-
Notifications
You must be signed in to change notification settings - Fork 3.7k
Expand file tree
/
Copy pathvalues-development.yaml
More file actions
132 lines (111 loc) · 3.51 KB
/
values-development.yaml
File metadata and controls
132 lines (111 loc) · 3.51 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
# values-development.yaml
#
# When to use: local development on kind / minikube / Docker Desktop, or any
# throwaway cluster where you don't need HA, TLS, or persistence guarantees.
# Minimal resource requests, single replica, no ingress.
#
# Prerequisites: a working kubectl context.
#
# Install:
# helm install sim-dev ./helm/sim \
# --namespace sim-dev --create-namespace \
# --values ./helm/sim/examples/values-development.yaml \
# --set app.env.BETTER_AUTH_SECRET=$(openssl rand -hex 32) \
# --set app.env.ENCRYPTION_KEY=$(openssl rand -hex 32) \
# --set app.env.INTERNAL_API_SECRET=$(openssl rand -hex 32) \
# --set app.env.CRON_SECRET=$(openssl rand -hex 32) \
# --set postgresql.auth.password=$(openssl rand -base64 24 | tr -d '/+=')
# Global configuration
global:
imageRegistry: "ghcr.io"
# Main application
app:
enabled: true
replicaCount: 1
# Resource allocation for development environment
resources:
limits:
memory: "4Gi"
cpu: "2000m"
requests:
memory: "2Gi"
cpu: "1000m"
# Development URLs
env:
NEXT_PUBLIC_APP_URL: "http://localhost:3000"
BETTER_AUTH_URL: "http://localhost:3000"
NEXT_PUBLIC_SOCKET_URL: "http://localhost:3002"
# Example secrets for development (replace with secure values for production)
# For production, generate using: openssl rand -hex 32
BETTER_AUTH_SECRET: "dev-32-char-auth-secret-not-secure-dev"
ENCRYPTION_KEY: "dev-32-char-encryption-key-not-secure"
INTERNAL_API_SECRET: "dev-32-char-internal-secret-not-secure"
CRON_SECRET: "dev-32-char-cron-secret-not-for-prod"
# Optional: API Key Encryption (leave empty for dev, encrypts API keys at rest)
# For production, generate 64-char hex using: openssl rand -hex 32
API_ENCRYPTION_KEY: "" # Optional - if not set, API keys stored in plain text
# Realtime service
realtime:
enabled: true
replicaCount: 1
# Resource allocation for realtime WebSocket service in development
resources:
limits:
memory: "2Gi"
cpu: "1000m"
requests:
memory: "1Gi"
cpu: "500m"
env:
NEXT_PUBLIC_APP_URL: "http://localhost:3000"
BETTER_AUTH_URL: "http://localhost:3000"
BETTER_AUTH_SECRET: "dev-32-char-auth-secret-not-secure-dev"
ALLOWED_ORIGINS: "http://localhost:3000"
# Database migrations
migrations:
enabled: true
# PostgreSQL database
postgresql:
enabled: true
# Simple authentication for development
auth:
username: postgres
password: "postgres"
database: simstudio
# PostgreSQL with pgvector extension for vector operations
image:
repository: pgvector/pgvector
tag: pg17
pullPolicy: IfNotPresent
# Minimal resource allocation for development PostgreSQL
resources:
limits:
memory: "1Gi"
cpu: "500m"
requests:
memory: "512Mi"
cpu: "250m"
# Persistence disabled for easier development (data will be lost on restart)
persistence:
enabled: false
# SSL/TLS disabled for local development
tls:
enabled: false
# Minimal PostgreSQL configuration for development
config:
maxConnections: 100
sharedBuffers: "256MB"
maxWalSize: "1GB"
minWalSize: "80MB"
# Ollama AI models (disabled by default for development)
ollama:
enabled: false
# Ingress (disabled for development - use port-forward for local access)
ingress:
enabled: false
# Pod disruption budget (disabled for development)
podDisruptionBudget:
enabled: false
# Network policies (disabled for development)
networkPolicy:
enabled: false