mirror of
				https://github.com/open-metadata/OpenMetadata.git
				synced 2025-10-26 08:13:11 +00:00 
			
		
		
		
	
		
			
				
	
	
		
			158 lines
		
	
	
		
			9.0 KiB
		
	
	
	
		
			Markdown
		
	
	
	
	
	
			
		
		
	
	
			158 lines
		
	
	
		
			9.0 KiB
		
	
	
	
		
			Markdown
		
	
	
	
	
	
| ---
 | |
| title: Kubernetes Helm Values
 | |
| slug: /deployment/kubernetes/helm-values
 | |
| ---
 | |
| 
 | |
| # Kubernetes Helm Values
 | |
| 
 | |
| This page list all the supported helm values for OpenMetadata Helm Charts.
 | |
| 
 | |
| ## Global Chart Values
 | |
| 
 | |
| 
 | |
| <Table>
 | |
| 
 | |
| | Key | Type | Default |
 | |
| | :---------- | :---------- | :---------- |
 | |
| | global.authentication.provider | string | `basic` |
 | |
| | global.authentication.publicKeys | list | `[http://openmetadata:8585/api/v1/config/jwks]` |
 | |
| | global.authentication.authority | string | `https://accounts.google.com` |
 | |
| | global.authentication.clientId | string | `Empty String` |
 | |
| | global.authentication.callbackUrl | string | `Empty String` |
 | |
| | global.authentication.enableSelfSignup | bool | `true` |
 | |
| | global.authentication.jwtPrincipalClaims | list | `[email,preferred_username,sub]` |
 | |
| | global.authorizer.allowedEmailRegistrationDomains | list | `[all]` |
 | |
| | global.authorizer.className | string | `org.openmetadata.service.security.DefaultAuthorizer` |
 | |
| | global.authorizer.containerRequestFilter | string | `org.openmetadata.service.security.JwtFilter` |
 | |
| | global.authorizer.enforcePrincipalDomain | bool | `false` |
 | |
| | global.authorizer.enableSecureSocketConnection | bool | `false` |
 | |
| | global.authorizer.initialAdmins | list | `[admin]` |
 | |
| | global.authorizer.principalDomain | string | `open-metadata.org` |
 | |
| | global.airflow.auth.password.secretRef | string | `airflow-secrets` |
 | |
| | global.airflow.auth.password.secretKey | string | `openmetadata-airflow-password` |
 | |
| | global.airflow.auth.username | string | `admin` |
 | |
| | global.airflow.enabled | bool | `true` |
 | |
| | global.airflow.host | string | `http://openmetadata-dependencies-web.default.svc.cluster.local:8080` |
 | |
| | global.airflow.openmetadata.authProvider | string | `no-auth` |
 | |
| | global.airflow.openmetadata.authConfig.auth0.clientId | string | `Empty String` |
 | |
| | global.airflow.openmetadata.authConfig.auth0.domain | string | `Empty String` |
 | |
| | global.airflow.openmetadata.authConfig.auth0.secretKey.secretKey | string | `auth0-client-key-secret` |
 | |
| | global.airflow.openmetadata.authConfig.auth0.secretKey.secretRef | string | `auth0-client-key-secret` |
 | |
| | global.airflow.openmetadata.authConfig.azure.authority | string | `Empty String` |
 | |
| | global.airflow.openmetadata.authConfig.azure.clientId | string | `Empty String` |
 | |
| | global.airflow.openmetadata.authConfig.azure.clientSecret.secretKey | string | `azure-client-secret` |
 | |
| | global.airflow.openmetadata.authConfig.azure.clientSecret.secretRef | string | `azure-client-secret` |
 | |
| | global.airflow.openmetadata.authConfig.azure.scopes | list | `[]` |
 | |
| | global.airflow.openmetadata.authConfig.customOidc.clientId | string | `Empty String` |
 | |
| | global.airflow.openmetadata.authConfig.customOidc.secretKeyPath | string | `Empty String` |
 | |
| | global.airflow.openmetadata.authConfig.customOidc.tokenEndpoint | string | `Empty String` |
 | |
| | global.airflow.openmetadata.authConfig.google.audience | string | `https://www.googleapis.com/oauth2/v4/token` |
 | |
| | global.airflow.openmetadata.authConfig.google.secretKeyPath | string | `Empty String` |
 | |
| | global.airflow.openmetadata.authConfig.okta.clientId | string | `Empty String` |
 | |
| | global.airflow.openmetadata.authConfig.okta.email | string | `Empty String` |
 | |
| | global.airflow.openmetadata.authConfig.okta.orgUrl | string | `Empty String` |
 | |
| | global.airflow.openmetadata.authConfig.okta.privateKey.secretKey | string | `okta-client-private-key-secret` |
 | |
| | global.airflow.openmetadata.authConfig.okta.privateKey.secretRef | string | `okta-client-private-key-secret` |
 | |
| | global.airflow.openmetadata.authConfig.okta.scopes | list | `[]` |
 | |
| | global.airflow.openmetadata.authConfig.openMetadata.jwtToken.secretKey| string | `openmetadata-jwt-secret` |
 | |
| | global.airflow.openmetadata.authConfig.openMetadata.jwtToken.secretRef| string | `openmetadata-jwt-secret` |
 | |
| | global.airflow.openmetadata.serverHostApiUrl | string | `http://openmetadata.default.svc.cluster.local:8585/api` |
 | |
| | global.airflow.sslCertificatePath | string | `/no/path` |
 | |
| | global.airflow.verifySsl | string | `no-ssl` |
 | |
| | global.basicLogin.maxLoginFailAttempts | int | 3 |
 | |
| | global.basicLogin.accessBlockTime | int | 600 |
 | |
| | global.clusterName | string | `openmetadata` |
 | |
| | global.database.auth.password.secretRef | string | `mysql-secrets` |
 | |
| | global.database.auth.password.secretKey | string | `openmetadata-mysql-password` |
 | |
| | global.database.auth.username | string | `openmetadata_user` |
 | |
| | global.database.databaseName | string | `openmetadata_db` |
 | |
| | global.database.dbScheme| string | `mysql` |
 | |
| | global.database.dbUseSSL| bool | `false` |
 | |
| | global.database.driverClass| string | `com.mysql.cj.jdbc.Driver` |
 | |
| | global.database.host | string | `mysql` |
 | |
| | global.database.port | int | 3306 |
 | |
| | global.elasticsearch.auth.enabled | bool | `false` |
 | |
| | global.elasticsearch.auth.username | string | `elasticsearch` |
 | |
| | global.elasticsearch.auth.password.secretRef | string | `elasticsearch-secrets` |
 | |
| | global.elasticsearch.auth.password.secretKey | string | `openmetadata-elasticsearch-password` |
 | |
| | global.elasticsearch.host | string | `elasticsearch` |
 | |
| | global.elasticsearch.port | int | 9200 |
 | |
| | global.elasticsearch.scheme | string | `http` |
 | |
| | global.elasticsearch.trustStore.enabled | bool | `false` |
 | |
| | global.elasticsearch.trustStore.path | string | `Empty String` |
 | |
| | global.elasticsearch.trustStore.password.secretRef | string | `elasticsearch-truststore-secrets` |
 | |
| | global.elasticsearch.trustStore.password.secretKey | string | `openmetadata-elasticsearch-truststore-password` |
 | |
| | global.fernetKey | string | `jJ/9sz0g0OHxsfxOoSfdFdmk3ysNmPRnH3TUAbz3IHA=` |
 | |
| | global.jwtTokenConfiguration.enabled | bool | `true` |
 | |
| | global.jwtTokenConfiguration.rsapublicKeyFilePath | string | `./conf/public_key.der` |
 | |
| | global.jwtTokenConfiguration.rsaprivateKeyFilePath | string | `./conf/private_key.der` |
 | |
| | global.jwtTokenConfiguration.jwtissuer | string | `open-metadata.org` |
 | |
| | global.jwtTokenConfiguration.keyId | string | `Gb389a-9f76-gdjs-a92j-0242bk94356` |
 | |
| | global.logLevel | string | `INFO` |
 | |
| | global.openmetadata.adminPort | int | 8586 |
 | |
| | global.openmetadata.host | string | `openmetadata` |
 | |
| | global.openmetadata.port | int | 8585 |
 | |
| | global.secretsManager.provider | string | `noop` |
 | |
| | global.secretsManager.additionalParameters.enabled | bool | `false` |
 | |
| | global.secretsManager.additionalParameters.accessKeyId.secretRef | string | `aws-access-key-secret` |
 | |
| | global.secretsManager.additionalParameters.accessKeyId.secretKey | string | `aws-key-secret` |
 | |
| | global.secretsManager.additionalParameters.region | string | `Empty String` |
 | |
| | global.secretsManager.additionalParameters.secretAccessKey.secretRef | string | `aws-secret-access-key-secret` |
 | |
| | global.secretsManager.additionalParameters.secretAccessKey.secretKey | string | `aws-key-secret` |
 | |
| | global.smtpConfig.enableSmtpServer | bool | `false` |
 | |
| | global.smtpConfig.emailingEntity | string | `OpenMetadata` |
 | |
| | global.smtpConfig.openMetadataUrl | string | `Empty String` |
 | |
| | global.smtpConfig.password.secretKey | string | `Empty String` |
 | |
| | global.smtpConfig.password.secretRef | string | `Empty String` |
 | |
| | global.smtpConfig.serverEndpoint | string | `Empty String` |
 | |
| | global.smtpConfig.serverPort | string | `Empty String` |
 | |
| | global.smtpConfig.supportUrl | string | `https://slack.open-metadata.org` |
 | |
| | global.smtpConfig.transportationStrategy | string | `SMTP_TLS` |
 | |
| | global.smtpConfig.username | string | `Empty String` |
 | |
| 
 | |
| </Table>
 | |
| 
 | |
| ## Chart Values
 | |
| 
 | |
| <Table>
 | |
| 
 | |
| | Key | Type | Default |
 | |
| | :---------- | :---------- | :---------- |
 | |
| | affinity | object | `{}` |
 | |
| | extraEnvs | Extra [environment variables][] which will be appended to the `env:` definition for the container | `[]` |
 | |
| | extraVolumes | Templatable string of additional `volumes` to be passed to the `tpl` function | "" |
 | |
| | extraVolumeMounts | Templatable string of additional `volumeMounts` to be passed to the `tpl` function | "" |
 | |
| | fullnameOverride | string | `"openmetadata"` |
 | |
| | image.pullPolicy | string | `"Always"` |
 | |
| | image.repository | string | `"openmetadata/server"` |
 | |
| | image.tag | string | `0.12.1` |
 | |
| | imagePullSecrets | list | `[]` |
 | |
| | ingress.annotations | object | `{}` |
 | |
| | ingress.className | string | `""` |
 | |
| | ingress.enabled | bool | `false` |
 | |
| | ingress.hosts[0].host | string | `"open-metadata.local"` |
 | |
| | ingress.hosts[0].paths[0].path | string | `"/"` |
 | |
| | ingress.hosts[0].paths[0].pathType | string | `"ImplementationSpecific"` |
 | |
| | livenessProbe.initialDelaySeconds | int | `60` |
 | |
| | livenessProbe.periodSeconds | int | `30` |
 | |
| | livenessProbe.failureThreshold | int | `5` |
 | |
| | nameOverride | string | `""` |
 | |
| | nodeSelector | object | `{}` |
 | |
| | podAnnotations | object | `{}` |
 | |
| | podSecurityContext | object | `{}` |
 | |
| | readinessProbe.initialDelaySeconds | int | `60` |
 | |
| | readinessProbe.periodSeconds | int | `30` |
 | |
| | readinessProbe.failureThreshold | int | `5` |
 | |
| | replicaCount | int | `1` |
 | |
| | resources | object | `{}` |
 | |
| | securityContext | object | `{}` |
 | |
| | service.port | int | `8585` |
 | |
| | service.type | string | `"ClusterIP"` |
 | |
| | serviceAccount.annotations | object | `{}` |
 | |
| | serviceAccount.create | bool | `true` |
 | |
| | serviceAccount.name | string | `nil` |
 | |
| | sidecars | list | `[]` |
 | |
| | tolerations | list | `[]` |
 | |
| 
 | |
| </Table>
 | 
