fortify values.yaml
📜
openshift📜
Type: bool
false
image.repositoryPrefix📜
Type: string
"registry1.dso.mil/ironbank/microfocus/fortify/"
image.pullPolicy📜
Type: string
"Always"
image.webapp📜
Type: string
"ssc"
image.tag📜
Type: string
"24.2.0.0186"
securityContext.enabled📜
Type: bool
true
securityContext.capabilities.drop[0]📜
Type: string
"ALL"
securityContext.fsGroup📜
Type: int
1111
securityContext.fsGroupChangePolicy📜
Type: string
"OnRootMismatch"
securityContext.runAsUser📜
Type: int
1111
securityContext.runAsGroup📜
Type: int
1111
securityContext.runAsNonRoot📜
Type: bool
true
containerSecurityContext.capabilities.drop[0]📜
Type: string
"ALL"
containerSecurityContext.fsGroup📜
Type: int
1111
containerSecurityContext.fsGroupChangePolicy📜
Type: string
"OnRootMismatch"
containerSecurityContext.runAsUser📜
Type: int
1111
containerSecurityContext.runAsGroup📜
Type: int
1111
containerSecurityContext.runAsNonRoot📜
Type: bool
true
imagePullSecrets[0].name📜
Type: string
"private-registry"
nameOverride📜
Type: string
"fortify-ssc"
fullnameOverride📜
Type: string
"fortify-ssc"
service.type📜
Type: string
"ClusterIP"
service.httpPort📜
Type: int
80
service.httpsPort📜
Type: int
443
service.clusterIP📜
Type: string
""
service.loadBalancerIP📜
Type: string
""
service.annotations📜
Type: object
{}
urlHost📜
Type: string
"fortify.dev.bigbang.mil"
urlPort📜
Type: int
0
sscPathPrefix📜
Type: string
"/"
httpClientCertificateVerification📜
Type: string
"none"
secretRef.name📜
Type: string
""
secretRef.keys.sscLicenseEntry📜
Type: string
"fortify.license"
secretRef.keys.sscAutoconfigEntry📜
Type: string
"ssc.autoconfig"
secretRef.keys.sscSecretKeyEntry📜
Type: string
""
secretRef.keys.httpCertificateKeystoreFileEntry📜
Type: string
"ssc-service.jks"
secretRef.keys.httpCertificateKeystorePasswordEntry📜
Type: string
"ssc-service.jks.password"
secretRef.keys.httpCertificateKeyPasswordEntry📜
Type: string
"ssc-service.jks.key.password"
secretRef.keys.httpTruststoreFileEntry📜
Type: string
""
secretRef.keys.httpTruststorePasswordEntry📜
Type: string
""
secretRef.keys.jvmTruststoreFileEntry📜
Type: string
""
secretRef.keys.jvmTruststorePasswordEntry📜
Type: string
""
ssc.config.http.min_threads📜
Type: int
1
ssc.config.http.max_threads📜
Type: int
4
ssc.config.https.min_threads📜
Type: int
4
ssc.config.https.max_threads📜
Type: int
150
ssc.config.log4j.enableDebugConfig📜
Type: bool
false
ssc.config.log4j.customXMLConfigString📜
Type: string
""
persistentVolumeClaim.size📜
Type: string
"4Gi"
persistentVolumeClaim.storageClassName📜
Type: string
""
persistentVolumeClaim.selector📜
Type: object
{}
environment📜
Type: list
[]
jvmMaxRAMPercentage📜
Type: int
86
jvmExtraOptions📜
Type: string
"-Dcom.redhat.fips=false"
resources.limits.cpu📜
Type: int
4
resources.limits.memory📜
Type: string
"16Gi"
resources.requests.cpu📜
Type: int
1
resources.requests.memory📜
Type: string
"1Gi"
user.uid📜
Type: int
1111
user.gid📜
Type: int
1111
nodeSelector.”kubernetes.io/os”📜
Type: string
"linux"
nodeSelector.”kubernetes.io/arch”📜
Type: string
"amd64"
tolerations📜
Type: list
[]
affinity📜
Type: object
{}
mysql.enabled📜
Type: bool
true
mysql.fullnameOverride📜
Type: string
""
mysql.global.imageRegistry📜
Type: string
"registry1.dso.mil/ironbank"
mysql.global.imagePullSecrets[0]📜
Type: string
"private-registry"
mysql.image.repository📜
Type: string
"bitnami/mysql8"
mysql.image.tag📜
Type: string
"8.0.36-debian-11-r1"
mysql.auth.rootPassword📜
Type: string
"password"
mysql.auth.database📜
Type: string
"ssc_db"
mysql.primary.configuration📜
Type: string
"[mysqld]\ndefault_authentication_plugin=mysql_native_password\nskip-name-resolve\nexplicit_defaults_for_timestamp\nbasedir=/opt/bitnami/mysql\nplugin_dir=/opt/bitnami/mysql/lib/plugin\nport=3306\nsocket=/opt/bitnami/mysql/tmp/mysql.sock\ndatadir=/bitnami/mysql/data\ntmpdir=/opt/bitnami/mysql/tmp\nbind-address=0.0.0.0\npid-file=/opt/bitnami/mysql/tmp/mysqld.pid\nlog-error=/opt/bitnami/mysql/logs/mysqld.log\ncharacter-set-server=latin1\ncollation-server=latin1_general_cs\nslow_query_log=0\nslow_query_log_file=/opt/bitnami/mysql/logs/mysqld.log\nlong_query_time=10.0\ndefault_storage_engine=INNODB\ninnodb_buffer_pool_size=512M\ninnodb_lock_wait_timeout=300\ninnodb_log_file_size=512M\nmax_allowed_packet=1G\nsql-mode=\"TRADITIONAL\"\n\n[mysqldump]\nmax_allowed_packet=1G\n\n[client]\nport=3306\nsocket=/opt/bitnami/mysql/tmp/mysql.sock\ndefault-character-set=UTF8\nplugin_dir=/opt/bitnami/mysql/lib/plugin\n\n[manager]\nport=3306\nsocket=/opt/bitnami/mysql/tmp/mysql.sock\npid-file=/opt/bitnami/mysql/tmp/mysqld.pid"
mysql.primary.resources.limits.cpu📜
Type: int
8
mysql.primary.resources.limits.memory📜
Type: string
"64Gi"
mysql.primary.resources.requests.cpu📜
Type: int
4
mysql.primary.resources.requests.memory📜
Type: string
"16Gi"
mysql.primary.podSecurityContext.enabled📜
Type: bool
true
mysql.primary.podSecurityContext.fsGroup📜
Type: int
1001
mysql.primary.containerSecurityContext.enabled📜
Type: bool
true
mysql.primary.containerSecurityContext.capabilities.drop[0]📜
Type: string
"ALL"
mysql.primary.containerSecurityContext.runAsUser📜
Type: int
1001
mysql.primary.containerSecurityContext.runAsGroup📜
Type: int
1001
mysql.primary.containerSecurityContext.runAsNonRoot📜
Type: bool
true
mysql.secondary.resources.limits.cpu📜
Type: int
8
mysql.secondary.resources.limits.memory📜
Type: string
"64Gi"
mysql.secondary.resources.requests.cpu📜
Type: int
4
mysql.secondary.resources.requests.memory📜
Type: string
"16Gi"
mysql.secondary.podSecurityContext.enabled📜
Type: bool
true
mysql.secondary.podSecurityContext.fsGroup📜
Type: int
1001
mysql.secondary.containerSecurityContext.enabled📜
Type: bool
true
mysql.secondary.containerSecurityContext.capabilities.drop[0]📜
Type: string
"ALL"
mysql.secondary.containerSecurityContext.runAsUser📜
Type: int
1001
mysql.secondary.containerSecurityContext.runAsGroup📜
Type: int
1001
mysql.secondary.containerSecurityContext.runAsNonRoot📜
Type: bool
true
mysql.metrics.resources.limits.cpu📜
Type: int
2
mysql.metrics.resources.limits.memory📜
Type: string
"1Gi"
mysql.metrics.resources.requests.cpu📜
Type: string
"100m"
mysql.metrics.resources.requests.memory📜
Type: string
"256Mi"
mysql.metrics.podSecurityContext.enabled📜
Type: bool
true
mysql.metrics.podSecurityContext.fsGroup📜
Type: int
1001
mysql.metrics.containerSecurityContext.enabled📜
Type: bool
true
mysql.metrics.containerSecurityContext.capabilities.drop[0]📜
Type: string
"ALL"
mysql.metrics.containerSecurityContext.runAsUser📜
Type: int
1001
mysql.metrics.containerSecurityContext.runAsGroup📜
Type: int
1001
mysql.metrics.containerSecurityContext.runAsNonRoot📜
Type: bool
true
domain📜
Type: string
"dev.bigbang.mil"
istio.enabled📜
Type: bool
false
istio.hardened.enabled📜
Type: bool
false
istio.hardened.outboundTrafficPolicyMode📜
Type: string
"REGISTRY_ONLY"
istio.hardened.customServiceEntries📜
Type: list
[]
istio.hardened.customAuthorizationPolicies📜
Type: list
[]
istio.hardened.monitoring.enabled📜
Type: bool
true
istio.hardened.monitoring.namespaces[0]📜
Type: string
"monitoring"
istio.hardened.monitoring.principals[0]📜
Type: string
"cluster.local/ns/monitoring/sa/monitoring-monitoring-kube-prometheus"
istio.mtls.mode📜
Type: string
"STRICT"
Description: STRICT = Allow only mutual TLS traffic, PERMISSIVE = Allow both plain text and mutual TLS traffic
istio.fortify.gateways[0]📜
Type: string
"istio-system/public"
istio.fortify.hosts[0]📜
Type: string
"fortify.{{ .Values.domain }}"
istio.injection📜
Type: string
"disabled"
initContainer.keystoreImage📜
Type: string
"registry1.dso.mil/ironbank/google/golang/golang-1.20"
initContainer.keystoreTag📜
Type: string
"1.20.14"
initContainer.resources.limits.cpu📜
Type: string
"500m"
initContainer.resources.limits.memory📜
Type: string
"128Mi"
initContainer.resources.requests.cpu📜
Type: string
"250m"
initContainer.resources.requests.memory📜
Type: string
"64Mi"
initContainer.containerSecurityContext.enabled📜
Type: bool
true
initContainer.containerSecurityContext.capabilities.drop[0]📜
Type: string
"ALL"
initContainer.containerSecurityContext.fsGroup📜
Type: int
1111
initContainer.containerSecurityContext.fsGroupChangePolicy📜
Type: string
"OnRootMismatch"
initContainer.containerSecurityContext.runAsUser📜
Type: int
1111
initContainer.containerSecurityContext.runAsGroup📜
Type: int
1111
initContainer.containerSecurityContext.runAsNonRoot📜
Type: bool
true
networkPolicies.enabled📜
Type: bool
false
networkPolicies.ingressLabels.app📜
Type: string
"istio-ingressgateway"
networkPolicies.ingressLabels.istio📜
Type: string
"ingressgateway"
networkPolicies.additionalPolicies📜
Type: list
[]
cache.enabled📜
Type: bool
false
cache.expireHours📜
Type: int
24
databaseSecret.use_secret📜
Type: bool
false
databaseSecret.name📜
Type: string
"db-credentials-mysql"
databaseSecret.useRoot📜
Type: bool
false
fortify_java_keystore.use📜
Type: bool
false
fortify_java_keystore.keystore📜
Type: string
"ZHVtbXkK"
default_cert_alias📜
Type: string
"tomcat"
fortifySecret.use_secret📜
Type: bool
false
fortifySecret.name📜
Type: string
"fortify-secret"
bbtests.enabled📜
Type: bool
false
bbtests.cypress.artifacts📜
Type: bool
true
bbtests.cypress.envs.cypress_url📜
Type: string
"http://fortify-ssc-service:80"
bbtests.cypress.envs.cypress_user📜
Type: string
"admin"
bbtests.cypress.envs.cypress_password📜
Type: string
"admin"
bbtests.cypress.resources.requests.cpu📜
Type: string
"2"
bbtests.cypress.resources.requests.memory📜
Type: string
"4Gi"
bbtests.cypress.resources.limits.cpu📜
Type: string
"2"
bbtests.cypress.resources.limits.memory📜
Type: string
"4Gi"
bbtests.scripts.image📜
Type: string
"registry1.dso.mil/bigbang-ci/gitlab-tester:0.0.4"
bbtests.scripts.envs📜
Type: object
{}
trust_store_password📜
Type: string
"dsoppassword"
key_store_password📜
Type: string
"dsoppassword"
key_store_cert_password📜
Type: string
"dsoppassword"
fortify_autoconfig📜
Type: string
"appProperties:\n host.validation: false\n\ndatasourceProperties:\n db.username: root\n db.password: password\n\n jdbc.url: 'jdbc:mysql://fortify-mysql:3306/ssc_db?sessionVariables=collation_connection=latin1_general_cs&rewriteBatchedStatements=true'\n\ndbMigrationProperties:\n\n migration.enabled: true\n migration.username: root\n migration.password: password\n"
fortify_license📜
Type: string
"<License>\n"
webapp.extraVolumes📜
Type: list
[]
webapp.extraVolumeMounts📜
Type: list
[]
webapp.extraInitContainers📜
Type: list
[]