NeMo Data Store Microservice Helm Chart#
For deployment guide, see Admin Setup in the NeMo Microservices documentation.
Values#
Key |
Type |
Default |
Description |
|---|---|---|---|
additionalConfigFromEnvs |
list |
|
Additional configuration sources from environment variables. |
additionalConfigSources |
list |
|
Additional configuration from secret or configmap. |
admin |
object |
|
Admin user configuration settings. |
admin.email |
string |
|
Email for the NeMo Data Store admin user. |
admin.existingSecret |
string |
|
Use an existing secret to store admin user credentials. For example, |
admin.password |
string |
|
Password for the NeMo Data Store admin user. |
admin.username |
string |
|
Username for the NeMo Data Store admin user. |
affinity |
object |
|
Affinity configuration for the deployment. |
checkDeprecation |
bool |
|
Set to false to skip the basic validation check. |
clusterDomain |
string |
|
Kubernetes cluster domain name. |
config |
object |
This object has the following default values for the NeMo Data Store configuration. |
NeMo Data Store configuration. |
config.”cron.GIT_GC_REPOS”.enabled |
bool |
|
Enable git garbage collection. |
config.APP_NAME |
string |
|
Application name. |
config.RUN_MODE |
string |
|
Runtime mode (prod/dev). |
config.cache.ADAPTER |
string |
|
Cache adapter type. |
config.database.DB_TYPE |
string |
|
Database type. |
config.lfs.STORAGE_TYPE |
string |
|
Storage type for LFS (local/s3). |
config.queue.TYPE |
string |
|
Queue type. |
config.server.HTTP_PORT |
int |
|
HTTP port for web interface. |
config.server.LFS_START_SERVER |
bool |
|
Enable LFS server. |
config.server.START_SSH_SERVER |
bool |
|
Enable SSH server. |
config.session.PROVIDER |
string |
|
Session provider type. |
containerSecurityContext |
object |
|
Container-level security context settings |
demo |
object |
This object has the following default values for the demo parameters. |
Parameters for the demo mode. |
demo.enabled |
bool |
|
Enable or disable the demo mode. |
demo.ngcApiKey |
string |
|
NGC API key. |
demo.ngcImagePullSecret |
string |
|
Name of the secret containing the NGC image pull secret. |
deployment |
object |
|
Deployment configuration. |
deployment.annotations |
object |
|
Annotations for the Datastore deployment to be created. |
deployment.labels |
object |
|
Labels for the deployment. |
deployment.terminationGracePeriodSeconds |
int |
|
How long to wait until forcefully kill the pod. |
dnsConfig |
object |
|
dnsConfig configuration for the deployment. |
env |
object |
|
Additional environment variables to pass to containers. This is an object formatted like NAME: value or NAME: valueFrom: {object}. |
external |
object |
|
External URL configuration for the NeMo Data Store microservice. |
external.domain |
string |
|
The external URL’s domain name. |
external.rootUrl |
string |
|
The external URL where users will access the NeMo Data Store microservice. |
externalDatabase |
object |
This object has the following default values for the external PostgreSQL configuration. |
External PostgreSQL configuration settings. These values are only used when postgresql.enabled is set to false. |
externalDatabase.database |
string |
|
Datastore database name. |
externalDatabase.existingSecret |
string |
|
Name of an existing secret resource containing the database credentials. |
externalDatabase.existingSecretPasswordKey |
string |
|
Name of an existing secret key containing the database credentials. |
externalDatabase.host |
string |
|
External database host address. |
externalDatabase.password |
string |
|
Password for the non-root username for Datastore service. |
externalDatabase.port |
int |
|
External database port number. |
externalDatabase.sslMode |
string |
|
SSL mode for external database connection. |
externalDatabase.user |
string |
|
Non-root username for Datastore service. |
extraContainerVolumeMounts |
list |
|
Mounts that are only mapped into the Datastore runtime/main container, to e.g. override custom templates. |
extraDeploy |
list |
|
Array of extra objects to deploy with the release. |
extraInitVolumeMounts |
list |
|
Mounts that are only mapped into the init-containers. Can be used for additional preconfiguration. |
extraVolumeMounts |
list |
|
DEPRECATED Additional volume mounts for init containers and the Datastore main container. This value is split into the following two variables: |
extraVolumes |
list |
|
Additional volumes to mount to the Datastore deployment. |
global |
object |
|
Global parameters to override the same settings in all subcharts of this Helm chart. |
global.hostAliases |
list |
|
Global host aliases which will be added to the pod’s hosts files. |
global.imagePullSecrets |
list |
|
Global image pull secrets. |
global.imageRegistry |
string |
|
Global image registry. |
global.storageClass |
string |
|
Global storage class that applies to persistent volumes. |
image |
object |
This object has the following default values for the image configuration. |
Container image configuration settings |
image.digest |
string |
|
The image digest to use for more precise version control. |
image.fullOverride |
string |
|
Complete override string for the image specification. |
image.pullPolicy |
string |
|
The image pull policy determining when to pull new images. |
image.registry |
string |
|
The registry where the NeMo Data Store image is located. |
image.repository |
string |
|
The repository path of the NeMo Data Store image. |
image.rootless |
bool |
|
Whether to run the container with rootless security context. |
image.tag |
string |
|
The image tag to use. |
imagePullSecrets |
list |
|
Configuration for image pull secrets to access private registries. |
imagePullSecrets[0] |
object |
|
Name of the secret containing registry credentials. |
ingress |
object |
This object has the following default values for the ingress configuration. |
Ingress configuration. |
ingress.annotations |
object |
|
Additional annotations for the Ingress. For example, |
ingress.className |
string |
|
The Ingress class name. |
ingress.enabled |
bool |
|
Whether to enable ingress. |
ingress.hosts |
list |
|
A list of maps, each containing the keys |
initContainers |
object |
|
Kubernetes resource limits for init containers. |
initContainers.resources.limits |
object |
|
Kubernetes resource limits for init containers. |
initContainers.resources.requests |
object |
|
Kubernetes cpu resource limits for init containers. |
initPreScript |
string |
|
Init container Bash shell scripts. For example, to mount a client certificate when connecting to an external Postgres server, you might add commands similar to the following: |
jwtSecret |
object |
This object has the following default values for the JWT secret configuration. |
JWT secret configuration settings. |
jwtSecret.existingSecret |
string |
|
Name of an existing secret resource containing the LFS JWT secret. |
jwtSecret.existingSecretKey |
string |
|
Key in existing secret containing the LFS JWT secret. |
jwtSecret.value |
string |
|
User specified LFS JWT secret - this will be stored in a secret. |
ldap |
list |
|
LDAP configuration. |
livenessProbe |
object |
This object has the following default values for the liveness probe configuration. |
Liveness probe configuration. |
livenessProbe.enabled |
bool |
|
Enable liveness probe. |
livenessProbe.failureThreshold |
int |
|
Failure threshold for liveness probe. |
livenessProbe.httpGet.path |
string |
|
HTTP path for liveness probe. |
livenessProbe.httpGet.port |
string |
|
Port for liveness probe. |
livenessProbe.initialDelaySeconds |
int |
|
Initial delay before liveness probe is initiated. |
livenessProbe.periodSeconds |
int |
|
Period for liveness probe. |
livenessProbe.successThreshold |
int |
|
Success threshold for liveness probe. |
livenessProbe.timeoutSeconds |
int |
|
Timeout for liveness probe. |
metrics.enabled |
bool |
|
Enable NeMo Data Store metrics. |
metrics.serviceMonitor.enabled |
bool |
|
Enable NeMo Data Store metrics service monitor. |
nodeSelector |
object |
|
NodeSelector configuration for the deployment. |
oauth |
list |
|
OAuth configuration. |
objectStore |
object |
This object has the following default values for the object store configuration. |
Object Store configuration settings for accessing external Object Storage. |
objectStore.accessKey |
string |
|
Access key credential for object storage authentication. |
objectStore.accessSecret |
string |
|
Secret key credential for object storage authentication. |
objectStore.bucketName |
string |
|
Name of the bucket to use for object storage. |
objectStore.enabled |
bool |
|
Enable or disable object storage integration. |
objectStore.endpoint |
string |
|
Object storage service endpoint URL. |
objectStore.existingSecret |
string |
|
Name of existing Kubernetes secret containing object storage credentials. |
objectStore.existingSecretAccessKey |
string |
|
Key in existing secret that contains the access key. |
objectStore.existingSecretAccessSecret |
string |
|
Key in existing secret that contains the secret key. |
objectStore.region |
string |
|
Geographic region for the object storage service. |
objectStore.ssl |
bool |
|
Enable or disable SSL/TLS for object storage connections. |
persistence |
object |
This object has the following default values for the persistence volume configuration. |
Persistence volume configuration. |
persistence.accessModes |
list |
|
Access modes for the persistent volume. |
persistence.annotations |
object |
|
Annotations for the persistence volume claim. |
persistence.claimName |
string |
|
Name of the persistent volume claim. You can use an existing claim to store repository information. |
persistence.create |
bool |
|
Whether to create the persistent volume claim for shared storage. |
persistence.enabled |
bool |
|
Whether to enable persistent volume. |
persistence.labels |
object |
|
Labels for the persistence volume claim. |
persistence.mount |
bool |
|
Whether to mount the persistent volume claim. |
persistence.size |
string |
|
Size of the persistent volume. |
persistence.storageClass |
string |
|
Name of the storage class to use. |
persistence.subPath |
string |
|
Subdirectory of the volume to mount at. |
persistence.volumeName |
string |
|
Name of persistent volume in PVC. |
podAnnotations |
object |
|
Annotations for the Datastore pod. |
podDisruptionBudget |
object |
|
Pod disruption budget configuration. |
podSecurityContext |
object |
|
Pod-level security context settings |
podSecurityContext.fsGroup |
int |
|
The file system group ID to use for all containers. |
postgresql-ha |
object |
This object has the following default values for the PostgreSQL HA configuration. |
PostgreSQL high availability (HA) configuration. |
postgresql-ha.enabled |
bool |
|
Enable PostgreSQL HA. If enabled, configures PostgreSQL HA using the bitnami/postgresql-ha chart. |
postgresql-ha.global.postgresql.database |
string |
|
Global PostgreSQL database name. |
postgresql-ha.global.postgresql.password |
string |
|
Global password for the |
postgresql-ha.global.postgresql.username |
string |
|
Global username for the |
postgresql-ha.pgpool.adminPassword |
string |
|
Pgpool admin password. |
postgresql-ha.postgresql.password |
string |
|
Password for the |
postgresql-ha.postgresql.postgresPassword |
string |
|
Postgres password for the |
postgresql-ha.postgresql.repmgrPassword |
string |
|
Repmgr password for the |
postgresql-ha.primary.persistence |
object |
|
PVC storage request for PostgreSQL HA volume. |
postgresql-ha.service.ports |
object |
|
PostgreSQL service port. |
postgresql.enabled |
bool |
|
Enable or disable the built-in PostgreSQL database. |
postgresql.global.postgresql.auth.database |
string |
|
Name of the database to create. |
postgresql.global.postgresql.auth.password |
string |
|
Password for the datastore database user. |
postgresql.global.postgresql.auth.username |
string |
|
Username for the database user. |
postgresql.global.postgresql.service.ports.postgresql |
int |
|
Port number for PostgreSQL service. |
postgresql.primary.persistence.size |
string |
|
Storage size request for the PostgreSQL persistent volume. |
priorityClassName |
string |
|
priorityClassName configuration for the deployment. |
readinessProbe |
object |
This object has the following default values for the readiness probe configuration. |
Readiness probe configuration. |
readinessProbe.enabled |
bool |
|
Enable readiness probe. |
readinessProbe.failureThreshold |
int |
|
Failure threshold for readiness probe. |
readinessProbe.httpGet.path |
string |
|
HTTP path for readiness probe. |
readinessProbe.httpGet.port |
string |
|
Port for readiness probe. |
readinessProbe.initialDelaySeconds |
int |
|
Initial delay before readiness probe is initiated. |
readinessProbe.periodSeconds |
int |
|
Period for readiness probe. |
readinessProbe.successThreshold |
int |
|
Success threshold for readiness probe. |
readinessProbe.timeoutSeconds |
int |
|
Timeout for readiness probe. |
redis-cluster |
object |
This object has the following default values for the Redis cluster configuration. |
Redis cluster configuration. |
redis-cluster.cluster |
object |
|
Number of redis cluster master nodes. |
redis-cluster.enabled |
bool |
|
Enable Redis cluster. |
redis-cluster.usePassword |
bool |
|
Whether to use password authentication. |
replicaCount |
int |
|
Number of replicas for the deployment. |
resources |
object |
|
Kubernetes deployment resources configuration. It is recommended to not specify default resources and to leave this as a conscious choice. This also increases chances that the chart will run on environments with little resources, such as minikube. If you want to specify resources, use the following example, adjust the values as necessary, and remove the empty curly braces |
schedulerName |
string |
|
The name of the alternate scheduler to use. For more information, see Configure Multiple Schedulers. |
securityContext |
object |
|
DEPRECATED Run init and NeMo Data Store containers as a specific securityContext. The securityContext variable has been split two: |
serveDirect |
bool |
|
Whether to serve traffic directly from an object storage service. |
service |
object |
This object has the following default values for the service configuration. |
Service configuration for exposing the application. |
service.http |
object |
|
HTTP service configuration. |
service.http.annotations |
object |
|
Additional annotations for the HTTP service |
service.http.clusterIP |
string |
|
The cluster IP address to assign to the service. |
service.http.externalIPs |
string |
|
List of external IP addresses to assign to the service |
service.http.externalTrafficPolicy |
string |
|
External traffic policy for controlling source IP preservation |
service.http.ipFamilies |
string |
|
List of IP families to use for the service |
service.http.ipFamilyPolicy |
string |
|
IP family policy for dual-stack support |
service.http.labels |
object |
|
Additional labels for the HTTP service |
service.http.loadBalancerIP |
string |
|
The static IP address for LoadBalancer service type. |
service.http.loadBalancerSourceRanges |
list |
|
List of CIDR ranges allowed to access the LoadBalancer |
service.http.nodePort |
string |
|
The node port number when using NodePort service type |
service.http.port |
int |
|
The port number to expose for HTTP traffic. |
service.http.type |
string |
|
The Kubernetes service type to create for HTTP traffic. |
service.ssh |
object |
This object has the following default values for the SSH service configuration. |
SSH service configuration. |
service.ssh.annotations |
object |
|
Additional annotations for the SSH service. |
service.ssh.clusterIP |
string |
|
The cluster IP address to assign to the service. |
service.ssh.enabled |
bool |
|
Whether to enable SSH service. |
service.ssh.externalIPs |
string |
|
List of external IP addresses to assign to the service. |
service.ssh.externalTrafficPolicy |
string |
|
The external traffic policy for controlling source IP preservation. |
service.ssh.hostPort |
string |
|
The host port number when using HostPort service type. |
service.ssh.ipFamilies |
string |
|
List of IP families to use for the service. |
service.ssh.ipFamilyPolicy |
string |
|
IP family policy for dual-stack support. |
service.ssh.labels |
object |
|
Additional labels for the SSH service. |
service.ssh.loadBalancerIP |
string |
|
The static IP address for LoadBalancer service type. |
service.ssh.loadBalancerSourceRanges |
list |
|
List of CIDR ranges allowed to access the LoadBalancer. |
service.ssh.nodePort |
string |
|
The node port number when using NodePort service type. |
service.ssh.port |
int |
|
The port number to expose for SSH traffic. |
service.ssh.type |
string |
|
The Kubernetes service type to create for SSH traffic. |
serviceAccount |
object |
|
Service account configuration. |
serviceAccount.annotations |
object |
|
Custom annotations for the service account. |
serviceAccount.automountServiceAccountToken |
bool |
|
Enable/disable auto mounting of the service account token. |
serviceAccount.create |
bool |
|
Whether to create a service account. |
serviceAccount.imagePullSecrets |
list |
|
Image pull secrets, available to the service account. To add a list of image pull secrets, remove |
serviceAccount.labels |
object |
|
Custom labels for the service account. |
serviceAccount.name |
string |
|
Name of the created service account, defaults to release name. Can also link to an externally provided service account that should be used. |
signing |
object |
|
Signing configuration. |
signing.enabled |
bool |
|
Enable commit/action signing. |
signing.existingSecret |
string |
|
Use an existing secret to store the value of |
signing.gpgHome |
string |
|
GPG home directory. |
signing.privateKey |
string |
|
Inline private GPG key for signed NeMo Data Store actions. |
ssh |
object |
|
Configure OpenSSH’s log level. Only available for root-based Datastore image. |
startupProbe |
object |
This object has the following default values for the start-up probe configuration. |
Start-up probe configuration. |
startupProbe.enabled |
bool |
|
Enable start-up probe. |
startupProbe.failureThreshold |
int |
|
Failure threshold for start-up probe. |
startupProbe.initialDelaySeconds |
int |
|
Initial delay before start-up probe is initiated. |
startupProbe.periodSeconds |
int |
|
Period for start-up probe. |
startupProbe.successThreshold |
int |
|
Success threshold for start-up probe. |
startupProbe.tcpSocket |
object |
|
TCP socket configuration for start-up probe. |
startupProbe.timeoutSeconds |
int |
|
Timeout for start-up probe. |
strategy |
object |
This object has the following default values for the strategy configuration. |
Strategy configuration for controlling how pod updates are performed. |
strategy.rollingUpdate.maxSurge |
string |
|
Maximum number of pods that can be created above the desired amount during an update. |
strategy.rollingUpdate.maxUnavailable |
int |
|
Maximum number of pods that can be unavailable during an update. |
strategy.type |
string |
|
The strategy type for pod updates. Use |
test.enabled |
bool |
|
Enable or disable the test-connection Pod. |
test.image.name |
string |
|
Image name for the wget container used in the test-connection Pod. |
test.image.tag |
string |
|
Image tag for the wget container used in the test-connection Pod. |
tolerations |
list |
|
Tolerations configuration for the deployment. |
topologySpreadConstraints |
list |
|
TopologySpreadConstraints configuration for the deployment. |