Skip to main content
Version: v5.0

Release 5.0

New Services#

The following new services will be added as part of the official Helm chart:

  • aisvc - The REST API for the AI Service
  • passportsvc-legacy - The original Passport Service implementation for backwards compatability
  • platform-notificationsvc-api - The REST API for the new Notification Service
  • platform-notificationsvc-worker - The worker for the new Notification Service
  • workflowsvc-api - The REST API for the new Workflow Service
  • workflowsvc-backend - The API worker backend for the new Workflow Service
  • workflowsvc-conductor - The coordinator for the new Workflow Service
  • workflowwkr-backend - The job worker backend for the new Notification Service

New External Secrets#

To support those features above, new external secrets must be created with the corresponding environment variables below. While some variables are pre-existing, many are new variables to support individual passwords to external services.

aisvc-external#

  • KAFKA_ADMINISTRATOR_PASSWORD
  • POSTGRES_AISVC_PASSWORD - New
  • REDIS_AISVC_PASSWORD - New

platform-notificationsvc-external#

  • KAFKA_ADMINISTRATOR_PASSWORD
  • POSTGRES_PLATFORM_NOTIFICATIONSVC_PASSWORD - New
  • REDIS_PLATFORM_NOTIFICATIONSVC_PASSWORD - New
  • SMTP_DEFAULT_PASSWORD

workflowsvc-api-external#

  • KAFKA_ADMINISTRATOR_PASSWORD
  • POSTGRES_WORKFLOWSVC_API_PASSWORD - New
  • WORKFLOWSVC_ENCRYPTION_KEY - New
  • WORKFLOWSVC_ENCRYPTION_SALT - New

workflowsvc-backend-external#

  • KAFKA_ADMINISTRATOR_PASSWORD
  • POSTGRES_WORKFLOWSVC_API_PASSWORD - New

workflowsvc-conductor-external#

  • POSTGRES_WORKFLOWSVC_CONDUCTOR_PASSWORD - New

workflowwkr-backend-external#

  • KAFKA_ADMINISTRATOR_PASSWORD

Updating Existing External Secrets#

Some external secrets need additional environment variables added:

graphicssvc-external#

  • MAPBOX_LICENSE_KEY - New

platform-kafka-connect-external#

  • POSTGRES_AISVC_PASSWORD - New
  • POSTGRES_PLATFORM_NOTIFICATIONSVC_PASSWORD - New
  • POSTGRES_WORKFLOWSVC_API_PASSWORD - New

New Object Storage Buckets#

The Workflow Service requires it's own object storage bucket. This can be created according to the normal documentation for AWS or OCI.

New Object Storage Access Policies#

The new services need access to new and existing object storage buckets. The following Kubernetes Service accounts should be provided access to the corresponding buckets:

Kubernetes Service AccountPolicy
aisvckafka
platform-notificationsvc-apikafka
platform-notificationsvc-workerkafka
workflowsvc-apikafka, workflowsvc
workflowsvc-backendkafka, workflowsvc
workflowwkr-backendkafka, workflowsvc