4 KiB
4 KiB
Running a Calckey server with Kubernetes and Helm
There is a Helm chart directory found here that you can use to deploy Calckey to a Kubernetes cluster
Basic Usage
- Copy the example helm values file:
cp .config/helm_values_example.yml .config/helm_values.yml
- Edit your
.config/helm_values.ymlto match your needs. See chart default values for all possible options. At a minimum, update the following fields:
calckey:
domain: example.tld
ingress:
hosts:
- host: example.tld
paths:
- path: /
pathType: ImplementationSpecific
tls:
- secretName: example-tld-certificate
hosts:
- example.tld
postgresql:
auth:
password: CHANGEME
postgresPassword: CHANGEME
primary:
persistence:
enabled: true
storageClass: example-storage-class
redis:
auth:
password: CHANGEME
master:
persistence:
storageClass: example-storage-class
- Update helm dependencies:
cd charts/calckey
helm dependency list $dir 2> /dev/null | tail +2 | head -n -1 | awk '{ print "helm repo add " $1 " " $3 }' | while read cmd; do $cmd; done;
cd ../../
- Create the calckey helm release (also used to update an existing deployment):
helm upgrade \
--install \
--namespace calckey \
--create-namespace \
calckey charts/calckey/ \
-f .config/helm_values.yml
- Watch your calckey server spin up:
kubectl -n calckey get po -w
-
Any time you make changes to
.config/helm_values.yml, re-run the helm upgrade command in step 4 to apply the changes. -
Enjoy!
Advanced Usage
Connect to external PostgreSQL, Redis, or Elasticsearch
Edit .config/helm_values.yml to disable the built-in update the settings to meet your needs:
postgresql:
enabled: false
hostname: database.example.tld
port: 5432
auth:
database: calckey_production
username: calckey
password: CHANGEME
redis:
enabled: false
hostname: redis.example.tld
port: 6379
db: 0
auth:
password: CHANGEME
elasticsearch:
enabled: false
hostname: elasticsearch.example.tld
port: 9200
ssl: false
auth:
username: myuser
password: CHANGEME
Managed Configuration
[WARNING] This is an advanced option. Use at your own risk!
Edit .config/helm_values.yml and set calckey.isManagedHosting to true and the settings you want to manage:
calckey:
isManagedHosting: true
libreTranslate:
managed: true
apiUrl: "https://translate.example.tld/translate"
apiKey: "totallyFakeKey"
smtp:
managed: true
from_address: noreply@example.tld
port: 587
server: smtp.gmail.com
useImplicitSslTls: false
login: me@example.tld
password: CHANGEME
objectStorage:
managed: true
baseUrl: https://example-bucket.nyc3.cdn.digitaloceanspaces.com
access_key: CHANGEME
access_secret: CHANGEME
bucket: example-bucket
endpoint: nyc3.digitaloceanspaces.com:443
region: nyc3
Initial the admin user and managed config:
# Change these values to your desired user, password, and the correct host
export CALCKEY_USERNAME="my_desired_admin_handle" && \
export CALCKEY_PASSWORD="myDesiredInitialPassword" && \
export CALCKEY_HOST="example.tld"
# Use the API to create the initial admin user and capture the user token
export CALCKEY_TOKEN=$(curl -X POST https://$CALCKEY_HOST/api/admin/accounts/create -H "Content-Type: application/json" -d "{ \"username\":\"$CALCKEY_USERNAME\", \"password\":\"$CALCKEY_PASSWORD\" }" | jq -r '.token') && \
echo "Save this token: ${CALCKEY_TOKEN}"
# Use the API to pull in the managed config settings
curl -X POST -H "Authorization: Bearer $CALCKEY_TOKEN" https://$CALCKEY_HOST/api/admin/accounts/hosted
You should now be good to go! Any time you make changes to your managed settings you will need to re-run the last curl command to tell the API to pull in the latest config changes.