mattermost-operator values.yaml
📜
image.imagePullPolicy📜
Type: string
"IfNotPresent"
Description: Default image pull policy
image.repository📜
Type: string
"registry1.dso.mil/ironbank/opensource/mattermost/mattermost-operator"
Description: Full image name
image.tag📜
Type: string
"v1.21.0"
Description: Image tag
replicas.count📜
Type: int
1
Description: Mattermost operator desired replicas
imagePullSecrets📜
Type: list
- name: private-registry
Description: Image pull secrets
resources📜
Type: object
limits:
cpu: 100m
memory: 512Mi
requests:
cpu: 100m
memory: 512Mi
Description: Resources for operator pod(s)
securityContext📜
Type: object
runAsGroup: 65532
runAsNonRoot: true
runAsUser: 65532
Description: securityContext for Kubernetes pod(s)
containerSecurityContext📜
Type: object
capabilities:
drop:
- ALL
privileged: false
readOnlyRootFilesystem: true
Description: containerSecurityContext for operator container
affinity📜
Type: object
{}
Description: Affinity for operator pod(s)
nodeSelector📜
Type: object
{}
Description: Node selector for operator pod(s)
tolerations📜
Type: object
{}
Description: Tolerations for operator pod(s)
podAnnotations📜
Type: object
{}
Description: Annotations for operator pod(s)
networkPolicies.enabled📜
Type: bool
false
Description: Toggle on/off Big Bang provided network policies
networkPolicies.controlPlaneCidr📜
Type: string
"0.0.0.0/0"
Description: See kubectl cluster-info
and then resolve to IP
istio.enabled📜
Type: bool
false
Description: Toggle on/off istio interaction, used for network policies and mTLS
istio.hardened.enabled📜
Type: bool
false
istio.hardened.customAuthorizationPolicies📜
Type: list
[]
istio.hardened.outboundTrafficPolicyMode📜
Type: string
"REGISTRY_ONLY"
istio.hardened.customServiceEntries📜
Type: list
[]
istio.hardened.monitoring.enabled📜
Type: bool
true
istio.hardened.monitoring.namespaces[0]📜
Type: string
"monitoring"
istio.hardened.monitoring.principals[0]📜
Type: string
"cluster.local/ns/monitoring/sa/monitoring-grafana"
istio.hardened.monitoring.principals[1]📜
Type: string
"cluster.local/ns/monitoring/sa/monitoring-monitoring-kube-alertmanager"
istio.hardened.monitoring.principals[2]📜
Type: string
"cluster.local/ns/monitoring/sa/monitoring-monitoring-kube-operator"
istio.hardened.monitoring.principals[3]📜
Type: string
"cluster.local/ns/monitoring/sa/monitoring-monitoring-kube-prometheus"
istio.hardened.monitoring.principals[4]📜
Type: string
"cluster.local/ns/monitoring/sa/monitoring-monitoring-kube-state-metrics"
istio.hardened.monitoring.principals[5]📜
Type: string
"cluster.local/ns/monitoring/sa/monitoring-monitoring-prometheus-node-exporter"
istio.mtls📜
Type: object
mode: STRICT
Description: Default peer authentication
istio.mtls.mode📜
Type: string
"STRICT"
Description: STRICT = Allow only mutual TLS traffic, PERMISSIVE = Allow both plain text and mutual TLS traffic
monitoring.enabled📜
Type: bool
false
Description: Toggle on/off monitoring interaction, used for network policies
openshift📜
Type: bool
false
Description: Openshift feature toggle, used for DNS network policy