sonarqube values.yaml
📜
deploymentType📜
Type: string
"StatefulSet"
replicaCount📜
Type: int
1
revisionHistoryLimit📜
Type: int
10
deploymentStrategy.type📜
Type: string
"Recreate"
OpenShift.enabled📜
Type: bool
false
OpenShift.createSCC📜
Type: bool
true
OpenShift.route.enabled📜
Type: bool
false
OpenShift.route.host📜
Type: string
"sonarqube.your-org.com"
OpenShift.route.path📜
Type: string
"/"
OpenShift.route.tls.termination📜
Type: string
"edge"
OpenShift.route.wildcardPolicy📜
Type: string
"None"
OpenShift.route.annotations📜
Type: object
{}
sso.enabled📜
Type: bool
false
sso.name📜
Type: string
""
sso.applicationid📜
Type: string
""
sso.providerid📜
Type: string
""
sso.loginUrl📜
Type: string
""
sso.secured📜
Type: string
""
sso.serverBaseURL📜
Type: string
""
sso.idpmetadataurl📜
Type: string
""
sso.image📜
Type: string
""
sso.resources.limits.cpu📜
Type: string
"100m"
sso.resources.limits.memory📜
Type: string
"256Mi"
sso.resources.requests.cpu📜
Type: string
"100m"
sso.resources.requests.memory📜
Type: string
"256Mi"
sso.containerSecurityContext.enabled📜
Type: bool
true
sso.containerSecurityContext.fsGroup📜
Type: int
26
sso.containerSecurityContext.runAsUser📜
Type: int
26
sso.containerSecurityContext.runAsGroup📜
Type: int
26
sso.containerSecurityContext.capabilities.drop[0]📜
Type: string
"ALL"
upstream.fullnameOverride📜
Type: string
"sonarqube-sonarqube"
upstream.community.enabled📜
Type: bool
true
upstream.community.buildNumber📜
Type: string
"25.1.0.102122"
upstream.postgresql.enabled📜
Type: bool
true
upstream.postgresql.postgresqlUsername📜
Type: string
"sonarUser"
upstream.postgresql.postgresqlPassword📜
Type: string
"sonarPass"
upstream.postgresql.postgresqlDatabase📜
Type: string
"sonarDB"
upstream.postgresql.auth.enablePostgresUser📜
Type: bool
true
upstream.postgresql.auth.username📜
Type: string
"sonarUser"
upstream.postgresql.auth.password📜
Type: string
"sonarPass"
upstream.postgresql.auth.database📜
Type: string
"sonarDB"
upstream.postgresql.image.registry📜
Type: string
"registry1.dso.mil"
upstream.postgresql.image.repository📜
Type: string
"ironbank/opensource/postgres/postgresql"
upstream.postgresql.image.tag📜
Type: string
"16.2"
upstream.postgresql.image.pullSecrets[0]📜
Type: string
"private-registry"
upstream.postgresql.primary.extraEnvVars[0].name📜
Type: string
"POSTGRES_DB"
upstream.postgresql.primary.extraEnvVars[0].value📜
Type: string
"sonarDB"
upstream.postgresql.primary.extraVolumeMounts[0].name📜
Type: string
"runtime"
upstream.postgresql.primary.extraVolumeMounts[0].mountPath📜
Type: string
"/var/run/postgresql"
upstream.postgresql.primary.extraVolumes[0].name📜
Type: string
"runtime"
upstream.postgresql.primary.extraVolumes[0].emptyDir📜
Type: object
{}
upstream.postgresql.primary.persistence.size📜
Type: string
"20Gi"
upstream.postgresql.primary.persistence.mountPath📜
Type: string
"/var/lib/postgresql"
upstream.image.repository📜
Type: string
"registry1.dso.mil/ironbank/sonarsource/sonarqube/sonarqube-community-build"
upstream.image.tag📜
Type: string
"25.1.0.102122-community"
upstream.image.pullPolicy📜
Type: string
"IfNotPresent"
upstream.image.pullSecrets📜
Type: list
[]
upstream.securityContext.fsGroup📜
Type: int
1000
upstream.securityContext.runAsUser📜
Type: int
1000
upstream.securityContext.runAsGroup📜
Type: int
1000
upstream.containerSecurityContext.allowPrivilegeEscalation📜
Type: bool
false
upstream.containerSecurityContext.runAsNonRoot📜
Type: bool
true
upstream.containerSecurityContext.runAsUser📜
Type: int
1000
upstream.containerSecurityContext.runAsGroup📜
Type: int
1000
upstream.containerSecurityContext.capabilities.drop[0]📜
Type: string
"ALL"
upstream.elasticsearch.configureNode📜
Type: bool
false
upstream.elasticsearch.bootstrapChecks📜
Type: bool
true
upstream.nginx.enabled📜
Type: bool
false
upstream.service.type📜
Type: string
"ClusterIP"
upstream.service.externalPort📜
Type: int
9000
upstream.service.internalPort📜
Type: int
9000
upstream.service.labels📜
Type: string
nil
upstream.service.annotations📜
Type: object
{}
upstream.httpProxySecret📜
Type: string
""
upstream.httpProxy📜
Type: string
""
upstream.httpsProxy📜
Type: string
""
upstream.noProxy📜
Type: string
""
upstream.networkPolicy.enabled📜
Type: bool
false
upstream.networkPolicy.prometheusNamespace📜
Type: string
"monitoring"
upstream.sonarWebContext📜
Type: string
""
upstream.ingress-nginx.enabled📜
Type: bool
false
upstream.httproute.enabled📜
Type: bool
false
upstream.ingress.enabled📜
Type: bool
false
upstream.ingress.hosts[0].name📜
Type: string
"sonarqube.your-org.com"
upstream.ingress.annotations📜
Type: object
{}
upstream.ingress.tls📜
Type: list
[]
upstream.affinity📜
Type: object
{}
upstream.tolerations📜
Type: list
[]
upstream.nodeSelector📜
Type: object
{}
upstream.hostAliases📜
Type: list
[]
upstream.readinessProbe.exec.command[0]📜
Type: string
"sh"
upstream.readinessProbe.exec.command[1]📜
Type: string
"-c"
upstream.readinessProbe.exec.command[2]📜
Type: string
"#!/bin/bash\n# A Sonarqube container is considered ready if the status is UP, DB_MIGRATION_NEEDED or DB_MIGRATION_RUNNING\n# status about migration are added to prevent the node to be kill while sonarqube is upgrading the database.\nif curl -s http://localhost:{{ .Values.service.internalPort }}{{ .Values.readinessProbe.sonarWebContext | default (include \"sonarqube.webcontext\" .) }}api/system/status | grep -q -e '\"status\":\"UP\"' -e '\"status\":\"DB_MIGRATION_NEEDED\"' -e '\"status\":\"DB_MIGRATION_RUNNING\"'; then\n exit 0\nfi\nexit 1\n"
upstream.readinessProbe.initialDelaySeconds📜
Type: int
60
upstream.readinessProbe.periodSeconds📜
Type: int
30
upstream.readinessProbe.failureThreshold📜
Type: int
6
upstream.readinessProbe.timeoutSeconds📜
Type: int
90
upstream.livenessProbe.exec.command[0]📜
Type: string
"sh"
upstream.livenessProbe.exec.command[1]📜
Type: string
"-c"
upstream.livenessProbe.exec.command[2]📜
Type: string
"curl --silent --fail --output /dev/null --max-time {{ .Values.livenessProbe.timeoutSeconds | default 1 }} --header \"X-Sonar-Passcode: $SONAR_WEB_SYSTEMPASSCODE\" \"http://localhost:{{ .Values.service.internalPort }}{{ .Values.livenessProbe.sonarWebContext | default (include \"sonarqube.webcontext\" .) }}api/system/liveness\"\n"
upstream.livenessProbe.initialDelaySeconds📜
Type: int
60
upstream.livenessProbe.periodSeconds📜
Type: int
30
upstream.livenessProbe.failureThreshold📜
Type: int
6
upstream.livenessProbe.timeoutSeconds📜
Type: int
1
upstream.startupProbe.initialDelaySeconds📜
Type: int
30
upstream.startupProbe.periodSeconds📜
Type: int
10
upstream.startupProbe.failureThreshold📜
Type: int
24
upstream.startupProbe.timeoutSeconds📜
Type: int
1
upstream.initContainers.image📜
Type: string
"registry1.dso.mil/ironbank/big-bang/base:2.1.0"
upstream.initContainers.securityContext.allowPrivilegeEscalation📜
Type: bool
false
upstream.initContainers.securityContext.runAsNonRoot📜
Type: bool
true
upstream.initContainers.securityContext.runAsUser📜
Type: int
1000
upstream.initContainers.securityContext.runAsGroup📜
Type: int
1000
upstream.initContainers.securityContext.seccompProfile.type📜
Type: string
"RuntimeDefault"
upstream.initContainers.securityContext.capabilities.drop[0]📜
Type: string
"ALL"
upstream.initContainers.resources.limits.memory📜
Type: string
"300Mi"
upstream.initContainers.resources.limits.cpu📜
Type: string
"50m"
upstream.initContainers.resources.requests.memory📜
Type: string
"300Mi"
upstream.initContainers.resources.requests.cpu📜
Type: string
"50m"
upstream.extraInitContainers📜
Type: object
{}
upstream.extraContainers📜
Type: list
[]
upstream.extraVolumes📜
Type: list
[]
upstream.extraVolumeMounts📜
Type: list
[]
upstream.waitForDb.image📜
Type: string
"registry1.dso.mil/ironbank/opensource/postgres/postgresql:16.2"
upstream.caCerts.enabled📜
Type: bool
false
upstream.initSysctl.enabled📜
Type: bool
false
upstream.initSysctl.vmMaxMapCount📜
Type: int
524288
upstream.initSysctl.fsFileMax📜
Type: int
131072
upstream.initSysctl.nofile📜
Type: int
131072
upstream.initSysctl.nproc📜
Type: int
8192
upstream.initSysctl.securityContext.privileged📜
Type: bool
true
upstream.initSysctl.securityContext.capabilities.drop[0]📜
Type: string
"ALL"
upstream.initSysctl.securityContext.runAsUser📜
Type: int
0
upstream.initSysctl.securityContext.readOnlyRootFilesystem📜
Type: bool
true
upstream.initFs.enabled📜
Type: bool
true
upstream.initFs.securityContext.privileged📜
Type: bool
false
upstream.initFs.securityContext.runAsNonRoot📜
Type: bool
false
upstream.initFs.securityContext.runAsUser📜
Type: int
0
upstream.initFs.securityContext.runAsGroup📜
Type: int
0
upstream.initFs.securityContext.seccompProfile.type📜
Type: string
"RuntimeDefault"
upstream.initFs.securityContext.capabilities.drop[0]📜
Type: string
"ALL"
upstream.initFs.securityContext.capabilities.add[0]📜
Type: string
"CHOWN"
upstream.initFs.securityContext.readOnlyRootFilesystem📜
Type: bool
true
upstream.prometheusExporter.enabled📜
Type: bool
false
upstream.prometheusExporter.version📜
Type: string
"0.17.2"
upstream.prometheusExporter.webBeanPort📜
Type: int
8000
upstream.prometheusExporter.ceBeanPort📜
Type: int
8001
upstream.prometheusExporter.config.rules[0].pattern📜
Type: string
".*"
upstream.prometheusExporter.image📜
Type: string
"registry1.dso.mil/ironbank/opensource/prometheus/jmx-exporter:1.0.1"
upstream.prometheusMonitoring.podMonitor.enabled📜
Type: bool
false
upstream.prometheusMonitoring.podMonitor.interval📜
Type: string
"30s"
upstream.plugins.install📜
Type: list
[]
upstream.plugins.image📜
Type: string
"registry1.dso.mil/ironbank/sonarsource/sonarqube/sonarqube-community-build:25.1.0.102122-community"
upstream.plugins.noCheckCertificate📜
Type: bool
false
upstream.jvmOpts📜
Type: string
""
upstream.jvmCeOpts📜
Type: string
""
upstream.monitoringPasscode📜
Type: string
"define_it"
upstream.env[0].name📜
Type: string
"JDK_JAVA_OPTIONS"
upstream.env[0].value📜
Type: string
"-Dcom.redhat.fips=false"
upstream.annotations📜
Type: object
{}
upstream.resources.limits.cpu📜
Type: string
"1000m"
upstream.resources.limits.memory📜
Type: string
"6144M"
upstream.resources.limits.ephemeral-storage📜
Type: string
"512000M"
upstream.resources.requests.cpu📜
Type: string
"500m"
upstream.resources.requests.memory📜
Type: string
"2048M"
upstream.resources.requests.ephemeral-storage📜
Type: string
"1536M"
upstream.persistence.enabled📜
Type: bool
false
upstream.persistence.annotations📜
Type: object
{}
upstream.persistence.storageClass📜
Type: string
nil
upstream.persistence.accessMode📜
Type: string
"ReadWriteOnce"
upstream.persistence.size📜
Type: string
"20Gi"
upstream.persistence.uid📜
Type: int
1000
upstream.persistence.guid📜
Type: int
0
upstream.persistence.volumes📜
Type: list
[]
upstream.persistence.mounts📜
Type: list
[]
upstream.emptyDir📜
Type: object
{}
upstream.sonarProperties.”sonar.forceAuthentication”📜
Type: bool
true
upstream.sonarProperties.”sonar.ce.javaAdditionalOpts”📜
Type: string
"-Dcom.redhat.fips=false"
upstream.sonarProperties.”sonar.search.javaAdditionalOpts”📜
Type: string
"-Dcom.redhat.fips=false"
upstream.sonarProperties.”sonar.web.javaAdditionalOpts”📜
Type: string
"-Dcom.redhat.fips=false"
upstream.jdbcOverwrite.enabled📜
Type: bool
false
upstream.jdbcOverwrite.jdbcUrl📜
Type: string
"jdbc:postgresql://myPostgress/myDatabase"
upstream.jdbcOverwrite.jdbcUsername📜
Type: string
"sonarUser"
upstream.jdbcOverwrite.jdbcPassword📜
Type: string
"sonarPass"
upstream.podLabels📜
Type: object
{}
upstream.sonarqubeFolder📜
Type: string
"/opt/sonarqube"
upstream.tests.image📜
Type: string
"bitnami/minideb-extras"
upstream.tests.enabled📜
Type: bool
false
upstream.tests.resources📜
Type: object
{}
upstream.serviceAccount.create📜
Type: bool
true
upstream.serviceAccount.automountToken📜
Type: bool
false
upstream.serviceAccount.annotations📜
Type: object
{}
upstream.extraConfig.secrets📜
Type: list
[]
upstream.extraConfig.configmaps📜
Type: list
[]
upstream.terminationGracePeriodSeconds📜
Type: int
60
curlContainerImage📜
Type: string
"registry1.dso.mil/ironbank/redhat/ubi/ubi9:9.6"
domain📜
Type: string
"dev.bigbang.mil"
istio.enabled📜
Type: bool
false
istio.hardened.enabled📜
Type: bool
false
istio.hardened.customAuthorizationPolicies📜
Type: list
[]
istio.hardened.outboundTrafficPolicyMode📜
Type: string
"REGISTRY_ONLY"
istio.hardened.customServiceEntries📜
Type: list
[]
istio.hardened.tempo.enabled📜
Type: bool
true
istio.hardened.tempo.namespaces[0]📜
Type: string
"tempo"
istio.hardened.tempo.principals[0]📜
Type: string
"cluster.local/ns/tempo/sa/tempo-tempo"
istio.hardened.monitoring.enabled📜
Type: bool
true
istio.hardened.monitoring.namespaces[0]📜
Type: string
"monitoring"
istio.hardened.monitoring.principals[0]📜
Type: string
"cluster.local/ns/monitoring/sa/monitoring-grafana"
istio.hardened.monitoring.principals[1]📜
Type: string
"cluster.local/ns/monitoring/sa/monitoring-monitoring-kube-alertmanager"
istio.hardened.monitoring.principals[2]📜
Type: string
"cluster.local/ns/monitoring/sa/monitoring-monitoring-kube-operator"
istio.hardened.monitoring.principals[3]📜
Type: string
"cluster.local/ns/monitoring/sa/monitoring-monitoring-kube-prometheus"
istio.hardened.monitoring.principals[4]📜
Type: string
"cluster.local/ns/monitoring/sa/monitoring-monitoring-kube-state-metrics"
istio.hardened.monitoring.principals[5]📜
Type: string
"cluster.local/ns/monitoring/sa/monitoring-monitoring-prometheus-node-exporter"
istio.mtls📜
Type: object
mode: STRICT
Description: Default argocd peer authentication
istio.mtls.mode📜
Type: string
"STRICT"
Description: STRICT = Allow only mutual TLS traffic, PERMISSIVE = Allow both plain text and mutual TLS traffic
istio.sonarqube.enabled📜
Type: bool
true
istio.sonarqube.annotations📜
Type: object
{}
istio.sonarqube.labels📜
Type: object
{}
istio.sonarqube.gateways[0]📜
Type: string
"istio-system/main"
istio.sonarqube.hosts[0]📜
Type: string
"sonarqube.{{ .Values.domain }}"
istio.injection📜
Type: string
"disabled"
monitoring.enabled📜
Type: bool
false
networkPolicies.enabled📜
Type: bool
false
networkPolicies.ingressLabels.app📜
Type: string
"istio-ingressgateway"
networkPolicies.ingressLabels.istio📜
Type: string
"ingressgateway"
networkPolicies.egressHttps.enabled📜
Type: bool
true
networkPolicies.additionalPolicies📜
Type: list
[]
bbtests.enabled📜
Type: bool
false
bbtests.cypress.artifacts📜
Type: bool
true
bbtests.cypress.envs.cypress_url📜
Type: string
"http://sonarqube-sonarqube:9000"
bbtests.cypress.envs.cypress_url_setup📜
Type: string
"http://sonarqube-sonarqube:9000/setup"
bbtests.cypress.envs.cypress_user📜
Type: string
"admin"
bbtests.cypress.envs.cypress_password📜
Type: string
"New_admin_password!2"
bbtests.cypress.envs.cypress_timeout📜
Type: string
"10000"