Hey team I m trying to deploy Ory Keto using Helm + Terrafor Ory Community #ory-selfhosting

Hey team, I'm trying to deploy Ory Keto using Helm...

wide-machine-60917

09/22/2023, 2:30 PM

Hey team, I'm trying to deploy Ory Keto using Helm + Terraform. I'm passing namespaces as a base64 string to location, Ory Keto deploys successfully but getting errors from migration job:

curved-cat-28117

09/22/2023, 3:11 PM

locations should be a key, so

keto.config.namespaces.location

curved-cat-28117

09/22/2023, 3:12 PM

also not sure if name is valid key if orl is being used

wide-machine-60917

09/22/2023, 3:13 PM

@curved-cat-28117 but this is what i see in values.yaml:

Copy code

namespaces:
      - id: 0
        name: sample

curved-cat-28117

09/22/2023, 3:13 PM

yes, but when using a OPL its a map, not really intuitive i know

wide-machine-60917

09/22/2023, 3:14 PM

ah gotcha, let me try now

wide-machine-60917

09/22/2023, 3:17 PM

Copy code

Planning failed. Terraform encountered an error while generating this plan.

│ Error: failed parsing key "keto.config.namespaces.location" with value base64://..., unable to parse key: interface conversion: interface {} is []interface {}, not map[string]interface {}

curved-cat-28117

09/22/2023, 3:18 PM

bah, ye, ketto will load it like that, but i guess helm validation wont allow it

wide-machine-60917

09/22/2023, 3:18 PM

that makes sense 😄 any workaround?

wide-machine-60917

09/22/2023, 3:21 PM

I changed values.yaml

curved-cat-28117

09/22/2023, 3:21 PM

looking at the helm template it seems not, maybe add

customArgs

wide-machine-60917

09/22/2023, 3:21 PM

namespaces: location: ""

wide-machine-60917

09/22/2023, 3:21 PM

and it works now

curved-cat-28117

09/22/2023, 3:22 PM

ah nice, where was that part?

wide-machine-60917

09/22/2023, 3:22 PM

Can you tell me more details about customArgs? how can i pass base64 namespace?

wide-machine-60917

09/22/2023, 3:22 PM

ah nice, where was that part?

https://github.com/ory/k8s/blob/master/helm/charts/keto/values.yaml#L238-L240

curved-cat-28117

09/22/2023, 3:23 PM

ah so you changed values manually

curved-cat-28117

09/22/2023, 3:23 PM

ye that will work, but pain to manage

wide-machine-60917

09/22/2023, 3:23 PM

yeh, did not want to touch helm but 🧑‍🔧

curved-cat-28117

09/22/2023, 3:24 PM

Copy code

command: {{- toYaml .Values.keto.command | nindent 12 }}
           {{- if .Values.keto.customArgs }}
           args: {{- toYaml .Values.keto.customArgs | nindent 12 }}
           {{- else }}
           args:
             - serve
             - --config
             - /etc/config/keto.yaml
           {{- end }}

🙌 1

wide-machine-60917

09/22/2023, 3:25 PM

Thank you @curved-cat-28117 it seems it works now! Very quick question - how can I clarify that my namespaces has been deployed and it is used by Keto (without checking it manually by sending REST requests?)

curved-cat-28117

09/22/2023, 3:27 PM

you could add your whole conf to secret, then attach it as a volume with extraVolumeMounts in helm, then use custom args and add those default ones i pasted above, then change yaml path, its a bit of work, but it will work

🙌 1

wide-machine-60917

09/22/2023, 3:28 PM

Thank you, your workaround is better than touching helm haha

👍 1

curved-cat-28117

09/22/2023, 3:29 PM

as far as checking, locally i just send get tuples request, and then i see if there are errors in log

✅ 1

4 Views

Open in Slack

Previous Next