forked from cloudfoundry/cf-k8s-networking
-
Notifications
You must be signed in to change notification settings - Fork 0
/
istio-values.yaml
98 lines (94 loc) · 3.17 KB
/
istio-values.yaml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
---
#@ load("@ytt:overlay", "overlay")
#@ load("@ytt:yaml", "yaml")
apiVersion: install.istio.io/v1alpha2
kind: IstioControlPlane
spec:
profile: default
telemetry:
components:
telemetry:
k8s:
resources:
requests:
cpu: 100m
memory: 500Mi
values:
gateways:
istio-ingressgateway:
autoscaleEnabled: false
externalTrafficPolicy: Local
sds:
enabled: true
prometheus:
enabled: false
sidecarInjectorWebhook:
rewriteAppHTTPProbe: true
global:
controlPlaneSecurityEnabled: true
mtls:
auto: true
proxy:
accessLogFile: "/dev/stdout"
accessLogFormat: >-
{
"app_id": "%REQ(CF-APP-ID)%",
"authority": "%REQ(:AUTHORITY)%",
"bytes_received": "%BYTES_RECEIVED%",
"bytes_sent": "%BYTES_SENT%",
"downstream_local_address": "%DOWNSTREAM_LOCAL_ADDRESS%",
"downstream_remote_address": "%DOWNSTREAM_REMOTE_ADDRESS%",
"duration": "%DURATION%",
"method": "%REQ(:METHOD)%",
"organization_id": "%REQ(CF-ORGANIZATION-ID)%",
"path": "%REQ(X-ENVOY-ORIGINAL-PATH?:PATH)%",
"process_type": "%REQ(APP-PROCESS-TYPE)%",
"protocol": "%PROTOCOL%",
"referer": "%REQ(REFERER)%",
"request_id": "%REQ(X-REQUEST-ID)%",
"requested_server_name": "%REQUESTED_SERVER_NAME%",
"response_code": "%RESPONSE_CODE%",
"response_duration": "%RESPONSE_DURATION%",
"response_flags": "%RESPONSE_FLAGS%",
"response_tx_duration": "%RESPONSE_TX_DURATION%",
"space_id": "%REQ(CF-SPACE-ID)%",
"start_time": "%START_TIME%",
"upstream_cluster": "%UPSTREAM_CLUSTER%",
"upstream_host": "%UPSTREAM_HOST%",
"upstream_local_address": "%UPSTREAM_LOCAL_ADDRESS%",
"upstream_service_time": "%RESP(X-ENVOY-UPSTREAM-SERVICE-TIME)%",
"upstream_transport_failure_reason": "%UPSTREAM_TRANSPORT_FAILURE_REASON%",
"user_agent": "%REQ(USER-AGENT)%",
"x_b3_parentspanid": "%REQ(X-B3-PARENTSPANID)%",
"x_b3_spanid": "%REQ(X-B3-SPANID)%",
"x_b3_traceid": "%REQ(X-B3-TRACEID)%",
"x_forwarded_for": "%REQ(X-FORWARDED-FOR)%",
"x_forwarded_proto": "%REQ(X-FORWARDED-PROTO)%"
}
accessLogEncoding: 'JSON'
#! Add HorizontalPodAutoscaler configuration for all components
#@ def components():
trafficManagement: [pilot, proxy]
policy: [policy]
telemetry: [telemetry]
security: [citadel, certManager, nodeAgent]
configManagement: [galley]
autoInjection: [injector]
gateways: [ingressGateway, egressGateway]
cni: [cni]
coreDNS: [coreDNS]
#@ end
#@overlay/match by=overlay.all
#@overlay/match-child-defaults missing_ok=True
---
spec:
#@yaml/text-templated-strings
#@ for/end compName, subComps in yaml.decode(yaml.encode(components())).items():
(@= compName @):
components:
#@ for/end subCompName in subComps:
(@= subCompName @):
k8s:
hpaSpec:
maxReplicas: 1
minReplicas: 1