Merge pull request #9528 from Rory-Z/release-50
chore: helm chart support externalTrafficPolicy
This commit is contained in:
Rory
GitHub
commit
faafeba2cd
|
|
@ -32,6 +32,8 @@ Please note, the request body of `/bridges` API to configure MQTT brdige is chan
|
||||||
|
|
||||||
- Upgrade dashboard to [v1.1.3](https://github.com/emqx/emqx-dashboard-web-new/releases/tag/v1.1.3).
|
- Upgrade dashboard to [v1.1.3](https://github.com/emqx/emqx-dashboard-web-new/releases/tag/v1.1.3).
|
||||||
|
|
||||||
|
- Users can define the `externalTrafficPolicy` of service in EMQX Helm Chart [#9527](https://github.com/emqx/emqx/pull/9527).
|
||||||
|
|
||||||
## Bug fixes
|
## Bug fixes
|
||||||
|
|
||||||
- Fix that the obsolete SSL files aren't deleted after the ExHook config update [#9432](https://github.com/emqx/emqx/pull/9432).
|
- Fix that the obsolete SSL files aren't deleted after the ExHook config update [#9432](https://github.com/emqx/emqx/pull/9432).
|
||||||
|
|
|
||||||
|
|
@ -31,6 +31,8 @@ v5.0.11 或更早版本创建的配置文件,在新版本中会被自动转换
|
||||||
|
|
||||||
- Dashboard 更新到 [v1.1.3](https://github.com/emqx/emqx-dashboard-web-new/releases/tag/v1.1.3)。
|
- Dashboard 更新到 [v1.1.3](https://github.com/emqx/emqx-dashboard-web-new/releases/tag/v1.1.3)。
|
||||||
|
|
||||||
|
- 用户可以在 EMQX Helm Chart 中自定义 service 资源的 `externalTrafficPolicy` [#9527](https://github.com/emqx/emqx/pull/9527)。
|
||||||
|
|
||||||
## 修复
|
## 修复
|
||||||
|
|
||||||
- 修复 ExHook 更新 SSL 相关配置后,过时的 SSL 文件没有被删除的问题 [#9432](https://github.com/emqx/emqx/pull/9432)。
|
- 修复 ExHook 更新 SSL 相关配置后,过时的 SSL 文件没有被删除的问题 [#9432](https://github.com/emqx/emqx/pull/9432)。
|
||||||
|
|
|
||||||
|
|
@ -37,63 +37,64 @@ $ helm del my-emqx
|
||||||
|
|
||||||
The following table lists the configurable parameters of the emqx chart and their default values.
|
The following table lists the configurable parameters of the emqx chart and their default values.
|
||||||
|
|
||||||
| Parameter | Description | Default Value |
|
| Parameter | Description | Default Value |
|
||||||
|--------------------------------------|--------------------------------------------------------------------------------------------------------------------------------------------------------------|---------------------------------------------------------|
|
|--------------------------------------|--------------------------------------------------------------------------------------------------------------------------------------------------------------|---------------------------------------------------------|
|
||||||
| `replicaCount` | It is recommended to have odd number of nodes in a cluster, otherwise the emqx cluster cannot be automatically healed in case of net-split. | 3 |
|
| `replicaCount` | It is recommended to have odd number of nodes in a cluster, otherwise the emqx cluster cannot be automatically healed in case of net-split. | 3 |
|
||||||
| `image.repository` | EMQX Image name | emqx/emqx |
|
| `image.repository` | EMQX Image name | `emqx/emqx-enterprise` |
|
||||||
| `image.pullPolicy` | The image pull policy | IfNotPresent |
|
| `image.pullPolicy` | The image pull policy | IfNotPresent |
|
||||||
| `image.pullSecrets ` | The image pull secrets | `[]` (does not add image pull secrets to deployed pods) |
|
| `image.pullSecrets ` | The image pull secrets | `[]` (does not add image pull secrets to deployed pods) |
|
||||||
| `envFromSecret` | The name pull a secret in the same kubernetes namespace which contains values that will be added to the environment | nil |
|
| `envFromSecret` | The name pull a secret in the same kubernetes namespace which contains values that will be added to the environment | nil |
|
||||||
| `recreatePods` | Forces the recreation of pods during upgrades, which can be useful to always apply the most recent configuration. | false |
|
| `recreatePods` | Forces the recreation of pods during upgrades, which can be useful to always apply the most recent configuration. | false |
|
||||||
| `podAnnotations ` | Annotations for pod | `{}` |
|
| `podAnnotations ` | Annotations for pod | `{}` |
|
||||||
| `podManagementPolicy` | To redeploy a chart with existing PVC(s), the value must be set to Parallel to avoid deadlock | `Parallel` |
|
| `podManagementPolicy` | To redeploy a chart with existing PVC(s), the value must be set to Parallel to avoid deadlock | `Parallel` |
|
||||||
| `persistence.enabled` | Enable EMQX persistence using PVC | false |
|
| `persistence.enabled` | Enable EMQX persistence using PVC | false |
|
||||||
| `persistence.storageClass` | Storage class of backing PVC | `nil` (uses alpha storage class annotation) |
|
| `persistence.storageClass` | Storage class of backing PVC | `nil` (uses alpha storage class annotation) |
|
||||||
| `persistence.existingClaim` | EMQX data Persistent Volume existing claim name, evaluated as a template | "" |
|
| `persistence.existingClaim` | EMQX data Persistent Volume existing claim name, evaluated as a template | "" |
|
||||||
| `persistence.accessMode` | PVC Access Mode for EMQX volume | ReadWriteOnce |
|
| `persistence.accessMode` | PVC Access Mode for EMQX volume | ReadWriteOnce |
|
||||||
| `persistence.size` | PVC Storage Request for EMQX volume | 20Mi |
|
| `persistence.size` | PVC Storage Request for EMQX volume | 20Mi |
|
||||||
| `initContainers` | Containers that run before the creation of EMQX containers. They can contain utilities or setup scripts. | `{}` |
|
| `initContainers` | Containers that run before the creation of EMQX containers. They can contain utilities or setup scripts. | `{}` |
|
||||||
| `resources` | CPU/Memory resource requests/limits | {} |
|
| `resources` | CPU/Memory resource requests/limits | {} |
|
||||||
| `nodeSelector` | Node labels for pod assignment | `{}` |
|
| `nodeSelector` | Node labels for pod assignment | `{}` |
|
||||||
| `tolerations` | Toleration labels for pod assignment | `[]` |
|
| `tolerations` | Toleration labels for pod assignment | `[]` |
|
||||||
| `affinity` | Map of node/pod affinities | `{}` |
|
| `affinity` | Map of node/pod affinities | `{}` |
|
||||||
| `service.type` | Kubernetes Service type. | ClusterIP |
|
| `service.type` | Kubernetes Service type. | ClusterIP |
|
||||||
| `service.mqtt` | Port for MQTT. | 1883 |
|
| `service.mqtt` | Port for MQTT. | 1883 |
|
||||||
| `service.mqttssl` | Port for MQTT(SSL). | 8883 |
|
| `service.mqttssl` | Port for MQTT(SSL). | 8883 |
|
||||||
| `service.ws` | Port for WebSocket/HTTP. | 8083 |
|
| `service.ws` | Port for WebSocket/HTTP. | 8083 |
|
||||||
| `service.wss` | Port for WSS/HTTPS. | 8084 |
|
| `service.wss` | Port for WSS/HTTPS. | 8084 |
|
||||||
| `service.dashboard` | Port for dashboard and API. | 18083 |
|
| `service.dashboard` | Port for dashboard and API. | 18083 |
|
||||||
| `service.nodePorts.mqtt` | Kubernetes node port for MQTT. | nil |
|
| `service.nodePorts.mqtt` | Kubernetes node port for MQTT. | nil |
|
||||||
| `service.nodePorts.mqttssl` | Kubernetes node port for MQTT(SSL). | nil |
|
| `service.nodePorts.mqttssl` | Kubernetes node port for MQTT(SSL). | nil |
|
||||||
| `service.nodePorts.mgmt` | Kubernetes node port for mgmt API. | nil |
|
| `service.nodePorts.mgmt` | Kubernetes node port for mgmt API. | nil |
|
||||||
| `service.nodePorts.ws` | Kubernetes node port for WebSocket/HTTP. | nil |
|
| `service.nodePorts.ws` | Kubernetes node port for WebSocket/HTTP. | nil |
|
||||||
| `service.nodePorts.wss` | Kubernetes node port for WSS/HTTPS. | nil |
|
| `service.nodePorts.wss` | Kubernetes node port for WSS/HTTPS. | nil |
|
||||||
| `service.nodePorts.dashboard` | Kubernetes node port for dashboard. | nil |
|
| `service.nodePorts.dashboard` | Kubernetes node port for dashboard. | nil |
|
||||||
| `service.loadBalancerIP` | loadBalancerIP for Service | nil |
|
| `service.loadBalancerIP` | loadBalancerIP for Service | nil |
|
||||||
| `service.loadBalancerSourceRanges` | Address(es) that are allowed when service is LoadBalancer | [] |
|
| `service.loadBalancerSourceRanges` | Address(es) that are allowed when service is LoadBalancer | [] |
|
||||||
| `service.externalIPs` | ExternalIPs for the service | [] |
|
| `service.externalIPs` | ExternalIPs for the service | [] |
|
||||||
| `service.annotations` | Service annotations | {}(evaluated as a template) |
|
`service.externalTrafficPolicy` | External Traffic Policy for the service | `Cluster`
|
||||||
| `ingress.dashboard.enabled` | Enable ingress for EMQX Dashboard | false |
|
| `service.annotations` | Service annotations | {}(evaluated as a template) |
|
||||||
| `ingress.dashboard.ingressClassName` | Set the ingress class for EMQX Dashboard | |
|
| `ingress.dashboard.enabled` | Enable ingress for EMQX Dashboard | false |
|
||||||
| `ingress.dashboard.path` | Ingress path for EMQX Dashboard | / |
|
| `ingress.dashboard.ingressClassName` | Set the ingress class for EMQX Dashboard | |
|
||||||
| `ingress.dashboard.pathType` | Ingress pathType for EMQX Dashboard | `ImplementationSpecific` |
|
| `ingress.dashboard.path` | Ingress path for EMQX Dashboard | / |
|
||||||
| `ingress.dashboard.hosts` | Ingress hosts for EMQX Mgmt API | dashboard.emqx.local |
|
| `ingress.dashboard.pathType` | Ingress pathType for EMQX Dashboard | `ImplementationSpecific` |
|
||||||
| `ingress.dashboard.tls` | Ingress tls for EMQX Mgmt API | [] |
|
| `ingress.dashboard.hosts` | Ingress hosts for EMQX Mgmt API | dashboard.emqx.local |
|
||||||
| `ingress.dashboard.annotations` | Ingress annotations for EMQX Mgmt API | {} |
|
| `ingress.dashboard.tls` | Ingress tls for EMQX Mgmt API | [] |
|
||||||
| `ingress.mgmt.enabled` | Enable ingress for EMQX Mgmt API | false |
|
| `ingress.dashboard.annotations` | Ingress annotations for EMQX Mgmt API | {} |
|
||||||
| `ingress.dashboard.ingressClassName` | Set the ingress class for EMQX Mgmt API | |
|
| `ingress.mgmt.enabled` | Enable ingress for EMQX Mgmt API | false |
|
||||||
| `ingress.mgmt.path` | Ingress path for EMQX Mgmt API | / |
|
| `ingress.dashboard.ingressClassName` | Set the ingress class for EMQX Mgmt API | |
|
||||||
| `ingress.mgmt.hosts` | Ingress hosts for EMQX Mgmt API | api.emqx.local |
|
| `ingress.mgmt.path` | Ingress path for EMQX Mgmt API | / |
|
||||||
| `ingress.mgmt.tls` | Ingress tls for EMQX Mgmt API | [] |
|
| `ingress.mgmt.hosts` | Ingress hosts for EMQX Mgmt API | api.emqx.local |
|
||||||
| `ingress.mgmt.annotations` | Ingress annotations for EMQX Mgmt API | {} |
|
| `ingress.mgmt.tls` | Ingress tls for EMQX Mgmt API | [] |
|
||||||
| `metrics.enable` | If set to true, [prometheus-operator](https://github.com/prometheus-operator/prometheus-operator) needs to be installed, and emqx_prometheus needs to enable | false |
|
| `ingress.mgmt.annotations` | Ingress annotations for EMQX Mgmt API | {} |
|
||||||
| `metrics.type` | Now we only supported "prometheus" | "prometheus" |
|
| `metrics.enable` | If set to true, [prometheus-operator](https://github.com/prometheus-operator/prometheus-operator) needs to be installed, and emqx_prometheus needs to enable | false |
|
||||||
| `ssl.enabled` | Enable SSL support | false |
|
| `metrics.type` | Now we only supported "prometheus" | "prometheus" |
|
||||||
| `ssl.useExisting` | Use existing certificate or let cert-manager generate one | false |
|
| `ssl.enabled` | Enable SSL support | false |
|
||||||
| `ssl.existingName` | Name of existing certificate | emqx-tls |
|
| `ssl.useExisting` | Use existing certificate or let cert-manager generate one | false |
|
||||||
| `ssl.dnsnames` | DNS name(s) for certificate to be generated | {} |
|
| `ssl.existingName` | Name of existing certificate | emqx-tls |
|
||||||
| `ssl.issuer.name` | Issuer name for certificate generation | letsencrypt-dns |
|
| `ssl.dnsnames` | DNS name(s) for certificate to be generated | {} |
|
||||||
| `ssl.issuer.kind` | Issuer kind for certificate generation | ClusterIssuer |
|
| `ssl.issuer.name` | Issuer name for certificate generation | letsencrypt-dns |
|
||||||
|
| `ssl.issuer.kind` | Issuer kind for certificate generation | ClusterIssuer |
|
||||||
|
|
||||||
## EMQX specific settings
|
## EMQX specific settings
|
||||||
|
|
||||||
|
|
|
||||||
|
|
@ -14,6 +14,9 @@ metadata:
|
||||||
{{- end }}
|
{{- end }}
|
||||||
spec:
|
spec:
|
||||||
type: {{ .Values.service.type }}
|
type: {{ .Values.service.type }}
|
||||||
|
{{- if or (eq .Values.service.type "LoadBalancer") (eq .Values.service.type "NodePort") }}
|
||||||
|
externalTrafficPolicy: {{ .Values.service.externalTrafficPolicy | default "Cluster" }}
|
||||||
|
{{- end }}
|
||||||
{{- if eq .Values.service.type "LoadBalancer" }}
|
{{- if eq .Values.service.type "LoadBalancer" }}
|
||||||
{{- if .Values.service.loadBalancerIP }}
|
{{- if .Values.service.loadBalancerIP }}
|
||||||
loadBalancerIP: {{ .Values.service.loadBalancerIP }}
|
loadBalancerIP: {{ .Values.service.loadBalancerIP }}
|
||||||
|
|
|
||||||
|
|
@ -149,6 +149,12 @@ service:
|
||||||
## Set the ExternalIPs
|
## Set the ExternalIPs
|
||||||
##
|
##
|
||||||
externalIPs: []
|
externalIPs: []
|
||||||
|
## Denotes if this Service desires to route external traffic to node-local or cluster-wide endpoints.
|
||||||
|
## There are two available options: Cluster (default) and Local.
|
||||||
|
## Cluster obscures the client source IP and may cause a second hop to another node, but should have good overall load-spreading.
|
||||||
|
## Local preserves the client source IP and avoids a second hop for LoadBalancer and NodePort type Services, but risks potentially imbalanced traffic spreading.
|
||||||
|
##
|
||||||
|
externalTrafficPolicy: "Cluster"
|
||||||
## Provide any additional annotations which may be required. Evaluated as a template
|
## Provide any additional annotations which may be required. Evaluated as a template
|
||||||
##
|
##
|
||||||
annotations: {}
|
annotations: {}
|
||||||
|
|
|
||||||
|
|
@ -37,63 +37,64 @@ $ helm del my-emqx
|
||||||
|
|
||||||
The following table lists the configurable parameters of the emqx chart and their default values.
|
The following table lists the configurable parameters of the emqx chart and their default values.
|
||||||
|
|
||||||
| Parameter | Description | Default Value |
|
| Parameter | Description | Default Value |
|
||||||
|--------------------------------------|--------------------------------------------------------------------------------------------------------------------------------------------------------------|---------------------------------------------------------|
|
|--------------------------------------|--------------------------------------------------------------------------------------------------------------------------------------------------------------|---------------------------------------------------------|
|
||||||
| `replicaCount` | It is recommended to have odd number of nodes in a cluster, otherwise the emqx cluster cannot be automatically healed in case of net-split. | 3 |
|
| `replicaCount` | It is recommended to have odd number of nodes in a cluster, otherwise the emqx cluster cannot be automatically healed in case of net-split. | 3 |
|
||||||
| `image.repository` | EMQX Image name | emqx/emqx |
|
| `image.repository` | EMQX Image name | emqx/emqx |
|
||||||
| `image.pullPolicy` | The image pull policy | IfNotPresent |
|
| `image.pullPolicy` | The image pull policy | IfNotPresent |
|
||||||
| `image.pullSecrets ` | The image pull secrets | `[]` (does not add image pull secrets to deployed pods) |
|
| `image.pullSecrets ` | The image pull secrets | `[]` (does not add image pull secrets to deployed pods) |
|
||||||
| `envFromSecret` | The name pull a secret in the same kubernetes namespace which contains values that will be added to the environment | nil |
|
| `envFromSecret` | The name pull a secret in the same kubernetes namespace which contains values that will be added to the environment | nil |
|
||||||
| `recreatePods` | Forces the recreation of pods during upgrades, which can be useful to always apply the most recent configuration. | false |
|
| `recreatePods` | Forces the recreation of pods during upgrades, which can be useful to always apply the most recent configuration. | false |
|
||||||
| `podAnnotations ` | Annotations for pod | `{}` |
|
| `podAnnotations ` | Annotations for pod | `{}` |
|
||||||
| `podManagementPolicy` | To redeploy a chart with existing PVC(s), the value must be set to Parallel to avoid deadlock | `Parallel` |
|
| `podManagementPolicy` | To redeploy a chart with existing PVC(s), the value must be set to Parallel to avoid deadlock | `Parallel` |
|
||||||
| `persistence.enabled` | Enable EMQX persistence using PVC | false |
|
| `persistence.enabled` | Enable EMQX persistence using PVC | false |
|
||||||
| `persistence.storageClass` | Storage class of backing PVC | `nil` (uses alpha storage class annotation) |
|
| `persistence.storageClass` | Storage class of backing PVC | `nil` (uses alpha storage class annotation) |
|
||||||
| `persistence.existingClaim` | EMQX data Persistent Volume existing claim name, evaluated as a template | "" |
|
| `persistence.existingClaim` | EMQX data Persistent Volume existing claim name, evaluated as a template | "" |
|
||||||
| `persistence.accessMode` | PVC Access Mode for EMQX volume | ReadWriteOnce |
|
| `persistence.accessMode` | PVC Access Mode for EMQX volume | ReadWriteOnce |
|
||||||
| `persistence.size` | PVC Storage Request for EMQX volume | 20Mi |
|
| `persistence.size` | PVC Storage Request for EMQX volume | 20Mi |
|
||||||
| `initContainers` | Containers that run before the creation of EMQX containers. They can contain utilities or setup scripts. | `{}` |
|
| `initContainers` | Containers that run before the creation of EMQX containers. They can contain utilities or setup scripts. | `{}` |
|
||||||
| `resources` | CPU/Memory resource requests/limits | {} |
|
| `resources` | CPU/Memory resource requests/limits | {} |
|
||||||
| `nodeSelector` | Node labels for pod assignment | `{}` |
|
| `nodeSelector` | Node labels for pod assignment | `{}` |
|
||||||
| `tolerations` | Toleration labels for pod assignment | `[]` |
|
| `tolerations` | Toleration labels for pod assignment | `[]` |
|
||||||
| `affinity` | Map of node/pod affinities | `{}` |
|
| `affinity` | Map of node/pod affinities | `{}` |
|
||||||
| `service.type` | Kubernetes Service type. | ClusterIP |
|
| `service.type` | Kubernetes Service type. | ClusterIP |
|
||||||
| `service.mqtt` | Port for MQTT. | 1883 |
|
| `service.mqtt` | Port for MQTT. | 1883 |
|
||||||
| `service.mqttssl` | Port for MQTT(SSL). | 8883 |
|
| `service.mqttssl` | Port for MQTT(SSL). | 8883 |
|
||||||
| `service.ws` | Port for WebSocket/HTTP. | 8083 |
|
| `service.ws` | Port for WebSocket/HTTP. | 8083 |
|
||||||
| `service.wss` | Port for WSS/HTTPS. | 8084 |
|
| `service.wss` | Port for WSS/HTTPS. | 8084 |
|
||||||
| `service.dashboard` | Port for dashboard and API. | 18083 |
|
| `service.dashboard` | Port for dashboard and API. | 18083 |
|
||||||
| `service.nodePorts.mqtt` | Kubernetes node port for MQTT. | nil |
|
| `service.nodePorts.mqtt` | Kubernetes node port for MQTT. | nil |
|
||||||
| `service.nodePorts.mqttssl` | Kubernetes node port for MQTT(SSL). | nil |
|
| `service.nodePorts.mqttssl` | Kubernetes node port for MQTT(SSL). | nil |
|
||||||
| `service.nodePorts.mgmt` | Kubernetes node port for mgmt API. | nil |
|
| `service.nodePorts.mgmt` | Kubernetes node port for mgmt API. | nil |
|
||||||
| `service.nodePorts.ws` | Kubernetes node port for WebSocket/HTTP. | nil |
|
| `service.nodePorts.ws` | Kubernetes node port for WebSocket/HTTP. | nil |
|
||||||
| `service.nodePorts.wss` | Kubernetes node port for WSS/HTTPS. | nil |
|
| `service.nodePorts.wss` | Kubernetes node port for WSS/HTTPS. | nil |
|
||||||
| `service.nodePorts.dashboard` | Kubernetes node port for dashboard. | nil |
|
| `service.nodePorts.dashboard` | Kubernetes node port for dashboard. | nil |
|
||||||
| `service.loadBalancerIP` | loadBalancerIP for Service | nil |
|
| `service.loadBalancerIP` | loadBalancerIP for Service | nil |
|
||||||
| `service.loadBalancerSourceRanges` | Address(es) that are allowed when service is LoadBalancer | [] |
|
| `service.loadBalancerSourceRanges` | Address(es) that are allowed when service is LoadBalancer | [] |
|
||||||
| `service.externalIPs` | ExternalIPs for the service | [] |
|
| `service.externalIPs` | ExternalIPs for the service | [] |
|
||||||
| `service.annotations` | Service annotations | {}(evaluated as a template) |
|
`service.externalTrafficPolicy` | External Traffic Policy for the service | `Cluster`
|
||||||
| `ingress.dashboard.enabled` | Enable ingress for EMQX Dashboard | false |
|
| `service.annotations` | Service annotations | {}(evaluated as a template) |
|
||||||
| `ingress.dashboard.ingressClassName` | Set the ingress class for EMQX Dashboard | |
|
| `ingress.dashboard.enabled` | Enable ingress for EMQX Dashboard | false |
|
||||||
| `ingress.dashboard.path` | Ingress path for EMQX Dashboard | / |
|
| `ingress.dashboard.ingressClassName` | Set the ingress class for EMQX Dashboard | |
|
||||||
| `ingress.dashboard.pathType` | Ingress pathType for EMQX Dashboard | `ImplementationSpecific` |
|
| `ingress.dashboard.path` | Ingress path for EMQX Dashboard | / |
|
||||||
| `ingress.dashboard.hosts` | Ingress hosts for EMQX Mgmt API | dashboard.emqx.local |
|
| `ingress.dashboard.pathType` | Ingress pathType for EMQX Dashboard | `ImplementationSpecific` |
|
||||||
| `ingress.dashboard.tls` | Ingress tls for EMQX Mgmt API | [] |
|
| `ingress.dashboard.hosts` | Ingress hosts for EMQX Mgmt API | dashboard.emqx.local |
|
||||||
| `ingress.dashboard.annotations` | Ingress annotations for EMQX Mgmt API | {} |
|
| `ingress.dashboard.tls` | Ingress tls for EMQX Mgmt API | [] |
|
||||||
| `ingress.mgmt.enabled` | Enable ingress for EMQX Mgmt API | false |
|
| `ingress.dashboard.annotations` | Ingress annotations for EMQX Mgmt API | {} |
|
||||||
| `ingress.dashboard.ingressClassName` | Set the ingress class for EMQX Mgmt API | |
|
| `ingress.mgmt.enabled` | Enable ingress for EMQX Mgmt API | false |
|
||||||
| `ingress.mgmt.path` | Ingress path for EMQX Mgmt API | / |
|
| `ingress.dashboard.ingressClassName` | Set the ingress class for EMQX Mgmt API | |
|
||||||
| `ingress.mgmt.hosts` | Ingress hosts for EMQX Mgmt API | api.emqx.local |
|
| `ingress.mgmt.path` | Ingress path for EMQX Mgmt API | / |
|
||||||
| `ingress.mgmt.tls` | Ingress tls for EMQX Mgmt API | [] |
|
| `ingress.mgmt.hosts` | Ingress hosts for EMQX Mgmt API | api.emqx.local |
|
||||||
| `ingress.mgmt.annotations` | Ingress annotations for EMQX Mgmt API | {} |
|
| `ingress.mgmt.tls` | Ingress tls for EMQX Mgmt API | [] |
|
||||||
| `metrics.enable` | If set to true, [prometheus-operator](https://github.com/prometheus-operator/prometheus-operator) needs to be installed, and emqx_prometheus needs to enable | false |
|
| `ingress.mgmt.annotations` | Ingress annotations for EMQX Mgmt API | {} |
|
||||||
| `metrics.type` | Now we only supported "prometheus" | "prometheus" |
|
| `metrics.enable` | If set to true, [prometheus-operator](https://github.com/prometheus-operator/prometheus-operator) needs to be installed, and emqx_prometheus needs to enable | false |
|
||||||
| `ssl.enabled` | Enable SSL support | false |
|
| `metrics.type` | Now we only supported "prometheus" | "prometheus" |
|
||||||
| `ssl.useExisting` | Use existing certificate or let cert-manager generate one | false |
|
| `ssl.enabled` | Enable SSL support | false |
|
||||||
| `ssl.existingName` | Name of existing certificate | emqx-tls |
|
| `ssl.useExisting` | Use existing certificate or let cert-manager generate one | false |
|
||||||
| `ssl.dnsnames` | DNS name(s) for certificate to be generated | {} |
|
| `ssl.existingName` | Name of existing certificate | emqx-tls |
|
||||||
| `ssl.issuer.name` | Issuer name for certificate generation | letsencrypt-dns |
|
| `ssl.dnsnames` | DNS name(s) for certificate to be generated | {} |
|
||||||
| `ssl.issuer.kind` | Issuer kind for certificate generation | ClusterIssuer |
|
| `ssl.issuer.name` | Issuer name for certificate generation | letsencrypt-dns |
|
||||||
|
| `ssl.issuer.kind` | Issuer kind for certificate generation | ClusterIssuer |
|
||||||
|
|
||||||
## EMQX specific settings
|
## EMQX specific settings
|
||||||
|
|
||||||
|
|
|
||||||
|
|
@ -14,6 +14,9 @@ metadata:
|
||||||
{{- end }}
|
{{- end }}
|
||||||
spec:
|
spec:
|
||||||
type: {{ .Values.service.type }}
|
type: {{ .Values.service.type }}
|
||||||
|
{{- if or (eq .Values.service.type "LoadBalancer") (eq .Values.service.type "NodePort") }}
|
||||||
|
externalTrafficPolicy: {{ .Values.service.externalTrafficPolicy | default "Cluster" }}
|
||||||
|
{{- end }}
|
||||||
{{- if eq .Values.service.type "LoadBalancer" }}
|
{{- if eq .Values.service.type "LoadBalancer" }}
|
||||||
{{- if .Values.service.loadBalancerIP }}
|
{{- if .Values.service.loadBalancerIP }}
|
||||||
loadBalancerIP: {{ .Values.service.loadBalancerIP }}
|
loadBalancerIP: {{ .Values.service.loadBalancerIP }}
|
||||||
|
|
|
||||||
|
|
@ -149,6 +149,12 @@ service:
|
||||||
## Set the ExternalIPs
|
## Set the ExternalIPs
|
||||||
##
|
##
|
||||||
externalIPs: []
|
externalIPs: []
|
||||||
|
## Denotes if this Service desires to route external traffic to node-local or cluster-wide endpoints.
|
||||||
|
## There are two available options: Cluster (default) and Local.
|
||||||
|
## Cluster obscures the client source IP and may cause a second hop to another node, but should have good overall load-spreading.
|
||||||
|
## Local preserves the client source IP and avoids a second hop for LoadBalancer and NodePort type Services, but risks potentially imbalanced traffic spreading.
|
||||||
|
##
|
||||||
|
externalTrafficPolicy: "Cluster"
|
||||||
## Provide any additional annotations which may be required. Evaluated as a template
|
## Provide any additional annotations which may be required. Evaluated as a template
|
||||||
##
|
##
|
||||||
annotations: {}
|
annotations: {}
|
||||||
|
|
|
||||||
Loading…
Reference in New Issue