This repository has been archived by the owner on Jan 21, 2025. It is now read-only.
-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathapp-config.production.yaml
98 lines (91 loc) · 3.36 KB
/
app-config.production.yaml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
app:
# Should be the same as backend.baseUrl when using the `app-backend` plugin.
baseUrl: http://localhost:7007
backend:
# Note that the baseUrl should be the URL that the browser and other clients
# should use when communicating with the backend, i.e. it needs to be
# reachable not just from within the backend host, but from all of your
# callers. When its value is "http://localhost:7007", it's strictly private
# and can't be reached by others.
baseUrl: http://localhost:7007
# The listener can also be expressed as a single <host>:<port> string. In this case we bind to
# all interfaces, the most permissive setting. The right value depends on your specific deployment.
listen:
port: '7007'
csp:
connect-src: ["'self'", 'http:', 'https:']
img-src: ["'self'", 'data:', 'avatars.githubusercontent.com']
frame-src: ['https://grafana.edgefarm.dev']
# config options: https://node-postgres.com/api/client
# database:
# client: better-sqlite3
# connection: ':memory:'
database:
client: pg
connection:
host: ${POSTGRES_HOST}
port: ${POSTGRES_PORT}
user: ${POSTGRES_USER}
password: ${POSTGRES_PASSWORD}
# https://node-postgres.com/features/ssl
# you can set the sslmode configuration option via the `PGSSLMODE` environment variable
# see https://www.postgresql.org/docs/current/libpq-ssl.html Table 33.1. SSL Mode Descriptions (e.g. require)
# ssl:
# ca: # if you have a CA file and want to verify it you can uncomment this section
# $file: <file-path>/ca/server.crt
auth:
# see https://backstage.io/docs/auth/ to learn about auth providers
environment: production
providers:
github:
production:
clientId: ${GITHUB_CLIENT_ID}
clientSecret: ${GITHUB_SECRET}
catalog:
# Overrides the default list locations from app-config.yaml as these contain example data.
# See https://backstage.io/docs/features/software-catalog/software-catalog-overview#adding-components-to-the-catalog for more details
# on how to get entities into the catalog.
locations:
- type: file
target: ./workflows/all.yaml
rules:
- allow: [Template]
- type: url
target: https://github.com/edgefarm-hands-on/backstage-user/blob/main/ci4rail.yaml
rules:
- allow: [User, Group]
proxy:
'/argocd/api':
target: ${ARGOCD_BASEURL}/api/v1/
changeOrigin: true
# only if your argocd api has self-signed cert
secure: true
headers:
Cookie: argocd.token=${ARGOCD_AUTH_TOKEN}
kubernetes:
serviceLocatorMethod:
type: 'multiTenant'
clusterLocatorMethods:
- type: 'config'
clusters:
- url: ${K8S_URL}
name: default
authProvider: 'serviceAccount'
skipTLSVerify: true
skipMetricsLookup: true
serviceAccountToken: ${K8S_SA_TOKEN}
# dashboardUrl: http://127.0.0.1:64713 # url copied from running the command: minikube service kubernetes-dashboard -n kubernetes-dashboard
# dashboardApp: standard
# caData: ${K8S_CONFIG_CA_DATA}
# caFile: '' # local path to CA file
argocd:
baseUrl: ${ARGOCD_BASEURL}
username: ${ARGOCD_USERNAME}
password: ${ARGOCD_PASSWORD}
waitCycles: 25
appLocatorMethods:
- type: 'config'
instances:
- name: argocd
url: ${ARGOCD_BASEURL}
token: ${ARGOCD_AUTH_TOKEN}