This Helm chart deploys Fides, an open-source privacy engineering platform.
Before deploying the Helm chart, you will need the several dependencies, depending on your values.yaml configuration.
- Helm v3 installed on your machine
- A Kubernetes cluster to which Fides will be deployed
- If
postgresql.deployPostgresis set tofalse- A PostgreSQL database
- A Kubernetes secret for the Postgres containing at least the following keys:
DB_HOSTDB_PORT- [Optional - Defaults to5432]DB_DATABASEDB_USERNAMEDB_PASSWORD
- If
redis.deployRedisis set tofalse- A Redis cache
- A Kubernetes secret for the Redis containing at least the following keys:
REDIS_HOSTREDIS_PORT- [Optional - Defaults to6379]REDIS_PASSWORD
- If
s3.createS3Bucketis set totrue
See values.yaml for the configuration options.
You'll likely want to override some of the values set in the values.yaml file. To do so, create a local version of the file with your configuration.
Most of the Fides configuration is handled natively within the chart; however, you may pass additional environment variables to Fides by setting fides.configuration.additionalEnvVars or fides.configuration.additionalEnvVarsSecret. See the Fides configuration guide for all possible values.
To download the chart, run the following commands:
helm repo add ethyca https://helm.ethyca.com
helm pull ethyca/fidesTo install this chart, create a local values file to override the defaults and run the following command:
helm install fides ethyca/fides --values values.local.yamlIf you would also like to manage the S3 bucket to be used as a Fides storage destination, you must first install the appropriate AWS Controllers for Kubernetes ACK services. ACK is a way to manage AWS resources from within Kubernetes using Custom Resource Definitions. To get started, follow the official ACK setup documentation for S3.
Additionally, IAM Roles for Service Accounts must be enabled.
- Need some additional help with Fides? Try out our Sample Fides Project!
- Not familiar with Helm? Take a look at Helm's quick start guide!