-
Notifications
You must be signed in to change notification settings - Fork 1
/
nais-prod.yaml
116 lines (116 loc) · 3.36 KB
/
nais-prod.yaml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
kind: Application
apiVersion: nais.io/v1alpha1
metadata:
name: veilarbarena
namespace: pto
labels:
team: pto
spec:
image: {{image}}
ingresses:
- https://veilarbarena.prod-fss-pub.nais.io
- https://veilarbarena.nais.adeo.no
- https://veilarbarena.intern.nav.no
port: 8080
prometheus:
enabled: true
path: veilarbarena/internal/prometheus
readiness:
path: veilarbarena/internal/isReady
initialDelay: 45
liveness:
path: veilarbarena/internal/isAlive
initialDelay: 45
replicas:
min: 2
max: 4
cpuThresholdPercentage: 75
resources:
limits:
cpu: "2"
memory: 2048Mi
requests:
cpu: "1"
memory: 1024Mi
webproxy: true
leaderElection: true
kafka:
pool: nav-prod
azure:
application:
allowAllUsers: true
enabled: true
claims:
extra:
- "NAVident"
accessPolicy:
inbound:
rules:
- application: tiltaksgjennomforing-api
namespace: arbeidsgiver
cluster: prod-fss
- application: veilarbregistrering
namespace: paw
cluster: prod-fss
- application: veilarbregistrering
namespace: paw
cluster: prod-gcp
- application: veilarboppfolging
namespace: pto
cluster: prod-fss
- application: veilarbaktivitet
namespace: pto
cluster: prod-fss
- application: veilarbvedtaksstotte
namespace: pto
cluster: prod-fss
- application: poao-tilgang
namespace: poao
cluster: prod-gcp
- application: poao-tilgang
namespace: poao
cluster: prod-fss
- application: amt-person-service
namespace: amt
cluster: prod-gcp
- application: veilarbportefolje
namespace: pto
cluster: prod-fss
- application: veilarbaktivitet
namespace: dab
cluster: prod-gcp
vault:
enabled: true
paths:
- kvPath: /serviceuser/data/prod/srvveilarbarena
mountPath: /var/run/secrets/nais.io/service_user
- kvPath: /oracle/data/prod/config/veilarbarena
mountPath: /var/run/secrets/nais.io/oracle_config
- kvPath: /oracle/data/prod/creds/veilarbarena-user
mountPath: /var/run/secrets/nais.io/oracle_creds
- kvPath: /kv/prod/fss/veilarbarena/default
mountPath: /var/run/secrets/nais.io/vault
envFrom:
- configmap: pto-config
- configmap: loginservice-idporten
env:
- name: ENDRING_PAA_OPPFOELGINGSBRUKER_TOPIC
value: pto.endring-paa-oppfolgingsbruker-v2
- name: AMT_TILTAK_CLIENT_ID
value: 877dd682-4750-4193-8286-8ad2e08c3aab
- name: VEILARBREGISTRERING_CLIENT_ID
value: b898d7c6-0160-4dca-867e-873a4bd85d25
- name: VEILARBREGISTRERING_CLIENT_ID_GCP
value: ce413ccb-0b33-400c-a57d-7d9ffdcb496f
- name: TILTAKSGJENNOMFORING_API_CLIENT_ID
value: 4bc6277f-7c25-49b9-803f-a9873995889f
- name: POAO_TILGANG_GCP_CLIENT_ID
value: b345dcb8-d4f8-41fc-9d4e-bc169c04145b
- name: POAO_TILGANG_FSS_CLIENT_ID
value: f737ff0f-c86a-4a84-8d52-221410234160
- name: POAO_TILGANG_URL
value: http://poao-tilgang.poao.svc.nais.local
- name: POAO_TILGANG_SCOPE
value: api://prod-fss.poao.poao-tilgang/.default
- name: AMT_PERSON_SERVICE_CLIENT_ID
value: 71948d71-65be-4335-974f-987e95fc99e5