values-master.yaml

---
clusterName: "logsys"
nodeGroup: "master"

masterService: ""

roles:
  master: "true"
  ingest: "false"
  data: "false"
  remote_cluster_client: "false"
  ml: "false"

replicas: 3
minimumMasterNodes: 2

esConfig: 
  elasticsearch.yml: |
    xpack.security.enabled: true
    xpack.security.transport.ssl.enabled: true
    xpack.security.transport.ssl.verification_mode: certificate
    xpack.security.transport.ssl.keystore.path: /usr/share/elasticsearch/config/certs/elastic-certificates.p12
    xpack.security.transport.ssl.truststore.path: /usr/share/elasticsearch/config/certs/elastic-certificates.p12
    xpack.security.http.ssl.enabled: true
    xpack.security.http.ssl.truststore.path: /usr/share/elasticsearch/config/certs/elastic-certificates.p12
    xpack.security.http.ssl.keystore.path: /usr/share/elasticsearch/config/certs/elastic-certificates.p12
    xpack.monitoring.collection.enabled: true
    path.repo: ["/nfs"]

extraEnvs:
  - name: ELASTIC_PASSWORD
    valueFrom:
      secretKeyRef:
        name: elastic-credentials
        key: password
  - name: ELASTIC_USERNAME
    valueFrom:
      secretKeyRef:
        name: elastic-credentials
        key: username

secretMounts:
  - name: elastic-certificates
    secretName: elastic-certificates
    path: /usr/share/elasticsearch/config/certs

#esJavaOpts: "-Xmx3g -Xms3g"

resources:
  requests:
    cpu: "700m"
    memory: "4Gi"
  limits:
    cpu: "1"
    memory: "6Gi"

volumeClaimTemplate:
  accessModes: [ "ReadWriteOnce" ]
  resources:
    requests:
      storage: 3Gi

extraVolumes:
  - name: nfs
    hostPath:
      path: /mnt/nfs/logsys
      type: DirectoryOrCreate

extraVolumeMounts:
  - name: nfs
    mountPath: /nfs
    readOnly: false

protocol: https

clusterHealthCheckParams: "wait_for_status=yellow&timeout=300s"