constellation/cli/internal/helm/charts/cilium/templates/hubble-relay/configmap.yaml
2022-08-12 10:20:19 +02:00

42 lines
1.8 KiB
YAML

{{- if and .Values.hubble.enabled .Values.hubble.relay.enabled }}
{{- $peerSvcPort := .Values.hubble.peerService.servicePort -}}
{{- if not .Values.hubble.peerService.servicePort }}
{{- $peerSvcPort = (.Values.hubble.tls.enabled | ternary 443 80) -}}
{{- end }}
---
apiVersion: v1
kind: ConfigMap
metadata:
name: hubble-relay-config
namespace: {{ .Release.Namespace }}
data:
config.yaml: |
cluster-name: {{ .Values.cluster.name }}
{{- if and .Values.hubble.enabled .Values.hubble.peerService.enabled }}
peer-service: "hubble-peer.{{ .Release.Namespace }}.svc.{{ .Values.hubble.peerService.clusterDomain }}:{{ $peerSvcPort }}"
{{- else }}
peer-service: unix://{{ .Values.hubble.socketPath }}
{{- end }}
listen-address: {{ .Values.hubble.relay.listenHost }}:{{ .Values.hubble.relay.listenPort }}
{{- if .Values.hubble.relay.prometheus.enabled }}
metrics-listen-address: ":{{ .Values.hubble.relay.prometheus.port }}"
{{- end }}
dial-timeout: {{ .Values.hubble.relay.dialTimeout }}
retry-timeout: {{ .Values.hubble.relay.retryTimeout }}
sort-buffer-len-max: {{ .Values.hubble.relay.sortBufferLenMax }}
sort-buffer-drain-timeout: {{ .Values.hubble.relay.sortBufferDrainTimeout }}
{{- if .Values.hubble.tls.enabled }}
tls-client-cert-file: /var/lib/hubble-relay/tls/client.crt
tls-client-key-file: /var/lib/hubble-relay/tls/client.key
tls-hubble-server-ca-files: /var/lib/hubble-relay/tls/hubble-server-ca.crt
{{- else }}
disable-client-tls: true
{{- end }}
{{- if and .Values.hubble.tls.enabled .Values.hubble.relay.tls.server.enabled }}
tls-server-cert-file: /var/lib/hubble-relay/tls/server.crt
tls-server-key-file: /var/lib/hubble-relay/tls/server.key
{{- else }}
disable-server-tls: true
{{- end }}
{{- end }}