Helm charts to deploy Trento components in a Kubernetes cluster.
Helm must be installed to use the charts. Please refer to Helm’s documentation to get started.
After that, refer to each individual chart documentation to find more information:
cert-manager is a Kubernetes add-on that automates the management and issuance of TLS certificates. It can be optionally enabled in this Helm chart to provide SSL support for secure communication. While it simplifies certificate management and renewal, it introduces additional cluster-wide resources. For detailed setup instructions and considerations, refer to the hack/cert-manager/
cookbook.
mTLS authentication with RabbitMQ can be enabled through the global.rabbitmq.auth.tls
configuration section. This feature enhances security by ensuring mutual authentication between RabbitMQ and its clients.
When mTLS is enabled, the following secrets are expected to exist in the Kubernetes namespace:
rabbitmq-tls-server
ca.crt
: Root CA certificate for the RabbitMQ servertls.crt
: Server certificate for RabbitMQtls.key
: Private key for the RabbitMQ server certificaterabbitmq-tls-client-web
ca.crt
: Root CA certificate for web componentclient.crt
: Client certificate for web componentclient.key
: Private key for web client certificaterabbitmq-tls-client-wanda
ca.crt
: Root CA certificate for wanda componentclient.crt
: Client certificate for wanda componentclient.key
: Private key for wanda client certificatePlease only report bugs via GitHub issues; for any other inquiry or topic use GitHub discussion.
See CONTRIBUTING.md
See the LICENSE notice.