diff --git a/README.md b/README.md index e440b2a9..b738cf6f 100644 --- a/README.md +++ b/README.md @@ -33,7 +33,7 @@ Supported versions: | Cloud Pak | Version | Installation mode | | ----------|---------|-------------------| | Cloud Pak for Business Automation | [23.0.1](https://www.ibm.com/docs/en/cloud-paks/cp-biz-automation/23.0.1) | Multi-pattern starter deployment | -| Cloud Pak for Data | [4.8.0](https://www.ibm.com/docs/en/cloud-paks/cp-data/4.8.x?topic=overview) | Online, specialized installation | +| Cloud Pak for Data | [4.8.2](https://www.ibm.com/docs/en/cloud-paks/cp-data/4.8.x?topic=overview) | Online, specialized installation | | Cloud Pak for Integration | [2023.4](https://www.ibm.com/docs/en/cloud-paks/cp-integration/2023.4) | Online installation | | Cloud Pak for Security | [1.10.15](https://www.ibm.com/docs/en/cloud-paks/cp-security/1.10) | Online installation | | Cloud Pak for AIOps\* | [4.3.0](https://www.ibm.com/docs/en/cloud-paks/cloud-pak-watson-aiops/4.3.0) | Starter Installation | diff --git a/config/argocd-cloudpaks/cp4d/values.yaml b/config/argocd-cloudpaks/cp4d/values.yaml index a1d2b408..b0edecfe 100644 --- a/config/argocd-cloudpaks/cp4d/values.yaml +++ b/config/argocd-cloudpaks/cp4d/values.yaml @@ -23,4 +23,4 @@ image_arch: "" # image_arch: .s390x # image_arch: .ppc64le -version: 4.8.0 +version: 4.8.2 diff --git a/config/cloudpaks/cp-shared/operators/templates/0050-sync-cluster-scoped-operators.yaml b/config/cloudpaks/cp-shared/operators/templates/0050-sync-cluster-scoped-operators.yaml index 1bfec487..81aa2867 100644 --- a/config/cloudpaks/cp-shared/operators/templates/0050-sync-cluster-scoped-operators.yaml +++ b/config/cloudpaks/cp-shared/operators/templates/0050-sync-cluster-scoped-operators.yaml @@ -25,6 +25,12 @@ spec: value: {{.Values.metadata.ibm_cert_manager_operator_group}} - name: IBM_CERT_MANAGER_CHANNEL value: {{.Values.metadata.ibm_cert_manager_channel}} + - name: IBM_LICENSE_MANAGER_NAMESPACE + value: {{.Values.metadata.ibm_license_manager_namespace}} + - name: IBM_LICENSE_MANAGER_OPERATOR_GROUP + value: {{.Values.metadata.ibm_license_manager_operator_group}} + - name: IBM_LICENSE_MANAGER_CHANNEL + value: {{.Values.metadata.ibm_license_manager_channel}} command: - /bin/sh - -c @@ -90,13 +96,74 @@ spec: -A fi else - echo "ERROR: Unable to ascertain status of cert managers in the cluster." + echo "ERROR: Unable to get status of cert managers in the cluster." fi if [ "${result}" -eq 1 ] ; then echo "ERROR: Unable to locate a running IBM Cert Manager and to install one afterwards." fi + ibm_license_manager_count=$(oc get Subscription.operators.coreos.com \ + -l operators.coreos.com/ibm-cert-manager-operator.ibm-cert-manager \ + -A \ + -o name | wc -l || result=1) + if [ "${result}" == 0 ]; then + if [ "${ibm_license_manager_count}" == "0" ]; then + echo "INFO: Installing IBM Cert Manager." + cat << EOF | oc apply -f - + --- + kind: Namespace + apiVersion: v1 + metadata: + name: ${IBM_LICENSE_MANAGER_NAMESPACE:?} + --- + apiVersion: operators.coreos.com/v1 + kind: OperatorGroup + metadata: + name: ibm-licensing-operator-app + namespace: ${IBM_LICENSE_MANAGER_NAMESPACE:?} + spec: + targetNamespaces: + - ${IBM_LICENSE_MANAGER_NAMESPACE:?} + --- + apiVersion: operators.coreos.com/v1alpha1 + kind: Subscription + metadata: + name: ibm-licensing-operator-app + namespace: ${IBM_LICENSE_MANAGER_NAMESPACE:?} + spec: + channel: v4.2 + installPlanApproval: Automatic + name: ibm-licensing-operator-app + source: ibm-licensing-catalog + sourceNamespace: openshift-marketplace + EOF + + while [ $SECONDS -lt 300 ]; do + oc wait Subscription.operators.coreos.com ibm-licensing-operator-app \ + -n ${IBM_LICENSE_MANAGER_NAMESPACE:?} \ + --for=condition=CatalogSourcesUnhealthy=False \ + && oc wait Subscription.operators.coreos.com ibm-licensing-operator-app \ + -n ${IBM_LICENSE_MANAGER_NAMESPACE:?} \ + --for=jsonpath='{.status.state}'="AtLatestKnown" \ + && echo "INFO: Successfully installed IBM License Manager." \ + && result=0 \ + && break \ + || result=1 + + echo "INFO: Waiting for the subscription to be ready." + sleep 20 + done + else + echo "INFO: IBM License Manager already installed." + oc get Subscription.operators.coreos.com \ + -l operators.coreos.com/ibm-licensing-operator-app.ibm-licensing \ + -A + fi + else + echo "ERROR: Unable to get status of cert managers in the cluster." + fi + exit "${result}" restartPolicy: Never diff --git a/config/cloudpaks/cp-shared/operators/values.yaml b/config/cloudpaks/cp-shared/operators/values.yaml index e5f746c7..75212c0f 100644 --- a/config/cloudpaks/cp-shared/operators/values.yaml +++ b/config/cloudpaks/cp-shared/operators/values.yaml @@ -5,6 +5,9 @@ metadata: ibm_cert_manager_channel: v4.2 ibm_cert_manager_namespace: ibm-cert-manager ibm_cert_manager_operator_group: ibm-cert-manager-operator-group + ibm_license_manager_channel: v4.2 + ibm_license_manager_namespace: ibm-licensing + ibm_license_manager_operator_group: ibm-licensing-operator-app redhat_cert_manager_namespace: cert-manager-operator redhat_cert_manager_operator_group: cert-manager-operator-group serviceaccount: diff --git a/config/cloudpaks/cp4a/operators/templates/0000-catalog-sources.yaml b/config/cloudpaks/cp4a/operators/templates/0000-catalog-sources.yaml new file mode 100644 index 00000000..f4605ecf --- /dev/null +++ b/config/cloudpaks/cp4a/operators/templates/0000-catalog-sources.yaml @@ -0,0 +1,144 @@ +# CP4BA 23.0.2 catalog +apiVersion: operators.coreos.com/v1alpha1 +kind: CatalogSource +metadata: + name: ibm-cp4a-operator-catalog + namespace: openshift-marketplace +spec: + displayName: ibm-cp4a-operator + publisher: IBM + sourceType: grpc + image: icr.io/cpopen/ibm-cp-automation-catalog@sha256:14a5064116fcc69b64336888a61578054bcadbdaa73fb9ab8e5002070713875a + updateStrategy: + registryPoll: + interval: 45m +--- +# IBM CS Flink Operator Catalog 1.3.14 +apiVersion: operators.coreos.com/v1alpha1 +kind: CatalogSource +metadata: + name: ibm-cs-flink-operator-catalog + namespace: openshift-marketplace +spec: + displayName: IBM CS Flink Operator + publisher: IBM + sourceType: grpc + image: icr.io/cpopen/ibm-cs-flink-operator-catalog@sha256:732e3afb4c43bb3367175c0e2d4461faed9a29eb1ba47c63875efdcb7d6ae54f + updateStrategy: + registryPoll: + interval: 45m + priority: 100 +--- +# IBM CS Elastic Operator Catalog 1.3.14 +apiVersion: operators.coreos.com/v1alpha1 +kind: CatalogSource +metadata: + name: ibm-cs-elastic-operator-catalog + namespace: openshift-marketplace +spec: + displayName: IBM CS Elastic Search Operator + publisher: IBM + sourceType: grpc + image: icr.io/cpopen/ibm-cs-elastic-operator-catalog@sha256:a41ad89177f39a200f666310d7505848c7953965db08017a97781c5d51f78642 + updateStrategy: + registryPoll: + interval: 45m + priority: 100 +--- +# IBM Certificate Manager 4.2 +apiVersion: operators.coreos.com/v1alpha1 +kind: CatalogSource +metadata: + name: ibm-cert-manager-catalog + namespace: openshift-marketplace +spec: + displayName: ibm-cert-manager-4.2.0 + publisher: IBM + sourceType: grpc + image: icr.io/cpopen/ibm-cert-manager-operator-catalog@sha256:95da3736d298d2ac824afd8587b98728e48b0e7270b9304f4e3c76b65f9b8b98 + updateStrategy: + registryPoll: + interval: 45m +--- +# IBM License Manager 4.2 +apiVersion: operators.coreos.com/v1alpha1 +kind: CatalogSource +metadata: + name: ibm-licensing-catalog + namespace: openshift-marketplace +spec: + displayName: ibm-licensing-4.2.0 + publisher: IBM + image: icr.io/cpopen/ibm-licensing-catalog@sha256:210a452d30aa6f996fee80fb35fea0ca7d709fe3c589fb6eaa79ceb0b24a6a4c + sourceType: grpc + updateStrategy: + registryPoll: + interval: 45m +--- +# IBM Cloud Foundational Services 4.2 +apiVersion: operators.coreos.com/v1alpha1 +kind: CatalogSource +metadata: + name: opencloud-operators-v4-2 + namespace: openshift-marketplace + annotations: + bedrock_catalogsource_priority: '1' +spec: + displayName: IBMCS Operators + publisher: IBM + sourceType: grpc + image: icr.io/cpopen/ibm-common-service-catalog@sha256:ef9b76c30ff282d720f9d502a7001164a3f5c62f91843eb56d11da87abea6c1e + updateStrategy: + registryPoll: + interval: 45m + priority: 100 +--- +# IBM Business Teams Service version 3.31.0 +apiVersion: operators.coreos.com/v1alpha1 +kind: CatalogSource +metadata: + name: bts-operator + namespace: openshift-marketplace + annotations: + bedrock_catalogsource_priority: '1' +spec: + displayName: BTS Operator + publisher: IBM + sourceType: grpc + image: icr.io/cpopen/ibm-bts-operator-catalog@sha256:7f9c0a46f589d0e528d894ba9aba5875b208b4c7dfd08a9c040e76a7be61f8d4 + updateStrategy: + registryPoll: + interval: 45m +--- +# Cloud Native PostgresSQL 4.14.0+20230614.093000 +apiVersion: operators.coreos.com/v1alpha1 +kind: CatalogSource +metadata: + name: cloud-native-postgresql-catalog + namespace: openshift-marketplace + annotations: + bedrock_catalogsource_priority: '1' +spec: + displayName: Cloud Native Postgresql Catalog + publisher: IBM + sourceType: grpc + image: icr.io/cpopen/ibm-cpd-cloud-native-postgresql-operator-catalog@sha256:e1f1fcecd58a944d6bb881d62e9d1c5f13cd39d7afdb02533ab64adc85b31d06 + updateStrategy: + registryPoll: + interval: 45m + priority: 100 +--- +# IBM FileNet Content Manager Standalone catalog. +apiVersion: operators.coreos.com/v1alpha1 +kind: CatalogSource +metadata: + name: ibm-fncm-operator-catalog + namespace: openshift-marketplace +spec: + displayName: ibm-fncm-operator + publisher: IBM + sourceType: grpc + image: icr.io/cpopen/ibm-fncm-catalog@sha256:0ecc62f5e9eec5d1e0e58fd510fbb7110a1a175aa834ade2059c170792393863 + updateStrategy: + registryPoll: + interval: 45m diff --git a/config/cloudpaks/cp4a/resources/templates/cluster.yaml b/config/cloudpaks/cp4a/resources/templates/cluster.yaml new file mode 100644 index 00000000..cb816163 --- /dev/null +++ b/config/cloudpaks/cp4a/resources/templates/cluster.yaml @@ -0,0 +1,586 @@ +############################################################################### +## +##Licensed Materials - Property of IBM +## +##(C) Copyright IBM Corp. 2022, 2023. All Rights Reserved. +## +##US Government Users Restricted Rights - Use, duplication or +##disclosure restricted by GSA ADP Schedule Contract with IBM Corp. +## +############################################################################### +apiVersion: icp4a.ibm.com/v1 +kind: ICP4ACluster +metadata: + name: icp4adeploy + labels: + app.kubernetes.io/instance: ibm-dba + app.kubernetes.io/managed-by: ibm-dba + app.kubernetes.io/name: ibm-dba + release: 23.0.2 +spec: + ## CP4A application version + appVersion: 23.0.2 + ## MUST exist, used to accept ibm license, valid value only can be "accept" + ibm_license: accept + ##################################################################################################################### + ## The contents of this template CR file reflect only the specific parameters and configuration + ## settings applicable to the represented ICP4A capability. + ## + ## These values/configuration sections are to be used when manually assembling or updating the main + ## ICP4A CR that is being applied in order to install an ICP4A environment. + ## + ## If you are in the process of preparing a new install of an ICP4A environment, + ## you should merge the required values and configuration sections from this file into the + ## starting point CR template: ibm_cp4a_cr_enterprise_foundation.yaml available in the + ## same location as this template. + ## + ## If you updating an existing ICP4A environment, you should merge the required values and configuration + ## sections from this template in the main ICP4A CR file already applied in the environment. + ## + ###################################################################################################################### + shared_configuration: + ## FileNet Content Manager (FNCM) license and possible values are: user, non-production, and production. + ## This value could be different from the other licenses in the CR. + sc_deployment_fncm_license: "production" + ## Business Automation Workflow (BAW) license and possible values are: user, non-production, and production. + ## This value could be different from the other licenses in the CR. + sc_deployment_baw_license: "production" + ## Use this parameter to specify the license for the CP4A deployment and + ## the possible values are: non-production and production and if not set, the license will + ## be defaulted to production. This value could be different from the other licenses in the CR. + sc_deployment_license: "production" + ## The deployment context, which has a default value of "CP4A". Unless you are instructed to change this value or + ## know the reason to change this value, please leave the default value. + sc_deployment_context: "CP4A" + ## All CP4A components must use/share the same docker image repository. For example, if IBM Entitled Registry is used, then + ## it should be "cp.icr.io". Otherwise, it will be a local docker registry. + sc_image_repository: cp.icr.io + ## Used to sign all CP4A internal certificates for internal services communications. In most cases, this value should not be changed. + ## All CP4A components must use/share the root_ca_secret in order for integration + root_ca_secret: icp4a-root-ca + ## CP4A patterns or capabilities to be deployed. This CR represents the "workflow" pattern + sc_deployment_patterns: "foundation,decisions,workflow" + ## The optional components to be installed if listed here. This is normally populated by the User script based on input from the user. + ## The optional components are: bai,pfs,kafka. Please do not delete baw_authoring, because it determines that this is a Workflow Authoring environment. + ## pfs will bring advanced full text search function to portal and workplace. And the external workplace can be enabled only when pfs is enabled + ## kafka will install a kafka cluster and enable kafka service for workflow authoring + sc_optional_components: "bai,baw_authoring,cmis,decisionCenter,decisionRunner,decisionServerRuntime" + ## The deployment type as selected by the user. Possible values are: Starter and Production. + sc_deployment_type: "Production" + ## The platform to be deployed specified by the user. Possible values are: OCP and other. This is normally populated by the User script + ## based on input from the user. + sc_deployment_platform: "OCP" + # Optional: You can specify a profile size for ODM if different from CloudPak - valid values are small,medium,large - default is small. + # Resources in this file are reflecting small profile ones. + sc_deployment_profile_size: "small" + ## Optional: You can provide your own driver to use your own external database by setting the sc_drivers_url parameter. + ## The sc_driver_url parameter accepts compressed files (in .zip, .tar, .tar.gz, .tar.bz2, or .tar.xz formats) with the following structure: jdbc/db2|oracle|postgresql|sqlserver/driver_files. + # sc_drivers_url: + + ## For ROKS, this is used to enable the creation of ingresses. The default value is "false", which routes will be created. + sc_ingress_enable: false + ## For ROKS Ingress, provide TLS secret name for Ingress controller. If you are not using ROKS, comment out this line. + # sc_ingress_tls_secret_name: + ## If the root certificate authority (CA) key of the external service is not signed by the operator root CA key, provide the TLS certificate of + ## the external service to the component's truststore. + trusted_certificate_list: [] + ## On OCP 3.x and 4.x, the User script will populate these three (3) parameters based on your input for "production" deployment. + ## If you manually deploying without using the User script, then you would provide the different storage classes for the slow, medium + ## and fast storage parameters below. If you only have 1 storage class defined, then you can use that 1 storage class for all 3 parameters. + ## sc_block_storage_classname is for Zen, Zen requires/recommends block storage (RWO) for metastoreDB + storage_configuration: + sc_slow_file_storage_classname: "rook-cephfs" + sc_medium_file_storage_classname: "rook-cephfs" + sc_fast_file_storage_classname: "rook-cephfs" + sc_block_storage_classname: "rook-ceph-block" + # sc_common_service: + # ## common service operator namespace for CS4.0 + # operator_namespace: "" + # ## common service service namespace for CS4.0 + # services_namespace: "" + ## IAM Settings + sc_iam: + ## Provide non default admin user for IAM in case you do not want to use cpadmin + default_admin_username: "" + # Enable/disable FIPS mode for the deployment (default value is "false") + enable_fips: false + ## Shared encryption key secret name that is used for Workflow or Workstream Services and Process Federation Server integration. + ## This secret is also used by Workflow and BAStudio to store AES encryption key. + encryption_key_secret: ibm-iaws-shared-key-secret + ## Enable/disable ECM (FNCM) / BAN initialization (e.g., creation of P8 domain, creation/configuration of object stores, + ## creation/configuration of CSS servers, and initialization of Navigator (ICN)). If the "initialize_configuration" section + ## is defined with the required parameters in the CR (below) and sc_content_initialization is set to "true" (or the parameter doesn't exist), then the initialization will occur. + ## However, if sc_content_initialization is set to "false", then the initialization will not occur (even with the "initialize_configuration" section defined) + ## For Workflow Authoring, by default sc_content_initialization is set to "true" with "initialize_configuration"section filled. + ## If you already initialized content or want to upgrade, please set sc_content_initialization to "false" before you apply the CR. + sc_content_initialization: true + sc_egress_configuration: + ## Required. Enable or disable egress access to external systems. + ## If "sc_restricted_internet_access" is defined and has no value set, then default will be "true". + ## If "sc_restricted_internet_access" is not defined (e.g., in the case of upgrade, the existing CR will not have sc_restricted_internet_access), then "sc_restricted_internet_access" will be "false" + sc_restricted_internet_access: true + ## Optional. Kubernetes API server namespace(s) (comma separated) to be used for egress network policy when `sc_restricted_internet_access: true` and `sc_deployment_platform: "OCP" + ## "{}" can also be used as a value. It is equivalent to all namespaces (eg: namespaceSelector:{}) + ## Default are "openshift-kube-apiserver", "openshift-apiserver" for OCP and ROKS. + sc_api_namespace: + ## Optional. Kubernetes API server port(s) (comma separated) to be used for egress network policy when `sc_restricted_internet_access: true` and `sc_deployment_platform: "OCP" + ## Default are 443,6443 for OCP and ROKS + sc_api_port: + ## Optional. Kubernetes DNS service namespace(s) (comma separated) to be used for egress network policy when `sc_restricted_internet_access: true` and `sc_deployment_platform: "OCP" + ## "{}" can also be used as a value. It is equivalent to all namespaces (eg: namespaceSelector:{}) + ## Default is "openshift-dns" for OCP and ROKS + sc_dns_namespace: + ## Optional. Kubernetes DNS service port(s) (comma separated) to be used for egress network policy when `sc_restricted_internet_access: true` and `sc_deployment_platform: "OCP" + ## Default are 53,5353 for OCP and ROKS + sc_dns_port: + image_pull_secrets: + - ibm-entitlement-key + sc_drivers_url: + ## The beginning section of LDAP configuration for CP4A + ldap_configuration: + ## The possible values are: "IBM Security Directory Server" or "Microsoft Active Directory" + lc_selected_ldap_type: "IBM Security Directory Server" + ## The name of the LDAP server to connect + lc_ldap_server: "us-svl-ldap.fyre.ibm.com" + ## The port of the LDAP server to connect. Some possible values are: 389, 636, etc. + lc_ldap_port: "389" + ## The LDAP bind secret for LDAP authentication. The secret is expected to have ldapUsername and ldapPassword keys. Refer to Knowledge Center for more info. + lc_bind_secret: "ldap-bind-secret" + ## The LDAP base DN. For example, "dc=example,dc=com", "dc=abc,dc=com", etc + lc_ldap_base_dn: "ou=bringuplab,O=IBM,C=US" + ## Enable SSL/TLS for LDAP communication. Refer to Knowledge Center for more info. + lc_ldap_ssl_enabled: false + ## The name of the secret that contains the LDAP SSL/TLS certificate. + lc_ldap_ssl_secret_name: "ibm-cp4ba-ldap-ssl-secret" + ## The LDAP user name attribute. Semicolon-separated list that must include the first RDN user distinguished names. One possible value is "*:uid" for TDS and "user:sAMAccountName" for AD. Refer to Knowledge Center for more info. + lc_ldap_user_name_attribute: "*:uid" + ## The LDAP user display name attribute. One possible value is "cn" for TDS and "sAMAccountName" for AD. Refer to Knowledge Center for more info. + lc_ldap_user_display_name_attr: "cn" + ## The LDAP group base DN. For example, "dc=example,dc=com", "dc=abc,dc=com", etc + lc_ldap_group_base_dn: "ou=bringuplab,O=IBM,C=US" + ## The LDAP group name attribute. One possible value is "*:cn" for TDS and "*:cn" for AD. Refer to Knowledge Center for more info. + lc_ldap_group_name_attribute: "*:cn" + ## The LDAP group display name attribute. One possible value for both TDS and AD is "cn". Refer to Knowledge Center for more info. + lc_ldap_group_display_name_attr: "cn" + ## The LDAP group membership search filter string. One possible value is "(|(&(objectclass=groupofnames)(member={0}))(&(objectclass=groupofuniquenames)(uniquemember={0})))" for TDS + ## and "(&(cn=%v)(objectcategory=group))" for AD. + lc_ldap_group_membership_search_filter: "(|(&(objectclass=groupofnames)(member={0}))(&(objectclass=groupofuniquenames)(uniquemember={0})))" + ## The LDAP group membership ID map. One possible value is "groupofnames:member" for TDS and "memberOf:member" for AD. + lc_ldap_group_member_id_map: "groupofnames:member" + ## The User script will uncomment the section needed based on user's input from User script. If you are deploying without the User script, + ## uncomment the necessary section (depending if you are using Active Directory (ad) or Tivoli Directory Service (tds)) accordingly. + # ad: + # lc_ad_gc_host: "" + # lc_ad_gc_port: "" + # lc_user_filter: "(&(sAMAccountName=%v)(objectcategory=user))" + # lc_group_filter: "(&(cn=%v)(objectcategory=group))" + tds: + lc_user_filter: "(&(cn=%v)(objectclass=person))" + lc_group_filter: "(&(cn=%v)(|(objectclass=groupofnames)(objectclass=groupofuniquenames)(objectclass=groupofurls)))" + ## The beginning section of database configuration for CP4A + datasource_configuration: + ## The dc_ssl_enabled parameter is used to support database connection over SSL for DB2/Oracle/PostgreSQL. + dc_ssl_enabled: false + ## The database_precheck parameter is used to enable or disable CPE/Navigator database connection check. + ## If set to "true", then CPE/Navigator database connection check will be enabled. + ## if set to "false", then CPE/Navigator database connection check will not be enabled. + + # database_precheck: true + ## The database configuration for ICN (Navigator) - aka BAN (Business Automation Navigator) + dc_icn_datasource: + ## Provide the database type from your infrastructure. The possible values are "db2" or "db2HADR" or "oracle" or "postgresql". This should be the same as the + ## GCD and object store configuration above. + dc_database_type: "db2" + ## Provide the ICN datasource name. The default value is "ECMClientDS". + dc_common_icn_datasource_name: "ECMClientDS" + database_servername: "us-svl-db2.fyre.ibm.com" + ## Provide the database server port. For Db2, the default is "50000". For Oracle, the default is "1521" + database_port: "50000" + ## Provide the name of the database for ICN (Navigator). For example: "ICNDB" + database_name: ICNDB4 + ## The name of the secret that contains the DB2/Oracle/PostgreSQL SSL certificate. + database_ssl_secret_name: "ibm-cp4ba-db-ssl-secret-for-svl" + ## If the database type is Oracle, provide the Oracle DB connection string. For example, "jdbc:oracle:thin:@//:1521/orcl" + dc_oracle_icn_jdbc_url: "" + ## Provide the validation timeout. If not preference, keep the default value. + dc_hadr_validation_timeout: 15 + ###################################################################################### + ## If the database type is "Db2HADR", then complete the rest of the parameters below. + ## Otherwise, remove or comment out the rest of the parameters below. + ###################################################################################### + dc_hadr_standby_servername: "" + ## Provide the standby database server port. For Db2, the default is "50000". + dc_hadr_standby_port: "" + ## Provide the retry internal. If not preference, keep the default value. + dc_hadr_retry_interval_for_client_reroute: 15 + ## Provide the max # of retries. If not preference, keep the default value. + dc_hadr_max_retries_for_client_reroute: 3 + dc_odm_datasource: + ## Provide the database type from your infrastructure. + ## The possible values are "db2" / "postgresql" / "sqlserver" / "oracle". + dc_database_type: "db2" + ## Provide the database server name or IP address of the database server. + database_servername: "us-svl-db2.fyre.ibm.com" + ## Provide the database server port. For Db2, the default is "50000". + dc_common_database_port: "50000" + ## Provide the name of the database for ODM. For example: "ODMDB" + dc_common_database_name: "ODMDB4" + ## The name of the secret that contains the credentials to connect to the database. + dc_common_database_instance_secret: "ibm-odm-db-secret" + ## Set to true when the database is using SSL + dc_common_ssl_enabled: false + ## If SSL is used to secure the database connection, specify the name of the SSL secret. + dc_ssl_secret_name: "" + # database_precheck: true + ## The database configuration for the GCD datasource for CPE + dc_gcd_datasource: + ## Provide the database type from your infrastructure. The possible values are "db2" or "db2HADR" or "oracle" or "postgresql". + dc_database_type: "db2" + ## The GCD non-XA datasource name. The default value is "FNGCDDS". + dc_common_gcd_datasource_name: "FNGCDDS" + ## The GCD XA datasource name. The default value is "FNGCDDSXA". + dc_common_gcd_xa_datasource_name: "FNGCDDSXA" + ## Provide the database server name or IP address of the database server. + database_servername: "us-svl-db2.fyre.ibm.com" + ## Provide the name of the database for the GCD for CPE. For example: "GCDDB" + database_name: "GCDDB4" + ## Provide the database server port. For Db2, the default is "50000". For Oracle, the default is "1521" + database_port: "50000" + ## The name of the secret that contains the DB2/Oracle/PostgreSQL SSL certificate. + database_ssl_secret_name: "ibm-cp4ba-db-ssl-secret-for-svl" + ## If the database type is Oracle, provide the Oracle DB connection string. For example, "jdbc:oracle:thin:@//:1521/orcl" + dc_oracle_gcd_jdbc_url: "" + ## Provide the validation timeout. If not preference, keep the default value. + dc_hadr_validation_timeout: 15 + ## If the database type is Db2 HADR, then complete the rest of the parameters below. + ## Provide the database server name or IP address of the standby database server. + dc_hadr_standby_servername: "" + ## Provide the standby database server port. For Db2, the default is "50000". + dc_hadr_standby_port: "" + ## Provide the retry internal. If not preference, keep the default value. + dc_hadr_retry_interval_for_client_reroute: 15 + ## Provide the max # of retries. If not preference, keep the default value. + dc_hadr_max_retries_for_client_reroute: 3 + ## The database configuration for the document object store (DOCS) datasource for CPE + dc_os_datasources: + - dc_database_type: "db2" + ## Provide the object store label for the object store. The default value is "os" or not defined. + ## This label must match the OS secret you define in ibm-fncm-secret. + ## For example, if you define dc_os_label: "abc", then your OS secret must be defined as: + ## --from-literal=abcDBUsername="" --from-literal=abcDBPassword="" + ## If you don't define dc_os_label, then your secret will be defined as: + ## --from-literal=osDBUsername="" --from-literal=osDBPassword="". + ## If you have multiple object stores, then you need to define multiple datasource sections starting + ## at "dc_database_type" element. + ## If all the object store databases share the same username and password, then dc_os_label value should be the same + ## in all the datasource sections. + dc_os_label: "bawdocs" + ## The DOCS non-XA datasource name. The default value is "BAWDOCS". + dc_common_os_datasource_name: "BAWDOCS" + ## The DOCS XA datasource name. The default value is "BAWDOCSXA". + dc_common_os_xa_datasource_name: "BAWDOCSXA" + ## Provide the database server name or IP address of the database server. This should be the same as the + ## GCD configuration above. + database_servername: "us-svl-db2.fyre.ibm.com" + ## Provide the name of the database for the object store 1 for CPE. For example: "OS1DB" + database_name: BAWDOCS4 + ## Provide the database server port. For Db2, the default is "50000". For Oracle, the default is "1521" + database_port: "50000" + ## The name of the secret that contains the DB2/Oracle/PostgreSQL SSL certificate. + database_ssl_secret_name: "ibm-cp4ba-db-ssl-secret-for-svl" + ## If the database type is Oracle, provide the Oracle DB connection string. For example, "jdbc:oracle:thin:@//:1521/orcl" + dc_oracle_os_jdbc_url: "" + ## Provide the validation timeout. If not preference, keep the default value. + dc_hadr_validation_timeout: 15 + ###################################################################################### + ## If the database type is "Db2HADR", then complete the rest of the parameters below. + ## Otherwise, remove or comment out the rest of the parameters below. + ###################################################################################### + dc_hadr_standby_servername: "" + ## Provide the standby database server port. For Db2, the default is "50000". + dc_hadr_standby_port: "" + ## Provide the retry internal. If not preference, keep the default value. + dc_hadr_retry_interval_for_client_reroute: 15 + ## Provide the max # of retries. If not preference, keep the default value. + dc_hadr_max_retries_for_client_reroute: 3 + - dc_database_type: "db2" + ## Provide the object store label for the object store. The default value is "os" or not defined. + ## This label must match the OS secret you define in ibm-fncm-secret. + ## For example, if you define dc_os_label: "abc", then your OS secret must be defined as: + ## --from-literal=abcDBUsername="" --from-literal=abcDBPassword="" + ## If you don't define dc_os_label, then your secret will be defined as: + ## --from-literal=osDBUsername="" --from-literal=osDBPassword="". + ## If you have multiple object stores, then you need to define multiple datasource sections starting + ## at "dc_database_type" element. + ## If all the object store databases share the same username and password, then dc_os_label value should be the same + ## in all the datasource sections. + dc_os_label: "bawdos" + ## The DOS non-XA datasource name. The default value is "BAWDOS". + dc_common_os_datasource_name: "BAWDOS" + ## The DOS XA datasource name. The default value is "BAWDOSXA". + dc_common_os_xa_datasource_name: "BAWDOSXA" + ## Provide the database server name or IP address of the database server. This should be the same as the + ## GCD configuration above. + database_servername: "us-svl-db2.fyre.ibm.com" + ## Provide the name of the database for the object store 2 for CPE. For example: "OS2DB" + database_name: BAWDOS4 + ## Provide the database server port. For Db2, the default is "50000". For Oracle, the default is "1521" + database_port: "50000" + ## The name of the secret that contains the DB2/Oracle/PostgreSQL SSL certificate. + database_ssl_secret_name: "ibm-cp4ba-db-ssl-secret-for-svl" + ## If the database type is Oracle, provide the Oracle DB connection string. For example, "jdbc:oracle:thin:@//:1521/orcl" + dc_oracle_os_jdbc_url: "" + ## Provide the validation timeout. If not preference, keep the default value. + dc_hadr_validation_timeout: 15 + ###################################################################################### + ## If the database type is "Db2HADR", then complete the rest of the parameters below. + ## Otherwise, remove or comment out the rest of the parameters below. + ###################################################################################### + dc_hadr_standby_servername: "" + ## Provide the standby database server port. For Db2, the default is "50000". + dc_hadr_standby_port: "" + ## Provide the retry internal. If not preference, keep the default value. + dc_hadr_retry_interval_for_client_reroute: 15 + ## Provide the max # of retries. If not preference, keep the default value. + dc_hadr_max_retries_for_client_reroute: 3 + - dc_database_type: "db2" + ## Provide the object store label for the object store. The default value is "os" or not defined. + ## This label must match the OS secret you define in ibm-fncm-secret. + ## For example, if you define dc_os_label: "abc", then your OS secret must be defined as: + ## --from-literal=abcDBUsername="" --from-literal=abcDBPassword="" + ## If you don't define dc_os_label, then your secret will be defined as: + ## --from-literal=osDBUsername="" --from-literal=osDBPassword="". + ## If you have multiple object stores, then you need to define multiple datasource sections starting + ## at "dc_database_type" element. + ## If all the object store databases share the same username and password, then dc_os_label value should be the same + ## in all the datasource sections. + dc_os_label: "bawtos" + ## The TOS non-XA datasource name. The default value is "BAWTOS". + dc_common_os_datasource_name: "BAWTOS" + ## The TOS XA datasource name. The default value is "BAWTOSXA". + dc_common_os_xa_datasource_name: "BAWTOSXA" + ## Provide the database server name or IP address of the database server. This should be the same as the + ## GCD configuration above. + database_servername: "us-svl-db2.fyre.ibm.com" + ## Provide the name of the database for the object store 3 for CPE. For example: "OS3DB" + database_name: BAWTOS4 + ## Provide the database server port. For Db2, the default is "50000". For Oracle, the default is "1521" + database_port: "50000" + ## The name of the secret that contains the DB2/Oracle/PostgreSQL SSL certificate. + database_ssl_secret_name: "ibm-cp4ba-db-ssl-secret-for-svl" + ## If the database type is Oracle, provide the Oracle DB connection string. For example, "jdbc:oracle:thin:@//:1521/orcl" + dc_oracle_os_jdbc_url: "" + ## Provide the validation timeout. If not preference, keep the default value. + dc_hadr_validation_timeout: 15 + ###################################################################################### + ## If the database type is "Db2HADR", then complete the rest of the parameters below. + ## Otherwise, remove or comment out the rest of the parameters below. + ###################################################################################### + dc_hadr_standby_servername: "" + ## Provide the standby database server port. For Db2, the default is "50000". + dc_hadr_standby_port: "" + ## Provide the retry internal. If not preference, keep the default value. + dc_hadr_retry_interval_for_client_reroute: 15 + ## Provide the max # of retries. If not preference, keep the default value. + dc_hadr_max_retries_for_client_reroute: 3 + ############################################################################# + ## This section contains the BAStudio component configurations # + ## it's the optional component: app_designer, ads_designer, bas, # + ## workflow-authoring # + ############################################################################# + bastudio_configuration: + #Adjust this one if you created the secret with name other than the default + admin_secret_name: "icp4adeploy-bas-admin-secret" + #----------------------------------------------------------------------- + # bastudio admin Secret template will be + #----------------------------------------------------------------------- + # apiVersion: v1 + # stringData: + # dbPassword: "" + # dbUsername: "" + # kind: Secret + # metadata: + # name: icp4adeploy-bas-admin-secret + # type: Opaque + #----------------------------------------------------------------------- + # Designate an existing LDAP user for the BAStudio admin user. + admin_user: "BUAdmin" + database: + #----------------------------------------------------------------------- + # Configuration required for configure DB2 for BA Studio server + # If you are not going to use DB2. Please comment out this section + #----------------------------------------------------------------------- + # Provide the database server hostname for BAStudio use + host: "us-svl-db2.fyre.ibm.com" + # Provide the database name for BAStudio use, for example, BASDB + # The database provided should be created by the BAStudio SQL script template. + name: "BASDB4" + # Provide the database server port for BAStudio use + port: "50000" + # If you want to enable database automatic client reroute (ACR) for HADR, you must configure alternative_host and alternative_port. Otherwise, leave them blank. + alternative_host: "" + alternative_port: "" + type: "db2" + #----------------------------------------------------------------------- + # Configuration required for configure Oracle for BA Studio server + # If you are going to use Oracle. Please uncomment this section + #----------------------------------------------------------------------- + # type: oracle + # ## Oracle - If you are using Oracle input the oracle database connection URL here + # jdbc_url: + # ## Input your Oracle JDBC jar files here. Like: ojdbc8.jar + # jdbc_driver_files: + #----------------------------------------------------------------------- + # Configuration required for configure PostgreSQL for BA Studio server + # If you are going to use PostgreSQL. Please uncomment this section + #----------------------------------------------------------------------- + # type: postgresql + # ## Provide the database server hostname for BAStudio use + # host: "" + # ## Provide the database name for BAStudio use, for example, BASDB. It is case sensitive. + # ## The database provided should be created by the BAStudio SQL script template. + # name: "" + # ## Provide the database server port for BAStudio use + # port: "" + # Provide the database connection URL if you don't provide database host, port and name. + # jdbc_url: + # ## Input your PostgreSQL JDBC jar files here. Like: postgresql-42.2.16.jar + # jdbc_driver_files: + # ## If you want to enable PostgreSQL Connection Fail-over, you must configure alternative_host and alternative_port. Otherwise, leave them blank. + # alternative_host: + # alternative_port: + #----------------------------------------------------------------------- + # Configuration required for configure SQLServer for BA Studio server + # If you are going to use SQLServer. Please uncomment this section + #----------------------------------------------------------------------- + # type: sqlserver + # ## Provide the database server hostname for BAStudio use, for example, BASDB + # host: "" + # ## Provide the database name for BAStudio use + # ## The database provided should be created by the BAStudio SQL script template. + # name: "" + # ## Provide the database server port for BAStudio use + # port: "" + # Provide the database connection URL if you don't provide database host, port and name. + # jdbc_url: + # ## Input your SQLServer JDBC jar files here. Like: mssql-jdbc-8.2.0.jre8.jar + # jdbc_driver_files: + # ## If you want to enable SQLServer Connection Fail-over, you must configure alternative_host and alternative_port. Otherwise, leave them blank. + # alternative_host: + # alternative_port: + #----------------------------------------------------------------------- + # SSL connection for database is enabled by default. Please input the secret name including cert + #----------------------------------------------------------------------- + ssl_enabled: false + certificate_secret_name: "ibm-cp4ba-db-ssl-secret-for-svl" + ######################################################################## + ######## IBM Business Automation Insights configuration ######## + ######################################################################## + bai_configuration: + ######################################################################## + ######## IBM Operational Decision Manager configuration ######## + ######################################################################## + odm_configuration: + decisionCenter: + enabled: true + decisionServerRuntime: + enabled: true + decisionRunner: + enabled: true + # For Zen Proxy/IAM configuration + # customization: + ## Customizes user authentication and management by realizing mapping between IAM Roles and LDAP groups. + # authSecretRef: "" + # Specify the name of the topic that is used to send ODM events to the Kafka provider. + # bai_kafka_topic: + + ######################################################################## + ######## IBM Business Automation Workflow Authoring configuration ######## + ######################################################################## + workflow_authoring_configuration: + ## The configurations for content integration for attachment in process + content_integration: + ## Domain name for content integration. The value must be the same as initialize_configuration.ic_domain_creation.domain_name. + domain_name: "P8DOMAIN" + ## Object Store name for content integration. + ## The value must be an existing object store in CPE. + ## If use initialize_configuration for the object store initialization, the value must be one of initialize_configuration.ic_obj_store_creation.object_stores. + object_store_name: "BAWDOCS" + ## The configuration for case + case: + ## Domain name for CASE. The value must be the same as initialize_configuration.ic_domain_creation.domain_name. + domain_name: "P8DOMAIN" + ## Design Object Store name of CASE. + ## The value must be the same as the oc_cpe_obj_store_symb_name value of one of the object stores defined in initialize_configuration.ic_obj_store_creation.object_stores. + object_store_name_dos: "BAWDOS" + tos_list: + - object_store_name: "BAWTOS" ## The tos_list is a list. You can deploy multiple Target Object Stores. + ################################################################################## + ######## IBM Business Automation Machine Learning Server configuration ######## + ################################################################################## + baml_configuration: + ## Intelligent Task Prioritization configuration + ## if this configuration is enabled, setting bai_configuration.bpmn.install to true + intelligent_task_prioritization: + ## Workforce Insights configuration + ## if this configuration is enabled, setting bai_configuration.bpmn.install to true and bai_configuration.bpmn.force_elasticsearch_timeseries to true + workforce_insights: + ######################################################################## + ######## IBM FileNet Content Manager initialize configuration ######## + ######################################################################## + initialize_configuration: + ic_ldap_creation: + ## Administrator user + ic_ldap_admin_user_name: + - "BUAdmin" + ## Administrator group + ic_ldap_admins_groups_name: + - "P8Admins" + ic_obj_store_creation: + object_stores: + - oc_cpe_obj_store_display_name: "BAWDOCS" ## Configuration for the document object store + ## Symbolic name for the document object store to create + oc_cpe_obj_store_symb_name: "BAWDOCS" + oc_cpe_obj_store_conn: + ## Object store connection name + name: "DOCS_connection" + ## Specify the name of the non-XA datasource (from dc_common_os_datasource_name in the dc_os_datasources section above) + dc_os_datasource_name: "BAWDOCS" + ## The XA datasource + dc_os_xa_datasource_name: "BAWDOCSXA" + oc_cpe_obj_store_admin_user_groups: + - "P8Admins" + - oc_cpe_obj_store_display_name: "BAWDOS" ## Configuration for the design object store + ## Symbolic name for the document object store to create + oc_cpe_obj_store_symb_name: "BAWDOS" + oc_cpe_obj_store_conn: + ## Object store connection name + name: "DOS_connection" + ## Specify the name of the non-XA datasource (from dc_common_os_datasource_name in the dc_os_datasources section above) + dc_os_datasource_name: "BAWDOS" + ## The XA datasource + dc_os_xa_datasource_name: "BAWDOSXA" + oc_cpe_obj_store_admin_user_groups: + - "P8Admins" + - oc_cpe_obj_store_display_name: "BAWTOS" ## Configuration for the target object store + ## Symbolic name for the document object store to create + oc_cpe_obj_store_symb_name: "BAWTOS" + oc_cpe_obj_store_conn: + ## Object store connection name + name: "TOS_connection" + ## Specify the name of the non-XA datasource (from dc_common_os_datasource_name in the dc_os_datasources section above) + dc_os_datasource_name: "BAWTOS" + ## The XA datasource + dc_os_xa_datasource_name: "BAWTOSXA" + ## Specify whether to enable workflow for the object store + oc_cpe_obj_store_enable_workflow: true + ## Specify a table space for the workflow data + oc_cpe_obj_store_workflow_data_tbl_space: "VWDATA_TS" + ## Designate an LDAP group for the workflow admin group. + oc_cpe_obj_store_workflow_admin_group: "P8Admins" + ## Designate an LDAP group for the workflow config group + oc_cpe_obj_store_workflow_config_group: "P8Admins" + ## Provide a name for the connection point + oc_cpe_obj_store_workflow_pe_conn_point_name: "pe_conn_tos" + oc_cpe_obj_store_admin_user_groups: + - "P8Admins" diff --git a/config/cloudpaks/cp4a/resources/templates/cluster2.yaml b/config/cloudpaks/cp4a/resources/templates/cluster2.yaml new file mode 100644 index 00000000..1b3c4484 --- /dev/null +++ b/config/cloudpaks/cp4a/resources/templates/cluster2.yaml @@ -0,0 +1,362 @@ +apiVersion: icp4a.ibm.com/v1 +kind: ICP4ACluster +metadata: + labels: + app.kubernetes.io/instance: ibm-dba + app.kubernetes.io/managed-by: ibm-dba + app.kubernetes.io/name: ibm-dba + name: icp4adeploy + namespace: kr-one +spec: + appVersion: 23.0.2 + bai_configuration: + bpmn: + force_elasticsearch_timeseries: true + business_performance_center: + all_users_access: true + workforce_insights_secret: custom-bpc-workforce-secret + flink: + create_route: true + datasource_configuration: + database_precheck: true + dc_ca_datasource: + database_ip: "" + database_name: "" + database_port: "" + database_servername: "" + dc_database_ssl_enabled: true + dc_database_type: db2 + dc_hadr_max_retries_for_client_reroute: 3 + dc_hadr_retry_interval_for_client_reroute: 15 + dc_hadr_standby_ip: "" + dc_hadr_standby_port: "" + dc_hadr_standby_servername: "" + dc_hadr_validation_timeout: 15 + tenant_databases: [] + dc_gcd_datasource: + database_name: "" + database_port: "" + database_servername: "" + database_ssl_secret_name: "" + dc_common_gcd_datasource_name: FNGCDDS + dc_common_gcd_xa_datasource_name: FNGCDDSXA + dc_database_type: db2 + dc_hadr_max_retries_for_client_reroute: 3 + dc_hadr_retry_interval_for_client_reroute: 15 + dc_hadr_standby_port: "" + dc_hadr_standby_servername: "" + dc_hadr_validation_timeout: 15 + dc_oracle_gcd_jdbc_url: "" + dc_icn_datasource: + database_name: "" + database_port: "" + database_servername: "" + database_ssl_secret_name: "" + dc_common_icn_datasource_name: ECMClientDS + dc_database_type: db2 + dc_hadr_max_retries_for_client_reroute: 3 + dc_hadr_retry_interval_for_client_reroute: 15 + dc_hadr_standby_port: "" + dc_hadr_standby_servername: "" + dc_hadr_validation_timeout: 15 + dc_oracle_icn_jdbc_url: "" + dc_odm_datasource: + database_servername: "" + dc_common_database_instance_secret: "" + dc_common_database_name: "" + dc_common_database_port: "" + dc_common_ssl_enabled: true + dc_database_type: db2 + dc_ssl_secret_name: "" + dc_ssl_enabled: true + dc_ums_datasource: + dc_ums_oauth_host: "" + dc_ums_oauth_name: "" + dc_ums_oauth_port: "" + dc_ums_oauth_schema: OAuthDBSchema + dc_ums_oauth_ssl: true + dc_ums_oauth_ssl_secret_name: "" + dc_ums_oauth_type: db2 + dc_ums_teamserver_alternate_hosts: "" + dc_ums_teamserver_alternate_ports: "" + dc_ums_teamserver_driverfiles: "" + dc_ums_teamserver_host: "" + dc_ums_teamserver_name: "" + dc_ums_teamserver_port: "" + dc_ums_teamserver_ssl: true + dc_ums_teamserver_ssl_secret_name: "" + dc_ums_teamserver_type: db2 + olm_dc_os_adp_datasources: + - database_name: "" + database_port: "" + database_servername: "" + database_ssl_secret_name: "" + dc_common_os_datasource_name: DEVOS1DS + dc_common_os_xa_datasource_name: DEVOS1DSXA + dc_database_type: db2 + dc_hadr_max_retries_for_client_reroute: 3 + dc_hadr_retry_interval_for_client_reroute: 15 + dc_hadr_standby_port: "" + dc_hadr_standby_servername: "" + dc_hadr_validation_timeout: 15 + dc_oracle_os_jdbc_url: "" + dc_os_label: devos1 + olm_dc_os_ae_datasources: + - database_name: "" + database_port: "" + database_servername: "" + database_ssl_secret_name: "" + dc_common_os_datasource_name: AEOS + dc_common_os_xa_datasource_name: AEOSXA + dc_database_type: db2 + dc_hadr_max_retries_for_client_reroute: 3 + dc_hadr_retry_interval_for_client_reroute: 15 + dc_hadr_standby_port: "" + dc_hadr_standby_servername: "" + dc_hadr_validation_timeout: 15 + dc_oracle_os_jdbc_url: "" + dc_os_label: aeos + olm_dc_os_content_datasources: + - database_name: "" + database_port: "" + database_servername: "" + database_ssl_secret_name: "" + dc_common_os_datasource_name: FNOS1DS + dc_common_os_xa_datasource_name: FNOS1DSXA + dc_database_type: db2 + dc_hadr_max_retries_for_client_reroute: 3 + dc_hadr_retry_interval_for_client_reroute: 15 + dc_hadr_standby_port: "" + dc_hadr_standby_servername: "" + dc_hadr_validation_timeout: 15 + dc_oracle_os_jdbc_url: "" + dc_os_label: os + olm_dc_os_workflow_datasources: + - database_name: "" + database_port: "" + database_servername: "" + database_ssl_secret_name: "" + dc_common_os_datasource_name: BAWDOCS + dc_common_os_xa_datasource_name: BAWDOCSXA + dc_database_type: db2 + dc_hadr_max_retries_for_client_reroute: 3 + dc_hadr_retry_interval_for_client_reroute: 15 + dc_hadr_standby_port: "" + dc_hadr_standby_servername: "" + dc_hadr_validation_timeout: 15 + dc_oracle_os_jdbc_url: "" + dc_os_label: "" + - database_name: "" + database_port: "" + database_servername: "" + database_ssl_secret_name: "" + dc_common_os_datasource_name: BAWDOS + dc_common_os_xa_datasource_name: BAWDOSXA + dc_database_type: db2 + dc_hadr_max_retries_for_client_reroute: 3 + dc_hadr_retry_interval_for_client_reroute: 15 + dc_hadr_standby_port: "" + dc_hadr_standby_servername: "" + dc_hadr_validation_timeout: 15 + dc_oracle_os_jdbc_url: "" + dc_os_label: "" + - database_name: "" + database_port: "" + database_servername: "" + database_ssl_secret_name: "" + dc_common_os_datasource_name: BAWTOS + dc_common_os_xa_datasource_name: BAWTOSXA + dc_database_type: db2 + dc_hadr_max_retries_for_client_reroute: 3 + dc_hadr_retry_interval_for_client_reroute: 15 + dc_hadr_standby_port: "" + dc_hadr_standby_servername: "" + dc_hadr_validation_timeout: 15 + dc_oracle_os_jdbc_url: "" + dc_os_label: "" + - database_name: "" + database_port: "" + database_servername: "" + database_ssl_secret_name: "" + dc_common_os_datasource_name: AWSINS1DOCS + dc_common_os_xa_datasource_name: AWSINS1DOCSXA + dc_database_type: db2 + dc_hadr_max_retries_for_client_reroute: 3 + dc_hadr_retry_interval_for_client_reroute: 15 + dc_hadr_standby_port: "" + dc_hadr_standby_servername: "" + dc_hadr_validation_timeout: 15 + dc_oracle_os_jdbc_url: "" + dc_os_label: "" + initialize_configuration: + ic_ldap_creation: + ic_ldap_admins_groups_name: + - "" + ic_obj_store_creation: + object_stores: + - oc_cpe_obj_store_conn: + dc_os_datasource_name: FNOS1DS + dc_os_xa_datasource_name: FNOS1DSXA + oc_cpe_obj_store_display_name: OS1 + oc_cpe_obj_store_symb_name: OS1 + - oc_cpe_obj_store_admin_user_groups: + - "" + - "" + oc_cpe_obj_store_conn: + dc_os_datasource_name: DEVOS1DS + dc_os_xa_datasource_name: DEVOS1DSXA + oc_cpe_obj_store_display_name: DEVOS1 + oc_cpe_obj_store_symb_name: DEVOS1 + - oc_cpe_obj_store_conn: + dc_os_datasource_name: BAWDOCS + dc_os_xa_datasource_name: BAWDOCSXA + oc_cpe_obj_store_display_name: BAWDOCS + oc_cpe_obj_store_symb_name: BAWDOCS + - oc_cpe_obj_store_conn: + dc_os_datasource_name: BAWDOS + dc_os_xa_datasource_name: BAWDOSXA + oc_cpe_obj_store_display_name: BAWDOS + oc_cpe_obj_store_symb_name: BAWDOS + - oc_cpe_obj_store_conn: + dc_os_datasource_name: BAWTOS + dc_os_xa_datasource_name: BAWTOSXA + oc_cpe_obj_store_display_name: BAWTOS + oc_cpe_obj_store_enable_workflow: true + oc_cpe_obj_store_symb_name: BAWTOS + oc_cpe_obj_store_workflow_admin_group: "" + oc_cpe_obj_store_workflow_config_group: "" + oc_cpe_obj_store_workflow_data_tbl_space: "" + oc_cpe_obj_store_workflow_pe_conn_point_name: "" + - oc_cpe_obj_store_conn: + dc_os_datasource_name: AWSINS1DOCS + dc_os_xa_datasource_name: AWSINS1DOCSXA + oc_cpe_obj_store_display_name: AWSINS1DOCS + oc_cpe_obj_store_symb_name: AWSINS1DOCS + - oc_cpe_obj_store_conn: + dc_os_datasource_name: AEOS + dc_os_xa_datasource_name: AEOSXA + oc_cpe_obj_store_display_name: AEOS + oc_cpe_obj_store_symb_name: AEOS + ldap_configuration: + ad: + lc_ad_gc_host: "" + lc_ad_gc_port: "" + lc_group_filter: (&(samAccountName=%v)(objectclass=group)) + lc_user_filter: (&(samAccountName=%v)(objectClass=user)) + lc_bind_secret: ldap-bind-secret + lc_ldap_base_dn: "" + lc_ldap_group_base_dn: "" + lc_ldap_group_display_name_attr: cn + lc_ldap_group_member_id_map: memberOf:member + lc_ldap_group_membership_search_filter: (&(cn=%v)(objectcategory=group)) + lc_ldap_group_name_attribute: '*:cn' + lc_ldap_port: "636" + lc_ldap_server: "" + lc_ldap_ssl_enabled: true + lc_ldap_ssl_secret_name: "" + lc_ldap_user_display_name_attr: sAMAccountName + lc_ldap_user_name_attribute: user:sAMAccountName + lc_selected_ldap_type: Microsoft Active Directory + tds: + lc_group_filter: (&(cn=%v)(|(objectclass=groupofnames)(objectclass=groupofuniquenames)(objectclass=groupofurls))) + lc_user_filter: (&(cn=%v)(objectclass=person)) + odm_configuration: + internalDatabase: + persistence: + storageClassName: rook-cephfs + olm_deployment_type: Starter + olm_ibm_license: true + olm_production_application: false + olm_production_content: false + olm_production_decisions: false + olm_production_decisions_ads: false + olm_production_document_processing: false + olm_production_option: + adp: + cmis: false + css: false + document_processing_runtime: false + tm: false + ads: + ads_designer: false + ads_runtime: false + bai: false + application: + ae_data_persistence: false + app_designer: false + content: + bai: false + cmis: false + css: false + iccsap: false + ier: false + tm: false + decisions: + bai: false + decisionCenter: false + decisionRunner: false + decisionServerRuntime: false + workfow_authoring: + bai: false + kafka: false + workfow_runtime: + bai: false + kafka: false + olm_production_workflow: false + olm_starter_application: false + olm_starter_content: false + olm_starter_decisions: true + olm_starter_decisions_ads: false + olm_starter_document_processing: false + olm_starter_option: + adp: + cmis: false + css: false + tm: false + ads: + bai: false + application: + ban: false + content: + bai: false + cmis: false + css: false + iccsap: false + ier: false + tm: false + decisions: + bai: true + workstreams: + bai: true + baml: true + case: true + content_integration: true + pfs: true + workstreams: true + olm_starter_workflow: true + shared_configuration: + enable_fips: false + encryption_key_secret: "" + external_tls_certificate_secret: "" + no_log: false + olm_sc_content_initialization: false + olm_sc_content_verification: false + root_ca_secret: icp4a-root-ca + sc_deployment_baw_license: non-production + sc_deployment_context: CP4A + sc_deployment_fncm_license: non-production + sc_deployment_license: non-production + sc_deployment_platform: OCP + sc_egress_configuration: + sc_restricted_internet_access: true + sc_image_repository: cp.stg.icr.io + sc_ingress_enable: false + sc_ingress_tls_secret_name: "" + show_sensitive_log: true + storage_configuration: + sc_block_storage_classname: rook-cephfs + sc_dynamic_storage_classname: rook-cephfs + sc_fast_file_storage_classname: "" + sc_medium_file_storage_classname: "" + sc_slow_file_storage_classname: "" + trusted_certificate_list: [] diff --git a/config/cloudpaks/cp4a/resources/values.yaml b/config/cloudpaks/cp4a/resources/values.yaml index f19dc55b..d6ba673c 100644 --- a/config/cloudpaks/cp4a/resources/values.yaml +++ b/config/cloudpaks/cp4a/resources/values.yaml @@ -6,6 +6,7 @@ metadata: spec: shared_configuration: sc_deployment_platform: OCP + sc_deployment_profile_size: starter storageclass: block: ocs-storagecluster-ceph-rbd gold: ocs-storagecluster-cephfs diff --git a/config/cloudpaks/cp4d/Chart.yaml b/config/cloudpaks/cp4d/Chart.yaml index d240edb0..ae3c2d02 100644 --- a/config/cloudpaks/cp4d/Chart.yaml +++ b/config/cloudpaks/cp4d/Chart.yaml @@ -21,4 +21,4 @@ version: 0.8.2 # This is the version number of the application being deployed. This version number should be # incremented each time you make changes to the application. Versions are not expected to # follow Semantic Versioning. They should reflect the version the application is using. -appVersion: 4.8.0 +appVersion: 4.8.2