| accessLogsBufferSize |
int |
Number of access logs to buffer per Envoy proxy. |
50 |
| cluster |
string |
Name of the workload cluster to deploy Gloo agent in. |
|
| devMode |
bool |
Set to true to enable development mode for the logger, which can cause panics. Do not use in production. |
false |
| ext-auth-service |
struct |
Customizations for the ext-auth-service Helm chart. |
|
| ext-auth-service.enabled |
bool |
if true, deploy the dependency service (default false) |
false |
| ext-auth-service.extraTemplateAnnotations |
map[string, string] |
extra annotations to add to the dependency service pods. Defaults to proxy.istio.io/config: ‘{ “holdApplicationUntilProxyStarts”: true }’ |
{“proxy.istio.io/config”:"{ "holdApplicationUntilProxyStarts": true }"} |
| ext-auth-service.extraTemplateAnnotations.<MAP_KEY> |
string |
extra annotations to add to the dependency service pods. Defaults to proxy.istio.io/config: ‘{ “holdApplicationUntilProxyStarts”: true }’ |
|
| ext-auth-service.extraTemplateAnnotations.proxy.istio.io/config |
string |
extra annotations to add to the dependency service pods. Defaults to proxy.istio.io/config: ‘{ “holdApplicationUntilProxyStarts”: true }’ |
{ “holdApplicationUntilProxyStarts”: true } |
| gloo-network-agent |
struct |
Customizations for the Gloo Network-specific agent functionality. |
|
| gloo-network-agent.enabled |
bool |
if true, deploy the dependency service (default false) |
false |
| glooMeshAgent |
struct |
|
|
| glooMeshAgent |
struct |
Configuration for the glooMeshAgent deployment. |
|
| glooMeshAgent.deploymentOverrides |
struct |
Arbitrary overrides for the component's deployment template. |
|
| glooMeshAgent.enabled |
bool |
Enable creation of the deployment/service. |
true |
| glooMeshAgent.env[] |
slice |
Environment variables for the container. For more info, see the Kubernetes documentation. |
[{“name”:“POD_NAMESPACE”,“valueFrom”:{“fieldRef”:{“fieldPath”:“metadata.namespace”}}},{“name”:“K8S_MEM_LIMIT”,“valueFrom”:{“resourceFieldRef”:{“resource”:“limits.memory”,“divisor”:“1”}}}] |
| glooMeshAgent.extraEnvs |
struct |
Extra environment variables for the container |
|
| glooMeshAgent.floatingUserId |
bool |
Allow the pod to be assigned a dynamic user ID. Required for OpenShift installations. |
false |
| glooMeshAgent.image |
struct |
Container image. |
|
| glooMeshAgent.image.pullPolicy |
string |
Image pull policy. |
IfNotPresent |
| glooMeshAgent.image.pullSecret |
string |
Image pull secret. |
|
| glooMeshAgent.image.registry |
string |
Image registry. |
gcr.io/gloo-mesh |
| glooMeshAgent.image.repository |
string |
Image name (repository). |
gloo-mesh-agent |
| glooMeshAgent.image.tag |
string |
Version tag for the container image. |
|
| glooMeshAgent.ports |
map[string, uint32] |
Service ports as a map from port name to port number. |
{“grpc”:9977,“healthcheck”:8090,“http”:9988,“stats”:9091} |
| glooMeshAgent.ports.<MAP_KEY> |
uint32 |
Service ports as a map from port name to port number. |
|
| glooMeshAgent.ports.grpc |
uint32 |
Service ports as a map from port name to port number. |
9977 |
| glooMeshAgent.ports.healthcheck |
uint32 |
Service ports as a map from port name to port number. |
8090 |
| glooMeshAgent.ports.http |
uint32 |
Service ports as a map from port name to port number. |
9988 |
| glooMeshAgent.ports.stats |
uint32 |
Service ports as a map from port name to port number. |
9091 |
| glooMeshAgent.resources |
struct |
Container resource requirements. For more info, see the Kubernetes documentation. |
{“requests”:{“cpu”:“50m”,“memory”:“128Mi”}} |
| glooMeshAgent.runAsUser |
uint32 |
Static user ID to run the containers as. Unused if floatingUserId is ‘true’. |
10101 |
| glooMeshAgent.securityContext |
struct |
Container security context. Set to ‘false’ to omit the security context entirely. For more info, see the Kubernetes documentation. |
|
| glooMeshAgent.serviceOverrides |
struct |
Arbitrary overrides for the component's service template. |
|
| glooMeshAgent.serviceType |
string |
Kubernetes service type. Can be either “ClusterIP”, “NodePort”, “LoadBalancer”, or “ExternalName”. |
ClusterIP |
| glooMeshAgent.sidecars |
map[string, struct] |
Optional configuration for the deployed containers. |
{} |
| glooMeshAgent.sidecars.<MAP_KEY> |
struct |
Optional configuration for the deployed containers. |
|
| glooMeshAgent.sidecars.<MAP_KEY>.env[] |
slice |
Environment variables for the container. For more info, see the Kubernetes documentation. |
|
| glooMeshAgent.sidecars.<MAP_KEY>.extraEnvs |
struct |
Extra environment variables for the container |
|
| glooMeshAgent.sidecars.<MAP_KEY>.image |
struct |
Container image. |
|
| glooMeshAgent.sidecars.<MAP_KEY>.image.pullPolicy |
string |
Image pull policy. |
|
| glooMeshAgent.sidecars.<MAP_KEY>.image.pullSecret |
string |
Image pull secret. |
|
| glooMeshAgent.sidecars.<MAP_KEY>.image.registry |
string |
Image registry. |
|
| glooMeshAgent.sidecars.<MAP_KEY>.image.repository |
string |
Image name (repository). |
|
| glooMeshAgent.sidecars.<MAP_KEY>.image.tag |
string |
Version tag for the container image. |
|
| glooMeshAgent.sidecars.<MAP_KEY>.resources |
struct |
Container resource requirements. For more info, see the Kubernetes documentation. |
|
| glooMeshAgent.sidecars.<MAP_KEY>.securityContext |
struct |
Container security context. Set to ‘false’ to omit the security context entirely. For more info, see the Kubernetes documentation. |
|
| glooMeshPortalServer |
struct |
|
|
| glooMeshPortalServer |
struct |
Configuration for the glooMeshPortalServer deployment. |
|
| glooMeshPortalServer.apiKeyStorage |
struct |
Configure backend storage for API keys. |
|
| glooMeshPortalServer.apiKeyStorage.configPath |
string |
Path for API key storage config file |
/etc/redis/config.yaml |
| glooMeshPortalServer.apiKeyStorage.secretKey |
string |
The string value that you want to use to hash API keys before they are stored in the backing database. |
change this |
| glooMeshPortalServer.apiKeyStorage.type |
string |
Backend storage for API keys. Currently, redis is supported. |
redis |
| glooMeshPortalServer.deploymentOverrides |
struct |
Arbitrary overrides for the component's deployment template. |
|
| glooMeshPortalServer.devMode |
bool |
Set to true to enable development mode for the logger, which can cause panics. Do not use in production. |
false |
| glooMeshPortalServer.enabled |
bool |
Deploy the Portal server for Gloo Platform Portal to the cluster. |
false |
| glooMeshPortalServer.enabled |
bool |
Enable creation of the deployment/service. |
true |
| glooMeshPortalServer.env[] |
slice |
Environment variables for the container. For more info, see the Kubernetes documentation. |
[{“name”:“POD_NAMESPACE”,“valueFrom”:{“fieldRef”:{“fieldPath”:“metadata.namespace”}}},{“name”:“APIKEY_STORAGE_SECRET_KEY”,“valueFrom”:{“secretKeyRef”:{“name”:“portal-storage-secret-key”,“key”:“key”}}}] |
| glooMeshPortalServer.extraEnvs |
struct |
Extra environment variables for the container |
|
| glooMeshPortalServer.floatingUserId |
bool |
Allow the pod to be assigned a dynamic user ID. Required for OpenShift installations. |
false |
| glooMeshPortalServer.image |
struct |
Container image. |
|
| glooMeshPortalServer.image.pullPolicy |
string |
Image pull policy. |
IfNotPresent |
| glooMeshPortalServer.image.pullSecret |
string |
Image pull secret. |
|
| glooMeshPortalServer.image.registry |
string |
Image registry. |
gcr.io/gloo-mesh |
| glooMeshPortalServer.image.repository |
string |
Image name (repository). |
gloo-mesh-portal-server |
| glooMeshPortalServer.image.tag |
string |
Version tag for the container image. |
|
| glooMeshPortalServer.ports |
map[string, uint32] |
Service ports as a map from port name to port number. |
{“http”:8080} |
| glooMeshPortalServer.ports.<MAP_KEY> |
uint32 |
Service ports as a map from port name to port number. |
|
| glooMeshPortalServer.ports.http |
uint32 |
Service ports as a map from port name to port number. |
8080 |
| glooMeshPortalServer.resources |
struct |
Container resource requirements. For more info, see the Kubernetes documentation. |
{“requests”:{“cpu”:“50m”,“memory”:“128Mi”}} |
| glooMeshPortalServer.runAsUser |
uint32 |
Static user ID to run the containers as. Unused if floatingUserId is ‘true’. |
10101 |
| glooMeshPortalServer.securityContext |
struct |
Container security context. Set to ‘false’ to omit the security context entirely. For more info, see the Kubernetes documentation. |
|
| glooMeshPortalServer.serviceOverrides |
struct |
Arbitrary overrides for the component's service template. |
|
| glooMeshPortalServer.serviceType |
string |
Kubernetes service type. Can be either “ClusterIP”, “NodePort”, “LoadBalancer”, or “ExternalName”. |
ClusterIP |
| glooMeshPortalServer.sidecars |
map[string, struct] |
Optional configuration for the deployed containers. |
{} |
| glooMeshPortalServer.sidecars.<MAP_KEY> |
struct |
Optional configuration for the deployed containers. |
|
| glooMeshPortalServer.sidecars.<MAP_KEY>.env[] |
slice |
Environment variables for the container. For more info, see the Kubernetes documentation. |
|
| glooMeshPortalServer.sidecars.<MAP_KEY>.extraEnvs |
struct |
Extra environment variables for the container |
|
| glooMeshPortalServer.sidecars.<MAP_KEY>.image |
struct |
Container image. |
|
| glooMeshPortalServer.sidecars.<MAP_KEY>.image.pullPolicy |
string |
Image pull policy. |
|
| glooMeshPortalServer.sidecars.<MAP_KEY>.image.pullSecret |
string |
Image pull secret. |
|
| glooMeshPortalServer.sidecars.<MAP_KEY>.image.registry |
string |
Image registry. |
|
| glooMeshPortalServer.sidecars.<MAP_KEY>.image.repository |
string |
Image name (repository). |
|
| glooMeshPortalServer.sidecars.<MAP_KEY>.image.tag |
string |
Version tag for the container image. |
|
| glooMeshPortalServer.sidecars.<MAP_KEY>.resources |
struct |
Container resource requirements. For more info, see the Kubernetes documentation. |
|
| glooMeshPortalServer.sidecars.<MAP_KEY>.securityContext |
struct |
Container security context. Set to ‘false’ to omit the security context entirely. For more info, see the Kubernetes documentation. |
|
| glooMeshPortalServer.verbose |
bool |
Enable verbose/debug logging. |
false |
| insecure |
bool |
Permit unencrypted and unauthenticated communication between Gloo control and data planes. Do not use in production. |
false |
| istiodSidecar |
struct |
Configuration for the istiod sidecar deployment. |
|
| istiodSidecar.createRoleBinding |
bool |
Create the cluster role binding for the istiod sidecar. Set this value to ‘true’ only when using the Vault integration. |
false |
| istiodSidecar.istiodServiceAccount |
struct |
Object reference for the istiod service account. |
|
| istiodSidecar.istiodServiceAccount.name |
string |
|
istiod |
| istiodSidecar.istiodServiceAccount.namespace |
string |
|
istio-system |
| leaderElection |
bool |
Enable leader election for the high-availability deployment. |
true |
| legacyMetricsPipeline |
struct |
Configuration for the legacy metrics pipeline, which uses Gloo agents to propagate metrics to the management server. |
|
| legacyMetricsPipeline.enabled |
bool |
Set to false to disable the legacy telemetry pipeline. |
true |
| managedInstallations |
struct |
Subchart for setting up managed installations of Control Planes and Gateways in workload clusters. |
|
| managedInstallations.controlPlane |
struct |
Configuration for the managed Istio control plane instance. |
|
| managedInstallations.controlPlane.enabled |
bool |
Install the managed Istio control plane instance in the cluster. |
true |
| managedInstallations.controlPlane.installations[] |
[]struct |
List of Istio control plane installations. |
[{“revision”:“auto”,“clusters”:null,“istioOperatorSpec”:{}}] |
| managedInstallations.controlPlane.installations[].clusters[] |
[]ptr |
Clusters to install the Istio control planes in. |
|
| managedInstallations.controlPlane.installations[].clusters[].defaultRevision |
bool |
When set to true, the installation for this revision is applied as the active Istio installation in the cluster. Resources with the ‘istio-injection=true’ label entry use this revision. You might change this setting for Istio installations during a canary upgrade. For more info, see the upgrade docs. |
|
| managedInstallations.controlPlane.installations[].clusters[].name |
string |
Name of the cluster to install Istio into. Must match the registered cluster name. |
|
| managedInstallations.controlPlane.installations[].clusters[].trustDomain |
string |
Trust domain value for this cluster's Istio installation mesh config. Defaults to the cluster's name. |
|
| managedInstallations.controlPlane.installations[].istioOperatorSpec |
struct |
IstioOperator specification for the control plane. For more info, see the IstioOperatorSpec reference. |
|
| managedInstallations.controlPlane.installations[].revision |
string |
Istio revision for this installation, such as ‘1-17’. Label workload resources with ‘istio.io/rev=$REVISION’ to use this installation. Defaults to ‘AUTO’, which installs the default supported version of Gloo Istio. |
|
| managedInstallations.eastWestGateways[] |
[]struct |
Configuration for the managed east-west gateway. |
null |
| managedInstallations.eastWestGateways[].enabled |
bool |
Install the gateway in the cluster. |
|
| managedInstallations.eastWestGateways[].installations[] |
[]struct |
List of Istio gateway installations. For more info, see the GatewayInstallation reference. |
|
| managedInstallations.eastWestGateways[].installations[].clusters[] |
[]ptr |
Clusters to install the gateway in. |
|
| managedInstallations.eastWestGateways[].installations[].clusters[].activeGateway |
bool |
When set to true, the installation for this revision is applied as the active gateway through which primary service traffic is routed in the cluster. If the istioOperatorSpec defines a service, this field switches the service selectors to the revision specified in the gatewayRevsion. You might change this setting for gateway installations during a canary upgrade. For more info, see the upgrade docs. |
|
| managedInstallations.eastWestGateways[].installations[].clusters[].name |
string |
Name of the cluster to install the gateway into. Must match the registered cluster name. |
|
| managedInstallations.eastWestGateways[].installations[].clusters[].trustDomain |
string |
Trust domain value for this cluster's Istio installation mesh config. Defaults to the cluster's name. |
|
| managedInstallations.eastWestGateways[].installations[].controlPlaneRevision |
string |
Optional: The revision of an Istio control plane in the cluster that this gateway should also use. If a control plane installation of this revision is not found, no gateway is created. |
|
| managedInstallations.eastWestGateways[].installations[].gatewayRevision |
string |
Istio revision for this installation, such as ‘1-17’. Defaults to ‘AUTO’, which installs the default supported version of Gloo Istio. |
|
| managedInstallations.eastWestGateways[].installations[].istioOperatorSpec |
struct |
IstioOperator specification for the gateway. For more info, see the IstioOperatorSpec reference. |
|
| managedInstallations.eastWestGateways[].name |
string |
Name of the gateway. Must be unique. |
|
| managedInstallations.enabled |
bool |
Enable managed Istio installations. |
false |
| managedInstallations.northSouthGateways[] |
[]struct |
Configuration for the managed north-south (ingress) gateway. Requires a Gloo Gateway license. |
[{“name”:“istio-ingressgateway”,“enabled”:true,“installations”:[{“gatewayRevision”:“auto”,“clusters”:null,“istioOperatorSpec”:{}}]}] |
| managedInstallations.northSouthGateways[].enabled |
bool |
Install the gateway in the cluster. |
|
| managedInstallations.northSouthGateways[].installations[] |
[]struct |
List of Istio gateway installations. For more info, see the GatewayInstallation reference. |
|
| managedInstallations.northSouthGateways[].installations[].clusters[] |
[]ptr |
Clusters to install the gateway in. |
|
| managedInstallations.northSouthGateways[].installations[].clusters[].activeGateway |
bool |
When set to true, the installation for this revision is applied as the active gateway through which primary service traffic is routed in the cluster. If the istioOperatorSpec defines a service, this field switches the service selectors to the revision specified in the gatewayRevsion. You might change this setting for gateway installations during a canary upgrade. For more info, see the upgrade docs. |
|
| managedInstallations.northSouthGateways[].installations[].clusters[].name |
string |
Name of the cluster to install the gateway into. Must match the registered cluster name. |
|
| managedInstallations.northSouthGateways[].installations[].clusters[].trustDomain |
string |
Trust domain value for this cluster's Istio installation mesh config. Defaults to the cluster's name. |
|
| managedInstallations.northSouthGateways[].installations[].controlPlaneRevision |
string |
Optional: The revision of an Istio control plane in the cluster that this gateway should also use. If a control plane installation of this revision is not found, no gateway is created. |
|
| managedInstallations.northSouthGateways[].installations[].gatewayRevision |
string |
Istio revision for this installation, such as ‘1-17’. Defaults to ‘AUTO’, which installs the default supported version of Gloo Istio. |
|
| managedInstallations.northSouthGateways[].installations[].istioOperatorSpec |
struct |
IstioOperator specification for the gateway. For more info, see the IstioOperatorSpec reference. |
|
| managedInstallations.northSouthGateways[].name |
string |
Name of the gateway. Must be unique. |
|
| maxGrpcMessageSize |
string |
Maximum message size for gRPC messages sent and received by the management server. |
4294967295 |
| metricsBufferSize |
int |
Number of metrics messages to buffer per Envoy proxy. |
50 |
| namespacedRbac[] |
[]struct |
Scopes watches and RBAC policies for the given set of GVKs to the given set of namespaces. Currently, ‘secrets’ are the only supported resource. |
[{“resources”:[],“namespaces”:[]}] |
| namespacedRbac[].namespaces[] |
[]string |
|
|
| namespacedRbac[].resources[] |
[]string |
|
|
| rate-limiter |
struct |
Customizations for the rate-limiter Helm chart. |
|
| rate-limiter.enabled |
bool |
if true, deploy the dependency service (default false) |
false |
| rate-limiter.extraTemplateAnnotations |
map[string, string] |
extra annotations to add to the dependency service pods. Defaults to proxy.istio.io/config: ‘{ “holdApplicationUntilProxyStarts”: true }’ |
{“proxy.istio.io/config”:"{ "holdApplicationUntilProxyStarts": true }"} |
| rate-limiter.extraTemplateAnnotations.<MAP_KEY> |
string |
extra annotations to add to the dependency service pods. Defaults to proxy.istio.io/config: ‘{ “holdApplicationUntilProxyStarts”: true }’ |
|
| rate-limiter.extraTemplateAnnotations.proxy.istio.io/config |
string |
extra annotations to add to the dependency service pods. Defaults to proxy.istio.io/config: ‘{ “holdApplicationUntilProxyStarts”: true }’ |
{ “holdApplicationUntilProxyStarts”: true } |
| readOnlyGeneratedResources |
bool |
If true, the deployment only reads Istio resource outputs that are created by Gloo Platform, and filters out Istio resource fields that Gloo Mesh cannot properly unmarshal. These other resource outputs are not visible in the Gloo UI. |
false |
| relay |
struct |
Configuration for securing relay communication between the workload agents and the management server. |
|
| relay.authority |
string |
SNI name in the authority/host header used to connect to relay forwarding server. Must match server certificate CommonName. Do not change the default value. |
gloo-mesh-mgmt-server.gloo-mesh |
| relay.clientTlsSecret |
struct |
Custom certs: Secret containing client TLS certs used to identify the Gloo agent to the management server. If you do not specify a clientTlssSecret, you must specify a tokenSecret and a rootTlsSecret. |
|
| relay.clientTlsSecret.name |
string |
|
relay-client-tls-secret |
| relay.clientTlsSecret.namespace |
string |
|
|
| relay.clientTlsSecretRotationGracePeriodRatio |
string |
The ratio of the client TLS certificate lifetime to when the management server starts the certificate rotation process. |
|
| relay.rootTlsSecret |
struct |
Secret containing a root TLS cert used to verify the management server cert. The secret can also optionally specify a ‘tls.key’, which is used to generate the agent client cert. |
|
| relay.rootTlsSecret.name |
string |
|
relay-root-tls-secret |
| relay.rootTlsSecret.namespace |
string |
|
|
| relay.serverAddress |
string |
Address and port by which gloo-mesh-mgmt-server in the Gloo control plane can be accessed by the Gloo workload agents. |
|
| relay.tokenSecret |
struct |
Secret containing a shared token for authenticating Gloo agents when they first communicate with the management server. A token secret is not needed with ACM certs. |
|
| relay.tokenSecret.key |
string |
Key value of the data within the Kubernetes secret. |
token |
| relay.tokenSecret.name |
string |
Name of the Kubernetes secret. |
relay-identity-token-secret |
| relay.tokenSecret.namespace |
string |
Namespace of the Kubernetes secret. |
|
| telemetryCollector |
struct |
Helm values for configuring the Gloo Platform Telemetry Collector. See the OpenTelemetry Helm chart for the complete set of values. |
|
| telemetryCollector.clusterRole |
map[string, interface] |
|
{“create”:true,“rules”:[{“apiGroups”:[""],“resources”:[“nodes”,“nodes/proxy”,“nodes/metrics”,“services”,“endpoints”,“pods”,“ingresses”,“configmaps”],“verbs”:[“get”,“list”,“watch”]},{“apiGroups”:[“extensions”,“networking.k8s.io”],“resources”:[“ingresses/status”,“ingresses”],“verbs”:[“get”,“list”,“watch”]},{“nonResourceURLs”:["/metrics”],“verbs”:[“get”]}]} |
| telemetryCollector.clusterRole.<MAP_KEY> |
interface |
|
|
| telemetryCollector.clusterRole.create |
interface |
|
|
| telemetryCollector.clusterRole.rules |
interface |
|
|
| telemetryCollector.command |
map[string, interface] |
|
{“extraArgs”:["–config=/conf/relay.yaml”],“name”:“gloo-otel-collector”} |
| telemetryCollector.command.<MAP_KEY> |
interface |
|
|
| telemetryCollector.command.extraArgs |
interface |
|
|
| telemetryCollector.command.name |
interface |
|
|
| telemetryCollector.configMap |
map[string, interface] |
|
{“create”:false} |
| telemetryCollector.configMap.<MAP_KEY> |
interface |
|
|
| telemetryCollector.configMap.create |
interface |
|
|
| telemetryCollector.enabled |
bool |
|
false |
| telemetryCollector.extraEnvs[] |
[]map |
|
[{“name”:“KUBE_NODE_NAME”,“valueFrom”:{“fieldRef”:{“fieldPath”:“spec.nodeName”}}},{“name”:“KUBE_POD_NAME”,“valueFrom”:{“fieldRef”:{“fieldPath”:“metadata.name”}}}] |
| telemetryCollector.extraVolumeMounts[] |
[]map |
|
[{“mountPath”:"/etc/otel-certs”,“name”:“root-ca”,“readOnly”:true},{“mountPath”:"/conf”,“name”:“telemetry-configmap”}] |
| telemetryCollector.extraVolumes[] |
[]map |
|
[{“name”:“root-ca”,“secret”:{“defaultMode”:420,“secretName”:“relay-root-tls-secret”}},{“configMap”:{“items”:[{“key”:“relay”,“path”:“relay.yaml”}],“name”:“gloo-telemetry-collector-config”},“name”:“telemetry-configmap”}] |
| telemetryCollector.fullnameOverride |
string |
|
gloo-telemetry-collector |
| telemetryCollector.image |
struct |
|
|
| telemetryCollector.image.pullPolicy |
string |
|
IfNotPresent |
| telemetryCollector.image.repository |
string |
|
gcr.io/gloo-mesh/gloo-otel-collector |
| telemetryCollector.image.tag |
string |
|
|
| telemetryCollector.mode |
string |
|
daemonset |
| telemetryCollector.nameOverride |
string |
|
|
| telemetryCollector.podAnnotations |
map[string, interface] |
|
null |
| telemetryCollector.podAnnotations.<MAP_KEY> |
interface |
|
|
| telemetryCollector.ports |
map[string, interface] |
|
{“jaeger-compact”:{“hostPort”:0},“jaeger-grpc”:{“hostPort”:0},“jaeger-thrift”:{“hostPort”:0},“otlp”:{“hostPort”:0},“otlp-http”:{“hostPort”:0},“zipkin”:{“hostPort”:0}} |
| telemetryCollector.ports.<MAP_KEY> |
interface |
|
|
| telemetryCollector.ports.jaeger-compact |
interface |
|
|
| telemetryCollector.ports.jaeger-grpc |
interface |
|
|
| telemetryCollector.ports.jaeger-thrift |
interface |
|
|
| telemetryCollector.ports.otlp |
interface |
|
|
| telemetryCollector.ports.otlp-http |
interface |
|
|
| telemetryCollector.ports.zipkin |
interface |
|
|
| telemetryCollector.presets |
map[string, interface] |
|
{“clusterMetrics”:{“enabled”:false},“hostMetrics”:{“enabled”:false},“kubeletMetrics”:{“enabled”:false},“kubernetesAttributes”:{“enabled”:false},“logsCollection”:{“enabled”:false,“includeCollectorLogs”:false}} |
| telemetryCollector.presets.<MAP_KEY> |
interface |
|
|
| telemetryCollector.presets.clusterMetrics |
interface |
|
|
| telemetryCollector.presets.hostMetrics |
interface |
|
|
| telemetryCollector.presets.kubeletMetrics |
interface |
|
|
| telemetryCollector.presets.kubernetesAttributes |
interface |
|
|
| telemetryCollector.presets.logsCollection |
interface |
|
|
| telemetryCollector.replicaCount |
int |
|
0 |
| telemetryCollector.resources |
map[string, interface] |
|
{“requests”:{“cpu”:“100m”,“memory”:“300Mi”}} |
| telemetryCollector.resources.<MAP_KEY> |
interface |
|
|
| telemetryCollector.resources.requests |
interface |
|
|
| telemetryCollector.service |
map[string, interface] |
|
null |
| telemetryCollector.service.<MAP_KEY> |
interface |
|
|
| telemetryCollector.tolerations[] |
[]interface |
|
[{“effect”:“NoSchedule”,“operator”:“Exists”},{“key”:“CriticalAddonsOnly”,“operator”:“Exists”},{“effect”:“NoExecute”,“operator”:“Exists”},{“effect”:“NoExecute”,“key”:“node.kubernetes.io/not-ready”,“operator”:“Exists”},{“effect”:“NoExecute”,“key”:“node.kubernetes.io/unreachable”,“operator”:“Exists”},{“effect”:“NoSchedule”,“key”:“node.kubernetes.io/disk-pressure”,“operator”:“Exists”},{“effect”:“NoSchedule”,“key”:“node.kubernetes.io/memory-pressure”,“operator”:“Exists”},{“effect”:“NoSchedule”,“key”:“node.kubernetes.io/pid-pressure”,“operator”:“Exists”},{“effect”:“NoSchedule”,“key”:“node.kubernetes.io/unschedulable”,“operator”:“Exists”}] |
| telemetryCollectorCustomization |
struct |
Helm values for customizing the Gloo Platform Telemetry Collector. |
|
| telemetryCollectorCustomization.disableDefaultPipeline |
bool |
Disables the default pipeline. Useful if you want to create a custom pipeline using ‘extraPipelines’ and to disable the default pipeline. |
false |
| telemetryCollectorCustomization.extraExporters |
map[string, interface] |
Configuration for extra exporters, such as to forward your data to a third-party provider. Exporters forward the data they get to a destination on the local or remote network. |
null |
| telemetryCollectorCustomization.extraExporters.<MAP_KEY> |
interface |
Configuration for extra exporters, such as to forward your data to a third-party provider. Exporters forward the data they get to a destination on the local or remote network. |
|
| telemetryCollectorCustomization.extraPipelines |
map[string, interface] |
Specify any added receivers, processors, or exporters in an extra pipeline. |
null |
| telemetryCollectorCustomization.extraPipelines.<MAP_KEY> |
interface |
Specify any added receivers, processors, or exporters in an extra pipeline. |
|
| telemetryCollectorCustomization.extraProcessors |
map[string, interface] |
Configuration for extra processors to drop and generate new data. Processors can transform the data before it is forwarded to another processor and an exporter. |
{“batch”:{“send_batch_max_size”:3000,“send_batch_size”:2000,“timeout”:“600ms”},“memory_limiter”:{“check_interval”:“1s”,“limit_percentage”:85,“spike_limit_percentage”:10}} |
| telemetryCollectorCustomization.extraProcessors.<MAP_KEY> |
interface |
Configuration for extra processors to drop and generate new data. Processors can transform the data before it is forwarded to another processor and an exporter. |
|
| telemetryCollectorCustomization.extraProcessors.batch |
interface |
Configuration for extra processors to drop and generate new data. Processors can transform the data before it is forwarded to another processor and an exporter. |
|
| telemetryCollectorCustomization.extraProcessors.memory_limiter |
interface |
Configuration for extra processors to drop and generate new data. Processors can transform the data before it is forwarded to another processor and an exporter. |
|
| telemetryCollectorCustomization.extraReceivers |
map[string, interface] |
Configuration for extra receivers, such as to scrape extra Prometheus targets. Receivers listen on a network port to receive telemetry data. |
null |
| telemetryCollectorCustomization.extraReceivers.<MAP_KEY> |
interface |
Configuration for extra receivers, such as to scrape extra Prometheus targets. Receivers listen on a network port to receive telemetry data. |
|
| telemetryCollectorCustomization.serverName |
string |
SNI and certificate subject alternative name used in the collector certificate. |
gloo-telemetry-gateway.gloo-mesh |
| telemetryCollectorCustomization.telemetry |
map[string, interface] |
Configure the service telemetry (logs and metrics) as described in the otel-collector docs. |
{“metrics”:{“address”:“0.0.0.0:8888”}} |
| telemetryCollectorCustomization.telemetry.<MAP_KEY> |
interface |
Configure the service telemetry (logs and metrics) as described in the otel-collector docs. |
|
| telemetryCollectorCustomization.telemetry.metrics |
interface |
Configure the service telemetry (logs and metrics) as described in the otel-collector docs. |
|
| verbose |
bool |
Enable verbose/debug logging. |
false |
