github-personal/cozystack
1
0
Fork 0
mirror of https://github.com/outbackdingo/cozystack.git synced 2026-01-27 18:18:41 +00:00
Code Issues Packages Projects Releases Wiki Activity
Files
4620f7dfa1476e2a6cdff002ede0ba642b3704ce
cozystack/packages/apps/postgres
History
Timofei Larkin 4620f7dfa1 [platform] Add secret selectors to CozyRDs 
This patch populates existing CozystackResourceDefinitions with minimal
working examples of secret selectors to take advantage of the newest
revision of the ancestor tracking webhook.

```release-note
[platform] Specify secret selectors for existing managed apps in their
respective CozystackResourceDefinitions, which provides the last bit of
information necessary for the lineage webhook to correctly mark secrets
as user-facing or not.
```

Signed-off-by: Timofei Larkin <lllamnyp@gmail.com>
2025-09-24 12:07:21 +03:00
..
charts
Use library chart for resource management
2025-06-04 09:05:21 +03:00
logos
Update dashboard icons (#274)
2024-08-12 14:47:11 +02:00
templates
[platform] Add secret selectors to CozyRDs
2025-09-24 12:07:21 +03:00
.helmignore
Ship all logos with Cozystack
2024-07-16 17:31:52 +02:00
Chart.yaml
[platform] Mark some secrets as non-user-facing
2025-09-23 15:09:18 +03:00
Makefile
[apps] Introduce new OpenAPI schema generator
2025-08-06 20:08:06 +03:00
README.md
[cozystack-api] Update defaulting API schemas
2025-09-18 04:49:50 +02:00
values.schema.json
[cozystack-api] Update defaulting API schemas
2025-09-18 04:49:50 +02:00
values.yaml
[apps] Update application READMEs
2025-08-18 10:29:31 +03:00

README.md

Managed PostgreSQL Service

PostgreSQL is currently the leading choice among relational databases, known for its robust features and performance. The Managed PostgreSQL Service takes advantage of platform-side implementation to provide a self-healing replicated cluster. This cluster is efficiently managed using the highly acclaimed CloudNativePG operator, which has gained popularity within the community.

Deployment Details

This managed service is controlled by the CloudNativePG operator, ensuring efficient management and seamless operation.

Operations

How to enable backups

To back up a PostgreSQL application, an external S3-compatible storage is required.

To start regular backups, update the application, setting backup.enabled to true, and fill in the path and credentials to an backup.*:

## @param backup.enabled Enable regular backups
## @param backup.schedule Cron schedule for automated backups
## @param backup.retentionPolicy Retention policy
## @param backup.destinationPath Path to store the backup (i.e. s3://bucket/path/to/folder)
## @param backup.endpointURL S3 Endpoint used to upload data to the cloud
## @param backup.s3AccessKey Access key for S3, used for authentication
## @param backup.s3SecretKey Secret key for S3, used for authentication
backup:
  enabled: false
  retentionPolicy: 30d
  destinationPath: s3://bucket/path/to/folder/
  endpointURL: http://minio-gateway-service:9000
  schedule: "0 2 * * * *"
  s3AccessKey: oobaiRus9pah8PhohL1ThaeTa4UVa7gu
  s3SecretKey: ju3eum4dekeich9ahM1te8waeGai0oog

How to recover a backup

CloudNativePG supports point-in-time-recovery. Recovering a backup is done by creating a new database instance and restoring the data in it.

Create a new PostgreSQL application with a different name, but identical configuration. Set bootstrap.enabled to true and fill in the name of the database instance to recover from and the recovery time:

## @param bootstrap.enabled Restore database cluster from a backup
## @param bootstrap.recoveryTime Timestamp (PITR) up to which recovery will proceed, expressed in RFC 3339 format. If left empty, will restore latest
## @param bootstrap.oldName Name of database cluster before deleting
##
bootstrap:
  enabled: false
  recoveryTime: ""  # leave empty for latest or exact timestamp; example: 2020-11-26 15:22:00.00000+00
  oldName: "<previous-postgres-instance>"

How to switch primary/secondary replica

See:

Parameters

Common parameters

Name Description Type Value
replicas Number of Postgres replicas int 2
resources Explicit CPU and memory configuration for each PostgreSQL replica. When left empty, the preset defined in resourcesPreset is applied. *object null
resources.cpu CPU available to each replica *quantity null
resources.memory Memory (RAM) available to each replica *quantity null
resourcesPreset Default sizing preset used when resources is omitted. Allowed values: nano, micro, small, medium, large, xlarge, 2xlarge. string micro
size Persistent Volume Claim size, available for application data quantity 10Gi
storageClass StorageClass used to store the data string ""
external Enable external access from outside the cluster bool false

Application-specific parameters

Name Description Type Value
postgresql PostgreSQL server configuration object {}
postgresql.parameters PostgreSQL server parameters object {}
postgresql.parameters.max_connections Determines the maximum number of concurrent connections to the database server. The default is typically 100 connections int 100
quorum Quorum configuration for synchronous replication object {}
quorum.minSyncReplicas Minimum number of synchronous replicas that must acknowledge a transaction before it is considered committed. int 0
quorum.maxSyncReplicas Maximum number of synchronous replicas that can acknowledge a transaction (must be lower than the number of instances). int 0
users Users configuration map[string]object {...}
users[name].password Password for the user *string null
users[name].replication Whether the user has replication privileges *bool null
databases Databases configuration map[string]object {...}
databases[name].roles Roles for the database *object null
databases[name].roles.admin List of users with admin privileges []string []
databases[name].roles.readonly List of users with read-only privileges []string []
databases[name].extensions Extensions enabled for the database []string []

Backup parameters

Name Description Type Value
backup Backup configuration object {}
backup.enabled Enable regular backups *bool false
backup.schedule Cron schedule for automated backups *string 0 2 * * * *
backup.retentionPolicy Retention policy *string 30d
backup.destinationPath Path to store the backup (i.e. s3://bucket/path/to/folder) *string s3://bucket/path/to/folder/
backup.endpointURL S3 Endpoint used to upload data to the cloud *string http://minio-gateway-service:9000
backup.s3AccessKey Access key for S3, used for authentication *string <your-access-key>
backup.s3SecretKey Secret key for S3, used for authentication *string <your-secret-key>

Bootstrap (recovery) parameters

Name Description Type Value
bootstrap Bootstrap configuration object {}
bootstrap.enabled Restore database cluster from a backup bool false
bootstrap.recoveryTime Timestamp (PITR) up to which recovery will proceed, expressed in RFC 3339 format. If left empty, will restore latest *string ""
bootstrap.oldName Name of database cluster before deleting string ""

Parameter examples and reference

resources and resourcesPreset

resources sets explicit CPU and memory configurations for each replica. When left empty, the preset defined in resourcesPreset is applied.

resources:
  cpu: 4000m
  memory: 4Gi

resourcesPreset sets named CPU and memory configurations for each replica. This setting is ignored if the corresponding resources value is set.

Preset name CPU memory
nano 250m 128Mi
micro 500m 256Mi
small 1 512Mi
medium 1 1Gi
large 2 2Gi
xlarge 4 4Gi
2xlarge 8 8Gi

users

users:
  user1:
    password: strongpassword
  user2:
    password: hackme
  airflow:
    password: qwerty123
  debezium:
    replication: true

databases

databases:          
  myapp:            
    roles:          
      admin:        
      - user1       
      - debezium    
      readonly:     
      - user2       
  airflow:          
    roles:          
      admin:        
      - airflow     
    extensions:     
    - hstore
Reference in New Issue View Git Blame Copy Permalink