You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Ensure all Redis/PostgreSQL/MongoDB Helm snippets consistently use either OCI registry or chart repo syntax and include the same namespace flags; some places switched to OCI upgrade while others still show helm install from bitnami repo, which may confuse users.
helm upgrade tyk-redis oci://registry-1.docker.io/bitnamicharts/redis -n $NAMESPACE --install --version 19.0.2 --set image.repository=bitnamilegacy/redis
```
Follow the notes from the installation output to get connection details and password. The DNS name of your Redis as set by Bitnami is `tyk-redis-master.tyk-cp.svc:6379` (Tyk needs the name including the port)
The Bitnami chart also creates a secret `tyk-redis` which stores the connection password in `redis-password`. We will make use of this secret in installation later.
<Note>
Ensure that you are installing Redis versions that are supported by Tyk. Please consult the list of [supported versions](/tyk-self-managed/install#redis) that are compatible with Tyk.
</Note>
3. **Install PostgreSQL (if you don't already have PostgreSQL installed)**
If you do not already have PostgreSQL installed, you may use these charts provided by Bitnami.
```bash
helm upgrade tyk-postgres oci://registry-1.docker.io/bitnamicharts/postgresql --set "auth.database=tyk_analytics" -n $NAMESPACE --install --version 14.2.4 --set image.repository=bitnamilegacy/postgresql
Confirm that setting image.repository alone is sufficient for these Bitnami charts; some charts may also require image.registry/image.tag to fully pin to legacy images and avoid mixing registries.
Then follow notes from the installation output to get connection details and update them in values.yaml file.
Bitnami MongoDB image is not supported on darwin/arm64 architecture.
Please make sure you are installing MongoDB versions that are supported by Tyk. Please refer to Tyk docs to get list of [supported versions](/api-management/dashboard-configuration#supported-database).
Important Note regarding MongoDB:
This helm chart enables the PodDisruptionBudget for MongoDB with an arbiter replica-count of 1. If you intend to perform system maintenance on the node where the MongoDB pod is running and this maintenance requires the node to be drained, then this action will be prevented due to the the replica count being 1.
Increase the replica count in the helm chart deployment to a minimum of 2 to remedy this issue.
Configure global.mongo.mongoURL and global.storageType as below. You should replace pass in the connection string with the MONGODB_ROOT_PASSWORD you obtain from the installation output notes.
global:
# Set mongo connection details if you want to configure mongo pump.mongo:
# The mongoURL value will allow you to set your MongoDB address.# Default value: mongodb://mongo.{{ .Release.Namespace }}.svc:27017/tyk_analytics# mongoURL: mongodb://mongo.tyk.svc:27017/tyk_analytics# If your MongoDB has a password you can add the username and password to the urlmongoURL: mongodb://root:[email protected]:27017/tyk_analytics?authSource=admin# mongo-go driver is supported for Tyk 5.0.2+.# We recommend using the mongo-go driver if you are using MongoDB 4.4.x+.# For MongoDB versions prior to 4.4, please use the mgo driver.# Since Tyk 5.3 the default driver is mongo-go.driver: mongo-go# Connection URL can also be set using a secret. Provide the name of the secret and key below.# connectionURLSecret:# name: ""# keyName: ""# Enables SSL for MongoDB connection. MongoDB instance will have to support that.# Default value: falseuseSSL: false# Choose the storageType for Tyk. [ "mongo", "postgres" ]storageType: &globalStorageType mongo
When overriding the repository, also set the full image registry to ensure Helm doesn't resolve to Docker Hub implicitly, which can break in air-gapped or mirrored environments. Provide image.registry explicitly alongside the legacy repository override.
Why: The existing line at 415 matches and adding image.registry can help in air‑gapped setups; the change is low risk and improves clarity, though not critical to functionality.
Low
Align securityContext with legacy image
Ensure compatibility with chart defaults that expect non-root containers by mirroring securityContext changes tied to legacy images. Explicitly set containerSecurityContext.enabled=true and runAsUser, runAsNonRoot, and fsGroup to values supported by the legacy image.
Why: The target line 1381 matches, and setting security contexts may help with legacy images, but the suggested values are speculative and not derived from the PR; risk of being incorrect for the Bitnami chart reduces its reliability and impact.
Low
Possible issue
Pin container image tag
Pin the image tag to the chart's Redis version to avoid pulling a mismatched legacy image that may be incompatible with the chart defaults. Explicitly set image.tag to the version deployed by the chart series you reference.
Why: The existing code line at 289 matches and pinning the image tag can improve reproducibility, but the specific tag 7.2.4-debian-12-r0 is asserted without justification from the PR context and may not align with the chart version, limiting confidence and impact.
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
andyo-tyk
changed the title
PR Type
Documentation
Description
Add image override for Bitnami Redis
Add image override for Bitnami PostgreSQL
Add image override for Bitnami MongoDB
Update Helm examples across docs
Diagram Walkthrough
File Walkthrough
9 files
Add Redis image.repository override in Helm commandAdd Redis and PostgreSQL image overrides in stepsAdd Redis image.repository override in OSS examplesAdd Redis image override in install commandsAdd Redis, MongoDB, PostgreSQL image overridesAdd Redis image override in DP chart docsAdd Redis, MongoDB, PostgreSQL image overridesAdd Redis, MongoDB, PostgreSQL image overridesAdd Redis image override in hybrid examples