Helm chart

Learn how to use Helm to set up Cobrowse Enterprise in your Kubernetes cluster.

This is the documentation for how to use Helm to set up Cobrowse Enterprise in your Kubernetes cluster.

Initial Setup

Make sure you have installed (on your local machine) the required tools to manage and deploy the Cobrowse infrastructure to your Kubernetes cluster. You'll need these installed before running the setup:

Helm

Installation

Run the following commands to add our helm repository.

helm repo add cobrowse-enterprise https://cobrowseio.github.io/cobrowse-enterprise-helm/packages
helm install cobrowse cobrowse-enterprise/cobrowse-enterprise

Common Parameters

Parameter Name

Description

imageCredentials.password

required

license

required

Your Cobrowse enterprise license. (Provided by Cobrowse.io)

domain

required

The domain name for your deployment.

superusers

RegEx to specify superuser email addresses.

mongo.url

required

Your MongoDB connection URL.

redis.url

required

Your Redis cluster connection URL in the format:

redis://username:password@your-redis-host.com:PORT

Or, if you are using TLS:

rediss://username:password@your-redis-host.com:PORT

(note the double s in rediss://)

Note: redis must be configured in cluster mode.

ingress.class

required

The ingress class name to use

ingress.annotations

Extra annotations to add to the Kubernetes ingress.

storage.size

Amount of storage to provision for recordings. Default is 50Gb.

storage.class

A storage class available in the cluster that supports "ReadWriteMany" access. Default is "nfs".

Dependencies

For all deployments there are some dependencies that must be configured outside of the Cobrowse Helm chart:

Redis - we require access to a redis cluster. It must be running in cluster mode. Bitnami provide an easy to use Helm chart.
MongoDB - we require access to a MongoDB cluster. We recommend using a hosted service such as MongoDB Atlas whenever possible. Alternatively Bitnami provides a helm chart that is tested with Cobrowse deployments.
NFS storage - we require that the cluster provides an NFS storage. A dynamic provisioner can be used by by setting storage.class, that is by default called "nfs". Alternatively an existing PVC can be used and set through sockets.storage.persistentVolumeClaimName and recording.storage.persistentVolumeClaimName.

There's also some extra configuration available for some cloud providers.

SSL Generation

We support SSL certificate generation in Azure via CertManager. You must install CertManager in addition to the Cobrowse Helm chart. You can then set ssl.generator to cert-manager in the Cobrowse Helm chart configuration to allow Cobrowse generate and renew and SSL certs automatically.

Other Common Dependencies for AKS

To use Azure Application Gateway, you will need to enable AGIC and AAD pod-identity either via Helm chart or AKS addon.

SSL Generation

If you use the GCE ingress (set ingress.class to gce), we will automatically provision a certificate using a GCP ManagedCertificate. You do not need install anything extra to use this.

Scaling the infrastructure

By default we only run one replica per service as can be seen in our public values.yaml file. This should be changed for high availability (HA) setups.

The individual service replica counts should be set according to your load and availability requirements, for example api.replicas = 3sets 3 replicas of the api service.

Managing your deployment

Next, learn about managing and upgrading your deployment.

PreviousDocker Compose NextImage Pull Secret

Last updated 6 months ago

Was this helpful?

Initial Setup

Helm

Installation

Run the following commands to add our helm repository.

helm repo add cobrowse-enterprise https://cobrowseio.github.io/cobrowse-enterprise-helm/packages
helm install cobrowse cobrowse-enterprise/cobrowse-enterprise

Common Parameters

Parameter Name

Description

imageCredentials.password

required

The docker password required to access the Cobrowse images (provided by Cobrowse.io). Note: If you do not wish for the Helm chart to manage your cobrowse image pull secret, consider using the instead.

license

required

Your Cobrowse enterprise license. (Provided by Cobrowse.io)

domain

required

The domain name for your deployment.

superusers

RegEx to specify superuser email addresses.

mongo.url

required

Your MongoDB connection URL.

redis.url

required

Your Redis cluster connection URL in the format:

redis://username:password@your-redis-host.com:PORT

Or, if you are using TLS:

rediss://username:password@your-redis-host.com:PORT

(note the double s in rediss://)

Note: redis must be configured in cluster mode.

ingress.class

required

The ingress class name to use

ingress.annotations

Extra annotations to add to the Kubernetes ingress.

storage.size

Amount of storage to provision for recordings. Default is 50Gb.

storage.class

A storage class available in the cluster that supports "ReadWriteMany" access. Default is "nfs".

Dependencies

For all deployments there are some dependencies that must be configured outside of the Cobrowse Helm chart:

Redis - we require access to a redis cluster. It must be running in cluster mode. Bitnami provide an easy to use Helm chart.

MongoDB - we require access to a MongoDB cluster. We recommend using a hosted service such as MongoDB Atlas whenever possible. Alternatively Bitnami provides a helm chart that is tested with Cobrowse deployments.

NFS storage - we require that the cluster provides an NFS storage. A dynamic provisioner can be used by by setting storage.class, that is by default called "nfs". Alternatively an existing PVC can be used and set through sockets.storage.persistentVolumeClaimName and recording.storage.persistentVolumeClaimName.

There's also some extra configuration available for some cloud providers.

SSL Generation

Other Common Dependencies for AKS

To use Azure Application Gateway, you will need to enable AGIC and AAD pod-identity either via Helm chart or AKS addon.

SSL Generation

If you use the GCE ingress (set ingress.class to gce), we will automatically provision a certificate using a GCP ManagedCertificate. You do not need install anything extra to use this.

Scaling the infrastructure

By default we only run one replica per service as can be seen in our public values.yaml file. This should be changed for high availability (HA) setups.

The individual service replica counts should be set according to your load and availability requirements, for example api.replicas = 3sets 3 replicas of the api service.