Difference between revisions of "GVP/Current/GVPPEGuide/Deploy"

Revision as of 05:28, December 15, 2021

This topic is part of the manual Genesys Voice Platform Private Edition Guide for version Current of Genesys Voice Platform.

Learn how to deploy Genesys Voice Platform.

Deploy in OpenShift

Important

Make sure to review Before you begin for the full list of prerequisites required to deploy Genesys Voice Platform.

Prerequisites

Consul with Service Mesh and DNS
Availability of shared Postgres for GVP Configuration Server
Availability of SQLServer Database for Reporting Server
- DB should be created in advance (Example DB Name: gvp_rs)
- There is a requirement for one user to have admin (dbo) access and a second with read only (ro) access
- These credentials are used for creation of Reporting Server secrets.

Environment setup

Log in to the OpenShift cluster from the remote host via CLI

oc login --token <token> --server <URL of the API server>

Check the cluster version

oc get clusterversion

Create gvp project in OpenShift cluster

oc new-project gvp

Set default project to GVP

oc project gvp

Bind SCC to genesys user using default service account

oc adm policy add-scc-to-user genesys-restricted -z default -n gvp

Create secret for docker-registry in order to pull image from JFrog

oc create secret docker-registry <credential-name> --docker-server=<docker repo> --docker-username=<username> --docker-password=<API key from jfrog> --docker-email=<emailid>

Link the secret to default service account with pull role

oc secrets link default <credential-name> --for=pull

Installation order matters with GVP. To deploy without errors, the install order should be:

1. GVP Configuration Server

2. GVP ServiceDiscovery

3. GVP Reporting Server

4. GVP Resource Manager

5. GVP Media Control Platform

Helm chart release URLs

Download the GVP Helm charts from JFrog using your credentials:

gvp-configserver : https://<jfrog artifactory/helm location>/gvp-configserver-100.0.1000017.tgz

gvp-sd : https://<jfrog artifactory/helm location>/gvp-sd-100.0.1000019.tgz

gvp-rs : https://<jfrog artifactory/helm location>/gvp-rs-100.0.1000077.tgz

gvp-rm : https://<jfrog artifactory/helm location>/gvp-rm-100.0.1000082.tgz

gvp-mcp : https://<jfrog artifactory/helm location>/gvp-mcp-100.0.1000040.tgz

1. GVP Configuration Server

Secrets creation

Create the following secrets which are required for the service deployment.

postgres-secret

db-hostname: Hostname of DB Server

db-name: Database Name

db-password: password for db user

db-username: username for db

server-name: Hostname of DB Server

apiVersion: v1
kind: Secret
metadata:
  name: postgres-secret
  namespace: gvp
type: Opaque 
data:
  db-username: <base64 encoded value>
  db-password: <base64 encoded value>
  db-hostname: cG9zdGdyZXMtcncuaW5mcmEuc3ZjLmNsdXN0ZXIubG9jYWw=
  db-name: Z3Zw
  server-name: cG9zdGdyZXMtcncuaW5mcmEuc3ZjLmNsdXN0ZXIubG9jYWw=

Execute the following command:

oc create -f postgres-secret.yaml

configserver-secret

password: Password to set for Config DB

username: Username to set for Config DB

apiVersion: v1 kind: Secret metadata: name: configserver-secret namespace: gvp type: Opaque data: username: <base64 encoded value> password: <base64 encoded value>

Execute the following command:

oc create -f configserver-secret.yaml

Install Helm chart

Download the required Helm chart release from the JFrog repository and install. Refer to Helm Chart URLs.

helm install gvp-configserver ./<gvp-configserver-helm-artifact> -f gvp-configserver-values.yaml

At minimum following values will need to be updated in your values.yaml:

<critical-priority-class> - Set to a priority class that exists on cluster (or create it instead)
<docker-repo> - Set to your Docker Repo with Private Edition Artifacts
<credential-name> - Set to your pull secret name

# Default values for gvp-configserver.
# This is a YAML-formatted file.
# Declare variables to be passed into your templates.

## Global Parameters
## Add labels to all the deployed resources
##
podLabels: {}

## Add annotations to all the deployed resources
##
podAnnotations: {}

serviceAccount:
  # Specifies whether a service account should be created
  create: false
  # Annotations to add to the service account
  annotations: {}
  # The name of the service account to use.
  # If not set and create is true, a name is generated using the fullname template
  name:

## Deployment Configuration
## replicaCount should be 1 for Config Server
replicaCount: 1

## Base Labels. Please do not change these.
serviceName: gvp-configserver
component: shared
# Namespace
partOf: gvp 

## Container image repo settings.
image:
  confserv:
    registry: <docker-repo>
    repository: gvp/gvp_confserv
    pullPolicy: IfNotPresent
    tag: "{{ .Chart.AppVersion }}"
  serviceHandler:
    registry: <docker-repo>
    repository: gvp/gvp_configserver_servicehandler
    pullPolicy: IfNotPresent
    tag: "{{ .Chart.AppVersion }}"
  dbInit:
    registry: <docker-repo>
    repository: gvp/gvp_configserver_configserverinit
    pullPolicy: IfNotPresent
    tag: "{{ .Chart.AppVersion }}"

## Config Server App Configuration
configserver:
  ## Settings for liveness and readiness probes
  ## !!! THESE VALUES SHOULD NOT BE CHANGED UNLESS INSTRUCTED BY GENESYS !!!
  livenessValues:
    path: /cs/liveness
    initialDelaySeconds: 30
    periodSeconds: 60
    timeoutSeconds: 20
    failureThreshold: 3
    healthCheckAPIPort: 8300        
      
  readinessValues:
    path: /cs/readiness
    initialDelaySeconds: 30
    periodSeconds: 30
    timeoutSeconds: 20
    failureThreshold: 3
    healthCheckAPIPort: 8300

  alerts:
    cpuUtilizationAlertLimit: 70
    memUtilizationAlertLimit: 90
    workingMemAlertLimit: 7
    maxRestarts: 2

## PVCs defined
#  none

## Define service(s) for application
service:
  type: ClusterIP
  host: gvp-configserver-0
  port: 8888
  targetPort: 8888

## Service Handler configuration.
serviceHandler:
  port: 8300

## Secrets storage related settings - k8s secrets only
secrets:
  # Used for pulling images/containers from the repositories.
  imagePull:
    - name: <credential-name>
  
  # Config Server secrets. If k8s is false, csi will be used, else k8s will be used. 
  # Currently, only k8s is supported!
  configServer:
    secretName: configserver-secret
    secretUserKey: username
    secretPwdKey: password
    #csiSecretProviderClass: keyvault-gvp-gvp-configserver-secret

  # Config Server Postgres DB secrets and settings.
  postgres:
    dbName: gvp
    dbPort: 5432
    secretName: postgres-secret
    secretAdminUserKey: db-username
    secretAdminPwdKey: db-password
    secretHostnameKey: db-hostname
    secretDbNameKey: db-name
    #secretServerNameKey: server-name

## Ingress configuration
ingress:
  enabled: false
  annotations: {}
    # kubernetes.io/ingress.class: nginx
    # kubernetes.io/tls-acme: "true"
  hosts:
    - host: chart-example.local
      paths: []
  tls: []
  #  - secretName: chart-example-tls
  #    hosts:
  #      - chart-example.local

## App resource requests and limits
## ref: http://kubernetes.io/docs/user-guide/compute-resources/
##
resources:
  requests:
    memory: "512Mi"
    cpu: "500m"
  limits:
    memory: "1Gi"
    cpu: "1"

## App containers' Security Context
## ref: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/#set-the-security-context-for-a-container
##
## Containers should run as genesys user and cannot use elevated permissions
##
securityContext:
  runAsUser: 500
  runAsGroup: 500
  # capabilities:
  #   drop:
  #   - ALL
  # readOnlyRootFilesystem: true
  # runAsNonRoot: true
  # runAsUser: 1000

podSecurityContext: {}
  # fsGroup: 2000

## Priority Class
## ref: https://kubernetes.io/docs/concepts/configuration/pod-priority-preemption/
## NOTE: this is an optional parameter
##
priorityClassName: <critical-priority-class>

## Affinity for assignment.
## Ref: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/#affinity-and-anti-affinity
##
affinity: {}

## Node labels for assignment.
## ref: https://kubernetes.io/docs/user-guide/node-selection/
##
nodeSelector: {}

## Tolerations for assignment.
## ref: https://kubernetes.io/docs/concepts/configuration/taint-and-toleration/
##
tolerations: []

## Service/Pod Monitoring Settings
## Whether to create Prometheus alert rules or not.
prometheusRule:
  create: true

## Grafana dashboard Settings
## Whether to create Grafana dashboard or not.
grafana:
  enabled: true

## Enable network policies or not
networkPolicies:
  enabled: false

## DNS configuration options
dnsConfig:
  options:
    - name: ndots
      value: "3"

Verify the deployed resources

Verify the deployed resources from OpenShift console/CLI.

2. GVP Service Discovery

NOTE: After GVP-SD pod gets deployed, you will notice a few errors. Please ignore them and move on to next deployment. This will start working once RM & MCP are deployed.

Secrets creation

Create the following secrets which are required for the service deployment.

shared-consul-consul-gvp-token

apiVersion: v1 kind: Secret metadata: name: shared-consul-consul-gvp-token namespace: gvp type: Opaque data: consul-consul-gvp-token: ZmU2NjFkNWYtYzVmNi1mZTJlLTgyM2MtYTAyZGQwN2JlMzll

Execute the following command:

oc create -f shared-consul-consul-gvp-token-secret.yaml

ConfigMap creation

Creation of a tenant-inventory ConfigMap is required for service discovery deployment.

If the tenant has not been deployed yet then you will not have the information needed to populate the config map. An empty config-map can be created using: oc create configmap tenant-inventory -n gvp

Provisioning a new tenant

Create a file (t100.json in the example) containing at minimum: name, id, gws-ccid, and default-application (should be set to IVRAppDefault) from your tenant deployment.

{ "name": "t100", "id": "80dd", "gws-ccid": "9350e2fc-a1dd-4c65-8d40-1f75a2e080dd", "default-application": "IVRAppDefault" }

Execute the following command to create ConfigMap on cluster:

oc create configmap tenant-inventory --from-file t100.json -n gvp

Updating a tenant

Delete the tenant-inventory ConfigMap using:

oc delete configmap tenant-inventory -n gvp --ignore-not-found

Update the t100.json file and execute the following to create the new ConfigMap:

oc create configmap tenant-inventory --from-file t100.json -n gvp

GVP Service Discovery looks for changes to the config map every 60 seconds.

Provisioning process details

For additional details on the provisioning process, refer to Provision Genesys Voice Platform.

Install Helm chart

Download the required Helm chart release from the JFrog repository and install. Refer to Helm Chart URLs.

helm install gvp-sd ./<gvp-sd-helm-artifact> -f gvp-sd-values.yaml

At minimum following values will need to be updated in your values.yaml:

<critical-priority-class> - Set to a priority class that exists on cluster (or create it instead)
<docker-repo> - Set to your Docker Repo with Private Edition Artifacts
<credential-name> - Set to your pull secret name

# Default values for gvp-sd.
# This is a YAML-formatted file.
# Declare variables to be passed into your templates.

## Global Parameters
## Add labels to all the deployed resources
##
podLabels: {}

## Add annotations to all the deployed resources
##
podAnnotations: {}

serviceAccount:
  # Specifies whether a service account should be created
  create: false
  # Annotations to add to the service account
  annotations: {}
  # The name of the service account to use.
  # If not set and create is true, a name is generated using the fullname template
  name:

## Deployment Configuration
replicaCount: 1
smtp: allowed

## Name overrides
nameOverride: ""
fullnameOverride: ""

## Base Labels. Please do not change these.
component: shared
partOf: gvp

image:
  registry: <docker-repo>
  repository: gvp/gvp_sd
  tag: "{{ .Chart.AppVersion }}"
  pullPolicy: IfNotPresent

## PVCs defined
# none

## Define service for application. 
service:
  name: gvp-sd
  type: ClusterIP
  port: 8080

## Application configuration parameters.
env:
  MCP_SVC_NAME: "gvp-mcp"
  EXTERNAL_CONSUL_SERVER: ""
  CONSUL_PORT: "8501"
  CONFIG_SERVER_HOST: "gvp-configserver"
  CONFIG_SERVER_PORT: "8888"
  CONFIG_SERVER_APP: "default"
  HTTP_SERVER_PORT: "8080"
  METRICS_EXPORTER_PORT: "9090"
  DEF_MCP_FOLDER: "MCP_Configuration_Unit\\MCP_LRG"
  TEST_MCP_FOLDER: "MCP_Configuration_Unit_Test\\MCP_LRG"
  SYNC_INIT_DELAY: "10000"
  SYNC_PERIOD: "60000"
  MCP_PURGE_PERIOD_MINS: "0"
  EMAIL_METERING_FACTOR: "10"
  RECORDINGS_CONTAINER: "ccerp-recordings"
  TENANT_KV_FOLDER: "tenants"
  TENANT_CONFIGMAP_FOLDER: "/etc/config"
  SMTP_SERVER: "smtp-relay.smtp.svc.cluster.local"

## Secrets storage related settings
secrets:
  # Used for pulling images/containers from the repositories.
  imagePull:
    - name: <credential-name>
  
  # If k8s is true, k8s will be used, else vault secret will be used.
  configServer:
    k8s: true
    k8sSecretName: configserver-secret
    k8sUserKey: username
    k8sPasswordKey: password
    vaultSecretName: "/configserver-secret"
    vaultUserKey: "configserver-username"
    vaultPasswordKey: "configserver-password"

  # If k8s is true, k8s will be used, else vault secret will be used.
  consul:
    k8s: true
    k8sTokenName: "shared-consul-consul-gvp-token"
    k8sTokenKey: "consul-consul-gvp-token"
    vaultSecretName: "/consul-secret"
    vaultSecretKey: "consul-consul-gvp-token"

  # GTTS key, password via k8s secret, if k8s is true.  If false, this data comes from tenant profile.
  gtts:
    k8s: false
    k8sSecretName: gtts-secret
    EncryptedKey: encrypted-key
    PasswordKey: password

ingress:
  enabled: false
  annotations: {}
    # kubernetes.io/ingress.class: nginx
    # kubernetes.io/tls-acme: "true"
  hosts:
    - host: chart-example.local
      paths: []
  tls: []
  #  - secretName: chart-example-tls
  #    hosts:
  #      - chart-example.local

resources:
  requests:
    memory: "2Gi"
    cpu: "1000m"
  limits:
    memory: "2Gi"
    cpu: "1000m"

## App containers' Security Context
## ref: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/#set-the-security-context-for-a-container
##
## Containers should run as genesys user and cannot use elevated permissions
## Pod level security context
podSecurityContext: 
  fsGroup: 500
  runAsUser: 500
  runAsGroup: 500
  runAsNonRoot: true

## Container security context    
securityContext:
  runAsUser: 500
  runAsGroup: 500
  runAsNonRoot: true

## Priority Class
## ref: https://kubernetes.io/docs/concepts/configuration/pod-priority-preemption/
## NOTE: this is an optional parameter
##
priorityClassName: <critical-priority-class>

## Affinity for assignment.
## Ref: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/#affinity-and-anti-affinity
##
affinity: {}

## Node labels for assignment.
## ref: https://kubernetes.io/docs/user-guide/node-selection/
##
nodeSelector: {}

## Tolerations for assignment.
## ref: https://kubernetes.io/docs/concepts/configuration/taint-and-toleration/
##
tolerations: []

## Service/Pod Monitoring Settings
prometheus:
  # Enable for Prometheus operator
  podMonitor:
    enabled: true

## Enable network policies or not
networkPolicies:
  enabled: false

## DNS configuration options
dnsConfig:
  options:
    - name: ndots
      value: "3"

Verify the deployed resources

Verify the deployed resources from OpenShift console/CLI.

3. GVP Reporting Server

Secrets creation

Create the following secrets which are required for the service deployment.

rs-dbreader-password

db_hostname:

db_name:

db_password:

db_username:

apiVersion: v1
kind: Secret
metadata:
  name: rs-dbreader-password
  namespace: gvp
type: Opaque 
data:
  db_username: <base64 encoded value>
  db_password: <base64 encoded value>
  db_hostname: bXNzcWxzZXJ2ZXJvcGVuc2hpZnQuZGF0YWJhc2Uud2luZG93cy5uZXQ=
  db_name: cnNfZ3Zw

Execute the following command:

oc create -f rs-dbreader-password-secret.yaml

shared-gvp-rs-sqlserer-secret

db-admin-password:

db-reader-password:

apiVersion: v1 kind: Secret metadata: name: shared-gvp-rs-sqlserver-secret namespace: gvp type: Opaque data: db-admin-password: <value> db-reader-password: <value>

Execute the following command:

oc create -f shared-gvp-rs-sqlserer-secret.yaml

Persistent Volumes creation

Note: The steps for PV creation can be skipped if OCS is used to auto provision the persistent volumes.

Create the following PVs which are required for the service deployment.

If your OpenShift deployment is capable of self-provisioning of Persistent Volumes, then this step can be skipped. Volumes will be created by provisioner.

gvp-rs-0

apiVersion: v1
kind: PersistentVolume
metadata:
  name: gvp-rs-0
  namespace: gvp
spec:
  capacity:
    storage: 30Gi
  accessModes:
    - ReadWriteOnce
  persistentVolumeReclaimPolicy: Retain
  storageClassName: gvp
  nfs:
    path:  /export/vol1/PAT/gvp/rs-01
    server: 192.168.30.51

Execute the following command:

oc create -f gvp-rs-pv.yaml

Install Helm chart

Download the required Helm chart release from the JFrog repository and install. Refer to Helm Chart URLs.

helm install gvp-rs ./<gvp-rs-helm-artifact> -f gvp-rs-values.yaml

At minimum following values will need to be updated in your values.yaml:

<docker-repo> - Set to your Docker Repo with Private Edition Artifacts
<credential-name> - Set to your pull secret name

## Global Parameters
## Add labels to all the deployed resources
##
labels:
  enabled: true
  serviceGroup: "gvp"
  componentType: "shared"

serviceAccount:
  # Specifies whether a service account should be created
  create: false
  # Annotations to add to the service account
  annotations: {}
  # The name of the service account to use.
  # If not set and create is true, a name is generated using the fullname template
  name:

## Primary App Configuration
##
# primaryApp:
# type: ReplicaSet
# Should include the defaults for replicas
deployment:
  replicaCount: 1
  strategy: Recreate
  namespace: gvp
nameOverride: ""
fullnameOverride: ""

image:
  registry: <docker-repo>
  gvprsrepository: gvp/gvp_rs
  snmprepository: gvp/gvp_snmp
  rsinitrepository: gvp/gvp_rs_init
  rstag:
  rsinittag:
  snmptag: v9.0.040.07
  pullPolicy: Always
  imagePullSecrets:
    - name: "<credential-name>"

## liveness and readiness probes
## !!! THESE OPTIONS SHOULD NOT BE CHANGED UNLESS INSTRUCTED BY GENESYS !!!
livenessValues:
  path: /ems-rs/components
  initialDelaySeconds: 30
  periodSeconds: 120
  timeoutSeconds: 3
  failureThreshold: 3

readinessValues:
  path: /ems-rs/components
  initialDelaySeconds: 10
  periodSeconds: 60
  timeoutSeconds: 3
  failureThreshold: 3

## PVCs defined
volumes:
  pvc:
    storageClass: managed-premium
    claimSize: 20Gi
    activemqAndLocalConfigPath: "/billing/gvp-rs"

## Define service(s) for application.  Fields many need to be modified based on `type`
service:
  type: ClusterIP
  restapiport: 8080
  activemqport: 61616
  envinjectport: 443
  dnsport: 53
  configserverport: 8888
  snmpport: 1705

## ConfigMaps with Configuration
## Use Config Map for creating environment variables
context:
  env:
    CFGAPP: default
    GVP_RS_SERVICE_HOSTNAME: gvp-rs.gvp.svc.cluster.local
    #CFGPASSWORD: password
    #CFGUSER: default
    CFG_HOST: gvp-configserver.gvp.svc.cluster.local
    CFG_PORT: '8888'
    CMDLINE: ./rs_startup.sh
    DBNAME: gvp_rs
    #DBPASS: 'jbIKfoS6LpfgaU$E'
    DBUSER: openshiftadmin
    rsDbSharedUsername: openshiftadmin
    DBPORT: 1433
    ENVTYPE: ""
    GenesysIURegion: ""
    localconfigcachepath: /billing/gvp-rs/data/cache
    HOSTFOLDER: Hosts
    HOSTOS: CFGRedHatLinux
    LCAPORT: '4999'
    MSSQLHOST: mssqlserveropenshift.database.windows.net
    RSAPP: azure_rs
    RSJVM_INITIALHEAPSIZE: 500m
    RSJVM_MAXHEAPSIZE: 1536m
    RSFOLDER: Applications
    RS_VERSION: 9.0.032.22
    STDOUT: 'true'
    WRKDIR: /usr/local/genesys/rs/
    SNMPAPP: azure_rs_snmp
    SNMP_WORKDIR: /usr/sbin
    SNMP_CMDLINE: snmpd
    SNMPFOLDER: Applications

  RSCONFIG:
    messaging:
      activemq.memoryUsageLimit: "256 mb"
      activemq.dataDirectory: "/billing/gvp-rs/data/activemq"
    log:
      verbose: "trace"
      trace: "stdout"
    dbmp:
      rs.db.retention.operations.daily.default: "40"
      rs.db.retention.operations.monthly.default: "40"
      rs.db.retention.operations.weekly.default: "40"
      rs.db.retention.var.daily.default: "40"
      rs.db.retention.var.monthly.default: "40"
      rs.db.retention.var.weekly.default: "40"
      rs.db.retention.cdr.default: "40"

# Default secrets storage to k8s secrets with csi able to be optional
secret:
  # keyVaultSecret will be a flag to between secret types(k8's or CSI). If keyVaultSecret was set to false k8's secret will be used
  keyVaultSecret: false
  #RS SQL server secret
  rsSecretName: shared-gvp-rs-sqlserver-secret
  # secretProviderClassName will not be used used when keyVaultSecret set to false
  secretProviderClassName: keyvault-gvp-rs-sqlserver-secret-00
  dbreadersecretFileName: db-reader-password
  dbadminsecretFileName: db-admin-password
  #Configserver secret
  #If keyVaultSecret set to false the below parameters will not be used.
  configserverProviderClassName: gvp-configserver-secret
  cfgSecretFileNameForCfgUsername: configserver-username
  cfgSecretFileNameForCfgPassword: configserver-password
  #If keyVaultSecret set to true the below parameters will not be used.
  cfgServerSecretName: configserver-secret
  cfgSecretKeyNameForCfgUsername: username
  cfgSecretKeyNameForCfgPassword: password

## Ingress configuration
ingress:
  enabled: false
  annotations: {}
    # kubernetes.io/ingress.class: nginx
  # kubernetes.io/tls-acme: "true"
  hosts:
    - host: chart-example.local
      paths: []
  tls: []
  #  - secretName: chart-example-tls
  #    hosts:
  #      - chart-example.local

networkPolicies:
  enabled: false

## primaryAppresource requests and limits
## ref: http://kubernetes.io/docs/user-guide/compute-resources/
##
resourceForRS:
  # We usually recommend not to specify default resources and to leave this as a conscious
  # choice for the user. This also increases chances charts run on environments with little
  # resources, such as Minikube. If you do want to specify resources, uncomment the following
  # lines, adjust them as necessary, and remove the curly braces after 'resources:'.
  requests:
    memory: "500Mi"
    cpu: "200m"
  limits:
    memory: "1Gi"
    cpu: "300m"

resoueceForSnmp:
  requests:
    memory: "500Mi"
    cpu: "100m"
  limits:
    memory: "1Gi"
    cpu: "150m"

## primaryApp containers' Security Context
## ref: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/#set-the-security-context-for-a-container
##
## Containers should run as genesys user and cannot use elevated permissions
securityContext:
  runAsNonRoot: true
  runAsUser: 500
  runAsGroup: 500

podSecurityContext:
  fsGroup: 500

## Priority Class
## ref: https://kubernetes.io/docs/concepts/configuration/pod-priority-preemption/
##
priorityClassName: ""

## Affinity for assignment.
## Ref: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/#affinity-and-anti-affinity
##
affinity: 

## Node labels for assignment.
## ref: https://kubernetes.io/docs/user-guide/node-selection/
##
nodeSelector: 

## Tolerations for assignment.
## ref: https://kubernetes.io/docs/concepts/configuration/taint-and-toleration/
##
tolerations: []

## Extra labels
## ref: https://kubernetes.io/docs/concepts/overview/working-with-objects/labels/
##
#  labels: {}

## Extra Annotations
## ref: https://kubernetes.io/docs/concepts/overview/working-with-objects/annotations/
##
#  annotations: {}

## Service/Pod Monitoring Settings
prometheus:
 enabled: true
 metric:
   port: 9116
	
# Enable for Prometheus operator
podMonitor:
  enabled: true
  metric:
    path: /snmp
    module: [ if_mib ]
    target: [ 127.0.0.1:1161 ]
	 
monitoring:
  prometheusRulesEnabled: true
  grafanaEnabled: true
   
monitor:
  monitorName: gvp-monitoring

##DNS Settings
dnsConfig:
  options:
    - name: ndots
      value: "3"

Verify the deployed resources

Verify the deployed resources from OpenShift console/CLI.

Deployment validation - Success

1. Log into console and check if gvp-rs pod is ready and running "oc get pods -o wide".

2. Do a pod describe and check if both liveness and Readiness probes are passing "oc describe gvp-rs"

3. Check the RS applications and Db details are properly configured in GVP Configuration Server.

4. Check secrets are created in kubernetes cluster.

5. Check Db creation and configuration is successful.

Deployment validation - Failure

To debug deployment failure, follow the below steps:

1. Log into console and check if gvp-rs pod is ready and running "oc get pods -o wide".

2. If the RS container is continuously restarting, you need to check the liveness and readiness probe status.

3. Do RS pod describe to check the liveness and readiness probe status "oc describe gvp-rs".

4. If probe failures are observed, check if PVC is attached properly and check RS logs if Config data is read properly.

5. If rs-init container is failing, check RS and configserver/DB connectivity.

4. GVP Resource Manager

Resource Manager will not pass readiness checks until an MCP has registered properly. This is because service is not available without MCPs.

Persistent Volumes creation

Note: The steps for PV creation can be skipped if OCS is used to auto provision the persistent volumes.

Create the following PVs which are required for the service deployment.

If your OpenShift deployment is capable of self-provisioning of Persistent Volumes, then this step can be skipped. Volumes will be created by provisioner.

gvp-rm-01

apiVersion: v1
kind: PersistentVolume
metadata:
  name: gvp-rm-01
spec:
  capacity:
    storage: 30Gi
  accessModes:
    - ReadWriteOnce
  persistentVolumeReclaimPolicy: Retain
  storageClassName: gvp
  nfs:
    path:  /export/vol1/PAT/gvp/rm-01
    server: 192.168.30.51

Execute the following command:

oc create -f gvp-rm-01-pv.yaml

gvp-rm-02

apiVersion: v1
kind: PersistentVolume
metadata:
  name: gvp-rm-02
spec:
  capacity:
    storage: 30Gi
  accessModes:
    - ReadWriteOnce
  persistentVolumeReclaimPolicy: Retain
  storageClassName: gvp
  nfs:
    path:  /export/vol1/PAT/gvp/rm-02
    server: 192.168.30.51

Execute the following command:

oc create -f gvp-rm-02-pv.yaml

gvp-rm-logs-01

apiVersion: v1
kind: PersistentVolume
metadata:
  name: gvp-rm-logs-01
spec:
  capacity:
    storage: 10Gi
  accessModes:
    - ReadWriteOnce
  persistentVolumeReclaimPolicy: Recycle
  storageClassName: gvp
  nfs:
    path:  /export/vol1/PAT/gvp/rm-logs-01
    server: 192.168.30.51

Execute the following command:

oc create -f gvp-rm-logs-01-pv.yaml

gvp-rm-logs-02

apiVersion: v1
kind: PersistentVolume
metadata:
  name: gvp-rm-logs-02
spec:
  capacity:
    storage: 10Gi
  accessModes:
    - ReadWriteOnce
  persistentVolumeReclaimPolicy: Recycle
  storageClassName: gvp
  nfs:
    path:  /export/vol1/PAT/gvp/rm-logs-02
    server: 192.168.30.51

Execute the following command:

oc create -f gvp-rm-logs-02-pv.yaml

Install Helm chart

Download the required Helm chart release from the JFrog repository and install. Refer to Helm Chart URLs.

helm install gvp-rm ./<gvp-rm-helm-artifact> -f gvp-rm-values.yaml

At minimum following values will need to be updated in your values.yaml:

<docker-repo> - Set to your Docker Repo with Private Edition Artifacts
<credential-name> - Set to your pull secret name

## Global Parameters
## Add labels to all the deployed resources
##
labels:
  enabled: true
  serviceGroup: "gvp"
  componentType: "shared"

## Primary App Configuration
##
# primaryApp:
# type: ReplicaSet
# Should include the defaults for replicas
deployment:
  replicaCount: 2
  deploymentEnv: "UPDATE_ENV"
  namespace: gvp
  clusterDomain: "svc.cluster.local"
nameOverride: ""
fullnameOverride: ""

image:
  registry: <docker-repo>
  gvprmrepository: gvp/gvp_rm
  cfghandlerrepository: gvp/gvp_rm_cfghandler
  snmprepository: gvp/gvp_snmp
  gvprmtestrepository: gvp/gvp_rm_test
  cfghandlertag: 
  rmtesttag: 
  rmtag: 
  snmptag: v9.0.040.07
  pullPolicy: Always
  imagePullSecrets:
    - name: "<credential-name>"

dnsConfig:
  options:
    - name: ndots
      value: "3"

# Pod termination grace period 15 mins.
gracePeriodSeconds: 900

## liveness and readiness probes
## !!! THESE OPTIONS SHOULD NOT BE CHANGED UNLESS INSTRUCTED BY GENESYS !!!
livenessValues:
  path: /rm/liveness
  initialDelaySeconds: 60
  periodSeconds: 90
  timeoutSeconds: 20
  failureThreshold: 3

readinessValues:
  path: /rm/readiness
  initialDelaySeconds: 10
  periodSeconds: 60
  timeoutSeconds: 20
  failureThreshold: 3

## PVCs defined
volumes:
  billingpvc:
    storageClass: managed-premium
    claimSize: 20Gi
    mountPath: "/rm"
  
## Define RM log storage volume type
rmLogStorage:
  volumeType:  
    persistentVolume:
      enabled: false
      storageClass: disk-premium
      claimSize: 50Gi
      accessMode: ReadWriteOnce
    hostPath:
      enabled: true
      path: /mnt/log
    emptyDir:
      enabled: false
  containerMountPath:
    path: /mnt/log
  
## FluentBit Settings
 fluentBitSidecar:
  enabled: false
 
## Define service(s) for application.  Fields many need to be modified based on `type`
service:
  type: ClusterIP
  port: 5060
  rmHealthCheckAPIPort: 8300

## ConfigMaps with Configuration
## Use Config Map for creating environment variables
context:
  env:
    cfghandler:
      CFGSERVER: gvp-configserver.gvp.svc.cluster.local
      CFGSERVERBACKUP: gvp-configserver.gvp.svc.cluster.local
      CFGPORT: "8888"
      CFGAPP: "default"
      RMAPP: "azure_rm"
      RMFOLDER: "Applications\\RM_MicroService\\RM_Apps"
      HOSTFOLDER: "Hosts\\RM_MicroService"
      MCPFOLDER: "MCP_Configuration_Unit\\MCP_LRG"
      SNMPFOLDER: "Applications\\RM_MicroService\\SNMP_Apps"
      EnvironmentType: "prod"
      CONFSERVERAPP: "confserv"
      RSAPP: "azure_rs"
      SNMPAPP: "azure_rm_snmp"
      STDOUT: "true"
      VOICEMAILSERVICEDIDNUMBER: "55551111"

  RMCONFIG:
    rm:
      sip-header-for-dnis: "Request-Uri"
      ignore-gw-lrg-configuration: "true"
      ignore-ruri-tenant-dbid: "true"
    log:
      verbose: "trace"
    subscription:
      sip.transport.dnsharouting: "true"
      sip.headerutf8verification: "false"
      sip.transport.setuptimer.tcp: "5000"
      sip.threadpoolsize: "1"
    registrar:
      sip.transport.dnsharouting: "true"
      sip.headerutf8verification: "false"
      sip.transport.setuptimer.tcp: "5000"
      sip.threadpoolsize: "1"
    proxy:
      sip.transport.dnsharouting: "true"
      sip.headerutf8verification: "false"
      sip.transport.setuptimer.tcp: "5000"
      sip.threadpoolsize: "16"
      sip.maxtcpconnections: "1000"
    monitor:
      sip.transport.dnsharouting: "true"
      sip.maxtcpconnections: "1000"
      sip.headerutf8verification: "false"
      sip.transport.setuptimer.tcp: "5000"
      sip.threadpoolsize: "1"
    ems:
      rc.cdr.local_queue_path: "/rm/ems/data/cdrQueue_rm.db"
      rc.ors.local_queue_path: "/rm/ems/data/orsQueue_rm.db"

# Default secrets storage to k8s secrets with csi able to be optional
secret:
  # keyVaultSecret will be a flag to between secret types(k8's or CSI). If keyVaultSecret was set to false k8's secret will be used
  keyVaultSecret: false
  #If keyVaultSecret set to false the below parameters will not be used.
  configserverProviderClassName: gvp-configserver-secret
  cfgSecretFileNameForCfgUsername: configserver-username
  cfgSecretFileNameForCfgPassword: configserver-password
  #If keyVaultSecret set to true the below parameters will not be used.
  cfgServerSecretName: configserver-secret
  cfgSecretKeyNameForCfgUsername: username
  cfgSecretKeyNameForCfgPassword: password

## Ingress configuration
ingress:
  enabled: false
  annotations: {}
    # kubernetes.io/ingress.class: nginx
  # kubernetes.io/tls-acme: "true"
  paths: []
  hosts:
    - chart-example.local
  tls: []
  #  - secretName: chart-example-tls
  #    hosts:
  #      - chart-example.local
networkPolicies:
  enabled: false
sip:
  serviceName: sipnode

## primaryAppresource requests and limits
## ref: http://kubernetes.io/docs/user-guide/compute-resources/
##
resourceForRM:
  # We usually recommend not to specify default resources and to leave this as a conscious
  # choice for the user. This also increases chances charts run on environments with little
  # resources, such as Minikube. If you do want to specify resources, uncomment the following
  # lines, adjust them as necessary, and remove the curly braces after 'resources:'.
  requests:
    memory: "1Gi"
    cpu: "200m"
    ephemeral-storage: "10Gi"
  limits:
    memory: "2Gi"
    cpu: "250m"

resoueceForSnmp:
  requests:
    memory: "500Mi"
    cpu: "100m"
  limits:
    memory: "1Gi"
    cpu: "150m"

## primaryApp containers' Security Context
## ref: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/#set-the-security-context-for-a-container
##
## Containers should run as genesys user and cannot use elevated permissions
securityContext:
  fsGroup: 500
  runAsNonRoot: true
  runAsUserRM: 500
  runAsGroupRM: 500
  runAsUserCfghandler: 500
  runAsGroupCfghandler: 500

## Priority Class
## ref: https://kubernetes.io/docs/concepts/configuration/pod-priority-preemption/
##
priorityClassName: ""

## Affinity for assignment.
## Ref: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/#affinity-and-anti-affinity
##
affinity: 

## Node labels for assignment.
## ref: https://kubernetes.io/docs/user-guide/node-selection/
##
nodeSelector:


## Tolerations for assignment.
## ref: https://kubernetes.io/docs/concepts/configuration/taint-and-toleration/
##
tolerations: []

## Service/Pod Monitoring Settings
prometheus:
 enabled: true
 metric:
   port: 9116
	
# Enable for Prometheus operator
podMonitor:
  enabled: true
  metric:
    path: /snmp
    module: [ if_mib ]
    target: [ 127.0.0.1:1161 ]
	 
monitoring:
  prometheusRulesEnabled: true
  grafanaEnabled: true
   
monitor:
  monitorName: gvp-monitoring

Verify the deployed resources

Verify the deployed resources from OpenShift console/CLI.

Deployment validation - success

1. Log into console and check if gvp-rm-0 and gvp-rm-1 pods are ready and running "oc get pods -o wide".

2. Do a pod describe and check if both liveness and readiness probes are passing "oc describe gvp-rm-0 / oc describe pod gvp-rm-1"

3. LRG options configured by Resource Manager could be changed by using LRG configuration section in values.yaml. For example,

LRGConfig:
    gvp.lrg:
      load-balance-scheme: "round-robin"

4. When Resource Manager is deployed, it creates LRG "MCP_Configuration_Unit\\MCP_LRG", configuration unit, default IVR Profiles in the environment tenant.

For information on provisioning a new tenant, refer to Provision Genesys Voice Platform.

Resource Manager uses gvp-tenant-id, the contact center ID, and the media service type coming from SIP Server in the INVITE message to identify the tenant and pick the IVR Profiles.

Deployment validation - failure

To debug deployment failure, do the following:

1. Log into console and check if gvp-rm-0 and gvp-rm-1 pods are ready and running "oc get pods -o wide".

2. If the RM container is continuously restarting, check the liveness and readiness probe status.

3. Do RM pod describe to check the liveness and readiness probe status "oc describe gvp-rm-0 / oc describe pod gvp-rm-1"

4. If probe failures are observed, check for MCP availability and MCP applications in RM LRG. Check RM logs to find the root cause.

5. If rm-init container is failing, check RM and Configuration Server connectivity, and check whether RM configuration details are properly configured.

5. GVP Media Control Platform

Persistent Volumes creation

Note: The steps for PV creation can be skipped if OCS is used to auto provision the persistent volumes.

Create the following PVs which are required for the service deployment.

If your OpenShift deployment is capable of self-provisioning of Persistent Volumes, then this step can be skipped. Volumes will be created by provisioner.

gvp-mcp-logs-01

apiVersion: v1
kind: PersistentVolume
metadata:
  name: gvp-mcp-logs-01
spec:
  capacity:
    storage: 10Gi
  accessModes:
    - ReadWriteOnce
  persistentVolumeReclaimPolicy: Recycle
  storageClassName: gvp
  nfs:
    path:  /export/vol1/PAT/gvp/mcp-logs-01
    server: 192.168.30.51

Execute the following command:

oc create -f gvp-mcp-logs-01-pv.yaml

gvp-mcp-logs-02

apiVersion: v1
kind: PersistentVolume
metadata:
  name: gvp-mcp-logs-02
spec:
  capacity:
    storage: 10Gi
  accessModes:
    - ReadWriteOnce
  persistentVolumeReclaimPolicy: Recycle
  storageClassName: gvp
  nfs:
    path:  /export/vol1/PAT/gvp/mcp-logs-02
    server: 192.168.30.51

Execute the following command:

oc create -f gvp-mcp-logs-02-pv.yaml

gvp-mcp-rup-volume-01

apiVersion: v1
kind: PersistentVolume
metadata:
  name: gvp-mcp-rup-volume-01
spec:
  capacity:
    storage: 40Gi
  accessModes:
    - ReadWriteOnce
  persistentVolumeReclaimPolicy: Recycle
  storageClassName: disk-premium
  nfs:
    path:  /export/vol1/PAT/gvp/mcp-logs-01
    server: 192.168.30.51

Execute the following command:

oc create -f gvp-mcp-rup-volume-01-pv.yaml

gvp-mcp-rup-volume-02

apiVersion: v1
kind: PersistentVolume
metadata:
  name: gvp-mcp-rup-volume-02
spec:
  capacity:
    storage: 40Gi
  accessModes:
    - ReadWriteOnce
  persistentVolumeReclaimPolicy: Recycle
  storageClassName: disk-premium
  nfs:
    path:  /export/vol1/PAT/gvp/mcp-logs-02
    server: 192.168.30.51

Execute the following command:

oc create -f gvp-mcp-rup-volume-02-pv.yaml

gvp-mcp-recording-volume-01

apiVersion: v1
kind: PersistentVolume
metadata:
  name: gvp-mcp-recording-volume-01
spec:
  capacity:
    storage: 40Gi
  accessModes:
    - ReadWriteOnce
  persistentVolumeReclaimPolicy: Recycle
  storageClassName: gvp
  nfs:
    path:  /export/vol1/PAT/gvp/mcp-logs-01
    server: 192.168.30.51

Execute the following command:

oc create -f gvp-mcp-recordings-volume-01-pv.yaml

gvp-mcp-recording-volume-02

apiVersion: v1
kind: PersistentVolume
metadata:
  name: gvp-mcp-recording-volume-02
spec:
  capacity:
    storage: 40Gi
  accessModes:
    - ReadWriteOnce
  persistentVolumeReclaimPolicy: Recycle
  storageClassName: gvp
  nfs:
    path:  /export/vol1/PAT/gvp/mcp-logs-02
    server: 192.168.30.51

Execute the following command:

oc create -f gvp-mcp-recordings-volume-02-pv.yaml

Install Helm chart

Download the required Helm chart release from the JFrog repository and install. Refer to Helm Chart URLs.

helm install gvp-mcp-blue ./<gvp-mcp-helm-artifact> -f gvp-mcp-values.yaml

At minimum following values will need to be updated in your values.yaml:

<critical-priority-class> - Set to a priority class that exists on cluster (or create it instead)
<docker-repo> - Set to your Docker Repo with Private Edition Artifacts
<credential-name> - Set to your pull secret name
Set logicalResourceGroup: "MCP_Configuration_Unit" to add MCPs to the Real Configuration Unit (rather than test)

## Default values for gvp-mcp.
## This is a YAML-formatted file.
## Declare variables to be passed into your templates.

## Global Parameters
## Add labels to all the deployed resources
##
podLabels: {}

## Add annotations to all the deployed resources
##
podAnnotations: {}

serviceAccount:
  # Specifies whether a service account should be created
  create: false
  # Annotations to add to the service account
  annotations: {}
  # The name of the service account to use.
  # If not set and create is true, a name is generated using the fullname template
  name:

## Deployment Configuration
deploymentEnv: "UPDATE_ENV"
replicaCount: 2
terminationGracePeriod: 3600

## Name and dashboard overrides
nameOverride: ""
fullnameOverride: ""
dashboardReplicaStatefulsetFilterOverride: ""

## Base Labels. Please do not change these.
serviceName: gvp-mcp
component: shared
partOf: gvp 

## Command-line arguments to the MCP process
args:
  - "gvp-configserver"
  - "8888"
  - "default"
  - "/etc/mcpconfig/config.ini"

## Container image repo settings.
image:
  mcp:
    registry: <docker-repo>
    repository: gvp/multicloud/gvp_mcp
    tag: "{{ .Chart.AppVersion }}"
    pullPolicy: IfNotPresent
  serviceHandler:
    registry: <docker-repo>
    repository: gvp/multicloud/gvp_mcp_servicehandler
    tag: "{{ .Chart.AppVersion }}"
    pullPolicy: IfNotPresent
  configHandler:
    registry: <docker-repo>
    repository: gvp/multicloud/gvp_mcp_confighandler
    tag: "{{ .Chart.AppVersion }}"
    pullPolicy: IfNotPresent
  snmp:
    registry: <docker-repo>
    repository: gvp/multicloud/gvp_snmp
    tag: v9.0.040.21
    pullPolicy: IfNotPresent
  rup:
    registry: <docker-repo>
    repository: cce/recording-provider
    tag: 9.0.000.00.b.1432.r.ef30441
    pullPolicy: IfNotPresent
  
## MCP specific settings
mcp:
  ## Settings for liveness and readiness probes of MCP
  ## !!! THESE VALUES SHOULD NOT BE CHANGED UNLESS INSTRUCTED BY GENESYS !!!
  livenessValues:
    path: /mcp/liveness
    initialDelaySeconds: 30
    periodSeconds: 60
    timeoutSeconds: 20
    failureThreshold: 3
    healthCheckAPIPort: 8300        

  # Used instead of startupProbe.  This runs all initial self-tests, and could take some time.
  # Timeout is < 1 minute (with reduced test set), and interval/period is 1 minute.
  readinessValues:
    path: /mcp/readiness
    initialDelaySeconds: 30
    periodSeconds: 60
    timeoutSeconds: 50
    failureThreshold: 3
    healthCheckAPIPort: 8300
  # Location of configuration file for MCP
  # initialConfigFile is the default template
  # finalConfigFile is the final configuration after overrides are applied (see mcpConfig section for overrides)
  initialConfigFile: "/etc/config/config.ini"
  finalConfigFile: "/etc/mcpconfig/config.ini"

  # Dev and QA deployments will use MCP_Configuration_Unit_Test LRG and shared deployments will use MCP_Configuration_Unit LRG
  logicalResourceGroup: "MCP_Configuration_Unit"

  # Threshold values for the various alerts in podmonitor.
  alerts:
    cpuUtilizationAlertLimit: 70
    memUtilizationAlertLimit: 90
    workingMemAlertLimit: 7
    maxRestarts: 2
    persistentVolume: 20
    serviceHealth: 40
    recordingError: 7
    configServerFailure: 0
    dtmfError: 1
    dnsError: 6
    totalError: 120
    selfTestError: 25
    fetchErrorMin: 120
    fetchErrorMax: 220
    execError: 120
    sdpParseError: 1
    mediaWarning: 3
    mediaCritical: 7
    fetchTimeout: 10
    fetchError: 10
    ngiError: 12
    ngi4xx: 10
    recPostError: 7
    recOpenError: 1
    recStartError: 3
    recCertError: 7
    reportingDbInitError: 1
    reportingFlushError: 1
    grammarLoadError: 1
    grammarSynError: 1
    dtmfGrammarLoadError: 1
    dtmfGrammarError: 1
    vrmOpenSessError: 1
    wsTokenCreateError: 1
    wsTokenConfigError: 1
    wsTokenFetchError: 1
    wsOpenSessError: 1
    wsProtoError: 1
    grpcConfigError: 1
    grpcSSLRootCertError: 1
    grpcGoogleCredentialError: 1
    grpcRecognizeStartError: 7
    grpcWriteError: 7
    grpcRecognizeError: 7
    grpcTtsError: 7
    streamerOpenSessionError: 1
    streamerProtocolError: 1
    msmlReqError: 7
    dnsResError: 6
    rsConnError: 150

## RUP (Recording Uploader) Settings
rup:
  ## Settings for liveness and readiness probes of RUP
  ## !!! THESE VALUES SHOULD NOT BE CHANGED UNLESS INSTRUCTED BY GENESYS !!!
  livenessValues:
    path: /health/live
    initialDelaySeconds: 30
    periodSeconds: 60
    timeoutSeconds: 20
    failureThreshold: 3
    healthCheckAPIPort: 8080        

  readinessValues:
    path: /health/ready
    initialDelaySeconds: 30
    periodSeconds: 30
    timeoutSeconds: 20
    failureThreshold: 3
    healthCheckAPIPort: 8080

  ## RUP PVC defines
  rupVolume:
    storageClass: "genesys"
    accessModes: "ReadWriteOnce"
    volumeSize: 40Gi

  ## Other settings for RUP
  recordingsFolder: "/pvolume/recordings"
  recordingsCache: "/pvolume/recording_cache"
  rupProvisionerEnabled: "false"
  decommisionDestType: "WebDAV"
  decommisionDestWebdavUrl: "http://gvp-central-rup:8180"
  decommisionDestWebdavUsername: ""
  decommisionDestWebdavPassword: ""
  diskFullDestType: "WebDAV"
  diskFullDestWebdavUrl: "http://gvp-central-rup:8180"
  diskFullDestWebdavUsername: ""
  diskFullDestWebdavPassword: ""
  cpUrl: "http://cce-conversation-provider.cce.svc.cluster.local"
  unrecoverableLostAction: "uploadtodefault"
  unrecoverableDestType: "Azure"
  unrecoverableDestAzureAccountName: "gvpwestus2dev"
  unrecoverableDestAzureContainerName: "ccerp-unrecoverable"
  logJsonEnable: true
  logLevel: INFO
  logConsoleLevel: INFO

  ## RUP resource requests and limits
  ## ref: http://kubernetes.io/docs/user-guide/compute-resources/
  resources: 
    requests: 
      memory: "128Mi"
      cpu: "100m"
      ephemeral-storage: "1Gi"
    limits:
      memory: "2Gi"
      cpu: "1000m"

## PVCs defined.  RUP one is under "rup" label.
recordingStorage:
  storageClass: "genesys"
  accessModes: "ReadWriteOnce"
  volumeSize: 40Gi

## MCP log storage volume types.
mcpLogStorage:
  volumeType:
   persistentVolume:
    enabled: false
    storageClass: disk-premium
    volumeSize: 50Gi
    accessModes: ReadWriteOnce
   hostPath:
    enabled: true
    path: /mnt/log
   emptyDir:
    enabled: false   

## FluentBit Settings
 fluentBitSidecar:
  enabled: false
 
## Service Handler configuration. Note, the port values CANNOT be changed here alone, and should not be changed. 
serviceHandler:
  serviceHandlerPort: 8300
  mcpSipPort: 5070
  consuleExternalHost: ""
  consulPort: 8501
  registrationInterval: 10000
  mcpHealthCheckInterval: 30s
  mcpHealthCheckTimeout: 10s

## Config Server values passed to RUP, etc. These should not be changed.
configServer:
  host: gvp-configserver
  port: "8888"

## Secrets storage related settings - k8s secrets or csi
secrets:
  # Used for pulling images/containers from the respositories.
  imagePull:
    - name: <credential-name>
  
  # Config Server secrets. If k8s is false, csi will be used, else k8s will be used. 
  configServer:
    k8s: true
    secretName: configserver-secret
    dbUserKey: username
    dbPasswordKey: password
    csiSecretProviderClass: keyvault-gvp-gvp-configserver-secret
  
  # Consul secrets. If k8s is false, csi will be used, else k8s will be used.
  consul:
    k8s: true
    secretName: shared-consul-consul-gvp-token
    secretKey: consul-consul-gvp-token
    csiSecretProviderClass: keyvault-consul-consul-gvp-token

## Ingress configuration
ingress:
  enabled: false
  annotations: {}
    # kubernetes.io/ingress.class: nginx
    # kubernetes.io/tls-acme: "true"
  hosts:
    - host: chart-example.local
      paths: []
  tls: []
  #  - secretName: chart-example-tls
  #    hosts:
  #      - chart-example.local

## App resource requests and limits
## ref: http://kubernetes.io/docs/user-guide/compute-resources/
## Values for MCP, and the default ones for other containers. RUP ones are under "rup" label.
##
resourcesMcp: 
  requests: 
    memory: "200Mi"
    cpu: "250m"
    ephemeral-storage: "1Gi"
  limits:
    memory: "2Gi"
    cpu: "300m" 

resourcesDefault: 
  requests:
    memory: "128Mi"
    cpu: "100m"
  limits:
    memory: "128Mi"
    cpu: "100m"
  # We usually recommend not to specify default resources and to leave this as a conscious
  # choice for the user. This also increases chances charts run on environments with little
  # resources, such as Minikube. If you do want to specify resources, uncomment the following
  # lines, adjust them as necessary, and remove the curly braces after 'resources:'.
  # limits:
  #   cpu: 100m
  #   memory: 128Mi
  # requests:
  #   cpu: 100m
  #   memory: 128Mi

## App containers' Security Context
## ref: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/#set-the-security-context-for-a-container
##
## Containers should run as genesys user and cannot use elevated permissions
## Pod level security context
podSecurityContext: 
  fsGroup: 500
  runAsUser: 500
  runAsGroup: 500
  runAsNonRoot: true

## Container security context
securityContext:
  # fsGroup: 500
  runAsUser: 500
  runAsGroup: 500
  runAsNonRoot: true

## Priority Class
## ref: https://kubernetes.io/docs/concepts/configuration/pod-priority-preemption/
## NOTE: this is an optional parameter
##
priorityClassName: <critical-priority-class>

# affinity: {}

## Node labels for assignment.
## ref: https://kubernetes.io/docs/user-guide/node-selection/
##
nodeSelector:
  #genesysengage.com/nodepool: realtime

## Tolerations for assignment.
## ref: https://kubernetes.io/docs/concepts/configuration/taint-and-toleration/
##
tolerations: []
  # - key: "kubernetes.azure.com/scalesetpriority"
  #   operator: "Equal"
  #   value: "spot"
  #   effect: "NoSchedule"
  # - key: "k8s.genesysengage.com/nodepool"
  #   operator: "Equal"
  #   value: "compute"
  #   effect: "NoSchedule"
  # - key: "kubernetes.azure.com/scalesetpriority"
  #   operator: "Equal"
  #   value: "compute"
  #   effect: "NoSchedule"
  #- key: "k8s.genesysengage.com/nodepool"
  #  operator: Exists
  #  effect: NoSchedule

## Extra labels
## ref: https://kubernetes.io/docs/concepts/overview/working-with-objects/labels/
##
## Use podLabels
#labels: {}

## Extra Annotations
## ref: https://kubernetes.io/docs/concepts/overview/working-with-objects/annotations/
##
## Use podAnnotations
#annotations: {}

## Autoscaling Settings
## Keda can be used as an alternative to HPA only to scale MCPs based on a cron schedule (UTC).
## If this is set to true, use Keda for scaling, or use HPA directly.
useKeda: true

## If Keda is enabled, only the following parameters are supported, and default HPA settings
## will be used within Keda.
keda:
  preScaleStart: "0 14 * * *"
  preScaleEnd: "0 2 * * *"
  preScaleDesiredReplicas: 4
  pollingInterval: 15
  cooldownPeriod: 300

## HPA Settings
# GVP-42512: PDB issue
# Alaways keep the following:
# minReplicas >= 2
# maxUnavailable = 1  
hpa:
  enabled: false
  minReplicas: 2
  maxUnavailable: 1
  maxReplicas: 4
  podManagementPolicy: Parallel
  targetCPUAverageUtilization: 20
  scaleupPeriod: 15
  scaleupPods: 4
  scaleupPercent: 50
  scaleupStabilizationWindow: 0
  scaleupPolicy: Max
  scaledownPeriod: 300
  scaledownPods: 2
  scaledownPercent: 10
  scaledownStabilizationWindow: 3600
  scaledownPolicy: Min

## Service/Pod Monitoring Settings
prometheus:
  mcp:
    name: gvp-mcp-snmp
    port: 9116

  rup:
    name: gvp-mcp-rup
    port: 8080

  podMonitor:
    enabled: true

grafana:
  enabled: false

  #log:
  #  name: gvp-mcp-log
  #  port: 8200

## Pod Disruption Budget Settings
podDisruptionBudget:
  enabled: true

## Enable network policies or not
networkPolicies:
  enabled: false

## DNS configuration options
dnsConfig:
  options:
    - name: ndots
      value: "3"

## Configuration overrides
mcpConfig:
  # MCP config overrides
  mcp.mpc.numdispatchthreads: 4
  mcp.log.verbose: "interaction"
  mcp.mpc.codec: "pcmu pcma telephone-event"
  mcp.mpc.transcoders: "PCM MP3"
  mcp.mpc.playcache.enable: 1
  mcp.fm.http_proxy: ""
  mcp.fm.https_proxy: ""
 
# Nexus client configuration.  
 # !!!  Other than pool.size and resource.uri, no other parameter should be changed.  !!!
 nexus_asr1.pool.size: 0
 nexus_asr1.provision.vrm.client.resource.uri: "[\"ws://nexus-production.nexus.svc.cluster.local/nexus/v3/bot/connection\"]"
 nexus_asr1.provision.vrm.client.resource.type: "ASR"
 nexus_asr1.provision.vrm.client.resource.name: "ASRC"
 nexus_asr1.provision.vrm.client.resource.engines: "nexus"
 nexus_asr1.provision.vrm.client.resource.engine.nexus.audio.codec: "mulaw"
 nexus_asr1.provision.vrm.client.resource.engine.nexus.audio.samplerate: 8000
 nexus_asr1.provision.vrm.client.resource.engine.nexus.enableMaxSpeechTimeout: true
 nexus_asr1.provision.vrm.client.resource.engine.nexus.serviceAccountKey: ""
 nexus_asr1.provision.vrm.client.resource.privatekey: ""
 nexus_asr1.provision.vrm.client.resource.proxy: ""
 nexus_asr1.provision.vrm.client.TransportProtocol: "WEBSOCKET"

Genesys Voice Platform Private Edition Guide

Overview

Configure and deploy

Upgrade, roll back, or uninstall

Observability

Difference between revisions of "GVP/Current/GVPPEGuide/Deploy"

Revision as of 05:28, December 15, 2021

Contents

Deploy in OpenShift

Prerequisites

Environment setup

Helm chart release URLs

1. GVP Configuration Server

Secrets creation

Install Helm chart

Verify the deployed resources

2. GVP Service Discovery

Secrets creation

ConfigMap creation

Provisioning a new tenant

Updating a tenant

Provisioning process details

Install Helm chart

Verify the deployed resources

3. GVP Reporting Server

Secrets creation

Persistent Volumes creation

Install Helm chart

Verify the deployed resources

Deployment validation - Success

Deployment validation - Failure

4. GVP Resource Manager

Persistent Volumes creation

Install Helm chart

Verify the deployed resources

Deployment validation - success

Deployment validation - failure

5. GVP Media Control Platform

Persistent Volumes creation

Install Helm chart

@@ Line 5: / Line 5: @@
 |ComingSoon=No
 |Section={{Section
-|sectionHeading=Deploy
+|sectionHeading=Deploy in OpenShift
 |alignment=Vertical
 |structuredtext={{NoteFormat|Make sure to review {{Link-SomewhereInThisVersion|manual=GVPPEGuide|topic=Planning}} for the full list of prerequisites required to deploy Genesys Voice Platform.|}}
@@ Line 19: / Line 19: @@
 ===Environment setup===
-*Log in to the gke cluster
+*Log in to the OpenShift cluster from the remote host via CLI
-<source lang="bash">
-gcloud container clusters get-credentials gke1
-</source>
-*Create gvp project in gke cluster using following manifest file
+{{{!}} class="wikitable" data-macro-name="code" data-macro-id="ab571ebf-fcfb-4a01-8b1b-6944f77b9f78" data-macro-parameters="language=bash{{!}}theme=Emacs" data-macro-schema-version="1" data-macro-body-type="PLAIN_TEXT"
+{{!}} class="wysiwyg-macro-body"{{!}}
+ oc login --token <token> --server <URL of the API server>
+{{!}}}
-'''create-gvp-namespace.json'''
+*Check the cluster version
-<source lang="bash">
-{
-"apiVersion": "v1",
-"kind": "Namespace",
-"metadata": {
-"name": "gvp",
-"labels": {
-"name": "gvp"
-}
-}
-}
-</source>
-<source lang="bash">
+{{{!}} class="wikitable" data-macro-name="code" data-macro-id="214674de-64a8-4a44-b515-153092ce8d29" data-macro-parameters="language=bash{{!}}theme=Emacs" data-macro-schema-version="1" data-macro-body-type="PLAIN_TEXT"
-kubectl apply -f apply create-gvp-namespace.json
+{{!}} class="wysiwyg-macro-body"{{!}}
-</source>
+ oc get clusterversion
+{{!}}}
+*Create gvp project in OpenShift cluster
+{{{!}} class="wikitable" data-macro-name="code" data-macro-id="64d874a6-e297-4123-a6a5-af80bef85b93" data-macro-parameters="language=bash{{!}}theme=Emacs" data-macro-schema-version="1" data-macro-body-type="PLAIN_TEXT"
+{{!}} class="wysiwyg-macro-body"{{!}}
+ oc new-project gvp
+{{!}}}
+*Set default project to GVP
+{{{!}} class="wikitable" data-macro-name="code" data-macro-id="c54c5c76-b3b9-4509-bcba-c42ebf950235" data-macro-parameters="language=bash{{!}}theme=Emacs" data-macro-schema-version="1" data-macro-body-type="PLAIN_TEXT"
+{{!}} class="wysiwyg-macro-body"{{!}}
+ oc project gvp
+{{!}}}
+*Bind SCC to genesys user using default service account
+{{{!}} class="wikitable" data-macro-name="code" data-macro-id="f527d463-7100-4bfa-bf89-f0db5364f738" data-macro-parameters="language=bash{{!}}theme=Emacs" data-macro-schema-version="1" data-macro-body-type="PLAIN_TEXT"
+{{!}} class="wysiwyg-macro-body"{{!}}
+ oc adm policy add-scc-to-user genesys-restricted -z default -n gvp
+{{!}}}
+*Create secret for docker-registry in order to pull image from JFrog
+{{{!}} class="wikitable" data-macro-name="code" data-macro-id="3b7536c0-f7f3-4fca-917c-1ef9d8859a73" data-macro-parameters="language=bash{{!}}theme=Emacs" data-macro-schema-version="1" data-macro-body-type="PLAIN_TEXT"
+{{!}} class="wysiwyg-macro-body"{{!}}
+ oc create secret docker-registry <credential-name> --docker-server=<docker repo> --docker-username=<username> --docker-password=<API key from jfrog> --docker-email=<emailid>
+{{!}}}
+*Link the secret to default service account with pull role
+{{{!}} class="wikitable" data-macro-name="code" data-macro-id="ac36681b-3176-4f57-9817-0b97ade1d172" data-macro-parameters="language=bash{{!}}theme=Emacs" data-macro-schema-version="1" data-macro-body-type="PLAIN_TEXT"
+{{!}} class="wysiwyg-macro-body"{{!}}
+ oc secrets link default <credential-name> --for=pull
+{{!}}}
-*confirm namespace creation
-<source lang="bash">
-kubectl describe namespace gvp
-</source>
 Installation order matters with GVP. To deploy without errors, the install order should be:
@@ Line 65: / Line 85: @@
 Download the GVP Helm charts from JFrog using your credentials:
-gvp-configserver :  https://<jfrog artifactory/helm location>/gvp-configserver-<version_number>.tgz
+gvp-configserver :  https://<jfrog artifactory/helm location>/gvp-configserver-100.0.1000017.tgz
-gvp-sd :  https://<jfrog artifactory/helm location>/gvp-sd-<version_number>.tgz
+gvp-sd :  https://<jfrog artifactory/helm location>/gvp-sd-100.0.1000019.tgz
-gvp-rs :  https://<jfrog artifactory/helm location>/gvp-rs-<version_number>.tgz
+gvp-rs :  https://<jfrog artifactory/helm location>/gvp-rs-100.0.1000077.tgz
-gvp-rm :  https://<jfrog artifactory/helm location>/gvp-rm-<version_number>.tgz
+gvp-rm :  https://<jfrog artifactory/helm location>/gvp-rm-100.0.1000082.tgz
-gvp-mcp :  https://<jfrog artifactory/helm location>/gvp-mcp-<version_number>.tgz
+gvp-mcp :  https://<jfrog artifactory/helm location>/gvp-mcp-100.0.1000040.tgz
-For version numbers, refer to {{Link-AnywhereElse|product=ReleaseNotes|version=Current|manual=GenesysEngage-cloud|topic=GVPHelm|display text=Helm charts and containers for Genesys Voice Platform}}.
 |Status=No
 }}{{Section
@@ Line 112: / Line 130: @@
 {{{!}} class="wikitable" data-macro-name="code" data-macro-id="587e10f0-ca8a-449f-8e91-5334c925a9ac" data-macro-parameters="language=bash{{!}}theme=Emacs" data-macro-schema-version="1" data-macro-body-type="PLAIN_TEXT"
 {{!}} class="wysiwyg-macro-body"{{!}}
-  kubectl apply -f postgres-secret.yaml
+  oc create -f postgres-secret.yaml
 {{!}}}<u>configserver-secret</u>
@@ Line 132: / Line 150: @@
 {{{!}} class="wikitable" data-macro-name="code" data-macro-id="33201d74-71dc-47ca-a0da-26714a75796f" data-macro-parameters="language=bash{{!}}theme=Emacs" data-macro-schema-version="1" data-macro-body-type="PLAIN_TEXT"
 {{!}} class="wysiwyg-macro-body"{{!}}
-  kubectl apply -f configserver-secret.yaml
+  oc create -f configserver-secret.yaml
 {{!}}}
 ===Install Helm chart===
 Download the required Helm chart release from the JFrog repository and install. Refer to {{Link-AnywhereElse|product=GVP|version=Current|manual=GVPPEGuide|topic=Deploy|anchor=HelmchaURLs|display text=Helm Chart URLs}}.
-<source lang="bash">
+{{{!}} class="wikitable" data-macro-name="code" data-macro-id="be4eab56-9055-4cbc-a7d4-8da3284f51dd" data-macro-parameters="language=bash{{!}}theme=Emacs{{!}}title=Install Helm Chart" data-macro-schema-version="1" data-macro-body-type="PLAIN_TEXT"
-helm install gvp-configserver ./<gvp-configserver-helm-artifact> -f gvp-configserver-values.yaml
+{{!}} class="wysiwyg-macro-body"{{!}}
-</source>
+ helm install gvp-configserver ./<gvp-configserver-helm-artifact> -f gvp-configserver-values.yaml
+{{!}}}At minimum following values will need to be updated in your values.yaml:
-Set the following values in your values.yaml for Configuration Server:
+*<critical-priority-class> - Set to a priority class that exists on cluster (or create it instead)
+*<docker-repo> - Set to your Docker Repo with Private Edition Artifacts
+*<credential-name> - Set to your pull secret name
-priorityClassName >> Set to a priority class that exists on cluster (or create it instead)
+{{{!}} class="wikitable" data-macro-name="code" data-macro-id="3588a7f4-5ad5-458e-be58-248972275c41" data-macro-parameters="language=yml{{!}}theme=Emacs{{!}}title=gvp-configserver-values.yaml" data-macro-schema-version="1" data-macro-body-type="PLAIN_TEXT"
+{{!}} class="wysiwyg-macro-body"{{!}}
-imagePullSecrets >> Set to your pull secret name
+ # Default values for gvp-configserver.
+ <nowiki>#</nowiki> This is a YAML-formatted file.
-'''gvp-configserver-values.yaml'''
+ <nowiki>#</nowiki> Declare variables to be passed into your templates.
-<source lang="bash">
-# Default values for gvp-configserver.
-# This is a YAML-formatted file.
-# Declare variables to be passed into your templates.
-## Global Parameters
+ <nowiki>##</nowiki> Global Parameters
-## Add labels to all the deployed resources
+ <nowiki>##</nowiki> Add labels to all the deployed resources
-##
+ <nowiki>##</nowiki>
-podLabels: {}
+ podLabels: {}
-## Add annotations to all the deployed resources
+ <nowiki>##</nowiki> Add annotations to all the deployed resources
-##
+ <nowiki>##</nowiki>
-podAnnotations: {}
+ podAnnotations: {}
-serviceAccount:
+ serviceAccount:
-  # Specifies whether a service account should be created
+ <nowiki> </nowiki> # Specifies whether a service account should be created
-  create: false
+ <nowiki> </nowiki> create: false
-  # Annotations to add to the service account
+ <nowiki> </nowiki> # Annotations to add to the service account
-  annotations: {}
+ <nowiki> </nowiki> annotations: {}
-  # The name of the service account to use.
+ <nowiki> </nowiki> # The name of the service account to use.
-  # If not set and create is true, a name is generated using the fullname template
+ <nowiki> </nowiki> # If not set and create is true, a name is generated using the fullname template
-  name:
+ <nowiki> </nowiki> name:
-## Deployment Configuration
+ <nowiki>##</nowiki> Deployment Configuration
-## replicaCount should be 1 for Config Server
+ <nowiki>##</nowiki> replicaCount should be 1 for Config Server
-replicaCount: 1
+ replicaCount: 1
-## Base Labels. Please do not change these.
+ <nowiki>##</nowiki> Base Labels. Please do not change these.
-serviceName: gvp-configserver
+ serviceName: gvp-configserver
-component: shared
+ component: shared
-# Namespace
+ <nowiki>#</nowiki> Namespace
-partOf: gvp
+ partOf: gvp
-## Container image repo settings.
+ <nowiki>##</nowiki> Container image repo settings.
-image:
+ image:
-  confserv:
+ <nowiki> </nowiki> confserv:
-    registry: pureengage-docker-staging.jfrog.io
+ <nowiki> </nowiki>   registry: <docker-repo>
-    repository: gvp/gvp_confserv
+ <nowiki> </nowiki>   repository: gvp/gvp_confserv
-    pullPolicy: IfNotPresent
+ <nowiki> </nowiki>   pullPolicy: IfNotPresent
-    tag: "{{ .Chart.AppVersion }}"
+ <nowiki> </nowiki>   tag: "<nowiki>{{ .Chart.AppVersion }}</nowiki>"
-  serviceHandler:
+ <nowiki> </nowiki> serviceHandler:
-    registry: pureengage-docker-staging.jfrog.io
+ <nowiki> </nowiki>   registry: <docker-repo>
-    repository: gvp/gvp_configserver_servicehandler
+ <nowiki> </nowiki>   repository: gvp/gvp_configserver_servicehandler
-    pullPolicy: IfNotPresent
+ <nowiki> </nowiki>   pullPolicy: IfNotPresent
-    tag: "{{ .Chart.AppVersion }}"
+ <nowiki> </nowiki>   tag: "<nowiki>{{ .Chart.AppVersion }}</nowiki>"
-  dbInit:
+ <nowiki> </nowiki> dbInit:
-    registry: pureengage-docker-staging.jfrog.io
+ <nowiki> </nowiki>   registry: <docker-repo>
-    repository: gvp/gvp_configserver_configserverinit
+ <nowiki> </nowiki>   repository: gvp/gvp_configserver_configserverinit
-    pullPolicy: IfNotPresent
+ <nowiki> </nowiki>   pullPolicy: IfNotPresent
-    tag: "{{ .Chart.AppVersion }}"
+ <nowiki> </nowiki>   tag: "<nowiki>{{ .Chart.AppVersion }}</nowiki>"
-## Config Server App Configuration
+ <nowiki>##</nowiki> Config Server App Configuration
-configserver:
+ configserver:
-  ## Settings for liveness and readiness probes
+ <nowiki> </nowiki> ## Settings for liveness and readiness probes
-  ## !!! THESE VALUES SHOULD NOT BE CHANGED UNLESS INSTRUCTED BY GENESYS !!!
+ <nowiki> </nowiki> ## !!! THESE VALUES SHOULD NOT BE CHANGED UNLESS INSTRUCTED BY GENESYS !!!
-  livenessValues:
+ <nowiki> </nowiki> livenessValues:
-    path: /cs/liveness
+ <nowiki> </nowiki>   path: /cs/liveness
-    initialDelaySeconds: 30
+ <nowiki> </nowiki>   initialDelaySeconds: 30
-    periodSeconds: 60
+ <nowiki> </nowiki>   periodSeconds: 60
-    timeoutSeconds: 20
+ <nowiki> </nowiki>   timeoutSeconds: 20
-    failureThreshold: 3
+ <nowiki> </nowiki>   failureThreshold: 3
-    healthCheckAPIPort: 8300
+ <nowiki> </nowiki>   healthCheckAPIPort: 8300
+ <nowiki> </nowiki>
-  readinessValues:
+ <nowiki> </nowiki> readinessValues:
-    path: /cs/readiness
+ <nowiki> </nowiki>   path: /cs/readiness
-    initialDelaySeconds: 30
+ <nowiki> </nowiki>   initialDelaySeconds: 30
-    periodSeconds: 30
+ <nowiki> </nowiki>   periodSeconds: 30
-    timeoutSeconds: 20
+ <nowiki> </nowiki>   timeoutSeconds: 20
-    failureThreshold: 3
+ <nowiki> </nowiki>   failureThreshold: 3
-    healthCheckAPIPort: 8300
+ <nowiki> </nowiki>   healthCheckAPIPort: 8300
-  alerts:
+ <nowiki> </nowiki> alerts:
-    cpuUtilizationAlertLimit: 70
+ <nowiki> </nowiki>   cpuUtilizationAlertLimit: 70
-    memUtilizationAlertLimit: 90
+ <nowiki> </nowiki>   memUtilizationAlertLimit: 90
-    workingMemAlertLimit: 7
+ <nowiki> </nowiki>   workingMemAlertLimit: 7
-    maxRestarts: 2
+ <nowiki> </nowiki>   maxRestarts: 2
-## PVCs defined
+ <nowiki>##</nowiki> PVCs defined
-#  none
+ <nowiki>#</nowiki>  none
-## Define service(s) for application
+ <nowiki>##</nowiki> Define service(s) for application
-service:
+ service:
-  type: ClusterIP
+ <nowiki> </nowiki> type: ClusterIP
-  host: gvp-configserver-0
+ <nowiki> </nowiki> host: gvp-configserver-0
-  port: 8888
+ <nowiki> </nowiki> port: 8888
-  targetPort: 8888
+ <nowiki> </nowiki> targetPort: 8888
-## Service Handler configuration.
+ <nowiki>##</nowiki> Service Handler configuration.
-serviceHandler:
+ serviceHandler:
-  port: 8300
+ <nowiki> </nowiki> port: 8300
-## Secrets storage related settings - k8s secrets only
+ <nowiki>##</nowiki> Secrets storage related settings - k8s secrets only
-secrets:
+ secrets:
-  # Used for pulling images/containers from the respositories.
+ <nowiki> </nowiki> # Used for pulling images/containers from the repositories.
-  imagePull:
+ <nowiki> </nowiki> imagePull:
-    - name: pureengage-docker-dev
+ <nowiki> </nowiki>   - name: <credential-name>
-    - name: pureengage-docker-staging
+ <nowiki> </nowiki>
+ <nowiki> </nowiki> # Config Server secrets. If k8s is false, csi will be used, else k8s will be used.
-  # Config Server secrets. If k8s is false, csi will be used, else k8s will be used.
+ <nowiki> </nowiki> # Currently, only k8s is supported!
-  # Currently, only k8s is supported!
+ <nowiki> </nowiki> configServer:
-  configServer:
+ <nowiki> </nowiki>   secretName: configserver-secret
-    secretName: configserver-secret
+ <nowiki> </nowiki>   secretUserKey: username
-    secretUserKey: username
+ <nowiki> </nowiki>   secretPwdKey: password
-    secretPwdKey: password
+ <nowiki> </nowiki>   #csiSecretProviderClass: keyvault-gvp-gvp-configserver-secret
-    #csiSecretProviderClass: keyvault-gvp-gvp-configserver-secret
-  # Config Server Postgres DB secrets and settings.
+ <nowiki> </nowiki> # Config Server Postgres DB secrets and settings.
-  postgres:
+ <nowiki> </nowiki> postgres:
-    dbName: gvp
+ <nowiki> </nowiki>   dbName: gvp
-    dbPort: 5432
+ <nowiki> </nowiki>   dbPort: 5432
-    secretName: postgres-secret
+ <nowiki> </nowiki>   secretName: postgres-secret
-    secretAdminUserKey: db-username
+ <nowiki> </nowiki>   secretAdminUserKey: db-username
-    secretAdminPwdKey: db-password
+ <nowiki> </nowiki>   secretAdminPwdKey: db-password
-    secretHostnameKey: db-hostname
+ <nowiki> </nowiki>   secretHostnameKey: db-hostname
-    secretDbNameKey: db-name
+ <nowiki> </nowiki>   secretDbNameKey: db-name
-    #secretServerNameKey: server-name
+ <nowiki> </nowiki>   #secretServerNameKey: server-name
-## Ingress configuration
+ <nowiki>##</nowiki> Ingress configuration
-ingress:
+ ingress:
-  enabled: false
+ <nowiki> </nowiki> enabled: false
-  annotations: {}
+ <nowiki> </nowiki> annotations: {}
-    # kubernetes.io/ingress.class: nginx
+ <nowiki> </nowiki>   # kubernetes.io/ingress.class: nginx
-    # kubernetes.io/tls-acme: "true"
+ <nowiki> </nowiki>   # kubernetes.io/tls-acme: "true"
-  hosts:
+ <nowiki> </nowiki> hosts:
-    - host: chart-example.local
+ <nowiki> </nowiki>   - host: chart-example.local
-      paths: []
+ <nowiki> </nowiki>     paths: []
-  tls: []
+ <nowiki> </nowiki> tls: []
-  #  - secretName: chart-example-tls
+ <nowiki> </nowiki> #  - secretName: chart-example-tls
-  #    hosts:
+ <nowiki> </nowiki> #    hosts:
-  #      - chart-example.local
+ <nowiki> </nowiki> #      - chart-example.local
-## App resource requests and limits
+ <nowiki>##</nowiki> App resource requests and limits
-## ref: http://kubernetes.io/docs/user-guide/compute-resources/
+ <nowiki>##</nowiki> ref: <nowiki>http://kubernetes.io/docs/user-guide/compute-resources/</nowiki>
-##
+ <nowiki>##</nowiki>
-resources:
+ resources:
-  requests:
+ <nowiki> </nowiki> requests:
-    memory: "512Mi"
+ <nowiki> </nowiki>   memory: "512Mi"
-    cpu: "500m"
+ <nowiki> </nowiki>   cpu: "500m"
-  limits:
+ <nowiki> </nowiki> limits:
-    memory: "1Gi"
+ <nowiki> </nowiki>   memory: "1Gi"
-    cpu: "1"
+ <nowiki> </nowiki>   cpu: "1"
-## App containers' Security Context
+ <nowiki>##</nowiki> App containers' Security Context
-## ref: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/#set-the-security-context-for-a-container
+ <nowiki>##</nowiki> ref: <nowiki>https://kubernetes.io/docs/tasks/configure-pod-container/security-context/#set-the-security-context-for-a-container</nowiki>
-##
+ <nowiki>##</nowiki>
-## Containers should run as genesys user and cannot use elevated permissions
+ <nowiki>##</nowiki> Containers should run as genesys user and cannot use elevated permissions
-##
+ <nowiki>##</nowiki>
-securityContext:
+ securityContext:
-  runAsUser: 500
+ <nowiki> </nowiki> runAsUser: 500
-  runAsGroup: 500
+ <nowiki> </nowiki> runAsGroup: 500
-  # capabilities:
+ <nowiki> </nowiki> # capabilities:
-  #   drop:
+ <nowiki> </nowiki> #   drop:
-  #   - ALL
+ <nowiki> </nowiki> #   - ALL
-  # readOnlyRootFilesystem: true
+ <nowiki> </nowiki> # readOnlyRootFilesystem: true
-  # runAsNonRoot: true
+ <nowiki> </nowiki> # runAsNonRoot: true
-  # runAsUser: 1000
+ <nowiki> </nowiki> # runAsUser: 1000
-podSecurityContext: {}
+ podSecurityContext: {}
-  # fsGroup: 2000
+ <nowiki> </nowiki> # fsGroup: 2000
-## Priority Class
+ <nowiki>##</nowiki> Priority Class
-## ref: https://kubernetes.io/docs/concepts/configuration/pod-priority-preemption/
+ <nowiki>##</nowiki> ref: <nowiki>https://kubernetes.io/docs/concepts/configuration/pod-priority-preemption/</nowiki>
-## NOTE: this is an optional parameter
+ <nowiki>##</nowiki> NOTE: this is an optional parameter
-##
+ <nowiki>##</nowiki>
-priorityClassName: system-cluster-critical
+ priorityClassName: <critical-priority-class>
-## Affinity for assignment.
+ <nowiki>##</nowiki> Affinity for assignment.
-## Ref: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/#affinity-and-anti-affinity
+ <nowiki>##</nowiki> Ref: <nowiki>https://kubernetes.io/docs/concepts/configuration/assign-pod-node/#affinity-and-anti-affinity</nowiki>
-##
+ <nowiki>##</nowiki>
-affinity: {}
+ affinity: {}
-## Node labels for assignment.
+ <nowiki>##</nowiki> Node labels for assignment.
-## ref: https://kubernetes.io/docs/user-guide/node-selection/
+ <nowiki>##</nowiki> ref: <nowiki>https://kubernetes.io/docs/user-guide/node-selection/</nowiki>
-##
+ <nowiki>##</nowiki>
-nodeSelector: {}
+ nodeSelector: {}
-## Tolerations for assignment.
+ <nowiki>##</nowiki> Tolerations for assignment.
-## ref: https://kubernetes.io/docs/concepts/configuration/taint-and-toleration/
+ <nowiki>##</nowiki> ref: <nowiki>https://kubernetes.io/docs/concepts/configuration/taint-and-toleration/</nowiki>
-##
+ <nowiki>##</nowiki>
-tolerations: []
+ tolerations: []
-## Service/Pod Monitoring Settings
+ <nowiki>##</nowiki> Service/Pod Monitoring Settings
-## Whether to create Prometheus alert rules or not.
+ <nowiki>##</nowiki> Whether to create Prometheus alert rules or not.
-prometheusRule:
+ prometheusRule:
-  create: true
+ <nowiki> </nowiki> create: true
-## Grafana dashboard Settings
+ <nowiki>##</nowiki> Grafana dashboard Settings
-## Whether to create Grafana dashboard or not.
+ <nowiki>##</nowiki> Whether to create Grafana dashboard or not.
-grafana:
+ grafana:
-  enabled: true
+ <nowiki> </nowiki> enabled: true
-## Enable network policies or not
+ <nowiki>##</nowiki> Enable network policies or not
-networkPolicies:
+ networkPolicies:
-  enabled: false
+ <nowiki> </nowiki> enabled: false
-## DNS configuration options
+ <nowiki>##</nowiki> DNS configuration options
-dnsConfig:
+ dnsConfig:
-  options:
+ <nowiki> </nowiki> options:
-    - name: ndots
+ <nowiki> </nowiki>   - name: ndots
-      value: "3"
+ <nowiki> </nowiki>     value: "3"
-</source>
+{{!}}}
 ===Verify the deployed resources===
 Verify the deployed resources from OpenShift console/CLI.
@@ Line 361: / Line 376: @@
 <u>shared-consul-consul-gvp-token</u>
-'''shared-consul-consul-gvp-token-secret.yaml'''
 {{{!}} class="wikitable" data-macro-name="code" data-macro-id="7f8edbd9-46af-4fd5-8f1d-0a94107150b2" data-macro-parameters="language=yml{{!}}theme=Emacs{{!}}title=shared-consul-consul-gvp-token-secret.yaml" data-macro-schema-version="1" data-macro-body-type="PLAIN_TEXT"
 {{!}} class="wysiwyg-macro-body"{{!}}
@@ Line 376: / Line 389: @@
 {{{!}} class="wikitable" data-macro-name="code" data-macro-id="d626b74c-4177-4c6a-80eb-5b15c2cb4b49" data-macro-parameters="language=bash{{!}}theme=Emacs" data-macro-schema-version="1" data-macro-body-type="PLAIN_TEXT"
 {{!}} class="wysiwyg-macro-body"{{!}}
-  kubectl create -f shared-consul-consul-gvp-token-secret.yaml
+  oc create -f shared-consul-consul-gvp-token-secret.yaml
 {{!}}}
 ===ConfigMap creation===
-Create the following ConfigMap which is required for the service deployment.
+Creation of a '''tenant-inventory''' ConfigMap is required for service discovery deployment.
+{{{!}} class="wikitable" data-macro-name="warning" data-macro-id="8245f116-1e0d-4b93-b0b7-64f56059d079" data-macro-parameters="title=Caveat" data-macro-schema-version="1" data-macro-body-type="RICH_TEXT"
-'''Caveat'''
+{{!}} class="wysiwyg-macro-body"{{!}}If the tenant has not been deployed yet then you will not have the information needed to populate the config map. An empty config-map can be created using:
+ oc create configmap tenant-inventory -n gvp
-If the tenant has not been deployed yet then you will not have the information needed to populate the config map. An empty config-map can be created using:
+{{!}}}
-<source lang="bash">
+====Provisioning a new tenant====
-kubectl create configmap tenant-inventory -n gvp
+Create a file (t100.json in the example) containing at minimum: '''name, id, gws-ccid,''' and '''default-application''' (should be set to '''IVRAppDefault''') from your tenant deployment.
-</source>
+{{{!}} class="wikitable" data-macro-name="code" data-macro-id="7e030700-72f2-4cba-8684-7277d30ade46" data-macro-parameters="language=yml{{!}}theme=Emacs{{!}}title=t100.json" data-macro-schema-version="1" data-macro-body-type="PLAIN_TEXT"
-Create Config based on {{Link-AnywhereElse|product=GVP|version=Current|manual=GVPPEGuide|topic=Provision|anchor=TP|display text=Tenant provisioning via Service Discovery Container}}.
+{{!}} class="wysiwyg-macro-body"{{!}}
+ {
-'''t100.json'''
+     "name": "t100",
-<source lang="bash">
+     "id": "80dd",
-{
+     "gws-ccid": "9350e2fc-a1dd-4c65-8d40-1f75a2e080dd",
-    "name": "t100",
+     "default-application": "IVRAppDefault"
-    "id": "80dd",
+ }
-    "gws-ccid": "9350e2fc-a1dd-4c65-8d40-1f75a2e080dd",
+{{!}}}Execute the following command to create ConfigMap on cluster:
-    "default-application": "IVRAppDefault"
+{{{!}} class="wikitable" data-macro-name="code" data-macro-id="e1e8cef4-3c8c-42b1-86f8-44810ba0779e" data-macro-parameters="language=bash{{!}}theme=Emacs{{!}}title=Add Config Map" data-macro-schema-version="1" data-macro-body-type="PLAIN_TEXT"
-}
+{{!}} class="wysiwyg-macro-body"{{!}}
-</source>
+ oc create configmap tenant-inventory --from-file t100.json -n gvp
+{{!}}}
-Execute the following command:
+====Updating a tenant====
+Delete the '''tenant-inventory''' ConfigMap using:
-'''Add Config Map'''
+{{{!}} class="wikitable" data-macro-name="code" data-macro-id="44060763-018b-4d8f-8298-be5b15468412" data-macro-parameters="language=bash{{!}}theme=Emacs{{!}}title=Delete Config Map" data-macro-schema-version="1" data-macro-body-type="PLAIN_TEXT"
-<source lang="bash">
+{{!}} class="wysiwyg-macro-body"{{!}}
-kubectl create configmap tenant-inventory --from-file t100.json -n gvp
+ oc delete configmap tenant-inventory -n gvp --ignore-not-found
-</source>
+{{!}}}Update the '''t100.json''' file and execute the following to create the new ConfigMap:
+{{{!}} class="wikitable" data-macro-name="code" data-macro-id="a21129e4-fae7-44e1-8af3-30c5a04dff34" data-macro-parameters="language=bash{{!}}theme=Emacs{{!}}title=Add Config Map" data-macro-schema-version="1" data-macro-body-type="PLAIN_TEXT"
+{{!}} class="wysiwyg-macro-body"{{!}}
+ oc create configmap tenant-inventory --from-file t100.json -n gvp
+{{!}}}GVP Service Discovery looks for changes to the config map every 60 seconds.
+====Provisioning process details====
+For additional details on the provisioning process, refer to {{Link-AnywhereElse|product=GVP|version=Current|manual=GVPPEGuide|topic=Provision}}.
 ===Install Helm chart===
 Download the required Helm chart release from the JFrog repository and install. Refer to {{Link-AnywhereElse|product=GVP|version=Current|manual=GVPPEGuide|topic=Deploy|anchor=HelmchaURLs|display text=Helm Chart URLs}}.
@@ Line 410: / Line 429: @@
 {{!}} class="wysiwyg-macro-body"{{!}}
   helm install gvp-sd ./<gvp-sd-helm-artifact> -f gvp-sd-values.yaml
-{{!}}}
+{{!}}}At minimum following values will need to be updated in your values.yaml:
+*<critical-priority-class> - Set to a priority class that exists on cluster (or create it instead)
+*<docker-repo> - Set to your Docker Repo with Private Edition Artifacts
+*<credential-name> - Set to your pull secret name
-'''gvp-sd-values.yaml'''
+{{{!}} class="wikitable" data-macro-name="code" data-macro-id="8d8c2e7b-040d-42e3-96c5-e8f07620a22e" data-macro-parameters="language=yml{{!}}theme=Emacs{{!}}title=gvp-sd-values.yaml" data-macro-schema-version="1" data-macro-body-type="PLAIN_TEXT"
-<source lang="bash">
+{{!}} class="wysiwyg-macro-body"{{!}}
-# Default values for gvp-sd.
+ # Default values for gvp-sd.
-# This is a YAML-formatted file.
+ <nowiki>#</nowiki> This is a YAML-formatted file.
-# Declare variables to be passed into your templates.
+ <nowiki>#</nowiki> Declare variables to be passed into your templates.
-## Global Parameters
+ <nowiki>##</nowiki> Global Parameters
-## Add labels to all the deployed resources
+ <nowiki>##</nowiki> Add labels to all the deployed resources
-##
+ <nowiki>##</nowiki>
-podLabels: {}
+ podLabels: {}
-## Add annotations to all the deployed resources
+ <nowiki>##</nowiki> Add annotations to all the deployed resources
-##
+ <nowiki>##</nowiki>
-podAnnotations: {}
+ podAnnotations: {}
-serviceAccount:
+ serviceAccount:
-  # Specifies whether a service account should be created
+ <nowiki> </nowiki> # Specifies whether a service account should be created
-  create: false
+ <nowiki> </nowiki> create: false
-  # Annotations to add to the service account
+ <nowiki> </nowiki> # Annotations to add to the service account
-  annotations: {}
+ <nowiki> </nowiki> annotations: {}
-  # The name of the service account to use.
+ <nowiki> </nowiki> # The name of the service account to use.
-  # If not set and create is true, a name is generated using the fullname template
+ <nowiki> </nowiki> # If not set and create is true, a name is generated using the fullname template
-  name:
+ <nowiki> </nowiki> name:
-## Deployment Configuration
+ <nowiki>##</nowiki> Deployment Configuration
-replicaCount: 1
+ replicaCount: 1
-smtp: allowed
+ smtp: allowed
-## Name overrides
+ <nowiki>##</nowiki> Name overrides
-nameOverride: ""
+ nameOverride: ""
-fullnameOverride: ""
+ fullnameOverride: ""
-## Base Labels. Please do not change these.
+ <nowiki>##</nowiki> Base Labels. Please do not change these.
-component: shared
+ component: shared
-partOf: gvp
+ partOf: gvp
-image:
+ image:
-  registry: pureengage-docker-staging.jfrog.io
+ <nowiki> </nowiki> registry: <docker-repo>
-  repository: gvp/gvp_sd
+ <nowiki> </nowiki> repository: gvp/gvp_sd
-  tag: "{{ .Chart.AppVersion }}"
+ <nowiki> </nowiki> tag: "<nowiki>{{ .Chart.AppVersion }}</nowiki>"
-  pullPolicy: IfNotPresent
+ <nowiki> </nowiki> pullPolicy: IfNotPresent
-## PVCs defined
+ <nowiki>##</nowiki> PVCs defined
-# none
+ <nowiki>#</nowiki> none
-## Define service for application.
+ <nowiki>##</nowiki> Define service for application.
-service:
+ service:
-  name: gvp-sd
+ <nowiki> </nowiki> name: gvp-sd
-  type: ClusterIP
+ <nowiki> </nowiki> type: ClusterIP
-  port: 8080
+ <nowiki> </nowiki> port: 8080
-## Application configuration parameters.
+ <nowiki>##</nowiki> Application configuration parameters.
-env:
+ env:
-  MCP_SVC_NAME: "gvp-mcp"
+ <nowiki> </nowiki> MCP_SVC_NAME: "gvp-mcp"
-  EXTERNAL_CONSUL_SERVER: ""
+ <nowiki> </nowiki> EXTERNAL_CONSUL_SERVER: ""
-  CONSUL_PORT: "8501"
+ <nowiki> </nowiki> CONSUL_PORT: "8501"
-  CONFIG_SERVER_HOST: "gvp-configserver"
+ <nowiki> </nowiki> CONFIG_SERVER_HOST: "gvp-configserver"
-  CONFIG_SERVER_PORT: "8888"
+ <nowiki> </nowiki> CONFIG_SERVER_PORT: "8888"
-  CONFIG_SERVER_APP: "default"
+ <nowiki> </nowiki> CONFIG_SERVER_APP: "default"
-  HTTP_SERVER_PORT: "8080"
+ <nowiki> </nowiki> HTTP_SERVER_PORT: "8080"
-  METRICS_EXPORTER_PORT: "9090"
+ <nowiki> </nowiki> METRICS_EXPORTER_PORT: "9090"
-  DEF_MCP_FOLDER: "MCP_Configuration_Unit\\MCP_LRG"
+ <nowiki> </nowiki> DEF_MCP_FOLDER: "MCP_Configuration_Unit\\MCP_LRG"
-  TEST_MCP_FOLDER: "MCP_Configuration_Unit_Test\\MCP_LRG"
+ <nowiki> </nowiki> TEST_MCP_FOLDER: "MCP_Configuration_Unit_Test\\MCP_LRG"
-  SYNC_INIT_DELAY: "10000"
+ <nowiki> </nowiki> SYNC_INIT_DELAY: "10000"
-  SYNC_PERIOD: "60000"
+ <nowiki> </nowiki> SYNC_PERIOD: "60000"
-  MCP_PURGE_PERIOD_MINS: "0"
+ <nowiki> </nowiki> MCP_PURGE_PERIOD_MINS: "0"
-  EMAIL_METERING_FACTOR: "10"
+ <nowiki> </nowiki> EMAIL_METERING_FACTOR: "10"
-  RECORDINGS_CONTAINER: "ccerp-recordings"
+ <nowiki> </nowiki> RECORDINGS_CONTAINER: "ccerp-recordings"
-  TENANT_KV_FOLDER: "tenants"
+ <nowiki> </nowiki> TENANT_KV_FOLDER: "tenants"
-  TENANT_CONFIGMAP_FOLDER: "/etc/config"
+ <nowiki> </nowiki> TENANT_CONFIGMAP_FOLDER: "/etc/config"
-  SMTP_SERVER: "smtp-relay.smtp.svc.cluster.local"
+ <nowiki> </nowiki> SMTP_SERVER: "smtp-relay.smtp.svc.cluster.local"
-## Secrets storage related settings
+ <nowiki>##</nowiki> Secrets storage related settings
-secrets:
+ secrets:
-  # Used for pulling images/containers from the respositories.
+ <nowiki> </nowiki> # Used for pulling images/containers from the repositories.
-  imagePull:
+ <nowiki> </nowiki> imagePull:
-    - name: pureengage-docker-dev
+ <nowiki> </nowiki>   - name: <credential-name>
-    - name: pureengage-docker-staging
+ <nowiki> </nowiki>
+ <nowiki> </nowiki> # If k8s is true, k8s will be used, else vault secret will be used.
-  # If k8s is true, k8s will be used, else vault secret will be used.
+ <nowiki> </nowiki> configServer:
-  configServer:
+ <nowiki> </nowiki>   k8s: true
-    k8s: true
+ <nowiki> </nowiki>   k8sSecretName: configserver-secret
-    k8sSecretName: configserver-secret
+ <nowiki> </nowiki>   k8sUserKey: username
-    k8sUserKey: username
+ <nowiki> </nowiki>   k8sPasswordKey: password
-    k8sPasswordKey: password
+ <nowiki> </nowiki>   vaultSecretName: "/configserver-secret"
-    vaultSecretName: "/configserver-secret"
+ <nowiki> </nowiki>   vaultUserKey: "configserver-username"
-    vaultUserKey: "configserver-username"
+ <nowiki> </nowiki>   vaultPasswordKey: "configserver-password"
-    vaultPasswordKey: "configserver-password"
-  # If k8s is true, k8s will be used, else vault secret will be used.
+ <nowiki> </nowiki> # If k8s is true, k8s will be used, else vault secret will be used.
-  consul:
+ <nowiki> </nowiki> consul:
-    k8s: true
+ <nowiki> </nowiki>   k8s: true
-    k8sTokenName: "shared-consul-consul-gvp-token"
+ <nowiki> </nowiki>   k8sTokenName: "shared-consul-consul-gvp-token"
-    k8sTokenKey: "consul-consul-gvp-token"
+ <nowiki> </nowiki>   k8sTokenKey: "consul-consul-gvp-token"
-    vaultSecretName: "/consul-secret"
+ <nowiki> </nowiki>   vaultSecretName: "/consul-secret"
-    vaultSecretKey: "consul-consul-gvp-token"
+ <nowiki> </nowiki>   vaultSecretKey: "consul-consul-gvp-token"
-  # GTTS key, password via k8s secret, if k8s is true.  If false, this data comes from tenant profile.
+ <nowiki> </nowiki> # GTTS key, password via k8s secret, if k8s is true.  If false, this data comes from tenant profile.
-  gtts:
+ <nowiki> </nowiki> gtts:
-    k8s: false
+ <nowiki> </nowiki>   k8s: false
-    k8sSecretName: gtts-secret
+ <nowiki> </nowiki>   k8sSecretName: gtts-secret
-    EncryptedKey: encrypted-key
+ <nowiki> </nowiki>   EncryptedKey: encrypted-key
-    PasswordKey: password
+ <nowiki> </nowiki>   PasswordKey: password
-ingress:
+ ingress:
-  enabled: false
+ <nowiki> </nowiki> enabled: false
-  annotations: {}
+ <nowiki> </nowiki> annotations: {}
-    # kubernetes.io/ingress.class: nginx
+ <nowiki> </nowiki>   # kubernetes.io/ingress.class: nginx
-    # kubernetes.io/tls-acme: "true"
+ <nowiki> </nowiki>   # kubernetes.io/tls-acme: "true"
-  hosts:
+ <nowiki> </nowiki> hosts:
-    - host: chart-example.local
+ <nowiki> </nowiki>   - host: chart-example.local
-      paths: []
+ <nowiki> </nowiki>     paths: []
-  tls: []
+ <nowiki> </nowiki> tls: []
-  #  - secretName: chart-example-tls
+ <nowiki> </nowiki> #  - secretName: chart-example-tls
-  #    hosts:
+ <nowiki> </nowiki> #    hosts:
-  #      - chart-example.local
+ <nowiki> </nowiki> #      - chart-example.local
-resources:
+ resources:
-  requests:
+ <nowiki> </nowiki> requests:
-    memory: "2Gi"
+ <nowiki> </nowiki>   memory: "2Gi"
-    cpu: "1000m"
+ <nowiki> </nowiki>   cpu: "1000m"
-  limits:
+ <nowiki> </nowiki> limits:
-    memory: "2Gi"
+ <nowiki> </nowiki>   memory: "2Gi"
-    cpu: "1000m"
+ <nowiki> </nowiki>   cpu: "1000m"
-## App containers' Security Context
+ <nowiki>##</nowiki> App containers' Security Context
-## ref: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/#set-the-security-context-for-a-container
+ <nowiki>##</nowiki> ref: <nowiki>https://kubernetes.io/docs/tasks/configure-pod-container/security-context/#set-the-security-context-for-a-container</nowiki>
-##
+ <nowiki>##</nowiki>
-## Containers should run as genesys user and cannot use elevated permissions
+ <nowiki>##</nowiki> Containers should run as genesys user and cannot use elevated permissions
-## Pod level security context
+ <nowiki>##</nowiki> Pod level security context
-podSecurityContext:
+ podSecurityContext:
-  fsGroup: 500
+ <nowiki> </nowiki> fsGroup: 500
-  runAsUser: 500
+ <nowiki> </nowiki> runAsUser: 500
-  runAsGroup: 500
+ <nowiki> </nowiki> runAsGroup: 500
-  runAsNonRoot: true
+ <nowiki> </nowiki> runAsNonRoot: true
-## Container security context
+ <nowiki>##</nowiki> Container security context
-securityContext:
+ securityContext:
-  runAsUser: 500
+ <nowiki> </nowiki> runAsUser: 500
-  runAsGroup: 500
+ <nowiki> </nowiki> runAsGroup: 500
-  runAsNonRoot: true
+ <nowiki> </nowiki> runAsNonRoot: true
-## Priority Class
+ <nowiki>##</nowiki> Priority Class
-## ref: https://kubernetes.io/docs/concepts/configuration/pod-priority-preemption/
+ <nowiki>##</nowiki> ref: <nowiki>https://kubernetes.io/docs/concepts/configuration/pod-priority-preemption/</nowiki>
-## NOTE: this is an optional parameter
+ <nowiki>##</nowiki> NOTE: this is an optional parameter
-##
+ <nowiki>##</nowiki>
-priorityClassName: system-cluster-critical
+ priorityClassName: <critical-priority-class>
-## Affinity for assignment.
+ <nowiki>##</nowiki> Affinity for assignment.
-## Ref: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/#affinity-and-anti-affinity
+ <nowiki>##</nowiki> Ref: <nowiki>https://kubernetes.io/docs/concepts/configuration/assign-pod-node/#affinity-and-anti-affinity</nowiki>
-##
+ <nowiki>##</nowiki>
-affinity: {}
+ affinity: {}
-## Node labels for assignment.
+ <nowiki>##</nowiki> Node labels for assignment.
-## ref: https://kubernetes.io/docs/user-guide/node-selection/
+ <nowiki>##</nowiki> ref: <nowiki>https://kubernetes.io/docs/user-guide/node-selection/</nowiki>
-##
+ <nowiki>##</nowiki>
-nodeSelector: {}
+ nodeSelector: {}
-## Tolerations for assignment.
+ <nowiki>##</nowiki> Tolerations for assignment.
-## ref: https://kubernetes.io/docs/concepts/configuration/taint-and-toleration/
+ <nowiki>##</nowiki> ref: <nowiki>https://kubernetes.io/docs/concepts/configuration/taint-and-toleration/</nowiki>
-##
+ <nowiki>##</nowiki>
-tolerations: []
+ tolerations: []
-## Service/Pod Monitoring Settings
+ <nowiki>##</nowiki> Service/Pod Monitoring Settings
-prometheus:
+ prometheus:
-  # Enable for Prometheus operator
+ <nowiki> </nowiki> # Enable for Prometheus operator
-  podMonitor:
+ <nowiki> </nowiki> podMonitor:
-    enabled: true
+ <nowiki> </nowiki>   enabled: true
-## Enable network policies or not
+ <nowiki>##</nowiki> Enable network policies or not
-networkPolicies:
+ networkPolicies:
-  enabled: false
+ <nowiki> </nowiki> enabled: false
-## DNS configuration options
+ <nowiki>##</nowiki> DNS configuration options
-dnsConfig:
+ dnsConfig:
-  options:
+ <nowiki> </nowiki> options:
-    - name: ndots
+ <nowiki> </nowiki>   - name: ndots
-      value: "3"
+ <nowiki> </nowiki>     value: "3"
-</source>
+{{!}}}
 ===Verify the deployed resources===
 Verify the deployed resources from OpenShift console/CLI.
@@ Line 612: / Line 633: @@
 db_username:
-'''rs-dbreader-password-secret.yaml'''
 {{{!}} class="wikitable" data-macro-name="code" data-macro-id="1630c47f-c10a-41bb-b1c5-b417d4ac23f0" data-macro-parameters="language=yml{{!}}theme=Emacs{{!}}title=rs-dbreader-password-secret.yaml" data-macro-schema-version="1" data-macro-body-type="PLAIN_TEXT"
 {{!}} class="wysiwyg-macro-body"{{!}}
@@ Line 630: / Line 649: @@
 {{{!}} class="wikitable" data-macro-name="code" data-macro-id="ccb59bb5-e759-47fa-b46e-113991e08ddd" data-macro-parameters="language=bash{{!}}theme=Emacs" data-macro-schema-version="1" data-macro-body-type="PLAIN_TEXT"
 {{!}} class="wysiwyg-macro-body"{{!}}
-  kubectl create -f rs-dbreader-password-secret.yaml
+  oc create -f rs-dbreader-password-secret.yaml
 {{!}}}<u>shared-gvp-rs-sqlserer-secret</u>
@@ Line 636: / Line 655: @@
 db-reader-password:
-'''shared-gvp-rs-sqlserer-secret.yaml'''
 {{{!}} class="wikitable" data-macro-name="code" data-macro-id="3a80c2ed-81d5-40d5-a8b4-8e099933f371" data-macro-parameters="language=yml{{!}}theme=Emacs{{!}}title=shared-gvp-rs-sqlserer-secret.yaml" data-macro-schema-version="1" data-macro-body-type="PLAIN_TEXT"
 {{!}} class="wysiwyg-macro-body"{{!}}
@@ Line 652: / Line 669: @@
 {{{!}} class="wikitable" data-macro-name="code" data-macro-id="8e9dd016-c876-4baa-a7b0-a58b08dbd4ac" data-macro-parameters="language=bash{{!}}theme=Emacs" data-macro-schema-version="1" data-macro-body-type="PLAIN_TEXT"
 {{!}} class="wysiwyg-macro-body"{{!}}
-  kubectl create -f shared-gvp-rs-sqlserer-secret.yaml
+  oc create -f shared-gvp-rs-sqlserer-secret.yaml
 {{!}}}
 ===Persistent Volumes creation===
+'''Note''': The steps for PV creation can be skipped if OCS is used to auto provision the persistent volumes.
 Create the following PVs which are required for the service deployment.
+{{{!}} class="wikitable" data-macro-name="warning" data-macro-id="8b99e091-ef72-401b-87ba-0a2fbb711686" data-macro-parameters="icon=false{{!}}title=Note Regarding Persistent Volumes" data-macro-schema-version="1" data-macro-body-type="RICH_TEXT"
-gvp-rs-0
+{{!}} class="wysiwyg-macro-body"{{!}}If your OpenShift deployment is capable of self-provisioning of Persistent Volumes, then this step can be skipped.  Volumes will be created by provisioner.
+{{!}}}<u>gvp-rs-0</u>
-'''gvp-rs-pv.yaml'''
+{{{!}} class="wikitable" data-macro-name="code" data-macro-id="913a9e32-bc41-4a67-b0ef-f4dde848bf06" data-macro-parameters="language=yml{{!}}theme=Emacs{{!}}title=gvp-rs-pv.yaml" data-macro-schema-version="1" data-macro-body-type="PLAIN_TEXT"
-<source lang="bash">
+{{!}} class="wysiwyg-macro-body"{{!}}
-apiVersion: v1
+ apiVersion: v1
-kind: PersistentVolume
+ kind: PersistentVolume
-metadata:
+ metadata:
-name: gvp-rs-0
+   name: gvp-rs-0
-namespace: gvp
+   namespace: gvp
-spec:
+ spec:
-capacity:
+   capacity:
-storage: 30Gi
+     storage: 30Gi
-accessModes:
+   accessModes:
-- ReadWriteOnce
+     - ReadWriteOnce
-persistentVolumeReclaimPolicy: Retain
+   persistentVolumeReclaimPolicy: Retain
-storageClassName: gvp
+   storageClassName: gvp
-nfs:
+   nfs:
-path:  /export/vol1/PAT/gvp/rs-01
+     path:  /export/vol1/PAT/gvp/rs-01
-server: 192.168.30.51
+     server: 192.168.30.51
-</source>
+{{!}}}Execute the following command:
+{{{!}} class="wikitable" data-macro-name="code" data-macro-id="fda31e0a-a32f-4991-ba43-35cfd17ef2e7" data-macro-parameters="language=bash{{!}}theme=Emacs" data-macro-schema-version="1" data-macro-body-type="PLAIN_TEXT"
-Execute the following command:
+{{!}} class="wysiwyg-macro-body"{{!}}
-<source lang="bash">
+ oc create -f gvp-rs-pv.yaml
-kubectl create -f gvp-rs-pv.yaml
+{{!}}}
-</source>
 ===Install Helm chart===
 Download the required Helm chart release from the JFrog repository and install. Refer to {{Link-AnywhereElse|product=GVP|version=Current|manual=GVPPEGuide|topic=Deploy|anchor=HelmchaURLs|display text=Helm Chart URLs}}.
@@ Line 688: / Line 705: @@
 {{!}} class="wysiwyg-macro-body"{{!}}
   helm install gvp-rs ./<gvp-rs-helm-artifact> -f gvp-rs-values.yaml
-{{!}}}
+{{!}}}At minimum following values will need to be updated in your values.yaml:
+*<docker-repo> - Set to your Docker Repo with Private Edition Artifacts
+*<credential-name> - Set to your pull secret name
-The following values should be set in your values.yaml:
+{{{!}} class="wikitable" data-macro-name="code" data-macro-id="53ece46e-756d-4559-8c47-1480f902ecbe" data-macro-parameters="language=yml{{!}}theme=Emacs{{!}}title=gvp-rs-values.yaml" data-macro-schema-version="1" data-macro-body-type="PLAIN_TEXT"
+{{!}} class="wysiwyg-macro-body"{{!}}
-*priorityClassName >> Set to a priority class that exists on cluster (or create it instead)
+ ## Global Parameters
-*imagePullSecrets >> Set to your pull secret name
+ ## Add labels to all the deployed resources
-*keyVaultSecret: false >> make sure this is false to force use of k8s secrets
+ ##
-*storageClass: genesys-gvp >> set to your storage class
+ labels:
+   enabled: true
-'''gvp-rs-values.yaml'''
+   serviceGroup: "gvp"
-<source lang="bash">
+   componentType: "shared"
-## Global Parameters
-## Add labels to all the deployed resources
-##
-labels:
-  enabled: true
-  serviceGroup: "gvp"
-  componentType: "shared"
-serviceAccount:
+ serviceAccount:
-  # Specifies whether a service account should be created
+   # Specifies whether a service account should be created
-  create: false
+   create: false
-  # Annotations to add to the service account
+   # Annotations to add to the service account
-  annotations: {}
+   annotations: {}
-  # The name of the service account to use.
+   # The name of the service account to use.
-  # If not set and create is true, a name is generated using the fullname template
+   # If not set and create is true, a name is generated using the fullname template
-  name:
+   name:
-## Primary App Configuration
+ ## Primary App Configuration
-##
+ ##
-# primaryApp:
+ # primaryApp:
-# type: ReplicaSet
+ # type: ReplicaSet
-# Should include the defaults for replicas
+ # Should include the defaults for replicas
-deployment:
+ deployment:
-  replicaCount: 1
+   replicaCount: 1
-  strategy: Recreate
+   strategy: Recreate
-  namespace: gvp
+   namespace: gvp
-nameOverride: ""
+ nameOverride: ""
-fullnameOverride: ""
+ fullnameOverride: ""
-image:
+ image:
-  registry: pureengage-docker-staging.jfrog.io
+   registry: <docker-repo>
-  gvprsrepository: gvp/gvp_rs
+   gvprsrepository: gvp/gvp_rs
-  snmprepository: gvp/gvp_snmp
+   snmprepository: gvp/gvp_snmp
-  rsinitrepository: gvp/gvp_rs_init
+   rsinitrepository: gvp/gvp_rs_init
-  rstag:
+   rstag:
-  rsinittag:
+   rsinittag:
-  snmptag: v9.0.040.07
+   snmptag: v9.0.040.07
-  pullPolicy: Always
+   pullPolicy: Always
-  imagePullSecrets:
+   imagePullSecrets:
-    - name: "pureengage-docker-staging"
+     - name: "<credential-name>"
-## liveness and readiness probes
+ ## liveness and readiness probes
-## !!! THESE OPTIONS SHOULD NOT BE CHANGED UNLESS INSTRUCTED BY GENESYS !!!
+ ## !!! THESE OPTIONS SHOULD NOT BE CHANGED UNLESS INSTRUCTED BY GENESYS !!!
-livenessValues:
+ livenessValues:
-  path: /ems-rs/components
+   path: /ems-rs/components
-  initialDelaySeconds: 30
+   initialDelaySeconds: 30
-  periodSeconds: 120
+   periodSeconds: 120
-  timeoutSeconds: 3
+   timeoutSeconds: 3
-  failureThreshold: 3
+   failureThreshold: 3
-readinessValues:
+ readinessValues:
-  path: /ems-rs/components
+   path: /ems-rs/components
-  initialDelaySeconds: 10
+   initialDelaySeconds: 10
-  periodSeconds: 60
+   periodSeconds: 60
-  timeoutSeconds: 3
+   timeoutSeconds: 3
-  failureThreshold: 3
+   failureThreshold: 3
-## PVCs defined
+ ## PVCs defined
-volumes:
+ volumes:
-  pvc:
+   pvc:
-    storageClass: managed-premium
+     storageClass: managed-premium
-    claimSize: 20Gi
+     claimSize: 20Gi
-    activemqAndLocalConfigPath: "/billing/gvp-rs"
+     activemqAndLocalConfigPath: "/billing/gvp-rs"
-## Define service(s) for application.  Fields many need to be modified based on `type`
+ ## Define service(s) for application.  Fields many need to be modified based on `type`
-service:
+ service:
-  type: ClusterIP
+   type: ClusterIP
-  restapiport: 8080
+   restapiport: 8080
-  activemqport: 61616
+   activemqport: 61616
-  envinjectport: 443
+   envinjectport: 443
-  dnsport: 53
+   dnsport: 53
-  configserverport: 8888
+   configserverport: 8888
-  snmpport: 1705
+   snmpport: 1705
-## ConfigMaps with Configuration
+ ## ConfigMaps with Configuration
-## Use Config Map for creating environment variables
+ ## Use Config Map for creating environment variables
-context:
+ context:
-  env:
+   env:
-    CFGAPP: default
+     CFGAPP: default
-    GVP_RS_SERVICE_HOSTNAME: gvp-rs.gvp.svc.cluster.local
+     GVP_RS_SERVICE_HOSTNAME: gvp-rs.gvp.svc.cluster.local
-    #CFGPASSWORD: password
+     #CFGPASSWORD: password
-    #CFGUSER: default
+     #CFGUSER: default
-    CFG_HOST: gvp-configserver.gvp.svc.cluster.local
+     CFG_HOST: gvp-configserver.gvp.svc.cluster.local
-    CFG_PORT: '8888'
+     CFG_PORT: '8888'
-    CMDLINE: ./rs_startup.sh
+     CMDLINE: ./rs_startup.sh
-    DBNAME: gvp_rs
+     DBNAME: gvp_rs
-    #DBPASS: 'jbIKfoS6LpfgaU$E'
+     #DBPASS: 'jbIKfoS6LpfgaU$E'
-    DBUSER: openshiftadmin
+     DBUSER: openshiftadmin
-    rsDbSharedUsername: openshiftadmin
+     rsDbSharedUsername: openshiftadmin
-    DBPORT: 1433
+     DBPORT: 1433
-    ENVTYPE: staging
+     ENVTYPE: ""
-    GenesysIURegion: westus2
+     GenesysIURegion: ""
-    localconfigcachepath: /billing/gvp-rs/data/cache
+     localconfigcachepath: /billing/gvp-rs/data/cache
-    HOSTFOLDER: Hosts
+     HOSTFOLDER: Hosts
-    HOSTOS: CFGRedHatLinux
+     HOSTOS: CFGRedHatLinux
-    LCAPORT: '4999'
+     LCAPORT: '4999'
-    MSSQLHOST: mssqlserveropenshift.database.windows.net
+     MSSQLHOST: mssqlserveropenshift.database.windows.net
-    RSAPP: azure_rs
+     RSAPP: azure_rs
-    RSJVM_INITIALHEAPSIZE: 500m
+     RSJVM_INITIALHEAPSIZE: 500m
-    RSJVM_MAXHEAPSIZE: 1536m
+     RSJVM_MAXHEAPSIZE: 1536m
-    RSFOLDER: Applications
+     RSFOLDER: Applications
-    RS_VERSION: 9.0.032.22
+     RS_VERSION: 9.0.032.22
-    STDOUT: 'true'
+     STDOUT: 'true'
-    WRKDIR: /usr/local/genesys/rs/
+     WRKDIR: /usr/local/genesys/rs/
-    SNMPAPP: azure_rs_snmp
+     SNMPAPP: azure_rs_snmp
-    SNMP_WORKDIR: /usr/sbin
+     SNMP_WORKDIR: /usr/sbin
-    SNMP_CMDLINE: snmpd
+     SNMP_CMDLINE: snmpd
-    SNMPFOLDER: Applications
+     SNMPFOLDER: Applications
-  RSCONFIG:
+   RSCONFIG:
-    messaging:
+     messaging:
-      activemq.memoryUsageLimit: "256 mb"
+       activemq.memoryUsageLimit: "256 mb"
-      activemq.dataDirectory: "/billing/gvp-rs/data/activemq"
+       activemq.dataDirectory: "/billing/gvp-rs/data/activemq"
-    log:
+     log:
-      verbose: "trace"
+       verbose: "trace"
-      trace: "stdout"
+       trace: "stdout"
-    dbmp:
+     dbmp:
-      rs.db.retention.operations.daily.default: "40"
+       rs.db.retention.operations.daily.default: "40"
-      rs.db.retention.operations.monthly.default: "40"
+       rs.db.retention.operations.monthly.default: "40"
-      rs.db.retention.operations.weekly.default: "40"
+       rs.db.retention.operations.weekly.default: "40"
-      rs.db.retention.var.daily.default: "40"
+       rs.db.retention.var.daily.default: "40"
-      rs.db.retention.var.monthly.default: "40"
+       rs.db.retention.var.monthly.default: "40"
-      rs.db.retention.var.weekly.default: "40"
+       rs.db.retention.var.weekly.default: "40"
-      rs.db.retention.cdr.default: "40"
+       rs.db.retention.cdr.default: "40"
-# Default secrets storage to k8s secrets with csi able to be optional
+ # Default secrets storage to k8s secrets with csi able to be optional
-secret:
+ secret:
-  # keyVaultSecret will be a flag to between secret types(k8's or CSI). If keyVaultSecret was set to false k8's secret will be used
+   # keyVaultSecret will be a flag to between secret types(k8's or CSI). If keyVaultSecret was set to false k8's secret will be used
-  keyVaultSecret: false
+   keyVaultSecret: false
-  #RS SQL server secret
+   #RS SQL server secret
-  rsSecretName: shared-gvp-rs-sqlserver-secret
+   rsSecretName: shared-gvp-rs-sqlserver-secret
-  # secretProviderClassName will not be used used when keyVaultSecret set to false
+   # secretProviderClassName will not be used used when keyVaultSecret set to false
-  secretProviderClassName: keyvault-gvp-rs-sqlserver-secret-00
+   secretProviderClassName: keyvault-gvp-rs-sqlserver-secret-00
-  dbreadersecretFileName: db-reader-password
+   dbreadersecretFileName: db-reader-password
-  dbadminsecretFileName: db-admin-password
+   dbadminsecretFileName: db-admin-password
-  #Configserver secret
+   #Configserver secret
-  #If keyVaultSecret set to false the below parameters will not be used.
+   #If keyVaultSecret set to false the below parameters will not be used.
-  configserverProviderClassName: gvp-configserver-secret
+   configserverProviderClassName: gvp-configserver-secret
-  cfgSecretFileNameForCfgUsername: configserver-username
+   cfgSecretFileNameForCfgUsername: configserver-username
-  cfgSecretFileNameForCfgPassword: configserver-password
+   cfgSecretFileNameForCfgPassword: configserver-password
-  #If keyVaultSecret set to true the below parameters will not be used.
+   #If keyVaultSecret set to true the below parameters will not be used.
-  cfgServerSecretName: configserver-secret
+   cfgServerSecretName: configserver-secret
-  cfgSecretKeyNameForCfgUsername: username
+   cfgSecretKeyNameForCfgUsername: username
-  cfgSecretKeyNameForCfgPassword: password
+   cfgSecretKeyNameForCfgPassword: password
-## Ingress configuration
+ ## Ingress configuration
-ingress:
+ ingress:
-  enabled: false
+   enabled: false
-  annotations: {}
+   annotations: {}
-    # kubernetes.io/ingress.class: nginx
+     # kubernetes.io/ingress.class: nginx
-  # kubernetes.io/tls-acme: "true"
+   # kubernetes.io/tls-acme: "true"
-  hosts:
+   hosts:
-    - host: chart-example.local
+     - host: chart-example.local
-      paths: []
+       paths: []
-  tls: []
+   tls: []
-  #  - secretName: chart-example-tls
+   #  - secretName: chart-example-tls
-  #    hosts:
+   #    hosts:
-  #      - chart-example.local
+   #      - chart-example.local
-networkPolicies:
+ networkPolicies:
-  enabled: false
+   enabled: false
-## primaryAppresource requests and limits
+ ## primaryAppresource requests and limits
-## ref: http://kubernetes.io/docs/user-guide/compute-resources/
+ ## ref: <nowiki>http://kubernetes.io/docs/user-guide/compute-resources/</nowiki>
-##
+ ##
-resourceForRS:
+ resourceForRS:
-  # We usually recommend not to specify default resources and to leave this as a conscious
+   # We usually recommend not to specify default resources and to leave this as a conscious
-  # choice for the user. This also increases chances charts run on environments with little
+   # choice for the user. This also increases chances charts run on environments with little
-  # resources, such as Minikube. If you do want to specify resources, uncomment the following
+   # resources, such as Minikube. If you do want to specify resources, uncomment the following
-  # lines, adjust them as necessary, and remove the curly braces after 'resources:'.
+   # lines, adjust them as necessary, and remove the curly braces after 'resources:'.
-  requests:
+   requests:
-    memory: "500Mi"
+     memory: "500Mi"
-    cpu: "200m"
+     cpu: "200m"
-  limits:
+   limits:
-    memory: "1Gi"
+     memory: "1Gi"
-    cpu: "300m"
+     cpu: "300m"
-resoueceForSnmp:
+ resoueceForSnmp:
-  requests:
+   requests:
-    memory: "500Mi"
+     memory: "500Mi"
-    cpu: "100m"
+     cpu: "100m"
-  limits:
+   limits:
-    memory: "1Gi"
+     memory: "1Gi"
-    cpu: "150m"
+     cpu: "150m"
-## primaryApp containers' Security Context
+ ## primaryApp containers' Security Context
-## ref: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/#set-the-security-context-for-a-container
+ ## ref: <nowiki>https://kubernetes.io/docs/tasks/configure-pod-container/security-context/#set-the-security-context-for-a-container</nowiki>
-##
+ ##
-## Containers should run as genesys user and cannot use elevated permissions
+ ## Containers should run as genesys user and cannot use elevated permissions
-securityContext:
+ securityContext:
-  runAsNonRoot: true
+   runAsNonRoot: true
-  runAsUser: 500
+   runAsUser: 500
-  runAsGroup: 500
+   runAsGroup: 500
-podSecurityContext:
+ podSecurityContext:
-  fsGroup: 500
+   fsGroup: 500
-## Priority Class
+ ## Priority Class
-## ref: https://kubernetes.io/docs/concepts/configuration/pod-priority-preemption/
+ ## ref: <nowiki>https://kubernetes.io/docs/concepts/configuration/pod-priority-preemption/</nowiki>
-##
+ ##
-priorityClassName: ""
+ priorityClassName: ""
-## Affinity for assignment.
+ ## Affinity for assignment.
-## Ref: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/#affinity-and-anti-affinity
+ ## Ref: <nowiki>https://kubernetes.io/docs/concepts/configuration/assign-pod-node/#affinity-and-anti-affinity</nowiki>
-##
+ ##
-affinity: {}
+ affinity:
-## Node labels for assignment.
+ ## Node labels for assignment.
-## ref: https://kubernetes.io/docs/user-guide/node-selection/
+ ## ref: <nowiki>https://kubernetes.io/docs/user-guide/node-selection/</nowiki>
-##
+ ##
-nodeSelector: {}
+ nodeSelector:
-## Tolerations for assignment.
+ ## Tolerations for assignment.
-## ref: https://kubernetes.io/docs/concepts/configuration/taint-and-toleration/
+ ## ref: <nowiki>https://kubernetes.io/docs/concepts/configuration/taint-and-toleration/</nowiki>
-##
+ ##
-tolerations: []
+ tolerations: []
-## Extra labels
+ ## Extra labels
-## ref: https://kubernetes.io/docs/concepts/overview/working-with-objects/labels/
+ ## ref: <nowiki>https://kubernetes.io/docs/concepts/overview/working-with-objects/labels/</nowiki>
-##
+ ##
-#  labels: {}
+ #  labels: {}
-## Extra Annotations
+ ## Extra Annotations
-## ref: https://kubernetes.io/docs/concepts/overview/working-with-objects/annotations/
+ ## ref: <nowiki>https://kubernetes.io/docs/concepts/overview/working-with-objects/annotations/</nowiki>
-##
+ ##
-#  annotations: {}
+ #  annotations: {}
-## Service/Pod Monitoring Settings
+ ## Service/Pod Monitoring Settings
-monitoring:
+ prometheus:
-   podMonitorEnabled: true
+   enabled: true
-   prometheusRulesEnabled: true
+   metric:
-  grafanaEnabled: true
+    port: 9116
+ # Enable for Prometheus operator
+ podMonitor:
+   enabled: true
+   metric:
+     path: /snmp
+     module: [ if_mib ]
+     target: [ 127.0.0.1:1161 ]
+ monitoring:
+   prometheusRulesEnabled: true
+   grafanaEnabled: true
+ monitor:
+   monitorName: gvp-monitoring
-monitor:
+  ##DNS Settings
-  prometheusPort: 9116
+ dnsConfig:
-  monitorName: gvp-monitoring
+   options:
-  module: [if_mib]
+     - name: ndots
-  target: [127.0.0.1:1161]
+       value: "3"
+{{!}}}
-##DNS Settings
-dnsConfig:
-  options:
-    - name: ndots
-      value: "3"
-</source>
 ===Verify the deployed resources===
 Verify the deployed resources from OpenShift console/CLI.
-|Status=No
-}}{{Section
-|sectionHeading=4. GVP Resource Manager
-|anchor=GVPRM
-|alignment=Vertical
-|structuredtext='''Note''': RM and forward will not pass readiness checks until an MCP has registered properly.  This is because service is not available without MCPs.
-===Persistent Volumes creation===
-Create the following PVs which are required for the service deployment.
-'''Note''': If your OpenShift deployment is capable of self-provisioning of Persistent Volumes then this step can be skipped.  Volumes will be created by provisioner.
+====Deployment validation - Success====
-gvp-rm-01
+. Log into console and check if gvp-rs pod is ready and running "oc get pods -o wide".[[File:RS_Deploy_success_1.png|none|800px|RM_Deploy_success_1|link=https://all.docs.genesys.com/File:RS_Deploy_success_1.png]]2. Do a pod describe and check if both liveness and Readiness probes are passing "oc describe gvp-rs"
-'''gvp-rm-01-pv.yaml'''
+. Check the RS applications and Db details are properly configured in GVP Configuration Server.
-<source lang="bash">
-apiVersion: v1
-kind: PersistentVolume
-metadata:
-  name: gvp-rm-01
-spec:
-  capacity:
-    storage: 30Gi
-  accessModes:
-    - ReadWriteOnce
-  persistentVolumeReclaimPolicy: Retain
-  storageClassName: gvp
-  nfs:
-    path:  /export/vol1/PAT/gvp/rm-01
-    server: 192.168.30.51
-</source>
-Execute the following command:
+. Check secrets are created in kubernetes cluster.[[File:RS_Deploy_success_2.png|none|800px|RM_Deploy_success_2|link=https://all.docs.genesys.com/File:RS_Deploy_success_2.png]]5. Check Db creation and configuration is successful.
-<source lang="bash">
+====Deployment validation - Failure====
-kubectl create -f gvp-rm-01-pv.yaml
+To debug deployment failure, follow the below steps:
-</source>
-gvp-rm-02
+. Log into console and check if gvp-rs pod is ready and running "oc get pods -o wide".
-'''gvp-rm-02-pv.yaml'''
+. If the RS container is continuously restarting, you need to check the liveness and readiness probe status.
-<source lang="bash">
-apiVersion: v1
-kind: PersistentVolume
-metadata:
-  name: gvp-rm-02
-spec:
-  capacity:
-    storage: 30Gi
-  accessModes:
-    - ReadWriteOnce
-  persistentVolumeReclaimPolicy: Retain
-  storageClassName: gvp
-  nfs:
-    path:  /export/vol1/PAT/gvp/rm-02
-    server: 192.168.30.51
-</source>
-Execute the following command:
+. Do RS pod describe to check the liveness and readiness probe status "oc describe gvp-rs".
-<source lang="bash">
-kubectl create -f gvp-rm-02-pv.yaml
-</source>
-gvp-rm-logs-01
-'''gvp-rm-logs-01-pv.yaml'''
+. If probe failures are observed, check if PVC is attached properly and check RS logs if Config data is read properly.
-<source lang="bash">
-apiVersion: v1
-kind: PersistentVolume
-metadata:
-  name: gvp-rm-logs-01
-spec:
-  capacity:
-    storage: 10Gi
-  accessModes:
-    - ReadWriteOnce
-  persistentVolumeReclaimPolicy: Recycle
-  storageClassName: gvp
-  nfs:
-    path:  /export/vol1/PAT/gvp/rm-logs-01
-    server: 192.168.30.51
-</source>
-Execute the following command:
-<source lang="bash">
-kubectl create -f gvp-rm-logs-01-pv.yaml
-</source>
-gvp-rm-logs-02
-'''gvp-rm-logs-02-pv.yaml'''
+. If rs-init container is failing, check RS and configserver/DB connectivity.
-<source lang="bash">
+|Status=No
-apiVersion: v1
+}}{{Section
-kind: PersistentVolume
+|sectionHeading=4. GVP Resource Manager
-metadata:
+|anchor=GVPRM
-  name: gvp-rm-logs-02
+|alignment=Vertical
-spec:
+|structuredtext=<br />
-  capacity:
+{{{!}} class="wikitable" data-macro-name="warning" data-macro-id="73364891-e552-4c1e-93b4-beac108d3e78" data-macro-parameters="title=Note" data-macro-schema-version="1" data-macro-body-type="RICH_TEXT"
-    storage: 10Gi
+{{!}} class="wysiwyg-macro-body"{{!}}Resource Manager will not pass readiness checks until an MCP has registered properly.  This is because service is not available without MCPs.
-  accessModes:
+{{!}}}
-    - ReadWriteOnce
+===Persistent Volumes creation===
-  persistentVolumeReclaimPolicy: Recycle
+'''Note''': The steps for PV creation can be skipped if OCS is used to auto provision the persistent volumes.
-  storageClassName: gvp
-  nfs:
-    path:  /export/vol1/PAT/gvp/rm-logs-02
-    server: 192.168.30.51
-</source>
-Execute the following command:
+Create the following PVs which are required for the service deployment.
-<source lang="bash">
+{{{!}} class="wikitable" data-macro-name="warning" data-macro-id="6f74f414-0e53-4c9f-bb6c-babd5adf14b2" data-macro-parameters="icon=false{{!}}title=Note Regarding Persistent Volumes" data-macro-schema-version="1" data-macro-body-type="RICH_TEXT"
-kubectl create -f gvp-rm-logs-02-pv.yaml
+{{!}} class="wysiwyg-macro-body"{{!}}If your OpenShift deployment is capable of self-provisioning of Persistent Volumes, then this step can be skipped.  Volumes will be created by provisioner.
-</source>
+{{!}}}<u>gvp-rm-01</u>
+{{{!}} class="wikitable" data-macro-name="code" data-macro-id="e41390d2-1784-4d9a-8773-e78bab94395d" data-macro-parameters="language=yml{{!}}theme=Emacs{{!}}title=gvp-rm-01-pv.yaml" data-macro-schema-version="1" data-macro-body-type="PLAIN_TEXT"
+{{!}} class="wysiwyg-macro-body"{{!}}
+ apiVersion: v1
+ kind: PersistentVolume
+ metadata:
+   name: gvp-rm-01
+ spec:
+   capacity:
+     storage: 30Gi
+   accessModes:
+     - ReadWriteOnce
+   persistentVolumeReclaimPolicy: Retain
+   storageClassName: gvp
+   nfs:
+     path:  /export/vol1/PAT/gvp/rm-01
+     server: 192.168.30.51
+{{!}}}Execute the following command:
+{{{!}} class="wikitable" data-macro-name="code" data-macro-id="e5887dce-583f-40fa-a048-93e7d5181941" data-macro-parameters="language=bash{{!}}theme=Emacs" data-macro-schema-version="1" data-macro-body-type="PLAIN_TEXT"
+{{!}} class="wysiwyg-macro-body"{{!}}
+ oc create -f gvp-rm-01-pv.yaml
+{{!}}}<u>gvp-rm-02</u>
+{{{!}} class="wikitable" data-macro-name="code" data-macro-id="a578b363-4be7-4f31-adf2-250aa32e50a8" data-macro-parameters="language=yml{{!}}theme=Emacs{{!}}title=gvp-rm-02-pv.yaml" data-macro-schema-version="1" data-macro-body-type="PLAIN_TEXT"
+{{!}} class="wysiwyg-macro-body"{{!}}
+ apiVersion: v1
+ kind: PersistentVolume
+ metadata:
+   name: gvp-rm-02
+ spec:
+   capacity:
+     storage: 30Gi
+   accessModes:
+     - ReadWriteOnce
+   persistentVolumeReclaimPolicy: Retain
+   storageClassName: gvp
+   nfs:
+     path:  /export/vol1/PAT/gvp/rm-02
+     server: 192.168.30.51
+{{!}}}Execute the following command:
+{{{!}} class="wikitable" data-macro-name="code" data-macro-id="979e11e1-9e95-49b7-898b-6be134d81e38" data-macro-parameters="language=bash{{!}}theme=Emacs" data-macro-schema-version="1" data-macro-body-type="PLAIN_TEXT"
+{{!}} class="wysiwyg-macro-body"{{!}}
+ oc create -f gvp-rm-02-pv.yaml
+{{!}}}<u>gvp-rm-logs-01</u>
+{{{!}} class="wikitable" data-macro-name="code" data-macro-id="e65b20dd-32cd-4a01-b206-40349434e269" data-macro-parameters="language=yml{{!}}theme=Emacs{{!}}title=gvp-rm-logs-01-pv.yaml" data-macro-schema-version="1" data-macro-body-type="PLAIN_TEXT"
+{{!}} class="wysiwyg-macro-body"{{!}}
+ apiVersion: v1
+ kind: PersistentVolume
+ metadata:
+   name: gvp-rm-logs-01
+ spec:
+   capacity:
+     storage: 10Gi
+   accessModes:
+     - ReadWriteOnce
+   persistentVolumeReclaimPolicy: Recycle
+   storageClassName: gvp
+   nfs:
+     path:  /export/vol1/PAT/gvp/rm-logs-01
+     server: 192.168.30.51
+{{!}}}Execute the following command:
+{{{!}} class="wikitable" data-macro-name="code" data-macro-id="ca609291-3587-45f2-8aa9-3a234715ef48" data-macro-parameters="language=bash{{!}}theme=Emacs" data-macro-schema-version="1" data-macro-body-type="PLAIN_TEXT"
+{{!}} class="wysiwyg-macro-body"{{!}}
+ oc create -f gvp-rm-logs-01-pv.yaml
+{{!}}}<u>gvp-rm-logs-02</u>
+{{{!}} class="wikitable" data-macro-name="code" data-macro-id="51d6d4d5-4b16-4a54-a582-e8ad0eca64c4" data-macro-parameters="language=yml{{!}}theme=Emacs{{!}}title=gvp-rm-logs-02-pv.yaml" data-macro-schema-version="1" data-macro-body-type="PLAIN_TEXT"
+{{!}} class="wysiwyg-macro-body"{{!}}
+ apiVersion: v1
+ kind: PersistentVolume
+ metadata:
+   name: gvp-rm-logs-02
+ spec:
+   capacity:
+     storage: 10Gi
+   accessModes:
+     - ReadWriteOnce
+   persistentVolumeReclaimPolicy: Recycle
+   storageClassName: gvp
+   nfs:
+     path:  /export/vol1/PAT/gvp/rm-logs-02
+     server: 192.168.30.51
+{{!}}}Execute the following command:
+{{{!}} class="wikitable" data-macro-name="code" data-macro-id="0e81e8e1-e57c-446a-ade3-b0de9b2e2c66" data-macro-parameters="language=bash{{!}}theme=Emacs" data-macro-schema-version="1" data-macro-body-type="PLAIN_TEXT"
+{{!}} class="wysiwyg-macro-body"{{!}}
+ oc create -f gvp-rm-logs-02-pv.yaml
+{{!}}}
 ===Install Helm chart===
 Download the required Helm chart release from the JFrog repository and install. Refer to {{Link-AnywhereElse|product=GVP|version=Current|manual=GVPPEGuide|topic=Deploy|anchor=HelmchaURLs|display text=Helm Chart URLs}}.
-<source lang="bash">
+{{{!}} class="wikitable" data-macro-name="code" data-macro-id="18d7d1d8-bad3-4ebc-851c-10bf3d232edb" data-macro-parameters="language=bash{{!}}theme=Emacs{{!}}title=Install Helm Chart" data-macro-schema-version="1" data-macro-body-type="PLAIN_TEXT"
-helm install gvp-rm ./<gvp-rm-helm-artifact> -f gvp-rm-values.yaml
+{{!}} class="wysiwyg-macro-body"{{!}}
-</source>
+ helm install gvp-rm ./<gvp-rm-helm-artifact> -f gvp-rm-values.yaml
+{{!}}}At minimum following values will need to be updated in your values.yaml:
-You must set the following values in your values.yaml for Configuration Server:
+*<docker-repo> - Set to your Docker Repo with Private Edition Artifacts
+*<credential-name> - Set to your pull secret name
-*priorityClassName >> Set to a priority class that exists on cluster (or create it instead)
+{{{!}} class="wikitable" data-macro-name="code" data-macro-id="f7c33da8-5ba3-41fb-8f92-cc804bfb7809" data-macro-parameters="language=yml{{!}}theme=Emacs{{!}}title=gvp-rm-values.yaml" data-macro-schema-version="1" data-macro-body-type="PLAIN_TEXT"
-*imagePullSecrets >> Set to your pull secret name
+{{!}} class="wysiwyg-macro-body"{{!}}
-*Set the cfgServerSecretName if you changed it from default
+ ## Global Parameters
+ ## Add labels to all the deployed resources
-'''gvp-rm-values.yaml'''
+ ##
-<source lang="bash">
+ labels:
-## Global Parameters
+   enabled: true
-## Add labels to all the deployed resources
+   serviceGroup: "gvp"
-##
+   componentType: "shared"
-labels:
-  enabled: true
-  serviceGroup: "gvp"
-  componentType: "shared"
-## Primary App Configuration
+ ## Primary App Configuration
-##
+ ##
-# primaryApp:
+ # primaryApp:
-# type: ReplicaSet
+ # type: ReplicaSet
-# Should include the defaults for replicas
+ # Should include the defaults for replicas
-deployment:
+ deployment:
-  replicaCount: 2
+   replicaCount: 2
-  deploymentEnv: "UPDATE_ENV"
+   deploymentEnv: "UPDATE_ENV"
-  namespace: gvp
+   namespace: gvp
-  clusterDomain: "svc.cluster.local"
+   clusterDomain: "svc.cluster.local"
-nameOverride: ""
+ nameOverride: ""
-fullnameOverride: ""
+ fullnameOverride: ""
-image:
+ image:
-  registry: pureengage-docker-staging.jfrog.io
+   registry: <docker-repo>
-  gvprmrepository: gvp/gvp_rm
+   gvprmrepository: gvp/gvp_rm
-  cfghandlerrepository: gvp/gvp_rm_cfghandler
+   cfghandlerrepository: gvp/gvp_rm_cfghandler
-  snmprepository: gvp/gvp_snmp
+   snmprepository: gvp/gvp_snmp
-  gvprmtestrepository: gvp/gvp_rm_test
+   gvprmtestrepository: gvp/gvp_rm_test
-  cfghandlertag:
+   cfghandlertag:
-  rmtesttag:
+   rmtesttag:
-  rmtag:
+   rmtag:
-  snmptag: v9.0.040.07
+   snmptag: v9.0.040.07
-  pullPolicy: Always
+   pullPolicy: Always
-  imagePullSecrets:
+   imagePullSecrets:
-    - name: "pureengage-docker-staging"
+     - name: "<credential-name>"
-dnsConfig:
+ dnsConfig:
-  options:
+   options:
-    - name: ndots
+     - name: ndots
-      value: "3"
+       value: "3"
-# Pod termination grace period 15 mins.
+ # Pod termination grace period 15 mins.
-gracePeriodSeconds: 900
+ gracePeriodSeconds: 900
-## liveness and readiness probes
+ ## liveness and readiness probes
-## !!! THESE OPTIONS SHOULD NOT BE CHANGED UNLESS INSTRUCTED BY GENESYS !!!
+ ## !!! THESE OPTIONS SHOULD NOT BE CHANGED UNLESS INSTRUCTED BY GENESYS !!!
-livenessValues:
+ livenessValues:
-  path: /rm/liveness
+   path: /rm/liveness
-  initialDelaySeconds: 60
+   initialDelaySeconds: 60
-  periodSeconds: 90
+   periodSeconds: 90
-  timeoutSeconds: 20
+   timeoutSeconds: 20
-  failureThreshold: 3
+   failureThreshold: 3
-readinessValues:
+ readinessValues:
-  path: /rm/readiness
+   path: /rm/readiness
-  initialDelaySeconds: 10
+   initialDelaySeconds: 10
-  periodSeconds: 60
+   periodSeconds: 60
-  timeoutSeconds: 20
+   timeoutSeconds: 20
-  failureThreshold: 3
+   failureThreshold: 3
-## PVCs defined
+ ## PVCs defined
-volumes:
+ volumes:
-  billingpvc:
+   billingpvc:
-    storageClass: managed-premium
+     storageClass: managed-premium
-    claimSize: 20Gi
+     claimSize: 20Gi
-    mountPath: "/rm"
+     mountPath: "/rm"
-  logpvc:
-    EnablePVForLogStorage: true
+ ## Define RM log storage volume type
-    storageClass: managed-premium
+ rmLogStorage:
-    claimSize: 5Gi
+   volumeType:
-    accessMode: ReadWriteOnce
+     persistentVolume:
-    mountPath: "/mnt/log"
+       enabled: false
-    # If PV is not used for log storage by disabling the flag EnablePVForLogStorage: false, the given host path will be used for log storage.
+       storageClass: disk-premium
-    LogStorageHostPath: /mnt/log
+       claimSize: 50Gi
+       accessMode: ReadWriteOnce
+     hostPath:
+       enabled: true
+       path: /mnt/log
+     emptyDir:
+       enabled: false
+   containerMountPath:
+     path: /mnt/log
+ ## FluentBit Settings
+  fluentBitSidecar:
+   enabled: false
+ ## Define service(s) for application.  Fields many need to be modified based on `type`
+ service:
+   type: ClusterIP
+   port: 5060
+   rmHealthCheckAPIPort: 8300
-## Define service(s) for application.  Fields many need to be modified based on `type`
+ ## ConfigMaps with Configuration
-service:
+ ## Use Config Map for creating environment variables
-  type: ClusterIP
+ context:
-  port: 5060
+   env:
-  rmHealthCheckAPIPort: 8300
+     cfghandler:
+       CFGSERVER: gvp-configserver.gvp.svc.cluster.local
+       CFGSERVERBACKUP: gvp-configserver.gvp.svc.cluster.local
+       CFGPORT: "8888"
+       CFGAPP: "default"
+       RMAPP: "azure_rm"
+       RMFOLDER: "Applications\\RM_MicroService\\RM_Apps"
+       HOSTFOLDER: "Hosts\\RM_MicroService"
+       MCPFOLDER: "MCP_Configuration_Unit\\MCP_LRG"
+       SNMPFOLDER: "Applications\\RM_MicroService\\SNMP_Apps"
+       EnvironmentType: "prod"
+       CONFSERVERAPP: "confserv"
+       RSAPP: "azure_rs"
+       SNMPAPP: "azure_rm_snmp"
+       STDOUT: "true"
+       VOICEMAILSERVICEDIDNUMBER: "55551111"
-## ConfigMaps with Configuration
+   RMCONFIG:
-## Use Config Map for creating environment variables
+     rm:
-context:
+       sip-header-for-dnis: "Request-Uri"
-  env:
+       ignore-gw-lrg-configuration: "true"
-    cfghandler:
+       ignore-ruri-tenant-dbid: "true"
-      CFGSERVER: gvp-configserver.gvp.svc.cluster.local
+     log:
-      CFGSERVERBACKUP: gvp-configserver.gvp.svc.cluster.local
+       verbose: "trace"
-      CFGPORT: "8888"
+     subscription:
-      CFGAPP: "default"
+       sip.transport.dnsharouting: "true"
-      RMAPP: "azure_rm"
+       sip.headerutf8verification: "false"
-      RMFOLDER: "Applications\\RM_MicroService\\RM_Apps"
+       sip.transport.setuptimer.tcp: "5000"
-      HOSTFOLDER: "Hosts\\RM_MicroService"
+       sip.threadpoolsize: "1"
-      MCPFOLDER: "MCP_Configuration_Unit\\MCP_LRG"
+     registrar:
-      SNMPFOLDER: "Applications\\RM_MicroService\\SNMP_Apps"
+       sip.transport.dnsharouting: "true"
-      EnvironmentType: "prod"
+       sip.headerutf8verification: "false"
-      CONFSERVERAPP: "confserv"
+       sip.transport.setuptimer.tcp: "5000"
-      RSAPP: "azure_rs"
+       sip.threadpoolsize: "1"
-      SNMPAPP: "azure_rm_snmp"
+     proxy:
-      STDOUT: "true"
+       sip.transport.dnsharouting: "true"
-      VOICEMAILSERVICEDIDNUMBER: "55551111"
+       sip.headerutf8verification: "false"
+       sip.transport.setuptimer.tcp: "5000"
+       sip.threadpoolsize: "16"
+       sip.maxtcpconnections: "1000"
+     monitor:
+       sip.transport.dnsharouting: "true"
+       sip.maxtcpconnections: "1000"
+       sip.headerutf8verification: "false"
+       sip.transport.setuptimer.tcp: "5000"
+       sip.threadpoolsize: "1"
+     ems:
+       rc.cdr.local_queue_path: "/rm/ems/data/cdrQueue_rm.db"
+       rc.ors.local_queue_path: "/rm/ems/data/orsQueue_rm.db"
-  RMCONFIG:
+ # Default secrets storage to k8s secrets with csi able to be optional
-    rm:
+ secret:
-      sip-header-for-dnis: "Request-Uri"
+   # keyVaultSecret will be a flag to between secret types(k8's or CSI). If keyVaultSecret was set to false k8's secret will be used
-      ignore-gw-lrg-configuration: "true"
+   keyVaultSecret: false
-      ignore-ruri-tenant-dbid: "true"
+   #If keyVaultSecret set to false the below parameters will not be used.
-    log:
+   configserverProviderClassName: gvp-configserver-secret
-      verbose: "trace"
+   cfgSecretFileNameForCfgUsername: configserver-username
-    subscription:
+   cfgSecretFileNameForCfgPassword: configserver-password
-      sip.transport.dnsharouting: "true"
+   #If keyVaultSecret set to true the below parameters will not be used.
-      sip.headerutf8verification: "false"
+   cfgServerSecretName: configserver-secret
-      sip.transport.setuptimer.tcp: "5000"
+   cfgSecretKeyNameForCfgUsername: username
-      sip.threadpoolsize: "1"
+   cfgSecretKeyNameForCfgPassword: password
-    registrar:
-      sip.transport.dnsharouting: "true"
-      sip.headerutf8verification: "false"
-      sip.transport.setuptimer.tcp: "5000"
-      sip.threadpoolsize: "1"
-    proxy:
-      sip.transport.dnsharouting: "true"
-      sip.headerutf8verification: "false"
-      sip.transport.setuptimer.tcp: "5000"
-      sip.threadpoolsize: "16"
-      sip.maxtcpconnections: "1000"
-    monitor:
-      sip.transport.dnsharouting: "true"
-      sip.maxtcpconnections: "1000"
-      sip.headerutf8verification: "false"
-      sip.transport.setuptimer.tcp: "5000"
-      sip.threadpoolsize: "1"
-    ems:
-      rc.cdr.local_queue_path: "/rm/ems/data/cdrQueue_rm.db"
-      rc.ors.local_queue_path: "/rm/ems/data/orsQueue_rm.db"
-# Default secrets storage to k8s secrets with csi able to be optional
+ ## Ingress configuration
-secret:
+ ingress:
-  # keyVaultSecret will be a flag to between secret types(k8's or CSI). If keyVaultSecret was set to false k8's secret will be used
+   enabled: false
-  keyVaultSecret: false
+   annotations: {}
-  #If keyVaultSecret set to false the below parameters will not be used.
+     # kubernetes.io/ingress.class: nginx
-  configserverProviderClassName: gvp-configserver-secret
+   # kubernetes.io/tls-acme: "true"
-  cfgSecretFileNameForCfgUsername: configserver-username
+   paths: []
-  cfgSecretFileNameForCfgPassword: configserver-password
+   hosts:
-  #If keyVaultSecret set to true the below parameters will not be used.
+     - chart-example.local
-  cfgServerSecretName: configserver-secret
+   tls: []
-  cfgSecretKeyNameForCfgUsername: username
+   #  - secretName: chart-example-tls
-  cfgSecretKeyNameForCfgPassword: password
+   #    hosts:
+   #      - chart-example.local
+ networkPolicies:
+   enabled: false
+ sip:
+   serviceName: sipnode
-## Ingress configuration
+ ## primaryAppresource requests and limits
-ingress:
+ ## ref: <nowiki>http://kubernetes.io/docs/user-guide/compute-resources/</nowiki>
-  enabled: false
+ ##
-  annotations: {}
+ resourceForRM:
-    # kubernetes.io/ingress.class: nginx
+   # We usually recommend not to specify default resources and to leave this as a conscious
-  # kubernetes.io/tls-acme: "true"
+   # choice for the user. This also increases chances charts run on environments with little
-  paths: []
+   # resources, such as Minikube. If you do want to specify resources, uncomment the following
-  hosts:
+   # lines, adjust them as necessary, and remove the curly braces after 'resources:'.
-    - chart-example.local
+   requests:
-  tls: []
+     memory: "1Gi"
-  #  - secretName: chart-example-tls
+     cpu: "200m"
-  #    hosts:
+      ephemeral-storage: "10Gi"
-  #      - chart-example.local
+   limits:
-networkPolicies:
+     memory: "2Gi"
-  enabled: false
+     cpu: "250m"
-sip:
-  serviceName: sipnode
-## primaryAppresource requests and limits
+ resoueceForSnmp:
-## ref: http://kubernetes.io/docs/user-guide/compute-resources/
+   requests:
-##
+     memory: "500Mi"
-resourceForRM:
+     cpu: "100m"
-  # We usually recommend not to specify default resources and to leave this as a conscious
+   limits:
-  # choice for the user. This also increases chances charts run on environments with little
+     memory: "1Gi"
-  # resources, such as Minikube. If you do want to specify resources, uncomment the following
+     cpu: "150m"
-  # lines, adjust them as necessary, and remove the curly braces after 'resources:'.
-  requests:
-    memory: "1Gi"
-    cpu: "200m"
-    ephemeral-storage: "10Gi"
-  limits:
-    memory: "2Gi"
-    cpu: "250m"
-resoueceForSnmp:
+ ## primaryApp containers' Security Context
-  requests:
+ ## ref: <nowiki>https://kubernetes.io/docs/tasks/configure-pod-container/security-context/#set-the-security-context-for-a-container</nowiki>
-    memory: "500Mi"
+ ##
-    cpu: "100m"
+ ## Containers should run as genesys user and cannot use elevated permissions
-  limits:
+ securityContext:
-    memory: "1Gi"
+   fsGroup: 500
-    cpu: "150m"
+   runAsNonRoot: true
+   runAsUserRM: 500
+   runAsGroupRM: 500
+   runAsUserCfghandler: 500
+   runAsGroupCfghandler: 500
-## primaryApp containers' Security Context
+ ## Priority Class
-## ref: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/#set-the-security-context-for-a-container
+ ## ref: <nowiki>https://kubernetes.io/docs/concepts/configuration/pod-priority-preemption/</nowiki>
-##
+ ##
-## Containers should run as genesys user and cannot use elevated permissions
+ priorityClassName: ""
-securityContext:
-  fsGroup: 500
-  runAsNonRoot: true
-  runAsUserRM: 500
-  runAsGroupRM: 500
-  runAsUserCfghandler: 500
-  runAsGroupCfghandler: 500
-## Priority Class
+ ## Affinity for assignment.
-## ref: https://kubernetes.io/docs/concepts/configuration/pod-priority-preemption/
+ ## Ref: <nowiki>https://kubernetes.io/docs/concepts/configuration/assign-pod-node/#affinity-and-anti-affinity</nowiki>
-##
+ ##
-priorityClassName: ""
+ affinity:
-## Affinity for assignment.
+ ## Node labels for assignment.
-## Ref: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/#affinity-and-anti-affinity
+ ## ref: <nowiki>https://kubernetes.io/docs/user-guide/node-selection/</nowiki>
-##
+ ##
-affinity: {}
+ nodeSelector:
-## Node labels for assignment.
-## ref: https://kubernetes.io/docs/user-guide/node-selection/
-##
-nodeSelector:
+ ## Tolerations for assignment.
+ ## ref: <nowiki>https://kubernetes.io/docs/concepts/configuration/taint-and-toleration/</nowiki>
+ ##
+ tolerations: []
-## Tolerations for assignment.
+  ## Service/Pod Monitoring Settings
-## ref: https://kubernetes.io/docs/concepts/configuration/taint-and-toleration/
+ prometheus:
-##
+   enabled: true
-tolerations: []
+   metric:
+    port: 9116
-## Service/Pod Monitoring Settings
-monitoring:
+  # Enable for Prometheus operator
-   podMonitorEnabled: true
+ podMonitor:
-   prometheusRulesEnabled: true
+   enabled: true
-  grafanaEnabled: true
+   metric:
+     path: /snmp
-monitor:
+     module: [ if_mib ]
-  monitorName: gvp-monitoring
+     target: [ 127.0.0.1:1161 ]
-  prometheusPort: 9116
-  prometheusPortlogs: 8200
+ monitoring:
-  logFilePrefixName: RM
+   prometheusRulesEnabled: true
-  module: [if_mib]
+   grafanaEnabled: true
-  target: [127.0.0.1:1161]
-</source>
+ monitor:
+   monitorName: gvp-monitoring
+{{!}}}
 ===Verify the deployed resources===
 Verify the deployed resources from OpenShift console/CLI.
-|Status=No
+====Deployment validation - success====
-}}{{Section
+. Log into console and check if gvp-rm-0 and gvp-rm-1 pods are ready and running "oc get pods -o wide".[[File:RM_Deploy_success_1.png|none|800px|RM_Deploy_success_1|link=https://all.docs.genesys.com/File:RM_Deploy_success_1.png]]2. Do a pod describe and check if both liveness and readiness probes are passing "oc describe gvp-rm-0 / oc describe pod gvp-rm-1"
-|sectionHeading=5. GVP Media Control Platform
-|anchor=GVPMCP
-|alignment=Vertical
-|structuredtext====Persistent Volumes creation===
-Create the following PVs which are required for the service deployment.
-gvp-mcp-logs-01
+. LRG options configured by Resource Manager could be changed by using LRG configuration section in values.yaml. For example,
+ LRGConfig:
+     gvp.lrg:
+       load-balance-scheme: "round-robin"
+. When Resource Manager is deployed, it creates LRG "MCP_Configuration_Unit\\MCP_LRG", configuration unit, default IVR Profiles in the environment tenant.
-'''gvp-mcp-logs-01-pv.yaml'''
+For information on provisioning a new tenant, refer to {{Link-SomewhereInThisVersion|manual=GVPPEGuide|topic=Provision}}.
-<source lang="bash">
+Resource Manager uses gvp-tenant-id, the contact center ID, and the media service type coming from SIP Server in the INVITE message to identify the tenant and pick the IVR Profiles.
-apiVersion: v1
+====Deployment validation - failure====
-kind: PersistentVolume
+To debug deployment failure, do the following:
-metadata:
-  name: gvp-mcp-logs-01
-spec:
-  capacity:
-    storage: 10Gi
-  accessModes:
-    - ReadWriteOnce
-  persistentVolumeReclaimPolicy: Recycle
-  storageClassName: gvp
-  nfs:
-    path:  /export/vol1/PAT/gvp/mcp-logs-01
-    server: 192.168.30.51
-</source>
-Execute the following command:
+. Log into console and check if gvp-rm-0 and gvp-rm-1 pods are ready and running "oc get pods -o wide".
-<source lang="bash">
-kubectl create -f gvp-mcp-logs-01-pv.yaml
-</source>
-gvp-mcp-logs-02
+. If the RM container is continuously restarting, check the liveness and readiness probe status.
-'''gvp-mcp-logs-02-pv.yaml'''
+. Do RM pod describe to check the liveness and readiness probe status "oc describe gvp-rm-0 / oc describe pod gvp-rm-1"
-<source lang="bash">
+. If probe failures are observed, check for MCP availability and MCP applications in RM LRG. Check RM logs to find the root cause.
-apiVersion: v1
-kind: PersistentVolume
-metadata:
-  name: gvp-mcp-logs-02
-spec:
-  capacity:
-    storage: 10Gi
-  accessModes:
-    - ReadWriteOnce
-  persistentVolumeReclaimPolicy: Recycle
-  storageClassName: gvp
-  nfs:
-    path:  /export/vol1/PAT/gvp/mcp-logs-02
-    server: 192.168.30.51
-</source>
-Execute the following command:
+. If rm-init container is failing, check RM and Configuration Server connectivity, and check whether RM configuration details are properly configured.
-<source lang="bash">
+|Status=No
-kubectl create -f gvp-mcp-logs-02-pv.yaml
+}}{{Section
-</source>
+|sectionHeading=5. GVP Media Control Platform
+|anchor=GVPMCP
-gvp-mcp-rup-volume-01
+|alignment=Vertical
+|structuredtext====Persistent Volumes creation===
-'''gvp-mcp-rup-volume-01-pv.yaml'''
+'''Note''': The steps for PV creation can be skipped if OCS is used to auto provision the persistent volumes.
-<source lang="bash">
-apiVersion: v1
-kind: PersistentVolume
-metadata:
-  name: gvp-mcp-rup-volume-01
-spec:
-  capacity:
-    storage: 40Gi
-  accessModes:
-    - ReadWriteOnce
-  persistentVolumeReclaimPolicy: Recycle
-  storageClassName: disk-premium
-  nfs:
-    path:  /export/vol1/PAT/gvp/mcp-logs-01
-    server: 192.168.30.51
-</source>
-Execute the following command:
-<source lang="bash">
-kubectl create -f gvp-mcp-rup-volume-01-pv.yaml
-</source>
-gvp-mcp-rup-volume-02
-'''gvp-mcp-rup-volume-02-pv.yaml'''
-<source lang="bash">
-apiVersion: v1
-kind: PersistentVolume
-metadata:
-  name: gvp-mcp-rup-volume-02
-spec:
-  capacity:
-    storage: 40Gi
-  accessModes:
-    - ReadWriteOnce
-  persistentVolumeReclaimPolicy: Recycle
-  storageClassName: disk-premium
-  nfs:
-    path:  /export/vol1/PAT/gvp/mcp-logs-02
-    server: 192.168.30.51
-</source>
-Execute the following command:
-<source lang="bash">
-kubectl create -f gvp-mcp-rup-volume-02-pv.yaml
-</source>
-gvp-mcp-recording-volume-01
-'''gvp-mcp-recordings-volume-01-pv.yaml'''
-<source lang="bash">
-apiVersion: v1
-kind: PersistentVolume
-metadata:
-  name: gvp-mcp-recording-volume-01
-spec:
-  capacity:
-    storage: 40Gi
-  accessModes:
-    - ReadWriteOnce
-  persistentVolumeReclaimPolicy: Recycle
-  storageClassName: gvp
-  nfs:
-    path:  /export/vol1/PAT/gvp/mcp-logs-01
-    server: 192.168.30.51
-</source>
-Execute the following command:
-<source lang="bash">
-kubectl create -f gvp-mcp-recordings-volume-01-pv.yaml
-</source>
-gvp-mcp-recording-volume-02
-'''gvp-mcp-recordings-volume-02-pv.yaml'''
-<source lang="bash">
-apiVersion: v1
-kind: PersistentVolume
-metadata:
-  name: gvp-mcp-recording-volume-02
-spec:
-  capacity:
-    storage: 40Gi
-  accessModes:
-    - ReadWriteOnce
-  persistentVolumeReclaimPolicy: Recycle
-  storageClassName: gvp
-  nfs:
-    path:  /export/vol1/PAT/gvp/mcp-logs-02
-    server: 192.168.30.51
-</source>
-Execute the following command:
-<source lang="bash">
-kubecl create -f gvp-mcp-recordings-volume-02-pv.yaml
-</source>
+Create the following PVs which are required for the service deployment.
+{{{!}} class="wikitable" data-macro-name="warning" data-macro-id="58240037-95e5-4c9a-907a-de105566d7af" data-macro-parameters="icon=false{{!}}title=Note Regarding Persistent Volumes" data-macro-schema-version="1" data-macro-body-type="RICH_TEXT"
+{{!}} class="wysiwyg-macro-body"{{!}}If your OpenShift deployment is capable of self-provisioning of Persistent Volumes, then this step can be skipped.  Volumes will be created by provisioner.
+{{!}}}<u>gvp-mcp-logs-01</u>
+{{{!}} class="wikitable" data-macro-name="code" data-macro-id="cae04f19-fc92-4408-b8a2-2e5c65288721" data-macro-parameters="language=yml{{!}}theme=Emacs{{!}}title=gvp-mcp-logs-01-pv.yaml" data-macro-schema-version="1" data-macro-body-type="PLAIN_TEXT"
+{{!}} class="wysiwyg-macro-body"{{!}}
+ apiVersion: v1
+ kind: PersistentVolume
+ metadata:
+   name: gvp-mcp-logs-01
+ spec:
+   capacity:
+     storage: 10Gi
+   accessModes:
+     - ReadWriteOnce
+   persistentVolumeReclaimPolicy: Recycle
+   storageClassName: gvp
+   nfs:
+     path:  /export/vol1/PAT/gvp/mcp-logs-01
+     server: 192.168.30.51
+{{!}}}Execute the following command:
+{{{!}} class="wikitable" data-macro-name="code" data-macro-id="0498ef92-8a60-4540-bd3f-18330eb80638" data-macro-parameters="language=bash{{!}}theme=Emacs" data-macro-schema-version="1" data-macro-body-type="PLAIN_TEXT"
+{{!}} class="wysiwyg-macro-body"{{!}}
+ oc create -f gvp-mcp-logs-01-pv.yaml
+{{!}}}<u>gvp-mcp-logs-02</u>
+{{{!}} class="wikitable" data-macro-name="code" data-macro-id="ac97e051-a284-4cd3-9284-89b33e9d61b6" data-macro-parameters="language=yml{{!}}theme=Emacs{{!}}title=gvp-mcp-logs-02-pv.yaml" data-macro-schema-version="1" data-macro-body-type="PLAIN_TEXT"
+{{!}} class="wysiwyg-macro-body"{{!}}
+ apiVersion: v1
+ kind: PersistentVolume
+ metadata:
+   name: gvp-mcp-logs-02
+ spec:
+   capacity:
+     storage: 10Gi
+   accessModes:
+     - ReadWriteOnce
+   persistentVolumeReclaimPolicy: Recycle
+   storageClassName: gvp
+   nfs:
+     path:  /export/vol1/PAT/gvp/mcp-logs-02
+     server: 192.168.30.51
+{{!}}}Execute the following command:
+{{{!}} class="wikitable" data-macro-name="code" data-macro-id="e6f89699-84e9-4e1e-9fa0-0cfcc0af49e1" data-macro-parameters="language=bash{{!}}theme=Emacs" data-macro-schema-version="1" data-macro-body-type="PLAIN_TEXT"
+{{!}} class="wysiwyg-macro-body"{{!}}
+ oc create -f gvp-mcp-logs-02-pv.yaml
+{{!}}}<u>gvp-mcp-rup-volume-01</u>
+{{{!}} class="wikitable" data-macro-name="code" data-macro-id="9e37c8b0-1701-46ea-8389-2a1de78f205a" data-macro-parameters="language=yml{{!}}theme=Emacs{{!}}title=gvp-mcp-rup-volume-01-pv.yaml" data-macro-schema-version="1" data-macro-body-type="PLAIN_TEXT"
+{{!}} class="wysiwyg-macro-body"{{!}}
+ apiVersion: v1
+ kind: PersistentVolume
+ metadata:
+   name: gvp-mcp-rup-volume-01
+ spec:
+   capacity:
+     storage: 40Gi
+   accessModes:
+     - ReadWriteOnce
+   persistentVolumeReclaimPolicy: Recycle
+   storageClassName: disk-premium
+   nfs:
+     path:  /export/vol1/PAT/gvp/mcp-logs-01
+     server: 192.168.30.51
+{{!}}}Execute the following command:
+{{{!}} class="wikitable" data-macro-name="code" data-macro-id="8a1a959c-bd49-48a5-9a66-8d584e11b5bd" data-macro-parameters="language=bash{{!}}theme=Emacs" data-macro-schema-version="1" data-macro-body-type="PLAIN_TEXT"
+{{!}} class="wysiwyg-macro-body"{{!}}
+ oc create -f gvp-mcp-rup-volume-01-pv.yaml
+{{!}}}<u>gvp-mcp-rup-volume-02</u>
+{{{!}} class="wikitable" data-macro-name="code" data-macro-id="e5d5f1b5-76e3-4623-9c4d-3955a8f01b8c" data-macro-parameters="language=yml{{!}}theme=Emacs{{!}}title=gvp-mcp-rup-volume-02-pv.yaml" data-macro-schema-version="1" data-macro-body-type="PLAIN_TEXT"
+{{!}} class="wysiwyg-macro-body"{{!}}
+ apiVersion: v1
+ kind: PersistentVolume
+ metadata:
+   name: gvp-mcp-rup-volume-02
+ spec:
+   capacity:
+     storage: 40Gi
+   accessModes:
+     - ReadWriteOnce
+   persistentVolumeReclaimPolicy: Recycle
+   storageClassName: disk-premium
+   nfs:
+     path:  /export/vol1/PAT/gvp/mcp-logs-02
+     server: 192.168.30.51
+{{!}}}Execute the following command:
+{{{!}} class="wikitable" data-macro-name="code" data-macro-id="bfae65ba-86b0-481e-bb2b-a1a0ea10e74e" data-macro-parameters="language=bash{{!}}theme=Emacs" data-macro-schema-version="1" data-macro-body-type="PLAIN_TEXT"
+{{!}} class="wysiwyg-macro-body"{{!}}
+ oc create -f gvp-mcp-rup-volume-02-pv.yaml
+{{!}}}<u>gvp-mcp-recording-volume-01</u>
+{{{!}} class="wikitable" data-macro-name="code" data-macro-id="c30c91d3-afdc-467d-9dce-dc21a0f6cc6d" data-macro-parameters="language=yml{{!}}theme=Emacs{{!}}title=gvp-mcp-recordings-volume-01-pv.yaml" data-macro-schema-version="1" data-macro-body-type="PLAIN_TEXT"
+{{!}} class="wysiwyg-macro-body"{{!}}
+ apiVersion: v1
+ kind: PersistentVolume
+ metadata:
+   name: gvp-mcp-recording-volume-01
+ spec:
+   capacity:
+     storage: 40Gi
+   accessModes:
+     - ReadWriteOnce
+   persistentVolumeReclaimPolicy: Recycle
+   storageClassName: gvp
+   nfs:
+     path:  /export/vol1/PAT/gvp/mcp-logs-01
+     server: 192.168.30.51
+{{!}}}Execute the following command:
+{{{!}} class="wikitable" data-macro-name="code" data-macro-id="060c080d-992f-483f-abd0-5b93227527df" data-macro-parameters="language=bash{{!}}theme=Emacs" data-macro-schema-version="1" data-macro-body-type="PLAIN_TEXT"
+{{!}} class="wysiwyg-macro-body"{{!}}
+ oc create -f gvp-mcp-recordings-volume-01-pv.yaml
+{{!}}}<u>gvp-mcp-recording-volume-02</u>
+{{{!}} class="wikitable" data-macro-name="code" data-macro-id="36ca733a-9d2a-4715-a011-76a42cce2b35" data-macro-parameters="language=yml{{!}}theme=Emacs{{!}}title=gvp-mcp-recordings-volume-02-pv.yaml" data-macro-schema-version="1" data-macro-body-type="PLAIN_TEXT"
+{{!}} class="wysiwyg-macro-body"{{!}}
+ apiVersion: v1
+ kind: PersistentVolume
+ metadata:
+   name: gvp-mcp-recording-volume-02
+ spec:
+   capacity:
+     storage: 40Gi
+   accessModes:
+     - ReadWriteOnce
+   persistentVolumeReclaimPolicy: Recycle
+   storageClassName: gvp
+   nfs:
+     path:  /export/vol1/PAT/gvp/mcp-logs-02
+     server: 192.168.30.51
+{{!}}}Execute the following command:
+{{{!}} class="wikitable" data-macro-name="code" data-macro-id="fb8a00d5-ac2b-40e2-abb6-4802bed6d0d7" data-macro-parameters="language=bash{{!}}theme=Emacs" data-macro-schema-version="1" data-macro-body-type="PLAIN_TEXT"
+{{!}} class="wysiwyg-macro-body"{{!}}
+ oc create -f gvp-mcp-recordings-volume-02-pv.yaml
+{{!}}}
 ===Install Helm chart===
 Download the required Helm chart release from the JFrog repository and install. Refer to {{Link-AnywhereElse|product=GVP|version=Current|manual=GVPPEGuide|topic=Deploy|anchor=HelmchaURLs|display text=Helm Chart URLs}}.
+{{{!}} class="wikitable" data-macro-name="code" data-macro-id="07bcb02c-6ac0-4bd3-943d-7c51425c4534" data-macro-parameters="language=bash{{!}}theme=Emacs{{!}}title=Install Helm Chart" data-macro-schema-version="1" data-macro-body-type="PLAIN_TEXT"
+{{!}} class="wysiwyg-macro-body"{{!}}
+ helm install gvp-mcp-blue ./<gvp-mcp-helm-artifact> -f gvp-mcp-values.yaml
+{{!}}}At minimum following values will need to be updated in your values.yaml:
-<source lang="bash">
+*<critical-priority-class> - Set to a priority class that exists on cluster (or create it instead)
-helm install gvp-mcp ./<gvp-mcp-helm-artifact> -f gvp-mcp-values.yaml
+*<docker-repo> - Set to your Docker Repo with Private Edition Artifacts
-</source>
+*<credential-name> - Set to your pull secret name
+*Set '''logicalResourceGroup: "MCP_Configuration_Unit"''' to add MCPs to the Real Configuration Unit (rather than test)
-You must set the following values in your values.yaml:
+{{{!}} class="wikitable" data-macro-name="code" data-macro-id="5a7e8e31-0a46-4664-87bb-8238df182a64" data-macro-parameters="language=yml{{!}}theme=Emacs{{!}}title=gvp-mcp-values.yaml" data-macro-schema-version="1" data-macro-body-type="PLAIN_TEXT"
+{{!}} class="wysiwyg-macro-body"{{!}}
-*Set '''logicalResourceGroup: "MCP_Configuration_Unit"''' to add MCPs to the Real Configuration Unit (rather than test).
+ ## Default values for gvp-mcp.
+ <nowiki>##</nowiki> This is a YAML-formatted file.
-'''gvp-mcp-values.yaml'''
+ <nowiki>##</nowiki> Declare variables to be passed into your templates.
-<source lang="bash">
-## Default values for gvp-mcp.
-## This is a YAML-formatted file.
-## Declare variables to be passed into your templates.
-## Global Parameters
-## Add labels to all the deployed resources
-##
-podLabels: {}
-## Add annotations to all the deployed resources
-##
-podAnnotations: {}
-serviceAccount:
+ <nowiki>##</nowiki> Global Parameters
-  # Specifies whether a service account should be created
+ <nowiki>##</nowiki> Add labels to all the deployed resources
-  create: false
+ <nowiki>##</nowiki>
-  # Annotations to add to the service account
+ podLabels: {}
-  annotations: {}
-  # The name of the service account to use.
-  # If not set and create is true, a name is generated using the fullname template
-  name:
-## Deployment Configuration
+ <nowiki>##</nowiki> Add annotations to all the deployed resources
-deploymentEnv: "UPDATE_ENV"
+ <nowiki>##</nowiki>
-replicaCount: 2
+ podAnnotations: {}
-terminationGracePeriod: 3600
-## Name and dashboard overrides
+ serviceAccount:
-nameOverride: ""
+ <nowiki> </nowiki> # Specifies whether a service account should be created
-fullnameOverride: ""
+ <nowiki> </nowiki> create: false
-dashboardReplicaStatefulsetFilterOverride: ""
+ <nowiki> </nowiki> # Annotations to add to the service account
+ <nowiki> </nowiki> annotations: {}
+ <nowiki> </nowiki> # The name of the service account to use.
+ <nowiki> </nowiki> # If not set and create is true, a name is generated using the fullname template
+ <nowiki> </nowiki> name:
-## Base Labels. Please do not change these.
+ <nowiki>##</nowiki> Deployment Configuration
-serviceName: gvp-mcp
+ deploymentEnv: "UPDATE_ENV"
-component: shared
+ replicaCount: 2
-partOf: gvp
+ terminationGracePeriod: 3600
-## Command-line arguments to the MCP process
+ <nowiki>##</nowiki> Name and dashboard overrides
-args:
+ nameOverride: ""
-  - "gvp-configserver"
+ fullnameOverride: ""
-  - "8888"
+ dashboardReplicaStatefulsetFilterOverride: ""
-  - "default"
-  - "/etc/mcpconfig/config.ini"
-## Container image repo settings.
+ <nowiki>##</nowiki> Base Labels. Please do not change these.
-image:
+ serviceName: gvp-mcp
-  mcp:
+ component: shared
-    registry: pureengage-docker-staging.jfrog.io
+ partOf: gvp
-    repository: gvp/multicloud/gvp_mcp
-    tag: "{{ .Chart.AppVersion }}"
-    pullPolicy: IfNotPresent
-  serviceHandler:
-    registry: pureengage-docker-staging.jfrog.io
-    repository: gvp/multicloud/gvp_mcp_servicehandler
-    tag: "{{ .Chart.AppVersion }}"
-    pullPolicy: IfNotPresent
-  configHandler:
-    registry: pureengage-docker-staging.jfrog.io
-    repository: gvp/multicloud/gvp_mcp_confighandler
-    tag: "{{ .Chart.AppVersion }}"
-    pullPolicy: IfNotPresent
-  snmp:
-    registry: pureengage-docker-staging.jfrog.io
-    repository: gvp/multicloud/gvp_snmp
-    tag: v9.0.040.21
-    pullPolicy: IfNotPresent
-  rup:
-    registry: pureengage-docker-staging.jfrog.io
-    repository: cce/recording-provider
-    tag: 9.0.000.00.b.1432.r.ef30441
-    pullPolicy: IfNotPresent
-## MCP specific settings
-mcp:
-  ## Settings for liveness and readiness probes of MCP
-  ## !!! THESE VALUES SHOULD NOT BE CHANGED UNLESS INSTRUCTED BY GENESYS !!!
-  livenessValues:
-    path: /mcp/liveness
-    initialDelaySeconds: 30
-    periodSeconds: 60
-    timeoutSeconds: 20
-    failureThreshold: 3
-    healthCheckAPIPort: 8300
-  # Used instead of startupProbe.  This runs all initial self-tests, and could take some time.
+ <nowiki>##</nowiki> Command-line arguments to the MCP process
-  # Timeout is < 1 minute (with reduced test set), and interval/period is 1 minute.
+ args:
-  readinessValues:
+ <nowiki> </nowiki> - "gvp-configserver"
-    path: /mcp/readiness
+ <nowiki> </nowiki> - "8888"
-    initialDelaySeconds: 30
+ <nowiki> </nowiki> - "default"
-    periodSeconds: 60
+ <nowiki> </nowiki> - "/etc/mcpconfig/config.ini"
-    timeoutSeconds: 50
-    failureThreshold: 3
-    healthCheckAPIPort: 8300
-  # Location of configuration file for MCP
-  # initialConfigFile is the default template
-  # finalConfigFile is the final configuration after overrides are applied (see mcpConfig section for overrides)
-  initialConfigFile: "/etc/config/config.ini"
-  finalConfigFile: "/etc/mcpconfig/config.ini"
-   # Dev and QA deployments will use MCP_Configuration_Unit_Test LRG and shared deployments will use MCP_Configuration_Unit LRG
+ <nowiki>##</nowiki> Container image repo settings.
-   logicalResourceGroup: "MCP_Configuration_Unit"
+ image:
+ <nowiki> </nowiki> mcp:
+ <nowiki> </nowiki>   registry: <docker-repo>
+ <nowiki> </nowiki>   repository: gvp/multicloud/gvp_mcp
+ <nowiki> </nowiki>   tag: "<nowiki>{{ .Chart.AppVersion }}</nowiki>"
+ <nowiki> </nowiki>   pullPolicy: IfNotPresent
+ <nowiki> </nowiki> serviceHandler:
+ <nowiki> </nowiki>   registry: <docker-repo>
+ <nowiki> </nowiki>   repository: gvp/multicloud/gvp_mcp_servicehandler
+ <nowiki> </nowiki>   tag: "<nowiki>{{ .Chart.AppVersion }}</nowiki>"
+ <nowiki> </nowiki>   pullPolicy: IfNotPresent
+ <nowiki> </nowiki> configHandler:
+ <nowiki> </nowiki>   registry: <docker-repo>
+ <nowiki> </nowiki>   repository: gvp/multicloud/gvp_mcp_confighandler
+ <nowiki> </nowiki>   tag: "<nowiki>{{ .Chart.AppVersion }}</nowiki>"
+ <nowiki> </nowiki>   pullPolicy: IfNotPresent
+ <nowiki> </nowiki> snmp:
+ <nowiki> </nowiki>   registry: <docker-repo>
+ <nowiki> </nowiki>   repository: gvp/multicloud/gvp_snmp
+ <nowiki> </nowiki>   tag: v9.0.040.21
+ <nowiki> </nowiki>   pullPolicy: IfNotPresent
+ <nowiki> </nowiki> rup:
+ <nowiki> </nowiki>   registry: <docker-repo>
+ <nowiki> </nowiki>   repository: cce/recording-provider
+ <nowiki> </nowiki>   tag: 9.0.000.00.b.1432.r.ef30441
+ <nowiki> </nowiki>   pullPolicy: IfNotPresent
+ <nowiki> </nowiki>
+ <nowiki>##</nowiki> MCP specific settings
+ mcp:
+ <nowiki> </nowiki> ## Settings for liveness and readiness probes of MCP
+ <nowiki> </nowiki> ## !!! THESE VALUES SHOULD NOT BE CHANGED UNLESS INSTRUCTED BY GENESYS !!!
+ <nowiki> </nowiki> livenessValues:
+ <nowiki> </nowiki>   path: /mcp/liveness
+ <nowiki> </nowiki>   initialDelaySeconds: 30
+ <nowiki> </nowiki>   periodSeconds: 60
+ <nowiki> </nowiki>   timeoutSeconds: 20
+ <nowiki> </nowiki>   failureThreshold: 3
+ <nowiki> </nowiki>   healthCheckAPIPort: 8300
-  # Threshold values for the various alerts in podmonitor.
+ <nowiki> </nowiki> # Used instead of startupProbe.  This runs all initial self-tests, and could take some time.
-  alerts:
+ <nowiki> </nowiki> # Timeout is < 1 minute (with reduced test set), and interval/period is 1 minute.
-    cpuUtilizationAlertLimit: 70
+ <nowiki> </nowiki> readinessValues:
-    memUtilizationAlertLimit: 90
+ <nowiki> </nowiki>   path: /mcp/readiness
-    workingMemAlertLimit: 7
+ <nowiki> </nowiki>   initialDelaySeconds: 30
-    maxRestarts: 2
+ <nowiki> </nowiki>   periodSeconds: 60
-    persistentVolume: 20
+ <nowiki> </nowiki>   timeoutSeconds: 50
-    serviceHealth: 40
+ <nowiki> </nowiki>   failureThreshold: 3
-    recordingError: 7
+ <nowiki> </nowiki>   healthCheckAPIPort: 8300
-    configServerFailure: 0
+ <nowiki> </nowiki> # Location of configuration file for MCP
-    dtmfError: 1
+ <nowiki> </nowiki> # initialConfigFile is the default template
-    dnsError: 6
+ <nowiki> </nowiki> # finalConfigFile is the final configuration after overrides are applied (see mcpConfig section for overrides)
-    totalError: 120
+ <nowiki> </nowiki> initialConfigFile: "/etc/config/config.ini"
-    selfTestError: 25
+ <nowiki> </nowiki> finalConfigFile: "/etc/mcpconfig/config.ini"
-    fetchErrorMin: 120
-    fetchErrorMax: 220
-    execError: 120
-    sdpParseError: 1
-    mediaWarning: 3
-    mediaCritical: 7
-    fetchTimeout: 10
-    fetchError: 10
-    ngiError: 12
-    ngi4xx: 10
-    recPostError: 7
-    recOpenError: 1
-    recStartError: 3
-    recCertError: 7
-    reportingDbInitError: 1
-    reportingFlushError: 1
-    grammarLoadError: 1
-    grammarSynError: 1
-    dtmfGrammarLoadError: 1
-    dtmfGrammarError: 1
-    vrmOpenSessError: 1
-    wsTokenCreateError: 1
-    wsTokenConfigError: 1
-    wsTokenFetchError: 1
-    wsOpenSessError: 1
-    wsProtoError: 1
-    grpcConfigError: 1
-    grpcSSLRootCertError: 1
-    grpcGoogleCredentialError: 1
-    grpcRecognizeStartError: 7
-    grpcWriteError: 7
-    grpcRecognizeError: 7
-    grpcTtsError: 7
-    streamerOpenSessionError: 1
-    streamerProtocolError: 1
-    msmlReqError: 7
-    dnsResError: 6
-    rsConnError: 150
-## RUP (Recording Uploader) Settings
+ <nowiki> </nowiki> # Dev and QA deployments will use MCP_Configuration_Unit_Test LRG and shared deployments will use MCP_Configuration_Unit LRG
-rup:
+ <nowiki> </nowiki> logicalResourceGroup: "MCP_Configuration_Unit"
-  ## Settings for liveness and readiness probes of RUP
-  ## !!! THESE VALUES SHOULD NOT BE CHANGED UNLESS INSTRUCTED BY GENESYS !!!
-  livenessValues:
-    path: /health/live
-    initialDelaySeconds: 30
-    periodSeconds: 60
-    timeoutSeconds: 20
-    failureThreshold: 3
-    healthCheckAPIPort: 8080
-   readinessValues:
+ <nowiki> </nowiki> # Threshold values for the various alerts in podmonitor.
-    path: /health/ready
+ <nowiki> </nowiki> alerts:
-    initialDelaySeconds: 30
+ <nowiki> </nowiki>   cpuUtilizationAlertLimit: 70
-    periodSeconds: 30
+ <nowiki> </nowiki>   memUtilizationAlertLimit: 90
-    timeoutSeconds: 20
+ <nowiki> </nowiki>   workingMemAlertLimit: 7
-    failureThreshold: 3
+ <nowiki> </nowiki>   maxRestarts: 2
-    healthCheckAPIPort: 8080
+ <nowiki> </nowiki>   persistentVolume: 20
+ <nowiki> </nowiki>   serviceHealth: 40
+ <nowiki> </nowiki>   recordingError: 7
+ <nowiki> </nowiki>   configServerFailure: 0
+ <nowiki> </nowiki>   dtmfError: 1
+ <nowiki> </nowiki>   dnsError: 6
+ <nowiki> </nowiki>   totalError: 120
+ <nowiki> </nowiki>   selfTestError: 25
+ <nowiki> </nowiki>   fetchErrorMin: 120
+ <nowiki> </nowiki>   fetchErrorMax: 220
+ <nowiki> </nowiki>   execError: 120
+ <nowiki> </nowiki>   sdpParseError: 1
+ <nowiki> </nowiki>   mediaWarning: 3
+ <nowiki> </nowiki>   mediaCritical: 7
+ <nowiki> </nowiki>   fetchTimeout: 10
+ <nowiki> </nowiki>   fetchError: 10
+ <nowiki> </nowiki>   ngiError: 12
+ <nowiki> </nowiki>   ngi4xx: 10
+ <nowiki> </nowiki>   recPostError: 7
+ <nowiki> </nowiki>   recOpenError: 1
+ <nowiki> </nowiki>   recStartError: 3
+ <nowiki> </nowiki>   recCertError: 7
+ <nowiki> </nowiki>   reportingDbInitError: 1
+ <nowiki> </nowiki>   reportingFlushError: 1
+ <nowiki> </nowiki>   grammarLoadError: 1
+ <nowiki> </nowiki>   grammarSynError: 1
+ <nowiki> </nowiki>   dtmfGrammarLoadError: 1
+ <nowiki> </nowiki>   dtmfGrammarError: 1
+ <nowiki> </nowiki>   vrmOpenSessError: 1
+ <nowiki> </nowiki>   wsTokenCreateError: 1
+ <nowiki> </nowiki>   wsTokenConfigError: 1
+ <nowiki> </nowiki>   wsTokenFetchError: 1
+ <nowiki> </nowiki>   wsOpenSessError: 1
+ <nowiki> </nowiki>   wsProtoError: 1
+ <nowiki> </nowiki>   grpcConfigError: 1
+ <nowiki> </nowiki>   grpcSSLRootCertError: 1
+ <nowiki> </nowiki>   grpcGoogleCredentialError: 1
+ <nowiki> </nowiki>   grpcRecognizeStartError: 7
+ <nowiki> </nowiki>   grpcWriteError: 7
+ <nowiki> </nowiki>   grpcRecognizeError: 7
+ <nowiki> </nowiki>   grpcTtsError: 7
+ <nowiki> </nowiki>   streamerOpenSessionError: 1
+ <nowiki> </nowiki>   streamerProtocolError: 1
+ <nowiki> </nowiki>   msmlReqError: 7
+ <nowiki> </nowiki>   dnsResError: 6
+ <nowiki> </nowiki>   rsConnError: 150
-  ## RUP PVC defines
+ <nowiki>##</nowiki> RUP (Recording Uploader) Settings
-   rupVolume:
+ rup:
-    storageClass: "genesys"
+ <nowiki> </nowiki> ## Settings for liveness and readiness probes of RUP
-    accessModes: "ReadWriteOnce"
+ <nowiki> </nowiki> ## !!! THESE VALUES SHOULD NOT BE CHANGED UNLESS INSTRUCTED BY GENESYS !!!
-    volumeSize: 40Gi
+ <nowiki> </nowiki> livenessValues:
+ <nowiki> </nowiki>   path: /health/live
+ <nowiki> </nowiki>   initialDelaySeconds: 30
+ <nowiki> </nowiki>   periodSeconds: 60
+ <nowiki> </nowiki>   timeoutSeconds: 20
+ <nowiki> </nowiki>   failureThreshold: 3
+ <nowiki> </nowiki>   healthCheckAPIPort: 8080
-  ## Other settings for RUP
+ <nowiki> </nowiki> readinessValues:
-   recordingsFolder: "/pvolume/recordings"
+ <nowiki> </nowiki>   path: /health/ready
-  recordingsCache: "/pvolume/recording_cache"
+ <nowiki> </nowiki>   initialDelaySeconds: 30
-   rupProvisionerEnabled: "false"
+ <nowiki> </nowiki>   periodSeconds: 30
-   decommisionDestType: "WebDAV"
+ <nowiki> </nowiki>   timeoutSeconds: 20
-  decommisionDestWebdavUrl: "http://gvp-central-rup:8180"
+ <nowiki> </nowiki>   failureThreshold: 3
-  decommisionDestWebdavUsername: ""
+ <nowiki> </nowiki>   healthCheckAPIPort: 8080
-   decommisionDestWebdavPassword: ""
-  diskFullDestType: "WebDAV"
-  diskFullDestWebdavUrl: "http://gvp-central-rup:8180"
-   diskFullDestWebdavUsername: ""
-  diskFullDestWebdavPassword: ""
-  cpUrl: "http://cce-conversation-provider.cce.svc.cluster.local"
-  unrecoverableLostAction: "uploadtodefault"
-  unrecoverableDestType: "Azure"
-  unrecoverableDestAzureAccountName: "gvpwestus2dev"
-  unrecoverableDestAzureContainerName: "ccerp-unrecoverable"
-  logJsonEnable: true
-  logLevel: INFO
-   logConsoleLevel: INFO
-  ## RUP resource requests and limits
+ <nowiki> </nowiki> ## RUP PVC defines
-  ## ref: http://kubernetes.io/docs/user-guide/compute-resources/
+ <nowiki> </nowiki> rupVolume:
-   resources:
+ <nowiki> </nowiki>   storageClass: "genesys"
-    requests:
+ <nowiki> </nowiki>   accessModes: "ReadWriteOnce"
-      memory: "128Mi"
+ <nowiki> </nowiki>   volumeSize: 40Gi
-      cpu: "100m"
-      ephemeral-storage: "1Gi"
-    limits:
-      memory: "2Gi"
-      cpu: "1000m"
-## PVCs defined.  RUP one is under "rup" label.
+ <nowiki> </nowiki> ## Other settings for RUP
-recordingStorage:
+ <nowiki> </nowiki> recordingsFolder: "/pvolume/recordings"
-  storageClass: "genesys"
+ <nowiki> </nowiki> recordingsCache: "/pvolume/recording_cache"
-  accessModes: "ReadWriteOnce"
+ <nowiki> </nowiki> rupProvisionerEnabled: "false"
-  volumeSize: 40Gi
+ <nowiki> </nowiki> decommisionDestType: "WebDAV"
+ <nowiki> </nowiki> decommisionDestWebdavUrl: "<nowiki>http://gvp-central-rup:8180</nowiki>"
+ <nowiki> </nowiki> decommisionDestWebdavUsername: ""
+ <nowiki> </nowiki> decommisionDestWebdavPassword: ""
+ <nowiki> </nowiki> diskFullDestType: "WebDAV"
+  <nowiki> </nowiki> diskFullDestWebdavUrl: "<nowiki>http://gvp-central-rup:8180</nowiki>"
+ <nowiki> </nowiki> diskFullDestWebdavUsername: ""
+ <nowiki> </nowiki> diskFullDestWebdavPassword: ""
+ <nowiki> </nowiki> cpUrl: "<nowiki>http://cce-conversation-provider.cce.svc.cluster.local</nowiki>"
+ <nowiki> </nowiki> unrecoverableLostAction: "uploadtodefault"
+ <nowiki> </nowiki> unrecoverableDestType: "Azure"
+ <nowiki> </nowiki> unrecoverableDestAzureAccountName: "gvpwestus2dev"
+ <nowiki> </nowiki> unrecoverableDestAzureContainerName: "ccerp-unrecoverable"
+ <nowiki> </nowiki> logJsonEnable: true
+ <nowiki> </nowiki> logLevel: INFO
+ <nowiki> </nowiki> logConsoleLevel: INFO
-# If PVC is not used by setting flag enablePV to false, the path in hostPath will be used for log storage.
+ <nowiki> </nowiki> ## RUP resource requests and limits
-logStorage:
+ <nowiki> </nowiki> ## ref: <nowiki>http://kubernetes.io/docs/user-guide/compute-resources/</nowiki>
-   enablePV: true
+ <nowiki> </nowiki> resources:
-  storageClass: genesys
+ <nowiki> </nowiki>   requests:
-  accessModes: ReadWriteOnce
+ <nowiki> </nowiki>     memory: "128Mi"
-  volumeSize: 5Gi
+ <nowiki> </nowiki>     cpu: "100m"
-   hostPath: /mnt/log
+ <nowiki> </nowiki>     ephemeral-storage: "1Gi"
+ <nowiki> </nowiki>   limits:
+ <nowiki> </nowiki>     memory: "2Gi"
+ <nowiki> </nowiki>     cpu: "1000m"
-## Service Handler configuration. Note, the port values CANNOT be changed here alone, and should not be changed.
+ <nowiki>##</nowiki> PVCs defined.  RUP one is under "rup" label.
-serviceHandler:
+ recordingStorage:
-  serviceHandlerPort: 8300
+ <nowiki> </nowiki> storageClass: "genesys"
-  mcpSipPort: 5070
+ <nowiki> </nowiki> accessModes: "ReadWriteOnce"
-  consuleExternalHost: ""
+ <nowiki> </nowiki> volumeSize: 40Gi
-  consulPort: 8501
-  registrationInterval: 10000
-  mcpHealthCheckInterval: 30s
-  mcpHealthCheckTimeout: 10s
-## Config Server values passed to RUP, etc. These should not be changed.
+ <nowiki>##</nowiki> MCP log storage volume types.
-configServer:
+ mcpLogStorage:
-   host: gvp-configserver
+ <nowiki> </nowiki> volumeType:
-   port: "8888"
+ <nowiki> </nowiki>  persistentVolume:
+ <nowiki> </nowiki>   enabled: false
+ <nowiki> </nowiki>   storageClass: disk-premium
+ <nowiki> </nowiki>   volumeSize: 50Gi
+ <nowiki> </nowiki>   accessModes: ReadWriteOnce
+ <nowiki> </nowiki>  hostPath:
+ <nowiki> </nowiki>   enabled: true
+ <nowiki> </nowiki>   path: /mnt/log
+ <nowiki> </nowiki>  emptyDir:
+ <nowiki> </nowiki>   enabled: false
-## Secrets storage related settings - k8s secrets or csi
+ <nowiki>##</nowiki> FluentBit Settings
-secrets:
+   fluentBitSidecar:
-  # Used for pulling images/containers from the respositories.
+   enabled: false
-   imagePull:
-    - name: pureengage-docker-dev
+ <nowiki>##</nowiki> Service Handler configuration. Note, the port values CANNOT be changed here alone, and should not be changed.
-    - name: pureengage-docker-staging
+ serviceHandler:
+ <nowiki> </nowiki> serviceHandlerPort: 8300
-  # Config Server secrets. If k8s is false, csi will be used, else k8s will be used.
+ <nowiki> </nowiki> mcpSipPort: 5070
-  configServer:
+ <nowiki> </nowiki> consuleExternalHost: ""
-    k8s: true
+ <nowiki> </nowiki> consulPort: 8501
-    secretName: configserver-secret
+ <nowiki> </nowiki> registrationInterval: 10000
-    dbUserKey: username
+ <nowiki> </nowiki> mcpHealthCheckInterval: 30s
-    dbPasswordKey: password
+ <nowiki> </nowiki> mcpHealthCheckTimeout: 10s
-    csiSecretProviderClass: keyvault-gvp-gvp-configserver-secret
-  # Consul secrets. If k8s is false, csi will be used, else k8s will be used.
-  consul:
-    k8s: true
-    secretName: shared-consul-consul-gvp-token
-    secretKey: consul-consul-gvp-token
-    csiSecretProviderClass: keyvault-consul-consul-gvp-token
-## Ingress configuration
+ <nowiki>##</nowiki> Config Server values passed to RUP, etc. These should not be changed.
-ingress:
+ configServer:
-  enabled: false
+ <nowiki> </nowiki> host: gvp-configserver
-  annotations: {}
+  <nowiki> </nowiki> port: "8888"
-    # kubernetes.io/ingress.class: nginx
-    # kubernetes.io/tls-acme: "true"
-  hosts:
-    - host: chart-example.local
-      paths: []
-  tls: []
-  #  - secretName: chart-example-tls
-  #    hosts:
-  #      - chart-example.local
-## App resource requests and limits
+ <nowiki>##</nowiki> Secrets storage related settings - k8s secrets or csi
-## ref: http://kubernetes.io/docs/user-guide/compute-resources/
+ secrets:
-## Values for MCP, and the default ones for other containers. RUP ones are under "rup" label.
+ <nowiki> </nowiki> # Used for pulling images/containers from the respositories.
-##
+ <nowiki> </nowiki> imagePull:
-resourcesMcp:
+ <nowiki> </nowiki>   - name: <credential-name>
-   requests:
+ <nowiki> </nowiki>
-    memory: "200Mi"
+ <nowiki> </nowiki> # Config Server secrets. If k8s is false, csi will be used, else k8s will be used.
-    cpu: "250m"
+ <nowiki> </nowiki> configServer:
-    ephemeral-storage: "1Gi"
+ <nowiki> </nowiki>   k8s: true
-   limits:
+ <nowiki> </nowiki>   secretName: configserver-secret
-    memory: "2Gi"
+ <nowiki> </nowiki>   dbUserKey: username
-    cpu: "300m"
+ <nowiki> </nowiki>   dbPasswordKey: password
+ <nowiki> </nowiki>   csiSecretProviderClass: keyvault-gvp-gvp-configserver-secret
+ <nowiki> </nowiki>
+ <nowiki> </nowiki> # Consul secrets. If k8s is false, csi will be used, else k8s will be used.
+ <nowiki> </nowiki> consul:
+ <nowiki> </nowiki>   k8s: true
+ <nowiki> </nowiki>   secretName: shared-consul-consul-gvp-token
+ <nowiki> </nowiki>   secretKey: consul-consul-gvp-token
+ <nowiki> </nowiki>   csiSecretProviderClass: keyvault-consul-consul-gvp-token
-resourcesDefault:
+ <nowiki>##</nowiki> Ingress configuration
-  requests:
+ ingress:
-    memory: "128Mi"
+ <nowiki> </nowiki> enabled: false
-    cpu: "100m"
+ <nowiki> </nowiki> annotations: {}
-   limits:
+ <nowiki> </nowiki>   # kubernetes.io/ingress.class: nginx
-    memory: "128Mi"
+ <nowiki> </nowiki>   # kubernetes.io/tls-acme: "true"
-    cpu: "100m"
+ <nowiki> </nowiki> hosts:
-  # We usually recommend not to specify default resources and to leave this as a conscious
+ <nowiki> </nowiki>   - host: chart-example.local
-  # choice for the user. This also increases chances charts run on environments with little
+ <nowiki> </nowiki>     paths: []
-   # resources, such as Minikube. If you do want to specify resources, uncomment the following
+ <nowiki> </nowiki> tls: []
-  # lines, adjust them as necessary, and remove the curly braces after 'resources:'.
+ <nowiki> </nowiki> #  - secretName: chart-example-tls
-  # limits:
+ <nowiki> </nowiki> #    hosts:
-  #   cpu: 100m
+ <nowiki> </nowiki> #      - chart-example.local
-  #   memory: 128Mi
-  # requests:
-  #   cpu: 100m
-  #   memory: 128Mi
-## App containers' Security Context
+ <nowiki>##</nowiki> App resource requests and limits
-## ref: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/#set-the-security-context-for-a-container
+ <nowiki>##</nowiki> ref: <nowiki>http://kubernetes.io/docs/user-guide/compute-resources/</nowiki>
-##
+ <nowiki>##</nowiki> Values for MCP, and the default ones for other containers. RUP ones are under "rup" label.
-## Containers should run as genesys user and cannot use elevated permissions
+ <nowiki>##</nowiki>
-## Pod level security context
+ resourcesMcp:
-podSecurityContext:
+ <nowiki> </nowiki> requests:
-   fsGroup: 500
+ <nowiki> </nowiki>   memory: "200Mi"
-   runAsUser: 500
+ <nowiki> </nowiki>   cpu: "250m"
-   runAsGroup: 500
+ <nowiki> </nowiki>   ephemeral-storage: "1Gi"
-   runAsNonRoot: true
+ <nowiki> </nowiki> limits:
+ <nowiki> </nowiki>   memory: "2Gi"
+ <nowiki> </nowiki>   cpu: "300m"
-## Container security context
+ resourcesDefault:
-securityContext:
+ <nowiki> </nowiki> requests:
-   # fsGroup: 500
+ <nowiki> </nowiki>   memory: "128Mi"
-  runAsUser: 500
+ <nowiki> </nowiki>   cpu: "100m"
-   runAsGroup: 500
+ <nowiki> </nowiki> limits:
-   runAsNonRoot: true
+ <nowiki> </nowiki>   memory: "128Mi"
+ <nowiki> </nowiki>   cpu: "100m"
+ <nowiki> </nowiki> # We usually recommend not to specify default resources and to leave this as a conscious
+ <nowiki> </nowiki> # choice for the user. This also increases chances charts run on environments with little
+ <nowiki> </nowiki> # resources, such as Minikube. If you do want to specify resources, uncomment the following
+ <nowiki> </nowiki> # lines, adjust them as necessary, and remove the curly braces after 'resources:'.
+ <nowiki> </nowiki> # limits:
+ <nowiki> </nowiki> #   cpu: 100m
+ <nowiki> </nowiki> #   memory: 128Mi
+ <nowiki> </nowiki> # requests:
+ <nowiki> </nowiki> #   cpu: 100m
+ <nowiki> </nowiki> #   memory: 128Mi
-## Priority Class
+ <nowiki>##</nowiki> App containers' Security Context
-## ref: https://kubernetes.io/docs/concepts/configuration/pod-priority-preemption/
+ <nowiki>##</nowiki> ref: <nowiki>https://kubernetes.io/docs/tasks/configure-pod-container/security-context/#set-the-security-context-for-a-container</nowiki>
-## NOTE: this is an optional parameter
+ <nowiki>##</nowiki>
-##
+ <nowiki>##</nowiki> Containers should run as genesys user and cannot use elevated permissions
-priorityClassName: system-cluster-critical
+ <nowiki>##</nowiki> Pod level security context
+ podSecurityContext:
+ <nowiki> </nowiki> fsGroup: 500
+ <nowiki> </nowiki> runAsUser: 500
+ <nowiki> </nowiki> runAsGroup: 500
+ <nowiki> </nowiki> runAsNonRoot: true
-# affinity: {}
+ <nowiki>##</nowiki> Container security context
+ securityContext:
+ <nowiki> </nowiki> # fsGroup: 500
+ <nowiki> </nowiki> runAsUser: 500
+ <nowiki> </nowiki> runAsGroup: 500
+ <nowiki> </nowiki> runAsNonRoot: true
-## Node labels for assignment.
+ <nowiki>##</nowiki> Priority Class
-## ref: https://kubernetes.io/docs/user-guide/node-selection/
+ <nowiki>##</nowiki> ref: <nowiki>https://kubernetes.io/docs/concepts/configuration/pod-priority-preemption/</nowiki>
-##
+ <nowiki>##</nowiki> NOTE: this is an optional parameter
-nodeSelector:
+ <nowiki>##</nowiki>
-  #genesysengage.com/nodepool: realtime
+ priorityClassName: <critical-priority-class>
-## Tolerations for assignment.
+ <nowiki>#</nowiki> affinity: {}
-## ref: https://kubernetes.io/docs/concepts/configuration/taint-and-toleration/
-##
-tolerations: []
-  # - key: "kubernetes.azure.com/scalesetpriority"
-  #   operator: "Equal"
-  #   value: "spot"
-  #   effect: "NoSchedule"
-  # - key: "k8s.genesysengage.com/nodepool"
-  #   operator: "Equal"
-  #   value: "compute"
-  #   effect: "NoSchedule"
-  # - key: "kubernetes.azure.com/scalesetpriority"
-  #   operator: "Equal"
-  #   value: "compute"
-  #   effect: "NoSchedule"
-  #- key: "k8s.genesysengage.com/nodepool"
-  #  operator: Exists
-  #  effect: NoSchedule
-## Extra labels
+ <nowiki>##</nowiki> Node labels for assignment.
-## ref: https://kubernetes.io/docs/concepts/overview/working-with-objects/labels/
+ <nowiki>##</nowiki> ref: <nowiki>https://kubernetes.io/docs/user-guide/node-selection/</nowiki>
-##
+ <nowiki>##</nowiki>
-## Use podLabels
+ nodeSelector:
-#labels: {}
+ <nowiki> </nowiki> #genesysengage.com/nodepool: realtime
-## Extra Annotations
+ <nowiki>##</nowiki> Tolerations for assignment.
-## ref: https://kubernetes.io/docs/concepts/overview/working-with-objects/annotations/
+ <nowiki>##</nowiki> ref: <nowiki>https://kubernetes.io/docs/concepts/configuration/taint-and-toleration/</nowiki>
-##
+ <nowiki>##</nowiki>
-## Use podAnnotations
+ tolerations: []
-#annotations: {}
+ <nowiki> </nowiki> # - key: "kubernetes.azure.com/scalesetpriority"
+ <nowiki> </nowiki> #   operator: "Equal"
+ <nowiki> </nowiki> #   value: "spot"
+ <nowiki> </nowiki> #   effect: "NoSchedule"
+ <nowiki> </nowiki> # - key: "k8s.genesysengage.com/nodepool"
+ <nowiki> </nowiki> #   operator: "Equal"
+ <nowiki> </nowiki> #   value: "compute"
+ <nowiki> </nowiki> #   effect: "NoSchedule"
+ <nowiki> </nowiki> # - key: "kubernetes.azure.com/scalesetpriority"
+ <nowiki> </nowiki> #   operator: "Equal"
+ <nowiki> </nowiki> #   value: "compute"
+ <nowiki> </nowiki> #   effect: "NoSchedule"
+ <nowiki> </nowiki> #- key: "k8s.genesysengage.com/nodepool"
+ <nowiki> </nowiki> #  operator: Exists
+ <nowiki> </nowiki> #  effect: NoSchedule
-## Autoscaling Settings
+ <nowiki>##</nowiki> Extra labels
-## Keda can be used as an alternative to HPA only to scale MCPs based on a cron schedule (UTC).
+ <nowiki>##</nowiki> ref: <nowiki>https://kubernetes.io/docs/concepts/overview/working-with-objects/labels/</nowiki>
-## If this is set to true, use Keda for scaling, or use HPA directly.
+ <nowiki>##</nowiki>
-useKeda: true
+ <nowiki>##</nowiki> Use podLabels
+ <nowiki>#</nowiki>labels: {}
-## If Keda is enabled, only the following parameters are supported, and default HPA settings
+ <nowiki>##</nowiki> Extra Annotations
-## will be used within Keda.
+ <nowiki>##</nowiki> ref: <nowiki>https://kubernetes.io/docs/concepts/overview/working-with-objects/annotations/</nowiki>
-keda:
+ <nowiki>##</nowiki>
-  preScaleStart: "0 14 * * *"
+ <nowiki>##</nowiki> Use podAnnotations
-  preScaleEnd: "0 2 * * *"
+ <nowiki>#</nowiki>annotations: {}
-  preScaleDesiredReplicas: 4
-  pollingInterval: 15
-  cooldownPeriod: 300
-## HPA Settings
+ <nowiki>##</nowiki> Autoscaling Settings
-# GVP-42512: PDB issue
+ <nowiki>##</nowiki> Keda can be used as an alternative to HPA only to scale MCPs based on a cron schedule (UTC).
-# Alaways keep the following:
+ <nowiki>##</nowiki> If this is set to true, use Keda for scaling, or use HPA directly.
-# minReplicas >= 2
+ useKeda: true
-# maxUnavailable = 1
-hpa:
-  enabled: false
-  minReplicas: 2
-  maxUnavailable: 1
-  maxReplicas: 4
-  podManagementPolicy: Parallel
-  targetCPUAverageUtilization: 20
-  scaleupPeriod: 15
-  scaleupPods: 4
-  scaleupPercent: 50
-  scaleupStabilizationWindow: 0
-  scaleupPolicy: Max
-  scaledownPeriod: 300
-  scaledownPods: 2
-  scaledownPercent: 10
-  scaledownStabilizationWindow: 3600
-  scaledownPolicy: Min
-## Service/Pod Monitoring Settings
+ <nowiki>##</nowiki> If Keda is enabled, only the following parameters are supported, and default HPA settings
-prometheus:
+ <nowiki>##</nowiki> will be used within Keda.
-  mcp:
+ keda:
-    name: gvp-mcp-snmp
+ <nowiki> </nowiki> preScaleStart: "0 14 * * *"
-    port: 9116
+ <nowiki> </nowiki> preScaleEnd: "0 2 * * *"
+ <nowiki> </nowiki> preScaleDesiredReplicas: 4
+ <nowiki> </nowiki> pollingInterval: 15
+ <nowiki> </nowiki> cooldownPeriod: 300
-  rup:
+ <nowiki>##</nowiki> HPA Settings
-    name: gvp-mcp-rup
+ <nowiki>#</nowiki> GVP-42512: PDB issue
-    port: 8080
+ <nowiki>#</nowiki> Alaways keep the following:
+ <nowiki>#</nowiki> minReplicas >= 2
+ <nowiki>#</nowiki> maxUnavailable = 1
+ hpa:
+ <nowiki> </nowiki> enabled: false
+ <nowiki> </nowiki> minReplicas: 2
+ <nowiki> </nowiki> maxUnavailable: 1
+ <nowiki> </nowiki> maxReplicas: 4
+ <nowiki> </nowiki> podManagementPolicy: Parallel
+ <nowiki> </nowiki> targetCPUAverageUtilization: 20
+ <nowiki> </nowiki> scaleupPeriod: 15
+ <nowiki> </nowiki> scaleupPods: 4
+ <nowiki> </nowiki> scaleupPercent: 50
+ <nowiki> </nowiki> scaleupStabilizationWindow: 0
+ <nowiki> </nowiki> scaleupPolicy: Max
+ <nowiki> </nowiki> scaledownPeriod: 300
+ <nowiki> </nowiki> scaledownPods: 2
+ <nowiki> </nowiki> scaledownPercent: 10
+ <nowiki> </nowiki> scaledownStabilizationWindow: 3600
+ <nowiki> </nowiki> scaledownPolicy: Min
-   podMonitor:
+ <nowiki>##</nowiki> Service/Pod Monitoring Settings
-    enabled: true
+ prometheus:
+ <nowiki> </nowiki> mcp:
+ <nowiki> </nowiki>   name: gvp-mcp-snmp
+ <nowiki> </nowiki>   port: 9116
-grafana:
+ <nowiki> </nowiki> rup:
-   enabled: false
+ <nowiki> </nowiki>   name: gvp-mcp-rup
+ <nowiki> </nowiki>   port: 8080
-  #log:
+ <nowiki> </nowiki> podMonitor:
-  #  name: gvp-mcp-log
+  <nowiki> </nowiki>   enabled: true
-   #  port: 8200
-## Pod Disruption Budget Settings
+ grafana:
-podDisruptionBudget:
+ <nowiki> </nowiki> enabled: false
-  enabled: true
-## Enable network policies or not
+ <nowiki> </nowiki> #log:
-networkPolicies:
+ <nowiki> </nowiki> #  name: gvp-mcp-log
-  enabled: false
+ <nowiki> </nowiki> #  port: 8200
-## DNS configuration options
+ <nowiki>##</nowiki> Pod Disruption Budget Settings
-dnsConfig:
+ podDisruptionBudget:
-  options:
+ <nowiki> </nowiki> enabled: true
-    - name: ndots
-      value: "3"
-## Configuration overrides
+ <nowiki>##</nowiki> Enable network policies or not
-mcpConfig:
+ networkPolicies:
-  # MCP config overrides
+ <nowiki> </nowiki> enabled: false
-  mcp.mpc.numdispatchthreads: 4
-  mcp.log.verbose: "interaction"
-  mcp.mpc.codec: "pcmu pcma telephone-event"
-  mcp.mpc.transcoders: "PCM MP3"
-  mcp.mpc.playcache.enable: 1
-  mcp.fm.http_proxy: ""
-  mcp.fm.https_proxy: ""
-  #MRCP v2 ASR config overrides
+ <nowiki>##</nowiki> DNS configuration options
-  mrcpv2_asr.provision.vrm.client.connectpersetup: true
+ dnsConfig:
-  mrcpv2_asr.provision.vrm.client.disablehotword: false
+ <nowiki> </nowiki> options:
-  mrcpv2_asr.provision.vrm.client.hotkeybasepath: "/usr/local/genesys/mcp/grammar/nuance/hotkey"
+ <nowiki> </nowiki>   - name: ndots
-   mrcpv2_asr.provision.vrm.client.noduplicatedgramuri: true
+ <nowiki> </nowiki>     value: "3"
-  mrcpv2_asr.provision.vrm.client.sendswmsparams: false
-  mrcpv2_asr.provision.vrm.client.transportprotocol: "MRCPv2"
-  mrcpv2_asr.provision.vrm.client.sendloggingtag: true
-  mrcpv2_asr.provision.vrm.client.resource.name: "NuanceASRv2"
-  mrcpv2_asr.provision.vrm.client.resource.uri: "sip:mresources@speech-server-clusterip:5060"
-  mrcpv2_asr.provision.vrm.client.tlscertificatekey: "/usr/local/genesys/mcp/config/x509_certificate.pem"
-  mrcpv2_asr.provision.vrm.client.tlsprivatekey: "/usr/local/genesys/mcp/config/x509_certificate.pem"
-  mrcpv2_asr.provision.vrm.client.tlspassword: ""
-  mrcpv2_asr.provision.vrm.client.tlsprotocoltype: "TLSv1"
-  mrcpv2_asr.provision.vrm.client.confidencescale: 1
-  mrcpv2_asr.provision.vrm.client.sendsessionxml: true
-  mrcpv2_asr.provision.vrm.client.supportfornuance11: true
-  mrcpv2_asr.provision.vrm.client.uniquegramid: true
-  #MRCP v2 TTS config overrides
+ <nowiki>##</nowiki> Configuration overrides
-  mrcpv2_tts.provision.vrm.client.connectpersetup: true
+ mcpConfig:
-  mrcpv2_tts.provision.vrm.client.speechmarkerencoding: "UTF-8"
+ <nowiki> </nowiki> # MCP config overrides
-   mrcpv2_tts.provision.vrm.client.transportprotocol: "MRCPv2"
+ <nowiki> </nowiki> mcp.mpc.numdispatchthreads: 4
-   mrcpv2_tts.provision.vrm.client.sendloggingtag: true
+ <nowiki> </nowiki> mcp.log.verbose: "interaction"
-   mrcpv2_tts.provision.vrm.client.resource.name: "NuanceTTSv2"
+ <nowiki> </nowiki> mcp.mpc.codec: "pcmu pcma telephone-event"
-   mrcpv2_tts.provision.vrm.client.resource.uri: "sip:mresources@speech-server-clusterip:5060"
+ <nowiki> </nowiki> mcp.mpc.transcoders: "PCM MP3"
-   mrcpv2_tts.provision.vrm.client.tlscertificatekey: "/usr/local/genesys/mcp/config/x509_certificate.pem"
+ <nowiki> </nowiki> mcp.mpc.playcache.enable: 1
-   mrcpv2_tts.provision.vrm.client.tlsprivatekey: "/usr/local/genesys/mcp/config/x509_certificate.pem"
+ <nowiki> </nowiki> mcp.fm.http_proxy: ""
-   mrcpv2_tts.provision.vrm.client.tlspassword: ""
+ <nowiki> </nowiki> mcp.fm.https_proxy: ""
-   mrcpv2_tts.provision.vrm.client.tlsprotocoltype: "TLSv1"
+ <nowiki> </nowiki>
-   mrcpv2_tts.provision.vrm.client.nospeechlanguageheader: true
+ # Nexus client configuration.
-   mrcpv2_tts.provision.vrm.client.sendsessionxml: true
+  # !!!  Other than pool.size and resource.uri, no other parameter should be changed.  !!!
-   mrcpv2_tts.provision.vrm.client.supportfornuance11: true
+   nexus_asr1.pool.size: 0
-</source>
+  nexus_asr1.provision.vrm.client.resource.uri: "[\"ws://nexus-production.nexus.svc.cluster.local/nexus/v3/bot/connection\"]"
+   nexus_asr1.provision.vrm.client.resource.type: "ASR"
-===Verify the deployed resources===
+   nexus_asr1.provision.vrm.client.resource.name: "ASRC"
-Verify the deployed resources from Google console/CLI.
+   nexus_asr1.provision.vrm.client.resource.engines: "nexus"
+   nexus_asr1.provision.vrm.client.resource.engine.nexus.audio.codec: "mulaw"
+   nexus_asr1.provision.vrm.client.resource.engine.nexus.audio.samplerate: 8000
+   nexus_asr1.provision.vrm.client.resource.engine.nexus.enableMaxSpeechTimeout: true
+   nexus_asr1.provision.vrm.client.resource.engine.nexus.serviceAccountKey: ""
+   nexus_asr1.provision.vrm.client.resource.privatekey: ""
+   nexus_asr1.provision.vrm.client.resource.proxy: ""
+   nexus_asr1.provision.vrm.client.TransportProtocol: "WEBSOCKET"
+{{!}}}
 |Status=No
 }}
 |PEPageType=45d1441f-dc69-4a17-bd47-af5d811ce167
 }}