From 605ce6ca9a671c1e3c544295c6a569a9cac93092 Mon Sep 17 00:00:00 2001 From: Jonas Juselius Date: Thu, 1 Feb 2024 09:49:00 +0100 Subject: [PATCH] fix: update seq manifests --- seq/values.yaml | 122 ++++++++++++++++++++++++++++++++++++++++++++++++ 1 file changed, 122 insertions(+) create mode 100644 seq/values.yaml diff --git a/seq/values.yaml b/seq/values.yaml new file mode 100644 index 00000000..36ec0e93 --- /dev/null +++ b/seq/values.yaml @@ -0,0 +1,122 @@ +acceptEULA: "Y" + +# Set this URL if you enable ingress and/or AAD authentication. +# Without this URL set to include HTTPS, Seq will try to set a login redirect +# URL with HTTP instead of HTTPS and AAD's registration requires HTTPS. +# The result is that you'll get an error during login: +# AADSTS50011: The reply url specified in the request does not match the reply urls configured for the application +# baseURI: https://my.public.url/ + +# Set this to create an admin user with given password hash at first run. +# See here for docs on how to create the password hash: https://blog.datalust.co/setting-an-initial-password-when-deploying-seq-to-docker/ +# firstRunAdminUsername: "admin" +# firstRunAdminPasswordHash: "" +# firstRunRequireAuthenticationForHttpIngestion: true + +# The complete Seq API and UI. +# This API can accept events and serve API requests. +ui: + service: + port: 80 + ingress: + enabled: true + path: / + hosts: + - seq.beta.oceanbox.io + +# The ingestion-only API. +# This API is a subset of ui that can only ingest events. +ingestion: + service: + port: 5341 + ingress: + enabled: false + path: / + hosts: + - ingestion.seq.beta.oceanbox.io + +# Accept events in the GELF format and forward them to Seq. +gelf: + enabled: false + image: + repository: datalust/seq-input-gelf + pullPolicy: IfNotPresent + service: + port: 12201 + # GELF can be ingested through either TCP or UDP + protocol: TCP + +# Accept events in the Syslog format and forward them to Seq. +syslog: + enabled: false + image: + repository: datalust/seq-input-syslog + pullPolicy: IfNotPresent + service: + port: 514 + # Only UDP is currently supported for ingesting Syslog + protocol: UDP + +service: + type: ClusterIP + +ingress: + annotations: + cert-manager.io/cluster-issuer: letsencrypt-staging + nginx.ingress.kubernetes.io/whitelist-source-range: 10.0.0.0/8,172.16.0.0/12,192.168.0.0/16 + kubernetes.io/ingress.class: nginx + tls: + - secretName: seq-tls + hosts: + - seq.beta.oceanbox.io + labels: {} + +resources: + limits: + memory: 2Gi + +cache: + # The fraction of RAM that the cache should try fit within. Specifying a larger + # value may allow more events in RAM at the expense of potential instability. + # Setting it to `0` will disable the cache completely. + # 60% (`0.6`) is a good starting point for machines with up to ~8GB of RAM. + targetSize: 0.6 + +persistence: + enabled: true + path: /data + subPath: "" + accessMode: ReadWriteOnce + size: 8Gi + +serviceAccount: + create: false + name: + +## Enable RBAC +rbac: + create: false + rules: [] + +livenessProbe: + enabled: true + failureThreshold: 3 + initialDelaySeconds: 0 + periodSeconds: 10 + successThreshold: 1 + timeoutSeconds: 1 + +readinessProbe: + enabled: true + failureThreshold: 3 + initialDelaySeconds: 0 + periodSeconds: 10 + successThreshold: 1 + timeoutSeconds: 1 + +startupProbe: + enabled: true + failureThreshold: 30 + periodSeconds: 10 + +