Detailed instructions to install the Deeploy Core software stack can be found in this repository. All scripts required to configure the dependencies (Istio, Knative and cert-manager) can be found here, as well as the installation for the Deeploy Core Helm chart.
Follow the step-by-step instructions in the repository
We advise to check https://artifacthub.io/packages/helm/deeploy-core/deeploy for the latest stable helm chart installation. Deploy the Deeploy stack after adjusting the values. The resulting command should loke something like:
helm repo add deeploy-core https://deeploy-charts.storage.googleapis.com/
helm repo update
helm install deeploy deeploy-core/deeploy --file values.yaml --namespace deeploy --create namespace deeploy --version <VERSION>
Specific AWS values for the values.yaml file
| Parameter | Description | Value |
| images.registry | If you use the AWS marketplace description | "709825985650.dkr.ecr.us-east-1.amazonaws.com/deeploy/" |
| license.type | If you use the AWS marketplace description. Otherwise use "Deeploy" | "AWS" |
| license.aws.region | Region for deployment cloud resources. If you use the AWS marketplace description | "eu-central-1" |
Remote Blob Storage values:
| Parameter | Description | Value |
| objectStorage.type | Storage service to use with Deeploy | "AWS_S3" |
| objectStorage.aws.bucketName | The S3 bucket name to use | "" |
| objectStorage.aws.useEKSPodIdentityWebhook | Whether to use AWS IAM Role with EKS service accounts to authenticate with AWS S3 | false |
| objectStorage.aws.trustedIamRoleArnAnnotation | ARN of the trusted AWS IAM role with the proper access rights to S3 | "" |
| objectStorage.aws.s3AccessKey | The IAM user access key with access to the S3 bucket | "" |
| objectStorage.aws.s3SecretKey | The IAM user secret access key with access to the S3 bucket | "" |
| objectStorage.aws.region | Region for deployment cloud resources | "eu-central-1" |
Security values
| Parameter | Description | Value |
| security.keyManagement.kmsType | KMS service to use with Deeploy | "AWS" |
| security.keyManagement.aws.keyId | ID of the AWS Vault key | "" |
| security.keyManagement.aws.useEKSPodIdentityWebhook | Whether to use AWS IAM Role with EKS service accounts to authenticate with AWS KMS. | false |
| security.keyManagement.aws.trustedIamRoleArn | ARN of the trusted AWS IAM role with the proper access rights to KMS | "" |
| security.keyManagement.aws.accessKey | The IAM user access key with access to the key | "" |
| security.keyManagement.aws.secretKey | The IAM user secret access key with access to the key | "" |
| security.keyManagement.aws.region | Region for deployment cloud resources | "eu-central-1" |
Upgrades
Make sure to regularly upgrade your Deeploy installation. In the release notes (tags) the specific instructions are listed. Upgrading often exist out of two parts:
- Infrastructure update (e.g., upgrade EKS Kubernetes version)
- Switch to a new version of Deeploy:
- Patch (e.g., 1.20.1 to 1.20.2), small changes often a result of a bug fix
- Major release (e.g., 1.20.1 to 1.21.0), larger (visual) changes that can include infrastructure changes
My.Deeploy.ml License registration
When you install Deeploy for the first time, the Deeploy helm chart will register your license key (runPreInstall: true). In case you have to change your license key or run the cluster registration manually, you can find the instructions here. For AWS Marketplace installations, registering a license through My.Deeploy.ml is not necessary.
Comments
0 comments
Please sign in to leave a comment.