Helm Values | Holos

--- slug: helm-values title: Helm Values description: Holos provides values to multiple charts easily and safely. sidebar_position: 40 --- import Tabs from '@theme/Tabs'; import TabItem from '@theme/TabItem'; import YouTube from '@site/src/components/YouTube'; # Helm Values ## Overview Holos simplifies integrating multiple Helm charts by adding valuable capabilities to Helm and Kustomize: 1. Inject the same value into multiple charts more safely than using Helm alone. 2. Add strong type checking and validation for Helm input values. 3. Implement the [rendered manifests pattern]. In this tutorial, we'll manage the [prometheus] and [blackbox] Helm charts. By default, the upstream `values.yaml` files are misconfigured, causing Prometheus to connect to Blackbox at the wrong host and port. ## The Video The video below enhances this tutorial by offering greater detail on the issue of poorly integrated Helm charts and the solution we've provided. If you're looking for a deeper explanation of the code being presented, this video is a great resource. {/* cspell:disable-next-line */} ## The Code ### Generating the structure Use `holos` to generate a minimal platform directory structure. First, create and navigate into a blank directory, then use the `holos init platform` command: ```shell mkdir holos-helm-values-tutorial cd holos-helm-values-tutorial holos init platform v1alpha5 ``` Make an initial commit to track changes: ```bash git init . && git add . && git commit -m "initial commit" ``` ### Managing the Components Create the `prometheus` and `blackbox` component directories, then add each of the following file contents. ```bash mkdir -p components/prometheus components/blackbox ``` ```bash cat < components/prometheus/prometheus.cue ``` ```cue showLineNumbers package holos // Produce a helm chart build plan. holos: Helm.BuildPlan Helm: #Helm & { Chart: { name: "prometheus" version: "25.27.0" repository: { name: "prometheus-community" url: "https://prometheus-community.github.io/helm-charts" } } } ``` ```bash EOF ``` ```bash cat < components/blackbox/blackbox.cue ``` ```cue showLineNumbers package holos // Produce a helm chart build plan. holos: Helm.BuildPlan Helm: #Helm & { Chart: { name: "prometheus-blackbox-exporter" version: "9.0.1" repository: { name: "prometheus-community" url: "https://prometheus-community.github.io/helm-charts" } } } ``` ```bash EOF ``` ### Register the Components Register the components with the platform by adding the following file to the platform directory. ```bash cat < platform/prometheus.cue ``` ```cue showLineNumbers package holos Platform: Components: { prometheus: { name: "prometheus" path: "components/prometheus" } blackbox: { name: "blackbox" path: "components/blackbox" } } ``` ```bash EOF ``` Render the platform. ```bash holos render platform ``` ```txt cached prometheus-blackbox-exporter 9.0.1 rendered blackbox in 3.825430417s cached prometheus 25.27.0 rendered prometheus in 4.840089667s rendered platform in 4.840137792s ``` Commit the results. ```bash git add . && git commit -m 'add blackbox and prometheus' ``` ```txt [main b5df111] add blackbox and prometheus 5 files changed, 1550 insertions(+) create mode 100644 components/blackbox/blackbox.cue create mode 100644 components/prometheus/prometheus.cue create mode 100644 deploy/components/blackbox/blackbox.gen.yaml create mode 100644 deploy/components/prometheus/prometheus.gen.yaml create mode 100644 platform/prometheus.cue ``` ### Importing Helm Values Holos renders Helm charts with their default values. We can import these default values into CUE to work with them as structured data instead of text markup. ```bash holos cue import \ --package holos \ --path 'Helm: Values:' \ --outfile components/prometheus/values.cue \ components/prometheus/vendor/25.27.0/prometheus/values.yaml ``` ```bash holos cue import \ --package holos \ --path 'Helm: Values:' \ --outfile components/blackbox/values.cue \ components/blackbox/vendor/9.0.1/prometheus-blackbox-exporter/values.yaml ``` These commands convert the YAML data into CUE code and nest the values under the `Values` field of the `Helm` struct. :::important CUE unifies `values.cue` with the other `\*.cue` files in the same directory. ::: Render the platform using `holos render platform` and commit the results. ```bash holos render platform ``` ```txt rendered blackbox in 365.936792ms rendered prometheus in 371.855875ms rendered platform in 372.109916ms ``` ```bash git add . && git commit -m 'import values' ``` ```txt [main 52e90ea] import values 2 files changed, 1815 insertions(+) create mode 100644 components/blackbox/values.cue create mode 100644 components/prometheus/values.cue ``` ### Managing Common Configuration To manage shared configuration for both Helm charts, define a structure that holds the common configuration values. Place this configuration in the `components` directory to ensure it is accessible to all components. ```bash cat < components/blackbox.cue ``` ```cue showLineNumbers package holos // Schema Definition #Blackbox: { // host constrained to a lower case dns label host: string & =~"^[a-z0-9]([a-z0-9-]{0,61}[a-z0-9])?$" // port constrained to a valid range port: int & >0 & <=65535 } // Concrete values must validate against the schema. Blackbox: #Blackbox & { host: "blackbox" port: 9115 } ``` ```bash EOF ``` :::important 1. CUE loads and unifies all `*.cue` files from the root directory containing `cue.mod` to the leaf component path directory. 2. CUE validates types _and_ constraints. Validation with CUE is better than languages with only type checking. ::: Add and commit the configuration. ```bash git add . && git commit -m 'add blackbox configuration' ``` ```txt [main 1adcd08] add blackbox configuration 1 file changed, 15 insertions(+) create mode 100644 components/blackbox.cue ``` ### Using Common Configuration Across Components Referencing common configuration across multiple components is straightforward and reliable using Holos and CUE. To apply the common configuration, patch the two `values.cue` files, or manually edit them to reference `Blackbox.host` and `Blackbox.port`. ```bash patch -p1 < values.patch ``` ```diff --- a/components/blackbox/values.cue +++ b/components/blackbox/values.cue @@ -1,6 +1,8 @@ package holos Helm: Values: { + fullnameOverride: Blackbox.host + global: { //# Global image registry to use if it needs to be overriden for some specific use cases (e.g local registries, custom images, ...) //# @@ -192,7 +194,7 @@ Helm: Values: { annotations: {} labels: {} type: "ClusterIP" - port: 9115 + port: Blackbox.port ipDualStack: { enabled: false ipFamilies: ["IPv6", "IPv4"] --- a/components/prometheus/values.cue +++ b/components/prometheus/values.cue @@ -1083,7 +1083,7 @@ Helm: Values: { target_label: "__param_target" }, { target_label: "__address__" - replacement: "blackbox" + replacement: "\(Blackbox.host):\(Blackbox.port)" }, { source_labels: ["__param_target"] target_label: "instance" ``` ```txt patching file 'components/blackbox/values.cue' patching file 'components/prometheus/values.cue' ``` :::important Both charts now use the same values in lock step. Holos and CUE integrate them safely and easily. ::: Remove the patch file, then commit the changes. ```bash rm values.patch ``` ```bash git add . && git commit -m 'integrate blackbox and prometheus together' ``` ```txt [main 4221803] integrate blackbox and prometheus together 2 files changed, 4 insertions(+), 2 deletions(-) ``` ## Reviewing Changes Holos makes it easy to view and review platform-wide changes. Render the platform to observe how both Prometheus and Blackbox update in sync. ```bash holos render platform ``` ```txt rendered blackbox in 374.810666ms rendered prometheus in 382.899334ms rendered platform in 383.270625ms ``` Changes are easily visible in version control. ```bash git diff ``` ```diff diff --git a/deploy/components/blackbox/blackbox.gen.yaml b/deploy/components/blackbox/blackbox.gen.yaml index 3db20cd..5336f44 100644 --- a/deploy/components/blackbox/blackbox.gen.yaml +++ b/deploy/components/blackbox/blackbox.gen.yaml @@ -7,7 +7,7 @@ metadata: app.kubernetes.io/name: prometheus-blackbox-exporter app.kubernetes.io/version: v0.25.0 helm.sh/chart: prometheus-blackbox-exporter-9.0.1 - name: prometheus-blackbox-exporter + name: blackbox namespace: default --- apiVersion: v1 @@ -31,7 +31,7 @@ metadata: app.kubernetes.io/name: prometheus-blackbox-exporter app.kubernetes.io/version: v0.25.0 helm.sh/chart: prometheus-blackbox-exporter-9.0.1 - name: prometheus-blackbox-exporter + name: blackbox namespace: default --- apiVersion: v1 @@ -43,7 +43,7 @@ metadata: app.kubernetes.io/name: prometheus-blackbox-exporter app.kubernetes.io/version: v0.25.0 helm.sh/chart: prometheus-blackbox-exporter-9.0.1 - name: prometheus-blackbox-exporter + name: blackbox namespace: default spec: ports: @@ -65,7 +65,7 @@ metadata: app.kubernetes.io/name: prometheus-blackbox-exporter app.kubernetes.io/version: v0.25.0 helm.sh/chart: prometheus-blackbox-exporter-9.0.1 - name: prometheus-blackbox-exporter + name: blackbox namespace: default spec: replicas: 1 @@ -119,8 +119,8 @@ spec: name: config hostNetwork: false restartPolicy: Always - serviceAccountName: prometheus-blackbox-exporter + serviceAccountName: blackbox volumes: - configMap: - name: prometheus-blackbox-exporter + name: blackbox name: config diff --git a/deploy/components/prometheus/prometheus.gen.yaml b/deploy/components/prometheus/prometheus.gen.yaml index 9e02bce..ab638f0 100644 --- a/deploy/components/prometheus/prometheus.gen.yaml +++ b/deploy/components/prometheus/prometheus.gen.yaml @@ -589,7 +589,7 @@ data: - source_labels: - __address__ target_label: __param_target - - replacement: blackbox + - replacement: blackbox:9115 target_label: __address__ - source_labels: - __param_target ``` From the diff, we can see this change will: 1. Reconfigure the Blackbox Exporter host from `prometheus-blackbox-exporter` to `blackbox`. 2. Have no effect on the Blackbox service port, as it was already using the default `9115`. 3. Reconfigure Prometheus to query the Blackbox Exporter at the correct host and port, `blackbox:9115`. Without this change, Prometheus incorrectly assumed Blackbox was listening at `blackbox` on port `80` when it was actually listening at `prometheus-blackbox-exporter` on port `9115`. Going forward, changing the Blackbox host or port will reconfigure both charts correctly. Commit the changes and proceed to deploy them. ```bash git add . && git commit -m 'render integrated blackbox and prometheus manifests' ``` ```txt [main 67efe0d] render integrated blackbox and prometheus manifests 2 files changed, 7 insertions(+), 7 deletions(-) ``` ## Trying Locally Optionally, apply the manifests rendered by Holos to a [Local Cluster]. ## Next Steps In this tutorial, we learned how Holos simplifies the holistic integration of the [prometheus] and [blackbox] charts, ensuring they are configured consistently. By using Holos, we overcome the limitations of relying solely on Helm, which lacks an effective method to configure both charts to use the same service endpoint. [rendered manifests pattern]: https://akuity.io/blog/the-rendered-manifests-pattern [prometheus]: https://github.com/prometheus-community/helm-charts/tree/prometheus-25.27.0/charts/prometheus [blackbox]: https://github.com/prometheus-community/helm-charts/tree/prometheus-blackbox-exporter-9.0.1/charts/prometheus-blackbox-exporter [httpbin]: https://github.com/mccutchen/go-httpbin/tree/v2.15.0 [Config Schema]: #config-schema [Technical Overview]: ./overview.mdx [Local Cluster]: ../topics/local-cluster.mdx