vault values.yaml
📜
domain📜
Type: string
"dev.bigbang.mil"
monitoring.enabled📜
Type: bool
false
monitoring.namespace📜
Type: string
"monitoring"
networkPolicies.enabled📜
Type: bool
false
networkPolicies.controlPlaneCidr📜
Type: string
"0.0.0.0/0"
networkPolicies.vpcCidr📜
Type: string
"0.0.0.0/0"
networkPolicies.ingressLabels.app📜
Type: string
"istio-ingressgateway"
networkPolicies.ingressLabels.istio📜
Type: string
"ingressgateway"
networkPolicies.additionalPolicies📜
Type: list
[]
autoInit.enabled📜
Type: bool
true
autoInit.image.repository📜
Type: string
"registry1.dso.mil/ironbank/big-bang/base"
autoInit.image.tag📜
Type: string
"2.1.0"
autoInit.storage.size📜
Type: string
"2Gi"
istio.enabled📜
Type: bool
false
istio.hardened.enabled📜
Type: bool
false
istio.hardened.customAuthorizationPolicies📜
Type: list
[]
istio.hardened.monitoring.enabled📜
Type: bool
true
istio.hardened.monitoring.namespaces[0]📜
Type: string
"monitoring"
istio.hardened.monitoring.principals[0]📜
Type: string
"cluster.local/ns/monitoring/sa/monitoring-grafana"
istio.hardened.monitoring.principals[1]📜
Type: string
"cluster.local/ns/monitoring/sa/monitoring-monitoring-kube-alertmanager"
istio.hardened.monitoring.principals[2]📜
Type: string
"cluster.local/ns/monitoring/sa/monitoring-monitoring-kube-operator"
istio.hardened.monitoring.principals[3]📜
Type: string
"cluster.local/ns/monitoring/sa/monitoring-monitoring-kube-prometheus"
istio.hardened.monitoring.principals[4]📜
Type: string
"cluster.local/ns/monitoring/sa/monitoring-monitoring-kube-state-metrics"
istio.hardened.monitoring.principals[5]📜
Type: string
"cluster.local/ns/monitoring/sa/monitoring-monitoring-prometheus-node-exporter"
istio.hardened.apiAccess.enabled📜
Type: bool
true
istio.hardened.apiAccess.ports[0]📜
Type: string
"8200"
istio.vault.enabled📜
Type: bool
true
istio.vault.gateways[0]📜
Type: string
"istio-system/main"
istio.vault.hosts[0]📜
Type: string
"vault.{{ .Values.domain }}"
istio.vault.tls.cert📜
Type: string
""
istio.vault.tls.key📜
Type: string
""
istio.mtls.mode📜
Type: string
"STRICT"
minio.enabled📜
Type: bool
false
customAppIngressSelector.key📜
Type: string
"vault-ingress"
customAppIngressSelector.value📜
Type: bool
true
bbtests.enabled📜
Type: bool
false
bbtests.cypress.resources.requests.cpu📜
Type: int
2
bbtests.cypress.resources.requests.memory📜
Type: string
"8Gi"
bbtests.cypress.resources.limits.cpu📜
Type: int
2
bbtests.cypress.resources.limits.memory📜
Type: string
"8Gi"
bbtests.cypress.artifacts📜
Type: bool
true
bbtests.cypress.envs.cypress_vault_url📜
Type: string
"http://vault.vault.svc:8200"
bbtests.cypress.secretEnvs[0].name📜
Type: string
"cypress_token"
bbtests.cypress.secretEnvs[0].valueFrom.secretKeyRef.name📜
Type: string
"vault-token"
bbtests.cypress.secretEnvs[0].valueFrom.secretKeyRef.key📜
Type: string
"key"
bbtests.cypress.disableDefaultTests📜
Type: bool
false
bbtests.scripts.permissions.apiGroups[0]📜
Type: string
""
bbtests.scripts.permissions.resources[0]📜
Type: string
"configmaps"
bbtests.scripts.permissions.verbs[0]📜
Type: string
"create"
bbtests.scripts.permissions.verbs[1]📜
Type: string
"delete"
bbtests.scripts.permissions.verbs[2]📜
Type: string
"list"
bbtests.scripts.permissions.verbs[3]📜
Type: string
"get"
bbtests.scripts.image📜
Type: string
"registry1.dso.mil/ironbank/big-bang/base:2.1.0"
bbtests.scripts.envs.VAULT_PORT📜
Type: string
"80"
bbtests.scripts.envs.VAULT_HOST📜
Type: string
"http://vault"
bbtests.scripts.secretEnvs[0].name📜
Type: string
"vault_token"
bbtests.scripts.secretEnvs[0].valueFrom.secretKeyRef.name📜
Type: string
"vault-token"
bbtests.scripts.secretEnvs[0].valueFrom.secretKeyRef.key📜
Type: string
"key"
openshift📜
Type: bool
false
upstream.fullnameOverride📜
Type: string
"vault-vault"
upstream.nameOverride📜
Type: string
"vault"
upstream.global.imagePullSecrets[0].name📜
Type: string
"private-registry"
upstream.injector.enabled📜
Type: bool
false
upstream.injector.leaderElector.enabled📜
Type: bool
false
upstream.injector.metrics.enabled📜
Type: bool
true
upstream.injector.image.repository📜
Type: string
"registry1.dso.mil/ironbank/hashicorp/vault/vault-k8s"
upstream.injector.image.tag📜
Type: string
"v1.7.0"
upstream.injector.agentImage.repository📜
Type: string
"registry1.dso.mil/ironbank/hashicorp/vault"
upstream.injector.agentImage.tag📜
Type: string
"1.20.1"
upstream.injector.agentDefaults.memLimit📜
Type: string
"250Mi"
upstream.injector.agentDefaults.memRequest📜
Type: string
"250Mi"
upstream.injector.securityContext.container.capabilities.drop[0]📜
Type: string
"ALL"
upstream.injector.resources.requests.memory📜
Type: string
"256Mi"
upstream.injector.resources.requests.cpu📜
Type: string
"250m"
upstream.injector.resources.limits.memory📜
Type: string
"256Mi"
upstream.injector.resources.limits.cpu📜
Type: string
"250m"
upstream.server.enabled📜
Type: bool
true
upstream.server.image.repository📜
Type: string
"registry1.dso.mil/ironbank/hashicorp/vault"
upstream.server.image.tag📜
Type: string
"1.20.1"
upstream.server.resources.requests.memory📜
Type: string
"256Mi"
upstream.server.resources.requests.cpu📜
Type: string
"250m"
upstream.server.resources.limits.memory📜
Type: string
"256Mi"
upstream.server.resources.limits.cpu📜
Type: string
"250m"
upstream.server.auditStorage.enabled📜
Type: bool
true
upstream.server.ha.enabled📜
Type: bool
true
upstream.server.ha.replicas📜
Type: int
1
upstream.server.ha.apiAddr📜
Type: string
"https://vault.dev.bigbang.mil"
upstream.server.ha.raft.enabled📜
Type: bool
true
upstream.server.ha.raft.setNodeId📜
Type: bool
true
upstream.server.statefulSet.securityContext.container.capabilities.drop[0]📜
Type: string
"ALL"
upstream.ui.enabled📜
Type: bool
true
upstream.csi.image.repository📜
Type: string
"registry1.dso.mil/ironbank/hashicorp/vault-csi-provider"
upstream.csi.image.tag📜
Type: string
"v1.5.1"
upstream.csi.resources.requests.cpu📜
Type: string
"50m"
upstream.csi.resources.requests.memory📜
Type: string
"128Mi"
upstream.csi.resources.limits.cpu📜
Type: string
"50m"
upstream.csi.resources.limits.memory📜
Type: string
"128Mi"
upstream.csi.daemonSet.securityContext.pod.runAsNonRoot📜
Type: bool
true
upstream.csi.daemonSet.securityContext.pod.runAsGroup📜
Type: int
1000
upstream.csi.daemonSet.securityContext.pod.runAsUser📜
Type: int
100
upstream.csi.daemonSet.securityContext.pod.fsGroup📜
Type: int
1000
upstream.csi.agent.image.repository📜
Type: string
"registry1.dso.mil/ironbank/hashicorp/vault"
upstream.csi.agent.image.tag📜
Type: string
"1.20.1"
upstream.csi.agent.resources.requests.memory📜
Type: string
"256Mi"
upstream.csi.agent.resources.requests.cpu📜
Type: string
"250m"
upstream.csi.agent.resources.limits.memory📜
Type: string
"256Mi"
upstream.csi.agent.resources.limits.cpu📜
Type: string
"250m"