-
Notifications
You must be signed in to change notification settings - Fork 0
/
values.yaml
119 lines (98 loc) · 2.37 KB
/
values.yaml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
# Default values for openvas.
# This is a YAML-formatted file.
# Declare variables to be passed into your templates.
hostname: openvas.example.com
psgvm:
image:
repository: greenbone/pg-gvm
tag: stable
# 4 Errors.
# 8 Critical situation.
# 16 Warnings.
# 32 Messages.
# 64 Information.
#128 Debug. (Lots of output.)
logLevel: 16
ospdOpenvas:
resources:
requests:
cpu: '3'
memory: 250Mi
gvmd:
# https://github.com/greenbone/docs/blob/main/src/22.4/container/workflows.md?plain=1#L336
# env:
# MTA_HOST: "smtp.gmail.com"
# MTA_PORT: 587
# MTA_TLS: "on"
# MTA_STARTTLS: "on"
# MTA_AUTH: "on"
# MTA_USER: "<username>"
# MTA_FROM: "<username>@gmail.com"
# existingSecret: "gvmd-secrets"
cert:
issuerRef:
group: certmanager.step.sm
kind: ClusterIssuer
name: default
duration: 730h
renewBefore: 72h
ingress:
enabled: true
annotations:
"kubernetes.io/ingress.class": "traefik"
"traefik.ingress.kubernetes.io/router.entrypoints": "websecure"
"traefik.ingress.kubernetes.io/router.tls": "true"
hosts:
- host: openvas.example.com
tls:
- secretName: openvas-ingress-tls-pki
hosts:
- openvas.example.com
fullnameOverride: ""
nameOverride: ""
namespaceOverride: ""
persistence:
enabled: true
storageClass: "default"
accessMode: ReadWriteOnce
size: 25Gi
serviceAccount:
# Specifies whether a service account should be created
create: true
# Annotations to add to the service account
annotations: {}
# The name of the service account to use.
# If not set and create is true, a name is generated using the fullname template
name: "openvas-serviceaccount"
podAnnotations: {}
podSecurityContext:
runAsUser: 0
securityContext:
fsGroup: 0
runAsUser: 0
service:
type: ClusterIP
readinessProbe:
# failureThreshold: 3
# httpGet:
# path: /health
# port: 80
# scheme: HTTP
# initialDelaySeconds: 5
# periodSeconds: 2
# successThreshold: 2
# timeoutSeconds: 2
livenessProbe:
# failureThreshold: 3
# httpGet:
# path: /health
# port: 80
# scheme: HTTP
# initialDelaySeconds: 5
# periodSeconds: 2
# successThreshold: 1
# timeoutSeconds: 2
nodeSelector: {}
tolerations: []
affinity: {}
topologySpreadConstraints: []