GithubHelp home page GithubHelp logo

redisinsight's Introduction

redisinsight

Version: 0.1.0 Type: application AppVersion: 0.1.0

A Helm chart for Redis Insight.

Homepage: https://developer.redis.com/

Source Code

Values

Key Type Default Description
affinity object {} Configuration for affinity
autoscaling object {"enabled":false,"maxReplicas":100,"minReplicas":1,"targetCPUUtilizationPercentage":80,"targetMemoryUtilizationPercentage":80} Configuration for Autoscaling
fullnameOverride string "" Overrides the fullname
image object {"pullPolicy":"IfNotPresent","repository":"redislabs/redisinsight","tag":"latest"} Image to use for deploying
image.tag string "latest" Overrides the image tag whose default is the chart appVersion.
imagePullSecrets list [] Secret for container registry
nameOverride string "" Overrides the name
namespace object {"name":"default"} Configure default namespace
nodeSelector object {} Configuration for nodeSelector
podAnnotations object {} Additional annotations will be added to the pods of this component as well as to your Deployments or StatefulSets used to create the pods.
podSecurityContext object {} Pod SecurityContext settings
replicaCount int 1 Configure the replicas for the pods
resources object {"limits":{"cpu":"500m","memory":"2048M"},"requests":{"cpu":"20m","memory":"512Mi"}} Configuration for resources limits (CPU/MEM requests and limits)
securityContext object {} SecurityContext settings
service object {"port":80,"type":"ClusterIP"} Service Type which are use to expose service
serviceAccount object {"annotations":{},"create":true,"name":""} Configuration for service account
tolerations list [] Configuration for tolerations

Autogenerated from chart metadata using helm-docs v1.9.1

Enabling TLS

It is possible to deploy Nginux with Redisinsight to work as a reverse proxy. The reverse proxy will allow for TLS to be enabled or to implement basic-auth. To enable TLS you must have a secret with a key. You can create a key and certificate and have it signed by a trusted authority and load it in using below command:

kubectl create secret tls redis-insight-tls --key="tls.key" --cert="tls.crt"

It is also possible to utilize cert-manager. The below yaml will create a self signed CA and sign a certificate. Make sure you update the external.domain to the external domain of your Kubernetes cluster. There are other ways to do this (Lets ecrypt as an example) but that is outside the scope of this readme.

apiVersion: cert-manager.io/v1
kind: Issuer
metadata:
  name: redis-insight-issuer
spec:
  selfSigned: {}
---
apiVersion: cert-manager.io/v1
kind: Certificate
metadata:
  name: redis-insight
spec:
  commonName: redis-insight.external.domain
  isCA: false
  privateKey:
    algorithm: RSA
    encoding: PKCS1
    size: 2048
  usages:
    - server auth
  secretName: redis-insight
  dnsNames:
    # Ingress domain
    - redis-insight.external.domain
    # Internal domain
    - redis-insight
  issuerRef:
    name: redis-insight-issuer

To enable the nginx proxy

Set the externName to the fqdn of you external environment:

externalName: redisinsight.external.domain

Configure the Proxy to be enabled and refer to the tls secret you created earlier

# -- Configure to deploy with Proxy -- This will enable TLS and authentication
proxy:
  enabled: true
  ## Needs to be different then the port redisinsight is listening on (port 8001)
  nginxPort: 9000
  tls:
    tlsEnabled: true
    tlsSecret: redis-insight-tls

You may need to configure annotations to enable SSL passthrough on your ingress. You will need to refer to your ingress provider for this documentation. Below is an example for Nginx.

  annotations: {
    nginx.ingress.kubernetes.io/backend-protocol: 'HTTPS',
    nginx.ingress.kubernetes.io/ssl-redirect: 'true',
    nginx.ingress.kubernetes.io/ssl-passthrough: 'true',
    kubernetes.io/ingress.allowHTTP: 'false'
  }

Configure authentication

If you want to enable authentication to the console you can use a basic auth file. You must have the proxy enabled for this to work. To do this you need to generate a hash. The easiest way to do this is run the command:

openssl passwd -6

Then configure auth to be enabled and put the password hash you created in the password. The password included is "password"

  auth:
    enabled: false
    user: redisinsight
    ###  To create this has you can use either command:
    ###     openssl passwd -6
    ###     htpasswd -5 -n username  (only take the password portion after the first :
    password: $6$odj8aDdQK14QXYtc$U3NPBgc/4ffABDpC4BrbEonUW1VtMEFvYUsynv/4QcaUhYbS2uqUywCoRsoxY.zKacYmeHBI5.cr.RfyK2tge1

redisinsight's People

Contributors

dlohin avatar spy86 avatar bwhartlove avatar

Recommend Projects

  • React photo React

    A declarative, efficient, and flexible JavaScript library for building user interfaces.

  • Vue.js photo Vue.js

    ๐Ÿ–– Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.

  • Typescript photo Typescript

    TypeScript is a superset of JavaScript that compiles to clean JavaScript output.

  • TensorFlow photo TensorFlow

    An Open Source Machine Learning Framework for Everyone

  • Django photo Django

    The Web framework for perfectionists with deadlines.

  • D3 photo D3

    Bring data to life with SVG, Canvas and HTML. ๐Ÿ“Š๐Ÿ“ˆ๐ŸŽ‰

Recommend Topics

  • javascript

    JavaScript (JS) is a lightweight interpreted programming language with first-class functions.

  • web

    Some thing interesting about web. New door for the world.

  • server

    A server is a program made to process requests and deliver data to clients.

  • Machine learning

    Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.

  • Game

    Some thing interesting about game, make everyone happy.

Recommend Org

  • Facebook photo Facebook

    We are working to build community through open source technology. NB: members must have two-factor auth.

  • Microsoft photo Microsoft

    Open source projects and samples from Microsoft.

  • Google photo Google

    Google โค๏ธ Open Source for everyone.

  • D3 photo D3

    Data-Driven Documents codes.