Documentation Hub
On-Premise
Why Keyless?Start HereMobile SDKWeb SDKWorkforceIDV BridgeUser GuideAdmin portalOn-Premise
On-Premise
Why Keyless?Start HereMobile SDKWeb SDKWorkforceIDV BridgeUser GuideAdmin portalOn-Premise
  • On-Premise Installation Manual
  • Keyless Backend Installation
    • Planning for installation
    • Components
  • Infrastructural requirements
  • Monitoring
  • Installation procedure
    • General Configuration
    • Namespace
    • Helm setup
    • Node Persistence
    • Circuit Storage
    • Core Daemon
    • Metrics Collector
    • Operations Service
    • Administrator Dashboard
  • Upgrade procedure
    • Cluster and Runtime
      • Breaking changes
        • Release 1.3.0
    • Databases
  • Checking the installation completed successfully
  • Helm and Components Versions
Powered by GitBook
On this page

Was this helpful?

  1. Installation procedure

Core Daemon

To correctly set up this service the cluster’s internal endpoint is required to allow Core Daemon to connect to Node Persistence and Circuit Storage. The default values are usually enough, unless each service is deployed in its own dedicated namespace.

If not using AWS, an key must be generated and mounted inside the pods of core-daemon:

openssl ecparam -name secp256k1 -genkey -noout -out private.pem
openssl ec -in private.pem -pubout -out public.pem

kubectl create secret generic keypair -n <core-daemon-namespace> --from-file=tls.crt=public.pem --from-file=tls.key=private.pem
global:
  namespace: <core-daemon-namespace>

image:
  tag: 1.49.2

configMap:
  # -- Node Persistence URI
  apiNodePersistenceBasePath: http://node-persistence/
  # -- Circuit Storage URI
  apiCircuitStorageBasePath: http://circuit-storage/
  # -- Environment
  coreDaemonConfigEnvironment: <environment>
  # -- REQUIRED IF NOT USING AWS
  keysFileSystemPublicPath: /etc/ssl/keypair/tls.crt
  keysFileSystemPrivatePath: /etc/ssl/keypair/tls.key

# -- REQUIRED IF NOT USING AWS
certificates:
  - name: keypair
    mountPath: /etc/ssl/keypair
    readOnly: true

# -- Suggested sizing
resources:
  ## -- Limits
  limits:
    cpu: 1800m
    memory: 2048Mi
  ## -- Requests
  requests:
    cpu: 100m
    memory: 512Mi

Last updated 13 days ago

Was this helpful?