Skip to content

feat: Add minio and postgres config for Creance #51

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Open
SteffenRathAA wants to merge 3 commits into
base: main
Choose a base branch
from
Open

feat: Add minio and postgres config for Creance #51

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
3 commits
Select commit Hold shift + click to select a range
1e97340
feat: Add minio and postgres config for Creance
SteffenRathAA Nov 12, 2025
48b8671
Add dependency for minio-creance in Chart.yaml
SteffenRathAA Nov 19, 2025
d66a96b
Have pre-commit hook format files I did not touch to fix the build
SteffenRathAA Nov 19, 2025
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
30 changes: 15 additions & 15 deletions helm/README.md
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -740,13 +740,13 @@ clusterPharia:
backups:
enabled: true # Enable backups
target: prefer-standby # Run backups on standby replicas to avoid impacting primary

# S3 endpoint (leave empty for AWS S3, set for MinIO or other S3-compatible storage)
endpointURL: "https://s3.eu-central-1.amazonaws.com" # or "http://minio.example.com:9000"

# Backup destination path with timestamp for versioning
destinationPath: "s3://my-backups/postgresql-pharia-2025-11-17/"

# S3 provider configuration
provider: s3
s3:
Expand All @@ -757,24 +757,24 @@ clusterPharia:
secretKey: "YOUR_SECRET_KEY"
# OR use IAM role-based authentication (recommended for AWS):
inheritFromIAMRole: false # Set to true to use IAM roles instead of keys

# WAL archiving configuration
wal:
compression: gzip
maxParallel: 8 # Number of parallel WAL archive/restore operations

# Base backup configuration
data:
compression: gzip
jobs: 2 # Number of parallel backup jobs

# Scheduled backup configuration
scheduledBackups:
- name: daily-backup
schedule: "0 0 2 * * *" # Daily at 2:00 AM (cron format)
backupOwnerReference: self
method: barmanObjectStore

# Backup retention policy
retentionPolicy: "30d" # Keep backups for 30 days
```
Expand Down Expand Up @@ -815,7 +815,7 @@ kubectl logs -n pharia-ai -l cnpg.io/cluster=qs-postgresql-cluster-pharia | grep
**Successful Backup Example:**
```
NAME AGE CLUSTER PHASE ERROR
qs-postgresql-cluster-pharia-daily-backup-... 5m qs-postgresql-cluster-pharia completed
qs-postgresql-cluster-pharia-daily-backup-... 5m qs-postgresql-cluster-pharia completed
```

#### Disaster Recovery Guide
Expand All @@ -830,29 +830,29 @@ Update `qs-postgresql-cluster/values.yaml` to configure recovery mode:
clusterPharia:
mode: recovery # Change from 'standalone' to 'recovery'
fullnameOverride: qs-postgresql-cluster-pharia # Keep the SAME cluster name

backups:
enabled: true
# NEW timestamp for post-recovery backups
destinationPath: "s3://my-backups/postgresql-pharia-2025-11-18/"
# ... (keep same S3 credentials configuration)

recovery:
method: object_store # Recover from S3 backup

# The original cluster name in backups (must match the backed-up cluster)
clusterName: "qs-postgresql-cluster-pharia"

# OLD timestamp to read backups from
destinationPath: "s3://my-backups/postgresql-pharia-2025-11-17/"

# Recovery target (promote immediately after recovery)
recoveryTarget: "promote"

# Point-in-Time Recovery (optional)
pitrTarget:
time: "" # Leave empty to recover to latest, or specify RFC3339 timestamp

# S3 configuration (must match backup configuration)
endpointURL: "https://s3.eu-central-1.amazonaws.com"
provider: s3
Expand Down
5 changes: 5 additions & 0 deletions helm/qs-minio/Chart.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -16,3 +16,8 @@ dependencies:
alias: minio-pharia-finetuning
condition: minio-pharia-finetuning.enabled
repository: oci://registry-1.docker.io/cloudpirates
- name: minio
version: 0.5.5
alias: minio-creance
condition: minio-creance.enabled
repository: oci://registry-1.docker.io/cloudpirates
18 changes: 18 additions & 0 deletions helm/qs-minio/values.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -101,3 +101,21 @@ minio-pharia-finetuning:
existingSecretUserKey: "user"
## @param auth.existingSecretPasswordKey Key in existing secret containing password
existingSecretPasswordKey: "password"

minio-creance:
Copy link
Contributor

@tobias-pfaffelmoser-aa tobias-pfaffelmoser-aa Nov 19, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

For this, you also need to add a new minio instance as additional helm dependency at https://github.com/Aleph-Alpha/support/blob/main/helm/qs-minio/Chart.yaml#L8

Copy link
Author

@SteffenRathAA SteffenRathAA Nov 19, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Added, thanks.

enabled: false
fullnameOverride: qs-minio-creance
## @section Bucket provisioning
## @param defaultBuckets Comma, semi-colon or space separated list of buckets to create at initialization
## Format: "bucket-name" or "bucket-name:policy" where policy can be: none, download, upload, or public
## e.g: "my-bucket, my-second-bucket:download, my-public-bucket:public"
defaultBuckets: "creance"
auth:
## @param auth.existingSecret Name of existing secret containing MinIO credentials
existingSecret: "qs-minio-access-creance"
## @param auth.username Username put in existing secret
user: "creance"
## @param auth.existingSecretUserKey Key in existing secret containing username
existingSecretUserKey: "user"
## @param auth.existingSecretPasswordKey Key in existing secret containing password
existingSecretPasswordKey: "password"
14 changes: 12 additions & 2 deletions helm/qs-postgresql-cluster/values.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -262,6 +262,16 @@ clusterPharia:
login: true
superuser: false
replication: false
- name: "creance"
connectionLimit: -1
ensure: present
inherit: true
# `password` and `username` key should exist in secret. username key should be the name of the user (mlflow)
passwordSecret:
name: "qs-postgresql-cluster-access-creance"
login: true
superuser: false
replication: false
backups:
# -- You need to configure backups manually, so backups are disabled by default.
# For detailed configuration options, see: https://github.com/cloudnative-pg/charts/tree/main/charts/cluster
Expand Down Expand Up @@ -340,7 +350,7 @@ clusterPharia:
pitrTarget:
# -- Time in RFC3339 format
time: ""

## -- Recovery target settings for controlling recovery behavior
# Options: pause, promote, shutdown
# 'promote' is recommended - promotes to read-write immediately after recovery
Expand Down Expand Up @@ -589,7 +599,7 @@ clusterTemporal:
pitrTarget:
# -- Time in RFC3339 format
time: ""

## -- Recovery target settings for controlling recovery behavior
# Options: pause, promote, shutdown
# 'promote' is recommended - promotes to read-write immediately after recovery
Expand Down
12 changes: 12 additions & 0 deletions helm/qs-postgresql-db/values.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -375,3 +375,15 @@ databases:
- pg_stat_statements
- pg_trgm
- btree_gin

- name: "creance"
enabled: false
cluster: "qs-postgresql-cluster-pharia"
owner: "creance"
connectionLimit: 50
extensions:
- uuid-ossp
- pgcrypto
- pg_stat_statements
- pg_trgm
- btree_gin
Loading