I’ve just double checked the infrastructure terraform code, it looks fine, and I destroyed all and re-applied all. Here is the complete dgraph dgraph-values.yaml file I’m using, excuse me that I have to hide some sensitive information.
global:
ingress:
enabled: true
ingressClassName: alb
alpha_hostname: "dgraph.alpha.dev.annzapp.com"
annotations:
kubernetes.io/ingress.class: alb
alb.ingress.kubernetes.io/scheme: internal
alb.ingress.kubernetes.io/group.name: dgraph
alb.ingress.kubernetes.io/subnets: subnet-XXXXXXXXX,subnet-YYYYYYYYY
alb.ingress.kubernetes.io/load-balancer-name: neosight-alb-dev
alb.ingress.kubernetes.io/inbound-cidrs: aaaaaaa,bbbbbbbb,ccccccccc
alb.ingress.kubernetes.io/tags: TargetGroupName=k8s-neosight-alb-dev
image: &image
tag: v21.12.0
serviceAccount:
create: true
annotations:
eks.amazonaws.com/role-arn: arn:aws:iam::XXXXXXXXXX:role/neosight-iam-role-dev
namespace: dgraph
name: neosight-service-account-dev
automountServiceAccountToken: false
alpha:
automountServiceAccountToken: true
replicaCount: 1 # 1 is minimal 3 is stable
extraEnvs:
- name: lambda
value: url=http://dgraph-lambda-dgraph-lambda.neosight.svc:8686/graphql-worker
configFile:
config.yaml: |
security:
whitelist: 0.0.0.0/0
telemetry:
sentry: false
reports: false
service:
type: LoadBalancer
name: private-lb-dgraph-alpha-dev
namespace: dgraph
annotations:
service.beta.kubernetes.io/aws-load-balancer-subnets: "subnet-xxxxxxxx,subnet-yyyyyyyy"
service.beta.kubernetes.io/aws-load-balancer-cross-zone-load-balancing-enabled: "true"
service.beta.kubernetes.io/aws-load-balancer-internal: "true"
loadBalancerSourceRanges:
- "0.0.0.0/0"
nodeAffinity:
requiredDuringSchedulingIgnoredDuringExecution:
nodeSelectorTerms:
- matchExpressions:
- key: role
operator: In
values:
- dgraph
persistence:
storageClass: "gp2"
livenessProbe:
enabled: true
port: 8080
path: /health?live=1
initialDelaySeconds: 15
periodSeconds: 10
timeoutSeconds: 5
failureThreshold: 6
successThreshold: 1
readinessProbe:
enabled: true
port: 8080
path: /probe/graphql
initialDelaySeconds: 15
periodSeconds: 10
timeoutSeconds: 5
failureThreshold: 6
successThreshold: 1
zero:
automountServiceAccountToken: false
replicaCount: 1 # 1 is minimal 3 is stable
configFile:
config.yaml: |
telemetry:
sentry: false
reports: false
service:
type: LoadBalancer
name: private-lb-dgraph-zero-dev
namespace: dgraph
annotations:
service.beta.kubernetes.io/aws-load-balancer-subnets: "subnet-xxxxxxx,subnet-yyyyyyyy"
service.beta.kubernetes.io/aws-load-balancer-cross-zone-load-balancing-enabled: "true"
service.beta.kubernetes.io/aws-load-balancer-internal: "true"
loadBalancerSourceRanges:
- "0.0.0.0/0"
nodeAffinity:
requiredDuringSchedulingIgnoredDuringExecution:
nodeSelectorTerms:
- matchExpressions:
- key: role
operator: In
values:
- dgraph
persistence:
storageClass: "gp2"
livenessProbe:
enabled: true
port: 6080
path: /health
initialDelaySeconds: 15
periodSeconds: 10
timeoutSeconds: 5
failureThreshold: 6
successThreshold: 1
readinessProbe:
enabled: true
port: 6080
path: /state
initialDelaySeconds: 15
periodSeconds: 10
timeoutSeconds: 5
failureThreshold: 6
successThreshold: 1
Helm Install:
helm install dgraph-release dgraph/dgraph --namespace dgraph \
--create-namespace --debug --dry-run --values deploy/dev/dgraph/dgraph-values.yaml | grep -A11 -B3 ServiceAccount
# it returns:
install.go:178: [debug] Original chart version: ""
install.go:195: [debug] CHART PATH: /Users/Ann.Zhang/Library/Caches/helm/repository/dgraph-0.0.19.tgz
TEST SUITE: None
USER-SUPPLIED VALUES:
alpha:
automountServiceAccountToken: true
configFile:
config.yaml: |
security:
whitelist: 0.0.0.0/0
telemetry:
sentry: false
reports: false
extraEnvs:
- name: lambda
value: url=http://dgraph-lambda-dgraph-lambda.neosight.svc:8686/graphql-worker
livenessProbe:
--
serviceAccount:
annotations:
eks.amazonaws.com/role-arn: arn:aws:iam::XXXXXXXXX:role/neosight-iam-role-dev
automountServiceAccountToken: false
create: true
name: neosight-service-account-dev
namespace: dgraph
zero:
automountServiceAccountToken: false
configFile:
config.yaml: |
telemetry:
sentry: false
reports: false
livenessProbe:
enabled: true
failureThreshold: 6
initialDelaySeconds: 15
path: /health
periodSeconds: 10
--
acl:
enabled: false
antiAffinity: soft
automountServiceAccountToken: true
configFile:
config.yaml: |
security:
whitelist: 0.0.0.0/0
telemetry:
sentry: false
reports: false
customLivenessProbe: {}
customReadinessProbe: {}
customStartupProbe: {}
encryption:
--
serviceAccount:
annotations:
eks.amazonaws.com/role-arn: arn:aws:iam::XXXXXXXXX:role/neosight-iam-role-dev
automountServiceAccountToken: false
create: true
name: neosight-service-account-dev
namespace: dgraph
zero:
antiAffinity: soft
automountServiceAccountToken: false
configFile:
config.yaml: |
telemetry:
sentry: false
reports: false
customLivenessProbe: {}
customReadinessProbe: {}
customStartupProbe: {}
extraAnnotations: {}
extraEnvs: []
extraFlags: ""
Then:
helm install dgraph-release dgraph/dgraph --namespace dgraph \
--create-namespace --debug --dry-run --values deploy/dev/dgraph/dgraph-values.yaml | grep ServiceAccountName
# it returns:
install.go:178: [debug] Original chart version: ""
install.go:195: [debug] CHART PATH: /Users/Ann.Zhang/Library/Caches/helm/repository/dgraph-0.0.19.tgz