Gateway Helm Chart

2 minute read

The Helm chart for Envoy Gateway

Homepage: https://gateway.envoyproxy.io/

Maintainers

Name	Email	Url
envoy-gateway-steering-committee		https://github.com/envoyproxy/gateway/blob/main/GOVERNANCE.md
envoy-gateway-maintainers		https://github.com/envoyproxy/gateway/blob/main/CODEOWNERS

Source Code

https://github.com/envoyproxy/gateway

Values

Key	Type	Default	Description
certgen	object	`{"job":{"affinity":{},"annotations":{},"nodeSelector":{},"resources":{},"securityContext":{"allowPrivilegeEscalation":false,"capabilities":{"drop":["ALL"]},"privileged":false,"readOnlyRootFilesystem":true,"runAsGroup":65534,"runAsNonRoot":true,"runAsUser":65534,"seccompProfile":{"type":"RuntimeDefault"}},"tolerations":[],"ttlSecondsAfterFinished":30},"rbac":{"annotations":{},"labels":{}}}`	Certgen is used to generate the certificates required by EnvoyGateway. If you want to construct a custom certificate, you can generate a custom certificate through Cert-Manager before installing EnvoyGateway. Certgen will not overwrite the custom certificate. Please do not manually modify `values.yaml` to disable certgen, it may cause EnvoyGateway OIDC,OAuth2,etc. to not work as expected.
config.envoyGateway.gateway.controllerName	string	`"gateway.envoyproxy.io/gatewayclass-controller"`
config.envoyGateway.logging.level.default	string	`"info"`
config.envoyGateway.provider.type	string	`"Kubernetes"`
createNamespace	bool	`false`
deployment.envoyGateway.image.repository	string	`""`
deployment.envoyGateway.image.tag	string	`""`
deployment.envoyGateway.imagePullPolicy	string	`""`
deployment.envoyGateway.imagePullSecrets	list	`[]`
deployment.envoyGateway.resources.limits.memory	string	`"1024Mi"`
deployment.envoyGateway.resources.requests.cpu	string	`"100m"`
deployment.envoyGateway.resources.requests.memory	string	`"256Mi"`
deployment.envoyGateway.securityContext.allowPrivilegeEscalation	bool	`false`
deployment.envoyGateway.securityContext.capabilities.drop[0]	string	`"ALL"`
deployment.envoyGateway.securityContext.privileged	bool	`false`
deployment.envoyGateway.securityContext.runAsGroup	int	`65532`
deployment.envoyGateway.securityContext.runAsNonRoot	bool	`true`
deployment.envoyGateway.securityContext.runAsUser	int	`65532`
deployment.envoyGateway.securityContext.seccompProfile.type	string	`"RuntimeDefault"`
deployment.pod.affinity	object	`{}`
deployment.pod.annotations.“prometheus.io/port”	string	`"19001"`
deployment.pod.annotations.“prometheus.io/scrape”	string	`"true"`
deployment.pod.labels	object	`{}`
deployment.pod.nodeSelector	object	`{}`
deployment.pod.tolerations	list	`[]`
deployment.pod.topologySpreadConstraints	list	`[]`
deployment.ports[0].name	string	`"grpc"`
deployment.ports[0].port	int	`18000`
deployment.ports[0].targetPort	int	`18000`
deployment.ports[1].name	string	`"ratelimit"`
deployment.ports[1].port	int	`18001`
deployment.ports[1].targetPort	int	`18001`
deployment.ports[2].name	string	`"wasm"`
deployment.ports[2].port	int	`18002`
deployment.ports[2].targetPort	int	`18002`
deployment.ports[3].name	string	`"metrics"`
deployment.ports[3].port	int	`19001`
deployment.ports[3].targetPort	int	`19001`
deployment.priorityClassName	string	`nil`
deployment.replicas	int	`1`
global.images.envoyGateway.image	string	`nil`
global.images.envoyGateway.pullPolicy	string	`nil`
global.images.envoyGateway.pullSecrets	list	`[]`
global.images.ratelimit.image	string	`"docker.io/envoyproxy/ratelimit:master"`
global.images.ratelimit.pullPolicy	string	`"IfNotPresent"`
global.images.ratelimit.pullSecrets	list	`[]`
kubernetesClusterDomain	string	`"cluster.local"`
podDisruptionBudget.minAvailable	int	`0`
service.annotations	object	`{}`

Feedback

Was this page helpful?

Glad to hear it! Please tell us how we can improve.

Sorry to hear that. Please tell us how we can improve.

Last modified November 14, 2024: docs: fix api doc (#4711) (639a441)