Configuration Reference
Helm Values
global:
imageRegistry: "ghcr.io/shanedolphin/avons-corners"
gateway:
replicaCount: 3
service:
type: LoadBalancer
port: 4600
autoscaling:
enabled: true
minReplicas: 3
maxReplicas: 20
targetCPUUtilizationPercentage: 70
auth:
replicaCount: 3
logLevel: info
ca:
replicaCount: 2
persistence:
enabled: true
size: 10Gi
storageClass: "gp3"
hsm:
enabled: true
provider: "aws-cloudhsm"
pulse:
replicaCount: 3
pulseInterval: "10s"
tokenRotationInterval: "30s"
policyEngine:
replicaCount: 3
adminApi:
replicaCount: 2
ingress:
enabled: true
className: nginx
annotations:
cert-manager.io/cluster-issuer: "letsencrypt-prod"
hosts:
- host: admin.avon.example.com
paths:
- path: /
pathType: Prefix
tls:
- secretName: admin-tls
hosts:
- admin.avon.example.com
Environment Variables
| Variable | Default | Description |
|---|
AVON_LOG_LEVEL | info | Logging level: trace, debug, info, warn, error |
AVON_GRPC_PORT | Service-specific | gRPC listen port |
AVON_HEALTH_PORT | 8080 | Health check endpoint port |
AVON_METRICS_PORT | 9090 | Prometheus metrics port |
AVON_PULSE_INTERVAL | 10s | Agent heartbeat interval |
AVON_TOKEN_ROTATION_INTERVAL | 30s | Session token rotation period |
DATABASE_URL | — | PostgreSQL connection string |
REDIS_URL | — | Redis connection string |
JWT_SECRET | — | Token signing secret (minimum 32 characters) |
Resource Allocation by Environment
| Environment | Gateway | Auth | CA | Pulse | Policy Engine | Admin API |
|---|
| Development | 50m / 64Mi | 50m / 64Mi | 50m / 64Mi | 50m / 64Mi | 50m / 64Mi | 50m / 64Mi |
| Staging | 100m / 128Mi | 100m / 128Mi | 100m / 128Mi | 100m / 128Mi | 100m / 128Mi | 100m / 128Mi |
| Production | 500m / 512Mi | 250m / 256Mi | 250m / 256Mi | 250m / 256Mi | 250m / 256Mi | 250m / 256Mi |