argocd values.yamlπ
sso.enabledπ
Type: bool
false
sso.rbac.”policy.csv”π
Type: string
"g, Impact Level 2 Authorized, role:admin\n"
sso.keycloakClientSecretπ
Type: string
"this-can-be-anything-for-dev"
sso.config.”oidc.config”π
Type: string
"name: Keycloak\nissuer: https://login.dso.mil/auth/realms/baby-yoda\nclientID: platform1_a8604cc9-f5e9-4656-802d-d05624370245_bb8-argocd\nclientSecret: $oidc.keycloak.clientSecret\nrequestedScopes: [\"openid\",\"ArgoCD\"]\n"
awsCredentials.awsAccessKeyIdπ
Type: string
""
awsCredentials.awsSecretAccessKeyπ
Type: string
""
awsCredentials.awsDefaultRegionπ
Type: string
"us-gov-west-1"
domainπ
Type: string
"bigbang.dev"
istio.enabledπ
Type: bool
false
Description: Toggle BigBang istio integration
istio.hardened.enabledπ
Type: bool
false
istio.hardened.outboundTrafficPolicyModeπ
Type: string
"REGISTRY_ONLY"
istio.hardened.customServiceEntriesπ
Type: list
[]
istio.hardened.customAuthorizationPoliciesπ
Type: list
[]
istio.hardened.monitoring.enabledπ
Type: bool
true
istio.hardened.monitoring.namespaces[0]π
Type: string
"monitoring"
istio.hardened.monitoring.principals[0]π
Type: string
"cluster.local/ns/monitoring/sa/monitoring-grafana"
istio.hardened.monitoring.principals[1]π
Type: string
"cluster.local/ns/monitoring/sa/monitoring-monitoring-kube-alertmanager"
istio.hardened.monitoring.principals[2]π
Type: string
"cluster.local/ns/monitoring/sa/monitoring-monitoring-kube-operator"
istio.hardened.monitoring.principals[3]π
Type: string
"cluster.local/ns/monitoring/sa/monitoring-monitoring-kube-prometheus"
istio.hardened.monitoring.principals[4]π
Type: string
"cluster.local/ns/monitoring/sa/monitoring-monitoring-kube-state-metrics"
istio.hardened.monitoring.principals[5]π
Type: string
"cluster.local/ns/monitoring/sa/monitoring-monitoring-prometheus-node-exporter"
istio.hardened.argocd.enabledπ
Type: bool
true
istio.hardened.argocd.namespaces[0]π
Type: string
"argocd"
istio.hardened.argocd.principals[0]π
Type: string
"cluster.local/ns/argocd/sa/argocd-application-controller"
istio.hardened.argocd.principals[1]π
Type: string
"cluster.local/ns/argocd/sa/argocd-applicationset-controller"
istio.hardened.argocd.principals[2]π
Type: string
"cluster.local/ns/argocd/sa/argocd-argocd-redis-bb"
istio.hardened.argocd.principals[3]π
Type: string
"cluster.local/ns/argocd/sa/argocd-argocd-repo-server"
istio.hardened.argocd.principals[4]π
Type: string
"cluster.local/ns/argocd/sa/argocd-dex-server"
istio.hardened.argocd.principals[5]π
Type: string
"cluster.local/ns/argocd/sa/argocd-notifications-controller"
istio.hardened.argocd.principals[6]π
Type: string
"cluster.local/ns/argocd/sa/argocd-server"
istio.hardened.argocd.principals[7]π
Type: string
"cluster.local/ns/argocd/sa/upgrade-job-svc-account"
istio.hardened.argocd.principals[8]π
Type: string
"cluster.local/ns/argocd/sa/argocd-argocd-redis-bb-metrics"
istio.injectionπ
Type: string
"disabled"
Description: Toggle BigBang istio injection
istio.mtlsπ
Type: object
mode: STRICT
Description: Default argocd peer authentication
istio.mtls.modeπ
Type: string
"STRICT"
Description: STRICT = Allow only mutual TLS traffic, PERMISSIVE = Allow both plain text and mutual TLS traffic
istio.argocd.enabledπ
Type: bool
true
Description: Toggle Istio VirtualService creation
istio.argocd.annotationsπ
Type: object
{}
Description: Set Annotations for VirtualService
istio.argocd.labelsπ
Type: object
{}
Description: Set Labels for VirtualService
istio.argocd.gatewaysπ
Type: list
- istio-system/main
Description: Set Gateway for VirtualService
istio.argocd.hostsπ
Type: list
- argocd.{{ .Values.domain }}
Description: Set Hosts for VirtualService
monitoring.enabledπ
Type: bool
false
Description: Toggle BigBang monitoring integration
networkPolicies.enabledπ
Type: bool
false
Description: Toggle BigBang networkPolicies integration
networkPolicies.ingressLabels.appπ
Type: string
"istio-ingressgateway"
networkPolicies.ingressLabels.istioπ
Type: string
"ingressgateway"
networkPolicies.controlPlaneCidrπ
Type: string
"0.0.0.0/0"
Description: Control Plane CIDR, defaults to 0.0.0.0/0, use kubectl get endpoints -n default kubernetes to get the CIDR range needed for your cluster Must be an IP CIDR range (x.x.x.x/x - ideally with /32 for the specific IP of a single endpoint, broader range for multiple masters/endpoints) Used by package NetworkPolicies to allow Kube API access
networkPolicies.additionalPoliciesπ
Type: list
[]
upgradeJob.enabledπ
Type: bool
true
upgradeJob.image.repositoryπ
Type: string
"registry1.dso.mil/ironbank/big-bang/base"
upgradeJob.image.tagπ
Type: string
"2.1.0"
upgradeJob.image.imagePullPolicyπ
Type: string
"IfNotPresent"
bbtests.enabledπ
Type: bool
false
bbtests.cypress.artifactsπ
Type: bool
true
bbtests.cypress.envs.cypress_urlπ
Type: string
"http://argocd-server"
bbtests.cypress.envs.cypress_userπ
Type: string
"admin"
bbtests.cypress.envs.cypress_passwordπ
Type: string
"Password123"
bbtests.cypress.envs.cypress_timeoutπ
Type: string
"120000"
bbtests.cypress.resources.requests.cpuπ
Type: int
4
bbtests.cypress.resources.requests.memoryπ
Type: string
"4Gi"
bbtests.cypress.resources.limits.cpuπ
Type: int
4
bbtests.cypress.resources.limits.memoryπ
Type: string
"8Gi"
bbtests.scripts.imageπ
Type: string
"registry1.dso.mil/bigbang-ci/devops-tester:1.1.1"
bbtests.scripts.envs.ARGOCD_SERVERπ
Type: string
"http://argocd-server"
bbtests.scripts.envs.ARGOCD_USERπ
Type: string
"admin"
bbtests.scripts.envs.ARGOCD_PASSWORDπ
Type: string
"Password123"
nameOverrideπ
Type: string
"argocd"
Description: Provide a name in place of argocd
fullnameOverrideπ
Type: string
""
Description: String to fully override "argo-cd.fullname"
kubeVersionOverrideπ
Type: string
""
Description: Override the Kubernetes version, which is used to evaluate certain manifests
apiVersionOverridesπ
Type: object
{}
createAggregateRolesπ
Type: bool
false
Description: Create aggregated roles that extend existing cluster roles to interact with argo-cd resources # Ref: https://kubernetes.io/docs/reference/access-authn-authz/rbac/#aggregated-clusterroles
createClusterRolesπ
Type: bool
true
Description: Create cluster roles for cluster-wide installation. # Used when you manage applications in the same cluster where Argo CD runs
openshift.enabledπ
Type: bool
false
Description: enables using arbitrary uid for argo repo server
crds.installπ
Type: bool
true
Description: Install and upgrade CRDs
crds.keepπ
Type: bool
true
Description: Keep CRDs on chart uninstall
crds.annotationsπ
Type: object
{}
Description: Annotations to be added to all CRDs
crds.additionalLabelsπ
Type: object
{}
Description: Addtional labels to be added to all CRDs
global.domainπ
Type: string
"argocd.example.com"
Description: Default domain used by all components # Used for ingresses, certificates, SSO, notifications, etc.
global.runtimeClassNameπ
Type: string
""
Description: Runtime class name for all components
global.additionalLabelsπ
Type: object
{}
Description: Common labels for the all resources
global.revisionHistoryLimitπ
Type: int
3
Description: Number of old deployment ReplicaSets to retain. The rest will be garbage collected.
global.image.repositoryπ
Type: string
"registry1.dso.mil/ironbank/big-bang/argocd"
Description: If defined, a repository applied to all Argo CD deployments
global.image.tagπ
Type: string
"v2.13.1"
Description: Overrides the global Argo CD image tag whose default is the chart appVersion
global.image.imagePullPolicyπ
Type: string
"IfNotPresent"
Description: If defined, a imagePullPolicy applied to all Argo CD deployments
global.imagePullSecretsπ
Type: list
- name: private-registry
Description: Secrets with credentials to pull images from a private registry
global.logging.formatπ
Type: string
"text"
Description: Set the global logging format. Either: text or json
global.logging.levelπ
Type: string
"info"
Description: Set the global logging level. One of: debug, info, warn or error
global.statefulsetAnnotationsπ
Type: object
{}
Description: Annotations for the all deployed Statefulsets
global.deploymentAnnotationsπ
Type: object
{}
Description: Annotations for the all deployed Deployments
global.podAnnotationsπ
Type: object
{}
Description: Annotations for the all deployed pods
global.podLabelsπ
Type: object
{}
Description: Labels for the all deployed pods
global.addPrometheusAnnotationsπ
Type: bool
false
Description: Add Prometheus scrape annotations to all metrics services. This can be used as an alternative to the ServiceMonitors.
global.hostAliasesπ
Type: list
[]
Description: Mapping between IP and hostnames that will be injected as entries in the pod’s hosts files
global.dualStack.ipFamilyPolicyπ
Type: string
""
Description: IP family policy to configure dual-stack see Configure dual-stack
global.dualStack.ipFamiliesπ
Type: list
[]
Description: IP families that should be supported and the order in which they should be applied to ClusterIP as well. Can be IPv4 and/or IPv6.
global.networkPolicy.createπ
Type: bool
false
Description: Create NetworkPolicy objects for all components
global.networkPolicy.defaultDenyIngressπ
Type: bool
false
Description: Default deny all ingress traffic
global.priorityClassNameπ
Type: string
""
Description: Default priority class for all components
global.nodeSelectorπ
Type: object
{}
Description: Default node selector for all components
global.tolerationsπ
Type: list
[]
Description: Default tolerations for all components
global.affinity.podAntiAffinityπ
Type: string
"soft"
Description: Default pod anti-affinity rules. Either: none, soft or hard
global.affinity.nodeAffinity.typeπ
Type: string
"hard"
Description: Default node affinity rules. Either: none, soft or hard
global.affinity.nodeAffinity.matchExpressionsπ
Type: list
[]
Description: Default match expressions for node affinity
global.topologySpreadConstraintsπ
Type: list
[]
Description: Default [TopologySpreadConstraints] rules for all components # Ref: https://kubernetes.io/docs/concepts/workloads/pods/pod-topology-spread-constraints/ # If labelSelector is left out, it will default to the labelSelector of the component
global.deploymentStrategyπ
Type: object
{}
Description: Deployment strategy for the all deployed Deployments
global.envπ
Type: list
[]
Description: Environment variables to pass to all deployed Deployments
global.certificateAnnotationsπ
Type: object
{}
Description: Annotations for the all deployed Certificates
configs.cm.createπ
Type: bool
true
Description: Create the argocd-cm configmap for [declarative setup]
configs.cm.annotationsπ
Type: object
{}
Description: Annotations to be added to argocd-cm configmap
configs.cm.”application.instanceLabelKey”π
Type: string
"argocd.argoproj.io/instance"
Description: The name of tracking label used by Argo CD for resource pruning
configs.cm.”server.rbac.log.enforce.enable”π
Type: bool
false
Description: Enable logs RBAC enforcement # Ref: https://argo-cd.readthedocs.io/en/latest/operator-manual/upgrading/2.3-2.4/#enable-logs-rbac-enforcement
configs.cm.”exec.enabled”π
Type: bool
false
Description: Enable exec feature in Argo UI # Ref: https://argo-cd.readthedocs.io/en/latest/operator-manual/rbac/#exec-resource
configs.cm.”admin.enabled”π
Type: bool
true
Description: Enable local admin user # Ref: https://argo-cd.readthedocs.io/en/latest/faq/#how-to-disable-admin-user
configs.cm.”timeout.reconciliation”π
Type: string
"180s"
Description: Timeout to discover if a new manifests version got published to the repository
configs.cm.”timeout.hard.reconciliation”π
Type: string
"0s"
Description: Timeout to refresh application data as well as target manifests cache
configs.cm.”statusbadge.enabled”π
Type: bool
false
Description: Enable Status Badge # Ref: https://argo-cd.readthedocs.io/en/stable/user-guide/status-badge/
configs.params.createπ
Type: bool
true
Description: Create the argocd-cmd-params-cm configmap If false, it is expected the configmap will be created by something else.
configs.params.annotationsπ
Type: object
{}
Description: Annotations to be added to the argocd-cmd-params-cm ConfigMap
configs.params.”otlp.address”π
Type: string
""
Description: Open-Telemetry collector address: (e.g. “otel-collector:4317”)
configs.params.”controller.status.processors”π
Type: int
20
Description: Number of application status processors
configs.params.”controller.operation.processors”π
Type: int
10
Description: Number of application operation processors
configs.params.”controller.self.heal.timeout.seconds”π
Type: int
5
Description: Specifies timeout between application self heal attempts
configs.params.”controller.repo.server.timeout.seconds”π
Type: int
60
Description: Repo server RPC call timeout seconds.
configs.params.”server.insecure”π
Type: bool
true
Description: Run server without TLS # NOTE: This value should be set when you generate params by other means as it changes ports used by ingress template.
configs.params.”server.basehref”π
Type: string
"/"
Description: Value for base href in index.html. Used if Argo CD is running behind reverse proxy under subpath different from /
configs.params.”server.rootpath”π
Type: string
""
Description: Used if Argo CD is running behind reverse proxy under subpath different from /
configs.params.”server.staticassets”π
Type: string
"/shared/app"
Description: Directory path that contains additional static assets
configs.params.”server.disable.auth”π
Type: bool
false
Description: Disable Argo CD RBAC for user authentication
configs.params.”server.enable.gzip”π
Type: bool
true
Description: Enable GZIP compression
configs.params.”server.enable.proxy.extension”π
Type: bool
false
Description: Enable proxy extension feature. (proxy extension is in Alpha phase)
configs.params.”server.x.frame.options”π
Type: string
"sameorigin"
Description: Set X-Frame-Options header in HTTP responses to value. To disable, set to “”.
configs.params.”reposerver.parallelism.limit”π
Type: int
0
Description: Limit on number of concurrent manifests generate requests. Any value less the 1 means no limit.
configs.params.”applicationsetcontroller.policy”π
Type: string
"sync"
Description: Modify how application is synced between the generator and the cluster. One of: sync, create-only, create-update, create-delete
configs.params.”applicationsetcontroller.enable.progressive.syncs”π
Type: bool
false
Description: Enables use of the Progressive Syncs capability
configs.params.”application.namespaces”π
Type: string
""
Description: Enables [Applications in any namespace] # List of additional namespaces where applications may be created in and reconciled from. # The namespace where Argo CD is installed to will always be allowed. # Set comma-separated list. (e.g. app-team-one, app-team-two)
configs.params.”controller.ignore.normalizer.jq.timeout”π
Type: string
"1s"
Description: JQ Path expression timeout # By default, the evaluation of a JQPathExpression is limited to one second. # If you encounter a “JQ patch execution timed out” error message due to a complex JQPathExpression # that requires more time to evaluate, you can extend the timeout period.
configs.rbac.createπ
Type: bool
true
Description: Create the argocd-rbac-cm configmap with ([Argo CD RBAC policy]) definitions. If false, it is expected the configmap will be created by something else. Argo CD will not work if there is no configmap created with the name above.
configs.rbac.annotationsπ
Type: object
{}
Description: Annotations to be added to argocd-rbac-cm configmap
configs.rbac.”policy.default”π
Type: string
""
Description: The name of the default role which Argo CD will falls back to, when authorizing API requests (optional). If omitted or empty, users may be still be able to login, but will see no apps, projects, etc…
configs.rbac.scopesπ
Type: string
"[groups]"
Description: OIDC scopes to examine during rbac enforcement (in addition to sub scope). The scope value can be a string, or a list of strings.
configs.rbac.”policy.matchMode”π
Type: string
"glob"
Description: Matcher function for Casbin, glob for glob matcher and regex for regex matcher.
configs.gpg.annotationsπ
Type: object
{}
Description: Annotations to be added to argocd-gpg-keys-cm configmap
configs.ssh.annotationsπ
Type: object
{}
Description: Annotations to be added to argocd-ssh-known-hosts-cm configmap
configs.ssh.extraHostsπ
Type: string
""
Description: Additional known hosts for private repositories
configs.tls.annotationsπ
Type: object
{}
Description: Annotations to be added to argocd-tls-certs-cm configmap
configs.cmp.createπ
Type: bool
false
Description: Create the argocd-cmp-cm configmap
configs.cmp.annotationsπ
Type: object
{}
Description: Annotations to be added to argocd-cmp-cm configmap
configs.cmp.pluginsπ
Type: object
{}
Description: Plugin yaml files to be added to argocd-cmp-cm
configs.credentialTemplatesπ
Type: object
{}
Description: Repository credentials to be used as Templates for other repos # Creates a secret for each key/value specified below to create repository credentials
configs.credentialTemplatesAnnotationsπ
Type: object
{}
Description: Annotations to be added to configs.credentialTemplates Secret
configs.repositoriesπ
Type: object
{}
Description: Repositories list to be used by applications # Creates a secret for each key/value specified below to create repositories # Note: the last example in the list would use a repository credential template, configured under “configs.credentialTemplates”.
configs.repositoriesAnnotationsπ
Type: object
{}
Description: Annotations to be added to configs.repositories Secret
configs.secret.createSecretπ
Type: bool
true
Description: Create the argocd-secret
configs.secret.labelsπ
Type: object
{}
Description: Labels to be added to argocd-secret
configs.secret.annotationsπ
Type: object
{}
Description: Annotations to be added to argocd-secret
configs.secret.githubSecretπ
Type: string
""
Description: Shared secret for authenticating GitHub webhook events
configs.secret.gitlabSecretπ
Type: string
""
Description: Shared secret for authenticating GitLab webhook events
configs.secret.bitbucketServerSecretπ
Type: string
""
Description: Shared secret for authenticating BitbucketServer webhook events
configs.secret.bitbucketUUIDπ
Type: string
""
Description: UUID for authenticating Bitbucket webhook events
configs.secret.gogsSecretπ
Type: string
""
Description: Shared secret for authenticating Gogs webhook events
configs.secret.azureDevops.usernameπ
Type: string
""
Description: Shared secret username for authenticating Azure DevOps webhook events
configs.secret.azureDevops.passwordπ
Type: string
""
Description: Shared secret password for authenticating Azure DevOps webhook events
configs.secret.extraπ
Type: object
{}
Description: add additional secrets to be added to argocd-secret # Custom secrets. Useful for injecting SSO secrets into environment variables. # Ref: https://argo-cd.readthedocs.io/en/stable/operator-manual/user-management/#sensitive-data-and-sso-client-secrets # Note that all values must be non-empty.
extraObjectsπ
Type: list
[]
Description: Array of extra K8s manifests to deploy # Note: Supports use of custom Helm templates
controller.nameπ
Type: string
"application-controller"
Description: Application controller name string
controller.replicasπ
Type: int
1
Description: The number of application controller pods to run. Additional replicas will cause sharding of managed clusters across number of replicas. # With dynamic cluster distribution turned on, sharding of the clusters will gracefully # rebalance if the number of replica’s changes or one becomes unhealthy. (alpha)
controller.dynamicClusterDistributionπ
Type: bool
false
Description: Enable dynamic cluster distribution (alpha) Ref: https://argo-cd.readthedocs.io/en/stable/operator-manual/dynamic-cluster-distribution # This is done using a deployment instead of a statefulSet # When replicas are added or removed, the sharding algorithm is re-run to ensure that the # clusters are distributed according to the algorithm. If the algorithm is well-balanced, # like round-robin, then the shards will be well-balanced.
controller.heartbeatTimeπ
Type: int
10
Description: Application controller heartbeat time Ref: https://argo-cd.readthedocs.io/en/stable/operator-manual/dynamic-cluster-distribution/#working-of-dynamic-distribution
controller.revisionHistoryLimitπ
Type: int
5
Description: Maximum number of controller revisions that will be maintained in StatefulSet history
controller.pdb.enabledπ
Type: bool
false
Description: Deploy a [PodDisruptionBudget] for the application controller
controller.pdb.labelsπ
Type: object
{}
Description: Labels to be added to application controller pdb
controller.pdb.annotationsπ
Type: object
{}
Description: Annotations to be added to application controller pdb
controller.pdb.maxUnavailableπ
Type: string
""
Description: Number of pods that are unavailable after eviction as number or percentage (eg.: 50%). # Has higher precedence over controller.pdb.minAvailable
controller.extraArgsπ
Type: list
[]
Description: Additional command line arguments to pass to application controller
controller.envπ
Type: list
[]
Description: Environment variables to pass to application controller
controller.extraContainersπ
Type: list
[]
Description: Additional containers to be added to the application controller pod # Note: Supports use of custom Helm templates
controller.initContainersπ
Type: list
[]
Description: Init containers to add to the application controller pod # If your target Kubernetes cluster(s) require a custom credential (exec) plugin # you could use this (and the same in the server pod) to provide such executable # Ref: https://kubernetes.io/docs/reference/access-authn-authz/authentication/#client-go-credential-plugins # Note: Supports use of custom Helm templates
controller.volumeMountsπ
Type: list
[]
Description: Additional volumeMounts to the application controller main container
controller.volumesπ
Type: list
[]
Description: Additional volumes to the application controller pod
controller.statefulsetAnnotationsπ
Type: object
{}
Description: Annotations for the application controller StatefulSet
controller.deploymentAnnotationsπ
Type: object
{}
Description: Annotations for the application controller Deployment
controller.podAnnotationsπ
Type: object
{}
Description: Annotations to be added to application controller pods
controller.podLabelsπ
Type: object
{}
Description: Labels to be added to application controller pods
controller.resourcesπ
Type: object
limits:
cpu: 500m
memory: 3Gi
requests:
cpu: 500m
memory: 3Gi
Description: Resource limits and requests for the application controller pods
controller.containerPorts.metricsπ
Type: int
8082
Description: Metrics container port
controller.hostNetworkπ
Type: bool
false
Description: Host Network for application controller pods
controller.dnsConfigπ
Type: object
{}
Description: [DNS configuration]
controller.dnsPolicyπ
Type: string
"ClusterFirst"
Description: Alternative DNS policy for application controller pods
controller.readinessProbe.failureThresholdπ
Type: int
3
Description: Minimum consecutive failures for the [probe] to be considered failed after having succeeded
controller.readinessProbe.initialDelaySecondsπ
Type: int
10
Description: Number of seconds after the container has started before [probe] is initiated
controller.readinessProbe.periodSecondsπ
Type: int
10
Description: How often (in seconds) to perform the [probe]
controller.readinessProbe.successThresholdπ
Type: int
1
Description: Minimum consecutive successes for the [probe] to be considered successful after having failed
controller.readinessProbe.timeoutSecondsπ
Type: int
15
Description: Number of seconds after which the [probe] times out
controller.terminationGracePeriodSecondsπ
Type: int
30
Description: terminationGracePeriodSeconds for container lifecycle hook
controller.automountServiceAccountTokenπ
Type: bool
true
Description: Automount API credentials for the Service Account into the pod.
controller.serviceAccount.createπ
Type: bool
true
Description: Create a service account for the application controller
controller.serviceAccount.nameπ
Type: string
"argocd-application-controller"
Description: Service account name
controller.serviceAccount.annotationsπ
Type: object
{}
Description: Annotations applied to created service account
controller.serviceAccount.labelsπ
Type: object
{}
Description: Labels applied to created service account
controller.serviceAccount.automountServiceAccountTokenπ
Type: bool
true
Description: Automount API credentials for the Service Account
controller.metrics.enabledπ
Type: bool
false
Description: Deploy metrics service
controller.metrics.scrapeTimeoutπ
Type: string
""
Description: Prometheus ServiceMonitor scrapeTimeout. If empty, Prometheus uses the global scrape timeout unless it is less than the target’s scrape interval value in which the latter is used.
controller.metrics.applicationLabels.enabledπ
Type: bool
false
Description: Enables additional labels in argocd_app_labels metric
controller.metrics.applicationLabels.labelsπ
Type: list
[]
Description: Additional labels
controller.metrics.service.typeπ
Type: string
"ClusterIP"
Description: Metrics service type
controller.metrics.service.clusterIPπ
Type: string
""
Description: Metrics service clusterIP. None makes a “headless service” (no virtual IP)
controller.metrics.service.annotationsπ
Type: object
{}
Description: Metrics service annotations
controller.metrics.service.labelsπ
Type: object
{}
Description: Metrics service labels
controller.metrics.service.servicePortπ
Type: int
8082
Description: Metrics service port
controller.metrics.service.portNameπ
Type: string
"http-metrics"
Description: Metrics service port name
controller.metrics.serviceMonitor.enabledπ
Type: bool
false
Description: Enable a prometheus ServiceMonitor
controller.metrics.serviceMonitor.intervalπ
Type: string
"30s"
Description: Prometheus ServiceMonitor interval
controller.metrics.serviceMonitor.honorLabelsπ
Type: bool
false
Description: When true, honorLabels preserves the metricβs labels when they collide with the targetβs labels.
controller.metrics.serviceMonitor.relabelingsπ
Type: list
[]
Description: Prometheus [RelabelConfigs] to apply to samples before scraping
controller.metrics.serviceMonitor.metricRelabelingsπ
Type: list
[]
Description: Prometheus [MetricRelabelConfigs] to apply to samples before ingestion
controller.metrics.serviceMonitor.selectorπ
Type: object
{}
Description: Prometheus ServiceMonitor selector
controller.metrics.serviceMonitor.schemeπ
Type: string
""
Description: Prometheus ServiceMonitor scheme
controller.metrics.serviceMonitor.tlsConfigπ
Type: object
{}
Description: Prometheus ServiceMonitor tlsConfig
controller.metrics.serviceMonitor.namespaceπ
Type: string
""
Description: Prometheus ServiceMonitor namespace
controller.metrics.serviceMonitor.additionalLabelsπ
Type: object
{}
Description: Prometheus ServiceMonitor labels
controller.metrics.serviceMonitor.annotationsπ
Type: object
{}
Description: Prometheus ServiceMonitor annotations
controller.metrics.rules.enabledπ
Type: bool
false
Description: Deploy a PrometheusRule for the application controller
controller.metrics.rules.namespaceπ
Type: string
""
Description: PrometheusRule namespace
controller.metrics.rules.selectorπ
Type: object
{}
Description: PrometheusRule selector
controller.metrics.rules.additionalLabelsπ
Type: object
{}
Description: PrometheusRule labels
controller.metrics.rules.annotationsπ
Type: object
{}
Description: PrometheusRule annotations
controller.metrics.rules.specπ
Type: list
[]
Description: PrometheusRule.Spec for the application controller
controller.clusterRoleRules.enabledπ
Type: bool
false
Description: Enable custom rules for the application controller’s ClusterRole resource
controller.clusterRoleRules.rulesπ
Type: list
[]
Description: List of custom rules for the application controller’s ClusterRole resource
dex.enabledπ
Type: bool
true
Description: Enable dex
dex.nameπ
Type: string
"dex-server"
Description: Dex name
dex.extraArgsπ
Type: list
[]
Description: Additional command line arguments to pass to the Dex server
dex.metrics.enabledπ
Type: bool
false
Description: Deploy metrics service
dex.metrics.service.annotationsπ
Type: object
{}
Description: Metrics service annotations
dex.metrics.service.labelsπ
Type: object
{}
Description: Metrics service labels
dex.metrics.service.portNameπ
Type: string
"http-metrics"
Description: Metrics service port name
dex.metrics.serviceMonitor.enabledπ
Type: bool
false
Description: Enable a prometheus ServiceMonitor
dex.metrics.serviceMonitor.intervalπ
Type: string
"30s"
Description: Prometheus ServiceMonitor interval
dex.metrics.serviceMonitor.honorLabelsπ
Type: bool
false
Description: When true, honorLabels preserves the metricβs labels when they collide with the targetβs labels.
dex.metrics.serviceMonitor.relabelingsπ
Type: list
[]
Description: Prometheus [RelabelConfigs] to apply to samples before scraping
dex.metrics.serviceMonitor.metricRelabelingsπ
Type: list
[]
Description: Prometheus [MetricRelabelConfigs] to apply to samples before ingestion
dex.metrics.serviceMonitor.selectorπ
Type: object
{}
Description: Prometheus ServiceMonitor selector
dex.metrics.serviceMonitor.schemeπ
Type: string
""
Description: Prometheus ServiceMonitor scheme
dex.metrics.serviceMonitor.tlsConfigπ
Type: object
{}
Description: Prometheus ServiceMonitor tlsConfig
dex.metrics.serviceMonitor.namespaceπ
Type: string
""
Description: Prometheus ServiceMonitor namespace
dex.metrics.serviceMonitor.additionalLabelsπ
Type: object
{}
Description: Prometheus ServiceMonitor labels
dex.metrics.serviceMonitor.annotationsπ
Type: object
{}
Description: Prometheus ServiceMonitor annotations
dex.pdb.enabledπ
Type: bool
false
Description: Deploy a [PodDisruptionBudget] for the Dex server
dex.pdb.labelsπ
Type: object
{}
Description: Labels to be added to Dex server pdb
dex.pdb.annotationsπ
Type: object
{}
Description: Annotations to be added to Dex server pdb
dex.pdb.maxUnavailableπ
Type: string
""
Description: Number of pods that are unavailble after eviction as number or percentage (eg.: 50%). # Has higher precedence over dex.pdb.minAvailable
dex.image.repositoryπ
Type: string
"registry1.dso.mil/ironbank/opensource/dexidp/dex"
Description: Dex image repository
dex.image.tagπ
Type: string
"v2.41.1"
Description: Dex image tag
dex.envπ
Type: list
[]
Description: Environment variables to pass to the Dex server
dex.extraContainersπ
Type: list
[]
Description: Additional containers to be added to the dex pod # Note: Supports use of custom Helm templates
dex.initContainersπ
Type: list
[]
Description: Init containers to add to the dex pod # Note: Supports use of custom Helm templates
dex.volumeMountsπ
Type: list
[]
Description: Additional volumeMounts to the dex main container
dex.volumesπ
Type: list
[]
Description: Additional volumes to the dex pod
dex.certificateSecret.enabledπ
Type: bool
false
Description: Create argocd-dex-server-tls secret
dex.certificateSecret.labelsπ
Type: object
{}
Description: Labels to be added to argocd-dex-server-tls secret
dex.certificateSecret.annotationsπ
Type: object
{}
Description: Annotations to be added to argocd-dex-server-tls secret
dex.certificateSecret.caπ
Type: string
""
Description: Certificate authority. Required for self-signed certificates.
dex.certificateSecret.keyπ
Type: string
""
Description: Certificate private key
dex.certificateSecret.crtπ
Type: string
""
Description: Certificate data. Must contain SANs of Dex service (ie: argocd-dex-server, argocd-dex-server.argo-cd.svc)
dex.deploymentAnnotationsπ
Type: object
{}
Description: Annotations to be added to the Dex server Deployment
dex.podAnnotationsπ
Type: object
{}
Description: Annotations to be added to the Dex server pods
dex.podLabelsπ
Type: object
{}
Description: Labels to be added to the Dex server pods
dex.resourcesπ
Type: object
limits:
cpu: 10m
memory: 128Mi
requests:
cpu: 10m
memory: 128Mi
Description: Resource limits and requests for dex
dex.containerPorts.httpπ
Type: int
5556
Description: HTTP container port
dex.containerPorts.grpcπ
Type: int
5557
Description: gRPC container port
dex.containerPorts.metricsπ
Type: int
5558
Description: Metrics container port
dex.dnsConfigπ
Type: object
{}
Description: [DNS configuration]
dex.dnsPolicyπ
Type: string
"ClusterFirst"
Description: Alternative DNS policy for Dex server pods
dex.livenessProbe.enabledπ
Type: bool
false
Description: Enable Kubernetes liveness probe for Dex >= 2.28.0
dex.livenessProbe.httpPathπ
Type: string
"/healthz/live"
Description: Http path to use for the liveness probe
dex.livenessProbe.httpPortπ
Type: string
"metrics"
Description: Http port to use for the liveness probe
dex.livenessProbe.httpSchemeπ
Type: string
"HTTP"
Description: Scheme to use for for the liveness probe (can be HTTP or HTTPS)
dex.livenessProbe.failureThresholdπ
Type: int
3
Description: Minimum consecutive failures for the [probe] to be considered failed after having succeeded
dex.livenessProbe.initialDelaySecondsπ
Type: int
10
Description: Number of seconds after the container has started before [probe] is initiated
dex.livenessProbe.periodSecondsπ
Type: int
10
Description: How often (in seconds) to perform the [probe]
dex.livenessProbe.successThresholdπ
Type: int
1
Description: Minimum consecutive successes for the [probe] to be considered successful after having failed
dex.livenessProbe.timeoutSecondsπ
Type: int
15
Description: Number of seconds after which the [probe] times out
dex.readinessProbe.enabledπ
Type: bool
false
Description: Enable Kubernetes readiness probe for Dex >= 2.28.0
dex.readinessProbe.httpPathπ
Type: string
"/healthz/ready"
Description: Http path to use for the readiness probe
dex.readinessProbe.httpPortπ
Type: string
"metrics"
Description: Http port to use for the readiness probe
dex.readinessProbe.httpSchemeπ
Type: string
"HTTP"
Description: Scheme to use for for the liveness probe (can be HTTP or HTTPS)
dex.readinessProbe.failureThresholdπ
Type: int
3
Description: Minimum consecutive failures for the [probe] to be considered failed after having succeeded
dex.readinessProbe.initialDelaySecondsπ
Type: int
10
Description: Number of seconds after the container has started before [probe] is initiated
dex.readinessProbe.periodSecondsπ
Type: int
10
Description: How often (in seconds) to perform the [probe]
dex.readinessProbe.successThresholdπ
Type: int
1
Description: Minimum consecutive successes for the [probe] to be considered successful after having failed
dex.readinessProbe.timeoutSecondsπ
Type: int
15
Description: Number of seconds after which the [probe] times out
dex.terminationGracePeriodSecondsπ
Type: int
30
Description: terminationGracePeriodSeconds for container lifecycle hook
dex.automountServiceAccountTokenπ
Type: bool
true
Description: Automount API credentials for the Service Account into the pod.
dex.serviceAccount.createπ
Type: bool
true
Description: Create dex service account
dex.serviceAccount.nameπ
Type: string
"argocd-dex-server"
Description: Dex service account name
dex.serviceAccount.annotationsπ
Type: object
{}
Description: Annotations applied to created service account
dex.serviceAccount.automountServiceAccountTokenπ
Type: bool
true
Description: Automount API credentials for the Service Account
dex.servicePortHttpπ
Type: int
5556
Description: Service port for HTTP access
dex.servicePortHttpNameπ
Type: string
"http"
Description: Service port name for HTTP access
dex.servicePortGrpcπ
Type: int
5557
Description: Service port for gRPC access
dex.servicePortGrpcNameπ
Type: string
"grpc"
Description: Service port name for gRPC access
dex.servicePortMetricsπ
Type: int
5558
Description: Service port for metrics access
dex.deploymentStrategyπ
Type: object
{}
Description: Deployment strategy to be added to the Dex server Deployment
redis.externalEndpointπ
Type: string
""
Description: Endpoint URL for external Redis For use with BigBang passthrough
redis.enabledπ
Type: bool
true
Description: Enable redis
redis.nameπ
Type: string
"redis"
Description: Redis name
redis.pdb.enabledπ
Type: bool
false
Description: Deploy a [PodDisruptionBudget] for the Redis
redis.pdb.labelsπ
Type: object
{}
Description: Labels to be added to Redis pdb
redis.pdb.annotationsπ
Type: object
{}
Description: Annotations to be added to Redis pdb
redis.pdb.maxUnavailableπ
Type: string
""
Description: Number of pods that are unavailble after eviction as number or percentage (eg.: 50%). # Has higher precedence over redis.pdb.minAvailable
redis.image.repositoryπ
Type: string
"ironbank/bitnami/redis"
Description: Redis repository
redis.image.tagπ
Type: string
"7.4.0"
Description: Redis tag
redis.exporter.enabledπ
Type: bool
false
Description: Enable Prometheus redis-exporter sidecar
redis.exporter.envπ
Type: list
[]
Description: Environment variables to pass to the Redis exporter
redis.exporter.image.repositoryπ
Type: string
"ironbank/bitnami/analytics/redis-exporter"
Description: Repository to use for the redis-exporter
redis.exporter.image.tagπ
Type: string
"v1.66.0"
Description: Tag to use for the redis-exporter
redis.exporter.readinessProbe.enabledπ
Type: bool
false
Description: Enable Kubernetes liveness probe for Redis exporter (optional)
redis.exporter.readinessProbe.initialDelaySecondsπ
Type: int
30
Description: Number of seconds after the container has started before [probe] is initiated
redis.exporter.readinessProbe.periodSecondsπ
Type: int
15
Description: How often (in seconds) to perform the [probe]
redis.exporter.readinessProbe.timeoutSecondsπ
Type: int
15
Description: Number of seconds after which the [probe] times out
redis.exporter.readinessProbe.successThresholdπ
Type: int
1
Description: Minimum consecutive successes for the [probe] to be considered successful after having failed
redis.exporter.readinessProbe.failureThresholdπ
Type: int
5
Description: Minimum consecutive failures for the [probe] to be considered failed after having succeeded
redis.exporter.livenessProbe.enabledπ
Type: bool
false
Description: Enable Kubernetes liveness probe for Redis exporter
redis.exporter.livenessProbe.initialDelaySecondsπ
Type: int
30
Description: Number of seconds after the container has started before [probe] is initiated
redis.exporter.livenessProbe.periodSecondsπ
Type: int
15
Description: How often (in seconds) to perform the [probe]
redis.exporter.livenessProbe.timeoutSecondsπ
Type: int
15
Description: Number of seconds after which the [probe] times out
redis.exporter.livenessProbe.successThresholdπ
Type: int
1
Description: Minimum consecutive successes for the [probe] to be considered successful after having failed
redis.exporter.livenessProbe.failureThresholdπ
Type: int
5
Description: Minimum consecutive failures for the [probe] to be considered failed after having succeeded
redis.exporter.resourcesπ
Type: object
{}
Description: Resource limits and requests for redis-exporter sidecar
redis.extraArgsπ
Type: list
[]
Description: Additional command line arguments to pass to redis-server
redis.envπ
Type: list
[]
Description: Environment variables to pass to the Redis server
redis.readinessProbe.enabledπ
Type: bool
false
Description: Enable Kubernetes liveness probe for Redis server
redis.readinessProbe.initialDelaySecondsπ
Type: int
30
Description: Number of seconds after the container has started before [probe] is initiated
redis.readinessProbe.periodSecondsπ
Type: int
15
Description: How often (in seconds) to perform the [probe]
redis.readinessProbe.timeoutSecondsπ
Type: int
15
Description: Number of seconds after which the [probe] times out
redis.readinessProbe.successThresholdπ
Type: int
1
Description: Minimum consecutive successes for the [probe] to be considered successful after having failed
redis.readinessProbe.failureThresholdπ
Type: int
5
Description: Minimum consecutive failures for the [probe] to be considered failed after having succeeded
redis.livenessProbe.enabledπ
Type: bool
false
Description: Enable Kubernetes liveness probe for Redis server
redis.livenessProbe.initialDelaySecondsπ
Type: int
30
Description: Number of seconds after the container has started before [probe] is initiated
redis.livenessProbe.periodSecondsπ
Type: int
15
Description: How often (in seconds) to perform the [probe]
redis.livenessProbe.timeoutSecondsπ
Type: int
15
Description: Number of seconds after which the [probe] times out
redis.livenessProbe.successThresholdπ
Type: int
1
Description: Minimum consecutive successes for the [probe] to be considered successful after having failed
redis.livenessProbe.failureThresholdπ
Type: int
5
Description: Minimum consecutive failures for the [probe] to be considered failed after having succeeded
redis.extraContainersπ
Type: list
[]
Description: Additional containers to be added to the redis pod # Note: Supports use of custom Helm templates
redis.initContainersπ
Type: list
[]
Description: Init containers to add to the redis pod # Note: Supports use of custom Helm templates
redis.volumeMountsπ
Type: list
[]
Description: Additional volumeMounts to the redis container
redis.volumesπ
Type: list
[]
Description: Additional volumes to the redis pod
redis.deploymentAnnotationsπ
Type: object
{}
Description: Annotations to be added to the Redis server Deployment
redis.podAnnotationsπ
Type: object
{}
Description: Annotations to be added to the Redis server pods
redis.podLabelsπ
Type: object
{}
Description: Labels to be added to the Redis server pods
redis.resourcesπ
Type: object
limits:
cpu: 50m
memory: 64Mi
requests:
cpu: 50m
memory: 64Mi
Description: Resource limits and requests for redis
redis.containerPorts.redisπ
Type: int
6379
Description: Redis container port
redis.containerPorts.metricsπ
Type: int
9121
Description: Metrics container port
redis.dnsConfigπ
Type: object
{}
Description: [DNS configuration]
redis.dnsPolicyπ
Type: string
"ClusterFirst"
Description: Alternative DNS policy for Redis server pods
redis.servicePortπ
Type: int
6379
Description: Redis service port
redis.terminationGracePeriodSecondsπ
Type: int
30
Description: terminationGracePeriodSeconds for container lifecycle hook
redis.automountServiceAccountTokenπ
Type: bool
true
Description: Automount API credentials for the Service Account into the pod.
redis.serviceAccount.createπ
Type: bool
false
Description: Create a service account for the redis pod
redis.serviceAccount.nameπ
Type: string
""
Description: Service account name for redis pod
redis.serviceAccount.annotationsπ
Type: object
{}
Description: Annotations applied to created service account
redis.serviceAccount.automountServiceAccountTokenπ
Type: bool
false
Description: Automount API credentials for the Service Account
redis.service.annotationsπ
Type: object
{}
Description: Redis service annotations
redis.service.labelsπ
Type: object
{}
Description: Additional redis service labels
redis.master.containerSecurityContext.enabledπ
Type: bool
true
redis.master.containerSecurityContext.runAsUserπ
Type: int
999
redis.master.containerSecurityContext.runAsGroupπ
Type: int
999
redis.replica.containerSecurityContext.enabledπ
Type: bool
true
redis.replica.containerSecurityContext.runAsUserπ
Type: int
999
redis.replica.containerSecurityContext.runAsGroupπ
Type: int
999
redis.metrics.enabledπ
Type: bool
false
Description: Deploy metrics service
redis.metrics.service.typeπ
Type: string
"ClusterIP"
Description: Metrics service type
redis.metrics.service.clusterIPπ
Type: string
"None"
Description: Metrics service clusterIP. None makes a “headless service” (no virtual IP)
redis.metrics.service.annotationsπ
Type: object
{}
Description: Metrics service annotations
redis.metrics.service.labelsπ
Type: object
{}
Description: Metrics service labels
redis.metrics.service.servicePortπ
Type: int
9121
Description: Metrics service port
redis.metrics.service.portNameπ
Type: string
"http-metrics"
Description: Metrics service port name
redis.metrics.serviceMonitor.enabledπ
Type: bool
false
Description: Enable a prometheus ServiceMonitor
redis.metrics.serviceMonitor.intervalπ
Type: string
"30s"
Description: Interval at which metrics should be scraped
redis.metrics.serviceMonitor.honorLabelsπ
Type: bool
false
Description: When true, honorLabels preserves the metricβs labels when they collide with the targetβs labels.
redis.metrics.serviceMonitor.relabelingsπ
Type: list
[]
Description: Prometheus [RelabelConfigs] to apply to samples before scraping
redis.metrics.serviceMonitor.metricRelabelingsπ
Type: list
[]
Description: Prometheus [MetricRelabelConfigs] to apply to samples before ingestion
redis.metrics.serviceMonitor.selectorπ
Type: object
{}
Description: Prometheus ServiceMonitor selector
redis.metrics.serviceMonitor.schemeπ
Type: string
""
Description: Prometheus ServiceMonitor scheme
redis.metrics.serviceMonitor.tlsConfigπ
Type: object
{}
Description: Prometheus ServiceMonitor tlsConfig
redis.metrics.serviceMonitor.namespaceπ
Type: string
""
Description: Prometheus ServiceMonitor namespace
redis.metrics.serviceMonitor.additionalLabelsπ
Type: object
{}
Description: Prometheus ServiceMonitor labels
redis.metrics.serviceMonitor.annotationsπ
Type: object
{}
Description: Prometheus ServiceMonitor annotations
redis.metrics.containerSecurityContext.enabledπ
Type: bool
true
redis.metrics.containerSecurityContext.runAsUserπ
Type: int
999
redis.metrics.containerSecurityContext.runAsGroupπ
Type: int
999
redis-bbπ
Type: object
auth:
enabled: false
commonConfiguration: 'maxmemory 200mb
save ""'
enabled: true
image:
pullSecrets:
- private-registry
istio:
redis:
enabled: false
master:
containerSecurityContext:
capabilities:
drop:
- ALL
enabled: true
runAsGroup: 1001
runAsNonRoot: true
runAsUser: 1001
resources:
limits:
cpu: 100m
memory: 256Mi
requests:
cpu: 100m
memory: 256Mi
metrics:
containerSecurityContext:
enabled: true
runAsGroup: 1001
runAsUser: 1001
enabled: true
labels:
app.kubernetes.io/name: argocd-redis-ha-haproxy
metrics: null
replica:
containerSecurityContext:
capabilities:
drop:
- ALL
enabled: true
runAsGroup: 1001
runAsNonRoot: true
runAsUser: 1001
resources:
limits:
cpu: 100m
memory: 256Mi
requests:
cpu: 100m
memory: 256Mi
Description: BigBang HA Redis Passthrough
redis-bb.metrics.labelsπ
Type: object
app.kubernetes.io/name: argocd-redis-ha-haproxy
Description: Custom labels for the haproxy pod. This is relevant for Argo CD CLI.
redis-bb.metrics.containerSecurityContextπ
Type: object
enabled: true
runAsGroup: 1001
runAsUser: 1001
Description: HAProxy enable prometheus metric scraping
externalRedis.hostπ
Type: string
""
Description: External Redis server host
externalRedis.usernameπ
Type: string
""
Description: External Redis username
externalRedis.passwordπ
Type: string
""
Description: External Redis password
externalRedis.portπ
Type: int
6379
Description: External Redis server port
externalRedis.existingSecretπ
Type: string
""
Description: The name of an existing secret with Redis (must contain key redis-password) and Sentinel credentials. When it’s set, the externalRedis.password parameter is ignored
externalRedis.secretAnnotationsπ
Type: object
{}
Description: External Redis Secret annotations
redisSecretInit.enabledπ
Type: bool
false
Description: Enable Redis secret initialization. If disabled, secret must be provisioned by alternative methods
redisSecretInit.nameπ
Type: string
"redis-secret-init"
Description: Redis secret-init name
redisSecretInit.jobAnnotationsπ
Type: object
{}
Description: Annotations to be added to the Redis secret-init Job
redisSecretInit.podAnnotationsπ
Type: object
{}
Description: Annotations to be added to the Redis secret-init Job
redisSecretInit.podLabelsπ
Type: object
{}
Description: Labels to be added to the Redis secret-init Job
redisSecretInit.resourcesπ
Type: object
{}
Description: Resource limits and requests for Redis secret-init Job
redisSecretInit.securityContextπ
Type: object
{}
Description: Redis secret-init Job pod-level security context
redisSecretInit.serviceAccount.createπ
Type: bool
true
Description: Create a service account for the redis pod
redisSecretInit.serviceAccount.nameπ
Type: string
""
Description: Service account name for redis pod
redisSecretInit.serviceAccount.annotationsπ
Type: object
{}
Description: Annotations applied to created service account
redisSecretInit.serviceAccount.automountServiceAccountTokenπ
Type: bool
true
Description: Automount API credentials for the Service Account
redisSecretInit.affinityπ
Type: object
{}
Description: Assign custom [affinity] rules to the Redis secret-init Job
server.nameπ
Type: string
"server"
Description: Argo CD server name
server.replicasπ
Type: int
1
Description: The number of server pods to run
server.autoscaling.enabledπ
Type: bool
false
Description: Enable Horizontal Pod Autoscaler ([HPA]) for the Argo CD server
server.autoscaling.minReplicasπ
Type: int
1
Description: Minimum number of replicas for the Argo CD server [HPA]
server.autoscaling.maxReplicasπ
Type: int
5
Description: Maximum number of replicas for the Argo CD server [HPA]
server.autoscaling.targetCPUUtilizationPercentageπ
Type: int
50
Description: Average CPU utilization percentage for the Argo CD server [HPA]
server.autoscaling.targetMemoryUtilizationPercentageπ
Type: int
50
Description: Average memory utilization percentage for the Argo CD server [HPA]
server.autoscaling.behaviorπ
Type: object
{}
Description: Configures the scaling behavior of the target in both Up and Down directions.
server.autoscaling.metricsπ
Type: list
[]
Description: Configures custom HPA metrics for the Argo CD server Ref: https://kubernetes.io/docs/tasks/run-application/horizontal-pod-autoscale/
server.pdb.enabledπ
Type: bool
false
Description: Deploy a [PodDisruptionBudget] for the Argo CD server
server.pdb.labelsπ
Type: object
{}
Description: Labels to be added to Argo CD server pdb
server.pdb.annotationsπ
Type: object
{}
Description: Annotations to be added to Argo CD server pdb
server.pdb.maxUnavailableπ
Type: string
""
Description: Number of pods that are unavailable after eviction as number or percentage (eg.: 50%). # Has higher precedence over server.pdb.minAvailable
server.extraArgsπ
Type: list
[]
Description: Additional command line arguments to pass to Argo CD server
server.envπ
Type: list
[]
Description: Environment variables to pass to Argo CD server
server.lifecycleπ
Type: object
{}
Description: Specify postStart and preStop lifecycle hooks for your argo-cd-server container
server.extensions.enabledπ
Type: bool
false
Description: Enable support for Argo CD extensions
server.extensions.image.repositoryπ
Type: string
"quay.io/argoprojlabs/argocd-extension-installer"
Description: Repository to use for extension installer image
server.extensions.image.tagπ
Type: string
"v0.0.5"
Description: Tag to use for extension installer image
server.extensions.resourcesπ
Type: object
{}
Description: Resource limits and requests for the argocd-extensions container
server.extraContainersπ
Type: list
[]
Description: Additional containers to be added to the server pod # Note: Supports use of custom Helm templates
server.initContainersπ
Type: list
[]
Description: Init containers to add to the server pod # If your target Kubernetes cluster(s) require a custom credential (exec) plugin # you could use this (and the same in the application controller pod) to provide such executable # Ref: https://kubernetes.io/docs/reference/access-authn-authz/authentication/#client-go-credential-plugins
server.volumeMountsπ
Type: list
[]
Description: Additional volumeMounts to the server main container
server.volumesπ
Type: list
[]
Description: Additional volumes to the server pod
server.deploymentAnnotationsπ
Type: object
{}
Description: Annotations to be added to server Deployment
server.podAnnotationsπ
Type: object
{}
Description: Annotations to be added to server pods
server.podLabelsπ
Type: object
{}
Description: Labels to be added to server pods
server.resourcesπ
Type: object
limits:
cpu: 20m
memory: 128Mi
requests:
cpu: 20m
memory: 128Mi
Description: Resource limits and requests for the Argo CD server
server.containerPorts.serverπ
Type: int
8080
Description: Server container port
server.containerPorts.metricsπ
Type: int
8083
Description: Metrics container port
server.hostNetworkπ
Type: bool
false
Description: Host Network for Server pods
server.dnsConfigπ
Type: object
{}
Description: [DNS configuration]
server.dnsPolicyπ
Type: string
"ClusterFirst"
Description: Alternative DNS policy for Server pods
server.readinessProbe.failureThresholdπ
Type: int
3
Description: Minimum consecutive failures for the [probe] to be considered failed after having succeeded
server.readinessProbe.initialDelaySecondsπ
Type: int
10
Description: Number of seconds after the container has started before [probe] is initiated
server.readinessProbe.periodSecondsπ
Type: int
10
Description: How often (in seconds) to perform the [probe]
server.readinessProbe.successThresholdπ
Type: int
1
Description: Minimum consecutive successes for the [probe] to be considered successful after having failed
server.readinessProbe.timeoutSecondsπ
Type: int
15
Description: Number of seconds after which the [probe] times out
server.livenessProbe.failureThresholdπ
Type: int
3
Description: Minimum consecutive failures for the [probe] to be considered failed after having succeeded
server.livenessProbe.initialDelaySecondsπ
Type: int
10
Description: Number of seconds after the container has started before [probe] is initiated
server.livenessProbe.periodSecondsπ
Type: int
10
Description: How often (in seconds) to perform the [probe]
server.livenessProbe.successThresholdπ
Type: int
1
Description: Minimum consecutive successes for the [probe] to be considered successful after having failed
server.livenessProbe.timeoutSecondsπ
Type: int
15
Description: Number of seconds after which the [probe] times out
server.terminationGracePeriodSecondsπ
Type: int
30
Description: terminationGracePeriodSeconds for container lifecycle hook
server.deploymentStrategyπ
Type: object
{}
Description: Deployment strategy to be added to the server Deployment
server.certificate.enabledπ
Type: bool
false
Description: Deploy a Certificate resource (requires cert-manager)
server.certificate.additionalHostsπ
Type: list
[]
Description: Certificate Subject Alternate Names (SANs)
server.certificate.issuer.groupπ
Type: string
""
Description: Certificate issuer group. Set if using an external issuer. Eg. cert-manager.io
server.certificate.issuer.kindπ
Type: string
""
Description: Certificate issuer kind. Either Issuer or ClusterIssuer
server.certificate.issuer.nameπ
Type: string
""
Description: Certificate issuer name. Eg. letsencrypt
server.certificate.privateKey.rotationPolicyπ
Type: string
"Never"
Description: Rotation policy of private key when certificate is re-issued. Either: Never or Always
server.certificate.privateKey.encodingπ
Type: string
"PKCS1"
Description: The private key cryptography standards (PKCS) encoding for private key. Either: PCKS1 or PKCS8
server.certificate.privateKey.algorithmπ
Type: string
"RSA"
Description: Algorithm used to generate certificate private key. One of: RSA, Ed25519 or ECDSA
server.certificate.privateKey.sizeπ
Type: int
2048
Description: Key bit size of the private key. If algorithm is set to Ed25519, size is ignored.
server.certificate.annotationsπ
Type: object
{}
Description: Annotations to be applied to the Server Certificate
server.certificate.usagesπ
Type: list
[]
Description: Usages for the certificate ## Ref: https://cert-manager.io/docs/reference/api-docs/#cert-manager.io/v1.KeyUsage
server.certificate.secretTemplateAnnotationsπ
Type: object
{}
Description: Annotations that allow the certificate to be composed from data residing in existing Kubernetes Resources
server.certificateSecret.enabledπ
Type: bool
false
Description: Create argocd-server-tls secret
server.certificateSecret.annotationsπ
Type: object
{}
Description: Annotations to be added to argocd-server-tls secret
server.certificateSecret.labelsπ
Type: object
{}
Description: Labels to be added to argocd-server-tls secret
server.certificateSecret.keyπ
Type: string
""
Description: Private Key of the certificate
server.certificateSecret.crtπ
Type: string
""
Description: Certificate data
server.service.annotationsπ
Type: object
{}
Description: Server service annotations
server.service.labelsπ
Type: object
{}
Description: Server service labels
server.service.typeπ
Type: string
"ClusterIP"
Description: Server service type
server.service.nodePortHttpπ
Type: int
30080
Description: Server service http port for NodePort service type (only if server.service.type is set to “NodePort”)
server.service.nodePortHttpsπ
Type: int
30443
Description: Server service https port for NodePort service type (only if server.service.type is set to “NodePort”)
server.service.servicePortHttpπ
Type: int
80
Description: Server service http port
server.service.servicePortHttpsπ
Type: int
443
Description: Server service https port
server.service.servicePortHttpNameπ
Type: string
"http"
Description: Server service http port name, can be used to route traffic via istio
server.service.servicePortHttpsNameπ
Type: string
"https"
Description: Server service https port name, can be used to route traffic via istio
server.service.servicePortHttpsAppProtocolπ
Type: string
""
Description: Server service https port appProtocol # Ref: https://kubernetes.io/docs/concepts/services-networking/service/#application-protocol
server.service.loadBalancerClassπ
Type: string
""
Description: The class of the load balancer implementation
server.service.loadBalancerIPπ
Type: string
""
Description: LoadBalancer will get created with the IP specified in this field
server.service.loadBalancerSourceRangesπ
Type: list
[]
Description: Source IP ranges to allow access to service from # Ref: https://kubernetes.io/docs/tasks/access-application-cluster/configure-cloud-provider-firewall/#restrict-access-for-loadbalancer-service
server.service.externalIPsπ
Type: list
[]
Description: Server service external IPs
server.service.externalTrafficPolicyπ
Type: string
""
Description: Denotes if this Service desires to route external traffic to node-local or cluster-wide endpoints
server.service.sessionAffinityπ
Type: string
""
Description: Used to maintain session affinity. Supports ClientIP and None
server.metrics.enabledπ
Type: bool
false
Description: Deploy metrics service
server.metrics.service.typeπ
Type: string
"ClusterIP"
Description: Metrics service type
server.metrics.service.clusterIPπ
Type: string
""
Description: Metrics service clusterIP. None makes a “headless service” (no virtual IP)
server.metrics.service.annotationsπ
Type: object
{}
Description: Metrics service annotations
server.metrics.service.labelsπ
Type: object
{}
Description: Metrics service labels
server.metrics.service.servicePortπ
Type: int
8083
Description: Metrics service port
server.metrics.service.portNameπ
Type: string
"http-metrics"
Description: Metrics service port name
server.metrics.serviceMonitor.enabledπ
Type: bool
false
Description: Enable a prometheus ServiceMonitor
server.metrics.serviceMonitor.intervalπ
Type: string
"30s"
Description: Prometheus ServiceMonitor interval
server.metrics.serviceMonitor.scrapeTimeoutπ
Type: string
""
Description: Prometheus ServiceMonitor scrapeTimeout. If empty, Prometheus uses the global scrape timeout unless it is less than the target’s scrape interval value in which the latter is used.
server.metrics.serviceMonitor.honorLabelsπ
Type: bool
false
Description: When true, honorLabels preserves the metricβs labels when they collide with the targetβs labels.
server.metrics.serviceMonitor.relabelingsπ
Type: list
[]
Description: Prometheus [RelabelConfigs] to apply to samples before scraping
server.metrics.serviceMonitor.metricRelabelingsπ
Type: list
[]
Description: Prometheus [MetricRelabelConfigs] to apply to samples before ingestion
server.metrics.serviceMonitor.selectorπ
Type: object
{}
Description: Prometheus ServiceMonitor selector
server.metrics.serviceMonitor.schemeπ
Type: string
""
Description: Prometheus ServiceMonitor scheme
server.metrics.serviceMonitor.tlsConfigπ
Type: object
{}
Description: Prometheus ServiceMonitor tlsConfig
server.metrics.serviceMonitor.namespaceπ
Type: string
""
Description: Prometheus ServiceMonitor namespace
server.metrics.serviceMonitor.additionalLabelsπ
Type: object
{}
Description: Prometheus ServiceMonitor labels
server.metrics.serviceMonitor.annotationsπ
Type: object
{}
Description: Prometheus ServiceMonitor annotations
server.automountServiceAccountTokenπ
Type: bool
true
Description: Automount API credentials for the Service Account into the pod.
server.serviceAccount.createπ
Type: bool
true
Description: Create server service account
server.serviceAccount.nameπ
Type: string
"argocd-server"
Description: Server service account name
server.serviceAccount.annotationsπ
Type: object
{}
Description: Annotations applied to created service account
server.serviceAccount.labelsπ
Type: object
{}
Description: Labels applied to created service account
server.serviceAccount.automountServiceAccountTokenπ
Type: bool
true
Description: Automount API credentials for the Service Account
server.ingress.enabledπ
Type: bool
false
Description: Enable an ingress resource for the Argo CD server
server.ingress.controllerπ
Type: string
"generic"
Description: Specific implementation for ingress controller. One of generic, aws or gke # Additional configuration might be required in related configuration sections
server.ingress.labelsπ
Type: object
{}
Description: Additional ingress labels
server.ingress.annotationsπ
Type: object
{}
Description: Additional ingress annotations # Ref: https://argo-cd.readthedocs.io/en/stable/operator-manual/ingress/#option-1-ssl-passthrough
server.ingress.ingressClassNameπ
Type: string
""
Description: Defines which ingress controller will implement the resource
server.ingress.pathπ
Type: string
"/"
Description: The path to Argo CD server
server.ingress.pathTypeπ
Type: string
"Prefix"
Description: Ingress path type. One of Exact, Prefix or ImplementationSpecific
server.ingress.tlsπ
Type: bool
false
Description: Enable TLS configuration for the hostname defined at server.ingress.hostname # TLS certificate will be retrieved from a TLS secret argocd-server-tls # You can create this secret via certificate or certificateSecret option
server.ingress.aws.backendProtocolVersionπ
Type: string
"GRPC"
Description: Backend protocol version for the AWS ALB gRPC service # This tells AWS to send traffic from the ALB using gRPC. # For more information: https://docs.aws.amazon.com/elasticloadbalancing/latest/application/target-group-health-checks.html#health-check-settings
server.ingress.aws.serviceTypeπ
Type: string
"NodePort"
Description: Service type for the AWS ALB gRPC service # Can be of type NodePort or ClusterIP depending on which mode you are running. # Instance mode needs type NodePort, IP mode needs type ClusterIP # Ref: https://kubernetes-sigs.github.io/aws-load-balancer-controller/v2.2/how-it-works/#ingress-traffic
server.ingress.gke.managedCertificate.createπ
Type: bool
true
Description: Create ManagedCertificate resource and annotations for Google Load balancer # Ref: https://cloud.google.com/kubernetes-engine/docs/how-to/managed-certs
server.ingress.gke.managedCertificate.extraDomainsπ
Type: list
[]
Description: Additional domains for ManagedCertificate resource
server.ingressGrpc.enabledπ
Type: bool
false
Description: Enable an ingress resource for the Argo CD server for dedicated [gRPC-ingress]
server.ingressGrpc.annotationsπ
Type: object
{}
Description: Additional ingress annotations for dedicated [gRPC-ingress]
server.ingressGrpc.labelsπ
Type: object
{}
Description: Additional ingress labels for dedicated [gRPC-ingress]
server.ingressGrpc.ingressClassNameπ
Type: string
""
Description: Defines which ingress controller will implement the resource [gRPC-ingress]
server.ingressGrpc.pathπ
Type: string
"/"
Description: Argo CD server ingress path for dedicated [gRPC-ingress]
server.ingressGrpc.pathTypeπ
Type: string
"Prefix"
Description: Ingress path type for dedicated [gRPC-ingress]. One of Exact, Prefix or ImplementationSpecific
server.ingressGrpc.tlsπ
Type: bool
false
Description: Enable TLS configuration for the hostname defined at server.ingressGrpc.hostname # TLS certificate will be retrieved from a TLS secret with name: argocd-server-grpc-tls
server.route.enabledπ
Type: bool
false
Description: Enable an OpenShift Route for the Argo CD server
server.route.annotationsπ
Type: object
{}
Description: Openshift Route annotations
server.route.hostnameπ
Type: string
""
Description: Hostname of OpenShift Route
server.route.termination_typeπ
Type: string
"passthrough"
Description: Termination type of Openshift Route
server.route.termination_policyπ
Type: string
"None"
Description: Termination policy of Openshift Route
server.clusterRoleRules.enabledπ
Type: bool
false
Description: Enable custom rules for the server’s ClusterRole resource
server.clusterRoleRules.rulesπ
Type: list
[]
Description: List of custom rules for the server’s ClusterRole resource
repoServer.nameπ
Type: string
"repo-server"
Description: Repo server name
repoServer.replicasπ
Type: int
1
Description: The number of repo server pods to run
repoServer.autoscaling.enabledπ
Type: bool
false
Description: Enable Horizontal Pod Autoscaler ([HPA]) for the repo server
repoServer.autoscaling.minReplicasπ
Type: int
1
Description: Minimum number of replicas for the repo server [HPA]
repoServer.autoscaling.maxReplicasπ
Type: int
5
Description: Maximum number of replicas for the repo server [HPA]
repoServer.autoscaling.targetCPUUtilizationPercentageπ
Type: int
50
Description: Average CPU utilization percentage for the repo server [HPA]
repoServer.autoscaling.targetMemoryUtilizationPercentageπ
Type: int
50
Description: Average memory utilization percentage for the repo server [HPA]
repoServer.autoscaling.behaviorπ
Type: object
{}
Description: Configures the scaling behavior of the target in both Up and Down directions.
repoServer.autoscaling.metricsπ
Type: list
[]
Description: Configures custom HPA metrics for the Argo CD repo server Ref: https://kubernetes.io/docs/tasks/run-application/horizontal-pod-autoscale/
repoServer.pdb.enabledπ
Type: bool
false
Description: Deploy a [PodDisruptionBudget] for the repo server
repoServer.pdb.labelsπ
Type: object
{}
Description: Labels to be added to repo server pdb
repoServer.pdb.annotationsπ
Type: object
{}
Description: Annotations to be added to repo server pdb
repoServer.pdb.maxUnavailableπ
Type: string
""
Description: Number of pods that are unavailable after eviction as number or percentage (eg.: 50%). # Has higher precedence over repoServer.pdb.minAvailable
repoServer.extraArgsπ
Type: list
[]
Description: Additional command line arguments to pass to repo server
repoServer.envπ
Type: list
[]
Description: Environment variables to pass to repo server
repoServer.lifecycleπ
Type: object
{}
Description: Specify postStart and preStop lifecycle hooks for your argo-repo-server container
repoServer.extraContainersπ
Type: list
[]
Description: Additional containers to be added to the repo server pod # Ref: https://argo-cd.readthedocs.io/en/stable/user-guide/config-management-plugins/ # Note: Supports use of custom Helm templates
repoServer.initContainersπ
Type: list
[]
Description: Init containers to add to the repo server pods
repoServer.volumeMountsπ
Type: list
[]
Description: Additional volumeMounts to the repo server main container
repoServer.volumesπ
Type: list
[]
Description: Additional volumes to the repo server pod
repoServer.existingVolumesπ
Type: object
{}
Description: Volumes to be used in replacement of emptydir on default volumes
repoServer.useEphemeralHelmWorkingDirπ
Type: bool
true
Description: Toggle the usage of a ephemeral Helm working directory
repoServer.deploymentAnnotationsπ
Type: object
{}
Description: Annotations to be added to repo server Deployment
repoServer.podAnnotationsπ
Type: object
{}
Description: Annotations to be added to repo server pods
repoServer.podLabelsπ
Type: object
{}
Description: Labels to be added to repo server pods
repoServer.resourcesπ
Type: object
limits:
cpu: 100m
memory: 1Gi
requests:
cpu: 100m
memory: 1Gi
Description: Resource limits and requests for the repo server pods
repoServer.containerPorts.serverπ
Type: int
8081
Description: Repo server container port
repoServer.containerPorts.metricsπ
Type: int
8084
Description: Metrics container port
repoServer.hostNetworkπ
Type: bool
false
Description: Host Network for Repo server pods
repoServer.dnsConfigπ
Type: object
{}
Description: [DNS configuration]
repoServer.dnsPolicyπ
Type: string
"ClusterFirst"
Description: Alternative DNS policy for Repo server pods
repoServer.readinessProbe.failureThresholdπ
Type: int
3
Description: Minimum consecutive failures for the [probe] to be considered failed after having succeeded
repoServer.readinessProbe.initialDelaySecondsπ
Type: int
10
Description: Number of seconds after the container has started before [probe] is initiated
repoServer.readinessProbe.periodSecondsπ
Type: int
10
Description: How often (in seconds) to perform the [probe]
repoServer.readinessProbe.successThresholdπ
Type: int
1
Description: Minimum consecutive successes for the [probe] to be considered successful after having failed
repoServer.readinessProbe.timeoutSecondsπ
Type: int
15
Description: Number of seconds after which the [probe] times out
repoServer.livenessProbe.failureThresholdπ
Type: int
3
Description: Minimum consecutive failures for the [probe] to be considered failed after having succeeded
repoServer.livenessProbe.initialDelaySecondsπ
Type: int
10
Description: Number of seconds after the container has started before [probe] is initiated
repoServer.livenessProbe.periodSecondsπ
Type: int
10
Description: How often (in seconds) to perform the [probe]
repoServer.livenessProbe.successThresholdπ
Type: int
1
Description: Minimum consecutive successes for the [probe] to be considered successful after having failed
repoServer.livenessProbe.timeoutSecondsπ
Type: int
15
Description: Number of seconds after which the [probe] times out
repoServer.terminationGracePeriodSecondsπ
Type: int
30
Description: terminationGracePeriodSeconds for container lifecycle hook
repoServer.deploymentStrategyπ
Type: object
{}
Description: Deployment strategy to be added to the repo server Deployment
repoServer.certificateSecret.enabledπ
Type: bool
false
Description: Create argocd-repo-server-tls secret
repoServer.certificateSecret.annotationsπ
Type: object
{}
Description: Annotations to be added to argocd-repo-server-tls secret
repoServer.certificateSecret.labelsπ
Type: object
{}
Description: Labels to be added to argocd-repo-server-tls secret
repoServer.certificateSecret.caπ
Type: string
""
Description: Certificate authority. Required for self-signed certificates.
repoServer.certificateSecret.keyπ
Type: string
""
Description: Certificate private key
repoServer.certificateSecret.crtπ
Type: string
""
Description: Certificate data. Must contain SANs of Repo service (ie: argocd-repo-server, argocd-repo-server.argo-cd.svc)
repoServer.service.annotationsπ
Type: object
{}
Description: Repo server service annotations
repoServer.service.labelsπ
Type: object
{}
Description: Repo server service labels
repoServer.service.portπ
Type: int
8081
Description: Repo server service port
repoServer.service.portNameπ
Type: string
"tcp-repo-server"
Description: Repo server service port name
repoServer.metrics.enabledπ
Type: bool
false
Description: Deploy metrics service
repoServer.metrics.service.typeπ
Type: string
"ClusterIP"
Description: Metrics service type
repoServer.metrics.service.clusterIPπ
Type: string
""
Description: Metrics service clusterIP. None makes a “headless service” (no virtual IP)
repoServer.metrics.service.annotationsπ
Type: object
{}
Description: Metrics service annotations
repoServer.metrics.service.labelsπ
Type: object
{}
Description: Metrics service labels
repoServer.metrics.service.servicePortπ
Type: int
8084
Description: Metrics service port
repoServer.metrics.service.portNameπ
Type: string
"http-metrics"
Description: Metrics service port name
repoServer.metrics.serviceMonitor.enabledπ
Type: bool
false
Description: Enable a prometheus ServiceMonitor
repoServer.metrics.serviceMonitor.intervalπ
Type: string
"30s"
Description: Prometheus ServiceMonitor interval
repoServer.metrics.serviceMonitor.scrapeTimeoutπ
Type: string
""
Description: Prometheus ServiceMonitor scrapeTimeout. If empty, Prometheus uses the global scrape timeout unless it is less than the target’s scrape interval value in which the latter is used.
repoServer.metrics.serviceMonitor.honorLabelsπ
Type: bool
false
Description: When true, honorLabels preserves the metricβs labels when they collide with the targetβs labels.
repoServer.metrics.serviceMonitor.relabelingsπ
Type: list
[]
Description: Prometheus [RelabelConfigs] to apply to samples before scraping
repoServer.metrics.serviceMonitor.metricRelabelingsπ
Type: list
[]
Description: Prometheus [MetricRelabelConfigs] to apply to samples before ingestion
repoServer.metrics.serviceMonitor.selectorπ
Type: object
{}
Description: Prometheus ServiceMonitor selector
repoServer.metrics.serviceMonitor.schemeπ
Type: string
""
Description: Prometheus ServiceMonitor scheme
repoServer.metrics.serviceMonitor.tlsConfigπ
Type: object
{}
Description: Prometheus ServiceMonitor tlsConfig
repoServer.metrics.serviceMonitor.namespaceπ
Type: string
""
Description: Prometheus ServiceMonitor namespace
repoServer.metrics.serviceMonitor.additionalLabelsπ
Type: object
{}
Description: Prometheus ServiceMonitor labels
repoServer.metrics.serviceMonitor.annotationsπ
Type: object
{}
Description: Prometheus ServiceMonitor annotations
repoServer.clusterRoleRules.enabledπ
Type: bool
false
Description: Enable custom rules for the Repo server’s Cluster Role resource
repoServer.clusterRoleRules.rulesπ
Type: list
[]
Description: List of custom rules for the Repo server’s Cluster Role resource
repoServer.automountServiceAccountTokenπ
Type: bool
true
Description: Automount API credentials for the Service Account into the pod.
repoServer.serviceAccount.createπ
Type: bool
true
Description: Create repo server service account
repoServer.serviceAccount.nameπ
Type: string
""
Description: Repo server service account name
repoServer.serviceAccount.annotationsπ
Type: object
{}
Description: Annotations applied to created service account
repoServer.serviceAccount.labelsπ
Type: object
{}
Description: Labels applied to created service account
repoServer.serviceAccount.automountServiceAccountTokenπ
Type: bool
true
Description: Automount API credentials for the Service Account
repoServer.rbacπ
Type: list
[]
Description: Repo server rbac rules
applicationSet.enabledπ
Type: bool
true
Description: Enable ApplicationSet controller
applicationSet.nameπ
Type: string
"applicationset-controller"
Description: ApplicationSet controller name string
applicationSet.replicasπ
Type: int
1
Description: The number of ApplicationSet controller pods to run
applicationSet.pdb.enabledπ
Type: bool
false
Description: Deploy a [PodDisruptionBudget] for the ApplicationSet controller
applicationSet.pdb.labelsπ
Type: object
{}
Description: Labels to be added to ApplicationSet controller pdb
applicationSet.pdb.annotationsπ
Type: object
{}
Description: Annotations to be added to ApplicationSet controller pdb
applicationSet.pdb.maxUnavailableπ
Type: string
""
Description: Number of pods that are unavailable after eviction as number or percentage (eg.: 50%). # Has higher precedence over applicationSet.pdb.minAvailable
applicationSet.extraArgsπ
Type: list
[]
Description: ApplicationSet controller command line flags
applicationSet.extraEnvπ
Type: list
[]
Description: Environment variables to pass to the ApplicationSet controller
applicationSet.extraContainersπ
Type: list
[]
Description: Additional containers to be added to the ApplicationSet controller pod # Note: Supports use of custom Helm templates
applicationSet.initContainersπ
Type: list
[]
Description: Init containers to add to the ApplicationSet controller pod # Note: Supports use of custom Helm templates
applicationSet.extraVolumeMountsπ
Type: list
[]
Description: List of extra mounts to add (normally used with extraVolumes)
applicationSet.extraVolumesπ
Type: list
[]
Description: List of extra volumes to add
applicationSet.metrics.enabledπ
Type: bool
false
Description: Deploy metrics service
applicationSet.metrics.service.typeπ
Type: string
"ClusterIP"
Description: Metrics service type
applicationSet.metrics.service.clusterIPπ
Type: string
""
Description: Metrics service clusterIP. None makes a “headless service” (no virtual IP)
applicationSet.metrics.service.annotationsπ
Type: object
{}
Description: Metrics service annotations
applicationSet.metrics.service.labelsπ
Type: object
{}
Description: Metrics service labels
applicationSet.metrics.service.servicePortπ
Type: int
8080
Description: Metrics service port
applicationSet.metrics.service.portNameπ
Type: string
"http-metrics"
Description: Metrics service port name
applicationSet.metrics.serviceMonitor.enabledπ
Type: bool
false
Description: Enable a prometheus ServiceMonitor
applicationSet.metrics.serviceMonitor.intervalπ
Type: string
"30s"
Description: Prometheus ServiceMonitor interval
applicationSet.metrics.serviceMonitor.scrapeTimeoutπ
Type: string
""
Description: Prometheus ServiceMonitor scrapeTimeout. If empty, Prometheus uses the global scrape timeout unless it is less than the target’s scrape interval value in which the latter is used.
applicationSet.metrics.serviceMonitor.honorLabelsπ
Type: bool
false
Description: When true, honorLabels preserves the metricβs labels when they collide with the targetβs labels.
applicationSet.metrics.serviceMonitor.relabelingsπ
Type: list
[]
Description: Prometheus [RelabelConfigs] to apply to samples before scraping
applicationSet.metrics.serviceMonitor.metricRelabelingsπ
Type: list
[]
Description: Prometheus [MetricRelabelConfigs] to apply to samples before ingestion
applicationSet.metrics.serviceMonitor.selectorπ
Type: object
{}
Description: Prometheus ServiceMonitor selector
applicationSet.metrics.serviceMonitor.schemeπ
Type: string
""
Description: Prometheus ServiceMonitor scheme
applicationSet.metrics.serviceMonitor.tlsConfigπ
Type: object
{}
Description: Prometheus ServiceMonitor tlsConfig
applicationSet.metrics.serviceMonitor.namespaceπ
Type: string
""
Description: Prometheus ServiceMonitor namespace
applicationSet.metrics.serviceMonitor.additionalLabelsπ
Type: object
{}
Description: Prometheus ServiceMonitor labels
applicationSet.metrics.serviceMonitor.annotationsπ
Type: object
{}
Description: Prometheus ServiceMonitor annotations
applicationSet.service.annotationsπ
Type: object
{}
Description: ApplicationSet service annotations
applicationSet.service.labelsπ
Type: object
{}
Description: ApplicationSet service labels
applicationSet.service.typeπ
Type: string
"ClusterIP"
Description: ApplicationSet service type
applicationSet.service.portπ
Type: int
7000
Description: ApplicationSet service port
applicationSet.service.portNameπ
Type: string
"http-webhook"
Description: ApplicationSet service port name
applicationSet.automountServiceAccountTokenπ
Type: bool
true
Description: Automount API credentials for the Service Account into the pod.
applicationSet.serviceAccount.createπ
Type: bool
true
Description: Create ApplicationSet controller service account
applicationSet.serviceAccount.nameπ
Type: string
"argocd-applicationset-controller"
Description: ApplicationSet controller service account name
applicationSet.serviceAccount.annotationsπ
Type: object
{}
Description: Annotations applied to created service account
applicationSet.serviceAccount.labelsπ
Type: object
{}
Description: Labels applied to created service account
applicationSet.serviceAccount.automountServiceAccountTokenπ
Type: bool
true
Description: Automount API credentials for the Service Account
applicationSet.deploymentAnnotationsπ
Type: object
{}
Description: Annotations to be added to ApplicationSet controller Deployment
applicationSet.podAnnotationsπ
Type: object
{}
Description: Annotations for the ApplicationSet controller pods
applicationSet.podLabelsπ
Type: object
{}
Description: Labels for the ApplicationSet controller pods
applicationSet.resourcesπ
Type: object
{}
Description: Resource limits and requests for the ApplicationSet controller pods.
applicationSet.containerPorts.metricsπ
Type: int
8080
Description: Metrics container port
applicationSet.containerPorts.probeπ
Type: int
8081
Description: Probe container port
applicationSet.containerPorts.webhookπ
Type: int
7000
Description: Webhook container port
applicationSet.dnsConfigπ
Type: object
{}
Description: [DNS configuration]
applicationSet.dnsPolicyπ
Type: string
"ClusterFirst"
Description: Alternative DNS policy for ApplicationSet controller pods
applicationSet.readinessProbe.enabledπ
Type: bool
false
Description: Enable Kubernetes liveness probe for ApplicationSet controller
applicationSet.readinessProbe.initialDelaySecondsπ
Type: int
10
Description: Number of seconds after the container has started before [probe] is initiated
applicationSet.readinessProbe.periodSecondsπ
Type: int
10
Description: How often (in seconds) to perform the [probe]
applicationSet.readinessProbe.timeoutSecondsπ
Type: int
15
Description: Number of seconds after which the [probe] times out
applicationSet.readinessProbe.successThresholdπ
Type: int
1
Description: Minimum consecutive successes for the [probe] to be considered successful after having failed
applicationSet.readinessProbe.failureThresholdπ
Type: int
3
Description: Minimum consecutive failures for the [probe] to be considered failed after having succeeded
applicationSet.livenessProbe.enabledπ
Type: bool
false
Description: Enable Kubernetes liveness probe for ApplicationSet controller
applicationSet.livenessProbe.initialDelaySecondsπ
Type: int
10
Description: Number of seconds after the container has started before [probe] is initiated
applicationSet.livenessProbe.periodSecondsπ
Type: int
10
Description: How often (in seconds) to perform the [probe]
applicationSet.livenessProbe.timeoutSecondsπ
Type: int
15
Description: Number of seconds after which the [probe] times out
applicationSet.livenessProbe.successThresholdπ
Type: int
1
Description: Minimum consecutive successes for the [probe] to be considered successful after having failed
applicationSet.livenessProbe.failureThresholdπ
Type: int
3
Description: Minimum consecutive failures for the [probe] to be considered failed after having succeeded
applicationSet.terminationGracePeriodSecondsπ
Type: int
30
Description: terminationGracePeriodSeconds for container lifecycle hook
applicationSet.deploymentStrategyπ
Type: object
{}
Description: Deployment strategy to be added to the ApplicationSet controller Deployment
applicationSet.certificate.enabledπ
Type: bool
false
Description: Deploy a Certificate resource (requires cert-manager)
applicationSet.certificate.additionalHostsπ
Type: list
[]
Description: Certificate Subject Alternate Names (SANs)
applicationSet.certificate.issuer.groupπ
Type: string
""
Description: Certificate issuer group. Set if using an external issuer. Eg. cert-manager.io
applicationSet.certificate.issuer.kindπ
Type: string
""
Description: Certificate issuer kind. Either Issuer or ClusterIssuer
applicationSet.certificate.issuer.nameπ
Type: string
""
Description: Certificate issuer name. Eg. letsencrypt
applicationSet.certificate.privateKey.rotationPolicyπ
Type: string
"Never"
Description: Rotation policy of private key when certificate is re-issued. Either: Never or Always
applicationSet.certificate.privateKey.encodingπ
Type: string
"PKCS1"
Description: The private key cryptography standards (PKCS) encoding for private key. Either: PCKS1 or PKCS8
applicationSet.certificate.privateKey.algorithmπ
Type: string
"RSA"
Description: Algorithm used to generate certificate private key. One of: RSA, Ed25519 or ECDSA
applicationSet.certificate.privateKey.sizeπ
Type: int
2048
Description: Key bit size of the private key. If algorithm is set to Ed25519, size is ignored.
applicationSet.certificate.annotationsπ
Type: object
{}
Description: Annotations to be applied to the ApplicationSet Certificate
applicationSet.ingress.enabledπ
Type: bool
false
Description: Enable an ingress resource for ApplicationSet webhook
applicationSet.ingress.labelsπ
Type: object
{}
Description: Additional ingress labels
applicationSet.ingress.annotationsπ
Type: object
{}
Description: Additional ingress annotations
applicationSet.ingress.ingressClassNameπ
Type: string
""
Description: Defines which ingress ApplicationSet controller will implement the resource
applicationSet.ingress.pathπ
Type: string
"/api/webhook"
Description: List of ingress paths
applicationSet.ingress.pathTypeπ
Type: string
"Prefix"
Description: Ingress path type. One of Exact, Prefix or ImplementationSpecific
applicationSet.ingress.tlsπ
Type: bool
false
Description: Enable TLS configuration for the hostname defined at applicationSet.webhook.ingress.hostname # TLS certificate will be retrieved from a TLS secret with name:argocd-applicationset-controller-tls
applicationSet.allowAnyNamespaceπ
Type: bool
false
Description: Enable ApplicationSet in any namespace feature
notifications.enabledπ
Type: bool
true
Description: Enable notifications controller
notifications.nameπ
Type: string
"notifications-controller"
Description: Notifications controller name string
notifications.pdb.enabledπ
Type: bool
false
Description: Deploy a [PodDisruptionBudget] for the notifications controller
notifications.pdb.labelsπ
Type: object
{}
Description: Labels to be added to notifications controller pdb
notifications.pdb.annotationsπ
Type: object
{}
Description: Annotations to be added to notifications controller pdb
notifications.pdb.maxUnavailableπ
Type: string
""
Description: Number of pods that are unavailable after eviction as number or percentage (eg.: 50%). # Has higher precedence over notifications.pdb.minAvailable
notifications.extraArgsπ
Type: list
[]
Description: Extra arguments to provide to the notifications controller
notifications.extraEnvπ
Type: list
[]
Description: Additional container environment variables
notifications.extraContainersπ
Type: list
[]
Description: Additional containers to be added to the notifications controller pod # Note: Supports use of custom Helm templates
notifications.initContainersπ
Type: list
[]
Description: Init containers to add to the notifications controller pod # Note: Supports use of custom Helm templates
notifications.extraVolumeMountsπ
Type: list
[]
Description: List of extra mounts to add (normally used with extraVolumes)
notifications.extraVolumesπ
Type: list
[]
Description: List of extra volumes to add
notifications.contextπ
Type: object
{}
Description: Define user-defined context # For more information: https://argo-cd.readthedocs.io/en/stable/operator-manual/notifications/templates/#defining-user-defined-context
notifications.secret.createπ
Type: bool
true
Description: Whether helm chart creates notifications controller secret # If true, will create a secret with the name below. Otherwise, will assume existence of a secret with that name.
notifications.secret.nameπ
Type: string
"argocd-notifications-secret"
Description: notifications controller Secret name
notifications.secret.annotationsπ
Type: object
{}
Description: key:value pairs of annotations to be added to the secret
notifications.secret.labelsπ
Type: object
{}
Description: key:value pairs of labels to be added to the secret
notifications.secret.itemsπ
Type: object
{}
Description: Generic key:value pairs to be inserted into the secret # Can be used for templates, notification services etc. Some examples given below. # For more information: https://argo-cd.readthedocs.io/en/stable/operator-manual/notifications/services/overview/
notifications.metrics.enabledπ
Type: bool
false
Description: Enables prometheus metrics server
notifications.metrics.portπ
Type: int
9001
Description: Metrics port
notifications.metrics.service.typeπ
Type: string
"ClusterIP"
Description: Metrics service type
notifications.metrics.service.clusterIPπ
Type: string
""
Description: Metrics service clusterIP. None makes a “headless service” (no virtual IP)
notifications.metrics.service.annotationsπ
Type: object
{}
Description: Metrics service annotations
notifications.metrics.service.labelsπ
Type: object
{}
Description: Metrics service labels
notifications.metrics.service.portNameπ
Type: string
"http-metrics"
Description: Metrics service port name
notifications.metrics.serviceMonitor.enabledπ
Type: bool
false
Description: Enable a prometheus ServiceMonitor
notifications.metrics.serviceMonitor.selectorπ
Type: object
{}
Description: Prometheus ServiceMonitor selector
notifications.metrics.serviceMonitor.additionalLabelsπ
Type: object
{}
Description: Prometheus ServiceMonitor labels
notifications.metrics.serviceMonitor.annotationsπ
Type: object
{}
Description: Prometheus ServiceMonitor annotations
notifications.metrics.serviceMonitor.schemeπ
Type: string
""
Description: Prometheus ServiceMonitor scheme
notifications.metrics.serviceMonitor.tlsConfigπ
Type: object
{}
Description: Prometheus ServiceMonitor tlsConfig
notifications.metrics.serviceMonitor.honorLabelsπ
Type: bool
false
Description: When true, honorLabels preserves the metricβs labels when they collide with the targetβs labels.
notifications.metrics.serviceMonitor.relabelingsπ
Type: list
[]
Description: Prometheus [RelabelConfigs] to apply to samples before scraping
notifications.metrics.serviceMonitor.metricRelabelingsπ
Type: list
[]
Description: Prometheus [MetricRelabelConfigs] to apply to samples before ingestion
notifications.deploymentAnnotationsπ
Type: object
{}
Description: Annotations to be applied to the notifications controller Deployment
notifications.podAnnotationsπ
Type: object
{}
Description: Annotations to be applied to the notifications controller Pods
notifications.podLabelsπ
Type: object
{}
Description: Labels to be applied to the notifications controller Pods
notifications.resourcesπ
Type: object
{}
Description: Resource limits and requests for the notifications controller
notifications.containerPorts.metricsπ
Type: int
9001
Description: Metrics container port
notifications.dnsConfigπ
Type: object
{}
Description: [DNS configuration]
notifications.dnsPolicyπ
Type: string
"ClusterFirst"
Description: Alternative DNS policy for notifications controller Pods
notifications.readinessProbe.enabledπ
Type: bool
false
Description: Enable Kubernetes liveness probe for notifications controller Pods
notifications.readinessProbe.initialDelaySecondsπ
Type: int
10
Description: Number of seconds after the container has started before [probe] is initiated
notifications.readinessProbe.periodSecondsπ
Type: int
10
Description: How often (in seconds) to perform the [probe]
notifications.readinessProbe.timeoutSecondsπ
Type: int
15
Description: Number of seconds after which the [probe] times out
notifications.readinessProbe.successThresholdπ
Type: int
1
Description: Minimum consecutive successes for the [probe] to be considered successful after having failed
notifications.readinessProbe.failureThresholdπ
Type: int
3
Description: Minimum consecutive failures for the [probe] to be considered failed after having succeeded
notifications.livenessProbe.enabledπ
Type: bool
false
Description: Enable Kubernetes liveness probe for notifications controller Pods
notifications.livenessProbe.initialDelaySecondsπ
Type: int
10
Description: Number of seconds after the container has started before [probe] is initiated
notifications.livenessProbe.periodSecondsπ
Type: int
10
Description: How often (in seconds) to perform the [probe]
notifications.livenessProbe.timeoutSecondsπ
Type: int
15
Description: Number of seconds after which the [probe] times out
notifications.livenessProbe.successThresholdπ
Type: int
1
Description: Minimum consecutive successes for the [probe] to be considered successful after having failed
notifications.livenessProbe.failureThresholdπ
Type: int
3
Description: Minimum consecutive failures for the [probe] to be considered failed after having succeeded
notifications.terminationGracePeriodSecondsπ
Type: int
30
Description: terminationGracePeriodSeconds for container lifecycle hook
notifications.deploymentStrategyπ
Type: object
type: Recreate
Description: Deployment strategy to be added to the notifications controller Deployment
notifications.automountServiceAccountTokenπ
Type: bool
true
Description: Automount API credentials for the Service Account into the pod.
notifications.serviceAccount.createπ
Type: bool
true
Description: Create notifications controller service account
notifications.serviceAccount.nameπ
Type: string
"argocd-notifications-controller"
Description: Notification controller service account name
notifications.serviceAccount.annotationsπ
Type: object
{}
Description: Annotations applied to created service account
notifications.serviceAccount.labelsπ
Type: object
{}
Description: Labels applied to created service account
notifications.serviceAccount.automountServiceAccountTokenπ
Type: bool
true
Description: Automount API credentials for the Service Account
notifications.cm.createπ
Type: bool
true
Description: Whether helm chart creates notifications controller config map
notifications.clusterRoleRules.rulesπ
Type: list
[]
Description: List of custom rules for the notifications controller’s ClusterRole resource
notifications.subscriptionsπ
Type: list
[]
Description: Contains centrally managed global application subscriptions # For more information: https://argo-cd.readthedocs.io/en/stable/operator-manual/notifications/subscriptions/
notifications.templatesπ
Type: object
{}
Description: The notification template is used to generate the notification content # For more information: https://argo-cd.readthedocs.io/en/stable/operator-manual/notifications/templates/
notifications.triggersπ
Type: object
{}
Description: The trigger defines the condition when the notification should be sent # For more information: https://argo-cd.readthedocs.io/en/stable/operator-manual/notifications/triggers/
notifications.bots.slack.enabledπ
Type: bool
false
Description: Enable slack bot # You have to set secret.notifiers.slack.signingSecret
notifications.bots.slack.pdb.enabledπ
Type: bool
false
Description: Deploy a [PodDisruptionBudget] for the Slack bot
notifications.bots.slack.pdb.labelsπ
Type: object
{}
Description: Labels to be added to Slack bot pdb
notifications.bots.slack.pdb.annotationsπ
Type: object
{}
Description: Annotations to be added to Slack bot pdb
notifications.bots.slack.pdb.maxUnavailableπ
Type: string
""
Description: Number of pods that are unavailble after eviction as number or percentage (eg.: 50%). # Has higher precedence over notifications.bots.slack.pdb.minAvailable
notifications.bots.slack.extraArgsπ
Type: list
[]
Description: List of extra cli args to add for Slack bot
notifications.bots.slack.service.annotationsπ
Type: object
{}
Description: Service annotations for Slack bot
notifications.bots.slack.service.portπ
Type: int
80
Description: Service port for Slack bot
notifications.bots.slack.service.typeπ
Type: string
"LoadBalancer"
Description: Service type for Slack bot
notifications.bots.slack.serviceAccount.createπ
Type: bool
true
Description: Specifies whether a service account should be created
notifications.bots.slack.serviceAccount.nameπ
Type: string
"argocd-notifications-bot"
Description: The name of the service account to use. # If not set and create is true, a name is generated using the fullname template
notifications.bots.slack.serviceAccount.annotationsπ
Type: object
{}
Description: Annotations applied to created service account
notifications.bots.slack.dnsConfigπ
Type: object
{}
Description: [DNS configuration]
notifications.bots.slack.dnsPolicyπ
Type: string
"ClusterFirst"
Description: Alternative DNS policy for Slack bot pods
notifications.bots.slack.resourcesπ
Type: object
{}
Description: Resource limits and requests for the Slack bot
notifications.bots.slack.tolerationsπ
Type: list
[]
Description: [Tolerations] for use with node taints
notifications.bots.slack.nodeSelectorπ
Type: object
{}
Description: [Node selector]