Core Daemon

To correctly set up this service the cluster’s internal endpoint is required to allow Core Daemon to connect to Node Persistence and Circuit Storage. The default values are usually enough, unless each service is deployed in its own dedicated namespace.

If not using AWS, an key must be generated and mounted inside the pods of core-daemon:

openssl ecparam -name secp256k1 -genkey -noout -out private.pem
openssl ec -in private.pem -pubout -out public.pem

kubectl create secret generic keypair -n <core-daemon-namespace> --from-file=tls.crt=public.pem --from-file=tls.key=private.pem

global:
  namespace: <core-daemon-namespace>

image:
  tag: 1.49.2

configMap:
  # -- Node Persistence URI
  apiNodePersistenceBasePath: http://node-persistence/
  # -- Circuit Storage URI
  apiCircuitStorageBasePath: http://circuit-storage/
  # -- Environment
  coreDaemonConfigEnvironment: <environment>
  # -- REQUIRED IF NOT USING AWS
  keysFileSystemPublicPath: /etc/ssl/keypair/tls.crt
  keysFileSystemPrivatePath: /etc/ssl/keypair/tls.key

# -- REQUIRED IF NOT USING AWS
certificates:
  - name: keypair
    mountPath: /etc/ssl/keypair
    readOnly: true

# -- Suggested sizing
resources:
  ## -- Limits
  limits:
    cpu: 1800m
    memory: 2048Mi
  ## -- Requests
  requests:
    cpu: 100m
    memory: 512Mi

Last updated 10 months ago

Was this helpful?