Kubernetes/k8s-configs
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
c652f4845f2a7cae8b82a5bf32ed8496c86f464d
k8s-configs/clusters/k8s-avroid-office.prod.local/namespaces/cloud-prod/monitoring/postgres-exporter/values-override.yaml
Denis Patrakeev c652f4845f [hotfix] fix config postgres_exporter 10 (!90) 
Co-authored-by: denis.patrakeev <denis.patrakeev@avroid.tech>
Reviewed-on: https://git.avroid.tech/K8s/k8s-configs/pulls/90
2025-03-04 15:01:13 +03:00

73 lines
2.3 KiB
YAML
Raw Blame History

replicaCount: 1
image:
registry: harbor.avroid.tech/quay-proxy
repository: prometheuscommunity/postgres-exporter
automountServiceAccountToken: true
resources:
requests:
cpu: 100m
memory: 128Mi
limits:
cpu: 200m
memory: 256Mi
serviceAccount:
# Specifies whether a ServiceAccount should be created
create: false
# The name of the ServiceAccount to use.
# If not set and create is true, a name is generated using the fullname template
name: vault
config:
## The datasource properties on config are passed through helm tpl function.
## ref: https://helm.sh/docs/developing_charts/#using-the-tpl-function
datasource:
# Specify userFile if DB username is stored in a file.
# For example, to use with vault-injector from Hashicorp
userSecret:
name: postgres-exporter-secret
key: username
# Only one of password, passwordFile, passwordSecret and pgpassfile can be specified
passwordSecret:
name: postgres-exporter-secret
key: password
# postgres_exporter.yml
postgresExporter: |
auth_modules:
pg_monitoring:
type: userpass
userpass:
username: "${DATA_SOURCE_USER}"
password: "${DATA_SOURCE_PASS}"
options:
sslmode: disable
nodeSelector:
node-role.kubernetes.io/worker: ""
annotations:
vault.security.banzaicloud.io/vault-addr: "https://vault.avroid.tech"
vault.security.banzaicloud.io/vault-role: "cloud-prod"
vault.security.banzaicloud.io/vault-skip-verify: "false"
vault.security.banzaicloud.io/vault-path: "avroid-office"
vault.security.banzaicloud.io/run-as-non-root: "true"
vault.security.banzaicloud.io/run-as-user: "1001"
vault.security.banzaicloud.io/run-as-group: "1001"
vault.security.banzaicloud.io/readonly-root-fs: "true"
# Labels and annotations to attach to the deployment resource
deployment:
annotations:
vault.security.banzaicloud.io/vault-addr: "https://vault.avroid.tech"
vault.security.banzaicloud.io/vault-role: "cloud-prod"
vault.security.banzaicloud.io/vault-skip-verify: "false"
vault.security.banzaicloud.io/vault-path: "avroid-office"
vault.security.banzaicloud.io/run-as-non-root: "true"
vault.security.banzaicloud.io/run-as-user: "1001"
vault.security.banzaicloud.io/run-as-group: "1001"
vault.security.banzaicloud.io/readonly-root-fs: "true"
Reference in New Issue View Git Blame Copy Permalink