Using the helm_release provider, I want to attach a sidecar container to a helm release. Specifically, I want to attach the sqlproxy container to the keto release. Below is my initial attempt but it does not pass values for sqlproxy config. How to add a container with values to a helm release?
locals {
db_username = "postgres"
sql_port = "5432"
}
resource "helm_release" "keto" {
name = "ory"
repository = "https://k8s.ory.sh/helm/charts"
chart = "keto"
values = [
<<EOT
serviceAccount:
create: false
name: ${module.service_account.value.id}
job:
serviceAccount:
create: false
name: ${module.service_account.value.id}
keto:
config:
dsn: postgres://${local.db_username}:${random_password.password.result}@pg-sqlproxy-gcloud-sqlproxy:${local.sql_port}/db
deploy:
extraContainers:
name: gcloud-sqlproxy
image: # what to place here? how to add extra values here?
EOT
]
}
The documentation for keto showed it offers a deployment:extraContainers
field where I can set the name and the image for a container; however, unsure how to pass the additional values needed for sqlproxy
How any particular settings are used are fairly chart-specific, and there's not a generic recipe for things like adding sidecar containers.
In this particular chart, the extraContainers
setting is used as
containers:
- name: {{ .Chart.Name }}
# ... about another 100 lines of settings ...
{{- if $extraContainers }}
{{- tpl $extraContainers . | nindent 8 }}
{{- end }}
That is, if extraContainers
is set, it must be a string; it is run through the Helm tpl
extension function to render Go text/template markup using the top-level Helm object; and the result is indented to the correct level in the Deployment spec.
In the YAML you show, you need to end the extraContainers:
line with a |
, creating a YAML block scalar (a multi-line string). Under that you need to put a complete YAML list of container specs. You can include template blocks there if you want to.
deploy:
extraContainers: |
- name: gcloud-sqlproxy
image: gcr.io/cloudsql-docker/gce-proxy
env:
- name: KETO_CONFIG_DSN
value: {{ .Values.keto.config.dsn }}
Note that you've provided a couple of links to a separate Helm chart for the proxy. That intrinsically will create a separate Helm release and objects like Kubernetes Deployments for it; it cannot attach it as a sidecar to other Deployments, and you can't use any of that chart's settings in a sidecar-container configuration.