VictoriaMetrics Operator #

certManager:
    enabled: false
    issuer: {}
enabled: true
enabledCRDValidation:
    vlogs: true
    vmagent: true
    vmalert: true
    vmalertmanager: true
    vmalertmanagerconfig: true
    vmauth: true
    vmcluster: true
    vmrule: true
    vmsingle: true
    vmuser: true
keepTLSSecret: true
policy: Fail
tls:
    caCert: null
    cert: null
    key: null

Configures resource validation

enabled: false
issuer: {}

Enables custom ca bundle, if you are not using cert-manager. In case of custom ca, you have to create secret - {chart-name}-validation with keys: tls.key, tls.crt, ca.crt

false

Enables cert creation and injection by cert-manager.

{}

If needed, provide own issuer. Operator will create self-signed if empty.

true

Enables validation webhook.

Fail

What to do in case, when operator not available to validate request.

{}

Pod affinity

{}

Annotations to be added to the all resources

false

Tells helm to clean up all the vm resources under this release’s namespace when uninstalling

pullPolicy: IfNotPresent
repository: bitnami/kubectl
tag: ""

Image configuration for CRD cleanup Job

limits:
    cpu: 500m
    memory: 256Mi
requests:
    cpu: 100m
    memory: 56Mi

Cleanup hook resources

true

manages CRD creation. Disables CRD creation only in combination with crds.plain: false due to helm dependency conditions limitation

false

check if plain or templated CRDs should be created. with this option set to false, all CRDs will be rendered from templates. with this option set to true, all CRDs are immutable and require manual upgrade.

[]

Extra settings for the operator deployment. Full list here

[]

Specify alternative source for env variables

{}

Operator container additional commandline arguments

[]

Extra containers to run in a pod with operator

[]

Additional hostPath mounts

{}

Labels to be added to the all resources

[]

Add extra specs dynamically to this chart

[]

Extra Volume Mounts for the container

[]

Extra Volumes for the pod

""

Overrides the full name of server component resources

cluster.local.

K8s cluster domain suffix, uses for building storage pods’ FQDN. Details are here

openshift:
    adaptSecurityContext: auto

Openshift security context compatibility configuration

""

Image registry, that can be shared across multiple helm charts

[]

Image pull secrets, that can be shared across multiple helm charts

pullPolicy: IfNotPresent
registry: ""
repository: victoriametrics/operator
tag: ""
variant: ""

operator image configuration

IfNotPresent

Image pull policy

""

Image registry

victoriametrics/operator

Image repository

""

Image tag override Chart.AppVersion

[]

Secret to pull images

{}

Operator lifecycle. See this article for details.

info

VM operator log level. Possible values: info and error.

""

Override chart name

{}

Pod’s node selector. Details are here

false

By default, operator converts prometheus-operator objects.

false

Enables ownership reference for converted prometheus-operator objects, it will remove corresponding victoria-metrics objects in case of deletion prometheus one.

false

Compare-options and sync-options for prometheus objects converted by operator for properly use with ArgoCD

false

Enables custom config-reloader, bundled with operator. It should reduce vmagent and vmauth config sync-time and make it predictable.

enabled: false
labels: {}

See kubectl explain poddisruptionbudget.spec for more or check these docs

{}

extra Labels for Pods only

enabled: true

Pod’s security context. Details are here

failureThreshold: 3
initialDelaySeconds: 5
periodSeconds: 15
tcpSocket:
    port: probe
timeoutSeconds: 5

Liveness probe

failureThreshold: 3
httpGet:
    port: probe
initialDelaySeconds: 5
periodSeconds: 15
timeoutSeconds: 5

Readiness probe

{}

Startup probe

enabled: true
labels:
    admin:
        rbac.authorization.k8s.io/aggregate-to-admin: "true"
    view:
        rbac.authorization.k8s.io/aggregate-to-view: "true"

Create aggregated clusterRoles for CRD readonly and admin permissions

admin:
    rbac.authorization.k8s.io/aggregate-to-admin: "true"
view:
    rbac.authorization.k8s.io/aggregate-to-view: "true"

Labels attached to according clusterRole

true

Specifies whether the RBAC resources should be created

1

Number of operator replicas

{}

Resource object

enabled: true

Security context to be added to server pods

{}

Service annotations

""

Service ClusterIP

""

Service external IPs. Check here for details

""

Service external traffic policy. Check here for details

""

Health check node port for a service. Check here for details

[]

List of service IP families. Check here for details.

""

Service IP family policy. Check here for details.

{}

Service labels

""

Service load balacner IP

[]

Load balancer source range

8080

Service port

ClusterIP

Service type

9443

Service webhook port

true

Specifies whether a service account should be created

""

The name of the service account to use. If not set and create is true, a name is generated using the fullname template

annotations: {}
basicAuth: {}
enabled: false
extraLabels: {}
interval: ""
relabelings: []
scheme: ""
scrapeTimeout: ""
tlsConfig: {}

Configures monitoring with serviceScrape. VMServiceScrape must be pre-installed

30

Graceful pod termination timeout. See this article for details.

[]

Array of tolerations object. Spec is here

[]

Pod Topology Spread Constraints. Spec is here

[]

By default, the operator will watch all the namespaces If you want to override this behavior, specify the namespace. Operator supports multiple namespaces for watching.