Add 'disable_tls' and 'dev_deployment' modifications

[pvannierop]

For local development I introduce the following modifications to the default RADAR-base deployment:

• Disable TLS: this removes the TLS-redirection by the nginx reverse proxy. Also, prevents installation of the cert-manager and lets-encrypt cert resolver components
• Disable monitoring and logging: prevents installation of the prometheus and monitoring/logging sidecar containers and graylog components.
• Local development: Sets the number of brokers of all components to 1 (kafka, minio). Minimizes the JVM memory requirements of memory heavy components. Sets the server name to localhost. Disables atomicInstall.

[keyvaann]

As the number of helmfile related configs have increased I suggest moving all of them to a different root directory, it will make things more clear and more easy to manage.

[pvannierop]

I moved the files to a new directory mods in the root.

[keyvaann]

Can we move the configs that make the apps run only one replica to the base.yaml? As we try to have a minimal working config in the default configuration I think it's good to have them there.

[pvannierop]

I would rather not do that in this PR. I would need to very carefully inspect the consequences because we change default behavior. Would be good to create a new issue for this.

[keyvaann]

Shouldn't this be false?

[pvannierop]

I guess you are right.... Chnaged

[keyvaann]

Aren't these part of RADAR-Base apps? Why are they being disabled?

[pvannierop]

Ah yes, I mistook it for graylog... updated.

[keyvaann]

I think there should be a separate flag for disabling logging and monitoring and it should be true since it doesn't need to be enabled for a simple default installation.

[pvannierop]

I disabled logging and monitoring in the default deployment. We need to be careful here, because this change is not backwards compatible. We should provide a migration note here?

[keyvaann]

Yes it's good to mention in release notes to manually enable these components during upgrade.

[pvannierop]

I also created a separate flag to disable monitoring and logging.

[keyvaann]

Closes #12

[keyvaann]

Do you think it would be good to move these files helmfile related files to a separate directory as well? Probably something like helmfile_configs to put all of it's configuration related files in it.

[pvannierop]

I think this would make sense yes. Should we do this now? We have to make sure all the scripts in the /bin folder play nice with this change.

[keyvaann]

It would be probably better in the long run make things more organized but we can do it later if it is easier.

[keyvaann]

To reduce confusion I think these 2 lines should either be enable_tls or disable_tls

[pvannierop]

It is a matter of API design, I guess. The config file disables tls and is, therefore, correctly named. What are the config options that we would like to present:

A:

# Enable logging and monitoring
enable_logging_monitoring: false
# Enable TLS redirection and retrieval of Let's Encrypt certificates.
# Can be disabled when TLS termination is handled upstream of the on-cluster Nginx reverse proxy.
enable_tls: true

B:

# Disable logging and monitoring
disable_logging_monitoring: true
# Disable TLS redirection and retrieval of Let's Encrypt certificates.
# Can be disabled when TLS termination is handled upstream of the on-cluster Nginx reverse proxy.
disable_tls: false

I am fine either way.

[keyvaann]

If there is a /mods/disable_tls.yaml and I think the variable should also be disable_tls