diff --git a/helm/core/Chart.yaml b/helm/core/Chart.yaml index fafe7934cc..9d39f868d9 100644 --- a/helm/core/Chart.yaml +++ b/helm/core/Chart.yaml @@ -4,10 +4,15 @@ description: Helm chart for deploying higress gateways icon: https://higress.io/img/higress_logo_small.png home: http://higress.io/ keywords: -- higress -- gateways + - higress + - gateways name: higress-core sources: -- http://github.com/alibaba/higress + - http://github.com/alibaba/higress +dependencies: + - condition: global.enableRedis + name: redis + repository: "file://../redis" + version: 0.0.1 type: application -version: 2.1.0-rc.1 +version: 2.1.0-rc.1 \ No newline at end of file diff --git a/helm/core/charts/redis/.helmignore b/helm/core/charts/redis/.helmignore new file mode 100644 index 0000000000..0e8a0eb36f --- /dev/null +++ b/helm/core/charts/redis/.helmignore @@ -0,0 +1,23 @@ +# Patterns to ignore when building packages. +# This supports shell glob matching, relative path matching, and +# negation (prefixed with !). Only one pattern per line. +.DS_Store +# Common VCS dirs +.git/ +.gitignore +.bzr/ +.bzrignore +.hg/ +.hgignore +.svn/ +# Common backup files +*.swp +*.bak +*.tmp +*.orig +*~ +# Various IDEs +.project +.idea/ +*.tmproj +.vscode/ diff --git a/helm/core/charts/redis/Chart.yaml b/helm/core/charts/redis/Chart.yaml new file mode 100644 index 0000000000..5d7bd8f633 --- /dev/null +++ b/helm/core/charts/redis/Chart.yaml @@ -0,0 +1,24 @@ +apiVersion: v2 +name: redis +description: A Helm chart for Kubernetes + +# A chart can be either an 'application' or a 'library' chart. +# +# Application charts are a collection of templates that can be packaged into versioned archives +# to be deployed. +# +# Library charts provide useful utilities or functions for the chart developer. They're included as +# a dependency of application charts to inject those utilities and functions into the rendering +# pipeline. Library charts do not define any templates and therefore cannot be deployed. +type: application + +# This is the chart version. This version number should be incremented each time you make changes +# to the chart and its templates, including the app version. +# Versions are expected to follow Semantic Versioning (https://semver.org/) +version: 0.0.1 + +# This is the version number of the application being deployed. This version number should be +# incremented each time you make changes to the application. Versions are not expected to +# follow Semantic Versioning. They should reflect the version the application is using. +# It is recommended to use it with quotes. +appVersion: "7.4.0-v3" \ No newline at end of file diff --git a/helm/core/charts/redis/templates/_helpers.tpl b/helm/core/charts/redis/templates/_helpers.tpl new file mode 100644 index 0000000000..0409fc3ef8 --- /dev/null +++ b/helm/core/charts/redis/templates/_helpers.tpl @@ -0,0 +1,34 @@ +{{/* +Expand the name of the chart. +*/}} + +{{- define "redis.name" -}} +{{- .Values.redis.name | default "redis-stack-server" -}} +{{- end }} + +{{/* +Create chart name and version as used by the chart label. +*/}} +{{- define "redis.chart" -}} +{{- printf "%s-%s" .Chart.Name .Chart.Version | replace "+" "_" | trunc 63 | trimSuffix "-" }} +{{- end }} + +{{/* +Common labels +*/}} +{{- define "redis.labels" -}} +helm.sh/chart: {{ include "redis.chart" . }} +{{ include "redis.selectorLabels" . }} +{{- if .Chart.AppVersion }} +app.kubernetes.io/version: {{ .Chart.AppVersion | quote }} +{{- end }} +app.kubernetes.io/managed-by: {{ .Release.Service }} +{{- end }} + +{{/* +Selector labels +*/}} +{{- define "redis.selectorLabels" -}} +app.kubernetes.io/name: {{ include "redis.name" . }} +app.kubernetes.io/instance: {{ .Release.Name }} +{{- end }} diff --git a/helm/core/charts/redis/templates/configmap.yaml b/helm/core/charts/redis/templates/configmap.yaml new file mode 100644 index 0000000000..66372aae1a --- /dev/null +++ b/helm/core/charts/redis/templates/configmap.yaml @@ -0,0 +1,10 @@ +apiVersion: v1 +kind: ConfigMap +metadata: + name: {{ include "redis.name" . }} + namespace: {{ .Release.Namespace }} +data: + redis-stack.conf: | + {{- if .Values.redis.password }} + requirepass {{ .Values.redis.password }} + {{- end }} \ No newline at end of file diff --git a/helm/core/charts/redis/templates/pvc.yaml b/helm/core/charts/redis/templates/pvc.yaml new file mode 100644 index 0000000000..d8041e4e0f --- /dev/null +++ b/helm/core/charts/redis/templates/pvc.yaml @@ -0,0 +1,16 @@ +{{- if .Values.redis.persistence.enabled }} +apiVersion: v1 +kind: PersistentVolumeClaim +metadata: + name: {{ include "redis.name" . }} + namespace: {{ .Release.Namespace }} +spec: + accessModes: + {{- range .Values.redis.persistence.accessModes }} + - {{ . | quote }} + {{- end }} + storageClassName: {{ .Values.redis.persistence.storageClass }} + resources: + requests: + storage: {{ .Values.redis.persistence.size | quote }} +{{- end }} \ No newline at end of file diff --git a/helm/core/charts/redis/templates/service.yaml b/helm/core/charts/redis/templates/service.yaml new file mode 100644 index 0000000000..17c13f00b4 --- /dev/null +++ b/helm/core/charts/redis/templates/service.yaml @@ -0,0 +1,15 @@ +apiVersion: v1 +kind: Service +metadata: + name: {{ include "redis.name" . }} + namespace: {{ .Release.Namespace }} + labels: + {{- include "redis.labels" . | nindent 4 }} +spec: + type: {{ .Values.redis.service.type }} + ports: + - port: {{ .Values.redis.service.port }} + targetPort: 6379 + protocol: TCP + selector: + {{- include "redis.selectorLabels" . | nindent 4 }} \ No newline at end of file diff --git a/helm/core/charts/redis/templates/statefulset.yaml b/helm/core/charts/redis/templates/statefulset.yaml new file mode 100644 index 0000000000..a88f8249d7 --- /dev/null +++ b/helm/core/charts/redis/templates/statefulset.yaml @@ -0,0 +1,74 @@ +apiVersion: apps/v1 +kind: StatefulSet +metadata: + name: {{ include "redis.name" . }} + namespace: {{ .Release.Namespace }} + labels: + {{- include "redis.labels" . | nindent 4 }} +spec: + replicas: {{ .Values.redis.replicas }} + serviceName: {{ include "redis.name" . }} + selector: + matchLabels: + {{- include "redis.selectorLabels" . | nindent 6 }} + template: + metadata: + labels: + {{- include "redis.selectorLabels" . | nindent 8 }} + spec: + terminationGracePeriodSeconds: 10 + {{- with .Values.global.imagePullSecrets }} + imagePullSecrets: + {{- toYaml . | nindent 8 }} + {{- end }} + containers: + - name: {{ .Chart.Name }} + image: "{{ .Values.global.hub }}/{{ .Values.redis.image | default "redis-stack-server" }}:{{ .Values.redis.tag | default .Chart.AppVersion }}" + {{- if .Values.global.imagePullPolicy }} + imagePullPolicy: {{ .Values.global.imagePullPolicy }} + {{- end }} + ports: + - name: http + containerPort: 6379 + protocol: TCP + livenessProbe: + tcpSocket: + port: 6379 + initialDelaySeconds: 15 + periodSeconds: 10 + readinessProbe: + tcpSocket: + port: 6379 + initialDelaySeconds: 15 + periodSeconds: 10 + resources: + {{- toYaml .Values.redis.resources | nindent 12 }} + volumeMounts: + - name: config + mountPath: /redis-stack.conf + subPath: redis-stack.conf + {{- if .Values.redis.persistence.enabled }} + - name: db + mountPath: /data + {{- end }} + {{- with .Values.redis.nodeSelector }} + nodeSelector: + {{- toYaml . | nindent 8 }} + {{- end }} + {{- with .Values.redis.affinity }} + affinity: + {{- toYaml . | nindent 8 }} + {{- end }} + {{- with .Values.redis.tolerations }} + tolerations: + {{- toYaml . | nindent 8 }} + {{- end }} + volumes: + - name: config + configMap: + name: {{ include "redis.name" . }} + {{- if .Values.redis.persistence.enabled }} + - name: db + persistentVolumeClaim: + claimName: {{ include "redis.name" . }} + {{- end }} \ No newline at end of file diff --git a/helm/core/charts/redis/values.yaml b/helm/core/charts/redis/values.yaml new file mode 100644 index 0000000000..d1ca05b5ab --- /dev/null +++ b/helm/core/charts/redis/values.yaml @@ -0,0 +1,48 @@ +# Default values for redis. +# This is a YAML-formatted file. +# Declare variables to be passed into your templates. +global: + # -- Specify the image registry and pull policy + hub: higress-registry.cn-hangzhou.cr.aliyuncs.com/higress + # -- Specify image pull policy if default behavior isn't desired. + # Default behavior: latest images will be Always else IfNotPresent. + imagePullPolicy: "" + # -- Specify the image pull secrets + imagePullSecrets: [] + +redis: + # -- Specify the name + name: redis-stack-server + # -- Specify the image + image: "redis-stack-server" + # -- Specify the tag + tag: "7.4.0-v3" + # -- Specify the number of replicas + replicas: 1 + # -- Specify the password, if not set, no password is used + password: "" + # -- Service parameters + service: + # -- Exporter service type + type: ClusterIP + # -- Exporter service port + port: 6379 + # -- Specify the resources + resources: {} + # -- NodeSelector Node labels for Redis + nodeSelector: {} + # -- Tolerations for Redis + tolerations: [] + # -- Affinity for Redis + affinity: {} + persistence: + # -- Enable persistence on Redis + enabled: false + # -- If defined, storageClassName: + # -- If undefined (the default) or set to null, no storageClassName spec is set, choosing the default provisioner + storageClass: "" + # -- Persistent Volume access modes + accessModes: + - ReadWriteOnce + # -- Persistent Volume size + size: 1Gi \ No newline at end of file diff --git a/helm/core/values.yaml b/helm/core/values.yaml index 0c6ead3a5f..33e49ba80d 100644 --- a/helm/core/values.yaml +++ b/helm/core/values.yaml @@ -9,6 +9,8 @@ global: xdsMaxRecvMsgSize: "104857600" defaultUpstreamConcurrencyThreshold: 10000 enableSRDS: true + # -- Whether to enable Redis(redis-stack-server) for Higress, default is false. + enableRedis: false onDemandRDS: false hostRDSMergeSubset: false onlyPushRouteCluster: true @@ -580,7 +582,7 @@ controller: podSecurityContext: {} - # fsGroup: 2000 + # fsGroup: 2000 ports: - name: http @@ -604,9 +606,9 @@ controller: # capabilities: # drop: # - ALL - # readOnlyRootFilesystem: true - # runAsNonRoot: true - # runAsUser: 1000 + # readOnlyRootFilesystem: true + # runAsNonRoot: true + # runAsUser: 1000 resources: requests: @@ -729,3 +731,40 @@ downstream: upstream: idleTimeout: 10 connectionBufferLimits: 10485760 + +redis: + redis: + name: redis-stack-server + # -- Specify the image + image: "redis-stack-server" + # -- Specify the tag + tag: "7.4.0-v3" + # -- Specify the number of replicas + replicas: 1 + # -- Specify the password, if not set, no password is used + password: "" + # -- Service parameters + service: + # -- Exporter service type + type: ClusterIP + # -- Exporter service port + port: 6379 + # -- Specify the resources + resources: {} + # -- NodeSelector Node labels for Redis + nodeSelector: {} + # -- Tolerations for Redis + tolerations: [] + # -- Affinity for Redis + affinity: {} + persistence: + # -- Enable persistence on Redis, default is false + enabled: false + # -- If defined, storageClassName: + # -- If undefined (the default) or set to null, no storageClassName spec is set, choosing the default provisioner + storageClass: "" + # -- Persistent Volume access modes + accessModes: + - ReadWriteOnce + # -- Persistent Volume size + size: 1Gi \ No newline at end of file diff --git a/helm/higress/README.md b/helm/higress/README.md index 2f261d7709..835387f173 100644 --- a/helm/higress/README.md +++ b/helm/higress/README.md @@ -167,6 +167,7 @@ The command removes all the Kubernetes components associated with the chart and | global.enableLDSCache | bool | `false` | | | global.enableProxyProtocol | bool | `false` | | | global.enablePushAllMCPClusters | bool | `true` | | +| global.enableRedis | bool | `false` | Whether to enable Redis(redis-stack-server) for Higress, default is false. | | global.enableSRDS | bool | `true` | | | global.enableStatus | bool | `true` | If true, Higress Controller will update the status field of Ingress resources. When migrating from Nginx Ingress, in order to avoid status field of Ingress objects being overwritten, this parameter needs to be set to false, so Higress won't write the entry IP to the status field of the corresponding Ingress object. | | global.externalIstiod | bool | `false` | Configure a remote cluster data plane controlled by an external istiod. When set to true, istiod is not deployed locally and only a subset of the other discovery charts are enabled. | @@ -272,6 +273,22 @@ The command removes all the Kubernetes components associated with the chart and | pilot.serviceAnnotations | object | `{}` | | | pilot.tag | string | `""` | | | pilot.traceSampling | float | `1` | | +| redis.redis.affinity | object | `{}` | Affinity for Redis | +| redis.redis.image | string | `"redis-stack-server"` | Specify the image | +| redis.redis.name | string | `"redis-stack-server"` | | +| redis.redis.nodeSelector | object | `{}` | NodeSelector Node labels for Redis | +| redis.redis.password | string | `""` | Specify the password, if not set, no password is used | +| redis.redis.persistence.accessModes | list | `["ReadWriteOnce"]` | Persistent Volume access modes | +| redis.redis.persistence.enabled | bool | `false` | Enable persistence on Redis, default is false | +| redis.redis.persistence.size | string | `"1Gi"` | Persistent Volume size | +| redis.redis.persistence.storageClass | string | `""` | If undefined (the default) or set to null, no storageClassName spec is set, choosing the default provisioner | +| redis.redis.replicas | int | `1` | Specify the number of replicas | +| redis.redis.resources | object | `{}` | Specify the resources | +| redis.redis.service | object | `{"port":6379,"type":"ClusterIP"}` | Service parameters | +| redis.redis.service.port | int | `6379` | Exporter service port | +| redis.redis.service.type | string | `"ClusterIP"` | Exporter service type | +| redis.redis.tag | string | `"7.4.0-v3"` | Specify the tag | +| redis.redis.tolerations | list | `[]` | Tolerations for Redis | | revision | string | `""` | | | tracing.enable | bool | `false` | | | tracing.sampling | int | `100` | |