Skip to content

Commit

Permalink
[fabric] Helm chart updates
Browse files Browse the repository at this point in the history
Signed-off-by: sownak <[email protected]>
  • Loading branch information
sownak committed May 30, 2024
1 parent 913f9f1 commit fe58011
Show file tree
Hide file tree
Showing 144 changed files with 4,072 additions and 6,636 deletions.
6 changes: 3 additions & 3 deletions platforms/hyperledger-besu/charts/besu-genesis/README.md
Original file line number Diff line number Diff line change
Expand Up @@ -14,7 +14,7 @@ helm repo add bevel https://hyperledger.github.io/bevel
helm install genesis bevel/besu-genesis
```

## Prerequisitess
## Prerequisites

- Kubernetes 1.19+
- Helm 3.2.0+
Expand Down Expand Up @@ -54,7 +54,7 @@ These parameters are refered to as same in each parent or child chart
| Name | Description | Default Value |
|--------|---------|-------------|
|`global.serviceAccountName` | The serviceaccount name that will be created for Vault Auth and k8S Secret management| `vault-auth` |
| `global.cluster.provider` | Kubernetes cluster provider like AWS EKS or minikube. Currently ony `aws` and `minikube` is tested | `aws` |
| `global.cluster.provider` | Kubernetes cluster provider like AWS EKS or minikube. Currently only `aws`, `azure` and `minikube` are tested | `aws` |
| `global.cluster.cloudNativeServices` | only `false` is implemented, `true` to use Cloud Native Services (SecretsManager and IAM for AWS; KeyVault & Managed Identities for Azure) is for future | `false` |
| `global.cluster.kubernetesUrl` | URL of the Kubernetes Cluster | `""` |
| `global.vault.type` | Type of Vault to support other providers. Currently, only `hashicorp` and `kubernetes` is supported. | `hashicorp` |
Expand All @@ -71,7 +71,7 @@ These parameters are refered to as same in each parent or child chart
| -------------| ---------- | --------- |
| `image.genesisUtils.repository` | Quorum/Besu hooks image repository | `ghcr.io/hyperledger/bevel-k8s-hooks` |
| `image.genesisUtils.tag` | Quorum/Besu hooks image tag | `qgt-0.2.12` |
| `image.pullSecret` | Provide the docker secret name in the namespace | `""` |
| `image.pullSecret` | Secret name in the namespace containing private image registry credentials | `""` |
| `image.pullPolicy` | Pull policy to be used for the Docker images | `IfNotPresent` |

### Settings
Expand Down
2 changes: 1 addition & 1 deletion platforms/hyperledger-besu/charts/besu-node/README.md
Original file line number Diff line number Diff line change
Expand Up @@ -85,7 +85,7 @@ This is where you can override the values for the [besu-tessera-node subchart](.
### Image
| Name | Description | Default Value |
| -------------| ---------- | --------- |
| `image.pullSecret` | Provide the docker secret name in the namespace | `""` |
| `image.pullSecret` | Secret name in the namespace containing private image registry credentials | `""` |
| `image.pullPolicy` | Pull policy to be used for the Docker images | `IfNotPresent` |
| `image.besu.repository` | Besu image repository | `hyperledger/besu`|
| `image.besu.tag` | Besu image tag as per version of Besu | `23.10.2`|
Expand Down
Original file line number Diff line number Diff line change
Expand Up @@ -14,7 +14,7 @@ helm repo add bevel https://hyperledger.github.io/bevel
helm install propose-validator bevel/besu-propose-validator
```

## Prerequisitess
## Prerequisites

- Kubernetes 1.19+
- Helm 3.2.0+
Expand Down Expand Up @@ -57,7 +57,7 @@ The command removes all the Kubernetes components associated with the chart and
| -------------| ---------- | --------- |
| `image.genesisUtils.repository` | Besu hooks image repository | `ghcr.io/hyperledger/bevel-k8s-hooks` |
| `image.genesisUtils.tag` | Besu hooks image tag | `qgt-0.2.12` |
| `image.pullSecret` | Provide the docker secret name in the namespace | `""` |
| `image.pullSecret` | Secret name in the namespace containing private image registry credentials | `""` |
| `image.pullPolicy` | Pull policy to be used for the Docker images | `IfNotPresent` |

### validators
Expand Down
4 changes: 2 additions & 2 deletions platforms/hyperledger-besu/charts/besu-tessera-node/README.md
Original file line number Diff line number Diff line change
Expand Up @@ -14,7 +14,7 @@ helm repo add bevel https://hyperledger.github.io/bevel
helm install my-tessera bevel/besu-tessera-node
```

## Prerequisitess
## Prerequisites

- Kubernetes 1.19+
- Helm 3.2.0+
Expand Down Expand Up @@ -88,7 +88,7 @@ These parameters are refered to as same in each parent or child chart
| `image.mysql.tag` | MySQL image tag | `5.7` |
| `image.hooks.repository` | Quorum/Besu hooks image repository | `ghcr.io/hyperledger/bevel-k8s-hooks` |
| `image.hooks.tag` | Quorum/Besu hooks image tag | `qgt-0.2.12` |
| `image.pullSecret` | Provide the docker secret name in the namespace | `""` |
| `image.pullSecret` | Secret name in the namespace containing private image registry credentials | `""` |
| `image.pullPolicy` | Pull policy to be used for the Docker images | `IfNotPresent` |


Expand Down
12 changes: 6 additions & 6 deletions platforms/hyperledger-besu/charts/besu-tlscert-gen/README.md
Original file line number Diff line number Diff line change
Expand Up @@ -14,7 +14,7 @@ helm repo add bevel https://hyperledger.github.io/bevel
helm install my-release bevel/besu-tlscert-gen
```

## Prerequisitess
## Prerequisites

- Kubernetes 1.19+
- Helm 3.2.0+
Expand Down Expand Up @@ -57,24 +57,24 @@ These parameters are refered to as same in each parent or chold chart
| `global.vault.address`| URL of the Vault server. | `""` |
| `global.vault.authPath` | Authentication path for Vault | `supplychain` |
| `global.vault.network` | Network type which will determine the vault policy | `besu` |
| `global.vault.secretEngine` | Provide the value for vault secret engine name | `secretsv2` |
| `global.vault.secretPrefix` | Provide the value for vault secret prefix which must start with `data/` | `data/supplychain` |
| `global.proxy.externalUrlSuffix` | Provide the External URL suffix which will be used as CN to generate certificate | `test.blockchaincloudpoc.com` |
| `global.vault.secretEngine` | Vault secret engine name | `secretsv2` |
| `global.vault.secretPrefix` | Vault secret prefix which must start with `data/` | `data/supplychain` |
| `global.proxy.externalUrlSuffix` | External URL suffix which will be used as CN to generate certificate | `test.blockchaincloudpoc.com` |

### Image

| Name | Description| Default Value |
|------------|-----------|---------|
| `image.repository` | Docker repository which will be used for this job | `ghcr.io/hyperledger/bevel-alpine` |
| `image.tag` | Docker image tag which will be used for this job | `latest` |
| `image.pullSecret` | Provide the docker secret name | `""` |
| `image.pullSecret` | Secret name in the namespace containing private image registry credentials | `""` |
| `image.pullPolicy` | The pull policy for the image | `IfNotPresent` |

### Settings
| Name | Description | Default Value |
| ------------| -------------- | --------------- |
| `settings.tmTls` | Set value to true when transaction manager like tessera uses tls. This enables TLS for the transaction manager and Besu node. | `True` |
| `settings.certSubject` | Provide the X.509 subject for root CA | `"CN=DLT Root CA,OU=DLT,O=DLT,L=London,C=GB"` |
| `settings.certSubject` | The X.509 subject for root CA | `"CN=DLT Root CA,OU=DLT,O=DLT,L=London,C=GB"` |

### Common parameters

Expand Down
Original file line number Diff line number Diff line change
Expand Up @@ -119,7 +119,7 @@ spec:
mountPath: /scripts/bevel-vault.sh
subPath: bevel-vault.sh
containers:
- name: "generate-certs"
- name: "generate-certs"
image: "{{ .Values.image.repository }}:{{ .Values.image.tag }}"
imagePullPolicy: {{ $.Values.image.pullPolicy }}
env:
Expand Down Expand Up @@ -345,7 +345,7 @@ spec:
rm payload.json
fi;
# Create tls secret with the certificates
kubectl get configmap --namespace {{ .Release.Namespace }} {{ include "besu-tlscert-gen.name" . }}-tls-certs
kubectl get secret --namespace {{ .Release.Namespace }} {{ include "besu-tlscert-gen.name" . }}-tls-certs
if [ $? -ne 0 ]; then
kubectl create secret tls --namespace {{ .Release.Namespace }} {{ include "besu-tlscert-gen.name" . }}-tls-certs \
--cert=${AMBASSADORTLS_PATH}/certchain.pem \
Expand Down
Loading

0 comments on commit fe58011

Please sign in to comment.