/
tap-values-example.yaml
131 lines (121 loc) · 5.3 KB
/
tap-values-example.yaml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
#############################################################################################
# General settings for TAP #
# The full installation profile used and the ingress address + default registry is set here #
#############################################################################################
profile: full
ceip_policy_disclosed: true
shared:
ingress_domain: tap.viktoriouslab.nl
ingress_issuer: <your-cluster-issuer>
image_registry:
project_path: <registry to store artifacts>
secret:
name: tap-registry
namespace: tap-install
tap_telemetry:
customer_entitlement_account_number: ""
supply_chain: testing_scanning
metadata_store:
ns_for_export_app_cert: "*"
#############################################################################################
# Use a git repository for K8S yaml distribution (using GitOps instead of RegistryOps) #
#############################################################################################
ootb_supply_chain_testing_scanning:
gitops:
ssh_secret: git-https-secret
branch: main
commit_message: "Update from TAP Supply Chain Choreographer"
server_address: https://github.com/
repository_owner: viktoriousss # github-account
repository_name: tap-deliveries # github-repository
#############################################################################################
# The namespace provisioner is responsible for setting up developer namespaces in your #
# environment. The configuration is contained on a Git Repository and contains the #
# namespaces to be created ws well as the default resources that should be added to these #
# namespaces. #
#############################################################################################
namespace_provisioner:
controller: false
sync_period: 30s
# Namespace provisioner - list of namespaces
gitops_install:
ref: origin/main
subPath: tap/ns-provisioner/namespaces
url: https://github.com/viktoriousss/tanzu-demo-essentials.git
# Namespace provisioner - additional resources
additional_sources:
- git:
url: https://github.com/viktoriousss/tanzu-demo-essentials.git
ref: origin/main
subPath: tap/ns-provisioner/namespaces-resources
secretRef:
name: git-https-secret # this is the new credential
namespace: tap-install
#create_export: true
#import_data_values_secrets:
# - name: git-https-secret
# namespace: tap-install
# create_export: true
# This account is used for doing GitOps with Supply Chain Choreographer
default_parameters:
supply_chain_service_account:
secrets:
- git-https-secret
#############################################################################################
# Local source proxy configuration - this is used by Tanzu Developer Portal to upload #
# local sourcecode to this repository. #
# #
# Secrets (lsp-push-credentials & lsp-pull-credentials) should be exported, either through #
# create_export: true or a secret export YAML. See ./secrets/lsp-secrets.example.yaml #
#############################################################################################
local_source_proxy:
repository: "harbor.viktoriouslab.nl/local-tap/vscode-tmp"
push_secret:
name: lsp-push-credentials
namespace: tap-install
create_export: false
pull_secret:
name: lsp-pull-credentials
namespace: tap-install
create_export: false
#############################################################################################
# Configuration of TAP-GUI specific settings #
#############################################################################################
tap_gui:
# TLS certificate configuration for TAP-GUI
tls:
namespace: cert-manager
secretName: tap-gui
app_config:
customize:
custom_name: "viktorious.nl Developer Portal"
organization:
name: "viktorious.nl"
# GitHub authentication configuration
auth:
allowGuestAccess: false
environment: development
providers:
github: # This is for github OAuth authentication to the TAP portal. Configure a new OAuth app for TAP here: https://github.com/settings/developers. Homepage URL is http://tap-gui.<ingress-domain configured earlier>.
development:
clientId: "<clientId>" # you need to get this value from GitHub Developer Settings OAuth2 page
clientSecret: "<clientSecret>"
backend:
database:
client: pg
connection:
host: postgresql.postgres.svc.cluster.local
port: 5432
user: admin
password: VMware1!
#ssl: { rejectUnauthorized: false } # Set to true if using SSL
ssl: false
#
#excluded_packages:
# - crossplane.tanzu.vmware.com
# - bitnami.services.tanzu.vmware.com
# Add custom Backstage plugins here #
#package_overlays:
#- name: tap-gui
# secrets:
# - name: tdp-app-image-overlay-secret