy metrics service
applicationSet.metrics.service.type📜
Type: string
"ClusterIP"
Description: Metrics service type
applicationSet.metrics.service.clusterIP📜
Type: string
""
Description: Metrics service clusterIP. None makes a “headless service” (no virtual IP)
applicationSet.metrics.service.annotations📜
Type: object
{}
Description: Metrics service annotations
applicationSet.metrics.service.labels📜
Type: object
{}
Description: Metrics service labels
applicationSet.metrics.service.servicePort📜
Type: int
8080
Description: Metrics service port
applicationSet.metrics.service.portName📜
Type: string
"http-metrics"
Description: Metrics service port name
applicationSet.metrics.serviceMonitor.enabled📜
Type: bool
false
Description: Enable a prometheus ServiceMonitor
applicationSet.metrics.serviceMonitor.interval📜
Type: string
"30s"
Description: Prometheus ServiceMonitor interval
applicationSet.metrics.serviceMonitor.scrapeTimeout📜
Type: string
""
Description: Prometheus ServiceMonitor scrapeTimeout. If empty, Prometheus uses the global scrape timeout unless it is less than the target’s scrape interval value in which the latter is used.
applicationSet.metrics.serviceMonitor.relabelings📜
Type: list
[]
Description: Prometheus [RelabelConfigs] to apply to samples before scraping
applicationSet.metrics.serviceMonitor.metricRelabelings📜
Type: list
[]
Description: Prometheus [MetricRelabelConfigs] to apply to samples before ingestion
applicationSet.metrics.serviceMonitor.selector📜
Type: object
{}
Description: Prometheus ServiceMonitor selector
applicationSet.metrics.serviceMonitor.scheme📜
Type: string
""
Description: Prometheus ServiceMonitor scheme
applicationSet.metrics.serviceMonitor.tlsConfig📜
Type: object
{}
Description: Prometheus ServiceMonitor tlsConfig
applicationSet.metrics.serviceMonitor.namespace📜
Type: string
""
Description: Prometheus ServiceMonitor namespace
applicationSet.metrics.serviceMonitor.additionalLabels📜
Type: object
{}
Description: Prometheus ServiceMonitor labels
applicationSet.metrics.serviceMonitor.annotations📜
Type: object
{}
Description: Prometheus ServiceMonitor annotations
applicationSet.service.annotations📜
Type: object
{}
Description: ApplicationSet service annotations
applicationSet.service.labels📜
Type: object
{}
Description: ApplicationSet service labels
applicationSet.service.type📜
Type: string
"ClusterIP"
Description: ApplicationSet service type
applicationSet.service.port📜
Type: int
7000
Description: ApplicationSet service port
applicationSet.service.portName📜
Type: string
"http-webhook"
Description: ApplicationSet service port name
applicationSet.automountServiceAccountToken📜
Type: bool
true
Description: Automount API credentials for the Service Account into the pod.
applicationSet.serviceAccount.create📜
Type: bool
true
Description: Create ApplicationSet controller service account
applicationSet.serviceAccount.name📜
Type: string
"argocd-applicationset-controller"
Description: ApplicationSet controller service account name
applicationSet.serviceAccount.annotations📜
Type: object
{}
Description: Annotations applied to created service account
applicationSet.serviceAccount.labels📜
Type: object
{}
Description: Labels applied to created service account
applicationSet.serviceAccount.automountServiceAccountToken📜
Type: bool
true
Description: Automount API credentials for the Service Account
applicationSet.deploymentAnnotations📜
Type: object
{}
Description: Annotations to be added to ApplicationSet controller Deployment
applicationSet.podAnnotations📜
Type: object
{}
Description: Annotations for the ApplicationSet controller pods
applicationSet.podLabels📜
Type: object
{}
Description: Labels for the ApplicationSet controller pods
applicationSet.resources📜
Type: object
{}
Description: Resource limits and requests for the ApplicationSet controller pods.
applicationSet.containerPorts.metrics📜
Type: int
8080
Description: Metrics container port
applicationSet.containerPorts.probe📜
Type: int
8081
Description: Probe container port
applicationSet.containerPorts.webhook📜
Type: int
7000
Description: Webhook container port
applicationSet.dnsConfig📜
Type: object
{}
Description: [DNS configuration]
applicationSet.dnsPolicy📜
Type: string
"ClusterFirst"
Description: Alternative DNS policy for ApplicationSet controller pods
applicationSet.readinessProbe.enabled📜
Type: bool
false
Description: Enable Kubernetes liveness probe for ApplicationSet controller
applicationSet.readinessProbe.initialDelaySeconds📜
Type: int
10
Description: Number of seconds after the container has started before [probe] is initiated
applicationSet.readinessProbe.periodSeconds📜
Type: int
10
Description: How often (in seconds) to perform the [probe]
applicationSet.readinessProbe.timeoutSeconds📜
Type: int
1
Description: Number of seconds after which the [probe] times out
applicationSet.readinessProbe.successThreshold📜
Type: int
1
Description: Minimum consecutive successes for the [probe] to be considered successful after having failed
applicationSet.readinessProbe.failureThreshold📜
Type: int
3
Description: Minimum consecutive failures for the [probe] to be considered failed after having succeeded
applicationSet.livenessProbe.enabled📜
Type: bool
false
Description: Enable Kubernetes liveness probe for ApplicationSet controller
applicationSet.livenessProbe.initialDelaySeconds📜
Type: int
10
Description: Number of seconds after the container has started before [probe] is initiated
applicationSet.livenessProbe.periodSeconds📜
Type: int
10
Description: How often (in seconds) to perform the [probe]
applicationSet.livenessProbe.timeoutSeconds📜
Type: int
1
Description: Number of seconds after which the [probe] times out
applicationSet.livenessProbe.successThreshold📜
Type: int
1
Description: Minimum consecutive successes for the [probe] to be considered successful after having failed
applicationSet.livenessProbe.failureThreshold📜
Type: int
3
Description: Minimum consecutive failures for the [probe] to be considered failed after having succeeded
applicationSet.terminationGracePeriodSeconds📜
Type: int
30
Description: terminationGracePeriodSeconds for container lifecycle hook
applicationSet.deploymentStrategy📜
Type: object
{}
Description: Deployment strategy to be added to the ApplicationSet controller Deployment
applicationSet.certificate.enabled📜
Type: bool
false
Description: Deploy a Certificate resource (requires cert-manager)
applicationSet.certificate.additionalHosts📜
Type: list
[]
Description: Certificate Subject Alternate Names (SANs)
applicationSet.certificate.issuer.group📜
Type: string
""
Description: Certificate issuer group. Set if using an external issuer. Eg. cert-manager.io
applicationSet.certificate.issuer.kind📜
Type: string
""
Description: Certificate issuer kind. Either Issuer or ClusterIssuer
applicationSet.certificate.issuer.name📜
Type: string
""
Description: Certificate issuer name. Eg. letsencrypt
applicationSet.certificate.privateKey.rotationPolicy📜
Type: string
"Never"
Description: Rotation policy of private key when certificate is re-issued. Either: Never or Always
applicationSet.certificate.privateKey.encoding📜
Type: string
"PKCS1"
Description: The private key cryptography standards (PKCS) encoding for private key. Either: PCKS1 or PKCS8
applicationSet.certificate.privateKey.algorithm📜
Type: string
"RSA"
Description: Algorithm used to generate certificate private key. One of: RSA, Ed25519 or ECDSA
applicationSet.certificate.privateKey.size📜
Type: int
2048
Description: Key bit size of the private key. If algorithm is set to Ed25519, size is ignored.
applicationSet.certificate.annotations📜
Type: object
{}
Description: Annotations to be applied to the ApplicationSet Certificate
applicationSet.ingress.enabled📜
Type: bool
false
Description: Enable an ingress resource for ApplicationSet webhook
applicationSet.ingress.labels📜
Type: object
{}
Description: Additional ingress labels
applicationSet.ingress.annotations📜
Type: object
{}
Description: Additional ingress annotations
applicationSet.ingress.ingressClassName📜
Type: string
""
Description: Defines which ingress ApplicationSet controller will implement the resource
applicationSet.ingress.path📜
Type: string
"/api/webhook"
Description: List of ingress paths
applicationSet.ingress.pathType📜
Type: string
"Prefix"
Description: Ingress path type. One of Exact, Prefix or ImplementationSpecific
applicationSet.ingress.tls📜
Type: bool
false
Description: Enable TLS configuration for the hostname defined at applicationSet.webhook.ingress.hostname # TLS certificate will be retrieved from a TLS secret with name:argocd-applicationset-controller-tls
applicationSet.allowAnyNamespace📜
Type: bool
false
Description: Enable ApplicationSet in any namespace feature
notifications.enabled📜
Type: bool
true
Description: Enable notifications controller
notifications.name📜
Type: string
"notifications-controller"
Description: Notifications controller name string
notifications.pdb.enabled📜
Type: bool
false
Description: Deploy a [PodDisruptionBudget] for the notifications controller
notifications.pdb.labels📜
Type: object
{}
Description: Labels to be added to notifications controller pdb
notifications.pdb.annotations📜
Type: object
{}
Description: Annotations to be added to notifications controller pdb
notifications.pdb.maxUnavailable📜
Type: string
""
Description: Number of pods that are unavailable after eviction as number or percentage (eg.: 50%). # Has higher precedence over notifications.pdb.minAvailable
notifications.extraArgs📜
Type: list
[]
Description: Extra arguments to provide to the notifications controller
notifications.extraEnv📜
Type: list
[]
Description: Additional container environment variables
notifications.extraContainers📜
Type: list
[]
Description: Additional containers to be added to the notifications controller pod # Note: Supports use of custom Helm templates
notifications.initContainers📜
Type: list
[]
Description: Init containers to add to the notifications controller pod # Note: Supports use of custom Helm templates
notifications.extraVolumeMounts📜
Type: list
[]
Description: List of extra mounts to add (normally used with extraVolumes)
notifications.extraVolumes📜
Type: list
[]
Description: List of extra volumes to add
notifications.context📜
Type: object
{}
Description: Define user-defined context # For more information: https://argo-cd.readthedocs.io/en/stable/operator-manual/notifications/templates/#defining-user-defined-context
notifications.secret.create📜
Type: bool
true
Description: Whether helm chart creates notifications controller secret # If true, will create a secret with the name below. Otherwise, will assume existence of a secret with that name.
notifications.secret.name📜
Type: string
"argocd-notifications-secret"
Description: notifications controller Secret name
notifications.secret.annotations📜
Type: object
{}
Description: key:value pairs of annotations to be added to the secret
notifications.secret.labels📜
Type: object
{}
Description: key:value pairs of labels to be added to the secret
notifications.secret.items📜
Type: object
{}
Description: Generic key:value pairs to be inserted into the secret # Can be used for templates, notification services etc. Some examples given below. # For more information: https://argo-cd.readthedocs.io/en/stable/operator-manual/notifications/services/overview/
notifications.metrics.enabled📜
Type: bool
false
Description: Enables prometheus metrics server
notifications.metrics.port📜
Type: int
9001
Description: Metrics port
notifications.metrics.service.type📜
Type: string
"ClusterIP"
Description: Metrics service type
notifications.metrics.service.clusterIP📜
Type: string
""
Description: Metrics service clusterIP. None makes a “headless service” (no virtual IP)
notifications.metrics.service.annotations📜
Type: object
{}
Description: Metrics service annotations
notifications.metrics.service.labels📜
Type: object
{}
Description: Metrics service labels
notifications.metrics.service.portName📜
Type: string
"http-metrics"
Description: Metrics service port name
notifications.metrics.serviceMonitor.enabled📜
Type: bool
false
Description: Enable a prometheus ServiceMonitor
notifications.metrics.serviceMonitor.selector📜
Type: object
{}
Description: Prometheus ServiceMonitor selector
notifications.metrics.serviceMonitor.additionalLabels📜
Type: object
{}
Description: Prometheus ServiceMonitor labels
notifications.metrics.serviceMonitor.annotations📜
Type: object
{}
Description: Prometheus ServiceMonitor annotations
notifications.metrics.serviceMonitor.scheme📜
Type: string
""
Description: Prometheus ServiceMonitor scheme
notifications.metrics.serviceMonitor.tlsConfig📜
Type: object
{}
Description: Prometheus ServiceMonitor tlsConfig
notifications.metrics.serviceMonitor.relabelings📜
Type: list
[]
Description: Prometheus [RelabelConfigs] to apply to samples before scraping
notifications.metrics.serviceMonitor.metricRelabelings📜
Type: list
[]
Description: Prometheus [MetricRelabelConfigs] to apply to samples before ingestion
notifications.deploymentAnnotations📜
Type: object
{}
Description: Annotations to be applied to the notifications controller Deployment
notifications.podAnnotations📜
Type: object
{}
Description: Annotations to be applied to the notifications controller Pods
notifications.podLabels📜
Type: object
{}
Description: Labels to be applied to the notifications controller Pods
notifications.resources📜
Type: object
{}
Description: Resource limits and requests for the notifications controller
notifications.containerPorts.metrics📜
Type: int
9001
Description: Metrics container port
notifications.dnsConfig📜
Type: object
{}
Description: [DNS configuration]
notifications.dnsPolicy📜
Type: string
"ClusterFirst"
Description: Alternative DNS policy for notifications controller Pods
notifications.readinessProbe.enabled📜
Type: bool
false
Description: Enable Kubernetes liveness probe for notifications controller Pods
notifications.readinessProbe.initialDelaySeconds📜
Type: int
10
Description: Number of seconds after the container has started before [probe] is initiated
notifications.readinessProbe.periodSeconds📜
Type: int
10
Description: How often (in seconds) to perform the [probe]
notifications.readinessProbe.timeoutSeconds📜
Type: int
1
Description: Number of seconds after which the [probe] times out
notifications.readinessProbe.successThreshold📜
Type: int
1
Description: Minimum consecutive successes for the [probe] to be considered successful after having failed
notifications.readinessProbe.failureThreshold📜
Type: int
3
Description: Minimum consecutive failures for the [probe] to be considered failed after having succeeded
notifications.livenessProbe.enabled📜
Type: bool
false
Description: Enable Kubernetes liveness probe for notifications controller Pods
notifications.livenessProbe.initialDelaySeconds📜
Type: int
10
Description: Number of seconds after the container has started before [probe] is initiated
notifications.livenessProbe.periodSeconds📜
Type: int
10
Description: How often (in seconds) to perform the [probe]
notifications.livenessProbe.timeoutSeconds📜
Type: int
1
Description: Number of seconds after which the [probe] times out
notifications.livenessProbe.successThreshold📜
Type: int
1
Description: Minimum consecutive successes for the [probe] to be considered successful after having failed
notifications.livenessProbe.failureThreshold📜
Type: int
3
Description: Minimum consecutive failures for the [probe] to be considered failed after having succeeded
notifications.terminationGracePeriodSeconds📜
Type: int
30
Description: terminationGracePeriodSeconds for container lifecycle hook
notifications.deploymentStrategy📜
Type: object
type: Recreate
Description: Deployment strategy to be added to the notifications controller Deployment
notifications.automountServiceAccountToken📜
Type: bool
true
Description: Automount API credentials for the Service Account into the pod.
notifications.serviceAccount.create📜
Type: bool
true
Description: Create notifications controller service account
notifications.serviceAccount.name📜
Type: string
"argocd-notifications-controller"
Description: Notification controller service account name
notifications.serviceAccount.annotations📜
Type: object
{}
Description: Annotations applied to created service account
notifications.serviceAccount.labels📜
Type: object
{}
Description: Labels applied to created service account
notifications.serviceAccount.automountServiceAccountToken📜
Type: bool
true
Description: Automount API credentials for the Service Account
notifications.cm.create📜
Type: bool
true
Description: Whether helm chart creates notifications controller config map
notifications.clusterRoleRules.rules📜
Type: list
[]
Description: List of custom rules for the notifications controller’s ClusterRole resource
notifications.subscriptions📜
Type: list
[]
Description: Contains centrally managed global application subscriptions # For more information: https://argo-cd.readthedocs.io/en/stable/operator-manual/notifications/subscriptions/
notifications.templates📜
Type: object
{}
Description: The notification template is used to generate the notification content # For more information: https://argo-cd.readthedocs.io/en/stable/operator-manual/notifications/templates/
notifications.triggers📜
Type: object
{}
Description: The trigger defines the condition when the notification should be sent # For more information: https://argo-cd.readthedocs.io/en/stable/operator-manual/notifications/triggers/
notifications.bots.slack.enabled📜
Type: bool
false
Description: Enable slack bot # You have to set secret.notifiers.slack.signingSecret
notifications.bots.slack.pdb.enabled📜
Type: bool
false
Description: Deploy a [PodDisruptionBudget] for the Slack bot
notifications.bots.slack.pdb.labels📜
Type: object
{}
Description: Labels to be added to Slack bot pdb
notifications.bots.slack.pdb.annotations📜
Type: object
{}
Description: Annotations to be added to Slack bot pdb
notifications.bots.slack.pdb.maxUnavailable📜
Type: string
""
Description: Number of pods that are unavailble after eviction as number or percentage (eg.: 50%). # Has higher precedence over notifications.bots.slack.pdb.minAvailable
notifications.bots.slack.extraArgs📜
Type: list
[]
Description: List of extra cli args to add for Slack bot
notifications.bots.slack.service.annotations📜
Type: object
{}
Description: Service annotations for Slack bot
notifications.bots.slack.service.port📜
Type: int
80
Description: Service port for Slack bot
notifications.bots.slack.service.type📜
Type: string
"LoadBalancer"
Description: Service type for Slack bot
notifications.bots.slack.serviceAccount.create📜
Type: bool
true
Description: Specifies whether a service account should be created
notifications.bots.slack.serviceAccount.name📜
Type: string
"argocd-notifications-bot"
Description: The name of the service account to use. # If not set and create is true, a name is generated using the fullname template
notifications.bots.slack.serviceAccount.annotations📜
Type: object
{}
Description: Annotations applied to created service account
notifications.bots.slack.dnsConfig📜
Type: object
{}
Description: [DNS configuration]
notifications.bots.slack.dnsPolicy📜
Type: string
"ClusterFirst"
Description: Alternative DNS policy for Slack bot pods
notifications.bots.slack.resources📜
Type: object
{}
Description: Resource limits and requests for the Slack bot
notifications.bots.slack.tolerations📜
Type: list
[]
Description: [Tolerations] for use with node taints
notifications.bots.slack.nodeSelector📜
Type: object
{}
Description: [Node selector]