The abbreviation for Intershop Order Management

The downtime parameter is a very critical one. Its goal and behavior is already described in Restrictions on Upgrade.

Additional information:

• If downtime is set to false, the DBmigrate process, as part of the process the config init-container is executing, is skipped. This has no impact on the project configuration.
• For the downtime parameter to work correctly, the --wait command line parameter must always be set when running Helm.

Repository of the IOM app product/project image. 

docker.intershop.de/intershophub/iom

The tag of IOM product/project image.

Parameters bundled by dbaccount are used to control the dbaccount init-container which creates the IOM database-user and the IOM database itself. To enable the dbaccount init-container to do this, it needs to get superuser access to the PostgreSQL server and it requires the according information about the IOM database. This information is not contained in dbaccount parameters. Instead, the general connection and superuser information are retrieved from pg or postgres.pg parameters (depending on postgres.enabled). All information about the IOM database user and database are provided by oms.db parameters.

Once the IOM database is created, the dbaccount init-container is not needed any longer. Hence, all IOM installations, except really non-critical demo- and CI-setups, should enable dbaccount init-container only temporarily to initialize the database account.

Controls if the dbaccount init-container should be executed or not. If enabled, dbaccount will only be executed when installing IOM, not on upgrade operations.

Repository of the dbaccount image. 

The tag of dbaccount image.

When creating the IOM database, more options added to OWNER are required. Depending on the configuration of the PostgreSQL server, these options may differ. The default values can be used as they are for integrated PostgreSQL server, for Azure Database for PostgreSQL service, and for most other servers, too.

See Options and Requirements of IOM database for details.

Use the passed tablespace as default for IOM database user and IOM database. Tablespace has to exist, it will not be created.

Section Options and Requirements of IOM database will give you some more information.

• Ignored if postgres.enabled is true, since the integrated PostgreSQL server can never create a custom tablespace prior to the initialization of the IOM database user and IOM database.

Parameters, bundled by config, are used to control the config init-container which fills the IOM database, to apply database migrations, and to roll out project configurations into the IOM database. To enable the config init-container to do this, it requires access to the IOM database. This information is not contained in config parameters. Instead, the general connection information is retrieved from pg or postgres.pg parameters. All information about the IOM database user and database are provided by oms.db parameters.

The config init-container was removed along with IOM 4.0.0. The according functionality is now executed by the IOM container itself. The config parameter still exists for backward compatibility.

The config init-container was removed along with IOM 4.0.0. For backward compatibility it can still be used, but has to be enabled explicitly now .

• Has to be set to true, when using Helm charts with an IOM version < 4.0.0.

Repository of the IOM config product/project image. 

The tag of IOM config product/project image.

Normally, when updating the config image of IOM, stored procedures, migration scripts, and project configuration are executed. Setting parameter oms.skipProcedures to true allows to skip the execution of stored procedures. You must not do this when updating IOM.

• Requires IOM >= 3.6.0.0 and < 4.0.0
• In IOM 4.0.0 and newer, execution of procedures, migration, and configuration is tracked internally and will not be executed if already applied. A manual control is not necessary any longer.

Normally, when updating the config image of IOM, stored procedures, migration scripts, and project configuration are executed. Setting parameter oms.skipMigration to true allows to skip the execution of migration scripts. You must not do this when updating IOM.

• Requires IOM >= 3.6.0.0 and < 4.0.0
• In IOM 4.0.0 and newer, execution of procedures, migration, and configuration is tracked internally and will not be executed if already applied. A manual control is not necessary any longer.

Normally, when updating the config image of IOM, stored procedures, migration scripts, and project configuration are executed. Setting parameter oms.skipConfig to true allows to skip the execution of configuration scripts. You must not do this when updating the project configuration.

• Requires IOM >= 3.6.0.0 and < 4.0.0
• In IOM 4.0.0 and newer, execution of procedures, migration, and configuration is tracked internally and will not be executed if already applied. A manual control is not necessary any longer.

This group of parameters bundles the information required to connect the PostgreSQL server, information about the superuser, and default database (management database, not the IOM database). 

Not all clients need all information:

The dbaccount init-container is the only client that needs access to the PostgreSQL server as a superuser. Hence, if you do not enable dbaccount, the parameters pg.user(SecretKeyRef), pg.passwd(SecretKeyRef) and pg.db should not be set at all.

If integrated PostgreSQL server is enabled (postgres.enabled set to true), all parameters defined by pg are ignored completely. In this case, parameters defined by postgres.pg are used instead.

Name of the superuser.

• Required only if dbaccount.enabled is set to true.
• Ignored if postgres.enabled is set to true.
• Ignored if pg.userSecretKeyRef is set.

Instead of storing the name of the user as plain text in the values file, a reference to a key within a secret can be used. For more information see section References to entries of Kubernetes secrets.

• Required only if dbaccount.enabled is set to true and pg.user is not set.
• Ignored if postgres.enabled is set to true.

The password of the superuser. 

• Required only if dbaccount.enabled is set to true.
• Ignored if postgres.enabled is set to true.
• Ignored if pg.passwdSecretKeyRef is set.

Instead of storing the password as plain text in the values file, a reference to a key within a secret can be used. For more information see section References to entries of Kubernetes secrets.

• Required only if dbaccount.enabled is set to true and pg.passwd is not set.
• Ignored if postgres.enabled is set to true.

Name of the default (management) database.

• Required only if dbaccount.enabled is set to true.
• Ignored if postgres.enabled is set to true.

pg.host

This suffix is not a part of the user name. It has to be used only when connecting to the database. For this reason, the parameter pg.userConnectionSuffix was separated from pg.user and oms.db.user.

Example: "@mydemoserver"

If set to "1", data sent over SSL connections will be compressed. If set to "0", compression will be disabled. For a detailed description, please see the official PostgreSQL documentation.

"0"

pg.sslRootCert

Azure Database for PostgreSQL service might require verification of the server certificate, see the official Azure Database for PostgreSQL documentation. To handle this case, it is possible to pass the SSL root certificate in pg.sslRootCert. 

The publicly accessible base URL of IOM which could be the DNS name of the load balancer, etc. It is used internally for link generation.

The shared secret for JSON Web Token (JWT) creation/validation. JWTs will be generated with the HMAC algorithm (HS256).

Intershop strongly recommends to change the default shared secret used for the JSON Web Tokens creation/validation.

To secure the JWT, a key of the same size as the hash output or larger must be used with the JWS HMAC SHA-2 algorithms (i.e, 256 bits for "HS256"), see JSON Web Algorithms (JWA) | 3.2. HMAC with SHA-2 Functions.

• Ignored if oms.jwtSecretKeyRef is set.

Instead of storing the JWT secret as plain text in the values file, a reference to a key within a secret can be used. For more information, see section References to entries of Kubernetes secrets.

• Only required if oms.jwtSecret is empty.

Number of days after which the entries in table "OrderMessageLogDO" should be exported
and the columns "request" and "response" set to 'archived' in order to reduce the table size.
Min. accepted value: 10

Exported data are stored under share/archive

• Requires IOM 3.1.0.0 or newer
• Value has to match ^[1-9]([0-9]+)?

Number of days after which the entries in table "OrderMessageLogDO" will definitely be deleted in order to reduce the table size. Must be greater than oms.archiveOrderMessageLogMinAge.

• Requires IOM 3.1.0.0 or newer
• Value has to match ^[1-9]([0-9]+)?

Number of days after which the entries in table "ShopCustomerMailTransmissionDO" should be exported (Quartz job "ShopCustomerMailTransmissionArchive") and the column "message" set to ''deleted'' in order to reduce the table size. Default is 1826 for 5 years. However, the export will not take place if this property and oms.archiveShopCustomerMailMaxCount are not set. Min. accepted value: 10

Exported data are stored under share/archive

• Requires IOM 3.1.0.0 or newer
• Value has to match ^[1-9]([0-9]+)$

Maximum number of entries in table "ShopCustomerMailTransmissionDO" to be exported per run of the Quartz job "ShopCustomerMailTransmissionArchive".  Default is 10000, however, the export will not take place if this property and ''archive_ShopCustomerMailMinAge'' are not set.  Min. accepted value: 10

• Requires IOM 3.1.0.0 or newer
• Value has to match ^[1-9]([0-9]+)$

The number of days after which the entries in table "ShopCustomerMailTransmissionDO" will definitely be deleted in order to reduce the table size.  (Quartz job"ShopCustomerMailTransmissionArchive")  Default is 2190 for 6 years. However, the deletion will not take place if this property is not set.

• Requires IOM 3.1.0.0 or newer
• Value has to match ^[1-9]([0-9]+)$

If set to true, cookies will be sent with secure flag. In this case OMT requires fully encrypted HTTP traffic in order to work properly.

• Requires IOM 3.2.0.0 or newer

true

If set to false, no backend applications will be executed in the current cluster. This is required by transregional installations of IOM only, where many local IOM clusters have to work together. In this case, only one of the clusters must execute backend applications.

The IOM database user .

• Ignored if oms.db.userSecretKeyRef is set.

Instead of storing the name of the user as plain text in the values file, a reference to a key within a secret can be used. For more information, see section References to entries of Kubernetes secrets.

• Only required if oms.db.user is not set.

Instead of storing the password as plain text in the values file, a reference to a key within a secret can be used. For more information, see section References to entries of Kubernetes secrets.

• Only required if oms.db.passwd is not set.

A comma-separated list of database servers. Each server entry consists of a hostname and port, separated by a colon. Setting the port is optional. If not set, standard port 5432 will be used.

• Only required if a high availability cluster of PostgreSQL servers is used, to list all possible connecting possibilities to this cluster.
• Affects IOM application servers only. All other database clients (config and dbaccount) are using connection information from pg parameters group only. The same is true for the IOM application server if oms.db.hostlist is empty.

Parameters in oms.db.connectionMonitor are dedicated to control a Kubernetes cronjob that is writing INFO log messages created by process connection_monitor.sh that provide information about database clients and the number of connections they are using. This information is written in CSV format with quoted newlines between records.

Example:
{"tenant":"company-name","environment":"system-name","logHost":"ci-iom-connection-monitor-27154801-c6lk4","logVersion":"1.0","appName":"iom-config","appVersion":"3.6.0.0","logType":"script","timestamp":"2021-08-18T12:01:01+00:00","level":"INFO","processName":"connection_monitor.sh","message":"count,application_name,client_addr\\n51,OMS_ci-iom-0,40.67.249.40\\n2,psql,40.67.249.40","configName":null}

connection_monitor.sh ignores settings of parameter log.level.scripts. It always uses log level INFO.

• Requires IOM 3.6.0.0 or newer

Enables/disables Kubernetes cronjob providing the connection monitoring messages.

• Requires IOM 3.6.0.0 or newer

Controls frequency of Kubernetes cronjob providing the connection monitoring messages.

• Requires IOM 3.6.0.0 or newer

Controls connect timeout of database connections (jdbc- and psql-initiated connections). Value is defined in seconds. A value of 0 means to wait infinitely.

• Requires IOM 3.6.0.0 or newer
• Requires dbaccount 1.3.0.0 or newer

Parameters in oms.smtp are bundling the information required to connect SMTP server. 

If an integrated SMTP server is enabled (mailhog.enabled set to true), all parameters defined by oms.smtp are ignored completely. In this case, IOM will be automatically configured to use the integrated SMTP server.

The hostname of the mail server IOM uses to send e-mails.

• Ignored if mailhog.enabled is set to true.

The port of the mail server IOM uses to send e-mails.

• Ignored if mailhog.enabled is set to true.

The user name for mail server authentication.

• Only required if the SMTP server requires authentication.
• Ignored if mailhog.enabled is set to true.

Instead of storing the user name as plain text in the values file, a reference to a key within a secret can be used. For more information, see section References to entries of Kubernetes secrets.

• Only required if oms.smtp.user is not set and the SMTP server requires authentication.
• Ignored if mailhog.enabled is set to true.

The password for mail server authentication.

• Only required if the SMTP server requires authentication.
• Ignored if mailhog.enabled is set to true.

Instead of storing the password as plain text in the values file, a reference to a key within a secret can be used. For more information, see section References to entries of Kubernetes secrets.

• Only required if oms.smtp.passwd is not set and the SMTP server requires authentication.
• Ignored if mailhog.enabled is set to true.

Group of parameters to fine-tune the startup probe of Kubernetes. The basic kind of probe is fixed and cannot be changed. For an overview of probes and pod lifecycle, see the official Kubernetes documentation.

Startup probe was introduced with IOM Helm charts 2.0.0, when IOM config image was removed. All the functionality that was executed by the config image before is in IOM version 4.0.0 and the newer part of the IOM image. The startup probe must now be used to observe all the tasks (create db account, roll out dump, execute stored procedures, run database migrations, apply project configuration) that are done before the Wildfly application server is started. The startup probe must not finally fail before the  end of the startup phase, otherwise the pod will be ended and restarted. The startup phase ends when startup probe succeeds. To do so, you need to configure startupProbe in such a way that
  initialDelaySeconds + periodSeconds * failureThreshold
is larger than the time needed for the startup phase! The default values provided by IOM Helm charts provide an 11 minute timeframe for the startup phase: 60s + 10 * 60s = 660s = 11min. If your system needs more time for the startup phase, you have to adapt the parameters. It is recommended to increase startupProbe.failureThreshold only and to leave all other parameters unchanged.

Enables to switch on/off the startup probe.

• Requires IOM 4.0.0 or newer
• Ignored if config.enabled is set to true (if an IOM of a version < 4.0.0 is used).

How often (in seconds) to perform the probe. Minimum value is 1.

• Requires IOM 4.0.0 or newer
• Ignored if config.enabled is set to true (if an IOM of a version < 4.0.0 is used).

Number of seconds after the container has started before startup probes are initiated. Minimum value is 0.

• Requires IOM 4.0.0 or newer
• Ignored if config.enabled is set to true (if an IOM of a version < 4.0.0 is used).

Number of seconds after which the probe times out. Default is set to 1 second. Minimum value is 1.

• Requires IOM 4.0.0 or newer
• Ignored if config.enabled is set to true (if an IOM of a version < 4.0.0 is used).

When a probe fails, Kubernetes will try failureThreshold times before giving up. Giving up in case of startup probe means restarting the container. Minimum value is 1.

• Requires IOM 4.0.0 or newer
• Ignored if config.enabled is set to true (if an IOM of a version < 4.0.0 is used).

Enables to switch on/off the liveness probe.

How often (in seconds) to perform the probe. Minimum value is 1.

Number of seconds after the container has started before liveness probes are initiated. Minimum value is 0.

Number of seconds after which the probe times out. Default is set to 1 second. Minimum value is 1.

When a probe fails, Kubernetes will try failureThreshold times before giving up. Giving up in case of liveness probe means restarting the container. Minimum value is 1.

Enables to switch on/off the readiness probe.

How often (in seconds) to perform the probe. Minimum value is 1.

Number of seconds after the container has started before readiness probes are initiated. Minimum value is 0.

When a probe fails, Kubernetes will try failureThreshold times before giving up. Giving up in case of readiness probe, the pod will be marked as Unready. Minimum value is 1.

Minimum consecutive successes for the probe to be considered successful after having failed. Minimum value is 1.

The value of jboss.javaOpts is passed to Java options of the WildFly application server.

The default value used by Helm charts 1.5.0 and newer allows for not having to care about Java memory settings any longer. Just set the memory size in parameter resources and the JVM will recognize this and adapt its memory configuration to this value.

"-XX:+UseContainerSupport -XX:MinRAMPercentage=85 -XX:MaxRAMPercentage=85"

Additional command-line arguments to be used when starting the WildFly application server.

Example: "--debug *:8787"

Maximum size of the ActiveMQ client thread pool.

• Requires IOM 3.7.0.0 or newer

jboss.nodePrefix allows to define the prefix which is used to create a unique ID of the server within the cluster. For uniqueness the prefix will be extended by the number of the pod it has as part of the stateful set.

If jboss.nodePrefix is left empty, the hostname is used as unique ID.

There are two use cases which might make it necessary to define jboss.nodePrefix:

1. If the hostname exceeds the length of 23 characters, it cannot be used as unique ID of the Wildfly application server. See Infogix support article on wildfly not starting.
2. If IOM is set up as a transregional installation, which uses different Kubernetes clusters in different regions, it has to be guaranteed that each IOM server has its unique ID. To do so, every IOM cluster should use a unique value for jboss.nodePrefix. Alternatively, it is also possible to use different Helm deployment names in each cluster. At least, one of these two options MUST be used for a transregional installation.

• Requires IOM 3.5.0.0 or newer

Controls creation of access log messages.

Allowed values are: true, false

• Requires IOM 3.2.0.0 or newer

Controls log level of all shell scripts running in one of the IOM-related containers (as defined in image, dbaccount.image and config.image).

Allowed values are: ERROR, WARN, INFO, DEBUG

Controls log level of IOM log handler, which covers all Java packages beginning with bakery, com.intershop.oms, com.theberlinbakery, org.jboss.ejb3.invocation.

Allowed values are: FATAL, ERROR, WARN, INFO, DEBUG, TRACE, ALL

Controls log level of HIBERNATE log handler, which covers all Java packages beginning with org.hibernate.

Allowed values are: FATAL, ERROR, WARN, INFO, DEBUG, TRACE, ALL

Controls log level of QUARTZ log handler, which covers all Java packages beginning with org.quartz.

Allowed values are: FATAL, ERROR, WARN, INFO, DEBUG, TRACE, ALL

Controls log level of ACTIVEMQ log handler, which covers all Java packages beginning with org.apache.activemq.

Allowed values are: FATAL, ERROR, WARN, INFO, DEBUG, TRACE, ALL

The CONSOLE handler has no explicit assignments of Java packages. This handler is assigned to root loggers which do not need any assignments. Instead, this log handler handles all unassigned Java packages, too.

Allowed values are: FATAL, ERROR, WARN, INFO, DEBUG, TRACE, ALL

Another handler without package assignments is CUSTOMIZATION. In difference to CONSOLE, this handler will not log any messages as long as no Java packages are assigned. The assignment of Java packages has to be done in the project configuration and is described in Guide - IOM Standard Project Structure.

Allowed values are: FATAL, ERROR, WARN, INFO, DEBUG, TRACE, ALL

This parameter can hold a list of operation IDs of REST interfaces. If the operation ID of a REST interface is listed here, information about request and response of the according REST calls are written into DEBUG messages. Operation IDs are part of the YAML specification of IOM REST interfaces.

Example:

log:
  rest:
    - createOrder
    - getReturnRequests
    - updateTransmissions
    - createOrderResponse

• Requires IOM 3.6.0.0 or newer

datadogApm bundles parameters required to configure datadog Application Performance Monitoring (APM).

• Requires IOM 3.4.0.0 or newer

This parameter is mapped to environment variable DD_APM_ENABLED. For more information, please consult the official datadog documentation.

If set to true, IOM will be started with -javaagent parameter, loading the datadog javaagent library. This will not be the case when set to false.

• Requires IOM 3.4.0.0 or newer

If set to true and datadog APM is enabled, tracing will only be executed on the one IOM application server that is running the backend applications (singleton applications). If set to true and datadog APM is enabled, tracing will be executed on all IOM application servers.

• Requires IOM 3.4.0.0 or newer

This parameter is mapped to environment variable DD_AGENT_HOST. For more information, please consult the official datadog documentation.

Normally this environment variable is injected with the right value by the locally installed datadog daemon-set.

• Requires IOM 3.4.0.0 or newer

This parameter is mapped to environment variable DD_TRACE_AGENT_PORT. For more information, please consult the official datadog documentation.

Normally this environment variable is injected with the right value by the locally installed datadog daemon-set.

• Requires IOM 3.4.0.0 or newer

This parameter is mapped to environment variable DD_TRACE_AGENT_TIMEOUT. For more information, please consult the official datadog documentation. 

• Requires IOM 3.4.0.0 or newer

This parameter is mapped to environment variable DD_LOGS_INJECTION. For more information, please consult the official datadog documentation.

• Requires IOM 3.4.0.0 or newer

This parameter is mapped to environment variable DD_TRACE_DEBUG. For more information, please consult the official datadog documentation.

• Requires IOM 3.4.0.0 or newer

This parameter is mapped to environment variable DD_TRACE_STARTUP_LOGS. For more information, please consult the official datadog documentation. 

• Requires IOM 3.4.0.0 or newer

This parameter is mapped to environment variable DD_TAGS. For more information, please consult the official datadog documentation. 

• Requires IOM 3.4.0.0 or newer

This parameter is mapped to environment variable DD_SERVICE_MAPPING. For more information, please consult the official datadog documentation.

• Requires IOM 3.4.0.0 or newer

This parameter is mapped to environment variable DD_WRITER_TYPE. For more information, please consult the official datadog documentation.

• Requires IOM 3.4.0.0 or newer

This parameter is mapped to environment variable DD_TRACE_PARTIAL_FLUSH_MIN_SPANS. For more information, please consult the official datadog documentation.

• Requires IOM 3.4.0.0 or newer

This parameter is mapped to environment variable DD_TRACE_DB_CLIENT_SPLIT_BY_INSTANCE. For more information, please consult the official datadog documentation. 

• Requires IOM 3.4.0.0 or newer

This parameter is mapped to environment variable DD_TRACE_HEALTH_METRICS_ENABLED. For more information, please consult the official datadog documentation.

• Requires IOM 3.4.0.0 or newer

This parameter is mapped to environment variable DD_TRACE_SERVLET_ASYNC_TIMEOUT_ERROR. For more information, please consult the official datadog documentation. 

• Requires IOM 3.4.0.0 or newer

This parameter is mapped to environment variable DD_TRACE_SAMPLE_RATE. For more information, please consult the official datadog documentation. 

• Requires IOM 3.4.0.0 or newer

This parameter is mapped to environment variable DD_JMXFETCH_ENABLED. For more information, please consult the official datadog documentation.

• Requires IOM 3.4.0.0 or newer

Within project group of parameters, configuration of Intershop Commerce Platform (previously known as CaaS) projects can be controlled.

• Was named caas in IOM Helm charts of version < 2.0.0

Intershop Commerce Platform (previously known as CaaS) projects support different settings for different environments. project.envName defines which one has to be used. See Guide - IOM Standard Project Structure for more information.

• Was named caas.envName in IOM Helm charts of version < 2.0.0

Controls the import of test data, which are part of the project.  See Guide - IOM Standard Project Structure for more information. If enabled, test data is imported during installation and upgrade processes.

• Was named caas.importTestData in IOM Helm charts of version < 2.0.0

Timeout in seconds for the import of test data. If the import has not finished before the according amount of seconds has passed, the container will end with an error. 

• Was named caas.importTestDataTimeout in IOM Helm charts of version < 2.0.0
• Requires IOM 3.2.0.0 or newer

Name of the existing storage class to be used for IOM's shared data.

• Ignored if persistence.hostPath is set.
• Ignored if persistence.pvc is set.

Annotations for persistence volume claim to be created. See https://helm.sh/docs/topics/charts_hooks/ for more information about default annotations.

• Ignored if persistence.pvc is set.

"helm.sh/resource-policy": keep
"helm.sh/hook": pre-install


For very simple installations, persistent data can be stored directly at a local disk. In this case, the path on local host has to be stored at this parameter.

• Ignored if persistence.pvc is set.

For transregional installations of IOM, it has to be possible to define the Persistence Volume Claim (pvc) directly. This way IOM's shared data can be persisted at one place by two or more IOM clusters.

Ingress class has to be specified by ingress.className. This parameter controls on which ingress controller the ingress should be created.

If the integrated NGINX controller should be used to serve incoming requests, the parameter ingress.className has to be set to nginx-iom.

Annotations for the ingress.

A list of ingress hosts.

The default value grants access to IOM. The syntax of ingress objects has to match the requirements of Kubernetes 1.19 (see https://kubernetes.io/docs/concepts/services-networking/ingress/).

- host: iom.example.local
  paths:
    - path: /
      pathType: Prefix

resources:
  limits:
    cpu: 1000m
    memory: 3000Mi
  requests:
    cpu: 1000m
    memory: 3000Mi

- host: mailhog-test.poc.intershop.de
  paths:
    - path: /
      pathType: Prefix

Annotations for the ingress.

Controls whether an integrated NGINX ingress controller should be installed or not. This ingress controller can serve two purposes:

• It can be used instead of the cluster-wide ingress controller. This should be done only if no cluster-wide ingress controller exists. This is typically the case in very simple Kubernetes environments like Docker Desktop, Minikube, etc. The example Local Demo System running in Docker-Desktop on Mac OS X shows this kind of usage.

• It can be used as a proxy between the cluster-wide ingress controller and IOM if the cluster-wide ingress controller is not an NGINX. IOM requires sticky sessions, which has to be realized by the ingress controller. Since this feature is only available when using an NGINX ingress controller, it has to be realized by the integrated NGINX ingress controller if the cluster-wide one is of another kind, see Sticky sessions.

Annotations for the ingress.

• Ignored, if nginx.proxy.enabled is set to false.

{}

Type of controller service to create.

When using the integrated NGINX controller as a proxy, ClusterIP is the right choice, since the proxy must not be publicly accessible. If it should be used instead of the cluster-wide ingress controller, it has to be publicly accessible. In this case ingress-nginx.controller.service.type has to be set to LoadBalancer. See example Local Demo System running in Docker-Desktop on Mac OS X.

Additional command line arguments to pass to nginx-ingress-controller.

Example to increase verbosity: { v: 3 }

• Must not be changed.

If true, do not create & use clusterrole and -binding. Set to true in combination with controller.scope.enabled=true to disable load-balancer status updates and scope the ingress entirely.

• Must not be changed.

Name of the ingress class to route through this controller.

• Must not be changed.

Limit the scope of the ingress controller. If set to true, only the release namespace is watched for ingress.

• Must not be changed.
  

This group of parameters bundles the information about the superuser and default database (management database, not the IOM database).

This information is used to configure the Postgres server on start, but is also used by clients which require superuser access to the Postgres server. The only client that needs this kind of access is the dbaccount init-image that creates/updates the IOM database.

Name of the superuser. The superuser will be created when starting the Postgres server. 

• Ignored, if postgres.pg.userSecretKeyRef is defined.

Instead of storing the name of the user as plain text in the values file, a reference to a key within a secret can be used. For more information, see section References to entries of Kubernetes secrets.

The password of the superuser. Password will be set when starting the Postgres server.

• Ignored, if postgres.pg.passwdSecretKeyRef is defined.

Name of default (management) database which will be created when starting the Postgres server.

The default value allows binding the persistent volume in read/write mode to a single pod only, which is exactly what should be done for the PostgreSQL server. For more information, see the official Kubernetes documentation.

• Ignored if postgres.persistence.hostPath is set.

Name of existing storage class to be used by the PostgreSQL server.

• Ignored if postgres.persistence.hostPath is set.

Annotations to be added to the according PersistentVolumeClaim. For more information, see the official Kubernetes documentation.

• Ignored if postgres.persistence.hostPath is set.

max_prepared_transactions

max_wal_size

Set it between 1 and 5 seconds to help track long-running queries.

Better use an explicit name to help when communicating, e.g., pg-IOM_host_port-%Y%m%d_%H%M.log.

Not applicable if the PostgreSQL server is running in Kubernetes since all messages are written to stdout in this case.

Set it to 60 min or less.

Not applicable if the PostgreSQL server is running in Kubernetes since all messages are written to stdout in this case.

Activate it (=on).