Skip to main content Link Menu Expand (external link) Document Search Copy Copied

Policy properties

Built-in property names can be used in policies. See Properties and Constraints for an explanation of properties and constraints in general. For the node properties, the agent will introspect the node for the values of those properties. The user-defined policies (deployment policy, model policy, service policy) need to add constraints on these properties if needed.

Built-in properties

Built-in node policy properties

NameDescriptionPossible values
openhorizon.cputhe number of CPUs (from /proc/cpuinfo file)int for example 4
openhorizon.memorythe amount of memory in MBs (from /proc/meminfo)int for example 1024
openhorizon.archthe hardware architecture of the node (from GOARCH)string for example amd64
openhorizon.hardwareIdthe device serial number if it can be found (from /proc/cpuinfo). A generated Id otherwise.string
openhorizon.allowPrivilegeda property set to determine if privileged services may be run on this device. Can be set by user, default is false. This is the only writable node propertyboolean
openhorizon.kubernetesVersionKubernetes version of the cluster the agent is running instring for example 1.18
openhorizon.kubernetesNamespaceKubernetes cluster namespace that the cluster agent is running instring for example openhorizon-agent
openhorizon.kubernetesNamespaceScopedIf the cluster agent is with namespace scopeboolean
openhorizon.operatingSystemthe operating system the agent is running on. If the agent is containerized, this will be the host osstring for example ubuntu
openhorizon.containerizedthis indicates if the agent is running in a container or nativelyboolean

**Note: Provided properties (except for allowPrivileged) are read-only; the system ignores node policy updates and built-in properties changes.

Built-in service policy properties

NameDescriptionPossible values
openhorizon.service.urlthe unique name of the service (comes from url field of service definition)string for example https://someOrg/someService
openhorizon.service.namethe unique name of the service (comes from url field of service definition)string for example MyService
openhorizon.service.orgthe multi-tenant org where the service is defined (comes from org field of service definition)string for example MyOrg
openhorizon.service.versionthe version of a service using the same semantic version syntax (comes from version field of service definition)string for example 1.1.1
openhorizon.service.archthe hardware architecture of the node this service can run on (comes from arch field of service definition)string for example amd64
openhorizon.allowPrivilegeddoes the service use workloads that require privileged mode or net==host to run. Can be set by user. It is an error to set it to false if service introspection indicates that the service uses privileged features. (comes from deployment.services.someServiceName.privileged field of service definition)boolean