diff --git a/environments/argocd-app-templates/appsetup-stable.yaml b/environments/argocd-app-templates/appsetup-stable.yaml new file mode 100644 index 000000000..28036e287 --- /dev/null +++ b/environments/argocd-app-templates/appsetup-stable.yaml @@ -0,0 +1,38 @@ +############################################################### +# Copyright (c) 2024 Contributors to the Eclipse Foundation +# +# See the NOTICE file(s) distributed with this work for additional +# information regarding copyright ownership. +# +# This program and the accompanying materials are made available under the +# terms of the Apache License, Version 2.0 which is available at +# https://www.apache.org/licenses/LICENSE-2.0. +# +# Unless required by applicable law or agreed to in writing, software +# distributed under the License is distributed on an "AS IS" BASIS, WITHOUT +# WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the +# License for the specific language governing permissions and limitations +# under the License. +# +# SPDX-License-Identifier: Apache-2.0 +############################################################### + +apiVersion: argoproj.io/v1alpha1 +kind: Application +metadata: + name: portal +spec: + destination: + namespace: product-portal + server: 'https://kubernetes.default.svc' + source: + path: charts/portal + repoURL: 'https://github.com/eclipse-tractusx/portal.git' + targetRevision: portal-2.3.0-alpha.2 + plugin: + env: + - name: AVP_SECRET + value: vault-secret + - name: helm_args + value: '-f values.yaml -f ../../environments/helm-values/values-stable.yaml' + project: project-portal diff --git a/environments/helm-values/values-stable.yaml b/environments/helm-values/values-stable.yaml new file mode 100644 index 000000000..123371819 --- /dev/null +++ b/environments/helm-values/values-stable.yaml @@ -0,0 +1,296 @@ +############################################################### +# Copyright (c) 2024 Contributors to the Eclipse Foundation +# +# See the NOTICE file(s) distributed with this work for additional +# information regarding copyright ownership. +# +# This program and the accompanying materials are made available under the +# terms of the Apache License, Version 2.0 which is available at +# https://www.apache.org/licenses/LICENSE-2.0. +# +# Unless required by applicable law or agreed to in writing, software +# distributed under the License is distributed on an "AS IS" BASIS, WITHOUT +# WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the +# License for the specific language governing permissions and limitations +# under the License. +# +# SPDX-License-Identifier: Apache-2.0 +############################################################### + +portalAddress: "https://portal.stable.catena-x.net" +portalBackendAddress: "https://portal-backend.stable.catena-x.net" +centralidp: + address: "https://centralidp.stable.catena-x.net" +sharedidpAddress: "https://sharedidp.stable.catena-x.net" +semanticsAddress: "https://semantics.stable.catena-x.net" +bpdm: + poolAddress: "https://business-partners.stable.catena-x.net" + poolApiPath: "/pool/v6" + portalGateAddress: "https://business-partners.stable.catena-x.net" + portalGateApiPath: "/companies/test-company/v6" +custodianAddress: "https://managed-identity-wallets-new.stable.catena-x.net" +sdfactoryAddress: "https://sdfactory.stable.catena-x.net" +clearinghouseAddress: "https://validation.test.dih-cloud.com" +clearinghouseTokenAddress: "https://iam.test.dih-cloud.com/realms/carla/protocol/openid-connect/token" +issuerComponentAddress: "https://ssi-credential-issuer.stable.catena-x.net" +bpnDidResolverAddress: "http://bdrs-bdrs-server:8081" +dimWrapper: + baseAddress: "https://dim.stable.catena-x.net" +decentralIdentityManagementAuthAddress: "https://dis-integration-service-prod.eu10.dim.cloud.sap/api/v2.0.0/iatp/catena-x-portal" +bpnDidResolver: + managementApiAddress: "http://bdrs-bdrs-server:8081" + directoryApiAddress: "https://bpn-did-resolution-service.stable.catena-x.net/api/directory" + +frontend: + + ingress: + enabled: true + className: "nginx" + annotations: + cert-manager.io/cluster-issuer: "letsencrypt-prod" + nginx.ingress.kubernetes.io/rewrite-target: "/$1" + nginx.ingress.kubernetes.io/use-regex: "true" + nginx.ingress.kubernetes.io/enable-cors: "true" + nginx.ingress.kubernetes.io/cors-allow-origin: "https://*.stable.catena-x.net" + tls: + - secretName: "portal.stable.catena-x.net-tls" + hosts: + - "portal.stable.catena-x.net" + hosts: + - host: "portal.stable.catena-x.net" + paths: + - path: "/(.*)" + pathType: "Prefix" + backend: + service: "portal" + port: 8080 + - path: "/registration/(.*)" + pathType: "Prefix" + backend: + service: "registration" + port: 8080 + - path: "/((assets|documentation)/.*)" + pathType: "Prefix" + backend: + service: "assets" + port: 8080 + +backend: + ingress: + enabled: true + className: "nginx" + annotations: + cert-manager.io/cluster-issuer: "letsencrypt-prod" + nginx.ingress.kubernetes.io/use-regex: "true" + nginx.ingress.kubernetes.io/enable-cors: "true" + nginx.ingress.kubernetes.io/proxy-body-size: "8m" + nginx.ingress.kubernetes.io/cors-allow-origin: "http://localhost:3000, https://*.stable.catena-x.net" + tls: + - secretName: "portal-backend.stable.catena-x.net-tls" + hosts: + - "portal-backend.stable.catena-x.net" + hosts: + - host: "portal-backend.stable.catena-x.net" + paths: + - path: "/api/registration" + pathType: "Prefix" + backend: + service: "registration-service" + port: 8080 + - path: "/api/administration" + pathType: "Prefix" + backend: + service: "administration-service" + port: 8080 + - path: "/api/notification" + pathType: "Prefix" + backend: + service: "notification-service" + port: 8080 + - path: "/api/apps" + pathType: "Prefix" + backend: + service: "marketplace-app-service" + port: 8080 + - path: "/api/services" + pathType: "Prefix" + backend: + service: "services-service" + port: 8080 + + keycloak: + central: + clientId: "" + clientSecret: "" + shared: + clientId: "" + clientSecret: "" + + useDimWallet: true + + mailing: + host: "" + port: "" + user: "" + password: "" + senderEmail: "" + + registration: + logging: + default: "Debug" + bpdmLibrary: "Debug" + registrationService: "Debug" + healthChecks: + startup: + tags: + - name: "HEALTHCHECKS__0__TAGS__0" + value: "keycloak" + - name: "HEALTHCHECKS__0__TAGS__1" + value: "portaldb" + swaggerEnabled: true + + administration: + logging: + default: "Debug" + businessLogic: "Debug" + sdfactoryLibrary: "Debug" + bpdmLibrary: "Debug" + custodianLibrary: "Debug" + healthChecks: + startup: + tags: + - name: "HEALTHCHECKS__0__TAGS__0" + value: "keycloak" + - name: "HEALTHCHECKS__0__TAGS__1" + value: "portaldb" + - name: "HEALTHCHECKS__0__TAGS__2" + value: "provisioningdb" + swaggerEnabled: true + issuerdid: "did:web:portal-backend.stable.catena-x.net:api:administration:staticdata:did:BPNL00000003CRHK" + serviceAccount: + encryptionConfigs: + index0: + encryptionKey: "" + + provisioning: + sharedRealm: + smtpServer: + host: "" + port: "" + user: "" + password: "" + from: "" + replyTo: "" + + appmarketplace: + logging: + default: "Debug" + offersLibrary: "Debug" + healthChecks: + startup: + tags: + - name: "HEALTHCHECKS__0__TAGS__0" + value: "keycloak" + - name: "HEALTHCHECKS__0__TAGS__1" + value: "portaldb" + swaggerEnabled: true + + portalmigrations: + logging: + default: "Debug" + + notification: + logging: + default: "Debug" + healthChecks: + startup: + tags: + - name: "HEALTHCHECKS__0__TAGS__0" + value: "keycloak" + - name: "HEALTHCHECKS__0__TAGS__1" + value: "portaldb" + swaggerEnabled: true + + services: + logging: + default: "Debug" + offersLibrary: "Debug" + healthChecks: + startup: + tags: + - name: "HEALTHCHECKS__0__TAGS__0" + value: "keycloak" + - name: "HEALTHCHECKS__0__TAGS__1" + value: "portaldb" + swaggerEnabled: true + + processesworker: + logging: + default: "Debug" + processesLibrary: "Debug" + bpdmLibrary: "Debug" + clearinghouseLibrary: "Debug" + custodianLibrary: "Debug" + sdfactoryLibrary: "Debug" + offerProvider: "Debug" + bpdm: + clientId: "" + clientSecret: "" + startSharingStateAsReady: false + clearinghouse: + clientId: "" + clientSecret: "" + custodian: + clientId: "" + clientSecret: "" + sdfactory: + issuerBpn: "BPNL00000003CRHK" + clientId: "" + clientSecret: "" + offerprovider: + clientId: "" + clientSecret: "" + onboardingServiceProvider: + encryptionConfigs: + index0: + cipherMode: "CBC" + paddingMode: "PKCS7" + encryptionKey: "" + index1: + encryptionKey: "" + dim: + clientId: "" + clientSecret: "" + universalResolverAddress: "https://dev.uniresolver.io/" + encryptionConfigs: + index0: + encryptionKey: "" + issuerComponent: + clientId: "" + clientSecret: "" + bpnDidResolver: + apiKey: "" + invitation: + encryptionConfigs: + index0: + encryptionKey: "" + mailing: + encryptionConfigs: + index0: + encryptionKey: "" + +replicaCount: 2 + +postgresql: + auth: + password: "" + replicationPassword: "" + portalPassword: "" + provisioningPassword: "" + architecture: "standalone" + primary: + extendedConfiguration: | + max_connections = 200 + readReplicas: + extendedConfiguration: | + max_connections = 200