Postgresql¶
There are various customizations you can do to tailor the deployment of OpenStack Postgresql. You can find those below.
General Parameters¶
conf.backup.base_path
Type: string
Description:
“/var/backup”
conf.backup.days_to_keep
Type: int
Description:
3
conf.backup.enabled
Type: bool
Description:
false
conf.backup.pg_dumpall_options
Type: string
Description:
“–inserts –clean”
conf.backup.remote_backup.container_name
Type: string
Description:
“postgresql”
conf.backup.remote_backup.days_to_keep
Type: int
Description:
14
conf.backup.remote_backup.delay_range.max
Type: int
Description:
60
conf.backup.remote_backup.delay_range.min
Type: int
Description:
30
conf.backup.remote_backup.enabled
Type: bool
Description:
false
conf.backup.remote_backup.number_of_retries
Type: int
Description:
5
conf.backup.remote_backup.storage_policy
Type: string
Description:
“default-placement”
conf.backup.remote_backup.throttle_backups.container_name
Type: string
Description:
“throttle-backups-manager”
conf.backup.remote_backup.throttle_backups.enabled
Type: bool
Description:
false
conf.backup.remote_backup.throttle_backups.lock_expire_after
Type: int
Description:
7200
conf.backup.remote_backup.throttle_backups.retry_after
Type: int
Description:
3600
conf.backup.remote_backup.throttle_backups.sessions_limit
Type: int
Description:
480
conf.debug
Type: bool
Description:
false
conf.exporter.queries.pg_postmaster.master
Type: bool
Description:
true
conf.exporter.queries.pg_postmaster.metrics[0].start_time_seconds.description
Type: string
Description:
“Time at which postmaster started”
conf.exporter.queries.pg_postmaster.metrics[0].start_time_seconds.usage
Type: string
Description:
“GAUGE”
conf.exporter.queries.pg_postmaster.query
Type: string
Description:
“SELECT pg_postmaster_start_time as start_time_seconds from pg_postmaster_start_time()”
conf.pg_hba
Type: string
Description:
conf.postgresql.archive_command
Type: string
Description:
“test ! -f /var/lib/archive/%f && gzip < %p > /var/lib/archive/%f”
conf.postgresql.archive_mode
Type: string
Description:
“on”
conf.postgresql.cluster_name
Type: string
Description:
“postgresql”
conf.postgresql.datestyle
Type: string
Description:
“iso, mdy”
conf.postgresql.external_pid_file
Type: string
Description:
“/tmp/postgres.pid”
conf.postgresql.fsync
Type: string
Description:
“on”
conf.postgresql.hba_file
Type: string
Description:
“/tmp/pg_hba.conf”
conf.postgresql.ident_file
Type: string
Description:
“/tmp/pg_ident.conf”
conf.postgresql.listen_addresses
Type: string
Description:
“0.0.0.0”
conf.postgresql.log_checkpoints
Type: string
Description:
“on”
conf.postgresql.log_connections
Type: string
Description:
“on”
conf.postgresql.log_disconnections
Type: string
Description:
“on”
conf.postgresql.log_line_prefix
Type: string
Description:
“postgresql: %t [%p]: [%l-1] %c %x %d %u %a %h %m “
conf.postgresql.log_lock_waits
Type: string
Description:
“on”
conf.postgresql.log_temp_files
Type: string
Description:
“0”
conf.postgresql.log_timezone
Type: string
Description:
“UTC”
conf.postgresql.max_connections
Type: string
Description:
“1000”
conf.postgresql.max_locks_per_transaction
Type: string
Description:
“64”
conf.postgresql.max_prepared_transactions
Type: string
Description:
“0”
conf.postgresql.max_wal_senders
Type: string
Description:
“16”
conf.postgresql.max_worker_processes
Type: string
Description:
“10”
conf.postgresql.port
Type: string
Description:
“5432”
conf.postgresql.shared_buffers
Type: string
Description:
“2GB”
conf.postgresql.ssl
Type: string
Description:
“off”
conf.postgresql.ssl_ca_file
Type: string
Description:
“/server_certs/ca.crt”
conf.postgresql.ssl_cert_file
Type: string
Description:
“/server_certs/tls.crt”
conf.postgresql.ssl_ciphers
Type: string
Description:
“TLSv1.2:!aNULL”
conf.postgresql.ssl_key_file
Type: string
Description:
“/server_certs/tls.key”
conf.postgresql.tcp_keepalives_idle
Type: string
Description:
“900”
conf.postgresql.tcp_keepalives_interval
Type: string
Description:
“100”
conf.postgresql.timezone
Type: string
Description:
“UTC”
conf.postgresql.track_commit_timestamp
Type: string
Description:
“on”
conf.postgresql.track_functions
Type: string
Description:
“all”
conf.postgresql.wal_keep_size
Type: string
Description:
“256”
conf.postgresql.wal_level
Type: string
Description:
“hot_standby”
conf.postgresql.wal_log_hints
Type: string
Description:
“on”
dependencies.dynamic.common.local_image_registry.jobs[0]
Type: string
Description:
“postgresql-image-repo-sync”
dependencies.dynamic.common.local_image_registry.services[0].endpoint
Type: string
Description:
“node”
dependencies.dynamic.common.local_image_registry.services[0].service
Type: string
Description:
“local_image_registry”
dependencies.static.image_repo_sync.services[0].endpoint
Type: string
Description:
“internal”
dependencies.static.image_repo_sync.services[0].service
Type: string
Description:
“local_image_registry”
dependencies.static.postgresql_backup.jobs[0]
Type: string
Description:
“postgresql-ks-user”
dependencies.static.postgresql_backup.services[0].endpoint
Type: string
Description:
“internal”
dependencies.static.postgresql_backup.services[0].service
Type: string
Description:
“postgresql”
dependencies.static.prometheus_postgresql_exporter.jobs[0]
Type: string
Description:
“prometheus-postgresql-exporter-create-user”
dependencies.static.prometheus_postgresql_exporter.services[0].endpoint
Type: string
Description:
“internal”
dependencies.static.prometheus_postgresql_exporter.services[0].service
Type: string
Description:
“postgresql”
dependencies.static.prometheus_postgresql_exporter_create_user.services[0].endpoint
Type: string
Description:
“internal”
dependencies.static.prometheus_postgresql_exporter_create_user.services[0].service
Type: string
Description:
“postgresql”
dependencies.static.tests.services[0].endpoint
Type: string
Description:
“internal”
dependencies.static.tests.services[0].service
Type: string
Description:
“postgresql”
endpoints.cluster_domain_suffix
Type: string
Description:
“cluster.local”
endpoints.identity.auth.admin.auth_url
Type: string
Description:
nil
endpoints.identity.auth.admin.password
Type: string
Description:
“password”
endpoints.identity.auth.admin.project_domain_name
Type: string
Description:
“default”
endpoints.identity.auth.admin.project_name
Type: string
Description:
“admin”
endpoints.identity.auth.admin.region_name
Type: string
Description:
“RegionOne”
endpoints.identity.auth.admin.user_domain_name
Type: string
Description:
“default”
endpoints.identity.auth.admin.username
Type: string
Description:
“admin”
endpoints.identity.auth.postgresql.auth_url
Type: string
Description:
nil
endpoints.identity.auth.postgresql.password
Type: string
Description:
“password”
endpoints.identity.auth.postgresql.project_domain_name
Type: string
Description:
“service”
endpoints.identity.auth.postgresql.project_name
Type: string
Description:
“service”
endpoints.identity.auth.postgresql.region_name
Type: string
Description:
“RegionOne”
endpoints.identity.auth.postgresql.role
Type: string
Description:
“admin”
endpoints.identity.auth.postgresql.user_domain_name
Type: string
Description:
“service”
endpoints.identity.auth.postgresql.username
Type: string
Description:
“postgresql-backup-user”
endpoints.identity.host_fqdn_override.default
Type: string
Description:
nil
endpoints.identity.hosts.default
Type: string
Description:
“keystone”
endpoints.identity.hosts.internal
Type: string
Description:
“keystone-api”
endpoints.identity.name
Type: string
Description:
“backup-storage-auth”
endpoints.identity.namespace
Type: string
Description:
“openstack”
endpoints.identity.path.default
Type: string
Description:
“/v3”
endpoints.identity.port.api.default
Type: int
Description:
80
endpoints.identity.port.api.internal
Type: int
Description:
5000
endpoints.identity.scheme.default
Type: string
Description:
“http”
endpoints.local_image_registry.host_fqdn_override.default
Type: string
Description:
nil
endpoints.local_image_registry.hosts.default
Type: string
Description:
“localhost”
endpoints.local_image_registry.hosts.internal
Type: string
Description:
“docker-registry”
endpoints.local_image_registry.hosts.node
Type: string
Description:
“localhost”
endpoints.local_image_registry.name
Type: string
Description:
“docker-registry”
endpoints.local_image_registry.namespace
Type: string
Description:
“docker-registry”
endpoints.local_image_registry.port.registry.node
Type: int
Description:
5000
endpoints.oci_image_registry.auth.enabled
Type: bool
Description:
false
endpoints.oci_image_registry.auth.postresql.password
Type: string
Description:
“password”
endpoints.oci_image_registry.auth.postresql.username
Type: string
Description:
“postresql”
endpoints.oci_image_registry.host_fqdn_override.default
Type: string
Description:
nil
endpoints.oci_image_registry.hosts.default
Type: string
Description:
“localhost”
endpoints.oci_image_registry.name
Type: string
Description:
“oci-image-registry”
endpoints.oci_image_registry.namespace
Type: string
Description:
“oci-image-registry”
endpoints.oci_image_registry.port.registry.default
Type: string
Description:
nil
endpoints.postgresql.auth.admin.password
Type: string
Description:
“password”
endpoints.postgresql.auth.admin.username
Type: string
Description:
“postgres”
endpoints.postgresql.auth.audit.password
Type: string
Description:
“password”
endpoints.postgresql.auth.audit.username
Type: string
Description:
“audit”
endpoints.postgresql.auth.exporter.password
Type: string
Description:
“psql_exp_pass”
endpoints.postgresql.auth.exporter.username
Type: string
Description:
“psql_exporter”
endpoints.postgresql.host_fqdn_override.default
Type: string
Description:
nil
endpoints.postgresql.hosts.default
Type: string
Description:
“postgresql”
endpoints.postgresql.path
Type: string
Description:
nil
endpoints.postgresql.port.postgresql.default
Type: int
Description:
5432
endpoints.postgresql.scheme
Type: string
Description:
“postgresql”
endpoints.postgresql_restapi.host_fqdn_override.default
Type: string
Description:
nil
endpoints.postgresql_restapi.hosts.default
Type: string
Description:
“postgresql-restapi”
endpoints.postgresql_restapi.path
Type: string
Description:
nil
endpoints.postgresql_restapi.port.restapi.default
Type: int
Description:
8008
endpoints.postgresql_restapi.scheme
Type: string
Description:
“postgresql”
endpoints.prometheus_postgresql_exporter.host_fqdn_override.default
Type: string
Description:
nil
endpoints.prometheus_postgresql_exporter.hosts.default
Type: string
Description:
“postgresql-exporter”
endpoints.prometheus_postgresql_exporter.namespace
Type: string
Description:
nil
endpoints.prometheus_postgresql_exporter.path.default
Type: string
Description:
“/metrics”
endpoints.prometheus_postgresql_exporter.port.metrics.default
Type: int
Description:
9187
endpoints.prometheus_postgresql_exporter.scheme.default
Type: string
Description:
“http”
images.local_registry.active
Type: bool
Description:
false
images.local_registry.exclude[0]
Type: string
Description:
“dep_check”
images.local_registry.exclude[1]
Type: string
Description:
“image_repo_sync”
images.pull_policy
Type: string
Description:
“IfNotPresent”
images.tags.dep_check
Type: string
Description:
“quay.io/airshipit/kubernetes-entrypoint:latest-ubuntu_focal”
images.tags.image_repo_sync
Type: string
Description:
“docker.io/library/docker:17.07.0”
images.tags.ks_user
Type: string
Description:
“docker.io/openstackhelm/heat:2024.1-ubuntu_jammy”
images.tags.postgresql
Type: string
Description:
“docker.io/library/postgres:14.5”
images.tags.postgresql_backup
Type: string
Description:
“quay.io/airshipit/porthole-postgresql-utility:latest-ubuntu_jammy”
images.tags.prometheus_postgresql_exporter
Type: string
Description:
“docker.io/wrouesnel/postgres_exporter:v0.4.6”
images.tags.prometheus_postgresql_exporter_create_user
Type: string
Description:
“docker.io/library/postgres:14.5”
jobs.ks_user.activeDeadlineSeconds
Type: int
Description:
0
jobs.ks_user.backoffLimit
Type: int
Description:
6
jobs.postgresql_backup.activeDeadlineSeconds
Type: int
Description:
0
jobs.postgresql_backup.backoffLimit
Type: int
Description:
6
jobs.postgresql_backup.cron
Type: string
Description:
“0 0 * * *”
jobs.postgresql_backup.history.failed
Type: int
Description:
1
jobs.postgresql_backup.history.success
Type: int
Description:
3
labels.job.node_selector_key
Type: string
Description:
“openstack-control-plane”
labels.job.node_selector_value
Type: string
Description:
“enabled”
labels.prometheus_postgresql_exporter.node_selector_key
Type: string
Description:
“openstack-control-plane”
labels.prometheus_postgresql_exporter.node_selector_value
Type: string
Description:
“enabled”
labels.server.node_selector_key
Type: string
Description:
“openstack-control-plane”
labels.server.node_selector_value
Type: string
Description:
“enabled”
labels.test.node_selector_value
Type: string
Description:
“enabled”
labels.test.node_selectory_key
Type: string
Description:
“openstack-control-plane”
manifests.certificates
Type: bool
Description:
false
manifests.configmap_bin
Type: bool
Description:
true
manifests.configmap_etc
Type: bool
Description:
true
manifests.cron_job_postgresql_backup
Type: bool
Description:
false
manifests.job_image_repo_sync
Type: bool
Description:
true
manifests.job_ks_user
Type: bool
Description:
false
manifests.monitoring.prometheus.configmap_bin
Type: bool
Description:
true
manifests.monitoring.prometheus.configmap_etc
Type: bool
Description:
true
manifests.monitoring.prometheus.deployment_exporter
Type: bool
Description:
true
manifests.monitoring.prometheus.job_user_create
Type: bool
Description:
true
manifests.monitoring.prometheus.secret_etc
Type: bool
Description:
true
manifests.monitoring.prometheus.service_exporter
Type: bool
Description:
true
manifests.network_policy
Type: bool
Description:
false
manifests.pvc_backup
Type: bool
Description:
false
manifests.secret_admin
Type: bool
Description:
true
manifests.secret_audit
Type: bool
Description:
true
manifests.secret_backup_restore
Type: bool
Description:
false
manifests.secret_etc
Type: bool
Description:
true
manifests.secret_registry
Type: bool
Description:
true
manifests.service
Type: bool
Description:
true
manifests.statefulset
Type: bool
Description:
true
monitoring.prometheus.enabled
Type: bool
Description:
false
monitoring.prometheus.postgresql_exporter.scrape
Type: bool
Description:
true
network_policy.postgresql.egress[0]
Type: object
Description:
{}
network_policy.postgresql.ingress[0]
Type: object
Description:
{}
pod.affinity.anti.topologyKey.default
Type: string
Description:
“kubernetes.io/hostname”
pod.affinity.anti.type.default
Type: string
Description:
“preferredDuringSchedulingIgnoredDuringExecution”
pod.affinity.anti.weight.default
Type: int
Description:
10
pod.lifecycle.termination_grace_period.prometheus_postgresql_exporter.timeout
Type: int
Description:
30
pod.lifecycle.termination_grace_period.server.timeout
Type: int
Description:
180
pod.lifecycle.upgrades.deployments.pod_replacement_strategy
Type: string
Description:
“RollingUpdate”
pod.lifecycle.upgrades.deployments.revision_history
Type: int
Description:
3
pod.lifecycle.upgrades.deployments.rolling_update.max_surge
Type: int
Description:
3
pod.lifecycle.upgrades.deployments.rolling_update.max_unavailable
Type: int
Description:
1
pod.lifecycle.upgrades.statefulsets.partition
Type: int
Description:
0
pod.lifecycle.upgrades.statefulsets.pod_replacement_strategy
Type: string
Description:
“OnDelete”
pod.probes.server.postgresql.liveness.enabled
Type: bool
Description:
true
pod.probes.server.postgresql.liveness.params.failureThreshold
Type: int
Description:
10
pod.probes.server.postgresql.liveness.params.initialDelaySeconds
Type: int
Description:
30
pod.probes.server.postgresql.liveness.params.timeoutSeconds
Type: int
Description:
5
pod.probes.server.postgresql.readiness.enabled
Type: bool
Description:
false
pod.probes.server.postgresql.readiness.params.failureThreshold
Type: int
Description:
10
pod.probes.server.postgresql.readiness.params.initialDelaySeconds
Type: int
Description:
30
pod.probes.server.postgresql.readiness.params.timeoutSeconds
Type: int
Description:
5
pod.replicas.prometheus_postgresql_exporter
Type: int
Description:
1
pod.replicas.server
Type: int
Description:
1
pod.resources.enabled
Type: bool
Description:
false
pod.resources.jobs.image_repo_sync.limits.cpu
Type: string
Description:
“2000m”
pod.resources.jobs.image_repo_sync.limits.memory
Type: string
Description:
“1024Mi”
pod.resources.jobs.image_repo_sync.requests.cpu
Type: string
Description:
“100m”
pod.resources.jobs.image_repo_sync.requests.memory
Type: string
Description:
“128Mi”
pod.resources.jobs.ks_user.limits.cpu
Type: string
Description:
“2000m”
pod.resources.jobs.ks_user.limits.memory
Type: string
Description:
“1024Mi”
pod.resources.jobs.ks_user.requests.cpu
Type: string
Description:
“100m”
pod.resources.jobs.ks_user.requests.memory
Type: string
Description:
“128Mi”
pod.resources.jobs.postgresql_backup.limits.cpu
Type: string
Description:
“2000m”
pod.resources.jobs.postgresql_backup.limits.memory
Type: string
Description:
“1024Mi”
pod.resources.jobs.postgresql_backup.requests.cpu
Type: string
Description:
“100m”
pod.resources.jobs.postgresql_backup.requests.memory
Type: string
Description:
“128Mi”
pod.resources.jobs.prometheus_postgresql_exporter_create_user.limits.cpu
Type: string
Description:
“2000m”
pod.resources.jobs.prometheus_postgresql_exporter_create_user.limits.memory
Type: string
Description:
“1024Mi”
pod.resources.jobs.prometheus_postgresql_exporter_create_user.requests.cpu
Type: string
Description:
“100m”
pod.resources.jobs.prometheus_postgresql_exporter_create_user.requests.memory
Type: string
Description:
“128Mi”
pod.resources.prometheus_postgresql_exporter.limits.cpu
Type: string
Description:
“2000m”
pod.resources.prometheus_postgresql_exporter.limits.memory
Type: string
Description:
“1024Mi”
pod.resources.prometheus_postgresql_exporter.requests.cpu
Type: string
Description:
“500m”
pod.resources.prometheus_postgresql_exporter.requests.memory
Type: string
Description:
“128Mi”
pod.resources.server.limits.cpu
Type: string
Description:
“2000m”
pod.resources.server.limits.memory
Type: string
Description:
“1024Mi”
pod.resources.server.requests.cpu
Type: string
Description:
“100m”
pod.resources.server.requests.memory
Type: string
Description:
“128Mi”
pod.resources.test.limits.cpu
Type: string
Description:
“2000m”
pod.resources.test.limits.memory
Type: string
Description:
“1024Mi”
pod.resources.test.requests.cpu
Type: string
Description:
“100m”
pod.resources.test.requests.memory
Type: string
Description:
“128Mi”
pod.security_context.create_user.container.prometheus_postgresql_exporter_create_user.allowPrivilegeEscalation
Type: bool
Description:
false
pod.security_context.create_user.container.prometheus_postgresql_exporter_create_user.readOnlyRootFilesystem
Type: bool
Description:
true
pod.security_context.create_user.pod.runAsUser
Type: int
Description:
65534
pod.security_context.postgresql_backup.container.backup_perms.readOnlyRootFilesystem
Type: bool
Description:
true
pod.security_context.postgresql_backup.container.backup_perms.runAsUser
Type: int
Description:
0
pod.security_context.postgresql_backup.container.postgresql_backup.allowPrivilegeEscalation
Type: bool
Description:
false
pod.security_context.postgresql_backup.container.postgresql_backup.readOnlyRootFilesystem
Type: bool
Description:
true
pod.security_context.postgresql_backup.container.postgresql_backup.runAsUser
Type: int
Description:
65534
pod.security_context.postgresql_backup.pod.runAsUser
Type: int
Description:
65534
pod.security_context.prometheus_postgresql_exporter.container.postgresql_exporter.allowPrivilegeEscalation
Type: bool
Description:
false
pod.security_context.prometheus_postgresql_exporter.container.postgresql_exporter.readOnlyRootFilesystem
Type: bool
Description:
true
pod.security_context.prometheus_postgresql_exporter.pod.runAsUser
Type: int
Description:
65534
pod.security_context.server.container.postgresql.allowPrivilegeEscalation
Type: bool
Description:
false
pod.security_context.server.container.postgresql.readOnlyRootFilesystem
Type: bool
Description:
true
pod.security_context.server.container.set_volume_perms.readOnlyRootFilesystem
Type: bool
Description:
true
pod.security_context.server.container.set_volume_perms.runAsUser
Type: int
Description:
0
pod.security_context.server.pod.fsGroup
Type: int
Description:
999
pod.security_context.server.pod.runAsUser
Type: int
Description:
999
release_group
Type: string
Description:
nil
secrets.identity.admin
Type: string
Description:
“keystone-admin-user”
secrets.identity.postgresql
Type: string
Description:
“postgresql-backup-user”
secrets.oci_image_registry.postgresql
Type: string
Description:
“postgresql-oci-image-registry-key”
secrets.postgresql.admin
Type: string
Description:
“postgresql-admin”
secrets.postgresql.audit
Type: string
Description:
“postgresql-audit”
secrets.postgresql.backup_restore
Type: string
Description:
“postgresql-backup-restore”
secrets.postgresql.exporter
Type: string
Description:
“postgresql-exporter”
secrets.postgresql.tls.server.internal
Type: string
Description:
“postgresql-tls-direct”
storage.archive.archive_limit
Type: int
Description:
60
storage.archive.mount_path
Type: string
Description:
“/var/lib/archive”
storage.archive_pvc.class_name
Type: string
Description:
“general”
storage.archive_pvc.class_path
Type: string
Description:
“volume.beta.kubernetes.io/storage-class”
storage.archive_pvc.size
Type: string
Description:
“5Gi”
storage.host.host_path
Type: string
Description:
“/data/openstack-helm/postgresql”
storage.mount.path
Type: string
Description:
“/var/lib/postgresql”
storage.mount.subpath
Type: string
Description:
“.”
storage.pvc.class_name
Type: string
Description:
“general”
storage.pvc.class_path
Type: string
Description:
“volume.beta.kubernetes.io/storage-class”
storage.pvc.enabled
Type: bool
Description:
true
storage.pvc.size
Type: string
Description:
“5Gi”
volume.backup.class_name
Type: string
Description:
“general”
volume.backup.enabled
Type: bool
Description:
true
volume.backup.size
Type: string
Description:
“5Gi”
