gitea-admin/ab-initio-manifests
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Initial render: k3s-dev environment

Browse Source
This commit is contained in:
gitea-admin
2026-03-07 15:00:05 +00:00
commit a787720f2a
306 changed files with 75879 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

362
rendered/manifests/k3s-dev/abinitio-platform/blueprints/apps_v1_deployment_blueprints.yaml Normal file
View File

@@ -0,0 +1,362 @@
apiVersion: apps/v1
kind: Deployment
metadata:
labels:
app.kubernetes.io/instance: blueprints
app.kubernetes.io/managed-by: Helm
app.kubernetes.io/name: blueprints
app.kubernetes.io/part-of: AbInitio
app.kubernetes.io/version: 4.4.1
helm.sh/chart: blueprints-2.4.3-a
name: blueprints
namespace: abinitio
spec:
replicas: 1
selector:
matchLabels:
app.kubernetes.io/instance: blueprints
app.kubernetes.io/name: blueprints
strategy:
type: Recreate
template:
metadata:
labels:
app.kubernetes.io/instance: blueprints
app.kubernetes.io/managed-by: Helm
app.kubernetes.io/name: blueprints
app.kubernetes.io/part-of: AbInitio
app.kubernetes.io/version: 4.4.1
helm.sh/chart: blueprints-2.4.3-a
name: blueprints
spec:
containers:
- args:
- --ab-k8s-job-launch-script
- /ab-setup/setup_pod.sh
command:
- ab-container-entrypoint.ksh
env:
- name: AB_AIR_ENCRYPTED_PASSWORD
value: file=/secrets/aiadmin/password
- name: AB_AIR_ROOT
value: //eme-0.eme-headless/abinitio/eme/eme
- name: AB_AIR_USER
value: aiadmin
- name: AB_ALLOW_FILE_LOCK_ON_REMOTE_FILE_SYSTEM
value: "true"
- name: AB_AUTHORIZATION_GATEWAY_URL
value: http://authgateway:8080/authgateway
- name: AB_BRIDGE_CONFIGURATION_DIR
value: /abinitio/bridge
- name: AB_BRIDGE_CONFIGURATION_NAME
value: container-bridge
- name: AB_CHARSET
value: utf-8
- name: AB_CONFIGURATION
value: /config/pod/abinitiorc:/config/pod/apphubrc
- name: AB_CONNECTION_BRIDGE_ENCRYPTED_RPC_ENCRYPTION_KEY
value: file=/secrets/bridge/password
- name: AB_CONNECTION_BRIDGE_PORT
value: "7070"
- name: AB_CONNECTION_BRIDGE_RPC_ENCRYPTION_TYPE
value: aes128-gcm
- name: AB_CONNECTION_BRIDGE_SECURITY_CONFIGURATION
value: container-bridge-security
- name: AB_HOSTNAME_KEYSERVER_URLS
value: abks://key-server:6151
- name: AB_IPV4_ONLY
value: "true"
- name: AB_K8S_MAX_IDLE_SECONDS
value: "0"
- name: AB_K8S_START_BRIDGE
value: background
- name: AB_K8S_START_REPORTER
value: "true"
- name: AB_KEY_DAEMON_DIR
value: /tmp/abkc/data
- name: AB_MHUB_ENCRYPTED_PASSWORD
value: file=/secrets/aiadmin/password
- name: AB_MHUB_URL
value: http://metadatahub:8080/metadatahub
- name: AB_MHUB_USERNAME
value: aiadmin
- name: AB_MUX_ENABLE_AG_CREDENTIAL_MAPPING
value: "true"
- name: AB_OPS_CONSOLE_URL
value: http://controlcenter:8080/controlcenter
- name: AB_OPS_WSS_ENCRYPTED_PASSWORD
value: file=/secrets/ocagent/password
- name: AB_OPS_WSS_USERNAME
value: ocagent
- name: AB_PASSWORD_KEY_FILE
value: /secrets/password_key_file/password
- name: BRIDGE_AB_ENCRYPTED_KEY
value: file=/secrets/bridge/password
- name: CC_ADMIN_ENCRYPTED_PASSWORD
value: file=/secrets/aiadmin/password
- name: CC_ADMIN_USERNAME
value: aiadmin
- name: CMAP_MOUNT
value: /config/pod
- name: DEPLOY_NAME
value: blueprints
- name: JAVA_OPTS
value: -XX:InitialRAMPercentage=50.0 -XX:MaxRAMPercentage=75.0
- name: LOAD_PHYSOBJECTS
value: "true"
- name: NAMESPACE
value: abinitio
- name: POD_IP
valueFrom:
fieldRef:
fieldPath: status.podIP
- name: POD_LABEL
value: 'abinitio/product: blueprints, abinitio/deployment: blueprints'
- name: POD_NAME
valueFrom:
fieldRef:
fieldPath: metadata.name
- name: POD_SERVICE
value: blueprints
- name: POD_SERVICE_HEADLESS
value: blueprints-headless
image: asia-southeast1-docker.pkg.dev/str-22391/cloudplatform-proxy/aidp/blueprints:4.4.1.1-1
imagePullPolicy: IfNotPresent
name: blueprints
readinessProbe:
exec:
command:
- stat
- /tmp/.pod.ready
failureThreshold: 960
periodSeconds: 10
resources:
limits:
ephemeral-storage: 2Gi
memory: 16Gi
requests:
cpu: 500m
ephemeral-storage: 2Gi
memory: 8Gi
securityContext:
allowPrivilegeEscalation: false
capabilities:
drop:
- ALL
runAsGroup: 1000
runAsNonRoot: true
runAsUser: 1000
seccompProfile:
type: RuntimeDefault
volumeMounts:
- mountPath: /config/pod
name: pod-config
- mountPath: /abinitio
name: abinitio-local
- mountPath: /secrets/aiadmin/password
name: aiadmin
subPath: password
- mountPath: /secrets/ocagent/password
name: ocagent
subPath: password
- mountPath: /secrets/bridge/password
name: bridge
subPath: password
- mountPath: /secrets/eme_join_user/password
name: eme-join-user
subPath: password
- mountPath: /secrets/qi_join_user/password
name: qi-join-user
subPath: password
- mountPath: /secrets/dcs_utility_user/password
name: dcs-utility-user
subPath: password
- mountPath: /secrets/mhub_utility_user/password
name: mhub-utility-user
subPath: password
- mountPath: /secrets/ag_db_importer/password
name: ag-db-importer
subPath: password
- mountPath: /secrets/admin/password
name: admin
subPath: password
- mountPath: /secrets/ag_ui_importer/password
name: ag-ui-importer
subPath: password
- mountPath: /secrets/cafe_join_user/password
name: cafe-join-user
subPath: password
- mountPath: /secrets/cc_join_user/password
name: cc-join-user
subPath: password
- mountPath: /secrets/dcs_join_user/password
name: dcs-join-user
subPath: password
- mountPath: /secrets/ei_join_user/password
name: ei-join-user
subPath: password
- mountPath: /secrets/mhub_join_user/password
name: mhub-join-user
subPath: password
- mountPath: /secrets/qiadmin_join_user/password
name: qiadmin-join-user
subPath: password
- mountPath: /secrets/sd_join_user/password
name: sd-join-user
subPath: password
- mountPath: /secrets/trw_join_user/password
name: trw-join-user
subPath: password
- mountPath: /secrets/mhub_db_importer/password
name: mhub-db-importer
subPath: password
- mountPath: /secrets/mhub_ui_importer/password
name: mhub-ui-importer
subPath: password
- mountPath: /secrets/ag_appserver/password
name: ag-appserver
subPath: password
- mountPath: /secrets/ag_report/password
name: ag-report
subPath: password
- mountPath: /secrets/cc_jdbc/password
name: cc-jdbc
subPath: password
- mountPath: /secrets/dcs_hmac_key/password
name: dcs-hmac-key
subPath: password
- mountPath: /secrets/abinitio/password
name: abinitio
subPath: password
- mountPath: /secrets/mhub_appserver/password
name: mhub-appserver
subPath: password
- mountPath: /secrets/mhub_report/password
name: mhub-report
subPath: password
- mountPath: /secrets/runtime_locator_join_user/password
name: runtime-locator-join-user
subPath: password
- mountPath: /secrets/password_key_file/password
name: password-key-file
subPath: password
- mountPath: /ab_share
name: ab-share-data-and-appconf-root
- mountPath: /tmp
name: tmp-volume
hostAliases:
- hostnames:
- blueprints.abinitio
ip: 127.0.0.1
hostname: blueprints
initContainers: null
securityContext:
fsGroup: 1000
fsGroupChangePolicy: OnRootMismatch
runAsGroup: 1000
runAsNonRoot: true
runAsUser: 1000
seccompProfile:
type: RuntimeDefault
serviceAccountName: abinitio-sa
terminationGracePeriodSeconds: 30
volumes:
- configMap:
defaultMode: 511
name: blueprints
name: pod-config
- name: abinitio-local
persistentVolumeClaim:
claimName: blueprints-claim
- emptyDir: {}
name: tmp-volume
- name: aiadmin
secret:
secretName: aiadmin
- name: ocagent
secret:
secretName: ocagent
- name: bridge
secret:
secretName: bridge
- name: eme-join-user
secret:
secretName: eme-join-user
- name: qi-join-user
secret:
secretName: qi-join-user
- name: dcs-utility-user
secret:
secretName: dcs-utility-user
- name: mhub-utility-user
secret:
secretName: mhub-utility-user
- name: ag-db-importer
secret:
secretName: ag-db-importer
- name: admin
secret:
secretName: admin
- name: ag-ui-importer
secret:
secretName: ag-ui-importer
- name: cafe-join-user
secret:
secretName: cafe-join-user
- name: cc-join-user
secret:
secretName: cc-join-user
- name: dcs-join-user
secret:
secretName: dcs-join-user
- name: ei-join-user
secret:
secretName: ei-join-user
- name: mhub-join-user
secret:
secretName: mhub-join-user
- name: qiadmin-join-user
secret:
secretName: qiadmin-join-user
- name: sd-join-user
secret:
secretName: sd-join-user
- name: trw-join-user
secret:
secretName: trw-join-user
- name: mhub-db-importer
secret:
secretName: mhub-db-importer
- name: mhub-ui-importer
secret:
secretName: mhub-ui-importer
- name: ag-appserver
secret:
secretName: ag-appserver
- name: ag-report
secret:
secretName: ag-report
- name: cc-jdbc
secret:
secretName: cc-jdbc
- name: dcs-hmac-key
secret:
secretName: dcs-hmac-key
- name: abinitio
secret:
secretName: abinitio
- name: mhub-appserver
secret:
secretName: mhub-appserver
- name: mhub-report
secret:
secretName: mhub-report
- name: runtime-locator-join-user
secret:
secretName: runtime-locator-join-user
- name: password-key-file
secret:
secretName: password-key-file
- name: ab-share-data-and-appconf-root
persistentVolumeClaim:
claimName: ab-shared-data-and-appconf-root-claim

94
rendered/manifests/k3s-dev/abinitio-platform/blueprints/v1_configmap_blueprints.yaml Normal file
View File

@@ -0,0 +1,94 @@
apiVersion: v1
data:
abinitiorc: |
AB_AIR_BRANCH @ expressit : main
AB_AIR_ROOT @ expressit : //eme-0.eme-headless/abinitio/eme/eme
AB_APPCONF_ROOT_DIR @ expressit : /ab_share/ab_appconf_root
AB_BRIDGE_WORKDIR @ container-bridge : /tmp/container-bridge-workdir
AB_CHARSET : utf-8
AB_CONNECTION : bridge
AB_CONNECTION_BRIDGE_ENCRYPTED_RPC_ENCRYPTION_KEY @ emeabeme : file=/secrets/bridge/password
AB_HOSTNAME_KEYSERVER_URLS : abks://key-server:6151
AB_MHUB_LOCAL_ROOT : /abinitio/deploy
AB_OPS_CONSOLE_URL : http://controlcenter:8080/controlcenter
AB_OPS_MONITOR : true
AB_OPS_MONITOR_RESOURCES : false
AB_OPS_PHYSICAL_HOSTNAME : blueprints
AB_PROC_DIR : /tmp
AB_WORK_DIR : /abinitio/work
apphubrc: |
AB_BRIDGE_VOLATILE_DIR : /tmp/ab-bridge-volatile-dir
AB_KEYSERVER_GROUP : AI-IC-AWS001a
AB_KEYSERVER_URLS : abks://key-server:6150
install-properties.config: |
AB_AIR_ROOT=//eme-0.eme-headless/abinitio/eme/eme
AB_APPLICATION_HUB=/usr/local/abinitio-app-hub
DO_CATALOGVIEW_PROJECT=y
DO_EME_INSTALL=y
DO_EXAMPLES_INSTALL=n
DO_EZ_PRIV=y
DO_MHUB_INSTALL=y
EZ_GENERATOR_AG_CATALOG_IP=datacatalog
EZ_GENERATOR_AG_CATALOG_NAME=Data Catalog Services
EZ_GENERATOR_AG_URL=http://authgateway:8080/authgateway
EZ_GENERATOR_AG_USER=aiadmin
EZ_GENERATOR_APPCONF_REL_LOC=edl
EZ_GENERATOR_APPID=expressit
EZ_GENERATOR_BLUEPRINTS_TO_INSTALL=ALL
EZ_GENERATOR_BLUEPRINT_SERVICE_HOST=blueprints
EZ_GENERATOR_BLUEPRINT_SERVICE_PORT=9870
EZ_GENERATOR_CATALOGVIEW_PHYSPROJECT=catalogview
EZ_GENERATOR_CATALOGVIEW_TECHSYSTEM=EnterpriseDataLake
EZ_GENERATOR_CC_HOST=http://controlcenter:8080/controlcenter
EZ_GENERATOR_CONFIG_MHUB_DEPLOYMENT_DIR=/abinitio/deploy/metadatahub-importer
EZ_GENERATOR_CONFIG_MHUB_MAIN_SCHEMA=mhub_main
EZ_GENERATOR_CONFIG_MHUB_META_SCHEMA=mhub_meta
EZ_GENERATOR_CONFIG_MHUB_USER=aiadmin
EZ_GENERATOR_DATAQUALITY=/ab_share/ab_appconf_root/global/abinitio/dataquality
EZ_GENERATOR_DATAQUALITY_RPATH=/Projects/abinitio/dataquality
EZ_GENERATOR_DCAT_URL=http://datacatalog:8080/datacatalog
EZ_GENERATOR_EI_PRODUCT_INSTANCE=Express>It
EZ_GENERATOR_EI_WORKSPACE=Blueprints (Pipelines)
EZ_GENERATOR_EME_TECHSYSTEM=Technical Repository
EZ_GENERATOR_EME_USES_AG_AUTH=y
EZ_GENERATOR_INSTALL_ACTIVE_METADATA_REFERENCE=y
EZ_GENERATOR_INSTALL_CODEGEN_TRACING=y
EZ_GENERATOR_INSTALL_CONTROL_TEST_RUNS=n
EZ_GENERATOR_LANDING_ROOT=/ab_share/ab_appconf_root/main/users
EZ_GENERATOR_LISTENER_SERVICE_HOST=blueprints
EZ_GENERATOR_LISTENER_SERVICE_PORT=9876
EZ_GENERATOR_LISTENER_SERVICE_URL=http://blueprints:9876
EZ_GENERATOR_MHUB_LOCAL_ROOT_DIR=/abinitio/deploy
EZ_GENERATOR_QUERYIT_HOST=localhost
EZ_GENERATOR_QUERYIT_RPATH=/Projects/queryit-instance-0
EZ_GENERATOR_QUERYIT_SANDBOX_INSTANCE=queryit-instance-0
EZ_GENERATOR_QUERYIT_SANDBOX_ROOT=/abinitio/sandboxes/private_sand
EZ_GENERATOR_QUERYIT_USER=aiadmin
EZ_GENERATOR_STDENV=/abinitio/sandboxes/sand/stdenv
EZ_GENERATOR_STDENV_RPATH=/Projects/stdenv
EZ_GENERATOR_USE_LOCAL_QUERYIT_SANDBOX=n
INSTALL_ACTIVE_METADATA_REFERENCE=y
INSTALL_CONFIG_USING_ABAPP_MHUB=y
MHUB_ABAPP_NAME=metadatahub
MHUB_DATASTORE_NAME=metadatahub-importer
MHUB_IMPORTER_USERNAME=aiadmin
MHUB_IMPORT_PROFILE_PATH=/abinitio/deploy/metadatahub-importer/config/import.profile
MHUB_URL=http://metadatahub:8080/metadatahub
SANDBOX_ROOT=/abinitio/sandboxes/sand
WAIT_BETWEEN_LOAD_ATTEMPTS=60
WAIT_FOR_LOAD_ATTEMPTS=150
EZ_GENERATOR_AG_ENCRYPTED_PASSWORD=file=/secrets/aiadmin/password
EZ_GENERATOR_AG_BASE64_PASSWORD=file=/secrets/aiadmin/password
MHUB_IMPORTER_ENCRYPTED_PASSWORD=file=/secrets/aiadmin/password
EZ_GENERATOR_CONFIG_MHUB_ENCRYPTED_PASSWORD=file=/secrets/aiadmin/password
kind: ConfigMap
metadata:
labels:
app.kubernetes.io/instance: blueprints
app.kubernetes.io/managed-by: Helm
app.kubernetes.io/name: blueprints
app.kubernetes.io/part-of: AbInitio
app.kubernetes.io/version: 4.4.1
helm.sh/chart: blueprints-2.4.3-a
name: blueprints
namespace: abinitio

18
rendered/manifests/k3s-dev/abinitio-platform/blueprints/v1_persistentvolumeclaim_blueprints-claim.yaml Normal file
View File

@@ -0,0 +1,18 @@
apiVersion: v1
kind: PersistentVolumeClaim
metadata:
labels:
app.kubernetes.io/instance: blueprints
app.kubernetes.io/managed-by: Helm
app.kubernetes.io/name: blueprints
app.kubernetes.io/part-of: AbInitio
app.kubernetes.io/version: 4.4.1
helm.sh/chart: blueprints-2.4.3-a
name: blueprints-claim
namespace: abinitio
spec:
accessModes:
- ReadWriteOnce
resources:
requests:
storage: 10Gi

31
rendered/manifests/k3s-dev/abinitio-platform/blueprints/v1_service_blueprints.yaml Normal file
View File

@@ -0,0 +1,31 @@
apiVersion: v1
kind: Service
metadata:
labels:
app.kubernetes.io/instance: blueprints
app.kubernetes.io/managed-by: Helm
app.kubernetes.io/name: blueprints
app.kubernetes.io/part-of: AbInitio
app.kubernetes.io/version: 4.4.1
helm.sh/chart: blueprints-2.4.3-a
name: blueprints
namespace: abinitio
spec:
ports:
- name: blueprints
port: 9870
protocol: TCP
targetPort: 9870
- name: listener
port: 9876
protocol: TCP
targetPort: 9876
- name: bridge
port: 7070
protocol: TCP
targetPort: 7070
publishNotReadyAddresses: false
selector:
app.kubernetes.io/instance: blueprints
app.kubernetes.io/name: blueprints
type: ClusterIP