Skip to content

vault values.yaml📜

domain📜

Type: string

Default value
"dev.bigbang.mil"

monitoring.enabled📜

Type: bool

Default value
false

monitoring.namespace📜

Type: string

Default value
"monitoring"

networkPolicies.enabled📜

Type: bool

Default value
false

networkPolicies.controlPlaneCidr📜

Type: string

Default value
"0.0.0.0/0"

networkPolicies.vpcCidr📜

Type: string

Default value
"0.0.0.0/0"

networkPolicies.ingressLabels.app📜

Type: string

Default value
"istio-ingressgateway"

networkPolicies.ingressLabels.istio📜

Type: string

Default value
"ingressgateway"

networkPolicies.additionalPolicies📜

Type: list

Default value
[]

autoInit.enabled📜

Type: bool

Default value
true

autoInit.image.repository📜

Type: string

Default value
"registry1.dso.mil/ironbank/big-bang/base"

autoInit.image.tag📜

Type: string

Default value
"2.1.0"

autoInit.storage.size📜

Type: string

Default value
"2Gi"

istio.enabled📜

Type: bool

Default value
false

istio.hardened.enabled📜

Type: bool

Default value
false

istio.hardened.customAuthorizationPolicies📜

Type: list

Default value
[]

istio.hardened.monitoring.enabled📜

Type: bool

Default value
true

istio.hardened.monitoring.namespaces[0]📜

Type: string

Default value
"monitoring"

istio.hardened.monitoring.principals[0]📜

Type: string

Default value
"cluster.local/ns/monitoring/sa/monitoring-grafana"

istio.hardened.monitoring.principals[1]📜

Type: string

Default value
"cluster.local/ns/monitoring/sa/monitoring-monitoring-kube-alertmanager"

istio.hardened.monitoring.principals[2]📜

Type: string

Default value
"cluster.local/ns/monitoring/sa/monitoring-monitoring-kube-operator"

istio.hardened.monitoring.principals[3]📜

Type: string

Default value
"cluster.local/ns/monitoring/sa/monitoring-monitoring-kube-prometheus"

istio.hardened.monitoring.principals[4]📜

Type: string

Default value
"cluster.local/ns/monitoring/sa/monitoring-monitoring-kube-state-metrics"

istio.hardened.monitoring.principals[5]📜

Type: string

Default value
"cluster.local/ns/monitoring/sa/monitoring-monitoring-prometheus-node-exporter"

istio.hardened.apiAccess.enabled📜

Type: bool

Default value
true

istio.hardened.apiAccess.ports[0]📜

Type: string

Default value
"8200"

istio.vault.enabled📜

Type: bool

Default value
true

istio.vault.gateways[0]📜

Type: string

Default value
"istio-system/main"

istio.vault.hosts[0]📜

Type: string

Default value
"vault.{{ .Values.domain }}"

istio.vault.tls.cert📜

Type: string

Default value
""

istio.vault.tls.key📜

Type: string

Default value
""

istio.mtls.mode📜

Type: string

Default value
"STRICT"

minio.enabled📜

Type: bool

Default value
false

customAppIngressSelector.key📜

Type: string

Default value
"vault-ingress"

customAppIngressSelector.value📜

Type: bool

Default value
true

bbtests.enabled📜

Type: bool

Default value
false

bbtests.cypress.resources.requests.cpu📜

Type: int

Default value
2

bbtests.cypress.resources.requests.memory📜

Type: string

Default value
"8Gi"

bbtests.cypress.resources.limits.cpu📜

Type: int

Default value
2

bbtests.cypress.resources.limits.memory📜

Type: string

Default value
"8Gi"

bbtests.cypress.artifacts📜

Type: bool

Default value
true

bbtests.cypress.envs.cypress_vault_url📜

Type: string

Default value
"http://vault.vault.svc:8200"

bbtests.cypress.secretEnvs[0].name📜

Type: string

Default value
"cypress_token"

bbtests.cypress.secretEnvs[0].valueFrom.secretKeyRef.name📜

Type: string

Default value
"vault-token"

bbtests.cypress.secretEnvs[0].valueFrom.secretKeyRef.key📜

Type: string

Default value
"key"

bbtests.cypress.disableDefaultTests📜

Type: bool

Default value
false

bbtests.scripts.permissions.apiGroups[0]📜

Type: string

Default value
""

bbtests.scripts.permissions.resources[0]📜

Type: string

Default value
"configmaps"

bbtests.scripts.permissions.verbs[0]📜

Type: string

Default value
"create"

bbtests.scripts.permissions.verbs[1]📜

Type: string

Default value
"delete"

bbtests.scripts.permissions.verbs[2]📜

Type: string

Default value
"list"

bbtests.scripts.permissions.verbs[3]📜

Type: string

Default value
"get"

bbtests.scripts.image📜

Type: string

Default value
"registry1.dso.mil/ironbank/big-bang/base:2.1.0"

bbtests.scripts.envs.VAULT_PORT📜

Type: string

Default value
"80"

bbtests.scripts.envs.VAULT_HOST📜

Type: string

Default value
"http://vault"

bbtests.scripts.secretEnvs[0].name📜

Type: string

Default value
"vault_token"

bbtests.scripts.secretEnvs[0].valueFrom.secretKeyRef.name📜

Type: string

Default value
"vault-token"

bbtests.scripts.secretEnvs[0].valueFrom.secretKeyRef.key📜

Type: string

Default value
"key"

openshift📜

Type: bool

Default value
false

upstream.fullnameOverride📜

Type: string

Default value
"vault-vault"

upstream.nameOverride📜

Type: string

Default value
"vault"

upstream.global.imagePullSecrets[0].name📜

Type: string

Default value
"private-registry"

upstream.injector.enabled📜

Type: bool

Default value
false

upstream.injector.leaderElector.enabled📜

Type: bool

Default value
false

upstream.injector.metrics.enabled📜

Type: bool

Default value
true

upstream.injector.image.repository📜

Type: string

Default value
"registry1.dso.mil/ironbank/hashicorp/vault/vault-k8s"

upstream.injector.image.tag📜

Type: string

Default value
"v1.7.0"

upstream.injector.agentImage.repository📜

Type: string

Default value
"registry1.dso.mil/ironbank/hashicorp/vault"

upstream.injector.agentImage.tag📜

Type: string

Default value
"1.20.1"

upstream.injector.agentDefaults.memLimit📜

Type: string

Default value
"250Mi"

upstream.injector.agentDefaults.memRequest📜

Type: string

Default value
"250Mi"

upstream.injector.securityContext.container.capabilities.drop[0]📜

Type: string

Default value
"ALL"

upstream.injector.resources.requests.memory📜

Type: string

Default value
"256Mi"

upstream.injector.resources.requests.cpu📜

Type: string

Default value
"250m"

upstream.injector.resources.limits.memory📜

Type: string

Default value
"256Mi"

upstream.injector.resources.limits.cpu📜

Type: string

Default value
"250m"

upstream.server.enabled📜

Type: bool

Default value
true

upstream.server.image.repository📜

Type: string

Default value
"registry1.dso.mil/ironbank/hashicorp/vault"

upstream.server.image.tag📜

Type: string

Default value
"1.20.1"

upstream.server.resources.requests.memory📜

Type: string

Default value
"256Mi"

upstream.server.resources.requests.cpu📜

Type: string

Default value
"250m"

upstream.server.resources.limits.memory📜

Type: string

Default value
"256Mi"

upstream.server.resources.limits.cpu📜

Type: string

Default value
"250m"

upstream.server.auditStorage.enabled📜

Type: bool

Default value
true

upstream.server.ha.enabled📜

Type: bool

Default value
true

upstream.server.ha.replicas📜

Type: int

Default value
1

upstream.server.ha.apiAddr📜

Type: string

Default value
"https://vault.dev.bigbang.mil"

upstream.server.ha.raft.enabled📜

Type: bool

Default value
true

upstream.server.ha.raft.setNodeId📜

Type: bool

Default value
true

upstream.server.statefulSet.securityContext.container.capabilities.drop[0]📜

Type: string

Default value
"ALL"

upstream.ui.enabled📜

Type: bool

Default value
true

upstream.csi.image.repository📜

Type: string

Default value
"registry1.dso.mil/ironbank/hashicorp/vault-csi-provider"

upstream.csi.image.tag📜

Type: string

Default value
"v1.5.1"

upstream.csi.resources.requests.cpu📜

Type: string

Default value
"50m"

upstream.csi.resources.requests.memory📜

Type: string

Default value
"128Mi"

upstream.csi.resources.limits.cpu📜

Type: string

Default value
"50m"

upstream.csi.resources.limits.memory📜

Type: string

Default value
"128Mi"

upstream.csi.daemonSet.securityContext.pod.runAsNonRoot📜

Type: bool

Default value
true

upstream.csi.daemonSet.securityContext.pod.runAsGroup📜

Type: int

Default value
1000

upstream.csi.daemonSet.securityContext.pod.runAsUser📜

Type: int

Default value
100

upstream.csi.daemonSet.securityContext.pod.fsGroup📜

Type: int

Default value
1000

upstream.csi.agent.image.repository📜

Type: string

Default value
"registry1.dso.mil/ironbank/hashicorp/vault"

upstream.csi.agent.image.tag📜

Type: string

Default value
"1.20.1"

upstream.csi.agent.resources.requests.memory📜

Type: string

Default value
"256Mi"

upstream.csi.agent.resources.requests.cpu📜

Type: string

Default value
"250m"

upstream.csi.agent.resources.limits.memory📜

Type: string

Default value
"256Mi"

upstream.csi.agent.resources.limits.cpu📜

Type: string

Default value
"250m"