Skip to content

fortify values.yaml📜

openshift📜

Type: bool

Default value
false

image.repositoryPrefix📜

Type: string

Default value
"registry1.dso.mil/ironbank/microfocus/fortify/"

image.pullPolicy📜

Type: string

Default value
"Always"

image.webapp📜

Type: string

Default value
"ssc"

image.tag📜

Type: string

Default value
"24.2.0.0186"

securityContext.enabled📜

Type: bool

Default value
true

securityContext.capabilities.drop[0]📜

Type: string

Default value
"ALL"

securityContext.fsGroup📜

Type: int

Default value
1111

securityContext.fsGroupChangePolicy📜

Type: string

Default value
"OnRootMismatch"

securityContext.runAsUser📜

Type: int

Default value
1111

securityContext.runAsGroup📜

Type: int

Default value
1111

securityContext.runAsNonRoot📜

Type: bool

Default value
true

containerSecurityContext.capabilities.drop[0]📜

Type: string

Default value
"ALL"

containerSecurityContext.fsGroup📜

Type: int

Default value
1111

containerSecurityContext.fsGroupChangePolicy📜

Type: string

Default value
"OnRootMismatch"

containerSecurityContext.runAsUser📜

Type: int

Default value
1111

containerSecurityContext.runAsGroup📜

Type: int

Default value
1111

containerSecurityContext.runAsNonRoot📜

Type: bool

Default value
true

imagePullSecrets[0].name📜

Type: string

Default value
"private-registry"

nameOverride📜

Type: string

Default value
"fortify-ssc"

fullnameOverride📜

Type: string

Default value
"fortify-ssc"

service.type📜

Type: string

Default value
"ClusterIP"

service.httpPort📜

Type: int

Default value
80

service.httpsPort📜

Type: int

Default value
443

service.clusterIP📜

Type: string

Default value
""

service.loadBalancerIP📜

Type: string

Default value
""

service.annotations📜

Type: object

Default value
{}

urlHost📜

Type: string

Default value
"fortify.dev.bigbang.mil"

urlPort📜

Type: int

Default value
0

sscPathPrefix📜

Type: string

Default value
"/"

httpClientCertificateVerification📜

Type: string

Default value
"none"

secretRef.name📜

Type: string

Default value
""

secretRef.keys.sscLicenseEntry📜

Type: string

Default value
"fortify.license"

secretRef.keys.sscAutoconfigEntry📜

Type: string

Default value
"ssc.autoconfig"

secretRef.keys.sscSecretKeyEntry📜

Type: string

Default value
""

secretRef.keys.httpCertificateKeystoreFileEntry📜

Type: string

Default value
"ssc-service.jks"

secretRef.keys.httpCertificateKeystorePasswordEntry📜

Type: string

Default value
"ssc-service.jks.password"

secretRef.keys.httpCertificateKeyPasswordEntry📜

Type: string

Default value
"ssc-service.jks.key.password"

secretRef.keys.httpTruststoreFileEntry📜

Type: string

Default value
""

secretRef.keys.httpTruststorePasswordEntry📜

Type: string

Default value
""

secretRef.keys.jvmTruststoreFileEntry📜

Type: string

Default value
""

secretRef.keys.jvmTruststorePasswordEntry📜

Type: string

Default value
""

ssc.config.http.min_threads📜

Type: int

Default value
1

ssc.config.http.max_threads📜

Type: int

Default value
4

ssc.config.https.min_threads📜

Type: int

Default value
4

ssc.config.https.max_threads📜

Type: int

Default value
150

ssc.config.log4j.enableDebugConfig📜

Type: bool

Default value
false

ssc.config.log4j.customXMLConfigString📜

Type: string

Default value
""

persistentVolumeClaim.size📜

Type: string

Default value
"4Gi"

persistentVolumeClaim.storageClassName📜

Type: string

Default value
""

persistentVolumeClaim.selector📜

Type: object

Default value
{}

environment📜

Type: list

Default value
[]

jvmMaxRAMPercentage📜

Type: int

Default value
86

jvmExtraOptions📜

Type: string

Default value
"-Dcom.redhat.fips=false"

resources.limits.cpu📜

Type: int

Default value
4

resources.limits.memory📜

Type: string

Default value
"16Gi"

resources.requests.cpu📜

Type: int

Default value
1

resources.requests.memory📜

Type: string

Default value
"1Gi"

user.uid📜

Type: int

Default value
1111

user.gid📜

Type: int

Default value
1111

nodeSelector.”kubernetes.io/os”📜

Type: string

Default value
"linux"

nodeSelector.”kubernetes.io/arch”📜

Type: string

Default value
"amd64"

tolerations📜

Type: list

Default value
[]

affinity📜

Type: object

Default value
{}

mysql.enabled📜

Type: bool

Default value
true

mysql.fullnameOverride📜

Type: string

Default value
""

mysql.global.imageRegistry📜

Type: string

Default value
"registry1.dso.mil/ironbank"

mysql.global.imagePullSecrets[0]📜

Type: string

Default value
"private-registry"

mysql.image.repository📜

Type: string

Default value
"bitnami/mysql8"

mysql.image.tag📜

Type: string

Default value
"8.0.36-debian-11-r1"

mysql.auth.rootPassword📜

Type: string

Default value
"password"

mysql.auth.database📜

Type: string

Default value
"ssc_db"

mysql.primary.configuration📜

Type: string

Default value
"[mysqld]\ndefault_authentication_plugin=mysql_native_password\nskip-name-resolve\nexplicit_defaults_for_timestamp\nbasedir=/opt/bitnami/mysql\nplugin_dir=/opt/bitnami/mysql/lib/plugin\nport=3306\nsocket=/opt/bitnami/mysql/tmp/mysql.sock\ndatadir=/bitnami/mysql/data\ntmpdir=/opt/bitnami/mysql/tmp\nbind-address=0.0.0.0\npid-file=/opt/bitnami/mysql/tmp/mysqld.pid\nlog-error=/opt/bitnami/mysql/logs/mysqld.log\ncharacter-set-server=latin1\ncollation-server=latin1_general_cs\nslow_query_log=0\nslow_query_log_file=/opt/bitnami/mysql/logs/mysqld.log\nlong_query_time=10.0\ndefault_storage_engine=INNODB\ninnodb_buffer_pool_size=512M\ninnodb_lock_wait_timeout=300\ninnodb_log_file_size=512M\nmax_allowed_packet=1G\nsql-mode=\"TRADITIONAL\"\n\n[mysqldump]\nmax_allowed_packet=1G\n\n[client]\nport=3306\nsocket=/opt/bitnami/mysql/tmp/mysql.sock\ndefault-character-set=UTF8\nplugin_dir=/opt/bitnami/mysql/lib/plugin\n\n[manager]\nport=3306\nsocket=/opt/bitnami/mysql/tmp/mysql.sock\npid-file=/opt/bitnami/mysql/tmp/mysqld.pid"

mysql.primary.resources.limits.cpu📜

Type: int

Default value
8

mysql.primary.resources.limits.memory📜

Type: string

Default value
"64Gi"

mysql.primary.resources.requests.cpu📜

Type: int

Default value
4

mysql.primary.resources.requests.memory📜

Type: string

Default value
"16Gi"

mysql.primary.podSecurityContext.enabled📜

Type: bool

Default value
true

mysql.primary.podSecurityContext.fsGroup📜

Type: int

Default value
1001

mysql.primary.containerSecurityContext.enabled📜

Type: bool

Default value
true

mysql.primary.containerSecurityContext.capabilities.drop[0]📜

Type: string

Default value
"ALL"

mysql.primary.containerSecurityContext.runAsUser📜

Type: int

Default value
1001

mysql.primary.containerSecurityContext.runAsGroup📜

Type: int

Default value
1001

mysql.primary.containerSecurityContext.runAsNonRoot📜

Type: bool

Default value
true

mysql.secondary.resources.limits.cpu📜

Type: int

Default value
8

mysql.secondary.resources.limits.memory📜

Type: string

Default value
"64Gi"

mysql.secondary.resources.requests.cpu📜

Type: int

Default value
4

mysql.secondary.resources.requests.memory📜

Type: string

Default value
"16Gi"

mysql.secondary.podSecurityContext.enabled📜

Type: bool

Default value
true

mysql.secondary.podSecurityContext.fsGroup📜

Type: int

Default value
1001

mysql.secondary.containerSecurityContext.enabled📜

Type: bool

Default value
true

mysql.secondary.containerSecurityContext.capabilities.drop[0]📜

Type: string

Default value
"ALL"

mysql.secondary.containerSecurityContext.runAsUser📜

Type: int

Default value
1001

mysql.secondary.containerSecurityContext.runAsGroup📜

Type: int

Default value
1001

mysql.secondary.containerSecurityContext.runAsNonRoot📜

Type: bool

Default value
true

mysql.metrics.resources.limits.cpu📜

Type: int

Default value
2

mysql.metrics.resources.limits.memory📜

Type: string

Default value
"1Gi"

mysql.metrics.resources.requests.cpu📜

Type: string

Default value
"100m"

mysql.metrics.resources.requests.memory📜

Type: string

Default value
"256Mi"

mysql.metrics.podSecurityContext.enabled📜

Type: bool

Default value
true

mysql.metrics.podSecurityContext.fsGroup📜

Type: int

Default value
1001

mysql.metrics.containerSecurityContext.enabled📜

Type: bool

Default value
true

mysql.metrics.containerSecurityContext.capabilities.drop[0]📜

Type: string

Default value
"ALL"

mysql.metrics.containerSecurityContext.runAsUser📜

Type: int

Default value
1001

mysql.metrics.containerSecurityContext.runAsGroup📜

Type: int

Default value
1001

mysql.metrics.containerSecurityContext.runAsNonRoot📜

Type: bool

Default value
true

domain📜

Type: string

Default value
"dev.bigbang.mil"

istio.enabled📜

Type: bool

Default value
false

istio.hardened.enabled📜

Type: bool

Default value
false

istio.hardened.outboundTrafficPolicyMode📜

Type: string

Default value
"REGISTRY_ONLY"

istio.hardened.customServiceEntries📜

Type: list

Default value
[]

istio.hardened.customAuthorizationPolicies📜

Type: list

Default value
[]

istio.hardened.monitoring.enabled📜

Type: bool

Default value
true

istio.hardened.monitoring.namespaces[0]📜

Type: string

Default value
"monitoring"

istio.hardened.monitoring.principals[0]📜

Type: string

Default value
"cluster.local/ns/monitoring/sa/monitoring-monitoring-kube-prometheus"

istio.mtls.mode📜

Type: string

Default value
"STRICT"

Description: STRICT = Allow only mutual TLS traffic, PERMISSIVE = Allow both plain text and mutual TLS traffic

istio.fortify.gateways[0]📜

Type: string

Default value
"istio-system/public"

istio.fortify.hosts[0]📜

Type: string

Default value
"fortify.{{ .Values.domain }}"

istio.injection📜

Type: string

Default value
"disabled"

initContainer.keystoreImage📜

Type: string

Default value
"registry1.dso.mil/ironbank/google/golang/golang-1.20"

initContainer.keystoreTag📜

Type: string

Default value
"1.20.14"

initContainer.resources.limits.cpu📜

Type: string

Default value
"500m"

initContainer.resources.limits.memory📜

Type: string

Default value
"128Mi"

initContainer.resources.requests.cpu📜

Type: string

Default value
"250m"

initContainer.resources.requests.memory📜

Type: string

Default value
"64Mi"

initContainer.containerSecurityContext.enabled📜

Type: bool

Default value
true

initContainer.containerSecurityContext.capabilities.drop[0]📜

Type: string

Default value
"ALL"

initContainer.containerSecurityContext.fsGroup📜

Type: int

Default value
1111

initContainer.containerSecurityContext.fsGroupChangePolicy📜

Type: string

Default value
"OnRootMismatch"

initContainer.containerSecurityContext.runAsUser📜

Type: int

Default value
1111

initContainer.containerSecurityContext.runAsGroup📜

Type: int

Default value
1111

initContainer.containerSecurityContext.runAsNonRoot📜

Type: bool

Default value
true

networkPolicies.enabled📜

Type: bool

Default value
false

networkPolicies.ingressLabels.app📜

Type: string

Default value
"istio-ingressgateway"

networkPolicies.ingressLabels.istio📜

Type: string

Default value
"ingressgateway"

networkPolicies.additionalPolicies📜

Type: list

Default value
[]

cache.enabled📜

Type: bool

Default value
false

cache.expireHours📜

Type: int

Default value
24

databaseSecret.use_secret📜

Type: bool

Default value
false

databaseSecret.name📜

Type: string

Default value
"db-credentials-mysql"

databaseSecret.useRoot📜

Type: bool

Default value
false

fortify_java_keystore.use📜

Type: bool

Default value
false

fortify_java_keystore.keystore📜

Type: string

Default value
"ZHVtbXkK"

default_cert_alias📜

Type: string

Default value
"tomcat"

fortifySecret.use_secret📜

Type: bool

Default value
false

fortifySecret.name📜

Type: string

Default value
"fortify-secret"

bbtests.enabled📜

Type: bool

Default value
false

bbtests.cypress.artifacts📜

Type: bool

Default value
true

bbtests.cypress.envs.cypress_url📜

Type: string

Default value
"http://fortify-ssc-service:80"

bbtests.cypress.envs.cypress_user📜

Type: string

Default value
"admin"

bbtests.cypress.envs.cypress_password📜

Type: string

Default value
"admin"

bbtests.cypress.resources.requests.cpu📜

Type: string

Default value
"2"

bbtests.cypress.resources.requests.memory📜

Type: string

Default value
"4Gi"

bbtests.cypress.resources.limits.cpu📜

Type: string

Default value
"2"

bbtests.cypress.resources.limits.memory📜

Type: string

Default value
"4Gi"

bbtests.scripts.image📜

Type: string

Default value
"registry1.dso.mil/bigbang-ci/gitlab-tester:0.0.4"

bbtests.scripts.envs📜

Type: object

Default value
{}

trust_store_password📜

Type: string

Default value
"dsoppassword"

key_store_password📜

Type: string

Default value
"dsoppassword"

key_store_cert_password📜

Type: string

Default value
"dsoppassword"

fortify_autoconfig📜

Type: string

Default value
"appProperties:\n  host.validation: false\n\ndatasourceProperties:\n  db.username: root\n  db.password: password\n\n  jdbc.url: 'jdbc:mysql://fortify-mysql:3306/ssc_db?sessionVariables=collation_connection=latin1_general_cs&rewriteBatchedStatements=true'\n\ndbMigrationProperties:\n\n  migration.enabled: true\n  migration.username: root\n  migration.password: password\n"

fortify_license📜

Type: string

Default value
"<License>\n"

webapp.extraVolumes📜

Type: list

Default value
[]

webapp.extraVolumeMounts📜

Type: list

Default value
[]

webapp.extraInitContainers📜

Type: list

Default value
[]