Skip to content

sonarqube values.yaml📜

deploymentType📜

Type: string

Default value
"StatefulSet"

replicaCount📜

Type: int

Default value
1

revisionHistoryLimit📜

Type: int

Default value
10

deploymentStrategy📜

Type: object

Default value
{}

OpenShift.enabled📜

Type: bool

Default value
false

OpenShift.createSCC📜

Type: bool

Default value
true

sso.enabled📜

Type: bool

Default value
false

sso.name📜

Type: string

Default value
""

sso.applicationid📜

Type: string

Default value
""

sso.providerid📜

Type: string

Default value
""

sso.loginUrl📜

Type: string

Default value
""

sso.secured📜

Type: string

Default value
""

sso.serverBaseURL📜

Type: string

Default value
""

sso.idpmetadataurl📜

Type: string

Default value
""

sso.image📜

Type: string

Default value
""

sso.resources.limits.cpu📜

Type: string

Default value
"100m"

sso.resources.limits.memory📜

Type: string

Default value
"256Mi"

sso.resources.requests.cpu📜

Type: string

Default value
"100m"

sso.resources.requests.memory📜

Type: string

Default value
"256Mi"

sso.containerSecurityContext.enabled📜

Type: bool

Default value
true

sso.containerSecurityContext.fsGroup📜

Type: int

Default value
26

sso.containerSecurityContext.runAsUser📜

Type: int

Default value
26

sso.containerSecurityContext.runAsGroup📜

Type: int

Default value
26

sso.containerSecurityContext.capabilities.drop[0]📜

Type: string

Default value
"ALL"

edition📜

Type: string

Default value
"community"

image.repository📜

Type: string

Default value
"registry1.dso.mil/ironbank/big-bang/sonarqube-10"

image.tag📜

Type: string

Default value
"10.6.0-community"

image.pullPolicy📜

Type: string

Default value
"IfNotPresent"

image.pullSecrets[0].name📜

Type: string

Default value
"private-registry"

securityContext.fsGroup📜

Type: int

Default value
1000

securityContext.runAsUser📜

Type: int

Default value
1000

securityContext.runAsGroup📜

Type: int

Default value
1000

containerSecurityContext.allowPrivilegeEscalation📜

Type: bool

Default value
false

containerSecurityContext.runAsNonRoot📜

Type: bool

Default value
true

containerSecurityContext.runAsUser📜

Type: int

Default value
1000

containerSecurityContext.runAsGroup📜

Type: int

Default value
1000

containerSecurityContext.capabilities.drop[0]📜

Type: string

Default value
"ALL"

elasticsearch.configureNode📜

Type: bool

Default value
false

elasticsearch.bootstrapChecks📜

Type: bool

Default value
true

nginx.enabled📜

Type: bool

Default value
false

service.type📜

Type: string

Default value
"ClusterIP"

service.externalPort📜

Type: int

Default value
9000

service.internalPort📜

Type: int

Default value
9000

service.labels📜

Type: string

Default value
nil

service.annotations📜

Type: object

Default value
{}

networkPolicy.enabled📜

Type: bool

Default value
false

networkPolicy.prometheusNamespace📜

Type: string

Default value
"monitoring"

sonarWebContext📜

Type: string

Default value
""

ingress-nginx.enabled📜

Type: bool

Default value
false

ingress.enabled📜

Type: bool

Default value
false

ingress.hosts[0].name📜

Type: string

Default value
"sonarqube.your-org.com"

ingress.annotations📜

Type: object

Default value
{}

ingress.tls📜

Type: list

Default value
[]

route.enabled📜

Type: bool

Default value
false

route.host📜

Type: string

Default value
""

route.tls.termination📜

Type: string

Default value
"edge"

route.annotations📜

Type: object

Default value
{}

affinity📜

Type: object

Default value
{}

tolerations📜

Type: list

Default value
[]

nodeSelector📜

Type: object

Default value
{}

hostAliases📜

Type: list

Default value
[]

readinessProbe.exec.command[0]📜

Type: string

Default value
"sh"

readinessProbe.exec.command[1]📜

Type: string

Default value
"-c"

readinessProbe.exec.command[2]📜

Type: string

Default value
"#!/bin/bash\n# A Sonarqube container is considered ready if the status is UP, DB_MIGRATION_NEEDED or DB_MIGRATION_RUNNING\n# status about migration are added to prevent the node to be kill while sonarqube is upgrading the database.\nif curl -s http://localhost:{{ .Values.service.internalPort }}{{ .Values.readinessProbe.sonarWebContext \| default (include \"sonarqube.webcontext\" .) }}api/system/status \| grep -q -e '\"status\":\"UP\"' -e '\"status\":\"DB_MIGRATION_NEEDED\"' -e '\"status\":\"DB_MIGRATION_RUNNING\"'; then\n  exit 0\nfi\nexit 1\n"

readinessProbe.initialDelaySeconds📜

Type: int

Default value
60

readinessProbe.periodSeconds📜

Type: int

Default value
30

readinessProbe.failureThreshold📜

Type: int

Default value
6

readinessProbe.timeoutSeconds📜

Type: int

Default value
90

livenessProbe.exec.command[0]📜

Type: string

Default value
"sh"

livenessProbe.exec.command[1]📜

Type: string

Default value
"-c"

livenessProbe.exec.command[2]📜

Type: string

Default value
"curl --silent --fail --output /dev/null --max-time {{ .Values.livenessProbe.timeoutSeconds \| default 1 }} --header \"X-Sonar-Passcode: $SONAR_WEB_SYSTEMPASSCODE\" \"http://localhost:{{ .Values.service.internalPort }}{{ .Values.livenessProbe.sonarWebContext \| default (include \"sonarqube.webcontext\" .) }}api/system/liveness\"\n"

livenessProbe.initialDelaySeconds📜

Type: int

Default value
60

livenessProbe.periodSeconds📜

Type: int

Default value
30

livenessProbe.failureThreshold📜

Type: int

Default value
6

livenessProbe.timeoutSeconds📜

Type: int

Default value
1

startupProbe.initialDelaySeconds📜

Type: int

Default value
30

startupProbe.periodSeconds📜

Type: int

Default value
10

startupProbe.failureThreshold📜

Type: int

Default value
24

startupProbe.timeoutSeconds📜

Type: int

Default value
1

initContainers.image📜

Type: string

Default value
"registry1.dso.mil/ironbank/big-bang/base:2.1.0"

initContainers.allowPrivilegeEscalation📜

Type: bool

Default value
false

initContainers.runAsNonRoot📜

Type: bool

Default value
true

initContainers.runAsUser📜

Type: int

Default value
1000

initContainers.runAsGroup📜

Type: int

Default value
0

initContainers.seccompProfile.type📜

Type: string

Default value
"RuntimeDefault"

initContainers.capabilities.drop[0]📜

Type: string

Default value
"ALL"

initContainers.resources.limits.memory📜

Type: string

Default value
"300Mi"

initContainers.resources.limits.cpu📜

Type: string

Default value
"50m"

initContainers.resources.requests.memory📜

Type: string

Default value
"300Mi"

initContainers.resources.requests.cpu📜

Type: string

Default value
"50m"

initContainers.securityContext.capabilities.drop[0]📜

Type: string

Default value
"ALL"

extraInitContainers📜

Type: object

Default value
{}

extraContainers📜

Type: list

Default value
[]

waitForDb.image📜

Type: string

Default value
"registry1.dso.mil/ironbank/opensource/postgres/postgresql12:12.19"

caCerts.enabled📜

Type: bool

Default value
false

initSysctl.enabled📜

Type: bool

Default value
false

initSysctl.vmMaxMapCount📜

Type: int

Default value
524288

initSysctl.fsFileMax📜

Type: int

Default value
131072

initSysctl.nofile📜

Type: int

Default value
131072

initSysctl.nproc📜

Type: int

Default value
8192

initSysctl.securityContext.privileged📜

Type: bool

Default value
true

initSysctl.securityContext.capabilities.drop[0]📜

Type: string

Default value
"ALL"

initSysctl.securityContext.runAsUser📜

Type: int

Default value
0

initFs.enabled📜

Type: bool

Default value
false

initFs.securityContext.privileged📜

Type: bool

Default value
false

initFs.securityContext.runAsNonRoot📜

Type: bool

Default value
false

initFs.securityContext.runAsUser📜

Type: int

Default value
0

initFs.securityContext.runAsGroup📜

Type: int

Default value
0

initFs.securityContext.seccompProfile.type📜

Type: string

Default value
"RuntimeDefault"

initFs.securityContext.capabilities.drop[0]📜

Type: string

Default value
"ALL"

initFs.securityContext.capabilities.add[0]📜

Type: string

Default value
"CHOWN"

prometheusExporter.enabled📜

Type: bool

Default value
false

prometheusExporter.version📜

Type: string

Default value
"0.17.2"

prometheusExporter.webBeanPort📜

Type: int

Default value
8000

prometheusExporter.ceBeanPort📜

Type: int

Default value
8001

prometheusExporter.config.rules[0].pattern📜

Type: string

Default value
".*"

prometheusExporter.image📜

Type: string

Default value
"registry1.dso.mil/ironbank/opensource/prometheus/jmx-exporter:0.17.2"

prometheusMonitoring.podMonitor.enabled📜

Type: bool

Default value
false

prometheusMonitoring.podMonitor.interval📜

Type: string

Default value
"30s"

plugins.install📜

Type: list

Default value
[]

plugins.image📜

Type: string

Default value
"registry1.dso.mil/ironbank/big-bang/sonarqube-10:10.6.0-community"

plugins.noCheckCertificate📜

Type: bool

Default value
false

jvmOpts📜

Type: string

Default value
""

jvmCeOpts📜

Type: string

Default value
""

monitoringPasscode📜

Type: string

Default value
"define_it"

env[0].name📜

Type: string

Default value
"JDK_JAVA_OPTIONS"

env[0].value📜

Type: string

Default value
"-Dcom.redhat.fips=false"

annotations📜

Type: object

Default value
{}

resources.limits.cpu📜

Type: string

Default value
"1000m"

resources.limits.memory📜

Type: string

Default value
"6144M"

resources.limits.ephemeral-storage📜

Type: string

Default value
"512000M"

resources.requests.cpu📜

Type: string

Default value
"500m"

resources.requests.memory📜

Type: string

Default value
"2048M"

resources.requests.ephemeral-storage📜

Type: string

Default value
"1536M"

persistence.enabled📜

Type: bool

Default value
false

persistence.annotations📜

Type: object

Default value
{}

persistence.storageClass📜

Type: string

Default value
nil

persistence.accessMode📜

Type: string

Default value
"ReadWriteOnce"

persistence.size📜

Type: string

Default value
"20Gi"

persistence.uid📜

Type: int

Default value
1000

persistence.guid📜

Type: int

Default value
0

persistence.volumes📜

Type: list

Default value
[]

persistence.mounts📜

Type: list

Default value
[]

emptyDir📜

Type: object

Default value
{}

sonarProperties.”sonar.forceAuthentication”📜

Type: bool

Default value
true

sonarProperties.”sonar.ce.javaAdditionalOpts”📜

Type: string

Default value
"-Dcom.redhat.fips=false"

sonarProperties.”sonar.search.javaAdditionalOpts”📜

Type: string

Default value
"-Dcom.redhat.fips=false"

sonarProperties.”sonar.web.javaAdditionalOpts”📜

Type: string

Default value
"-Dcom.redhat.fips=false"

jdbcOverwrite.enable📜

Type: bool

Default value
false

jdbcOverwrite.jdbcUsername📜

Type: string

Default value
"sonarUser"

jdbcOverwrite.jdbcPassword📜

Type: string

Default value
"sonarPass"

postgresql.enabled📜

Type: bool

Default value
true

postgresql.postgresqlUsername📜

Type: string

Default value
"sonarUser"

postgresql.postgresqlPassword📜

Type: string

Default value
"sonarPass"

postgresql.postgresqlDatabase📜

Type: string

Default value
"sonarDB"

postgresql.service.port📜

Type: int

Default value
5432

postgresql.resources.limits.cpu📜

Type: string

Default value
"100m"

postgresql.resources.limits.memory📜

Type: string

Default value
"200Mi"

postgresql.resources.requests.cpu📜

Type: string

Default value
"100m"

postgresql.resources.requests.memory📜

Type: string

Default value
"200Mi"

postgresql.image.registry📜

Type: string

Default value
"registry1.dso.mil"

postgresql.image.repository📜

Type: string

Default value
"ironbank/opensource/postgres/postgresql12"

postgresql.image.tag📜

Type: string

Default value
"12.19"

postgresql.image.pullSecrets[0]📜

Type: string

Default value
"private-registry"

postgresql.postgresqlConfiguration.listen_addresses📜

Type: string

Default value
"*"

postgresql.pgHbaConfiguration📜

Type: string

Default value
"local all all md5\nhost all all all md5"

postgresql.persistence.enabled📜

Type: bool

Default value
true

postgresql.persistence.accessMode📜

Type: string

Default value
"ReadWriteOnce"

postgresql.persistence.size📜

Type: string

Default value
"20Gi"

postgresql.persistence.storageClass📜

Type: string

Default value
nil

postgresql.persistence.mountPath📜

Type: string

Default value
"/var/lib/postgresql"

postgresql.postgresqlDataDir📜

Type: string

Default value
"/var/lib/postgresql/data"

postgresql.volumePermissions.enabled📜

Type: bool

Default value
false

postgresql.serviceAccount.enabled📜

Type: bool

Default value
true

postgresql.serviceAccount.automountServiceAccountToken📜

Type: bool

Default value
false

postgresql.securityContext.enabled📜

Type: bool

Default value
true

postgresql.securityContext.fsGroup📜

Type: int

Default value
26

postgresql.securityContext.runAsUser📜

Type: int

Default value
26

postgresql.securityContext.runAsGroup📜

Type: int

Default value
26

postgresql.securityContext.capabilities.drop[0]📜

Type: string

Default value
"ALL"

podLabels📜

Type: object

Default value
{}

sonarqubeFolder📜

Type: string

Default value
"/opt/sonarqube"

tests.image📜

Type: string

Default value
"bitnami/minideb-extras"

tests.enabled📜

Type: bool

Default value
false

tests.resources📜

Type: object

Default value
{}

serviceAccount.create📜

Type: bool

Default value
true

serviceAccount.automountToken📜

Type: bool

Default value
false

serviceAccount.annotations📜

Type: object

Default value
{}

extraConfig.secrets📜

Type: list

Default value
[]

extraConfig.configmaps📜

Type: list

Default value
[]

terminationGracePeriodSeconds📜

Type: int

Default value
60

curlContainerImage📜

Type: string

Default value
"registry1.dso.mil/bigbang-ci/devops-tester:1.1.1"

domain📜

Type: string

Default value
"dev.bigbang.mil"

istio.enabled📜

Type: bool

Default value
false

istio.hardened.enabled📜

Type: bool

Default value
false

istio.hardened.customAuthorizationPolicies📜

Type: list

Default value
[]

istio.hardened.outboundTrafficPolicyMode📜

Type: string

Default value
"REGISTRY_ONLY"

istio.hardened.customServiceEntries📜

Type: list

Default value
[]

istio.hardened.tempo.enabled📜

Type: bool

Default value
true

istio.hardened.tempo.namespaces[0]📜

Type: string

Default value
"tempo"

istio.hardened.tempo.principals[0]📜

Type: string

Default value
"cluster.local/ns/tempo/sa/tempo-tempo"

istio.hardened.monitoring.enabled📜

Type: bool

Default value
true

istio.hardened.monitoring.namespaces[0]📜

Type: string

Default value
"monitoring"

istio.hardened.monitoring.principals[0]📜

Type: string

Default value
"cluster.local/ns/monitoring/sa/monitoring-grafana"

istio.hardened.monitoring.principals[1]📜

Type: string

Default value
"cluster.local/ns/monitoring/sa/monitoring-monitoring-kube-alertmanager"

istio.hardened.monitoring.principals[2]📜

Type: string

Default value
"cluster.local/ns/monitoring/sa/monitoring-monitoring-kube-operator"

istio.hardened.monitoring.principals[3]📜

Type: string

Default value
"cluster.local/ns/monitoring/sa/monitoring-monitoring-kube-prometheus"

istio.hardened.monitoring.principals[4]📜

Type: string

Default value
"cluster.local/ns/monitoring/sa/monitoring-monitoring-kube-state-metrics"

istio.hardened.monitoring.principals[5]📜

Type: string

Default value
"cluster.local/ns/monitoring/sa/monitoring-monitoring-prometheus-node-exporter"

istio.mtls📜

Type: object

Default value
mode: STRICT

Description: Default argocd peer authentication

istio.mtls.mode📜

Type: string

Default value
"STRICT"

Description: STRICT = Allow only mutual TLS traffic, PERMISSIVE = Allow both plain text and mutual TLS traffic

istio.sonarqube.enabled📜

Type: bool

Default value
true

istio.sonarqube.annotations📜

Type: object

Default value
{}

istio.sonarqube.labels📜

Type: object

Default value
{}

istio.sonarqube.gateways[0]📜

Type: string

Default value
"istio-system/main"

istio.sonarqube.hosts[0]📜

Type: string

Default value
"sonarqube.{{ .Values.domain }}"

istio.injection📜

Type: string

Default value
"disabled"

monitoring.enabled📜

Type: bool

Default value
false

networkPolicies.enabled📜

Type: bool

Default value
false

networkPolicies.ingressLabels.app📜

Type: string

Default value
"istio-ingressgateway"

networkPolicies.ingressLabels.istio📜

Type: string

Default value
"ingressgateway"

networkPolicies.egressHttps.enabled📜

Type: bool

Default value
true

networkPolicies.additionalPolicies📜

Type: list

Default value
[]

bbtests.enabled📜

Type: bool

Default value
false

bbtests.cypress.artifacts📜

Type: bool

Default value
true

bbtests.cypress.envs.cypress_url📜

Type: string

Default value
"http://sonarqube-sonarqube:9000"

bbtests.cypress.envs.cypress_url_setup📜

Type: string

Default value
"http://sonarqube-sonarqube:9000/setup"

bbtests.cypress.envs.cypress_user📜

Type: string

Default value
"admin"

bbtests.cypress.envs.cypress_password📜

Type: string

Default value
"new_admin_password"

bbtests.cypress.envs.cypress_timeout📜

Type: string

Default value
"10000"