Skip to content

Fix helm on eks #11

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
xieandrew wants to merge 2 commits into
base: main
Choose a base branch
from
Open

Fix helm on eks #11

xieandrew wants to merge 2 commits into from

Conversation

@xieandrew
Copy link
Contributor

@xieandrew xieandrew commented Jan 21, 2026

Fixes the helm chart when using the default values.yaml for EKS to pass all tests in python/tests. Improves documentation for using the helm chart on EKS.

hodgesrm
hodgesrm approved these changes Jan 23, 2026
View reviewed changes
Copy link
Member

@hodgesrm hodgesrm left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

This looks good to me with a cosmetic change to remove commented-out fields.

Question 1: how does Helm match the manifest directory contents now?

kubernetes/helm/templates/vector.yaml
- host: keeper-keeper
port: 2181
users:
root/password: topsecret
Copy link
Member

@hodgesrm hodgesrm Jan 23, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

This can wait for a later PR but we should use secrets rather than expose passwords. See https://altinity.com/blog/clickhouse-confidential-using-kubernetes-secrets-with-the-altinity-operator#using-secrets-to-protect-clickhouse-user-passwords for more information.

Copy link
Contributor Author

@xieandrew xieandrew Jan 23, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Will look into using secrets. But this section was added so the test_vector_sever_version auth header here works. If the test is changed to not use the auth header, this root password is not needed. Not sure if that's an issue with the test or if we do need a root password specified, because I don't see this password in the docker compose setup.

@xieandrew
Copy link
Contributor Author

xieandrew commented Jan 23, 2026

The helm chart is almost identical to the manifest directory when values.yaml is applied, I believe the swarm in helm has a shardsCount of 1 instead of 4 though.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@hodgesrm hodgesrm hodgesrm approved these changes

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@xieandrew @hodgesrm